Bonjour à tous,
Depuis quelques temps windows explorer plante assez souvent ... il est même arrivé qu'une fois j'ai eu du mal à redémarrer le micro.
Il y a un autre truc qui me travaille, c'est que quand je fais une analyse de la base de registre avec Ccleaner ... il ne me trouve pas beaucoup d'erreur..... Bon c'est peut être que j'ai fais pas mal de nettoyage ces temps-ci, mais habituellement comme je fais pas mal d'essais de logiciels et pas mal d'install et de désinstall cela me générait beaucoup plus d'erreur.... bon ??
Puis également mon navigateur favoris "Maxthon".... oui je sais bien firefox est beaucoup plus sécurisant ... Il est également installé sur mon micro avec tous les autres mais je me sert principalement de Maxthon...... Donc je disais que maxthon ne reconnais plus le flash player .... je trouve cela un peu bizarre car je n'ai jamais eu d'ennui de ce côté là
Je suis allé voir sur le forum de maxthon et ils m'ont dit la-bas que c'était un bug récurent de maxthon donc à ne pas prendre ici trop au sérieux.... mais je tenais à le signaler
Autre chose encore : le scan de mon antivirus "Avira" ne va pas jusqu'à son terme mais plante vers 97%...
--------------------------------------------
j'ai donc réaliser la procédure préalable que vous demandez et en voici les résultats.
en vous remerciant à l'avance pour votre sollicitude.
---------------------------------------------
Malwarebytes' Anti-Malware 1.41
Version de la base de données: 3023
Windows 6.0.6002 Service Pack 2
24/10/2009 10:38:50
mbam-log-2009-10-24 (10-38-43).txt
Type de recherche: Examen rapide
Eléments examinés: 93834
Temps écoulé: 5 minute(s), 25 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo (Rogue.Eorezo) -> No action taken.
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
plantage répété de explorer
Modérateur: Modérateurs et Modératrices
Règles du forum
Assiste.com a suspendu l'assistance à la décontamination après presque 15 ans sur l'ancien forum puis celui-ci. Voir :
Procédure de décontamination 1 - Anti-malware
Décontamination anti-malwares
Procédure de décontamination 2 - Anti-malware et antivirus (La Manip)
La Manip - Procédure standard de décontamination
Entretien périodique d'un PC sous Windows
Entretien périodique d'un PC sous Windows
Protection des navigateurs, de la navigation et de la vie privée
Protéger le navigateur, la navigation et la vie privée
Assiste.com a suspendu l'assistance à la décontamination après presque 15 ans sur l'ancien forum puis celui-ci. Voir :
Procédure de décontamination 1 - Anti-malware
Décontamination anti-malwares
Procédure de décontamination 2 - Anti-malware et antivirus (La Manip)
La Manip - Procédure standard de décontamination
Entretien périodique d'un PC sous Windows
Entretien périodique d'un PC sous Windows
Protection des navigateurs, de la navigation et de la vie privée
Protéger le navigateur, la navigation et la vie privée
15 messages
• Page 1 sur 2 • 1, 2
de gerard74 » 24 Oct 2009, 11:50
Voici OTL.txt : 1ère partie
-----------------------------
OTL logfile created on: 24/10/2009 10:45:38 - Run 1
OTL by OldTimer - Version 3.0.22.1 Folder = C:\Users\Gerard\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18828)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,03 Gb Available Physical Memory | 51,71% Memory free
4,00 Gb Paging File | 2,93 Gb Available in Paging File | 73,35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 70,62 Gb Total Space | 16,40 Gb Free Space | 23,22% Space Free | Partition Type: NTFS
Drive D: | 70,61 Gb Total Space | 21,25 Gb Free Space | 30,10% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 971,63 Mb Total Space | 971,61 Mb Free Space | 100,00% Space Free | Partition Type: FAT
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PC-DE-GERARD
Current User Name: Gerard
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2009/10/24 09:37:54 | 00,521,728 | ---- | M] (OldTimer Tools) -- C:\Users\Gerard\Desktop\OTL.exe
PRC - [2009/10/13 18:57:03 | 00,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2009/10/13 18:57:03 | 00,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2009/08/24 17:04:48 | 03,899,688 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version4\TeamViewer.exe
PRC - [2009/08/24 16:51:46 | 00,185,640 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe
PRC - [2009/07/31 15:23:21 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009/07/26 16:44:52 | 03,883,856 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
PRC - [2009/07/09 14:27:52 | 01,716,224 | ---- | M] (Textalk AB) -- C:\Program Files\Extrafilm Designer FR\EFUploadSrv.exe
PRC - [2009/06/05 11:48:14 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009/05/19 11:36:18 | 00,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2009/05/04 22:05:03 | 00,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2009/04/11 08:28:15 | 00,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmiprvse.exe
PRC - [2009/04/11 08:28:08 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
PRC - [2009/04/11 08:28:03 | 01,233,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe
PRC - [2009/04/11 08:27:36 | 02,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\Explorer.EXE
PRC - [2009/03/30 16:28:36 | 01,533,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
PRC - [2009/03/30 16:28:36 | 00,183,152 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
PRC - [2009/03/23 17:44:03 | 00,198,160 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2009/03/05 16:07:20 | 02,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/03/02 13:08:11 | 00,209,153 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2008/12/12 12:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008/07/08 20:35:15 | 00,208,896 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Gerard\AppData\Local\Temp\RtkBtMnt.exe
PRC - [2008/07/07 13:59:30 | 00,380,016 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Free\a2service.exe
PRC - [2008/03/24 20:03:44 | 03,587,120 | ---- | M] (Veoh Networks) -- C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
PRC - [2008/03/03 15:05:04 | 00,959,976 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
PRC - [2008/03/03 15:05:02 | 00,079,400 | ---- | M] (Check Point Software Technologies LTD) -- C:\Windows\System32\ZoneLabs\vsmon.exe
PRC - [2008/01/19 09:33:40 | 00,142,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFHost.exe
PRC - [2008/01/19 09:33:15 | 00,095,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mobsync.exe
PRC - [2008/01/19 09:33:09 | 00,125,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehtray.exe
PRC - [2008/01/19 09:33:09 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehmsas.exe
PRC - [2007/12/23 01:03:28 | 00,916,240 | ---- | M] (The Eraser Project) -- C:\Program Files\Eraser\Eraser.exe
PRC - [2007/11/06 22:58:20 | 00,294,912 | ---- | M] () -- C:\Program Files\HomePlayer\HomePlayer.exe
PRC - [2007/10/03 21:52:42 | 00,054,784 | ---- | M] (Macrovision) -- C:\Windows\System32\drivers\CDAC11BA.EXE
PRC - [2007/01/25 03:52:26 | 00,065,536 | ---- | M] () -- C:\Program Files\Common Files\NMSAccessU.exe
PRC - [2007/01/24 12:21:26 | 00,563,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wmdc.exe
PRC - [2007/01/11 06:02:00 | 00,113,664 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
PRC - [2007/01/10 16:20:34 | 00,462,848 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE
PRC - [2007/01/02 18:58:58 | 00,457,512 | ---- | M] (HiTRSUT) -- C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
PRC - [2007/01/02 16:46:52 | 00,024,576 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
PRC - [2007/01/02 09:33:24 | 00,135,168 | ---- | M] (acer) -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
PRC - [2006/12/28 20:07:22 | 00,724,992 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE
PRC - [2006/12/28 20:07:22 | 00,126,976 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eNet\eNet Service.exe
PRC - [2006/12/28 18:24:14 | 00,049,152 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
PRC - [2006/12/25 16:45:26 | 00,319,488 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
PRC - [2006/12/22 14:43:18 | 00,024,576 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
PRC - [2006/12/21 02:02:14 | 00,659,456 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LManager.exe
PRC - [2006/11/30 21:37:00 | 04,186,112 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2006/11/24 12:57:54 | 00,107,008 | ---- | M] () -- C:\Acer\Mobility Center\MobilityService.exe
PRC - [2006/10/23 21:00:36 | 00,815,104 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2006/10/19 14:52:24 | 00,061,440 | ---- | M] (Hewlett-Packard Company) -- c:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2006/08/05 03:39:20 | 00,386,560 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\xaudio.exe
PRC - [2006/02/09 18:32:20 | 00,208,990 | ---- | M] (L'Aventure Multimedia) -- C:\Program Files\Micro Application\9 Dictionnaires Illustrés\RAC9Il.exe
PRC - [2006/02/09 17:16:38 | 00,281,600 | ---- | M] (L'Aventure Multimedia) -- C:\Program Files\Micro Application\9 Dictionnaires Illustrés\MediaDico9Il.exe
PRC - [2004/11/17 16:48:40 | 00,090,112 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Common Files\EPSON\eEBAPI\eEBSVC.exe
PRC - [2003/06/20 09:25:00 | 00,322,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
========== Win32 Services (SafeList) ==========
SRV - File not found -- -- (LiveUpdate Notice Ex [Disabled | Stopped])
SRV - File not found -- -- (LiveUpdate [Disabled | Stopped])
SRV - File not found -- -- (FirebirdServerMAGIXInstance [On_Demand | Stopped])
SRV - File not found -- -- (CLTNetCnService [Disabled | Stopped])
SRV - [2009/10/13 18:57:03 | 00,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService [Auto | Running])
SRV - [2009/10/13 18:57:03 | 00,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService [Auto | Running])
SRV - [2009/08/24 16:51:46 | 00,185,640 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe -- (TeamViewer4 [Auto | Running])
SRV - [2009/07/09 14:27:52 | 01,716,224 | ---- | M] (Textalk AB) -- C:\Program Files\Extrafilm Designer FR\EFUploadSrv.exe -- (EFUploadSrv [Auto | Running])
SRV - [2009/06/05 11:48:14 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device [Auto | Running])
SRV - [2009/05/19 11:36:18 | 00,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort [Auto | Running])
SRV - [2009/05/04 22:08:15 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\GoogleUpdate.exe -- (gupdate1c9ccf418aa4a4a [Auto | Stopped])
SRV - [2009/05/04 22:04:59 | 00,183,280 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [Auto | Stopped])
SRV - [2009/04/11 08:28:25 | 01,017,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtsvc.dll -- (Eventlog [Auto | Running])
SRV - [2009/03/30 16:28:36 | 01,533,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc [Auto | Running])
SRV - [2009/03/30 06:42:14 | 00,066,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2009/02/18 20:39:20 | 00,043,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2009/02/18 20:38:43 | 00,129,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2009/02/18 20:38:42 | 00,879,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2009/01/24 00:12:26 | 00,655,624 | ---- | M] (Acresso Software Inc.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service [On_Demand | Stopped])
SRV - [2008/12/12 12:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])
SRV - [2008/10/17 10:46:45 | 00,068,096 | ---- | M] () -- C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service [On_Demand | Stopped])
SRV - [2008/07/07 13:59:30 | 00,380,016 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Free\a2service.exe -- (a2free [Auto | Running])
SRV - [2008/06/20 19:28:34 | 00,436,096 | ---- | M] (Canal+ Distribution) -- C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe -- (Service CANALPLAY [On_Demand | Stopped])
SRV - [2008/03/03 15:05:02 | 00,079,400 | ---- | M] (Check Point Software Technologies LTD) -- C:\Windows\System32\ZoneLabs\vsmon.exe -- (vsmon [Auto | Running])
SRV - [2008/01/29 18:38:32 | 00,583,048 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service [Disabled | Stopped])
SRV - [2008/01/19 09:38:24 | 00,272,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend [Auto | Running])
SRV - [2008/01/19 09:33:39 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])
SRV - [2008/01/19 09:33:09 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehRecvr.exe -- (ehRecvr [On_Demand | Stopped])
SRV - [2007/10/03 21:52:42 | 00,054,784 | ---- | M] (Macrovision) -- C:\Windows\System32\drivers\CDAC11BA.EXE -- (C-DillaCdaC11BA [Auto | Running])
SRV - [2007/09/26 11:56:14 | 00,554,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Planificateur LiveUpdate automatique [Disabled | Stopped])
SRV - [2007/06/29 19:16:56 | 00,800,040 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService [On_Demand | Stopped])
SRV - [2007/06/27 19:04:00 | 00,279,848 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService [On_Demand | Stopped])
SRV - [2007/01/25 03:52:26 | 00,065,536 | ---- | M] () -- C:\Program Files\Common Files\NMSAccessU.exe -- (NMSAccessU [Auto | Running])
SRV - [2007/01/24 20:21:24 | 00,375,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm [Auto | Running])
SRV - [2007/01/24 20:21:14 | 00,177,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr [Auto | Running])
SRV - [2007/01/11 06:02:00 | 00,113,664 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE -- (EPSON_PM_RPCV4_01 [Auto | Running])
SRV - [2007/01/02 18:58:58 | 00,457,512 | ---- | M] (HiTRSUT) -- C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe -- (eDataSecurity Service [Auto | Running])
SRV - [2007/01/02 16:46:52 | 00,024,576 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe -- (eSettingsService [Auto | Running])
SRV - [2007/01/02 09:33:24 | 00,135,168 | ---- | M] (acer) -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe -- (WMIService [Auto | Running])
SRV - [2006/12/28 20:07:22 | 00,126,976 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eNet\eNet Service.exe -- (eNet Service [Auto | Running])
SRV - [2006/12/28 18:24:14 | 00,049,152 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe -- (eRecoveryService [Auto | Running])
SRV - [2006/12/22 14:43:18 | 00,024,576 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe -- (eLockService [Auto | Running])
SRV - [2006/11/24 12:57:54 | 00,107,008 | ---- | M] () -- C:\Acer\Mobility Center\MobilityService.exe -- (MobilityService [Auto | Running])
SRV - [2006/11/02 20:40:12 | 00,174,656 | ---- | M] () -- C:\Windows\System32\PSIService.exe -- (ProtexisLicensing [Auto | Stopped])
SRV - [2006/11/02 14:35:29 | 00,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Stopped])
SRV - [2006/11/02 14:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehstart.dll -- (ehstart [Auto | Stopped])
SRV - [2006/10/19 14:52:24 | 00,061,440 | ---- | M] (Hewlett-Packard Company) -- c:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService [Auto | Running])
SRV - [2006/08/05 03:39:20 | 00,386,560 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\xaudio.exe -- (XAudioService [Auto | Running])
SRV - [2004/11/17 16:48:40 | 00,090,112 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Common Files\EPSON\eEBAPI\eEBSVC.exe -- (EpsonBidirectionalService [Auto | Running])
SRV - [2003/06/20 09:25:00 | 00,322,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe -- (MDM [Auto | Running])
========== Driver Services (SafeList) ==========
DRV - [2009/10/20 10:19:40 | 00,073,312 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\drivers\adfs.sys -- (adfs [Auto | Running])
DRV - [2009/10/13 18:57:03 | 00,055,656 | ---- | M] (Avira GmbH) -- C:\Windows\System32\DRIVERS\avgntflt.sys -- (avgntflt [Auto | Running])
DRV - [2009/10/13 18:57:03 | 00,028,520 | ---- | M] (Avira GmbH) -- C:\Windows\System32\DRIVERS\ssmdrv.sys -- (ssmdrv [System | Running])
DRV - [2009/05/09 01:14:20 | 00,014,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\NuidFltr.sys -- (NuidFltr [On_Demand | Running])
DRV - [2009/04/11 06:42:54 | 00,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbaudio.sys -- (usbaudio [On_Demand | Stopped])
DRV - [2009/04/11 06:42:52 | 00,031,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\winusb.sys -- (winusb [On_Demand | Stopped])
DRV - [2009/03/30 10:32:47 | 00,096,104 | ---- | M] (Avira GmbH) -- C:\Windows\System32\DRIVERS\avipbb.sys -- (avipbb [System | Running])
DRV - [2009/03/19 16:32:48 | 00,023,400 | ---- | M] (GEAR Software Inc.) -- C:\Windows\System32\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM [On_Demand | Running])
DRV - [2009/02/13 12:34:33 | 00,011,608 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio [System | Running])
DRV - [2009/01/13 09:45:00 | 00,954,368 | ---- | M] (Atheros Communications, Inc.) -- C:\Windows\System32\DRIVERS\athr.sys -- (athr [On_Demand | Running])
DRV - [2008/08/01 00:17:04 | 00,043,872 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
DRV - [2008/06/16 12:35:41 | 00,023,600 | ---- | M] (EnTech Taiwan) -- C:\Windows\System32\DRIVERS\TVICHW32.SYS -- (TVICHW32 [On_Demand | Stopped])
DRV - [2008/03/03 15:06:04 | 00,279,440 | ---- | M] (Check Point Software Technologies LTD) -- C:\Windows\System32\DRIVERS\vsdatant.sys -- (Vsdatant [System | Running])
DRV - [2008/01/26 03:02:02 | 00,140,832 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\DRIVERS\nvstor32.sys -- (nvstor32 [Boot | Running])
DRV - [2008/01/25 11:12:34 | 00,025,088 | ---- | M] (TeamViewer GmbH) -- C:\Windows\System32\DRIVERS\teamviewervpn.sys -- (teamviewervpn [On_Demand | Running])
DRV - [2008/01/18 11:00:00 | 00,385,072 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl [System | Running])
DRV - [2007/11/18 03:39:50 | 01,040,544 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvmfdx32.sys -- (NVENETFD [On_Demand | Running])
DRV - [2007/10/04 21:47:37 | 00,047,360 | ---- | M] (VSO Software) -- C:\Windows\System32\Drivers\Pcouffin.sys -- (Pcouffin [On_Demand | Running])
DRV - [2007/10/03 21:52:40 | 00,012,464 | ---- | M] (Macrovision Europe Ltd) -- C:\Windows\System32\drivers\CdaC15BA.SYS -- (CdaC15BA [Auto | Running])
DRV - [2007/08/24 12:38:56 | 00,126,208 | ---- | M] (e2eSoft) -- C:\Windows\System32\DRIVERS\e2ecap.sys -- (E2ECAP [Auto | Stopped])
DRV - [2007/03/23 17:23:08 | 00,824,240 | ---- | M] (Bison Electronics. Inc. ) -- C:\Windows\System32\Drivers\BisonC07.sys -- (Cam5607 [On_Demand | Running])
DRV - [2007/01/05 21:59:42 | 00,035,920 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor [Boot | Running])
DRV - [2007/01/02 18:59:24 | 00,016,680 | ---- | M] (HiTRUST) -- C:\Windows\system32\drivers\PSDNServ.sys -- (PSDNServ [Boot | Running])
DRV - [2007/01/02 18:59:20 | 00,060,712 | ---- | M] (HiTRUST) -- C:\Windows\system32\drivers\psdvdisk.sys -- (psdvdisk [Boot | Running])
DRV - [2007/01/02 18:59:18 | 00,020,264 | ---- | M] (HiTRUST) -- C:\Windows\system32\DRIVERS\psdfilter.sys -- (PSDFilter [Boot | Running])
DRV - [2007/01/02 16:43:34 | 00,076,584 | ---- | M] () -- C:\Windows\System32\drivers\int15.sys -- (int15 [Auto | Running])
DRV - [2006/12/20 22:50:00 | 04,448,160 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvlddmkm.sys -- (nvlddmkm [On_Demand | Running])
DRV - [2006/12/10 12:17:06 | 00,006,144 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Windows\System32\DRIVERS\NTIDrvr.sys -- (NTIDrvr [On_Demand | Running])
DRV - [2006/11/30 21:38:00 | 01,655,464 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService [On_Demand | Running])
DRV - [2006/11/09 00:55:10 | 00,986,624 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\HSX_DPV.sys -- (HSF_DPV [On_Demand | Running])
DRV - [2006/11/09 00:53:58 | 00,206,848 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\HSXHWAZL.sys -- (HSXHWAZL [On_Demand | Running])
DRV - [2006/11/09 00:53:48 | 00,659,968 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\HSX_CNXT.sys -- (winachsf [On_Demand | Running])
DRV - [2006/11/08 09:02:40 | 00,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\point32k.sys -- (Point32 [On_Demand | Running])
DRV - [2006/11/03 06:29:38 | 00,021,264 | ---- | M] (Dritek System Inc.) -- C:\Windows\System32\DRIVERS\DKbFltr.sys -- (DKbFltr [On_Demand | Running])
DRV - [2006/11/02 11:51:45 | 00,900,712 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300 [Disabled | Stopped])
DRV - [2006/11/02 11:51:38 | 00,420,968 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx [Disabled | Stopped])
DRV - [2006/11/02 11:51:34 | 00,316,520 | ---- | M] (Emulex) -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor [Disabled | Stopped])
DRV - [2006/11/02 11:51:32 | 00,297,576 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci [Disabled | Stopped])
DRV - [2006/11/02 11:51:25 | 00,235,112 | ---- | M] (ULi Electronics Inc.) -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci [Disabled | Stopped])
DRV - [2006/11/02 11:51:25 | 00,232,040 | ---- | M] (Intel Corporation) -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV [Disabled | Stopped])
DRV - [2006/11/02 11:51:00 | 00,147,048 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320 [Disabled | Stopped])
DRV - [2006/11/02 11:50:45 | 00,115,816 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2 [Disabled | Stopped])
DRV - [2006/11/02 11:50:41 | 00,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid [Disabled | Stopped])
DRV - [2006/11/02 11:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx [Disabled | Stopped])
DRV - [2006/11/02 11:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata [Disabled | Stopped])
DRV - [2006/11/02 11:50:35 | 00,098,408 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m [Disabled | Stopped])
DRV - [2006/11/02 11:50:24 | 00,088,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid [Disabled | Stopped])
DRV - [2006/11/02 11:50:19 | 00,045,160 | ---- | M] (IBM Corporation) -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960 [Disabled | Stopped])
DRV - [2006/11/02 11:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp [Disabled | Stopped])
DRV - [2006/11/02 11:50:16 | 00,071,784 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4 [Disabled | Stopped])
DRV - [2006/11/02 11:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx [Disabled | Stopped])
DRV - [2006/11/02 11:50:10 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas [Disabled | Stopped])
DRV - [2006/11/02 11:50:10 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI [Disabled | Stopped])
DRV - [2006/11/02 11:50:10 | 00,038,504 | ---- | M] (Silicon Integrated Systems Corp.) -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2 [Disabled | Stopped])
DRV - [2006/11/02 11:50:10 | 00,037,480 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs [Disabled | Stopped])
DRV - [2006/11/02 11:50:09 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arc.sys -- (arc [Disabled | Stopped])
DRV - [2006/11/02 11:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid [Disabled | Stopped])
DRV - [2006/11/02 11:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi [Disabled | Stopped])
DRV - [2006/11/02 11:50:05 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS [Disabled | Stopped])
DRV - [2006/11/02 11:50:05 | 00,035,944 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx [Disabled | Stopped])
DRV - [2006/11/02 11:50:04 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC [Disabled | Stopped])
DRV - [2006/11/02 11:50:03 | 00,034,920 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3 [Disabled | Stopped])
DRV - [2006/11/02 11:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x [Disabled | Stopped])
DRV - [2006/11/02 11:49:56 | 00,031,848 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi [Disabled | Stopped])
DRV - [2006/11/02 11:49:53 | 00,028,776 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\megasas.sys -- (megasas [Disabled | Stopped])
DRV - [2006/11/02 11:49:30 | 00,017,512 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\system32\drivers\viaide.sys -- (viaide [Disabled | Stopped])
DRV - [2006/11/02 11:49:28 | 00,016,488 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide [Disabled | Stopped])
DRV - [2006/11/02 11:49:20 | 00,014,952 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\system32\drivers\aliide.sys -- (aliide [Disabled | Stopped])
DRV - [2006/11/02 10:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserid.sys -- (Brserid [Disabled | Stopped])
DRV - [2006/11/02 10:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer [On_Demand | Stopped])
DRV - [2006/11/02 10:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp [On_Demand | Stopped])
DRV - [2006/11/02 10:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo [On_Demand | Stopped])
DRV - [2006/11/02 10:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm [Disabled | Stopped])
DRV - [2006/11/02 10:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm [Disabled | Stopped])
DRV - [2006/11/02 09:41:49 | 00,200,704 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\VSTAZL3.SYS -- (HSFHWAZL [On_Demand | Stopped])
DRV - [2006/11/02 09:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi [Disabled | Stopped])
DRV - [2006/11/02 09:30:56 | 00,044,544 | ---- | M] (Realtek Corporation) -- C:\Windows\System32\DRIVERS\Rtlh86.sys -- (RTL8169 [On_Demand | Stopped])
DRV - [2006/11/02 09:30:54 | 00,117,760 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\E1G60I32.sys -- (E1G60 [On_Demand | Stopped])
DRV - [2006/11/02 09:30:53 | 00,464,384 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\DRIVERS\bcmwl6.sys -- (BCM43XV [On_Demand | Stopped])
DRV - [2006/11/02 08:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv [Auto | Running])
DRV - [2006/10/23 21:17:32 | 00,179,896 | ---- | M] (Synaptics, Inc.) -- C:\Windows\System32\DRIVERS\SynTP.sys -- (SynTP [On_Demand | Running])
DRV - [2006/10/19 04:10:57 | 01,380,864 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\igdkmd32.sys -- (ialm [On_Demand | Stopped])
DRV - [2006/09/15 18:44:18 | 00,011,520 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvsmu.sys -- (nvsmu [On_Demand | Running])
DRV - [2006/08/29 04:30:04 | 00,013,952 | ---- | M] () -- C:\Windows\System32\drivers\UBHelper.sys -- (UBHelper [Boot | Running])
DRV - [2006/08/05 03:39:10 | 00,008,192 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\xaudio.sys -- (XAudio [Auto | Running])
DRV - [2006/07/06 23:44:00 | 00,168,448 | ---- | M] (Texas Instruments) -- C:\Windows\System32\drivers\tifm21.sys -- (tifm21 [On_Demand | Running])
DRV - [2006/06/20 00:26:58 | 00,012,672 | ---- | M] (Conexant) -- C:\Windows\System32\DRIVERS\mdmxsdk.sys -- (mdmxsdk [Auto | Running])
DRV - [2001/01/08 03:53:24 | 00,015,576 | ---- | M] () -- C:\Windows\System32\Drivers\usbbc.sys -- (Wdm1 [On_Demand | Stopped])
========== Modules (SafeList) ==========
MOD - [2009/10/24 09:37:54 | 00,521,728 | ---- | M] (OldTimer Tools) -- C:\Users\Gerard\Desktop\OTL.exe
MOD - [2009/04/11 08:21:38 | 01,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll
MOD - [2006/12/28 20:07:22 | 00,090,112 | ---- | M] (acer) -- C:\Windows\System32\eNetHook.dll
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://global.acer.com [binary data]
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://global.acer.com [binary data]
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://www.windows.fr/ie8/msn/bienvenue
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.free.fr/
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\S-1-5-21-3323605061-1442029127-536464899-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\S-1-5-21-3323605061-1442029127-536464899-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.selectedEngine: "Yahoo"
FF - prefs.js..browser.startup.homepage: "http://www.chez-bruchon.com"
FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1
FF - prefs.js..extensions.enabledItems: 6
FF - prefs.js..extensions.enabledItems: 2
FF - prefs.js..extensions.enabledItems: 48
FF - prefs.js..extensions.enabledItems: {af79f858-4b25-4ca4-822b-b5db1be628fc}:0.2.5.6
FF - prefs.js..extensions.enabledItems: firegestures@xuldev.org:1.1.3.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}:6.0.03
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0
FF - prefs.js..extensions.enabledItems: videofinder@veoh.com:1.3
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.14
FF - prefs.js..keyword.URL: "http://search.live.com/results.aspx?mkt=fr-FR&FORM=MIMWA5&q="
FF - HKLM\software\mozilla\Firefox\Extensions\\{400F0BDB-6C49-43A4-BE1F-76D7327A604D}: C:\Program Files\Common Files\fluxDVD\Download Manager\Mozilla [2007/08/16 12:21:42 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/06/25 23:48:48 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Program Files\Real\RealPlayer\browserrecord [2009/03/23 17:44:49 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.14\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/10/23 22:19:48 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.14\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/10/24 10:26:41 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Netscape Navigator 9.0b3\extensions\\Components: C:\Program Files\Netscape\Navigator 9\components [2009/09/22 21:08:27 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Netscape Navigator 9.0b3\extensions\\Plugins: C:\Program Files\Netscape\Navigator 9\plugins [2009/10/24 10:26:42 | 00,000,000 | ---D | M]
[2008/06/17 10:04:52 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Extensions
[2008/05/02 21:08:29 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Extensions\{6334D996-EA3E-4a0e-AA8D-15BA56B37241}
[2008/06/17 10:04:52 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/10/23 22:20:41 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Firefox\Profiles\zfsazupi.default\extensions
[2008/06/17 10:04:55 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Firefox\Profiles\zfsazupi.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
[2009/07/29 14:09:13 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Firefox\Profiles\zfsazupi.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2008/01/27 16:24:06 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Firefox\Profiles\zfsazupi.default\extensions\{af79f858-4b25-4ca4-822b-b5db1be628fc}
[2009/10/23 19:00:44 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Firefox\Profiles\zfsazupi.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2008/08/30 10:06:32 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Firefox\Profiles\zfsazupi.default\extensions\firegestures@xuldev.org
[2009/04/17 12:01:37 | 00,001,775 | ---- | M] () -- C:\Users\Gerard\AppData\Roaming\Mozilla\FireFox\Profiles\zfsazupi.default\searchplugins\live-search.xml
[2009/10/21 09:39:38 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009/10/23 22:19:48 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2007/10/10 09:42:57 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
[2009/01/23 18:21:41 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
[2009/04/20 06:49:53 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
[2009/08/08 20:35:39 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
[2009/10/21 09:39:38 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
[2009/10/23 22:19:28 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/10/23 22:19:28 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2008/01/03 19:19:06 | 00,049,152 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\np32dsw.dll
[2009/07/31 15:23:11 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll
[2007/09/17 17:10:17 | 00,594,992 | ---- | M] (www.devalvr.com) -- C:\Program Files\mozilla firefox\plugins\npdevalvr.dll
[2009/10/23 22:19:36 | 00,065,528 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2009/02/27 13:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2009/09/22 21:08:26 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2009/09/22 21:08:26 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2009/09/22 21:08:26 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2009/09/22 21:08:26 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2009/09/22 21:08:27 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2009/09/22 21:08:27 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2009/09/22 21:08:27 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2009/10/23 22:19:40 | 00,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2009/10/23 22:19:40 | 00,000,757 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2009/10/23 22:19:40 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009/10/23 22:19:40 | 00,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDICO-fr.xml
[2009/10/23 22:19:40 | 00,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2009/10/23 22:19:40 | 00,000,652 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml
--------------------------------------
la suite dans un autre message
-----------------------------
OTL logfile created on: 24/10/2009 10:45:38 - Run 1
OTL by OldTimer - Version 3.0.22.1 Folder = C:\Users\Gerard\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18828)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,03 Gb Available Physical Memory | 51,71% Memory free
4,00 Gb Paging File | 2,93 Gb Available in Paging File | 73,35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 70,62 Gb Total Space | 16,40 Gb Free Space | 23,22% Space Free | Partition Type: NTFS
Drive D: | 70,61 Gb Total Space | 21,25 Gb Free Space | 30,10% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 971,63 Mb Total Space | 971,61 Mb Free Space | 100,00% Space Free | Partition Type: FAT
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PC-DE-GERARD
Current User Name: Gerard
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2009/10/24 09:37:54 | 00,521,728 | ---- | M] (OldTimer Tools) -- C:\Users\Gerard\Desktop\OTL.exe
PRC - [2009/10/13 18:57:03 | 00,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2009/10/13 18:57:03 | 00,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2009/08/24 17:04:48 | 03,899,688 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version4\TeamViewer.exe
PRC - [2009/08/24 16:51:46 | 00,185,640 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe
PRC - [2009/07/31 15:23:21 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009/07/26 16:44:52 | 03,883,856 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
PRC - [2009/07/09 14:27:52 | 01,716,224 | ---- | M] (Textalk AB) -- C:\Program Files\Extrafilm Designer FR\EFUploadSrv.exe
PRC - [2009/06/05 11:48:14 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009/05/19 11:36:18 | 00,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2009/05/04 22:05:03 | 00,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2009/04/11 08:28:15 | 00,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmiprvse.exe
PRC - [2009/04/11 08:28:08 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
PRC - [2009/04/11 08:28:03 | 01,233,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe
PRC - [2009/04/11 08:27:36 | 02,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\Explorer.EXE
PRC - [2009/03/30 16:28:36 | 01,533,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
PRC - [2009/03/30 16:28:36 | 00,183,152 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
PRC - [2009/03/23 17:44:03 | 00,198,160 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2009/03/05 16:07:20 | 02,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/03/02 13:08:11 | 00,209,153 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2008/12/12 12:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008/07/08 20:35:15 | 00,208,896 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Gerard\AppData\Local\Temp\RtkBtMnt.exe
PRC - [2008/07/07 13:59:30 | 00,380,016 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Free\a2service.exe
PRC - [2008/03/24 20:03:44 | 03,587,120 | ---- | M] (Veoh Networks) -- C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
PRC - [2008/03/03 15:05:04 | 00,959,976 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
PRC - [2008/03/03 15:05:02 | 00,079,400 | ---- | M] (Check Point Software Technologies LTD) -- C:\Windows\System32\ZoneLabs\vsmon.exe
PRC - [2008/01/19 09:33:40 | 00,142,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFHost.exe
PRC - [2008/01/19 09:33:15 | 00,095,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mobsync.exe
PRC - [2008/01/19 09:33:09 | 00,125,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehtray.exe
PRC - [2008/01/19 09:33:09 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehmsas.exe
PRC - [2007/12/23 01:03:28 | 00,916,240 | ---- | M] (The Eraser Project) -- C:\Program Files\Eraser\Eraser.exe
PRC - [2007/11/06 22:58:20 | 00,294,912 | ---- | M] () -- C:\Program Files\HomePlayer\HomePlayer.exe
PRC - [2007/10/03 21:52:42 | 00,054,784 | ---- | M] (Macrovision) -- C:\Windows\System32\drivers\CDAC11BA.EXE
PRC - [2007/01/25 03:52:26 | 00,065,536 | ---- | M] () -- C:\Program Files\Common Files\NMSAccessU.exe
PRC - [2007/01/24 12:21:26 | 00,563,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wmdc.exe
PRC - [2007/01/11 06:02:00 | 00,113,664 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
PRC - [2007/01/10 16:20:34 | 00,462,848 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE
PRC - [2007/01/02 18:58:58 | 00,457,512 | ---- | M] (HiTRSUT) -- C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
PRC - [2007/01/02 16:46:52 | 00,024,576 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
PRC - [2007/01/02 09:33:24 | 00,135,168 | ---- | M] (acer) -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
PRC - [2006/12/28 20:07:22 | 00,724,992 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE
PRC - [2006/12/28 20:07:22 | 00,126,976 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eNet\eNet Service.exe
PRC - [2006/12/28 18:24:14 | 00,049,152 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
PRC - [2006/12/25 16:45:26 | 00,319,488 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
PRC - [2006/12/22 14:43:18 | 00,024,576 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
PRC - [2006/12/21 02:02:14 | 00,659,456 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LManager.exe
PRC - [2006/11/30 21:37:00 | 04,186,112 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2006/11/24 12:57:54 | 00,107,008 | ---- | M] () -- C:\Acer\Mobility Center\MobilityService.exe
PRC - [2006/10/23 21:00:36 | 00,815,104 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2006/10/19 14:52:24 | 00,061,440 | ---- | M] (Hewlett-Packard Company) -- c:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2006/08/05 03:39:20 | 00,386,560 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\xaudio.exe
PRC - [2006/02/09 18:32:20 | 00,208,990 | ---- | M] (L'Aventure Multimedia) -- C:\Program Files\Micro Application\9 Dictionnaires Illustrés\RAC9Il.exe
PRC - [2006/02/09 17:16:38 | 00,281,600 | ---- | M] (L'Aventure Multimedia) -- C:\Program Files\Micro Application\9 Dictionnaires Illustrés\MediaDico9Il.exe
PRC - [2004/11/17 16:48:40 | 00,090,112 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Common Files\EPSON\eEBAPI\eEBSVC.exe
PRC - [2003/06/20 09:25:00 | 00,322,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
========== Win32 Services (SafeList) ==========
SRV - File not found -- -- (LiveUpdate Notice Ex [Disabled | Stopped])
SRV - File not found -- -- (LiveUpdate [Disabled | Stopped])
SRV - File not found -- -- (FirebirdServerMAGIXInstance [On_Demand | Stopped])
SRV - File not found -- -- (CLTNetCnService [Disabled | Stopped])
SRV - [2009/10/13 18:57:03 | 00,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService [Auto | Running])
SRV - [2009/10/13 18:57:03 | 00,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService [Auto | Running])
SRV - [2009/08/24 16:51:46 | 00,185,640 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe -- (TeamViewer4 [Auto | Running])
SRV - [2009/07/09 14:27:52 | 01,716,224 | ---- | M] (Textalk AB) -- C:\Program Files\Extrafilm Designer FR\EFUploadSrv.exe -- (EFUploadSrv [Auto | Running])
SRV - [2009/06/05 11:48:14 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device [Auto | Running])
SRV - [2009/05/19 11:36:18 | 00,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort [Auto | Running])
SRV - [2009/05/04 22:08:15 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\GoogleUpdate.exe -- (gupdate1c9ccf418aa4a4a [Auto | Stopped])
SRV - [2009/05/04 22:04:59 | 00,183,280 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [Auto | Stopped])
SRV - [2009/04/11 08:28:25 | 01,017,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtsvc.dll -- (Eventlog [Auto | Running])
SRV - [2009/03/30 16:28:36 | 01,533,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc [Auto | Running])
SRV - [2009/03/30 06:42:14 | 00,066,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2009/02/18 20:39:20 | 00,043,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2009/02/18 20:38:43 | 00,129,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2009/02/18 20:38:42 | 00,879,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2009/01/24 00:12:26 | 00,655,624 | ---- | M] (Acresso Software Inc.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service [On_Demand | Stopped])
SRV - [2008/12/12 12:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])
SRV - [2008/10/17 10:46:45 | 00,068,096 | ---- | M] () -- C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service [On_Demand | Stopped])
SRV - [2008/07/07 13:59:30 | 00,380,016 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Free\a2service.exe -- (a2free [Auto | Running])
SRV - [2008/06/20 19:28:34 | 00,436,096 | ---- | M] (Canal+ Distribution) -- C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe -- (Service CANALPLAY [On_Demand | Stopped])
SRV - [2008/03/03 15:05:02 | 00,079,400 | ---- | M] (Check Point Software Technologies LTD) -- C:\Windows\System32\ZoneLabs\vsmon.exe -- (vsmon [Auto | Running])
SRV - [2008/01/29 18:38:32 | 00,583,048 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service [Disabled | Stopped])
SRV - [2008/01/19 09:38:24 | 00,272,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend [Auto | Running])
SRV - [2008/01/19 09:33:39 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])
SRV - [2008/01/19 09:33:09 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehRecvr.exe -- (ehRecvr [On_Demand | Stopped])
SRV - [2007/10/03 21:52:42 | 00,054,784 | ---- | M] (Macrovision) -- C:\Windows\System32\drivers\CDAC11BA.EXE -- (C-DillaCdaC11BA [Auto | Running])
SRV - [2007/09/26 11:56:14 | 00,554,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Planificateur LiveUpdate automatique [Disabled | Stopped])
SRV - [2007/06/29 19:16:56 | 00,800,040 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService [On_Demand | Stopped])
SRV - [2007/06/27 19:04:00 | 00,279,848 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService [On_Demand | Stopped])
SRV - [2007/01/25 03:52:26 | 00,065,536 | ---- | M] () -- C:\Program Files\Common Files\NMSAccessU.exe -- (NMSAccessU [Auto | Running])
SRV - [2007/01/24 20:21:24 | 00,375,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm [Auto | Running])
SRV - [2007/01/24 20:21:14 | 00,177,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr [Auto | Running])
SRV - [2007/01/11 06:02:00 | 00,113,664 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE -- (EPSON_PM_RPCV4_01 [Auto | Running])
SRV - [2007/01/02 18:58:58 | 00,457,512 | ---- | M] (HiTRSUT) -- C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe -- (eDataSecurity Service [Auto | Running])
SRV - [2007/01/02 16:46:52 | 00,024,576 | ---- | M] () -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe -- (eSettingsService [Auto | Running])
SRV - [2007/01/02 09:33:24 | 00,135,168 | ---- | M] (acer) -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe -- (WMIService [Auto | Running])
SRV - [2006/12/28 20:07:22 | 00,126,976 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eNet\eNet Service.exe -- (eNet Service [Auto | Running])
SRV - [2006/12/28 18:24:14 | 00,049,152 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe -- (eRecoveryService [Auto | Running])
SRV - [2006/12/22 14:43:18 | 00,024,576 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe -- (eLockService [Auto | Running])
SRV - [2006/11/24 12:57:54 | 00,107,008 | ---- | M] () -- C:\Acer\Mobility Center\MobilityService.exe -- (MobilityService [Auto | Running])
SRV - [2006/11/02 20:40:12 | 00,174,656 | ---- | M] () -- C:\Windows\System32\PSIService.exe -- (ProtexisLicensing [Auto | Stopped])
SRV - [2006/11/02 14:35:29 | 00,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Stopped])
SRV - [2006/11/02 14:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehstart.dll -- (ehstart [Auto | Stopped])
SRV - [2006/10/19 14:52:24 | 00,061,440 | ---- | M] (Hewlett-Packard Company) -- c:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService [Auto | Running])
SRV - [2006/08/05 03:39:20 | 00,386,560 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\xaudio.exe -- (XAudioService [Auto | Running])
SRV - [2004/11/17 16:48:40 | 00,090,112 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Common Files\EPSON\eEBAPI\eEBSVC.exe -- (EpsonBidirectionalService [Auto | Running])
SRV - [2003/06/20 09:25:00 | 00,322,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe -- (MDM [Auto | Running])
========== Driver Services (SafeList) ==========
DRV - [2009/10/20 10:19:40 | 00,073,312 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\drivers\adfs.sys -- (adfs [Auto | Running])
DRV - [2009/10/13 18:57:03 | 00,055,656 | ---- | M] (Avira GmbH) -- C:\Windows\System32\DRIVERS\avgntflt.sys -- (avgntflt [Auto | Running])
DRV - [2009/10/13 18:57:03 | 00,028,520 | ---- | M] (Avira GmbH) -- C:\Windows\System32\DRIVERS\ssmdrv.sys -- (ssmdrv [System | Running])
DRV - [2009/05/09 01:14:20 | 00,014,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\NuidFltr.sys -- (NuidFltr [On_Demand | Running])
DRV - [2009/04/11 06:42:54 | 00,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbaudio.sys -- (usbaudio [On_Demand | Stopped])
DRV - [2009/04/11 06:42:52 | 00,031,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\winusb.sys -- (winusb [On_Demand | Stopped])
DRV - [2009/03/30 10:32:47 | 00,096,104 | ---- | M] (Avira GmbH) -- C:\Windows\System32\DRIVERS\avipbb.sys -- (avipbb [System | Running])
DRV - [2009/03/19 16:32:48 | 00,023,400 | ---- | M] (GEAR Software Inc.) -- C:\Windows\System32\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM [On_Demand | Running])
DRV - [2009/02/13 12:34:33 | 00,011,608 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio [System | Running])
DRV - [2009/01/13 09:45:00 | 00,954,368 | ---- | M] (Atheros Communications, Inc.) -- C:\Windows\System32\DRIVERS\athr.sys -- (athr [On_Demand | Running])
DRV - [2008/08/01 00:17:04 | 00,043,872 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
DRV - [2008/06/16 12:35:41 | 00,023,600 | ---- | M] (EnTech Taiwan) -- C:\Windows\System32\DRIVERS\TVICHW32.SYS -- (TVICHW32 [On_Demand | Stopped])
DRV - [2008/03/03 15:06:04 | 00,279,440 | ---- | M] (Check Point Software Technologies LTD) -- C:\Windows\System32\DRIVERS\vsdatant.sys -- (Vsdatant [System | Running])
DRV - [2008/01/26 03:02:02 | 00,140,832 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\DRIVERS\nvstor32.sys -- (nvstor32 [Boot | Running])
DRV - [2008/01/25 11:12:34 | 00,025,088 | ---- | M] (TeamViewer GmbH) -- C:\Windows\System32\DRIVERS\teamviewervpn.sys -- (teamviewervpn [On_Demand | Running])
DRV - [2008/01/18 11:00:00 | 00,385,072 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl [System | Running])
DRV - [2007/11/18 03:39:50 | 01,040,544 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvmfdx32.sys -- (NVENETFD [On_Demand | Running])
DRV - [2007/10/04 21:47:37 | 00,047,360 | ---- | M] (VSO Software) -- C:\Windows\System32\Drivers\Pcouffin.sys -- (Pcouffin [On_Demand | Running])
DRV - [2007/10/03 21:52:40 | 00,012,464 | ---- | M] (Macrovision Europe Ltd) -- C:\Windows\System32\drivers\CdaC15BA.SYS -- (CdaC15BA [Auto | Running])
DRV - [2007/08/24 12:38:56 | 00,126,208 | ---- | M] (e2eSoft) -- C:\Windows\System32\DRIVERS\e2ecap.sys -- (E2ECAP [Auto | Stopped])
DRV - [2007/03/23 17:23:08 | 00,824,240 | ---- | M] (Bison Electronics. Inc. ) -- C:\Windows\System32\Drivers\BisonC07.sys -- (Cam5607 [On_Demand | Running])
DRV - [2007/01/05 21:59:42 | 00,035,920 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor [Boot | Running])
DRV - [2007/01/02 18:59:24 | 00,016,680 | ---- | M] (HiTRUST) -- C:\Windows\system32\drivers\PSDNServ.sys -- (PSDNServ [Boot | Running])
DRV - [2007/01/02 18:59:20 | 00,060,712 | ---- | M] (HiTRUST) -- C:\Windows\system32\drivers\psdvdisk.sys -- (psdvdisk [Boot | Running])
DRV - [2007/01/02 18:59:18 | 00,020,264 | ---- | M] (HiTRUST) -- C:\Windows\system32\DRIVERS\psdfilter.sys -- (PSDFilter [Boot | Running])
DRV - [2007/01/02 16:43:34 | 00,076,584 | ---- | M] () -- C:\Windows\System32\drivers\int15.sys -- (int15 [Auto | Running])
DRV - [2006/12/20 22:50:00 | 04,448,160 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvlddmkm.sys -- (nvlddmkm [On_Demand | Running])
DRV - [2006/12/10 12:17:06 | 00,006,144 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Windows\System32\DRIVERS\NTIDrvr.sys -- (NTIDrvr [On_Demand | Running])
DRV - [2006/11/30 21:38:00 | 01,655,464 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService [On_Demand | Running])
DRV - [2006/11/09 00:55:10 | 00,986,624 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\HSX_DPV.sys -- (HSF_DPV [On_Demand | Running])
DRV - [2006/11/09 00:53:58 | 00,206,848 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\HSXHWAZL.sys -- (HSXHWAZL [On_Demand | Running])
DRV - [2006/11/09 00:53:48 | 00,659,968 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\HSX_CNXT.sys -- (winachsf [On_Demand | Running])
DRV - [2006/11/08 09:02:40 | 00,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\point32k.sys -- (Point32 [On_Demand | Running])
DRV - [2006/11/03 06:29:38 | 00,021,264 | ---- | M] (Dritek System Inc.) -- C:\Windows\System32\DRIVERS\DKbFltr.sys -- (DKbFltr [On_Demand | Running])
DRV - [2006/11/02 11:51:45 | 00,900,712 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300 [Disabled | Stopped])
DRV - [2006/11/02 11:51:38 | 00,420,968 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx [Disabled | Stopped])
DRV - [2006/11/02 11:51:34 | 00,316,520 | ---- | M] (Emulex) -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor [Disabled | Stopped])
DRV - [2006/11/02 11:51:32 | 00,297,576 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci [Disabled | Stopped])
DRV - [2006/11/02 11:51:25 | 00,235,112 | ---- | M] (ULi Electronics Inc.) -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci [Disabled | Stopped])
DRV - [2006/11/02 11:51:25 | 00,232,040 | ---- | M] (Intel Corporation) -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV [Disabled | Stopped])
DRV - [2006/11/02 11:51:00 | 00,147,048 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320 [Disabled | Stopped])
DRV - [2006/11/02 11:50:45 | 00,115,816 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2 [Disabled | Stopped])
DRV - [2006/11/02 11:50:41 | 00,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid [Disabled | Stopped])
DRV - [2006/11/02 11:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx [Disabled | Stopped])
DRV - [2006/11/02 11:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata [Disabled | Stopped])
DRV - [2006/11/02 11:50:35 | 00,098,408 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m [Disabled | Stopped])
DRV - [2006/11/02 11:50:24 | 00,088,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid [Disabled | Stopped])
DRV - [2006/11/02 11:50:19 | 00,045,160 | ---- | M] (IBM Corporation) -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960 [Disabled | Stopped])
DRV - [2006/11/02 11:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp [Disabled | Stopped])
DRV - [2006/11/02 11:50:16 | 00,071,784 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4 [Disabled | Stopped])
DRV - [2006/11/02 11:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx [Disabled | Stopped])
DRV - [2006/11/02 11:50:10 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas [Disabled | Stopped])
DRV - [2006/11/02 11:50:10 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI [Disabled | Stopped])
DRV - [2006/11/02 11:50:10 | 00,038,504 | ---- | M] (Silicon Integrated Systems Corp.) -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2 [Disabled | Stopped])
DRV - [2006/11/02 11:50:10 | 00,037,480 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs [Disabled | Stopped])
DRV - [2006/11/02 11:50:09 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arc.sys -- (arc [Disabled | Stopped])
DRV - [2006/11/02 11:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid [Disabled | Stopped])
DRV - [2006/11/02 11:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi [Disabled | Stopped])
DRV - [2006/11/02 11:50:05 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS [Disabled | Stopped])
DRV - [2006/11/02 11:50:05 | 00,035,944 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx [Disabled | Stopped])
DRV - [2006/11/02 11:50:04 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC [Disabled | Stopped])
DRV - [2006/11/02 11:50:03 | 00,034,920 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3 [Disabled | Stopped])
DRV - [2006/11/02 11:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x [Disabled | Stopped])
DRV - [2006/11/02 11:49:56 | 00,031,848 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi [Disabled | Stopped])
DRV - [2006/11/02 11:49:53 | 00,028,776 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\megasas.sys -- (megasas [Disabled | Stopped])
DRV - [2006/11/02 11:49:30 | 00,017,512 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\system32\drivers\viaide.sys -- (viaide [Disabled | Stopped])
DRV - [2006/11/02 11:49:28 | 00,016,488 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide [Disabled | Stopped])
DRV - [2006/11/02 11:49:20 | 00,014,952 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\system32\drivers\aliide.sys -- (aliide [Disabled | Stopped])
DRV - [2006/11/02 10:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserid.sys -- (Brserid [Disabled | Stopped])
DRV - [2006/11/02 10:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer [On_Demand | Stopped])
DRV - [2006/11/02 10:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp [On_Demand | Stopped])
DRV - [2006/11/02 10:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo [On_Demand | Stopped])
DRV - [2006/11/02 10:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm [Disabled | Stopped])
DRV - [2006/11/02 10:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm [Disabled | Stopped])
DRV - [2006/11/02 09:41:49 | 00,200,704 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\VSTAZL3.SYS -- (HSFHWAZL [On_Demand | Stopped])
DRV - [2006/11/02 09:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi [Disabled | Stopped])
DRV - [2006/11/02 09:30:56 | 00,044,544 | ---- | M] (Realtek Corporation) -- C:\Windows\System32\DRIVERS\Rtlh86.sys -- (RTL8169 [On_Demand | Stopped])
DRV - [2006/11/02 09:30:54 | 00,117,760 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\E1G60I32.sys -- (E1G60 [On_Demand | Stopped])
DRV - [2006/11/02 09:30:53 | 00,464,384 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\DRIVERS\bcmwl6.sys -- (BCM43XV [On_Demand | Stopped])
DRV - [2006/11/02 08:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv [Auto | Running])
DRV - [2006/10/23 21:17:32 | 00,179,896 | ---- | M] (Synaptics, Inc.) -- C:\Windows\System32\DRIVERS\SynTP.sys -- (SynTP [On_Demand | Running])
DRV - [2006/10/19 04:10:57 | 01,380,864 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\igdkmd32.sys -- (ialm [On_Demand | Stopped])
DRV - [2006/09/15 18:44:18 | 00,011,520 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvsmu.sys -- (nvsmu [On_Demand | Running])
DRV - [2006/08/29 04:30:04 | 00,013,952 | ---- | M] () -- C:\Windows\System32\drivers\UBHelper.sys -- (UBHelper [Boot | Running])
DRV - [2006/08/05 03:39:10 | 00,008,192 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\xaudio.sys -- (XAudio [Auto | Running])
DRV - [2006/07/06 23:44:00 | 00,168,448 | ---- | M] (Texas Instruments) -- C:\Windows\System32\drivers\tifm21.sys -- (tifm21 [On_Demand | Running])
DRV - [2006/06/20 00:26:58 | 00,012,672 | ---- | M] (Conexant) -- C:\Windows\System32\DRIVERS\mdmxsdk.sys -- (mdmxsdk [Auto | Running])
DRV - [2001/01/08 03:53:24 | 00,015,576 | ---- | M] () -- C:\Windows\System32\Drivers\usbbc.sys -- (Wdm1 [On_Demand | Stopped])
========== Modules (SafeList) ==========
MOD - [2009/10/24 09:37:54 | 00,521,728 | ---- | M] (OldTimer Tools) -- C:\Users\Gerard\Desktop\OTL.exe
MOD - [2009/04/11 08:21:38 | 01,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll
MOD - [2006/12/28 20:07:22 | 00,090,112 | ---- | M] (acer) -- C:\Windows\System32\eNetHook.dll
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://global.acer.com [binary data]
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://global.acer.com [binary data]
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://www.windows.fr/ie8/msn/bienvenue
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.free.fr/
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\S-1-5-21-3323605061-1442029127-536464899-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\S-1-5-21-3323605061-1442029127-536464899-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.selectedEngine: "Yahoo"
FF - prefs.js..browser.startup.homepage: "http://www.chez-bruchon.com"
FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1
FF - prefs.js..extensions.enabledItems: 6
FF - prefs.js..extensions.enabledItems: 2
FF - prefs.js..extensions.enabledItems: 48
FF - prefs.js..extensions.enabledItems: {af79f858-4b25-4ca4-822b-b5db1be628fc}:0.2.5.6
FF - prefs.js..extensions.enabledItems: firegestures@xuldev.org:1.1.3.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}:6.0.03
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0
FF - prefs.js..extensions.enabledItems: videofinder@veoh.com:1.3
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.14
FF - prefs.js..keyword.URL: "http://search.live.com/results.aspx?mkt=fr-FR&FORM=MIMWA5&q="
FF - HKLM\software\mozilla\Firefox\Extensions\\{400F0BDB-6C49-43A4-BE1F-76D7327A604D}: C:\Program Files\Common Files\fluxDVD\Download Manager\Mozilla [2007/08/16 12:21:42 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/06/25 23:48:48 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Program Files\Real\RealPlayer\browserrecord [2009/03/23 17:44:49 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.14\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/10/23 22:19:48 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.14\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/10/24 10:26:41 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Netscape Navigator 9.0b3\extensions\\Components: C:\Program Files\Netscape\Navigator 9\components [2009/09/22 21:08:27 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Netscape Navigator 9.0b3\extensions\\Plugins: C:\Program Files\Netscape\Navigator 9\plugins [2009/10/24 10:26:42 | 00,000,000 | ---D | M]
[2008/06/17 10:04:52 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Extensions
[2008/05/02 21:08:29 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Extensions\{6334D996-EA3E-4a0e-AA8D-15BA56B37241}
[2008/06/17 10:04:52 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/10/23 22:20:41 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Firefox\Profiles\zfsazupi.default\extensions
[2008/06/17 10:04:55 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Firefox\Profiles\zfsazupi.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
[2009/07/29 14:09:13 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Firefox\Profiles\zfsazupi.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2008/01/27 16:24:06 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Firefox\Profiles\zfsazupi.default\extensions\{af79f858-4b25-4ca4-822b-b5db1be628fc}
[2009/10/23 19:00:44 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Firefox\Profiles\zfsazupi.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2008/08/30 10:06:32 | 00,000,000 | ---D | M] -- C:\Users\Gerard\AppData\Roaming\mozilla\Firefox\Profiles\zfsazupi.default\extensions\firegestures@xuldev.org
[2009/04/17 12:01:37 | 00,001,775 | ---- | M] () -- C:\Users\Gerard\AppData\Roaming\Mozilla\FireFox\Profiles\zfsazupi.default\searchplugins\live-search.xml
[2009/10/21 09:39:38 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009/10/23 22:19:48 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2007/10/10 09:42:57 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
[2009/01/23 18:21:41 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
[2009/04/20 06:49:53 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
[2009/08/08 20:35:39 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
[2009/10/21 09:39:38 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
[2009/10/23 22:19:28 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/10/23 22:19:28 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2008/01/03 19:19:06 | 00,049,152 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\np32dsw.dll
[2009/07/31 15:23:11 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll
[2007/09/17 17:10:17 | 00,594,992 | ---- | M] (www.devalvr.com) -- C:\Program Files\mozilla firefox\plugins\npdevalvr.dll
[2009/10/23 22:19:36 | 00,065,528 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2009/02/27 13:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2009/09/22 21:08:26 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2009/09/22 21:08:26 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2009/09/22 21:08:26 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2009/09/22 21:08:26 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2009/09/22 21:08:27 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2009/09/22 21:08:27 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2009/09/22 21:08:27 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2009/10/23 22:19:40 | 00,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2009/10/23 22:19:40 | 00,000,757 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2009/10/23 22:19:40 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009/10/23 22:19:40 | 00,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDICO-fr.xml
[2009/10/23 22:19:40 | 00,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2009/10/23 22:19:40 | 00,000,652 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml
--------------------------------------
la suite dans un autre message
Gérard
Mes configs
Mes configs
-
gerard74 - Messages: 30
- Inscription: 23 Mai 2008, 09:31
- Localisation: Thorens-Glières
de gerard74 » 24 Oct 2009, 12:19
OTL.txt : 2ème partie
--------------------------
O1 HOSTS File: (791 bytes) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Download Manager Browser Helper Object) - {19C8E43B-07B3-49CB-BFFC-6777B593E6F8} - C:\Programmes\Common Files\fluxDVD\Download Manager\XEBDLHelper.dll File not found
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll (Microsoft Corporation)
O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programmes\Spybot - Search & Destroy\SDHelper.dll File not found
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live ID) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKLM\..\Toolbar: (Systran40premi.IEPlugIn) - {CFB25594-4D5F-11D6-AB7B-00B0D094B576} - C:\Program Files\Systran\4_0\Premium\IEPlugIn.dll (SYSTRAN)
O3 - HKLM\..\Toolbar: (Veoh Browser Plug-in) - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll (Veoh Networks Inc)
O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar avec bloqueur de fenêtres pop-up) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [Google Quick Search Box] C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe (Google Inc.)
O4 - HKLM..\Run: [HomePlayer] C:\Program Files\HomePlayer\HomePlayer.exe ()
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdc.exe (Microsoft Corporation)
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD)
O4 - HKU\.DEFAULT..\Run: [msnmsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\Run: [msnmsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [EPSON Stylus DX9400F Series] C:\Windows\System32\spool\DRIVERS\W32X86\3\E_FATICFE.EXE (SEIKO EPSON CORPORATION)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [Eraser] C:\Program Files\Eraser\Eraser.exe (The Eraser Project)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [imprimante wifi] C:\Windows\System32\spool\DRIVERS\W32X86\3\E_FATICFE.EXE (SEIKO EPSON CORPORATION)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [MediaDICO9Il] C:\Program Files\Micro Application\9 Dictionnaires Illustrés\LanceMediaDICO9Il.exe (L'Aventure Multimedia)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [MsnMsgr] C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [RocketDock] H:\Programmes\RocketDock-v1.3.5\RocketDock.exe File not found
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [Stylus DX9400F(Réseau)] C:\Windows\System32\spool\DRIVERS\W32X86\3\E_FATICFE.EXE (SEIKO EPSON CORPORATION)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [Veoh] C:\Program Files\Veoh Networks\Veoh\VeohClient.exe (Veoh Networks)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: BindDirectlyToPropertySetStorage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data]
O7 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36
O7 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm ()
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm ()
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe ()
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programmes\Spybot - Search & Destroy\SDHelper.dll File not found
O9 - Extra Button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\napinsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: canalplay.com ([]* in Trusted sites)
O15 - HKLM\..Trusted Domains: canalplusactive.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\..Trusted Domains: canalplay.com ([]* in Sites de confiance)
O15 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\..Trusted Domains: canalplusactive.com ([]* in Sites de confiance)
O16 - DPF: {051D0E35-F4E3-4C8D-B411-AB0875F4C683} http://install.anark.com/client/version ... Client.cab (Anark Client 4.0 ActiveX Control)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} http://dev.srtest.com/srl_bin/sysreqlab3.cab (System Requirements Lab Class)
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} http://housecall65.trendmicro.com/house ... hcImpl.cab (Trend Micro ActiveX Scan Agent 6.6)
O16 - DPF: {2EDF75C0-5ABD-49f9-BAB6-220476A32034} http://intel-drv-cdn.systemrequirements ... b_srlx.cab (System Requirements Lab Class)
O16 - DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} http://photoservice.fujicolor.de/ips-op ... anvasx.cab (JordanUploader Class)
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/v ... .2.4.1.cab (DLM Control)
O16 - DPF: {5D2CF9D0-113A-476B-986F-288B54571614} http://www.devalvr.com/instalacion/plug ... plugin.php (DevalVR Control)
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} http://www.extrafilm.fr/ImageUploader5.cab (Image Uploader Control)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://www.zebulon.fr/scan8/oscan8.cab (Reg Error: Key error.)
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} http://chez-gercha.spaces.live.com/Phot ... dfr-fr.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} http://www.sibelius.com/download/softwa ... Plugin.cab (Reg Error: Key error.)
O16 - DPF: {B9907873-6560-4A36-B76B-9DADE84A7F55} http://www.fnacmusic.com/telechargement ... sicDnl.CAB (Reg Error: Key error.)
O16 - DPF: {BA162249-F2C5-4851-8ADC-FC58CB424243} http://copainsdavant.linternaute.com/ht ... oader5.cab (Reg Error: Key error.)
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} http://ax.emsisoft.com/asquared.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CB50428B-657F-47DF-9B32-671F82AA73F7} http://www.photodex.com/pxplay.cab (Photodex Presenter AX control)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programmes\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll File not found
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programmes\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll File not found
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\x-sdch {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O20 - AppInit_DLLs: (eNetHook.dll) - C:\Windows\System32\eNetHook.dll (acer)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\Explorer.exe (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/12/10 12:17:28 | 00,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2008/07/11 17:50:04 | 00,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2008/07/11 17:50:04 | 00,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ]
O33 - MountPoints2\{290c9b32-0e69-11de-9c97-0016d353e0d9}\Shell\AutoRun\command - "" = H:\start\host\PStart.exe -- File not found
O33 - MountPoints2\{95b76a40-c783-11dc-9a06-0016d353e0d9}\Shell\Auto\command - "" = C:\Windows\System32\cmd.exe -- [2008/01/19 09:33:04 | 00,318,976 | ---- | M] (Microsoft Corporation)
O33 - MountPoints2\{cb8e31be-076e-11de-9fc8-0016d353e0d9}\Shell\AutoRun\command - "" = H:\start\host\PStart.exe -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found
========== Files/Folders - Created Within 30 Days ==========
[2009/10/13 18:53:40 | 00,000,000 | ---D | C] -- C:\ProgramData\Avira
[2009/10/24 09:42:09 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009/10/22 12:58:49 | 00,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2009/10/21 11:26:14 | 00,000,000 | ---D | C] -- C:\ProgramData\McAfee Security Scan
[1 C:\Users\Gerard\AppData\Roaming\*.tmp files]
[2009/10/18 14:50:08 | 00,000,000 | ---D | C] -- C:\Users\Gerard\AppData\Roaming\codeblocks
[2009/10/13 13:31:12 | 00,000,000 | ---D | C] -- C:\Users\Gerard\AppData\Roaming\HouseCall 6.6
[2009/10/24 09:42:17 | 00,000,000 | ---D | C] -- C:\Users\Gerard\AppData\Roaming\Malwarebytes
[2009/10/22 21:30:04 | 00,000,000 | ---D | C] -- C:\Users\Gerard\AppData\Roaming\VirtuaWin
[1 C:\Users\Gerard\AppData\Roaming\*.tmp files]
[2009/10/21 12:11:35 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2009/10/13 18:53:40 | 00,000,000 | ---D | C] -- C:\Program Files\Avira
[2009/10/18 14:49:34 | 00,000,000 | ---D | C] -- C:\Program Files\CodeBlocks
[2009/09/27 17:42:57 | 00,000,000 | ---D | C] -- C:\Program Files\denouvel
[2009/09/25 17:08:56 | 00,000,000 | ---D | C] -- C:\Program Files\HomePlayer
[2009/10/24 09:42:08 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/10/10 17:13:12 | 00,000,000 | ---D | C] -- C:\Program Files\Maxthon3
[2009/10/22 21:29:58 | 00,000,000 | ---D | C] -- C:\Program Files\VirtuaWin
[2009/10/24 09:42:12 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009/10/24 09:42:09 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009/10/24 09:38:19 | 00,521,728 | ---- | C] (OldTimer Tools) -- C:\Users\Gerard\Desktop\OTL.exe
[2009/10/23 20:58:08 | 01,925,024 | ---- | C] (Adobe Systems Incorporated) -- C:\Users\Gerard\Desktop\Install Flash Player 10 Plugin.exe
[2009/10/23 20:57:55 | 01,962,544 | ---- | C] (Adobe Systems Incorporated) -- C:\Users\Gerard\Desktop\Install Flash Player 10 ActiveX.exe
[2009/10/21 12:11:34 | 00,000,000 | -HSD | C] -- C:\Config.Msi
[2009/10/21 09:39:34 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2009/10/21 09:39:34 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2009/10/21 09:39:34 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2009/10/20 16:37:08 | 00,000,000 | ---D | C] -- C:\Users\Gerard\Desktop\Photoshop CS
[2009/10/20 09:27:31 | 02,421,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2009/10/20 09:27:31 | 01,929,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuaueng.dll
[2009/10/20 09:27:31 | 00,053,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuauclt.exe
[2009/10/20 09:27:31 | 00,044,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2009/10/20 09:27:00 | 00,575,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2009/10/20 09:27:00 | 00,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2009/10/20 09:27:00 | 00,035,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2009/10/20 09:26:50 | 00,171,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2009/10/20 09:26:50 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2009/10/16 11:03:37 | 00,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msv1_0.dll
[2009/10/16 11:03:24 | 03,600,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2009/10/16 11:03:24 | 03,548,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2009/10/16 11:02:45 | 05,940,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll
[2009/10/16 11:02:42 | 11,069,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll
[2009/10/16 11:02:40 | 01,985,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll
[2009/10/16 11:02:40 | 01,208,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
[2009/10/16 11:02:40 | 00,916,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
[2009/10/16 11:02:40 | 00,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2009/10/16 11:02:40 | 00,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2009/10/16 11:02:40 | 00,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\occache.dll
[2009/10/16 11:02:39 | 01,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2009/10/16 11:02:39 | 00,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2009/10/16 11:02:39 | 00,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2009/10/16 11:02:38 | 01,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2009/10/16 11:02:38 | 00,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2009/10/16 11:02:38 | 00,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2009/10/16 11:02:38 | 00,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2009/10/16 11:02:38 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2009/10/16 11:02:38 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2009/10/16 11:02:38 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2009/10/16 11:02:38 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2009/10/16 11:02:38 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2009/10/16 11:02:30 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msasn1.dll
[2009/10/16 11:02:23 | 00,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\srv2.sys
[2009/10/16 11:02:18 | 00,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2009/10/13 18:53:42 | 00,096,104 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avipbb.sys
[2009/10/13 18:53:41 | 00,055,656 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avgntflt.sys
[2009/10/13 16:57:18 | 00,102,664 | ---- | C] (Trend Micro Inc.) -- C:\Windows\System32\drivers\tmcomm.sys
[2009/10/13 13:31:11 | 00,000,000 | ---D | C] -- C:\Windows\System32\HouseCall 6.6
[2009/10/03 10:38:18 | 00,195,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2009/09/27 17:42:42 | 00,796,672 | ---- | C] (Qsc) -- C:\Windows\GPInstall.exe
[2009/09/24 20:57:35 | 00,000,000 | ---D | C] -- C:\Users\Gerard\Documents\EpsonNet Config
[2006/12/10 12:29:16 | 00,053,248 | ---- | C] ( ) -- C:\Windows\System32\Interop.Shell32.dll
[2004/12/13 08:57:36 | 00,065,536 | ---- | C] ( ) -- C:\Windows\System32\RCCOLLAB.DLL
[2004/11/29 16:08:30 | 00,127,059 | ---- | C] ( ) -- C:\Windows\System32\DSLLK189.dll
========== Files - Modified Within 30 Days ==========
[1 C:\Windows\*.tmp files]
[1 C:\Users\Gerard\AppData\Roaming\*.tmp files]
[2009/10/24 10:28:46 | 00,001,000 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2009/10/24 10:26:36 | 00,352,615 | -H-- | M] () -- C:\Windows\System32\drivers\vsconfig.xml
[2009/10/24 10:26:25 | 00,001,050 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2009/10/24 10:26:23 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/10/24 10:26:21 | 00,003,296 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009/10/24 10:26:21 | 00,003,296 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009/10/24 10:26:13 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/10/24 10:26:07 | 21,460,91008 | -HS- | M] () -- C:\hiberfil.sys
[2009/10/24 10:23:58 | 04,215,884 | -H-- | M] () -- C:\Users\Gerard\AppData\Local\IconCache.db
[2009/10/24 10:05:01 | 00,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2009/10/24 09:42:15 | 00,000,822 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/10/24 09:37:54 | 00,521,728 | ---- | M] (OldTimer Tools) -- C:\Users\Gerard\Desktop\OTL.exe
[2009/10/23 20:50:53 | 00,001,534 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091023_205046.reg
[2009/10/23 19:49:18 | 00,000,380 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091023_194913.reg
[2009/10/23 18:10:36 | 00,035,416 | ---- | M] () -- C:\Users\Gerard\AppData\Roaming\nvModes.001
[2009/10/23 16:02:44 | 00,000,420 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{0A37CAE0-30C9-4127-AB71-691537B0F7BA}.job
[2009/10/23 15:08:40 | 00,022,222 | ---- | M] () -- C:\Users\Gerard\Desktop\CA20091023_1500.odt
[2009/10/23 11:15:10 | 00,036,619 | ---- | M] () -- C:\Users\Gerard\Desktop\index.pdf
[2009/10/22 12:58:17 | 00,000,304 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091022_125813.reg
[2009/10/22 11:54:20 | 00,045,114 | ---- | M] () -- C:\Users\Gerard\Desktop\ADHERENTS 2009-2010(2).pdf
[2009/10/21 12:31:33 | 00,003,360 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091021_123123.reg
[2009/10/20 22:11:44 | 01,497,408 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009/10/20 22:11:44 | 00,678,956 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2009/10/20 22:11:44 | 00,595,506 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/10/20 22:11:44 | 00,128,004 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2009/10/20 22:11:44 | 00,104,940 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/10/20 10:19:40 | 00,073,312 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\drivers\adfs.sys
[2009/10/16 20:51:20 | 00,044,925 | ---- | M] () -- C:\Users\Gerard\Desktop\ADHERENTS 2009-2010.pdf
[2009/10/15 10:54:41 | 00,003,252 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091015_105429.reg
[2009/10/15 09:37:16 | 00,000,967 | ---- | M] () -- C:\Users\Public\Desktop\PicturesToExe 6.021.lnk
[2009/10/14 07:12:51 | 00,000,682 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091014_071244.reg
[2009/10/13 18:57:03 | 00,055,656 | ---- | M] (Avira GmbH) -- C:\Windows\System32\drivers\avgntflt.sys
[2009/10/13 18:57:03 | 00,028,520 | ---- | M] (Avira GmbH) -- C:\Windows\System32\drivers\ssmdrv.sys
[2009/10/13 18:44:03 | 00,000,304 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091013_184359.reg
[2009/10/13 18:32:50 | 00,108,683 | ---- | M] () -- C:\Users\Gerard\Desktop\image_1.jpg
[2009/10/13 11:39:44 | 00,000,290 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2009/10/10 17:06:07 | 00,000,304 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091010_170603.reg
[2009/10/10 16:05:22 | 00,001,130 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091010_160515.reg
[2009/10/10 16:04:55 | 00,021,856 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091010_160444.reg
[2009/10/10 15:39:55 | 00,001,602 | ---- | M] () -- C:\Users\Gerard\Desktop\DivX Movies.lnk
[2009/10/10 15:19:38 | 00,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2009/10/10 11:05:17 | 00,007,314 | ---- | M] () -- C:\Users\Gerard\AppData\Roaming\UserTile.png
[2009/10/10 10:44:17 | 00,000,359 | ---- | M] () -- C:\Users\Gerard\Desktop\Contacts.lnk
[2009/10/03 19:37:11 | 00,191,488 | ---- | M] () -- C:\Users\Gerard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/10/03 16:42:24 | 00,171,125 | ---- | M] () -- C:\Users\Gerard\Desktop\Favoris.htm
[2009/10/03 12:28:47 | 00,001,294 | ---- | M] () -- C:\Windows\MultiTimer.ini
[2009/10/02 20:01:57 | 25,198,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mrt.exe
[2009/10/02 11:31:19 | 00,011,270 | -HS- | M] () -- C:\Windows\System32\KGyGaAvL.sys
[2009/10/01 10:29:14 | 00,195,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2009/09/27 17:42:43 | 00,796,672 | ---- | M] (Qsc) -- C:\Windows\GPInstall.exe
[2009/09/27 11:00:35 | 00,000,029 | ---- | M] () -- C:\Windows\DEBUGSM.INI
========== Files - No Company Name ==========
[2009/10/24 09:42:15 | 00,000,822 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/10/23 20:50:49 | 00,001,534 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091023_205046.reg
[2009/10/23 19:49:17 | 00,000,380 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091023_194913.reg
[2009/10/23 15:08:38 | 00,022,222 | ---- | C] () -- C:\Users\Gerard\Desktop\CA20091023_1500.odt
[2009/10/23 11:15:10 | 00,036,619 | ---- | C] () -- C:\Users\Gerard\Desktop\index.pdf
[2009/10/22 12:58:15 | 00,000,304 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091022_125813.reg
[2009/10/22 11:54:19 | 00,045,114 | ---- | C] () -- C:\Users\Gerard\Desktop\ADHERENTS 2009-2010(2).pdf
[2009/10/21 12:31:28 | 00,003,360 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091021_123123.reg
[2009/10/16 20:51:19 | 00,044,925 | ---- | C] () -- C:\Users\Gerard\Desktop\ADHERENTS 2009-2010.pdf
[2009/10/15 10:54:37 | 00,003,252 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091015_105429.reg
[2009/10/15 09:37:16 | 00,000,967 | ---- | C] () -- C:\Users\Public\Desktop\PicturesToExe 6.021.lnk
[2009/10/14 07:12:46 | 00,000,682 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091014_071244.reg
[2009/10/13 18:44:01 | 00,000,304 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091013_184359.reg
[2009/10/13 18:32:49 | 00,108,683 | ---- | C] () -- C:\Users\Gerard\Desktop\image_1.jpg
[2009/10/10 17:06:05 | 00,000,304 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091010_170603.reg
[2009/10/10 16:05:18 | 00,001,130 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091010_160515.reg
[2009/10/10 16:04:47 | 00,021,856 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091010_160444.reg
[2009/10/10 15:39:55 | 00,001,602 | ---- | C] () -- C:\Users\Gerard\Desktop\DivX Movies.lnk
[2009/10/10 10:44:05 | 00,000,359 | ---- | C] () -- C:\Users\Gerard\Desktop\Contacts.lnk
[2009/09/27 17:42:43 | 00,008,784 | ---- | C] () -- C:\Windows\F_France.gpl
[2009/09/27 11:00:35 | 00,000,029 | ---- | C] () -- C:\Windows\DEBUGSM.INI
[2009/09/12 22:07:34 | 00,000,000 | ---- | C] () -- C:\Windows\YASolitaire.INI
[2009/07/24 10:07:19 | 00,000,108 | ---- | C] () -- C:\Windows\WFT-E2Utility.INI
[2009/07/11 21:04:40 | 00,001,294 | ---- | C] () -- C:\Windows\MultiTimer.ini
[2009/06/27 10:30:57 | 00,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/04/02 18:55:34 | 00,059,904 | ---- | C] () -- C:\Windows\System32\zlib1.dll
[2009/04/02 17:53:47 | 00,000,052 | ---- | C] () -- C:\Windows\Relax.ini
[2009/03/24 11:46:32 | 04,215,884 | -H-- | C] () -- C:\Users\Gerard\AppData\Local\IconCache.db
[2009/03/02 22:59:01 | 00,000,088 | RHS- | C] () -- C:\ProgramData\F8D6994E2E.sys
[2009/03/02 22:59:00 | 00,002,828 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2009/01/05 21:44:29 | 00,001,704 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\mdb.bin
[2008/12/18 00:25:31 | 00,025,433 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\mdbu.bin
[2008/11/12 11:56:40 | 00,007,314 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\UserTile.png
[2008/07/10 09:06:05 | 00,000,691 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\GetValue.vbs
[2008/07/10 09:06:05 | 00,000,035 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\SetValue.bat
[2008/07/07 16:51:51 | 00,000,290 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2008/06/27 11:45:04 | 00,015,190 | ---- | C] () -- C:\Windows\M3000Twn.ini
[2008/05/06 22:33:55 | 00,000,680 | ---- | C] () -- C:\Users\Gerard\AppData\Local\d3d9caps.dat
[2008/02/01 13:14:15 | 00,000,665 | ---- | C] () -- C:\Windows\CEL.INI
[2008/02/01 13:14:15 | 00,000,038 | ---- | C] () -- C:\Windows\progman.ini
[2008/01/26 13:13:35 | 00,000,025 | ---- | C] () -- C:\Windows\CDE80211_10100.ini
[2008/01/26 12:14:20 | 00,000,097 | ---- | C] () -- C:\Windows\System32\PICSDK.ini
[2008/01/26 12:08:33 | 00,000,025 | ---- | C] () -- C:\Windows\CDE DX9400FDEFGIPS.ini
[2008/01/20 22:21:47 | 00,000,031 | ---- | C] () -- C:\Windows\e2eSoft.ini
[2008/01/20 19:16:16 | 00,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2008/01/20 16:19:42 | 00,000,088 | RHS- | C] () -- C:\Windows\System32\F8D6994E2E.sys
[2007/12/18 23:22:00 | 00,034,308 | ---- | C] () -- C:\Windows\System32\BASSMOD.dll
[2007/12/10 19:35:07 | 00,000,037 | ---- | C] () -- C:\Windows\DeliveryReader.INI
[2007/12/03 15:58:38 | 00,020,480 | ---- | C] () -- C:\Windows\System32\ptevideo.dll
[2007/11/13 13:33:30 | 00,011,268 | ---- | C] () -- C:\ProgramData\LUUnInstall.LiveUpdate
[2007/10/19 13:53:56 | 00,524,288 | ---- | C] () -- C:\Windows\System32\lame_enc.dll
[2007/10/05 21:03:52 | 00,000,025 | ---- | C] () -- C:\Windows\System32\lsrc.dll
[2007/09/29 12:20:18 | 00,000,059 | ---- | C] () -- C:\Windows\ANS2000.INI
[2007/09/29 12:20:18 | 00,000,020 | -H-- | C] () -- C:\Windows\akebook.ini
[2007/09/29 12:20:18 | 00,000,004 | -H-- | C] () -- C:\Windows\a3kebook.ini
[2007/09/20 15:29:12 | 00,000,094 | ---- | C] () -- C:\Users\Gerard\AppData\Local\fusioncache.dat
[2007/09/18 10:00:02 | 00,000,056 | RHS- | C] () -- C:\Windows\System32\2E4E99D6F8.sys
[2007/08/20 21:06:48 | 00,000,134 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\nero_photoshow_express_4_eu.txt
[2007/08/20 20:24:36 | 00,000,067 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\nero_photoshow_express_45_efigs_eu.txt
[2007/08/20 19:44:55 | 00,006,411 | ---- | C] () -- C:\Windows\mgxoschk.ini
[2007/07/26 23:25:03 | 00,091,536 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\GDIPFONTCACHEV1.DAT
[2007/07/26 20:59:38 | 00,000,382 | ---- | C] () -- C:\Windows\ODBC.INI
[2007/07/25 18:21:24 | 00,011,270 | -HS- | C] () -- C:\Windows\System32\KGyGaAvL.sys
[2007/07/25 18:21:24 | 00,000,088 | RHS- | C] () -- C:\Windows\System32\F794E0FD01.sys
[2007/07/23 21:56:21 | 00,001,971 | ---- | C] () -- C:\Windows\Media9Il.INI
[2007/07/23 21:03:18 | 00,000,000 | ---- | C] () -- C:\Windows\OpPrintServer.INI
[2007/07/21 19:04:16 | 00,524,288 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2007/07/21 19:04:15 | 00,139,264 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2007/07/21 19:04:13 | 00,000,547 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll.manifest
[2007/07/21 19:04:12 | 00,010,752 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2007/07/17 09:21:50 | 00,015,576 | ---- | C] () -- C:\Windows\System32\drivers\usbbc.sys
[2007/07/17 09:21:49 | 00,003,953 | ---- | C] () -- C:\Windows\System32\coinst.dll
[2007/07/14 02:30:37 | 00,015,190 | ---- | C] () -- C:\Windows\M2000T07.ini
[2007/07/13 23:01:09 | 00,191,488 | ---- | C] () -- C:\Users\Gerard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/07/13 18:02:04 | 00,076,584 | ---- | C] () -- C:\Windows\System32\drivers\int15.sys
[2007/07/13 18:02:04 | 00,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2007/07/13 18:00:49 | 00,065,536 | ---- | C] () -- C:\Windows\System32\NATTraversal.dll
[2007/07/13 17:53:05 | 00,000,037 | ---- | C] () -- C:\Windows\Acer.ini
[2007/07/13 17:52:40 | 00,035,416 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\nvModes.001
[2007/07/13 17:52:38 | 00,035,416 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\nvModes.dat
[2007/07/13 17:51:03 | 00,098,032 | ---- | C] () -- C:\Users\Gerard\AppData\Local\GDIPFONTCACHEV1.DAT
[2007/01/25 03:52:26 | 00,065,536 | ---- | C] () -- C:\Program Files\Common Files\NMSAccessU.exe
[2007/01/24 13:05:16 | 00,029,184 | ---- | C] () -- C:\Windows\System32\kWab.dll
[2007/01/02 18:54:14 | 00,266,240 | ---- | C] () -- C:\Windows\System32\NotesExtmngr.dll
[2007/01/02 18:53:54 | 00,204,800 | ---- | C] () -- C:\Windows\System32\NotesActnMenu.dll
[2007/01/02 18:53:20 | 00,086,016 | ---- | C] () -- C:\Windows\System32\MSNSpook.dll
[2007/01/02 18:52:40 | 00,037,376 | ---- | C] () -- C:\Windows\System32\MsnChatHook_org.dll
[2007/01/02 18:52:28 | 00,028,672 | ---- | C] () -- C:\Windows\System32\BatchCrypto.dll
[2007/01/02 18:52:26 | 00,073,728 | ---- | C] () -- C:\Windows\System32\APISlice.dll
[2007/01/02 18:52:18 | 00,063,488 | ---- | C] () -- C:\Windows\System32\ShowErrMsg.dll
[2006/12/25 15:44:48 | 00,022,016 | ---- | C] () -- C:\Windows\System32\MailFormat_U.dll
[2006/12/10 22:10:33 | 00,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll
[2006/12/10 12:29:18 | 00,331,776 | ---- | C] () -- C:\Windows\System32\ScrollBarLib.dll
[2006/12/10 12:17:45 | 00,013,952 | ---- | C] () -- C:\Windows\System32\drivers\UBHelper.sys
[2006/12/10 12:16:35 | 00,198,144 | ---- | C] () -- C:\Windows\System32\_psisdecd.dll
[2006/12/02 09:24:39 | 00,872,448 | ---- | C] () -- C:\Windows\iconv.dll
[2006/12/02 09:24:39 | 00,743,424 | ---- | C] () -- C:\Windows\libxml2.dll
[2006/12/02 09:24:39 | 00,204,800 | ---- | C] () -- C:\Windows\Capsule.dll
[2006/12/02 09:24:39 | 00,000,041 | ---- | C] () -- C:\Windows\PreLaunch.ini
[2006/12/02 09:24:38 | 01,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2006/11/02 14:50:50 | 00,000,174 | -HS- | C] () -- C:\Program Files\desktop.ini
[2006/11/02 14:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 12:25:21 | 00,061,440 | ---- | C] () -- C:\Windows\System32\igfxTMM.dll
[2006/11/02 12:23:31 | 00,000,288 | ---- | C] () -- C:\Windows\win.ini
[2006/11/02 12:23:31 | 00,000,277 | ---- | C] () -- C:\Windows\system.ini
[2006/11/02 09:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2005/06/11 11:47:00 | 00,045,056 | ---- | C] () -- C:\Windows\System32\fpprintmon.dll
[2005/03/14 14:38:28 | 00,000,469 | ---- | C] () -- C:\Windows\bdoscandellang.ini
[2004/10/27 00:39:05 | 03,375,104 | ---- | C] () -- C:\Windows\System32\qt-mt331.dll
[2002/06/06 02:01:58 | 00,029,696 | ---- | C] () -- C:\Windows\System32\asutl8.dll
[2002/03/21 15:39:02 | 00,073,728 | ---- | C] () -- C:\Windows\System32\UNACEV2.DLL
[2001/12/26 16:12:30 | 00,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001/09/03 23:46:38 | 00,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001/07/30 16:33:56 | 00,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001/07/23 22:04:36 | 00,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll
[1999/03/17 15:24:26 | 00,000,136 | ---- | C] () -- C:\Windows\System32\mstraps.dll
========== Alternate Data Streams ==========
@Alternate Data Stream - 99 bytes -> C:\ProgramData\TEMP:0F8F5844
@Alternate Data Stream - 1240 bytes -> C:\ProgramData\Microsoft:CrFS6XYA7pju0y73nCQle
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:B623B5B8
@Alternate Data Stream - 1159 bytes -> C:\ProgramData\Microsoft:pavNxcPO6nIZtHEdFmIBzX0I
@Alternate Data Stream - 1149 bytes -> C:\Users\Gerard\AppData\Local\Temp:LUqGZvRFHaFyiqbjVAimNaOne4f
@Alternate Data Stream - 1140 bytes -> C:\Program Files\Common Files\System:3Q5qu5nwFk5ud1i9I5Vh47dfyqs
@Alternate Data Stream - 1041 bytes -> C:\ProgramData\Microsoft:vfXiOBYkhAfpZLSrlQw
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:9F683177
<End>
--------------------------
O1 HOSTS File: (791 bytes) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Download Manager Browser Helper Object) - {19C8E43B-07B3-49CB-BFFC-6777B593E6F8} - C:\Programmes\Common Files\fluxDVD\Download Manager\XEBDLHelper.dll File not found
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll (Microsoft Corporation)
O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programmes\Spybot - Search & Destroy\SDHelper.dll File not found
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live ID) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKLM\..\Toolbar: (Systran40premi.IEPlugIn) - {CFB25594-4D5F-11D6-AB7B-00B0D094B576} - C:\Program Files\Systran\4_0\Premium\IEPlugIn.dll (SYSTRAN)
O3 - HKLM\..\Toolbar: (Veoh Browser Plug-in) - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll (Veoh Networks Inc)
O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar avec bloqueur de fenêtres pop-up) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [Google Quick Search Box] C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe (Google Inc.)
O4 - HKLM..\Run: [HomePlayer] C:\Program Files\HomePlayer\HomePlayer.exe ()
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdc.exe (Microsoft Corporation)
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD)
O4 - HKU\.DEFAULT..\Run: [msnmsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\Run: [msnmsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [EPSON Stylus DX9400F Series] C:\Windows\System32\spool\DRIVERS\W32X86\3\E_FATICFE.EXE (SEIKO EPSON CORPORATION)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [Eraser] C:\Program Files\Eraser\Eraser.exe (The Eraser Project)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [imprimante wifi] C:\Windows\System32\spool\DRIVERS\W32X86\3\E_FATICFE.EXE (SEIKO EPSON CORPORATION)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [MediaDICO9Il] C:\Program Files\Micro Application\9 Dictionnaires Illustrés\LanceMediaDICO9Il.exe (L'Aventure Multimedia)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [MsnMsgr] C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [RocketDock] H:\Programmes\RocketDock-v1.3.5\RocketDock.exe File not found
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [Stylus DX9400F(Réseau)] C:\Windows\System32\spool\DRIVERS\W32X86\3\E_FATICFE.EXE (SEIKO EPSON CORPORATION)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000..\Run: [Veoh] C:\Program Files\Veoh Networks\Veoh\VeohClient.exe (Veoh Networks)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: BindDirectlyToPropertySetStorage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data]
O7 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36
O7 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm ()
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm ()
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe ()
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programmes\Spybot - Search & Destroy\SDHelper.dll File not found
O9 - Extra Button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\napinsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: canalplay.com ([]* in Trusted sites)
O15 - HKLM\..Trusted Domains: canalplusactive.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\..Trusted Domains: canalplay.com ([]* in Sites de confiance)
O15 - HKU\S-1-5-21-3323605061-1442029127-536464899-1000\..Trusted Domains: canalplusactive.com ([]* in Sites de confiance)
O16 - DPF: {051D0E35-F4E3-4C8D-B411-AB0875F4C683} http://install.anark.com/client/version ... Client.cab (Anark Client 4.0 ActiveX Control)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} http://dev.srtest.com/srl_bin/sysreqlab3.cab (System Requirements Lab Class)
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} http://housecall65.trendmicro.com/house ... hcImpl.cab (Trend Micro ActiveX Scan Agent 6.6)
O16 - DPF: {2EDF75C0-5ABD-49f9-BAB6-220476A32034} http://intel-drv-cdn.systemrequirements ... b_srlx.cab (System Requirements Lab Class)
O16 - DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} http://photoservice.fujicolor.de/ips-op ... anvasx.cab (JordanUploader Class)
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/v ... .2.4.1.cab (DLM Control)
O16 - DPF: {5D2CF9D0-113A-476B-986F-288B54571614} http://www.devalvr.com/instalacion/plug ... plugin.php (DevalVR Control)
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} http://www.extrafilm.fr/ImageUploader5.cab (Image Uploader Control)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://www.zebulon.fr/scan8/oscan8.cab (Reg Error: Key error.)
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} http://chez-gercha.spaces.live.com/Phot ... dfr-fr.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} http://www.sibelius.com/download/softwa ... Plugin.cab (Reg Error: Key error.)
O16 - DPF: {B9907873-6560-4A36-B76B-9DADE84A7F55} http://www.fnacmusic.com/telechargement ... sicDnl.CAB (Reg Error: Key error.)
O16 - DPF: {BA162249-F2C5-4851-8ADC-FC58CB424243} http://copainsdavant.linternaute.com/ht ... oader5.cab (Reg Error: Key error.)
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} http://ax.emsisoft.com/asquared.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CB50428B-657F-47DF-9B32-671F82AA73F7} http://www.photodex.com/pxplay.cab (Photodex Presenter AX control)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programmes\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll File not found
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programmes\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll File not found
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\x-sdch {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O20 - AppInit_DLLs: (eNetHook.dll) - C:\Windows\System32\eNetHook.dll (acer)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\Explorer.exe (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/12/10 12:17:28 | 00,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2008/07/11 17:50:04 | 00,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2008/07/11 17:50:04 | 00,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ]
O33 - MountPoints2\{290c9b32-0e69-11de-9c97-0016d353e0d9}\Shell\AutoRun\command - "" = H:\start\host\PStart.exe -- File not found
O33 - MountPoints2\{95b76a40-c783-11dc-9a06-0016d353e0d9}\Shell\Auto\command - "" = C:\Windows\System32\cmd.exe -- [2008/01/19 09:33:04 | 00,318,976 | ---- | M] (Microsoft Corporation)
O33 - MountPoints2\{cb8e31be-076e-11de-9fc8-0016d353e0d9}\Shell\AutoRun\command - "" = H:\start\host\PStart.exe -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found
========== Files/Folders - Created Within 30 Days ==========
[2009/10/13 18:53:40 | 00,000,000 | ---D | C] -- C:\ProgramData\Avira
[2009/10/24 09:42:09 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009/10/22 12:58:49 | 00,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2009/10/21 11:26:14 | 00,000,000 | ---D | C] -- C:\ProgramData\McAfee Security Scan
[1 C:\Users\Gerard\AppData\Roaming\*.tmp files]
[2009/10/18 14:50:08 | 00,000,000 | ---D | C] -- C:\Users\Gerard\AppData\Roaming\codeblocks
[2009/10/13 13:31:12 | 00,000,000 | ---D | C] -- C:\Users\Gerard\AppData\Roaming\HouseCall 6.6
[2009/10/24 09:42:17 | 00,000,000 | ---D | C] -- C:\Users\Gerard\AppData\Roaming\Malwarebytes
[2009/10/22 21:30:04 | 00,000,000 | ---D | C] -- C:\Users\Gerard\AppData\Roaming\VirtuaWin
[1 C:\Users\Gerard\AppData\Roaming\*.tmp files]
[2009/10/21 12:11:35 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2009/10/13 18:53:40 | 00,000,000 | ---D | C] -- C:\Program Files\Avira
[2009/10/18 14:49:34 | 00,000,000 | ---D | C] -- C:\Program Files\CodeBlocks
[2009/09/27 17:42:57 | 00,000,000 | ---D | C] -- C:\Program Files\denouvel
[2009/09/25 17:08:56 | 00,000,000 | ---D | C] -- C:\Program Files\HomePlayer
[2009/10/24 09:42:08 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/10/10 17:13:12 | 00,000,000 | ---D | C] -- C:\Program Files\Maxthon3
[2009/10/22 21:29:58 | 00,000,000 | ---D | C] -- C:\Program Files\VirtuaWin
[2009/10/24 09:42:12 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009/10/24 09:42:09 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009/10/24 09:38:19 | 00,521,728 | ---- | C] (OldTimer Tools) -- C:\Users\Gerard\Desktop\OTL.exe
[2009/10/23 20:58:08 | 01,925,024 | ---- | C] (Adobe Systems Incorporated) -- C:\Users\Gerard\Desktop\Install Flash Player 10 Plugin.exe
[2009/10/23 20:57:55 | 01,962,544 | ---- | C] (Adobe Systems Incorporated) -- C:\Users\Gerard\Desktop\Install Flash Player 10 ActiveX.exe
[2009/10/21 12:11:34 | 00,000,000 | -HSD | C] -- C:\Config.Msi
[2009/10/21 09:39:34 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2009/10/21 09:39:34 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2009/10/21 09:39:34 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2009/10/20 16:37:08 | 00,000,000 | ---D | C] -- C:\Users\Gerard\Desktop\Photoshop CS
[2009/10/20 09:27:31 | 02,421,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2009/10/20 09:27:31 | 01,929,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuaueng.dll
[2009/10/20 09:27:31 | 00,053,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuauclt.exe
[2009/10/20 09:27:31 | 00,044,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2009/10/20 09:27:00 | 00,575,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2009/10/20 09:27:00 | 00,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2009/10/20 09:27:00 | 00,035,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2009/10/20 09:26:50 | 00,171,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2009/10/20 09:26:50 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2009/10/16 11:03:37 | 00,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msv1_0.dll
[2009/10/16 11:03:24 | 03,600,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2009/10/16 11:03:24 | 03,548,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2009/10/16 11:02:45 | 05,940,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll
[2009/10/16 11:02:42 | 11,069,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll
[2009/10/16 11:02:40 | 01,985,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll
[2009/10/16 11:02:40 | 01,208,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
[2009/10/16 11:02:40 | 00,916,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
[2009/10/16 11:02:40 | 00,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2009/10/16 11:02:40 | 00,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2009/10/16 11:02:40 | 00,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\occache.dll
[2009/10/16 11:02:39 | 01,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2009/10/16 11:02:39 | 00,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2009/10/16 11:02:39 | 00,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2009/10/16 11:02:38 | 01,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2009/10/16 11:02:38 | 00,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2009/10/16 11:02:38 | 00,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2009/10/16 11:02:38 | 00,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2009/10/16 11:02:38 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2009/10/16 11:02:38 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2009/10/16 11:02:38 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2009/10/16 11:02:38 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2009/10/16 11:02:38 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2009/10/16 11:02:30 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msasn1.dll
[2009/10/16 11:02:23 | 00,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\srv2.sys
[2009/10/16 11:02:18 | 00,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2009/10/13 18:53:42 | 00,096,104 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avipbb.sys
[2009/10/13 18:53:41 | 00,055,656 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avgntflt.sys
[2009/10/13 16:57:18 | 00,102,664 | ---- | C] (Trend Micro Inc.) -- C:\Windows\System32\drivers\tmcomm.sys
[2009/10/13 13:31:11 | 00,000,000 | ---D | C] -- C:\Windows\System32\HouseCall 6.6
[2009/10/03 10:38:18 | 00,195,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2009/09/27 17:42:42 | 00,796,672 | ---- | C] (Qsc) -- C:\Windows\GPInstall.exe
[2009/09/24 20:57:35 | 00,000,000 | ---D | C] -- C:\Users\Gerard\Documents\EpsonNet Config
[2006/12/10 12:29:16 | 00,053,248 | ---- | C] ( ) -- C:\Windows\System32\Interop.Shell32.dll
[2004/12/13 08:57:36 | 00,065,536 | ---- | C] ( ) -- C:\Windows\System32\RCCOLLAB.DLL
[2004/11/29 16:08:30 | 00,127,059 | ---- | C] ( ) -- C:\Windows\System32\DSLLK189.dll
========== Files - Modified Within 30 Days ==========
[1 C:\Windows\*.tmp files]
[1 C:\Users\Gerard\AppData\Roaming\*.tmp files]
[2009/10/24 10:28:46 | 00,001,000 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2009/10/24 10:26:36 | 00,352,615 | -H-- | M] () -- C:\Windows\System32\drivers\vsconfig.xml
[2009/10/24 10:26:25 | 00,001,050 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2009/10/24 10:26:23 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/10/24 10:26:21 | 00,003,296 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009/10/24 10:26:21 | 00,003,296 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009/10/24 10:26:13 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/10/24 10:26:07 | 21,460,91008 | -HS- | M] () -- C:\hiberfil.sys
[2009/10/24 10:23:58 | 04,215,884 | -H-- | M] () -- C:\Users\Gerard\AppData\Local\IconCache.db
[2009/10/24 10:05:01 | 00,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2009/10/24 09:42:15 | 00,000,822 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/10/24 09:37:54 | 00,521,728 | ---- | M] (OldTimer Tools) -- C:\Users\Gerard\Desktop\OTL.exe
[2009/10/23 20:50:53 | 00,001,534 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091023_205046.reg
[2009/10/23 19:49:18 | 00,000,380 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091023_194913.reg
[2009/10/23 18:10:36 | 00,035,416 | ---- | M] () -- C:\Users\Gerard\AppData\Roaming\nvModes.001
[2009/10/23 16:02:44 | 00,000,420 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{0A37CAE0-30C9-4127-AB71-691537B0F7BA}.job
[2009/10/23 15:08:40 | 00,022,222 | ---- | M] () -- C:\Users\Gerard\Desktop\CA20091023_1500.odt
[2009/10/23 11:15:10 | 00,036,619 | ---- | M] () -- C:\Users\Gerard\Desktop\index.pdf
[2009/10/22 12:58:17 | 00,000,304 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091022_125813.reg
[2009/10/22 11:54:20 | 00,045,114 | ---- | M] () -- C:\Users\Gerard\Desktop\ADHERENTS 2009-2010(2).pdf
[2009/10/21 12:31:33 | 00,003,360 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091021_123123.reg
[2009/10/20 22:11:44 | 01,497,408 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009/10/20 22:11:44 | 00,678,956 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2009/10/20 22:11:44 | 00,595,506 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/10/20 22:11:44 | 00,128,004 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2009/10/20 22:11:44 | 00,104,940 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/10/20 10:19:40 | 00,073,312 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\drivers\adfs.sys
[2009/10/16 20:51:20 | 00,044,925 | ---- | M] () -- C:\Users\Gerard\Desktop\ADHERENTS 2009-2010.pdf
[2009/10/15 10:54:41 | 00,003,252 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091015_105429.reg
[2009/10/15 09:37:16 | 00,000,967 | ---- | M] () -- C:\Users\Public\Desktop\PicturesToExe 6.021.lnk
[2009/10/14 07:12:51 | 00,000,682 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091014_071244.reg
[2009/10/13 18:57:03 | 00,055,656 | ---- | M] (Avira GmbH) -- C:\Windows\System32\drivers\avgntflt.sys
[2009/10/13 18:57:03 | 00,028,520 | ---- | M] (Avira GmbH) -- C:\Windows\System32\drivers\ssmdrv.sys
[2009/10/13 18:44:03 | 00,000,304 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091013_184359.reg
[2009/10/13 18:32:50 | 00,108,683 | ---- | M] () -- C:\Users\Gerard\Desktop\image_1.jpg
[2009/10/13 11:39:44 | 00,000,290 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2009/10/10 17:06:07 | 00,000,304 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091010_170603.reg
[2009/10/10 16:05:22 | 00,001,130 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091010_160515.reg
[2009/10/10 16:04:55 | 00,021,856 | ---- | M] () -- C:\Users\Gerard\Documents\cc_20091010_160444.reg
[2009/10/10 15:39:55 | 00,001,602 | ---- | M] () -- C:\Users\Gerard\Desktop\DivX Movies.lnk
[2009/10/10 15:19:38 | 00,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2009/10/10 11:05:17 | 00,007,314 | ---- | M] () -- C:\Users\Gerard\AppData\Roaming\UserTile.png
[2009/10/10 10:44:17 | 00,000,359 | ---- | M] () -- C:\Users\Gerard\Desktop\Contacts.lnk
[2009/10/03 19:37:11 | 00,191,488 | ---- | M] () -- C:\Users\Gerard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/10/03 16:42:24 | 00,171,125 | ---- | M] () -- C:\Users\Gerard\Desktop\Favoris.htm
[2009/10/03 12:28:47 | 00,001,294 | ---- | M] () -- C:\Windows\MultiTimer.ini
[2009/10/02 20:01:57 | 25,198,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mrt.exe
[2009/10/02 11:31:19 | 00,011,270 | -HS- | M] () -- C:\Windows\System32\KGyGaAvL.sys
[2009/10/01 10:29:14 | 00,195,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2009/09/27 17:42:43 | 00,796,672 | ---- | M] (Qsc) -- C:\Windows\GPInstall.exe
[2009/09/27 11:00:35 | 00,000,029 | ---- | M] () -- C:\Windows\DEBUGSM.INI
========== Files - No Company Name ==========
[2009/10/24 09:42:15 | 00,000,822 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/10/23 20:50:49 | 00,001,534 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091023_205046.reg
[2009/10/23 19:49:17 | 00,000,380 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091023_194913.reg
[2009/10/23 15:08:38 | 00,022,222 | ---- | C] () -- C:\Users\Gerard\Desktop\CA20091023_1500.odt
[2009/10/23 11:15:10 | 00,036,619 | ---- | C] () -- C:\Users\Gerard\Desktop\index.pdf
[2009/10/22 12:58:15 | 00,000,304 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091022_125813.reg
[2009/10/22 11:54:19 | 00,045,114 | ---- | C] () -- C:\Users\Gerard\Desktop\ADHERENTS 2009-2010(2).pdf
[2009/10/21 12:31:28 | 00,003,360 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091021_123123.reg
[2009/10/16 20:51:19 | 00,044,925 | ---- | C] () -- C:\Users\Gerard\Desktop\ADHERENTS 2009-2010.pdf
[2009/10/15 10:54:37 | 00,003,252 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091015_105429.reg
[2009/10/15 09:37:16 | 00,000,967 | ---- | C] () -- C:\Users\Public\Desktop\PicturesToExe 6.021.lnk
[2009/10/14 07:12:46 | 00,000,682 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091014_071244.reg
[2009/10/13 18:44:01 | 00,000,304 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091013_184359.reg
[2009/10/13 18:32:49 | 00,108,683 | ---- | C] () -- C:\Users\Gerard\Desktop\image_1.jpg
[2009/10/10 17:06:05 | 00,000,304 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091010_170603.reg
[2009/10/10 16:05:18 | 00,001,130 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091010_160515.reg
[2009/10/10 16:04:47 | 00,021,856 | ---- | C] () -- C:\Users\Gerard\Documents\cc_20091010_160444.reg
[2009/10/10 15:39:55 | 00,001,602 | ---- | C] () -- C:\Users\Gerard\Desktop\DivX Movies.lnk
[2009/10/10 10:44:05 | 00,000,359 | ---- | C] () -- C:\Users\Gerard\Desktop\Contacts.lnk
[2009/09/27 17:42:43 | 00,008,784 | ---- | C] () -- C:\Windows\F_France.gpl
[2009/09/27 11:00:35 | 00,000,029 | ---- | C] () -- C:\Windows\DEBUGSM.INI
[2009/09/12 22:07:34 | 00,000,000 | ---- | C] () -- C:\Windows\YASolitaire.INI
[2009/07/24 10:07:19 | 00,000,108 | ---- | C] () -- C:\Windows\WFT-E2Utility.INI
[2009/07/11 21:04:40 | 00,001,294 | ---- | C] () -- C:\Windows\MultiTimer.ini
[2009/06/27 10:30:57 | 00,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/04/02 18:55:34 | 00,059,904 | ---- | C] () -- C:\Windows\System32\zlib1.dll
[2009/04/02 17:53:47 | 00,000,052 | ---- | C] () -- C:\Windows\Relax.ini
[2009/03/24 11:46:32 | 04,215,884 | -H-- | C] () -- C:\Users\Gerard\AppData\Local\IconCache.db
[2009/03/02 22:59:01 | 00,000,088 | RHS- | C] () -- C:\ProgramData\F8D6994E2E.sys
[2009/03/02 22:59:00 | 00,002,828 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2009/01/05 21:44:29 | 00,001,704 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\mdb.bin
[2008/12/18 00:25:31 | 00,025,433 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\mdbu.bin
[2008/11/12 11:56:40 | 00,007,314 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\UserTile.png
[2008/07/10 09:06:05 | 00,000,691 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\GetValue.vbs
[2008/07/10 09:06:05 | 00,000,035 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\SetValue.bat
[2008/07/07 16:51:51 | 00,000,290 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2008/06/27 11:45:04 | 00,015,190 | ---- | C] () -- C:\Windows\M3000Twn.ini
[2008/05/06 22:33:55 | 00,000,680 | ---- | C] () -- C:\Users\Gerard\AppData\Local\d3d9caps.dat
[2008/02/01 13:14:15 | 00,000,665 | ---- | C] () -- C:\Windows\CEL.INI
[2008/02/01 13:14:15 | 00,000,038 | ---- | C] () -- C:\Windows\progman.ini
[2008/01/26 13:13:35 | 00,000,025 | ---- | C] () -- C:\Windows\CDE80211_10100.ini
[2008/01/26 12:14:20 | 00,000,097 | ---- | C] () -- C:\Windows\System32\PICSDK.ini
[2008/01/26 12:08:33 | 00,000,025 | ---- | C] () -- C:\Windows\CDE DX9400FDEFGIPS.ini
[2008/01/20 22:21:47 | 00,000,031 | ---- | C] () -- C:\Windows\e2eSoft.ini
[2008/01/20 19:16:16 | 00,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2008/01/20 16:19:42 | 00,000,088 | RHS- | C] () -- C:\Windows\System32\F8D6994E2E.sys
[2007/12/18 23:22:00 | 00,034,308 | ---- | C] () -- C:\Windows\System32\BASSMOD.dll
[2007/12/10 19:35:07 | 00,000,037 | ---- | C] () -- C:\Windows\DeliveryReader.INI
[2007/12/03 15:58:38 | 00,020,480 | ---- | C] () -- C:\Windows\System32\ptevideo.dll
[2007/11/13 13:33:30 | 00,011,268 | ---- | C] () -- C:\ProgramData\LUUnInstall.LiveUpdate
[2007/10/19 13:53:56 | 00,524,288 | ---- | C] () -- C:\Windows\System32\lame_enc.dll
[2007/10/05 21:03:52 | 00,000,025 | ---- | C] () -- C:\Windows\System32\lsrc.dll
[2007/09/29 12:20:18 | 00,000,059 | ---- | C] () -- C:\Windows\ANS2000.INI
[2007/09/29 12:20:18 | 00,000,020 | -H-- | C] () -- C:\Windows\akebook.ini
[2007/09/29 12:20:18 | 00,000,004 | -H-- | C] () -- C:\Windows\a3kebook.ini
[2007/09/20 15:29:12 | 00,000,094 | ---- | C] () -- C:\Users\Gerard\AppData\Local\fusioncache.dat
[2007/09/18 10:00:02 | 00,000,056 | RHS- | C] () -- C:\Windows\System32\2E4E99D6F8.sys
[2007/08/20 21:06:48 | 00,000,134 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\nero_photoshow_express_4_eu.txt
[2007/08/20 20:24:36 | 00,000,067 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\nero_photoshow_express_45_efigs_eu.txt
[2007/08/20 19:44:55 | 00,006,411 | ---- | C] () -- C:\Windows\mgxoschk.ini
[2007/07/26 23:25:03 | 00,091,536 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\GDIPFONTCACHEV1.DAT
[2007/07/26 20:59:38 | 00,000,382 | ---- | C] () -- C:\Windows\ODBC.INI
[2007/07/25 18:21:24 | 00,011,270 | -HS- | C] () -- C:\Windows\System32\KGyGaAvL.sys
[2007/07/25 18:21:24 | 00,000,088 | RHS- | C] () -- C:\Windows\System32\F794E0FD01.sys
[2007/07/23 21:56:21 | 00,001,971 | ---- | C] () -- C:\Windows\Media9Il.INI
[2007/07/23 21:03:18 | 00,000,000 | ---- | C] () -- C:\Windows\OpPrintServer.INI
[2007/07/21 19:04:16 | 00,524,288 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2007/07/21 19:04:15 | 00,139,264 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2007/07/21 19:04:13 | 00,000,547 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll.manifest
[2007/07/21 19:04:12 | 00,010,752 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2007/07/17 09:21:50 | 00,015,576 | ---- | C] () -- C:\Windows\System32\drivers\usbbc.sys
[2007/07/17 09:21:49 | 00,003,953 | ---- | C] () -- C:\Windows\System32\coinst.dll
[2007/07/14 02:30:37 | 00,015,190 | ---- | C] () -- C:\Windows\M2000T07.ini
[2007/07/13 23:01:09 | 00,191,488 | ---- | C] () -- C:\Users\Gerard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/07/13 18:02:04 | 00,076,584 | ---- | C] () -- C:\Windows\System32\drivers\int15.sys
[2007/07/13 18:02:04 | 00,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2007/07/13 18:00:49 | 00,065,536 | ---- | C] () -- C:\Windows\System32\NATTraversal.dll
[2007/07/13 17:53:05 | 00,000,037 | ---- | C] () -- C:\Windows\Acer.ini
[2007/07/13 17:52:40 | 00,035,416 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\nvModes.001
[2007/07/13 17:52:38 | 00,035,416 | ---- | C] () -- C:\Users\Gerard\AppData\Roaming\nvModes.dat
[2007/07/13 17:51:03 | 00,098,032 | ---- | C] () -- C:\Users\Gerard\AppData\Local\GDIPFONTCACHEV1.DAT
[2007/01/25 03:52:26 | 00,065,536 | ---- | C] () -- C:\Program Files\Common Files\NMSAccessU.exe
[2007/01/24 13:05:16 | 00,029,184 | ---- | C] () -- C:\Windows\System32\kWab.dll
[2007/01/02 18:54:14 | 00,266,240 | ---- | C] () -- C:\Windows\System32\NotesExtmngr.dll
[2007/01/02 18:53:54 | 00,204,800 | ---- | C] () -- C:\Windows\System32\NotesActnMenu.dll
[2007/01/02 18:53:20 | 00,086,016 | ---- | C] () -- C:\Windows\System32\MSNSpook.dll
[2007/01/02 18:52:40 | 00,037,376 | ---- | C] () -- C:\Windows\System32\MsnChatHook_org.dll
[2007/01/02 18:52:28 | 00,028,672 | ---- | C] () -- C:\Windows\System32\BatchCrypto.dll
[2007/01/02 18:52:26 | 00,073,728 | ---- | C] () -- C:\Windows\System32\APISlice.dll
[2007/01/02 18:52:18 | 00,063,488 | ---- | C] () -- C:\Windows\System32\ShowErrMsg.dll
[2006/12/25 15:44:48 | 00,022,016 | ---- | C] () -- C:\Windows\System32\MailFormat_U.dll
[2006/12/10 22:10:33 | 00,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll
[2006/12/10 12:29:18 | 00,331,776 | ---- | C] () -- C:\Windows\System32\ScrollBarLib.dll
[2006/12/10 12:17:45 | 00,013,952 | ---- | C] () -- C:\Windows\System32\drivers\UBHelper.sys
[2006/12/10 12:16:35 | 00,198,144 | ---- | C] () -- C:\Windows\System32\_psisdecd.dll
[2006/12/02 09:24:39 | 00,872,448 | ---- | C] () -- C:\Windows\iconv.dll
[2006/12/02 09:24:39 | 00,743,424 | ---- | C] () -- C:\Windows\libxml2.dll
[2006/12/02 09:24:39 | 00,204,800 | ---- | C] () -- C:\Windows\Capsule.dll
[2006/12/02 09:24:39 | 00,000,041 | ---- | C] () -- C:\Windows\PreLaunch.ini
[2006/12/02 09:24:38 | 01,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2006/11/02 14:50:50 | 00,000,174 | -HS- | C] () -- C:\Program Files\desktop.ini
[2006/11/02 14:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 12:25:21 | 00,061,440 | ---- | C] () -- C:\Windows\System32\igfxTMM.dll
[2006/11/02 12:23:31 | 00,000,288 | ---- | C] () -- C:\Windows\win.ini
[2006/11/02 12:23:31 | 00,000,277 | ---- | C] () -- C:\Windows\system.ini
[2006/11/02 09:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2005/06/11 11:47:00 | 00,045,056 | ---- | C] () -- C:\Windows\System32\fpprintmon.dll
[2005/03/14 14:38:28 | 00,000,469 | ---- | C] () -- C:\Windows\bdoscandellang.ini
[2004/10/27 00:39:05 | 03,375,104 | ---- | C] () -- C:\Windows\System32\qt-mt331.dll
[2002/06/06 02:01:58 | 00,029,696 | ---- | C] () -- C:\Windows\System32\asutl8.dll
[2002/03/21 15:39:02 | 00,073,728 | ---- | C] () -- C:\Windows\System32\UNACEV2.DLL
[2001/12/26 16:12:30 | 00,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001/09/03 23:46:38 | 00,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001/07/30 16:33:56 | 00,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001/07/23 22:04:36 | 00,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll
[1999/03/17 15:24:26 | 00,000,136 | ---- | C] () -- C:\Windows\System32\mstraps.dll
========== Alternate Data Streams ==========
@Alternate Data Stream - 99 bytes -> C:\ProgramData\TEMP:0F8F5844
@Alternate Data Stream - 1240 bytes -> C:\ProgramData\Microsoft:CrFS6XYA7pju0y73nCQle
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:B623B5B8
@Alternate Data Stream - 1159 bytes -> C:\ProgramData\Microsoft:pavNxcPO6nIZtHEdFmIBzX0I
@Alternate Data Stream - 1149 bytes -> C:\Users\Gerard\AppData\Local\Temp:LUqGZvRFHaFyiqbjVAimNaOne4f
@Alternate Data Stream - 1140 bytes -> C:\Program Files\Common Files\System:3Q5qu5nwFk5ud1i9I5Vh47dfyqs
@Alternate Data Stream - 1041 bytes -> C:\ProgramData\Microsoft:vfXiOBYkhAfpZLSrlQw
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:9F683177
<End>
Gérard
Mes configs
Mes configs
-
gerard74 - Messages: 30
- Inscription: 23 Mai 2008, 09:31
- Localisation: Thorens-Glières
de gerard74 » 24 Oct 2009, 12:21
Extras.txt
--------------------------------
OTL Extras logfile created on: 24/10/2009 10:45:38 - Run 1
OTL by OldTimer - Version 3.0.22.1 Folder = C:\Users\Gerard\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18828)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,03 Gb Available Physical Memory | 51,71% Memory free
4,00 Gb Paging File | 2,93 Gb Available in Paging File | 73,35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 70,62 Gb Total Space | 16,40 Gb Free Space | 23,22% Space Free | Partition Type: NTFS
Drive D: | 70,61 Gb Total Space | 21,25 Gb Free Space | 30,10% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 971,63 Mb Total Space | 971,61 Mb Free Space | 100,00% Space Free | Partition Type: FAT
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PC-DE-GERARD
Current User Name: Gerard
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation)
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- Reg Error: Key error. File not found
.html [@ = htmlfile] -- C:\Program Files\Maxthon\Maxthon2\Maxthon.exe (Maxthon International ltd.)
.url [@ = InternetShortcut] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Directory [Browse with FastStone] -- "C:\Program Files\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [Browse with Paint Shop Pro 9] -- "C:\Program Files\Jasc Software Inc\Paint Shop Pro 9\\Paint Shop Pro 9.exe" "/Browse" "%L" (Jasc Software, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [Digital Photo Professional] -- C:\Program Files\Canon\Digital Photo Professional\DPPViewer.exe /path "%1" (CANON INC.)
Directory [FastLab] -- "C:\Program Files\FastLab\FastLab\FastLab.exe" "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 1
"InternetSettingsDisableNotify" = 1
"AutoUpdateDisableNotify" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-3323605061-1442029127-536464899-1000]
"EnableNotificationsRef" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{11EA0E69-518D-43C9-88BD-E026623B02D8}" = lport=2869 | protocol=6 | dir=in | app=system |
"{2409451C-AE5F-4BCB-96FC-9D41AC3D2A58}" = lport=139 | protocol=6 | dir=in | app=system |
"{2B981533-0089-44E7-BA8A-DC6DB86F8BCF}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{3CB62501-92FE-4EBE-B14B-B1546361C256}" = rport=137 | protocol=17 | dir=out | app=system |
"{425AF69A-211B-4D04-8110-E95C5B5B4F6D}" = lport=445 | protocol=6 | dir=in | app=system |
"{6C768EF6-B4BA-401D-AD2D-2BD28BFC0A71}" = lport=5353 | protocol=6 | dir=in | name=adobe csi cs4 |
"{862CEF5A-E0B0-42D7-8F7B-B04CAC1B1A5B}" = lport=137 | protocol=17 | dir=in | app=system |
"{9A5D7E4D-9918-47B8-9759-BBEB91CB99D8}" = lport=138 | protocol=17 | dir=in | app=system |
"{9BF9E272-DCFE-4923-A46D-EEE291769838}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{B2E090C0-350C-4773-8716-25CFDC5595D3}" = rport=139 | protocol=6 | dir=out | app=system |
"{C9CF238E-FA0F-4E2D-976F-2003CCE10FBA}" = rport=138 | protocol=17 | dir=out | app=system |
"{DAB8EA60-6D39-4755-9396-6F290CFF17CC}" = rport=445 | protocol=6 | dir=out | app=system |
"{FA2FE459-6D90-4D3A-BEBC-381FC65035E4}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{05B18809-7B2F-4C54-B854-37783B0A8ACA}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{081659FE-5F03-42E3-B488-636242C7D835}" = protocol=6 | dir=in | app=c:\program files\acer arcade deluxe\acer arcade deluxe\mce deluxe suite.exe |
"{0B255FBB-E34F-4EA6-862E-7677BB880806}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{11FA05B7-F304-411F-9A43-61D003F102E9}" = dir=in | app=c:\program files\windows live\messenger\wlcsdk.exe |
"{134AE4C9-06B6-4BEB-867F-BBBE409B5668}" = protocol=17 | dir=in | app=c:\program files\homeplayer\vlc\vlc.exe |
"{1502CD14-99AE-4BEA-BC03-9899A5D8F925}" = protocol=17 | dir=in | app=c:\program files\homeplayer\vlc\vlc.exe |
"{1D20F7C4-0A6A-418E-9BC6-3A2E084D1E1D}" = protocol=6 | dir=in | app=c:\program files\homeplayer\vlc\vlc.exe |
"{20C61CA2-BFE0-421E-9F7A-2E2913FCBB8F}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{2A8BAAA4-1E02-4C0A-BC8A-3882CFC56A0D}" = protocol=17 | dir=in | app=c:\program files\acer arcade deluxe\acer arcade deluxe\mce deluxe suite.exe |
"{31D4ED3C-EB8A-4A8F-9A46-6D592F093FAC}" = protocol=17 | dir=in | app=c:\program files\spotify\spotify.exe |
"{373F55B0-7E0D-4C4A-B3B7-4A98F41EBFDC}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{37D064EE-8ECD-40B3-8395-53E78544077B}" = protocol=6 | dir=in | app=c:\program files\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{38BF1951-6FE1-4B22-8DBE-F0818AD0BCE9}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version4\teamviewer.exe |
"{3D5FA9BD-17B0-44CC-A35A-97417BE77CBC}" = protocol=17 | dir=in | app=c:\program files\lecteur canalplay\canalplayer.exe |
"{4621F147-2A20-4356-9B23-91567B0F450F}" = protocol=6 | dir=in | app=c:\program files\emule\emule.exe |
"{5714F611-36BA-412A-9DD1-523745253F2B}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{58D76075-DF14-4337-B995-2A0796D7249F}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{5941DFF1-BBBE-4B05-8EC3-000943B3FC22}" = protocol=17 | dir=in | app=c:\program files\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{5B1D7FC2-1C89-4E53-88B0-572A902A83FF}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{64C54387-2729-4BDA-BA8B-3570C6B24736}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{6670EC75-56F6-4E23-B20F-F36D09AFEC5B}" = protocol=6 | dir=in | app=c:\program files\spotify\spotify.exe |
"{78386BFD-AF09-4A3F-9B3F-9D17A6886251}" = protocol=17 | dir=in | app=c:\program files\homeplayer\homeplayer.exe |
"{8EE73DFD-7E1E-4C7E-B3FC-748802E1BB30}" = protocol=6 | dir=in | app=c:\program files\homeplayer\vlc\vlc.exe |
"{9937582A-ABB4-4CC0-8E11-F8139B152771}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version4\teamviewer.exe |
"{A2BCF4D7-26FA-4466-97AC-D352A6C0786F}" = protocol=6 | dir=in | app=c:\program files\homeplayer\homeplayer.exe |
"{A80917B0-FF10-475E-ABFD-BF3FB8AB5C73}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{BD6A28A8-F7B3-4C48-A835-D4A9335F60FB}" = protocol=17 | dir=in | app=c:\program files\emule\emule.exe |
"{C3E6C7CB-F0B4-48CB-90FD-5CCEAC981339}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{C60AB125-F1E5-4CF2-A535-408FDE2B9D2A}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{CA3E24D4-99A1-4E07-8AA6-BAAF02D67206}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{E771F373-3039-412F-B2EB-6140265F32D0}" = protocol=17 | dir=in | app=c:\program files\homeplayer\homeplayer.exe |
"{EFBE38D3-B3CB-417D-BE74-63E3C8E9589F}" = protocol=6 | dir=in | app=c:\program files\homeplayer\homeplayer.exe |
"{F56E0A3F-08E6-4923-89CE-FE2A481A38D1}" = protocol=6 | dir=in | app=c:\program files\lecteur canalplay\canalplayer.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{01A2E33A-8ADA-42D1-9173-8F65149E952F}" = Microsoft Money
"{02CA7E66-1AD1-4DE9-BA9E-86A0EEB019C7}" = Extension Système de Microsoft Money
"{03460014-3975-4267-9F39-1DC4745090B7}" = Encyclopédie Microsoft Encarta 2003
"{0405E51E-9582-4207-8F38-AC44201D3808}" = VeohTV BETA
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{098A2A49-7CF3-4F08-A38D-FB879117152A}" = Adobe Color NA Extra Settings CS4
"{0C34B801-6AEC-4667-B053-03A67E2D0415}" = Apple Application Support
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}" = Adobe Color EU Recommended Settings CS4
"{0E4BC542-9CFD-4E97-B586-9F1E5516E7B9}" = Microsoft IntelliPoint 6.1
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}" = OpenOffice.org 3.1
"{10A44844-4465-456E-8C97-80BDD4F68845}" = Assistant de connexion Windows Live ID
"{11316260-6666-467B-AC34-183FCB5D4335}" = Acer Mobility Center Plug-In
"{116FF17B-1A30-4FC2-9B01-5BC5BD46B0B3}" = Acer eLock Management
"{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}" = NTI CD & DVD-Maker
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1F2A5DF9-40E1-4644-ADBD-D80F347BA6C8}" = Gestionnaire pour appareils Windows Mobile
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live
"{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 16
"{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}" = EPSON Scan Assistant
"{2BCE10B0-6471-47F3-B0E0-963F6A788FAF}" = Micro Application - 9 Dictionnaires Illustrés
"{2BD5C305-1B27-4D41-B690-7A61172D2FEB}" = Macromedia Flash 8
"{2EB81825-E9EE-44F4-8F51-1240C3898DC6}" = EPSON File Manager
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C8C9FB3-5FDF-40B4-B314-EAD722728C76}" = Macromedia Extension Manager
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{3E31400D-274E-4647-916C-2CACC3741799}" = EpsonNet Print
"{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{4103778F-5EAF-476E-B3C1-2891EF9A4D8C}" = Kptic
"{46ABBC54-1872-4AA3-95E2-F2C063A63F31}" = Installation Windows Live
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{49F00501-E02F-458F-8AED-85949AB9656F}" = MioTransfer
"{4BB1DCED-84D3-47F9-B718-5947E904593E}" = Acer OrbiCam
"{4C0B83C0-34FB-4750-B831-6BD0516DC18A}" = Hofmann 5.4
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{56F612F8-EC80-4E17-9249-2385B6755A31}" = VMware ThinApp
"{58E5844B-7CE2-413D-83D1-99294BF6C74F}" = Acer ePower Management
"{5A0D71BC-3AB0-4BC1-B241-CABE11EEE731}" = DxO Optics Pro 5.3.4
"{5D2CF9D0-113A-476B-986F-288B54571614}" = DevalVR plugin for Internet Explorer (remove)
"{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail
"{5FD788ED-1A37-4496-9BDD-463F493B27FA}" = Macromedia Dreamweaver 8
"{63A6E9A9-A190-46D4-9430-2DB28654AFD8}" = Norton 360
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{67ADE9AF-5CD9-4089-8825-55DE4B366799}" = NTI Backup NOW! 4.7
"{67E9E6C6-ECEF-4195-B719-8788754297C6}" = inSSIDer
"{67EDD823-135A-4D59-87BD-950616D6E857}" = EPSON Copy Utility 3
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{7088EC18-1D00-43EA-B37B-608E71D88A5D}" = EpsonNet Config V1
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{770F1BEC-2871-4E70-B837-FB8525FFA3B1}" = Windows Live Messenger
"{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}" = Acer ScreenSaver
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{808FAA20-4C3A-11D4-8A57-00201853C903}" = PC-Linq
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}" = Windows Live Call
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A9B8148-DDD7-448F-BD6C-358386D32354}" = Corel Photo Album 6
"{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}" = Macromedia Flash 8 Video Encoder
"{90120000-0020-040C-0000-0000000FF1CE}" = Module de compatibilité pour Microsoft Office System 2007
"{911B040C-6000-11D3-8CFE-0050048383C9}" = Microsoft Word 2002
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94056AE8-EF0F-45E4-A1B4-D754115F8A28}" = Numedia CD-DVD writing as non-admin user
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95264530-5A22-8E7E-FE9D-D63A927BCAEA}" = French App Name
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E}" = Windows Live Sync
"{A254D625} PicturesToExe 6.0 Beta 21_is1" = PicturesToExe 6.0 Beta 21
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}" = QuickTime
"{A90C03D6-08E1-4C59-B93B-6919A6C0AC19}" = TSP_CODEC
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AB6097D9-D722-4987-BD9E-A076E2848EE2}" = Acer Empowering Technology
"{AC76BA86-7AD7-1036-7B44-A92000000001}" = Adobe Reader 9.2 - Français
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
"{AEEAE013-92F1-4515-B278-139F1A692A35}" = Acer eDataSecurity Management
"{AFC02C27-473F-4EC5-9372-30771EFFB35F}" = VC80_CRT_x86
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B72B0ECE-F41E-4EC4-AA37-1A00640680BF}" = Microsoft Sites publics français
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BF839132-BD43-4056-ACBF-4377F4A88E2A}" = Acer ePresentation Management
"{C06554A1-2C1E-4D20-B613-EE62C79927CC}" = Acer eNet Management
"{C251E450-021F-4F12-AA67-8E54589CC39A}" = Gestionnaire de téléchargement MusiClassics
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{CA567AD5-33A4-403D-86D1-EE2D38251951}_is1" = VDownloader 0.77
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC016F21-3970-11DE-B878-005056806466}" = Google Earth
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE65A9A0-9686-45C6-9098-3C9543A412F0}" = Acer eSettings Management
"{CF097717-F174-4144-954A-FBC4BF301036}" = Nero 7 Premium
"{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}" = LiveUpdate Notice (Symantec Corporation)
"{DD1DED37-2486-4F56-8F89-56AA814003F5}" = Acer OrbiCam
"{E1180142-3B31-4DCC-9D27-7AC2D37662BF}" = LightScribe 1.4.124.1
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E38D381A-ABCF-4D97-9D9C-B3A8529DCA15}" = OS Pack Works Suite
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{E9E37358-E3E1-47BA-9E21-375EF3616BC9}" = Lecteur CANALPLAY 2.4
"{EFB21DE7-8C19-4A88-BB28-A766E16493BC}" = Adobe Photoshop CS
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F7B05784-334C-4F76-8BAB-30ABEB7FD534}" = TIPCI
"{F7F2DC0A-C22E-49AD-AD37-797309A54E7B}" = Microsoft AutoRoute 2002
"{F843C6A3-224D-4615-94F8-3C461BD9AEA0}" = Jasc Paint Shop Pro 9
"{F850707C-B6A0-4B56-8709-F89CF8F9AC6D}" = Eraser
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Active WebCam" = Active WebCam
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"adsl TV" = adsl TV
"AnarkClient40" = Anark Client 4
"Ant Movie Catalog_is1" = Ant Movie Catalog
"a-squared Free_is1" = a-squared Free 3.0
"Auchan Photogenie_is1" = Auchan Photogenie
"Audacity_is1" = Audacity 1.2.6
"Autopano Pro" = Autopano Pro
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"AVS DVDMenu Editor_is1" = AVS DVDMenu Editor 1.2.1.19
"AVSMedia Video Editor_is1" = AVS Video Editor 3.5
"AwaleMania_is1" = AwaleMania 1.2 beta 1
"Axara Video Converter_is1" = Axara Video Converter 3.4.1
"BelAtoutFr_is1" = Bel Atout 4.11
"Buttonz & Tilez" = Buttonz & Tilez
"Canon Internet Library for ZoomBrowser EX" = Canon Internet Library for ZoomBrowser EX
"CCleaner" = CCleaner (remove only)
"CdaC13Ba" = SafeCast Shared Components
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFAOR2C06_118" = HDAUDIO Soft Data Fax Modem with SmartCP
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = French App Name
"DeKnop" = DeKnop 4.3.12
"DevalVR for Netscape" = DevalVR for Netscape and compatible browsers
"Digital Editions" = Adobe Digital Editions
"Download Accelerator Plus (DAP)" = Download Accelerator Plus (DAP)
"DPP" = Canon Utilities Digital Photo Professional 3.4
"DriverAgent.exe" = DriverAgent by TouchStone Software
"eMule" = eMule
"EOS USB WIA Driver" = EOS USB WIA Driver
"EOS Utility" = Canon Utilities EOS Utility
"EPSON Printer and Utilities" = EPSON Printer Software
"EPSON Scanner" = EPSON Scan
"EPSON Stylus CX9300F_DX9400F Guide d'utilisation" = EPSON Stylus CX9300F_DX9400F Manuel
"Eraser" = Eraser
"ExtraFilmDesignerFR" = Extrafilm Designer FR
"FastLab" = FastLab
"Fastlab Print Service_is1" = Fastlab Print Service
"FastStone Image Viewer" = FastStone Image Viewer 3.9
"Filters Unlimited Demo_is1" = Filters Unlimited 2.0 Demo
"Filters Unlimited_is1" = Filters Unlimited 2.0
"FontPage_is1" = FontPage 3.0.2
"FpTest" = FpTest 3.0
"Free-info_is1" = Free-info
"Google Chrome" = Google Chrome
"Google Updater" = Outil de mise à jour Google
"GridVista" = Acer GridVista
"HijackThis" = HijackThis 2.0.2
"HomePlayer" = HomePlayer 1.5.8a
"InstallShield_{0405E51E-9582-4207-8F38-AC44201D3808}" = VeohTV BETA
"InstallShield_{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}" = NTI CD & DVD-Maker
"InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email
"InstallShield_{F7B05784-334C-4F76-8BAB-30ABEB7FD534}" = Texas Instruments PCIxx21/x515/xx12 drivers.
"Jalbum_0" = Jalbum 8.0
"Jasc Paint Shop Pro 9.01 Patch" = Jasc Paint Shop Pro 9.01 Patch
"KLiteCodecPack_is1" = K-Lite Codec Pack 3.2.5 Full
"La Marmite du Chef_is1" = La Marmite du Chef 6.2.1
"Le Généalogiste Deluxe 2006" = Micro Application - Le Généalogiste Deluxe 2006
"LHTTSFRF" = L&H TTS3000 Français
"LiveUpdate" = LiveUpdate 3.2 (Symantec Corporation)
"LManager" = Launch Manager
"Magic DVD Copier_is1" = Magic DVD Copier V4.3.4
"Magic DVD Ripper_is1" = Magic DVD Ripper V4.2.4
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Maxthon2" = Maxthon2
"Maxthon3" = Maxthon 3
"Messenger Plus! Live" = Messenger Plus! Live
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mio Technology SpeedCam Tool" = Mio Technology SpeedCam Tool
"Miro" = Miro
"MOTIX" = MOTIX
"Mozilla Firefox (3.0.14)" = Mozilla Firefox (3.0.14)
"Navale_is1" = Navale 2.1.0.0
"Neat Image_is1" = Neat Image v5 Demo (with plug-in)
"Netscape Navigator (9.0b3)" = Netscape Navigator (9.0b3)
"NVIDIA Drivers" = NVIDIA Drivers
"OnlineBible" = La Bible Online E-M 10.10.08
"Partitio" = Partitio 1.1
"Photodex Presenter" = Photodex Presenter
"PhotoFiltre" = PhotoFiltre
"Picture Style Editor" = Canon Utilities Picture Style Editor
"PicturesToExe 5.1" = PicturesToExe 5.1
"PicturesToExe 5.5" = PicturesToExe 5.5
"PowerBatch_is1" = PowerBatch 6
"RAW Image Task" = Canon RAW Image Task for ZoomBrowser EX
"RealPlayer 6.0" = RealPlayer
"Recettes de Cuisine 2004_is1" = Recettes de Cuisine 2004
"Revo Uninstaller" = Revo Uninstaller 1.80
"Shockwave" = Shockwave
"SoftNote 2005_is1" = SoftNote2005 5.2.5.0
"Solone 3.02_is1" = Solone
"Spotify" = Spotify
"ST6UNST #1" = Micro Scrabble
"ST6UNST #2" = Lingo
"SyncBack_is1" = SyncBack
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"SystemRequirementsLab" = System Requirements Lab
"Systran Professional Premium 4.0" = Systran Professional Premium 4.0
"TeamViewer 4" = TeamViewer 4
"Tusmot_is1" = Tusmot V1.3
"tv_enua" = Lernout & Hauspie TruVoice American English TTS Engine
"TvFreePlayer Tools" = TvFreePlayer Tools
"Universal Extractor_is1" = Universal Extractor 1.6
"VLC media player" = VideoLAN VLC media player 0.8.6f
"Winamp Toolbar" = Winamp Toolbar for Internet Explorer
"Winamp Toolbar for Firefox" = Winamp Toolbar for Firefox
"WinGimp-2.0_is1" = Gimp 2.6.2
"WinLiveSuite_Wave3" = Installation Windows Live
"WinRAR archiver" = Archiveur WinRAR
"Works2003Setup" = Sélecteur d'installation de Microsoft Works Suite 2003
"XnView_is1" = XnView 1.96
"Yahoo! Companion" = Yahoo! Toolbar avec bloqueur de fenêtres pop-up
"Yahoo! Toolbar" = Yahoo! Toolbar
"YAYG" = YAYG
"ZoneAlarm" = ZoneAlarm
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"CodeBlocks" = CodeBlocks
"OnlineBible" = La Bible Online E-M 10.10.08
"Sweet Home 3D" = Sweet Home 3D
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 22/06/2008 05:26:12 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante CNDNDlg.exe, version 2003.12.15.1, horodatage
0x3e9a3c5a, module défaillant USER32.dll, version 6.0.6001.18000, horodatage 0x4791a7a6,
code d’exception 0xc0000142, décalage d’erreur 0x00009cac, ID du processus 0x17c0,
heure de début de l’application 0x01c8d44a033e1d90.
Error - 22/06/2008 05:31:10 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante CNDNDlg.exe, version 2003.12.15.1, horodatage
0x3e9a3c5a, module défaillant USER32.dll, version 6.0.6001.18000, horodatage 0x4791a7a6,
code d’exception 0xc0000142, décalage d’erreur 0x00009cac, ID du processus 0x1654,
heure de début de l’application 0x01c8d44ab4c8ebd0.
Error - 22/06/2008 05:36:08 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante CNDNDlg.exe, version 2003.12.15.1, horodatage
0x3e9a3c5a, module défaillant USER32.dll, version 6.0.6001.18000, horodatage 0x4791a7a6,
code d’exception 0xc0000142, décalage d’erreur 0x00009cac, ID du processus 0x1760,
heure de début de l’application 0x01c8d44b66372990.
Error - 22/06/2008 05:41:06 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante CNDNDlg.exe, version 2003.12.15.1, horodatage
0x3e9a3c5a, module défaillant USER32.dll, version 6.0.6001.18000, horodatage 0x4791a7a6,
code d’exception 0xc0000142, décalage d’erreur 0x00009cac, ID du processus 0x11d0,
heure de début de l’application 0x01c8d44c17bf9670.
Error - 22/06/2008 12:39:44 | Computer Name = PC-de-Gerard | Source = Application Hang | ID = 1002
Description = Le programme Explorer.EXE version 6.0.6001.18000 a cessé d’interagir
avec Windows et a été fermé. Pour déterminer si des informations supplémentaires
sont disponibles, consultez l’historique du problème dans l’application Rapports
et solutions aux problèmes du Panneau de configuration. ID de processus : 544 Heure
de début : 01c8d2e2cdf40417 Heure de fin : 47
Error - 24/06/2008 15:55:07 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante iWizz.exe, version 0.0.0.0, horodatage 0x4831bbc3,
module défaillant iWizz.exe, version 0.0.0.0, horodatage 0x4831bbc3, code d’exception
0xc0000005, décalage d’erreur 0x0007a077, ID du processus 0xb34, heure de début
de l’application 0x01c8d62bccd17cf0.
Error - 25/06/2008 15:49:15 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante AdobeUpdater.exe, version 5.1.0.1082, horodatage
0x45e646c6, module défaillant AdobeUpdater.exe, version 5.1.0.1082, horodatage
0x45e646c6, code d’exception 0xc000000d, décalage d’erreur 0x00166976, ID du processus
0x1314, heure de début de l’application 0x01c8d6f5d119dda0.
Error - 27/06/2008 05:55:40 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante Acer OrbiCam.exe, version 1.0.0.13, horodatage
0x4599d570, module défaillant Acer OrbiCam.exe, version 1.0.0.13, horodatage 0x4599d570,
code d’exception 0xc0000005, décalage d’erreur 0x0000241c, ID du processus 0x168c,
heure de début de l’application 0x01c8d83bdae56f7f.
Error - 27/06/2008 11:17:21 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante Acer OrbiCam.exe, version 1.0.0.13, horodatage
0x4599d570, module défaillant qedit.dll, version 6.6.6001.18000, horodatage 0x4791a748,
code d’exception 0xc0000005, décalage d’erreur 0x00025d21, ID du processus 0xa68,
heure de début de l’application 0x01c8d868c88aa920.
Error - 29/06/2008 16:10:46 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante ccApp.exe, version 106.2.0.21, horodatage
0x45a467ef, module défaillant tpBuEng.dll_unloaded, version 0.0.0.0, horodatage
0x4760b380, code d’exception 0xc0000005, décalage d’erreur 0x69e99cf8, ID du processus
0xbd0, heure de début de l’application 0x01c8d944af56c3a1.
[ Media Center Events ]
Error - 17/04/2008 10:03:35 | Computer Name = PC-de-Gerard | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete : échec du téléchargement du package
MCESpotlight.
Error - 06/07/2008 03:52:40 | Computer Name = PC-de-Gerard | Source = Media Center Guide | ID = 0
Description = Info sur l’événement : ERROR: SqmApiWrapper.WaitForUploadComplete
failed. Please try to ping www.msn.com prior to filing a bug.; Win32 GetLastError
returned 10000109 Processus : DefaultDomain Nom de l’objet : Media Center Guide
[ System Events ]
Error - 23/10/2009 15:01:18 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7009
Description =
Error - 23/10/2009 15:01:18 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 23/10/2009 15:24:26 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 23/10/2009 15:24:26 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 23/10/2009 15:24:26 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7009
Description =
Error - 23/10/2009 15:24:26 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 24/10/2009 04:26:32 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 24/10/2009 04:26:32 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 24/10/2009 04:26:32 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7009
Description =
Error - 24/10/2009 04:26:32 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
<End>
--------------------------------
OTL Extras logfile created on: 24/10/2009 10:45:38 - Run 1
OTL by OldTimer - Version 3.0.22.1 Folder = C:\Users\Gerard\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18828)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,03 Gb Available Physical Memory | 51,71% Memory free
4,00 Gb Paging File | 2,93 Gb Available in Paging File | 73,35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 70,62 Gb Total Space | 16,40 Gb Free Space | 23,22% Space Free | Partition Type: NTFS
Drive D: | 70,61 Gb Total Space | 21,25 Gb Free Space | 30,10% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 971,63 Mb Total Space | 971,61 Mb Free Space | 100,00% Space Free | Partition Type: FAT
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PC-DE-GERARD
Current User Name: Gerard
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation)
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- Reg Error: Key error. File not found
.html [@ = htmlfile] -- C:\Program Files\Maxthon\Maxthon2\Maxthon.exe (Maxthon International ltd.)
.url [@ = InternetShortcut] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Directory [Browse with FastStone] -- "C:\Program Files\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [Browse with Paint Shop Pro 9] -- "C:\Program Files\Jasc Software Inc\Paint Shop Pro 9\\Paint Shop Pro 9.exe" "/Browse" "%L" (Jasc Software, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [Digital Photo Professional] -- C:\Program Files\Canon\Digital Photo Professional\DPPViewer.exe /path "%1" (CANON INC.)
Directory [FastLab] -- "C:\Program Files\FastLab\FastLab\FastLab.exe" "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 1
"InternetSettingsDisableNotify" = 1
"AutoUpdateDisableNotify" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-3323605061-1442029127-536464899-1000]
"EnableNotificationsRef" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{11EA0E69-518D-43C9-88BD-E026623B02D8}" = lport=2869 | protocol=6 | dir=in | app=system |
"{2409451C-AE5F-4BCB-96FC-9D41AC3D2A58}" = lport=139 | protocol=6 | dir=in | app=system |
"{2B981533-0089-44E7-BA8A-DC6DB86F8BCF}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{3CB62501-92FE-4EBE-B14B-B1546361C256}" = rport=137 | protocol=17 | dir=out | app=system |
"{425AF69A-211B-4D04-8110-E95C5B5B4F6D}" = lport=445 | protocol=6 | dir=in | app=system |
"{6C768EF6-B4BA-401D-AD2D-2BD28BFC0A71}" = lport=5353 | protocol=6 | dir=in | name=adobe csi cs4 |
"{862CEF5A-E0B0-42D7-8F7B-B04CAC1B1A5B}" = lport=137 | protocol=17 | dir=in | app=system |
"{9A5D7E4D-9918-47B8-9759-BBEB91CB99D8}" = lport=138 | protocol=17 | dir=in | app=system |
"{9BF9E272-DCFE-4923-A46D-EEE291769838}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{B2E090C0-350C-4773-8716-25CFDC5595D3}" = rport=139 | protocol=6 | dir=out | app=system |
"{C9CF238E-FA0F-4E2D-976F-2003CCE10FBA}" = rport=138 | protocol=17 | dir=out | app=system |
"{DAB8EA60-6D39-4755-9396-6F290CFF17CC}" = rport=445 | protocol=6 | dir=out | app=system |
"{FA2FE459-6D90-4D3A-BEBC-381FC65035E4}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{05B18809-7B2F-4C54-B854-37783B0A8ACA}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{081659FE-5F03-42E3-B488-636242C7D835}" = protocol=6 | dir=in | app=c:\program files\acer arcade deluxe\acer arcade deluxe\mce deluxe suite.exe |
"{0B255FBB-E34F-4EA6-862E-7677BB880806}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{11FA05B7-F304-411F-9A43-61D003F102E9}" = dir=in | app=c:\program files\windows live\messenger\wlcsdk.exe |
"{134AE4C9-06B6-4BEB-867F-BBBE409B5668}" = protocol=17 | dir=in | app=c:\program files\homeplayer\vlc\vlc.exe |
"{1502CD14-99AE-4BEA-BC03-9899A5D8F925}" = protocol=17 | dir=in | app=c:\program files\homeplayer\vlc\vlc.exe |
"{1D20F7C4-0A6A-418E-9BC6-3A2E084D1E1D}" = protocol=6 | dir=in | app=c:\program files\homeplayer\vlc\vlc.exe |
"{20C61CA2-BFE0-421E-9F7A-2E2913FCBB8F}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{2A8BAAA4-1E02-4C0A-BC8A-3882CFC56A0D}" = protocol=17 | dir=in | app=c:\program files\acer arcade deluxe\acer arcade deluxe\mce deluxe suite.exe |
"{31D4ED3C-EB8A-4A8F-9A46-6D592F093FAC}" = protocol=17 | dir=in | app=c:\program files\spotify\spotify.exe |
"{373F55B0-7E0D-4C4A-B3B7-4A98F41EBFDC}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{37D064EE-8ECD-40B3-8395-53E78544077B}" = protocol=6 | dir=in | app=c:\program files\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{38BF1951-6FE1-4B22-8DBE-F0818AD0BCE9}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version4\teamviewer.exe |
"{3D5FA9BD-17B0-44CC-A35A-97417BE77CBC}" = protocol=17 | dir=in | app=c:\program files\lecteur canalplay\canalplayer.exe |
"{4621F147-2A20-4356-9B23-91567B0F450F}" = protocol=6 | dir=in | app=c:\program files\emule\emule.exe |
"{5714F611-36BA-412A-9DD1-523745253F2B}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{58D76075-DF14-4337-B995-2A0796D7249F}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{5941DFF1-BBBE-4B05-8EC3-000943B3FC22}" = protocol=17 | dir=in | app=c:\program files\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{5B1D7FC2-1C89-4E53-88B0-572A902A83FF}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{64C54387-2729-4BDA-BA8B-3570C6B24736}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{6670EC75-56F6-4E23-B20F-F36D09AFEC5B}" = protocol=6 | dir=in | app=c:\program files\spotify\spotify.exe |
"{78386BFD-AF09-4A3F-9B3F-9D17A6886251}" = protocol=17 | dir=in | app=c:\program files\homeplayer\homeplayer.exe |
"{8EE73DFD-7E1E-4C7E-B3FC-748802E1BB30}" = protocol=6 | dir=in | app=c:\program files\homeplayer\vlc\vlc.exe |
"{9937582A-ABB4-4CC0-8E11-F8139B152771}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version4\teamviewer.exe |
"{A2BCF4D7-26FA-4466-97AC-D352A6C0786F}" = protocol=6 | dir=in | app=c:\program files\homeplayer\homeplayer.exe |
"{A80917B0-FF10-475E-ABFD-BF3FB8AB5C73}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{BD6A28A8-F7B3-4C48-A835-D4A9335F60FB}" = protocol=17 | dir=in | app=c:\program files\emule\emule.exe |
"{C3E6C7CB-F0B4-48CB-90FD-5CCEAC981339}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{C60AB125-F1E5-4CF2-A535-408FDE2B9D2A}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{CA3E24D4-99A1-4E07-8AA6-BAAF02D67206}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{E771F373-3039-412F-B2EB-6140265F32D0}" = protocol=17 | dir=in | app=c:\program files\homeplayer\homeplayer.exe |
"{EFBE38D3-B3CB-417D-BE74-63E3C8E9589F}" = protocol=6 | dir=in | app=c:\program files\homeplayer\homeplayer.exe |
"{F56E0A3F-08E6-4923-89CE-FE2A481A38D1}" = protocol=6 | dir=in | app=c:\program files\lecteur canalplay\canalplayer.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{01A2E33A-8ADA-42D1-9173-8F65149E952F}" = Microsoft Money
"{02CA7E66-1AD1-4DE9-BA9E-86A0EEB019C7}" = Extension Système de Microsoft Money
"{03460014-3975-4267-9F39-1DC4745090B7}" = Encyclopédie Microsoft Encarta 2003
"{0405E51E-9582-4207-8F38-AC44201D3808}" = VeohTV BETA
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{098A2A49-7CF3-4F08-A38D-FB879117152A}" = Adobe Color NA Extra Settings CS4
"{0C34B801-6AEC-4667-B053-03A67E2D0415}" = Apple Application Support
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}" = Adobe Color EU Recommended Settings CS4
"{0E4BC542-9CFD-4E97-B586-9F1E5516E7B9}" = Microsoft IntelliPoint 6.1
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}" = OpenOffice.org 3.1
"{10A44844-4465-456E-8C97-80BDD4F68845}" = Assistant de connexion Windows Live ID
"{11316260-6666-467B-AC34-183FCB5D4335}" = Acer Mobility Center Plug-In
"{116FF17B-1A30-4FC2-9B01-5BC5BD46B0B3}" = Acer eLock Management
"{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}" = NTI CD & DVD-Maker
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1F2A5DF9-40E1-4644-ADBD-D80F347BA6C8}" = Gestionnaire pour appareils Windows Mobile
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live
"{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 16
"{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}" = EPSON Scan Assistant
"{2BCE10B0-6471-47F3-B0E0-963F6A788FAF}" = Micro Application - 9 Dictionnaires Illustrés
"{2BD5C305-1B27-4D41-B690-7A61172D2FEB}" = Macromedia Flash 8
"{2EB81825-E9EE-44F4-8F51-1240C3898DC6}" = EPSON File Manager
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C8C9FB3-5FDF-40B4-B314-EAD722728C76}" = Macromedia Extension Manager
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{3E31400D-274E-4647-916C-2CACC3741799}" = EpsonNet Print
"{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{4103778F-5EAF-476E-B3C1-2891EF9A4D8C}" = Kptic
"{46ABBC54-1872-4AA3-95E2-F2C063A63F31}" = Installation Windows Live
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{49F00501-E02F-458F-8AED-85949AB9656F}" = MioTransfer
"{4BB1DCED-84D3-47F9-B718-5947E904593E}" = Acer OrbiCam
"{4C0B83C0-34FB-4750-B831-6BD0516DC18A}" = Hofmann 5.4
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{56F612F8-EC80-4E17-9249-2385B6755A31}" = VMware ThinApp
"{58E5844B-7CE2-413D-83D1-99294BF6C74F}" = Acer ePower Management
"{5A0D71BC-3AB0-4BC1-B241-CABE11EEE731}" = DxO Optics Pro 5.3.4
"{5D2CF9D0-113A-476B-986F-288B54571614}" = DevalVR plugin for Internet Explorer (remove)
"{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail
"{5FD788ED-1A37-4496-9BDD-463F493B27FA}" = Macromedia Dreamweaver 8
"{63A6E9A9-A190-46D4-9430-2DB28654AFD8}" = Norton 360
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{67ADE9AF-5CD9-4089-8825-55DE4B366799}" = NTI Backup NOW! 4.7
"{67E9E6C6-ECEF-4195-B719-8788754297C6}" = inSSIDer
"{67EDD823-135A-4D59-87BD-950616D6E857}" = EPSON Copy Utility 3
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{7088EC18-1D00-43EA-B37B-608E71D88A5D}" = EpsonNet Config V1
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{770F1BEC-2871-4E70-B837-FB8525FFA3B1}" = Windows Live Messenger
"{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}" = Acer ScreenSaver
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{808FAA20-4C3A-11D4-8A57-00201853C903}" = PC-Linq
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}" = Windows Live Call
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A9B8148-DDD7-448F-BD6C-358386D32354}" = Corel Photo Album 6
"{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}" = Macromedia Flash 8 Video Encoder
"{90120000-0020-040C-0000-0000000FF1CE}" = Module de compatibilité pour Microsoft Office System 2007
"{911B040C-6000-11D3-8CFE-0050048383C9}" = Microsoft Word 2002
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94056AE8-EF0F-45E4-A1B4-D754115F8A28}" = Numedia CD-DVD writing as non-admin user
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95264530-5A22-8E7E-FE9D-D63A927BCAEA}" = French App Name
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E}" = Windows Live Sync
"{A254D625} PicturesToExe 6.0 Beta 21_is1" = PicturesToExe 6.0 Beta 21
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}" = QuickTime
"{A90C03D6-08E1-4C59-B93B-6919A6C0AC19}" = TSP_CODEC
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AB6097D9-D722-4987-BD9E-A076E2848EE2}" = Acer Empowering Technology
"{AC76BA86-7AD7-1036-7B44-A92000000001}" = Adobe Reader 9.2 - Français
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
"{AEEAE013-92F1-4515-B278-139F1A692A35}" = Acer eDataSecurity Management
"{AFC02C27-473F-4EC5-9372-30771EFFB35F}" = VC80_CRT_x86
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B72B0ECE-F41E-4EC4-AA37-1A00640680BF}" = Microsoft Sites publics français
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BF839132-BD43-4056-ACBF-4377F4A88E2A}" = Acer ePresentation Management
"{C06554A1-2C1E-4D20-B613-EE62C79927CC}" = Acer eNet Management
"{C251E450-021F-4F12-AA67-8E54589CC39A}" = Gestionnaire de téléchargement MusiClassics
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{CA567AD5-33A4-403D-86D1-EE2D38251951}_is1" = VDownloader 0.77
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC016F21-3970-11DE-B878-005056806466}" = Google Earth
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE65A9A0-9686-45C6-9098-3C9543A412F0}" = Acer eSettings Management
"{CF097717-F174-4144-954A-FBC4BF301036}" = Nero 7 Premium
"{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}" = LiveUpdate Notice (Symantec Corporation)
"{DD1DED37-2486-4F56-8F89-56AA814003F5}" = Acer OrbiCam
"{E1180142-3B31-4DCC-9D27-7AC2D37662BF}" = LightScribe 1.4.124.1
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E38D381A-ABCF-4D97-9D9C-B3A8529DCA15}" = OS Pack Works Suite
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{E9E37358-E3E1-47BA-9E21-375EF3616BC9}" = Lecteur CANALPLAY 2.4
"{EFB21DE7-8C19-4A88-BB28-A766E16493BC}" = Adobe Photoshop CS
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F7B05784-334C-4F76-8BAB-30ABEB7FD534}" = TIPCI
"{F7F2DC0A-C22E-49AD-AD37-797309A54E7B}" = Microsoft AutoRoute 2002
"{F843C6A3-224D-4615-94F8-3C461BD9AEA0}" = Jasc Paint Shop Pro 9
"{F850707C-B6A0-4B56-8709-F89CF8F9AC6D}" = Eraser
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Active WebCam" = Active WebCam
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"adsl TV" = adsl TV
"AnarkClient40" = Anark Client 4
"Ant Movie Catalog_is1" = Ant Movie Catalog
"a-squared Free_is1" = a-squared Free 3.0
"Auchan Photogenie_is1" = Auchan Photogenie
"Audacity_is1" = Audacity 1.2.6
"Autopano Pro" = Autopano Pro
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"AVS DVDMenu Editor_is1" = AVS DVDMenu Editor 1.2.1.19
"AVSMedia Video Editor_is1" = AVS Video Editor 3.5
"AwaleMania_is1" = AwaleMania 1.2 beta 1
"Axara Video Converter_is1" = Axara Video Converter 3.4.1
"BelAtoutFr_is1" = Bel Atout 4.11
"Buttonz & Tilez" = Buttonz & Tilez
"Canon Internet Library for ZoomBrowser EX" = Canon Internet Library for ZoomBrowser EX
"CCleaner" = CCleaner (remove only)
"CdaC13Ba" = SafeCast Shared Components
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFAOR2C06_118" = HDAUDIO Soft Data Fax Modem with SmartCP
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = French App Name
"DeKnop" = DeKnop 4.3.12
"DevalVR for Netscape" = DevalVR for Netscape and compatible browsers
"Digital Editions" = Adobe Digital Editions
"Download Accelerator Plus (DAP)" = Download Accelerator Plus (DAP)
"DPP" = Canon Utilities Digital Photo Professional 3.4
"DriverAgent.exe" = DriverAgent by TouchStone Software
"eMule" = eMule
"EOS USB WIA Driver" = EOS USB WIA Driver
"EOS Utility" = Canon Utilities EOS Utility
"EPSON Printer and Utilities" = EPSON Printer Software
"EPSON Scanner" = EPSON Scan
"EPSON Stylus CX9300F_DX9400F Guide d'utilisation" = EPSON Stylus CX9300F_DX9400F Manuel
"Eraser" = Eraser
"ExtraFilmDesignerFR" = Extrafilm Designer FR
"FastLab" = FastLab
"Fastlab Print Service_is1" = Fastlab Print Service
"FastStone Image Viewer" = FastStone Image Viewer 3.9
"Filters Unlimited Demo_is1" = Filters Unlimited 2.0 Demo
"Filters Unlimited_is1" = Filters Unlimited 2.0
"FontPage_is1" = FontPage 3.0.2
"FpTest" = FpTest 3.0
"Free-info_is1" = Free-info
"Google Chrome" = Google Chrome
"Google Updater" = Outil de mise à jour Google
"GridVista" = Acer GridVista
"HijackThis" = HijackThis 2.0.2
"HomePlayer" = HomePlayer 1.5.8a
"InstallShield_{0405E51E-9582-4207-8F38-AC44201D3808}" = VeohTV BETA
"InstallShield_{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}" = NTI CD & DVD-Maker
"InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email
"InstallShield_{F7B05784-334C-4F76-8BAB-30ABEB7FD534}" = Texas Instruments PCIxx21/x515/xx12 drivers.
"Jalbum_0" = Jalbum 8.0
"Jasc Paint Shop Pro 9.01 Patch" = Jasc Paint Shop Pro 9.01 Patch
"KLiteCodecPack_is1" = K-Lite Codec Pack 3.2.5 Full
"La Marmite du Chef_is1" = La Marmite du Chef 6.2.1
"Le Généalogiste Deluxe 2006" = Micro Application - Le Généalogiste Deluxe 2006
"LHTTSFRF" = L&H TTS3000 Français
"LiveUpdate" = LiveUpdate 3.2 (Symantec Corporation)
"LManager" = Launch Manager
"Magic DVD Copier_is1" = Magic DVD Copier V4.3.4
"Magic DVD Ripper_is1" = Magic DVD Ripper V4.2.4
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Maxthon2" = Maxthon2
"Maxthon3" = Maxthon 3
"Messenger Plus! Live" = Messenger Plus! Live
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mio Technology SpeedCam Tool" = Mio Technology SpeedCam Tool
"Miro" = Miro
"MOTIX" = MOTIX
"Mozilla Firefox (3.0.14)" = Mozilla Firefox (3.0.14)
"Navale_is1" = Navale 2.1.0.0
"Neat Image_is1" = Neat Image v5 Demo (with plug-in)
"Netscape Navigator (9.0b3)" = Netscape Navigator (9.0b3)
"NVIDIA Drivers" = NVIDIA Drivers
"OnlineBible" = La Bible Online E-M 10.10.08
"Partitio" = Partitio 1.1
"Photodex Presenter" = Photodex Presenter
"PhotoFiltre" = PhotoFiltre
"Picture Style Editor" = Canon Utilities Picture Style Editor
"PicturesToExe 5.1" = PicturesToExe 5.1
"PicturesToExe 5.5" = PicturesToExe 5.5
"PowerBatch_is1" = PowerBatch 6
"RAW Image Task" = Canon RAW Image Task for ZoomBrowser EX
"RealPlayer 6.0" = RealPlayer
"Recettes de Cuisine 2004_is1" = Recettes de Cuisine 2004
"Revo Uninstaller" = Revo Uninstaller 1.80
"Shockwave" = Shockwave
"SoftNote 2005_is1" = SoftNote2005 5.2.5.0
"Solone 3.02_is1" = Solone
"Spotify" = Spotify
"ST6UNST #1" = Micro Scrabble
"ST6UNST #2" = Lingo
"SyncBack_is1" = SyncBack
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"SystemRequirementsLab" = System Requirements Lab
"Systran Professional Premium 4.0" = Systran Professional Premium 4.0
"TeamViewer 4" = TeamViewer 4
"Tusmot_is1" = Tusmot V1.3
"tv_enua" = Lernout & Hauspie TruVoice American English TTS Engine
"TvFreePlayer Tools" = TvFreePlayer Tools
"Universal Extractor_is1" = Universal Extractor 1.6
"VLC media player" = VideoLAN VLC media player 0.8.6f
"Winamp Toolbar" = Winamp Toolbar for Internet Explorer
"Winamp Toolbar for Firefox" = Winamp Toolbar for Firefox
"WinGimp-2.0_is1" = Gimp 2.6.2
"WinLiveSuite_Wave3" = Installation Windows Live
"WinRAR archiver" = Archiveur WinRAR
"Works2003Setup" = Sélecteur d'installation de Microsoft Works Suite 2003
"XnView_is1" = XnView 1.96
"Yahoo! Companion" = Yahoo! Toolbar avec bloqueur de fenêtres pop-up
"Yahoo! Toolbar" = Yahoo! Toolbar
"YAYG" = YAYG
"ZoneAlarm" = ZoneAlarm
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-3323605061-1442029127-536464899-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"CodeBlocks" = CodeBlocks
"OnlineBible" = La Bible Online E-M 10.10.08
"Sweet Home 3D" = Sweet Home 3D
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 22/06/2008 05:26:12 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante CNDNDlg.exe, version 2003.12.15.1, horodatage
0x3e9a3c5a, module défaillant USER32.dll, version 6.0.6001.18000, horodatage 0x4791a7a6,
code d’exception 0xc0000142, décalage d’erreur 0x00009cac, ID du processus 0x17c0,
heure de début de l’application 0x01c8d44a033e1d90.
Error - 22/06/2008 05:31:10 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante CNDNDlg.exe, version 2003.12.15.1, horodatage
0x3e9a3c5a, module défaillant USER32.dll, version 6.0.6001.18000, horodatage 0x4791a7a6,
code d’exception 0xc0000142, décalage d’erreur 0x00009cac, ID du processus 0x1654,
heure de début de l’application 0x01c8d44ab4c8ebd0.
Error - 22/06/2008 05:36:08 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante CNDNDlg.exe, version 2003.12.15.1, horodatage
0x3e9a3c5a, module défaillant USER32.dll, version 6.0.6001.18000, horodatage 0x4791a7a6,
code d’exception 0xc0000142, décalage d’erreur 0x00009cac, ID du processus 0x1760,
heure de début de l’application 0x01c8d44b66372990.
Error - 22/06/2008 05:41:06 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante CNDNDlg.exe, version 2003.12.15.1, horodatage
0x3e9a3c5a, module défaillant USER32.dll, version 6.0.6001.18000, horodatage 0x4791a7a6,
code d’exception 0xc0000142, décalage d’erreur 0x00009cac, ID du processus 0x11d0,
heure de début de l’application 0x01c8d44c17bf9670.
Error - 22/06/2008 12:39:44 | Computer Name = PC-de-Gerard | Source = Application Hang | ID = 1002
Description = Le programme Explorer.EXE version 6.0.6001.18000 a cessé d’interagir
avec Windows et a été fermé. Pour déterminer si des informations supplémentaires
sont disponibles, consultez l’historique du problème dans l’application Rapports
et solutions aux problèmes du Panneau de configuration. ID de processus : 544 Heure
de début : 01c8d2e2cdf40417 Heure de fin : 47
Error - 24/06/2008 15:55:07 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante iWizz.exe, version 0.0.0.0, horodatage 0x4831bbc3,
module défaillant iWizz.exe, version 0.0.0.0, horodatage 0x4831bbc3, code d’exception
0xc0000005, décalage d’erreur 0x0007a077, ID du processus 0xb34, heure de début
de l’application 0x01c8d62bccd17cf0.
Error - 25/06/2008 15:49:15 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante AdobeUpdater.exe, version 5.1.0.1082, horodatage
0x45e646c6, module défaillant AdobeUpdater.exe, version 5.1.0.1082, horodatage
0x45e646c6, code d’exception 0xc000000d, décalage d’erreur 0x00166976, ID du processus
0x1314, heure de début de l’application 0x01c8d6f5d119dda0.
Error - 27/06/2008 05:55:40 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante Acer OrbiCam.exe, version 1.0.0.13, horodatage
0x4599d570, module défaillant Acer OrbiCam.exe, version 1.0.0.13, horodatage 0x4599d570,
code d’exception 0xc0000005, décalage d’erreur 0x0000241c, ID du processus 0x168c,
heure de début de l’application 0x01c8d83bdae56f7f.
Error - 27/06/2008 11:17:21 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante Acer OrbiCam.exe, version 1.0.0.13, horodatage
0x4599d570, module défaillant qedit.dll, version 6.6.6001.18000, horodatage 0x4791a748,
code d’exception 0xc0000005, décalage d’erreur 0x00025d21, ID du processus 0xa68,
heure de début de l’application 0x01c8d868c88aa920.
Error - 29/06/2008 16:10:46 | Computer Name = PC-de-Gerard | Source = Application Error | ID = 1000
Description = Application défaillante ccApp.exe, version 106.2.0.21, horodatage
0x45a467ef, module défaillant tpBuEng.dll_unloaded, version 0.0.0.0, horodatage
0x4760b380, code d’exception 0xc0000005, décalage d’erreur 0x69e99cf8, ID du processus
0xbd0, heure de début de l’application 0x01c8d944af56c3a1.
[ Media Center Events ]
Error - 17/04/2008 10:03:35 | Computer Name = PC-de-Gerard | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete : échec du téléchargement du package
MCESpotlight.
Error - 06/07/2008 03:52:40 | Computer Name = PC-de-Gerard | Source = Media Center Guide | ID = 0
Description = Info sur l’événement : ERROR: SqmApiWrapper.WaitForUploadComplete
failed. Please try to ping www.msn.com prior to filing a bug.; Win32 GetLastError
returned 10000109 Processus : DefaultDomain Nom de l’objet : Media Center Guide
[ System Events ]
Error - 23/10/2009 15:01:18 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7009
Description =
Error - 23/10/2009 15:01:18 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 23/10/2009 15:24:26 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 23/10/2009 15:24:26 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 23/10/2009 15:24:26 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7009
Description =
Error - 23/10/2009 15:24:26 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 24/10/2009 04:26:32 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 24/10/2009 04:26:32 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 24/10/2009 04:26:32 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7009
Description =
Error - 24/10/2009 04:26:32 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
<End>
Gérard
Mes configs
Mes configs
-
gerard74 - Messages: 30
- Inscription: 23 Mai 2008, 09:31
- Localisation: Thorens-Glières
de gerard74 » 24 Oct 2009, 12:22
Pfuii..... y-en a à lire....
Bon courage et merci encore
Bon courage et merci encore
Gérard
Mes configs
Mes configs
-
gerard74 - Messages: 30
- Inscription: 23 Mai 2008, 09:31
- Localisation: Thorens-Glières
de nickW » 26 Oct 2009, 00:50
Bonsoir,
Un vidage mémoire est-il généré lors de ces plantages de l'Explorateur?
Voir dans le dossier C:\Windows\Minidump s'il existe des fichiers créés lors de ces plantages.
S'il en existe, il faudrait les déposer sur un serveur externe pour que je puisse les récupérer:
*- mettre dans un fichier archive nommé gerard74.zip les cinq fichiers les plus récents
*- Aller sur: http://senduit.com/
*- Dans la zone File:, cliquer sur le bouton Parcourir... et aller jusqu'au fichier gerard74.zip - faire un double clic sur ce fichier
*- Dans la zone Expire in:, dans la liste déroulante, choisir 5 days
*- Cliquer sur le bouton Upload
*- Après le transfert du fichier, il y aura affichage d'une nouvelle page dans laquelle tu trouveras un lien (sous "This is your download URL. It expires in 5 Days.")
Envoyer ce lien en réponse.
A suivre,
Un vidage mémoire est-il généré lors de ces plantages de l'Explorateur?
Voir dans le dossier C:\Windows\Minidump s'il existe des fichiers créés lors de ces plantages.
S'il en existe, il faudrait les déposer sur un serveur externe pour que je puisse les récupérer:
*- mettre dans un fichier archive nommé gerard74.zip les cinq fichiers les plus récents
*- Aller sur: http://senduit.com/
*- Dans la zone File:, cliquer sur le bouton Parcourir... et aller jusqu'au fichier gerard74.zip - faire un double clic sur ce fichier
*- Dans la zone Expire in:, dans la liste déroulante, choisir 5 days
*- Cliquer sur le bouton Upload
*- Après le transfert du fichier, il y aura affichage d'une nouvelle page dans laquelle tu trouveras un lien (sous "This is your download URL. It expires in 5 Days.")
Envoyer ce lien en réponse.
A suivre,
nickW - 
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
-
nickW - Modérateur
- Messages: 21698
- Inscription: 20 Mai 2004, 17:41
- Localisation: Dordogne/Île de France
de gerard74 » 26 Oct 2009, 08:50
Bonjour nickW,
Il n'y a rien dans le répertoire Minidump
As tu d'autres instructions ?
Il n'y a rien dans le répertoire Minidump
As tu d'autres instructions ?
Gérard
Mes configs
Mes configs
-
gerard74 - Messages: 30
- Inscription: 23 Mai 2008, 09:31
- Localisation: Thorens-Glières
de gerard74 » 26 Oct 2009, 20:20
Bonsoir nickW,
Je dois partir pour une huitaine et je n'ai pas de connection là où je vais.
Je reprendrai contact dès mon retour
à bientot
Gérard
Je dois partir pour une huitaine et je n'ai pas de connection là où je vais.
Je reprendrai contact dès mon retour
à bientot
Gérard
Gérard
Mes configs
Mes configs
-
gerard74 - Messages: 30
- Inscription: 23 Mai 2008, 09:31
- Localisation: Thorens-Glières
de gerard74 » 30 Oct 2009, 17:42
Bonsoir nickW,
Je suis de retour.....
Si tu as des instructions je suis prêt.
Je suis de retour.....
Si tu as des instructions je suis prêt.
Gérard
Mes configs
Mes configs
-
gerard74 - Messages: 30
- Inscription: 23 Mai 2008, 09:31
- Localisation: Thorens-Glières
de nickW » 30 Oct 2009, 21:04
Bonsoir,
Le dernier rapport OTL montre un tas d'erreurs de l'Observateur d'événements (rubrique Système):
Il n'y a malheureusement aucun détail dans ce rapport.
Pourrais-tu afficher les résultats de l'Observateur d'événements pour voir:
*- si ces messages d'erreur continuent à être affichés
*- s'ils contiennent plus de détails
*- s'ils sont entourés d'autres messages d'Avertissement.
A suivre,
Le dernier rapport OTL montre un tas d'erreurs de l'Observateur d'événements (rubrique Système):
Error - 23/10/2009 15:01:18 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7009
Description =
Error - 23/10/2009 15:01:18 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 23/10/2009 15:24:26 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 23/10/2009 15:24:26 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 23/10/2009 15:24:26 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7009
Description =
Error - 23/10/2009 15:24:26 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 24/10/2009 04:26:32 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 24/10/2009 04:26:32 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Error - 24/10/2009 04:26:32 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7009
Description =
Error - 24/10/2009 04:26:32 | Computer Name = PC-de-Gerard | Source = Service Control Manager | ID = 7000
Description =
Il n'y a malheureusement aucun détail dans ce rapport.
Pourrais-tu afficher les résultats de l'Observateur d'événements pour voir:
*- si ces messages d'erreur continuent à être affichés
*- s'ils contiennent plus de détails
*- s'ils sont entourés d'autres messages d'Avertissement.
A suivre,
nickW -
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
-
nickW - Modérateur
- Messages: 21698
- Inscription: 20 Mai 2004, 17:41
- Localisation: Dordogne/Île de France
15 messages
• Page 1 sur 2 • 1, 2
Retourner vers Sécurité (Contamination - Décontamination)
Qui est en ligne
Utilisateurs parcourant ce forum: XRumerTest et 25 invités