Ouverture intempestive de chrome avec publicités

Sécurité et insécurité. Virus, Trojans, Spywares, Failles etc. …

Modérateur: Modérateurs et Modératrices

Règles du forum
Assiste.com a suspendu l'assistance à la décontamination après presque 15 ans sur l'ancien forum puis celui-ci. Voir :

Procédure de décontamination 1 - Anti-malware
Décontamination anti-malwares

Procédure de décontamination 2 - Anti-malware et antivirus (La Manip)
La Manip - Procédure standard de décontamination

Entretien périodique d'un PC sous Windows
Entretien périodique d'un PC sous Windows

Protection des navigateurs, de la navigation et de la vie privée
Protéger le navigateur, la navigation et la vie privée

Ouverture intempestive de chrome avec publicités

Messagede manolo06 » 05 Aoû 2011, 16:06

Bonjour, depuis quelques jours, mon navigateur "chrome" s'ouvre seul et affiche des publicités...

Merci de bien vouloir m'aider SVP

Voici les rapports:

Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Version de la base de données: 7384

Windows 6.0.6002 Service Pack 2
Internet Explorer 9.0.8112.16421

05/08/2011 16:15:52
mbam-log-2011-08-05 (16-15-41).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 171057
Temps écoulé: 3 minute(s), 20 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 6
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\CLSID\{293A63F7-C3B6-423a-9845-901AC0A7EE6E} (Trojan.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{0BF73E27-2734-4F7B-925A-4BBB1457F5FA} (Trojan.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{E2ED56B6-35FC-4484-9530-EC87FB458E78} (Trojan.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\PCTutoBHO.PCTBHO.1 (Trojan.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\PCTutoBHO.PCTBHO (Trojan.Eorezo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{293A63F7-C3B6-423A-9845-901AC0A7EE6E} (Trojan.Eorezo) -> No action taken.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
c:\program files\PCTuto\pctutobho.dll (Trojan.Eorezo) -> No action taken.
manolo06
 
Messages: 9
Inscription: 05 Aoû 2011, 15:57

Re: Ouverture intempestive de chrome avec publicités

Messagede manolo06 » 05 Aoû 2011, 16:14

OTL logfile created on: 05/08/2011 16:25:55 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Manu\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 1,31 Gb Available Physical Memory | 43,67% Memory free
6,22 Gb Paging File | 4,60 Gb Available in Paging File | 73,89% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 287,54 Gb Total Space | 100,10 Gb Free Space | 34,81% Space Free | Partition Type: NTFS
Drive D: | 10,55 Gb Total Space | 1,73 Gb Free Space | 16,40% Space Free | Partition Type: NTFS
Drive E: | 702,31 Mb Total Space | 696,67 Mb Free Space | 99,20% Space Free | Partition Type: UDF

Computer Name: MAISON | User Name: Manu | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/08/05 15:39:50 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Manu\Desktop\OTL.exe
PRC - [2011/07/17 08:36:25 | 001,191,216 | ---- | M] (Lavasoft Limited) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
PRC - [2011/07/17 08:36:24 | 002,151,640 | ---- | M] (Lavasoft Limited) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
PRC - [2011/07/09 06:51:19 | 001,012,792 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2011/07/04 13:43:54 | 003,493,720 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011/07/04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/04/14 13:40:06 | 000,663,168 | ---- | M] (PCTuto) -- C:\Users\Manu\AppData\Roaming\PCtuto\UpdatePCTuto\autoupdater.exe
PRC - [2011/04/14 13:40:04 | 000,982,656 | ---- | M] (PCTUTO) -- C:\Program Files\PCTuto\pctuto.exe
PRC - [2009/06/03 20:43:18 | 000,450,652 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2009/06/03 20:43:18 | 000,217,170 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_827e372d\stacsv.exe
PRC - [2009/04/11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/03/05 16:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/03/02 18:43:08 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_827e372d\AEstSrv.exe
PRC - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2008/10/06 10:54:52 | 000,365,952 | ---- | M] () -- C:\Program Files\SMINST\BLService.exe
PRC - [2008/09/26 02:36:40 | 001,148,200 | ---- | M] (CyberLink Corp.) -- C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe
PRC - [2008/09/25 18:42:24 | 000,189,736 | ---- | M] (CyberLink) -- C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
PRC - [2008/09/25 18:41:44 | 001,152,296 | ---- | M] (CyberLink Corp.) -- C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
PRC - [2008/09/23 11:03:38 | 000,912,688 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
PRC - [2008/06/10 05:27:04 | 000,144,784 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
PRC - [2008/01/21 04:23:32 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe


========== Modules (SafeList) ==========

MOD - [2011/08/05 15:39:50 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Manu\Desktop\OTL.exe
MOD - [2011/07/04 13:43:51 | 000,199,792 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\snxhk.dll
MOD - [2011/07/04 13:43:46 | 000,122,512 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\ashShell.dll
MOD - [2010/08/31 17:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
MOD - [2010/05/04 21:13:07 | 000,231,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
MOD - [2008/01/21 04:25:01 | 000,183,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\duser.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/07/17 08:36:24 | 002,151,640 | ---- | M] (Lavasoft Limited) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2011/07/04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2009/06/03 20:43:18 | 000,217,170 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_827e372d\stacsv.exe -- (STacSV)
SRV - [2009/03/02 18:43:08 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_827e372d\AEstSrv.exe -- (AESTFilters)
SRV - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008/10/06 10:54:52 | 000,365,952 | ---- | M] () [Auto | Running] -- C:\Program Files\SMINST\BLService.exe -- (Recovery Service for Windows)
SRV - [2008/02/03 13:00:00 | 000,129,992 | ---- | M] (EasyBits Sofware AS) [Auto | Running] -- C:\Windows\System32\ezsvc7.dll -- (ezSharedSvc)
SRV - [2008/01/21 04:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - [2011/07/17 08:36:39 | 000,015,232 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys -- (Lavasoft Kernexplorer)
DRV - [2011/07/04 13:36:43 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/07/04 13:36:32 | 000,309,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/07/04 13:35:23 | 000,043,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/07/04 13:32:32 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/07/04 13:32:20 | 000,054,104 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2011/07/04 13:32:12 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011/05/13 18:57:42 | 000,025,656 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\hpdskflt.sys -- (hpdskflt)
DRV - [2011/05/13 18:57:20 | 000,035,896 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer)
DRV - [2010/11/22 10:50:19 | 000,064,288 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2009/10/03 06:02:06 | 009,905,096 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009/06/03 20:43:18 | 000,407,040 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2008/10/09 15:42:42 | 000,017,408 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\KMWDFILTER.sys -- (KMWDFILTER)
DRV - [2008/09/26 02:36:34 | 000,059,376 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files\Hewlett-Packard\Media\DVD\000.fcl -- ({55662437-DA8C-40c0-AADA-2C816A897A49})
DRV - [2008/09/04 19:47:00 | 000,054,784 | ---- | M] (ENE TECHNOLOGY INC.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\enecir.sys -- (enecir)
DRV - [2008/08/07 19:01:44 | 000,097,536 | ---- | M] (JMicron Technology Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\jmcr.sys -- (JMCR)
DRV - [2008/08/06 18:26:08 | 000,124,928 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2008/01/21 04:23:20 | 002,225,664 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw3v32.sys -- (NETw3v32) Intel(R)
DRV - [2007/06/18 18:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... on&pf=cnnb
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-3315831376-4278465777-3592807419-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... on&pf=cnnb
IE - HKU\S-1-5-21-3315831376-4278465777-3592807419-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-3315831376-4278465777-3592807419-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-3315831376-4278465777-3592807419-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
IE - HKU\S-1-5-21-3315831376-4278465777-3592807419-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-3315831376-4278465777-3592807419-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3315831376-4278465777-3592807419-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2166.3772\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)



O1 HOSTS File: ([2011/08/05 12:33:22 | 000,436,305 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 15019 more lines...
O2 - BHO: (PCTBHO Class) - {293A63F7-C3B6-423a-9845-901AC0A7EE6E} - C:\Program Files\PCTuto\pctutoBHO.dll (PCTUTO)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AOL Toolbar BHO) - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O3 - HKU\S-1-5-21-3315831376-4278465777-3592807419-1000\..\Toolbar\WebBrowser: (no name) - {0E1230F8-EA50-42A9-983C-D22ABC2EED3B} - No CLSID value found.
O3 - HKU\S-1-5-21-3315831376-4278465777-3592807419-1000\..\Toolbar\WebBrowser: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CLMLServer for HP TouchSmart] C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [DVDAgent] C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe (CyberLink Corp.)
O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [PCTuto] C:\Program Files\PCTuto\pctuto.exe (PCTUTO)
O4 - HKLM..\Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (Hewlett-Packard)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [TSMAgent] C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UCam_Menu] C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateLBPShortCut] C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateP2GoShortCut] C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePDIRShortCut] C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePSTShortCut] C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-3315831376-4278465777-3592807419-1000..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKLM..\RunOnce: [] File not found
O4 - HKLM..\RunOnce: [autoupdater] C:\Users\Manu\AppData\Roaming\PCtuto\UpdatePCTuto\autoupdater.exe (PCTuto)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE ()
O8 - Extra context menu item: &Recherche AOL Toolbar - C:\ProgramData\AOL\ieToolbar\resources\fr-FR\local\search.html ()
O9 - Extra 'Tools' menuitem : Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\Reflection.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\Reflection.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\Windows\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
NetSvcs: ezSharedSvc - C:\Windows\System32\ezsvc7.dll (EasyBits Sofware AS)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2011/08/05 15:59:00 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011/08/05 15:54:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT
[2011/08/05 15:54:47 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2011/08/05 15:51:51 | 000,791,393 | ---- | C] (Lars Hederer ) -- C:\Users\Manu\Desktop\erunt-setup.exe
[2011/08/05 15:46:15 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Malwarebytes
[2011/08/05 15:43:29 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/08/05 15:43:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/08/05 15:43:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/08/05 15:43:23 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/08/05 15:43:23 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/08/05 15:41:28 | 009,435,312 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Manu\Desktop\mbam-setup-1.51.0.1200.exe
[2011/08/05 15:39:53 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Users\Manu\Desktop\OTL.exe
[2011/08/05 15:25:35 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Remover
[2011/08/05 12:41:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2011/08/05 10:56:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
[2011/08/05 10:55:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2011/08/05 10:55:55 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2011/08/04 13:58:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCTuto
[2011/08/04 13:58:50 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\PCtuto
[2011/08/04 13:58:45 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\PCTuto
[2011/08/04 13:58:45 | 000,000,000 | ---D | C] -- C:\Program Files\PCTuto
[2011/08/01 17:24:45 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\CyberLink
[2011/07/31 11:11:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/07/31 11:10:09 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/07/31 11:07:08 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/07/24 15:45:06 | 000,000,000 | ---D | C] -- C:\Users\Manu\Desktop\Photos La Joue du Loup
[2011/07/22 14:46:19 | 000,028,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mdimon.dll
[2011/07/22 14:43:12 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2011/07/21 19:03:35 | 000,000,000 | ---D | C] -- C:\Windows\fr
[2011/07/21 19:01:38 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2011/07/21 18:55:19 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll
[2011/07/21 18:55:19 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll
[2011/07/21 18:55:18 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll
[2011/07/21 18:55:13 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll
[2011/07/21 18:52:37 | 000,754,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webservices.dll
[2011/07/21 18:52:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011/07/21 18:50:43 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2011/07/21 18:50:43 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2011/07/21 18:50:43 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011/07/21 18:50:42 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2011/07/21 18:50:42 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2011/07/21 18:50:42 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011/07/21 18:50:42 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2011/07/21 18:50:42 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2011/07/21 18:50:42 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2011/07/21 18:50:42 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011/07/21 18:50:42 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2011/07/21 18:50:42 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2011/07/21 18:50:42 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2011/07/21 18:50:42 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2011/07/21 18:50:42 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2011/07/21 18:50:42 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2011/07/21 18:50:42 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2011/07/21 18:50:41 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011/07/21 18:50:41 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2011/07/21 18:50:41 | 000,580,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011/07/21 18:50:41 | 000,420,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2011/07/21 18:50:41 | 000,353,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2011/07/21 18:50:41 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2011/07/21 18:50:41 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2011/07/21 18:50:41 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2011/07/21 18:50:41 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2011/07/21 18:50:41 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2011/07/21 18:50:41 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2011/07/21 18:50:41 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2011/07/21 18:50:41 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2011/07/21 18:50:41 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2011/07/21 18:50:40 | 001,797,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2011/07/21 18:50:40 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2011/07/21 18:50:40 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll
[2011/07/21 18:50:40 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011/07/21 18:50:40 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2011/07/21 18:50:40 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2011/07/21 18:50:40 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2011/07/21 18:50:40 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2011/07/21 18:50:03 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Portable Devices
[2011/07/21 18:01:06 | 000,000,000 | ---D | C] -- C:\Windows\CheckSur
[2011/07/21 17:36:49 | 000,368,640 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\aestecap.dll
[2011/07/21 17:36:48 | 000,061,440 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\aestaren.dll
[2011/07/21 17:36:47 | 000,142,848 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\aestacap.dll
[2011/07/21 17:36:45 | 012,021,852 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\idtcpl.cpl
[2011/07/21 17:36:45 | 000,536,576 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\idtmini1.exe
[2011/07/21 17:36:45 | 000,450,652 | ---- | C] (IDT, Inc.) -- C:\Windows\sttray.exe
[2011/07/21 17:36:45 | 000,086,016 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AESTCom.dll
[2011/07/21 17:36:44 | 003,567,616 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stlang.dll
[2011/07/21 17:35:38 | 000,914,432 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stapo.dll
[2011/07/21 17:35:37 | 000,483,840 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stapi32.dll
[2011/07/21 17:35:07 | 000,000,000 | ---D | C] -- C:\Program Files\IDT
[2011/07/21 17:33:25 | 000,876,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2011/07/21 16:33:03 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbonRes.dll
[2011/07/21 16:33:03 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2011/07/21 16:33:02 | 003,023,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbon.dll
[2011/07/21 16:32:22 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2011/07/21 16:32:21 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2011/07/21 16:32:21 | 000,321,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2011/07/21 16:32:21 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiag.exe
[2011/07/21 16:32:21 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiagn.dll
[2011/07/21 16:32:21 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2011/07/21 16:31:51 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BthMtpContextHandler.dll
[2011/07/21 16:31:51 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDShextAutoplay.exe
[2011/07/21 16:31:46 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceConnectApi.dll
[2011/07/21 16:31:45 | 000,546,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll
[2011/07/21 16:31:45 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdMtp.dll
[2011/07/21 16:31:45 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdMtpUS.dll
[2011/07/21 16:31:45 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdConns.dll
[2011/07/21 16:31:44 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDSp.dll
[2011/07/21 16:31:44 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2011/07/21 16:31:44 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWMDRM.dll
[2011/07/21 16:31:44 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
[2011/07/21 16:31:44 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll
[2011/07/21 16:30:50 | 000,555,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll
[2011/07/21 16:30:50 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleaccrc.dll
[2011/07/21 16:10:29 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011/07/21 16:10:29 | 001,029,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2011/07/21 16:10:29 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2011/07/21 16:10:29 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011/07/21 16:10:29 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2011/07/21 16:10:29 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2011/07/21 16:10:28 | 001,068,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011/07/21 16:10:27 | 000,683,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011/07/21 16:10:24 | 001,554,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xpsservices.dll
[2011/07/21 16:10:24 | 000,847,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OpcServices.dll
[2011/07/21 16:10:24 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011/07/21 15:36:31 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2011/07/21 15:23:32 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2011/07/21 03:39:03 | 000,979,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFH264Dec.dll
[2011/07/21 03:39:02 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2011/07/21 03:39:02 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFHEAACdec.dll
[2011/07/21 03:39:02 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfmp4src.dll
[2011/07/21 03:39:02 | 000,261,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2011/07/21 03:39:02 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011/07/21 03:39:01 | 002,873,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011/07/21 03:39:01 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2011/07/21 03:39:01 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2011/07/21 03:39:01 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011/07/21 03:38:59 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2011/07/21 03:38:58 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2011/07/20 21:11:53 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Microsoft Help
[2011/07/20 19:42:52 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu-ES
[2011/07/20 19:42:52 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca-ES
[2011/07/20 19:42:50 | 000,000,000 | ---D | C] -- C:\Windows\System32\vi-VN
[2011/07/20 19:04:24 | 000,000,000 | ---D | C] -- C:\Windows\System32\EventProviders
[
manolo06
 
Messages: 9
Inscription: 05 Aoû 2011, 15:57

Re: Ouverture intempestive de chrome avec publicités

Messagede manolo06 » 05 Aoû 2011, 16:17

2011/07/20 18:50:48 | 012,240,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll
[2011/07/20 18:50:41 | 001,081,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLCExt.dll
[2011/07/20 18:50:32 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FunctionDiscoveryFolder.dll
[2011/07/20 18:50:32 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingWizard.exe
[2011/07/20 18:50:29 | 002,644,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
[2011/07/20 18:50:25 | 001,480,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2011/07/20 18:50:24 | 000,684,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\spsys.sys
[2011/07/20 18:50:22 | 001,576,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2011/07/20 18:50:21 | 000,779,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll
[2011/07/20 18:50:19 | 000,928,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavenge.dll
[2011/07/20 18:50:16 | 000,677,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2fs.dll
[2011/07/20 18:50:09 | 000,291,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WscEapPr.dll
[2011/07/20 18:50:08 | 000,968,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz2.dll
[2011/07/20 18:50:04 | 000,619,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe
[2011/07/20 18:50:02 | 001,216,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayCpl.dll
[2011/07/20 18:49:58 | 000,289,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spinstall.exe
[2011/07/20 18:49:58 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spreview.exe
[2011/07/20 18:49:57 | 000,978,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmv2clt.dll
[2011/07/20 18:49:54 | 000,438,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_GenuineIntel.dll
[2011/07/20 18:49:54 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwizui.dll
[2011/07/20 18:49:48 | 000,670,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2011/07/20 18:49:47 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMPEG2VDEC.DLL
[2011/07/20 18:49:47 | 000,351,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2011/07/20 18:49:47 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2011/07/20 18:49:46 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll
[2011/07/20 18:49:44 | 001,459,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\esent.dll
[2011/07/20 18:49:44 | 000,729,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10K.DLL
[2011/07/20 18:49:44 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2011/07/20 18:49:43 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairing.dll
[2011/07/20 18:49:42 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sperror.dll
[2011/07/20 18:49:42 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\korwbrkr.dll
[2011/07/20 18:49:41 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IasMigReader.exe
[2011/07/20 18:49:36 | 001,589,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjet40.dll
[2011/07/20 18:49:33 | 001,381,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Query.dll
[2011/07/20 18:49:33 | 000,883,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10.IME
[2011/07/20 18:49:32 | 001,078,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diagperf.dll
[2011/07/20 18:49:32 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexch40.dll
[2011/07/20 18:49:31 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\P2PGraph.dll
[2011/07/20 18:49:30 | 000,986,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2011/07/20 18:49:30 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
[2011/07/20 18:49:29 | 000,950,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mblctr.exe
[2011/07/20 18:49:28 | 001,792,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmc.exe
[2011/07/20 18:49:28 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uDWM.dll
[2011/07/20 18:49:27 | 000,466,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\riched20.dll
[2011/07/20 18:49:27 | 000,454,144 | ---- | C] (Microsoft) -- C:\Windows\System32\IasMigPlugin.dll
[2011/07/20 18:49:26 | 000,880,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RacEngn.dll
[2011/07/20 18:49:26 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBth.dll
[2011/07/20 18:49:23 | 002,012,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\milcore.dll
[2011/07/20 18:49:23 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorAPI.dll
[2011/07/20 18:49:22 | 001,112,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2011/07/20 18:49:22 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
[2011/07/20 18:49:22 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spoolss.dll
[2011/07/20 18:49:20 | 000,950,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpedit.dll
[2011/07/20 18:49:20 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjtes40.dll
[2011/07/20 18:49:20 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayDriverLib.dll
[2011/07/20 18:49:19 | 000,099,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll
[2011/07/20 18:49:18 | 003,217,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSAT.exe
[2011/07/20 18:49:17 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationSettings.exe
[2011/07/20 18:49:16 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Magnify.exe
[2011/07/20 18:49:16 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstext40.dll
[2011/07/20 18:49:16 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AuxiliaryDisplayServices.dll
[2011/07/20 18:49:14 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexcl40.dll
[2011/07/20 18:49:14 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2011/07/20 18:49:14 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwmi.dll
[2011/07/20 18:49:13 | 001,524,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsAnytimeUpgradeCPL.dll
[2011/07/20 18:49:13 | 001,209,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comsvcs.dll
[2011/07/20 18:49:13 | 000,454,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxbde40.dll
[2011/07/20 18:49:11 | 001,985,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2011/07/20 18:49:08 | 001,086,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NetProjW.dll
[2011/07/20 18:49:06 | 000,643,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrepl40.dll
[2011/07/20 18:49:05 | 000,640,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl
[2011/07/20 18:49:04 | 000,469,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.dll
[2011/07/20 18:49:04 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2011/07/20 18:49:04 | 000,102,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2011/07/20 18:49:03 | 000,205,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eudcedit.exe
[2011/07/20 18:49:02 | 002,926,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2011/07/20 18:49:01 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mspbde40.dll
[2011/07/20 18:49:00 | 001,788,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll
[2011/07/20 18:48:59 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msltus40.dll
[2011/07/20 18:48:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\davclnt.dll
[2011/07/20 18:48:58 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd3x40.dll
[2011/07/20 18:48:58 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorPwdMgr.dll
[2011/07/20 18:48:57 | 001,053,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtctm.dll
[2011/07/20 18:48:57 | 000,250,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll
[2011/07/20 18:48:56 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlhtml.dll
[2011/07/20 18:48:49 | 000,614,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2011/07/20 18:48:49 | 000,483,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\samsrv.dll
[2011/07/20 18:48:48 | 000,443,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32spl.dll
[2011/07/20 18:48:47 | 000,582,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLCommDlg.dll
[2011/07/20 18:48:47 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WcnNetsh.dll
[2011/07/20 18:48:44 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\compcln.exe
[2011/07/20 18:48:43 | 001,730,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apds.dll
[2011/07/20 18:48:42 | 000,618,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswstr10.dll
[2011/07/20 18:48:42 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmlfilter.dll
[2011/07/20 18:48:40 | 000,223,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2011/07/20 18:48:36 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLUI.exe
[2011/07/20 18:48:36 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapphost.dll
[2011/07/20 18:48:34 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlsrv32.dll
[2011/07/20 18:48:34 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd2x40.dll
[2011/07/20 18:48:32 | 000,926,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2011/07/20 18:48:32 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\propdefs.dll
[2011/07/20 18:48:30 | 001,856,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dbgeng.dll
[2011/07/20 18:48:30 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtutil.exe
[2011/07/20 18:48:29 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssitlb.dll
[2011/07/20 18:48:20 | 002,167,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcndmgr.dll
[2011/07/20 18:48:17 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devmgr.dll
[2011/07/20 18:48:17 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe
[2011/07/20 18:48:16 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netlogon.dll
[2011/07/20 18:48:16 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsldpc.dll
[2011/07/20 18:48:16 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingProxy.dll
[2011/07/20 18:48:16 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscb.dll
[2011/07/20 18:48:16 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBthProxy.dll
[2011/07/20 18:48:14 | 001,533,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz.dll
[2011/07/20 18:48:14 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\evr.dll
[2011/07/20 18:48:13 | 001,382,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVSDECD.DLL
[2011/07/20 18:48:12 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quick.ime
[2011/07/20 18:48:12 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qintlgnt.ime
[2011/07/20 18:48:12 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\phon.ime
[2011/07/20 18:48:12 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cintlgnt.ime
[2011/07/20 18:48:12 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chajei.ime
[2011/07/20 18:48:10 | 001,143,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wercon.exe
[2011/07/20 18:48:10 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
[2011/07/20 18:48:10 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mimefilt.dll
[2011/07/20 18:48:08 | 000,560,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2011/07/20 18:48:08 | 000,323,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certcli.dll
[2011/07/20 18:48:07 | 000,856,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswdat10.dll
[2011/07/20 18:48:07 | 000,396,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsmsnap.dll
[2011/07/20 18:48:07 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjter40.dll
[2011/07/20 18:48:06 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\reg.exe
[2011/07/20 18:48:06 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtffilt.dll
[2011/07/20 18:48:05 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2011/07/20 18:48:05 | 000,035,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl
[2011/07/20 18:48:04 | 000,996,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2011/07/20 18:48:03 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoScreensaver.scr
[2011/07/20 18:48:03 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2011/07/20 18:48:02 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
[2011/07/20 18:48:02 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2011/07/20 18:48:02 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshooks.dll
[2011/07/20 18:48:01 | 000,332,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msihnd.dll
[2011/07/20 18:48:00 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll
[2011/07/20 18:48:00 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msstrc.dll
[2011/07/20 18:48:00 | 000,035,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsWpfWrp.exe
[2011/07/20 18:47:58 | 000,310,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mtxclu.dll
[2011/07/20 18:47:58 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fundisc.dll
[2011/07/20 18:47:58 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetpp.dll
[2011/07/20 18:47:57 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2011/07/20 18:47:57 | 000,080,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2011/07/20 18:47:55 | 001,020,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdc.dll
[2011/07/20 18:47:55 | 000,125,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Classpnp.sys
[2011/07/20 18:47:55 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi.dll
[2011/07/20 18:47:54 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chsbrkr.dll
[2011/07/20 18:47:54 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassdo.dll
[2011/07/20 18:47:54 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Kswdmcap.ax
[2011/07/20 18:47:53 | 001,823,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll
[2011/07/20 18:47:53 | 000,636,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autofmt.exe
[2011/07/20 18:47:53 | 000,009,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll
[2011/07/20 18:47:52 | 000,050,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PSHED.DLL
[2011/07/20 18:47:52 | 000,035,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\crashdmp.sys
[2011/07/20 18:47:51 | 000,757,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\azroles.dll
[2011/07/20 18:47:51 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pdh.dll
[2011/07/20 18:47:51 | 000,122,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Storport.sys
[2011/07/20 18:47:51 | 000,109,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2011/07/20 18:47:50 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnrollUI.dll
[2011/07/20 18:47:49 | 002,205,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll
[2011/07/20 18:47:49 | 001,107,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pidgenx.dll
[2011/07/20 18:47:49 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysmon.ocx
[2011/07/20 18:47:47 | 000,593,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comuid.dll
[2011/07/20 18:47:46 | 001,502,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certmgr.dll
[2011/07/20 18:47:46 | 000,627,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sethc.exe
[2011/07/20 18:47:46 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2011/07/20 18:47:46 | 000,017,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll
[2011/07/20 18:47:45 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\untfs.dll
[2011/07/20 18:47:45 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassam.dll
[2011/07/20 18:47:45 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scrobj.dll
[2011/07/20 18:47:44 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imkr80.ime
[2011/07/20 18:47:44 | 000,099,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2011/07/20 18:47:44 | 000,043,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\pciidex.sys
[2011/07/20 18:47:43 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasnap.dll
[2011/07/20 18:47:42 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoconv.exe
[2011/07/20 18:47:41 | 001,541,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\onex.dll
[2011/07/20 18:47:41 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2011/07/20 18:47:41 | 000,130,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\basecsp.dll
[2011/07/20 18:47:41 | 000,027,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Dumpata.sys
[2011/07/20 18:47:41 | 000,017,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdcom.dll
[2011/07/20 18:47:40 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wow32.dll
[2011/07/20 18:47:40 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osk.exe
[2011/07/20 18:47:40 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
[2011/07/20 18:47:38 | 000,860,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFaultSecure.exe
[2011/07/20 18:47:38 | 000,612,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpencom.dll
[2011/07/20 18:47:38 | 000,564,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
[2011/07/20 18:47:38 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RelMon.dll
[2011/07/20 18:47:38 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSCard.dll
[2011/07/20 18:47:38 | 000,019,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdusb.dll
[2011/07/20 18:47:38 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spcmsg.dll
[2011/07/20 18:47:37 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\offfilt.dll
[2011/07/20 18:47:36 | 000,638,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Utilman.exe
[2011/07/20 18:47:36 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskraid.exe
[2011/07/20 18:47:36 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFault.exe
[2011/07/20 18:47:36 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsepno.dll
[2011/07/20 18:47:35 | 000,852,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcmde.dll
[2011/07/20 18:47:35 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prnntfy.dll
[2011/07/20 18:47:35 | 000,391,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll
[2011/07/20 18:47:35 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SndVol.exe
[2011/07/20 18:47:35 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msnetobj.dll
[2011/07/20 18:47:35 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysclass.dll
[2011/07/20 18:47:35 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsmsext.dll
[2011/07/20 18:47:34 | 000,444,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll
[2011/07/20 18:47:34 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2011/07/20 18:47:34 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ulib.dll
[2011/07/20 18:47:34 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2011/07/20 18:47:33 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscntfy.dll
[2011/07/20 18:47:33 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IPHLPAPI.DLL
[2011/07/20 18:47:33 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastapi.dll
[2011/07/20 18:47:32 | 001,342,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\brcpl.dll
[2011/07/20 18:47:32 | 000,759,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsecsnp.dll
[2011/07/20 18:47:32 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpsetup.dll
[2011/07/20 18:47:32 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdProxy.dll
[2011/07/20 18:47:31 | 000,507,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsdyn.dll
[2011/07/20 18:47:31 | 000,399,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlangpui.dll
[2011/07/20 18:47:31 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskpart.exe
[2011/07/20 18:47:31 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll
[2011/07/20 18:47:31 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashlpr.dll
[2011/07/20 18:47:31 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logman.exe
[2011/07/20 18:47:30 | 001,575,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVENCOD.DLL
[2011/07/20 18:47:30 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasapi32.dll
[2011/07/20 18:47:30 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntprint.dll
[2011/07/20 18:47:29 | 001,580,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpccpl.dll
[2011/07/20 18:47:29 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrad.dll
[2011/07/20 18:47:29 | 000,155,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2011/07/20 18:47:29 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wusa.exe
[2011/07/20 18:47:29 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\findstr.exe
[2011/07/20 18:47:28 | 002,225,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcenter.dll
[2011/07/20 18:47:27 | 000,876,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
[2011/07/20 18:47:27 | 000,825,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdlg.dll
[2011/07/20 18:47:27 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassvcs.dll
[2011/07/20 18:47:27 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsnmp32.dll
[2011/07/20 18:47:26 | 001,152,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\themecpl.dll
[2011/07/20 18:47:25 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scansetting.dll
[2011/07/20 18:47:25 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msutb.dll
[2011/07/20 18:47:25 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshom.ocx
[2011/07/20 18:47:25 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstlsapi.dll
[2011/07/20 18:47:25 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2011/07/20 18:47:25 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
[2011/07/20 18:47:24 | 000,777,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slcc.dll
[2011/07/20 18:47:24 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ks.sys
[2011/07/20 18:47:24 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\powrprof.dll
[2011/07/20 18:47:24 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasacct.dll
[2011/07/20 18:47:23 | 003,072,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkmap.dll
[2011/07/20 18:47:23 | 001,248,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PerfCenterCPL.dll
[2011/07/20 18:47:23 | 000,723,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\powercpl.dll
[2011/07/20 18:47:22 | 001,645,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2011/07/20 18:47:22 | 001,224,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sud.dll
[2011/07/20 18:47:22 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.exe
[2011/07/20 18:47:21 | 000,842,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\systemcpl.dll
[2011/07/20 18:47:21 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcaui.dll
[2011/07/20 18:47:20 | 002,515,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\accessibilitycpl.dll
[2011/07/20 18:47:20 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmci.dll
[2011/07/20 18:47:19 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanpref.dll
[2011/07/20 18:47:19 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usercpl.dll
[2011/07/20 18:47:19 | 000,516,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoplay.dll
[2011/07/20 18:47:19 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2011/07/20 18:47:19 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpchttp.dll
[2011/07/20 18:47:19 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pintlgnt.ime
[2011/07/20 18:47:19 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\regapi.dll
[2011/07/20 18:47:18 | 000,532,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpcao.dll
[2011/07/20 18:47:18 | 000,408,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msinfo32.exe
[2011/07/20 18:47:18 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scksp.dll
[2011/07/20 18:47:18 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsutil.dll
[2011/07/20 18:47:18 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\feclient.dll
[2011/07/20 18:47:17 | 000,306,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scesrv.dll
[2011/07/20 18:47:17 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2011/07/20 18:47:17 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll
[2011/07/20 18:47:17 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
[2011/07/20 18:47:17 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleprn.dll
[2011/07/20 18:47:17 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3msm.dll
[2011/07/20 18:47:17 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rekeywiz.exe
[2011/07/20 18:47:17 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iaspolcy.dll
[2011/07/20 18:47:17 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscisvif.dll
[2011/07/20 18:47:16 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscui.cpl
[2011/07/20 18:47:16 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncryptui.dll
[2011/07/20 18:47:16 | 000,407,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpapimig.exe
[2011/07/20 18:47:16 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DeviceEject.exe
[2011/07/20 18:47:15 | 000,642,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasgcw.dll
[2011/07/20 18:47:15 | 000,595,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2011/07/20 18:47:15 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpui.dll
[2011/07/20 18:47:15 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2011/07/20 18:47:15 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certreq.exe
[2011/07/20 18:47:15 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scecli.dll
[2011/07/20 18:47:15 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hdwwiz.exe
[2011/07/20 18:47:15 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\perfdisk.dll
[2011/07/20 18:47:14 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasplap.dll
[2011/07/20 18:47:14 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmartcardCredentialProvider.dll
[2011/07/20 18:47:14 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSTheme.exe
[2011/07/20 18:47:14 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwinsat.dll
[2011/07/20 18:47:13 | 000,170,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll
[2011/07/20 18:47:13 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2011/07/20 18:47:13 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpmon.dll
[2011/07/20 18:47:13 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWSD.dll
[2011/07/20 18:47:13 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPUnattend.exe
[2011/07/20 18:47:13 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmmon32.exe
[2011/07/20 18:47:13 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\whealogr.dll
[2011/07/20 18:47:13 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBCAMD2.sys
[2011/07/20 18:47:13 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBCAMD.sys
[2011/07/20 18:47:12 | 000,481,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmdial32.dll
[2011/07/20 18:47:12 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2011/07/20 18:47:12 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\raschap.dll
[2011/07/20 18:47:12 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SnippingTool.exe
[2011/07/20 18:47:12 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
[2011/07/20 18:47:11 | 000,657,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVXENCD.DLL
[2011/07/20 18:47:11 | 000,547,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiaaut.dll
[2011/07/20 18:47:11 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shwebsvc.dll
[2011/07/20 18:47:11 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unimdm.tsp
[2011/07/20 18:47:11 | 000,259,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasppp.dll
[2011/07/20 18:47:11 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanui.dll
[2011/07/20 18:47:11 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsprop.dll
[2011/07/20 18:47:11 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPutil.exe
[2011/07/20 18:47:10 | 002,153,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oobefldr.dll
[2011/07/20 18:47:10 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shsetup.dll
[2011/07/20 18:47:10 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dimsroam.dll
[2011/07/20 18:47:09 | 006,103,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chtbrkr.dll
[2011/07/20 18:47:09 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\modemui.dll
[2011/07/20 18:47:09 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscandui.dll
[2011/07/20 18:47:09 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasmontr.dll
[2011/07/20 18:47:08 | 000,533,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdrmsdk.dll
[2011/07/20 18:47:08 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dataclen.dll
[2011/07/20 18:47:07 | 000,542,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\blackbox.dll
[2011/07/20 18:47:07 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\credui.dll
[2011/07/20 18:47:07 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpwsx.dll
[2011/07/20 18:47:07 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlgpclnt.dll
[2011/07/20 18:47:06 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll
[2011/07/20 18:47:06 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDMon.dll
[2011/07/20 18:47:06 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys
[2011/07/20 18:47:05 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscp.dll
[2011/07/20 18:47:05 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2011/07/20 18:47:05 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cipher.exe
[2011/07/20 18:47:05 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ifmon.dll
[2011/07/20 18:47:04 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\thawbrkr.dll
[2011/07/20 18:47:04 | 000,217,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\InkEd.dll
[2011/07/20 18:47:04 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpresult.exe
[2011/07/20 18:47:04 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\softkbd.dll
[2011/07/20 18:47:04 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
[2011/07/20 18:47:04 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\watchdog.sys
[2011/07/20 18:47:04 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll
[2011/07/20 18:47:03 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MediaMetadataHandler.dll
[2011/07/20 18:47:03 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmmgrtn.dll
[2011/07/20 18:47:03 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmsynth.dll
[2011/07/20 18:47:03 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msctfui.dll
[2011/07/20 18:47:02 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\input.dll
[2011/07/20 18:47:02 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLLUA.exe
[2011/07/20 18:47:02 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\puiapi.dll
[2011/07/20 18:47:02 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mprapi.dll
[2011/07/20 18:47:02 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2011/07/20 18:47:02 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msisip.dll
[2011/07/20 18:47:01 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmusic.dll
[2011/07/20 18:47:01 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2011/07/20 18:47:01 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdSSDP.dll
[2011/07/20 18:47:01 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fc.exe
[2011/07/20 18:47:01 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll
[2011/07/20 18:47:00 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tintlgnt.ime
[2011/07/20 18:47:00 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjint40.dll
[2011/07/20 18:46:59 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapp3hst.dll
[2011/07/20 18:46:59 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\l2nacp.dll
[2011/07/20 18:46:59 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ftp.exe
[2011/07/20 18:46:58 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eappcfg.dll
[2011/07/20 18:46:58 | 000,083,456 | ---- | C] (Microsoft) -- C:\Windows\System32\SMBHelperClass.dll
[2011/07/20 18:46:58 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWCN.dll
[2011/07/20 18:46:58 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Storprop.dll
[2011/07/20 18:46:58 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdiag.dll
[2011/07/20 18:46:58 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3cfg.dll
[2011/07/20 18:46:58 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthci.dll
[2011/07/20 18:46:58 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthudtask.exe
[2011/07/20 18:46:58 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsdchngr.dll
[2011/07/20 18:46:58 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdial.exe
[2011/07/20 18:46:57 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nslookup.exe
[2011/07/20 18:46:57 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slcinst.dll
[2011/07/20 18:46:57 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkitemfactory.dll
[2011/07/20 18:46:57 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipconfig.exe
[2011/07/20 18:46:57 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CHxReadingStringIME.dll
[2011/07/20 18:46:56 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eappgnui.dll
[2011/07/20 18:46:56 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdeploy.dll
[2011/07/20 18:46:56 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hbaapi.dll
[2011/07/20 18:46:56 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2011/07/20 18:46:56 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ocsetup.exe
[2011/07/20 18:46:56 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FwRemoteSvr.dll
[2011/07/20 18:46:56 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcico.dll
[2011/07/20 18:46:55 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PNPXAssoc.dll
[2011/07/20 18:46:53 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpupdate.exe
[2011/07/20 18:46:49 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cbsra.exe
[2011/07/20 18:46:48 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrstub.exe
[2011/07/20 18:46:48 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsigd.dll
[2011/07/20 18:46:48 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsilog.dll
[2011/07/20 18:46:47 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NcdProp.dll
[2011/07/20 18:46:46 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxg.sys
[2011/07/20 18:46:46 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcconf.dll
[2011/07/20 18:46:46 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[2011/07/20 18:46:46 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdmdbg.dll
[2011/07/20 18:46:46 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetppui.dll
[2011/07/20 18:46:46 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwga.dll
[2011/07/20 18:46:45 | 000,052,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\stream.sys
[2011/07/20 18:46:45 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\RNDISMP.sys
[2011/07/20 18:46:43 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usb8023.sys
[2011/07/20 18:46:41 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\f3ahvoas.dll
[2011/07/20 18:46:40 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimsg.dll
[2011/07/20 18:45:51 | 000,705,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmiEngine.dll
[2011/07/20 18:45:37 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdscore.dll
[2011/07/20 18:45:37 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PkgMgr.exe
[2011/07/20 18:44:54 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvstore.dll
manolo06
 
Messages: 9
Inscription: 05 Aoû 2011, 15:57

Re: Ouverture intempestive de chrome avec publicités

Messagede manolo06 » 05 Aoû 2011, 16:18

[2011/07/19 18:34:14 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2011/07/19 18:32:04 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2011/07/19 18:30:11 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2011/07/19 17:06:09 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Windows Live
[2011/07/19 17:06:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2011/07/19 17:04:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2011/07/18 21:24:11 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2011/07/18 20:42:53 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Template
[2011/07/18 20:10:41 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2011/07/17 17:45:08 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\eMule
[2011/07/17 17:45:08 | 000,000,000 | ---D | C] -- C:\ProgramData\eMule
[2011/07/17 16:19:46 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\uStart
[2011/07/17 16:19:37 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eChanblard
[2011/07/17 16:19:36 | 000,000,000 | ---D | C] -- C:\Program Files\eChanblard
[2011/07/17 10:10:11 | 000,038,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys
[2011/07/17 08:53:15 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\WinRAR
[2011/07/17 08:53:14 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011/07/17 08:53:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011/07/17 08:53:11 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2011/07/17 08:50:46 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Apple Computer
[2011/07/17 08:50:46 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Apple Computer
[2011/07/17 08:50:24 | 000,107,368 | ---- | C] (GEAR Software Inc.) -- C:\Windows\System32\GEARAspi.dll
[2011/07/17 08:49:21 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/07/17 08:49:21 | 000,000,000 | ---D | C] -- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011/07/17 08:48:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011/07/17 08:47:49 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011/07/17 08:47:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2011/07/17 08:47:17 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Apple
[2011/07/17 08:47:14 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011/07/17 08:44:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2011/07/17 08:44:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011/07/17 08:30:41 | 000,064,288 | ---- | C] (Lavasoft AB) -- C:\Windows\System32\drivers\Lbd.sys
[2011/07/17 08:30:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2011/07/17 08:30:37 | 000,101,720 | ---- | C] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2011/07/17 08:28:44 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Sunbelt Software
[2011/07/17 08:28:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
[2011/07/17 08:28:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2011/07/17 08:28:03 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2011/07/17 08:15:20 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2011/07/17 08:12:23 | 000,000,000 | ---D | C] -- C:\ProgramData\WEBREG
[2011/07/17 07:57:04 | 000,000,000 | ---D | C] -- C:\ProgramData\HPSSUPPLY
[2011/07/17 07:54:14 | 000,000,000 | -H-D | C] -- C:\ProgramData\{589802B2-1BF3-4609-9ADE-CF6E6608D06D}
[2011/07/17 07:53:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2011/07/17 07:52:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2011/07/17 07:43:45 | 000,117,760 | ---- | C] (Hewlett-Packard Company) -- C:\Windows\System32\hpz3l4v2.dll
[2011/07/17 07:42:23 | 000,000,000 | ---D | C] -- C:\ProgramData\HP
[2011/07/17 07:42:19 | 000,258,048 | ---- | C] (Hewlett-Packard) -- C:\Windows\System32\hpzids01.dll
[2011/07/17 07:42:18 | 000,897,024 | ---- | C] (Hewlett-Packard Co.) -- C:\Windows\System32\hpotiop1.dll
[2011/07/17 07:42:18 | 000,675,840 | ---- | C] (Hewlett-Packard) -- C:\Windows\System32\hpowiav1.dll
[2011/07/17 07:42:18 | 000,303,104 | ---- | C] (Hewlett-Packard Co.) -- C:\Windows\System32\hpovst01.dll
[2011/07/17 07:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/07/17 07:30:17 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Skype
[2011/07/17 07:30:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2011/07/17 07:29:57 | 000,000,000 | ---D | C] -- C:\Program Files\Skype
[2011/07/17 07:29:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2011/07/17 07:29:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2011/07/17 07:27:35 | 000,000,000 | ---D | C] -- C:\ProgramData\LightScribe
[2011/07/17 07:24:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011/07/17 07:24:25 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2011/07/16 20:26:38 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Media Player Classic
[2011/07/16 20:01:03 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Adobe
[2011/07/16 19:56:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2011/07/16 19:54:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2011/07/16 19:50:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outil de mise à jour Google
[2011/07/16 19:50:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Google Updater
[2011/07/16 18:37:44 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2011/07/16 18:37:44 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2011/07/16 18:37:44 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2011/07/16 18:29:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
[2011/07/16 18:29:04 | 000,237,568 | ---- | C] (www.helixcommunity.org) -- C:\Windows\System32\yv12vfw.dll
[2011/07/16 18:29:04 | 000,232,448 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\mp3fhg.acm
[2011/07/16 18:29:04 | 000,151,552 | ---- | C] (fccHandler) -- C:\Windows\System32\ac3acm.acm
[2011/07/16 18:29:00 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2011/07/16 15:46:10 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2011/07/16 15:34:07 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2011/07/16 15:34:07 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2011/07/16 15:21:34 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2011/07/16 14:26:40 | 000,208,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinFXDocObj.exe
[2011/07/16 14:15:47 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2011/07/16 13:58:09 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2011/07/16 13:58:07 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2011/07/16 13:57:07 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2011/07/16 13:55:27 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrsmgr.dll
[2011/07/16 13:55:17 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2011/07/16 13:55:17 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2011/07/16 13:55:17 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmprovhost.exe
[2011/07/16 13:55:16 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmplpxy.dll
[2011/07/16 13:55:16 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrssrv.dll
[2011/07/16 13:55:15 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtfwd.dll
[2011/07/16 13:55:15 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2011/07/16 13:55:15 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecapi.dll
[2011/07/16 13:55:15 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmRes.dll
[2011/07/16 13:55:15 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pwrshplugin.dll
[2011/07/16 13:55:10 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrscmd.dll
[2011/07/16 13:55:10 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2011/07/16 13:55:10 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2011/07/16 13:55:09 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2011/07/16 13:55:09 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2011/07/16 12:45:22 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2011/07/16 12:45:22 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2011/07/16 12:45:22 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2011/07/16 12:45:22 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2011/07/16 12:45:05 | 000,292,864 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2011/07/16 12:45:05 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2011/07/16 12:45:05 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011/07/16 12:45:05 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2011/07/16 12:44:58 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2011/07/16 12:44:46 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll
[2011/07/16 12:44:45 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE
[2011/07/16 12:44:45 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE
[2011/07/16 12:44:45 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE
[2011/07/16 12:44:45 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE
[2011/07/16 12:44:45 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\finger.exe
[2011/07/16 12:44:45 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE
[2011/07/16 12:43:18 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll
[2011/07/16 12:43:18 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll
[2011/07/16 12:43:18 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll
[2011/07/16 12:43:18 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanhlp.dll
[2011/07/16 12:43:18 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
[2011/07/16 12:43:11 | 003,602,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2011/07/16 12:43:11 | 003,550,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2011/07/16 12:42:44 | 001,162,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2011/07/16 12:42:44 | 001,136,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2011/07/16 12:42:40 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2011/07/16 12:42:38 | 002,386,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2011/07/16 12:42:36 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2011/07/16 12:42:36 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2011/07/16 12:42:36 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll
[2011/07/16 12:42:29 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2011/07/16 12:42:25 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2011/07/16 12:42:12 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2011/07/16 12:42:11 | 002,043,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011/07/16 12:42:06 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2011/07/16 12:41:44 | 000,714,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2011/07/16 12:41:40 | 001,696,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2011/07/16 12:41:24 | 000,317,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2011/07/16 12:41:09 | 000,623,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\localspl.dll
[2011/07/16 12:41:08 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2011/07/16 12:41:04 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2011/07/16 12:41:03 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2011/07/16 12:40:58 | 001,259,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2011/07/16 12:40:55 | 000,867,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2011/07/16 12:40:37 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2011/07/16 12:40:36 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2011/07/16 12:40:36 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2011/07/16 12:40:36 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbeio.dll
[2011/07/16 12:40:34 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm
[2011/07/16 12:40:34 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
[2011/07/16 12:40:20 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2011/07/16 12:40:19 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2011/07/16 12:40:19 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2011/07/16 12:40:02 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2011/07/16 12:39:50 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2011/07/16 12:39:27 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb
[2011/07/16 12:39:27 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb
[2011/07/16 12:39:09 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2011/07/16 12:39:09 | 000,518,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2011/07/16 12:39:02 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2011/07/16 12:39:00 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2011/07/16 12:39:00 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2011/07/16 12:38:59 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2011/07/16 12:38:59 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2011/07/16 12:38:59 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2011/07/16 12:38:59 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2011/07/16 12:38:07 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2011/07/16 12:38:07 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2011/07/16 12:37:58 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll
[2011/07/16 12:37:58 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tscupgrd.exe
[2011/07/16 12:37:58 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2011/07/16 12:37:52 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2011/07/16 12:37:46 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2011/07/16 12:37:44 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2011/07/16 12:37:43 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2011/07/16 12:37:43 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2011/07/16 12:37:42 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2011/07/16 12:37:40 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2011/07/16 12:37:23 | 000,310,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2011/07/16 12:35:27 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2011/07/16 12:22:14 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Macromedia
[2011/07/16 12:20:58 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Adobe
[2011/07/16 12:20:47 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\AOL
[2011/07/16 06:38:10 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011/07/15 22:26:08 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Google
[2011/07/15 22:26:08 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2011/07/15 22:26:06 | 000,019,544 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2011/07/15 22:26:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2011/07/15 22:26:05 | 000,309,848 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011/07/15 22:26:02 | 000,043,608 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011/07/15 22:26:02 | 000,025,432 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011/07/15 22:26:01 | 000,441,176 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2011/07/15 22:26:00 | 000,054,104 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011/07/15 22:25:16 | 000,040,112 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2011/07/15 22:25:15 | 000,199,304 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011/07/15 22:25:04 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2011/07/15 22:25:04 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011/07/15 22:23:14 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Hewlett-Packard
[2011/07/15 22:22:56 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Hewlett-Packard
[2011/07/15 22:22:41 | 000,000,000 | R--D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011/07/15 22:22:41 | 000,000,000 | R--D | C] -- C:\Users\Manu\Searches
[2011/07/15 22:22:41 | 000,000,000 | R--D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011/07/15 22:22:35 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Identities
[2011/07/15 22:22:33 | 000,000,000 | R--D | C] -- C:\Users\Manu\Contacts
[2011/07/15 22:19:19 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\HP TCS
[2011/07/15 22:19:10 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Services
[2011/07/15 22:19:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Services en ligne
[2011/07/15 22:16:55 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\VirtualStore
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Voisinage réseau
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Voisinage d'impression
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\AppData\Local\Temporary Internet Files
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\SendTo
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Recent
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Modèles
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Documents\Mes vidéos
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Documents\Mes images
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Mes documents
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Menu Démarrer
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Documents\Ma musique
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Local Settings
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\AppData\Local\Historique
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Cookies
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Application Data
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\AppData\Local\Application Data
[2011/07/15 22:16:40 | 000,000,000 | --SD | C] -- C:\Users\Manu\AppData\Roaming\Microsoft
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Desktop\Videos
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Saved Games
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Pictures
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Music
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Links
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Favorites
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Downloads
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Documents
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Desktop
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011/07/15 22:16:40 | 000,000,000 | -H-D | C] -- C:\Users\Manu\AppData
[2011/07/15 22:16:40 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Temp
[2011/07/15 22:16:40 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Microsoft
[2011/07/15 22:16:40 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Media Center Programs
[2011/07/15 22:16:40 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
[2011/07/15 22:16:40 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Modèles
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes vidéos
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes images
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Démarrer
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Ma musique
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\Program Files\Fichiers communs
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoris
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Bureau
[2011/07/15 22:10:52 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/07/15 22:07:43 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\muvee
[2011/07/15 22:07:39 | 000,000,000 | ---D | C] -- C:\Program Files\muvee Technologies
[2011/07/15 22:07:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\muvee Technologies
[2011/07/15 21:57:20 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling
[2011/07/15 21:57:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LightScribe
[2011/07/15 21:56:48 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2011/07/15 21:54:25 | 000,000,000 | ---D | C] -- C:\Windows\System32\HPMDP
[2011/07/15 21:52:58 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\System32\CSVer.dll
[2011/07/15 21:52:58 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2011/07/15 21:52:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\no-NO
[2011/07/15 21:52:05 | 003,813,376 | ---- | C] (Broadcom Corporation) -- C:\Windows\System32\bcmihvsrv.dll
[2011/07/15 21:52:05 | 003,506,176 | ---- | C] (Broadcom Corporation) -- C:\Windows\System32\bcmihvui.dll
[2011/07/15 21:52:05 | 000,087,328 | ---- | C] (Broadcom Corporation) -- C:\Windows\System32\bcmwlcoi.dll
[2011/07/15 21:52:05 | 000,000,000 | ---D | C] -- C:\Program Files\Broadcom
[2011/07/15 21:51:17 | 000,124,928 | ---- | C] (Realtek Corporation ) -- C:\Windows\System32\drivers\Rtlh86.sys
[2011/07/15 21:51:17 | 000,009,728 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\Windows\System32\RtNicProp32.dll
[2011/07/15 21:51:17 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2011/07/15 21:50:49 | 000,000,000 | ---D | C] -- C:\Windows\System32\SRSLabs
[2011/07/15 21:50:22 | 000,175,104 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\staco.dll
[2011/07/15 21:49:38 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2011/07/15 21:49:14 | 000,110,080 | ---- | C] (JMicron Technology Corporation) -- C:\Windows\System32\JmCrIcon.dll
[2011/07/15 21:49:13 | 000,000,000 | ---D | C] -- C:\Windows\JMCR_DIR
[2011/07/15 21:48:46 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2011/07/15 21:48:02 | 001,108,512 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpluir.dll
[2011/07/15 21:47:13 | 000,584,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\NVUNINST.EXE
[2011/07/15 21:42:59 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2011/07/15 21:39:59 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2011/07/15 21:29:55 | 002,421,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2011/07/15 21:29:55 | 000,044,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2011/07/15 21:29:41 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2011/07/15 21:29:41 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2011/07/15 21:29:41 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2011/07/15 21:29:35 | 000,171,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2011/07/15 21:29:34 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2011/07/12 11:20:54 | 000,178,536 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dnssdX.dll
[2011/07/12 11:20:54 | 000,083,816 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dns-sd.exe
[2011/07/12 11:20:54 | 000,073,064 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dnssd.dll
[2011/07/12 11:20:54 | 000,050,536 | ---- | C] (Apple Inc.) -- C:\Windows\System32\jdns_sd.dll
manolo06
 
Messages: 9
Inscription: 05 Aoû 2011, 15:57

Re: Ouverture intempestive de chrome avec publicités

Messagede manolo06 » 05 Aoû 2011, 16:18

========== Files - Modified Within 30 Days ==========

[2011/08/05 16:27:48 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011/08/05 16:01:01 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/08/05 16:00:11 | 000,218,798 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011/08/05 16:00:11 | 000,218,798 | ---- | M] () -- C:\ProgramData\nvModes.001
[2011/08/05 15:55:41 | 000,005,024 | ---- | M] () -- C:\Users\Manu\Desktop\erunt-loc_fr (1).zip
[2011/08/05 15:54:56 | 000,000,913 | ---- | M] () -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
[2011/08/05 15:54:48 | 000,000,733 | ---- | M] () -- C:\Users\Manu\Desktop\NTREGOPT.lnk
[2011/08/05 15:54:48 | 000,000,714 | ---- | M] () -- C:\Users\Manu\Desktop\ERUNT.lnk
[2011/08/05 15:52:20 | 000,005,024 | ---- | M] () -- C:\Users\Manu\Desktop\erunt-loc_fr.zip
[2011/08/05 15:51:49 | 000,791,393 | ---- | M] (Lars Hederer ) -- C:\Users\Manu\Desktop\erunt-setup.exe
[2011/08/05 15:48:37 | 000,000,906 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/08/05 15:41:34 | 009,435,312 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Manu\Desktop\mbam-setup-1.51.0.1200.exe
[2011/08/05 15:40:04 | 000,000,417 | ---- | M] () -- C:\Users\Manu\Desktop\scan.zip
[2011/08/05 15:39:50 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Manu\Desktop\OTL.exe
[2011/08/05 15:25:36 | 000,001,676 | ---- | M] () -- C:\Users\Manu\Desktop\AD-R.lnk
[2011/08/05 15:16:37 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/08/05 15:16:37 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/08/05 13:19:32 | 000,001,000 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2011/08/05 13:16:50 | 000,001,048 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/08/05 13:16:35 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/08/05 13:16:33 | 3218,284,544 | -HS- | M] () -- C:\hiberfil.sys
[2011/08/05 12:38:01 | 101,221,856 | ---- | M] () -- C:\Users\Manu\Desktop\setup_11.0.0.1245.x01_2011_08_05_13_12.exe
[2011/08/05 12:33:22 | 000,436,305 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2011/08/05 12:28:17 | 000,436,305 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts.20110805-123322.backup
[2011/08/05 10:56:02 | 000,001,055 | ---- | M] () -- C:\Users\Manu\Desktop\Spybot - Search & Destroy.lnk
[2011/08/05 10:27:44 | 000,679,042 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2011/08/05 10:27:44 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/08/05 10:27:44 | 000,126,626 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2011/08/05 10:27:44 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/08/05 10:26:55 | 000,032,768 | ---- | M] () -- C:\Users\Manu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/08/05 10:21:10 | 000,394,440 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/08/01 17:58:28 | 000,002,685 | ---- | M] () -- C:\Users\Manu\Desktop\Microsoft Office Word 2003.lnk
[2011/07/31 17:35:18 | 000,014,136 | ---- | M] () -- C:\Users\Manu\Desktop\Facture aspirateur LG.pdf
[2011/07/31 14:20:27 | 000,000,360 | ---- | M] () -- C:\Users\Manu\Desktop\Musique - Raccourci.lnk
[2011/07/31 14:20:19 | 000,000,369 | ---- | M] () -- C:\Users\Manu\Desktop\Images - Raccourci.lnk
[2011/07/31 11:16:19 | 000,000,680 | ---- | M] () -- C:\Users\Manu\AppData\Local\d3d9caps.dat
[2011/07/31 11:11:12 | 000,001,664 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/07/31 08:31:20 | 000,000,064 | ---- | M] () -- C:\Windows\System32\rp_stats.dat
[2011/07/31 08:31:20 | 000,000,044 | ---- | M] () -- C:\Windows\System32\rp_rules.dat
[2011/07/23 19:35:42 | 000,000,056 | -H-- | M] () -- C:\Windows\System32\ezsidmv.dat
[2011/07/22 14:46:24 | 000,000,382 | ---- | M] () -- C:\Windows\ODBC.INI
[2011/07/21 18:50:51 | 000,008,798 | ---- | M] () -- C:\Windows\System32\icrav03.rat
[2011/07/21 18:50:51 | 000,001,988 | ---- | M] () -- C:\Windows\System32\ticrf.rat
[2011/07/21 18:50:43 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2011/07/21 18:50:43 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2011/07/21 18:50:43 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011/07/21 18:50:42 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2011/07/21 18:50:42 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2011/07/21 18:50:42 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011/07/21 18:50:42 | 000,353,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2011/07/21 18:50:42 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2011/07/21 18:50:42 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2011/07/21 18:50:42 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011/07/21 18:50:42 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2011/07/21 18:50:42 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2011/07/21 18:50:42 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2011/07/21 18:50:42 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2011/07/21 18:50:42 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2011/07/21 18:50:42 | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit.inf
[2011/07/21 18:50:42 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2011/07/21 18:50:42 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2011/07/21 18:50:41 | 002,382,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011/07/21 18:50:41 | 001,427,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2011/07/21 18:50:41 | 000,580,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011/07/21 18:50:41 | 000,420,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2011/07/21 18:50:41 | 000,353,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2011/07/21 18:50:41 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2011/07/21 18:50:41 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2011/07/21 18:50:41 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2011/07/21 18:50:41 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2011/07/21 18:50:41 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2011/07/21 18:50:41 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2011/07/21 18:50:41 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2011/07/21 18:50:41 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2011/07/21 18:50:41 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2011/07/21 18:50:40 | 001,797,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2011/07/21 18:50:40 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2011/07/21 18:50:40 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll
[2011/07/21 18:50:40 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011/07/21 18:50:40 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2011/07/21 18:50:40 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2011/07/21 18:50:40 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2011/07/21 18:50:40 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2011/07/21 18:44:53 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
[2011/07/21 18:44:45 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2011/07/21 15:10:29 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011/07/20 17:08:16 | 000,000,102 | ---- | M] () -- C:\Users\Manu\AppData\Roaming\wklnhst.dat
[2011/07/17 18:00:26 | 000,001,971 | ---- | M] () -- C:\Users\Manu\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/07/17 16:19:47 | 000,000,813 | ---- | M] () -- C:\Users\Manu\Desktop\eChanblard.lnk
[2011/07/17 10:11:11 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf
[2011/07/17 10:11:02 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2011/07/17 08:55:43 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2011/07/17 08:48:19 | 000,001,726 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2011/07/17 08:36:41 | 000,101,720 | ---- | M] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2011/07/17 08:36:40 | 000,016,432 | ---- | M] () -- C:\Windows\System32\lsdelete.exe
[2011/07/17 08:28:09 | 000,001,019 | ---- | M] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2011/07/17 08:12:22 | 000,146,259 | ---- | M] () -- C:\Windows\hpoins18.dat
[2011/07/17 07:56:35 | 000,002,027 | ---- | M] () -- C:\Users\Public\Desktop\HP Photosmart Essential.lnk
[2011/07/17 07:37:31 | 000,000,804 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/07/17 07:30:02 | 000,001,870 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/07/16 20:28:37 | 000,000,938 | ---- | M] () -- C:\Users\Manu\Desktop\Windows Media Player.lnk
[2011/07/16 19:54:02 | 000,002,073 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2011/07/16 12:15:40 | 000,588,472 | ---- | M] (EasyBits Software AS) -- C:\Windows\System32\ezsvc7x.dll
[2011/07/15 22:17:24 | 000,000,000 | RHS- | M] () -- C:\Windows\System32\drivers\103C_HP_cNB_Pavilion dv6 Notebook PC_Y5335KV_0U_QCNF9071WDS_E506288-053_4A_I3629_SQuanta_V18.0B_F.02_T081114_WV3-1_L40C_M3069_J320_7Intel_867A_92.00_#110715_N10EC8168;14E44315_(NR491EA#ABF)_XMOBILE_CN10_Z_2F.02.MRK
[2011/07/15 22:13:45 | 000,065,328 | ---- | M] () -- C:\Windows\System32\license.rtf
[2011/07/15 22:04:41 | 000,001,928 | ---- | M] () -- C:\Users\Public\Desktop\HP MediaSmart.lnk
[2011/07/15 21:52:15 | 000,873,310 | ---- | M] () -- C:\Windows\System32\oem10.inf
[2011/07/15 21:52:00 | 003,813,376 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\bcmihvsrv.dll
[2011/07/15 21:52:00 | 003,506,176 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\bcmihvui.dll
[2011/07/15 21:52:00 | 000,087,328 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\bcmwlcoi.dll
[2011/07/15 21:52:00 | 000,006,656 | ---- | M] () -- C:\Windows\System32\bcmwlrc.dll
[2011/07/15 21:49:27 | 000,000,125 | ---- | M] () -- C:\Windows\xUninstall.bat
[2011/07/15 21:49:04 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01007.Wdf
[2011/07/12 11:20:54 | 000,178,536 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dnssdX.dll
[2011/07/12 11:20:54 | 000,083,816 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dns-sd.exe
[2011/07/12 11:20:54 | 000,073,064 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dnssd.dll
[2011/07/12 11:20:54 | 000,050,536 | ---- | M] (Apple Inc.) -- C:\Windows\System32\jdns_sd.dll
[2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys

========== Files Created - No Company Name ==========

[2011/08/05 16:27:48 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011/08/05 15:55:45 | 000,005,024 | ---- | C] () -- C:\Users\Manu\Desktop\erunt-loc_fr (1).zip
[2011/08/05 15:54:56 | 000,000,913 | ---- | C] () -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
[2011/08/05 15:54:48 | 000,000,733 | ---- | C] () -- C:\Users\Manu\Desktop\NTREGOPT.lnk
[2011/08/05 15:54:48 | 000,000,714 | ---- | C] () -- C:\Users\Manu\Desktop\ERUNT.lnk
[2011/08/05 15:52:33 | 000,005,024 | ---- | C] () -- C:\Users\Manu\Desktop\erunt-loc_fr.zip
[2011/08/05 15:43:29 | 000,000,906 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/08/05 15:40:07 | 000,000,417 | ---- | C] () -- C:\Users\Manu\Desktop\scan.zip
[2011/08/05 15:25:36 | 000,001,676 | ---- | C] () -- C:\Users\Manu\Desktop\AD-R.lnk
[2011/08/05 12:35:33 | 101,221,856 | ---- | C] () -- C:\Users\Manu\Desktop\setup_11.0.0.1245.x01_2011_08_05_13_12.exe
[2011/08/05 10:56:02 | 000,001,055 | ---- | C] () -- C:\Users\Manu\Desktop\Spybot - Search & Destroy.lnk
[2011/08/05 09:24:09 | 000,016,432 | ---- | C] () -- C:\Windows\System32\lsdelete.exe
[2011/07/31 17:35:43 | 000,014,136 | ---- | C] () -- C:\Users\Manu\Desktop\Facture aspirateur LG.pdf
[2011/07/31 14:20:27 | 000,000,360 | ---- | C] () -- C:\Users\Manu\Desktop\Musique - Raccourci.lnk
[2011/07/31 14:20:19 | 000,000,369 | ---- | C] () -- C:\Users\Manu\Desktop\Images - Raccourci.lnk
[2011/07/31 11:11:12 | 000,001,664 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/07/23 19:35:42 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2011/07/22 14:46:23 | 000,000,382 | ---- | C] () -- C:\Windows\ODBC.INI
[2011/07/22 14:44:08 | 000,002,685 | ---- | C] () -- C:\Users\Manu\Desktop\Microsoft Office Word 2003.lnk
[2011/07/21 19:01:23 | 000,001,158 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
[2011/07/21 19:00:35 | 000,001,227 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
[2011/07/21 18:59:44 | 000,001,037 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
[2011/07/21 18:59:14 | 000,002,025 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2011/07/21 18:50:42 | 000,072,822 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2011/07/21 18:44:53 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
[2011/07/21 18:44:45 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2011/07/21 15:57:25 | 000,032,768 | ---- | C] () -- C:\Users\Manu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/07/20 18:49:26 | 000,130,008 | ---- | C] () -- C:\Windows\System32\systemsf.ebd
[2011/07/20 18:49:22 | 000,009,239 | ---- | C] () -- C:\Windows\System32\spcinstrumentation.man
[2011/07/20 18:49:03 | 000,442,788 | ---- | C] () -- C:\Windows\System32\dot3.tmf
[2011/07/20 18:48:58 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2011/07/20 18:48:58 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2011/07/20 18:48:48 | 000,392,170 | ---- | C] () -- C:\Windows\System32\onex.tmf
[2011/07/20 18:48:36 | 000,344,698 | ---- | C] () -- C:\Windows\System32\eaphost.tmf
[2011/07/20 18:47:55 | 000,208,966 | ---- | C] () -- C:\Windows\System32\WFP.TMF
[2011/07/20 18:47:52 | 000,092,918 | ---- | C] () -- C:\Windows\System32\slmgr.vbs
[2011/07/20 18:46:46 | 000,009,212 | ---- | C] () -- C:\Windows\System32\RacUR.xml
[2011/07/18 20:42:51 | 000,000,102 | ---- | C] () -- C:\Users\Manu\AppData\Roaming\wklnhst.dat
[2011/07/17 18:00:26 | 000,001,971 | ---- | C] () -- C:\Users\Manu\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/07/17 16:19:47 | 000,000,813 | ---- | C] () -- C:\Users\Manu\Desktop\eChanblard.lnk
[2011/07/17 10:11:11 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf
[2011/07/17 10:11:02 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2011/07/17 10:10:24 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Inbox_Critical.Wdf
[2011/07/17 08:55:43 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2011/07/17 08:48:19 | 000,001,726 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2011/07/17 08:47:15 | 000,001,830 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2011/07/17 08:37:09 | 000,000,064 | ---- | C] () -- C:\Windows\System32\rp_stats.dat
[2011/07/17 08:37:09 | 000,000,044 | ---- | C] () -- C:\Windows\System32\rp_rules.dat
[2011/07/17 08:28:09 | 000,001,019 | ---- | C] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2011/07/17 07:56:43 | 000,000,887 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Enregistrement OCR I.R.I.S..lnk
[2011/07/17 07:56:35 | 000,002,027 | ---- | C] () -- C:\Users\Public\Desktop\HP Photosmart Essential.lnk
[2011/07/17 07:42:29 | 000,146,259 | ---- | C] () -- C:\Windows\hpoins18.dat
[2011/07/17 07:42:16 | 000,006,600 | ---- | C] () -- C:\Windows\hpomdl18.dat
[2011/07/17 07:37:31 | 000,000,804 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/07/17 07:24:36 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2011/07/16 20:28:37 | 000,000,938 | ---- | C] () -- C:\Users\Manu\Desktop\Windows Media Player.lnk
[2011/07/16 20:03:26 | 000,000,680 | ---- | C] () -- C:\Users\Manu\AppData\Local\d3d9caps.dat
[2011/07/16 19:54:02 | 000,002,073 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2011/07/16 19:50:39 | 000,001,000 | ---- | C] () -- C:\Windows\tasks\Google Software Updater.job
[2011/07/16 18:29:08 | 000,175,616 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2011/07/16 18:29:08 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2011/07/16 18:29:04 | 000,644,608 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2011/07/16 18:29:03 | 000,243,200 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2011/07/16 18:29:03 | 000,073,216 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2011/07/16 13:55:12 | 000,002,426 | ---- | C] () -- C:\Windows\System32\WsmTxt.xsl
[2011/07/16 13:55:11 | 000,201,184 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2011/07/16 13:55:11 | 000,004,675 | ---- | C] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2011/07/16 12:43:19 | 002,501,921 | ---- | C] () -- C:\Windows\System32\wlan.tmf
[2011/07/15 22:26:18 | 000,001,052 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/07/15 22:26:16 | 000,001,048 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/07/15 22:22:42 | 000,000,949 | ---- | C] () -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011/07/15 22:22:40 | 000,000,944 | ---- | C] () -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2011/07/15 22:22:33 | 000,000,915 | ---- | C] () -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
[2011/07/15 22:19:10 | 000,001,999 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
[2011/07/15 22:19:10 | 000,001,870 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/07/15 22:19:10 | 000,001,844 | ---- | C] () -- C:\Users\Public\Desktop\Pour les enfants.lnk
[2011/07/15 22:19:10 | 000,001,844 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pour les enfants.lnk
[2011/07/15 22:17:24 | 000,000,000 | RHS- | C] () -- C:\Windows\System32\drivers\103C_HP_cNB_Pavilion dv6 Notebook PC_Y5335KV_0U_QCNF9071WDS_E506288-053_4A_I3629_SQuanta_V18.0B_F.02_T081114_WV3-1_L40C_M3069_J320_7Intel_867A_92.00_#110715_N10EC8168;14E44315_(NR491EA#ABF)_XMOBILE_CN10_Z_2F.02.MRK
[2011/07/15 22:16:40 | 000,000,258 | ---- | C] () -- C:\Users\Manu\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011/07/15 22:16:40 | 000,000,240 | ---- | C] () -- C:\Users\Manu\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2011/07/15 22:10:51 | 000,218,798 | ---- | C] () -- C:\ProgramData\nvModes.001
[2011/07/15 22:04:41 | 000,001,928 | ---- | C] () -- C:\Users\Public\Desktop\HP MediaSmart.lnk
[2011/07/15 21:56:48 | 000,218,798 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2011/07/15 21:52:29 | 000,873,310 | ---- | C] () -- C:\Windows\System32\oem10.inf
[2011/07/15 21:52:06 | 000,006,656 | ---- | C] () -- C:\Windows\System32\bcmwlrc.dll
[2011/07/15 21:49:27 | 000,000,125 | ---- | C] () -- C:\Windows\xUninstall.bat
[2011/07/15 21:49:04 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01007.Wdf
[2011/07/15 21:45:00 | 3218,284,544 | -HS- | C] () -- C:\hiberfil.sys
[2008/11/15 08:37:40 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2008/11/15 08:32:51 | 000,679,042 | ---- | C] () -- C:\Windows\System32\perfh00C.dat
[2008/11/15 08:32:51 | 000,340,236 | ---- | C] () -- C:\Windows\System32\perfi00C.dat
[2008/11/15 08:32:51 | 000,126,626 | ---- | C] () -- C:\Windows\System32\perfc00C.dat
[2008/11/15 08:32:51 | 000,037,390 | ---- | C] () -- C:\Windows\System32\perfd00C.dat
[2008/11/15 01:49:21 | 000,000,428 | ---- | C] () -- C:\Windows\System32\ezdigsgn.dat
[2006/11/02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 14:47:37 | 000,394,440 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 12:33:01 | 000,595,996 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 12:33:01 | 000,104,070 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2003/04/01 10:58:02 | 000,005,260 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI

========== LOP Check ==========

[2011/08/04 13:58:50 | 000,000,000 | ---D | M] -- C:\Users\Manu\AppData\Roaming\PCtuto
[2011/07/18 20:42:53 | 000,000,000 | ---D | M] -- C:\Users\Manu\AppData\Roaming\Template
[2011/07/17 16:19:46 | 000,000,000 | ---D | M] -- C:\Users\Manu\AppData\Roaming\uStart
[2011/08/05 13:15:33 | 000,027,734 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >


< MD5 for: AGP440.SYS >
[2008/01/21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\drivers\AGP440.sys
[2008/01/21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[2008/01/21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008/01/21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008/01/21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2006/11/02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/04/11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
[2009/04/11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009/04/11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008/01/21 04:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008/01/21 04:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006/11/02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2008/11/15 08:59:21 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=9C0E70031905ADBF94EDB9EA14AF943B -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_7f3e4ed9\atapi.sys
[2008/11/15 08:59:21 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=9C0E70031905ADBF94EDB9EA14AF943B -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.22193_none_dd6376773aedb5e4\atapi.sys
[2008/11/15 08:59:21 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E26DDFE464B464DAF1C739122978D1D6 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b7393fc6\atapi.sys
[2008/11/15 08:59:21 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E26DDFE464B464DAF1C739122978D1D6 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20847_none_dbb74a7b3d9afbc1\atapi.sys

< MD5 for: CNGAUDIT.DLL >
[2006/11/02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006/11/02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll

< MD5 for: CTFMON.EXE >
[2006/11/02 11:45:00 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=22BFD03DF51065A9ED8D17F8FB72296B -- C:\Windows\System32\ctfmon.exe
[2006/11/02 11:45:00 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=22BFD03DF51065A9ED8D17F8FB72296B -- C:\Windows\winsxs\x86_microsoft-windows-t..cesframework-ctfmon_31bf3856ad364e35_6.0.6000.16386_none_9af9cad793a67953\ctfmon.exe

< MD5 for: EVENTLOG.DLL >
[2007/05/17 22:34:04 | 000,007,216 | ---- | M] () MD5=C2A279A458A06DE2C83D842AA042B5A8 -- C:\Program Files\CyberLink\PowerDirector\EventLog.dll

< MD5 for: EXPLORER.EXE >
[2008/10/29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008/10/29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008/10/30 05:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2009/04/11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009/04/11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008/10/28 04:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2008/01/21 04:24:24 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe

< MD5 for: IASTORV.SYS >
[2008/01/21 04:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\drivers\iaStorV.sys
[2008/01/21 04:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys
[2008/01/21 04:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
[2006/11/02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys

< MD5 for: NETLOGON.DLL >
[2009/04/11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll
[2009/04/11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008/01/21 04:24:05 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll

< MD5 for: NVSTOR.SYS >
[2006/11/02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008/01/21 04:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\drivers\nvstor.sys
[2008/01/21 04:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008/01/21 04:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys

< MD5 for: SCECLI.DLL >
[2008/01/21 04:24:50 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2009/04/11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll
[2009/04/11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll

< MD5 for: USERINIT.EXE >
[2008/01/21 04:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008/01/21 04:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe

< MD5 for: WININIT.EXE >
[2008/01/21 04:23:42 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=101BA3EA053480BB5D957EF37C06B5ED -- C:\Windows\System32\wininit.exe
[2008/01/21 04:23:42 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=101BA3EA053480BB5D957EF37C06B5ED -- C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.0.6001.18000_none_30f2b8cf0450a6a2\wininit.exe

< MD5 for: WINLOGON.EXE >
[2009/04/11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2009/04/11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2008/01/21 04:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< End of report >
manolo06
 
Messages: 9
Inscription: 05 Aoû 2011, 15:57

Re: Ouverture intempestive de chrome avec publicités

Messagede manolo06 » 05 Aoû 2011, 16:19

OTL Extras logfile created on: 05/08/2011 16:25:55 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Manu\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 1,31 Gb Available Physical Memory | 43,67% Memory free
6,22 Gb Paging File | 4,60 Gb Available in Paging File | 73,89% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 287,54 Gb Total Space | 100,10 Gb Free Space | 34,81% Space Free | Partition Type: NTFS
Drive D: | 10,55 Gb Total Space | 1,73 Gb Free Space | 16,40% Space Free | Partition Type: NTFS
Drive E: | 702,31 Mb Total Space | 696,67 Mb Free Space | 99,20% Space Free | Partition Type: UDF

Computer Name: MAISON | User Name: Manu | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-3315831376-4278465777-3592807419-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L"
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2208C4E6-8FE9-4672-944B-B0300BA2DAD1}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{F8D9C459-71CE-4A62-B549-891936409341}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0ED10818-0FB7-45A6-9940-854FDEB178CC}" = dir=in | app=c:\program files\windows live\mesh\moe.exe |
"{1AACF1F5-DEBC-4670-A07F-664B19CD4658}" = dir=in | app=c:\program files\cyberlink\powerdirector\pdr.exe |
"{23BAF162-69C9-4A9F-9DD1-C32B0230C3B6}" = dir=in | app=c:\program files\hewlett-packard\touchsmart\media\kernel\clml\clmlsvc.exe |
"{2B748B27-F57C-4374-B35B-A20D09EBF2A4}" = dir=in | app=c:\program files\hewlett-packard\touchsmart\media\hptouchsmartmusic.exe |
"{32A5EF08-1537-4F9C-AAE2-81E47896250F}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{5A2D84B8-4B62-4BBE-B30C-934FADDAF5A0}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{61E767F2-D8DF-41C8-B30A-B3A3DE07D4AD}" = dir=in | app=c:\program files\hewlett-packard\media\dvd\hpdvdsmart.exe |
"{69485207-66C3-4D60-8ABA-9C82BC34F00A}" = dir=in | app=c:\program files\hewlett-packard\touchsmart\media\tsmagent.exe |
"{814C11D0-C821-439B-8AC5-D2F515B0C3A0}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{8BA23E82-F5B5-4949-9CAB-A3B0A8EA64D5}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{A20A3D58-57A7-488E-95CB-98BBBAD3EB41}" = dir=in | app=c:\program files\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe |
"{A4D213F0-6BDD-42CB-A5E8-AFFC0B5D8E16}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{B4D09C89-23A9-4B2A-B22A-2613917B6F56}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{C07E1D87-B077-454B-B167-54B1820FD310}" = dir=in | app=c:\program files\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe |
"{DCB84042-1806-47F5-ABCB-A3C4771B9B03}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{FBBD954B-AD3E-4A0D-8344-9E91600EA926}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"TCP Query User{12BDCE85-31D5-4A82-86A9-871702DB8716}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{F7FD44C6-3033-4B3B-B75E-813B3C7F57E1}C:\users\manu\appdata\local\temp\nstacf3.tmp\setup.exe" = protocol=6 | dir=in | app=c:\users\manu\appdata\local\temp\nstacf3.tmp\setup.exe |
"UDP Query User{6A4BFC9C-2800-487E-BCE5-C273D4417DCF}C:\users\manu\appdata\local\temp\nstacf3.tmp\setup.exe" = protocol=17 | dir=in | app=c:\users\manu\appdata\local\temp\nstacf3.tmp\setup.exe |
"UDP Query User{DC01525E-8626-4CFA-8C36-92805D1D7D09}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0054A0F6-00C9-4498-B821-B5C9578F433E}" = HP Help and Support
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = HP MediaSmart Webcam
"{05E379CC-F626-4E7D-8354-463865B303BF}" = Windows Live UX Platform Language Pack
"{082702D5-5DD8-4600-BCE5-48B15174687F}" = HP Doc Viewer
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D2E9DCB-9938-475E-B4DD-8851738852FF}" = AIO_Scan
"{0E7DBD52-B097-4F2B-A7C7-F105B0D20FDB}" = LightScribe System Software 1.14.17.1
"{0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}" = Microsoft .NET Framework 4 Client Profile FRA Language Pack
"{1746EA69-DCB6-4408-B5A5-E75F55439CDF}" = Scan
"{179C56A4-F57F-4561-8BBF-F911D26EB435}" = WebReg
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{1AE3E621-E0C0-4aa1-B10B-B3E353A8D110}" = c3100_Help
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{228C6B46-64E2-404E-898A-EF0830603EF4}" = HPNetworkAssistant
"{254C37AA-6B72-4300-84F6-98A82419187E}" = Hewlett-Packard Active Check for Health Check
"{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron JMB38X Flash Media Controller
"{282E5AB2-8E47-4571-B6FA-6B512555B557}" = HP Photosmart.All-In-One Driver Software 8.0 .A
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live
"{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.40 H2
"{38058455-8C21-4C2F-B2F6-14ED166039CB}" = HP Total Care Setup
"{3877C901-7B90-4727-A639-B6ED2DD59D43}" = ESU for Microsoft Vista
"{3B160861-7250-451E-B5EE-8B92BF30A710}" = Microsoft Works
"{3B9A92DA-6374-4872-B646-253F18624D5F}" = Windows Live Writer
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{44F5A980-8A6B-4aca-8D85-EFCE5D67D379}" = AIO_CDA_ProductContext
"{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live
"{49F2B650-2D7B-4F59-B33D-346F63776BD3}" = DocProc
"{55D003F4-9599-44BF-BA9E-95D060730DD3}" = Contrôle ActiveX Windows Live Mesh pour connexions à distance
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{57A5AEC1-97FC-474D-92C4-908FCC2253D4}" = HP Customer Experience Enhancements
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{5DAA9C36-8F8B-462F-8CCA-E205BC3751F5}" = HP Active Support Library
"{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
"{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Hewlett-Packard Asset Agent for Health Check
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{67D3F1A0-A1F2-49b7-B9EE-011277B170CD}" = HPProductAssistant
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker
"{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}" = Complément Messenger
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{779DECD7-E072-4B56-9B6B-BEB5973EEEB5}" = MobileMe Control Panel
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7A7DC702-DEDE-42A8-8722-B3BA724D546F}" = Fax
"{7B15D70E-9449-4CFB-B9BC-798465B2BD5C}" = Norton Internet Security
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}" = Windows Live Mesh
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169 8168 8101E 8102E Ethernet Driver
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{9011040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{14809F99-C601-4D4A-9391-F1E8FAA964C5}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-040C-0000-0000000FF1CE}" = Module de compatibilité pour Microsoft Office System 2007
"{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-040C-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (French) 2007
"{90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95120000-00AF-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (French)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95D08F4E-DFC2-4ce3-ACB7-8C8E206217E9}" = MarketResearch
"{978C25EE-5777-46e4-8988-732C297CBDBD}" = Status
"{9ADABDDE-9644-461B-9E73-83FA3EFCAB50}" = HP Wireless Assistant
"{9B1FD9CE-0776-4f0b-A6F5-C6AB7B650CDF}" = Destinations
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9D615069-AA8F-4E89-AE9D-77AAE90F529F}" = ProtectSmart Hard Drive Protection
"{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail
"{A36CD345-625C-4d6c-B3E2-76E1248CB451}" = SolutionCenter
"{A3B7C670-4A1E-4EE2-950E-C875BC1965D0}" = Copy
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AB61A2E9-37D3-485D-9085-19FBDF8CEF4A}" = Windows Live Messenger
"{AB61E316-F10B-43eb-B47F-42095835F9CC}" = C3100
"{AB93C51F-71F9-4A28-8134-FE1B5B9373E9}" = Windows Live Remote Service Resources
"{AC76BA86-7AD7-1036-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Français
"{AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}" = Adobe Shockwave Player
"{AF1C9345-B53D-4110-BFBF-A0DD83AEAB83}" = AIO_CDA_Software
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}" = HP MediaSmart Music/Photo/Video
"{B3575D00-27EF-49C2-B9E0-14B3D954E992}" = Apple Application Support
"{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}" = Google Earth
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{BCF16F16-AC0E-4ABE-A9EF-412CF484BA51}" = Windows Live Family Safety
"{BE77A81F-B315-4666-9BF3-AE70C0ADB057}" = BufferChm
"{BE78F458-88D3-4894-87E9-54B96D1FFAB6}" = HP User Guides 0126
"{C23CD6DA-1958-43A5-ADD0-59396572E02E}" = Apple Mobile Device Support
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{C6579A65-9CAE-4B31-8B6B-3306E0630A66}" = Apple Software Update
"{C716522C-3731-4667-8579-40B098294500}" = Toolbox
"{C73CA646-73B3-4AEF-A136-C37505745174}" = iTunes
"{C861504E-2F57-4F95-AB0A-C7C7D8E46A4E}" = Windows Live Family Safety
"{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common
"{C8FD5BC1-92EF-4C15-92A9-F9AC7F61985F}" = HP Update
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D03482C5-9AD8-496D-B388-692AE04C93AF}" = Bonjour
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DCCAD079-F92C-44DA-B258-624FC6517A5A}" = HP MediaSmart DVD
"{DD35C328-F115-BEDA-6EEE-E00C5AACCCBC}" = muvee Reveal
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{DFDBE1F9-04CE-4645-BB6C-4590EABC7A9C}" = Windows Live Remote Client Resources
"{E06F04B9-45E6-4AC0-8083-85F7515F40F7}" = UnloadSupport
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{EB21A812-671B-4D08-B974-2A347F0D8F70}" = HP Photosmart Essential
"{EB75DE50-5754-4F6F-875D-126EDF8E4CB3}" = HPSSupply
"{ECEE0279-785F-4CB3-9F28-E69813234BF8}" = SPORE Creature Creator Trial Edition
"{EFC5939F-470F-454E-B3DA-F51FDD83F6CE}" = HP MediaSmart SmartMenu
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{FF075778-6E50-47ed-991D-3B07FD4E3250}" = TrayApp
"7DE39862CC26DCE2446838AAF7CD5C163F835A57" = Package de pilotes Windows - ENE (enecir) HIDClass (09/04/2008 2.6.0.0)
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Ad-Aware" = Ad-Aware
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Ad-Remover" = Ad-Remover par C_XX
"AOL Toolbar" = AOL Toolbar 5.0
"avast" = avast! Free Antivirus
"Broadcom 802.11b Network Adapter" = Broadcom 802.11 Wireless LAN Adapter
"CCleaner" = CCleaner
"ERUNT_is1" = ERUNT 1.1j
"Google Chrome" = Google Chrome
"Google Updater" = Outil de mise à jour Google
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"HP Imaging Device Functions" = HP Imaging Device Functions 8.0
"HP Solution Center & Imaging Support Tools" = HP Solution Center 8.0
"HPExtendedCapabilities" = HP Customer Participation Program 8.0
"HPOCR" = HP OCR Software 8.0
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = HP MediaSmart Webcam
"InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}" = HP MediaSmart Music/Photo/Video
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}" = HP MediaSmart DVD
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 7.2.0
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware version 1.51.1.1800
"Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile FRA Language Pack" = Module linguistique Microsoft .NET Framework 4 Client Profile FRA
"NVIDIA Drivers" = NVIDIA Drivers
"PCTuto Avast_is1" = PCTuto Avast 2.0
"PCTuto_is1" = PCTuto 2.0
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"UpdatePCTuto_is1" = UpdatePCTuto 2.0
"WildTangent hp Master Uninstall" = My HP Games
"WinLiveSuite" = Windows Live
"WinRAR archiver" = WinRAR 4.01 (32 bits)

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 30/07/2011 13:37:34 | Computer Name = Maison | Source = Application Error | ID = 1000
Description = Application défaillante emule.exe, version 0.50.0.4, horodatage 0x4dcb95bd,
module défaillant emule.exe, version 0.50.0.4, horodatage 0x4dcb95bd, code d’exception
0xc0000005, décalage d’erreur 0x0028df3a, ID du processus 0x1424, heure de début
de l’application 0x01cc4edf30454a87.

Error - 30/07/2011 16:36:32 | Computer Name = Maison | Source = Windows Search Service | ID = 3013
Description =

Error - 31/07/2011 05:16:47 | Computer Name = Maison | Source = WinMgmt | ID = 10
Description =

Error - 01/08/2011 14:39:18 | Computer Name = Maison | Source = Application Error | ID = 1000
Description = Application défaillante emule.exe, version 0.50.0.4, horodatage 0x4dcb95bd,
module défaillant emule.exe, version 0.50.0.4, horodatage 0x4dcb95bd, code d’exception
0xc0000005, décalage d’erreur 0x0028df3a, ID du processus 0x854, heure de début
de l’application 0x01cc507a444190de.

Error - 01/08/2011 14:42:16 | Computer Name = Maison | Source = Windows Search Service | ID = 3013
Description =

Error - 01/08/2011 14:42:21 | Computer Name = Maison | Source = Windows Search Service | ID = 3013
Description =

Error - 02/08/2011 02:52:21 | Computer Name = Maison | Source = Windows Search Service | ID = 3013
Description =

Error - 02/08/2011 03:04:50 | Computer Name = Maison | Source = Windows Search Service | ID = 3013
Description =

Error - 02/08/2011 03:11:55 | Computer Name = Maison | Source = Windows Search Service | ID = 3013
Description =

Error - 02/08/2011 03:25:47 | Computer Name = Maison | Source = Windows Search Service | ID = 3013
Description =

[ System Events ]
Error - 18/07/2011 14:21:02 | Computer Name = Maison | Source = DCOM | ID = 10016
Description =

Error - 18/07/2011 14:37:34 | Computer Name = Maison | Source = DCOM | ID = 10016
Description =

Error - 18/07/2011 14:37:46 | Computer Name = Maison | Source = DCOM | ID = 10016
Description =

Error - 18/07/2011 15:14:21 | Computer Name = Maison | Source = DCOM | ID = 10016
Description =

Error - 18/07/2011 15:14:32 | Computer Name = Maison | Source = DCOM | ID = 10016
Description =

Error - 18/07/2011 15:35:04 | Computer Name = Maison | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description =

Error - 18/07/2011 15:38:01 | Computer Name = Maison | Source = Service Control Manager | ID = 7000
Description =

Error - 18/07/2011 15:38:01 | Computer Name = Maison | Source = Service Control Manager | ID = 7000
Description =

Error - 18/07/2011 15:38:01 | Computer Name = Maison | Source = Service Control Manager | ID = 7026
Description =

Error - 18/07/2011 16:04:34 | Computer Name = Maison | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description =


< End of report >
manolo06
 
Messages: 9
Inscription: 05 Aoû 2011, 15:57

Re: Ouverture intempestive de chrome avec publicités

Messagede nickW » 08 Aoû 2011, 00:17

Bonsoir,

C'est toi qui as installé les logiciels publicitaires en installant PCTUTO!


Premiers nettoyages:


Étape 1: Pas de processus de contrôle d'intégrité
Désactiver TeaTimer de Spybot-S&D.
Dans la SysBarre (zone située juste à gauche de l'horloge) faire un clic droit sur l'icône du Résident de Spybot-S&D et choisir "Quitter Résident de Spybot-S&D".
Lancer Spybot-S&D, Mode avancé, Outils, Résident, décocher la case située devant Résident "TeaTimer". Fermer Spybot-S&D.
Faire redémarrer le PC.
Note:
Il ne faut pas réactiver TeaTimer avant la fin du nettoyage du PC (je te dirai quand et comment le faire).


Étape 2: Désinstallation
Démarrer-->Panneau de configuration-->Programmes-->Programmes et fonctionnalités
Sélectionner (si trouvé) PCTuto 2.0 puis cliquer sur Désinstaller
Sélectionner (si trouvé) PCTuto Avast 2.0 puis cliquer sur Désinstaller


Étape 3: Pas de processus de contrôle en temps réel
Désactiver le module résident de l'antivirus.
Image avast5!: clic droit sur l'icône dans la SysBarre (à coté de l'horloge), choisir "Gestion des Agents avast!" et désactiver tous les agents de protection


Étape 4: Malwarebytes' Anti-Malware, nettoyage
Fermer toutes les fenêtres de programme ouvertes.
Lancer Malwarebytes' Anti-Malware via le Menu Démarrer.
Dans l'onglet Paramètres, vérifier que toutes les cases sont cochées sauf "Créer une option dans le menu contextuel pour analyser des fichiers (clic droit)".
Dans l'onglet Mise à jour, cliquer sur le bouton Recherche de mise à jour et installer toutes les mises à jour trouvées.
Dans l'onglet Recherche, cocher le bouton radio situé devant "Exécuter un examen rapide" puis cliquer sur le bouton Rechercher, comme ceci:

Image

Attendre sans rien faire d'autre la fin de la recherche; dans la fenêtre annonçant la fin de l'analyse, cliquer sur OK; puis cliquer sur le bouton "Afficher les résultats":
Image


Si des éléments nuisibles ont été détectés, cliquer sur le bouton "Supprimer la sélection": Image

Attendre patiemment sans rien faire d'autre la fin du nettoyage.
Un redémarrage est parfois nécessaire. Accepter.
Une fenêtre du Bloc-notes s'ouvre pour afficher le rapport. Fermer le Bloc-notes.
Cliquer sur le bouton "Quitter" pour fermer Malwarebytes' Anti-Malware.


Étape 5: Pas de processus de contrôle en temps réel
Si le PC a redémarré, et si l'antivirus a été réactivé, il faut de nouveau le désactiver.


Étape 6: OTL (de OldTimer), correction

Faire un clic droit sur OTL.exe puis choisir "Exécuter en tant qu'Administrateur" pour lancer l'outil.

L'écran principal de OTL s'affiche:
Image

Sélectionner toutes les lignes ci-dessous comprises entre les deux lignes ------- (qu'il ne faut pas sélectionner), puis appuyer simultanément sur les touches Ctrl et C
Note importante: ne pas oublier de sélectionner le caractère "deux points" en début de première ligne.

-----------------------------------------------------

:otl
O2 - BHO: (PCTBHO Class) - {293A63F7-C3B6-423a-9845-901AC0A7EE6E} - C:\Program Files\PCTuto\pctutoBHO.dll (PCTUTO)
O4 - HKLM..\Run: [PCTuto] C:\Program Files\PCTuto\pctuto.exe (PCTUTO)
O4 - HKLM..\RunOnce: [autoupdater] C:\Users\Manu\AppData\Roaming\PCtuto\UpdatePCTuto\autoupdater.exe (PCTuto)

:Files
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCTuto
C:\Users\Manu\AppData\Roaming\PCtuto
C:\Users\Manu\AppData\Local\PCTuto
C:\Program Files\PCTuto

:Commands
[emptytemp]


-----------------------------------------------------

Note: Les lignes de la zone Code ci-dessus ont été créées exclusivement pour CET utilisateur: manolo06.
Si vous n'êtes pas CET utilisateur, il ne faut pas les utiliser: elles pourraient endommager votre système.


Retourner dans la fenêtre de OTL, faire un clic droit dans la zone blanche sous "Personnalisation" Image et choisir Coller (les lignes sélectionnées ci-dessus doivent apparaître dans la zone "Personnalisation").

Fermer toutes les fenêtres de programme ouvertes autres que OTL (navigateur, traitement de texte, etc...): un redémarrage du PC va se produire.

Cliquer sur le bouton Correction: Image

Note: Lorsque le redémarrage est demandé, cliquer sur Ok

Lorsque l'outil a terminé son travail, il y a affichage dans une petite fenêtre du message "Correction terminée! Cliquez sur Ok pour afficher le rapport.". Cliquer sur Ok puis fermer OTL.


Étape 7: Processus de contrôle en temps réel
Important: Réactiver le module résident de l'antivirus.


Étape 8: OTL (de OldTimer), analyse rapide
Fermer toutes les fenêtres de programme ouvertes.

Faire un clic droit sur OTL.exe puis choisir "Exécuter en tant qu'Administrateur" pour lancer l'outil.

L'écran principal de OTL s'affiche:
Image

Cliquer sur le bouton Analyse rapide:
Image


Laisser l'outil travailler sans l'interrompre.
Lorsque l'outil a terminé, il y a ouverture d'une fenêtre du Bloc-notes contenant un rapport (log).
Fermer le Bloc-notes.
Fermer la fenêtre de OTL.


Étape 9: Résultats
Envoyer en réponse:
*- le rapport de Malwarebytes' Anti-Malware (contenu du fichier mbam-log-****-**-** (**-**-**).txt situé dans le dossier %SystemDrive%\Users\<tonprofil>\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs où ****-**-** (**-**-**) représente la date [année-mois-jour] et l'heure [hh-mn-ss])
[%SystemDrive% représente la partition sur laquelle est installé le système, généralement C:]
*- le rapport de correction de OTL (contenu du fichier %SystemDrive%\_OTL\MovedFiles\********_******.log - les *** sont des chiffres représentant la date [moisjourannée] et l'heure)
[%SystemDrive% représente la partition sur laquelle est installé le système, généralement C:]

Envoyer ensuite en réponse dans un message distinct (à cause de la longueur du fichier):
*- le rapport principal de OTL (contenu du fichier OTL.txt situé sur le Bureau).
Le rapport envoyé sur le forum doit se terminer par une ligne contenant <End of report>. Si ce n'est pas le cas, il est incomplet, et doit alors être découpé en plusieurs messages.

Note importante: Pour l'envoi de ta(tes) réponse(s), il ne faut pas créer un nouveau sujet, mais cliquer sur le bouton "Répondre"
Image pour continuer dans ce fil de discussion.

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Re: Ouverture intempestive de chrome avec publicités

Messagede manolo06 » 08 Aoû 2011, 17:12

Bonjour, voici les rapports:

Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Version de la base de données: 7410

Windows 6.0.6002 Service Pack 2
Internet Explorer 9.0.8112.16421

08/08/2011 17:41:58
mbam-log-2011-08-08 (17-41-58).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 171173
Temps écoulé: 3 minute(s), 51 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 2
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{293A63F7-C3B6-423A-9845-901AC0A7EE6E} (Trojan.Eorezo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{293A63F7-C3B6-423A-9845-901AC0A7EE6E} (Trojan.Eorezo) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)


All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{293A63F7-C3B6-423a-9845-901AC0A7EE6E}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{293A63F7-C3B6-423a-9845-901AC0A7EE6E}\ not found.
File C:\Program Files\PCTuto\pctutoBHO.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\PCTuto deleted successfully.
File C:\Program Files\PCTuto\pctuto.exe not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\autoupdater deleted successfully.
C:\Users\Manu\AppData\Roaming\PCtuto\UpdatePCTuto\autoupdater.exe moved successfully.
========== FILES ==========
File\Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCTuto not found.
C:\Users\Manu\AppData\Roaming\PCtuto\UpdatePCTuto\Software folder moved successfully.
C:\Users\Manu\AppData\Roaming\PCtuto\UpdatePCTuto\Download folder moved successfully.
C:\Users\Manu\AppData\Roaming\PCtuto\UpdatePCTuto folder moved successfully.
C:\Users\Manu\AppData\Roaming\PCtuto folder moved successfully.
File\Folder C:\Users\Manu\AppData\Local\PCTuto not found.
C:\Program Files\PCTuto folder moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Manu
->Temp folder emptied: 4223144 bytes
->Temporary Internet Files folder emptied: 155359022 bytes
->Google Chrome cache emptied: 129922315 bytes
->Flash cache emptied: 873 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 97412 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 5983 bytes

Total Files Cleaned = 276,00 mb


OTL by OldTimer - Version 3.2.26.1 log created on 08082011_174544

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...
manolo06
 
Messages: 9
Inscription: 05 Aoû 2011, 15:57

Re: Ouverture intempestive de chrome avec publicités

Messagede manolo06 » 08 Aoû 2011, 17:14

OTL logfile created on: 08/08/2011 17:51:00 - Run 2
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Manu\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 1,63 Gb Available Physical Memory | 54,50% Memory free
6,19 Gb Paging File | 4,93 Gb Available in Paging File | 79,61% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 287,54 Gb Total Space | 55,13 Gb Free Space | 19,17% Space Free | Partition Type: NTFS
Drive D: | 10,55 Gb Total Space | 1,73 Gb Free Space | 16,40% Space Free | Partition Type: NTFS
Drive E: | 702,31 Mb Total Space | 696,67 Mb Free Space | 99,20% Space Free | Partition Type: UDF

Computer Name: MAISON | User Name: Manu | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/08/05 15:39:50 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Manu\Desktop\OTL.exe
PRC - [2011/07/27 10:03:22 | 001,017,912 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2011/07/17 08:36:25 | 001,191,216 | ---- | M] (Lavasoft Limited) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
PRC - [2011/07/17 08:36:24 | 002,151,640 | ---- | M] (Lavasoft Limited) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
PRC - [2011/07/04 13:43:54 | 003,493,720 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011/07/04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2009/06/03 20:43:18 | 000,450,652 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2009/06/03 20:43:18 | 000,217,170 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_827e372d\stacsv.exe
PRC - [2009/04/11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/04/11 08:27:28 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
PRC - [2009/03/02 18:43:08 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_827e372d\AEstSrv.exe
PRC - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2008/10/06 10:54:52 | 000,365,952 | ---- | M] () -- C:\Program Files\SMINST\BLService.exe
PRC - [2008/09/26 02:36:40 | 001,148,200 | ---- | M] (CyberLink Corp.) -- C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe
PRC - [2008/09/25 18:42:24 | 000,189,736 | ---- | M] (CyberLink) -- C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
PRC - [2008/09/25 18:41:44 | 001,152,296 | ---- | M] (CyberLink Corp.) -- C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
PRC - [2008/09/23 11:03:38 | 000,912,688 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
PRC - [2008/06/16 09:03:20 | 000,075,008 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
PRC - [2008/06/10 05:27:04 | 000,144,784 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
PRC - [2008/01/21 04:23:32 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe


========== Modules (SafeList) ==========

MOD - [2011/08/05 15:39:50 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Manu\Desktop\OTL.exe
MOD - [2011/07/04 13:43:51 | 000,199,792 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\snxhk.dll
MOD - [2010/08/31 17:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/07/17 08:36:24 | 002,151,640 | ---- | M] (Lavasoft Limited) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2011/07/04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2009/06/03 20:43:18 | 000,217,170 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_827e372d\stacsv.exe -- (STacSV)
SRV - [2009/03/02 18:43:08 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_827e372d\AEstSrv.exe -- (AESTFilters)
SRV - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008/10/06 10:54:52 | 000,365,952 | ---- | M] () [Auto | Running] -- C:\Program Files\SMINST\BLService.exe -- (Recovery Service for Windows)
SRV - [2008/02/03 13:00:00 | 000,129,992 | ---- | M] (EasyBits Sofware AS) [Auto | Running] -- C:\Windows\System32\ezsvc7.dll -- (ezSharedSvc)
SRV - [2008/01/21 04:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - [2011/07/17 08:36:39 | 000,015,232 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys -- (Lavasoft Kernexplorer)
DRV - [2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2011/07/04 13:36:43 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/07/04 13:36:32 | 000,309,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/07/04 13:35:23 | 000,043,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/07/04 13:32:32 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/07/04 13:32:20 | 000,054,104 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2011/07/04 13:32:12 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011/05/13 18:57:42 | 000,025,656 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\hpdskflt.sys -- (hpdskflt)
DRV - [2011/05/13 18:57:20 | 000,035,896 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer)
DRV - [2010/11/22 10:50:19 | 000,064,288 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2009/10/03 06:02:06 | 009,905,096 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009/06/03 20:43:18 | 000,407,040 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2008/10/09 15:42:42 | 000,017,408 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\KMWDFILTER.sys -- (KMWDFILTER)
DRV - [2008/09/26 02:36:34 | 000,059,376 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files\Hewlett-Packard\Media\DVD\000.fcl -- ({55662437-DA8C-40c0-AADA-2C816A897A49})
DRV - [2008/09/04 19:47:00 | 000,054,784 | ---- | M] (ENE TECHNOLOGY INC.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\enecir.sys -- (enecir)
DRV - [2008/08/07 19:01:44 | 000,097,536 | ---- | M] (JMicron Technology Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\jmcr.sys -- (JMCR)
DRV - [2008/08/06 18:26:08 | 000,124,928 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2008/01/21 04:23:20 | 002,225,664 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw3v32.sys -- (NETw3v32) Intel(R)
DRV - [2007/06/18 18:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... on&pf=cnnb
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... on&pf=cnnb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2166.3772\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)



O1 HOSTS File: ([2011/08/05 12:33:22 | 000,436,305 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 15019 more lines...
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AOL Toolbar BHO) - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {0E1230F8-EA50-42A9-983C-D22ABC2EED3B} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CLMLServer for HP TouchSmart] C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [DVDAgent] C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe (CyberLink Corp.)
O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (Hewlett-Packard)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [TSMAgent] C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UCam_Menu] C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateLBPShortCut] C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateP2GoShortCut] C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePDIRShortCut] C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePSTShortCut] C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE ()
O8 - Extra context menu item: &Recherche AOL Toolbar - C:\ProgramData\AOL\ieToolbar\resources\fr-FR\local\search.html ()
O9 - Extra 'Tools' menuitem : Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\Reflection.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\Reflection.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\Windows\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/08/08 17:45:44 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/08/07 11:34:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011/08/07 11:34:16 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011/08/06 08:51:44 | 000,000,000 | ---D | C] -- C:\Program Files\X
[2011/08/05 17:25:04 | 004,321,352 | ---- | C] (PacketVideo) -- C:\Users\Manu\Desktop\Serveur_Media_pour_Windows.exe
[2011/08/05 15:59:00 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011/08/05 15:54:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT
[2011/08/05 15:54:47 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2011/08/05 15:51:51 | 000,791,393 | ---- | C] (Lars Hederer ) -- C:\Users\Manu\Desktop\erunt-setup.exe
[2011/08/05 15:46:15 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Malwarebytes
[2011/08/05 15:43:29 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/08/05 15:43:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/08/05 15:43:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/08/05 15:43:23 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/08/05 15:43:23 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/08/05 15:41:28 | 009,435,312 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Manu\Desktop\mbam-setup-1.51.0.1200.exe
[2011/08/05 15:39:53 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Users\Manu\Desktop\OTL.exe
[2011/08/05 15:25:35 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Remover
[2011/08/05 12:41:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2011/08/05 10:56:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
[2011/08/05 10:55:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2011/08/05 10:55:55 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2011/08/01 17:24:45 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\CyberLink
[2011/07/31 11:11:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/07/31 11:10:09 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/07/31 11:07:08 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/07/24 15:45:06 | 000,000,000 | ---D | C] -- C:\Users\Manu\Desktop\Photos La Joue du Loup
[2011/07/22 14:43:12 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2011/07/21 19:03:35 | 000,000,000 | ---D | C] -- C:\Windows\fr
[2011/07/21 19:01:38 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2011/07/21 18:52:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011/07/21 18:50:03 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Portable Devices
[2011/07/21 18:01:06 | 000,000,000 | ---D | C] -- C:\Windows\CheckSur
[2011/07/21 17:36:45 | 012,021,852 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\idtcpl.cpl
[2011/07/21 17:36:45 | 000,536,576 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\idtmini1.exe
[2011/07/21 17:36:45 | 000,450,652 | ---- | C] (IDT, Inc.) -- C:\Windows\sttray.exe
[2011/07/21 17:36:44 | 003,567,616 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stlang.dll
[2011/07/21 17:35:38 | 000,914,432 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stapo.dll
[2011/07/21 17:35:37 | 000,483,840 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stapi32.dll
[2011/07/21 17:35:07 | 000,000,000 | ---D | C] -- C:\Program Files\IDT
[2011/07/21 15:36:31 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2011/07/20 21:11:53 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Microsoft Help
[2011/07/20 19:42:52 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu-ES
[2011/07/20 19:42:52 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca-ES
[2011/07/20 19:42:50 | 000,000,000 | ---D | C] -- C:\Windows\System32\vi-VN
[2011/07/20 19:04:24 | 000,000,000 | ---D | C] -- C:\Windows\System32\EventProviders
[2011/07/19 18:34:14 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2011/07/19 18:32:04 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2011/07/19 18:30:11 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2011/07/19 17:06:09 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Windows Live
[2011/07/19 17:06:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2011/07/19 17:04:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2011/07/18 21:24:11 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2011/07/18 20:42:53 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Template
[2011/07/18 20:10:41 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2011/07/17 17:45:08 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\eMule
[2011/07/17 17:45:08 | 000,000,000 | ---D | C] -- C:\ProgramData\eMule
[2011/07/17 16:19:46 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\uStart
[2011/07/17 16:19:37 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eChanblard
[2011/07/17 16:19:36 | 000,000,000 | ---D | C] -- C:\Program Files\eChanblard
[2011/07/17 08:53:15 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\WinRAR
[2011/07/17 08:53:14 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011/07/17 08:53:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011/07/17 08:53:11 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2011/07/17 08:50:46 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Apple Computer
[2011/07/17 08:50:46 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Apple Computer
[2011/07/17 08:49:21 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/07/17 08:49:21 | 000,000,000 | ---D | C] -- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011/07/17 08:47:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2011/07/17 08:47:17 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Apple
[2011/07/17 08:47:14 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011/07/17 08:44:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2011/07/17 08:44:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011/07/17 08:30:41 | 000,064,288 | ---- | C] (Lavasoft AB) -- C:\Windows\System32\drivers\Lbd.sys
[2011/07/17 08:30:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2011/07/17 08:30:37 | 000,101,720 | ---- | C] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2011/07/17 08:28:44 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Sunbelt Software
[2011/07/17 08:28:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
[2011/07/17 08:28:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2011/07/17 08:28:03 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2011/07/17 08:15:20 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2011/07/17 08:12:23 | 000,000,000 | ---D | C] -- C:\ProgramData\WEBREG
[2011/07/17 07:57:04 | 000,000,000 | ---D | C] -- C:\ProgramData\HPSSUPPLY
[2011/07/17 07:54:14 | 000,000,000 | -H-D | C] -- C:\ProgramData\{589802B2-1BF3-4609-9ADE-CF6E6608D06D}
[2011/07/17 07:53:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2011/07/17 07:52:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2011/07/17 07:42:23 | 000,000,000 | ---D | C] -- C:\ProgramData\HP
[2011/07/17 07:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/07/17 07:30:17 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Skype
[2011/07/17 07:30:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2011/07/17 07:29:57 | 000,000,000 | ---D | C] -- C:\Program Files\Skype
[2011/07/17 07:29:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2011/07/17 07:29:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2011/07/17 07:27:35 | 000,000,000 | ---D | C] -- C:\ProgramData\LightScribe
[2011/07/17 07:24:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011/07/17 07:24:25 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2011/07/16 20:26:38 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Media Player Classic
[2011/07/16 20:01:03 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Adobe
[2011/07/16 19:56:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2011/07/16 19:54:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2011/07/16 19:50:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outil de mise à jour Google
[2011/07/16 19:50:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Google Updater
[2011/07/16 18:29:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
[2011/07/16 18:29:04 | 000,237,568 | ---- | C] (www.helixcommunity.org) -- C:\Windows\System32\yv12vfw.dll
[2011/07/16 18:29:04 | 000,151,552 | ---- | C] (fccHandler) -- C:\Windows\System32\ac3acm.acm
[2011/07/16 18:29:00 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2011/07/16 15:21:34 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2011/07/16 13:57:07 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2011/07/16 12:22:14 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Macromedia
[2011/07/16 12:20:58 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Adobe
[2011/07/16 12:20:47 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\AOL
[2011/07/16 06:38:10 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011/07/15 22:26:08 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Google
[2011/07/15 22:26:08 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2011/07/15 22:26:06 | 000,019,544 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2011/07/15 22:26:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2011/07/15 22:26:05 | 000,309,848 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011/07/15 22:26:02 | 000,043,608 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011/07/15 22:26:02 | 000,025,432 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011/07/15 22:26:01 | 000,441,176 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2011/07/15 22:26:00 | 000,054,104 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011/07/15 22:25:16 | 000,040,112 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2011/07/15 22:25:15 | 000,199,304 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011/07/15 22:25:04 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2011/07/15 22:25:04 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011/07/15 22:23:14 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Hewlett-Packard
[2011/07/15 22:22:56 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Hewlett-Packard
[2011/07/15 22:22:41 | 000,000,000 | R--D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011/07/15 22:22:41 | 000,000,000 | R--D | C] -- C:\Users\Manu\Searches
[2011/07/15 22:22:41 | 000,000,000 | R--D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011/07/15 22:22:35 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Identities
[2011/07/15 22:22:33 | 000,000,000 | R--D | C] -- C:\Users\Manu\Contacts
[2011/07/15 22:19:19 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\HP TCS
[2011/07/15 22:19:10 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Services
[2011/07/15 22:19:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Services en ligne
[2011/07/15 22:16:55 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\VirtualStore
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Voisinage réseau
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Voisinage d'impression
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\AppData\Local\Temporary Internet Files
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\SendTo
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Recent
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Modèles
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Documents\Mes vidéos
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Documents\Mes images
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Mes documents
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Menu Démarrer
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Documents\Ma musique
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Local Settings
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\AppData\Local\Historique
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Cookies
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\Application Data
[2011/07/15 22:16:41 | 000,000,000 | -HSD | C] -- C:\Users\Manu\AppData\Local\Application Data
[2011/07/15 22:16:40 | 000,000,000 | --SD | C] -- C:\Users\Manu\AppData\Roaming\Microsoft
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Desktop\Videos
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Saved Games
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Pictures
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Music
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Links
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Favorites
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Downloads
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Documents
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\Desktop
[2011/07/15 22:16:40 | 000,000,000 | R--D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011/07/15 22:16:40 | 000,000,000 | -H-D | C] -- C:\Users\Manu\AppData
[2011/07/15 22:16:40 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Temp
[2011/07/15 22:16:40 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Local\Microsoft
[2011/07/15 22:16:40 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Media Center Programs
[2011/07/15 22:16:40 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
[2011/07/15 22:16:40 | 000,000,000 | ---D | C] -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Modèles
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes vidéos
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes images
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Démarrer
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Ma musique
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\Program Files\Fichiers communs
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoris
[2011/07/15 22:16:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Bureau
[2011/07/15 22:10:52 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/07/15 22:07:43 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\muvee
[2011/07/15 22:07:39 | 000,000,000 | ---D | C] -- C:\Program Files\muvee Technologies
[2011/07/15 22:07:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\muvee Technologies
[2011/07/15 21:57:20 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling
[2011/07/15 21:57:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LightScribe
[2011/07/15 21:56:48 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2011/07/15 21:54:25 | 000,000,000 | ---D | C] -- C:\Windows\System32\HPMDP
[2011/07/15 21:52:58 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\System32\CSVer.dll
[2011/07/15 21:52:58 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2011/07/15 21:52:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\no-NO
[2011/07/15 21:52:05 | 000,000,000 | ---D | C] -- C:\Program Files\Broadcom
[2011/07/15 21:51:17 | 000,124,928 | ---- | C] (Realtek Corporation ) -- C:\Windows\System32\drivers\Rtlh86.sys
[2011/07/15 21:51:17 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2011/07/15 21:50:49 | 000,000,000 | ---D | C] -- C:\Windows\System32\SRSLabs
[2011/07/15 21:50:22 | 000,175,104 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\staco.dll
[2011/07/15 21:49:38 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2011/07/15 21:49:13 | 000,000,000 | ---D | C] -- C:\Windows\JMCR_DIR
[2011/07/15 21:48:46 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2011/07/15 21:42:59 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2011/07/15 21:39:59 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch

========== Files - Modified Within 30 Days ==========

[2011/08/08 17:50:28 | 000,001,000 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2011/08/08 17:48:34 | 000,218,766 | ---- | M] () -- C:\ProgramData\nvModes.001
[2011/08/08 17:48:16 | 000,000,384 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2011/08/08 17:48:08 | 000,218,766 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011/08/08 17:48:06 | 000,001,048 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/08/08 17:47:57 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/08/08 17:47:57 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/08/08 17:47:50 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/08/08 17:47:47 | 3218,284,544 | -HS- | M] () -- C:\hiberfil.sys
[2011/08/08 17:17:05 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/08/07 20:36:41 | 000,035,328 | ---- | M] () -- C:\Users\Manu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/08/07 11:34:35 | 000,001,726 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2011/08/07 08:45:44 | 000,000,064 | ---- | M] () -- C:\Windows\System32\rp_stats.dat
[2011/08/07 08:45:44 | 000,000,044 | ---- | M] () -- C:\Windows\System32\rp_rules.dat
[2011/08/05 18:12:21 | 000,000,212 | ---- | M] () -- C:\Users\Manu\AppData\Roaming\wklnhst.dat
[2011/08/05 18:05:26 | 000,679,042 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2011/08/05 18:05:26 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/08/05 18:05:26 | 000,126,626 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2011/08/05 18:05:26 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/08/05 18:04:46 | 000,002,685 | ---- | M] () -- C:\Users\Manu\Desktop\Microsoft Office Word 2003.lnk
[2011/08/05 17:25:08 | 004,321,352 | ---- | M] (PacketVideo) -- C:\Users\Manu\Desktop\Serveur_Media_pour_Windows.exe
[2011/08/05 16:27:48 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011/08/05 15:55:41 | 000,005,024 | ---- | M] () -- C:\Users\Manu\Desktop\erunt-loc_fr (1).zip
[2011/08/05 15:54:56 | 000,000,913 | ---- | M] () -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
[2011/08/05 15:54:48 | 000,000,733 | ---- | M] () -- C:\Users\Manu\Desktop\NTREGOPT.lnk
[2011/08/05 15:54:48 | 000,000,714 | ---- | M] () -- C:\Users\Manu\Desktop\ERUNT.lnk
[2011/08/05 15:52:20 | 000,005,024 | ---- | M] () -- C:\Users\Manu\Desktop\erunt-loc_fr.zip
[2011/08/05 15:51:49 | 000,791,393 | ---- | M] (Lars Hederer ) -- C:\Users\Manu\Desktop\erunt-setup.exe
[2011/08/05 15:48:37 | 000,000,906 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/08/05 15:41:34 | 009,435,312 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Manu\Desktop\mbam-setup-1.51.0.1200.exe
[2011/08/05 15:40:04 | 000,000,417 | ---- | M] () -- C:\Users\Manu\Desktop\scan.zip
[2011/08/05 15:39:50 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Manu\Desktop\OTL.exe
[2011/08/05 15:25:36 | 000,001,676 | ---- | M] () -- C:\Users\Manu\Desktop\AD-R.lnk
[2011/08/05 12:38:01 | 101,221,856 | ---- | M] () -- C:\Users\Manu\Desktop\setup_11.0.0.1245.x01_2011_08_05_13_12.exe
[2011/08/05 12:33:22 | 000,436,305 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2011/08/05 12:28:17 | 000,436,305 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts.20110805-123322.backup
[2011/08/05 10:56:02 | 000,001,055 | ---- | M] () -- C:\Users\Manu\Desktop\Spybot - Search & Destroy.lnk
[2011/08/05 10:21:10 | 000,394,440 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/07/31 17:35:18 | 000,014,136 | ---- | M] () -- C:\Users\Manu\Desktop\Facture aspirateur LG.pdf
[2011/07/31 14:20:27 | 000,000,360 | ---- | M] () -- C:\Users\Manu\Desktop\Musique - Raccourci.lnk
[2011/07/31 14:20:19 | 000,000,369 | ---- | M] () -- C:\Users\Manu\Desktop\Images - Raccourci.lnk
[2011/07/31 11:16:19 | 000,000,680 | ---- | M] () -- C:\Users\Manu\AppData\Local\d3d9caps.dat
[2011/07/31 11:11:12 | 000,001,664 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/07/23 19:35:42 | 000,000,056 | -H-- | M] () -- C:\Windows\System32\ezsidmv.dat
[2011/07/22 14:46:24 | 000,000,382 | ---- | M] () -- C:\Windows\ODBC.INI
[2011/07/21 18:50:51 | 000,008,798 | ---- | M] () -- C:\Windows\System32\icrav03.rat
[2011/07/21 18:50:51 | 000,001,988 | ---- | M] () -- C:\Windows\System32\ticrf.rat
[2011/07/21 18:50:42 | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit.inf
[2011/07/21 18:44:53 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
[2011/07/21 18:44:45 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2011/07/21 15:10:29 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011/07/17 18:00:26 | 000,001,971 | ---- | M] () -- C:\Users\Manu\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/07/17 16:19:47 | 000,000,813 | ---- | M] () -- C:\Users\Manu\Desktop\eChanblard.lnk
[2011/07/17 10:11:11 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf
[2011/07/17 10:11:02 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2011/07/17 08:55:43 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2011/07/17 08:36:41 | 000,101,720 | ---- | M] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2011/07/17 08:36:40 | 000,016,432 | ---- | M] () -- C:\Windows\System32\lsdelete.exe
[2011/07/17 08:28:09 | 000,001,019 | ---- | M] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2011/07/17 08:12:22 | 000,146,259 | ---- | M] () -- C:\Windows\hpoins18.dat
[2011/07/17 07:56:35 | 000,002,027 | ---- | M] () -- C:\Users\Public\Desktop\HP Photosmart Essential.lnk
[2011/07/17 07:37:31 | 000,000,804 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/07/17 07:30:02 | 000,001,870 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/07/16 20:28:37 | 000,000,938 | ---- | M] () -- C:\Users\Manu\Desktop\Windows Media Player.lnk
[2011/07/16 19:54:02 | 000,002,073 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2011/07/16 12:15:40 | 000,588,472 | ---- | M] (EasyBits Software AS) -- C:\Windows\System32\ezsvc7x.dll
[2011/07/15 22:17:24 | 000,000,000 | RHS- | M] () -- C:\Windows\System32\drivers\103C_HP_cNB_Pavilion dv6 Notebook PC_Y5335KV_0U_QCNF9071WDS_E506288-053_4A_I3629_SQuanta_V18.0B_F.02_T081114_WV3-1_L40C_M3069_J320_7Intel_867A_92.00_#110715_N10EC8168;14E44315_(NR491EA#ABF)_XMOBILE_CN10_Z_2F.02.MRK
[2011/07/15 22:13:45 | 000,065,328 | ---- | M] () -- C:\Windows\System32\license.rtf
[2011/07/15 22:04:41 | 000,001,928 | ---- | M] () -- C:\Users\Public\Desktop\HP MediaSmart.lnk
[2011/07/15 21:52:15 | 000,873,310 | ---- | M] () -- C:\Windows\System32\oem10.inf
[2011/07/15 21:52:00 | 000,006,656 | ---- | M] () -- C:\Windows\System32\bcmwlrc.dll
[2011/07/15 21:49:27 | 000,000,125 | ---- | M] () -- C:\Windows\xUninstall.bat
[2011/07/15 21:49:04 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01007.Wdf

========== Files Created - No Company Name ==========

[2011/08/07 18:21:33 | 000,000,384 | ---- | C] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2011/08/07 11:34:35 | 000,001,726 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2011/08/05 16:27:48 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011/08/05 15:55:45 | 000,005,024 | ---- | C] () -- C:\Users\Manu\Desktop\erunt-loc_fr (1).zip
[2011/08/05 15:54:56 | 000,000,913 | ---- | C] () -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
[2011/08/05 15:54:48 | 000,000,733 | ---- | C] () -- C:\Users\Manu\Desktop\NTREGOPT.lnk
[2011/08/05 15:54:48 | 000,000,714 | ---- | C] () -- C:\Users\Manu\Desktop\ERUNT.lnk
[2011/08/05 15:52:33 | 000,005,024 | ---- | C] () -- C:\Users\Manu\Desktop\erunt-loc_fr.zip
[2011/08/05 15:43:29 | 000,000,906 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/08/05 15:40:07 | 000,000,417 | ---- | C] () -- C:\Users\Manu\Desktop\scan.zip
[2011/08/05 15:25:36 | 000,001,676 | ---- | C] () -- C:\Users\Manu\Desktop\AD-R.lnk
[2011/08/05 12:35:33 | 101,221,856 | ---- | C] () -- C:\Users\Manu\Desktop\setup_11.0.0.1245.x01_2011_08_05_13_12.exe
[2011/08/05 10:56:02 | 000,001,055 | ---- | C] () -- C:\Users\Manu\Desktop\Spybot - Search & Destroy.lnk
[2011/08/05 09:24:09 | 000,016,432 | ---- | C] () -- C:\Windows\System32\lsdelete.exe
[2011/07/31 17:35:43 | 000,014,136 | ---- | C] () -- C:\Users\Manu\Desktop\Facture aspirateur LG.pdf
[2011/07/31 14:20:27 | 000,000,360 | ---- | C] () -- C:\Users\Manu\Desktop\Musique - Raccourci.lnk
[2011/07/31 14:20:19 | 000,000,369 | ---- | C] () -- C:\Users\Manu\Desktop\Images - Raccourci.lnk
[2011/07/31 11:11:12 | 000,001,664 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/07/23 19:35:42 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2011/07/22 14:46:23 | 000,000,382 | ---- | C] () -- C:\Windows\ODBC.INI
[2011/07/22 14:44:08 | 000,002,685 | ---- | C] () -- C:\Users\Manu\Desktop\Microsoft Office Word 2003.lnk
[2011/07/21 19:01:23 | 000,001,158 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
[2011/07/21 19:00:35 | 000,001,227 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
[2011/07/21 18:59:44 | 000,001,037 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
[2011/07/21 18:59:14 | 000,002,025 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2011/07/21 18:50:42 | 000,072,822 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2011/07/21 18:44:53 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
[2011/07/21 18:44:45 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2011/07/21 15:57:25 | 000,035,328 | ---- | C] () -- C:\Users\Manu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/07/20 18:49:26 | 000,130,008 | ---- | C] () -- C:\Windows\System32\systemsf.ebd
[2011/07/20 18:49:22 | 000,009,239 | ---- | C] () -- C:\Windows\System32\spcinstrumentation.man
[2011/07/20 18:49:03 | 000,442,788 | ---- | C] () -- C:\Windows\System32\dot3.tmf
[2011/07/20 18:48:58 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2011/07/20 18:48:58 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2011/07/20 18:48:48 | 000,392,170 | ---- | C] () -- C:\Windows\System32\onex.tmf
[2011/07/20 18:48:36 | 000,344,698 | ---- | C] () -- C:\Windows\System32\eaphost.tmf
[2011/07/20 18:47:55 | 000,208,966 | ---- | C] () -- C:\Windows\System32\WFP.TMF
[2011/07/20 18:47:52 | 000,092,918 | ---- | C] () -- C:\Windows\System32\slmgr.vbs
[2011/07/20 18:46:46 | 000,009,212 | ---- | C] () -- C:\Windows\System32\RacUR.xml
[2011/07/18 20:42:51 | 000,000,212 | ---- | C] () -- C:\Users\Manu\AppData\Roaming\wklnhst.dat
[2011/07/17 18:00:26 | 000,001,971 | ---- | C] () -- C:\Users\Manu\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/07/17 16:19:47 | 000,000,813 | ---- | C] () -- C:\Users\Manu\Desktop\eChanblard.lnk
[2011/07/17 10:11:11 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf
[2011/07/17 10:11:02 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2011/07/17 10:10:24 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Inbox_Critical.Wdf
[2011/07/17 08:55:43 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2011/07/17 08:47:15 | 000,001,830 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2011/07/17 08:37:09 | 000,000,064 | ---- | C] () -- C:\Windows\System32\rp_stats.dat
[2011/07/17 08:37:09 | 000,000,044 | ---- | C] () -- C:\Windows\System32\rp_rules.dat
[2011/07/17 08:28:09 | 000,001,019 | ---- | C] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2011/07/17 07:56:43 | 000,000,887 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Enregistrement OCR I.R.I.S..lnk
[2011/07/17 07:56:35 | 000,002,027 | ---- | C] () -- C:\Users\Public\Desktop\HP Photosmart Essential.lnk
[2011/07/17 07:42:29 | 000,146,259 | ---- | C] () -- C:\Windows\hpoins18.dat
[2011/07/17 07:42:16 | 000,006,600 | ---- | C] () -- C:\Windows\hpomdl18.dat
[2011/07/17 07:37:31 | 000,000,804 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/07/17 07:24:36 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2011/07/16 20:28:37 | 000,000,938 | ---- | C] () -- C:\Users\Manu\Desktop\Windows Media Player.lnk
[2011/07/16 20:03:26 | 000,000,680 | ---- | C] () -- C:\Users\Manu\AppData\Local\d3d9caps.dat
[2011/07/16 19:54:02 | 000,002,073 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2011/07/16 19:50:39 | 000,001,000 | ---- | C] () -- C:\Windows\tasks\Google Software Updater.job
[2011/07/16 18:29:08 | 000,175,616 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2011/07/16 18:29:08 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2011/07/16 18:29:04 | 000,644,608 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2011/07/16 18:29:03 | 000,243,200 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2011/07/16 18:29:03 | 000,073,216 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2011/07/16 13:55:12 | 000,002,426 | ---- | C] () -- C:\Windows\System32\WsmTxt.xsl
[2011/07/16 13:55:11 | 000,201,184 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2011/07/16 13:55:11 | 000,004,675 | ---- | C] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2011/07/16 12:43:19 | 002,501,921 | ---- | C] () -- C:\Windows\System32\wlan.tmf
[2011/07/15 22:26:18 | 000,001,052 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/07/15 22:26:16 | 000,001,048 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/07/15 22:22:42 | 000,000,949 | ---- | C] () -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011/07/15 22:22:40 | 000,000,944 | ---- | C] () -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2011/07/15 22:22:33 | 000,000,915 | ---- | C] () -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
[2011/07/15 22:19:10 | 000,001,999 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
[2011/07/15 22:19:10 | 000,001,870 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/07/15 22:19:10 | 000,001,844 | ---- | C] () -- C:\Users\Public\Desktop\Pour les enfants.lnk
[2011/07/15 22:19:10 | 000,001,844 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pour les enfants.lnk
[2011/07/15 22:17:24 | 000,000,000 | RHS- | C] () -- C:\Windows\System32\drivers\103C_HP_cNB_Pavilion dv6 Notebook PC_Y5335KV_0U_QCNF9071WDS_E506288-053_4A_I3629_SQuanta_V18.0B_F.02_T081114_WV3-1_L40C_M3069_J320_7Intel_867A_92.00_#110715_N10EC8168;14E44315_(NR491EA#ABF)_XMOBILE_CN10_Z_2F.02.MRK
[2011/07/15 22:16:40 | 000,000,258 | ---- | C] () -- C:\Users\Manu\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011/07/15 22:16:40 | 000,000,240 | ---- | C] () -- C:\Users\Manu\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2011/07/15 22:10:51 | 000,218,766 | ---- | C] () -- C:\ProgramData\nvModes.001
[2011/07/15 22:04:41 | 000,001,928 | ---- | C] () -- C:\Users\Public\Desktop\HP MediaSmart.lnk
[2011/07/15 21:56:48 | 000,218,766 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2011/07/15 21:52:29 | 000,873,310 | ---- | C] () -- C:\Windows\System32\oem10.inf
[2011/07/15 21:52:06 | 000,006,656 | ---- | C] () -- C:\Windows\System32\bcmwlrc.dll
[2011/07/15 21:49:27 | 000,000,125 | ---- | C] () -- C:\Windows\xUninstall.bat
[2011/07/15 21:49:04 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01007.Wdf
[2011/07/15 21:45:00 | 3218,284,544 | -HS- | C] () -- C:\hiberfil.sys
[2008/11/15 08:37:40 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2008/11/15 08:32:51 | 000,679,042 | ---- | C] () -- C:\Windows\System32\perfh00C.dat
[2008/11/15 08:32:51 | 000,340,236 | ---- | C] () -- C:\Windows\System32\perfi00C.dat
[2008/11/15 08:32:51 | 000,126,626 | ---- | C] () -- C:\Windows\System32\perfc00C.dat
[2008/11/15 08:32:51 | 000,037,390 | ---- | C] () -- C:\Windows\System32\perfd00C.dat
[2008/11/15 01:49:21 | 000,000,428 | ---- | C] () -- C:\Windows\System32\ezdigsgn.dat
[2006/11/02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 14:47:37 | 000,394,440 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 12:33:01 | 000,595,996 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 12:33:01 | 000,104,070 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2003/04/01 10:58:02 | 000,005,260 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI

========== LOP Check ==========

[2011/07/18 20:42:53 | 000,000,000 | ---D | M] -- C:\Users\Manu\AppData\Roaming\Template
[2011/07/17 16:19:46 | 000,000,000 | ---D | M] -- C:\Users\Manu\AppData\Roaming\uStart
[2011/08/08 17:48:16 | 000,000,384 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job
[2011/08/08 17:46:53 | 000,029,934 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >
manolo06
 
Messages: 9
Inscription: 05 Aoû 2011, 15:57

Re: Ouverture intempestive de chrome avec publicités

Messagede nickW » 09 Aoû 2011, 00:47

Bonsoir,

Après ce premier nettoyage, peux-tu me dire comment se comporte le PC?

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Suivante

Retourner vers Sécurité (Contamination - Décontamination)

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 27 invités