demandes d'étude de rapports d'analyse

Sécurité et insécurité. Virus, Trojans, Spywares, Failles etc. …

Modérateur: Modérateurs et Modératrices

Règles du forum
Assiste.com a suspendu l'assistance à la décontamination après presque 15 ans sur l'ancien forum puis celui-ci. Voir :

Procédure de décontamination 1 - Anti-malware
Décontamination anti-malwares

Procédure de décontamination 2 - Anti-malware et antivirus (La Manip)
La Manip - Procédure standard de décontamination

Entretien périodique d'un PC sous Windows
Entretien périodique d'un PC sous Windows

Protection des navigateurs, de la navigation et de la vie privée
Protéger le navigateur, la navigation et la vie privée

Re: demandes d'étude de rapports d'analyse

Messagede Marie Noel Ginet » 02 Oct 2011, 23:26

File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rasppp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rasrad.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rassapi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rasser.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rastapi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rastls.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rcbdyctl.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\RCHTXDE.DLL
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rdchost.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\RDOCURS.DLL
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rdpcfgex.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rdpdd.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rdpsnd.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rdpwsx.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\regapi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\regsvc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\regwizc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\remotepg.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rend.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\resutils.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\ReWire.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\riched20.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\riched32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rmoc3260.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rnr20.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\routetab.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rpcns4.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rpcrt4.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rpcss.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rsaenh.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rshx32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rsmps.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rsvpmsg.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rsvpperf.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rsvpsp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rtipxmib.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\RtlCPAPI.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rtm.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\rtutils.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\safrcdlg.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\safrdm.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\safrslv.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\samlib.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\samsrv.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sbe.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sbeio.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\scarddlg.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\scardssp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sccbase.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sccsccp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\scecli.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\scesrv.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\schannel.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\schedsvc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sclgntfy.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\scofr.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\SCP32.DLL
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\scredir.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\scrobj.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\scrrnfr.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\scrrun.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sdhcinst.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sdpblb.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\seclogon.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\secur32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\security.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sendcmsg.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sendmail.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sens.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sensapi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\senscfg.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\serialui.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\servdeps.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\serwvdrv.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\setupapi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\setupdll.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sfc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sfcfiles.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sfc_os.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sfmapi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\shdoclc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\shdocvw.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\shell.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\shell32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\shellstyle.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\shfolder.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\shgina.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\shimeng.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\shimgvw.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\shlwapi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\shmedia.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\shscrap.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\shsvcs.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sigtab.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sirenacm.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sisbkup.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\skdll.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\slayerxp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\slbcsp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\slbiop.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\slbrccsp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\smlogcfg.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\snmpapi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\snmpsnap.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\softpub.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\spmsg.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\spmsgXP_2k3.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\spnike.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\spoolss.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sprio600.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sprio800.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\spxcoins.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sqlsrv32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sqlunirl.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sqlwid.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sqlwoa.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\srclient.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\srrstr.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\srsvc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\srvsvc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\ssdpapi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\ssdpsrv.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\ssldivx.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\ssleay32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\stclient.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sti.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sti_ci.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\stobject.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\storage.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\storprop.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\streamci.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\strmdll.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\strmfilt.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\svcpack.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\swprv.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sxs.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\synceng.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\syncui.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\SYNSOACC.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\SynsoLChk.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\sysinv.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\syssetup.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\t2embed.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\tapi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\tapi3.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\tapi32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\tapiperf.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\tapisrv.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\tapiui.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\tcpmib.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\tcpmon.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\tcpmonui.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\termmgr.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\termsrv.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\Thawbrkr.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\themeui.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\toolhelp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\traffic.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\trkwks.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\TrustSupport.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\tsappcmp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\tsbyuv.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\tscfgwmi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\tsd32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\tsddd.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\TWAIN_32.DLL
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\twext.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\txflog.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\typelib.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\UCS32P.DLL
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\udhisapi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\ufat.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\ulib.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\umandlg.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\umdmxfrm.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\umpnpmgr.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\unicows.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\uniime.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\unimdmat.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\uniplat.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\untfs.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\upnp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\upnphost.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\upnpui.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\ureg.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\url(3).dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\url.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\urlmon(3).dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\urlmon.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usbaaplrc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usbmon.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usbui.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\user32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\userenv.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usp10.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usrcntra.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usrcoina.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usrdpa.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usrdtea.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usrfaxa.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usrlbva.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usrrtosa.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usrsdpia.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usrsvpia.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usrv42a.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usrv80a.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usrvoica.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\usrvpa.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\utildll.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\uxtheme.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\VB6DE.DLL
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\VB6FR.DLL
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\vbajet32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\VBAME.DLL
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\vboxs430.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\vbscript.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\vbsfr.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\vcdex.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\vdmdbg.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\vdmredir.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\ver.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\verifier.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\version.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\vfpodbc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\vfwwdm32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\vga.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\vga256.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\vga64k.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\vjoy.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\vss_ps.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\vxblock.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\W32N50.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\w32time.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\w32topl.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\w3ssl.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\W95Inf16.DLL
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\W95Inf32.DLL
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wavemsp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wdfapi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wdfcoinstaller01005.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wdfcoinstaller01009.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wdigest.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\webcheck(2).dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\webcheck.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\webclnt.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\webhits.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\webvw.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WgaLogon.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wiadefui.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wiadss.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wiascr.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wiaservc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wiashext.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wiavideo.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wiavusd.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wifeman.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\win32spl.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\win87em.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\winbrand.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WindowsCodecs.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WindowsCodecsExt.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\winfax.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\winhttp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wininet(3).dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wininet.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\winipsec.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\winmm.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\winnls.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\winntbbu.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\winrnr.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\winscard.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\winshfhc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\winsock.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\winsrv.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\winsta.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\winstrm.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wintrust.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wkssvc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WLANUTL.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wldap32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wlnotify.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WMADMOD.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WMADMOE.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmasf.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmdmlog.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmdmps.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmdrmdev.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmdrmnet.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmdrmsdk.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmerrFRA.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmerror.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmidx.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmiprop.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WMNetMgr.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmpasf.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmpcd.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmpcore.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmpdxm.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmpeffects.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmpencen.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WMPhoto.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmploc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmpmde.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmpns.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmpps.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmpshell.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmpsrcwp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmpui.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmsdmod.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmsdmoe.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmsdmoe2.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WMSPDMOD.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WMSPDMOE.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmstream.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmv8dmod.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmv8dmoe.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmv9vcm.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WMVADVD.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WMVADVE.DLL
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmvcore.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WMVDECOD.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmvdmod.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmvdmoe.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wmvdmoe2.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WMVENCOD.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WMVSDECD.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WMVSENCD.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WMVXENCD.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WNASPI32.DLL
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wow32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wowfax.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wowfaxui.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wpdconns.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wpdmtp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wpdmtpdr.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wpdmtpus.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WpdShext.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wpdshextres.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WPDShServiceObj.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wpdsp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wpdtrace.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wpd_ci.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\ws2help.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\ws2_32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wscsvc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wshatm.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wshbth.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wshcon.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wshext.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wshfr.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wship6.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wshisn.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wshnetbs.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WshRm.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wshtcpip.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wsnmp32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wsock32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wstdecod.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wtsapi32.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wuapi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wuaueng.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wuaueng1.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wuauserv.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wucltui.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WUDFCoinstaller.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WudfPlatform.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WudfSvc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\WUDFx.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wups.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wups2.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wuweb.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wzcdlg.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wzcsapi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\wzcsvc.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\xactsrv.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\xenroll.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\xinput9_1_0.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\xmllite.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\xmlprov.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\xmlprovi.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\xolehlp.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\xpob2res.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\xpsp1res.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\xpsp2res.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\xpsp3res.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\zipfldr.dll
File not found Unable to obtain MD5 -- C:\WINDOWS\system32\ZoomH4Asio.dll

< %systemroot%\Tasks\*.job /lockedfiles >
File not found Unable to obtain MD5 -- C:\WINDOWS\Tasks\Google Software Updater.job
File not found Unable to obtain MD5 -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
File not found Unable to obtain MD5 -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
File not found Unable to obtain MD5 -- C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-3978581669-3650736504-2941554700-1005.job
File not found Unable to obtain MD5 -- C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-3978581669-3650736504-2941554700-1005.job

< End of report >
Marie Noel Ginet
 
Messages: 36
Inscription: 02 Oct 2011, 14:17

Re: demandes d'étude de rapports d'analyse

Messagede nickW » 03 Oct 2011, 00:47

Bonsoir,

Vérification du disque système:


Étape 1: chkdsk (analyse du disque)

Démarrer---->Exécuter, taper
cmd
puis cliquer sur OK

1/ contrôle d'intégrité
Une fenêtre à fond noir (mode commandes) s'ouvre.
Dans cette fenêtre (derrière l'invite C:\Documents and Settings\<tonprofil>), taper
fsutil dirty query c:
puis appuyer sur la touche Entrée
Noter le résultat.

2/ analyse du disque
Dans la fenêtre à fond noir (derrière l'invite C:\Documents and Settings\<tonprofil>), taper
chkdsk c:
puis appuyer sur la touche Entrée
Un redémarrage est parfois nécessaire. S'il est demandé, faire redémarrer le PC.

Lorsque l'analyse est terminée, une nouvelle invite C:\Documents and Settings\<tonprofil> s'affiche.
Faire ce qui suit:
*- Cliquer sur l'icône du menu système (l'icône dans le coin supérieur gauche de la fenêtre)---->Modifier---->Sélectionner
*- Balayer la zone à copier avec la souris pour la mettre en surbrillance (attention, on ne travaille pas ligne par ligne)
*- Appuyer sur la touche Entrée ou cliquer sur l'icône du menu système---->Modifier---->Copier (le texte est maintenant dans le Presse-papiers)

Ouvir une fenêtre du Bloc-notes via Démarrer---->Exécuter, taper notepad puis cliquer sur OK
Faire un clic droit dans cette fenêtre du Bloc-notes et choisir Coller
Vérifier (dans le menu Format) que "Retour automatique à ligne" n'est pas actif (pas coché)
Enregistrer le fichier sous le nom verifC.txt
Fermer le Bloc-notes.

Fermer la fenêtre à fond noir en tapant Exit puis en appuyant sur Entrée


Étape 2: Résultat
Envoyer en réponse:
*- le résultat du contrôle d'intégrité
*- le résultat de l'analyse du disque (contenu du fichier verifC.txt)

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Re: demandes d'étude de rapports d'analyse

Messagede Marie Noel Ginet » 03 Oct 2011, 08:40

Bonjour,

comme demandé voici le résultat du contrôle d'intégrité :

Microsoft Windows XP [version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.

C:\Documents and Settings\Bernie Pochon>fsutil dirty c:
c: n'est pas un paramètre valide.

le résultat de l'analyse du disque :

Microsoft Windows XP [version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.

C:\Documents and Settings\Bernie Pochon>fsutil dirty c:
c: n'est pas un paramètre valide.
---- Commandes DIRTY prises en charge ----

query Interroge le bit d'intégrité
set Définit le bit d'intégrité

C:\Documents and Settings\Bernie Pochon>chkdsk c:
Le type du système de fichiers est NTFS.
Le nom de volume est ACER.

Avertissement ! Le paramètre F n'a pas été spécifié.
Exécution de CHKDSK en mode lecture seule.

CHKDSK est en train de vérifier les fichiers (étape 1 de 3)...
La vérification des fichiers est terminée.
CHKDSK est en train de vérifier les index (étape 2 de 3)...
La vérification des index est terminée.
CHKDSK récupère les fichiers perdus.
CHKDSK est en train de vérifier les descripteurs de sécurité (étape 3 de 3)...
La vérification des descripteurs de sécurité est terminée.
CHKDSK vérifie le journal USN...
Vérification du journal USN terminée.
Correction des erreurs dans l'attribut BITMAP de la table de fichiers maîtres (
FT).
CHKDSK a découvert de l'espace libre marqué alloué dans la bitmap du volume.
Windows a détecté des problèmes sur le système de fichiers.
Exécutez CHKDSK avec l'option /F pour les corriger.

76405139 Ko d'espace disque au total.
36250592 Ko dans 225490 fichiers.
98540 Ko dans 22926 index.
16 Ko dans des secteurs défectueux.
1057259 Ko utilisés par le système.
65536 Ko occupés par le fichier journal.
38998732 Ko disponibles sur le disque.

4096 octets dans chaque unité d'allocation.
19101284 unités d'allocation au total sur le disque.
9749683 unités d'allocation disponibles sur le disque.

C:\Documents and Settings\Bernie Pochon>

Bonne journée
Marie Noel Ginet
 
Messages: 36
Inscription: 02 Oct 2011, 14:17

Re: demandes d'étude de rapports d'analyse

Messagede nickW » 04 Oct 2011, 00:58

Bonjour,

Il semble qu'il y ait un problème sur la partition système C:

Dans un premier temps, peux-tu sauvegarder (par exemple sur la partition K: - je pense à un disque dur externe) tous les documents personnels qui se trouvent sur cette partition C:
Par exemple C:\Documents and Settings\<chaque utilisateur>\Mes documents



Ensuite, refaire une analyse OTL comme ceci:


Étape 1: OTL (de OldTimer), analyse rapide
Fermer toutes les fenêtres de programme ouvertes.

Faire un double clic sur OTL.exe pour lancer l'outil.

L'écran principal de OTL s'affiche:
Image

Cliquer sur le bouton Analyse rapide:
Image


Laisser l'outil travailler sans l'interrompre.
Lorsque l'outil a terminé, il y a ouverture d'une fenêtre du Bloc-notes contenant un rapport (log).
Fermer le Bloc-notes.
Fermer la fenêtre de OTL.


Étape 2: Résultats
Envoyer en réponse:
*- le rapport principal de OTL (contenu du fichier OTL.Txt situé sur le Bureau).
Le rapport envoyé sur le forum doit se terminer par une ligne contenant <End of report>. Si ce n'est pas le cas, il est incomplet, et doit alors être découpé en plusieurs messages.

Important:
Si dans les rubriques
========== Files/Folders - Created Within 30 Days ========== et
========== Files - Modified Within 30 Days ==========
il y a des dizaines de lignes commençant par File not found, il ne faut pas les envoyer dans ta réponse.

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Re: demandes d'étude de rapports d'analyse

Messagede Marie Noel Ginet » 04 Oct 2011, 19:00

Bonsoir,

Voici le rapport principal de OTL :

OTL logfile created on: 04/10/2011 19:31:21 - Run 1
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Documents and Settings\Bernie Pochon\Bureau
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

479,48 Mb Total Physical Memory | 122,10 Mb Available Physical Memory | 25,47% Memory free
1,10 Gb Paging File | 0,75 Gb Available in Paging File | 68,32% Paging File free
Paging file location(s): C:\pagefile.sys 720 1440 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 72,87 Gb Total Space | 36,70 Gb Free Space | 50,37% Space Free | Partition Type: NTFS
Drive D: | 73,23 Gb Total Space | 70,54 Gb Free Space | 96,33% Space Free | Partition Type: FAT32

Computer Name: THÉAPOCH | User Name: Bernie Pochon | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/10/02 19:33:29 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bernie Pochon\Bureau\OTL.exe
PRC - [2011/09/06 22:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011/09/06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011/03/21 20:56:16 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011/02/18 17:37:16 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/12/06 10:46:45 | 000,274,608 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2010/07/27 02:00:06 | 000,247,808 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe
PRC - [2010/07/27 00:41:12 | 000,107,568 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpntray.exe
PRC - [2010/06/23 04:48:08 | 000,322,608 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\hsswd.exe
PRC - [2010/06/23 04:48:00 | 000,348,208 | ---- | M] (AnchorFree Inc.) -- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
PRC - [2009/03/12 10:44:32 | 000,184,968 | ---- | M] (SPAMfighter ApS) -- C:\Program Files\SPAMfighter\sfus.exe
PRC - [2007/06/13 15:22:28 | 001,037,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004/12/20 15:39:46 | 001,462,272 | ---- | M] (Inventel) -- C:\Program Files\Inventel\Gateway\WLANCFG.EXE
PRC - [2003/07/23 10:43:10 | 000,024,651 | ---- | M] (Microsoft® Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe


========== Modules (No Company Name) ==========

MOD - [2011/10/04 10:37:00 | 001,589,248 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\11100400\algo.dll
MOD - [2011/10/03 20:47:03 | 001,589,248 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\11100301\algo.dll
MOD - [2011/09/30 16:14:34 | 000,212,640 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\11100400\aswRep.dll
MOD - [2011/09/30 16:14:34 | 000,212,640 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\11100301\aswRep.dll
MOD - [2011/09/05 19:04:58 | 000,301,056 | ---- | M] () -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA
MOD - [2011/06/24 22:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 22:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\libxml2.dll
MOD - [2011/05/25 10:17:35 | 002,019,976 | ---- | M] () -- C:\Program Files\SPAMfighter\sfse.dll
MOD - [2011/03/21 20:57:34 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011/03/21 20:56:16 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2010/07/27 02:00:06 | 000,247,808 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe
MOD - [2010/07/27 00:41:12 | 000,107,568 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpntray.exe
MOD - [2010/07/27 00:40:40 | 000,003,072 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\lang\gui-fre.dll
MOD - [2010/06/23 04:48:08 | 000,322,608 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\hsswd.exe
MOD - [2009/03/30 04:34:30 | 000,280,143 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\libidn-11.dll
MOD - [2009/03/27 22:02:24 | 000,332,254 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\libssl32.dll
MOD - [2009/03/27 22:02:22 | 001,554,920 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\libeay32.dll
MOD - [2009/03/12 10:38:02 | 000,539,072 | ---- | M] () -- C:\Program Files\SPAMfighter\sfsg.dll
MOD - [2004/08/05 05:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (WinSvc)
SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011/09/06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011/02/18 17:37:16 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/07/27 02:00:06 | 000,247,808 | ---- | M] () [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe -- (HotspotShieldService)
SRV - [2010/07/27 00:41:20 | 000,057,640 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Hotspot Shield\bin\HssTrayService.exe -- (HssTrayService)
SRV - [2010/06/23 04:48:08 | 000,322,608 | ---- | M] () [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\hsswd.exe -- (HssWd)
SRV - [2010/06/23 04:48:00 | 000,348,208 | ---- | M] (AnchorFree Inc.) [Auto | Running] -- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe -- (HssSrv)
SRV - [2009/03/12 10:44:32 | 000,184,968 | ---- | M] (SPAMfighter ApS) [Auto | Running] -- C:\Program Files\SPAMfighter\sfus.exe -- (SPAMfighter Update Service)
SRV - [2008/11/02 14:43:04 | 000,069,120 | ---- | M] (BOONTY) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe -- (Boonty Games)
SRV - [2008/09/21 22:22:40 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2005/04/04 00:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004/12/20 15:39:46 | 001,462,272 | ---- | M] (Inventel) [Auto | Running] -- C:\Program Files\Inventel\Gateway\wlancfg.exe -- (Wlancfg)


========== Driver Services (SafeList) ==========

DRV - [2011/09/06 22:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/09/06 22:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/09/06 22:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/09/06 22:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/09/06 22:36:23 | 000,110,552 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011/09/06 22:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011/09/06 22:33:11 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011/05/10 08:06:14 | 000,018,432 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\netaapl.sys -- (Netaapl)
DRV - [2010/06/23 04:48:00 | 000,037,376 | ---- | M] (AnchorFree Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HssDrv.sys -- (HssDrv)
DRV - [2010/06/23 04:47:58 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\taphss.sys -- (taphss)
DRV - [2006/11/23 19:20:06 | 000,018,432 | ---- | M] (SIA Syncrosoft) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\synasUSB.sys -- (SynasUSB)
DRV - [2006/07/24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2005/12/22 12:24:52 | 000,137,884 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2005/12/22 12:24:52 | 000,010,864 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2005/12/22 12:24:50 | 000,080,272 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
DRV - [2005/09/14 15:25:26 | 000,017,134 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.sys -- (PCANDIS5)
DRV - [2005/05/11 13:12:17 | 000,079,248 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600mgmt.sys -- (k600mgmt)
DRV - [2005/05/11 13:12:17 | 000,077,072 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600obex.sys -- (k600obex)
DRV - [2005/05/11 13:12:14 | 000,087,456 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600mdm.sys -- (k600mdm)
DRV - [2005/05/11 13:12:14 | 000,006,096 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600mdfl.sys -- (k600mdfl)
DRV - [2005/05/11 13:12:11 | 000,052,384 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600bus.sys -- (k600bus) Sony Ericsson 600i driver (WDM)
DRV - [2005/04/15 18:05:42 | 002,564,032 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2005/01/12 21:30:22 | 000,915,968 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2004/12/15 21:16:08 | 000,076,544 | ---- | M] (ULi Electronics Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\m5287.sys -- (m5287)
DRV - [2004/12/02 16:36:08 | 000,070,912 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys -- (RTL8023xp)
DRV - [2004/09/16 13:26:40 | 000,012,634 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AdfuUd.sys -- (AdfuUd) USB 2.0 (FS)
DRV - [2004/08/13 18:15:00 | 000,379,456 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WlanUIG.sys -- (WlanUIG)
DRV - [2004/08/12 17:45:52 | 000,113,664 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)
DRV - [2004/07/22 19:36:26 | 000,015,781 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\mdc8021x.sys -- (MDC8021X) AEGIS Protocol (IEEE 802.1x)
DRV - [2004/06/29 09:07:18 | 001,268,204 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2004/03/30 19:29:48 | 000,374,816 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PRISMA02.sys -- (PRISM_A02)
DRV - [2004/03/08 13:55:50 | 000,013,567 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
DRV - [2002/11/28 03:13:52 | 000,022,652 | R--- | M] (Pixela) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pixmc10v.sys -- (PIXMC10V)
DRV - [2002/10/04 01:14:28 | 000,028,060 | R--- | M] (Pixela) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pixmc10a.sys -- (PIXMC10A)
DRV - [2002/09/27 21:42:40 | 000,031,232 | R--- | M] (Pixela) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pixmc10c.sys -- (PIXMC10)
DRV - [2000/03/29 18:11:20 | 000,008,096 | ---- | M] (MicroStaff Co.,Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\MASPINT.SYS -- (MASPINT)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_BAND_SEARCHBAR_HTML
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.sfr.fr/kit/adsl/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8992

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.defaulturl: "http://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p="
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://fr.google.mozilla.com/firefox&client=firefox-a&rls=com.google:fr:official"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: toolbar@iadah.com:1.04
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.1
FF - prefs.js..extensions.enabledItems: wrc@avast.com:20110101
FF - prefs.js..keyword.URL: "http://redirecterror.sfr.fr/?q="
FF - prefs.js..network.proxy.no_proxies_on: "*.local"
FF - prefs.js..network.proxy.type: 4

FF - user.js..keyword.URL: "http://redirecterror.sfr.fr/?q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0: C:\Program Files\DivX\DivX Content Uploader\npUpload.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa2,version=2.0.0: C:\Program Files\Picasa2\npPicasa2.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Picasa2\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.1: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.2: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.3: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0: C:\Program Files\Virtual Earth 3D\ [2009/05/10 14:19:50 | 000,000,000 | ---D | M]
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.609: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.609: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.609: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.609: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\PROGRA~1\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Documents and Settings\Bernie Pochon\Application Data\Facebook\npfbplugin_1_0_3.dll ( )

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}: C:\Documents and Settings\All Users\Application Data\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c} [2008/11/11 13:26:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/12/06 10:47:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2011/09/17 15:15:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/08 07:24:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/27 22:19:36 | 000,000,000 | ---D | M]

[2008/11/11 14:04:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Extensions
[2011/05/20 15:29:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\extensions
[2010/11/03 03:09:23 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}(2)
[2010/03/21 20:58:21 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}(2)
[2008/05/26 22:09:01 | 000,001,058 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\a9.xml
[2008/08/18 01:27:18 | 000,001,622 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\ask.xml
[2008/05/26 22:09:33 | 000,002,207 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\askcom.xml
[2008/05/26 22:10:41 | 000,001,733 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\live-search.xml
[2010/01/20 12:50:48 | 000,003,719 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\Searcheo.xml
[2010/01/20 16:51:05 | 000,003,707 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\YouGoo.xml
[2011/05/20 14:29:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2006/10/14 10:53:09 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010/11/03 03:06:40 | 000,000,000 | ---D | M] (Toolbar Iadah) -- C:\Program Files\Mozilla Firefox\extensions\toolbar@iadah.com
[2011/09/17 15:15:33 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST5\WEBREP\FF
[2010/01/19 16:06:12 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/09/08 07:24:33 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2009/05/17 22:39:50 | 000,283,952 | ---- | M] (Musicnotes, Inc.) -- C:\Program Files\mozilla firefox\plugins\npmusicn.dll
[2007/04/24 13:11:12 | 001,800,704 | ---- | M] (Myriad Software.) -- C:\Program Files\mozilla firefox\plugins\NPMyrMus.dll
[2011/05/20 15:28:50 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2011/05/20 15:28:50 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011/05/20 15:28:50 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2011/05/20 15:28:50 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2009/08/27 21:43:33 | 000,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDICO-fr.xml
[2011/05/20 15:28:50 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2011/05/20 15:28:50 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\13.0.782.218\pdf.dll
CHR - plugin: Google Gears 0.5.33.0 (Enabled) = C:\Program Files\Google\Chrome\Application\13.0.782.218\gears.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\13.0.782.218\gcswf32.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.160.1 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeploytk.dll
CHR - plugin: Java(TM) Platform SE 6 U16 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: DivX Player Netscape Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll
CHR - plugin: Musicnotes (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npmusicn.dll
CHR - plugin: Myriad Music Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPMyrMus.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: ScorchPlugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npsibelius.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: Facebook Plugin (Enabled) = C:\Documents and Settings\Bernie Pochon\Application Data\Facebook\npfbplugin_1_0_3.dll
CHR - plugin: Yahoo! activeX Plug-in Bridge (Enabled) = C:\PROGRA~1\Yahoo!\Common\npyaxmpb.dll
CHR - plugin: DivX Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Updater (Enabled) = C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\3.0.50106.0\npctrl.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Picasa2\npPicasa2.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Picasa2\npPicasa3.dll
CHR - plugin: MetaStream 3 Plugin (Enabled) = C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: avast! WebRep = C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1125_0\
CHR - Extension: avast! WebRep = C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.3_0\
Marie Noel Ginet
 
Messages: 36
Inscription: 02 Oct 2011, 14:17

Re: demandes d'étude de rapports d'analyse

Messagede Marie Noel Ginet » 04 Oct 2011, 19:01

O1 HOSTS File: ([2004/08/05 05:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HotSpot International Toolbar) - {0002ee26-8c11-49eb-9cdf-56eeffef664f} - C:\Program Files\HotSpot_International\prxtbHot2.dll (Conduit Ltd.)
O2 - BHO: (Objet d'aide à la navigation SFR) - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\SFR\Kit\SFRNavErrorHelper.dll (SFR)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (EoBho Class) - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll File not found
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\HssIE\HssIE.dll (AnchorFree Inc.)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (HotSpot International Toolbar) - {0002ee26-8c11-49eb-9cdf-56eeffef664f} - C:\Program Files\HotSpot_International\prxtbHot2.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Radio) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (NVRIEbar.IEbar) - {BCBF738C-4891-4B9A-959A-C6BF7F608C3A} - C:\Program Files\Naturalsoft\NaturalReader\NVRIEBar.dll File not found
O3 - HKLM\..\Toolbar: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (HotSpot International Toolbar) - {0002EE26-8C11-49EB-9CDF-56EEFFEF664F} - C:\Program Files\HotSpot_International\prxtbHot2.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [TkBellExe] C:\program files\real\realplayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [fcahrpow] C:\DOCUME~1\BERNIE~1\LOCALS~1\Temp\lahkvwxrl\barctqasjmo.exe File not found
O4 - Startup: C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE ()
O4 - Startup: C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\WKCALREM.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe (Microsoft® Corporation)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\Program Files\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.)
O9 - Extra Button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Common\yhexbmesfr.dll (Yahoo! Inc.)
O9 - Extra 'Tools' menuitem : Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Common\yhexbmesfr.dll (Yahoo! Inc.)
O9 - Extra Button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\Program Files\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.)
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe File not found
O9 - Extra 'Tools' menuitem : &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/get/fl ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} http://a532.g.akamai.net/f/532/6712/5m/ ... taller.exe (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{23AD6826-6E6B-47C3-B038-3CA0B1536A59}: DhcpNameServer = 10.74.96.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C4B7CF6B-3C2F-4F35-A782-7D62340AD890}: DhcpNameServer = 192.168.1.1 0.0.0.0
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DE38147A-942E-4DE0-AE13-8B107AADCEA9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{ED332109-DC7F-4DFF-A437-63D5E4CA7F80}: DhcpNameServer = 192.168.1.1 0.0.0.0
O18 - Protocol\Handler\cdo {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
O18 - Protocol\Handler\copernicagent {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O18 - Protocol\Handler\copernicagentcache {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/03/21 09:56:54 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{4f09505a-ede9-11dd-82a4-0060b3b6898d}\Shell - "" = AutoRun
O33 - MountPoints2\{4f09505a-ede9-11dd-82a4-0060b3b6898d}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdmInistrAtEUR.EXe
O33 - MountPoints2\{56ef7fe8-0114-11e0-85bf-0060b3b6898d}\Shell - "" = AutoRun
O33 - MountPoints2\{56ef7fe8-0114-11e0-85bf-0060b3b6898d}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL ActionSportDrives.html
O33 - MountPoints2\{6131e650-e8f6-11dc-bfe9-0060b3b6898d}\Shell - "" = AutoRun
O33 - MountPoints2\{6131e650-e8f6-11dc-bfe9-0060b3b6898d}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\{98ece2fe-fb9f-11df-85b5-0060b3b6898d}\Shell\AutoRun\command - "" = F:\APPInst.exe
O33 - MountPoints2\{bdf9204d-a16d-11dc-bf3b-0060b3b6898d}\Shell\Auto\command - "" = AdobeR.exe e
O33 - MountPoints2\{bdf9204d-a16d-11dc-bf3b-0060b3b6898d}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e
O33 - MountPoints2\{dc71d34a-dfe4-11d9-8834-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{dc71d34a-dfe4-11d9-8834-806d6172696f}\Shell\AutoRun\command - "" = E:\Autorun.exe HowToUse\HowToUse.htm
O33 - MountPoints2\{e7ec3380-293e-11dc-be77-0060b3b6898d}\Shell - "" = AutoRun
O33 - MountPoints2\{e7ec3380-293e-11dc-be77-0060b3b6898d}\Shell\AutoRun\command - "" = J:\LaunchU3.exe
O33 - MountPoints2\{fd2f3aec-c9d6-11dc-bf9a-0060b3b6898d}\Shell - "" = AutoRun
O33 - MountPoints2\{fd2f3aec-c9d6-11dc-bf9a-0060b3b6898d}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL copy.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/10/02 21:40:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ERUNT
[2011/10/02 21:40:08 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2011/10/02 19:51:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011/10/02 19:42:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Application Data\Malwarebytes
[2011/10/02 19:41:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware
[2011/10/02 19:41:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011/10/02 19:41:50 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/10/02 19:41:49 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/10/02 19:33:40 | 000,582,656 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Bernie Pochon\Bureau\OTL.exe
[2011/10/02 14:47:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis
[2011/10/02 14:47:05 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2011/09/28 20:35:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\2011-09-28
[2011/09/22 13:42:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\arzal
[2011/09/21 21:57:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\maison bleue
[2011/09/20 13:59:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\2011-09-20
[2011/09/08 10:30:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\2011-09-08
[2011/09/06 18:38:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\iTunes
[2011/09/06 18:37:44 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/09/06 18:37:26 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/09/06 18:30:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\QuickTime
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/10/04 19:32:01 | 000,001,000 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2011/10/04 19:30:17 | 000,001,070 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/10/04 15:43:15 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/10/04 12:58:08 | 000,003,217 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\no woman débutant.gp5
[2011/10/04 08:52:11 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/10/04 08:51:11 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-3978581669-3650736504-2941554700-1005.job
[2011/10/04 08:51:10 | 000,001,066 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/10/04 08:49:53 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/10/04 08:49:46 | 502,845,440 | -HS- | M] () -- C:\hiberfil.sys
[2011/10/04 00:36:46 | 000,087,863 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\roman bretagne 3.odt
[2011/10/03 23:03:13 | 000,084,132 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\_roman.odt
[2011/10/02 22:46:14 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011/10/02 21:41:10 | 000,000,771 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk
[2011/10/02 21:40:09 | 000,000,615 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\NTREGOPT.lnk
[2011/10/02 21:40:09 | 000,000,596 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\ERUNT.lnk
[2011/10/02 19:42:00 | 000,000,788 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2011/10/02 19:33:29 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bernie Pochon\Bureau\OTL.exe
[2011/10/02 14:47:08 | 000,001,738 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\HijackThis.lnk
[2011/10/02 14:04:33 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-3978581669-3650736504-2941554700-1005.job
[2011/10/01 22:07:59 | 000,261,340 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\census.cache
[2011/10/01 22:07:57 | 000,211,768 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\ars.cache
[2011/10/01 19:33:02 | 000,001,817 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Google Chrome.lnk
[2011/09/17 15:15:37 | 000,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/09/10 11:20:44 | 000,010,926 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\wklnhst.dat
[2011/09/06 22:45:29 | 000,199,304 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/09/06 22:45:29 | 000,041,184 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/09/06 22:38:05 | 000,442,200 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011/09/06 22:37:53 | 000,320,856 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/09/06 22:36:38 | 000,034,392 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/09/06 22:36:36 | 000,052,568 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/09/06 22:36:23 | 000,110,552 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/09/06 22:36:20 | 000,104,536 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/09/06 22:36:12 | 000,020,568 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/09/06 22:33:11 | 000,030,808 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/09/06 18:40:55 | 000,001,854 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2011/09/06 18:40:54 | 000,001,854 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Safari.lnk
[2011/09/06 18:38:42 | 000,001,546 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\iTunes.lnk
[2011/09/06 18:30:07 | 000,001,608 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\QuickTime Player.lnk
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/10/04 12:58:08 | 000,003,217 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\no woman débutant.gp5
[2011/10/03 23:03:28 | 000,087,863 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\roman bretagne 3.odt
[2011/10/03 23:03:18 | 000,084,132 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\_roman.odt
[2011/10/02 22:46:14 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011/10/02 21:41:10 | 000,000,771 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk
[2011/10/02 21:40:09 | 000,000,615 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\NTREGOPT.lnk
[2011/10/02 21:40:09 | 000,000,596 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\ERUNT.lnk
[2011/10/02 19:42:00 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2011/10/02 14:47:08 | 000,001,738 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\HijackThis.lnk
[2011/09/06 18:38:42 | 000,001,546 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\iTunes.lnk
[2011/09/06 18:30:07 | 000,001,608 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\QuickTime Player.lnk
[2011/07/31 19:03:20 | 000,000,017 | ---- | C] () -- C:\WINDOWS\Missing.ini
[2011/07/31 19:03:04 | 000,000,032 | ---- | C] () -- C:\WINDOWS\CD_Start.INI
[2011/07/14 18:11:38 | 000,261,340 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\census.cache
[2011/07/14 18:11:16 | 000,211,768 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\ars.cache
[2011/03/15 00:28:13 | 002,776,064 | ---- | C] () -- C:\Program Files\Winmode.exe
[2010/10/31 20:18:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\cd.dat
[2010/06/09 14:55:52 | 000,062,316 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010/01/18 18:48:06 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\housecall.guid.cache
[2009/12/13 00:05:59 | 000,000,085 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
[2009/11/14 02:56:17 | 000,060,358 | ---- | C] () -- C:\WINDOWS\System32\ZoomH4Unin.exe
[2008/08/22 16:09:01 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008/08/22 13:42:59 | 000,090,996 | ---- | C] () -- C:\WINDOWS\System32\Autorun.ini
[2008/06/23 10:39:02 | 000,000,412 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
[2008/04/23 14:54:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2008/04/20 17:33:08 | 000,000,068 | ---- | C] () -- C:\WINDOWS\pp-oneclick-repertoire.ini
[2008/04/14 18:59:39 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt
[2008/04/14 18:56:49 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2008/02/25 03:16:02 | 000,109,967 | ---- | C] () -- C:\WINDOWS\CopernicAgentUninstall.exe
[2008/01/07 14:34:54 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat
[2007/09/21 13:18:27 | 000,006,195 | R--- | C] () -- C:\WINDOWS\MediaManager.ini
[2007/07/27 18:24:24 | 000,008,350 | R--- | C] () -- C:\WINDOWS\Disktool.INI
[2007/07/27 18:24:24 | 000,007,876 | R--- | C] () -- C:\WINDOWS\fwupgrade.ini
[2007/07/27 18:24:24 | 000,004,096 | R--- | C] () -- C:\WINDOWS\SoundCon.INI
[2007/07/26 04:53:34 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007/06/25 17:59:51 | 000,000,724 | ---- | C] () -- C:\WINDOWS\wacam.ini
[2007/06/25 17:59:50 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\MMPlugHostCtrl.dll
[2007/03/08 19:30:39 | 000,000,066 | ---- | C] () -- C:\WINDOWS\BBW_INFO.INI
[2007/02/25 20:37:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2006/12/16 14:30:57 | 000,000,042 | ---- | C] () -- C:\WINDOWS\iltwain.ini
[2006/10/14 10:52:42 | 000,005,716 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2006/06/08 06:01:31 | 000,000,332 | ---- | C] () -- C:\WINDOWS\EcouteSol.ini
[2006/06/08 06:01:31 | 000,000,310 | ---- | C] () -- C:\WINDOWS\EcouteFa.ini
[2006/06/08 03:02:26 | 000,286,208 | ---- | C] () -- C:\WINDOWS\System32\cncs232.dll
[2006/06/08 03:02:26 | 000,001,117 | ---- | C] () -- C:\WINDOWS\Sol.ini
[2006/06/08 03:02:26 | 000,000,982 | ---- | C] () -- C:\WINDOWS\Fa.ini
[2006/03/01 14:42:05 | 000,037,027 | ---- | C] () -- C:\WINDOWS\atmoUn.exe
[2006/02/21 12:25:49 | 000,651,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2006/02/21 12:25:49 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2006/02/21 12:25:49 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\WLANUTL.dll
[2006/01/18 17:36:42 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2005/12/20 21:33:25 | 000,000,604 | ---- | C] () -- C:\WINDOWS\Sof2.INI
[2005/12/08 22:10:47 | 000,030,208 | ---- | C] () -- C:\WINDOWS\System32\WNASPI32.DLL
[2005/12/08 22:10:46 | 000,000,291 | ---- | C] () -- C:\WINDOWS\msfsetup.ini
[2005/12/08 15:40:44 | 000,010,926 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Application Data\wklnhst.dat
[2005/12/06 21:39:59 | 000,000,600 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/10/31 21:08:02 | 000,072,704 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/10/29 18:58:42 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
[2005/10/28 00:39:09 | 000,001,366 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2005/10/04 16:42:26 | 000,000,044 | ---- | C] () -- C:\WINDOWS\liveup.ini
[2005/09/16 12:23:30 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2005/09/16 11:47:57 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS6f.DLL
[2005/09/16 01:47:44 | 000,050,446 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2005/09/15 21:11:06 | 000,210,944 | ---- | C] () -- C:\WINDOWS\System32\MSVCRT10.DLL
[2005/09/15 18:48:44 | 000,071,749 | ---- | C] () -- C:\WINDOWS\hcextoutput.dll
[2005/09/15 18:48:44 | 000,000,823 | ---- | C] () -- C:\WINDOWS\tsc.ini
[2005/09/15 18:48:24 | 000,000,170 | ---- | C] () -- C:\WINDOWS\GetServer.ini
[2005/09/15 15:54:33 | 000,000,192 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2005/09/14 15:27:23 | 000,278,528 | ---- | C] () -- C:\Program Files\Fichiers communs\FDEUnInstaller.exe
[2005/06/18 21:47:46 | 000,000,085 | ---- | C] () -- C:\WINDOWS\Alaunch.INI
[2005/06/18 12:39:03 | 000,000,148 | ---- | C] () -- C:\WINDOWS\System32\eRLog.ini
[2005/05/02 21:20:31 | 000,070,018 | ---- | C] () -- C:\WINDOWS\System32\akrip32.dll
[2005/03/21 18:38:33 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2005/03/21 10:04:31 | 000,000,347 | ---- | C] () -- C:\WINDOWS\System32\CreMan.ini
[2005/03/21 10:03:54 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\ntiembed.dll
[2005/03/21 10:03:40 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIMPEG2.dll
[2005/03/21 10:03:40 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTICDMK32.dll
[2005/03/21 10:02:02 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2005/03/21 10:02:02 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2005/03/21 10:00:14 | 000,077,267 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2005/03/21 10:00:11 | 000,008,073 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2005/03/21 10:00:10 | 000,032,768 | ---- | C] () -- C:\WINDOWS\AMOVE.EXE
[2005/03/21 09:59:00 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2005/03/21 09:55:44 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2005/03/21 09:55:14 | 000,003,712 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2005/03/21 09:53:38 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005/03/21 09:53:04 | 001,612,200 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2004/09/16 13:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\System32\drivers\AdfuUd.sys
[2004/09/16 13:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\ADFUUD.SYS
[2004/02/28 06:30:12 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\TrustSupport.dll
[2001/12/26 16:12:30 | 000,065,536 | R--- | C] () -- C:\WINDOWS\System32\multiplex_vcd.dll
[2001/09/03 23:46:38 | 000,110,592 | R--- | C] () -- C:\WINDOWS\System32\Hmpg12.dll
[2001/07/30 16:33:56 | 000,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC.dll
[2001/07/23 22:04:36 | 000,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC_MMX.dll
[1999/07/23 14:46:48 | 000,000,116 | ---- | C] () -- C:\WINDOWS\AuHCcup1.ini
[1999/07/23 11:53:20 | 000,129,536 | ---- | C] () -- C:\WINDOWS\AuHCcup1.dll
[1980/01/01 00:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[1980/01/01 00:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[1980/01/01 00:00:00 | 000,466,442 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat
[1980/01/01 00:00:00 | 000,399,038 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[1980/01/01 00:00:00 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat
[1980/01/01 00:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[1980/01/01 00:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[1980/01/01 00:00:00 | 000,074,130 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat
[1980/01/01 00:00:00 | 000,060,588 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[1980/01/01 00:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[1980/01/01 00:00:00 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat
[1980/01/01 00:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[1980/01/01 00:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[1980/01/01 00:00:00 | 000,004,524 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[1980/01/01 00:00:00 | 000,001,788 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[1980/01/01 00:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

========== LOP Check ==========

[2011/01/30 19:19:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2008/07/24 21:46:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Arovax
[2008/11/02 14:43:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BOONTY
[2008/06/23 09:55:15 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2009/12/13 00:08:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Elaborate Bytes
[2007/11/06 00:40:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Musicnotes
[2009/09/15 21:30:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2005/09/15 23:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Prism
[2008/06/23 10:38:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
[2009/11/14 02:37:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Syncrosoft
[2008/08/13 23:07:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2010/04/29 00:02:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/01/30 21:02:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2007/06/10 14:59:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Ableton
[2007/06/25 18:01:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\ACAMPREF
[2010/06/07 20:42:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\AdSigner
[2008/04/24 12:14:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\APLI
[2010/05/10 10:21:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Canon
[2008/02/25 03:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Copernic
[2008/04/02 15:40:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\EoRezo
[2010/06/14 15:35:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Facebook
[2008/10/27 14:37:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\FileZilla
[2009/12/21 16:46:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\HouseCall 6.6
[2010/04/29 12:02:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Icones
[2008/04/01 16:02:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\ItsLabel
[2011/09/27 22:13:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\LimeWire
[2011/03/14 23:32:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\LolClient
[2009/09/15 21:30:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\NCH Swift Sound
[2006/05/30 13:51:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\NetMedia Providers
[2005/12/30 20:07:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\OLYMPUS
[2010/02/01 00:40:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\OpenOffice.org
[2006/05/30 13:51:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Publish Providers
[2010/01/31 22:12:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Samsung
[2008/06/23 10:38:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\ScanSoft
[2008/03/20 09:41:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\SPAMfighter
[2005/09/15 17:09:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Template
[2008/09/14 20:43:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Todae
[2008/08/13 23:07:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Viewpoint

========== Purity Check ==========



< End of report >

A bientot
Marie Noel Ginet
 
Messages: 36
Inscription: 02 Oct 2011, 14:17

Re: demandes d'étude de rapports d'analyse

Messagede nickW » 05 Oct 2011, 00:00

Bonsoir,

Commençons les nettoyages:


Étape 1: rkill (de Grinler), téléchargement
Remarque importante:
rkill est parfois, à tort, détecté comme nuisible. Si nécessaire, désactiver l'antivirus lors de son téléchargement.

Télécharger rkill via un clic droit suivi de Enregistrer la cible du lien sous ... depuis l'un des liens ci-dessous:

Lien 1
Lien 2
Lien 3

Enregistrer le fichier sur le Bureau.


Étape 2: Pas de processus de contrôle en temps réel
Désactiver le module résident de l'antivirus.
Image avast5!: clic droit sur l'icône dans la SysBarre (à coté de l'horloge), choisir "Gestion des Agents avast!" puis "Désactiver définitivement" et confirmer en cliquant sur Oui


Étape 3: rkill (de Grinler), exécution
Faire un double clic sur le fichier rkill téléchargé pour lancer l'outil.

Une fenêtre à fond noir va apparaître brièvement, puis disparaître.
En fin d'exécution, enregistrer le fichier rkill.log

Si rien ne se passe, ou si l'outil ne se lance pas, télécharger l'outil depuis un autre des trois liens ci-dessus et faire une nouvelle tentative d'exécution.

Si aucun des outils téléchargés depuis les trois liens ci-dessus ne semble fonctionner, télécharger une version renommée de rkill depuis iExplore.exe ou eXplorer.exe et essayer de le lancer.

Si aucun des cinq outils téléchargés ne semble fonctionner, ne pas continuer le nettoyage, et me prévenir sur le forum.

Ne pas faire redémarrer le PC.


Étape 4: Malwarebytes' Anti-Malware, nettoyage
Fermer toutes les fenêtres de programme ouvertes.
Lancer Malwarebytes' Anti-Malware via le Menu Démarrer.
Dans l'onglet Paramètres, vérifier que toutes les cases sont cochées sauf "Créer une option dans le menu contextuel pour analyser des fichiers (clic droit)".
Dans l'onglet Mise à jour, cliquer sur le bouton Recherche de mise à jour et installer toutes les mises à jour trouvées.
Dans l'onglet Recherche, cocher le bouton radio situé devant "Exécuter un examen rapide" puis cliquer sur le bouton Rechercher, comme ceci:

Image

Attendre sans rien faire d'autre la fin de la recherche; dans la fenêtre annonçant la fin de l'analyse, cliquer sur OK; puis cliquer sur le bouton "Afficher les résultats":
Image


Si des éléments nuisibles ont été détectés, cliquer sur le bouton "Supprimer la sélection": Image

Attendre patiemment sans rien faire d'autre la fin du nettoyage.
Un redémarrage est parfois nécessaire. Accepter.
Une fenêtre du Bloc-notes s'ouvre pour afficher le rapport. Fermer le Bloc-notes.
Cliquer sur le bouton "Quitter" pour fermer Malwarebytes' Anti-Malware.


Étape 5: Pas de processus de contrôle en temps réel
Si le PC a redémarré, et si l'antivirus a été réactivé, il faut de nouveau le désactiver.


Étape 6: OTL (de OldTimer), correction

Faire un double clic sur OTL.exe pour lancer l'outil.

L'écran principal de OTL s'affiche:
Image

Sélectionner toutes les lignes ci-dessous comprises entre les deux lignes ------- (qu'il ne faut pas sélectionner), puis appuyer simultanément sur les touches Ctrl et C
Note importante: ne pas oublier de sélectionner le caractère "deux points" en début de première ligne.

-----------------------------------------------------

:otl
SRV - [2008/11/02 14:43:04 | 000,069,120 | ---- | M] (BOONTY) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe -- (Boonty Games)
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8992
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8992
IE - HKU\S-1-5-21-3978581669-3650736504-2941554700-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8992
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8992
FF - prefs.js..extensions.enabledItems: toolbar@iadah.com:1.04
FF - prefs.js..network.proxy.type: 4
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll ()
[2008/05/26 22:09:01 | 000,001,058 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\a9.xml
[2008/08/18 01:27:18 | 000,001,622 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\ask.xml
[2008/05/26 22:09:33 | 000,002,207 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\askcom.xml
[2010/01/20 12:50:48 | 000,003,719 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\Searcheo.xml
[2010/01/20 16:51:05 | 000,003,707 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\YouGoo.xml
[2010/11/03 03:06:40 | 000,000,000 | ---D | M] (Toolbar Iadah) -- C:\Program Files\Mozilla Firefox\extensions\toolbar@iadah.com
O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (EoBho Class) - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll File not found
O2 - BHO: (HotSpot International Toolbar) - {0002ee26-8c11-49eb-9cdf-56eeffef664f} - C:\Program Files\HotSpot_International\prxtbHot2.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (HotSpot International Toolbar) - {0002ee26-8c11-49eb-9cdf-56eeffef664f} - C:\Program Files\HotSpot_International\prxtbHot2.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (HotSpot International Toolbar) - {0002EE26-8C11-49EB-9CDF-56EEFFEF664F} - C:\Program Files\HotSpot_International\prxtbHot2.dll (Conduit Ltd.)
O4 - HKCU..\Run: [fcahrpow] C:\DOCUME~1\BERNIE~1\LOCALS~1\Temp\lahkvwxrl\barctqasjmo.exe File not found
O4 - HKU\S-1-5-21-3978581669-3650736504-2941554700-1005..\Run: [fcahrpow] C:\DOCUME~1\BERNIE~1\LOCALS~1\Temp\lahkvwxrl\barctqasjmo.exe File not found
O33 - MountPoints2\{4f09505a-ede9-11dd-82a4-0060b3b6898d}\Shell - "" = AutoRun
O33 - MountPoints2\{4f09505a-ede9-11dd-82a4-0060b3b6898d}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdmInistrAtEUR.EXe
O33 - MountPoints2\{bdf9204d-a16d-11dc-bf3b-0060b3b6898d}\Shell\Auto\command - "" = AdobeR.exe e
O33 - MountPoints2\{bdf9204d-a16d-11dc-bf3b-0060b3b6898d}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e
O33 - MountPoints2\{fd2f3aec-c9d6-11dc-bf9a-0060b3b6898d}\Shell - "" = AutoRun
O33 - MountPoints2\{fd2f3aec-c9d6-11dc-bf9a-0060b3b6898d}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL copy.exe

:Files
C:\Documents and Settings\Bernie Pochon\Application Data\EoRezo
C:\Program Files\EoRezo
c:\program files\winsudate

:Commands
[emptytemp]


-----------------------------------------------------

Note: Les lignes de la zone Code ci-dessus ont été créées exclusivement pour CET utilisateur: Marie Noel Ginet.
Si vous n'êtes pas CET utilisateur, il ne faut pas les utiliser: elles pourraient endommager votre système.


Retourner dans la fenêtre de OTL, faire un clic droit dans la zone blanche sous "Personnalisation" Image et choisir Coller (les lignes sélectionnées ci-dessus doivent apparaître dans la zone "Personnalisation").

Fermer toutes les fenêtres de programme ouvertes autres que OTL (navigateur, traitement de texte, etc...): un redémarrage du PC va se produire.

Cliquer sur le bouton Correction: Image

Note: Lorsque le redémarrage est demandé, cliquer sur Ok

Lorsque l'outil a terminé son travail, il y a affichage dans une petite fenêtre du message "Correction terminée! Cliquez sur Ok pour afficher le rapport.". Cliquer sur Ok puis fermer OTL.


Étape 7: Processus de contrôle en temps réel
Important: Réactiver le module résident de l'antivirus.


Étape 8: OTL (de OldTimer), analyse rapide
Fermer toutes les fenêtres de programme ouvertes.

Faire un double clic sur OTL.exe pour lancer l'outil.

L'écran principal de OTL s'affiche:
Image

Cliquer sur le bouton Analyse rapide:
Image


Laisser l'outil travailler sans l'interrompre.
Lorsque l'outil a terminé, il y a ouverture d'une fenêtre du Bloc-notes contenant un rapport (log).
Fermer le Bloc-notes.
Fermer la fenêtre de OTL.


Étape 9: Résultats
Envoyer en réponse:
*- le rapport de rkill (contenu du fichier rkill.log situé dans le dossier %SystemDrive%\)
[%SystemDrive% représente la partition sur laquelle est installé le système, généralement C:]
*- le rapport de Malwarebytes' Anti-Malware (contenu du fichier mbam-log-****-**-** (**-**-**).txt situé dans le dossier %SystemDrive%\Documents and Settings\<tonprofil>\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs où ****-** (**-**-**) représente la date [année-mois-jour] et l'heure [hh-mn-ss])
[%SystemDrive% représente la partition sur laquelle est installé le système, généralement C:]
*- le rapport de correction de OTL (contenu du fichier %SystemDrive%\_OTL\MovedFiles\********_******.log - les *** sont des chiffres représentant la date [moisjourannée] et l'heure)
[%SystemDrive% représente la partition sur laquelle est installé le système, généralement C:]


Envoyer ensuite en réponse dans un message distinct (à cause de la longueur du fichier):
*- le rapport principal de OTL (contenu du fichier OTL.Txt situé sur le Bureau).
Le rapport envoyé sur le forum doit se terminer par une ligne contenant <End of report>. Si ce n'est pas le cas, il est incomplet, et doit alors être découpé en plusieurs messages.

Note importante: Pour l'envoi de ta(tes) réponse(s), il ne faut pas créer un nouveau sujet, mais cliquer sur le bouton "Répondre"
Image pour continuer dans ce fil de discussion.


Dans ta réponse, n'oublie pas de donner le plus d'informations possible sur l'état du PC: amélioration / disparition / aggravation des symptômes d'infection.

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Re: demandes d'étude de rapports d'analyse

Messagede Marie Noel Ginet » 05 Oct 2011, 12:06

bonjour,

voici les rapports demandé :

This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.

Rkill was run on 05/10/2011 at 11:45:04.
Operating System: Microsoft Windows XP


Processes terminated by Rkill or while it was running:

C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe


Rkill completed on 05/10/2011 at 11:45:15.

voici le log malwarebytes :

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Version de la base de données: 7874

Windows 5.1.2600 Service Pack 2
Internet Explorer 7.0.5730.11

05/10/2011 11:59:43
mbam-log-2011-10-05 (11-59-43).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 175934
Temps écoulé: 4 minute(s), 51 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 8
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 3
Dossier(s) infecté(s): 11
Fichier(s) infecté(s): 102

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Casino Tropez (Adware.Casino) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\ineufbr1v (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Starware370 (Adware.Starware) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\EoRezo (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Winsudate (Adware.GibMedia) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Casino Tropez (Adware.Casino) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo (Rogue.Eorezo) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer (PUM.Bad.Proxy) -> Value: ProxyServer -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\fcahrpow (Trojan.FakeAlert.Gen) -> Value: fcahrpow -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
c:\program files\EoRezo (Rogue.Eorezo) -> Quarantined and deleted successfully.
c:\program files\EoRezo\EoAdv (Rogue.Eorezo) -> Quarantined and deleted successfully.
c:\program files\EoRezo\EoAdv\tmp (Rogue.Eorezo) -> Quarantined and deleted successfully.
c:\program files\winsudate (Adware.Gibmedia) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\db (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eodesktop (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo (Adware.EoRezo) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
c:\Logfile1.txt (Stolen.data) -> Quarantined and deleted successfully.
c:\program files\EoRezo\EoAdv\eoAdv.url (Rogue.Eorezo) -> Quarantined and deleted successfully.
c:\program files\EoRezo\EoAdv\tmp\eorezobho.dll.3320 (Rogue.Eorezo) -> Quarantined and deleted successfully.
c:\program files\EoRezo\EoAdv\tmp\eorezobho.dll.8384 (Rogue.Eorezo) -> Quarantined and deleted successfully.
c:\program files\winsudate\gibidl.dll (Adware.Gibmedia) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\cmhost.cyp (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\confmedia.cyp (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather.cfg (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\host.cyp (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\user.cyp (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\db\cat.cyp (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eodesktop\config.xml (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eodesktop\eodesktop.html (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eodesktop\userconfig.xml (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\eoweatherval_02ec282.cfg (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\background_1.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\earth.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\67_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\67_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\69_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\69_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\70_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\70_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\78_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\78_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\82_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\82_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\83_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\83_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\84_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\84_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\85_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\85_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\89_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\89_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\back.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\background.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\fonds_écran.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\help.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\helppressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\minimise.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\minimisepressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\next.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\nextpressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\option.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\optionpressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\reflet_ecran.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\small_background.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\Thumbs.db (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\background_1days.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\background_2days.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\background_7days.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\backpressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\band.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\band_small.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\close.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\closepressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\dayprevisionbackground.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_classic\dayprevisionclose.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\67_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\67_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\69_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\69_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\70_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\70_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\78_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\78_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\82_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\82_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\83_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\83_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\84_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\84_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\85_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\85_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\89_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\89_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\about.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\back.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\background.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\background_1.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\background_1days.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\background_2days.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\background_7days.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\backpressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\close.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\closepressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\dayprevisionbackground.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\dayprevisionclose.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\earth.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\fonds_écran.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\help.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\helppressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\minimise.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\minimisepressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\next.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\nextpressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\option.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\optionpressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\reflet_ecran.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\Thumbs.db (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\bernie pochon\application data\EoRezo\eoweather\images_station_meteo\txt_14x13.png (Adware.EoRezo) -> Quarantined and deleted successfully.
Marie Noel Ginet
 
Messages: 36
Inscription: 02 Oct 2011, 14:17

Re: demandes d'étude de rapports d'analyse

Messagede Marie Noel Ginet » 05 Oct 2011, 12:07

voici le rapport de correction otl :

All processes killed
========== OTL ==========
Service Boonty Games stopped successfully!
Service Boonty Games deleted successfully!
C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe moved successfully.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer| /E : value set successfully!
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer| /E : value set successfully!
HKU\S-1-5-21-3978581669-3650736504-2941554700-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer| /E : value set successfully!
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer| /E : value set successfully!
Prefs.js: toolbar@iadah.com:1.04 removed from extensions.enabledItems
Prefs.js: 4 removed from network.proxy.type
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@viewpoint.com/VMP\ deleted successfully.
C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll moved successfully.
C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\a9.xml moved successfully.
C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\ask.xml moved successfully.
C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\askcom.xml moved successfully.
C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\Searcheo.xml moved successfully.
C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\YouGoo.xml moved successfully.
C:\Program Files\Mozilla Firefox\extensions\toolbar@iadah.com\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\toolbar@iadah.com folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ deleted successfully.
C:\Program Files\ConduitEngine\prxConduitEngine.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64F56FC1-1272-44CD-BA6E-39723696E350}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0002ee26-8c11-49eb-9cdf-56eeffef664f}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0002ee26-8c11-49eb-9cdf-56eeffef664f}\ deleted successfully.
C:\Program Files\HotSpot_International\prxtbHot2.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{0002ee26-8c11-49eb-9cdf-56eeffef664f} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0002ee26-8c11-49eb-9cdf-56eeffef664f}\ not found.
File C:\Program Files\HotSpot_International\prxtbHot2.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found.
File C:\Program Files\ConduitEngine\prxConduitEngine.dll not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{0002EE26-8C11-49EB-9CDF-56EEFFEF664F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0002EE26-8C11-49EB-9CDF-56EEFFEF664F}\ not found.
File C:\Program Files\HotSpot_International\prxtbHot2.dll not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\fcahrpow not found.
Registry value HKEY_USERS\S-1-5-21-3978581669-3650736504-2941554700-1005\Software\Microsoft\Windows\CurrentVersion\Run\\fcahrpow not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4f09505a-ede9-11dd-82a4-0060b3b6898d}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4f09505a-ede9-11dd-82a4-0060b3b6898d}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4f09505a-ede9-11dd-82a4-0060b3b6898d}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4f09505a-ede9-11dd-82a4-0060b3b6898d}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdmInistrAtEUR.EXe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bdf9204d-a16d-11dc-bf3b-0060b3b6898d}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bdf9204d-a16d-11dc-bf3b-0060b3b6898d}\ not found.
File AdobeR.exe e not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bdf9204d-a16d-11dc-bf3b-0060b3b6898d}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bdf9204d-a16d-11dc-bf3b-0060b3b6898d}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fd2f3aec-c9d6-11dc-bf9a-0060b3b6898d}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fd2f3aec-c9d6-11dc-bf9a-0060b3b6898d}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fd2f3aec-c9d6-11dc-bf9a-0060b3b6898d}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fd2f3aec-c9d6-11dc-bf9a-0060b3b6898d}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL copy.exe not found.
========== FILES ==========
File\Folder C:\Documents and Settings\Bernie Pochon\Application Data\EoRezo not found.
File\Folder C:\Program Files\EoRezo not found.
File\Folder c:\program files\winsudate not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Bernie Pochon
->Temp folder emptied: 289581344 bytes
->Temporary Internet Files folder emptied: 13815905 bytes
->Java cache emptied: 117064536 bytes
->FireFox cache emptied: 443530824 bytes
->Google Chrome cache emptied: 172184523 bytes
->Apple Safari cache emptied: 50176 bytes
->Flash cache emptied: 2275495 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 1340870 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 724 bytes
%systemroot%\System32 .tmp files removed: 5553152 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 47761250 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 94778240 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 1249037279 bytes

Total Files Cleaned = 2 324,00 mb


OTL by OldTimer - Version 3.2.29.1 log created on 10052011_121138

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...
Marie Noel Ginet
 
Messages: 36
Inscription: 02 Oct 2011, 14:17

Re: demandes d'étude de rapports d'analyse

Messagede Marie Noel Ginet » 05 Oct 2011, 12:12

enfin voici le rapport principal otl :

OTL logfile created on: 05/10/2011 12:37:08 - Run 2
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Documents and Settings\Bernie Pochon\Bureau
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

479,48 Mb Total Physical Memory | 140,78 Mb Available Physical Memory | 29,36% Memory free
1,10 Gb Paging File | 0,78 Gb Available in Paging File | 71,36% Paging File free
Paging file location(s): C:\pagefile.sys 720 1440 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 72,87 Gb Total Space | 38,74 Gb Free Space | 53,16% Space Free | Partition Type: NTFS
Drive D: | 73,23 Gb Total Space | 70,54 Gb Free Space | 96,33% Space Free | Partition Type: FAT32

Computer Name: THÉAPOCH | User Name: Bernie Pochon | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/10/02 19:33:29 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bernie Pochon\Bureau\OTL.exe
PRC - [2011/09/06 22:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011/09/06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011/03/21 20:56:16 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011/02/18 17:37:16 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/12/06 10:46:45 | 000,274,608 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2010/07/27 02:00:06 | 000,247,808 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe
PRC - [2010/07/27 00:41:12 | 000,107,568 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpntray.exe
PRC - [2010/06/23 04:48:08 | 000,322,608 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\hsswd.exe
PRC - [2010/06/23 04:48:00 | 000,348,208 | ---- | M] (AnchorFree Inc.) -- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
PRC - [2009/03/12 10:44:32 | 000,184,968 | ---- | M] (SPAMfighter ApS) -- C:\Program Files\SPAMfighter\sfus.exe
PRC - [2007/06/13 15:22:28 | 001,037,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004/12/20 15:39:46 | 001,462,272 | ---- | M] (Inventel) -- C:\Program Files\Inventel\Gateway\WLANCFG.EXE
PRC - [2003/07/23 10:43:10 | 000,024,651 | ---- | M] (Microsoft® Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe


========== Modules (No Company Name) ==========

MOD - [2011/10/05 10:29:56 | 001,597,952 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\11100500\algo.dll
MOD - [2011/09/30 16:14:34 | 000,212,640 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\11100500\aswRep.dll
MOD - [2011/06/24 22:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 22:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\libxml2.dll
MOD - [2011/05/25 10:17:35 | 002,019,976 | ---- | M] () -- C:\Program Files\SPAMfighter\sfse.dll
MOD - [2011/03/21 20:57:34 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011/03/21 20:56:16 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2010/07/27 02:00:06 | 000,247,808 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe
MOD - [2010/07/27 00:41:12 | 000,107,568 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpntray.exe
MOD - [2010/07/27 00:40:40 | 000,003,072 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\lang\gui-fre.dll
MOD - [2010/06/23 04:48:08 | 000,322,608 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\hsswd.exe
MOD - [2009/03/30 04:34:30 | 000,280,143 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\libidn-11.dll
MOD - [2009/03/27 22:02:24 | 000,332,254 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\libssl32.dll
MOD - [2009/03/27 22:02:22 | 001,554,920 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\libeay32.dll
MOD - [2009/03/12 10:38:02 | 000,539,072 | ---- | M] () -- C:\Program Files\SPAMfighter\sfsg.dll
MOD - [2004/08/05 05:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (WinSvc)
SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011/09/06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011/02/18 17:37:16 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/07/27 02:00:06 | 000,247,808 | ---- | M] () [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe -- (HotspotShieldService)
SRV - [2010/07/27 00:41:20 | 000,057,640 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Hotspot Shield\bin\HssTrayService.exe -- (HssTrayService)
SRV - [2010/06/23 04:48:08 | 000,322,608 | ---- | M] () [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\hsswd.exe -- (HssWd)
SRV - [2010/06/23 04:48:00 | 000,348,208 | ---- | M] (AnchorFree Inc.) [Auto | Running] -- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe -- (HssSrv)
SRV - [2009/03/12 10:44:32 | 000,184,968 | ---- | M] (SPAMfighter ApS) [Auto | Running] -- C:\Program Files\SPAMfighter\sfus.exe -- (SPAMfighter Update Service)
SRV - [2008/09/21 22:22:40 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2005/04/04 00:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004/12/20 15:39:46 | 001,462,272 | ---- | M] (Inventel) [Auto | Running] -- C:\Program Files\Inventel\Gateway\wlancfg.exe -- (Wlancfg)


========== Driver Services (SafeList) ==========

DRV - [2011/09/06 22:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/09/06 22:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/09/06 22:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/09/06 22:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/09/06 22:36:23 | 000,110,552 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011/09/06 22:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011/09/06 22:33:11 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011/05/10 08:06:14 | 000,018,432 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\netaapl.sys -- (Netaapl)
DRV - [2010/06/23 04:48:00 | 000,037,376 | ---- | M] (AnchorFree Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HssDrv.sys -- (HssDrv)
DRV - [2010/06/23 04:47:58 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\taphss.sys -- (taphss)
DRV - [2006/11/23 19:20:06 | 000,018,432 | ---- | M] (SIA Syncrosoft) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\synasUSB.sys -- (SynasUSB)
DRV - [2006/07/24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2005/12/22 12:24:52 | 000,137,884 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2005/12/22 12:24:52 | 000,010,864 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2005/12/22 12:24:50 | 000,080,272 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
DRV - [2005/09/14 15:25:26 | 000,017,134 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.sys -- (PCANDIS5)
DRV - [2005/05/11 13:12:17 | 000,079,248 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600mgmt.sys -- (k600mgmt)
DRV - [2005/05/11 13:12:17 | 000,077,072 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600obex.sys -- (k600obex)
DRV - [2005/05/11 13:12:14 | 000,087,456 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600mdm.sys -- (k600mdm)
DRV - [2005/05/11 13:12:14 | 000,006,096 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600mdfl.sys -- (k600mdfl)
DRV - [2005/05/11 13:12:11 | 000,052,384 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600bus.sys -- (k600bus) Sony Ericsson 600i driver (WDM)
DRV - [2005/04/15 18:05:42 | 002,564,032 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2005/01/12 21:30:22 | 000,915,968 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2004/12/15 21:16:08 | 000,076,544 | ---- | M] (ULi Electronics Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\m5287.sys -- (m5287)
DRV - [2004/12/02 16:36:08 | 000,070,912 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys -- (RTL8023xp)
DRV - [2004/09/16 13:26:40 | 000,012,634 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AdfuUd.sys -- (AdfuUd) USB 2.0 (FS)
DRV - [2004/08/13 18:15:00 | 000,379,456 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WlanUIG.sys -- (WlanUIG)
DRV - [2004/08/12 17:45:52 | 000,113,664 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)
DRV - [2004/07/22 19:36:26 | 000,015,781 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\mdc8021x.sys -- (MDC8021X) AEGIS Protocol (IEEE 802.1x)
DRV - [2004/06/29 09:07:18 | 001,268,204 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2004/03/30 19:29:48 | 000,374,816 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PRISMA02.sys -- (PRISM_A02)
DRV - [2004/03/08 13:55:50 | 000,013,567 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
DRV - [2002/11/28 03:13:52 | 000,022,652 | R--- | M] (Pixela) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pixmc10v.sys -- (PIXMC10V)
DRV - [2002/10/04 01:14:28 | 000,028,060 | R--- | M] (Pixela) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pixmc10a.sys -- (PIXMC10A)
DRV - [2002/09/27 21:42:40 | 000,031,232 | R--- | M] (Pixela) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pixmc10c.sys -- (PIXMC10)
DRV - [2000/03/29 18:11:20 | 000,008,096 | ---- | M] (MicroStaff Co.,Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\MASPINT.SYS -- (MASPINT)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_BAND_SEARCHBAR_HTML
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.sfr.fr/kit/adsl/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.defaulturl: "http://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p="
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://fr.google.mozilla.com/firefox&client=firefox-a&rls=com.google:fr:official"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems:
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.1
FF - prefs.js..extensions.enabledItems: wrc@avast.com:20110101
FF - prefs.js..keyword.URL: "http://redirecterror.sfr.fr/?q="
FF - prefs.js..network.proxy.no_proxies_on: "*.local"
FF - prefs.js..network.proxy.type: ""

FF - user.js..keyword.URL: "http://redirecterror.sfr.fr/?q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0: C:\Program Files\DivX\DivX Content Uploader\npUpload.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa2,version=2.0.0: C:\Program Files\Picasa2\npPicasa2.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Picasa2\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.1: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.2: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.3: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0: C:\Program Files\Virtual Earth 3D\ [2009/05/10 14:19:50 | 000,000,000 | ---D | M]
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.609: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.609: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.609: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.609: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\PROGRA~1\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Documents and Settings\Bernie Pochon\Application Data\Facebook\npfbplugin_1_0_3.dll ( )

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}: C:\Documents and Settings\All Users\Application Data\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c} [2008/11/11 13:26:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/12/06 10:47:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2011/09/17 15:15:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/08 07:24:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/27 22:19:36 | 000,000,000 | ---D | M]

[2008/11/11 14:04:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Extensions
[2011/05/20 15:29:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\extensions
[2010/11/03 03:09:23 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}(2)
[2010/03/21 20:58:21 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}(2)
[2008/05/26 22:10:41 | 000,001,733 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\live-search.xml
[2011/10/05 12:11:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2006/10/14 10:53:09 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2011/09/17 15:15:33 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST5\WEBREP\FF
[2010/01/19 16:06:12 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/09/08 07:24:33 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2009/05/17 22:39:50 | 000,283,952 | ---- | M] (Musicnotes, Inc.) -- C:\Program Files\mozilla firefox\plugins\npmusicn.dll
[2007/04/24 13:11:12 | 001,800,704 | ---- | M] (Myriad Software.) -- C:\Program Files\mozilla firefox\plugins\NPMyrMus.dll
[2011/05/20 15:28:50 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2011/05/20 15:28:50 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011/05/20 15:28:50 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2011/05/20 15:28:50 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2009/08/27 21:43:33 | 000,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDICO-fr.xml
[2011/05/20 15:28:50 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2011/05/20 15:28:50 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\13.0.782.218\pdf.dll
CHR - plugin: Google Gears 0.5.33.0 (Enabled) = C:\Program Files\Google\Chrome\Application\13.0.782.218\gears.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\13.0.782.218\gcswf32.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.160.1 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeploytk.dll
CHR - plugin: Java(TM) Platform SE 6 U16 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: DivX Player Netscape Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll
CHR - plugin: Musicnotes (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npmusicn.dll
CHR - plugin: Myriad Music Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPMyrMus.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: ScorchPlugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npsibelius.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: Facebook Plugin (Enabled) = C:\Documents and Settings\Bernie Pochon\Application Data\Facebook\npfbplugin_1_0_3.dll
CHR - plugin: Yahoo! activeX Plug-in Bridge (Enabled) = C:\PROGRA~1\Yahoo!\Common\npyaxmpb.dll
CHR - plugin: DivX Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Updater (Enabled) = C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\3.0.50106.0\npctrl.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Picasa2\npPicasa2.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Picasa2\npPicasa3.dll
CHR - plugin: MetaStream 3 Plugin (Enabled) = C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: avast! WebRep = C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1125_0\
CHR - Extension: avast! WebRep = C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.3_0\

O1 HOSTS File: ([2004/08/05 05:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Objet d'aide à la navigation SFR) - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\SFR\Kit\SFRNavErrorHelper.dll (SFR)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\HssIE\HssIE.dll (AnchorFree Inc.)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Radio) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (NVRIEbar.IEbar) - {BCBF738C-4891-4B9A-959A-C6BF7F608C3A} - C:\Program Files\Naturalsoft\NaturalReader\NVRIEBar.dll File not found
O3 - HKLM\..\Toolbar: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [TkBellExe] C:\program files\real\realplayer\update\realsched.exe (RealNetworks, Inc.)
O4 - Startup: C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE ()
O4 - Startup: C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\WKCALREM.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe (Microsoft® Corporation)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\Program Files\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.)
O9 - Extra Button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Common\yhexbmesfr.dll (Yahoo! Inc.)
O9 - Extra 'Tools' menuitem : Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Common\yhexbmesfr.dll (Yahoo! Inc.)
O9 - Extra Button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\Program Files\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.)
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe File not found
O9 - Extra 'Tools' menuitem : &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/get/fl ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} http://a532.g.akamai.net/f/532/6712/5m/ ... taller.exe (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{23AD6826-6E6B-47C3-B038-3CA0B1536A59}: DhcpNameServer = 10.74.96.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C4B7CF6B-3C2F-4F35-A782-7D62340AD890}: DhcpNameServer = 192.168.1.1 0.0.0.0
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DE38147A-942E-4DE0-AE13-8B107AADCEA9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{ED332109-DC7F-4DFF-A437-63D5E4CA7F80}: DhcpNameServer = 192.168.1.1 0.0.0.0
O18 - Protocol\Handler\cdo {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
O18 - Protocol\Handler\copernicagent {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O18 - Protocol\Handler\copernicagentcache {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/03/21 09:56:54 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{56ef7fe8-0114-11e0-85bf-0060b3b6898d}\Shell - "" = AutoRun
O33 - MountPoints2\{56ef7fe8-0114-11e0-85bf-0060b3b6898d}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL ActionSportDrives.html
O33 - MountPoints2\{6131e650-e8f6-11dc-bfe9-0060b3b6898d}\Shell - "" = AutoRun
O33 - MountPoints2\{6131e650-e8f6-11dc-bfe9-0060b3b6898d}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\{98ece2fe-fb9f-11df-85b5-0060b3b6898d}\Shell\AutoRun\command - "" = F:\APPInst.exe
O33 - MountPoints2\{dc71d34a-dfe4-11d9-8834-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{dc71d34a-dfe4-11d9-8834-806d6172696f}\Shell\AutoRun\command - "" = E:\Autorun.exe HowToUse\HowToUse.htm
O33 - MountPoints2\{e7ec3380-293e-11dc-be77-0060b3b6898d}\Shell - "" = AutoRun
O33 - MountPoints2\{e7ec3380-293e-11dc-be77-0060b3b6898d}\Shell\AutoRun\command - "" = J:\LaunchU3.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/10/05 12:11:38 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/10/02 21:40:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ERUNT
[2011/10/02 21:40:08 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2011/10/02 19:51:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011/10/02 19:42:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Application Data\Malwarebytes
[2011/10/02 19:41:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware
[2011/10/02 19:41:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011/10/02 19:41:50 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/10/02 19:41:49 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/10/02 19:33:40 | 000,582,656 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Bernie Pochon\Bureau\OTL.exe
[2011/10/02 14:47:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis
[2011/10/02 14:47:05 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2011/09/28 20:35:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\2011-09-28
[2011/09/22 13:42:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\arzal
[2011/09/21 21:57:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\maison bleue
[2011/09/20 13:59:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\2011-09-20
[2011/09/08 10:30:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\2011-09-08
[2011/09/06 18:38:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\iTunes
[2011/09/06 18:37:44 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/09/06 18:37:26 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/09/06 18:30:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\QuickTime

========== Files - Modified Within 30 Days ==========

[2011/10/05 12:32:01 | 000,001,000 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2011/10/05 12:30:03 | 000,001,070 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/10/05 12:22:56 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/10/05 12:21:45 | 000,001,066 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/10/05 12:21:45 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-3978581669-3650736504-2941554700-1005.job
[2011/10/05 12:20:41 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/10/05 12:20:34 | 502,845,440 | -HS- | M] () -- C:\hiberfil.sys
[2011/10/04 15:43:15 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/10/04 12:58:08 | 000,003,217 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\no woman débutant.gp5
[2011/10/04 00:36:46 | 000,087,863 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\roman bretagne 3.odt
[2011/10/03 23:03:13 | 000,084,132 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\_roman.odt
[2011/10/02 22:46:14 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011/10/02 21:41:10 | 000,000,771 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk
[2011/10/02 21:40:09 | 000,000,615 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\NTREGOPT.lnk
[2011/10/02 21:40:09 | 000,000,596 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\ERUNT.lnk
[2011/10/02 19:42:00 | 000,000,788 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2011/10/02 19:33:29 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bernie Pochon\Bureau\OTL.exe
[2011/10/02 14:47:08 | 000,001,738 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\HijackThis.lnk
[2011/10/02 14:04:33 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-3978581669-3650736504-2941554700-1005.job
[2011/10/01 22:07:59 | 000,261,340 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\census.cache
[2011/10/01 22:07:57 | 000,211,768 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\ars.cache
[2011/10/01 19:33:02 | 000,001,817 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Google Chrome.lnk
[2011/09/17 15:15:37 | 000,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/09/10 11:20:44 | 000,010,926 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\wklnhst.dat
[2011/09/06 22:45:29 | 000,199,304 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/09/06 22:45:29 | 000,041,184 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/09/06 22:38:05 | 000,442,200 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011/09/06 22:37:53 | 000,320,856 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/09/06 22:36:38 | 000,034,392 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/09/06 22:36:36 | 000,052,568 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/09/06 22:36:23 | 000,110,552 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/09/06 22:36:20 | 000,104,536 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/09/06 22:36:12 | 000,020,568 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/09/06 22:33:11 | 000,030,808 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/09/06 18:40:55 | 000,001,854 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2011/09/06 18:40:54 | 000,001,854 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Safari.lnk
[2011/09/06 18:38:42 | 000,001,546 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\iTunes.lnk
[2011/09/06 18:30:07 | 000,001,608 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\QuickTime Player.lnk

========== Files Created - No Company Name ==========

[2011/10/04 12:58:08 | 000,003,217 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\no woman débutant.gp5
[2011/10/03 23:03:28 | 000,087,863 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\roman bretagne 3.odt
[2011/10/03 23:03:18 | 000,084,132 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\_roman.odt
[2011/10/02 22:46:14 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011/10/02 21:41:10 | 000,000,771 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk
[2011/10/02 21:40:09 | 000,000,615 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\NTREGOPT.lnk
[2011/10/02 21:40:09 | 000,000,596 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\ERUNT.lnk
[2011/10/02 19:42:00 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2011/10/02 14:47:08 | 000,001,738 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\HijackThis.lnk
[2011/09/06 18:38:42 | 000,001,546 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\iTunes.lnk
[2011/09/06 18:30:07 | 000,001,608 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\QuickTime Player.lnk
[2011/07/31 19:03:20 | 000,000,017 | ---- | C] () -- C:\WINDOWS\Missing.ini
[2011/07/31 19:03:04 | 000,000,032 | ---- | C] () -- C:\WINDOWS\CD_Start.INI
[2011/07/14 18:11:38 | 000,261,340 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\census.cache
[2011/07/14 18:11:16 | 000,211,768 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\ars.cache
[2011/03/15 00:28:13 | 002,776,064 | ---- | C] () -- C:\Program Files\Winmode.exe
[2010/10/31 20:18:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\cd.dat
[2010/06/09 14:55:52 | 000,062,316 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010/01/18 18:48:06 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\housecall.guid.cache
[2009/12/13 00:05:59 | 000,000,085 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
[2009/11/14 02:56:17 | 000,060,358 | ---- | C] () -- C:\WINDOWS\System32\ZoomH4Unin.exe
[2008/08/22 16:09:01 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008/08/22 13:42:59 | 000,090,996 | ---- | C] () -- C:\WINDOWS\System32\Autorun.ini
[2008/06/23 10:39:02 | 000,000,412 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
[2008/04/23 14:54:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2008/04/20 17:33:08 | 000,000,068 | ---- | C] () -- C:\WINDOWS\pp-oneclick-repertoire.ini
[2008/04/14 18:59:39 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt
[2008/04/14 18:56:49 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2008/02/25 03:16:02 | 000,109,967 | ---- | C] () -- C:\WINDOWS\CopernicAgentUninstall.exe
[2008/01/07 14:34:54 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat
[2007/09/21 13:18:27 | 000,006,195 | R--- | C] () -- C:\WINDOWS\MediaManager.ini
[2007/07/27 18:24:24 | 000,008,350 | R--- | C] () -- C:\WINDOWS\Disktool.INI
[2007/07/27 18:24:24 | 000,007,876 | R--- | C] () -- C:\WINDOWS\fwupgrade.ini
[2007/07/27 18:24:24 | 000,004,096 | R--- | C] () -- C:\WINDOWS\SoundCon.INI
[2007/07/26 04:53:34 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007/06/25 17:59:51 | 000,000,724 | ---- | C] () -- C:\WINDOWS\wacam.ini
[2007/06/25 17:59:50 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\MMPlugHostCtrl.dll
[2007/03/08 19:30:39 | 000,000,066 | ---- | C] () -- C:\WINDOWS\BBW_INFO.INI
[2007/02/25 20:37:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2006/12/16 14:30:57 | 000,000,042 | ---- | C] () -- C:\WINDOWS\iltwain.ini
[2006/10/14 10:52:42 | 000,005,716 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2006/06/08 06:01:31 | 000,000,332 | ---- | C] () -- C:\WINDOWS\EcouteSol.ini
[2006/06/08 06:01:31 | 000,000,310 | ---- | C] () -- C:\WINDOWS\EcouteFa.ini
[2006/06/08 03:02:26 | 000,286,208 | ---- | C] () -- C:\WINDOWS\System32\cncs232.dll
[2006/06/08 03:02:26 | 000,001,117 | ---- | C] () -- C:\WINDOWS\Sol.ini
[2006/06/08 03:02:26 | 000,000,982 | ---- | C] () -- C:\WINDOWS\Fa.ini
[2006/03/01 14:42:05 | 000,037,027 | ---- | C] () -- C:\WINDOWS\atmoUn.exe
[2006/02/21 12:25:49 | 000,651,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2006/02/21 12:25:49 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2006/02/21 12:25:49 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\WLANUTL.dll
[2006/01/18 17:36:42 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2005/12/20 21:33:25 | 000,000,604 | ---- | C] () -- C:\WINDOWS\Sof2.INI
[2005/12/08 22:10:47 | 000,030,208 | ---- | C] () -- C:\WINDOWS\System32\WNASPI32.DLL
[2005/12/08 22:10:46 | 000,000,291 | ---- | C] () -- C:\WINDOWS\msfsetup.ini
[2005/12/08 15:40:44 | 000,010,926 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Application Data\wklnhst.dat
[2005/12/06 21:39:59 | 000,000,600 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/10/31 21:08:02 | 000,072,704 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/10/29 18:58:42 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
[2005/10/28 00:39:09 | 000,001,366 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2005/10/04 16:42:26 | 000,000,044 | ---- | C] () -- C:\WINDOWS\liveup.ini
[2005/09/16 12:23:30 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2005/09/16 11:47:57 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS6f.DLL
[2005/09/16 01:47:44 | 000,050,446 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2005/09/15 21:11:06 | 000,210,944 | ---- | C] () -- C:\WINDOWS\System32\MSVCRT10.DLL
[2005/09/15 18:48:44 | 000,071,749 | ---- | C] () -- C:\WINDOWS\hcextoutput.dll
[2005/09/15 18:48:44 | 000,000,823 | ---- | C] () -- C:\WINDOWS\tsc.ini
[2005/09/15 18:48:24 | 000,000,170 | ---- | C] () -- C:\WINDOWS\GetServer.ini
[2005/09/15 15:54:33 | 000,000,192 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2005/09/14 15:27:23 | 000,278,528 | ---- | C] () -- C:\Program Files\Fichiers communs\FDEUnInstaller.exe
[2005/06/18 21:47:46 | 000,000,085 | ---- | C] () -- C:\WINDOWS\Alaunch.INI
[2005/06/18 12:39:03 | 000,000,148 | ---- | C] () -- C:\WINDOWS\System32\eRLog.ini
[2005/05/02 21:20:31 | 000,070,018 | ---- | C] () -- C:\WINDOWS\System32\akrip32.dll
[2005/03/21 18:38:33 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2005/03/21 10:04:31 | 000,000,347 | ---- | C] () -- C:\WINDOWS\System32\CreMan.ini
[2005/03/21 10:03:54 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\ntiembed.dll
[2005/03/21 10:03:40 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIMPEG2.dll
[2005/03/21 10:03:40 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTICDMK32.dll
[2005/03/21 10:02:02 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2005/03/21 10:02:02 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2005/03/21 10:00:14 | 000,077,267 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2005/03/21 10:00:11 | 000,008,073 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2005/03/21 10:00:10 | 000,032,768 | ---- | C] () -- C:\WINDOWS\AMOVE.EXE
[2005/03/21 09:59:00 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2005/03/21 09:55:44 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2005/03/21 09:55:14 | 000,003,712 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2005/03/21 09:53:38 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005/03/21 09:53:04 | 001,612,200 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2004/09/16 13:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\System32\drivers\AdfuUd.sys
[2004/09/16 13:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\ADFUUD.SYS
[2004/02/28 06:30:12 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\TrustSupport.dll
[2001/12/26 16:12:30 | 000,065,536 | R--- | C] () -- C:\WINDOWS\System32\multiplex_vcd.dll
[2001/09/03 23:46:38 | 000,110,592 | R--- | C] () -- C:\WINDOWS\System32\Hmpg12.dll
[2001/07/30 16:33:56 | 000,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC.dll
[2001/07/23 22:04:36 | 000,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC_MMX.dll
[1999/07/23 14:46:48 | 000,000,116 | ---- | C] () -- C:\WINDOWS\AuHCcup1.ini
[1999/07/23 11:53:20 | 000,129,536 | ---- | C] () -- C:\WINDOWS\AuHCcup1.dll
[1980/01/01 00:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[1980/01/01 00:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[1980/01/01 00:00:00 | 000,466,442 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat
[1980/01/01 00:00:00 | 000,399,038 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[1980/01/01 00:00:00 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat
[1980/01/01 00:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[1980/01/01 00:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[1980/01/01 00:00:00 | 000,074,130 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat
[1980/01/01 00:00:00 | 000,060,588 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[1980/01/01 00:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[1980/01/01 00:00:00 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat
[1980/01/01 00:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[1980/01/01 00:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[1980/01/01 00:00:00 | 000,004,524 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[1980/01/01 00:00:00 | 000,001,788 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[1980/01/01 00:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

========== LOP Check ==========

[2011/01/30 19:19:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2008/07/24 21:46:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Arovax
[2008/11/02 14:43:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BOONTY
[2008/06/23 09:55:15 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2009/12/13 00:08:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Elaborate Bytes
[2007/11/06 00:40:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Musicnotes
[2009/09/15 21:30:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2005/09/15 23:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Prism
[2008/06/23 10:38:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
[2009/11/14 02:37:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Syncrosoft
[2008/08/13 23:07:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2010/04/29 00:02:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/01/30 21:02:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2007/06/10 14:59:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Ableton
[2007/06/25 18:01:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\ACAMPREF
[2010/06/07 20:42:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\AdSigner
[2008/04/24 12:14:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\APLI
[2010/05/10 10:21:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Canon
[2008/02/25 03:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Copernic
[2010/06/14 15:35:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Facebook
[2008/10/27 14:37:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\FileZilla
[2009/12/21 16:46:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\HouseCall 6.6
[2010/04/29 12:02:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Icones
[2008/04/01 16:02:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\ItsLabel
[2011/09/27 22:13:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\LimeWire
[2011/03/14 23:32:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\LolClient
[2009/09/15 21:30:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\NCH Swift Sound
[2006/05/30 13:51:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\NetMedia Providers
[2005/12/30 20:07:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\OLYMPUS
[2010/02/01 00:40:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\OpenOffice.org
[2006/05/30 13:51:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Publish Providers
[2010/01/31 22:12:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Samsung
[2008/06/23 10:38:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\ScanSoft
[2008/03/20 09:41:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\SPAMfighter
[2005/09/15 17:09:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Template
[2008/09/14 20:43:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Todae
[2008/08/13 23:07:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Viewpoint

========== Purity Check ==========



< End of report >

il me semble qu'il y a une amélioration dans la vitesse d'affichage des page web et que d'une manière générale la machine réagit plus rapidement.

cependant je pense (mais je n'y connait pas grand chose), que cela peut encore s'améliorer.
Qu'en pensez vous ?
A bientot
Marie Noel Ginet
 
Messages: 36
Inscription: 02 Oct 2011, 14:17

PrécédenteSuivante

Retourner vers Sécurité (Contamination - Décontamination)

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 27 invités