Sujet Précédent Sujet Suivant

Pourriez vous verifier mon pc

Résolu/Fermé
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024 - 13 avril 2011 à 20:03
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024 - 29 avril 2011 à 20:44
Bonjour,
pourriez vous me dire ce que je dois faire pour que vous puissiez verifier mon pc
je crois avoir quelques saletes car j'ai netoyer mon disque dur mais ce n'est pas terrible
d'avance merci


A voir également:

93 réponses

Précédent
Réponse 21 / 93
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
14 avril 2011 à 15:58
oui effectivement c'est mon pc et nous sommes 2 a le partagé
0
Réponse 22 / 93
Utilisateur anonyme
14 avril 2011 à 16:08
alors je l'ai fait mais il y en a deux qui sont rouge donc elles ne sont pas en ordre

precise stp
0
Réponse 23 / 93
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
14 avril 2011 à 16:12
j'ai trouve sur aide et support les mises a jour donc j'ai effectuer c'est mises a jour mais en verifiant il y en a 2 qui ne ce sont pas faite elles sont avec le point rouge les autres sont en vert donc celles la sont bonnes et pas les deux en rouge
0
Utilisateur anonyme
14 avril 2011 à 16:26
quelles sont les mises à jour qui ont un point rouge qui ne se sont pas installées ?
0
Réponse 24 / 93
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
14 avril 2011 à 16:34
(kb978601) du 14 avril 2010
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 93
Utilisateur anonyme
14 avril 2011 à 16:40
essaie de la prendre ici ?

http://www.microsoft.com/downloads/en/details.aspx?familyid=2A01DDF0-F3EA-47C8-ADA2-E69F6C1B5F96&displaylang=en
0
Réponse 26 / 93
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
14 avril 2011 à 16:49
setup error

setup cannot update your windows xp files because the language
installed on your system is different from the update language

voila ce qu'il me dit
0
Réponse 27 / 93
Utilisateur anonyme
14 avril 2011 à 17:10
desolé je t'ai mis celle en anglais

http://www.microsoft.com/downloads/fr-fr/details.aspx?FamilyID=2A01DDF0-F3EA-47C8-ADA2-E69F6C1B5F96
0
Réponse 28 / 93
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
14 avril 2011 à 17:36
voila mais la mises a jour est faite mais la mises a jour (kb 978601)
est toujours rouge
encore une petite question
avec tous ce que j'ai fait j'ai mis a la corbeille un documents contenant des photos de mon fils pour son rapport de stage comment puis je faire et sont elle encore sur la carte mère?
0
Réponse 29 / 93
Utilisateur anonyme
14 avril 2011 à 18:47
ils ne sont plus dans la corbeille ?

refais un scan otl stp
0
Réponse 30 / 93
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
14 avril 2011 à 19:01
OTL logfile created on: 14/04/2011 18:52:18 - Run 2
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\latchatchapaty\Mes documents
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

511,00 Mb Total Physical Memory | 127,00 Mb Available Physical Memory | 25,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 48,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 152,66 Gb Total Space | 23,51 Gb Free Space | 15,40% Space Free | Partition Type: NTFS

Computer Name: LAFAMILLE | User Name: latchatchapaty | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========/color

PRC - [2011/04/14 14:23:42 | 000,514,560 | -HS- | M] () -- C:\WINDOWS\scrrunwow.exe
PRC - [2011/04/14 10:24:30 | 000,514,560 | -HS- | M] () -- C:\WINDOWS\senscfgwow.exe
PRC - [2011/04/13 20:19:52 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\latchatchapaty\Mes documents\OTL.exe
PRC - [2011/04/11 18:21:15 | 001,072,640 | -HS- | M] () -- C:\WINDOWS\system32\A.tmp
PRC - [2011/04/05 13:41:18 | 001,410,560 | ---- | M] () -- C:\WINDOWS\system32\netui032.exe
PRC - [2011/04/05 13:41:18 | 001,410,560 | ---- | M] () -- C:\WINDOWS\system32\msrle3232.exe
PRC - [2011/03/01 18:28:50 | 000,090,112 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
PRC - [2010/10/27 20:17:52 | 000,207,424 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe
PRC - [2010/08/25 11:27:44 | 000,309,824 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ArcCon.ac
PRC - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe
PRC - [2010/03/04 16:08:22 | 000,099,720 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
PRC - [2009/04/30 13:23:26 | 000,090,112 | ---- | M] () -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
PRC - [2009/03/31 10:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2009/01/26 16:31:16 | 002,144,088 | ---- | M] (Safer Networking Limited) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2008/05/29 12:18:32 | 000,202,016 | R--- | M] (SupportSoft, Inc.) -- C:\Program Files\Belgacom\bin\sprtsvc.exe
PRC - [2008/05/29 12:18:04 | 000,202,016 | R--- | M] (SupportSoft, Inc.) -- C:\Program Files\Belgacom\bin\sprtcmd.exe
PRC - [2008/04/14 04:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/03/07 23:01:30 | 000,169,320 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\CCSETMGR.EXE
PRC - [2008/03/07 23:01:28 | 000,191,848 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\CCEVTMGR.EXE
PRC - [2008/03/07 23:01:28 | 000,053,096 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\CCAPP.EXE
PRC - [2008/01/29 17:38:32 | 000,583,048 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
PRC - [2007/10/01 14:50:08 | 000,214,408 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
PRC - [2007/09/13 06:47:38 | 000,202,088 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\CCPROXY.EXE
PRC - [2007/05/28 12:00:24 | 000,139,888 | ---- | M] (Symantec Corporation) -- C:\Program Files\Norton Internet Security\Norton AntiVirus\NAVAPSVC.EXE
PRC - [2006/12/15 19:41:50 | 000,750,720 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
PRC - [2006/12/08 12:06:17 | 001,119,888 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
PRC - [2006/05/11 16:50:18 | 001,160,848 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
PRC - [2005/10/25 10:28:51 | 000,054,928 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\DJSNETCN.exe
PRC - [2005/06/23 20:33:00 | 000,057,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
PRC - [2004/01/26 11:38:38 | 000,866,816 | ---- | M] (THOMSON Telecom Belgium) -- C:\Program Files\Thomson\SpeedTouch USB\dragdiag.exe


[color=#E56717]========== Modules (SafeList) ==========/color

MOD - [2011/04/13 20:19:52 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\latchatchapaty\Mes documents\OTL.exe
MOD - [2008/05/29 12:18:20 | 000,116,000 | R--- | M] (SupportSoft, Inc.) -- C:\Program Files\Belgacom\bin\sprthook.dll
MOD - [2008/04/14 04:33:50 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wsock32.dll
MOD - [2008/04/14 04:30:54 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
MOD - [2008/03/07 23:01:28 | 000,379,240 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\CCL40.DLL
MOD - [2006/05/03 22:53:54 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\framedyn.dll
MOD - [2005/10/25 10:26:16 | 000,123,488 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\AntiSpam\asOEHook.dll


[color=#E56717]========== Win32 Services (SafeList) ==========/color

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011/04/05 13:41:18 | 001,410,560 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\msrle3232.exe -- (Messenger32)
SRV - [2011/03/31 13:26:56 | 000,565,760 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\System32\printhook.exe -- (printhook.exe)
SRV - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2010/03/04 16:08:22 | 002,106,760 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_0.EXE -- (LiveUpdate)
SRV - [2010/03/04 16:08:22 | 000,099,720 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Planificateur LiveUpdate automatique)
SRV - [2009/04/30 13:23:26 | 000,090,112 | ---- | M] () [Auto | Running] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service)
SRV - [2009/03/31 10:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2008/05/29 12:18:32 | 000,202,016 | R--- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Belgacom\bin\sprtsvc.exe -- (sprtsvc_belgacom) SupportSoft Sprocket Service (belgacom)
SRV - [2008/05/29 12:17:12 | 000,382,320 | R--- | M] (SupportSoft, Inc.) [Auto | Stopped] -- C:\Program Files\Fichiers communs\Supportsoft\bin\ssrc.exe -- (SupportSoft RemoteAssist)
SRV - [2008/03/07 23:01:30 | 000,169,320 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe -- (ccSetMgr)
SRV - [2008/03/07 23:01:28 | 000,191,848 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe -- (ccEvtMgr)
SRV - [2008/01/29 17:38:32 | 000,583,048 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)
SRV - [2007/10/01 14:50:08 | 000,214,408 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe -- (SNDSrvc)
SRV - [2007/09/13 06:47:38 | 000,202,088 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe -- (ccProxy)
SRV - [2007/05/28 12:00:24 | 000,139,888 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe -- (navapsvc)
SRV - [2007/02/01 18:20:46 | 000,045,696 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Norton Internet Security\comHost.exe -- (comHost)
SRV - [2006/12/15 19:41:50 | 000,750,720 | ---- | M] (Symantec Corporation) [On_Demand | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE -- (NSCService)
SRV - [2006/12/08 12:06:17 | 001,119,888 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)
SRV - [2006/05/11 16:50:18 | 001,160,848 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe -- (SPBBCSvc)
SRV - [2006/03/24 13:13:32 | 000,072,328 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Norton Internet Security\ccPwdSvc.exe -- (ccISPwdSvc)
SRV - [2005/10/25 10:31:54 | 000,198,368 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe -- (SAVScan)
SRV - [2005/10/25 10:28:51 | 000,054,928 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\DJSNETCN.exe -- (DJSNETCN)


[color=#E56717]========== Driver Services (SafeList) ==========/color

DRV - [2011/03/31 10:00:00 | 001,393,144 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\VirusDefs\20110410.002\NAVEX15.SYS -- (NAVEX15)
DRV - [2011/03/31 10:00:00 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\VirusDefs\20110410.002\NAVENG.SYS -- (NAVENG)
DRV - [2011/03/15 21:38:10 | 000,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2010/09/15 20:07:08 | 000,270,712 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\SymcData\idsdefs\20110407.001\SymIDSCo.sys -- (SYMIDSCO)
DRV - [2010/05/28 10:00:00 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2010/05/12 12:14:58 | 000,121,576 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2010/05/12 12:14:56 | 000,096,488 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadbus.sys -- (ssadbus) SAMSUNG Android USB Composite Device driver (WDM)
DRV - [2010/05/12 12:14:56 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadmdfl.sys -- (ssadmdfl) SAMSUNG Android USB Modem (Filter)
DRV - [2010/04/27 04:25:16 | 000,098,432 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV - [2010/04/27 04:25:14 | 000,132,608 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ssm_mdm.sys -- (ssm_mdm)
DRV - [2010/04/27 04:25:14 | 000,104,448 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ssm_bus.sys -- (ssm_bus) SAMSUNG Mobile USB Device II 1.0 driver (WDM)
DRV - [2010/04/27 04:25:14 | 000,014,848 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ssm_mdfl.sys -- (ssm_mdfl)
DRV - [2010/02/06 17:30:33 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009/08/05 22:48:42 | 000,054,752 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr)
DRV - [2009/03/31 10:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009/01/06 18:27:14 | 000,124,464 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2008/04/13 20:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008/01/18 16:16:28 | 000,100,648 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\a016obex.sys -- (a016obex)
DRV - [2008/01/18 16:16:26 | 000,110,504 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\a016mdm.sys -- (a016mdm)
DRV - [2008/01/18 16:16:26 | 000,104,488 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\a016mgmt.sys -- (a016mgmt) Sony Ericsson Device A016 USB WMC Device Management Drivers (WDM)
DRV - [2008/01/18 16:16:24 | 000,015,016 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\a016mdfl.sys -- (a016mdfl)
DRV - [2008/01/18 16:16:22 | 000,083,880 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\a016bus.sys -- (a016bus) Sony Ericsson Device A016 driver (WDM)
DRV - [2008/01/09 13:28:34 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri)
DRV - [2007/12/05 23:58:21 | 000,028,672 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CO_Mon.sys -- (CO_Mon)
DRV - [2007/10/01 14:49:26 | 000,189,320 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2007/10/01 14:49:20 | 000,023,944 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV - [2007/10/01 14:49:16 | 000,031,624 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\SYMIDS.SYS -- (SYMIDS)
DRV - [2007/10/01 14:49:10 | 000,028,040 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\SYMNDIS.SYS -- (SYMNDIS)
DRV - [2007/10/01 14:49:04 | 000,098,184 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\SYMFW.SYS -- (SYMFW)
DRV - [2007/10/01 14:48:56 | 000,012,680 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\SYMDNS.SYS -- (SYMDNS)
DRV - [2006/12/08 12:06:17 | 000,010,344 | ---- | M] (Symantec Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\symlcbrd.sys -- (symlcbrd)
DRV - [2006/11/10 16:05:00 | 000,018,688 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afc.sys -- (Afc)
DRV - [2006/05/11 16:50:18 | 000,389,776 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2005/10/25 10:31:53 | 000,053,896 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Norton Internet Security\Norton AntiVirus\Savrtpel.sys -- (SAVRTPEL)
DRV - [2005/10/25 10:31:51 | 000,334,984 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Norton Internet Security\Norton AntiVirus\savrt.sys -- (SAVRT)
DRV - [2004/08/25 07:28:46 | 000,787,456 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2003/12/08 11:53:48 | 000,053,600 | ---- | M] (THOMSON) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\alcan5wn.sys -- (alcan5wn) SpeedTouch USB ADSL PPP Networking Driver (NDISWAN)
DRV - [2003/12/08 11:53:46 | 000,070,688 | ---- | M] (THOMSON) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\alcaudsl.sys -- (alcaudsl)
DRV - [2003/07/02 04:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1)


[color=#E56717]========== Standard Registry (SafeList) ==========/color


[color=#E56717]========== Internet Explorer ==========/color

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.proximus.be/pickx
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = E3 AE A4 00 1E 78 18 4B 80 F1 7C 0C 62 B1 62 35 [binary data]
IE - HKCU\..\URLSearchHook: {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {d1a1c8f1-e3d9-48df-802f-20201061ef61} - C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=#E56717]========== FireFox ==========/color

FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.defaulturl: "https://www.google.com/webhp?lr=&ie=UTF-8&oe=UTF-8&gws_rd=ssl"
FF - prefs.js..keyword.URL: "https://www.bing.com/?scope=web&mkt=fr-FR&FORM=MICJV1"
FF - prefs.js..browser.startup.homepage: "http://www.plusnetwork.com"
FF - prefs.js..keyword.URL: "https://www.bing.com/?scope=web&mkt=fr-FR&FORM=MICJV1"

FF - HKLM\software\mozilla\Firefox\extensions\\{B728AB94-9BC7-49b7-B76A-422BB31B2FD0}: C:\Program Files\ArcSoft\Video Downloader\Plugin_FireFox [2009/05/31 00:05:52 | 000,000,000 | ---D | M]

[2009/04/24 20:08:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\latchatchapaty\Application Data\Mozilla\Extensions
[2009/04/24 20:08:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\latchatchapaty\Application Data\Mozilla\Extensions\mozswing@mozswing.org
[2011/04/13 19:48:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\latchatchapaty\Application Data\Mozilla\Firefox\Profiles\yl5km6iz.default\extensions
[2011/04/07 09:36:10 | 000,000,000 | ---D | M] (uTorrentBar_FR Community Toolbar) -- C:\Documents and Settings\latchatchapaty\Application Data\Mozilla\Firefox\Profiles\yl5km6iz.default\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}
[2011/04/09 10:01:58 | 000,000,000 | ---D | M] (XUL Cache) -- C:\Documents and Settings\latchatchapaty\Application Data\Mozilla\Firefox\Profiles\yl5km6iz.default\extensions\{28bfdd4b-7045-4520-b01a-651e0aee5ac8}
[2007/11/22 17:48:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\latchatchapaty\Application Data\Mozilla\Firefox\Profiles\yl5km6iz.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2011/04/06 16:13:26 | 000,000,000 | ---D | M] (XUL Cache) -- C:\Documents and Settings\latchatchapaty\Application Data\Mozilla\Firefox\Profiles\yl5km6iz.default\extensions\{997b6590-90b7-4757-99cc-613caff5fa7d}
[2011/04/13 19:14:52 | 000,000,000 | ---D | M] (XUL Cache) -- C:\Documents and Settings\latchatchapaty\Application Data\Mozilla\Firefox\Profiles\yl5km6iz.default\extensions\{b36fa08a-43e3-4c14-9cf3-cbca82c6d2f7}
[2010/01/07 13:48:19 | 000,000,000 | ---D | M] (XUL Cache) -- C:\Documents and Settings\latchatchapaty\Application Data\Mozilla\Firefox\Profiles\yl5km6iz.default\extensions\{c490dc17-6b81-4e9f-956e-476885c1b158}
[2011/04/14 17:42:37 | 000,000,000 | ---D | M] (XUL Cache) -- C:\Documents and Settings\latchatchapaty\Application Data\Mozilla\Firefox\Profiles\yl5km6iz.default\extensions\{de14998f-0a60-4467-bfe8-fde74bdbd3b5}
[2011/04/07 21:26:01 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\latchatchapaty\Application Data\Mozilla\Firefox\Profiles\yl5km6iz.default\extensions\ffxtlbr@babylon.com
[2007/11/22 17:48:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\latchatchapaty\Application Data\Mozilla\Firefox\Profiles\yl5km6iz.default\extensions\staged-xpis
[2009/02/06 16:01:54 | 000,001,861 | ---- | M] () -- C:\Documents and Settings\latchatchapaty\Application Data\Mozilla\Firefox\Profiles\yl5km6iz.default\searchplugins\LiveSearch.xml
[2007/11/22 17:51:37 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2006/12/09 17:13:22 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2006/12/15 14:39:48 | 000,229,376 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\nphardwaredetection.dll

O1 HOSTS File: ([2009/04/27 19:31:12 | 000,000,795 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {00A4AEE3-781E-4B18-80F1-7C0C62B16235} - C:\WINDOWS\system32\atl32.dll (Borland Software Corporation)
O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (CescrtHlpr Object) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (CNisExtBho Class) - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll (Symantec Corporation)
O2 - BHO: (CNavExtBho Class) - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NAVSHEXT.DLL (Symantec Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O2 - BHO: (Messenger Plus Live Belgium Toolbar) - {d1a1c8f1-e3d9-48df-802f-20201061ef61} - C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll (Conduit Ltd.)
O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (no name) - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Norton Internet Security) - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarTlbr.dll (Babylon Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Norton AntiVirus) - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NAVSHEXT.DLL (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Messenger Plus Live Belgium Toolbar) - {d1a1c8f1-e3d9-48df-802f-20201061ef61} - C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {BC4FFE41-DE9F-46FA-B455-AAD49B9F9938} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Internet Security) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton AntiVirus) - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NAVSHEXT.DLL (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Messenger Plus Live Belgium Toolbar) - {D1A1C8F1-E3D9-48DF-802F-20201061EF61} - C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKCU\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Photo Downloader] C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [BabylonToolbar] C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe (Babylon Ltd.)
O4 - HKLM..\Run: [Belgacom] C:\Program Files\Belgacom\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [Cmaudio] File not found
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [scrrunwow.exe] C:\WINDOWS\scrrunwow.exe ()
O4 - HKLM..\Run: [senscfgwow.exe] C:\WINDOWS\senscfgwow.exe ()
O4 - HKLM..\Run: [SpeedTouch USB Diagnostics] C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe (THOMSON Telecom Belgium)
O4 - HKLM..\Run: [Symantec PIF AlertEng] C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation)
O4 - HKCU..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKCU..\Run: [NBJ] C:\Program Files\Ahead\Nero BackItUp\NBJ.exe (Ahead Software AG)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - HKLM..\RunServices: [DJSNetCN] C:\Program Files\Fichiers communs\Symantec Shared\DJSNETCN.exe (Symantec Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll (Google Inc.)
O9 - Extra 'Tools' menuitem : Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com/QuickTime/qtactivex/qtplugin.cab (QuickTime Object)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} http://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab (Trend Micro ActiveX Scan Agent 6.6)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {32C3FEAE-0877-4767-8C20-62A5829A0945} http://static.ak.facebook.com/fbplugin/win32/axfbootloader.cab?1271605607984 (Reg Error: Key error.)
O16 - DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} http://ips.poi.de/ips-opdata/layout/fnac/objects/jordan.cab (JordanUploader Class)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab (MSN Photo Upload Tool)
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} http://www.casimages.com/iu/ImageUploader5.cab (Image Uploader Control)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} http://www.virustraq.com/img/scan_virus/webscan.cab (WScanCtl Class)
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} http://cid-dcf989d2c078dc99.spaces.live.com/PhotoUpload/MsnPUpld.cab (Windows Live Photo Upload Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab (Windows Live Hotmail Photo Upload Tool)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\WINDOWS\system32\msidntld32.dll) - C:\WINDOWS\system32\msidntld32.dll (Borland Software Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKCU Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll ()
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\latchatchapaty\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\latchatchapaty\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O30 - LSA: Authentication Packages - (tutqro.dll) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/04/26 18:08:30 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========/color

[2011/04/14 17:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2011/04/14 17:27:20 | 000,583,544 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\latchatchapaty\Mes documents\WindowsXP-KB978601-x86-FRA.exe
[2011/04/14 17:12:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Mes documents\My Art
[2011/04/14 17:11:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Mes documents\NPS
[2011/04/14 16:44:56 | 000,576,376 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\latchatchapaty\Mes documents\WindowsXP-KB978601-x86-ENU.exe
[2011/04/13 21:18:58 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Remover
[2011/04/13 21:15:09 | 001,285,400 | ---- | C] (C_XX) -- C:\Documents and Settings\latchatchapaty\Mes documents\AD-R.exe
[2011/04/13 20:57:30 | 000,000,000 | ---D | C] -- C:\Kill'em
[2011/04/13 20:19:50 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\latchatchapaty\Mes documents\OTL.exe
[2011/04/13 20:05:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis
[2011/04/13 17:01:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Local Settings\Application Data\PackageAware
[2011/04/12 14:27:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Multi Virus Cleaner 2011
[2011/04/12 14:27:43 | 000,000,000 | ---D | C] -- C:\Program Files\AxBx
[2011/04/12 14:27:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Mes documents\mvc
[2011/04/09 17:51:27 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\latchatchapaty\Recent
[2011/04/09 16:02:38 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\latchatchapaty\Mes documents\Ma musique
[2011/04/08 17:26:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\microsoft
[2011/04/08 11:41:09 | 000,000,000 | ---D | C] -- C:\Program Files\ZHPDiag
[2011/04/07 21:28:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Application Data\BabylonToolbar
[2011/04/07 21:25:53 | 000,000,000 | ---D | C] -- C:\Program Files\BabylonToolbar
[2011/04/07 20:55:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Bureau\julia
[2011/04/07 10:40:10 | 000,000,000 | ---D | C] -- C:\Program Files\ToniArts
[2011/04/07 10:40:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\EasyCleaner
[2011/04/07 10:39:13 | 002,951,802 | ---- | C] (InstallShield Software Corporation) -- C:\Documents and Settings\latchatchapaty\Mes documents\easycleaner.exe
[2011/04/07 09:42:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Application Data\Sammsoft
[2011/04/07 09:36:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Local Settings\Application Data\uTorrentBar_FR
[2011/04/07 09:33:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Application Data\uTorrent
[2011/04/07 08:34:00 | 006,783,685 | ---- | C] (Shareaza Development Team ) -- C:\Documents and Settings\latchatchapaty\Mes documents\Shareaza_2.5.4.0_Win32.exe
[2011/04/07 07:25:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Application Data\PCFix
[2011/04/05 16:13:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\eMule
[2011/04/05 13:46:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\191459548
[2011/04/05 13:45:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\WinRAR
[2011/04/05 13:42:35 | 000,000,000 | -HSD | C] -- C:\WINDOWS\System32\A85638EAE282AEDCA5049233D3A90B73
[2011/04/05 13:41:38 | 000,264,192 | ---- | C] (Borland Software Corporation) -- C:\WINDOWS\System32\msidntld32.dll
[2011/04/05 13:41:20 | 000,417,280 | ---- | C] (Borland Software Corporation) -- C:\WINDOWS\System32\atl32.dll
[2011/04/03 19:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Application Data\ML
[2011/03/31 13:28:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\35A8249A185D243CAC8D468C9A8EED1D
[2011/03/31 13:26:58 | 000,565,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\printhook.exe
[2011/03/31 13:20:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Mes documents\FrostWire
[2011/03/31 13:19:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Application Data\FrostWire
[2011/03/31 13:19:13 | 000,000,000 | ---D | C] -- C:\Program Files\FrostWire
[2011/03/28 12:20:05 | 000,000,000 | ---D | C] -- C:\Program Files\Yuna Software
[2009/11/20 20:04:25 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\Documents and Settings\All Users\Application Data\hpe1A.dll
[2009/09/12 10:23:31 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\latchatchapaty\Application Data\pcouffin.sys
[2006/12/27 15:45:49 | 000,151,552 | R--- | C] ( ) -- C:\WINDOWS\System32\ATIDEMGR.dll
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[12 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
[1 C:\Documents and Settings\latchatchapaty\Mes documents\*.tmp files -> C:\Documents and Settings\latchatchapaty\Mes documents\*.tmp -> ]
[1 C:\Documents and Settings\latchatchapaty\Bureau\*.tmp files -> C:\Documents and Settings\latchatchapaty\Bureau\*.tmp -> ]
[1 C:\Documents and Settings\latchatchapaty\*.tmp files -> C:\Documents and Settings\latchatchapaty\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========/color

[2011/04/14 19:00:00 | 000,000,272 | ---- | M] () -- C:\WINDOWS\tasks\RMSchedule.job
[2011/04/14 18:54:32 | 000,001,185 | ---- | M] () -- C:\WINDOWS\System32\1689558591
[2011/04/14 18:02:03 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/04/14 17:27:25 | 000,583,544 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\latchatchapaty\Mes documents\WindowsXP-KB978601-x86-FRA.exe
[2011/04/14 17:13:49 | 000,022,528 | ---- | M] () -- C:\Documents and Settings\latchatchapaty\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/04/14 16:45:00 | 000,576,376 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\latchatchapaty\Mes documents\WindowsXP-KB978601-x86-ENU.exe
[2011/04/14 14:24:47 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/04/14 14:24:40 | 000,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/04/14 14:23:42 | 000,514,560 | -HS- | M] () -- C:\WINDOWS\scrrunwow.exe
[2011/04/14 14:23:40 | 000,000,144 | -HS- | M] () -- C:\WINDOWS\System32\1151251731
[2011/04/14 14:22:45 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/04/14 14:22:41 | 536,137,728 | -HS- | M] () -- C:\hiberfil.sys
[2011/04/14 10:24:30 | 000,514,560 | -HS- | M] () -- C:\WINDOWS\senscfgwow.exe
[2011/04/13 21:19:00 | 000,001,554 | ---- | M] () -- C:\Documents and Settings\latchatchapaty\Bureau\AD-R.lnk
[2011/04/13 21:15:30 | 000,000,552 | ---- | M] () -- C:\Documents and Settings\latchatchapaty\Bureau\Raccourci vers AD-R.lnk
[2011/04/13 21:15:13 | 001,285,400 | ---- | M] (C_XX) -- C:\Documents and Settings\latchatchapaty\Mes documents\AD-R.exe
[2011/04/13 20:57:22 | 000,683,753 | ---- | M] () -- C:\Documents and Settings\latchatchapaty\Mes documents\Pre_scan.exe
[2011/04/13 20:20:54 | 000,000,545 | ---- | M] () -- C:\Documents and Settings\latchatchapaty\Bureau\Raccourci vers OTL.exe.lnk
[2011/04/13 20:19:52 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\latchatchapaty\Mes documents\OTL.exe
[2011/04/13 20:05:05 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\latchatchapaty\Bureau\HijackThis.lnk
[2011/04/13 18:33:28 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011/04/13 17:42:10 | 734,517,920 | ---- | M] () -- C:\Documents and Settings\latchatchapaty\Mes documents\Princesse Raiponce 2010.TRUEFRENCH.BDRiP.MD.XviD-By.Hadopix.[eMule-DivX.com].avi
[2011/04/12 14:27:48 | 000,000,840 | ---- | M] () -- C:\Documents and Settings\latchatchapaty\Bureau\Multi Virus Cleaner 2011.lnk
[2011/04/12 14:26:49 | 005,460,749 | ---- | M] () -- C:\Documents and Settings\latchatchapaty\Mes documents\mvc.zip
[2011/04/10 23:44:07 | 000,193,024 | ---- | M] () -- C:\WINDOWS\System32\msimsg32.exe
[2011/04/08 20:00:00 | 000,000,586 | ---- | M] () -- C:\WINDOWS\tasks\Norton AntiVirus - Effectuer une analyse complète du système - client.job
[2011/04/08 11:47:42 | 000,000,512 | ---- | M] () -- C:\PhysicalDisk0_MBR.bin
[2011/04/07 22:08:22 | 000,520,704 | -HS- | M] () -- C:\WINDOWS\kbdswwow.exe
[2011/04/07 18:59:45 | 000,520,704 | -HS- | M] () -- C:\WINDOWS\ncxpntwow.exe
[2011/04/07 10:39:16 | 002,951,802 | ---- | M] (InstallShield Software Corporation) -- C:\Documents and Settings\latchatchapaty\Mes documents\easycleaner.exe
[2011/04/07 09:25:05 | 006,783,685 | ---- | M] (Shareaza Development Team ) -- C:\Documents and Settings\latchatchapaty\Mes documents\Shareaza_2.5.4.0_Win32.exe
[2011/04/07 09:06:01 | 000,520,704 | -HS- | M] () -- C:\WINDOWS\offfiltwow.exe
[2011/04/06 18:04:20 | 000,520,704 | -HS- | M] () -- C:\WINDOWS\wstdecodwow.exe
[2011/04/06 16:52:09 | 000,011,427 | ---- | M] () -- C:\WINDOWS\System32\GnuHashes.ini
[2011/04/05 16:13:11 | 000,000,652 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\eMule.lnk
[2011/04/05 16:11:14 | 003,389,035 | ---- | M] () -- C:\Documents and Settings\latchatchapaty\Mes documents\eMule0.50a-Installer.exe
[2011/04/05 13:43:14 | 000,203,776 | -HS- | M] () -- C:\WINDOWS\System32\unrar.exe
[2011/04/05 13:41:40 | 000,000,097 | ---- | M] () -- C:\WINDOWS\System32\1851847220
[2011/04/05 13:41:38 | 000,264,192 | ---- | M] (Borland Software Corporation) -- C:\WINDOWS\System32\msidntld32.dll
[2011/04/05 13:41:26 | 000,193,024 | ---- | M] () -- C:\WINDOWS\System32\msidntld32.exe
[2011/04/05 13:41:21 | 000,417,280 | ---- | M] (Borland Software Corporation) -- C:\WINDOWS\System32\atl32.dll
[2011/04/05 13:41:18 | 001,410,560 | ---- | M] () -- C:\WINDOWS\System32\netui032.exe
[2011/04/05 13:41:18 | 001,410,560 | ---- | M] () -- C:\WINDOWS\System32\msrle3232.exe
[2011/04/03 01:48:04 | 000,516,646 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2011/04/03 01:48:04 | 000,444,528 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/04/03 01:48:04 | 000,087,830 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2011/04/03 01:48:04 | 000,073,032 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/04/03 01:48:03 | 000,436,084 | ---- | M] () -- C:\WINDOWS\System32\perfh040.dat
[2011/04/03 01:48:03 | 000,059,430 | ---- | M] () -- C:\WINDOWS\System32\perfc040.dat
[2011/04/01 20:45:52 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt
[2011/03/31 13:26:56 | 000,565,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\printhook.exe
[2011/03/22 16:28:09 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Adobe 9.lnk
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[12 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
[1 C:\Documents and Settings\latchatchapaty\Mes documents\*.tmp files -> C:\Documents and Settings\latchatchapaty\Mes documents\*.tmp -> ]
[1 C:\Documents and Settings\latchatchapaty\Bureau\*.tmp files -> C:\Documents and Settings\latchatchapaty\Bureau\*.tmp -> ]
[1 C:\Documents and Settings\latchatchapaty\*.tmp files -> C:\Documents and Settings\latchatchapaty\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========/color

[2011/04/14 14:23:44 | 000,514,560 | -HS- | C] () -- C:\WINDOWS\scrrunwow.exe
[2011/04/14 10:24:36 | 000,514,560 | -HS- | C] () -- C:\WINDOWS\senscfgwow.exe
[2011/04/13 21:19:00 | 000,001,554 | ---- | C] () -- C:\Documents and Settings\latchatchapaty\Bureau\AD-R.lnk
[2011/04/13 21:15:30 | 000,000,552 | ---- | C] () -- C:\Documents and Settings\latchatchapaty\Bureau\Raccourci vers AD-R.lnk
[2011/04/13 20:57:14 | 000,683,753 | ---- | C] () -- C:\Documents and Settings\latchatchapaty\Mes documents\Pre_scan.exe
[2011/04/13 20:20:54 | 000,000,545 | ---- | C] () -- C:\Documents and Settings\latchatchapaty\Bureau\Raccourci vers OTL.exe.lnk
[2011/04/13 20:05:05 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\latchatchapaty\Bureau\HijackThis.lnk
[2011/04/12 14:27:48 | 000,000,840 | ---- | C] () -- C:\Documents and Settings\latchatchapaty\Bureau\Multi Virus Cleaner 2011.lnk
[2011/04/12 14:26:46 | 005,460,749 | ---- | C] () -- C:\Documents and Settings\latchatchapaty\Mes documents\mvc.zip
[2011/04/10 23:44:07 | 000,193,024 | ---- | C] () -- C:\WINDOWS\System32\msimsg32.exe
[2011/04/08 11:47:42 | 000,000,512 | ---- | C] () -- C:\PhysicalDisk0_MBR.bin
[2011/04/07 22:08:25 | 000,520,704 | -HS- | C] () -- C:\WINDOWS\kbdswwow.exe
[2011/04/07 18:59:47 | 000,520,704 | -HS- | C] () -- C:\WINDOWS\ncxpntwow.exe
[2011/04/07 09:06:29 | 000,520,704 | -HS- | C] () -- C:\WINDOWS\offfiltwow.exe
[2011/04/06 18:04:43 | 000,520,704 | -HS- | C] () -- C:\WINDOWS\wstdecodwow.exe
[2011/04/05 16:17:39 | 734,517,920 | ---- | C] () -- C:\Documents and Settings\latchatchapaty\Mes documents\Princesse Raiponce 2010.TRUEFRENCH.BDRiP.MD.XviD-By.Hadopix.[eMule-DivX.com].avi
[2011/04/05 16:13:11 | 000,000,652 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\eMule.lnk
[2011/04/05 16:11:09 | 003,389,035 | ---- | C] () -- C:\Documents and Settings\latchatchapaty\Mes documents\eMule0.50a-Installer.exe
[2011/04/05 13:43:29 | 000,001,185 | ---- | C] () -- C:\WINDOWS\System32\1689558591
[2011/04/05 13:43:15 | 000,000,144 | -HS- | C] () -- C:\WINDOWS\System32\1151251731
[2011/04/05 13:43:14 | 000,203,776 | -HS- | C] () -- C:\WINDOWS\System32\unrar.exe
[2011/04/05 13:41:40 | 001,410,560 | ---- | C] () -- C:\WINDOWS\System32\netui032.exe
[2011/04/05 13:41:27 | 001,410,560 | ---- | C] () -- C:\WINDOWS\System32\msrle3232.exe
[2011/04/05 13:41:27 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\1851847220
[2011/04/05 13:41:26 | 000,193,024 | ---- | C] () -- C:\WINDOWS\System32\msidntld32.exe
[2011/03/31 13:33:36 | 000,011,427 | ---- | C] () -- C:\WINDOWS\System32\GnuHashes.ini
[2010/01/07 13:32:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\29358.exe
[2010/01/07 13:12:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\11478.exe
[2010/01/07 12:52:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\15724.exe
[2010/01/06 22:11:01 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\19169.exe
[2009/11/13 16:16:19 | 000,000,736 | ---- | C] () -- C:\WINDOWS\SamsungMaster.INI
[2009/11/13 16:09:08 | 000,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009/11/13 16:09:08 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009/11/13 16:09:08 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\vidccleaner.exe
[2009/09/12 10:23:31 | 000,081,920 | ---- | C] () -- C:\Documents and Settings\latchatchapaty\Application Data\ezpinst.exe
[2009/09/12 10:23:31 | 000,007,176 | ---- | C] () -- C:\Documents and Settings\latchatchapaty\Application Data\pcouffin.cat
[2009/09/12 10:23:31 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\latchatchapaty\Application Data\pcouffin.inf
[2009/08/25 13:49:00 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2009/08/25 13:49:00 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2009/08/25 13:48:46 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\latchatchapaty\Application Data\$_hpcst$.hpc
[2009/05/09 14:10:52 | 000,084,480 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009/01/05 21:39:16 | 000,000,062 | ---- | C] () -- C:\WINDOWS\pcvcdbr.INI
[2009/01/05 21:39:16 | 000,000,000 | ---- | C] () -- C:\WINDOWS\pcvcdvw.INI
[2008/12/31 18:04:42 | 000,691,560 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2008/12/31 18:04:42 | 000,528,744 | ---- | C] () -- C:\WINDOWS\System32\OGAVerify.exe
[2008/11/07 12:22:04 | 000,303,104 | ---- | C] () -- C:\WINDOWS\Uninstall_tkexe.exe
[2008/10/15 12:02:47 | 000,000,033 | ---- | C] () -- C:\WINDOWS\Multimedia manager.INI
[2008/09/26 11:07:02 | 000,000,924 | ---- | C] () -- C:\WINDOWS\posteriza.INI
[2008/09/16 16:58:43 | 000,000,011 | ---- | C] () -- C:\WINDOWS\permis.ini
[2008/07/30 14:35:53 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt
[2008/07/30 14:31:45 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2008/07/29 16:38:56 | 000,000,045 | -H-- | C] () -- C:\WINDOWS\dsez1349.dat
[2008/05/24 15:29:08 | 000,217,073 | ---- | C] () -- C:\WINDOWS\meta4.exe
[2008/05/24 15:29:08 | 000,066,560 | ---- | C] () -- C:\WINDOWS\MOTA113.exe
[2008/05/24 15:29:07 | 000,502,784 | ---- | C] () -- C:\WINDOWS\x2.64.exe
[2008/05/24 15:29:07 | 000,240,128 | ---- | C] () -- C:\WINDOWS\System32\x.264.exe
[2008/05/24 15:29:07 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2008/05/24 15:29:06 | 000,471,552 | ---- | C] () -- C:\WINDOWS\System32\Smab.dll
[2008/03/24 12:52:03 | 000,000,137 | ---- | C] () -- C:\Documents and Settings\latchatchapaty\Local Settings\Application Data\fusioncache.dat
[2008/03/09 12:36:16 | 000,436,084 | ---- | C] () -- C:\WINDOWS\System32\perfh040.dat
[2008/03/09 12:36:16 | 000,059,430 | ---- | C] () -- C:\WINDOWS\System32\perfc040.dat
[2007/12/05 23:58:18 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\drivers\CO_Mon.sys
[2007/09/29 09:45:12 | 000,131,072 | R--- | C] () -- C:\WINDOWS\System32\mtkjpeg.dll
[2007/04/12 16:01:33 | 000,000,118 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2007/04/05 19:00:51 | 000,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI
[2006/12/27 15:45:59 | 000,516,096 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2006/12/16 14:58:37 | 000,022,528 | ---- | C] () -- C:\Documents and Settings\latchatchapaty\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/12/13 15:22:06 | 000,092,240 | ---- | C] () -- C:\WINDOWS\System32\EPPICPrinterDB.dat
[2006/12/13 15:22:06 | 000,001,120 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_IT.dat
[2006/12/13 15:22:06 | 000,001,107 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_GE.dat
[2006/12/13 15:22:06 | 000,000,099 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2006/12/13 15:22:05 | 000,026,154 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern1.dat
[2006/12/13 15:22:05 | 000,024,903 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern3.dat
[2006/12/13 15:22:05 | 000,021,390 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern5.dat
[2006/12/13 15:22:05 | 000,020,148 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern2.dat
[2006/12/13 15:22:05 | 000,011,811 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern4.dat
[2006/12/13 15:22:05 | 000,004,943 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern6.dat
[2006/12/13 15:22:05 | 000,001,146 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_DU.dat
[2006/12/13 15:22:05 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_PT.dat
[2006/12/13 15:22:05 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_BP.dat
[2006/12/13 15:22:05 | 000,001,136 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_ES.dat
[2006/12/13 15:22:05 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_FR.dat
[2006/12/13 15:22:05 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_CF.dat
[2006/12/13 15:22:05 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_EN.dat
[2006/12/13 14:58:39 | 000,000,025 | ---- | C] () -- C:\WINDOWS\CDE DX3800EFGIPSD.ini
[2006/12/13 14:43:28 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2006/12/10 20:38:41 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2006/12/09 17:13:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2006/05/25 02:22:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\bdoscandel.exe
[2005/04/27 22:59:56 | 000,005,606 | ---- | C] () -- C:\WINDOWS\System32\stci.dll
[2005/04/26 19:32:16 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005/04/26 19:30:56 | 000,103,032 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2005/04/26 19:24:32 | 000,000,131 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/04/26 19:22:21 | 000,000,092 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
[2005/04/26 19:22:21 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
[2005/04/26 19:22:17 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.exe
[2005/04/26 19:22:17 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll
[2005/04/26 19:22:17 | 000,000,536 | ---- | C] () -- C:\WINDOWS\Wininit.ini
[2005/04/26 19:22:16 | 000,266,240 | ---- | C] () -- C:\WINDOWS\CMIUninstall.exe
[2005/04/26 19:22:16 | 000,225,280 | ---- | C] () -- C:\WINDOWS\CmiRmRedundDir.exe
[2005/04/26 19:22:16 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll
[2005/04/26 18:33:13 | 000,036,864 | R--- | C] () -- C:\WINDOWS\System32\ctrldll.dll
[2005/04/26 18:33:13 | 000,032,768 | R--- | C] () -- C:\WINDOWS\System32\rmctrl.exe
[2005/04/26 18:22:23 | 000,002,699 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2005/04/26 18:22:21 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2005/04/26 18:10:33 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2005/04/26 18:05:20 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2005/03/14 15:38:28 | 000,000,469 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini
[2004/08/25 07:27:00 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\ati2evxx.dll
[2004/08/25 07:26:56 | 000,389,120 | ---- | C] () -- C:\WINDOWS\System32\ati2evxx.exe
[2004/08/05 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004/08/05 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004/08/05 14:00:00 | 000,516,646 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat
[2004/08/05 14:00:00 | 000,444,528 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/05 14:00:00 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat
[2004/08/05 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004/08/05 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004/08/05 14:00:00 | 000,087,830 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat
[2004/08/05 14:00:00 | 000,073,032 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/05 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004/08/05 14:00:00 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat
[2004/08/05 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004/08/05 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/08/05 14:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004/08/05 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/08/05 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

[color=#E56717]========== Alternate Data Streams ==========/color

@Alternate Data Stream - 16 bytes -> C:\Documents and Settings\latchatchapaty\Mes documents\Shareaza Downloads:Shareaza.GUID
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1

< End of report >
non la corbeille se vide avec le ccleaner
0
Réponse 31 / 93
Utilisateur anonyme
14 avril 2011 à 19:25
non OTL comme la premiere fois
0
Réponse 32 / 93
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
14 avril 2011 à 19:33
http://www.cijoint.fr/cjlink.php?file=cj201104/cijIlKzD4x.txt

c'est mieux ceci
0
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
14 avril 2011 à 20:16
je vais vous laisser pour aujourd'hui mais il va un peu mieux je crois
0
Réponse 33 / 93
Utilisateur anonyme
14 avril 2011 à 20:28
tu n'ecoutes pas .....

spybot tourne encore dans ton pc alors que je t'avais dit de le virer

il bloque les outils en plus d'etre pourri comme dit plus haut
0
Réponse 34 / 93
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
15 avril 2011 à 14:42
Bonjour,
je pensais l'avoir supprimer mais je viens de verifier puisque tu me dit qu'il etait encore la
et en effet en faisant un recherche j'ai trouve un dossier dans program files
et il me dit en voulant le supprimé
impossible de supprimer advcheck.dll
comment dois je faire merci
0
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
15 avril 2011 à 15:03
je crois que je viens de le virer je vais t'envoyer un rapport de OTL
je crois que c'est avec cela que tu vois si il est encore la et si il reste des choses a faire
si je ne devais pas l'envoyer ce n'est rien???
0
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
15 avril 2011 à 15:06
non c'est raté il est encore la dans program files misère
0
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
15 avril 2011 à 15:43
en cherchant encore j'ai trouve donc le advcheck.dl et un autre tea timer
0
Réponse 35 / 93
Utilisateur anonyme
15 avril 2011 à 15:02
tu ne l'as pas desinstallé via ajout/suppression de programmes ?
0
Réponse 36 / 93
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
15 avril 2011 à 15:48
ben si justement mais il ne sais pas completement desintalle
(je supposse)
0
Réponse 37 / 93
Utilisateur anonyme
15 avril 2011 à 16:05
fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.


▶ Télécharge ici :

Malwarebytes

▶ Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

(NB : Si tu as un message d'erreur t'indiquant qu'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : COMCTL32.OCX

▶ Potasses le Tuto pour te familiariser avec le prg :


( cela dit, il est très simple d'utilisation ).

relance malwarebytes en suivant scrupuleusement ces consignes :

! Déconnecte toi et ferme toutes applications en cours !

▶ Lance Malwarebyte's .

Fais un examen dit "Complet" .

▶ Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
▶ à la fin tu cliques sur "résultat" .
Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !


Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

0
Réponse 38 / 93
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
15 avril 2011 à 16:41
j'ai deja fait ce truc et ici pour le relance il me fallait les mises a jour et il ne veut plus me les donner donc je l'ai suipprimer le mien
puis j'ai repris le tiens et la il c'est cahrge mais une petite fenetre c'est ouverte et Vb accelerator SGrid control run time error '0'

que dois faire
0
Réponse 39 / 93
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
15 avril 2011 à 17:34
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 5363

Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

15/04/2011 17:15:50
mbam-log-2011-04-15 (17-15-50).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 147006
Temps écoulé: 9 minute(s), 58 seconde(s)

Processus mémoire infecté(s): 5
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 2
Valeur(s) du Registre infectée(s): 5
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 26

Processus mémoire infecté(s):
c:\WINDOWS\senscfgwow.exe (Trojan.TracurW.Gen) -> 1004 -> Unloaded process successfully.
c:\WINDOWS\scrrunwow.exe (Trojan.TracurW.Gen) -> 1732 -> Unloaded process successfully.
c:\WINDOWS\modemuiwow.exe (Trojan.TracurW.Gen) -> 952 -> Unloaded process successfully.
c:\WINDOWS\vssapiwow.exe (Trojan.TracurW.Gen) -> 2368 -> Unloaded process successfully.
c:\WINDOWS\kbdno1wow.exe (Trojan.TracurW.Gen) -> 3752 -> Unloaded process successfully.

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MESSENGER32 (Trojan.Tracur) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\senscfgwow.exe (Trojan.TracurW.Gen) -> Value: senscfgwow.exe -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\scrrunwow.exe (Trojan.TracurW.Gen) -> Value: scrrunwow.exe -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\modemuiwow.exe (Trojan.TracurW.Gen) -> Value: modemuiwow.exe -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\vssapiwow.exe (Trojan.TracurW.Gen) -> Value: vssapiwow.exe -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\kbdno1wow.exe (Trojan.TracurW.Gen) -> Value: kbdno1wow.exe -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
c:\documents and settings\client\application data\02000000b46dab33724c.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\client\application data\02000000b46dab33724o.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\client\application data\02000000b46dab33724p.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\client\application data\02000000b46dab33724s.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\latchatchapaty\application data\02000000b46dab33720c.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\latchatchapaty\application data\02000000b46dab33720o.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\latchatchapaty\application data\02000000b46dab33720p.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\latchatchapaty\application data\02000000b46dab33720s.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\latchatchapaty\application data\02000000b46dab33724c.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\latchatchapaty\application data\02000000b46dab33724o.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\latchatchapaty\application data\02000000b46dab33724p.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\latchatchapaty\application data\02000000b46dab33724s.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\localservice\application data\02000000b46dab331235c.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\localservice\application data\02000000b46dab331235o.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\localservice\application data\02000000b46dab331235p.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\localservice\application data\02000000b46dab331235s.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\02000000b46dab331235c.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\02000000b46dab331235o.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\02000000b46dab331235p.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\02000000b46dab331235s.manifest (Malware.Trace) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\gnuhashes.ini (Trojan.Tracur) -> Quarantined and deleted successfully.
c:\WINDOWS\senscfgwow.exe (Trojan.TracurW.Gen) -> Quarantined and deleted successfully.
c:\WINDOWS\scrrunwow.exe (Trojan.TracurW.Gen) -> Quarantined and deleted successfully.
c:\WINDOWS\modemuiwow.exe (Trojan.TracurW.Gen) -> Quarantined and deleted successfully.
c:\WINDOWS\vssapiwow.exe (Trojan.TracurW.Gen) -> Quarantined and deleted successfully.
c:\WINDOWS\kbdno1wow.exe (Trojan.TracurW.Gen) -> Quarantined and deleted successfully.

desolée pour le temps
0
latchatchapaty Messages postés 541 Date d'inscription vendredi 13 octobre 2006 Statut Membre Dernière intervention 11 mars 2024
15 avril 2011 à 17:42
le spybot est toujours dans programes files
0
Réponse 40 / 93
Utilisateur anonyme
15 avril 2011 à 18:24
c'est l'appInit_Dll qui recharge l'infection refais un scan OTL comme au debut config et tout on va tout virer
0