cjoint

Publicité

Cliquez pour partager vos propres fichiers

Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 03/02/2013 19:23:17 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jean\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 0,91 Gb Available Physical Memory | 45,58% Memory free
4,24 Gb Paging File | 2,87 Gb Available in Paging File | 67,87% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 327,35 Gb Total Space | 171,57 Gb Free Space | 52,41% Space Free | Partition Type: NTFS
Drive I: | 1,86 Gb Total Space | 0,10 Gb Free Space | 5,50% Space Free | Partition Type: FAT

Computer Name: PC-DE-JEAN | User Name: Jean | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - C:\Users\Jean\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
PRC - C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
PRC - C:\Program Files\Samsung\Kies\Kies.exe (Samsung)
PRC - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files\Samsung\Kies\KiesAirMessage.exe (Samsung Electronics)
PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
PRC - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\FileHippo.com\UpdateChecker.exe (FileHippo.com)
PRC - C:\Program Files\Garmin\Lifetime Updater\GarminLifetime.exe (Garmin)
PRC - C:\Program Files\Neuf\Kit\9props.exe (SFR)
PRC - C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
PRC - C:\Windows\System32\sdclt.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
PRC - C:\Windows\System32\FsUsbExService.Exe (Teruten)
PRC - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac (ArcSoft Inc.)
PRC - C:\Program Files\SFR\Media Center\MediaCenter.exe (SFR)
PRC - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Panasonic\PHOTOfunSTUDIO -viewer-\PhAutoRun.exe (Matsushita Electric Industrial Co., Ltd.)
PRC - C:\Program Files\e-Carte Bleue LCL\ecbl-lcl.exe (Orbiscom Ltd. All rights reserved.)
PRC - C:\Program Files\WD\WD Anywhere Backup\MemeoBackup.exe (Memeo Inc.)
PRC - C:\Program Files\SFR\Media Center\httpd\httpd.exe (Apache Software Foundation)
PRC - C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe (Packard Bell BV)
PRC - C:\Program Files\AOL 9.0 VRa\shellmon.exe (AOL)
PRC - C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSPMirage.exe ()
PRC - C:\Program Files\AOL 9.0 VRa\waol.exe (AOL, LLC.)
PRC - C:\Program Files\Canon\IJPLM\ijplmsvc.exe ()
PRC - C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE (CANON INC.)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe (Nuance Communications, Inc.)
PRC - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe (Sonic Solutions)
PRC - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe (Sonic Solutions)
PRC - C:\Program Files\Common Files\AOL\acs\AOLacsd.exe (AOL LLC)
PRC - c:\Program Files\Common Files\AOL\1225390439\ee\aolsoftware.exe (America Online, Inc.)
PRC - C:\Program Files\Common Files\AOL\1225390439\ee\aolsoftware.exe (America Online, Inc.)
PRC - C:\Program Files\Common Files\AOL\1225390439\ee\services\antiSpywareApp\ver2_0_28_1\AOLSP Scheduler.exe ()
PRC - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe (IVT Corporation)
PRC - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe ()
PRC - C:\Program Files\Alcatel\SpeedTouch USB\dragdiag.exe (THOMSON multimedia)


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Theme\8db51a0e07118635fb71b05f21937db8\Kies.Theme.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DummyStorePlugin\54c3c22053264729fde00785baf21eb9\DummyStorePlugin.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DevicePodcast\b07ff83c3ce2fd8d3a938889f020552d\DevicePodcast.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceVideo\aaa553d73526328d450a142814849e40\DeviceVideo.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DevicePhoto\e5334ab5e29c40a7af6223175123263b\DevicePhoto.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceMusic\233972a5ba7f8718ba70734134186b1a\DeviceMusic.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\VideoManager\e2689f807ac87966b7e78f74ab677453\VideoManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PhotoManager\c8a238c49512fddf15119a48f1c8e520\PhotoManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Podcaster\fb3e807ec2b98abd1a057ef3694499eb\Podcaster.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\ff3157a926a4c62bd7c4fc462b44d4ae\Kies.Common.DeviceServiceLib.FirmwareUpdate.FirmwareUpdateAgentHelper.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceHost\cdf08673f862b7fd1177df48dfa0bd75\DeviceHost.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Phonebook\521e8f5d3e1452cabfea9ea69659c679\Phonebook.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Plugin.Content#\7b10f766948b52ef6d261b1a1aa8ee0a\Kies.Plugin.ContentsManagerLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\MusicManager\65f0d5e5052a4a71f5a72d778fa2cbb6\MusicManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\BATPlugin\8bf212e316537432a2356c88f3bb6f4d\BATPlugin.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.StoreMa#\017429623044d5a3e9aa2aeef7d00017\Kies.Common.StoreManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.MediaDB\8bb1cf762dcfd25fa6fec281620a67e3\Kies.Common.MediaDB.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\ASF_cSharpAPI\52207264bac5068c2de665b3f41e8964\ASF_cSharpAPI.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.AllShare\3b13bd2ffd57d5a08bfb85636513922d\Kies.Common.AllShare.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\ca0b9f739dc8a16a0b45b07b6f1deae0\Kies.Common.DeviceServiceLib.FirmwareUpdate.Common.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\68bf9214584209eb5ebf209d1b95ac1e\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\5ff671ad98a74cfc1dee4a439fb8728e\Kies.Common.DeviceServiceLib.FileService.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.DevFileServ#\d1baf93e68f207b043f0861c5ee2d7ea\Interop.DevFileServiceLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\57a3553bbf6667ae14d38bdb66f605a2\Kies.Common.DeviceServiceLib.DeviceDataService.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\2c72efd53cc6951822e9782f762e0950\Kies.Common.DeviceServiceLib.Interface.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\6e4f1bc2e9b41f984d67aa1cd7f65c3d\Kies.Common.DeviceServiceLib.DeviceManagement.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\016586bd2a1964a0a519cbc522d2906d\Kies.Common.DeviceService.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.MP3FileInfo#\5f0b67eb5313c092d5b8b56426dd30e2\Interop.MP3FileInfoCOMLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.OGGFileInfo#\b2c7788a3e89dfe8758d6184bac1b663\Interop.OGGFileInfoCOMLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.PRPLAYERCOR#\7316848f01ce1da27fc2d701f32cae0d\Interop.PRPLAYERCORELib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.P3MPINTERFA#\111be4cc197cabb6340170eeb54ae535\Interop.P3MPINTERFACECTRLLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.Multime#\eef62cf0c04e638b3395fda4d258c81c\Kies.Common.Multimedia.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.MainUI\89a65c0b3dd11b28cee0f0af1185b12d\Kies.Common.MainUI.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DBManag#\2a6cd90bb628de35d70c9dba6897d013\Kies.Common.DBManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\ICSharpCode.SharpZi#\0969ff5a4924da7d8c6ebd3fca8f154b\ICSharpCode.SharpZipLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\CabLib\af22e5bb6307e2882abe5fbdb3c00c8e\CabLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.CRMMana#\c7db33ddaee23e7ec8a3458fde5b50eb\Kies.Common.CRMManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.Util\7134f52b3f25107e9868d664eed50a2f\Kies.Common.Util.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.DeviceSearc#\4f4243b3bc2e4cdf0ec6e7ad5559aa20\Interop.DeviceSearchLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Locale\83ea8d246c90eeee2b100f01994eef5b\Kies.Locale.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.MVVM\0bbdc52b6dd44363e4a194ee8bd8a460\Kies.MVVM.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.UI\8e2b0a9c69e1065931751dcb16bd5fac\Kies.UI.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\GongSolutions.Wpf.D#\7c3107cb236a66aa4602f12d23611c55\GongSolutions.Wpf.DragDrop.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Interface\7ed89054a3bdd9dbbf1cce0e0b592d78\Kies.Interface.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\7f6c86879d27a285cc97c12d59424dd0\System.ServiceProcess.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\07753c0a8ed7f9bc61b0ee718f3c779d\System.Runtime.Remoting.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\2b8c61f577f1ffdd781e18d96d97ee3a\System.Xml.Linq.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\40c7a89fe2cbf3c12a2c39e034da54cf\System.Xaml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies\f619ad24547bdefcd7ae3b6afdf99a67\Kies.ni.exe ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\0f3b0e826eaa519bd7a3cad3de4fe3f4\Microsoft.VisualBasic.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\56e40fa3c6d2f2a4200ee4e11fce57e7\System.ServiceProcess.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\b5df40c22ab563a816103629e2ca99d4\System.Runtime.Remoting.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\259f7342c8ebb1150db3df1bc4d3394c\System.Web.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\004bc6615f9c06df5c98859d35149fe6\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\b757806657fa5db2b1ed1a89b026b463\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\0c3da9004b277959e24a9fd606d3dd05\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\78157a494dc9a7e52be8840decfcd9cc\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\0f5a23bb73681b6388daccd8e250ba66\System.Data.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\cc149d08e75f8c53cd28ac926b38c370\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\2227d1559f87943255069398608d5c56\mscorlib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\b8e60f81fd56934c9f9da7b15bee3376\PresentationFramework.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\932901ff0ad5e365ffbe705d7459a37e\PresentationCore.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\af7e2da8fcdb0d788cea0638e157c54b\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\8abaedf6aecb073b22f8801aa0b8babf\WindowsBase.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\78ecbee4a7444353dce52afb9d9d795c\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Security\29e65d865f3d8f3710b44d4f7a09fbfc\System.Security.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\b519f42484e1d488662a9a8a87cb8849\System.Core.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\fc476bbac36944e352c2f547352ffa64\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\7cd4aa51f6e6b9330b8f50bba8bb62c6\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\60674dde4b56087c189f576f36f6720f\PresentationFramework.Aero.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System\f93dca0e4baa1dcb37cf75392b7c89da\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\6a1ccc1e1a79ce267d3d1808af382cd6\mscorlib.ni.dll ()
MOD - C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Program Files\Google\Google Desktop Search\gzlib.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_fr_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll ()
MOD - C:\Program Files\Panasonic\PHOTOfunSTUDIO -viewer-\RawPictureLib.pcp ()
MOD - C:\Program Files\WD\WD Anywhere Backup\sqlite3.dll ()
MOD - C:\Program Files\e-Carte Bleue LCL\ecbl-lcl.dll ()
MOD - C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MediaObj.dll ()
MOD - C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\OptCVw7.dll ()
MOD - C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSPMirage.exe ()
MOD - C:\Program Files\CyberLink\Shared Files\richvideops.dll ()
MOD - C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\ROXIPP41.dll ()
MOD - C:\Program Files\Common Files\AOL\1225390439\ee\services\antiSpywareApp\ver2_0_28_1\AOLSP Scheduler.exe ()
MOD - C:\Program Files\IVT Corporation\BlueSoleil\hcicmd.dll ()
MOD - C:\Program Files\IVT Corporation\BlueSoleil\btwin.dll ()
MOD - C:\Program Files\AOL 9.0 VRa\zlib.dll ()
MOD - C:\Program Files\AOL 9.0 VRa\xmltok.dll ()
MOD - C:\Program Files\AOL 9.0 VRa\xmlparse.dll ()


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - (SBSDWSCService) -- C:\Program Files\Spybot File not found
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (AdobeARMservice) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV - (Skype C2C Service) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (BBSvc) -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.)
SRV - (SeaPort) -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
SRV - (FsUsbExService) -- C:\Windows\System32\FsUsbExService.Exe (Teruten)
SRV - (ACDaemon) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (IJPLMSVC) -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe ()
SRV - (AOL ACS) -- C:\Program Files\Common Files\AOL\acs\AOLacsd.exe (AOL LLC)
SRV - (BlueSoleil Hid Service) -- C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe ()


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - (ZTEusbser6k) -- system32\DRIVERS\ZTEusbser6k.sys File not found
DRV - (ZTEusbnmea) -- system32\DRIVERS\ZTEusbnmea.sys File not found
DRV - (ZTEusbmdm6k) -- system32\DRIVERS\ZTEusbmdm6k.sys File not found
DRV - (NwlnkFwd) -- system32\DRIVERS\nwlnkfwd.sys File not found
DRV - (NwlnkFlt) -- system32\DRIVERS\nwlnkflt.sys File not found
DRV - (Lbd) -- system32\DRIVERS\Lbd.sys File not found
DRV - (IpInIp) -- system32\DRIVERS\ipinip.sys File not found
DRV - (blbdrive) -- C:\Windows\system32\drivers\blbdrive.sys File not found
DRV - (MBAMSwissArmy) -- C:\Windows\System32\drivers\mbamswissarmy.sys (Malwarebytes Corporation)
DRV - (aswSnx) -- C:\Windows\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (ssudmdm) -- C:\Windows\System32\drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (dg_ssudbus) -- C:\Windows\System32\drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (dgderdrv) -- C:\Windows\System32\drivers\dgderdrv.sys (Devguru Co., Ltd)
DRV - (ssadmdm) -- C:\Windows\System32\drivers\ssadmdm.sys (MCCI Corporation)
DRV - (ssadbus) -- C:\Windows\System32\drivers\ssadbus.sys (MCCI Corporation)
DRV - (ssadmdfl) -- C:\Windows\System32\drivers\ssadmdfl.sys (MCCI Corporation)
DRV - (sscdmdm) -- C:\Windows\System32\drivers\sscdmdm.sys (MCCI Corporation)
DRV - (sscdbus) -- C:\Windows\System32\drivers\sscdbus.sys (MCCI Corporation)
DRV - (sscdmdfl) -- C:\Windows\System32\drivers\sscdmdfl.sys (MCCI Corporation)
DRV - (FsUsbExDisk) -- C:\Windows\System32\FsUsbExDisk.Sys ()
DRV - (ssm_mdm) -- C:\Windows\System32\drivers\ssm_mdm.sys (MCCI Corporation)
DRV - (ssm_bus) -- C:\Windows\System32\drivers\ssm_bus.sys (MCCI Corporation)
DRV - (ssm_mdfl) -- C:\Windows\System32\drivers\ssm_mdfl.sys (MCCI Corporation)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (Ser2pl) -- C:\Windows\System32\drivers\ser2pl.sys (Prolific Technology Inc.)
DRV - (StarOpen) -- C:\Windows\System32\drivers\StarOpen.sys ()
DRV - (wanatw) -- C:\Windows\System32\drivers\wanatw4.sys (America Online, Inc.)
DRV - (RTL8023xp) -- C:\Windows\System32\drivers\Rtnicxp.sys (Realtek Semiconductor Corporation )
DRV - (Afc) -- C:\Windows\System32\drivers\afc.sys (Arcsoft, Inc.)
DRV - (Btcsrusb) -- C:\Windows\System32\drivers\btcusb.sys (IVT Corporation)
DRV - (BTHidEnum) -- C:\Windows\System32\drivers\VBTEnum.sys ()
DRV - (BTHidMgr) -- C:\Windows\System32\drivers\BTHidMgr.sys (IVT Corporation)
DRV - (BlueletAudio) -- C:\Windows\System32\drivers\blueletaudio.sys (IVT Corporation)
DRV - (BT) -- C:\Windows\System32\drivers\BtNetDrv.sys (IVT Corporation)
DRV - (alcan5ln) -- C:\Windows\System32\drivers\alcan5ln.sys (THOMSON multimedia)
DRV - (alcaudsl) -- C:\Windows\System32\drivers\alcaudsl.sys (THOMSON multimedia)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{443789B7-F39C-4b5c-9287-DA72D38F4FE6}: "URL" = http://recherche.aol.fr/aolcom/search?invocationType=IEtoolbar.default&query={searchTerms}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\..\SearchScopes\{7D7AE29F-C990-4602-A381-7B85EAA69B32}: "URL" = http://slirsredirect.search.aol.com/redirector/sredir?sredir=3389&q={searchTerms}&rp=&s_it=tb50-ie-aolfr-chromesbox-fr-fr

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS02
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://home.microsoft.com/access/allinone.asp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.sfr.fr/kit/adsl/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKCU\..\SearchScopes\${searchCLSID}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{443789B7-F39C-4b5c-9287-DA72D38F4FE6}: "URL" = http://search.aol.com/aolcom/search?query={searchTerms}&invocationType=msie70a
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rlz=1I7PBEA_fr&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKCU\..\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E}: "URL" = http://127.0.0.1:4664/search&s=2mR6GCO04iTOWvWmnHOHZwVETo4?q={searchTerms}
IE - HKCU\..\SearchScopes\{7a14ea26-cbb6-4fd1-b802-49415c8e9ee6}: "URL" = http://www.wibeez.com/annuaire?search&q={searchTerms}
IE - HKCU\..\SearchScopes\{7D7AE29F-C990-4602-A381-7B85EAA69B32}: "URL" = http://slirsredirect.search.aol.com/redirector/sredir?sredir=3389&q={searchTerms}&rp=&s_it=tb50-ie-aolfr-chromesbox-fr-fr
IE - HKCU\..\SearchScopes\{BE4A48EC-8ED5-4DE7-A1FB-6796BB9AEC60}: "URL" = http://search.yahoo.com/search?ei=utf-8&fr=vmn&type=vdio2&p={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledAddons: %7B6352b5df-51f7-4ddc-8f17-90f7c05ca915%7D:5.94.1.7429
FF - prefs.js..extensions.enabledAddons: %7BF8A55C97-3DB6-4961-A81D-0DE0080E53CB%7D:0.9.5
FF - prefs.js..extensions.enabledAddons: %7BCAFEEFAC-0016-0000-0033-ABCDEFFEDCBA%7D:6.0.33
FF - prefs.js..extensions.enabledAddons: %7BCAFEEFAC-0016-0000-0035-ABCDEFFEDCBA%7D:6.0.35
FF - prefs.js..extensions.enabledAddons: %7BCAFEEFAC-0016-0000-0037-ABCDEFFEDCBA%7D:6.0.37
FF - prefs.js..extensions.enabledAddons: %7B0153E448-190B-4987-BDE1-F256CADA672F%7D:15.0.6
FF - prefs.js..extensions.enabledAddons: wrc%40avast.com:7.0.1474
FF - prefs.js..extensions.enabledAddons: plugin%40searchgby.com:0.9.70
FF - prefs.js..extensions.enabledAddons: plugin%40analytic-s.com:1.0.0
FF - prefs.js..extensions.enabledAddons: plugin%40yontoo.com:1.20.00
FF - prefs.js..extensions.enabledAddons: %7B8A9386B4-E958-4c4c-ADF4-8F26DB3E4829%7D:2.6.8
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1


FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/MycameraPlugin: C:\Program Files\Canon\MyCamera Download Plugin\NPCIG.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.6.14: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.6.14: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.6.14: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.6.14: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=15.0.6.14: c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{0153E448-190B-4987-BDE1-F256CADA672F}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2013/02/03 17:39:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012/11/09 19:25:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\support@2yourface.com: C:\Users\Jean\AppData\Roaming\2YourFace\ffextension [2013/02/03 17:39:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ocr@babylon.com: C:\Program Files\Babylon\Babylon-Pro\Utils\ocr@babylon.com
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/12/21 12:16:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/01/09 17:43:56 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\support@2yourface.com: C:\Users\Jean\AppData\Roaming\2YourFace\ffextension [2013/02/03 17:39:09 | 000,000,000 | ---D | M]

[2010/02/11 10:13:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jean\AppData\Roaming\mozilla\Extensions
[2013/02/03 09:40:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jean\AppData\Roaming\mozilla\Firefox\Profiles\h7ss5f6e.default\extensions
[2011/12/20 13:23:42 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Jean\AppData\Roaming\mozilla\Firefox\Profiles\h7ss5f6e.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/12/20 13:23:49 | 000,000,000 | ---D | M] ("AOL France Toolbar") -- C:\Users\Jean\AppData\Roaming\mozilla\Firefox\Profiles\h7ss5f6e.default\extensions\{6352b5df-51f7-4ddc-8f17-90f7c05ca915}
[2013/02/03 17:39:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jean\AppData\Roaming\mozilla\Firefox\Profiles\h7ss5f6e.default\extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}
[2011/04/29 07:26:41 | 000,000,000 | ---D | M] (Download Manager Tweak) -- C:\Users\Jean\AppData\Roaming\mozilla\Firefox\Profiles\h7ss5f6e.default\extensions\{F8A55C97-3DB6-4961-A81D-0DE0080E53CB}
[2013/01/20 11:58:44 | 000,000,000 | ---D | M] ("Analytics") -- C:\Users\Jean\AppData\Roaming\mozilla\Firefox\Profiles\h7ss5f6e.default\extensions\plugin@analytic-s.com
[2013/01/20 11:58:27 | 000,000,000 | ---D | M] ("SearchGBY") -- C:\Users\Jean\AppData\Roaming\mozilla\Firefox\Profiles\h7ss5f6e.default\extensions\plugin@searchgby.com
[2013/02/03 17:39:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jean\AppData\Roaming\mozilla\Firefox\Profiles\h7ss5f6e.default\extensions\plugin@yontoo.com
[2011/04/29 07:27:20 | 000,002,063 | ---- | M] () -- C:\Users\Jean\AppData\Roaming\mozilla\firefox\profiles\h7ss5f6e.default\searchplugins\aol-search.xml
[2009/12/29 14:59:16 | 000,003,713 | ---- | M] () -- C:\Users\Jean\AppData\Roaming\mozilla\firefox\profiles\h7ss5f6e.default\searchplugins\Wibeez.xml
[2012/12/21 12:16:55 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2007/10/10 07:11:52 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2012/11/01 21:27:53 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012/06/28 08:23:58 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2012/09/02 09:44:13 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
[2012/10/21 09:37:05 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
[2012/11/09 19:25:05 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST5\WEBREP\FF
[2013/02/03 17:39:09 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2012/11/29 09:27:51 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/08/26 08:42:09 | 000,129,176 | ---- | M] (RealPlayer) -- C:\Program Files\mozilla firefox\plugins\nprpplugin.dll
[2012/11/29 09:27:12 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/11/29 09:27:12 | 000,002,058 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

[color=#E56717]========== Chrome ==========[/color]

CHR - homepage: http://www.iadah.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.iadah.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.97\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin8.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.97\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.97\pdf.dll
CHR - plugin: downloadUpdater (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdnu.dll
CHR - plugin: downloadUpdater2 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdnupdater2.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: NPCIG.dll (Enabled) = C:\Program Files\Canon\MyCamera Download Plugin\NPCIG.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: MetaStream 3 Plugin (Enabled) = C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Yahoo! activeX Plug-in Bridge (Enabled) = C:\Program Files\Yahoo!\Common\npyaxmpb.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Users\Jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Recherche Google = C:\Users\Jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: avast! WebRep = C:\Users\Jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1474_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\Jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
CHR - Extension: Skype Click to Call = C:\Users\Jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0\
CHR - Extension: Gmail = C:\Users\Jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2012/12/18 18:58:20 | 000,000,905 | RHS- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Objet d'aide à la navigation SFR) - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\Neuf\Kit\SFRNavErrorHelper.dll (SFR)
O2 - BHO: (2YourFace Addon) - {1185823F-F22F-4027-80E5-4F68ACD5DE5E} - C:\Users\Jean\AppData\Roaming\2YourFace\bho.dll ()
O2 - BHO: (Shopping Assistant Plugin) - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files\PriceGong\2.6.8\PriceGongIE.dll (PriceGong)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AOL Toolbar Launcher) - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll (AOL)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll (Packard Bell)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll (Yontoo LLC)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll (AOL)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar avec bloqueur de fenêtres pop-up) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll (AOL)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [Garmin Lifetime Updater] C:\Program Files\Garmin\Lifetime Updater\GarminLifetime.exe (Garmin)
O4 - HKLM..\Run: [HostManager] C:\Program Files\Common Files\AOL\1225390439\ee\aolsoftware.exe (America Online, Inc.)
O4 - HKLM..\Run: [MSPService] C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSPMirage.exe ()
O4 - HKLM..\Run: [OpwareSE4] C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe (Sonic Solutions)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SpeedTouch USB Diagnostics] C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe (THOMSON multimedia)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [toolbar_eula_launcher] C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe ( )
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
O4 - HKCU..\Run: [AOL Fast Start] C:\Program Files\AOL 9.0 VRa\AOL.EXE (AOL)
O4 - HKCU..\Run: [Connexion SFR 9props.exe] C:\Program Files\Neuf\Kit\9props.exe (SFR)
O4 - HKCU..\Run: [FileHippo.com] C:\Program Files\FileHippo.com\UpdateChecker.exe (FileHippo.com)
O4 - HKCU..\Run: [KiesAirMessage] C:\Program Files\Samsung\Kies\KiesAirMessage.exe (Samsung Electronics)
O4 - HKCU..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
O4 - HKCU..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe (Samsung)
O4 - HKCU..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKCU..\Run: [Neuf Media Center] C:\Program Files\SFR\Media Center\MediaCenter.exe (SFR)
O4 - HKCU..\Run: [SmpcSys] C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe (Packard Bell BV)
O4 - HKCU..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - Startup: C:\Users\Jean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\2YourFace_Updater.lnk = C:\Users\Jean\AppData\Roaming\2YourFace\Updater.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 1
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D1E1F7ED622A0E5D.dll/cmsidewiki.html File not found
O9 - Extra Button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll (AOL)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - Reg Error: Key error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O15 - HKCU\..Trusted Domains: lcl.fr ([particuliers.secure] https in Sites de confiance)
O15 - HKCU\..Trusted Domains: localhost ([]http in Intranet local)
O16 - DPF: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Reg Error: Key error.)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A0229860-95D4-4ED1-8861-A877A4120089}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Jean\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O24 - Desktop BackupWallPaper: C:\Users\Jean\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{cfecc653-d2b1-11dd-a0b2-00030d000001}\Shell - "" = AutoRun
O33 - MountPoints2\{cfecc653-d2b1-11dd-a0b2-00030d000001}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk /p \??\F:)
O34 - HKLM BootExecute: (autocheck autochk /p \??\E:)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

MsConfig - State: "services" - 0
MsConfig - State: "startup" - 0

ActiveX: {0291E591-EA41-4c82-8106-3DC6CE7F7664} - Reg Error: Value error.
ActiveX: {03F998B2-0E00-11D3-A498-00104B6EB52E} - Viewpoint Media Player
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {166B1BCA-3F9C-11CF-8075-444553540000} - Adobe Shockwave Director 10.1
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} -
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0
ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Adobe Shockwave Director 10.1
ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906)
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} -
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6C298884-91FD-408C-9D90-5A59D2C29FD1} - Microsoft .NET Framework 1.1 Security Update (KB2742597)
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Dossiers Web
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files\Google\Chrome\Application\24.0.1312.56\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
ActiveX: {8F736E10-8E5C-4399-A532-D0C00A406227} - Microsoft .NET Framework 1.1 Security Update (KB2698023)
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.mkdmp3enc - C:\PROGRA~1\CYBERL~1\MAGICS~1\Kernel\Burner\MKDMP3Enc.ACM File not found
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2013/02/01 10:32:01 | 000,000,000 | ---D | C] -- C:\Users\Jean\AppData\Local\{D676A56E-8C44-42CE-9378-895DE6E38F99}
[2013/01/29 18:13:38 | 000,040,776 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2013/01/23 16:10:08 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\CrashDump
[2013/01/20 12:16:32 | 000,000,000 | ---D | C] -- C:\Users\Jean\AppData\Roaming\ObviousIdea
[2013/01/20 11:59:15 | 000,000,000 | ---D | C] -- C:\Program Files\Yontoo
[2013/01/20 11:58:39 | 000,000,000 | ---D | C] -- C:\Users\Jean\AppData\Roaming\2YourFace
[2013/01/20 11:58:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer
[2013/01/20 11:58:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PriceGong
[2013/01/20 11:58:25 | 000,000,000 | ---D | C] -- C:\Program Files\SearchGBY
[2013/01/20 11:58:25 | 000,000,000 | ---D | C] -- C:\Program Files\PriceGong
[2013/01/20 11:57:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ObviousIdea
[2013/01/20 11:57:18 | 000,000,000 | ---D | C] -- C:\Program Files\ObviousIdea
[2013/01/12 14:15:28 | 000,000,000 | ---D | C] -- C:\Users\Jean\AppData\Local\{43FCEB39-DCDC-4EE9-B170-DA07748D43D3}
[2013/01/09 17:57:00 | 002,048,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013/01/09 17:55:38 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2013/02/03 19:30:04 | 000,000,338 | ---- | M] () -- C:\Windows\tasks\Extension de garantie.job
[2013/02/03 19:28:32 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013/02/03 19:10:45 | 000,729,236 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2013/02/03 19:10:45 | 000,640,482 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/02/03 19:10:45 | 000,149,122 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2013/02/03 19:10:45 | 000,122,470 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/02/03 19:04:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/02/03 18:54:02 | 000,001,056 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/02/03 18:44:30 | 000,052,597 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2013/02/03 18:44:29 | 000,052,597 | ---- | M] () -- C:\ProgramData\nvModes.001
[2013/02/03 18:43:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/02/03 17:56:50 | 000,001,803 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2013/02/03 17:56:47 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2013/02/03 17:56:30 | 000,000,372 | ---- | M] () -- C:\Windows\tasks\RNUpgradeHelperLogonPrompt_Jean.job
[2013/02/03 17:56:22 | 000,002,449 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WD Anywhere Backup Launcher.lnk
[2013/02/03 17:56:11 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/02/03 17:56:04 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013/02/03 17:56:04 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013/01/29 18:14:17 | 000,040,776 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2013/01/25 10:01:09 | 000,001,934 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/01/23 20:37:59 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2013/01/22 13:17:18 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013/01/22 13:17:18 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013/01/20 11:58:47 | 000,000,829 | ---- | M] () -- C:\Users\Jean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\2YourFace_Updater.lnk
[2013/01/20 11:57:23 | 000,000,976 | ---- | M] () -- C:\Users\Jean\Application Data\Microsoft\Internet Explorer\Quick Launch\Light Image Resizer 4.lnk
[2013/01/20 11:57:23 | 000,000,952 | ---- | M] () -- C:\Users\Jean\Desktop\Light Image Resizer 4.lnk
[2013/01/17 01:28:58 | 000,232,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2013/01/15 09:27:50 | 000,001,958 | ---- | M] () -- C:\Users\Jean\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/01/14 22:57:18 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\ReclaimerUpdateXML_Jean.job
[2013/01/09 19:15:31 | 000,363,392 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2013/01/20 11:58:47 | 000,000,829 | ---- | C] () -- C:\Users\Jean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\2YourFace_Updater.lnk
[2013/01/20 11:57:23 | 000,000,976 | ---- | C] () -- C:\Users\Jean\Application Data\Microsoft\Internet Explorer\Quick Launch\Light Image Resizer 4.lnk
[2013/01/20 11:57:23 | 000,000,952 | ---- | C] () -- C:\Users\Jean\Desktop\Light Image Resizer 4.lnk
[2012/11/09 18:51:32 | 000,001,571 | ---- | C] () -- C:\Windows\Faxcpp1.ini
[2012/11/09 18:51:32 | 000,000,422 | ---- | C] () -- C:\Windows\Faxcpp.ini
[2012/11/09 18:50:56 | 000,040,960 | ---- | C] () -- C:\Windows\System32\Twscan32.dll
[2012/11/09 18:50:55 | 000,241,664 | ---- | C] () -- C:\Windows\System32\Image32.dll
[2012/11/09 18:50:55 | 000,122,880 | ---- | C] () -- C:\Windows\System32\Png32.dll
[2012/11/09 18:50:55 | 000,110,592 | ---- | C] () -- C:\Windows\System32\Jpeg32.dll
[2012/11/09 18:50:55 | 000,090,112 | ---- | C] () -- C:\Windows\System32\Tga32.dll
[2012/11/09 18:50:55 | 000,081,920 | ---- | C] () -- C:\Windows\System32\Pcx32.dll
[2011/06/07 10:13:38 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2011/06/07 10:13:38 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2011/06/07 10:13:38 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2011/06/07 10:13:38 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2011/06/07 10:13:38 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2010/04/23 09:08:12 | 000,052,597 | ---- | C] () -- C:\ProgramData\nvModes.001
[2010/04/23 09:08:11 | 000,052,597 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2010/04/16 14:59:41 | 000,031,007 | ---- | C] () -- C:\Users\Jean\AppData\Roaming\UserTile.png
[2009/11/12 18:07:07 | 000,549,888 | ---- | C] () -- C:\Users\Jean\Works9_KB967044_fr-FR.msp
[2009/11/12 18:01:16 | 015,916,544 | ---- | C] () -- C:\Users\Jean\ogl.msp
[2008/11/02 22:27:12 | 000,000,290 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2008/02/22 18:34:16 | 000,001,356 | ---- | C] () -- C:\Users\Jean\AppData\Local\d3d9caps.dat
[2008/01/06 19:16:02 | 000,001,024 | ---- | C] () -- C:\Users\Jean\.rnd
[2008/01/01 17:29:01 | 000,000,000 | ---- | C] () -- C:\ProgramData\LauncherAccess.dt
[2007/12/18 18:39:24 | 000,000,950 | ---- | C] () -- C:\Users\Jean\AppData\Roaming\wklnhst.dat
[2007/12/15 20:13:43 | 000,048,128 | ---- | C] () -- C:\Users\Jean\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/12/15 20:06:26 | 000,000,092 | ---- | C] () -- C:\Users\Jean\AppData\Local\fusioncache.dat

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2006/11/02 13:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 18:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 07:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 07:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]

[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2011/04/06 20:14:06 | 000,353,792 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\dxtmsft.dll
[2011/04/06 20:14:06 | 000,223,232 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\dxtrans.dll
[2006/11/02 10:46:04 | 000,380,957 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\expsrv.dll

[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
Invalid Environment Variable: alluserprofile
Invalid Environment Variable: alluserprofile

[color=#A23BEC]< %appdata%\*. >[/color]
[2013/02/03 17:39:09 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\2YourFace
[2010/12/09 10:57:34 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Adobe
[2012/08/31 20:25:58 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\AOL
[2011/12/25 15:38:14 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Apple Computer
[2011/01/04 08:51:36 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\ArcSoft
[2010/04/04 09:29:31 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Canneverbe Limited
[2011/12/20 13:44:54 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Canon
[2010/12/26 11:48:41 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\CANON INC
[2007/12/15 20:06:29 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\CyberLink
[2012/08/31 21:21:22 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\DriverCure
[2012/02/25 19:27:25 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\EasyBurner
[2010/11/30 12:11:38 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\FreeAudioPack
[2010/11/30 12:17:41 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\FreeCDRipper
[2011/12/25 10:18:20 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Garmin
[2008/01/01 16:51:23 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Google
[2010/06/04 18:44:57 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Icones
[2007/12/15 20:05:47 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Identities
[2008/12/22 13:39:19 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\InfraRecorder
[2008/12/28 18:40:13 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\InstallShield
[2009/10/01 08:18:17 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Macromedia
[2009/12/10 21:19:08 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Malwarebytes
[2006/11/02 13:37:34 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Media Center Programs
[2012/02/25 19:24:25 | 000,000,000 | --SD | M] -- C:\Users\Jean\AppData\Roaming\Microsoft
[2007/12/15 21:32:05 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Microsoft Web Folders
[2010/02/11 10:13:37 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Mozilla
[2008/01/06 19:16:33 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Nero
[2011/10/01 08:16:39 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Nitro PDF
[2013/01/22 12:14:31 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\ObviousIdea
[2008/03/25 12:29:07 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Packard Bell
[2008/12/28 18:44:17 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Panasonic
[2010/04/16 14:59:41 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\PeerNetworking
[2011/12/17 10:36:53 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Real
[2012/05/25 14:05:24 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\RealNetworks
[2007/12/25 18:37:52 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Roxio
[2012/11/15 11:57:04 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Samsung
[2008/01/07 15:43:30 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\ScanSoft
[2012/08/24 15:52:21 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Skype
[2009/08/29 08:42:11 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Snapfish
[2012/08/31 21:21:22 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\SpeedMaxPc
[2012/08/25 11:45:54 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Systweak
[2007/12/15 20:32:51 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Talkback
[2012/02/10 17:12:12 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Temp
[2008/04/09 11:23:28 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Template
[2011/01/09 10:17:30 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\U3
[2010/08/01 15:21:50 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Uniblue
[2011/06/18 18:26:37 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\vlc
[2013/01/20 12:05:55 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\VSO
[2009/07/13 11:08:28 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\WD
[2011/08/01 20:29:16 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\Windows Live Writer
[2007/12/15 20:24:51 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\You've Got Pictures Screensaver
[2013/01/21 22:29:19 | 000,000,000 | ---D | M] -- C:\Users\Jean\AppData\Roaming\ZoomBrowser EX

[color=#A23BEC]< %appdata%\*.exe /s >[/color]
[2012/04/17 13:45:40 | 000,478,016 | ---- | M] () -- C:\Users\Jean\AppData\Roaming\2YourFace\FF8Installer.exe
[2013/01/20 11:58:43 | 000,073,861 | ---- | M] (2YourFace.com) -- C:\Users\Jean\AppData\Roaming\2YourFace\uninst.exe
[2012/04/17 13:45:42 | 000,224,576 | ---- | M] () -- C:\Users\Jean\AppData\Roaming\2YourFace\Updater.exe
[2012/04/17 13:45:42 | 000,040,176 | ---- | M] (OutBrowse.com) -- C:\Users\Jean\AppData\Roaming\2YourFace\version.exe
[2008/04/18 11:03:34 | 000,008,854 | R--- | M] () -- C:\Users\Jean\AppData\Roaming\Microsoft\Installer\{B95FDFCC-2476-4E74-B6A7-B0AE5784BF4B}\ARPPRODUCTICON.exe
[2008/04/18 11:03:34 | 000,278,528 | R--- | M] (Macrovision Corporation) -- C:\Users\Jean\AppData\Roaming\Microsoft\Installer\{B95FDFCC-2476-4E74-B6A7-B0AE5784BF4B}\NewShortcut11_B95FDFCC24764E74B6A7B0AE5784BF4B.exe
[2008/04/18 11:03:34 | 000,278,528 | R--- | M] (Macrovision Corporation) -- C:\Users\Jean\AppData\Roaming\Microsoft\Installer\{B95FDFCC-2476-4E74-B6A7-B0AE5784BF4B}\NewShortcut1_B95FDFCC24764E74B6A7B0AE5784BF4B.exe
[2008/04/18 11:03:34 | 000,008,854 | R--- | M] () -- C:\Users\Jean\AppData\Roaming\Microsoft\Installer\{B95FDFCC-2476-4E74-B6A7-B0AE5784BF4B}\UNINST_Uninstall_P_B95FDFCC24764E74B6A7B0AE5784BF4B.exe
[2011/06/28 06:32:22 | 081,122,288 | ---- | M] (Samsung Electronics Co., Ltd. ) -- C:\Users\Jean\AppData\Roaming\Microsoft\Windows\Templates\SamsungKiesSetup.exe
[2012/08/17 07:48:14 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Jean\AppData\Roaming\Real\Update\temp\~Upg0\rnupgagent.exe
[2012/12/15 19:27:03 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Jean\AppData\Roaming\Real\Update\temp\~Upg1\rnupgagent.exe
[2012/12/28 19:27:46 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Jean\AppData\Roaming\Real\Update\temp\~Upg2\rnupgagent.exe
[2013/01/08 21:12:56 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Jean\AppData\Roaming\Real\Update\temp\~Upg3\rnupgagent.exe
[2012/12/15 19:27:03 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Jean\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\rnupgagent.exe
[2012/12/03 15:35:10 | 000,967,608 | ---- | M] (Samsung) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Kies.exe
[2012/12/03 15:35:10 | 000,298,424 | ---- | M] () -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesAgent.exe
[2012/11/01 05:16:42 | 000,577,536 | ---- | M] (Samsung Electronics) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesAirMessage.exe
[2012/12/03 15:35:14 | 000,277,432 | ---- | M] () -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesDriverInstaller.exe
[2012/12/03 15:35:12 | 000,309,688 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesTrayAgent.exe
[2012/12/03 15:24:52 | 000,171,008 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\ConnectionManager.exe
[2012/12/03 15:27:54 | 000,332,800 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceDataService.exe
[2012/12/03 15:25:48 | 000,689,152 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceManager.exe
[2012/12/03 15:35:14 | 000,067,512 | ---- | M] (Samsung) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\Kies_Tutorial.exe
[2012/12/03 15:35:22 | 000,063,416 | ---- | M] () -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\RegisterCOM.exe
[2012/11/28 10:46:40 | 000,060,888 | ---- | M] (Samsung) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AdminDelegator.exe
[2012/11/28 10:46:40 | 000,088,024 | ---- | M] (Samsung) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentInstaller.exe
[2012/11/28 10:46:40 | 000,077,264 | ---- | M] (Samsung) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentUpdate.exe
[2012/12/03 15:35:18 | 000,843,704 | ---- | M] (Samsung) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\KiesPDLR.exe
[2012/12/03 15:35:20 | 003,767,464 | ---- | M] (Freeware) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\MediaModules\MyFreeCodecPack.exe
[2012/12/03 15:35:20 | 000,601,528 | ---- | M] (ml) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Updater\Kies.Update.exe
[2012/12/20 10:44:26 | 001,476,104 | ---- | M] (Samsung) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\Kies.exe
[2012/12/20 10:44:26 | 000,531,976 | ---- | M] () -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesAgent.exe
[2012/12/18 02:10:18 | 000,578,560 | ---- | M] (Samsung Electronics) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesAirMessage.exe
[2012/12/20 10:44:30 | 000,278,024 | ---- | M] () -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesDriverInstaller.exe
[2012/12/20 10:44:28 | 000,310,280 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesTrayAgent.exe
[2012/12/20 10:34:34 | 000,171,008 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\ConnectionManager.exe
[2012/12/20 10:37:18 | 000,332,800 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\DeviceDataService.exe
[2012/12/20 10:35:24 | 000,689,152 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\DeviceManager.exe
[2012/12/20 10:44:30 | 000,068,104 | ---- | M] (Samsung) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\Kies_Tutorial.exe
[2012/12/20 10:44:38 | 000,066,056 | ---- | M] () -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\RegisterCOM.exe
[2012/12/18 02:07:40 | 000,060,888 | ---- | M] (Samsung) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\AdminDelegator.exe
[2012/12/18 02:07:40 | 000,088,024 | ---- | M] (Samsung) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\AgentInstaller.exe
[2012/12/18 02:07:40 | 000,077,264 | ---- | M] (Samsung) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\AgentUpdate.exe
[2012/12/20 10:44:32 | 000,844,296 | ---- | M] (Samsung) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\KiesPDLR.exe
[2012/12/20 10:44:34 | 003,768,368 | ---- | M] (Freeware) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\MediaModules\MyFreeCodecPack.exe
[2012/12/20 10:44:36 | 000,602,120 | ---- | M] (ml) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\Updater\Kies.Update.exe
[2012/12/03 15:35:20 | 000,601,528 | ---- | M] (ml) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Temp\Kies.Update.exe
[2012/12/20 10:44:36 | 000,602,120 | ---- | M] (ml) -- C:\Users\Jean\AppData\Roaming\Samsung\Kies\UpdateTemp\Updater\Kies.Update.exe
[2007/10/23 08:27:20 | 000,110,592 | ---- | M] () -- C:\Users\Jean\AppData\Roaming\U3\110133080F01497D\cleanup.exe
[2007/10/23 08:22:56 | 003,350,528 | ---- | M] (SanDisk Corporation) -- C:\Users\Jean\AppData\Roaming\U3\110133080F01497D\Launchpad Removal.exe
[2007/10/23 09:14:38 | 004,632,576 | ---- | M] () -- C:\Users\Jean\AppData\Roaming\U3\110133080F01497D\LaunchPad.exe
[2007/10/23 08:44:48 | 000,054,584 | ---- | M] () -- C:\Users\Jean\AppData\Roaming\U3\110133080F01497D\U3AccessGrant.exe
[2007/10/23 08:27:20 | 000,110,592 | ---- | M] () -- C:\Users\Jean\AppData\Roaming\U3\temp\cleanup.exe
[2007/10/23 08:22:56 | 003,350,528 | -H-- | M] (SanDisk Corporation) -- C:\Users\Jean\AppData\Roaming\U3\temp\Launchpad Removal.exe

[color=#A23BEC]< %systemdrive%\*. >[/color]
[2009/12/29 15:01:44 | 000,000,000 | -HSD | M] -- C:\$Recycle.Bin
[2008/03/24 15:34:01 | 000,000,000 | ---D | M] -- C:\Anuman Interactive
[2009/05/27 20:13:18 | 000,000,000 | -HSD | M] -- C:\boot
[2006/11/02 14:02:03 | 000,000,000 | -HSD | M] -- C:\Documents and Settings
[2008/02/11 11:56:47 | 000,000,000 | ---D | M] -- C:\drivers
[2012/02/28 20:56:54 | 000,000,000 | -HSD | M] -- C:\found.000
[2008/04/24 17:23:56 | 000,000,000 | ---D | M] -- C:\LAYOUTS
[2008/12/15 20:43:24 | 000,000,000 | ---D | M] -- C:\My Music
[2008/03/22 11:12:23 | 000,000,000 | ---D | M] -- C:\PerfLogs
[2013/02/03 17:39:09 | 000,000,000 | ---D | M] -- C:\Program Files
[2013/02/03 17:39:09 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2008/04/24 17:26:31 | 000,000,000 | ---D | M] -- C:\STOMP
[2013/02/03 19:29:06 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2012/11/24 17:46:29 | 000,000,000 | ---D | M] -- C:\Temp
[2008/11/19 21:03:48 | 000,000,000 | R--D | M] -- C:\Users
[2007/10/10 18:20:16 | 000,000,000 | -H-D | M] -- C:\WAUUPGRD
[2013/02/03 17:57:36 | 000,000,000 | ---D | M] -- C:\Windows

[color=#A23BEC]< %systemdrive%\*.exe >[/color]
[2007/11/07 07:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe
[2011/06/18 18:23:27 | 005,918,464 | ---- | M] (SFR) -- C:\tvpc.exe

[color=#A23BEC]< %programfiles%\*. >[/color]
[2011/10/13 18:11:52 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2007/12/15 20:43:19 | 000,000,000 | ---D | M] -- C:\Program Files\Alcatel
[2010/09/11 08:40:10 | 000,000,000 | ---D | M] -- C:\Program Files\Alwil Software
[2008/10/30 19:16:05 | 000,000,000 | ---D | M] -- C:\Program Files\AOL
[2008/11/02 22:22:41 | 000,000,000 | ---D | M] -- C:\Program Files\AOL 9.0 VR
[2013/02/03 17:39:09 | 000,000,000 | ---D | M] -- C:\Program Files\AOL 9.0 VRa
[2011/04/26 08:29:01 | 000,000,000 | ---D | M] -- C:\Program Files\AOL France Toolbar
[2008/01/23 18:48:43 | 000,000,000 | ---D | M] -- C:\Program Files\AOL Pictures
[2007/12/31 17:36:19 | 000,000,000 | ---D | M] -- C:\Program Files\AOL Toolbar
[2011/07/08 09:23:17 | 000,000,000 | ---D | M] -- C:\Program Files\Apple Software Update
[2008/12/28 18:45:23 | 000,000,000 | ---D | M] -- C:\Program Files\ArcSoft
[2010/02/07 15:59:39 | 000,000,000 | ---D | M] -- C:\Program Files\Atmosphere Lite
[2011/10/14 22:38:52 | 000,000,000 | ---D | M] -- C:\Program Files\Bonjour
[2012/02/05 09:42:07 | 000,000,000 | ---D | M] -- C:\Program Files\Canon
[2008/01/07 15:28:17 | 000,000,000 | -H-D | M] -- C:\Program Files\CanonBJ
[2012/12/25 22:16:20 | 000,000,000 | ---D | M] -- C:\Program Files\CCleaner
[2012/12/31 18:11:42 | 000,000,000 | ---D | M] -- C:\Program Files\CDBurnerXP
[2008/05/08 16:45:55 | 000,000,000 | ---D | M] -- C:\Program Files\CeQuadrat
[2008/04/20 18:44:08 | 000,000,000 | ---D | M] -- C:\Program Files\Click'N Design 3D (V5)
[2009/06/28 09:10:17 | 000,000,000 | ---D | M] -- C:\Program Files\Codyssey
[2012/10/21 09:37:48 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2009/11/12 18:19:58 | 000,000,000 | ---D | M] -- C:\Program Files\Convers3
[2007/10/10 07:19:41 | 000,000,000 | ---D | M] -- C:\Program Files\CyberLink
[2011/04/27 07:25:23 | 000,000,000 | ---D | M] -- C:\Program Files\DevNet
[2012/08/24 15:32:26 | 000,000,000 | ---D | M] -- C:\Program Files\e-Carte Bleue Caisse d'Epargne
[2009/03/08 11:16:57 | 000,000,000 | ---D | M] -- C:\Program Files\e-Carte Bleue LCL
[2012/02/25 19:25:50 | 000,000,000 | ---D | M] -- C:\Program Files\EasyBurner
[2007/12/15 19:54:06 | 000,000,000 | -HSD | M] -- C:\Program Files\Fichiers communs
[2010/08/31 20:08:31 | 000,000,000 | ---D | M] -- C:\Program Files\FileHippo.com
[2010/11/30 12:20:12 | 000,000,000 | ---D | M] -- C:\Program Files\Free Audio Pack
[2008/01/04 20:04:06 | 000,000,000 | ---D | M] -- C:\Program Files\Free Easy Burner
[2011/12/25 10:17:35 | 000,000,000 | ---D | M] -- C:\Program Files\Garmin
[2011/11/25 15:39:09 | 000,000,000 | ---D | M] -- C:\Program Files\Google
[2007/10/10 07:11:22 | 000,000,000 | ---D | M] -- C:\Program Files\HDReg
[2012/10/13 18:00:06 | 000,000,000 | ---D | M] -- C:\Program Files\INFORAD
[2012/10/13 18:00:05 | 000,000,000 | ---D | M] -- C:\Program Files\INFORAD_DRIVERS
[2011/04/24 14:16:36 | 000,000,000 | ---D | M] -- C:\Program Files\InfraRecorder
[2012/11/09 19:00:13 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2012/12/12 19:03:40 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2012/12/14 14:05:11 | 000,000,000 | ---D | M] -- C:\Program Files\iPod
[2011/01/28 18:00:55 | 000,000,000 | ---D | M] -- C:\Program Files\iPod(8)
[2012/12/14 14:06:05 | 000,000,000 | ---D | M] -- C:\Program Files\iTunes
[2011/01/28 18:01:37 | 000,000,000 | ---D | M] -- C:\Program Files\iTunes(9)
[2008/01/06 19:49:11 | 000,000,000 | ---D | M] -- C:\Program Files\IVT Corporation
[2012/10/21 09:36:48 | 000,000,000 | ---D | M] -- C:\Program Files\Java
[2009/02/20 18:51:35 | 000,000,000 | ---D | M] -- C:\Program Files\Lavasoft
[2007/12/15 20:24:51 | 000,000,000 | ---D | M] -- C:\Program Files\Learn2.com
[2012/11/09 18:50:24 | 000,000,000 | ---D | M] -- C:\Program Files\LifeScan
[2012/12/28 12:21:54 | 000,000,000 | ---D | M] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/12/26 14:31:26 | 000,000,000 | ---D | M] -- C:\Program Files\MarkAny
[2009/01/01 11:31:42 | 000,000,000 | ---D | M] -- C:\Program Files\McAfee.com
[2008/04/18 11:03:26 | 000,000,000 | ---D | M] -- C:\Program Files\Micro Application
[2012/12/19 21:41:19 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft
[2010/08/13 12:31:58 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Baseline Security Analyzer 2
[2007/12/15 21:33:58 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft FrontPage
[2006/11/02 13:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Games
[2011/10/19 17:18:54 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2012/05/15 07:42:03 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Silverlight
[2011/04/20 20:04:12 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2007/12/15 21:35:04 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Visual Studio
[2012/10/10 17:19:08 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Works
[2010/12/26 15:23:19 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2010/08/31 20:37:06 | 000,000,000 | ---D | M] -- C:\Program Files\MioNet
[2010/08/11 18:39:37 | 000,000,000 | ---D | M] -- C:\Program Files\Movie Maker
[2012/12/21 12:16:54 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2012/12/21 12:17:00 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Maintenance Service
[2006/11/02 13:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2009/02/21 18:15:48 | 000,000,000 | ---D | M] -- C:\Program Files\MSECache
[2008/01/02 18:02:18 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 4.0
[2008/04/24 17:24:00 | 000,000,000 | ---D | M] -- C:\Program Files\MVAPPS
[2011/02/13 10:47:17 | 000,000,000 | ---D | M] -- C:\Program Files\MyFree Codec
[2008/01/06 19:13:53 | 000,000,000 | ---D | M] -- C:\Program Files\Nero
[2008/01/29 18:29:26 | 000,000,000 | ---D | M] -- C:\Program Files\Neuf
[2010/04/23 09:07:26 | 000,000,000 | ---D | M] -- C:\Program Files\NVIDIA Corporation
[2013/01/20 11:57:18 | 000,000,000 | ---D | M] -- C:\Program Files\ObviousIdea
[2007/10/10 07:29:41 | 000,000,000 | ---D | M] -- C:\Program Files\Packard Bell
[2008/12/28 18:42:07 | 000,000,000 | ---D | M] -- C:\Program Files\Panasonic
[2012/09/02 10:55:41 | 000,000,000 | ---D | M] -- C:\Program Files\PC Connectivity Solution
[2009/09/03 08:45:05 | 000,000,000 | ---D | M] -- C:\Program Files\PhotoFiltre
[2010/12/01 19:14:00 | 000,000,000 | ---D | M] -- C:\Program Files\Pixum
[2008/03/24 15:20:49 | 000,000,000 | ---D | M] -- C:\Program Files\Pochette Express 2
[2013/02/03 17:39:09 | 000,000,000 | ---D | M] -- C:\Program Files\PriceGong
[2010/01/01 12:07:59 | 000,000,000 | ---D | M] -- C:\Program Files\Prolific Technology INC
[2012/11/09 14:05:02 | 000,000,000 | ---D | M] -- C:\Program Files\QuickTime
[2011/08/06 16:44:21 | 000,000,000 | ---D | M] -- C:\Program Files\QuickTime(144)
[2012/08/26 08:43:42 | 000,000,000 | ---D | M] -- C:\Program Files\Real
[2007/10/10 07:06:10 | 000,000,000 | ---D | M] -- C:\Program Files\Realtek
[2006/11/02 13:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2009/02/08 15:34:27 | 000,000,000 | ---D | M] -- C:\Program Files\Roxio
[2010/12/26 14:39:32 | 000,000,000 | ---D | M] -- C:\Program Files\Samsung
[2008/01/07 15:42:20 | 000,000,000 | ---D | M] -- C:\Program Files\ScanSoft
[2008/04/09 17:15:12 | 000,000,000 | ---D | M] -- C:\Program Files\Seagate
[2013/01/20 11:58:25 | 000,000,000 | ---D | M] -- C:\Program Files\SearchGBY
[2012/12/15 12:07:23 | 000,000,000 | ---D | M] -- C:\Program Files\SFR
[2012/11/09 18:53:57 | 000,000,000 | ---D | M] -- C:\Program Files\Silabs
[2012/08/24 15:52:09 | 000,000,000 | R--D | M] -- C:\Program Files\Skype
[2009/12/01 12:09:57 | 000,000,000 | ---D | M] -- C:\Program Files\Trend Micro
[2006/11/02 14:01:55 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2009/09/11 17:35:58 | 000,000,000 | ---D | M] -- C:\Program Files\Utilitaire de configuration iPhone
[2010/11/30 12:00:31 | 000,000,000 | ---D | M] -- C:\Program Files\VSO
[2009/07/13 11:08:42 | 000,000,000 | ---D | M] -- C:\Program Files\WD
[2009/07/13 11:11:29 | 000,000,000 | ---D | M] -- C:\Program Files\Western Digital
[2009/05/27 20:05:26 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Calendar
[2009/05/27 20:05:26 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Collaboration
[2009/05/27 20:05:25 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Defender
[2012/05/10 09:53:21 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Journal
[2012/04/11 21:28:37 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live
[2012/04/11 18:14:38 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Mail
[2010/10/13 08:03:27 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2007/12/15 19:54:06 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2009/05/27 20:05:26 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Photo Gallery
[2009/10/29 19:06:09 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Portable Devices
[2009/05/27 20:05:26 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Sidebar
[2008/01/31 18:27:12 | 000,000,000 | ---D | M] -- C:\Program Files\Yahoo!
[2013/02/03 17:39:09 | 000,000,000 | ---D | M] -- C:\Program Files\Yontoo

[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2008/10/29 07:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008/10/29 07:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008/10/30 04:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2008/01/02 18:13:00 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=6D06CD98D954FE87FB2DB8108793B399 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16549_none_4fac29707cae347a\explorer.exe
[2008/01/02 18:12:59 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=BD06F0BF753BC704B653C3A50F89D362 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20668_none_501f261995dcf2cf\explorer.exe
[2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008/10/28 03:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2006/11/02 10:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5D7084D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16386_none_4f7de5167cd15deb\explorer.exe
[2008/01/19 08:33:10 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe

[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2006/11/02 10:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6000.16386_none_fb80f5473b0ed783\netlogon.dll
[2009/04/11 07:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll
[2009/04/11 07:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008/01/19 08:35:36 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll

[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2008/01/19 08:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008/01/19 08:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
[2006/11/02 10:45:50 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=22027835939F86C3E47AD8E3FBDE3D11 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6000.16386_none_d9f1f819d4c4e737\userinit.exe

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2012/12/14 16:49:28 | 000,216,424 | ---- | M] () MD5=22101A85B3CA2FE2BE05FE9A61A7A83D -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2009/04/11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2009/04/11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2006/11/02 10:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe
[2008/01/19 08:33:37 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 145 bytes -> C:\ProgramData\TEMP:AD022376

< End of report >

Publicité

Signaler le contenu de ce document

Publicité