OTL logfile created on: 02/09/2013 21:58:21 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\alain et laurence\Mes documents\Downloads Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1022,42 Mb Total Physical Memory | 218,68 Mb Available Physical Memory | 21,39% Memory free 2,40 Gb Paging File | 1,65 Gb Available in Paging File | 68,98% Paging File free Paging file location(s): C:\pagefile.sys 0 0 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 225,07 Gb Total Space | 183,94 Gb Free Space | 81,72% Space Free | Partition Type: NTFS Computer Name: familycats | User Name: alain et laurence | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - C:\Documents and Settings\alain et laurence\Mes documents\Downloads\OTL.exe (OldTimer Tools) PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) PRC - C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe (YourWare Solutions (TM)) PRC - C:\Program Files\Fighters\SPAMfighter\sfus.exe (SPAMfighter ApS) PRC - C:\Program Files\Fighters\SPAMfighter\sfagent.exe (SPAMfighter ApS) PRC - C:\Program Files\Fighters\FighterSuiteService.exe (SPAMfighter ApS) PRC - C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software) PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) PRC - C:\Program Files\Fighters\Tray\FightersTray.exe (SPAMfighter ApS) PRC - C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Oracle Corporation) PRC - C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE (Microsoft Corporation) PRC - C:\Program Files\Magentic\bin\MgApp.exe () PRC - C:\Program Files\Fichiers communs\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation) PRC - C:\WINDOWS\system32\PELMICED.EXE (Primax Electronics Ltd.) PRC - C:\Program Files\Micro Application\LauncherMA.exe (Micro Application) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\WINDOWS\system32\ico.exe (Primax Electronics Ltd.) PRC - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation) PRC - C:\WINDOWS\vsnp325.exe () PRC - C:\WINDOWS\FixCamera.exe () PRC - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe (Symantec Corporation) PRC - C:\Program Files\Wanadoo\GestionnaireInternet.exe (France Télécom R&D) PRC - C:\Program Files\Wanadoo\ComComp.exe (France Télécom R&D) PRC - C:\APPS\SMP\SMPSYS.EXE (Packard Bell BV) PRC - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe () PRC - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe () PRC - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe (Ulead Systems, Inc.) PRC - C:\Program Files\Wanadoo\Toaster.exe (France Telecom R&D) PRC - C:\Program Files\Wanadoo\Inactivity.exe () PRC - C:\Program Files\Wanadoo\PollingModule.exe () PRC - C:\WINDOWS\system32\AlertModule\AlertModule.exe () PRC - C:\Program Files\Goto Software\Vade Retro\Vaderetro_oe.exe () PRC - C:\WINDOWS\system32\FTRTSVC.exe (France Telecom) PRC - C:\Program Files\Wanadoo\Watch.exe (France Télécom R&D) PRC - C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe (America Online, Inc.) PRC - C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation) PRC - C:\APPS\ABOARD\ABOARD.EXE (NEC Computers International) PRC - C:\APPS\ABOARD\AOSD.EXE (NEC Computers International) PRC - C:\Program Files\Common Files\X10\Common\X10nets.exe (X10) [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - C:\Program Files\AVAST Software\Avast\defs\13090200\algo.dll () MOD - C:\Program Files\Google\Chrome\Application\29.0.1547.62\ppgooglenaclpluginchrome.dll () MOD - C:\Program Files\Google\Chrome\Application\29.0.1547.62\pdf.dll () MOD - C:\Program Files\Google\Chrome\Application\29.0.1547.62\ffmpegsumo.dll () MOD - C:\Program Files\Fighters\SPAMfighter\sfsg.dll () MOD - C:\Program Files\Fighters\SPAMfighter\sfse.dll () MOD - C:\WINDOWS\system32\encdec.dll () MOD - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF () MOD - C:\WINDOWS\system32\sbe.dll () MOD - C:\Program Files\Magentic\bin\MgApp.exe () MOD - C:\Program Files\Magentic\bin\NeoComm.dll () MOD - C:\Program Files\VistaCodecPack\filters\oggcodecs\dsfSubtitleVMR9.dll () MOD - C:\Program Files\VistaCodecPack\filters\oggcodecs\dsfFLACDecoder.dll () MOD - C:\Program Files\VistaCodecPack\filters\oggcodecs\dsfVorbisDecoder.dll () MOD - C:\Program Files\VistaCodecPack\filters\oggcodecs\dsfSpeexDecoder.dll () MOD - C:\Program Files\VistaCodecPack\filters\oggcodecs\dsfTheoraDecoder.dll () MOD - C:\Program Files\VistaCodecPack\filters\oggcodecs\dsfOGMDecoder.dll () MOD - C:\Program Files\VistaCodecPack\filters\oggcodecs\dsfCMMLDecoder.dll () MOD - C:\Program Files\VistaCodecPack\filters\oggcodecs\libOOTheora.dll () MOD - C:\Program Files\VistaCodecPack\filters\oggcodecs\libFLAC++.dll () MOD - C:\Program Files\VistaCodecPack\filters\oggcodecs\libCMMLParse.dll () MOD - C:\Program Files\VistaCodecPack\filters\oggcodecs\libTemporalURI.dll () MOD - C:\Program Files\VistaCodecPack\filters\oggcodecs\libOOOgg.dll () MOD - C:\Program Files\VistaCodecPack\filters\oggcodecs\vorbis.dll () MOD - C:\Program Files\VistaCodecPack\filters\oggcodecs\libFLAC.dll () MOD - C:\Program Files\VistaCodecPack\filters\oggcodecs\libCMMLTags.dll () MOD - C:\WINDOWS\system32\msdmo.dll () MOD - C:\WINDOWS\vsnp325.exe () MOD - C:\WINDOWS\FixCamera.exe () MOD - C:\WINDOWS\system32\xvid.ax () MOD - C:\WINDOWS\system32\psisrndr.ax () MOD - C:\WINDOWS\system32\psisdecd.dll () MOD - c:\Program Files\Wanadoo\skin\Default\main\ResourceStyle.dll () MOD - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe () MOD - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe () MOD - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorRes_FRA.dll () MOD - C:\WINDOWS\system32\wstrenderer.ax () MOD - C:\WINDOWS\system32\wstpager.ax () MOD - C:\WINDOWS\system32\VBICodec.ax () MOD - C:\WINDOWS\system32\mpeg2data.ax () MOD - C:\WINDOWS\system32\mpg2splt.ax () MOD - C:\WINDOWS\system32\msnp.ax () MOD - C:\Program Files\Hercules\WebCam Station\PhotoImpression\Share\PIHook.dll () MOD - C:\Program Files\Ulead Systems\Ulead VideoStudio 9.0 SE DVD\AIKRC.dll () MOD - C:\Program Files\Wanadoo\SynchroDll.dll () MOD - C:\Program Files\Wanadoo\Inactivity.exe () MOD - C:\Program Files\Wanadoo\PollingModule.exe () MOD - C:\Program Files\Wanadoo\Inactivity.dll () MOD - C:\WINDOWS\system32\AlertModule\AlertClient.dll () MOD - C:\WINDOWS\system32\AlertModule\AlertModule.exe () MOD - C:\Program Files\Goto Software\Vade Retro\Vaderetro_oe.exe () MOD - C:\Program Files\Goto Software\Vade Retro\VrOe_hook.dll () MOD - C:\Program Files\Wanadoo\PhoneManager.dll () MOD - C:\Program Files\Wanadoo\PMStub.dll () MOD - C:\Program Files\Wanadoo\DetectComponent.dll () [color=#E56717]========== Services (SafeList) ==========[/color] SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) SRV - (SPAMfighter Update Service) -- C:\Program Files\Fighters\SPAMfighter\sfus.exe (SPAMfighter ApS) SRV - (Suite Service) -- C:\Program Files\Fighters\FighterSuiteService.exe (SPAMfighter ApS) SRV - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) SRV - (Microsoft SharePoint Workspace Audit Service) -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE (Microsoft Corporation) SRV - (osppsvc) -- C:\Program Files\Fichiers communs\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation) SRV - (ose) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation) SRV - (LiveUpdate Notice Service) -- C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation) SRV - (stllssvr) -- C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe (MicroVision Development, Inc.) SRV - (LiveUpdate) -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_0.EXE (Symantec Corporation) SRV - (Planificateur LiveUpdate automatique) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe (Symantec Corporation) SRV - (USBDeviceService) -- C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe () SRV - (UleadBurningHelper) -- C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe (Ulead Systems, Inc.) SRV - (FTRTSVC) -- C:\WINDOWS\system32\FTRTSVC.exe (France Telecom) SRV - (AOL ACS) -- C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe (America Online, Inc.) SRV - (x10nets) -- C:\Program Files\Common Files\X10\Common\X10nets.exe (X10) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - (WDICA) -- File not found DRV - (PxHelp20) -- System32\Drivers\PxHelp20.sys File not found DRV - (PDRFRAME) -- File not found DRV - (PDRELI) -- File not found DRV - (PDFRAME) -- File not found DRV - (PDCOMP) -- File not found DRV - (PCIDump) -- File not found DRV - (PCAMPR5) -- C:\WINDOWS\system32\PCAMPR5.SYS File not found DRV - (lbrtfdc) -- File not found DRV - (Changer) -- File not found DRV - (aswSnx) -- C:\WINDOWS\System32\drivers\aswSnx.sys (AVAST Software) DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software) DRV - (aswVmm) -- C:\WINDOWS\System32\drivers\aswVmm.sys () DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software) DRV - (aswRvrt) -- C:\WINDOWS\System32\drivers\aswRvrt.sys () DRV - (aswMonFlt) -- C:\WINDOWS\system32\drivers\aswMonFlt.sys (AVAST Software) DRV - (AswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software) DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software) DRV - (FlyUsb) -- C:\WINDOWS\system32\drivers\FlyUsb.sys (LeapFrog) DRV - (fssfltr) -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys (Microsoft Corporation) DRV - (pelusblf) -- C:\WINDOWS\system32\drivers\pelusblf.sys (Primax Electronics Ltd.) DRV - (pelmouse) -- C:\WINDOWS\system32\drivers\PELMOUSE.SYS (Primax Electronics Ltd.) DRV - (MPE) -- C:\WINDOWS\system32\drivers\mpe.sys (Microsoft Corporation) DRV - (SNP325) -- C:\WINDOWS\system32\drivers\snp325.sys (Sonix Co. Ltd.) DRV - (JL2005C) -- C:\WINDOWS\system32\drivers\jl2005c.sys (Windows (R) 2000 DDK provider) DRV - (ASCTRM) -- C:\WINDOWS\System32\drivers\asctrm.sys (Windows (R) 2000 DDK provider) DRV - (ViaIde) -- C:\WINDOWS\system32\drivers\viaidexp.sys (VIA Technologies, Inc.) DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys (Realtek Semiconductor Corp.) DRV - (3xHybrid) -- C:\WINDOWS\system32\drivers\3xHybrid.sys (Philips Semiconductors GmbH) DRV - (X10Hid) -- C:\WINDOWS\system32\drivers\x10hid.sys (X10 Wireless Technology, Inc.) DRV - (XUIF) -- C:\WINDOWS\system32\drivers\x10ufx2.sys (X10 Wireless Technology, Inc.) DRV - (SNDP106) -- C:\WINDOWS\system32\drivers\sndp106.sys () DRV - (ovt530) -- C:\WINDOWS\system32\drivers\ov530vid.sys (OmniVision Technologies, Inc.) DRV - (Afc) -- C:\WINDOWS\system32\drivers\afc.sys (Arcsoft, Inc.) DRV - (PCANDIS5) -- C:\WINDOWS\system32\PCANDIS5.SYS (Printing Communications Assoc., Inc. (PCAUSA)) DRV - (wanatw) -- C:\WINDOWS\system32\drivers\wanatw4.sys (America Online, Inc.) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com IE - HKLM\..\SearchScopes,DefaultScope = IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = http://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_bak = http://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKCU\..\SearchScopes,DefaultScope = IE - HKCU\..\SearchScopes\{0298B08F-AAD0-43D7-845A-17564A7E3368}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3241952&CUI=UN14661158243260431&UM=1 IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{52E846BF-8215-40F5-A3CE-ECD84BC94B34}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8&rlz=1I7ADFA_fr IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaulturl: "" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {D5D33A26-F043-4808-B335-6B10630E04F8}:3.0 FF - prefs.js..extensions.enabledItems: {EEE6C361-6118-11DC-9C72-001320C79847}:1.2.0.2 FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:11.0.1.400 FF - prefs.js..browser.search.useDBForOrder: false FF - prefs.js..browser.startup.homepage: FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/DownloadManager,version=1.1: C:\WINDOWS\ [2013/09/02 21:38:02 | 000,000,000 | ---D | M] FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MI1933~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MI1933~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files\VistaCodecPack\rm\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@zylom.com/ZylomGamesPlayer: C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll (Zylom) FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Documents and Settings\alain et laurence\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013/08/23 17:31:38 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/08/27 00:32:10 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/04/18 07:37:07 | 000,000,000 | ---D | M] [2009/05/18 22:16:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\alain et laurence\Application Data\Mozilla\Extensions [2009/05/18 22:16:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\alain et laurence\Application Data\Mozilla\Extensions\maxtv@developer.max-tv.be [2013/09/02 21:32:16 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\alain et laurence\Application Data\Mozilla\Firefox\Profiles\loxsfncs.default\extensions [2009/09/09 13:32:31 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\alain et laurence\Application Data\Mozilla\Firefox\Profiles\loxsfncs.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010/08/28 23:16:32 | 000,000,000 | ---D | M] (Magentic Toolbar) -- C:\Documents and Settings\alain et laurence\Application Data\Mozilla\Firefox\Profiles\loxsfncs.default\extensions\{D5D33A26-F043-4808-B335-6B10630E04F8} [2013/07/23 21:45:20 | 000,000,830 | ---- | M] () -- C:\Documents and Settings\alain et laurence\Application Data\Mozilla\Firefox\Profiles\loxsfncs.default\searchplugins\amazon.xml [2010/09/17 10:17:50 | 000,002,650 | ---- | M] () -- C:\Documents and Settings\alain et laurence\Application Data\Mozilla\Firefox\Profiles\loxsfncs.default\searchplugins\bing.xml [2013/08/23 18:09:28 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010/06/10 00:08:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010/11/19 21:58:48 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ALAIN ET LAURENCE\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\LOXSFNCS.DEFAULT\EXTENSIONS\{EEE6C361-6118-11DC-9C72-001320C79847} [2011/02/27 23:59:39 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\LINKFILTER@KASPERSKY.RU [2006/09/26 12:03:14 | 000,098,304 | ---- | M] (Zylom) -- C:\Program Files\mozilla firefox\plugins\npzylomgamesplayer.dll [2010/06/09 23:59:49 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml [2010/06/09 23:59:49 | 000,000,757 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml [2010/06/09 23:59:49 | 000,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDICO-fr.xml [2010/06/09 23:59:49 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml [2010/06/09 23:59:49 | 000,000,652 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR - homepage: http://www.google.fr/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\29.0.1547.62\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\29.0.1547.62\pdf.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 7.0\Reader\Browser\nppdf32.dll CHR - plugin: Zylom Plugin (Enabled) = C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Documents and Settings\alain et laurence\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MI1933~1\Office14\NPAUTHZ.DLL CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MI1933~1\Office14\NPSPWRAP.DLL CHR - plugin: DivX Player Netscape Plugin (Enabled) = C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll CHR - plugin: DivX Web Player (Enabled) = C:\Program Files\DivX\DivX Web Player\npdivx32.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - plugin: Java(TM) Platform SE 7 U25 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files\Microsoft\Office Live\npOLW.dll CHR - plugin: MetaStream 3 Plugin (Enabled) = C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\VistaCodecPack\rm\browser\plugins\nppl3260.dll CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll CHR - plugin: Java Deployment Toolkit 7.0.250.17 (Enabled) = C:\WINDOWS\system32\npDeployJava1.dll CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - Extension: Documents Google = C:\Documents and Settings\alain et laurence\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google\u00A0Drive = C:\Documents and Settings\alain et laurence\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\alain et laurence\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Recherche Google = C:\Documents and Settings\alain et laurence\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: AdBlock = C:\Documents and Settings\alain et laurence\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.6_0\ CHR - Extension: Chrome In-App Payments service = C:\Documents and Settings\alain et laurence\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\ CHR - Extension: Gmail = C:\Documents and Settings\alain et laurence\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\ O1 HOSTS File: ([2004/08/10 14:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Magentic Toolbar) - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files\magentictb\magenticDx.dll () O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Updater For Magentic Toolbar) - {B3312915-9368-4FE4-8D4E-B60E5B36D0FF} - C:\Program Files\magentictb\auxi\magenticAu.dll (Visicom Media) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O3 - HKLM\..\Toolbar: (Magentic Toolbar) - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files\magentictb\magenticDx.dll () O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. O4 - HKLM..\Run: [ACTIVBOARD] c:\APPS\ABOARD\ABOARD.EXE (NEC Computers International) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation) O4 - HKLM..\Run: [CommonToolkitTray] C:\Program Files\Fighters\Tray\FightersTray.exe (SPAMfighter ApS) O4 - HKLM..\Run: [DetectorApp] C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe () O4 - HKLM..\Run: [E68zolm] C:\Documents and Settings\alain et laurence\Application Data\kchost.exe File not found O4 - HKLM..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe () O4 - HKLM..\Run: [hpqSRMon] File not found O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation) O4 - HKLM..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup File not found O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation) O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found O4 - HKLM..\Run: [Mouse Suite 98 Daemon] C:\WINDOWS\System32\ico.exe (Primax Electronics Ltd.) O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation) O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation) O4 - HKLM..\Run: [sfagent] C:\Program Files\Fighters\SPAMfighter\sfagent.exe (SPAMfighter ApS) O4 - HKLM..\Run: [snp325] C:\WINDOWS\vsnp325.exe () O4 - HKLM..\Run: [SSBkgdUpdate] C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Scansoft, Inc.) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Oracle Corporation) O4 - HKLM..\Run: [Symantec PIF AlertEng] C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation) O4 - HKLM..\Run: [Vade Retro Outlook Express] C:\Program Files\Goto Software\Vade Retro\Vaderetro_oe.exe () O4 - HKLM..\Run: [WOOWATCH] C:\Program Files\Wanadoo\Watch.exe (France Télécom R&D) O4 - HKCU..\Run: [Facebook Update] C:\Documents and Settings\alain et laurence\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe (Facebook Inc.) O4 - HKCU..\Run: [FreeRAM XP] C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe (YourWare Solutions (TM)) O4 - HKCU..\Run: [Magentic] C:\Program Files\Magentic\bin\Magentic.exe () O4 - HKCU..\Run: [OfficeSyncProcess] C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE (Microsoft Corporation) O4 - HKCU..\Run: [OSzDs] C:\Documents and Settings\alain et laurence\Application Data\kchost.exe File not found O4 - HKCU..\Run: [SmpcSys] C:\APPS\SMP\SMPSYS.EXE (Packard Bell BV) O4 - HKCU..\Run: [wmplayer] C:\MessengerPlus\mplayer2.exe File not found O4 - HKCU..\Run: [WOOKIT] C:\Program Files\Wanadoo\Shell.exe () O4 - HKCU..\RunOnce: [Shockwave Updater] C:\WINDOWS\system32\Adobe\Shockwave 11\SwHelper_1150595.exe -Update -1150595 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; Orange 7.4 ; NaviWoo1.1; GTB7.2; .NET CLR 1.0.3705; .NET CLR 1.1.4322; .NET CLR 2.0.50727; Media Center PC 4.0; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; OfficeLiveConnector.1.3; OfficeLivePatch.0.0; InfoPath.3)" -"http://www8.agame.com/mirror/flash/p/PanicattheZoo/panic_at_the_zoo_jeux_fr/panic_at_the_zoo_jeux_fr.htm" File not found O4 - Startup: C:\Documents and Settings\alain et laurence\Menu Démarrer\Programmes\Démarrage\Lanceur.lnk = C:\Program Files\Micro Application\LauncherMA.exe (Micro Application) O4 - Startup: C:\Documents and Settings\alain et laurence\Menu Démarrer\Programmes\Démarrage\MaxTV.lnk = File not found O4 - Startup: C:\Documents and Settings\alain et laurence\Menu Démarrer\Programmes\Démarrage\Nouveau dossier [2012/11/12 21:30:53 | 000,000,000 | ---D | M] O4 - Startup: C:\Documents and Settings\alain et laurence\Menu Démarrer\Programmes\Démarrage\Pense-bête.lnk = File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: &Envoyer à OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O8 - Extra context menu item: E&xporter vers Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: Recherche avec cherche.us - C:\Documents and Settings\alain et laurence\scriptjava.html File not found O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei-4/CursorManiaInitialSetup1.0.1.1.cab (Reg Error: Key error.) O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} http://activex.camfrogweb.com/advanced/2.0.1.14/cfweb_activex.camfrogweb.com-advanced-2.0.1.14_instmodule.exe (CamfrogWEB Advanced Unicode Control) O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/uno1/GAME_UNO1.cab (UnoCtrl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab (Java Plug-in 10.25.2) O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} http://game12.zylom.com/activex/zylomgamesplayer.cab (Zylom Games Player) O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class) O16 - DPF: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab (Java Plug-in 1.6.0_12) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab (Java Plug-in 10.25.2) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O16 - DPF: CabBuilder http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6CBE6A26-EF55-4962-92FE-8B2F2BAAAD95}: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL File not found O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL File not found O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 () - http://docgelo.files.wordpress.com/2009/03/st_20joseph20cupertino3.jpg O24 - Desktop WallPaper: C:\Documents and Settings\alain et laurence\Local Settings\Application Data\Magentic\Runtime\Magentic Wallpaper.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\alain et laurence\Local Settings\Application Data\Magentic\Runtime\Magentic Wallpaper.bmp O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - Services: "vToolbarUpdater15.4.0" MsConfig - Services: "SkypeUpdate" MsConfig - State: "system.ini" - 0 MsConfig - State: "win.ini" - 0 MsConfig - State: "bootini" - 0 MsConfig - State: "services" - 2 MsConfig - State: "startup" - 0 ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun) ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering) ActiveX: {14F4D1F6-79E4-4256-A10B-3CCD138698C6} - Microsoft .NET Framework 1.0 Hotfix (KB2656378) ActiveX: {166B1BCA-3F9C-11CF-8075-444553540000} - Macromedia Shockwave Director 10.1 ActiveX: {1BC46932-21B2-4130-86E0-B4EB4F7A7A7B} - Microsoft .NET Framework 1.0 Hotfix (KB887998) ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Lecteur Windows Media Microsoft 6.4 ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation ActiveX: {29A43E48-B726-47B6-9EAC-AA2B7B48E133} - Microsoft .NET Framework 1.0 Security Update (KB2698035) ActiveX: {29E7D24F-BF30-45E7-8A40-AD27AFD8F5C6} - Microsoft .NET Framework 1.0 Hotfix (KB979904) ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Macromedia Shockwave Director 10.1 ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906) ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {339E9413-F230-4F0F-ADDD-17914D95FD6D} - Microsoft .NET Framework 1.0 Hotfix (KB2604042) ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe ActiveX: {407408d4-94ed-4d86-ab69-a7f649d112ee} - %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection QuickLaunchShortcut 640 %systemroot%\inf\mcdftreg.inf ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460) ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow ActiveX: {44BBA851-CC51-11CF-AAFA-00AA00B6015C} - rundll32.exe advpack.dll,LaunchINFSection %SystemRoot%\INF\wpie4x86.inf,PerUserStub ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4F00D11B-8327-4C55-B7DA-B8D8C10F28A8} - Microsoft .NET Framework 1.0 Hotfix (KB2572066) ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Web Folders ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files\Google\Chrome\Application\29.0.1547.62\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome ActiveX: {8BF1B8CD-9A6C-4382-A454-CC769B913F48} - Microsoft .NET Framework 1.0 Hotfix (KB2656378) ActiveX: {8F736E10-8E5C-4399-A532-D0C00A406227} - Microsoft .NET Framework 1.1 Security Update (KB2698023) ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {BDE0FA43-6952-4BA8-8C58-09AF690F88E1} - Microsoft .NET Framework 1.0 Hotfix (KB930494) ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework ActiveX: {C0F0DCDC-99EA-4405-BDAE-CACABD3D2DF0} - Microsoft .NET Framework 1.1 Security Update (KB2833941) ActiveX: {C3C986D6-06B1-43BF-90DD-BE30756C00DE} - RevokedRootsUpdate ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1 ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Reg Error: Value error. ActiveX: {D6C3E2A4-60CF-4540-860B-F2B1FB51689B} - Microsoft .NET Framework 1.0 Security Update (KB2833951) ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {DE895E98-54B2-4180-91E1-7A0020EDF577} - Microsoft .NET Framework 1.0 Security Update (KB2742607) ActiveX: {E8EA5BD6-D931-4001-ABF6-81BAA500360A} - Microsoft .NET Framework 1.0 Hotfix (KB953295) ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: {EA29D410-CE41-4953-A862-2DE706A1DAD7} - Microsoft .NET Framework 1.0 Service Pack 3 ActiveX: {F196AC50-7C95-42E1-9947-BDAB18BF3C8C} - .NET Framework ActiveX: {FDC11A6F-17D1-48f9-9EA3-9051954BAA24} - .NET Framework ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /HideWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE ActiveX: KB910393 - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\EasyCDBlock.inf,PerUserInstall Drivers32: msacm.divxa32 - C:\WINDOWS\System32\divxa32.acm (Kristal StudioDFileDescription) Drivers32: msacm.dvacm - C:\Program Files\Fichiers communs\Ulead Systems\VIO\DVACM.acm (Ulead Systems, Inc.) Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.) Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll () Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation) Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation) Drivers32: VIDC.JDCT - C:\WINDOWS\System32\jl_jdct.drv (JEILIN Tech.) Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com) Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com) Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll () Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.) PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin CREATERESTOREPOINT Restore point Set: OTL Restore Point [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2013/09/02 21:27:13 | 000,000,000 | ---D | C] -- C:\AdwCleaner [2013/09/02 15:43:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Google Chrome [2013/09/02 15:41:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\alain et laurence\Local Settings\Application Data\Deployment [2013/08/24 18:54:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\alain et laurence\Application Data\LiveKit [2013/08/23 19:00:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Fighters [2013/08/23 18:59:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Fighters [2013/08/23 18:58:06 | 000,000,000 | ---D | C] -- C:\Program Files\Fighters [2013/08/23 18:58:06 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Common Toolkit Suite [2013/08/23 18:57:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\alain et laurence\Application Data\Fighters [2013/08/23 18:55:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Fighters [2013/08/23 17:39:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\avast! Free Antivirus [2013/08/23 17:39:04 | 000,029,816 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2013/08/23 17:39:00 | 000,369,584 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2013/08/23 17:38:52 | 000,049,760 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2013/08/23 17:38:51 | 000,056,080 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2013/08/23 17:38:50 | 000,770,344 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys [2013/08/23 17:38:45 | 000,066,336 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys [2013/08/23 17:38:42 | 000,229,648 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe [2013/08/23 17:29:40 | 000,041,664 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr [2013/08/23 17:25:16 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software [2013/08/23 17:21:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVAST Software [2013/08/14 17:38:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\alain et laurence\Bureau\ecoles [2013/08/14 03:17:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MRT [7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [2 C:\Documents and Settings\alain et laurence\Bureau\*.tmp files -> C:\Documents and Settings\alain et laurence\Bureau\*.tmp -> ] [16 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Documents and Settings\alain et laurence\Mes documents\*.tmp files -> C:\Documents and Settings\alain et laurence\Mes documents\*.tmp -> ] [1 C:\*.tmp files -> C:\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2013/09/02 22:02:14 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin [2013/09/02 21:46:00 | 000,001,078 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2013/09/02 21:45:00 | 000,001,002 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2013/09/02 21:37:40 | 000,000,338 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job [2013/09/02 21:35:22 | 000,001,074 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2013/09/02 21:35:18 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013/09/02 19:37:24 | 000,001,834 | ---- | M] () -- C:\Documents and Settings\alain et laurence\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2013/09/02 19:13:43 | 000,001,046 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2802900763-45842116-139315285-1005UA.job [2013/09/02 15:54:09 | 000,004,507 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2013/09/02 15:53:45 | 000,514,338 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat [2013/09/02 15:53:45 | 000,444,986 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2013/09/02 15:53:45 | 000,086,500 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat [2013/09/02 15:53:45 | 000,072,862 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2013/09/02 15:43:12 | 000,001,816 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Google Chrome.lnk [2013/09/02 10:58:09 | 000,000,456 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{61A4E20B-0FB8-4B0A-8825-6F57A65FAF32}.job [2013/09/02 10:52:53 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2013/08/25 22:13:02 | 000,001,024 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2802900763-45842116-139315285-1005Core.job [2013/08/23 18:41:34 | 000,000,242 | ---- | M] () -- C:\WINDOWS\SIERRA.INI [2013/08/23 17:40:20 | 000,000,175 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswVmm.sys.sum [2013/08/23 17:40:19 | 000,770,344 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys [2013/08/23 17:40:19 | 000,369,584 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2013/08/23 17:40:19 | 000,175,176 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswVmm.sys [2013/08/23 17:40:19 | 000,000,175 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswSP.sys.sum [2013/08/23 17:40:19 | 000,000,175 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswSnx.sys.sum [2013/08/23 17:39:18 | 000,001,692 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\avast! Free Antivirus.lnk [2013/08/23 17:38:45 | 000,003,072 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [2 C:\Documents and Settings\alain et laurence\Bureau\*.tmp files -> C:\Documents and Settings\alain et laurence\Bureau\*.tmp -> ] [16 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Documents and Settings\alain et laurence\Mes documents\*.tmp files -> C:\Documents and Settings\alain et laurence\Mes documents\*.tmp -> ] [1 C:\*.tmp files -> C:\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2013/09/02 22:02:13 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin [2013/09/02 15:43:12 | 000,001,834 | ---- | C] () -- C:\Documents and Settings\alain et laurence\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2013/09/02 15:43:12 | 000,001,816 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Google Chrome.lnk [2013/09/02 15:41:33 | 000,001,078 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2013/09/02 15:41:32 | 000,001,074 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2013/08/23 17:40:20 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys.sum [2013/08/23 17:40:20 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswSP.sys.sum [2013/08/23 17:40:20 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswSnx.sys.sum [2013/08/23 17:39:18 | 000,001,692 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\avast! Free Antivirus.lnk [2013/08/23 17:38:55 | 000,000,338 | -H-- | C] () -- C:\WINDOWS\tasks\avast! Emergency Update.job [2013/08/23 17:38:49 | 000,175,176 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys [2013/08/23 17:38:48 | 000,049,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys [2013/06/25 16:04:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\~tmp.INI [2013/04/18 03:03:53 | 001,072,544 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin [2013/04/18 03:03:51 | 001,072,544 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin [2013/04/18 03:03:51 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin [2013/02/08 05:03:08 | 002,816,504 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data [2012/02/16 19:01:39 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2010/09/13 05:58:41 | 000,549,169 | ---- | C] () -- C:\Documents and Settings\alain et laurence\Application Data\ispanya.exe [2010/06/07 06:24:21 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\alain et laurence\tmp1.3 [2010/03/27 01:45:08 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\alain et laurence\tmp1.2 [2010/02/26 07:27:20 | 000,000,022 | ---- | C] () -- C:\Documents and Settings\alain et laurence\dateff [2010/02/26 07:27:20 | 000,000,021 | ---- | C] () -- C:\Documents and Settings\alain et laurence\datech [2010/02/26 07:27:11 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\alain et laurence\tmp1.1 [2009/11/22 09:09:11 | 000,000,011 | ---- | C] () -- C:\Documents and Settings\alain et laurence\logch [2009/11/22 09:09:02 | 000,000,011 | ---- | C] () -- C:\Documents and Settings\alain et laurence\logie [2009/11/22 09:09:02 | 000,000,011 | ---- | C] () -- C:\Documents and Settings\alain et laurence\logff [2009/11/22 09:08:58 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\alain et laurence\temp1.6 [2009/09/26 22:18:40 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\alain et laurence\temp1.5 [2009/07/18 20:15:21 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\alain et laurence\temp1.4 [2009/07/14 15:20:12 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\alain et laurence\temp1.3 [2009/07/02 20:58:21 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\alain et laurence\temp1.2 [2009/06/29 21:44:58 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\alain et laurence\temp1.1 [2009/05/18 21:27:32 | 000,185,344 | ---- | C] () -- C:\Documents and Settings\alain et laurence\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009/04/22 23:07:52 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\alain et laurence\temps12 [2009/03/11 07:25:27 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\alain et laurence\temps11 [2009/02/23 15:24:08 | 000,000,140 | ---- | C] () -- C:\Documents and Settings\alain et laurence\Local Settings\Application Data\fusioncache.dat [2005/04/08 04:16:43 | 000,000,970 | -H-- | C] () -- C:\Documents and Settings\alain et laurence\Application Data\logs.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2004/09/23 19:05:26 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2009/09/25 07:36:34 | 001,510,400 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 12:53:55 | 000,473,600 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/14 04:33:48 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [16 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] [color=#A23BEC]< %systemroot%\system32\drivers\​*.sys /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] Invalid Environment Variable: alluserprofile Invalid Environment Variable: alluserprofile [color=#A23BEC]< %appdata%\*. >[/color] [2012/08/20 17:07:27 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\alain et laurence\Application Data\.# [2012/02/06 10:43:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Adobe [2009/03/08 15:59:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\AdobeUM [2013/03/02 13:55:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\ArcSoft [2010/04/15 23:49:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\AVS4YOU [2009/04/15 18:00:33 | 000,000,000 | R--D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Brother [2012/08/08 23:48:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\CamfrogWEB [2009/03/05 20:48:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\CyberLink [2010/04/15 23:49:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\DivX [2009/05/18 22:16:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\DMV Technologies [2009/05/27 18:04:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\f2fPreIntermediate [2013/08/23 19:00:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Fighters [2010/08/05 22:15:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Google [2012/10/14 21:04:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Help [2010/04/15 16:51:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\HP [2010/06/28 06:16:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\HpUpdate [2011/03/14 16:17:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Icones [2009/06/26 13:14:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Identities [2009/02/23 16:01:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\InstallShield [2009/05/18 21:17:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Leadertech [2013/08/24 18:54:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\LiveKit [2009/02/23 17:13:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Macromedia [2010/08/28 22:42:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\magentictb [2009/05/20 15:44:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Media Player Classic [2011/12/04 13:15:05 | 000,000,000 | --SD | M] -- C:\Documents and Settings\alain et laurence\Application Data\Microsoft [2009/02/23 19:21:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Mozilla [2009/02/25 22:50:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\MSNInstaller [2009/03/16 18:22:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\OD2 [2011/03/27 20:32:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\PlayFirst [2009/05/22 21:12:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Real [2009/05/11 22:00:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\ScanSoft [2009/04/15 14:30:52 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\alain et laurence\Application Data\SecuROM [2013/09/02 15:52:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Skype [2009/05/18 21:18:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Sonic [2009/02/23 17:14:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Sun [2013/06/22 19:22:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\U3 [2012/06/26 19:51:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Ulead Systems [2011/02/27 22:28:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Uniblue [2009/02/23 15:37:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\VadeRetro [2009/05/18 22:17:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\vlc [2009/04/05 19:13:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Windows Live Writer [2011/06/01 11:48:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\WinRAR [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\You've Got Pictures Screensaver [2009/06/26 13:14:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alain et laurence\Application Data\Zylom [color=#A23BEC]< %appdata%\*.exe /s >[/color] [2010/09/13 05:58:41 | 000,549,169 | ---- | M] () -- C:\Documents and Settings\alain et laurence\Application Data\ispanya.exe [2006/10/16 11:03:37 | 000,045,056 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\alain et laurence\Application Data\Microsoft\Installer\{5E8A1B08-0FBD-4543-9646-F2C2D0D05750}\ARPPRODUCTICON.exe [2010/03/09 11:51:24 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\alain et laurence\Application Data\Microsoft\Installer\{C06EFB22-B5DB-46C5-9215-BCB5C19C0858}\ARPPRODUCTICON.exe [2010/03/09 11:51:24 | 000,053,248 | R--- | M] (Macrovision Corporation) -- C:\Documents and Settings\alain et laurence\Application Data\Microsoft\Installer\{C06EFB22-B5DB-46C5-9215-BCB5C19C0858}\NewShortcut1_C06EFB22B5DB46C59215BCB5C19C0858.exe [2010/09/17 10:17:51 | 000,086,576 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\alain et laurence\Application Data\Microsoft\Services Windows Live\Raccourci Galerie de Photos Windows Live.exe [2010/09/17 10:17:51 | 000,132,672 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\alain et laurence\Application Data\Microsoft\Services Windows Live\Raccourci Windows Live Messenger.exe [2009/02/25 22:50:42 | 000,826,856 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\alain et laurence\Application Data\MSNInstaller\msnauins.exe [2011/02/25 13:21:41 | 000,884,512 | ---- | M] (Sun Microsystems, Inc.) -- C:\Documents and Settings\alain et laurence\Application Data\Sun\Java\JRERunOnce.exe [2007/10/23 09:27:20 | 000,110,592 | ---- | M] () -- C:\Documents and Settings\alain et laurence\Application Data\U3\temp\cleanup.exe [2008/05/02 10:41:48 | 003,493,888 | -H-- | M] (SanDisk Corporation) -- C:\Documents and Settings\alain et laurence\Application Data\U3\temp\Launchpad Removal.exe [color=#A23BEC]< %systemdrive%\*. >[/color] [2013/09/02 21:32:45 | 000,000,000 | ---D | M] -- C:\AdwCleaner [2009/02/23 23:09:41 | 000,000,000 | ---D | M] -- C:\APPS [2009/02/23 23:10:29 | 000,000,000 | RHSD | M] -- C:\cmdcons [2013/09/02 19:30:20 | 000,000,000 | -H-D | M] -- C:\Config.Msi [2009/02/23 23:10:30 | 000,000,000 | -H-D | M] -- C:\DIVTOOLS [2010/08/30 13:21:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings [2009/02/23 15:25:54 | 000,000,000 | -HSD | M] -- C:\DRIVERS [2012/03/14 15:24:51 | 000,000,000 | ---D | M] -- C:\ENGDISC [2009/08/10 03:06:20 | 000,000,000 | ---D | M] -- C:\f699dab4251840d9b3fffab84f17ba [2012/02/11 23:40:31 | 000,000,000 | -HSD | M] -- C:\found.000 [2010/03/05 19:18:58 | 000,000,000 | ---D | M] -- C:\KA [2011/01/02 12:37:21 | 000,000,000 | -H-D | M] -- C:\MessengerPlus [2009/03/06 18:44:35 | 000,000,000 | RH-D | M] -- C:\MSOCache [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\My Music [2009/02/23 23:10:46 | 000,000,000 | -H-D | M] -- C:\PNP [2013/09/02 21:32:06 | 000,000,000 | R--D | M] -- C:\Program Files [2010/08/28 21:23:05 | 000,000,000 | -HSD | M] -- C:\RECYCLER [2010/03/18 15:13:12 | 000,000,000 | ---D | M] -- C:\SIERRA [2011/11/22 22:23:06 | 000,000,000 | -HSD | M] -- C:\System Volume Information [2009/07/22 17:23:10 | 000,000,000 | ---D | M] -- C:\Tlcwin [2013/09/02 21:38:02 | 000,000,000 | ---D | M] -- C:\WINDOWS [2012/01/04 14:55:44 | 000,000,000 | ---D | M] -- C:\~QTWTMP.TMP [color=#A23BEC]< %systemdrive%\*.exe >[/color] [2007/11/07 09:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe [1 C:\*.tmp files -> C:\*.tmp -> ] [color=#A23BEC]< %programfiles%\*. >[/color] [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe [2010/08/26 18:07:34 | 000,000,000 | ---D | M] -- C:\Program Files\Alwil Software [2013/07/25 23:00:39 | 000,000,000 | ---D | M] -- C:\Program Files\Amazon [2009/02/23 23:10:59 | 000,000,000 | ---D | M] -- C:\Program Files\AOL 9.0 [2009/02/23 23:10:59 | 000,000,000 | ---D | M] -- C:\Program Files\AOL Compagnon [2013/03/02 13:58:34 | 000,000,000 | ---D | M] -- C:\Program Files\ArcSoft [2013/08/23 17:25:16 | 000,000,000 | ---D | M] -- C:\Program Files\AVAST Software [2010/04/16 00:03:35 | 000,000,000 | ---D | M] -- C:\Program Files\AVS4YOU [2012/03/06 23:24:30 | 000,000,000 | ---D | M] -- C:\Program Files\Brother [2012/08/08 23:48:07 | 000,000,000 | ---D | M] -- C:\Program Files\CFWebAdvancedU [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\ComPlus Applications [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\CyberLink [2010/11/21 19:24:39 | 000,000,000 | ---D | M] -- C:\Program Files\DIFX [2009/05/20 15:49:25 | 000,000,000 | ---D | M] -- C:\Program Files\DivX [2010/02/18 17:06:46 | 000,000,000 | ---D | M] -- C:\Program Files\DK [2009/05/18 22:11:08 | 000,000,000 | ---D | M] -- C:\Program Files\DMV [2013/09/02 15:54:16 | 000,000,000 | ---D | M] -- C:\Program Files\Fichiers communs [2013/08/23 18:59:10 | 000,000,000 | ---D | M] -- C:\Program Files\Fighters [2009/05/18 22:31:46 | 000,000,000 | ---D | M] -- C:\Program Files\Full Pack Codecs [2011/01/26 21:32:16 | 000,000,000 | ---D | M] -- C:\Program Files\Geoplan-Geospace [2009/12/25 18:23:35 | 000,000,000 | ---D | M] -- C:\Program Files\GirlTech [2013/09/02 15:42:44 | 000,000,000 | ---D | M] -- C:\Program Files\Google [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\Goto Software [2010/02/18 16:34:23 | 000,000,000 | ---D | M] -- C:\Program Files\Hercules [2010/04/15 16:34:42 | 000,000,000 | ---D | M] -- C:\Program Files\Hewlett-Packard [2011/06/15 11:15:08 | 000,000,000 | ---D | M] -- C:\Program Files\Horse Star [2010/06/27 19:46:07 | 000,000,000 | ---D | M] -- C:\Program Files\HP [2013/09/02 15:55:43 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information [2013/08/14 03:29:58 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer [2013/07/23 19:42:50 | 000,000,000 | ---D | M] -- C:\Program Files\Java [2009/12/25 19:14:04 | 000,000,000 | ---D | M] -- C:\Program Files\JL2005C [2009/05/20 15:44:11 | 000,000,000 | ---D | M] -- C:\Program Files\K-Lite Codec Pack [2010/11/21 19:23:50 | 000,000,000 | ---D | M] -- C:\Program Files\LeapFrog [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\Learn2.com [2010/08/28 23:16:21 | 000,000,000 | ---D | M] -- C:\Program Files\Magentic [2010/08/29 05:41:04 | 000,000,000 | ---D | M] -- C:\Program Files\magentictb [2013/07/26 12:35:51 | 000,000,000 | ---D | M] -- C:\Program Files\majtuto4pc_fr_a1 [2011/01/03 04:01:30 | 000,000,000 | ---D | M] -- C:\Program Files\Messenger [2012/03/06 22:39:01 | 000,000,000 | ---D | M] -- C:\Program Files\Micro Application [2012/01/20 17:11:48 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft [2011/02/16 17:27:30 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Analysis Services [2009/02/25 09:53:18 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft CAPICOM 2.1.0.2 [2013/05/02 20:35:40 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Download Manager [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\microsoft frontpage [2011/07/15 13:48:11 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft IntelliPoint [2011/07/15 13:46:02 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft IntelliType Pro [2011/02/16 17:40:30 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office [2009/11/27 19:17:09 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office Outlook Connector [2013/07/11 10:18:31 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Silverlight [2011/02/16 17:40:25 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft SQL Server Compact Edition [2009/02/23 21:52:00 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Sync Framework [2011/02/16 17:41:37 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Synchronization Services [2011/02/16 17:30:51 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Visual Studio 8 [2011/02/16 17:40:25 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET [2013/06/25 16:04:01 | 000,000,000 | ---D | M] -- C:\Program Files\Mindscape [2010/08/13 03:02:37 | 000,000,000 | ---D | M] -- C:\Program Files\Movie Maker [2013/09/02 21:32:16 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox [2011/02/16 17:42:53 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild [2012/01/31 18:22:45 | 000,000,000 | ---D | M] -- C:\Program Files\MSECache [2009/02/25 22:50:14 | 000,000,000 | ---D | M] -- C:\Program Files\MSN [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\MSN Gaming Zone [2010/04/16 03:00:32 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 4.0 [2009/05/18 22:44:37 | 000,000,000 | ---D | M] -- C:\Program Files\NetMeeting [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\Norman [2013/04/18 03:02:32 | 000,000,000 | ---D | M] -- C:\Program Files\NVIDIA Corporation [2009/02/23 23:11:36 | 000,000,000 | ---D | M] -- C:\Program Files\Online Services [2010/12/22 14:01:32 | 000,000,000 | ---D | M] -- C:\Program Files\Outlook Express [2011/02/20 16:38:08 | 000,000,000 | ---D | M] -- C:\Program Files\PC Drivers HeadQuarters [2009/02/23 23:11:37 | 000,000,000 | ---D | M] -- C:\Program Files\QuickTime [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\Real [2009/05/20 16:02:23 | 000,000,000 | ---D | M] -- C:\Program Files\Real Alternative [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\Realtek [2009/08/10 03:06:33 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies [2010/04/15 16:55:16 | 000,000,000 | ---D | M] -- C:\Program Files\Roxio [2009/02/23 16:22:04 | 000,000,000 | ---D | M] -- C:\Program Files\SAGEM [2010/08/01 18:03:13 | 000,000,000 | ---D | M] -- C:\Program Files\Samsung [2009/05/11 21:47:51 | 000,000,000 | ---D | M] -- C:\Program Files\ScanSoft [2009/02/23 23:11:40 | 000,000,000 | ---D | M] -- C:\Program Files\Services en ligne [2010/03/18 15:13:12 | 000,000,000 | ---D | M] -- C:\Program Files\Sierra On-Line [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\SmartSound Software [2010/04/15 16:54:34 | 000,000,000 | ---D | M] -- C:\Program Files\Sonic [2013/07/25 12:11:34 | 000,000,000 | ---D | M] -- C:\Program Files\Speccy [2009/05/17 09:36:54 | 000,000,000 | ---D | M] -- C:\Program Files\Symantec [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\Ulead Systems [2009/02/23 23:09:14 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information [2009/05/20 15:44:01 | 000,000,000 | ---D | M] -- C:\Program Files\VistaCodecPack [2013/09/02 21:38:25 | 000,000,000 | ---D | M] -- C:\Program Files\Wanadoo [2010/08/28 21:20:59 | 000,000,000 | ---D | M] -- C:\Program Files\Web Publish [2013/08/01 08:53:50 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live [2009/02/23 21:49:41 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live SkyDrive [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Components [2013/02/20 21:14:30 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Connect 2 [2013/02/21 04:19:12 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player [2013/09/02 15:51:56 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Plus [2009/02/23 23:09:14 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsUpdate [2009/02/23 23:12:18 | 000,000,000 | ---D | M] -- C:\Program Files\X10 Hardware [2009/02/23 23:09:14 | 000,000,000 | ---D | M] -- C:\Program Files\xerox [2009/05/20 15:51:14 | 000,000,000 | ---D | M] -- C:\Program Files\Xvid [2013/06/19 07:53:10 | 000,000,000 | ---D | M] -- C:\Program Files\YourWare Solutions [2012/03/06 22:39:17 | 000,000,000 | ---D | M] -- C:\Program Files\Zylom Games [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2004/08/10 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=21E83876A6287F15538EF187D286FE11 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll [2008/04/14 04:33:24 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll [2008/04/14 04:33:24 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color] [2004/08/10 14:00:00 | 001,036,288 | ---- | M] (Microsoft Corporation) MD5=4C33E5B9A6197B6ED215F6CFBA0A2DAA -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe [2008/04/14 04:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\explorer.exe [2008/04/14 04:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe [color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color] [2008/04/14 04:33:34 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll [2008/04/14 04:33:34 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll [2004/08/10 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=FAF07FDCDE76000621A28D19F8E2E8EB -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll [color=#A23BEC]< MD5 for: USERINIT.EXE >[/color] [2004/08/10 14:00:00 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=D6D65EA32B190401B57EDB6706F29669 -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe [2008/04/14 04:34:26 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe [2008/04/14 04:34:26 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\system32\userinit.exe [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2004/08/10 14:00:00 | 000,506,368 | ---- | M] (Microsoft Corporation) MD5=D2DE785AEAB0BB8CA4C14A8A199DBE4E -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe [2008/04/14 04:34:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe [2008/04/14 04:34:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\winlogon.exe < End of report >