Votre question

redemarrage pc intempestif (resolu)

Tags :
  • Windows XP
  • Virus
  • Sécurité
Dernière réponse : dans Sécurité et virus
25 Avril 2012 18:46:42

Bonjour,

Mon pc ne fait que de redémarrer deux ou trois fois a l'allumage. Même en mode sans échec, c'est la même chose.
Sous Windows XP édition familiale de 2004, oui je sais... pas tout jeune mais bon !
D'avance merci de votre aide,

Dans l'attente,

Autres pages sur : redemarrage intempestif resolu

a c 614 8 Sécurité
25 Avril 2012 23:30:20

Bonsoir,

Tu vois un écran bleu avant ces redémarrages ? une erreur ou autre chose ?

A quel moment redémarre-t-il ? avant ou après le choix de session si tu en a plusieurs ?
26 Avril 2012 21:24:28

Bonsoir,

Tout d'abord merci de prendre en considération ma demande.
Mon unité centrale redémarre de temps a autre lorsque je met mon code pour ouvrir ma session ou alors une fois qu'elle a terminée de tout charger. C'est aléatoire mais quand même plus souvent au niveau du code. Juste avant de s'éteindre, oui j'ai une fenêtre bleue mais pas systématiquement.
Dans l'attente,

Cordialement,
Contenus similaires
a c 614 8 Sécurité
26 Avril 2012 23:09:54

Re,

ça ressemble à du souci matériel/pilote ça ...

Tu arrives à force à entrer dans ta session ou plus du tout ?

C'est arrivé brutalement ou petit à petit ? Genre après une mise à jour/installation de logiciel/matériel ?
27 Avril 2012 09:27:16

Bonjour,

Oui, j'arrive a ouvrir le pc et travailler avec mais c'est de plus en plus long. Effectivement, mon unité centrale commence a daté puisqu'elle est de 2004.N'est pas le souvenir du moment et du pourquoi cela est venu.
a c 614 8 Sécurité
27 Avril 2012 10:44:47

Re,

On va vérifier quelques piste alors.

En fin de tuto ici (IV Divers), tu as une procédure pour Bluescreenview :
http://www.infos-du-net.com/forum/279889-10-tuto-ecrans...

Donne-moi le code d'erreur et le fichier, s'il est indiqué, mis en cause dans le ou les derniers écran bleu enregistré.

Fais ensuite ceci :
Poste de travail -> clic-droit sur ton disque dur principal (généralement C:)  -> Propriétés
Sous l'onglet "Outils" -> clique sur "vérifier maintenant" sous "vérifications des erreurs"
Coche les deux options et valide

Le pc va demander à redémarrer, accepte, tu auras un démarrage plus long avec une phase de recherche, laisse-faire

Quand cela sera terminé et que tu auras réussis à revenir sur ton bureau, fais ceci :
Télécharge Report_CHDSK.exe (de Laddy) sur ton bureau

  • Double-Clic dessus pour l'exécuter.
  • Le rapport va s'ouvrir dans le bloc-note.
  • Copie-colle son contenu dans ta prochaine réponse.

    Note : Si ce n'est pas le cas, le rapport nommé RapportCHK_DD-MM-AAAA.txt se trouve sur ton bureau.

    :jap: 
    27 Avril 2012 20:17:18

    Bonsoir

    Mon pc n'accepte pas le téléchargement de bluescreenview.
    27 Avril 2012 20:20:23

    dsl, j'ai désactiver mon antivirus
    27 Avril 2012 22:21:53

    voici le rapport :

    Report_CHKDSK v1.0 BY Laddy
    Début le 27/04/2012 à 23:26:34.
    OS : Microsoft Windows XP Service Pack 3
    Utilisateur BATMAN : Administrateur
    Lancement: D:\Mes documents\Téléchargements\Report_CHKDSK.exe


    ########## [EVENTLOG CHKDSK]


    SourceName = Winlogon
    TimeGenerated = 27/04/2012 23:12:21
    Message = Vérification du système de fichiers sur C:
    Le type du système de fichiers est NTFS.
    Le nom de volume est Disque local.

    Une vérification de disque a été planifiée.
    Windows va maintenant vérifier le disque.
    Nettoyage en cours de petites incohérences sur le lecteur.
    Nettoyage en cours de 1610 entrées d'index inutilisées à partir de l'index $SII du fichier 0x9.
    Nettoyage en cours de 1610 entrées d'index inutilisées à partir de l'index $SDH du fichier 0x9.
    Nettoyage en cours de 1610 descripteurs de sécurité non utilisés.
    CHKDSK est en train de vérifier les données du fichier (étape 4 de 5)...
    La vérification des données du fichier est terminée.
    CHKDSK est en train de vérifier l'espace libre (étape 5 de 5)...
    La vérification de l'espace libre est terminée.

    73709968 Ko d'espace disque au total.
    39575552 Ko dans 97251 fichiers.
    33436 Ko dans 15537 index.
    0 Ko dans des secteurs défectueux.
    231036 Ko utilisés par le système.
    65536 Ko occupés par le fichier journal.
    33869944 Ko disponibles sur le disque.

    4096 octets dans chaque unité d'allocation.
    18427492 unités d'allocation au total sur le disque.
    8467486 unités d'allocation disponibles sur le disque.

    Informations internes :
    80 6f 02 00 9e b8 01 00 65 57 02 00 00 00 00 00 .o......eW......
    3a 01 00 00 02 00 00 00 0a 12 00 00 00 00 00 00 :...............
    14 53 a3 04 00 00 00 00 5e 78 87 56 00 00 00 00 .S......^x.V....
    f8 c3 c4 24 00 00 00 00 d2 5b e1 ad 06 00 00 00 ...$.....[......
    36 88 69 db 01 00 00 00 aa 1d 7e 10 09 00 00 00 6.i.......~.....
    99 9e 36 00 00 00 00 00 38 3a 07 00 e3 7b 01 00 ..6.....8:...{..
    00 00 00 00 00 00 80 6f 09 00 00 00 b1 3c 00 00 .......o.....<..

    Windows a terminé la vérification de votre disque.
    Veuillez patienter pendant le redémarrage de votre ordinateur.


    ###########################################################################



    ########## ENDOF 23:26:38

    a c 614 8 Sécurité
    27 Avril 2012 22:29:47

    Re,

    Tu as réussis à avoir un résultat avec Bluescreenview ?
    28 Avril 2012 13:41:44

    Bonjour,

    Il n'y a rien sur bleuscreenview a savoir que la fenetre lorsque j'essaie de l'ouvrir se ferme automatiquement.
    a c 614 8 Sécurité
    28 Avril 2012 14:35:47

    Re,

    Tu peux essayer l'autre dans le tuto, WhoCrashed ?
    29 Avril 2012 11:05:56

    Bonjour,

    Voici la seule chose que WhoCrashed me donne :


    --------------------------------------------------------------------------------
    Welcome to WhoCrashed (HOME EDITION) v 3.04
    --------------------------------------------------------------------------------

    This program checks for drivers which have been crashing your computer. If your computer has displayed a blue screen of death, suddenly rebooted or shut down then this program will help you find the root cause and possibly a solution.

    Whenever a computer suddenly reboots without displaying any notice or blue screen of death, the first thing that is often thought about is a hardware failure. In reality, on Windows most crashes are caused by malfunctioning device drivers and kernel modules. In case of a kernel error, many computers do not show a blue screen unless they are configured for this. Instead these systems suddenly reboot without any notice.

    This program will analyze your crash dumps with the single click of a button. It will tell you what drivers are likely to be responsible for crashing your computer. If will report a conclusion which offers suggestions on how to proceed in any situation while the analysis report will display internet links which will help you further troubleshoot any detected problems.


    To obtain technical support visit www.resplendence.com/support

    Click here to check if you have the latest version or if an update is available.

    Just click the Analyze button for a comprehensible report ...



    --------------------------------------------------------------------------------
    Home Edition Notice
    --------------------------------------------------------------------------------

    This version of WhoCrashed is free for use at home only. If you would like to use this software at work or in a commercial environment you should get the professional edition of WhoCrashed which also allows analysis of crashdumps on remote drives and computers on the network and offers a range of additional features.

    Click here for more information on the professional edition.
    Click here to buy the the professional edition of WhoCrashed.



    --------------------------------------------------------------------------------
    System Information (local)
    --------------------------------------------------------------------------------

    computer name: HP_PAVILION
    windows version: Windows XP Service Pack 3, 5.1, build: 2600
    windows dir: C:\WINDOWS
    CPU: AuthenticAMD AMD Athlon(tm) XP 2800+ AMD586, level: 6
    1 logical processors, active mask: 1
    RAM: 1073201152 total
    VM: 2147352576, free: 2032574464



    --------------------------------------------------------------------------------
    Crash Dump Analysis
    --------------------------------------------------------------------------------

    Crash dump directory: C:\WINDOWS\Minidump

    Crash dumps are enabled on your computer.


    No valid crash dumps have been found on your computer


    --------------------------------------------------------------------------------
    Conclusion
    --------------------------------------------------------------------------------

    Crash dumps are enabled but no valid crash dumps have been found. It may be that there are problems which prevent crash dumps from being written out. Check out the following article for possible causes: If crash dumps are not written out.

    In case your computer does experience sudden reboots it is likely these are caused by malfunctioning hardware, power failure or a thermal issue. To troubleshoot a thermal issue, check the temperature using your BIOS setup program, check for dust in CPU and motherboard fans and if your computer is portable make sure it's located on a hard surface. Otherwise it's suggested you contact the support department of the manufacturer of your system or test your system with a memory test utility for further investigation.

    Check out the following articles for more information: Troubleshooting sudden resets and shut downs.

    Read the topic general suggestions for troubleshooting system crashes for more information.

    Note that it's not always possible to state with certainty whether a reported driver is actually responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further.

    a c 614 8 Sécurité
    29 Avril 2012 11:39:06

    Re,

    Ok, c’est donc pas un écran bleu le redémarrage ...

    On va regarder deux - trois choses :

    1) Télécharge OTL (de Old Timer) sur ton bureau.
  • Ferme toutes tes fenêtres, puis double clique sur OTL.exe pour le lancer.
    (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")
  • Coche en haut la case devant "Tous les utilisateurs"
  • Sous Personnalisation, copie-colle l'ensemble du texte ci-dessous, laisse les autres options par défaut.
    netsvcs
    msconfig
    drivers32
    activex
    /md5start
    explorer.exe
    wininit.exe
    winlogon.exe
    userinit.exe
    /md5stop
    %SYSTEMDRIVE%\*.exe
    %ALLUSERSPROFILE%\Application Data\*.
    %ALLUSERSPROFILE%\Application Data\*.exe /s
    %APPDATA%\*.
    %APPDATA%\*.exe /s
    %systemroot%\*. /mp /s
    %systemroot%\system32\*.dll /lockedfiles
    %systemroot%\Tasks\*.job /lockedfiles
    %systemroot%\system32\drivers\*.sys /lockedfiles
    hklm\software\clients\startmenuinternet|command /rs
    CREATERESTOREPOINT

  • Clique sur le bouton Analyse en haut à gauche puis patiente quelques instants.
  • A la fin du scan, deux rapports s'ouvriront OTL.Txt et Extras.Txt.

  • Pour les rapports, merci d'utiliser ce service de rapport en ligne : dépose le fichier via "parcourir" et poste simplement le lien obtenu dans ta réponse.
    Une aide à l'utilisation ici


    Note : Les rapports sont aussi enregistrés sur le bureau


    2) Télécharge TDSSKiller de Kaspersky sur ton bureau.

  • Décompresse-le en faisant clic-droit dessus -> extraire tout... (clique sur "suivant", "suivant" et "Terminer".)
  • Double clique sur "TDSSKiller.exe" pour lancer l'outil.
    (Utilisateur de Vista/Windows 7 : effectue un clic droit sur TDSSKiller.exe et sélectionne "Exécuter en tant qu'administrateur".)

  • Clique alors sur le bouton "Start Scan".
  • Laisse le scan s'effectuer.

  • Dans la fenêtre de résultat :
  • Si TDSS.tdl2 est détecté l'option Delete sera cochée par défaut.
  • Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
  • Pour la partie "Suspicious object" laisse sur "Skip"
  • /!\ si dans la partie "Suspicious object" le fichier est de type : c:\windows\123456789:987654321.exe (suite aléatoire), met l'option sur Delete
  • Si TDSS.tdl4 (mbr) est détecté assure toi que Cure est bien coché.
  • Clique enfin sur "Continue"

  • Il te sera surement demandé de redémarrer ton pc, fait-le en cliquant sur "Reboot now"

  • Au redémarrage va chercher le rapport de suppression, il se trouve ici :
    C:\ TDSSKiller.x.x.x.x_date_heure_log.txt

    Poste son contenu dans ta prochaine réponse.


    /!\ Désactive tes protections résidentes : antivirus, antispyware ... /!\ (Antivir peut bloquer cet outil sans raison valable)

    3) Télécharge MbrScan (de Eric71) sur ton bureau.
  • Ferme toutes tes fenêtres, puis double clique sur MbrScan.exe pour le lancer.
    (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")

  • Clique sur "report", un rapport texte va s'ouvrir, copie-le moi dans ta prochaine réponse.
    30 Avril 2012 00:49:47

    voici le rapport Mbrscan :

    [code]
    MBRScan v1.1.1

    OS : Windows XP Home Service Pack 3 (32 bit)
    PROCESSOR : x86 Family 6 Model 10 Stepping 0, AuthenticAMD
    BOOT : Normal Boot
    DATE : 2012/04/30 (ISO 8601) at 01:53:16
    ________________________________________________________________________________

    DISK : Device\Harddisk0\DR0 __WDC WD800BB-22FJA1 (14.03G14)
    BUS_TYPE : (0x03) P-ATA
    USE_PIO : YES
    MAX_TRANSFER : 128 Kb
    ALIGNMENT_MASK : word aligned
    ________________________________________________________________________________

    DISK : Device\Harddisk1\DR1 __MAXTOR STM3250820A (3.AAE)
    BUS_TYPE : (0x03) P-ATA
    USE_PIO : YES
    MAX_TRANSFER : 128 Kb
    ALIGNMENT_MASK : word aligned
    ________________________________________________________________________________

    Device\Harddisk0\DR0 74.53 Go [Fixed] ==> XP MBR Code

    MBR_MD5 : 985C31F5DFE690C939986805A46F5829
    MBR_SHA1 : 773326714F8E085EA17FE682CBB01085070321F6

    Device\Harddisk0\Partition1 4.22 Go 0x0B FAT32 [CHS] __ BOOTABLE __
    Device\Harddisk0\Partition2 70.30 Go 0x07 NTFS / HPFS
    ________________________________________________________________________________

    Device\Harddisk1\DR1 232.9 Go [Fixed] ==> XP MBR Code

    MBR_MD5 : 13A46CA080AF22112AF034901008B68B
    MBR_SHA1 : 3439DF29927B66DCAFDC667073840FA8D234D608

    Device\Harddisk1\Partition1 232.9 Go 0x07 NTFS / HPFS
    ________________________________________________________________________________

    ############################### Additional scan ################################

    DRIVER : C:\WINDOWS\System32\Drivers\dump_atapi.sys => Invisible on the disk
    ADDRESS : 0xF4B0B000
    SIZE : 96.0 Ko

    DRIVER : C:\WINDOWS\System32\Drivers\dump_WMILIB.SYS => Invisible on the disk
    ADDRESS : 0xF7CA1000
    SIZE : 8.0 Ko

    SystemStartOptions : FASTDETECT NOEXECUTE=OPTIN

    ________________________________________________________________________________

    _______MBR \Device\Harddisk0\DR0

    0x00000000 33 C0 8E D0 BC 00 7C FB 50 07 50 1F FC BE 1B 7C 3À.м.|ûP.P.ü¾.|
    0x00000010 BF 1B 06 50 57 B9 E5 01 F3 A4 CB BD BE 07 B1 04 ¿..PW¹å.ó¤Ë½¾.±.
    0x00000020 38 6E 00 7C 09 75 13 83 C5 10 E2 F4 CD 18 8B F5 8n.|.u..Å.âôÍ..õ
    0x00000030 83 C6 10 49 74 19 38 2C 74 F6 A0 B5 07 B4 07 8B .Æ.It.8,tö.µ.´..
    0x00000040 F0 AC 3C 00 74 FC BB 07 00 B4 0E CD 10 EB F2 88 ð¬<.tü»..´.Í.ëò.
    0x00000050 4E 10 E8 46 00 73 2A FE 46 10 80 7E 04 0B 74 0B N.èF.s*þF..~..t.
    0x00000060 80 7E 04 0C 74 05 A0 B6 07 75 D2 80 46 02 06 83 .~..t..¶.uÒ.F...
    0x00000070 46 08 06 83 56 0A 00 E8 21 00 73 05 A0 B6 07 EB F...V..è!.s..¶.ë
    0x00000080 BC 81 3E FE 7D 55 AA 74 0B 80 7E 10 00 74 C8 A0 ¼.>þ}Uªt..~..tÈ.
    0x00000090 B7 07 EB A9 8B FC 1E 57 8B F5 CB BF 05 00 8A 56 ·.ë©.ü.W.õË¿...V
    0x000000A0 00 B4 08 CD 13 72 23 8A C1 24 3F 98 8A DE 8A FC .´.Í.r#.Á$?..Þ.ü
    0x000000B0 43 F7 E3 8B D1 86 D6 B1 06 D2 EE 42 F7 E2 39 56 C÷ã.Ñ.Ö±.ÒîB÷â9V
    0x000000C0 0A 77 23 72 05 39 46 08 73 1C B8 01 02 BB 00 7C .w#r.9F.s.¸..».|
    0x000000D0 8B 4E 02 8B 56 00 CD 13 73 51 4F 74 4E 32 E4 8A .N..V.Í.sQOtN2ä.
    0x000000E0 56 00 CD 13 EB E4 8A 56 00 60 BB AA 55 B4 41 CD V.Í.ëä.V.`»ªU´AÍ
    0x000000F0 13 72 36 81 FB 55 AA 75 30 F6 C1 01 74 2B 61 60 .r6.ûUªu0öÁ.t+a`
    0x00000100 6A 00 6A 00 FF 76 0A FF 76 08 6A 00 68 00 7C 6A j.j..v..v.j.h.|j
    0x00000110 01 6A 10 B4 42 8B F4 CD 13 61 61 73 0E 4F 74 0B .j.´B.ôÍ.aas.Ot.
    0x00000120 32 E4 8A 56 00 CD 13 EB D6 61 F9 C3 54 61 62 6C 2ä.V.Í.ëÖaùÃTabl
    0x00000130 65 20 64 65 20 70 61 72 74 69 74 69 6F 6E 20 6E e de partition n
    0x00000140 6F 6E 20 76 61 6C 69 64 65 00 45 72 72 65 75 72 on valide.Erreur
    0x00000150 20 6C 6F 72 73 20 64 75 20 63 68 61 72 67 65 6D lors du chargem
    0x00000160 65 6E 74 20 64 75 20 73 79 73 74 8A 6D 65 20 64 ent du syst.me d
    0x00000170 27 65 78 70 6C 6F 69 74 61 74 69 00 53 79 73 74 'exploitati.Syst
    0x00000180 8A 6D 65 20 64 27 65 78 70 6C 6F 69 74 61 74 69 .me d'exploitati
    0x00000190 6F 6E 20 61 62 73 65 6E 74 00 00 00 00 00 00 00 on absent.......
    0x000001A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    0x000001B0 00 00 00 00 00 2C 4A 7C 91 0A C4 9B 00 00 80 01 .....,J|..Ä.....
    0x000001C0 01 00 0B EF BF 49 3F 00 00 00 61 32 87 00 00 00 ...ï¿I?...a2....
    0x000001D0 81 4A 0F EF FF FF A0 32 87 00 60 73 C9 08 00 00 .J.ï...2..`sÉ...
    0x000001E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    0x000001F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA ..............Uª

    _______MBR \Device\Harddisk1\DR1

    0x00000000 33 C0 8E D0 BC 00 7C FB 50 07 50 1F FC BE 1B 7C 3À.м.|ûP.P.ü¾.|
    0x00000010 BF 1B 06 50 57 B9 E5 01 F3 A4 CB BD BE 07 B1 04 ¿..PW¹å.ó¤Ë½¾.±.
    0x00000020 38 6E 00 7C 09 75 13 83 C5 10 E2 F4 CD 18 8B F5 8n.|.u..Å.âôÍ..õ
    0x00000030 83 C6 10 49 74 19 38 2C 74 F6 A0 B5 07 B4 07 8B .Æ.It.8,tö.µ.´..
    0x00000040 F0 AC 3C 00 74 FC BB 07 00 B4 0E CD 10 EB F2 88 ð¬<.tü»..´.Í.ëò.
    0x00000050 4E 10 E8 46 00 73 2A FE 46 10 80 7E 04 0B 74 0B N.èF.s*þF..~..t.
    0x00000060 80 7E 04 0C 74 05 A0 B6 07 75 D2 80 46 02 06 83 .~..t..¶.uÒ.F...
    0x00000070 46 08 06 83 56 0A 00 E8 21 00 73 05 A0 B6 07 EB F...V..è!.s..¶.ë
    0x00000080 BC 81 3E FE 7D 55 AA 74 0B 80 7E 10 00 74 C8 A0 ¼.>þ}Uªt..~..tÈ.
    0x00000090 B7 07 EB A9 8B FC 1E 57 8B F5 CB BF 05 00 8A 56 ·.ë©.ü.W.õË¿...V
    0x000000A0 00 B4 08 CD 13 72 23 8A C1 24 3F 98 8A DE 8A FC .´.Í.r#.Á$?..Þ.ü
    0x000000B0 43 F7 E3 8B D1 86 D6 B1 06 D2 EE 42 F7 E2 39 56 C÷ã.Ñ.Ö±.ÒîB÷â9V
    0x000000C0 0A 77 23 72 05 39 46 08 73 1C B8 01 02 BB 00 7C .w#r.9F.s.¸..».|
    0x000000D0 8B 4E 02 8B 56 00 CD 13 73 51 4F 74 4E 32 E4 8A .N..V.Í.sQOtN2ä.
    0x000000E0 56 00 CD 13 EB E4 8A 56 00 60 BB AA 55 B4 41 CD V.Í.ëä.V.`»ªU´AÍ
    0x000000F0 13 72 36 81 FB 55 AA 75 30 F6 C1 01 74 2B 61 60 .r6.ûUªu0öÁ.t+a`
    0x00000100 6A 00 6A 00 FF 76 0A FF 76 08 6A 00 68 00 7C 6A j.j..v..v.j.h.|j
    0x00000110 01 6A 10 B4 42 8B F4 CD 13 61 61 73 0E 4F 74 0B .j.´B.ôÍ.aas.Ot.
    0x00000120 32 E4 8A 56 00 CD 13 EB D6 61 F9 C3 49 6E 76 61 2ä.V.Í.ëÖaùÃInva
    0x00000130 6C 69 64 20 70 61 72 74 69 74 69 6F 6E 20 74 61 lid partition ta
    0x00000140 62 6C 65 00 45 72 72 6F 72 20 6C 6F 61 64 69 6E ble.Error loadin
    0x00000150 67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74 g operating syst
    0x00000160 65 6D 00 4D 69 73 73 69 6E 67 20 6F 70 65 72 61 em.Missing opera
    0x00000170 74 69 6E 67 20 73 79 73 74 65 6D 00 00 00 00 00 ting system.....
    0x00000180 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    0x00000190 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    0x000001A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    0x000001B0 00 00 00 00 00 2C 44 63 B1 B3 20 65 00 00 00 01 .....,Dc±³ e....
    0x000001C0 01 00 07 EF FF FF 3F 00 00 00 91 41 1C 1D 00 00 ...ï..?....A....
    0x000001D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    0x000001E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
    0x000001F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA ..............Uª


    Aucun rapport du scan TDSSKiller
    a c 614 8 Sécurité
    30 Avril 2012 09:37:58

    Re,

    Il me manque les rapports d'OTL ...

    Que s'est-il passé avec TDSSKiller, le scan s'est effectué ou non ?
    Le rapport n'est pas ici ? C:\ TDSSKiller.x.x.x.x_date_heure_log.txt
    30 Avril 2012 11:10:40

    Bonjour,

    Voici le rapport TDSSKiller, mon pc n'a pas redémarré a la suite de ce scan.

    01:34:41.0984 1248 TDSS rootkit removing tool 2.7.33.0 Apr 24 2012 18:43:43
    01:34:42.0437 1248 ============================================================
    01:34:42.0437 1248 Current date / time: 2012/04/30 01:34:42.0437
    01:34:42.0437 1248 SystemInfo:
    01:34:42.0437 1248
    01:34:42.0437 1248 OS Version: 5.1.2600 ServicePack: 3.0
    01:34:42.0437 1248 Product type: Workstation
    01:34:42.0437 1248 ComputerName: HP_PAVILION
    01:34:42.0437 1248 UserName: BATMAN
    01:34:42.0437 1248 Windows directory: C:\WINDOWS
    01:34:42.0437 1248 System windows directory: C:\WINDOWS
    01:34:42.0437 1248 Processor architecture: Intel x86
    01:34:42.0437 1248 Number of processors: 1
    01:34:42.0437 1248 Page size: 0x1000
    01:34:42.0437 1248 Boot type: Normal boot
    01:34:42.0437 1248 ============================================================
    01:34:45.0750 1248 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2861, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
    01:34:45.0781 1248 Drive \Device\Harddisk1\DR1 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x7E2D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
    01:34:45.0781 1248 ============================================================
    01:34:45.0781 1248 \Device\Harddisk0\DR0:
    01:34:45.0781 1248 MBR partitions:
    01:34:45.0781 1248 \Device\Harddisk0\DR0\Partition0: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x873261
    01:34:45.0796 1248 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x8732DF, BlocksNum 0x8C97321
    01:34:45.0796 1248 \Device\Harddisk1\DR1:
    01:34:45.0796 1248 MBR partitions:
    01:34:45.0796 1248 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C4191
    01:34:45.0796 1248 ============================================================
    01:34:45.0828 1248 D: <-> \Device\Harddisk1\DR1\Partition0
    01:34:45.0828 1248 E: <-> \Device\Harddisk0\DR0\Partition0
    01:34:45.0859 1248 C: <-> \Device\Harddisk0\DR0\Partition1
    01:34:45.0859 1248 ============================================================
    01:34:45.0859 1248 Initialize success
    01:34:45.0859 1248 ============================================================
    01:35:53.0828 1236 ============================================================
    01:35:53.0828 1236 Scan started
    01:35:53.0828 1236 Mode: Manual;
    01:35:53.0828 1236 ============================================================
    01:35:54.0546 1236 3xHybrid (998519aa8465768a7880b5671c8c6714) C:\WINDOWS\system32\DRIVERS\3xHybrid.sys
    01:35:54.0562 1236 3xHybrid - ok
    01:35:54.0593 1236 Abiosdsk - ok
    01:35:54.0625 1236 abp480n5 - ok
    01:35:54.0687 1236 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
    01:35:54.0703 1236 ACPI - ok
    01:35:54.0765 1236 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
    01:35:54.0765 1236 ACPIEC - ok
    01:35:54.0859 1236 AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    01:35:54.0890 1236 AdobeFlashPlayerUpdateSvc - ok
    01:35:54.0906 1236 adpu160m - ok
    01:35:54.0984 1236 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
    01:35:54.0984 1236 aec - ok
    01:35:55.0031 1236 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
    01:35:55.0031 1236 AFD - ok
    01:35:55.0046 1236 Aha154x - ok
    01:35:55.0078 1236 aic78u2 - ok
    01:35:55.0109 1236 aic78xx - ok
    01:35:55.0578 1236 ALCXWDM (dd8520280304b6145a6be31008748c7c) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
    01:35:55.0625 1236 ALCXWDM - ok
    01:35:55.0968 1236 Alerter (758fdc60d41716ef889d849989b4b1cd) C:\WINDOWS\system32\alrsvc.dll
    01:35:55.0968 1236 Alerter - ok
    01:35:56.0015 1236 ALG (5e9a6658a2a69ae7eb195113b7a2e7a9) C:\WINDOWS\System32\alg.exe
    01:35:56.0015 1236 ALG - ok
    01:35:56.0078 1236 AliIde - ok
    01:35:56.0125 1236 AmdK7 (d3dabc57be6d456dfd4bc026cfa582ff) C:\WINDOWS\system32\DRIVERS\amdk7.sys
    01:35:56.0156 1236 AmdK7 - ok
    01:35:56.0171 1236 amsint - ok
    01:35:56.0203 1236 ANIO (920298c7aef97d8168d219d35975d295) C:\WINDOWS\system32\ANIO.SYS
    01:35:56.0234 1236 ANIO - ok
    01:35:56.0328 1236 ANIWZCSdService (aa3d68f26b2a27f660afc46039b061a4) C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
    01:35:56.0328 1236 ANIWZCSdService - ok
    01:35:56.0421 1236 Apple Mobile Device (4b5ae15e5c73eb4dc8dbec2788230d41) C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    01:35:56.0421 1236 Apple Mobile Device - ok
    01:35:56.0484 1236 AppMgmt (f36c9f78fc902c8dce4d3b576bb0435a) C:\WINDOWS\System32\appmgmts.dll
    01:35:56.0515 1236 AppMgmt - ok
    01:35:56.0562 1236 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
    01:35:56.0562 1236 Arp1394 - ok
    01:35:56.0593 1236 asc - ok
    01:35:56.0609 1236 asc3350p - ok
    01:35:56.0640 1236 asc3550 - ok
    01:35:56.0765 1236 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
    01:35:56.0781 1236 aspnet_state - ok
    01:35:56.0843 1236 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
    01:35:56.0843 1236 AsyncMac - ok
    01:35:56.0906 1236 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
    01:35:56.0906 1236 atapi - ok
    01:35:56.0921 1236 Atdisk - ok
    01:35:56.0984 1236 atksgt (6e996cf8459a2594e0e9609d0e34d41f) C:\WINDOWS\system32\DRIVERS\atksgt.sys
    01:35:57.0000 1236 atksgt - ok
    01:35:57.0062 1236 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
    01:35:57.0062 1236 Atmarpc - ok
    01:35:57.0109 1236 AudioSrv (b4005aef7873144634765b570dac466e) C:\WINDOWS\System32\audiosrv.dll
    01:35:57.0109 1236 AudioSrv - ok
    01:35:57.0171 1236 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
    01:35:57.0171 1236 audstub - ok
    01:35:57.0234 1236 basic2 (1b9c81ab9a456eabd9f8335f04b5f495) C:\WINDOWS\system32\DRIVERS\HSF_BSC2.sys
    01:35:57.0250 1236 basic2 - ok
    01:35:57.0312 1236 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
    01:35:57.0312 1236 Beep - ok
    01:35:57.0406 1236 BITS (baa0b6e647c1ad593e9bae5cc31bcffb) C:\WINDOWS\system32\qmgr.dll
    01:35:57.0515 1236 BITS - ok
    01:35:57.0609 1236 Bonjour Service (3f56903e124e820aeece6d471583c6c1) C:\Program Files\Bonjour\mDNSResponder.exe
    01:35:57.0609 1236 Bonjour Service - ok
    01:35:57.0656 1236 Bridge (f934d1b230f84e1d19dd00ac5a7a83ed) C:\WINDOWS\system32\DRIVERS\bridge.sys
    01:35:57.0656 1236 Bridge - ok
    01:35:57.0687 1236 BridgeMP (f934d1b230f84e1d19dd00ac5a7a83ed) C:\WINDOWS\system32\DRIVERS\bridge.sys
    01:35:57.0687 1236 BridgeMP - ok
    01:35:57.0750 1236 Browser (06b54a7b1ef7cb16bfd0e208d343fa71) C:\WINDOWS\System32\browser.dll
    01:35:57.0750 1236 Browser - ok
    01:35:57.0828 1236 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
    01:35:57.0828 1236 cbidf2k - ok
    01:35:57.0890 1236 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
    01:35:57.0906 1236 CCDECODE - ok
    01:35:57.0921 1236 cd20xrnt - ok
    01:35:57.0968 1236 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
    01:35:57.0968 1236 Cdaudio - ok
    01:35:58.0015 1236 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
    01:35:58.0015 1236 Cdfs - ok
    01:35:58.0046 1236 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
    01:35:58.0046 1236 Cdrom - ok
    01:35:58.0078 1236 Changer - ok
    01:35:58.0140 1236 cisvc (793ef38a5fd086c3c8e48a8a861562ed) C:\WINDOWS\System32\cisvc.exe
    01:35:58.0156 1236 cisvc - ok
    01:35:58.0218 1236 ClipSrv (8b30cbb0c07d49b2658fb190946b0e7e) C:\WINDOWS\system32\clipsrv.exe
    01:35:58.0218 1236 ClipSrv - ok
    01:35:58.0312 1236 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    01:35:58.0359 1236 clr_optimization_v2.0.50727_32 - ok
    01:35:58.0390 1236 CmdIde - ok
    01:35:58.0406 1236 COMSysApp - ok
    01:35:58.0468 1236 Cpqarray - ok
    01:35:58.0515 1236 CryptSvc (7a6d0b71035e123fdda2156a25578ad3) C:\WINDOWS\System32\cryptsvc.dll
    01:35:58.0515 1236 CryptSvc - ok
    01:35:58.0578 1236 d343bus (3350ef328850fddbb15150ca54fef1c1) C:\WINDOWS\system32\DRIVERS\d343bus.sys
    01:35:58.0578 1236 d343bus - ok
    01:35:58.0593 1236 d343port (33bf4c7b1a6625ffd4f3259aa130a11d) C:\WINDOWS\system32\DRIVERS\d343port.sys
    01:35:58.0609 1236 d343port - ok
    01:35:58.0625 1236 dac2w2k - ok
    01:35:58.0656 1236 dac960nt - ok
    01:35:58.0734 1236 DcomLaunch (0203b1aad358f206cb0a3c1f93cce17a) C:\WINDOWS\system32\rpcss.dll
    01:35:58.0750 1236 DcomLaunch - ok
    01:35:58.0796 1236 dgderdrv (6216fd7fd227de454238a702b218cec7) C:\WINDOWS\system32\drivers\dgderdrv.sys
    01:35:58.0796 1236 dgderdrv - ok
    01:35:58.0859 1236 Dhcp (318f535dc05551d96deeb90b6d6904de) C:\WINDOWS\System32\dhcpcsvc.dll
    01:35:58.0875 1236 Dhcp - ok
    01:35:58.0921 1236 Diag69xp (04de7436491411a4a8aa54a934925052) C:\WINDOWS\system32\Drivers\Diag69xp.sys
    01:35:58.0937 1236 Diag69xp - ok
    01:35:58.0968 1236 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
    01:35:58.0968 1236 Disk - ok
    01:35:59.0000 1236 dmadmin - ok
    01:35:59.0125 1236 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
    01:35:59.0140 1236 dmboot - ok
    01:35:59.0187 1236 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
    01:35:59.0187 1236 dmio - ok
    01:35:59.0234 1236 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
    01:35:59.0250 1236 dmload - ok
    01:35:59.0281 1236 dmserver (6797c23d6b79935482d7f0e8ca5e5b67) C:\WINDOWS\System32\dmserver.dll
    01:35:59.0281 1236 dmserver - ok
    01:35:59.0343 1236 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
    01:35:59.0359 1236 DMusic - ok
    01:35:59.0406 1236 Dnscache (1a1e59377fb6cacd711cc5073c4a7d79) C:\WINDOWS\System32\dnsrslvr.dll
    01:35:59.0406 1236 Dnscache - ok
    01:35:59.0437 1236 Dot3svc (3fcf86f03d0302443c21ce6e5bbf7a25) C:\WINDOWS\System32\dot3svc.dll
    01:35:59.0453 1236 Dot3svc - ok
    01:35:59.0468 1236 dpti2o - ok
    01:35:59.0578 1236 driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys
    01:35:59.0578 1236 driverhardwarev2 - ok
    01:35:59.0640 1236 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
    01:35:59.0640 1236 drmkaud - ok
    01:35:59.0687 1236 eamon (d42dd9021acd47683b33adf21bca49aa) C:\WINDOWS\system32\DRIVERS\eamon.sys
    01:35:59.0687 1236 eamon - ok
    01:35:59.0750 1236 EapHost (8b5fc9087d2cab110bc2ed5cc5e7b8ac) C:\WINDOWS\System32\eapsvc.dll
    01:35:59.0765 1236 EapHost - ok
    01:35:59.0812 1236 ehdrv (fe7824239d132ad9ebd8645fe1199b30) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
    01:35:59.0812 1236 ehdrv - ok
    01:35:59.0937 1236 EhttpSrv (68d91a34ce51cf15c45dd68f7f1257e8) C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
    01:35:59.0937 1236 EhttpSrv - ok
    01:36:00.0140 1236 ekrn (191d8eccc40f05b52fac0513f35ba01d) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
    01:36:00.0250 1236 ekrn - ok
    01:36:00.0312 1236 epfwtdir (aa0667eb9a92414abb784c101a6c7fec) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
    01:36:00.0312 1236 epfwtdir - ok
    01:36:00.0390 1236 ERSvc (94f948cb12c4d35483f1e815deb16c7b) C:\WINDOWS\System32\ersvc.dll
    01:36:00.0390 1236 ERSvc - ok
    01:36:00.0453 1236 Eventlog (c3fb1d70cb88722267949694ba51759e) C:\WINDOWS\system32\services.exe
    01:36:00.0453 1236 Eventlog - ok
    01:36:00.0515 1236 EventSystem (ec16ae9b37eacf871629227a3f3913fd) C:\WINDOWS\System32\es.dll
    01:36:00.0531 1236 EventSystem - ok
    01:36:00.0609 1236 Fallback (c823debe2548656549f84a875d65237b) C:\WINDOWS\system32\DRIVERS\HSF_FALL.sys
    01:36:00.0609 1236 Fallback - ok
    01:36:00.0656 1236 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
    01:36:00.0656 1236 Fastfat - ok
    01:36:00.0718 1236 FastUserSwitchingCompatibility (1b8542f338cdd86929a084a455837158) C:\WINDOWS\System32\shsvcs.dll
    01:36:00.0718 1236 FastUserSwitchingCompatibility - ok
    01:36:00.0765 1236 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
    01:36:00.0765 1236 Fdc - ok
    01:36:00.0812 1236 FET5X86V (92cbce0913661ff966f9fb696a1775a5) C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys
    01:36:00.0812 1236 FET5X86V - ok
    01:36:00.0859 1236 FETNDIS (e9648254056bce81a85380c0c3647dc4) C:\WINDOWS\system32\DRIVERS\fetnd5.sys
    01:36:00.0859 1236 FETNDIS - ok
    01:36:00.0921 1236 FETNDISB (b0f11e97b051e7dcca40b0453f985636) C:\WINDOWS\system32\DRIVERS\fetnd5b.sys
    01:36:00.0921 1236 FETNDISB - ok
    01:36:00.0953 1236 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
    01:36:00.0953 1236 Fips - ok
    01:36:00.0984 1236 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
    01:36:01.0000 1236 Flpydisk - ok
    01:36:01.0046 1236 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
    01:36:01.0046 1236 FltMgr - ok
    01:36:01.0187 1236 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
    01:36:01.0187 1236 FontCache3.0.0.0 - ok
    01:36:01.0234 1236 Fsks (6483414841d4cab6c3b4db2ac6edd70b) C:\WINDOWS\system32\DRIVERS\HSF_FSKS.sys
    01:36:01.0234 1236 Fsks - ok
    01:36:01.0296 1236 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
    01:36:01.0296 1236 Fs_Rec - ok
    01:36:01.0343 1236 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
    01:36:01.0343 1236 Ftdisk - ok
    01:36:01.0375 1236 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
    01:36:01.0375 1236 GEARAspiWDM - ok
    01:36:01.0437 1236 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
    01:36:01.0468 1236 Gpc - ok
    01:36:01.0593 1236 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
    01:36:01.0593 1236 gupdate - ok
    01:36:01.0625 1236 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
    01:36:01.0625 1236 gupdatem - ok
    01:36:01.0703 1236 gusvc (408ddd80eede47175f6844817b90213e) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    01:36:01.0718 1236 gusvc - ok
    01:36:01.0796 1236 helpsvc (1247f83b705af0e796330442f7967cf8) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
    01:36:01.0796 1236 helpsvc - ok
    01:36:01.0843 1236 HidServ (a3b9b4a68bc839ce5a264d5908092261) C:\WINDOWS\System32\hidserv.dll
    01:36:01.0843 1236 HidServ - ok
    01:36:01.0875 1236 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
    01:36:01.0875 1236 HidUsb - ok
    01:36:01.0921 1236 hkmsvc (17b3c3d40cdba40c2e331d28be4de27f) C:\WINDOWS\System32\kmsvc.dll
    01:36:01.0921 1236 hkmsvc - ok
    01:36:01.0953 1236 hpn - ok
    01:36:02.0046 1236 hpqcxs08 (0a3c6aa4a9fc38c20ba4eac2c3351c05) C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcxs08.dll
    01:36:02.0078 1236 hpqcxs08 - ok
    01:36:02.0109 1236 hpqddsvc (df446ba625cc441617843e87798ce048) C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqddsvc.dll
    01:36:02.0109 1236 hpqddsvc - ok
    01:36:02.0140 1236 hpt3xx - ok
    01:36:02.0203 1236 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
    01:36:02.0203 1236 HPZid412 - ok
    01:36:02.0234 1236 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
    01:36:02.0234 1236 HPZipr12 - ok
    01:36:02.0281 1236 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
    01:36:02.0312 1236 HPZius12 - ok
    01:36:02.0375 1236 HSFHWBS2 (1821032e9ee6a72f10448824befc5deb) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
    01:36:02.0375 1236 HSFHWBS2 - ok
    01:36:02.0468 1236 HSF_DP (607edabfd9ca9c864f3d07b159a9ec19) C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
    01:36:02.0484 1236 HSF_DP - ok
    01:36:02.0578 1236 hsf_msft (74e379857d4c0dfb56de2d19b8f4c434) C:\WINDOWS\system32\DRIVERS\HSF_MSFT.sys
    01:36:02.0578 1236 hsf_msft - ok
    01:36:02.0640 1236 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
    01:36:02.0640 1236 HTTP - ok
    01:36:02.0718 1236 HTTPFilter (bd31cface38d1800abdb43f4260af0d5) C:\WINDOWS\System32\w3ssl.dll
    01:36:02.0718 1236 HTTPFilter - ok
    01:36:02.0750 1236 i2omgmt - ok
    01:36:02.0765 1236 i2omp - ok
    01:36:02.0828 1236 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
    01:36:02.0828 1236 i8042prt - ok
    01:36:02.0953 1236 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    01:36:02.0953 1236 IDriverT - ok
    01:36:03.0140 1236 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
    01:36:03.0218 1236 idsvc - ok
    01:36:03.0281 1236 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
    01:36:03.0281 1236 Imapi - ok
    01:36:03.0343 1236 ImapiService (c4221678bbaa55239c23632875759961) C:\WINDOWS\System32\imapi.exe
    01:36:03.0359 1236 ImapiService - ok
    01:36:03.0390 1236 ini910u - ok
    01:36:03.0437 1236 IntelIde - ok
    01:36:03.0500 1236 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
    01:36:03.0500 1236 ip6fw - ok
    01:36:03.0578 1236 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
    01:36:03.0578 1236 IpFilterDriver - ok
    01:36:03.0656 1236 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
    01:36:03.0656 1236 IpInIp - ok
    01:36:03.0703 1236 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
    01:36:03.0703 1236 IpNat - ok
    01:36:03.0843 1236 iPod Service (6e0faea90e71c5f1b9f3bc71b4cca2fa) C:\Program Files\iPod\bin\iPodService.exe
    01:36:03.0859 1236 iPod Service - ok
    01:36:03.0890 1236 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
    01:36:03.0890 1236 IPSec - ok
    01:36:03.0937 1236 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
    01:36:03.0937 1236 IRENUM - ok
    01:36:04.0000 1236 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
    01:36:04.0000 1236 isapnp - ok
    01:36:04.0125 1236 JavaQuickStarterService (0a5709543986843d37a92290b7838340) C:\Program Files\Java\jre6\bin\jqs.exe
    01:36:04.0125 1236 JavaQuickStarterService - ok
    01:36:04.0203 1236 K56 (9c5e3fdbfcc30cf71a49ca178b9ad442) C:\WINDOWS\system32\DRIVERS\HSF_K56K.sys
    01:36:04.0218 1236 K56 - ok
    01:36:04.0234 1236 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    01:36:04.0234 1236 Kbdclass - ok
    01:36:04.0281 1236 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
    01:36:04.0281 1236 kbdhid - ok
    01:36:04.0343 1236 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
    01:36:04.0343 1236 kmixer - ok
    01:36:04.0406 1236 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
    01:36:04.0406 1236 KSecDD - ok
    01:36:04.0468 1236 lanmanserver (1db8078a32e03ac8f5eb5e6dcac2aa34) C:\WINDOWS\System32\srvsvc.dll
    01:36:04.0468 1236 lanmanserver - ok
    01:36:04.0515 1236 lanmanworkstation (ad54ead46d92f413be189aabc1c59490) C:\WINDOWS\System32\wkssvc.dll
    01:36:04.0531 1236 lanmanworkstation - ok
    01:36:04.0578 1236 LANPkt (4ba59257f08fb3340308f39af5f2a894) C:\WINDOWS\system32\DRIVERS\LANPkt.sys
    01:36:04.0578 1236 LANPkt - ok
    01:36:04.0609 1236 lbrtfdc - ok
    01:36:04.0687 1236 lirsgt (975b6cf65f44e95883f3855bae8cecaf) C:\WINDOWS\system32\DRIVERS\lirsgt.sys
    01:36:04.0687 1236 lirsgt - ok
    01:36:04.0750 1236 LmHosts (0f357c079ac529a844ab5b18e4eef881) C:\WINDOWS\System32\lmhsvc.dll
    01:36:04.0750 1236 LmHosts - ok
    01:36:04.0812 1236 LVPr2Mon (1a7db7a00a4b0d8da24cd691a4547291) C:\WINDOWS\system32\Drivers\LVPr2Mon.sys
    01:36:04.0812 1236 LVPr2Mon - ok
    01:36:04.0921 1236 LVPrcSrv (0ddfdcaa92c7f553328db06ba599bea9) C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
    01:36:04.0937 1236 LVPrcSrv - ok
    01:36:05.0015 1236 LVUSBSta (be5e104be263921d6842c555db6a5c23) C:\WINDOWS\system32\DRIVERS\LVUSBSta.sys
    01:36:05.0015 1236 LVUSBSta - ok
    01:36:05.0140 1236 maconfservice (c2c71ca1359f81f2d1994501db2b088d) C:\Program Files\ma-config.com\maconfservice.exe
    01:36:05.0140 1236 maconfservice - ok
    01:36:05.0250 1236 MDM (11f714f85530a2bd134074dc30e99fca) C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
    01:36:05.0265 1236 MDM - ok
    01:36:05.0328 1236 mdmxsdk (eeaea6514ba7c9d273b5e87c4e1aab30) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
    01:36:05.0343 1236 mdmxsdk - ok
    01:36:05.0406 1236 Messenger (e67a66a3781c1a483f0f8992664cbe0d) C:\WINDOWS\System32\msgsvc.dll
    01:36:05.0406 1236 Messenger - ok
    01:36:05.0468 1236 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
    01:36:05.0468 1236 mnmdd - ok
    01:36:05.0500 1236 mnmsrvc (d3a2870cd96cda7bcff3dc54f64087ad) C:\WINDOWS\System32\mnmsrvc.exe
    01:36:05.0515 1236 mnmsrvc - ok
    01:36:05.0562 1236 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys
    01:36:05.0562 1236 Modem - ok
    01:36:05.0593 1236 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
    01:36:05.0593 1236 Mouclass - ok
    01:36:05.0656 1236 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
    01:36:05.0656 1236 mouhid - ok
    01:36:05.0687 1236 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
    01:36:05.0687 1236 MountMgr - ok
    01:36:05.0781 1236 MPE (83eff7b976ae24f1a496ca94a8a19919) C:\WINDOWS\system32\DRIVERS\MPE.sys
    01:36:05.0781 1236 MPE - ok
    01:36:05.0812 1236 mraid35x - ok
    01:36:05.0875 1236 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
    01:36:05.0875 1236 MRxDAV - ok
    01:36:05.0953 1236 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
    01:36:05.0953 1236 MRxSmb - ok
    01:36:06.0031 1236 MSDTC (8648d670ae0d95c95e7bbb5b80661796) C:\WINDOWS\System32\msdtc.exe
    01:36:06.0031 1236 MSDTC - ok
    01:36:06.0093 1236 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
    01:36:06.0093 1236 Msfs - ok
    01:36:06.0109 1236 MSIServer - ok
    01:36:06.0156 1236 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
    01:36:06.0156 1236 MSKSSRV - ok
    01:36:06.0203 1236 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
    01:36:06.0203 1236 MSPCLOCK - ok
    01:36:06.0234 1236 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
    01:36:06.0234 1236 MSPQM - ok
    01:36:06.0265 1236 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
    01:36:06.0296 1236 mssmbios - ok
    01:36:06.0328 1236 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
    01:36:06.0328 1236 MSTEE - ok
    01:36:06.0375 1236 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
    01:36:06.0375 1236 Mup - ok
    01:36:06.0437 1236 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
    01:36:06.0437 1236 NABTSFEC - ok
    01:36:06.0515 1236 napagent (69e4fbbabaeee1bff422e091da3171da) C:\WINDOWS\System32\qagentrt.dll
    01:36:06.0531 1236 napagent - ok
    01:36:06.0578 1236 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
    01:36:06.0593 1236 NDIS - ok
    01:36:06.0640 1236 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
    01:36:06.0640 1236 NdisIP - ok
    01:36:06.0687 1236 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
    01:36:06.0687 1236 NdisTapi - ok
    01:36:06.0718 1236 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
    01:36:06.0718 1236 Ndisuio - ok
    01:36:06.0765 1236 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
    01:36:06.0781 1236 NdisWan - ok
    01:36:06.0828 1236 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
    01:36:06.0828 1236 NDProxy - ok
    01:36:06.0875 1236 Net Driver HPZ12 (a081cb6fb9a12668f233eb5414be3a0e) C:\WINDOWS\System32\HPZinw12.dll
    01:36:06.0890 1236 Net Driver HPZ12 - ok
    01:36:06.0921 1236 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
    01:36:06.0937 1236 NetBIOS - ok
    01:36:06.0968 1236 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
    01:36:06.0984 1236 NetBT - ok
    01:36:07.0046 1236 NetDDE (5c9b1d83755b36237b70f95df3d46a52) C:\WINDOWS\system32\netdde.exe
    01:36:07.0062 1236 NetDDE - ok
    01:36:07.0078 1236 NetDDEdsdm (5c9b1d83755b36237b70f95df3d46a52) C:\WINDOWS\system32\netdde.exe
    01:36:07.0093 1236 NetDDEdsdm - ok
    01:36:07.0140 1236 Netlogon (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\System32\lsass.exe
    01:36:07.0156 1236 Netlogon - ok
    01:36:07.0218 1236 Netman (be0cb143fa427d93440ded18db8c918b) C:\WINDOWS\System32\netman.dll
    01:36:07.0234 1236 Netman - ok
    01:36:07.0343 1236 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
    01:36:07.0343 1236 NetTcpPortSharing - ok
    01:36:07.0421 1236 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
    01:36:07.0421 1236 NIC1394 - ok
    01:36:07.0500 1236 Nla (6f5f546a92c7b6ae45db1d6910781eb0) C:\WINDOWS\System32\mswsock.dll
    01:36:07.0515 1236 Nla - ok
    01:36:07.0546 1236 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
    01:36:07.0546 1236 Npfs - ok
    01:36:07.0578 1236 npggsvc - ok
    01:36:07.0640 1236 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
    01:36:07.0640 1236 Ntfs - ok
    01:36:07.0703 1236 NtLmSsp (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\System32\lsass.exe
    01:36:07.0703 1236 NtLmSsp - ok
    01:36:07.0781 1236 NtmsSvc (037d92b3a7853a183fcab77fb1d13d6c) C:\WINDOWS\system32\ntmssvc.dll
    01:36:07.0796 1236 NtmsSvc - ok
    01:36:07.0843 1236 NTSIM (a568b9a9ffe2d9387222a5c90f86d731) C:\WINDOWS\system32\ntsim.sys
    01:36:07.0875 1236 NTSIM - ok
    01:36:07.0921 1236 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
    01:36:07.0921 1236 Null - ok
    01:36:08.0640 1236 nv (8e72e452b9cc1e455d19e3c9fa964d37) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
    01:36:08.0718 1236 nv - ok
    01:36:09.0109 1236 NVSvc (934833b3cd462a6f8a96f64d024c8b20) C:\WINDOWS\system32\nvsvc32.exe
    01:36:09.0125 1236 NVSvc - ok
    01:36:09.0218 1236 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
    01:36:09.0218 1236 NwlnkFlt - ok
    01:36:09.0265 1236 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
    01:36:09.0265 1236 NwlnkFwd - ok
    01:36:09.0328 1236 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
    01:36:09.0328 1236 ohci1394 - ok
    01:36:09.0437 1236 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE
    01:36:09.0437 1236 ose - ok
    01:36:09.0500 1236 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys
    01:36:09.0500 1236 Parport - ok
    01:36:09.0531 1236 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
    01:36:09.0531 1236 PartMgr - ok
    01:36:09.0562 1236 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
    01:36:09.0562 1236 ParVdm - ok
    01:36:09.0625 1236 PCAMPR5 (b670c5d89f0726b7a2a7dfb4e968cdf8) C:\WINDOWS\system32\PCAMPR5.SYS
    01:36:09.0656 1236 PCAMPR5 - ok
    01:36:09.0703 1236 PCANDIS5 (ecd2f9d67b06606064daf6961a6d5efe) C:\WINDOWS\system32\PCANDIS5.SYS
    01:36:09.0734 1236 PCANDIS5 - ok
    01:36:09.0781 1236 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
    01:36:09.0781 1236 PCI - ok
    01:36:09.0812 1236 PCIDump - ok
    01:36:09.0843 1236 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
    01:36:09.0843 1236 PCIIde - ok
    01:36:09.0875 1236 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys
    01:36:09.0890 1236 Pcmcia - ok
    01:36:09.0906 1236 PDCOMP - ok
    01:36:09.0937 1236 PDFRAME - ok
    01:36:09.0968 1236 PDRELI - ok
    01:36:10.0000 1236 PDRFRAME - ok
    01:36:10.0015 1236 perc2 - ok
    01:36:10.0046 1236 perc2hib - ok
    01:36:10.0171 1236 PID_0928 (d2d2fa02b722336960eeae0ae7107891) C:\WINDOWS\system32\DRIVERS\LV561AV.SYS
    01:36:10.0218 1236 PID_0928 - ok
    01:36:10.0265 1236 PlugPlay (c3fb1d70cb88722267949694ba51759e) C:\WINDOWS\system32\services.exe
    01:36:10.0281 1236 PlugPlay - ok
    01:36:10.0343 1236 Pml Driver HPZ12 (65bc271f337637731d3c71455ae1f476) C:\WINDOWS\System32\HPZipm12.dll
    01:36:10.0343 1236 Pml Driver HPZ12 - ok
    01:36:10.0390 1236 PolicyAgent (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\System32\lsass.exe
    01:36:10.0390 1236 PolicyAgent - ok
    01:36:10.0468 1236 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
    01:36:10.0468 1236 PptpMiniport - ok
    01:36:10.0515 1236 Processor (e19c9632ac828f6f214391e2bdda11cb) C:\WINDOWS\system32\DRIVERS\processr.sys
    01:36:10.0515 1236 Processor - ok
    01:36:10.0531 1236 ProtectedStorage (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
    01:36:10.0546 1236 ProtectedStorage - ok
    01:36:10.0578 1236 Ps2 (390c204ced3785609ab24e9c52054a84) C:\WINDOWS\system32\DRIVERS\PS2.sys
    01:36:10.0578 1236 Ps2 - ok
    01:36:10.0625 1236 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
    01:36:10.0625 1236 PSched - ok
    01:36:10.0671 1236 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
    01:36:10.0671 1236 Ptilink - ok
    01:36:10.0718 1236 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
    01:36:10.0718 1236 PxHelp20 - ok
    01:36:10.0750 1236 ql1080 - ok
    01:36:10.0781 1236 Ql10wnt - ok
    01:36:10.0812 1236 ql12160 - ok
    01:36:10.0843 1236 ql1240 - ok
    01:36:10.0859 1236 ql1280 - ok
    01:36:10.0906 1236 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
    01:36:10.0937 1236 RasAcd - ok
    01:36:10.0984 1236 RasAuto (78da9ccdac683ef5aa87d1c919f6d221) C:\WINDOWS\System32\rasauto.dll
    01:36:10.0984 1236 RasAuto - ok
    01:36:11.0031 1236 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
    01:36:11.0031 1236 Rasl2tp - ok
    01:36:11.0093 1236 RasMan (0a48df90b4784f9b90a2671af992c914) C:\WINDOWS\System32\rasmans.dll
    01:36:11.0109 1236 RasMan - ok
    01:36:11.0156 1236 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
    01:36:11.0156 1236 RasPppoe - ok
    01:36:11.0171 1236 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
    01:36:11.0171 1236 Raspti - ok
    01:36:11.0218 1236 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
    01:36:11.0312 1236 Rdbss - ok
    01:36:11.0343 1236 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
    01:36:11.0343 1236 RDPCDD - ok
    01:36:11.0406 1236 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
    01:36:11.0406 1236 rdpdr - ok
    01:36:11.0484 1236 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
    01:36:11.0484 1236 RDPWD - ok
    01:36:11.0531 1236 RDSessMgr (9f63d9c5b238ed1c375d417eff3d5be7) C:\WINDOWS\system32\sessmgr.exe
    01:36:11.0546 1236 RDSessMgr - ok
    01:36:11.0609 1236 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
    01:36:11.0609 1236 redbook - ok
    01:36:11.0671 1236 RemoteAccess (7da370c31673c99497bd07068ee6e354) C:\WINDOWS\System32\mprdim.dll
    01:36:11.0671 1236 RemoteAccess - ok
    01:36:11.0750 1236 RemoteRegistry (e598d81197e2e0ec42a0c55772bb00e8) C:\WINDOWS\system32\regsvc.dll
    01:36:11.0750 1236 RemoteRegistry - ok
    01:36:11.0812 1236 RimUsb (616eac1b0e48b236a5a9b8ae07fdb81c) C:\WINDOWS\system32\Drivers\RimUsb.sys
    01:36:11.0812 1236 RimUsb - ok
    01:36:11.0875 1236 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
    01:36:11.0875 1236 RimVSerPort - ok
    01:36:11.0937 1236 Rksample (bb7549bd94d1aac3599c7606c50c48a0) C:\WINDOWS\system32\DRIVERS\HSF_SAMP.sys
    01:36:11.0953 1236 Rksample - ok
    01:36:12.0015 1236 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
    01:36:12.0015 1236 ROOTMODEM - ok
    01:36:12.0078 1236 RpcLocator (499c59a2584f6d4ea41e944da571d993) C:\WINDOWS\System32\locator.exe
    01:36:12.0078 1236 RpcLocator - ok
    01:36:12.0171 1236 RpcSs (0203b1aad358f206cb0a3c1f93cce17a) C:\WINDOWS\system32\rpcss.dll
    01:36:12.0171 1236 RpcSs - ok
    01:36:12.0250 1236 RSVP (414964844f4793acb868d057e8ed997e) C:\WINDOWS\System32\rsvp.exe
    01:36:12.0265 1236 RSVP - ok
    01:36:12.0359 1236 RT73 (c7bcf9808e2a1b4cabe16ff7fbce5fab) C:\WINDOWS\system32\DRIVERS\Dr71WU.sys
    01:36:12.0359 1236 RT73 - ok
    01:36:12.0437 1236 RTL8023xp (d66f1959686f26745ff07bcb27c15505) C:\WINDOWS\system32\DRIVERS\DLKRTXP.SYS
    01:36:12.0437 1236 RTL8023xp - ok
    01:36:12.0484 1236 RTLVLAN (f3bd2163e1ce249c56eff559ac550a37) C:\WINDOWS\system32\DRIVERS\RTLVLAN.SYS
    01:36:12.0484 1236 RTLVLAN - ok
    01:36:12.0531 1236 SamSs (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
    01:36:12.0531 1236 SamSs - ok
    01:36:12.0609 1236 SBRE (c201db8a39293e51fd292be663ad6176) C:\WINDOWS\system32\drivers\SBREdrv.sys
    01:36:12.0609 1236 SBRE - ok
    01:36:12.0671 1236 SCardSvr (67949cc8a865296c1333c96a4e1a2d66) C:\WINDOWS\System32\SCardSvr.exe
    01:36:12.0687 1236 SCardSvr - ok
    01:36:12.0765 1236 Schedule (55f5c5c1be1a78e285033e432ba01597) C:\WINDOWS\system32\schedsvc.dll
    01:36:12.0781 1236 Schedule - ok
    01:36:12.0843 1236 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
    01:36:12.0859 1236 Secdrv - ok
    01:36:12.0906 1236 seclogon (5ac311c0af2af5ec221670bb8dc479d3) C:\WINDOWS\System32\seclogon.dll
    01:36:12.0906 1236 seclogon - ok
    01:36:12.0953 1236 SENS (3531366f38f453d08fe72e7b32dfe786) C:\WINDOWS\system32\sens.dll
    01:36:12.0953 1236 SENS - ok
    01:36:12.0984 1236 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
    01:36:13.0015 1236 serenum - ok
    01:36:13.0046 1236 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys
    01:36:13.0046 1236 Serial - ok
    01:36:13.0156 1236 sfdrv01 (4c0d673281178cb496011a2e28571fc8) C:\WINDOWS\system32\drivers\sfdrv01.sys
    01:36:13.0156 1236 sfdrv01 - ok
    01:36:13.0218 1236 sfhlp02 (15be2b5e4dc5b8623cf167720682abc9) C:\WINDOWS\system32\drivers\sfhlp02.sys
    01:36:13.0218 1236 sfhlp02 - ok
    01:36:13.0265 1236 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
    01:36:13.0296 1236 Sfloppy - ok
    01:36:13.0328 1236 sfvfs02 (d5a7e09d2c6a702809e49190d52adc9f) C:\WINDOWS\system32\drivers\sfvfs02.sys
    01:36:13.0328 1236 sfvfs02 - ok
    01:36:13.0421 1236 SharedAccess (f4ce708a7d17a625de6c0fd746d50e88) C:\WINDOWS\System32\ipnathlp.dll
    01:36:13.0421 1236 SharedAccess - ok
    01:36:13.0500 1236 ShellHWDetection (1b8542f338cdd86929a084a455837158) C:\WINDOWS\System32\shsvcs.dll
    01:36:13.0500 1236 ShellHWDetection - ok
    01:36:13.0531 1236 Simbad - ok
    01:36:13.0578 1236 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
    01:36:13.0578 1236 SLIP - ok
    01:36:13.0656 1236 SoftFax (d9e8e0ce154a2f6430d9efabdf730867) C:\WINDOWS\system32\DRIVERS\HSF_FAXX.sys
    01:36:13.0656 1236 SoftFax - ok
    01:36:13.0687 1236 Sparrow - ok
    01:36:13.0750 1236 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
    01:36:13.0765 1236 splitter - ok
    01:36:13.0812 1236 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
    01:36:13.0828 1236 Spooler - ok
    01:36:13.0921 1236 sptd (cdddec541bc3c96f91ecb48759673505) C:\WINDOWS\system32\Drivers\sptd.sys
    01:36:13.0921 1236 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
    01:36:13.0921 1236 sptd ( LockedFile.Multi.Generic ) - warning
    01:36:13.0921 1236 sptd - detected LockedFile.Multi.Generic (1)
    01:36:13.0968 1236 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
    01:36:13.0968 1236 sr - ok
    01:36:14.0031 1236 srservice (6ed29124a1c83bd0cf6b26bd01ca6f6f) C:\WINDOWS\System32\srsvc.dll
    01:36:14.0031 1236 srservice - ok
    01:36:14.0109 1236 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
    01:36:14.0109 1236 Srv - ok
    01:36:14.0156 1236 SSDPSRV (ea9e0db8684cef2fd3badd671df5a112) C:\WINDOWS\System32\ssdpsrv.dll
    01:36:14.0156 1236 SSDPSRV - ok
    01:36:14.0218 1236 StarOpen (306521935042fc0a6988d528643619b3) C:\WINDOWS\system32\drivers\StarOpen.sys
    01:36:14.0218 1236 StarOpen - ok
    01:36:14.0281 1236 stisvc (d76b0e8a4ecad1adcc75fd14a7acc54c) C:\WINDOWS\system32\wiaservc.dll
    01:36:14.0281 1236 stisvc - ok
    01:36:14.0343 1236 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
    01:36:14.0343 1236 streamip - ok
    01:36:14.0406 1236 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
    01:36:14.0406 1236 swenum - ok
    01:36:14.0453 1236 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
    01:36:14.0453 1236 swmidi - ok
    01:36:14.0468 1236 SwPrv - ok
    01:36:14.0500 1236 symc810 - ok
    01:36:14.0531 1236 symc8xx - ok
    01:36:14.0562 1236 sym_hi - ok
    01:36:14.0578 1236 sym_u3 - ok
    01:36:14.0640 1236 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
    01:36:14.0640 1236 sysaudio - ok
    01:36:14.0718 1236 SysmonLog (0899061318a6b1d9596aabfc77f45e44) C:\WINDOWS\system32\smlogsvc.exe
    01:36:14.0734 1236 SysmonLog - ok
    01:36:14.0828 1236 TapiSrv (8e5231171ad6595ff002e848cc54fcd7) C:\WINDOWS\System32\tapisrv.dll
    01:36:14.0828 1236 TapiSrv - ok
    01:36:14.0890 1236 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
    01:36:14.0890 1236 Tcpip - ok
    01:36:14.0953 1236 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
    01:36:14.0953 1236 TDPIPE - ok
    01:36:14.0968 1236 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
    01:36:14.0968 1236 TDTCP - ok
    01:36:15.0015 1236 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
    01:36:15.0078 1236 TermDD - ok
    01:36:15.0156 1236 TermService (710bc85a8c22626ee094439e3ea0d38c) C:\WINDOWS\System32\termsrv.dll
    01:36:15.0156 1236 TermService - ok
    01:36:15.0218 1236 Themes (1b8542f338cdd86929a084a455837158) C:\WINDOWS\System32\shsvcs.dll
    01:36:15.0218 1236 Themes - ok
    01:36:15.0296 1236 TlntSvr (d859a9d2f026ce5804485068ffd6eaf2) C:\WINDOWS\System32\tlntsvr.exe
    01:36:15.0296 1236 TlntSvr - ok
    01:36:15.0500 1236 Tones (8021a499db46b2961c285168671cb9af) C:\WINDOWS\system32\DRIVERS\HSF_TONE.sys
    01:36:15.0500 1236 Tones - ok
    01:36:15.0515 1236 TosIde - ok
    01:36:15.0843 1236 TrkWks (e1a84a5067627407a53c2c4f8d8a1d2e) C:\WINDOWS\system32\trkwks.dll
    01:36:15.0843 1236 TrkWks - ok
    01:36:16.0015 1236 tunmp (8f861eda21c05857eb8197300a92501c) C:\WINDOWS\system32\DRIVERS\tunmp.sys
    01:36:16.0046 1236 tunmp - ok
    01:36:16.0156 1236 uagp35 (d85938f272d1bcf3db3a31fc0a048928) C:\WINDOWS\system32\DRIVERS\uagp35.sys
    01:36:16.0156 1236 uagp35 - ok
    01:36:16.0453 1236 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
    01:36:16.0453 1236 Udfs - ok
    01:36:16.0484 1236 ultra - ok
    01:36:17.0718 1236 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
    01:36:17.0734 1236 Update - ok
    01:36:18.0218 1236 upnphost (bd8166a495b02308f364b36249475f22) C:\WINDOWS\System32\upnphost.dll
    01:36:18.0218 1236 upnphost - ok
    01:36:18.0328 1236 UPS (1edc93d7bd731b5ca6248ae245099b60) C:\WINDOWS\System32\ups.exe
    01:36:18.0375 1236 UPS - ok
    01:36:18.0625 1236 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
    01:36:18.0625 1236 usbaudio - ok
    01:36:18.0671 1236 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
    01:36:18.0671 1236 usbccgp - ok
    01:36:18.0734 1236 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
    01:36:18.0734 1236 usbehci - ok
    01:36:18.0812 1236 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
    01:36:18.0812 1236 usbhub - ok
    01:36:18.0859 1236 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
    01:36:18.0859 1236 usbprint - ok
    01:36:18.0921 1236 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
    01:36:18.0921 1236 usbscan - ok
    01:36:18.0968 1236 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
    01:36:18.0968 1236 USBSTOR - ok
    01:36:19.0000 1236 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
    01:36:19.0000 1236 usbuhci - ok
    01:36:19.0062 1236 V124 (269c0ade94b90029b12497747be408cb) C:\WINDOWS\system32\DRIVERS\HSF_V124.sys
    01:36:19.0093 1236 V124 - ok
    01:36:19.0125 1236 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
    01:36:19.0125 1236 VgaSave - ok
    01:36:19.0203 1236 viaagp1 (4b039bbd037b01f5db5a144c837f283a) C:\WINDOWS\system32\DRIVERS\viaagp1.sys
    01:36:19.0203 1236 viaagp1 - ok
    01:36:19.0234 1236 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
    01:36:19.0250 1236 ViaIde - ok
    01:36:19.0312 1236 VIAudio (fece79a9aef62ad5f11a3f4a14f1dead) C:\WINDOWS\system32\drivers\vinyl97.sys
    01:36:19.0312 1236 VIAudio - ok
    01:36:19.0375 1236 videX32 (c147afa614b9925479d47cd173329789) C:\WINDOWS\system32\DRIVERS\videX32.sys
    01:36:19.0375 1236 videX32 - ok
    01:36:19.0437 1236 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
    01:36:19.0437 1236 VolSnap - ok
    01:36:19.0531 1236 VSS (5a4da252b2c0550ab83d129c02cf6c19) C:\WINDOWS\System32\vssvc.exe
    01:36:19.0531 1236 VSS - ok
    01:36:19.0593 1236 vulfnths (c0f55cc0903cfdc819f6d857402b697c) C:\WINDOWS\System32\Drivers\vulfnth.sys
    01:36:19.0609 1236 vulfnths - ok
    01:36:19.0656 1236 vulfntrs (545d98a7f61af1c7c4ad38b8f333e0b7) C:\WINDOWS\System32\Drivers\vulfntr.sys
    01:36:19.0656 1236 vulfntrs - ok
    01:36:19.0718 1236 W32Time (c1f726ee0b043b074a68992bc4aef8fd) C:\WINDOWS\System32\w32time.dll
    01:36:19.0718 1236 W32Time - ok
    01:36:19.0781 1236 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
    01:36:19.0781 1236 Wanarp - ok
    01:36:19.0859 1236 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
    01:36:19.0859 1236 Wdf01000 - ok
    01:36:19.0890 1236 WDICA - ok
    01:36:19.0937 1236 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
    01:36:19.0953 1236 wdmaud - ok
    01:36:20.0000 1236 WebClient (714670e64fbe6d28d99871ed9a52a334) C:\WINDOWS\System32\webclnt.dll
    01:36:20.0000 1236 WebClient - ok
    01:36:20.0093 1236 winachsf (ac89b0fd546d430cc784aee928ba108e) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
    01:36:20.0093 1236 winachsf - ok
    01:36:20.0203 1236 winmgmt (5e9deae9980ff34bcd6dde2e9e2bf911) C:\WINDOWS\system32\wbem\WMIsvc.dll
    01:36:20.0203 1236 winmgmt - ok
    01:36:20.0296 1236 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
    01:36:20.0312 1236 WmdmPmSN - ok
    01:36:20.0421 1236 Wmi (31c1fd0bbdc5b81c21edba4331edae55) C:\WINDOWS\System32\advapi32.dll
    01:36:20.0437 1236 Wmi - ok
    01:36:20.0500 1236 WmiApSrv (4e8e8a58f56b25d0795f484e5eb7f898) C:\WINDOWS\System32\wbem\wmiapsrv.exe
    01:36:20.0515 1236 WmiApSrv - ok
    01:36:20.0671 1236 WMPNetworkSvc (c9bea742ce225cc993c9465fddae4656) C:\Program Files\Windows Media Player\WMPNetwk.exe
    01:36:20.0734 1236 WMPNetworkSvc - ok
    01:36:20.0843 1236 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
    01:36:20.0843 1236 WpdUsb - ok
    01:36:20.0906 1236 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
    01:36:20.0906 1236 WS2IFSL - ok
    01:36:20.0953 1236 wscsvc (c1fd85db4a80a98d60ecb7a828e77fe0) C:\WINDOWS\system32\wscsvc.dll
    01:36:20.0953 1236 wscsvc - ok
    01:36:21.0000 1236 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
    01:36:21.0000 1236 WSTCODEC - ok
    01:36:21.0046 1236 wuauserv (75d6c5c3d2c93b1f9931e5dfb693ae2a) C:\WINDOWS\system32\wuauserv.dll
    01:36:21.0062 1236 wuauserv - ok
    01:36:21.0109 1236 WudfPf (6ff66513d372d479ef1810223c8d20ce) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
    01:36:21.0109 1236 WudfPf - ok
    01:36:21.0140 1236 WudfRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
    01:36:21.0140 1236 WudfRd - ok
    01:36:21.0187 1236 WudfSvc (575a4190d989f64732119e4114045a4f) C:\WINDOWS\System32\WUDFSvc.dll
    01:36:21.0203 1236 WudfSvc - ok
    01:36:21.0296 1236 WZCSVC (c336e54ee0c291a02f004667db1e66cb) C:\WINDOWS\System32\wzcsvc.dll
    01:36:21.0296 1236 WZCSVC - ok
    01:36:21.0359 1236 xfilt (c7f0d7aa3a3c2df333afdd593106f39f) C:\WINDOWS\system32\DRIVERS\xfilt.sys
    01:36:21.0359 1236 xfilt - ok
    01:36:21.0406 1236 xmlprov (f92a87fdda0c11c8604fbc2b864fa726) C:\WINDOWS\System32\xmlprov.dll
    01:36:21.0406 1236 xmlprov - ok
    01:36:21.0515 1236 MBR (0x1B8) (c99c3199cfaa4cbdcd91493f6d113a50) \Device\Harddisk0\DR0
    01:36:21.0671 1236 \Device\Harddisk0\DR0 - ok
    01:36:21.0703 1236 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
    01:36:21.0718 1236 \Device\Harddisk1\DR1 - ok
    01:36:21.0750 1236 Boot (0x1200) (b35fa0f8cb1092c4e795409550e0e405) \Device\Harddisk0\DR0\Partition0
    01:36:21.0750 1236 \Device\Harddisk0\DR0\Partition0 - ok
    01:36:21.0781 1236 Boot (0x1200) (f98f9e03d26149cdc9b7eb1aa8ecc0bf) \Device\Harddisk0\DR0\Partition1
    01:36:21.0781 1236 \Device\Harddisk0\DR0\Partition1 - ok
    01:36:21.0812 1236 Boot (0x1200) (9a4466da34cc8631a7b635e9c0ad4416) \Device\Harddisk1\DR1\Partition0
    01:36:21.0812 1236 \Device\Harddisk1\DR1\Partition0 - ok
    01:36:21.0828 1236 ============================================================
    01:36:21.0828 1236 Scan finished
    01:36:21.0828 1236 ============================================================
    01:36:21.0875 2632 Detected object count: 1
    01:36:21.0875 2632 Actual detected object count: 1
    01:37:41.0765 2632 sptd ( LockedFile.Multi.Generic ) - skipped by user
    01:37:41.0765 2632 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
    01:38:02.0843 0356 Deinitialize success
    30 Avril 2012 11:12:34

    Les scan d'OTL ont étaient placé là ou le lien donné m'a conduit voici le copié coller de ceux ci :

    OTL Extras logfile created on: 30/04/2012 01:14:35 - Run 1
    OTL by OldTimer - Version 3.2.42.2 Folder = D:\Mes documents\Téléchargements
    Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

    1023,48 Mb Total Physical Memory | 334,88 Mb Available Physical Memory | 32,72% Memory free
    2,03 Gb Paging File | 1,48 Gb Available in Paging File | 72,82% Paging File free
    Paging file location(s): C:\pagefile.sys 1152 2304 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 70,30 Gb Total Space | 32,07 Gb Free Space | 45,63% Space Free | Partition Type: NTFS
    Drive D: | 232,88 Gb Total Space | 119,91 Gb Free Space | 51,49% Space Free | Partition Type: NTFS
    Drive E: | 4,22 Gb Total Space | 1,10 Gb Free Space | 26,11% Space Free | Partition Type: FAT32

    Computer Name: HP_PAVILION | User Name: BATMAN | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: All users
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    ========== Extra Registry (SafeList) ==========


    ========== File Associations ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    .html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)

    [HKEY_USERS\S-1-5-21-515967899-1532298954-839522115-1003\SOFTWARE\Classes\<extension>]
    .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

    ========== Shell Spawning ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    exefile [open] -- "%1" %*
    http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
    https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
    Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
    Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

    ========== Security Center Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "UpdatesDisableNotify" = 0

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

    ========== System Restore Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
    "DisableSR" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
    "Start" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
    "Start" = 2

    ========== Firewall Settings ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
    "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
    "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
    "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
    "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    "EnableFirewall" = 0
    "DoNotAllowExceptions" = 0
    "DisableNotifications" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
    "33819:TCP" = 33819:TCP:*:Enabled:emule tcp
    "34862:UDP" = 34862:UDP:*:Enabled:emule udp
    "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
    "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
    "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
    "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
    "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
    "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
    "48113:TCP" = 48113:TCP:LocalSubNet:Enabled:maconfig_tcp
    "48113:UDP" = 48113:UDP:LocalSubNet:Enabled:maconfig_udp

    ========== Authorized Applications List ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqste08.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe -- (Hewlett-Packard Co.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposid01.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqscnvw.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe -- ()
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqkygrp.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe -- (Hewlett-Packard)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcopy2.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcopy2.exe:*:Enabled:hpqcopy2.exe -- (Hewlett-Packard Co.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqsudi.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqsudi.exe:*:Enabled:hpqsudi.exe -- (Hewlett-Packard Development Co. L.P.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqpsapp.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqpsapp.exe:*:Enabled:hpqpsapp.exe -- (Hewlett-Packard Development Co. L.P.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqpse.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqpse.exe:*:Enabled:hpqpse.exe -- (Hewlett-Packard Development Co. L.P.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgplgtupl.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe -- (Hewlett-Packard Co.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgpc01.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe -- (Hewlett-Packard)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqusgm.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe -- (Hewlett-Packard Co.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqusgh.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe -- (Hewlett-Packard Co.)
    "C:\Program Files\Hewlett-Packard\HP Software Update\hpwucli.exe" = C:\Program Files\Hewlett-Packard\HP Software Update\hpwucli.exe:*:Enabled:hpwucli.exe -- (Hewlett-Packard)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\SmartWebPrintExe.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe -- (Hewlett-Packard Co.)

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
    "C:\Program Files\eMule\emule.exe" = C:\Program Files\eMule\emule.exe:*:Enabled:eMule -- (http://www.emule-project.net)
    "C:\Program Files\Winamp Remote\bin\Orb.exe" = C:\Program Files\Winamp Remote\bin\Orb.exe:*:Enabled:o rb
    "C:\Program Files\Winamp Remote\bin\OrbTray.exe" = C:\Program Files\Winamp Remote\bin\OrbTray.exe:*:Enabled:o rbTray
    "C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe" = C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:o rb Stream Client
    "C:\Program Files\Anno 1701\Anno1701.exe" = C:\Program Files\Anno 1701\Anno1701.exe:*:Enabled:Anno 1701
    "C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
    "C:\Program Files\GameSpy Arcade\Aphex.exe" = C:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade
    "C:\Program Files\Electronic Arts\La Bataille pour la Terre du Milieu II\game.dat" = C:\Program Files\Electronic Arts\La Bataille pour la Terre du Milieu II\game.dat:*:Enabled:La Bataille pour la Terre du Milieu ™ II
    "C:\Program Files\Free Download Manager\fdm.exe" = C:\Program Files\Free Download Manager\fdm.exe:*:Enabled:Free Download Manager -- (FreeDownloadManager.ORG)
    "C:\Program Files\Free Download Manager\fdmwi.exe" = C:\Program Files\Free Download Manager\fdmwi.exe:*:Enabled:fdmwi -- ()
    "C:\Program Files\DreaMule\emule.exe" = C:\Program Files\DreaMule\emule.exe:*:Enabled:D reamule
    "C:\Documents and Settings\BATMAN\Local Settings\Temp\Rar$EX00.344\VisualBoyAdvance.exe" = C:\Documents and Settings\BATMAN\Local Settings\Temp\Rar$EX00.344\VisualBoyAdvance.exe:*:Enabled:VisualBoyAdvance emulator
    "C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe -- (Hewlett-Packard Co.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\HpqPhUnl.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe -- ()
    "C:\Program Files\Logitech\Logitech Vid\Vid.exe" = C:\Program Files\Logitech\Logitech Vid\Vid.exe:*:Enabled:Logitech Vid -- (Logitech Inc.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqste08.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe -- (Hewlett-Packard Co.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposid01.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqscnvw.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe -- ()
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqkygrp.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe -- (Hewlett-Packard)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcopy2.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcopy2.exe:*:Enabled:hpqcopy2.exe -- (Hewlett-Packard Co.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqsudi.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqsudi.exe:*:Enabled:hpqsudi.exe -- (Hewlett-Packard Development Co. L.P.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqpsapp.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqpsapp.exe:*:Enabled:hpqpsapp.exe -- (Hewlett-Packard Development Co. L.P.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqpse.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqpse.exe:*:Enabled:hpqpse.exe -- (Hewlett-Packard Development Co. L.P.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgplgtupl.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe -- (Hewlett-Packard Co.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgpc01.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe -- (Hewlett-Packard)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqusgm.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe -- (Hewlett-Packard Co.)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqusgh.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe -- (Hewlett-Packard Co.)
    "C:\Program Files\Hewlett-Packard\HP Software Update\hpwucli.exe" = C:\Program Files\Hewlett-Packard\HP Software Update\hpwucli.exe:*:Enabled:hpwucli.exe -- (Hewlett-Packard)
    "C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\SmartWebPrintExe.exe" = C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe -- (Hewlett-Packard Co.)
    "C:\Program Files\Spotify\spotify.exe" = C:\Program Files\Spotify\spotify.exe:*:Enabled:Spotify
    "C:\Program Files\adslTV\adsltv.exe" = C:\Program Files\adslTV\adsltv.exe:*:Enabled:adsl TV (EXE)
    "C:\Program Files\adslTV\VLC\vlc.exe" = C:\Program Files\adslTV\VLC\vlc.exe:*:Enabled:adsl TV (VLC)
    "C:\Program Files\CrazyLoader\crazyloader.exe" = C:\Program Files\CrazyLoader\crazyloader.exe:*:Enabled:CrazyLoader v1.2 -- (Vity)
    "C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Javaw (x64) -- (Sun Microsystems, Inc.)
    "C:\Program Files\Java\jre6\bin\javaws.exe" = C:\Program Files\Java\jre6\bin\javaws.exe:*:Enabled:Javaws (x64) -- (Sun Microsystems, Inc.)
    "C:\Program Files\ma-config.com\maconfservice.exe" = C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice -- (CybelSoft)
    "C:\Program Files\Microsoft Games\Age of Empires III - The WarChiefs Trial\age3x.exe" = C:\Program Files\Microsoft Games\Age of Empires III - The WarChiefs Trial\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs Trial -- (Ensemble Studios)
    "C:\Program Files\Agrar Simulator 2012\iupdate.dll" = C:\Program Files\Agrar Simulator 2012\iupdate.dll:*:Enabled:Agrar Simulator 2012
    "C:\Program Files\Agrar Simulator 2012\farm2012.dll" = C:\Program Files\Agrar Simulator 2012\farm2012.dll:*:Enabled:Agrar Simulator 2012
    "C:\WINDOWS\system32\muzapp.exe" = C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player -- (Musiccity Co.Ltd.)


    ========== HKEY_LOCAL_MACHINE Uninstall List ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{04460044-9149-45C6-A806-F2BF9CFCE762}" = Encyclopédie Microsoft Encarta 2004
    "{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
    "{0CB3C535-1171-4A20-B549-E2CB5DEB9723}" = MySQL Connector/ODBC 3.51
    "{0EF160D7-B9C3-4778-93CC-B2379BA59FE5}" = DAEMON Tools
    "{0F7C2E47-089E-4d23-B9F7-39BE00100776}" = Toolbox
    "{0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}" = OpenOffice.org 3.1
    "{12A76360-388E-4B27-ABEB-D5FC5378DD2A}" = HPPhotoSmartPhotobookWebPack1
    "{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
    "{18669FF9-C8FE-407a-9F70-E674896B1DB4}" = GPBaseService
    "{1B0098FF-1816-4F42-8203-FA29F5735596}" = Samsung PC Studio 3
    "{1C4551A6-4743-4093-91E4-1477CD655043}" = NVIDIA PhysX
    "{1D643CD2-4DD6-11D7-A4E0-000874180BB3}" = Microsoft Money
    "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    "{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
    "{26A24AE4-039D-4CA4-87B4-2F83216013F0}" = Java(TM) 6 Update 13
    "{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31
    "{29397E8C-6C98-4C84-83D8-FF987219EC01}_is1" = Rappelz
    "{2B7E4354-0492-460A-BDB1-1F59EE141025}" = AirPlus XtremeG DWL-G122
    "{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}" = HP Update
    "{2F19DC5A-D3F6-4D0F-82B3-9E2A72318896}" = ESET NOD32 Antivirus
    "{34BFB099-07B2-4E95-A673-7362D60866A2}" = PSSWCORE
    "{350C97B8-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
    "{3700194C-C5DD-439A-BE06-A66960CA4C70}" = MSVCSetup
    "{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
    "{41E340F0-0BD6-4A87-AF29-E9E584471756}" = VideoMate T , M , P Series Driver
    "{4640FDE1-B83A-4376-84ED-86F86BEE2D41}" = Driver Detective
    "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
    "{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
    "{4C590030-7469-453E-8589-D15DA9D03F52}" = ANIWZCS2 Service
    "{4CACFCD9-F71B-413A-8DF5-1A6419D5CDC6}" = Cards_Calendar_OrderGift_DoMorePlugout
    "{4F923F90-46D1-4492-9CC6-13FBBA00E7EC}" = C4400
    "{4FBCEA31-5D18-4212-9231-DE7CF1BE7DBB}" = Logitech Vid
    "{52A69E11-7CEB-4a7d-9607-68BA4F39A89B}" = DeviceDiscovery
    "{5ACE69F0-A3E8-44eb-88C1-0A841E700180}" = TrayApp
    "{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
    "{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
    "{679EC478-3FF9-4987-B2FF-C2C2B27532A2}" = DocProc
    "{6815FCDD-401D-481E-BA88-31B4754C2B46}" = Macromedia Flash Player 8
    "{687FEF8A-8597-40b4-832C-297EA3F35817}" = BufferChm
    "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
    "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
    "{6B407945-AE16-4A2A-BAAF-497FE62EDED3}" = PS_AIO_03_C4400_Software_Min
    "{6B437F94-056F-4791-AF2C-0D10E2706AF0}" = PanoStandAlone
    "{6ECB39BD-73C2-44DD-B1A0-898207C58D8B}" = Photo et imagerie HP 2.0 - All-in-One Pilote
    "{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
    "{7054ED85-498D-4D20-906F-14646AEC5581}" = Complément Microsoft Word pour Microsoft Works Suite
    "{7236672F-6430-439E-9B27-27EDEAF1D676}" = Diagnostics Utility
    "{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
    "{7B5CE976-C7A9-4E38-A7F3-6C8EF025DD8E}" = ANIO Service
    "{7EA6E8DF-37B3-4533-B1A4-45E490C77537}" = Ma-Config.com
    "{80533B67-C407-485D-8B5D-63BB8ED9D878}" = Scan
    "{835525BE-63BD-4EC4-9425-00CEAD4849C2}" = Widestream6
    "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
    "{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}" = HPDiagnosticAlert
    "{8704D51E-25B7-4F23-81E7-AA4F54790220}" = Microsoft AutoRoute v11.0
    "{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
    "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
    "{8A85DEAD-7C1F-4368-881C-72AC74CB2E91}" = UnloadSupport
    "{8C64E149-54BA-11D6-91B1-00500462BE80}" = Extension Système de Microsoft Money
    "{8E79F5DD-4A0A-452B-B3F8-0651E4D24854}" = Media Player Utilities 5.21
    "{8FDC1610-3FB5-4EF2-A0D0-CEDC3A525A25}" = THE SETTLERS - L'Héritage des Rois
    "{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}" = SmartWebPrinting
    "{9011040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
    "{90120000-0020-040C-0000-0000000FF1CE}" = Module de compatibilité pour Microsoft Office System 2007
    "{90689E08-95E6-4852-AD56-2634FCF48EB7}" = Media Player Product Tool 5.35
    "{954B7F64-D1D4-476F-8919-99585D0A6ABF}" = PS_AIO_03_C4400_Software
    "{9867A917-5D17-40DE-83BA-BEA5293194B1}" = Photo et imagerie HP 2.0 - All-in-One
    "{A0B9F8DF-C949-45ed-9808-7DC5C0C19C81}" = Status
    "{A21E0C06-FCC4-41CB-92C0-E13C9D002A79}" = Model Railroad Simulator
    "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
    "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
    "{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}" = SweetIM Toolbar for Internet Explorer 4.2
    "{A80FA752-C491-4ED9-ABF0-4278563160B2}" = 32 Bit HP CIO Components Installer
    "{A81A974F-8A22-43E6-9243-5198FF758DA1}" = SweetIM for Messenger 3.6
    "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
    "{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
    "{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
    "{ABFE9B50-BA4B-4FDF-A943-EA025119DBED}" = Age of Empires III - The WarChiefs Trial
    "{AC76BA86-7AD7-1036-7B44-A95000000001}" = Adobe Reader 9.5.1 - Français
    "{B314F1F2-49DF-41DD-A1B4-DC4192EC1021}" = HP Image Zone Express
    "{B7B3E9B3-FB14-4927-894B-E9124509AF5A}" = Adobe Flash Player 10 ActiveX
    "{B8DBED1E-8BC3-4d08-B94A-F9D7D88E9BBF}" = HPSSupply
    "{BAD0FA60-09CF-4411-AE6A-C2844C8812FA}" = HP Photosmart Essential 2.5
    "{BF5EE349-90CD-4422-A43B-661778180173}" = MP3 Player
    "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
    "{C27BC2A2-30DD-4014-B22E-63EB0DB572F9}" = Logitech Webcam Software
    "{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
    "{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio 3
    "{C900EF06-2E76-49C7-8DB0-41F629B21DC5}" = hp psc 1200 series
    "{C9CE9393-B568-428D-AD5B-55452B9748DB}" = PS_AIO_03_C4400_ProductContext
    "{CCB9B81A-167F-4832-B305-D2A0430840B3}" = WebReg
    "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
    "{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
    "{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}" = Search Settings 1.2
    "{D2E0F0CC-6BE0-490b-B08B-9267083E34C9}" = MarketResearch
    "{D99A8E3A-AE5A-4692-8B19-6F16D454E240}" = Destination Component
    "{D9D1A2FD-56B2-4F21-B959-745FE43CAB8C}" = Vegas Pro 9.0
    "{DA34FE93-5DC5-48E0-ACC8-A5389E05BB51}" = iTunes
    "{DBA8B9E1-C6FF-4624-9598-73D3B41A0903}" = Microsoft Picture It! Photo Premium 9
    "{DBC3FDEC-D5F4-439C-9A18-EF454A74E3DE}_is1" = NOD32 FiX
    "{E08DC77E-D09A-4e36-8067-D6DBBCC5F8DC}" = VideoToolkit01
    "{E6BAE954-487E-488B-BC4E-2E69E54E8117}" = Microsoft Works
    "{F42CD69D-E393-47c8-B2CD-B139C4ADA9A8}" = Copy
    "{F7B72805-2F58-4C04-AE9E-E7AD6A6EF62E}" = C4400_Help
    "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
    "{FF1F4E8E-A833-4c4b-A14A-45D5B841B5D8}" = HP Photosmart C4400 All-In-One Driver Software 10.0 Rel .3
    "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
    "1-2-3 Spyware Free_is1" = 1-2-3 Spyware Free v4.8
    "7-Zip" = 7-Zip 4.65
    "Adobe AIR" = Adobe AIR
    "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
    "Adobe Shockwave Player" = Adobe Shockwave Player 11.5
    "Axife Mouse Recorder DEMO_is1" = Axife Mouse Recorder DEMO 5.01
    "CCleaner" = CCleaner
    "CNXT_MODEM_PCI_VEN_14F1&DEV_2F00&SUBSYS_200214F1" = SoftV92 Data Fax Modem
    "CrazyLoader" = CrazyLoader
    "Create City" = Create City
    "dBpoweramp Music Converter" = dBpoweramp Music Converter
    "Driver Genius Professional Edition 2006_is1" = Driver Genius Professional Edition 2006 6.2.1525
    "eMule" = eMule
    "Free Mp3 Wma Converter_is1" = Free Mp3 Wma Converter V 1.7.2
    "Google Chrome" = Google Chrome
    "Google Updater" = Outil de mise à jour Google
    "HP Imaging Device Functions" = HP Imaging Device Functions 10.0
    "HP Photosmart Essential" = HP Photosmart Essential 2.5
    "HP Smart Web Printing" = HP Smart Web Printing 4.60
    "HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
    "HPExtendedCapabilities" = HP Customer Participation Program 10.0
    "HPOCR" = OCR Software by I.R.I.S. 10.0
    "IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
    "ie8" = Windows Internet Explorer 8
    "InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Gestionnaire de périphériques de plate-forme
    "InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
    "InstallShield_{ABFE9B50-BA4B-4FDF-A943-EA025119DBED}" = Age of Empires III - The WarChiefs Trial
    "InstantTVUninstall" = Instant TV Utilities
    "lvdrivers_12.10" = Coffret de pilotes Logitech Webcam Software
    "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
    "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
    "Mozilla Firefox 11.0 (x86 fr)" = Mozilla Firefox 11.0 (x86 fr)
    "MSI8624Drv" = MSI 8624 BDA Driver
    "Nero - Burning Rom!UninstallKey" = Nero 6 Enterprise Edition
    "NirSoft BlueScreenView" = NirSoft BlueScreenView
    "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
    "NVIDIA Drivers" = NVIDIA Drivers
    "PictureIt_v9" = Microsoft Picture It! Photo Premium 9
    "Radio_Fr" = Radio Fr Solo 2.1
    "rayman2" = rayman2
    "Shockwave" = Shockwave
    "ShockwaveFlash" = Adobe Flash Player 9 ActiveX
    "Shop for HP Supplies" = Shop for HP Supplies
    "SystemRequirementsLab" = System Requirements Lab
    "TeamViewer 5" = TeamViewer 5
    "uTorrent" = µTorrent
    "Virtual DJ - Atomix Productions" = Virtual DJ - Atomix Productions
    "VLC media player" = VLC media player 1.0.5
    "VN_VUIns_Rhine_VIA" = VIA Rhine-Family Fast-Ethernet Adapter
    "Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
    "Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
    "WhoCrashed_is1" = WhoCrashed 3.04
    "Windows Media Format Runtime" = Windows Media Format 11 runtime
    "Windows Media Player" = Lecteur Windows Media 11
    "Windows XP Service" = Windows XP Service Pack 3
    "WinRAR archiver" = Archiveur WinRAR
    "winusb0100" = Microsoft WinUsb 1.0
    "WMFDist11" = Windows Media Format 11 runtime
    "wmp11" = Windows Media Player 11
    "Works2004Setup" = Sélecteur d'installation de Microsoft Works 2004
    "Wudf01007" = Microsoft User-Mode Driver Framework Feature Pack 1.7

    ========== HKEY_USERS Uninstall List ==========

    [HKEY_USERS\S-1-5-21-515967899-1532298954-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "UnityWebPlayer" = Unity Web Player
    "uTorrent" = µTorrent

    ========== Last 10 Event Log Errors ==========

    [ Application Events ]
    Error - 30/03/2012 13:20:06 | Computer Name = HP_PAVILION | Source = Application Hang | ID = 1002
    Description = Application bloquée firefox.exe, version 11.0.0.4454, module bloqué
    hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

    Error - 30/03/2012 13:20:09 | Computer Name = HP_PAVILION | Source = Application Hang | ID = 1002
    Description = Application bloquée firefox.exe, version 11.0.0.4454, module bloqué
    hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

    Error - 30/03/2012 13:20:10 | Computer Name = HP_PAVILION | Source = Application Hang | ID = 1002
    Description = Application bloquée firefox.exe, version 11.0.0.4454, module bloqué
    hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

    Error - 04/04/2012 10:06:37 | Computer Name = HP_PAVILION | Source = Application Hang | ID = 1002
    Description = Application bloquée firefox.exe, version 11.0.0.4454, module bloqué
    hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

    Error - 06/04/2012 13:06:20 | Computer Name = HP_PAVILION | Source = Application Hang | ID = 1002
    Description = Application bloquée firefox.exe, version 11.0.0.4454, module bloqué
    hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

    Error - 11/04/2012 16:54:53 | Computer Name = HP_PAVILION | Source = Application Error | ID = 1000
    Description = Application défaillante ANIWZCSdS.exe, version 1.0.3.7034, module
    défaillant user32.dll, version 5.1.2600.5512, adresse de défaillance 0x00014acd.

    Error - 19/04/2012 05:25:43 | Computer Name = HP_PAVILION | Source = .NET Runtime 2.0 Error Reporting | ID = 5000
    Description = EventType clr20r3, P1 kieshelper.exe, P2 1.0.0.538, P3 4f7589cf, P4
    presentationcore, P5 3.0.0.0, P6 4bb2dd02, P7 2cda, P8 1e, P9 system.nullreferenceexception,
    P10 NIL.

    Error - 29/04/2012 06:03:03 | Computer Name = HP_PAVILION | Source = crypt32 | ID = 131083
    Description = Échec de l'extraction de la liste racine tierce partie depuis le fichier
    CAB de mise à jour automatique à : <http://www.download.windowsupdate.com/msdownload/update...;
    avec l'erreur : Un certificat requis n'est pas dans sa période de validité selon
    la vérification par rapport à l'horloge système en cours ou le tampon daté dans
    le fichier signé.

    Error - 29/04/2012 06:03:03 | Computer Name = HP_PAVILION | Source = crypt32 | ID = 131083
    Description = Échec de l'extraction de la liste racine tierce partie depuis le fichier
    CAB de mise à jour automatique à : <http://www.download.windowsupdate.com/msdownload/update...;
    avec l'erreur : Un certificat requis n'est pas dans sa période de validité selon
    la vérification par rapport à l'horloge système en cours ou le tampon daté dans
    le fichier signé.

    Error - 29/04/2012 06:03:03 | Computer Name = HP_PAVILION | Source = crypt32 | ID = 131083
    Description = Échec de l'extraction de la liste racine tierce partie depuis le fichier
    CAB de mise à jour automatique à : <http://www.download.windowsupdate.com/msdownload/update...;
    avec l'erreur : Un certificat requis n'est pas dans sa période de validité selon
    la vérification par rapport à l'horloge système en cours ou le tampon daté dans
    le fichier signé.

    [ Application Events ]
    Error - 30/03/2012 13:20:06 | Computer Name = HP_PAVILION | Source = Application Hang | ID = 1002
    Description = Application bloquée firefox.exe, version 11.0.0.4454, module bloqué
    hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

    Error - 30/03/2012 13:20:09 | Computer Name = HP_PAVILION | Source = Application Hang | ID = 1002
    Description = Application bloquée firefox.exe, version 11.0.0.4454, module bloqué
    hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

    Error - 30/03/2012 13:20:10 | Computer Name = HP_PAVILION | Source = Application Hang | ID = 1002
    Description = Application bloquée firefox.exe, version 11.0.0.4454, module bloqué
    hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

    Error - 04/04/2012 10:06:37 | Computer Name = HP_PAVILION | Source = Application Hang | ID = 1002
    Description = Application bloquée firefox.exe, version 11.0.0.4454, module bloqué
    hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

    Error - 06/04/2012 13:06:20 | Computer Name = HP_PAVILION | Source = Application Hang | ID = 1002
    Description = Application bloquée firefox.exe, version 11.0.0.4454, module bloqué
    hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

    Error - 11/04/2012 16:54:53 | Computer Name = HP_PAVILION | Source = Application Error | ID = 1000
    Description = Application défaillante ANIWZCSdS.exe, version 1.0.3.7034, module
    défaillant user32.dll, version 5.1.2600.5512, adresse de défaillance 0x00014acd.

    Error - 19/04/2012 05:25:43 | Computer Name = HP_PAVILION | Source = .NET Runtime 2.0 Error Reporting | ID = 5000
    Description = EventType clr20r3, P1 kieshelper.exe, P2 1.0.0.538, P3 4f7589cf, P4
    presentationcore, P5 3.0.0.0, P6 4bb2dd02, P7 2cda, P8 1e, P9 system.nullreferenceexception,
    P10 NIL.

    Error - 29/04/2012 06:03:03 | Computer Name = HP_PAVILION | Source = crypt32 | ID = 131083
    Description = Échec de l'extraction de la liste racine tierce partie depuis le fichier
    CAB de mise à jour automatique à : <http://www.download.windowsupdate.com/msdownload/update...;
    avec l'erreur : Un certificat requis n'est pas dans sa période de validité selon
    la vérification par rapport à l'horloge système en cours ou le tampon daté dans
    le fichier signé.

    Error - 29/04/2012 06:03:03 | Computer Name = HP_PAVILION | Source = crypt32 | ID = 131083
    Description = Échec de l'extraction de la liste racine tierce partie depuis le fichier
    CAB de mise à jour automatique à : <http://www.download.windowsupdate.com/msdownload/update...;
    avec l'erreur : Un certificat requis n'est pas dans sa période de validité selon
    la vérification par rapport à l'horloge système en cours ou le tampon daté dans
    le fichier signé.

    Error - 29/04/2012 06:03:03 | Computer Name = HP_PAVILION | Source = crypt32 | ID = 131083
    Description = Échec de l'extraction de la liste racine tierce partie depuis le fichier
    CAB de mise à jour automatique à : <http://www.download.windowsupdate.com/msdownload/update...;
    avec l'erreur : Un certificat requis n'est pas dans sa période de validité selon
    la vérification par rapport à l'horloge système en cours ou le tampon daté dans
    le fichier signé.

    [ System Events ]
    Error - 29/04/2012 18:30:25 | Computer Name = HP_PAVILION | Source = Service Control Manager | ID = 7001
    Description = Le service Gestionnaire de connexions d'accès distant dépend du service
    Téléphonie qui n'a pas pu démarrer en raison de l'erreur : %%1058

    Error - 29/04/2012 18:38:16 | Computer Name = HP_PAVILION | Source = Service Control Manager | ID = 7001
    Description = Le service Gestionnaire de connexions d'accès distant dépend du service
    Téléphonie qui n'a pas pu démarrer en raison de l'erreur : %%1058

    Error - 29/04/2012 18:38:16 | Computer Name = HP_PAVILION | Source = Service Control Manager | ID = 7001
    Description = Le service Gestionnaire de connexions d'accès distant dépend du service
    Téléphonie qui n'a pas pu démarrer en raison de l'erreur : %%1058

    Error - 29/04/2012 18:45:25 | Computer Name = HP_PAVILION | Source = Service Control Manager | ID = 7001
    Description = Le service Gestionnaire de connexions d'accès distant dépend du service
    Téléphonie qui n'a pas pu démarrer en raison de l'erreur : %%1058

    Error - 29/04/2012 19:00:25 | Computer Name = HP_PAVILION | Source = Service Control Manager | ID = 7001
    Description = Le service Gestionnaire de connexions d'accès distant dépend du service
    Téléphonie qui n'a pas pu démarrer en raison de l'erreur : %%1058

    Error - 29/04/2012 19:05:30 | Computer Name = HP_PAVILION | Source = Service Control Manager | ID = 7001
    Description = Le service Gestionnaire de connexions d'accès distant dépend du service
    Téléphonie qui n'a pas pu démarrer en raison de l'erreur : %%1058

    Error - 29/04/2012 19:05:30 | Computer Name = HP_PAVILION | Source = Service Control Manager | ID = 7001
    Description = Le service Gestionnaire de connexions d'accès distant dépend du service
    Téléphonie qui n'a pas pu démarrer en raison de l'erreur : %%1058

    Error - 29/04/2012 19:08:38 | Computer Name = HP_PAVILION | Source = Service Control Manager | ID = 7001
    Description = Le service Gestionnaire de connexions d'accès distant dépend du service
    Téléphonie qui n'a pas pu démarrer en raison de l'erreur : %%1058

    Error - 29/04/2012 19:08:38 | Computer Name = HP_PAVILION | Source = Service Control Manager | ID = 7001
    Description = Le service Gestionnaire de connexions d'accès distant dépend du service
    Téléphonie qui n'a pas pu démarrer en raison de l'erreur : %%1058

    Error - 29/04/2012 19:15:25 | Computer Name = HP_PAVILION | Source = Service Control Manager | ID = 7001
    Description = Le service Gestionnaire de connexions d'accès distant dépend du service
    Téléphonie qui n'a pas pu démarrer en raison de l'erreur : %%1058


    < End of report >
    30 Avril 2012 11:16:03

    OTL logfile created on: 30/04/2012 01:14:35 - Run 1
    OTL by OldTimer - Version 3.2.42.2 Folder = D:\Mes documents\Téléchargements
    Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

    1023,48 Mb Total Physical Memory | 334,88 Mb Available Physical Memory | 32,72% Memory free
    2,03 Gb Paging File | 1,48 Gb Available in Paging File | 72,82% Paging File free
    Paging file location(s): C:\pagefile.sys 1152 2304 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 70,30 Gb Total Space | 32,07 Gb Free Space | 45,63% Space Free | Partition Type: NTFS
    Drive D: | 232,88 Gb Total Space | 119,91 Gb Free Space | 51,49% Space Free | Partition Type: NTFS
    Drive E: | 4,22 Gb Total Space | 1,10 Gb Free Space | 26,11% Space Free | Partition Type: FAT32

    Computer Name: HP_PAVILION | User Name: BATMAN | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: All users
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    ========== Processes (SafeList) ==========

    PRC - [2012/04/30 01:05:38 | 000,595,456 | ---- | M] (OldTimer Tools) -- D:\Mes documents\Téléchargements\OTL.exe
    PRC - [2012/03/31 04:38:26 | 000,021,392 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
    PRC - [2012/03/31 04:38:14 | 003,521,424 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
    PRC - [2012/03/22 21:27:44 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
    PRC - [2012/01/18 15:02:04 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
    PRC - [2011/08/01 15:35:42 | 000,114,992 | R--- | M] (SweetIM Technologies Ltd.) -- C:\Program Files\SweetIM\Messenger\SweetIM.exe
    PRC - [2011/01/12 16:41:42 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
    PRC - [2011/01/12 16:41:24 | 002,219,184 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
    PRC - [2010/02/23 10:08:47 | 005,445,250 | ---- | M] () -- C:\Documents and Settings\BATMAN\osr\osr.exe
    PRC - [2009/10/07 02:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) -- C:\Program Files\Fichiers communs\logishrd\LVMVFM\LVPrcSrv.exe
    PRC - [2009/08/28 19:42:54 | 000,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    PRC - [2009/05/21 19:57:00 | 000,362,496 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgpc01.exe
    PRC - [2008/10/24 09:14:36 | 000,206,112 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe
    PRC - [2008/04/13 20:34:04 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
    PRC - [2008/01/02 13:04:20 | 001,552,384 | ---- | M] (D-Link) -- C:\Program Files\D-Link\AirPlus XtremeG DWL-G122\AirGCFG.exe
    PRC - [2007/10/19 20:46:08 | 000,610,304 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqbam08.exe
    PRC - [2007/10/19 20:46:08 | 000,184,320 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqste08.exe
    PRC - [2007/10/14 20:38:52 | 000,214,360 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
    PRC - [2007/04/16 16:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe
    PRC - [2007/01/19 12:49:04 | 000,049,152 | ---- | M] (Wireless Service) -- C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
    PRC - [2005/09/14 21:44:14 | 000,065,536 | ---- | M] (ali) -- C:\WINDOWS\UMStor\Res.exe
    PRC - [2003/06/20 00:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
    PRC - [2003/06/10 18:49:40 | 000,050,688 | ---- | M] (Microsoft® Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe


    ========== Modules (No Company Name) ==========

    MOD - [2012/04/17 21:37:15 | 000,115,137 | ---- | M] () -- C:\Documents and Settings\BATMAN\Local Settings\Temp\bd7c47bb-f5c0-417c-a180-ec348d87718a\CliSecureRT.dll
    MOD - [2012/04/11 12:56:28 | 012,430,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d96906db18e87ffe2e08f6cda7e2be0f\System.Windows.Forms.ni.dll
    MOD - [2012/04/11 12:56:11 | 001,591,808 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\8d886cdc2ca5f0ff97cd1afe8773bb6e\System.Drawing.ni.dll
    MOD - [2012/04/11 12:55:45 | 014,328,320 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\029d1d9e6495065aa4f38bcf2315ee8c\PresentationFramework.ni.dll
    MOD - [2012/04/11 12:54:58 | 012,215,808 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationCore\0a059ecfca6e421629a8298b03a7814c\PresentationCore.ni.dll
    MOD - [2012/03/31 12:34:01 | 008,797,344 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_228.dll
    MOD - [2012/03/31 04:38:26 | 000,021,392 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
    MOD - [2012/03/28 22:11:38 | 000,649,640 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\CommonModule.dll
    MOD - [2012/03/28 22:11:38 | 000,528,808 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\FirmwareUpdateAgent.Common.dll
    MOD - [2012/03/28 22:11:38 | 000,007,168 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\IPCServer.dll
    MOD - [2012/03/28 22:11:38 | 000,003,584 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\ISharedIPCInterface.dll
    MOD - [2012/03/22 21:27:43 | 001,969,080 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
    MOD - [2012/02/18 14:35:16 | 000,998,400 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\a2a14380e8c9149d5b212d0100ef588a\System.Management.ni.dll
    MOD - [2012/02/18 14:35:10 | 000,771,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\c14e58265386feb509cc61bb5e8dd296\System.Runtime.Remoting.ni.dll
    MOD - [2012/02/18 14:12:13 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\77e1279cbf4eecfb0284b63316fe43fe\System.Xml.ni.dll
    MOD - [2012/02/18 14:10:58 | 002,295,296 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\0a6d6717e76be12295711ff02c7aa1d4\System.Core.ni.dll
    MOD - [2012/02/18 14:10:41 | 000,224,768 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\46a680814559114706a33282e9df4b7a\PresentationFramework.Classic.ni.dll
    MOD - [2012/02/18 14:09:42 | 003,325,440 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\WindowsBase\174c2f776741812aed02c337bbcd1dae\WindowsBase.ni.dll
    MOD - [2012/02/18 14:09:22 | 007,953,408 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\9e3803cd2a11f056291862e306a8e2b2\System.ni.dll
    MOD - [2011/10/13 10:59:48 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
    MOD - [2010/02/23 10:08:47 | 005,445,250 | ---- | M] () -- C:\Documents and Settings\BATMAN\osr\osr.exe
    MOD - [2009/11/03 16:51:26 | 000,039,712 | ---- | M] () -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\ASL.dll
    MOD - [2009/09/04 23:15:06 | 000,067,872 | ---- | M] () -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\zlib1.dll
    MOD - [2009/02/27 17:37:16 | 000,311,296 | ---- | M] () -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\pdfshell.FRA
    MOD - [2008/05/03 06:46:00 | 001,486,848 | ---- | M] () -- C:\WINDOWS\system32\nview.dll
    MOD - [2008/05/03 06:46:00 | 000,466,944 | ---- | M] () -- C:\WINDOWS\system32\nvshell.dll
    MOD - [2007/08/20 18:41:12 | 000,233,472 | ---- | M] () -- C:\WINDOWS\system32\WlanApp.dll


    ========== Win32 Services (SafeList) ==========

    SRV - [2012/03/31 12:34:01 | 000,253,600 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
    SRV - [2011/05/03 22:18:00 | 004,137,464 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\system32\GameMon.des -- (npggsvc)
    SRV - [2011/01/12 16:44:02 | 000,033,584 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
    SRV - [2011/01/12 16:41:42 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
    SRV - [2010/12/20 16:55:14 | 000,251,760 | ---- | M] (CybelSoft) [On_Demand | Stopped] -- C:\Program Files\ma-config.com\maconfservice.exe -- (maconfservice)
    SRV - [2009/10/07 02:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\logishrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
    SRV - [2009/08/28 19:42:54 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
    SRV - [2009/05/21 21:21:18 | 000,248,832 | ---- | M] (Hewlett-Packard Co.) [On_Demand | Running] -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08)
    SRV - [2007/11/06 21:16:54 | 000,139,264 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc)
    SRV - [2007/01/19 12:49:26 | 000,049,152 | ---- | M] (Wireless Service) [Auto | Stopped] -- C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe -- (ANIWZCSdService)
    SRV - [2005/04/04 00:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
    SRV - [2003/07/28 21:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
    SRV - [2003/06/20 00:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM)


    ========== Driver Services (SafeList) ==========

    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
    DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
    DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
    DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
    DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
    DRV - File not found [Kernel | On_Demand | Unknown] -- -- (avevakwr)
    DRV - [2012/03/28 22:11:02 | 000,020,032 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\dgderdrv.sys -- (dgderdrv)
    DRV - [2010/12/21 15:04:06 | 000,141,264 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
    DRV - [2010/12/21 15:04:06 | 000,115,008 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
    DRV - [2010/12/21 13:47:38 | 000,094,872 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
    DRV - [2010/08/30 12:19:54 | 000,014,336 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys -- (driverhardwarev2)
    DRV - [2010/02/11 11:59:48 | 000,023,192 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\xfilt.sys -- (xfilt)
    DRV - [2010/02/11 11:59:18 | 000,013,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\videX32.sys -- (videX32)
    DRV - [2010/02/02 09:43:00 | 001,041,536 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
    DRV - [2010/02/02 09:43:00 | 000,681,856 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
    DRV - [2010/02/02 09:42:59 | 000,212,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys -- (HSFHWBS2)
    DRV - [2009/12/26 12:18:40 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
    DRV - [2009/10/07 02:46:36 | 000,025,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
    DRV - [2009/08/24 12:22:58 | 000,034,688 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcampr5.sys -- (PCAMPR5)
    DRV - [2009/08/24 12:22:58 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcandis5.sys -- (PCANDIS5)
    DRV - [2009/07/27 13:43:06 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
    DRV - [2009/06/18 15:48:04 | 000,092,464 | ---- | M] (Sunbelt Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sbredrv.sys -- (SBRE)
    DRV - [2009/05/01 00:56:30 | 000,495,768 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LV561AV.SYS -- (PID_0928) Logitech QuickCam Express(PID_0928)
    DRV - [2009/04/18 20:02:41 | 000,271,360 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
    DRV - [2009/04/18 20:02:41 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
    DRV - [2008/09/24 11:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
    DRV - [2008/01/15 22:50:52 | 000,459,520 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Dr71WU.sys -- (RT73)
    DRV - [2007/12/04 20:34:18 | 000,946,816 | ---- | M] (NXP Semiconductors Germany GmbH) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\3xHybrid.sys -- (3xHybrid)
    DRV - [2007/10/12 03:00:44 | 000,041,752 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
    DRV - [2007/06/27 15:42:00 | 000,207,488 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vinyl97.sys -- (VIAudio) Vinyl AC'97 Audio Controller (WDM)
    DRV - [2006/07/31 13:58:00 | 000,083,456 | ---- | M] (D-Link Corp. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\DLKRTXP.SYS -- (RTL8023xp)
    DRV - [2006/07/18 03:40:00 | 000,008,399 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LANPkt.sys -- (LANPkt)
    DRV - [2006/07/11 16:13:00 | 000,011,003 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\diag69xp.sys -- (Diag69xp)
    DRV - [2006/06/01 20:21:00 | 000,016,384 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTLVLAN.SYS -- (RTLVLAN)
    DRV - [2005/12/12 18:27:00 | 000,019,072 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PS2.sys -- (Ps2)
    DRV - [2005/12/11 12:55:38 | 000,028,195 | ---- | M] (Alpha Networks Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\ANIO.sys -- (ANIO)
    DRV - [2005/11/03 16:40:07 | 000,063,488 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
    DRV - [2005/08/10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
    DRV - [2005/05/16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
    DRV - [2004/07/09 04:26:38 | 000,015,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
    DRV - [2003/12/15 19:46:30 | 000,136,704 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\d343bus.sys -- (d343bus)
    DRV - [2003/12/15 18:29:42 | 000,005,632 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\d343port.sys -- (d343port)
    DRV - [2003/07/02 04:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\VIAAGP1.SYS -- (viaagp1)
    DRV - [2001/08/17 22:28:12 | 000,488,383 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\HSF_V124.sys -- (V124)
    DRV - [2001/08/17 22:28:12 | 000,050,751 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\HSF_TONE.sys -- (Tones)
    DRV - [2001/08/17 22:28:10 | 000,542,879 | ---- | M] (Conexant) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSF_MSFT.sys -- (hsf_msft)
    DRV - [2001/08/17 22:28:10 | 000,057,471 | ---- | M] (Conexant) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSF_SAMP.sys -- (Rksample)
    DRV - [2001/08/17 22:28:08 | 000,391,199 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\HSF_K56K.sys -- (K56)
    DRV - [2001/08/17 22:28:06 | 000,289,887 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\HSF_FALL.sys -- (Fallback)
    DRV - [2001/08/17 22:28:06 | 000,199,711 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\HSF_FAXX.sys -- (SoftFax)
    DRV - [2001/08/17 22:28:06 | 000,115,807 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\HSF_FSKS.sys -- (Fsks)
    DRV - [2001/08/17 22:28:04 | 000,067,167 | ---- | M] (Conexant) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSF_BSC2.sys -- (basic2)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.wuuta.com/
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
    IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
    IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
    IE - HKLM\..\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}: "URL" = http://toolbar.ask.com/toolbarv/askRedirect?o=13925&gct...{searchTerms}&crm=1
    IE - HKLM\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/slirs_http/sredir?s...{searchTerms}&invocationType=tb50winampie7


    IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 86 63 45 A9 D4 EA CA 01 [binary data]
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.google.fr/
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - No CLSID value found
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\SearchScopes,DefaultScope = {AC854C16-CA1E-43f1-8513-0D2F36C726ED}
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\SearchScopes\${searchCLSID}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\SearchScopes\{AC854C16-CA1E-43f1-8513-0D2F36C726ED}: "URL" = http://www.gobrs.com/search/?q={searchTerms}&ie=utf-8&oe=utf-8&aq=t&rls=h4uVe5bQ
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search?q={searchTerms}
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

    ========== FireFox ==========

    FF - user.js - File not found

    FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_228.dll ()
    FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
    FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: File not found
    FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@ma-config.com/HardwareDetection: C:\Program Files\ma-config.com\nphardwaredetection.dll (Cybelsoft)
    FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\3.0.50106.0\npctrl.dll ( Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
    FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
    FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\BATMAN\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/02/08 14:20:42 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\crazyloader@spointer.com: C:\Program Files\CrazyLoader\spointer\extensions\crazyloader@spointer.com [2010/11/28 14:23:34 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/03/22 21:27:45 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/04/19 21:09:09 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011/07/23 10:32:09 | 000,000,000 | ---D | M]
    FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/02/08 14:20:42 | 000,000,000 | ---D | M]

    [2009/08/15 14:00:31 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Extensions
    [2012/04/26 22:25:34 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions
    [2009/09/02 12:27:05 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
    [2011/09/28 19:06:40 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
    [2012/01/06 17:49:20 | 000,000,000 | ---D | M] (IMinent Toolbar) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}
    [2012/01/06 18:45:25 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
    [2010/02/01 22:29:27 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\toolbar@ask.com
    [2012/03/22 21:27:49 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
    [2012/03/22 21:27:44 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
    [2012/03/17 11:50:28 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
    [2012/01/08 11:01:10 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
    [2012/01/08 11:01:10 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
    [2012/01/08 11:01:10 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
    [2012/01/08 11:01:10 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
    [2010/08/24 21:29:10 | 000,002,197 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google-search.xml
    [2012/01/08 11:01:10 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
    [2012/01/08 11:01:10 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

    ========== Chrome ==========

    CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\8.0.552.215\pdf.dll
    CHR - plugin: Google Gears 0.5.33.0 (Enabled) = C:\Program Files\Google\Chrome\Application\8.0.552.215\gears.dll
    CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\8.0.552.215\gcswf32.dll
    CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
    CHR - plugin: Java Deployment Toolkit 6.0.210.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
    CHR - plugin: Java(TM) Platform SE 6 U21 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
    CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
    CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
    CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
    CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
    CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
    CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
    CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
    CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
    CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
    CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
    CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
    CHR - plugin: Google Updater (Enabled) = C:\Program Files\Google\Google Updater\2.4.1636.7222\npCIDetect13.dll
    CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
    CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\3.0.50106.0\npctrl.dll
    CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
    CHR - plugin: Ma-Config.com plugin (Enabled) = C:\Program Files\ma-config.com\nphardwaredetection.dll
    CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
    CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
    CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
    CHR - plugin: Default Plug-in (Enabled) = default_plugin

    O1 HOSTS File: ([2010/01/14 10:56:57 | 000,373,507 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
    O1 - Hosts: 127.0.0.1 localhost
    O1 - Hosts: 127.0.0.1 www.007guard.com
    O1 - Hosts: 127.0.0.1 007guard.com
    O1 - Hosts: 127.0.0.1 008i.com
    O1 - Hosts: 127.0.0.1 www.008k.com
    O1 - Hosts: 127.0.0.1 008k.com
    O1 - Hosts: 127.0.0.1 www.00hq.com
    O1 - Hosts: 127.0.0.1 00hq.com
    O1 - Hosts: 127.0.0.1 010402.com
    O1 - Hosts: 127.0.0.1 www.032439.com
    O1 - Hosts: 127.0.0.1 032439.com
    O1 - Hosts: 127.0.0.1 www.0scan.com
    O1 - Hosts: 127.0.0.1 0scan.com
    O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
    O1 - Hosts: 127.0.0.1 1000gratisproben.com
    O1 - Hosts: 127.0.0.1 www.1001namen.com
    O1 - Hosts: 127.0.0.1 1001namen.com
    O1 - Hosts: 127.0.0.1 www.100888290cs.com
    O1 - Hosts: 127.0.0.1 100888290cs.com
    O1 - Hosts: 127.0.0.1 www.100sexlinks.com
    O1 - Hosts: 127.0.0.1 100sexlinks.com
    O1 - Hosts: 127.0.0.1 10sek.com
    O1 - Hosts: 127.0.0.1 www.10sek.com
    O1 - Hosts: 127.0.0.1 1-2005-search.com
    O1 - Hosts: 127.0.0.1 www.1-2005-search.com
    O1 - Hosts: 12872 more lines...
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
    O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
    O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
    O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
    O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
    O2 - BHO: (Interest recogniser for Crazyloader (powered by Spointer)) - {C5F65718-341D-4e7d-9842-FCB9CC89527E} - C:\Program Files\CrazyLoader\spointer\extensions\crazyloader_air_ie.dll (Crazyloader)
    O2 - BHO: (FDMIECookiesBHO Class) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll ()
    O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
    O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - No CLSID value found.
    O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
    O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
    O3 - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
    O3 - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
    O4 - HKLM..\Run: [8169Diag] C:\Program Files\D-Link\Diagnostics Utility\8169Diag.exe (D-Link)
    O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
    O4 - HKLM..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe (Wireless Service)
    O4 - HKLM..\Run: [D-Link AirPlus XtremeG DWL-G122] C:\Program Files\D-Link\AirPlus XtremeG DWL-G122\AirGCFG.exe (D-Link)
    O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
    O4 - HKLM..\Run: [Google Updater] C:\Program Files\Google\Google Updater\GoogleUpdater.exe (Google)
    O4 - HKLM..\Run: [hpqSRMon] File not found
    O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
    O4 - HKLM..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe (Microsoft® Corporation)
    O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
    O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
    O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
    O4 - HKLM..\Run: [OSR] C:\Documents and Settings\BATMAN\osr\osr.exe ()
    O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
    O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
    O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
    O4 - HKLM..\Run: [USB Storage Toolbox] C:\WINDOWS\UMStor\Res.exe (ali)
    O4 - HKU\S-1-5-21-515967899-1532298954-839522115-1003..\Run: [Bubble Dock] "C:\Documents and Settings\BATMAN\Application Data\Nosibay\Bubble Dock\LBubble Dock.exe" /winstartup File not found
    O4 - HKU\S-1-5-21-515967899-1532298954-839522115-1003..\Run: [ISUSPM] C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
    O4 - HKU\S-1-5-21-515967899-1532298954-839522115-1003..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.exe (Samsung)
    O4 - HKU\S-1-5-21-515967899-1532298954-839522115-1003..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
    O4 - HKU\S-1-5-21-515967899-1532298954-839522115-1003..\Run: [MoneyAgent] C:\Program Files\Microsoft Money\System\mnyexpr.exe (Microsoft Corp.)
    O4 - HKU\S-1-5-21-515967899-1532298954-839522115-1003..\Run: [PCFix] C:\Program Files\PCFix\PCFix.exe File not found
    O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
    O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-21-515967899-1532298954-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-21-515967899-1532298954-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = -1
    O8 - Extra context menu item: Add to Video Converter... - C:\Program Files\Media Player Utilities 5.21\AVIConverter\grab.html ()
    O8 - Extra context menu item: Rechercher sur le Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\MenuExt.html ()
    O8 - Extra context menu item: Télécharger avec Free Download Manager - C:\Program Files\Free Download Manager\dllink.htm ()
    O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - C:\Program Files\Free Download Manager\dlselected.htm ()
    O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - C:\Program Files\Free Download Manager\dlfvideo.htm ()
    O8 - Extra context menu item: Tout télécharger avec Free Download Manager - C:\Program Files\Free Download Manager\dlall.htm ()
    O9 - Extra Button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
    O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-wind... (Java Plug-in 1.6.0_31)
    O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-wind... (Java Plug-in 1.6.0_13)
    O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-wind... (Java Plug-in 1.6.0_31)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-wind... (Java Plug-in 1.6.0_31)
    O16 - DPF: Microsoft XML Parser for Java file:///C:/WINDOWS/Java/classes/xmldso.cab (Reg Error: Key error.)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{461A1CE9-FA51-4F81-A0A5-2CDB7712217D}: DhcpNameServer = 192.168.1.1
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A290D7FC-5E31-4E5A-B989-EE04F29E90FD}: DhcpNameServer = 192.168.1.1
    O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
    O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
    O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
    O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
    O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2008/10/29 08:26:06 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
    O32 - AutoRun File - [2001/07/27 21:07:38 | 000,000,000 | -HS- | M] () - E:\AUTOEXEC.BAT -- [ FAT32 ]
    O33 - MountPoints2\{00699d30-3966-11de-afb5-000ea6d15881}\Shell\AutoRun\command - "" = J:\InstallTomTomHOME.exe
    O34 - HKLM BootExecute: (autocheck autochk *)
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*
    O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
    O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

    NetSvcs: 6to4 - File not found
    NetSvcs: Ias - File not found
    NetSvcs: Iprip - File not found
    NetSvcs: Irmon - File not found
    NetSvcs: NWCWorkstation - File not found
    NetSvcs: Nwsapagent - File not found
    NetSvcs: WmdmPmSp - File not found

    MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Connect Wizard.lnk - C:\Program Files\D-Link\AirPlus XtremeG DWL-G122\D-Link Wizard.exe - ()
    MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^D-Link AirPlus Utility.lnk - C:\Program Files\D-Link\AirPlus XtremeG DWL-G122\AirGCFG.exe - (D-Link)
    MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^TV Remote Control.lnk - - File not found
    MsConfig - StartUpFolder: C:^Documents and Settings^BATMAN^Menu Démarrer^Programmes^Démarrage^Logitech . Enregistrement du produit.lnk - C:\Program Files\Logitech\Logitech WebCam Software\eReg.exe - (Leader Technologies/Logitech)
    MsConfig - StartUpFolder: C:^Documents and Settings^BATMAN^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 3.0.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe - ()
    MsConfig - StartUpReg: AudioDeck - hkey= - key= - C:\Program Files\VIA\VIAudioi\SBADeck\ADeck.exe (VIA Technologies, Inc.)
    MsConfig - StartUpReg: BlackBerryAutoUpdate - hkey= - key= - File not found
    MsConfig - StartUpReg: D-Link AirPlus XtremeG DWL-G122 - hkey= - key= - C:\Program Files\D-Link\AirPlus XtremeG DWL-G122\AirGCFG.exe (D-Link)
    MsConfig - StartUpReg: DAEMON Tools Lite - hkey= - key= - C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
    MsConfig - StartUpReg: Free Download Manager - hkey= - key= - C:\Program Files\Free Download Manager\fdm.exe (FreeDownloadManager.ORG)
    MsConfig - StartUpReg: Logitech Vid - hkey= - key= - C:\Program Files\Logitech\Logitech Vid\vid.exe (Logitech Inc.)
    MsConfig - StartUpReg: LogitechQuickCamRibbon - hkey= - key= - C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
    MsConfig - StartUpReg: NvCplDaemon - hkey= - key= - File not found
    MsConfig - StartUpReg: NvMediaCenter - hkey= - key= - File not found
    MsConfig - StartUpReg: nwiz - hkey= - key= - File not found
    MsConfig - StartUpReg: SpybotSD TeaTimer - hkey= - key= - File not found
    MsConfig - StartUpReg: TomTomHOME.exe - hkey= - key= - File not found
    MsConfig - StartUpReg: UniblueRegistryBooster - hkey= - key= - File not found
    MsConfig - State: "system.ini" - 1
    MsConfig - State: "win.ini" - 0
    MsConfig - State: "services" - 0
    MsConfig - State: "startup" - 2

    Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
    Drivers32: msacm.l3acm - C:\WINDOWS\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
    Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
    Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
    Drivers32: MSVideo - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
    Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
    Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
    Drivers32: VIDC.I420 - C:\WINDOWS\System32\LVCodec2.dll (Logitech Inc.)
    Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
    Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
    Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
    Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)

    ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Microsoft VM
    ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering)
    ActiveX: {166B1BCA-3F9C-11CF-8075-444553540000} - Macromedia Shockwave Director 8.5.1
    ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
    ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
    ActiveX: {233C1507-6A77-46A4-9443-F871F945D258} - Adobe Shockwave Director 11.0.3
    ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
    ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Macromedia Shockwave Director 8.5.1
    ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
    ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java
    ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
    ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
    ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée
    ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:o E /CALLER:WINNT /user /install
    ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
    ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
    ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015C} - Microsoft DirectX
    ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
    ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
    ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation
    ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
    ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
    ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
    ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
    ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
    ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
    ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
    ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
    ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Dossiers Web
    ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
    ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
    ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
    ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install
    ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
    ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
    ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
    ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches
    ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
    ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player 9 ActiveX
    ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
    ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
    ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
    ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
    ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig
    ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
    ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
    ActiveX: >{CB58DED6-4AF3-4080-9DF1-DEE72075169F} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
    ActiveX: D27CDB6E-AE6D-11CF-96B8-444553540000 - Adobe Flash Player 9 ActiveX
    30 Avril 2012 11:17:09

    La suite :

    CREATERESTOREPOINT
    Unable to start System Restore Service. Error code 1056

    ========== Files/Folders - Created Within 30 Days ==========

    [2012/04/29 12:03:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WhoCrashed
    [2012/04/29 12:03:26 | 000,000,000 | ---D | C] -- C:\Program Files\WhoCrashed
    [2012/04/27 21:27:18 | 000,000,000 | ---D | C] -- C:\Program Files\Nosibay
    [2012/04/27 21:26:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BATMAN\Application Data\Nosibay
    [2012/04/27 21:25:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BATMAN\Menu Démarrer\Programmes\NirSoft BlueScreenView
    [2012/04/27 21:25:38 | 000,000,000 | ---D | C] -- C:\Program Files\NirSoft
    [2012/04/22 11:35:48 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\BATMAN\Recent
    [2012/04/22 11:21:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\CCleaner
    [2012/04/22 11:21:28 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
    [2012/04/22 11:21:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Google Chrome
    [2012/04/17 21:37:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BATMAN\Local Settings\Application Data\Samsung
    [2012/04/17 21:36:30 | 000,000,000 | ---D | C] -- D:\Mes documents\samsung
    [2012/04/17 21:32:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Samsung
    [2012/04/17 21:32:45 | 004,659,712 | ---- | C] (Dmitry Streblechenko) -- C:\WINDOWS\System32\Redemption.dll
    [2012/04/17 21:32:05 | 000,821,824 | ---- | C] (Devguru Co., Ltd.) -- C:\WINDOWS\System32\dgderapi.dll
    [2012/04/17 21:32:05 | 000,020,032 | ---- | C] (Devguru Co., Ltd) -- C:\WINDOWS\System32\drivers\dgderdrv.sys
    [2012/04/17 21:32:05 | 000,000,000 | ---D | C] -- C:\Program Files\MarkAny
    [2012/04/17 21:30:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Samsung
    [2012/03/31 12:34:01 | 000,418,464 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
    [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [2 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
    [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    ========== Files - Modified Within 30 Days ==========

    [2012/04/29 11:43:55 | 000,000,007 | ---- | M] () -- C:\WINDOWS\System32\ANIWZCSUSERNAME
    [2012/04/29 11:43:54 | 000,182,441 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
    [2012/04/29 11:39:50 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
    [2012/04/29 11:39:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2012/04/27 21:25:31 | 000,129,813 | ---- | M] () -- C:\Documents and Settings\BATMAN\Bureau\bluescreenview_setup.exe
    [2012/04/24 12:25:01 | 000,360,936 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2012/04/22 11:21:44 | 000,001,052 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cd206955f00c64.job
    [2012/04/22 11:21:36 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\CCleaner.lnk
    [2012/04/22 11:21:24 | 000,001,803 | ---- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
    [2012/04/20 12:01:10 | 000,018,194 | ---- | M] () -- C:\Documents and Settings\BATMAN\Application Data\wklnhst.dat
    [2012/04/19 21:09:09 | 000,001,741 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Adobe Reader 9.lnk
    [2012/04/17 21:35:58 | 000,001,606 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Samsung Kies.lnk
    [2012/04/17 21:32:52 | 000,001,624 | ---- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk
    [2012/04/17 21:22:20 | 000,002,898 | ---- | M] () -- C:\aqua_bitmap.cpp
    [2012/04/12 20:45:30 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
    [2012/04/12 20:45:29 | 000,075,776 | ---- | M] () -- C:\Documents and Settings\BATMAN\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2012/04/11 12:53:49 | 000,503,666 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
    [2012/04/11 12:53:49 | 000,435,688 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
    [2012/04/11 12:53:49 | 000,081,814 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
    [2012/04/11 12:53:49 | 000,068,584 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
    [2012/03/31 12:34:02 | 000,001,002 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
    [2012/03/31 12:34:01 | 000,418,464 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
    [2012/03/31 12:34:01 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
    [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [2 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
    [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    ========== Files Created - No Company Name ==========

    [2012/04/27 21:25:30 | 000,129,813 | ---- | C] () -- C:\Documents and Settings\BATMAN\Bureau\bluescreenview_setup.exe
    [2012/04/22 11:21:44 | 000,001,052 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cd206955f00c64.job
    [2012/04/22 11:21:36 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\CCleaner.lnk
    [2012/04/22 11:21:24 | 000,001,803 | ---- | C] () -- C:\Documents and Settings\BATMAN\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
    [2012/04/17 21:35:58 | 000,001,606 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Samsung Kies.lnk
    [2012/04/17 21:32:52 | 000,001,624 | ---- | C] () -- C:\Documents and Settings\BATMAN\Application Data\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk
    [2012/04/17 21:21:24 | 000,002,898 | ---- | C] () -- C:\aqua_bitmap.cpp
    [2012/03/31 12:34:02 | 000,001,002 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
    [2012/03/28 22:11:08 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe
    [2012/03/28 22:11:06 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll
    [2012/03/28 22:11:06 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll
    [2012/03/28 22:11:06 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll
    [2012/03/28 22:11:06 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll
    [2012/02/18 13:50:36 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
    [2011/07/18 19:20:03 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ReminderNextRun
    [2011/03/03 10:58:06 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\BATMAN\Application Data\DofusAppId0_4
    [2011/02/27 12:54:11 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\BATMAN\Application Data\DofusAppId0_3
    [2011/02/24 19:37:34 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\BATMAN\Application Data\DofusAppId0_1
    [2011/02/23 21:09:33 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\BATMAN\Application Data\DofusAppId0_2
    [2011/01/24 22:37:49 | 000,000,034 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
    [2011/01/24 22:13:57 | 006,814,952 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall.exe
    [2011/01/24 22:13:57 | 000,017,766 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp Music Converter.dat
    [2011/01/01 02:11:21 | 002,134,992 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
    [2010/11/07 20:42:27 | 000,221,184 | --S- | C] () -- C:\WINDOWS\System32\glut32.dll
    [2010/05/17 19:46:37 | 000,000,256 | ---- | C] () -- C:\WINDOWS\System32\pool.bin

    ========== Custom Scans ==========

    < MD5 for: EXPLORER.EXE >
    [2004/08/19 17:09:54 | 001,036,288 | ---- | M] (Microsoft Corporation) MD5=2A7BD330924252A2FD80344FC949BB72 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
    [2008/04/13 20:34:04 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\explorer.exe
    [2008/04/13 20:34:04 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe

    < MD5 for: USERINIT.EXE >
    [2004/08/19 17:10:04 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=84717891F0734C611721F56C60B5FBC3 -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
    [2008/04/13 20:34:28 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
    [2008/04/13 20:34:28 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\system32\userinit.exe

    < MD5 for: WINLOGON.EXE >
    [2004/08/19 17:10:06 | 000,506,368 | ---- | M] (Microsoft Corporation) MD5=123EEA158F74D0F67A51DCDF065D1091 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
    [2008/04/13 20:34:30 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
    [2008/04/13 20:34:30 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\winlogon.exe

    < %SYSTEMDRIVE%\*.exe >

    < %ALLUSERSPROFILE%\Application Data\*. >
    [2012/01/13 00:29:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Adobe
    [2011/06/26 18:56:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Age of Empires 3 XPack Trial
    [2010/11/03 22:10:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Anikop Business Plan
    [2009/08/06 21:47:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple
    [2009/10/03 18:14:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
    [2010/03/05 21:59:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Blizzard
    [2009/12/26 12:18:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
    [2010/12/09 22:18:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DivX
    [2010/02/01 22:15:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations
    [2011/07/23 10:32:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESET
    [2009/05/21 19:45:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Google
    [2011/12/15 22:13:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Google Updater
    [2009/08/17 18:25:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Hewlett-Packard
    [2010/01/12 20:01:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\HP
    [2010/01/12 19:57:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\HP Product Assistant
    [2010/01/09 22:35:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InstallShield
    [2009/06/15 20:48:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
    [2009/07/12 22:14:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Logishrd
    [2010/12/26 19:38:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ma-config.com
    [2010/02/28 11:24:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Macrovision
    [2009/02/25 00:22:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
    [2010/01/09 22:35:38 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft
    [2010/03/09 18:47:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MSN6
    [2008/12/25 19:26:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NVIDIA
    [2010/05/16 19:10:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\nView_Profiles
    [2009/03/15 20:18:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters
    [2010/10/26 11:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Roxio
    [2012/04/17 21:33:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Samsung
    [2010/05/17 19:31:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sonic
    [2012/01/06 18:01:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony
    [2010/02/01 22:45:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    [2010/03/31 18:46:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sun
    [2012/01/11 08:50:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SweetIM
    [2009/02/24 23:47:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
    [2010/02/08 18:53:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\UAB
    [2009/08/17 18:54:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WEBREG
    [2008/11/02 19:36:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
    [2011/05/01 09:30:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Yahoo!
    [2009/10/03 18:21:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}

    < %ALLUSERSPROFILE%\Application Data\*.exe /s >
    [2009/02/04 14:56:14 | 000,075,112 | ---- | M] (GEAR Software, Inc.) -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}\x86\DifXInstall32.exe
    [2012/01/03 19:46:15 | 000,345,520 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\All Users\Application Data\Adobe\Setup\{AC76BA86-7AD7-1036-7B44-A95000000001}\Setup.exe
    [2009/10/03 18:02:23 | 000,079,144 | ---- | M] (Apple Inc.) -- C:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 9.0.1.8\SetupAdmin.exe
    [2010/12/09 22:17:10 | 000,144,696 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\DivX\RunAsUser\RUNASUSERPROCESS.exe
    [2008/01/22 14:55:12 | 000,996,624 | ---- | M] (Macrovision Corporation) -- C:\Documents and Settings\All Users\Application Data\Macrovision\FLEXnet Connect\6\agent.exe
    [2007/03/20 15:25:36 | 000,205,744 | ---- | M] (InstallShield Software Corporation) -- C:\Documents and Settings\All Users\Application Data\Macrovision\FLEXnet Connect\6\dwusplay.exe
    [2008/01/22 14:55:38 | 000,275,728 | ---- | M] (Macrovision Corporation) -- C:\Documents and Settings\All Users\Application Data\Macrovision\FLEXnet Connect\6\ISDM.exe
    [2008/01/22 14:55:52 | 000,087,312 | ---- | M] (Macrovision Corporation) -- C:\Documents and Settings\All Users\Application Data\Macrovision\FLEXnet Connect\6\issch.exe

    < %APPDATA%\*. >
    [2011/01/24 22:14:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\AccurateRip
    [2009/12/11 21:20:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Adobe
    [2009/12/11 22:09:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\app
    [2009/10/03 18:30:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Apple Computer
    [2010/11/28 14:24:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\CrazyLoader
    [2008/11/12 20:15:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\DAEMON Tools
    [2012/04/22 11:37:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\DAEMON Tools Lite
    [2010/08/28 14:52:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\DivX
    [2011/05/13 09:08:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Dofus 2
    [2011/02/23 21:09:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Dofus-2.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
    [2011/02/27 12:54:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Dofus-3.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
    [2011/03/03 10:58:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Dofus-4.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
    [2011/02/24 19:37:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Dofus.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
    [2010/02/04 23:38:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Download Manager
    [2012/04/04 15:37:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\dvdcss
    [2012/04/22 11:37:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Free Download Manager
    [2010/02/18 13:52:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\GetRightToGo
    [2009/08/15 01:13:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Google
    [2008/11/03 20:43:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Hewlett-Packard
    [2009/08/22 09:56:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\HP
    [2010/03/27 12:07:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\HPAppData
    [2011/09/06 19:03:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\HpUpdate
    [2008/10/29 08:43:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Identities
    [2010/02/12 19:39:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\igraal
    [2009/04/01 19:52:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Image Zone Express
    [2010/05/17 19:31:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\InstallShield
    [2008/11/02 23:36:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Leadertech
    [2008/11/12 17:29:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Macromedia
    [2009/02/25 00:22:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Malwarebytes
    [2010/09/02 20:41:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Media Player Classic
    [2008/12/05 15:13:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Micro Application
    [2009/12/09 08:49:00 | 000,000,000 | --SD | M] -- C:\Documents and Settings\BATMAN\Application Data\Microsoft
    [2009/09/07 17:30:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Mostick
    [2009/08/15 14:00:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Mozilla
    [2011/10/28 14:30:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\MSN6
    [2012/04/27 21:26:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Nosibay
    [2011/05/01 09:51:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\OfferBox
    [2008/11/03 00:24:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\OpenOffice.org
    [2010/09/03 20:59:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\PCFix
    [2012/01/06 18:09:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Publish Providers
    [2009/08/06 23:42:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Real
    [2009/12/11 22:09:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
    [2012/01/06 17:56:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Rovio
    [2010/05/17 20:41:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Roxio
    [2009/07/27 14:10:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Samsung
    [2009/02/24 15:42:58 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\BATMAN\Application Data\SecuROM
    [2012/01/06 18:12:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Sony
    [2008/11/03 00:11:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Sun
    [2010/02/02 14:45:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\SystemRequirementsLab
    [2010/02/03 20:30:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\TeamViewer
    [2009/05/06 19:58:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\TomTom
    [2012/01/09 01:04:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Toolbar4
    [2012/04/27 23:21:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Uniblue
    [2011/11/12 15:20:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Unity
    [2012/04/22 11:37:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\uTorrent
    [2012/04/04 15:37:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\vlc
    [2010/04/03 19:37:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\widestream
    [2010/02/08 17:34:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\WinBatch
    [2009/03/18 20:35:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\WinRAR
    [2010/09/26 14:18:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Yahoo!

    < %APPDATA%\*.exe /s >
    [2009/12/11 21:19:58 | 000,038,784 | ---- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
    [2008/10/29 17:21:26 | 001,887,176 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\BATMAN\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\fpupdateax\fpupdateax.exe
    [2008/12/05 15:08:39 | 000,045,056 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\BATMAN\Application Data\Microsoft\Installer\{6815FCDD-401D-481E-BA88-31B4754C2B46}\ARPPRODUCTICON.exe
    [2011/09/06 19:03:25 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Microsoft\Installer\{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}\ARPPRODUCTICON.exe
    [2010/12/31 19:40:22 | 000,016,262 | R--- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Microsoft\Installer\{8E79F5DD-4A0A-452B-B3F8-0651E4D24854}\_3B9E8304958202ACCD7F67.exe
    [2010/12/31 19:40:22 | 000,001,078 | R--- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Microsoft\Installer\{8E79F5DD-4A0A-452B-B3F8-0651E4D24854}\_D8CE06646D3384DE29C707.exe
    [2010/12/31 19:40:22 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Microsoft\Installer\{8E79F5DD-4A0A-452B-B3F8-0651E4D24854}\_E51F7FD7B968178B227CCF.exe
    [2010/12/31 19:40:22 | 000,001,518 | R--- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Microsoft\Installer\{8E79F5DD-4A0A-452B-B3F8-0651E4D24854}\_FD737973151E8AEDD16E26.exe
    [2010/12/31 19:42:25 | 000,001,078 | R--- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Microsoft\Installer\{90689E08-95E6-4852-AD56-2634FCF48EB7}\_6FEFF9B68218417F98F549.exe
    [2010/12/31 19:42:25 | 000,001,078 | R--- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Microsoft\Installer\{90689E08-95E6-4852-AD56-2634FCF48EB7}\_756CF3C8F45D9448938EDA.exe
    [2010/12/31 19:42:25 | 000,004,150 | R--- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Microsoft\Installer\{90689E08-95E6-4852-AD56-2634FCF48EB7}\_BF0A2F45859C9EA87D981B.exe
    [2010/12/31 19:42:25 | 000,000,766 | R--- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Microsoft\Installer\{90689E08-95E6-4852-AD56-2634FCF48EB7}\_DA7648443FB2DE3BA63B62.exe
    [2010/03/05 18:49:50 | 000,197,632 | ---- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}\chrome\content\id_imbooster4web_v6\TbHelper2.exe
    [2010/03/12 19:45:00 | 000,042,496 | ---- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}\chrome\content\id_imbooster4web_v6\uninstall.exe
    [2010/03/12 19:45:00 | 000,056,832 | ---- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}\chrome\content\id_imbooster4web_v6\update.exe
    [2010/03/19 14:04:44 | 000,152,664 | ---- | M] () -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}\components\setup_widget_serv.exe

    < %systemroot%\*. /mp /s >

    < %systemroot%\system32\*.dll /lockedfiles >
    [1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

    < %systemroot%\Tasks\*.job /lockedfiles >

    < %systemroot%\system32\drivers\*.sys /lockedfiles >
    [2009/12/26 12:18:40 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

    < hklm\software\clients\startmenuinternet|command /rs >
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\chrome.exe\shell\open\command\\: "C:\Program Files\Google\Chrome\Application\chrome.exe" [2012/04/12 09:37:36 | 001,224,176 | ---- | M] (Google Inc.)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2012/03/22 21:27:37 | 000,836,840 | ---- | M] (Mozilla Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2012/03/22 21:27:37 | 000,836,840 | ---- | M] (Mozilla Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/03/22 21:27:37 | 000,836,840 | ---- | M] (Mozilla Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2012/03/22 21:27:44 | 000,924,600 | ---- | M] (Mozilla Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2012/03/22 21:27:44 | 000,924,600 | ---- | M] (Mozilla Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2012/03/22 21:27:44 | 000,924,600 | ---- | M] (Mozilla Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --show-icons [2012/04/12 09:37:36 | 001,224,176 | ---- | M] (Google Inc.)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --hide-icons [2012/04/12 09:37:36 | 001,224,176 | ---- | M] (Google Inc.)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --make-default-browser [2012/04/12 09:37:36 | 001,224,176 | ---- | M] (Google Inc.)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Program Files\Google\Chrome\Application\chrome.exe" [2012/04/12 09:37:36 | 001,224,176 | ---- | M] (Google Inc.)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2012/02/29 14:17:40 | 000,174,080 | ---- | M] (Microsoft Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2012/02/29 14:17:40 | 000,174,080 | ---- | M] (Microsoft Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2012/02/29 14:17:40 | 000,174,080 | ---- | M] (Microsoft Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2009/03/08 15:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2009/03/08 15:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\MSN Explorer\shell\open\command\\: "C:\Program Files\MSN\MSNCoreFiles\MSN6.EXE" [2001/08/28 14:00:00 | 000,090,112 | ---- | M] (Microsoft Corporation)

    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D 1B5B4F1

    < End of report >
    30 Avril 2012 11:21:35

    D'autre part, en téléchargeant WhoCrashed une page internet se met systématiquement lors d'ouverture d'internet "bubbledock". Impossible de s'en débarrassé.
    a c 614 8 Sécurité
    30 Avril 2012 11:57:51

    Re,
    Alors, ok pour TDSSkiller,

    Par contre OTL, je te demandais de l'héberger sur pjjoint, mais il faut me donner le lien obtenu, sinon je peux pas le savoir ;) 
    Tu as un tutoriel en image pour savoir comment faire dans ma réponse.

    Donc, donne-moi les liens obtenu après avoir hébergé le rapport OTL.txt et n'oublie pas le Extra.txt

    Je te redonne le tutoriel au besoin :
    Une aide à l'utilisation ici

    ps : bubbledock, c'est un adware, un sponsor publicitaires, tu en as plusieurs apparemment, on s'en occupera dès que j'ai les deux rapports
    a c 614 8 Sécurité
    30 Avril 2012 13:59:36

    Re,

    Parfait, on y va pour le ménage :

    1) Désinstalle les programmes suivant via ajout/suppression des programmes (si présents) :

    - Java(TM) 6 Update 13 (version obsolète, tu possèdes une plus récente)
    - Macromedia Flash Player 8 (idem, sauf si utilité pour travail dessus)
    - Adobe Flash Player 9 ActiveX (idem)

    - SweetIM Toolbar for Internet Explorer 4.2 (adware : logiciel publicitaire)
    - SweetIM for Messenger 3.6 (idem)
    - Search Settings 1.2 (idem)
    - 1-2-3 Spyware Free v4.8 (inutile, voir coquille vide ...)
    - CrazyLoader (adware)


    2) Relance OTL.exe

  • Ferme toutes tes fenêtres, puis double clique sur OTL.exe pour le lancer.
    (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")

    /!\ Attention, utilisateur d'Avast!, ne lancez pas OTL en mode sandbox /!\

  • Copie-colle l'ensemble du texte ci-dessous dans le cadre Personnalisation d'OTL en bas à gauche.



    :OTL
    MOD - [2010/02/23 10:08:47 | 005,445,250 | ---- | M] () -- C:\Documents and Settings\BATMAN\osr\osr.exe
    DRV - File not found [Kernel | On_Demand | Unknown] -- -- (avevakwr)
    DRV - [2009/06/18 15:48:04 | 000,092,464 | ---- | M] (Sunbelt Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sbredrv.sys -- (SBRE)
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.wuuta.com/
    IE - HKLM\..\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}: "URL" = http://toolbar.ask.com/toolbarv/askRedirect?o=13925&gct=&gc=1&q={searchTerms}&crm=1
    IE - HKLM\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50winampie7
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\SearchScopes,DefaultScope = {AC854C16-CA1E-43f1-8513-0D2F36C726ED}
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\SearchScopes\{AC854C16-CA1E-43f1-8513-0D2F36C726ED}: "URL" = http://www.gobrs.com/search/?q={searchTerms}&ie=utf-8&oe=utf-8&aq=t&rls=h4uVe5bQ
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search?q={searchTerms}
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\crazyloader@spointer.com: C:\Program Files\CrazyLoader\spointer\extensions\crazyloader@spointer.com [2010/11/28 14:23:34 | 000,000,000 | ---D | M]
    [2012/01/06 17:49:20 | 000,000,000 | ---D | M] (IMinent Toolbar) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}
    [2012/01/06 18:45:25 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
    [2010/02/01 22:29:27 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\toolbar@ask.com
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
    O2 - BHO: (Interest recogniser for Crazyloader (powered by Spointer)) - {C5F65718-341D-4e7d-9842-FCB9CC89527E} - C:\Program Files\CrazyLoader\spointer\extensions\crazyloader_air_ie.dll (Crazyloader)
    O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
    O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - No CLSID value found.
    O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
    O3 - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
    O3 - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
    O4 - HKLM..\Run: [OSR] C:\Documents and Settings\BATMAN\osr\osr.exe ()
    O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
    O4 - HKU\S-1-5-21-515967899-1532298954-839522115-1003..\Run: [Bubble Dock] "C:\Documents and Settings\BATMAN\Application Data\Nosibay\Bubble Dock\LBubble Dock.exe" /winstartup File not found
    O4 - HKU\S-1-5-21-515967899-1532298954-839522115-1003..\Run: [PCFix] C:\Program Files\PCFix\PCFix.exe File not found
    O8 - Extra context menu item: Rechercher sur le Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\MenuExt.html ()
    O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
    MsConfig - StartUpReg: SpybotSD TeaTimer - hkey= - key= - File not found
    MsConfig - StartUpReg: UniblueRegistryBooster - hkey= - key= - File not found
    [2012/04/27 21:27:18 | 000,000,000 | ---D | C] -- C:\Program Files\Nosibay
    [2012/04/27 21:26:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BATMAN\Application Data\Nosibay
    [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [2 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
    [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
    [2009/06/15 20:48:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
    [2010/02/01 22:45:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    [2012/01/11 08:50:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SweetIM
    [2010/11/28 14:24:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\CrazyLoader
    [2010/02/12 19:39:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\igraal
    [2012/04/27 21:26:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Nosibay
    [2011/05/01 09:51:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\OfferBox
    [2010/09/03 20:59:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\PCFix
    [2012/01/09 01:04:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Toolbar4
    [2012/04/27 23:21:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Uniblue
    @Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1

    :Reg
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
    "C:\Program Files\CrazyLoader\crazyloader.exe"=-

    :Files
    C:\Program Files\SweetIM
    C:\Documents and Settings\BATMAN\osr
    C:\Program Files\CrazyLoader
    C:\Documents and Settings\BATMAN\Application Data\Nosibay

    :Commands
    [emptytemp]
    [resethosts]


  • Puis clique sur le bouton Correction en haut à gauche
  • Le pc va redémarrer. (si ce n'est pas le cas, fais-le manuellement)
  • Poste le rapport de suppression s'il apparait.

    Note : le rapport est enregistré sous format ".log", il convient de changer cette extension en ".txt" si tu veux le déposer sur des sites en ligne. S'il n'apparait pas, il se trouve ici : C:\_OTL, sous la forme xxxxxxxx_xxxx.log où x sont la date et l'heure

    /!\ Ce script est exclusivement réservé à l'utilisateur actuel du sujet, vous ne devez en aucun cas l'utiliser de votre propre chef sur un autre pc, sous risque d'endommager le système /!\


    Dis-moi si cela change quelque chose niveau redémarrages.

    :jap: 
    30 Avril 2012 22:37:27

    Bonsoir,

    Voici le nouveau rapport mais j'ai toujours ma page qui s'ouvre sur bubbledock et n'arrive a a le supprimer ! concernant le redémarrage intempestif, celui a l'air de ne plus ce faire !

    All processes killed
    Error: Unable to interpret <: OTL> in the current context!
    Error: Unable to interpret <MOD - [2010/02/23 10:08:47 | 005,445,250 | ---- | M] () -- C:\Documents and Settings\BATMAN\osr\osr.exe> in the current context!
    Error: Unable to interpret <DRV - File not found [Kernel | On_Demand | Unknown] -- -- (avevakwr)> in the current context!
    Error: Unable to interpret <DRV - [2009/06/18 15:48:04 | 000,092,464 | ---- | M] (Sunbelt Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sbredrv.sys -- (SBRE)> in the current context!
    Error: Unable to interpret <IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.wuuta.com/&gt; in the current context!
    Error: Unable to interpret <IE - HKLM\..\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}: "URL" = http://toolbar.ask.com/toolbarv/askRedirect?o=13925&gct...{searchTerms}&crm=1> in the current context!
    Error: Unable to interpret <IE - HKLM\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/slirs_http/sredir?s...{searchTerms}&invocationType=tb50winampie7> in the current context!
    Error: Unable to interpret <IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)> in the current context!
    Error: Unable to interpret <IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\SearchScopes,DefaultScope = {AC854C16-CA1E-43f1-8513-0D2F36C726ED}> in the current context!
    Error: Unable to interpret <IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\SearchScopes\{AC854C16-CA1E-43f1-8513-0D2F36C726ED}: "URL" = http://www.gobrs.com/search/?q={searchTerms}&ie=utf-8&oe=utf-8&aq=t&rls=h4uVe5bQ> in the current context!
    Error: Unable to interpret <IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search?q={searchTerms}> in the current context!
    Error: Unable to interpret <FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\crazyloader@spointer.com: C:\Program Files\CrazyLoader\spointer\extensions\crazyloader@spointer.com [2010/11/28 14:23:34 | 000,000,000 | ---D | M]> in the current context!
    Error: Unable to interpret <[2012/01/06 17:49:20 | 000,000,000 | ---D | M] (IMinent Toolbar) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}> in the current context!
    Error: Unable to interpret <[2012/01/06 18:45:25 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}> in the current context!
    Error: Unable to interpret <[2010/02/01 22:29:27 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\toolbar@ask.com> in the current context!
    Error: Unable to interpret <O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.> in the current context!
    Error: Unable to interpret <O2 - BHO: (Interest recogniser for Crazyloader (powered by Spointer)) - {C5F65718-341D-4e7d-9842-FCB9CC89527E} - C:\Program Files\CrazyLoader\spointer\extensions\crazyloader_air_ie.dll (Crazyloader)> in the current context!
    Error: Unable to interpret <O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)> in the current context!
    Error: Unable to interpret <O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - No CLSID value found.> in the current context!
    Error: Unable to interpret <O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)> in the current context!
    Error: Unable to interpret <O3 - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.> in the current context!
    Error: Unable to interpret <O3 - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)> in the current context!
    Error: Unable to interpret <O4 - HKLM..\Run: [OSR] C:\Documents and Settings\BATMAN\osr\osr.exe ()> in the current context!
    Error: Unable to interpret <O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)> in the current context!
    Error: Unable to interpret <O4 - HKU\S-1-5-21-515967899-1532298954-839522115-1003..\Run: [Bubble Dock] "C:\Documents and Settings\BATMAN\Application Data\Nosibay\Bubble Dock\LBubble Dock.exe" /winstartup File not found> in the current context!
    Error: Unable to interpret <O4 - HKU\S-1-5-21-515967899-1532298954-839522115-1003..\Run: [PCFix] C:\Program Files\PCFix\PCFix.exe File not found> in the current context!
    Error: Unable to interpret <O8 - Extra context menu item: Rechercher sur le Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\MenuExt.html ()> in the current context!
    Error: Unable to interpret <O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-wind... (Java Plug-in 1.6.0_13)> in the current context!
    Error: Unable to interpret <MsConfig - StartUpReg: SpybotSD TeaTimer - hkey= - key= - File not found> in the current context!
    Error: Unable to interpret <MsConfig - StartUpReg: UniblueRegistryBooster - hkey= - key= - File not found> in the current context!
    Error: Unable to interpret <[2012/04/27 21:27:18 | 000,000,000 | ---D | C] -- C:\Program Files\Nosibay> in the current context!
    Error: Unable to interpret <[2012/04/27 21:26:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BATMAN\Application Data\Nosibay> in the current context!
    Error: Unable to interpret <[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]> in the current context!
    Error: Unable to interpret <[2 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]> in the current context!
    Error: Unable to interpret <[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]> in the current context!
    Error: Unable to interpret <[2009/06/15 20:48:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Lavasoft> in the current context!
    Error: Unable to interpret <[2010/02/01 22:45:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy> in the current context!
    Error: Unable to interpret <[2012/01/11 08:50:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SweetIM> in the current context!
    Error: Unable to interpret <[2010/11/28 14:24:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\CrazyLoader> in the current context!
    Error: Unable to interpret <[2010/02/12 19:39:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\igraal> in the current context!
    Error: Unable to interpret <[2012/04/27 21:26:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Nosibay> in the current context!
    Error: Unable to interpret <[2011/05/01 09:51:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\OfferBox> in the current context!
    Error: Unable to interpret <[2010/09/03 20:59:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\PCFix> in the current context!
    Error: Unable to interpret <[2012/01/09 01:04:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Toolbar4> in the current context!
    Error: Unable to interpret <[2012/04/27 23:21:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Uniblue> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D 1B5B4F1> in the current context!
    ========== REGISTRY ==========
    Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\CrazyLoader\crazyloader.exe deleted successfully.
    ========== FILES ==========
    File\Folder C:\Program Files\SweetIM not found.
    C:\Documents and Settings\BATMAN\osr folder moved successfully.
    File\Folder C:\Program Files\CrazyLoader not found.
    C:\Documents and Settings\BATMAN\Application Data\Nosibay folder moved successfully.
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: Administrateur
    ->Temporary Internet Files folder emptied: 32768 bytes

    User: Administrateur.HP_PAVILION
    ->Temp folder emptied: 5752783 bytes
    ->Temporary Internet Files folder emptied: 1412802 bytes
    ->FireFox cache emptied: 3633688 bytes
    ->Flash cache emptied: 41661 bytes

    User: All Users

    User: BATMAN
    ->Temp folder emptied: 294490785 bytes
    ->Temporary Internet Files folder emptied: 21975429 bytes
    ->Java cache emptied: 127150 bytes
    ->FireFox cache emptied: 139812291 bytes
    ->Google Chrome cache emptied: 0 bytes
    ->Flash cache emptied: 1931477 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes
    ->Flash cache emptied: 41661 bytes

    User: LocalService
    ->Temp folder emptied: 66016 bytes
    ->Temporary Internet Files folder emptied: 39712 bytes

    User: NetworkService
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 146350252 bytes

    User: openpgsvc
    ->Temporary Internet Files folder emptied: 32768 bytes
    ->Flash cache emptied: 2877 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 1237262 bytes
    %systemroot%\System32 .tmp files removed: 3072 bytes
    %systemroot%\System32\dllcache .tmp files removed: 64512 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 346252017 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 162406837 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
    RecycleBin emptied: 0 bytes

    Total Files Cleaned = 1 074,00 mb

    C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
    HOSTS file reset successfully

    OTL by OldTimer - Version 3.2.42.2 log created on 04302012_233248

    Files\Folders moved on Reboot...

    Registry entries deleted on Reboot...
    a c 614 8 Sécurité
    30 Avril 2012 23:23:59

    Re,

    Tu n'as pas copié correctement le script de suppression, donc il n'a pas effectué toutes les tâches, il faut le refaire

    Je te recopie ce qu'il y a à faire, pense à bien copié tout le texte depuis le début jusqu'à la fin.

    Relance OTL.exe

  • Ferme toutes tes fenêtres, puis double clique sur OTL.exe pour le lancer.
    (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")

    /!\ Attention, utilisateur d'Avast!, ne lancez pas OTL en mode sandbox /!\

  • Copie-colle l'ensemble du texte ci-dessous dans le cadre Personnalisation d'OTL en bas à gauche.


    test

    :OTL
    MOD - [2010/02/23 10:08:47 | 005,445,250 | ---- | M] () -- C:\Documents and Settings\BATMAN\osr\osr.exe
    DRV - File not found [Kernel | On_Demand | Unknown] -- -- (avevakwr)
    DRV - [2009/06/18 15:48:04 | 000,092,464 | ---- | M] (Sunbelt Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sbredrv.sys -- (SBRE)
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.wuuta.com/
    IE - HKLM\..\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}: "URL" = http://toolbar.ask.com/toolbarv/askRedirect?o=13925&gct=&gc=1&q={searchTerms}&crm=1
    IE - HKLM\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50winampie7
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\SearchScopes,DefaultScope = {AC854C16-CA1E-43f1-8513-0D2F36C726ED}
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\SearchScopes\{AC854C16-CA1E-43f1-8513-0D2F36C726ED}: "URL" = http://www.gobrs.com/search/?q={searchTerms}&ie=utf-8&oe=utf-8&aq=t&rls=h4uVe5bQ
    IE - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search?q={searchTerms}
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\crazyloader@spointer.com: C:\Program Files\CrazyLoader\spointer\extensions\crazyloader@spointer.com [2010/11/28 14:23:34 | 000,000,000 | ---D | M]
    [2012/01/06 17:49:20 | 000,000,000 | ---D | M] (IMinent Toolbar) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}
    [2012/01/06 18:45:25 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
    [2010/02/01 22:29:27 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Documents and Settings\BATMAN\Application Data\Mozilla\Firefox\Profiles\izhbpkn9.default\extensions\toolbar@ask.com
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
    O2 - BHO: (Interest recogniser for Crazyloader (powered by Spointer)) - {C5F65718-341D-4e7d-9842-FCB9CC89527E} - C:\Program Files\CrazyLoader\spointer\extensions\crazyloader_air_ie.dll (Crazyloader)
    O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
    O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - No CLSID value found.
    O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
    O3 - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
    O3 - HKU\S-1-5-21-515967899-1532298954-839522115-1003\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
    O4 - HKLM..\Run: [OSR] C:\Documents and Settings\BATMAN\osr\osr.exe ()
    O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
    O4 - HKU\S-1-5-21-515967899-1532298954-839522115-1003..\Run: [Bubble Dock] "C:\Documents and Settings\BATMAN\Application Data\Nosibay\Bubble Dock\LBubble Dock.exe" /winstartup File not found
    O4 - HKU\S-1-5-21-515967899-1532298954-839522115-1003..\Run: [PCFix] C:\Program Files\PCFix\PCFix.exe File not found
    O8 - Extra context menu item: Rechercher sur le Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\MenuExt.html ()
    O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
    MsConfig - StartUpReg: SpybotSD TeaTimer - hkey= - key= - File not found
    MsConfig - StartUpReg: UniblueRegistryBooster - hkey= - key= - File not found
    [2012/04/27 21:27:18 | 000,000,000 | ---D | C] -- C:\Program Files\Nosibay
    [2012/04/27 21:26:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BATMAN\Application Data\Nosibay
    [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [2 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
    [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
    [2009/06/15 20:48:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
    [2010/02/01 22:45:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    [2012/01/11 08:50:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SweetIM
    [2010/11/28 14:24:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\CrazyLoader
    [2010/02/12 19:39:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\igraal
    [2012/04/27 21:26:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Nosibay
    [2011/05/01 09:51:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\OfferBox
    [2010/09/03 20:59:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\PCFix
    [2012/01/09 01:04:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Toolbar4
    [2012/04/27 23:21:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BATMAN\Application Data\Uniblue
    @Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1

    :Commands
    [emptytemp]



  • Puis clique sur le bouton Correction en haut à gauche
  • Le pc va redémarrer. (si ce n'est pas le cas, fais-le manuellement)
  • Poste le rapport de suppression s'il apparait.

    Note : le rapport est enregistré sous format ".log", il convient de changer cette extension en ".txt" si tu veux le déposer sur des sites en ligne. S'il n'apparait pas, il se trouve ici : C:\_OTL, sous la forme xxxxxxxx_xxxx.log où x sont la date et l'heure

    /!\ Ce script est exclusivement réservé à l'utilisateur actuel du sujet, vous ne devez en aucun cas l'utiliser de votre propre chef sur un autre pc, sous risque d'endommager le système /!\
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS