Affichage intempestif de fenetres internet.

Salut , télécharge:Malwarebytes' Anti-Malware 1.46

Voire sur Clubic:http://www.clubic.com/telecharger-fiche215092-malwareby...

Ça peut servir  

pour suivre
   

PERSONNE NE PEUT M'AIDER ICI ??????

Un bonjour ?
et évite les majuscules où tu iras te faire aider ailleurs.
levaisoie t'avait proposé quelque chose... mais tu ne l'as pas fait probablement.

+++++++++++++++

Télécharge OTL (de OldTimer) sur ton Bureau.

Double-clique sur OTL pour le lancer.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)

Une fenêtre apparaît. Dans la section Rapport en haut de cette fenêtre, coche Rapport minimal.

Coche également les cases à côté de Recherche Lop et Recherche Purity.

sous Personnalisation (dans le cadre blanc), copie_colle le contenu du cadre ci dessous:

netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe
/md5start
explorer.exe
userinit.exe
winlogon.exe
wininit.exe
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
CREATERESTOREPOINT

Enfin, clique sur le bouton Analyse. Laisse travailler l'outil.

Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTL (donc par défaut sur le Bureau).

Pour me transmettre les rapports :

Clique sur ce lien : http://www.cijoint.fr/

Bonjour, et merci mais pour les majuscules j'ecris habituellement comme ça...

Merci mais pour Levaisoie je n'y avais pas trouvé grand chose.

Sinon pour OTL c'est fait je t'envoi les rapports.

Cdlt

re
tu me postes ici le lien du rapport stp

POUR LE EXTRA


OTL Extras logfile created on: 16/10/2010 15:07:48 - Run 1
OTL by OldTimer - Version 3.2.15.2 Folder = C:\Documents and Settings\Chamby\My Documents
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1 014,00 Mb Total Physical Memory | 157,00 Mb Available Physical Memory | 16,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 68,00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 87,01 Gb Total Space | 62,24 Gb Free Space | 71,53% Space Free | Partition Type: NTFS

Computer Name: CHAMBY-EFE730DB | User Name: Chamby | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3587:TCP" = 3587:TCP:*:Enabled:Windows Peer-to-Peer Grouping
"3540:UDP" = 3540:UDP:*:Enabled eer Name Resolution Protocol (PNRP)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3587:TCP" = 3587:TCP:*:Enabled:Windows Peer-to-Peer Grouping
"3540:UDP" = 3540:UDP:*:Enabled eer Name Resolution Protocol (PNRP)
"5985:TCP" = 5985:TCP:* isabled:Windows Remote Management
"80:TCP" = 80:TCP:* isabled:Windows Remote Management - Compatibility Mode (HTTP-In)
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare -- (Microsoft Corporation)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{001E7FB6-BB6B-4ED0-BEDC-B5404ED96D4E}" = DocProc
"{06BE8AFD-A8E2-4B63-BAE7-287016D16ACB}" = mSSO
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0E2B0B41-7E08-4F9F-B21F-41C4133F43B7}" = mLogView
"{10E1E87C-656C-4D08-86D6-5443D28583BE}" = TrayApp
"{133742BA-6F46-4D3E-85AF-78631D9AD8B8}" = Installation Windows Live
"{1753255A-0AEB-4220-8C75-607B73F0C133}" = Copy
"{1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}" = Galerie de photos Windows Live
"{1F528948-0E80-4C96-B455-DE4167CB1DF7}" = Internal Network Card Power Management
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{23FB368F-1399-4EAC-817C-4B83ECBE3D83}" = mProSafe
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
"{2F28B3C9-2C89-4206-8B33-8ADC9577C49B}" = Scan
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3E9D596A-61D4-4239-BD19-2DB984D2A16F}" = mIWA
"{445B183D-F4F1-45C8-B9DB-F11355CA657B}" = Windows Live Messenger
"{49D687E5-6784-431B-A0A2-2F23B8CC5A1B}" = mHlpDell
"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
"{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail
"{63DB9CCD-2B56-4217-9A3D-507AC78320CA}" = mWMI
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{7148F0A8-6813-11D6-A77B-00B0D0142030}" = Java 2 Runtime Environment, SE v1.4.2_03
"{76810709-A7D3-468D-9167-A1780C1E766C}" = Windows Live FolderShare
"{7F142D56-3326-11D5-B229-002078017FBF}" = Modem Helper
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel(R) Graphics Media Accelerator Driver
"{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}" = mPfMgr
"{8C6027FD-53DC-446D-BB75-CACD7028A134}" = HP Update
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{90B0D222-8C21-4B35-9262-53B042F18AF9}" = mPfWiz
"{93F54611-2701-454e-94AB-623F458D9E6B}" = DeviceDiscovery
"{94658027-9F16-4509-BBD7-A59FE57C3023}" = mZConfig
"{95120000-00AF-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (French)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9941F0AA-B903-4AF4-A055-83A9815CC011}" = Sonic Encoders
"{9C9D0F85-5658-4A5E-95A9-65F7DB2916EE}" = Broadcom 440x 10/100 Integrated Controller
"{9CC89556-3578-48DD-8408-04E66EBEF401}" = mXML
"{A036E231-5A03-4d63-94F6-7864CC77EC48}" = PS_AIO_ProductContext
"{A0F925BF-5C55-44C2-A4E7-5A4C59791C29}" = mDriver
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1036-7B44-A94000000001}" = Adobe Reader 9.4.0 - Français
"{AEA07F97-9088-497c-8821-0F36BD5DC251}" = HPProductAssistant
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{B040FEFE-B45F-4e30-B3C6-035F53F544A9}" = c4200_Help
"{B22C19AE-6A67-4f28-B541-5AE72FB17A25}" = HP Photosmart All-In-One Software 9.0
"{B3B487E7-6171-4376-9074-B28082CEB504}" = Windows Live Call
"{B9F3A6E6-9C77-4535-9ED9-B16C1EBDFEC2}" = C4200
"{BCD6CD1A-0DBE-412E-9F25-3B500D1E6BA1}" = SolutionCenter
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C5074CC4-0E26-4716-A307-960272A90040}" = QuickSet
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}" = Bluetooth Stack for Windows by Toshiba
"{D0E39A1D-0CEE-4D85-B4A2-E3BE990D075E}" = Destination Component
"{D719E8F1-6931-40b4-AC0B-5FE2C097F995}" = C4200_doccd
"{D78653C3-A8FF-415F-92E6-D774E634FF2D}" = Dell ResourceCD
"{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live
"{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm
"{E39A3770-3DDE-404c-B91F-3522947874A3}" = PS_AIO_Software_min
"{E81667C6-2856-46D6-ABEA-6A2F42166779}" = mCore
"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}" = mMHouse
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F6090A17-0967-4A8A-B3C3-422A1B514D49}" = mDrWiFi
"{FA4FA322-5C90-4d2b-A019-9E588273DED5}" = PS_AIO_Software
"{FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4}" = mWlsSafe
"{FD8D8B04-BEAD-4A55-AA1D-62D2373E7DEA}" = Status
"12133444-BF36-4d4e-B7FB-A3424C645DE4" = GemMaster Mystic
"3635FC5A3FE7DACCEF2123BDBDA808BA811B977B" = Windows Driver Package - Ricoh Company Memorystick Host Controller (07/09/2005 1.00.01.12)
"452416B030C25BAA383F3DA368FECD5D48FAE727" = Windows Driver Package - Ricoh Company xD-Picture Card/SmartMedia Host Controller (07/14/2005 1.00.02.04)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"B3EE3001-DC24-4cd1-8743-5692C716659F" = Otto
"Broadcom 802.11b Network Adapter" = Dell Wireless WLAN Card
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3" = Conexant HDA D110 MDC V.92 Modem
"F631A62FA5E06534A0FE3637D75AAA5B1D3E4FB7" = Windows Driver Package - Ricoh Company MMC Host Controller (07/14/2005 1.00.00.06)
"HP Imaging Device Functions" = HP Imaging Device Functions 9.0
"HP Solution Center & Imaging Support Tools" = HP Solution Center 9.0
"HPOCR" = HP OCR Software 9.0
"ie8" = Windows Internet Explorer 8
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"ProInst" = Intel(R) PROSet/Wireless Software
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"VLC media player" = VLC media player 1.1.4
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Installation Windows Live
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 04/10/2010 11:53:54 | Computer Name = CHAMBY-EFE730DB | Source = MsiInstaller | ID = 11904
Description = Produit : SolutionCenter -- Error 1904. Impossible d'inscrire le module
C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx. HRESULT -2147220473. Contactez
votre service de support technique.

Error - 05/10/2010 18:46:33 | Computer Name = CHAMBY-EFE730DB | Source = Application Hang | ID = 1002
Description = Hanging application vlc.exe, version 1.1.4.0, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 05/10/2010 18:47:53 | Computer Name = CHAMBY-EFE730DB | Source = Application Hang | ID = 1002
Description = Hanging application vlc.exe, version 1.1.4.0, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 08/10/2010 09:31:51 | Computer Name = CHAMBY-EFE730DB | Source = Application Hang | ID = 1002
Description = Hanging application vlc.exe, version 1.1.4.0, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 09/10/2010 15:09:19 | Computer Name = CHAMBY-EFE730DB | Source = Application Hang | ID = 1002
Description = Hanging application iexplore.exe, version 8.0.6001.18702, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 10/10/2010 13:44:47 | Computer Name = CHAMBY-EFE730DB | Source = Windows Search Service | ID = 3013
Description =

Error - 10/10/2010 13:44:47 | Computer Name = CHAMBY-EFE730DB | Source = Windows Search Service | ID = 3013
Description =

Error - 10/10/2010 13:50:40 | Computer Name = CHAMBY-EFE730DB | Source = Application Hang | ID = 1002
Description = Hanging application AdobeARM.exe, version 1.4.7.0, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 11/10/2010 08:41:01 | Computer Name = CHAMBY-EFE730DB | Source = Application Hang | ID = 1002
Description = Hanging application WLXPhotoGallery.exe, version 14.0.8117.416, hang
module hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 11/10/2010 08:42:54 | Computer Name = CHAMBY-EFE730DB | Source = Application Hang | ID = 1002
Description = Hanging application WLXPhotoGallery.exe, version 14.0.8117.416, hang
module hungapp, version 0.0.0.0, hang address 0x00000000.

[ System Events ]
Error - 08/10/2010 13:07:34 | Computer Name = CHAMBY-EFE730DB | Source = DCOM | ID = 10010
Description = The server {7F6316B4-4D69-4765-B0A3-B2598F2FA80A} did not register
with DCOM within the required timeout.

Error - 11/10/2010 04:30:22 | Computer Name = CHAMBY-EFE730DB | Source = DCOM | ID = 10010
Description = The server {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} did not register
with DCOM within the required timeout.

Error - 11/10/2010 11:24:54 | Computer Name = CHAMBY-EFE730DB | Source = DCOM | ID = 10010
Description = The server {7F6316B4-4D69-4765-B0A3-B2598F2FA80A} did not register
with DCOM within the required timeout.

Error - 11/10/2010 11:31:13 | Computer Name = CHAMBY-EFE730DB | Source = DCOM | ID = 10010
Description = The server {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} did not register
with DCOM within the required timeout.

Error - 11/10/2010 11:37:40 | Computer Name = CHAMBY-EFE730DB | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service WSearch with
arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error - 12/10/2010 13:11:52 | Computer Name = CHAMBY-EFE730DB | Source = DCOM | ID = 10010
Description = The server {7F6316B4-4D69-4765-B0A3-B2598F2FA80A} did not register
with DCOM within the required timeout.

Error - 14/10/2010 07:40:09 | Computer Name = CHAMBY-EFE730DB | Source = DCOM | ID = 10010
Description = The server {7F6316B4-4D69-4765-B0A3-B2598F2FA80A} did not register
with DCOM within the required timeout.

Error - 15/10/2010 12:57:05 | Computer Name = CHAMBY-EFE730DB | Source = DCOM | ID = 10010
Description = The server {7F6316B4-4D69-4765-B0A3-B2598F2FA80A} did not register
with DCOM within the required timeout.

Error - 16/10/2010 03:29:32 | Computer Name = CHAMBY-EFE730DB | Source = DCOM | ID = 10010
Description = The server {7F6316B4-4D69-4765-B0A3-B2598F2FA80A} did not register
with DCOM within the required timeout.

Error - 16/10/2010 06:38:35 | Computer Name = CHAMBY-EFE730DB | Source = DCOM | ID = 10010
Description = The server {1F87137D-0E7C-44D5-8C73-4EFFB68962F2} did not register
with DCOM within the required timeout.


< End of report >

POUR LE LOG


OTL logfile created on: 16/10/2010 15:07:48 - Run 1
OTL by OldTimer - Version 3.2.15.2 Folder = C:\Documents and Settings\Chamby\My Documents
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1 014,00 Mb Total Physical Memory | 157,00 Mb Available Physical Memory | 16,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 68,00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 87,01 Gb Total Space | 62,24 Gb Free Space | 71,53% Space Free | Partition Type: NTFS

Computer Name: CHAMBY-EFE730DB | User Name: Chamby | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Chamby\My Documents\OTL.exe (OldTimer Tools)
PRC - C:\WINDOWS\system32\inetsrv\inetinfo.exe (Microsoft Corporation)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe (Intel(R) Corporation)
PRC - C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe (Intel Corporation)
PRC - C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe (Intel Corporation)
PRC - C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe (Intel Corporation)
PRC - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe (Intel Corporation )
PRC - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe (Intel Corporation)
PRC - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe (Intel Corporation)
PRC - C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc)
PRC - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHSP.exe (TOSHIBA CORPORATION.)
PRC - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION.)
PRC - C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
PRC - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe (TOSHIBA CORPORATION.)
PRC - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe (TOSHIBA CORPORATION.)
PRC - C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe ()


========== Modules (SafeList) ==========

MOD - C:\Documents and Settings\Chamby\My Documents\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation)
MOD - C:\WINDOWS\system32\hccutils.dll (Intel Corporation)
MOD - C:\Program Files\Dell\QuickSet\dadkeyb.dll ()


========== Win32 Services (SafeList) ==========

SRV - (aspnet_state) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe (Microsoft Corporation)
SRV - (WPFFontCache_v0400) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (NetTcpPortSharing) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation)
SRV - (W3SVC) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe (Microsoft Corporation)
SRV - (SMTPSVC) Simple Mail Transfer Protocol (SMTP) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe (Microsoft Corporation)
SRV - (MSFtpsvc) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe (Microsoft Corporation)
SRV - (IISADMIN) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe (Microsoft Corporation)
SRV - (p2pgasvc) -- C:\WINDOWS\system32\p2pgasvc.dll (Microsoft Corporation)
SRV - (Iprip) -- C:\WINDOWS\system32\iprip.dll (Microsoft Corporation)
SRV - (WLANKEEPER) Intel(R) -- C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe (Intel(R) Corporation)
SRV - (S24EventMonitor) Intel(R) -- C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe (Intel Corporation )
SRV - (EvtEng) Intel(R) -- C:\Program Files\Intel\Wireless\Bin\EvtEng.exe (Intel Corporation)
SRV - (RegSrvc) Intel(R) -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe (Intel Corporation)
SRV - (Bluetooth Hid Switch Service) -- C:\Program Files\BlueTooth\HidSwitchService\HidSw.exe (Cambridge Silicon Radio)


========== Driver Services (SafeList) ==========

DRV - (UIUSys) -- C:\WINDOWS\System32\DRIVERS\UIUSYS.SYS File not found
DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (Tosrfusb) -- C:\WINDOWS\system32\drivers\tosrfusb.sys (TOSHIBA CORPORATION)
DRV - (Tosrfhid) -- C:\WINDOWS\system32\drivers\tosrfhid.sys (TOSHIBA Corporation.)
DRV - (Tosrfbd) -- C:\WINDOWS\system32\drivers\tosrfbd.sys (TOSHIBA CORPORATION)
DRV - (s24trans) -- C:\WINDOWS\system32\drivers\s24trans.sys (Intel Corporation)
DRV - (w39n51) Intel(R) -- C:\WINDOWS\system32\drivers\w39n51.sys (Intel® Corporation)
DRV - (HSF_DPV) -- C:\WINDOWS\system32\drivers\HSX_DPV.sys (Conexant Systems, Inc.)
DRV - (HSXHWAZL) -- C:\WINDOWS\system32\drivers\HSXHWAZL.sys (Conexant Systems, Inc.)
DRV - (winachsf) -- C:\WINDOWS\system32\drivers\HSX_CNXT.sys (Conexant Systems, Inc.)
DRV - (SynTP) -- C:\WINDOWS\system32\drivers\SynTP.sys (Synaptics, Inc.)
DRV - (tosporte) -- C:\WINDOWS\system32\drivers\tosporte.sys (TOSHIBA Corporation)
DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (SigmaTel, Inc.)
DRV - (BCOREUSB) -- C:\WINDOWS\system32\drivers\BCOREUSB.sys (CSR)
DRV - (Tosrfbnp) -- C:\WINDOWS\system32\drivers\tosrfbnp.sys (TOSHIBA Corporation)
DRV - (APPDRV) -- C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS (Dell Inc)
DRV - (bcm4sbxp) -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys (Broadcom Corporation)
DRV - (Tosrfcom) -- C:\WINDOWS\system32\drivers\tosrfcom.sys (TOSHIBA Corporation)
DRV - (rimmptsk) -- C:\WINDOWS\system32\drivers\rimmptsk.sys (REDC)
DRV - (rismxdp) -- C:\WINDOWS\system32\drivers\rixdptsk.sys (REDC)
DRV - (rimsptsk) -- C:\WINDOWS\system32\drivers\rimsptsk.sys (REDC)
DRV - (toshidpt) -- C:\WINDOWS\system32\drivers\toshidpt.sys (TOSHIBA Corporation.)
DRV - (TosRfSnd) Bluetooth Audio Device (WDM) -- C:\WINDOWS\system32\drivers\tosrfsnd.sys (TOSHIBA Corporation)
DRV - (tosrfnds) -- C:\WINDOWS\system32\drivers\tosrfnds.sys (TOSHIBA Corporation.)
DRV - (OMCI) -- C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS (Dell Computer Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ig
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: ([2004/08/10 13:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc)
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe (Intel Corporation)
O4 - HKLM..\Run: [IntelZeroConfig] C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe (Intel Corporation)
O4 - HKLM..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe ()
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [ShowLOMControl] Reg Error: Invalid data type. File not found
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth Manager.lnk = C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/products/plugin/autodl/jinstall-142... (Java Plug-in 1.4.2_03)
O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-142... (Java Plug-in 1.4.2_03)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: TaskMan - (C:\Documents and Settings\Chamby\Application Data\ygmdrm.exe) - C:\Documents and Settings\Chamby\Application Data\ygmdrm.exe ()
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Chamby\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Chamby\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/06/09 20:05:16 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{28e5a325-c970-11df-a563-0015c50b8aff}\Shell - "" = AutoRun
O33 - MountPoints2\{28e5a325-c970-11df-a563-0015c50b8aff}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{28e5a325-c970-11df-a563-0015c50b8aff}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found
O33 - MountPoints2\{8fd38154-cfe0-11df-a576-0015c50b8aff}\Shell\AutoRun\command - "" = seven.exe
O33 - MountPoints2\{8fd38154-cfe0-11df-a576-0015c50b8aff}\Shell\explore\command - "" = seven.exe
O33 - MountPoints2\{8fd38154-cfe0-11df-a576-0015c50b8aff}\Shell\open\command - "" = seven.exe
O33 - MountPoints2\{b590817e-d12f-11df-a57e-0015c50b8aff}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{b590817e-d12f-11df-a57e-0015c50b8aff}\Shell\AutoRun\command - "" = E:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{b590817e-d12f-11df-a57e-0015c50b8aff}\Shell\explore\command - "" = E:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{b590817e-d12f-11df-a57e-0015c50b8aff}\Shell\open\command - "" = E:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{c691d0b6-d52d-11df-a58d-0015c50b8aff}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{c691d0b6-d52d-11df-a58d-0015c50b8aff}\Shell\AutoRun\command - "" = F:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{c691d0b6-d52d-11df-a58d-0015c50b8aff}\Shell\explore\command - "" = F:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{c691d0b6-d52d-11df-a58d-0015c50b8aff}\Shell\open\command - "" = F:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{dcf8b2b2-c7d2-11df-a560-0015c50b8aff}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{dcf8b2b2-c7d2-11df-a560-0015c50b8aff}\Shell\AutoRun\command - "" = E:\pupica\makaroni.exe -- File not found
O33 - MountPoints2\{dcf8b2b2-c7d2-11df-a560-0015c50b8aff}\Shell\explore\command - "" = E:\pupica\\makaroni.exe -- File not found
O33 - MountPoints2\{dcf8b2b2-c7d2-11df-a560-0015c50b8aff}\Shell\open\command - "" = E:\pupica\\makaroni.exe -- File not found
O33 - MountPoints2\{dcf8b2b3-c7d2-11df-a560-0015c50b8aff}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{dcf8b2b3-c7d2-11df-a560-0015c50b8aff}\Shell\AutoRun\command - "" = E:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{dcf8b2b3-c7d2-11df-a560-0015c50b8aff}\Shell\explore\command - "" = E:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{dcf8b2b3-c7d2-11df-a560-0015c50b8aff}\Shell\open\command - "" = E:\SOMBORSKI\\vashar.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: Ias - File not found
NetSvcs: Iprip - C:\WINDOWS\system32\iprip.dll (Microsoft Corporation)
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

MsConfig - StartUpReg: JCFSE7V7Z1 - hkey= - key= - C:\DOCUME~1\Chamby\LOCALS~1\Temp\Tr1.exe File not found
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vector Graphics Rendering (VML)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {29E7D24F-BF30-45E7-8A40-AD27AFD8F5C6} - Microsoft .NET Framework 1.0 Hotfix (KB979904)
ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906)
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {2F6EFCE6-10DF-49F9-9E64-9AE3775B2588} - Microsoft .NET Framework 1.1 Security Update (KB2416447)
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML Data Binding for Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {407408d4-94ed-4d86-ab69-a7f649d112ee} - %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection QuickLaunchShortcut 640 %systemroot%\inf\mcdftreg.inf
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP E /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Task Scheduler
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Macromedia Shockwave Flash
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E8EA5BD6-D931-4001-ABF6-81BAA500360A} - Microsoft .NET Framework 1.0 Hotfix (KB953295)
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {EA29D410-CE41-4953-A862-2DE706A1DAD7} - Microsoft .NET Framework 1.0 Service Pack 3
ActiveX: {EF289A85-8E57-408d-BE47-73B55609861A} - RootsUpdate
ActiveX: {FDC11A6F-17D1-48f9-9EA3-9051954BAA24} - .NET Framework
ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
ActiveX: KB910393 - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\EasyCDBlock.inf,PerUserInstall
ActiveX: Microsoft Base Smart Card Crypto Provider Package -

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.siren - C:\WINDOWS\System32\sirenacm.dll (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (17183584330711040)

========== Files/Folders - Created Within 30 Days ==========

[2010/10/16 15:00:25 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Chamby\My Documents\OTL.exe
[2010/10/14 08:03:26 | 000,974,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll
[2010/10/14 08:03:26 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[2010/10/14 08:02:49 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
[2010/10/11 17:41:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Chamby\My Documents\Le bon coin
[2010/10/11 15:07:26 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010/10/07 10:39:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2010/10/05 22:16:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Chamby\My Documents\Logiciels
[2010/10/05 11:52:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010/10/05 11:48:25 | 000,000,000 | ---D | C] -- C:\Inetpub
[2010/10/04 18:10:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Chamby\My Documents\Mes numérisations
[2010/10/04 18:01:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Chamby\Application Data\HP
[2010/10/04 17:57:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\WEBREG
[2010/10/04 17:53:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\HP Product Assistant
[2010/10/04 17:53:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\HP
[2010/10/04 17:53:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2010/10/04 17:52:44 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2010/10/04 17:52:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2010/10/04 17:51:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Hewlett-Packard
[2010/10/04 17:50:45 | 000,267,864 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpzids01.dll
[2010/10/04 17:50:42 | 000,118,272 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpz3l5ha.dll
[2010/10/04 17:50:02 | 000,364,544 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hppldcoi.dll
[2010/10/04 17:50:02 | 000,309,760 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll
[2010/10/04 17:50:01 | 000,958,464 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpotiop4.dll
[2010/10/04 17:50:01 | 000,675,840 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpowiax4.dll
[2010/10/04 17:50:01 | 000,303,104 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpovst11.dll
[2010/10/04 17:48:20 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2010/10/04 17:48:11 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbprint.sys
[2010/10/04 17:47:47 | 000,000,000 | -H-D | C] -- C:\Config.Msi
[2010/10/04 14:08:52 | 000,192,512 | ---- | C] (Simon Tatham) -- C:\WINDOWS\Tkabya.exe
[2010/09/29 20:25:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Chamby\My Documents\ANPE
[2010/09/28 12:56:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Chamby\Application Data\vlc
[2010/09/28 12:55:19 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010/09/28 12:40:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Chamby\My Documents\Pps
[2010/09/27 15:32:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Chamby\My Documents\My Videos
[2010/09/26 15:15:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Chamby\Application Data\U3
[2010/09/26 15:15:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusb.dll
[2010/09/26 15:15:33 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys
[2010/09/26 15:15:32 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll
[2010/09/24 14:40:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Adobe
[2010/09/23 23:00:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2010/09/23 23:00:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010/09/23 22:48:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Chamby\Local Settings\Application Data\Adobe
[2010/09/22 20:17:05 | 000,026,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbstor.sys
[2010/09/22 13:30:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Chamby\Application Data\Windows Search
[2010/09/22 13:30:07 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010/09/22 13:27:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\WindowsPowerShell
[2010/09/22 13:27:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\winrm
[2010/09/22 13:27:16 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$968930Uinstall_KB968930$
[2010/09/21 11:32:54 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2010/09/21 11:22:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2010/09/21 11:22:07 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2010/09/21 11:22:00 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2010/09/21 11:21:25 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2010/09/21 11:21:25 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2010/09/21 11:21:25 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2010/09/21 11:21:25 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2010/09/21 11:21:25 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2010/09/21 11:21:25 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2010/09/21 11:21:25 | 000,000,000 | ---D | C] -- C:\8d3bf5bb3b0c12cd292c140a14a7
[2010/09/21 11:17:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Chamby\Local Settings\Application Data\Identities
[2010/09/21 11:16:50 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search
[2010/09/21 11:16:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy
[2010/09/21 11:15:50 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\offfilt.dll
[2010/09/21 11:15:50 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nlhtml.dll
[2010/09/21 11:15:50 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mimefilt.dll
[2010/09/21 11:15:43 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2010/09/21 11:15:28 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2010/09/21 11:13:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2010/09/20 22:36:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2010/09/20 15:38:23 | 000,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2010/09/20 15:38:23 | 000,016,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2010/09/20 03:06:08 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache
[2010/09/20 02:22:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Chamby\Tracing
[2010/09/20 02:15:51 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_32.dll
[2010/09/20 02:15:45 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2010/09/20 02:14:09 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2010/09/20 02:13:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\microsoft
[2010/09/20 02:13:51 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2010/09/20 02:13:24 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2010/09/20 01:48:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2010/09/19 12:01:33 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll
[2010/09/19 11:58:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010/09/19 00:45:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2010/09/19 00:45:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2010/09/19 00:45:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2010/09/19 00:45:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2010/09/19 00:41:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2010/09/19 00:36:39 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2010/09/18 12:23:26 | 000,974,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42u.dll
[2010/09/18 11:37:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Chamby\IECompatCache
[2010/09/18 11:36:31 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Chamby\PrivacIE
[2010/09/18 11:35:54 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2010/09/18 11:34:53 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Chamby\IETldCache
[2010/09/18 11:23:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010/09/18 11:23:35 | 001,986,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2010/09/18 11:23:35 | 000,602,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2010/09/18 11:23:35 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2010/09/18 11:23:34 | 011,080,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2010/09/18 11:23:34 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2010/09/18 11:23:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010/09/18 11:21:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2010/09/18 11:21:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2010/09/18 11:00:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2010/09/18 10:57:28 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2010/09/18 04:13:44 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2010/09/18 04:13:44 | 000,022,271 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2010/09/18 04:13:44 | 000,011,935 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2010/09/18 04:13:44 | 000,011,871 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2010/09/18 04:13:44 | 000,011,807 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2010/09/18 04:13:44 | 000,011,295 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2010/09/18 04:13:37 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2010/09/18 04:13:37 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2010/09/18 04:13:37 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2010/09/18 04:13:37 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2010/09/18 04:13:37 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2010/09/18 04:13:36 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2010/09/18 04:13:35 | 001,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2010/09/18 04:13:35 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2010/09/18 04:13:34 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2010/09/18 04:13:34 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2010/09/18 04:13:34 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2010/09/18 04:11:56 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys
[2010/09/18 04:11:56 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2010/09/18 04:11:56 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2010/09/18 04:11:56 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2010/09/18 04:11:56 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2010/09/18 04:11:56 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2010/09/18 04:11:56 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2010/09/18 04:11:56 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2010/09/18 04:11:56 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2010/09/18 04:11:56 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2010/09/18 04:11:56 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2010/09/18 04:11:56 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2010/09/18 04:11:56 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2010/09/18 04:11:56 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2010/09/18 04:11:55 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2010/09/18 04:11:55 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2010/09/18 04:11:55 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2010/09/18 04:11:55 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2010/09/18 04:11:55 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2010/09/18 04:11:55 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2010/09/18 04:11:55 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2010/09/18 04:11:55 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2010/09/18 03:31:53 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2010/09/18 03:30:40 | 000,357,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys
[2010/09/18 03:30:25 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsvc2.dll
[2010/09/18 03:27:37 | 000,455,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2010/09/18 03:22:15 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2010/09/18 03:21:50 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll
[2010/09/18 03:21:21 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2010/09/18 03:19:13 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2010/09/18 03:19:13 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2010/09/18 03:19:03 | 000,730,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2010/09/18 03:19:01 | 002,146,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2010/09/18 03:18:59 | 002,189,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2010/09/18 03:18:57 | 002,024,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2010/09/18 03:07:31 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2010/09/18 03:05:55 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2010/09/18 03:00:06 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2010/09/18 02:49:26 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\kb913800.exe
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/10/16 15:00:25 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Chamby\My Documents\OTL.exe
[2010/10/16 09:31:03 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{95307674-F132-4CE8-BCBE-C26450C280EF}.job
[2010/10/16 09:27:28 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/10/14 22:49:55 | 006,916,608 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\Les
[2010/10/14 22:40:57 | 000,334,336 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\bonraisonnement.pps
[2010/10/14 13:38:00 | 000,185,816 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/10/14 13:36:35 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/10/14 08:09:14 | 000,000,206 | ---- | M] () -- C:\WINDOWS\System32\MRT.INI
[2010/10/13 19:30:08 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/10/13 13:52:19 | 000,243,300 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\TOM054.pdf
[2010/10/13 06:29:50 | 000,266,240 | RHS- | M] () -- C:\Documents and Settings\Chamby\Application Data\ygmdrm.exe
[2010/10/12 21:54:23 | 000,095,232 | ---- | M] () -- C:\Documents and Settings\Chamby\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/10/12 18:55:23 | 003,502,592 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\Lafontedesglaciers.pps
[2010/10/11 17:37:49 | 000,555,182 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/10/11 17:37:49 | 000,105,476 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/10/11 17:32:56 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/10/11 15:08:53 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010/10/08 18:58:31 | 006,981,120 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\Bfg-Wereldreis.pps
[2010/10/06 21:59:51 | 000,016,420 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\Description circuit volontaire.pdf
[2010/10/06 21:59:35 | 000,076,064 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\Plan d'ac...pdf
[2010/10/05 22:15:47 | 003,823,616 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\bebertt_automobiles_avant_guerre-JPV.pps
[2010/10/05 12:00:09 | 000,000,209 | -HS- | M] () -- C:\boot.ini
[2010/10/04 19:39:23 | 000,123,819 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\RetraitesScandaleEuropeen.pdf
[2010/10/04 17:57:03 | 000,158,919 | ---- | M] () -- C:\WINDOWS\hpoins15.dat
[2010/10/04 17:54:31 | 000,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2010/10/04 17:53:51 | 000,001,058 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Centre de solutions HP.lnk
[2010/10/04 14:08:45 | 000,192,512 | ---- | M] (Simon Tatham) -- C:\WINDOWS\Tkabya.exe
[2010/10/04 12:51:09 | 000,008,084 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\Attestation.pdf
[2010/09/29 19:46:59 | 000,024,481 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\Jamel_DEBOUZE-MA1.pdf
[2010/09/28 21:40:48 | 000,604,717 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\Hotmail.zip
[2010/09/28 12:55:58 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2010/09/27 15:31:00 | 000,000,800 | ---- | M] () -- C:\Documents and Settings\Chamby\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2010/09/24 14:47:19 | 017,034,396 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\QCM-controleur-impots-2007.pdf
[2010/09/24 14:40:01 | 000,055,836 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\liste_dsf_2006.pdf
[2010/09/24 13:57:06 | 000,121,117 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\Groupon-482828391B.pdf
[2010/09/24 00:19:43 | 000,000,192 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\BijouString-s8311-fg-Noir.jpg&titre=Bijou+String#.url
[2010/09/24 00:19:14 | 000,000,205 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\CYGANERIAString-s8346-fg-Rose Glamour.jpg&titre=Cygane+String#.url
[2010/09/24 00:18:53 | 000,000,203 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\SATINString-s8414-fg-Noir Ivoire.jpg&titre=Satin+String+ENS#.url
[2010/09/24 00:17:52 | 000,000,186 | ---- | M] () -- C:\Documents and Settings\Chamby\My Documents\101-s8732-fg-Safari.jpg&titre=Safari+Boxer#.url
[2010/09/22 11:28:58 | 000,001,753 | ---- | M] () -- C:\Documents and Settings\Chamby\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Live Messenger .lnk
[2010/09/21 11:15:37 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010/09/21 11:15:37 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010/09/21 11:13:56 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2010/09/20 14:37:50 | 000,000,529 | ---- | M] () -- C:\Documents and Settings\Chamby\Application Data\Microsoft\Internet Explorer\Quick Launch\Explorer.lnk
[2010/09/19 11:59:56 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010/09/19 00:41:08 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2010/09/18 12:23:26 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc42u.dll
[2010/09/18 12:23:26 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42u.dll
[2010/09/18 11:35:57 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Chamby\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/09/18 11:35:52 | 000,001,503 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Browser Choice.lnk
[2010/09/18 08:53:25 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc42.dll
[2010/09/18 08:53:25 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll
[2010/09/18 08:53:25 | 000,954,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc40.dll
[2010/09/18 08:53:25 | 000,954,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40.dll
[2010/09/18 08:53:25 | 000,953,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc40u.dll
[2010/09/18 08:53:25 | 000,953,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/10/14 22:49:55 | 006,916,608 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\Les
[2010/10/14 22:40:51 | 000,334,336 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\bonraisonnement.pps
[2010/10/14 08:09:14 | 000,000,206 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2010/10/13 13:52:16 | 000,243,300 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\TOM054.pdf
[2010/10/13 06:29:53 | 000,266,240 | RHS- | C] () -- C:\Documents and Settings\Chamby\Application Data\ygmdrm.exe
[2010/10/12 18:55:23 | 003,502,592 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\Lafontedesglaciers.pps
[2010/10/11 15:08:53 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010/10/08 18:58:31 | 006,981,120 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\Bfg-Wereldreis.pps
[2010/10/06 21:59:51 | 000,016,420 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\Description circuit volontaire.pdf
[2010/10/06 21:59:34 | 000,076,064 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\Plan d'ac...pdf
[2010/10/05 22:15:47 | 003,823,616 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\bebertt_automobiles_avant_guerre-JPV.pps
[2010/10/04 19:39:21 | 000,123,819 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\RetraitesScandaleEuropeen.pdf
[2010/10/04 17:54:31 | 000,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2010/10/04 17:53:51 | 000,001,058 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Centre de solutions HP.lnk
[2010/10/04 17:45:16 | 000,000,753 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2010/10/04 17:45:14 | 000,158,919 | ---- | C] () -- C:\WINDOWS\hpoins15.dat
[2010/10/04 17:45:14 | 000,001,039 | ---- | C] () -- C:\WINDOWS\hpomdl15.dat
[2010/10/04 15:37:31 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/10/04 12:51:09 | 000,008,084 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\Attestation.pdf
[2010/09/29 19:46:59 | 000,024,481 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\Jamel_DEBOUZE-MA1.pdf
[2010/09/28 21:40:39 | 000,604,717 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\Hotmail.zip
[2010/09/28 12:55:58 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2010/09/27 15:31:00 | 000,000,800 | ---- | C] () -- C:\Documents and Settings\Chamby\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2010/09/24 18:15:55 | 000,095,232 | ---- | C] () -- C:\Documents and Settings\Chamby\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/09/24 14:47:19 | 017,034,396 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\QCM-controleur-impots-2007.pdf
[2010/09/24 14:40:01 | 000,055,836 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\liste_dsf_2006.pdf
[2010/09/24 13:57:04 | 000,121,117 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\Groupon-482828391B.pdf
[2010/09/24 00:19:43 | 000,000,192 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\BijouString-s8311-fg-Noir.jpg&titre=Bijou+String#.url
[2010/09/24 00:19:14 | 000,000,205 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\CYGANERIAString-s8346-fg-Rose Glamour.jpg&titre=Cygane+String#.url
[2010/09/24 00:18:53 | 000,000,203 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\SATINString-s8414-fg-Noir Ivoire.jpg&titre=Satin+String+ENS#.url
[2010/09/24 00:17:52 | 000,000,186 | ---- | C] () -- C:\Documents and Settings\Chamby\My Documents\101-s8732-fg-Safari.jpg&titre=Safari+Boxer#.url
[2010/09/22 11:28:58 | 000,001,753 | ---- | C] () -- C:\Documents and Settings\Chamby\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Live Messenger .lnk
[2010/09/21 11:13:56 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2010/09/20 14:37:50 | 000,000,529 | ---- | C] () -- C:\Documents and Settings\Chamby\Application Data\Microsoft\Internet Explorer\Quick Launch\Explorer.lnk
[2010/09/18 11:37:31 | 000,000,424 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{95307674-F132-4CE8-BCBE-C26450C280EF}.job
[2010/09/18 11:35:51 | 000,001,503 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Browser Choice.lnk
[2010/09/18 04:13:34 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2010/09/18 04:13:19 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2010/09/18 04:11:56 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2010/06/09 22:35:31 | 000,000,000 | ---- | C] () -- C:\WINDOWS\frontpg.ini
[2010/06/09 22:34:29 | 000,021,791 | ---- | C] () -- C:\WINDOWS\System32\smtpctrs.ini
[2010/06/09 22:34:28 | 000,001,037 | ---- | C] () -- C:\WINDOWS\System32\ntfsdrct.ini
[2010/06/09 22:34:12 | 000,007,909 | ---- | C] () -- C:\WINDOWS\System32\ftpctrs.ini
[2010/06/09 22:34:07 | 000,038,576 | ---- | C] () -- C:\WINDOWS\System32\w3ctrs.ini
[2010/06/09 22:34:07 | 000,010,225 | ---- | C] () -- C:\WINDOWS\System32\axperf.ini
[2010/06/09 22:34:05 | 000,011,435 | ---- | C] () -- C:\WINDOWS\System32\infoctrs.ini
[2010/06/09 21:50:02 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010/06/09 21:44:32 | 000,000,004 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\QSLLPSVCShare
[2010/06/09 21:32:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\tosOBEX.INI
[2010/06/09 21:09:46 | 000,757,760 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll
[2010/06/09 21:09:46 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll
[2010/06/09 21:02:22 | 000,016,480 | ---- | C] () -- C:\WINDOWS\System32\rixdicon.dll
[2010/06/09 20:19:38 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Chamby\Local Settings\Application Data\fusioncache.dat
[2005/09/01 21:44:00 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\TosBtAcc.dll
[2005/08/05 14:01:54 | 000,235,008 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2005/07/22 21:30:20 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\TosCommAPI.dll
[2004/07/20 17:04:02 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\TosBtHcrpAPI.dll
[2004/01/15 14:43:28 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\TBTMonUI.dll

========== LOP Check ==========

[2010/09/22 13:30:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Chamby\Application Data\Windows Search
[2010/10/16 09:31:03 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{95307674-F132-4CE8-BCBE-C26450C280EF}.job

========== Purity Check ==========



========== Custom Scans ==========


< %ALLUSERSPROFILE%\Application Data\*. >
[2010/10/11 15:08:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2010/10/04 17:51:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Hewlett-Packard
[2010/10/04 17:54:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\HP
[2010/10/04 17:53:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\HP Product Assistant
[2010/06/09 21:22:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Intel
[2010/09/29 20:08:49 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2010/10/04 17:57:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WEBREG
[2010/06/10 00:03:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2010/09/23 23:14:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Chamby\Application Data\Adobe
[2010/10/04 18:01:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Chamby\Application Data\HP
[2010/06/09 20:31:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Chamby\Application Data\Identities
[2010/06/09 21:23:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Chamby\Application Data\Intel
[2010/06/09 22:49:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Chamby\Application Data\Macromedia
[2010/09/20 02:22:41 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Chamby\Application Data\Microsoft
[2010/06/09 20:51:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Chamby\Application Data\Sun
[2010/10/04 19:56:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Chamby\Application Data\U3
[2010/09/28 13:12:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Chamby\Application Data\vlc
[2010/09/22 13:30:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Chamby\Application Data\Windows Search

< %APPDATA%\*.exe /s >
[2010/10/13 06:29:50 | 000,266,240 | RHS- | M] () -- C:\Documents and Settings\Chamby\Application Data\ygmdrm.exe
[2006/08/15 10:15:04 | 000,110,592 | ---- | M] () -- C:\Documents and Settings\Chamby\Application Data\U3\temp\cleanup.exe

< %SYSTEMDRIVE%\*.exe >


< MD5 for: EXPLORER.EXE >
[2008/04/14 02:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\explorer.exe
[2008/04/14 02:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004/08/10 13:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: USERINIT.EXE >
[2004/08/10 13:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
[2008/04/14 02:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008/04/14 02:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\system32\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004/08/10 13:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008/04/14 02:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008/04/14 02:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\system32\winlogon.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2008/04/14 02:11:51 | 001,267,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\comsvcs.dll
[2009/03/08 04:31:44 | 000,348,160 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dxtmsft.dll
[2009/03/08 04:31:38 | 000,216,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dxtrans.dll
[2010/09/10 07:58:05 | 000,184,320 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\iepeers.dll
[6 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2010/06/09 21:47:34 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2010/06/09 21:47:34 | 000,659,456 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2010/06/09 21:47:33 | 000,909,312 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< End of report >

Merci d'avance.

re

1

Double-clique sur OTL pour le lancer.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)

Sous l'onglet Personnalisation (dans le cadre blanc) en bas de la fenêtre, copie-colle le texte suivant (entre les deux espaces) :

:OTL
O20 - HKLM Winlogon: TaskMan - (C:\Documents and Settings\Chamby\Application Data\ygmdrm.exe) - C:\Documents and Settings\Chamby\Application Data\ygmdrm.exe ()
O33 - MountPoints2\{28e5a325-c970-11df-a563-0015c50b8aff}\Shell - "" = AutoRun
O33 - MountPoints2\{28e5a325-c970-11df-a563-0015c50b8aff}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{28e5a325-c970-11df-a563-0015c50b8aff}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found
O33 - MountPoints2\{8fd38154-cfe0-11df-a576-0015c50b8aff}\Shell\AutoRun\command - "" = seven.exe
O33 - MountPoints2\{8fd38154-cfe0-11df-a576-0015c50b8aff}\Shell\explore\command - "" = seven.exe
O33 - MountPoints2\{8fd38154-cfe0-11df-a576-0015c50b8aff}\Shell\open\command - "" = seven.exe
O33 - MountPoints2\{b590817e-d12f-11df-a57e-0015c50b8aff}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{b590817e-d12f-11df-a57e-0015c50b8aff}\Shell\AutoRun\command - "" = E:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{b590817e-d12f-11df-a57e-0015c50b8aff}\Shell\explore\command - "" = E:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{b590817e-d12f-11df-a57e-0015c50b8aff}\Shell\open\command - "" = E:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{c691d0b6-d52d-11df-a58d-0015c50b8aff}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{c691d0b6-d52d-11df-a58d-0015c50b8aff}\Shell\AutoRun\command - "" = F:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{c691d0b6-d52d-11df-a58d-0015c50b8aff}\Shell\explore\command - "" = F:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{c691d0b6-d52d-11df-a58d-0015c50b8aff}\Shell\open\command - "" = F:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{dcf8b2b2-c7d2-11df-a560-0015c50b8aff}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{dcf8b2b2-c7d2-11df-a560-0015c50b8aff}\Shell\AutoRun\command - "" = E:\pupica\makaroni.exe -- File not found
O33 - MountPoints2\{dcf8b2b2-c7d2-11df-a560-0015c50b8aff}\Shell\explore\command - "" = E:\pupica\\makaroni.exe -- File not found
O33 - MountPoints2\{dcf8b2b2-c7d2-11df-a560-0015c50b8aff}\Shell\open\command - "" = E:\pupica\\makaroni.exe -- File not found
O33 - MountPoints2\{dcf8b2b3-c7d2-11df-a560-0015c50b8aff}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{dcf8b2b3-c7d2-11df-a560-0015c50b8aff}\Shell\AutoRun\command - "" = E:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{dcf8b2b3-c7d2-11df-a560-0015c50b8aff}\Shell\explore\command - "" = E:\SOMBORSKI\\vashar.exe -- File not found
O33 - MountPoints2\{dcf8b2b3-c7d2-11df-a560-0015c50b8aff}\Shell\open\command - "" = E:\SOMBORSKI\\vashar.exe -- File not found

:files
C:\Documents and Settings\Chamby\Application Data\ygmdrm.exe


:commands
[emptytemp]
[reboot]

Puis clique sur le bouton Correction en haut de la fenêtre.

Laisse le programme travailler, redémarre une fois le fix terminé.

Poste le rapport qui s'affichera après redémarrage.



2


Désactive ton antivirus et tout autre type de protection.
Télécharge ComboFix de sUBs : Combofix
Sauvegarde-le sur ton bureau et pas ailleurs!

Double-clic sur ComboFix, Il va te poser une question, suis les invites puis attends que combofix ait terminé, il est possible que ton PC reboot, c’est normal, un rapport sera créé.Poste le rapport:C:\Combofix.txt
clique dessus pour l'ouvrir, puis édition "sélectionner tout", édition "copier"

viens sur le forum et édition "coller"

AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
* le nom de la partition peut changer

<@_@>