Se connecter / S'enregistrer
Votre question

Impossibilité d'ouvrir une session

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
25 Juin 2010 15:43:24

Bonjour

Suite à une vérification (de routine) de mon ordi avec Malwarebyte. Il a découvert et supprimé 2 malwares présents sur mon ordi :

Trojan Vundo et
Adware.Myweb Search

Tout c'est bien passé.
Mais...
Au redémarrage de l'ordinateur (OS : XP SP3) Il me met le message suivant

"Le sytème n'a pu ouvrir de session car le domaine PENTIUM n'est pas disponible"

si je fais OK
Windows me propose l'ouverture d'une session Noel et si je clique dessus
il veut un mot de passe que je n'ai pas car je suis le seul utilisateur de ce PC. En fonctionnement normal il s'ouvre directement sans rien demander

Que s'est il passé ? est ce du à la suppression du Trojan Vundo ?
Y a t il un moyen (sans formater bien sur !)de s'en sortir ?

Merci pour vos explications et pour votre aide

Autres pages sur : impossibilite ouvrir session

25 Juin 2010 22:10:02

Bonsoir
à mon avis, c'est pas vundo qui a fait ça... c'est une vieille infection, au pire tu te tapais des reboots en boucle quand un outil coinçait dessus, mais là c'est pas ça...

Ne formate pas :o 

Télécharge OTLPENet.
Prépare un CD vierge et lance OTLPENet, cela va te permettre de graver une mage iso.
Note : Le CD gravé, il faut maintenant redémarrer la machine sur le lecteur CDROM
Pour se faire suivre ce lien : Booter sur un CD.
Tuto OTLPE

Tu lances l'iso d'OTLPENet que tu as gravé.
  • une fois le bureau de reatogo chargé , tu lances OTLPE , l'icône jaune

  • Double-clique sur l'icone OTLPE
  • quand demandé "Do you wish to load the remote registry", select Yes
  • quand demandé "Do you wish to load remote user profile(s) for scanning", select Yes
  • vérifier que "Automatically Load All Remaining Users" est sélectionné et press OK




  • sous Custom Scan box
    1 copie_colle le contenu du cadre ci dessous:

    :Reg
    [HKLM\SOFTWARE_ON_C\Microsoft\Windows NT\CurrentVersion\Winlogon]
    "Shell"="explorer.exe"
    "Userinit"="C:\\WINDOWS\\system32\\Userinit.exe,"

    CREATERESTOREPOINT


  • copie colle ce texte dans un fichier texte|bloc note que tu enregistres sur clé usb que tu brancheras sous reatogo tu pourras alors facilement le copier\coller.
  • 2 Clic Run FIX pour démarrer la procédure.
  • Une fois terminé , le fichier se trouve là C:\OTL.txt
  • Copie_colle le contenu dans ta prochaine réponse.


    Et dis moi si le pc a bien redémarré normalement.
    28 Juin 2010 12:25:02

    Bonjour

    Merci pour ton aide. J'ai effectué tes recommandations mais Pb

    Quand j'ai clické sur "RunFix" le texte inscrit dans la case à disparu mais il ne se passe rien
    J'ai attendu 5 mn, le logiciel était figé quand j'ai voulu le fermer il m'ouvet une fenêtre
    me signalant qu'il ne répondait pas

    j'ai effectué un "Runscan" si cela peut te servir pour m'aider

    OTL logfile created on: 6/28/2010 12:55:59 PM - Run
    OTLPE by OldTimer - Version 3.1.39.0 Folder = X:\Programs\OTLPE
    Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

    2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 86.00% Memory free
    2.00 Gb Paging File | 2.00 Gb Available in Paging File | 97.00% Paging File free
    Paging file location(s): C:\pagefile.sys 3070 3072 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 186.31 Gb Total Space | 115.36 Gb Free Space | 61.92% Space Free | Partition Type: NTFS
    Drive D: | 186.30 Gb Total Space | 101.69 Gb Free Space | 54.59% Space Free | Partition Type: NTFS
    Drive E: | 101.83 Gb Total Space | 51.88 Gb Free Space | 50.95% Space Free | Partition Type: NTFS
    Drive F: | 9.93 Gb Total Space | 6.17 Gb Free Space | 62.19% Space Free | Partition Type: NTFS
    G: Drive not present or media not loaded
    H: Drive not present or media not loaded
    Drive I: | 3.76 Gb Total Space | 1.89 Gb Free Space | 50.42% Space Free | Partition Type: FAT32
    Drive X: | 433.24 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

    Computer Name: REATOGO
    Current User Name: SYSTEM
    Logged in as Administrator.

    Current Boot Mode: Normal
    Scan Mode: All users
    Company Name Whitelist: Off
    Skip Microsoft Files: Off
    File Age = 30 Days
    Output = Standard
    Using ControlSet: ControlSet004

    ========== Win32 Services (SafeList) ==========

    SRV - File not found [On_Demand] -- -- (x10nets)
    SRV - File not found [On_Demand] -- -- (Wcpi13sv)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [Auto] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
    SRV - [2010/04/22 17:09:09 | 000,867,080 | ---- | M] (Acresso Software Inc.) [On_Demand] -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
    SRV - [2009/12/14 22:00:09 | 000,604,488 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
    SRV - [2009/12/14 22:00:06 | 000,361,288 | ---- | M] (TuneUp Software) [On_Demand] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
    SRV - [2009/11/16 07:25:48 | 000,029,000 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
    SRV - [2009/09/06 00:06:20 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) [Auto] -- C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor8.0)
    SRV - [2009/07/17 11:58:18 | 000,145,504 | ---- | M] (B.H.A Corporation) [Auto] -- C:\WINDOWS\System32\bgsvcgen.exe -- (bgsvcgen)
    SRV - [2009/04/02 07:47:04 | 000,234,888 | ---- | M] () [Auto] -- C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe -- (ASKUpgrade)
    SRV - [2009/04/02 07:47:02 | 000,464,264 | ---- | M] () [Auto] -- C:\Program Files\AskBarDis\bar\bin\AskService.exe -- (ASKService)
    SRV - [2008/09/24 10:50:46 | 000,052,888 | ---- | M] () [Auto] -- C:\Program Files\VIA\RAID\vialogsv.exe -- (VRAID Log Service)
    SRV - [2008/02/19 09:18:06 | 000,425,988 | ---- | M] () [Auto] -- C:\Program Files\NCH Software\Eyeline\eyeline.exe -- (EyelineService)
    SRV - [2008/02/19 09:18:00 | 000,368,644 | ---- | M] () [Auto] -- C:\Program Files\NCH Software\BroadCam\broadCam.exe -- (BroadCamService)
    SRV - [2007/05/03 09:12:11 | 000,072,704 | ---- | M] (Adobe Systems) [On_Demand] -- C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service)
    SRV - [2006/11/03 13:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
    SRV - [2005/11/28 09:53:10 | 000,172,032 | ---- | M] (Acronis) [Auto] -- C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
    SRV - [2005/11/17 09:18:52 | 001,527,900 | ---- | M] (MAGIX®) [On_Demand] -- C:\MAGIX\Common\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)
    SRV - [2005/04/03 18:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
    SRV - [2005/02/09 05:52:00 | 000,483,397 | ---- | M] (Raxco Software, Inc.) [On_Demand] -- C:\Program Files\Raxco\PerfectDisk\PDEngine.exe -- (PDEngine)
    SRV - [2005/02/09 05:52:00 | 000,241,731 | ---- | M] (Raxco Software, Inc.) [Auto] -- C:\Program Files\Raxco\PerfectDisk\PDSched.exe -- (PDSched)
    SRV - [2004/10/28 13:30:02 | 000,163,840 | ---- | M] (Broadcom Corporation) [Auto] -- C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe -- (btwdins)
    SRV - [2003/10/12 18:20:34 | 000,143,360 | ---- | M] (Computer Associates International Inc.) [Auto] -- C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe -- (CA_LIC_CLNT)
    SRV - [2003/07/28 14:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
    SRV - [2003/06/19 17:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM)
    SRV - [2003/04/07 14:45:00 | 000,151,552 | ---- | M] (Computer Associates International Inc.) [On_Demand] -- C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe -- (CA_LIC_SRVR)
    SRV - [2002/09/20 15:29:00 | 000,053,248 | ---- | M] (Computer Associates) [Auto] -- C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe -- (LogWatch)
    SRV - [2002/09/20 09:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))


    ========== Driver Services (SafeList) ==========

    DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
    DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
    DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
    DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
    DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
    DRV - File not found [Kernel | System] -- -- (PCIDump)
    DRV - File not found [Kernel | System] -- -- (lbrtfdc)
    DRV - File not found [Kernel | On_Demand] -- -- (jfdcd)
    DRV - File not found [Kernel | System] -- -- (InCDRm)
    DRV - File not found [Kernel | System] -- -- (InCDPass)
    DRV - File not found [Kernel | System] -- -- (i2omgmt)
    DRV - File not found [Kernel | System] -- -- (Changer)
    DRV - File not found [Kernel | On_Demand] -- -- (catchme)
    DRV - [2010/05/06 17:39:23 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
    DRV - [2010/05/06 17:39:00 | 000,164,048 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
    DRV - [2010/05/06 17:34:27 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
    DRV - [2010/05/06 17:33:59 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
    DRV - [2010/05/06 17:33:47 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
    DRV - [2010/05/06 17:33:29 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
    DRV - [2009/11/08 23:21:18 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System] -- C:\WINDOWS\system32\drivers\scdemu.sys -- (SCDEmu)
    DRV - [2009/10/21 05:22:00 | 000,298,752 | ---- | M] () [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
    DRV - [2009/07/17 11:58:18 | 000,033,408 | ---- | M] (B.H.A Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
    DRV - [2009/02/25 18:58:57 | 003,565,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
    DRV - [2009/02/03 22:31:17 | 000,170,496 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinavt2.sys -- (ATIAVAIW)
    DRV - [2008/12/18 08:23:49 | 000,103,360 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD)
    DRV - [2008/07/21 08:11:58 | 000,024,392 | ---- | M] (Elaborate Bytes AG) [Kernel | System] -- C:\WINDOWS\system32\drivers\ElbyCDIO.sys -- (ElbyCDIO)
    DRV - [2008/05/13 06:44:00 | 000,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand] -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM)
    DRV - [2008/05/13 06:43:58 | 000,008,944 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
    DRV - [2008/05/13 06:43:56 | 000,055,024 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
    DRV - [2008/04/13 14:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
    DRV - [2008/04/13 14:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
    DRV - [2008/04/13 14:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Pilote USB audio (WDM)
    DRV - [2007/09/20 22:11:02 | 000,028,432 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt)
    DRV - [2007/09/20 22:10:46 | 000,036,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
    DRV - [2007/09/20 22:10:40 | 000,035,088 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
    DRV - [2007/09/20 22:10:20 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
    DRV - [2007/07/06 18:01:42 | 000,101,376 | ---- | M] (Protect Software GmbH) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\ACEDRV07.sys -- (ACEDRV07)
    DRV - [2007/05/04 08:51:06 | 000,249,152 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter)
    DRV - [2007/05/04 08:51:06 | 000,030,688 | ---- | M] (Acronis) [File_System | Auto] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
    DRV - [2007/05/04 08:51:00 | 000,096,320 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\snapman.sys -- (snapman)
    DRV - [2005/11/02 10:47:26 | 000,010,368 | R--- | M] (Padus, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
    DRV - [2005/08/15 06:08:26 | 000,127,488 | ---- | M] (Ahead Software AG) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\imagesrv.sys -- (imagesrv)
    DRV - [2005/08/15 06:08:26 | 000,005,888 | ---- | M] (Ahead Software AG) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\imagedrv.sys -- (imagedrv)
    DRV - [2005/04/07 11:18:34 | 000,003,840 | ---- | M] () [Kernel | System] -- C:\WINDOWS\System32\Drivers\BANTExt.sys -- (BANTExt)
    DRV - [2004/10/28 13:18:52 | 000,017,024 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (BtAudio)
    DRV - [2004/10/28 13:12:36 | 000,030,299 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
    DRV - [2004/10/28 13:12:00 | 000,054,488 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
    DRV - [2004/10/23 03:01:00 | 000,054,424 | ---- | M] (Raxco Software, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\defrag32b.sys -- (Defrag32b)
    DRV - [2004/10/23 03:01:00 | 000,054,424 | ---- | M] (Raxco Software, Inc.) [File_System | Auto] -- C:\WINDOWS\system32\drivers\defrag32.sys -- (Defrag32)
    DRV - [2004/08/03 05:10:34 | 000,062,976 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Cdrdrv.sys -- (cdrdrv)
    DRV - [2004/07/06 11:06:46 | 000,188,416 | ---- | M] (Pinnacle Systems GmbH) [File_System | System] -- C:\WINDOWS\system32\drivers\vobIW.sys -- (vobiw)
    DRV - [2004/06/21 10:03:22 | 000,078,976 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\MarvinBus.sys -- (MarvinBus)
    DRV - [2004/03/10 10:27:18 | 000,011,264 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\asapiW2k.sys -- (ASAPIW2k)
    DRV - [2004/02/26 12:50:38 | 000,611,820 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
    DRV - [2004/02/23 23:08:52 | 000,400,384 | ---- | M] (Sensaura) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS)
    DRV - [2003/11/27 22:42:08 | 000,071,040 | ---- | M] (VIA Technologies inc,.ltd) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\viasprid.sys -- (viasprid)
    DRV - [2003/10/21 13:23:00 | 000,013,824 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinmdxx.sys -- (MVDCODEC)
    DRV - [2003/10/21 13:20:55 | 000,104,960 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinrvxx.sys -- (atinrvxx)
    DRV - [2003/10/21 13:19:59 | 000,063,488 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinxsxx.sys -- (ATIXSAudio)
    DRV - [2003/10/21 13:19:12 | 000,051,712 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinraxx.sys -- (ativraxx)
    DRV - [2003/10/21 13:17:55 | 000,013,824 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinttxx.sys -- (TTDec)
    DRV - [2003/10/21 13:16:11 | 000,056,832 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atintuxx.sys -- (ATITUNEP)
    DRV - [2003/10/07 11:51:00 | 000,072,164 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
    DRV - [2003/10/07 11:51:00 | 000,022,356 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
    DRV - [2003/09/17 10:42:00 | 001,258,154 | R--- | M] (WIDCOMM, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
    DRV - [2003/09/17 10:37:00 | 000,041,315 | R--- | M] (WIDCOMM, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid)
    DRV - [2003/09/15 09:59:04 | 000,022,183 | ---- | M] () [Kernel | Auto] -- C:\WINDOWS\system32\drivers\btserial.sys -- (BTSERIAL)
    DRV - [2003/09/15 09:58:34 | 000,222,876 | ---- | M] (WIDCOMM, Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\btslbcsp.sys -- (BTSLBCSP)
    DRV - [2003/08/01 08:47:24 | 000,029,239 | ---- | M] (Pinnacle Systems) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\vobid.sys -- (VOBID)
    DRV - [2003/07/14 11:49:04 | 000,254,868 | ---- | M] (Jungo) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atirwvd.sys -- (ATI Remote Wonder II)
    DRV - [2003/06/03 11:48:12 | 000,147,328 | ---- | M] (3Com Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\EL2K_XP.sys -- (EL2000)
    DRV - [2003/06/02 23:00:00 | 000,073,984 | R--- | M] (Promise Technology, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\ulsata.sys -- (UlSata)
    DRV - [2002/09/19 22:53:34 | 000,235,100 | ---- | M] (Analog Devices Inc) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\MidiSyn.sys -- (MidiSyn)
    DRV - [2002/07/17 04:05:10 | 000,016,512 | ---- | M] (Adaptec) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (ASPI)
    DRV - [2002/03/19 03:29:16 | 000,014,165 | ---- | M] (Pinnacle Systems GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\Pclepci.sys -- (PCLEPCI)
    DRV - [2001/10/04 05:53:16 | 000,009,728 | ---- | M] (VOB Computersysteme GmbH) [Kernel | Unavailable] -- C:\WINDOWS\system32\drivers\vobcom.sys -- (vobcom)
    DRV - [2001/10/02 19:47:28 | 000,051,072 | ---- | M] (SCM Microsystems Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\EUSBMSD.SYS -- (EUSBMSD)
    DRV - [2001/08/17 17:46:40 | 000,006,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\enum1394.sys -- (ENUM1394)
    DRV - [2001/08/17 16:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
    DRV - [2001/05/25 16:03:02 | 000,270,667 | ---- | M] (C-Media Inc) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\cmaudio.sys -- (cmpci) C-Media PCI Audio Driver (WDM)
    DRV - [2001/05/24 04:14:34 | 000,013,229 | ---- | M] (SCM Microsystems Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\Stltrk2k.sys -- (Stltrk2k)
    DRV - [2001/05/23 04:42:52 | 000,012,084 | ---- | M] (Aiptek) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\UTBLFILT.sys -- (utblfilt)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
    IE - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    IE - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com


    IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



    IE - HKU\NetworkService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
    IE - HKU\Noel_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKU\Noel_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost


    FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/04/22 10:14:03 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2002/01/01 09:36:28 | 000,000,000 | ---D | M]

    [2002/01/01 09:36:30 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
    [2002/01/01 09:36:30 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
    [2010/04/12 12:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
    [2009/06/04 20:29:28 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
    [2009/06/04 20:29:28 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
    [2009/06/04 20:29:27 | 000,000,748 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\MediaDICO-fr.xml
    [2009/06/04 20:29:28 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
    [2009/06/04 20:29:28 | 000,000,652 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml

    O1 HOSTS File: ([2010/04/26 06:36:10 | 000,303,015 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\HOSTS
    O1 - Hosts: 127.0.0.1 activate.adobe.com
    O1 - Hosts: 127.0.0.1 practivate.adobe.com
    O1 - Hosts: 127.0.0.1 ereg.adobe.com
    O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
    O1 - Hosts: 127.0.0.1 wip3.adobe.com
    O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
    O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
    O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
    O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
    O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
    O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
    O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com# Copyright © 1993-1999 Microsoft Corp.
    O1 - Hosts: 127.0.0.1 localhost
    O1 - Hosts: 127.0.0.1 www.007guard.com
    O1 - Hosts: 127.0.0.1 007guard.com
    O1 - Hosts: 127.0.0.1 008i.com
    O1 - Hosts: 127.0.0.1 www.008k.com
    O1 - Hosts: 127.0.0.1 008k.com
    O1 - Hosts: 127.0.0.1 www.00hq.com
    O1 - Hosts: 127.0.0.1 00hq.com
    O1 - Hosts: 127.0.0.1 010402.com
    O1 - Hosts: 127.0.0.1 www.032439.com
    O1 - Hosts: 10443 more lines...
    O2 - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\Snagit 9\SnagitBHO.dll (TechSmith Corporation)
    O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
    O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
    O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
    O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\Snagit 9\SnagitIEAddin.dll (TechSmith Corporation)
    O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O3 - HKLM\..\Toolbar: (SYSTRAN Standard 4.0) - {F9443A35-6BFD-11D7-ACD0-00B0D094B576} - C:\Program Files\SYSTRAN\4_0\Standard\IEPlugIn.dll (SYSTRAN)
    O3 - HKU\Noel_ON_C\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKU\Noel_ON_C\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe (Acronis)
    O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software)
    O4 - HKLM..\Run: [BHR4.1] C:\Program Files\Zamaan's Software\Browser Hijack Retaliator 4.1\BHR4.1.exe (Zamaan's Software)
    O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
    O4 - HKLM..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE (CANON INC.)
    O4 - HKLM..\Run: [HydraVisionDesktopManager] C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe (ATI Technologies Inc.)
    O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
    O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
    O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
    O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
    O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
    O4 - HKLM..\Run: [PtiuPbmd] C:\WINDOWS\System32\ptipbm.dll (Promise Technology,Inc.)
    O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
    O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe (Analog Devices, Inc.)
    O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
    O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
    O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
    O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Micro Application\TrueImage\TrueImageMonitor.exe (Acronis)
    O4 - HKLM..\Run: [Tweak UI] C:\WINDOWS\System32\TWEAKUI.CPL (Microsoft Corporation)
    O4 - HKLM..\Run: [Vade Retro Outlook Express] C:\Program Files\Goto Software\Vade Retro\Vaderetro_oe.exe ()
    O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
    O4 - HKU\Noel_ON_C..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe ()
    O4 - HKU\Noel_ON_C..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe (ATI Technologies Inc.)
    O4 - HKU\Noel_ON_C..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe (Nero AG)
    O4 - HKU\Noel_ON_C..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
    O4 - HKU\Noel_ON_C..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
    O4 - HKU\Noel_ON_C..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
    O4 - HKU\Noel_ON_C..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
    O4 - Startup: Error locating startup folders.
    O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\Administrateur_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O7 - HKU\LocalService_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\NetworkService_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\Noel_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O7 - HKU\Noel_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\systemprofile_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Impression rapide - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Imprimer - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Prévisualiser - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm ()
    O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll (Google Inc.)
    O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
    O9 - Extra 'Tools' menuitem : Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
    O9 - Extra Button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} - C:\Program Files\ATI Multimedia\tv\EXPLBAR.DLL (ATI Technologies Inc.)
    O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm ()
    O9 - Extra 'Tools' menuitem : @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm ()
    O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/e/4/9/e494c802-d... (Office Genuine Advantage Validation Tool)
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/8/b/d/8bd77752-5... (Windows Genuine Advantage Validation Tool)
    O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} http://office.microsoft.com/officeupdate/content/opuc2.... (Office Update Installation Engine)
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls... (WUWebControl Class)
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Co... (MUWebControl Class)
    O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} http://a840.g.akamai.net/7/840/537/2005111401/housecall... (HouseCall Control)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} http://acs.pandasoftware.com/activescan/as5free/asinst.... (ActiveScan Installer Class)
    O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_11-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/fla... (Shockwave Flash Object)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.)
    O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
    O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\widimg {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\BTXPPanel.dll (Broadcom Corporation)
    O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
    O20 - AppInit_DLLs: (CLKERN.DLL) - C:\WINDOWS\System32\CLKERN.DLL (MicroBest Corporation)
    O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
    O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
    O20 - Winlogon\Notify\hgGxXnLF: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
    O20 - Winlogon\Notify\LBTServ: DllName - C:\Program Files\Fichiers communs\Logitech\Bluetooth\lbtserv.dll - C:\Program Files\Fichiers communs\Logitech\Bluetooth\lbtserv.dll File not found
    O24 - Desktop WallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O24 - Desktop BackupWallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
    O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
    O30 - LSA: Authentication Packages - (relog_ap) - C:\WINDOWS\System32\relog_ap.dll (Acronis)
    O30 - LSA: Authentication Packages - (CAL_MACHINE Se) - File not found
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2008/02/25 07:22:04 | 000,000,222 | ---- | M] () - C:\auto1.bat -- [ NTFS ]
    O32 - AutoRun File - [2005/06/15 15:40:32 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
    O32 - AutoRun File - [2005/05/19 12:57:30 | 000,000,000 | -H-- | M] () - F:\AUTOEXEC.BAT -- [ NTFS ]
    O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell - "" = AutoRun
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell\AutoRun\command - "" =
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell\AutoRun\command - "default" =
    O33 - MountPoints2\{5200bba6-ddc3-11d9-b8c4-806d6172696f}\Shell\PlayWithPowerDVD\Command - "" = C:\Program Files\CyberLink\PowerDVD\PowerDVD.exe -- [2003/09/05 10:25:00 | 000,409,600 | ---- | M] (CyberLink Corp.)
    O34 - HKLM BootExecute: (PDBoot.exe) - C:\WINDOWS\System32\PDBoot.exe (Raxco Software, Inc.)
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*

    ========== Files/Folders - Created Within 30 Days ==========

    [2011/11/05 19:45:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Application Data\Uniblue
    [2010/11/05 19:11:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Local Settings\Application Data\PCHealth
    [2010/06/28 11:38:44 | 000,000,000 | ---D | C] -- C:\_OTL
    [2010/06/24 18:37:42 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Noel\Recent
    [2010/06/22 12:46:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Mes documents\Fonds d'écran
    [2010/06/22 05:45:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Mes documents\Argentera Rando
    [2010/06/22 04:59:24 | 000,000,000 | ---D | C] -- C:\Program Files\GT2002
    [2010/06/22 04:48:04 | 000,000,000 | ---D | C] -- C:\Program Files\Cracklock
    [2010/06/18 07:17:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Local Settings\Application Data\Conduit
    [2010/06/18 07:17:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog
    [2010/06/18 07:17:29 | 000,000,000 | ---D | C] -- C:\Program Files\Setuprog
    [2010/06/14 02:51:46 | 000,000,000 | -HSD | C] -- C:\Config.Msi
    [2010/06/11 19:33:39 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
    [2008/12/22 05:02:44 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Noel\Application Data\pcouffin.sys
    [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    ========== Files - Modified Within 30 Days ==========

    [2011/11/05 19:05:22 | 000,000,430 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{362E2F5D-27EF-45CB-A2B3-8BA53CB7ACA7}.job
    [2010/06/28 05:48:40 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
    [2010/06/28 05:48:23 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2010/06/28 05:48:17 | 2146,750,464 | -HS- | M] () -- C:\hiberfil.sys
    [2010/06/28 03:30:44 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
    [2010/06/25 13:04:28 | 000,413,696 | ---- | M] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT
    [2010/06/25 13:04:28 | 000,413,696 | ---- | M] () -- C:\Documents and Settings\LocalService\NTUSER.DAT
    [2010/06/25 03:59:29 | 014,417,920 | ---- | M] () -- C:\Documents and Settings\Noel\ntuser.dat
    [2010/06/24 20:10:33 | 000,000,284 | -HS- | M] () -- C:\Documents and Settings\Noel\ntuser.ini
    [2010/06/24 20:00:03 | 000,000,506 | ---- | M] () -- C:\WINDOWS\tasks\Maintenance en 1 clic.job
    [2010/06/24 19:53:01 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
    [2010/06/24 18:38:38 | 000,003,472 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100625_003834.reg
    [2010/06/24 18:37:28 | 000,000,717 | ---- | M] () -- C:\Documents and Settings\Noel\Bureau\CCleaner.lnk
    [2010/06/24 18:30:24 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
    [2010/06/24 18:30:22 | 000,040,960 | ---- | M] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2010/06/24 17:53:01 | 000,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
    [2010/06/24 07:58:38 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
    [2010/06/23 03:25:05 | 000,967,166 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
    [2010/06/23 03:25:05 | 000,826,134 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
    [2010/06/23 03:25:05 | 000,271,352 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
    [2010/06/23 03:25:05 | 000,218,638 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
    [2010/06/23 03:25:05 | 000,004,982 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
    [2010/06/22 08:06:37 | 000,000,628 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 3.rt2
    [2010/06/22 08:06:37 | 000,000,383 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 2.rt2
    [2010/06/22 08:06:37 | 000,000,365 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 4.rt2
    [2010/06/22 06:54:35 | 000,000,275 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.eta
    [2010/06/22 05:47:03 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.BMP
    [2010/06/22 05:41:31 | 000,000,389 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\gtdat_0622114819.dat
    [2010/06/15 18:28:36 | 000,013,616 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100616_002833.reg
    [2010/06/15 12:13:59 | 000,142,616 | ---- | M] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
    [2010/06/15 12:12:49 | 000,425,408 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2010/06/14 09:40:41 | 000,000,332 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\CheckMyTorrentIP.torrent
    [2010/06/14 02:16:32 | 000,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
    [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    ========== Files Created - No Company Name ==========

    [2010/06/24 18:38:35 | 000,003,472 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100625_003834.reg
    [2010/06/22 08:06:37 | 000,000,628 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 3.rt2
    [2010/06/22 08:06:37 | 000,000,383 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 2.rt2
    [2010/06/22 08:06:37 | 000,000,365 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 4.rt2
    [2010/06/22 06:22:02 | 000,000,275 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.eta
    [2010/06/22 05:47:03 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.BMP
    [2010/06/22 05:40:28 | 000,000,389 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\gtdat_0622114819.dat
    [2010/06/18 05:24:30 | 014,417,920 | ---- | C] () -- C:\Documents and Settings\Noel\ntuser.dat
    [2010/06/15 18:28:34 | 000,013,616 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100616_002833.reg
    [2010/06/14 09:40:39 | 000,000,332 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\CheckMyTorrentIP.torrent
    [2009/10/24 02:20:34 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\PCIVP.SYS
    [2009/10/23 18:28:04 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
    [2009/10/21 05:22:00 | 000,298,752 | ---- | C] () -- C:\WINDOWS\System32\drivers\yk51x86.sys
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\sysprs7.dll
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth2.dll
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth1.dll
    [2009/08/01 03:13:14 | 000,000,205 | ---- | C] () -- C:\WINDOWS\System32\lsprst7.dll
    [2009/08/01 03:13:14 | 000,000,073 | ---- | C] () -- C:\WINDOWS\System32\ssprs.dll
    [2009/02/13 19:53:55 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\Days5.ini
    [2009/02/13 18:04:48 | 000,000,028 | ---- | C] () -- C:\Documents and Settings\Noel\Adobe Encore DVD_VUI.pref
    [2009/01/16 10:14:29 | 000,000,395 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
    [2008/12/22 05:03:06 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.log
    [2008/12/22 05:02:44 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\inst.exe
    [2008/12/22 05:02:44 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.cat
    [2008/12/22 05:02:44 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.inf
    [2008/12/19 12:00:13 | 000,001,028 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\WavCodec.wff
    [2008/07/17 18:25:43 | 000,034,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\mbamcatchme.sys
    [2008/07/15 18:41:59 | 000,000,823 | ---- | C] () -- C:\WINDOWS\tsc.ini
    [2008/07/15 18:41:58 | 000,071,749 | ---- | C] () -- C:\WINDOWS\hcextoutput.dll
    [2008/07/15 18:40:57 | 000,000,170 | ---- | C] () -- C:\WINDOWS\GetServer.ini
    [2008/07/15 02:46:48 | 001,776,795 | -HS- | C] () -- C:\WINDOWS\System32\gpekllfs.ini
    [2008/06/20 18:57:51 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
    [2008/04/26 02:52:21 | 000,471,552 | ---- | C] () -- C:\WINDOWS\System32\Smab.dll
    [2008/04/26 02:52:21 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
    [2008/02/19 09:20:43 | 000,001,028 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\AVIEncoder.wff
    [2008/02/04 13:23:10 | 000,693,792 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
    [2008/01/29 04:31:29 | 000,004,238 | ---- | C] () -- C:\Documents and Settings\Noel\UserCustomPreset_Adobe Premiere Pro 2.0.vpr
    [2007/11/09 10:44:52 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\$_hpcst$.hpc
    [2007/11/09 09:14:12 | 000,003,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\BANTExt.sys
    [2007/07/06 18:08:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\videodeLuxe.INI
    [2007/07/06 17:42:26 | 000,006,430 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
    [2007/05/03 16:01:35 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
    [2007/05/03 10:35:01 | 000,000,029 | ---- | C] () -- C:\WINDOWS\viewer.ini
    [2007/05/03 10:26:11 | 000,000,046 | ---- | C] () -- C:\WINDOWS\RmFile.ini
    [2007/05/03 10:25:56 | 000,000,029 | ---- | C] () -- C:\WINDOWS\System32\MprExe.Ini
    [2007/05/03 10:25:26 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\InkPanel.Dll
    [2007/05/03 10:25:26 | 000,000,224 | ---- | C] () -- C:\WINDOWS\System32\ScrSav.ini
    [2007/05/03 10:25:25 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\Wrting32.Dll
    [2007/05/03 10:21:21 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\Funckey.dll
    [2007/05/03 10:21:20 | 000,003,117 | ---- | C] () -- C:\WINDOWS\aiptbl.ini
    [2006/11/15 05:36:58 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\imhost8.dll
    [2006/06/28 09:43:07 | 000,000,056 | ---- | C] () -- C:\Documents and Settings\Noel\intlname.ols
    [2006/06/02 03:50:56 | 000,002,410 | ---- | C] () -- C:\WINDOWS\CDPlayer.ini
    [2006/06/01 12:22:29 | 000,180,295 | ---- | C] () -- C:\WINDOWS\System32\TurboDLL.dll
    [2006/06/01 11:50:56 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvLowrance.dll
    [2006/06/01 11:50:56 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvPyx.dll
    [2006/06/01 11:50:56 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvAvmap.dll
    [2006/06/01 11:50:56 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSuu.dll
    [2006/06/01 11:50:44 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\Polyclip.dll
    [2006/06/01 11:50:44 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\RCalcul.dll
    [2006/05/20 05:04:31 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Noel\AdobeWeb.log
    [2006/03/09 06:40:20 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\Rey_SubClasser.dll
    [2006/02/10 10:31:49 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
    [2005/12/12 03:48:10 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\ZPORT4AS.dll
    [2005/11/25 04:40:37 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
    [2005/11/10 11:00:09 | 000,000,065 | ---- | C] () -- C:\Documents and Settings\Noel\default.pls
    [2005/11/05 05:50:00 | 000,240,640 | ---- | C] () -- C:\WINDOWS\System32\NMOCOD.DLL
    [2005/10/22 04:22:07 | 000,000,365 | ---- | C] () -- C:\WINDOWS\PSADMIN.INI
    [2005/09/07 06:00:50 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\BiMResNT.dll
    [2005/09/07 06:00:50 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\BiCResNT.dll
    [2005/08/25 09:21:26 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
    [2005/08/25 09:21:26 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
    [2005/08/25 09:21:26 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
    [2005/07/30 00:22:58 | 000,045,634 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\bhrslog.txt
    [2005/07/26 05:23:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
    [2005/07/26 05:20:35 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS6d.DLL
    [2005/07/12 04:11:14 | 000,000,080 | ---- | C] () -- C:\WINDOWS\navigma.INI
    [2005/07/11 19:40:30 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\adistres.dll
    [2005/07/08 19:46:29 | 000,000,017 | ---- | C] () -- C:\WINDOWS\MovingPicture.ini
    [2005/07/08 17:30:33 | 000,335,955 | ---- | C] () -- C:\WINDOWS\System32\s12lo.dll
    [2005/07/08 17:30:33 | 000,155,715 | ---- | C] () -- C:\WINDOWS\System32\tn23.dll
    [2005/07/08 17:30:33 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\gbwx.dll
    [2005/07/08 17:30:33 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\vqs85.DLL
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc3.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc2.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc1.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc0.dll
    [2005/07/08 17:30:30 | 000,023,040 | ---- | C] () -- C:\WINDOWS\System32\auth.dll
    [2005/07/06 18:06:17 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\ptevideo.dll
    [2005/07/04 12:58:49 | 000,040,960 | ---- | C] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2005/06/26 17:42:10 | 000,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI
    [2005/06/25 06:32:54 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\fusioncache.dat
    [2005/06/25 05:38:40 | 000,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
    [2005/06/25 04:55:35 | 000,001,293 | ---- | C] () -- C:\WINDOWS\photoimpression.ini
    [2005/06/25 04:52:15 | 000,096,768 | ---- | C] () -- C:\WINDOWS\SlantAdj.dll
    [2005/06/25 04:52:15 | 000,001,571 | ---- | C] () -- C:\WINDOWS\Faxcpp1.ini
    [2005/06/25 04:52:15 | 000,000,422 | ---- | C] () -- C:\WINDOWS\Faxcpp.ini
    [2005/06/25 04:52:15 | 000,000,072 | ---- | C] () -- C:\WINDOWS\System32\epDPE.ini
    [2005/06/16 11:21:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ATIMMC.INI
    [2005/06/16 10:35:58 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
    [2005/06/16 10:35:37 | 000,000,295 | ---- | C] () -- C:\WINDOWS\cmmixer.ini
    [2005/06/16 10:32:31 | 000,000,135 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
    [2005/06/16 10:32:30 | 000,004,238 | ---- | C] () -- C:\WINDOWS\mixerdef.ini
    [2005/06/16 10:29:07 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
    [2005/06/16 09:06:55 | 000,262,144 | ---- | C] () -- C:\WINDOWS\system32\config\systemprofile\ntuser.dat
    [2005/06/16 09:06:55 | 000,008,192 | -H-- | C] () -- C:\WINDOWS\system32\config\systemprofile\ntuser.dat.LOG
    [2005/06/16 07:37:38 | 000,003,627 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
    [2005/06/16 07:37:37 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
    [2005/06/15 15:49:10 | 000,917,504 | -H-- | C] () -- C:\Documents and Settings\Noel\ntuser.dat.LOG
    [2005/06/15 15:49:10 | 000,000,284 | -HS- | C] () -- C:\Documents and Settings\Noel\ntuser.ini
    [2005/06/15 15:44:30 | 000,413,696 | ---- | C] () -- C:\Documents and Settings\LocalService\NTUSER.DAT
    [2005/06/15 15:44:30 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\LocalService\ntuser.dat.LOG
    [2005/06/15 15:44:30 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\LocalService\ntuser.ini
    [2005/06/15 15:44:24 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\NetworkService\ntuser.ini
    [2005/06/15 15:44:23 | 000,413,696 | ---- | C] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT
    [2005/06/15 15:44:23 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\NetworkService\ntuser.dat.LOG
    [2005/04/28 00:22:34 | 000,831,488 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
    [2005/04/28 00:22:34 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
    [2004/10/28 13:26:42 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
    [2004/06/06 06:53:42 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
    [2004/06/05 06:56:16 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
    [2004/03/18 02:44:29 | 001,663,068 | ---- | C] () -- C:\WINDOWS\System32\libmmd.dll
    [2003/12/09 09:09:26 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\Nmea.dll
    [2003/11/27 09:51:18 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\Ogc.dll
    [2003/11/27 09:50:26 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\ConversApi.dll
    [2003/11/10 08:07:38 | 000,066,560 | ---- | C] () -- C:\WINDOWS\System32\atiyuv12.dll
    [2003/11/10 08:07:38 | 000,013,601 | ---- | C] () -- C:\WINDOWS\System32\vctest.ini
    [2003/11/10 08:07:26 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
    [2003/10/03 05:18:40 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSilva.dll
    [2003/10/03 05:18:32 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSena.dll
    [2003/10/03 05:18:26 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvMlr.dll
    [2003/10/03 05:18:18 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvMagellan.dll
    [2003/10/03 05:18:12 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvGarmin.dll
    [2003/09/15 09:59:04 | 000,022,183 | ---- | C] () -- C:\WINDOWS\System32\drivers\btserial.sys
    [2003/04/01 04:58:02 | 000,005,260 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
    [2002/11/25 09:11:22 | 000,688,128 | ---- | C] () -- C:\WINDOWS\System32\BCGCB474.dll
    [2002/11/01 10:17:50 | 000,000,256 | ---- | C] () -- C:\WINDOWS\aucfg.ini
    [2002/10/15 18:54:04 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
    [2002/07/04 09:05:34 | 000,000,269 | ---- | C] () -- C:\WINDOWS\tmupdate.ini
    [2002/05/15 18:29:04 | 000,000,607 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest
    [2002/02/27 11:28:16 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\MASE32.DLL
    [2002/02/27 11:28:16 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\MASD32.DLL
    [2002/02/27 11:28:14 | 000,196,096 | ---- | C] () -- C:\WINDOWS\System32\MACD32.DLL
    [2002/02/27 11:28:14 | 000,136,192 | ---- | C] () -- C:\WINDOWS\System32\MAMC32.DLL
    [2002/02/27 11:28:14 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\MA32.DLL
    [2002/01/13 11:12:02 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\CP30FW.DLL
    [2001/12/19 03:07:50 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\BCGCBResFRA.dll
    [2001/12/14 07:34:46 | 000,164,864 | ---- | C] () -- C:\WINDOWS\patchw32.dll
    [2001/11/23 13:18:00 | 000,000,597 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest
    [2001/11/14 08:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
    [2000/11/29 04:50:40 | 000,471,040 | ---- | C] () -- C:\WINDOWS\System32\QTExporter.dll
    [1999/07/23 07:46:48 | 000,000,116 | ---- | C] () -- C:\WINDOWS\AuHCcup1.ini
    [1999/07/23 04:53:20 | 000,129,536 | ---- | C] () -- C:\WINDOWS\AuHCcup1.dll
    [1998/08/14 06:44:46 | 000,044,544 | ---- | C] () -- C:\WINDOWS\System32\GIF89.DLL

    ========== LOP Check ==========

    [2006/03/03 13:01:00 | 000,000,000 | ---D | M] -- C:\WINDOWS\system32\config\systemprofile\Application Data\Zeon
    [2005/07/13 03:08:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\ACD Systems
    [2009/12/26 06:51:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Azureus
    [2005/07/26 05:28:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\CD-LabelPrint
    [2006/04/05 18:00:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\EPSON
    [2007/08/10 12:41:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Green Parrots Software
    [2005/07/11 19:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\InterTrust
    [2009/10/16 09:53:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\KC Softwares
    [2006/10/13 20:03:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\LEAPS
    [2008/01/09 10:09:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\MAGIX
    [2006/09/30 03:49:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Micro Application
    [2008/02/19 09:18:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\NCH Swift Sound
    [2008/01/09 13:02:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Opera
    [2008/02/26 09:36:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Participatory Culture Foundation
    [2006/08/28 09:33:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Pegasys Inc
    [2006/04/05 09:00:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Quark
    [2009/01/16 10:26:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\ScanSoft
    [2008/05/26 06:33:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\TaoUSign
    [2007/06/05 03:38:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\TuneUp Software
    [2010/06/18 07:21:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Uniblue
    [2001/12/31 19:50:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Usenet.nl
    [2009/02/13 18:09:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\uTorrent
    [2005/07/07 05:22:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\VadeRetro
    [2009/02/09 14:02:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Vso
    [2005/07/08 10:50:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\X10 Commander
    [2005/12/24 12:49:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\XnView
    [2005/07/11 19:00:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\XnView Deluxe
    [2006/04/04 11:02:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Zeon
    [2010/06/24 20:00:03 | 000,000,506 | ---- | M] () -- C:\WINDOWS\Tasks\Maintenance en 1 clic.job
    [2010/06/24 07:58:38 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
    [2011/11/05 19:05:22 | 000,000,430 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{362E2F5D-27EF-45CB-A2B3-8BA53CB7ACA7}.job

    ========== Purity Check ==========



    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 24 bytes -> C:\WINDOWS:D 6BB024C4410F641
    < End of report >


    Je te souhaite bonne lecture
    et j'attends tes instructions
    J'oubliai l'ordi ne redémarre toujours pas
    Amicalement
    Contenus similaires
    28 Juin 2010 23:18:57

    re

    Démarre OTLPENet à partir du CD comme tu viens de le faire.
    Copie le fichier Fix.txt sur ta clé USB.
    http://www.sendspace.com/file/cyl25k



  • Insère ta clé USB avec le fichier Fix.txt dans ton PC
  • Démarre OTLPE
  • Fais un glisser/déposer du fichier Fix.txt dans la boîte de dialogue Custom scans and fixes.



  • Si cela ne marche pas, clique sur Run Fix et une boîte de dialogue s'ouvrira pour te demander de selectionner un endroit, déroule jusqu'au fichier Fix.txt qui est sur ta clé USB.
  • Puis clique sur Run Fix
  • Laisse l'outil travailler.
  • Poste un nouveau rapport OTL ( Ne coche pas les cases LOP et Purity cette fois )
    30 Juin 2010 17:18:42

    Bonjour

    Encore merci pour ton aide.
    Je suis en déplacement et je rentre jeudi soir.
    Je ferai la manip en rentant

    Merci et @+
    30 Juin 2010 21:30:47

    re
    pas de soucis ;) 
    1 Juillet 2010 14:40:23

    Bonjour

    Je viens de rentrer
    J'ai appliqué tes consignes

    L'ordi ne peut toujours pas ouvrir de session car le domaine pentium n'est pas disponible

    Ci-après le scan OTL

    OTL logfile created on: 7/1/2010 8:20:35 PM - Run
    OTLPE by OldTimer - Version 3.1.39.0 Folder = X:\Programs\OTLPE
    Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

    2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 83.00% Memory free
    2.00 Gb Paging File | 2.00 Gb Available in Paging File | 95.00% Paging File free
    Paging file location(s): C:\pagefile.sys 3070 3072 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 186.31 Gb Total Space | 115.35 Gb Free Space | 61.91% Space Free | Partition Type: NTFS
    Drive D: | 186.30 Gb Total Space | 101.69 Gb Free Space | 54.59% Space Free | Partition Type: NTFS
    Drive E: | 101.83 Gb Total Space | 51.88 Gb Free Space | 50.95% Space Free | Partition Type: NTFS
    Drive F: | 9.93 Gb Total Space | 6.17 Gb Free Space | 62.19% Space Free | Partition Type: NTFS
    G: Drive not present or media not loaded
    H: Drive not present or media not loaded
    I: Drive not present or media not loaded
    Drive L: | 3.76 Gb Total Space | 1.89 Gb Free Space | 50.38% Space Free | Partition Type: FAT32
    Drive X: | 433.24 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

    Computer Name: REATOGO
    Current User Name: SYSTEM
    Logged in as Administrator.

    Current Boot Mode: Normal
    Scan Mode: All users
    Company Name Whitelist: Off
    Skip Microsoft Files: Off
    File Age = 30 Days
    Output = Standard
    Using ControlSet: ControlSet004

    ========== Win32 Services (SafeList) ==========

    SRV - File not found [On_Demand] -- -- (x10nets)
    SRV - File not found [On_Demand] -- -- (Wcpi13sv)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [Auto] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
    SRV - [2010/04/22 17:09:09 | 000,867,080 | ---- | M] (Acresso Software Inc.) [On_Demand] -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
    SRV - [2009/12/14 22:00:09 | 000,604,488 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
    SRV - [2009/12/14 22:00:06 | 000,361,288 | ---- | M] (TuneUp Software) [On_Demand] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
    SRV - [2009/11/16 07:25:48 | 000,029,000 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
    SRV - [2009/09/06 00:06:20 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) [Auto] -- C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor8.0)
    SRV - [2009/07/17 11:58:18 | 000,145,504 | ---- | M] (B.H.A Corporation) [Auto] -- C:\WINDOWS\System32\bgsvcgen.exe -- (bgsvcgen)
    SRV - [2008/09/24 10:50:46 | 000,052,888 | ---- | M] () [Auto] -- C:\Program Files\VIA\RAID\vialogsv.exe -- (VRAID Log Service)
    SRV - [2008/02/19 09:18:06 | 000,425,988 | ---- | M] () [Auto] -- C:\Program Files\NCH Software\Eyeline\eyeline.exe -- (EyelineService)
    SRV - [2008/02/19 09:18:00 | 000,368,644 | ---- | M] () [Auto] -- C:\Program Files\NCH Software\BroadCam\broadCam.exe -- (BroadCamService)
    SRV - [2007/05/03 09:12:11 | 000,072,704 | ---- | M] (Adobe Systems) [On_Demand] -- C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service)
    SRV - [2006/11/03 13:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
    SRV - [2005/11/28 09:53:10 | 000,172,032 | ---- | M] (Acronis) [Auto] -- C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
    SRV - [2005/11/17 09:18:52 | 001,527,900 | ---- | M] (MAGIX®) [On_Demand] -- C:\MAGIX\Common\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)
    SRV - [2005/04/03 18:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
    SRV - [2005/02/09 05:52:00 | 000,483,397 | ---- | M] (Raxco Software, Inc.) [On_Demand] -- C:\Program Files\Raxco\PerfectDisk\PDEngine.exe -- (PDEngine)
    SRV - [2005/02/09 05:52:00 | 000,241,731 | ---- | M] (Raxco Software, Inc.) [Auto] -- C:\Program Files\Raxco\PerfectDisk\PDSched.exe -- (PDSched)
    SRV - [2004/10/28 13:30:02 | 000,163,840 | ---- | M] (Broadcom Corporation) [Auto] -- C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe -- (btwdins)
    SRV - [2003/10/12 18:20:34 | 000,143,360 | ---- | M] (Computer Associates International Inc.) [Auto] -- C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe -- (CA_LIC_CLNT)
    SRV - [2003/07/28 14:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
    SRV - [2003/06/19 17:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM)
    SRV - [2003/04/07 14:45:00 | 000,151,552 | ---- | M] (Computer Associates International Inc.) [On_Demand] -- C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe -- (CA_LIC_SRVR)
    SRV - [2002/09/20 15:29:00 | 000,053,248 | ---- | M] (Computer Associates) [Auto] -- C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe -- (LogWatch)
    SRV - [2002/09/20 09:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))


    ========== Driver Services (SafeList) ==========

    DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
    DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
    DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
    DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
    DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
    DRV - File not found [Kernel | System] -- -- (PCIDump)
    DRV - File not found [Kernel | System] -- -- (lbrtfdc)
    DRV - File not found [Kernel | On_Demand] -- -- (jfdcd)
    DRV - File not found [Kernel | System] -- -- (InCDRm)
    DRV - File not found [Kernel | System] -- -- (InCDPass)
    DRV - File not found [Kernel | System] -- -- (i2omgmt)
    DRV - File not found [Kernel | System] -- -- (Changer)
    DRV - File not found [Kernel | On_Demand] -- -- (catchme)
    DRV - [2010/05/06 17:39:23 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
    DRV - [2010/05/06 17:39:00 | 000,164,048 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
    DRV - [2010/05/06 17:34:27 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
    DRV - [2010/05/06 17:33:59 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
    DRV - [2010/05/06 17:33:47 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
    DRV - [2010/05/06 17:33:29 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
    DRV - [2009/11/08 23:21:18 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System] -- C:\WINDOWS\system32\drivers\scdemu.sys -- (SCDEmu)
    DRV - [2009/10/21 05:22:00 | 000,298,752 | ---- | M] () [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
    DRV - [2009/07/17 11:58:18 | 000,033,408 | ---- | M] (B.H.A Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
    DRV - [2009/02/25 18:58:57 | 003,565,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
    DRV - [2009/02/03 22:31:17 | 000,170,496 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinavt2.sys -- (ATIAVAIW)
    DRV - [2008/12/18 08:23:49 | 000,103,360 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD)
    DRV - [2008/07/21 08:11:58 | 000,024,392 | ---- | M] (Elaborate Bytes AG) [Kernel | System] -- C:\WINDOWS\system32\drivers\ElbyCDIO.sys -- (ElbyCDIO)
    DRV - [2008/05/13 06:44:00 | 000,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand] -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM)
    DRV - [2008/05/13 06:43:58 | 000,008,944 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
    DRV - [2008/05/13 06:43:56 | 000,055,024 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
    DRV - [2008/04/13 14:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
    DRV - [2008/04/13 14:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
    DRV - [2008/04/13 14:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Pilote USB audio (WDM)
    DRV - [2007/09/20 22:11:02 | 000,028,432 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt)
    DRV - [2007/09/20 22:10:46 | 000,036,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
    DRV - [2007/09/20 22:10:40 | 000,035,088 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
    DRV - [2007/09/20 22:10:20 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
    DRV - [2007/07/06 18:01:42 | 000,101,376 | ---- | M] (Protect Software GmbH) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\ACEDRV07.sys -- (ACEDRV07)
    DRV - [2007/05/04 08:51:06 | 000,249,152 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter)
    DRV - [2007/05/04 08:51:06 | 000,030,688 | ---- | M] (Acronis) [File_System | Auto] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
    DRV - [2007/05/04 08:51:00 | 000,096,320 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\snapman.sys -- (snapman)
    DRV - [2005/11/02 10:47:26 | 000,010,368 | R--- | M] (Padus, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
    DRV - [2005/08/15 06:08:26 | 000,127,488 | ---- | M] (Ahead Software AG) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\imagesrv.sys -- (imagesrv)
    DRV - [2005/08/15 06:08:26 | 000,005,888 | ---- | M] (Ahead Software AG) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\imagedrv.sys -- (imagedrv)
    DRV - [2005/04/07 11:18:34 | 000,003,840 | ---- | M] () [Kernel | System] -- C:\WINDOWS\System32\Drivers\BANTExt.sys -- (BANTExt)
    DRV - [2004/10/28 13:18:52 | 000,017,024 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (BtAudio)
    DRV - [2004/10/28 13:12:36 | 000,030,299 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
    DRV - [2004/10/28 13:12:00 | 000,054,488 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
    DRV - [2004/10/23 03:01:00 | 000,054,424 | ---- | M] (Raxco Software, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\defrag32b.sys -- (Defrag32b)
    DRV - [2004/10/23 03:01:00 | 000,054,424 | ---- | M] (Raxco Software, Inc.) [File_System | Auto] -- C:\WINDOWS\system32\drivers\defrag32.sys -- (Defrag32)
    DRV - [2004/08/03 05:10:34 | 000,062,976 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Cdrdrv.sys -- (cdrdrv)
    DRV - [2004/07/06 11:06:46 | 000,188,416 | ---- | M] (Pinnacle Systems GmbH) [File_System | System] -- C:\WINDOWS\system32\drivers\vobIW.sys -- (vobiw)
    DRV - [2004/06/21 10:03:22 | 000,078,976 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\MarvinBus.sys -- (MarvinBus)
    DRV - [2004/03/10 10:27:18 | 000,011,264 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\asapiW2k.sys -- (ASAPIW2k)
    DRV - [2004/02/26 12:50:38 | 000,611,820 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
    DRV - [2004/02/23 23:08:52 | 000,400,384 | ---- | M] (Sensaura) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS)
    DRV - [2003/11/27 22:42:08 | 000,071,040 | ---- | M] (VIA Technologies inc,.ltd) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\viasprid.sys -- (viasprid)
    DRV - [2003/10/21 13:23:00 | 000,013,824 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinmdxx.sys -- (MVDCODEC)
    DRV - [2003/10/21 13:20:55 | 000,104,960 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinrvxx.sys -- (atinrvxx)
    DRV - [2003/10/21 13:19:59 | 000,063,488 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinxsxx.sys -- (ATIXSAudio)
    DRV - [2003/10/21 13:19:12 | 000,051,712 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinraxx.sys -- (ativraxx)
    DRV - [2003/10/21 13:17:55 | 000,013,824 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinttxx.sys -- (TTDec)
    DRV - [2003/10/21 13:16:11 | 000,056,832 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atintuxx.sys -- (ATITUNEP)
    DRV - [2003/10/07 11:51:00 | 000,072,164 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
    DRV - [2003/10/07 11:51:00 | 000,022,356 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
    DRV - [2003/09/17 10:42:00 | 001,258,154 | R--- | M] (WIDCOMM, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
    DRV - [2003/09/17 10:37:00 | 000,041,315 | R--- | M] (WIDCOMM, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid)
    DRV - [2003/09/15 09:59:04 | 000,022,183 | ---- | M] () [Kernel | Auto] -- C:\WINDOWS\system32\drivers\btserial.sys -- (BTSERIAL)
    DRV - [2003/09/15 09:58:34 | 000,222,876 | ---- | M] (WIDCOMM, Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\btslbcsp.sys -- (BTSLBCSP)
    DRV - [2003/08/01 08:47:24 | 000,029,239 | ---- | M] (Pinnacle Systems) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\vobid.sys -- (VOBID)
    DRV - [2003/07/14 11:49:04 | 000,254,868 | ---- | M] (Jungo) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atirwvd.sys -- (ATI Remote Wonder II)
    DRV - [2003/06/03 11:48:12 | 000,147,328 | ---- | M] (3Com Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\EL2K_XP.sys -- (EL2000)
    DRV - [2003/06/02 23:00:00 | 000,073,984 | R--- | M] (Promise Technology, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\ulsata.sys -- (UlSata)
    DRV - [2002/09/19 22:53:34 | 000,235,100 | ---- | M] (Analog Devices Inc) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\MidiSyn.sys -- (MidiSyn)
    DRV - [2002/07/17 04:05:10 | 000,016,512 | ---- | M] (Adaptec) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (ASPI)
    DRV - [2002/03/19 03:29:16 | 000,014,165 | ---- | M] (Pinnacle Systems GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\Pclepci.sys -- (PCLEPCI)
    DRV - [2001/10/04 05:53:16 | 000,009,728 | ---- | M] (VOB Computersysteme GmbH) [Kernel | Unavailable] -- C:\WINDOWS\system32\drivers\vobcom.sys -- (vobcom)
    DRV - [2001/10/02 19:47:28 | 000,051,072 | ---- | M] (SCM Microsystems Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\EUSBMSD.SYS -- (EUSBMSD)
    DRV - [2001/08/17 17:46:40 | 000,006,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\enum1394.sys -- (ENUM1394)
    DRV - [2001/08/17 16:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
    DRV - [2001/05/25 16:03:02 | 000,270,667 | ---- | M] (C-Media Inc) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\cmaudio.sys -- (cmpci) C-Media PCI Audio Driver (WDM)
    DRV - [2001/05/24 04:14:34 | 000,013,229 | ---- | M] (SCM Microsystems Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\Stltrk2k.sys -- (Stltrk2k)
    DRV - [2001/05/23 04:42:52 | 000,012,084 | ---- | M] (Aiptek) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\UTBLFILT.sys -- (utblfilt)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
    IE - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    IE - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com


    IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



    IE - HKU\NetworkService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
    IE - HKU\Noel_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKU\Noel_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost


    FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/04/22 10:14:03 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2002/01/01 09:36:28 | 000,000,000 | ---D | M]

    [2002/01/01 09:36:30 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
    [2002/01/01 09:36:30 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
    [2010/04/12 12:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
    [2009/06/04 20:29:28 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
    [2009/06/04 20:29:28 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
    [2009/06/04 20:29:27 | 000,000,748 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\MediaDICO-fr.xml
    [2009/06/04 20:29:28 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
    [2009/06/04 20:29:28 | 000,000,652 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml

    O1 HOSTS File: ([2010/04/26 06:36:10 | 000,303,015 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\HOSTS
    O1 - Hosts: 127.0.0.1 activate.adobe.com
    O1 - Hosts: 127.0.0.1 practivate.adobe.com
    O1 - Hosts: 127.0.0.1 ereg.adobe.com
    O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
    O1 - Hosts: 127.0.0.1 wip3.adobe.com
    O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
    O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
    O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
    O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
    O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
    O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
    O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com# Copyright © 1993-1999 Microsoft Corp.
    O1 - Hosts: 127.0.0.1 localhost
    O1 - Hosts: 127.0.0.1 www.007guard.com
    O1 - Hosts: 127.0.0.1 007guard.com
    O1 - Hosts: 127.0.0.1 008i.com
    O1 - Hosts: 127.0.0.1 www.008k.com
    O1 - Hosts: 127.0.0.1 008k.com
    O1 - Hosts: 127.0.0.1 www.00hq.com
    O1 - Hosts: 127.0.0.1 00hq.com
    O1 - Hosts: 127.0.0.1 010402.com
    O1 - Hosts: 127.0.0.1 www.032439.com
    O1 - Hosts: 10443 more lines...
    O2 - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\Snagit 9\SnagitBHO.dll (TechSmith Corporation)
    O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
    O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
    O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\Snagit 9\SnagitIEAddin.dll (TechSmith Corporation)
    O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O3 - HKLM\..\Toolbar: (SYSTRAN Standard 4.0) - {F9443A35-6BFD-11D7-ACD0-00B0D094B576} - C:\Program Files\SYSTRAN\4_0\Standard\IEPlugIn.dll (SYSTRAN)
    O3 - HKU\Noel_ON_C\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKU\Noel_ON_C\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe (Acronis)
    O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software)
    O4 - HKLM..\Run: [BHR4.1] C:\Program Files\Zamaan's Software\Browser Hijack Retaliator 4.1\BHR4.1.exe (Zamaan's Software)
    O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
    O4 - HKLM..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE (CANON INC.)
    O4 - HKLM..\Run: [HydraVisionDesktopManager] C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe (ATI Technologies Inc.)
    O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
    O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
    O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
    O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
    O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
    O4 - HKLM..\Run: [PtiuPbmd] C:\WINDOWS\System32\ptipbm.dll (Promise Technology,Inc.)
    O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
    O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe (Analog Devices, Inc.)
    O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
    O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
    O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
    O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Micro Application\TrueImage\TrueImageMonitor.exe (Acronis)
    O4 - HKLM..\Run: [Tweak UI] C:\WINDOWS\System32\TWEAKUI.CPL (Microsoft Corporation)
    O4 - HKLM..\Run: [Vade Retro Outlook Express] C:\Program Files\Goto Software\Vade Retro\Vaderetro_oe.exe ()
    O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
    O4 - HKU\Noel_ON_C..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe ()
    O4 - HKU\Noel_ON_C..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe (ATI Technologies Inc.)
    O4 - HKU\Noel_ON_C..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe (Nero AG)
    O4 - HKU\Noel_ON_C..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
    O4 - HKU\Noel_ON_C..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
    O4 - HKU\Noel_ON_C..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
    O4 - HKU\Noel_ON_C..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
    O4 - Startup: Error locating startup folders.
    O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\Administrateur_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O7 - HKU\LocalService_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\NetworkService_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\Noel_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O7 - HKU\Noel_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\systemprofile_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Impression rapide - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Imprimer - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Prévisualiser - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm ()
    O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll (Google Inc.)
    O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
    O9 - Extra 'Tools' menuitem : Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
    O9 - Extra Button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} - C:\Program Files\ATI Multimedia\tv\EXPLBAR.DLL (ATI Technologies Inc.)
    O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm ()
    O9 - Extra 'Tools' menuitem : @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm ()
    O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/e/4/9/e494c802-d... (Office Genuine Advantage Validation Tool)
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/8/b/d/8bd77752-5... (Windows Genuine Advantage Validation Tool)
    O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} http://office.microsoft.com/officeupdate/content/opuc2.... (Office Update Installation Engine)
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls... (WUWebControl Class)
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Co... (MUWebControl Class)
    O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} http://a840.g.akamai.net/7/840/537/2005111401/housecall... (HouseCall Control)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} http://acs.pandasoftware.com/activescan/as5free/asinst.... (ActiveScan Installer Class)
    O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_11-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/fla... (Shockwave Flash Object)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.)
    O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
    O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\widimg {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\BTXPPanel.dll (Broadcom Corporation)
    O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
    O20 - AppInit_DLLs: (CLKERN.DLL) - C:\WINDOWS\System32\CLKERN.DLL (MicroBest Corporation)
    O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
    O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
    O20 - Winlogon\Notify\LBTServ: DllName - C:\Program Files\Fichiers communs\Logitech\Bluetooth\lbtserv.dll - C:\Program Files\Fichiers communs\Logitech\Bluetooth\lbtserv.dll File not found
    O24 - Desktop WallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O24 - Desktop BackupWallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
    O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
    O30 - LSA: Authentication Packages - (relog_ap) - C:\WINDOWS\System32\relog_ap.dll (Acronis)
    O30 - LSA: Authentication Packages - (CAL_MACHINE Se) - File not found
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2008/02/25 07:22:04 | 000,000,222 | ---- | M] () - C:\auto1.bat -- [ NTFS ]
    O32 - AutoRun File - [2005/06/15 15:40:32 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
    O32 - AutoRun File - [2005/05/19 12:57:30 | 000,000,000 | -H-- | M] () - F:\AUTOEXEC.BAT -- [ NTFS ]
    O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell - "" = AutoRun
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell\AutoRun\command - "" =
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell\AutoRun\command - "default" =
    O33 - MountPoints2\{5200bba6-ddc3-11d9-b8c4-806d6172696f}\Shell\PlayWithPowerDVD\Command - "" = C:\Program Files\CyberLink\PowerDVD\PowerDVD.exe -- [2003/09/05 10:25:00 | 000,409,600 | ---- | M] (CyberLink Corp.)
    O34 - HKLM BootExecute: (PDBoot.exe) - C:\WINDOWS\System32\PDBoot.exe (Raxco Software, Inc.)
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*

    ========== Files/Folders - Created Within 30 Days ==========

    [2011/11/05 19:45:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Application Data\Uniblue
    [2010/11/05 19:11:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Local Settings\Application Data\PCHealth
    [2010/06/28 11:38:44 | 000,000,000 | ---D | C] -- C:\_OTL
    [2010/06/24 18:37:42 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Noel\Recent
    [2010/06/22 12:46:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Mes documents\Fonds d'écran
    [2010/06/22 05:45:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Mes documents\Argentera Rando
    [2010/06/22 04:59:24 | 000,000,000 | ---D | C] -- C:\Program Files\GT2002
    [2010/06/22 04:48:04 | 000,000,000 | ---D | C] -- C:\Program Files\Cracklock
    [2010/06/18 07:17:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Local Settings\Application Data\Conduit
    [2010/06/14 02:51:46 | 000,000,000 | -HSD | C] -- C:\Config.Msi
    [2010/06/11 19:33:39 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
    [2008/12/22 05:02:44 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Noel\Application Data\pcouffin.sys
    [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    ========== Files - Modified Within 30 Days ==========

    [2011/11/05 19:05:22 | 000,000,430 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{362E2F5D-27EF-45CB-A2B3-8BA53CB7ACA7}.job
    [2010/06/29 07:41:18 | 000,413,696 | ---- | M] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT
    [2010/06/29 07:41:18 | 000,413,696 | ---- | M] () -- C:\Documents and Settings\LocalService\NTUSER.DAT
    [2010/06/29 07:41:13 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2010/06/29 07:40:35 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
    [2010/06/29 07:40:17 | 2146,750,464 | -HS- | M] () -- C:\hiberfil.sys
    [2010/06/28 13:30:26 | 014,417,920 | ---- | M] () -- C:\Documents and Settings\Noel\ntuser.dat
    [2010/06/28 03:30:44 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
    [2010/06/24 20:10:33 | 000,000,284 | -HS- | M] () -- C:\Documents and Settings\Noel\ntuser.ini
    [2010/06/24 20:00:03 | 000,000,506 | ---- | M] () -- C:\WINDOWS\tasks\Maintenance en 1 clic.job
    [2010/06/24 19:53:01 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
    [2010/06/24 18:38:38 | 000,003,472 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100625_003834.reg
    [2010/06/24 18:37:28 | 000,000,717 | ---- | M] () -- C:\Documents and Settings\Noel\Bureau\CCleaner.lnk
    [2010/06/24 18:30:24 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
    [2010/06/24 18:30:22 | 000,040,960 | ---- | M] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2010/06/24 17:53:01 | 000,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
    [2010/06/24 07:58:38 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
    [2010/06/23 03:25:05 | 000,967,166 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
    [2010/06/23 03:25:05 | 000,826,134 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
    [2010/06/23 03:25:05 | 000,271,352 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
    [2010/06/23 03:25:05 | 000,218,638 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
    [2010/06/23 03:25:05 | 000,004,982 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
    [2010/06/22 08:06:37 | 000,000,628 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 3.rt2
    [2010/06/22 08:06:37 | 000,000,383 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 2.rt2
    [2010/06/22 08:06:37 | 000,000,365 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 4.rt2
    [2010/06/22 06:54:35 | 000,000,275 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.eta
    [2010/06/22 05:47:03 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.BMP
    [2010/06/15 18:28:36 | 000,013,616 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100616_002833.reg
    [2010/06/15 12:13:59 | 000,142,616 | ---- | M] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
    [2010/06/15 12:12:49 | 000,425,408 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2010/06/14 09:40:41 | 000,000,332 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\CheckMyTorrentIP.torrent
    [2010/06/14 02:16:32 | 000,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
    [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    ========== Files Created - No Company Name ==========

    [2010/06/28 07:57:11 | 2146,750,464 | -HS- | C] () -- C:\hiberfil.sys
    [2010/06/24 18:38:35 | 000,003,472 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100625_003834.reg
    [2010/06/22 08:06:37 | 000,000,628 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 3.rt2
    [2010/06/22 08:06:37 | 000,000,383 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 2.rt2
    [2010/06/22 08:06:37 | 000,000,365 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 4.rt2
    [2010/06/22 06:22:02 | 000,000,275 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.eta
    [2010/06/22 05:47:03 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.BMP
    [2010/06/18 05:24:30 | 014,417,920 | ---- | C] () -- C:\Documents and Settings\Noel\ntuser.dat
    [2010/06/15 18:28:34 | 000,013,616 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100616_002833.reg
    [2010/06/14 09:40:39 | 000,000,332 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\CheckMyTorrentIP.torrent
    [2009/10/24 02:20:34 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\PCIVP.SYS
    [2009/10/23 18:28:04 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
    [2009/10/21 05:22:00 | 000,298,752 | ---- | C] () -- C:\WINDOWS\System32\drivers\yk51x86.sys
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\sysprs7.dll
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth2.dll
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth1.dll
    [2009/08/01 03:13:14 | 000,000,205 | ---- | C] () -- C:\WINDOWS\System32\lsprst7.dll
    [2009/08/01 03:13:14 | 000,000,073 | ---- | C] () -- C:\WINDOWS\System32\ssprs.dll
    [2009/02/13 19:53:55 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\Days5.ini
    [2009/02/13 18:04:48 | 000,000,028 | ---- | C] () -- C:\Documents and Settings\Noel\Adobe Encore DVD_VUI.pref
    [2009/01/16 10:14:29 | 000,000,395 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
    [2008/12/22 05:03:06 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.log
    [2008/12/22 05:02:44 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\inst.exe
    [2008/12/22 05:02:44 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.cat
    [2008/12/22 05:02:44 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.inf
    [2008/12/19 12:00:13 | 000,001,028 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\WavCodec.wff
    [2008/07/17 18:25:43 | 000,034,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\mbamcatchme.sys
    [2008/07/15 18:41:59 | 000,000,823 | ---- | C] () -- C:\WINDOWS\tsc.ini
    [2008/07/15 18:41:58 | 000,071,749 | ---- | C] () -- C:\WINDOWS\hcextoutput.dll
    [2008/07/15 18:40:57 | 000,000,170 | ---- | C] () -- C:\WINDOWS\GetServer.ini
    [2008/07/15 02:46:48 | 001,776,795 | -HS- | C] () -- C:\WINDOWS\System32\gpekllfs.ini
    [2008/06/20 18:57:51 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
    [2008/04/26 02:52:21 | 000,471,552 | ---- | C] () -- C:\WINDOWS\System32\Smab.dll
    [2008/04/26 02:52:21 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
    [2008/02/19 09:20:43 | 000,001,028 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\AVIEncoder.wff
    [2008/02/04 13:23:10 | 000,693,792 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
    [2008/01/29 04:31:29 | 000,004,238 | ---- | C] () -- C:\Documents and Settings\Noel\UserCustomPreset_Adobe Premiere Pro 2.0.vpr
    [2007/11/09 10:44:52 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\$_hpcst$.hpc
    [2007/11/09 09:14:12 | 000,003,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\BANTExt.sys
    [2007/07/06 18:08:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\videodeLuxe.INI
    [2007/07/06 17:42:26 | 000,006,430 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
    [2007/05/03 16:01:35 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
    [2007/05/03 10:35:01 | 000,000,029 | ---- | C] () -- C:\WINDOWS\viewer.ini
    [2007/05/03 10:26:11 | 000,000,046 | ---- | C] () -- C:\WINDOWS\RmFile.ini
    [2007/05/03 10:25:56 | 000,000,029 | ---- | C] () -- C:\WINDOWS\System32\MprExe.Ini
    [2007/05/03 10:25:26 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\InkPanel.Dll
    [2007/05/03 10:25:26 | 000,000,224 | ---- | C] () -- C:\WINDOWS\System32\ScrSav.ini
    [2007/05/03 10:25:25 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\Wrting32.Dll
    [2007/05/03 10:21:21 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\Funckey.dll
    [2007/05/03 10:21:20 | 000,003,117 | ---- | C] () -- C:\WINDOWS\aiptbl.ini
    [2006/11/15 05:36:58 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\imhost8.dll
    [2006/06/28 09:43:07 | 000,000,056 | ---- | C] () -- C:\Documents and Settings\Noel\intlname.ols
    [2006/06/02 03:50:56 | 000,002,410 | ---- | C] () -- C:\WINDOWS\CDPlayer.ini
    [2006/06/01 12:22:29 | 000,180,295 | ---- | C] () -- C:\WINDOWS\System32\TurboDLL.dll
    [2006/06/01 11:50:56 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvLowrance.dll
    [2006/06/01 11:50:56 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvPyx.dll
    [2006/06/01 11:50:56 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvAvmap.dll
    [2006/06/01 11:50:56 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSuu.dll
    [2006/06/01 11:50:44 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\Polyclip.dll
    [2006/06/01 11:50:44 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\RCalcul.dll
    [2006/05/20 05:04:31 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Noel\AdobeWeb.log
    [2006/03/09 06:40:20 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\Rey_SubClasser.dll
    [2006/02/10 10:31:49 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
    [2005/12/12 03:48:10 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\ZPORT4AS.dll
    [2005/11/25 04:40:37 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
    [2005/11/10 11:00:09 | 000,000,065 | ---- | C] () -- C:\Documents and Settings\Noel\default.pls
    [2005/11/05 05:50:00 | 000,240,640 | ---- | C] () -- C:\WINDOWS\System32\NMOCOD.DLL
    [2005/10/22 04:22:07 | 000,000,365 | ---- | C] () -- C:\WINDOWS\PSADMIN.INI
    [2005/09/07 06:00:50 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\BiMResNT.dll
    [2005/09/07 06:00:50 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\BiCResNT.dll
    [2005/08/25 09:21:26 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
    [2005/08/25 09:21:26 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
    [2005/08/25 09:21:26 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
    [2005/07/30 00:22:58 | 000,045,634 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\bhrslog.txt
    [2005/07/26 05:23:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
    [2005/07/26 05:20:35 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS6d.DLL
    [2005/07/12 04:11:14 | 000,000,080 | ---- | C] () -- C:\WINDOWS\navigma.INI
    [2005/07/11 19:40:30 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\adistres.dll
    [2005/07/08 19:46:29 | 000,000,017 | ---- | C] () -- C:\WINDOWS\MovingPicture.ini
    [2005/07/08 17:30:33 | 000,335,955 | ---- | C] () -- C:\WINDOWS\System32\s12lo.dll
    [2005/07/08 17:30:33 | 000,155,715 | ---- | C] () -- C:\WINDOWS\System32\tn23.dll
    [2005/07/08 17:30:33 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\gbwx.dll
    [2005/07/08 17:30:33 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\vqs85.DLL
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc3.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc2.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc1.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc0.dll
    [2005/07/08 17:30:30 | 000,023,040 | ---- | C] () -- C:\WINDOWS\System32\auth.dll
    [2005/07/06 18:06:17 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\ptevideo.dll
    [2005/07/04 12:58:49 | 000,040,960 | ---- | C] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2005/06/26 17:42:10 | 000,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI
    [2005/06/25 06:32:54 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\fusioncache.dat
    [2005/06/25 05:38:40 | 000,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
    [2005/06/25 04:55:35 | 000,001,293 | ---- | C] () -- C:\WINDOWS\photoimpression.ini
    [2005/06/25 04:52:15 | 000,096,768 | ---- | C] () -- C:\WINDOWS\SlantAdj.dll
    [2005/06/25 04:52:15 | 000,001,571 | ---- | C] () -- C:\WINDOWS\Faxcpp1.ini
    [2005/06/25 04:52:15 | 000,000,422 | ---- | C] () -- C:\WINDOWS\Faxcpp.ini
    [2005/06/25 04:52:15 | 000,000,072 | ---- | C] () -- C:\WINDOWS\System32\epDPE.ini
    [2005/06/16 11:21:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ATIMMC.INI
    [2005/06/16 10:35:58 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
    [2005/06/16 10:35:37 | 000,000,295 | ---- | C] () -- C:\WINDOWS\cmmixer.ini
    [2005/06/16 10:32:31 | 000,000,135 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
    [2005/06/16 10:32:30 | 000,004,238 | ---- | C] () -- C:\WINDOWS\mixerdef.ini
    [2005/06/16 10:29:07 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
    [2005/06/16 09:06:55 | 000,262,144 | ---- | C] () -- C:\WINDOWS\system32\config\systemprofile\ntuser.dat
    [2005/06/16 09:06:55 | 000,008,192 | -H-- | C] () -- C:\WINDOWS\system32\config\systemprofile\ntuser.dat.LOG
    [2005/06/16 07:37:38 | 000,003,627 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
    [2005/06/16 07:37:37 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
    [2005/06/15 15:49:10 | 000,139,264 | -H-- | C] () -- C:\Documents and Settings\Noel\ntuser.dat.LOG
    [2005/06/15 15:49:10 | 000,000,284 | -HS- | C] () -- C:\Documents and Settings\Noel\ntuser.ini
    [2005/06/15 15:44:30 | 000,413,696 | ---- | C] () -- C:\Documents and Settings\LocalService\NTUSER.DAT
    [2005/06/15 15:44:30 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\LocalService\ntuser.dat.LOG
    [2005/06/15 15:44:30 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\LocalService\ntuser.ini
    [2005/06/15 15:44:24 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\NetworkService\ntuser.ini
    [2005/06/15 15:44:23 | 000,413,696 | ---- | C] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT
    [2005/06/15 15:44:23 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\NetworkService\ntuser.dat.LOG
    [2005/04/28 00:22:34 | 000,831,488 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
    [2005/04/28 00:22:34 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
    [2004/10/28 13:26:42 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
    [2004/06/06 06:53:42 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
    [2004/06/05 06:56:16 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
    [2004/03/18 02:44:29 | 001,663,068 | ---- | C] () -- C:\WINDOWS\System32\libmmd.dll
    [2003/12/09 09:09:26 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\Nmea.dll
    [2003/11/27 09:51:18 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\Ogc.dll
    [2003/11/27 09:50:26 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\ConversApi.dll
    [2003/11/10 08:07:38 | 000,066,560 | ---- | C] () -- C:\WINDOWS\System32\atiyuv12.dll
    [2003/11/10 08:07:38 | 000,013,601 | ---- | C] () -- C:\WINDOWS\System32\vctest.ini
    [2003/11/10 08:07:26 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
    [2003/10/03 05:18:40 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSilva.dll
    [2003/10/03 05:18:32 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSena.dll
    [2003/10/03 05:18:26 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvMlr.dll
    [2003/10/03 05:18:18 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvMagellan.dll
    [2003/10/03 05:18:12 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvGarmin.dll
    [2003/09/15 09:59:04 | 000,022,183 | ---- | C] () -- C:\WINDOWS\System32\drivers\btserial.sys
    [2003/04/01 04:58:02 | 000,005,260 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
    [2002/11/25 09:11:22 | 000,688,128 | ---- | C] () -- C:\WINDOWS\System32\BCGCB474.dll
    [2002/11/01 10:17:50 | 000,000,256 | ---- | C] () -- C:\WINDOWS\aucfg.ini
    [2002/10/15 18:54:04 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
    [2002/07/04 09:05:34 | 000,000,269 | ---- | C] () -- C:\WINDOWS\tmupdate.ini
    [2002/05/15 18:29:04 | 000,000,607 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest
    [2002/02/27 11:28:16 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\MASE32.DLL
    [2002/02/27 11:28:16 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\MASD32.DLL
    [2002/02/27 11:28:14 | 000,196,096 | ---- | C] () -- C:\WINDOWS\System32\MACD32.DLL
    [2002/02/27 11:28:14 | 000,136,192 | ---- | C] () -- C:\WINDOWS\System32\MAMC32.DLL
    [2002/02/27 11:28:14 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\MA32.DLL
    [2002/01/13 11:12:02 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\CP30FW.DLL
    [2001/12/19 03:07:50 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\BCGCBResFRA.dll
    [2001/12/14 07:34:46 | 000,164,864 | ---- | C] () -- C:\WINDOWS\patchw32.dll
    [2001/11/23 13:18:00 | 000,000,597 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest
    [2001/11/14 08:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
    [2000/11/29 04:50:40 | 000,471,040 | ---- | C] () -- C:\WINDOWS\System32\QTExporter.dll
    [1999/07/23 07:46:48 | 000,000,116 | ---- | C] () -- C:\WINDOWS\AuHCcup1.ini
    [1999/07/23 04:53:20 | 000,129,536 | ---- | C] () -- C:\WINDOWS\AuHCcup1.dll
    [1998/08/14 06:44:46 | 000,044,544 | ---- | C] () -- C:\WINDOWS\System32\GIF89.DLL

    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 24 bytes -> C:\WINDOWS:D 6BB024C4410F641
    < End of report >

    Je te joint aussi le log suite au Run Fix

    ========== OTL ==========
    Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\ASKUpgrade deleted successfully.
    C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe moved successfully.
    Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\ASKService deleted successfully.
    C:\Program Files\AskBarDis\bar\bin\AskService.exe moved successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{3041d03e-fd4b-44e0-b742-2d9b88305f98} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3041d03e-fd4b-44e0-b742-2d9b88305f98}\ deleted successfully.
    C:\Program Files\AskBarDis\bar\bin\askBar.dll moved successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\hgGxXnLF\ deleted successfully.
    ========== FILES ==========
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\SearchInNewTab folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\Repository\conduit_CT2552113_CT2552113\ToolbarSettings folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\Repository\conduit_CT2552113_CT2552113\ToolbarLogin folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\Repository\conduit_CT2552113_CT2552113 folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\Repository folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\LanguagePack\fr folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\LanguagePack folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\CacheIcons folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog folder moved successfully.
    C:\Program Files\Setuprog folder moved successfully.
    C:\Documents and Settings\Noel\Mes documents\gtdat_0622114819.dat moved successfully.
    ========== REGISTRY ==========
    HKLM\SOFTWARE_ON_C\Microsoft\Windows NT\CurrentVersion\Winlogon\\"Shell"|"explorer.exe" /E : value set successfully!
    HKLM\SOFTWARE_ON_C\Microsoft\Windows NT\CurrentVersion\Winlogon\\"Userinit"|"C:\\WINDOWS\\system32\\Userinit.exe," /E : value set successfully!

    OTLPE by OldTimer - Version 3.1.39.0 log created on 07012010_201520

    J'espère que tu vas trouver la lumière dans ces rapports
    Encore merci
    @+




    1 Juillet 2010 19:13:26

    re
    pas normal, l'outil a correctement marché, surtout sur ça:
    Citation :
    HKLM\SOFTWARE_ON_C\Microsoft\Windows NT\CurrentVersion\Winlogon\\"Shell"|"explorer.exe" /E : value set successfully!
    HKLM\SOFTWARE_ON_C\Microsoft\Windows NT\CurrentVersion\Winlogon\\"Userinit"|"C:\\WINDOWS\\system32\\Userinit.exe," /E : value set successfully!


  • Insère ton CD de windows dans ton lecteur ( il faut que le CD corresponde à ta version de windows ).
  • Ferme toutes les programmes, fenêtres et applications en cours.
  • Déconnecte-toi d'internet.
  • Menu démarrer > exécuter.
  • Dans la fenêtre qui apparaît, tape : sfc /scannow puis valide par entrée.
  • Le PC va travailler, laisse-le tourner, cela peut prendre un bon moment.
  • Reviens me dire quand cela est fait.
    1 Juillet 2010 20:40:25

    Bonsoir

    Je ne saisi pas bien ta manip.
    Je ne peux pas booter sur mon cd XP
    Si je veux avoir accès à mes disques durs je dois booter sur un CD live (soit OTLPEnet ou un
    cd live de windows
    Peux tu éclairer ma lanterne ?

    merci
    2 Juillet 2010 17:40:34

    re
    que se passe-t-il quand tu insères ton cd de windows?
    il se lance ou pas?

    Citation :
    Je ne saisi pas bien ta manip.

    qu'est-ce que tu ne comprends pas?
    2 Juillet 2010 18:01:50

    Bonjour


    Je mets l'ordi en route dès que je peut insére le Cd Original de WIN XP PRO:
    Il ne se passe rien l'écran reste noir

    Je mets l'ori en route (sans la CD dans le lecteur) windows démarre
    J'ai mon message "Le système........le domaine PENTIUM n'est pas diponible"
    je mets mon CD de windows XP dans le lecteur
    Je fais OK.....et je suis toujours dans la même situation

    @+
    2 Juillet 2010 18:41:31

    Je suis obligé de m'absenter
    je serai de retour vers 23 h
    @+
    2 Juillet 2010 22:25:11

    re

    Démarre OTLPENet à partir du CD comme tu viens de le faire.
    Copie le fichier Fix.txt sur ta clé USB.
    http://www.sendspace.com/file/zq0oec

  • Insère ta clé USB avec le fichier Fix.txt dans ton PC
  • Démarre OTLPE
  • Fais un glisser/déposer du fichier Fix.txt dans la boîte de dialogue Custom scans and fixes.



  • Si cela ne marche pas, clique sur Run Fix et une boîte de dialogue s'ouvrira pour te demander de selectionner un endroit, déroule jusqu'au fichier Fix.txt qui est sur ta clé USB.
  • Puis clique sur Run Fix
  • Laisse l'outil travailler.
  • Poste un nouveau rapport OTL ( Ne coche pas les cases LOP et Purity cette fois )
    3 Juillet 2010 01:05:30

    Bonsoir

    Excuse moi pour le retard. Je suis rentré plus tard que prévu.
    J'ai exécuté tes instructions.

    Ci après le log et le Run scan :

    ========== OTL ==========
    Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\ASKUpgrade deleted successfully.
    C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe moved successfully.
    Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\ASKService deleted successfully.
    C:\Program Files\AskBarDis\bar\bin\AskService.exe moved successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{3041d03e-fd4b-44e0-b742-2d9b88305f98} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3041d03e-fd4b-44e0-b742-2d9b88305f98}\ deleted successfully.
    C:\Program Files\AskBarDis\bar\bin\askBar.dll moved successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\hgGxXnLF\ deleted successfully.
    ========== FILES ==========
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\SearchInNewTab folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\Repository\conduit_CT2552113_CT2552113\ToolbarSettings folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\Repository\conduit_CT2552113_CT2552113\ToolbarLogin folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\Repository\conduit_CT2552113_CT2552113 folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\Repository folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\LanguagePack\fr folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\LanguagePack folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog\CacheIcons folder moved successfully.
    C:\Documents and Settings\Noel\Local Settings\Application Data\Setuprog folder moved successfully.
    C:\Program Files\Setuprog folder moved successfully.
    C:\Documents and Settings\Noel\Mes documents\gtdat_0622114819.dat moved successfully.
    ========== REGISTRY ==========
    HKLM\SOFTWARE_ON_C\Microsoft\Windows NT\CurrentVersion\Winlogon\\"Shell"|"explorer.exe" /E : value set successfully!
    HKLM\SOFTWARE_ON_C\Microsoft\Windows NT\CurrentVersion\Winlogon\\"Userinit"|"C:\\WINDOWS\\system32\\Userinit.exe," /E : value set successfully!

    OTLPE by OldTimer - Version 3.1.39.0 log created on 07012010_201520


    Maintenant le Run scan

    OTL logfile created on: 7/3/2010 12:51:54 PM - Run
    OTLPE by OldTimer - Version 3.1.39.0 Folder = X:\Programs\OTLPE
    Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

    2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 85.00% Memory free
    2.00 Gb Paging File | 2.00 Gb Available in Paging File | 96.00% Paging File free
    Paging file location(s): C:\pagefile.sys 3070 3072 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 186.31 Gb Total Space | 120.41 Gb Free Space | 64.63% Space Free | Partition Type: NTFS
    Drive D: | 186.30 Gb Total Space | 96.52 Gb Free Space | 51.81% Space Free | Partition Type: NTFS
    Drive E: | 101.83 Gb Total Space | 51.88 Gb Free Space | 50.95% Space Free | Partition Type: NTFS
    Drive F: | 9.93 Gb Total Space | 6.17 Gb Free Space | 62.19% Space Free | Partition Type: NTFS
    G: Drive not present or media not loaded
    H: Drive not present or media not loaded
    Drive I: | 3.76 Gb Total Space | 1.89 Gb Free Space | 50.35% Space Free | Partition Type: FAT32
    Drive X: | 433.24 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

    Computer Name: REATOGO
    Current User Name: SYSTEM
    Logged in as Administrator.

    Current Boot Mode: Normal
    Scan Mode: All users
    Company Name Whitelist: Off
    Skip Microsoft Files: Off
    File Age = 30 Days
    Output = Standard
    Using ControlSet: ControlSet004

    ========== Win32 Services (SafeList) ==========

    SRV - File not found [On_Demand] -- -- (x10nets)
    SRV - File not found [On_Demand] -- -- (Wcpi13sv)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [Auto] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
    SRV - [2010/04/22 17:09:09 | 000,867,080 | ---- | M] (Acresso Software Inc.) [On_Demand] -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
    SRV - [2009/12/14 22:00:09 | 000,604,488 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
    SRV - [2009/12/14 22:00:06 | 000,361,288 | ---- | M] (TuneUp Software) [On_Demand] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
    SRV - [2009/11/16 07:25:48 | 000,029,000 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
    SRV - [2009/09/06 00:06:20 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) [Auto] -- C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor8.0)
    SRV - [2009/07/17 11:58:18 | 000,145,504 | ---- | M] (B.H.A Corporation) [Auto] -- C:\WINDOWS\System32\bgsvcgen.exe -- (bgsvcgen)
    SRV - [2008/09/24 10:50:46 | 000,052,888 | ---- | M] () [Auto] -- C:\Program Files\VIA\RAID\vialogsv.exe -- (VRAID Log Service)
    SRV - [2008/02/19 09:18:06 | 000,425,988 | ---- | M] () [Auto] -- C:\Program Files\NCH Software\Eyeline\eyeline.exe -- (EyelineService)
    SRV - [2008/02/19 09:18:00 | 000,368,644 | ---- | M] () [Auto] -- C:\Program Files\NCH Software\BroadCam\broadCam.exe -- (BroadCamService)
    SRV - [2007/05/03 09:12:11 | 000,072,704 | ---- | M] (Adobe Systems) [On_Demand] -- C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service)
    SRV - [2006/11/03 13:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
    SRV - [2005/11/28 09:53:10 | 000,172,032 | ---- | M] (Acronis) [Auto] -- C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
    SRV - [2005/11/17 09:18:52 | 001,527,900 | ---- | M] (MAGIX®) [On_Demand] -- C:\MAGIX\Common\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)
    SRV - [2005/04/03 18:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
    SRV - [2005/02/09 05:52:00 | 000,483,397 | ---- | M] (Raxco Software, Inc.) [On_Demand] -- C:\Program Files\Raxco\PerfectDisk\PDEngine.exe -- (PDEngine)
    SRV - [2005/02/09 05:52:00 | 000,241,731 | ---- | M] (Raxco Software, Inc.) [Auto] -- C:\Program Files\Raxco\PerfectDisk\PDSched.exe -- (PDSched)
    SRV - [2004/10/28 13:30:02 | 000,163,840 | ---- | M] (Broadcom Corporation) [Auto] -- C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe -- (btwdins)
    SRV - [2003/10/12 18:20:34 | 000,143,360 | ---- | M] (Computer Associates International Inc.) [Auto] -- C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe -- (CA_LIC_CLNT)
    SRV - [2003/07/28 14:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
    SRV - [2003/06/19 17:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM)
    SRV - [2003/04/07 14:45:00 | 000,151,552 | ---- | M] (Computer Associates International Inc.) [On_Demand] -- C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe -- (CA_LIC_SRVR)
    SRV - [2002/09/20 15:29:00 | 000,053,248 | ---- | M] (Computer Associates) [Auto] -- C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe -- (LogWatch)
    SRV - [2002/09/20 09:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))


    ========== Driver Services (SafeList) ==========

    DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
    DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
    DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
    DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
    DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
    DRV - File not found [Kernel | System] -- -- (PCIDump)
    DRV - File not found [Kernel | System] -- -- (lbrtfdc)
    DRV - File not found [Kernel | On_Demand] -- -- (jfdcd)
    DRV - File not found [Kernel | System] -- -- (InCDRm)
    DRV - File not found [Kernel | System] -- -- (InCDPass)
    DRV - File not found [Kernel | System] -- -- (i2omgmt)
    DRV - File not found [Kernel | System] -- -- (Changer)
    DRV - File not found [Kernel | On_Demand] -- -- (catchme)
    DRV - [2010/05/06 17:39:23 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
    DRV - [2010/05/06 17:39:00 | 000,164,048 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
    DRV - [2010/05/06 17:34:27 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
    DRV - [2010/05/06 17:33:59 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
    DRV - [2010/05/06 17:33:47 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
    DRV - [2010/05/06 17:33:29 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
    DRV - [2009/11/08 23:21:18 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System] -- C:\WINDOWS\system32\drivers\scdemu.sys -- (SCDEmu)
    DRV - [2009/10/21 05:22:00 | 000,298,752 | ---- | M] () [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
    DRV - [2009/07/17 11:58:18 | 000,033,408 | ---- | M] (B.H.A Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
    DRV - [2009/02/25 18:58:57 | 003,565,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
    DRV - [2009/02/03 22:31:17 | 000,170,496 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinavt2.sys -- (ATIAVAIW)
    DRV - [2008/12/18 08:23:49 | 000,103,360 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD)
    DRV - [2008/07/21 08:11:58 | 000,024,392 | ---- | M] (Elaborate Bytes AG) [Kernel | System] -- C:\WINDOWS\system32\drivers\ElbyCDIO.sys -- (ElbyCDIO)
    DRV - [2008/05/13 06:44:00 | 000,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand] -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM)
    DRV - [2008/05/13 06:43:58 | 000,008,944 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
    DRV - [2008/05/13 06:43:56 | 000,055,024 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
    DRV - [2008/04/13 14:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
    DRV - [2008/04/13 14:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
    DRV - [2008/04/13 14:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Pilote USB audio (WDM)
    DRV - [2007/09/20 22:11:02 | 000,028,432 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt)
    DRV - [2007/09/20 22:10:46 | 000,036,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
    DRV - [2007/09/20 22:10:40 | 000,035,088 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
    DRV - [2007/09/20 22:10:20 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
    DRV - [2007/07/06 18:01:42 | 000,101,376 | ---- | M] (Protect Software GmbH) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\ACEDRV07.sys -- (ACEDRV07)
    DRV - [2007/05/04 08:51:06 | 000,249,152 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter)
    DRV - [2007/05/04 08:51:06 | 000,030,688 | ---- | M] (Acronis) [File_System | Auto] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
    DRV - [2007/05/04 08:51:00 | 000,096,320 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\snapman.sys -- (snapman)
    DRV - [2005/11/02 10:47:26 | 000,010,368 | R--- | M] (Padus, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
    DRV - [2005/08/15 06:08:26 | 000,127,488 | ---- | M] (Ahead Software AG) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\imagesrv.sys -- (imagesrv)
    DRV - [2005/08/15 06:08:26 | 000,005,888 | ---- | M] (Ahead Software AG) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\imagedrv.sys -- (imagedrv)
    DRV - [2005/04/07 11:18:34 | 000,003,840 | ---- | M] () [Kernel | System] -- C:\WINDOWS\System32\Drivers\BANTExt.sys -- (BANTExt)
    DRV - [2004/10/28 13:18:52 | 000,017,024 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (BtAudio)
    DRV - [2004/10/28 13:12:36 | 000,030,299 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
    DRV - [2004/10/28 13:12:00 | 000,054,488 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
    DRV - [2004/10/23 03:01:00 | 000,054,424 | ---- | M] (Raxco Software, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\defrag32b.sys -- (Defrag32b)
    DRV - [2004/10/23 03:01:00 | 000,054,424 | ---- | M] (Raxco Software, Inc.) [File_System | Auto] -- C:\WINDOWS\system32\drivers\defrag32.sys -- (Defrag32)
    DRV - [2004/08/03 05:10:34 | 000,062,976 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Cdrdrv.sys -- (cdrdrv)
    DRV - [2004/07/06 11:06:46 | 000,188,416 | ---- | M] (Pinnacle Systems GmbH) [File_System | System] -- C:\WINDOWS\system32\drivers\vobIW.sys -- (vobiw)
    DRV - [2004/06/21 10:03:22 | 000,078,976 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\MarvinBus.sys -- (MarvinBus)
    DRV - [2004/03/10 10:27:18 | 000,011,264 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\asapiW2k.sys -- (ASAPIW2k)
    DRV - [2004/02/26 12:50:38 | 000,611,820 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
    DRV - [2004/02/23 23:08:52 | 000,400,384 | ---- | M] (Sensaura) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS)
    DRV - [2003/11/27 22:42:08 | 000,071,040 | ---- | M] (VIA Technologies inc,.ltd) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\viasprid.sys -- (viasprid)
    DRV - [2003/10/21 13:23:00 | 000,013,824 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinmdxx.sys -- (MVDCODEC)
    DRV - [2003/10/21 13:20:55 | 000,104,960 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinrvxx.sys -- (atinrvxx)
    DRV - [2003/10/21 13:19:59 | 000,063,488 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinxsxx.sys -- (ATIXSAudio)
    DRV - [2003/10/21 13:19:12 | 000,051,712 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinraxx.sys -- (ativraxx)
    DRV - [2003/10/21 13:17:55 | 000,013,824 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinttxx.sys -- (TTDec)
    DRV - [2003/10/21 13:16:11 | 000,056,832 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atintuxx.sys -- (ATITUNEP)
    DRV - [2003/10/07 11:51:00 | 000,072,164 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
    DRV - [2003/10/07 11:51:00 | 000,022,356 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
    DRV - [2003/09/17 10:42:00 | 001,258,154 | R--- | M] (WIDCOMM, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
    DRV - [2003/09/17 10:37:00 | 000,041,315 | R--- | M] (WIDCOMM, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid)
    DRV - [2003/09/15 09:59:04 | 000,022,183 | ---- | M] () [Kernel | Auto] -- C:\WINDOWS\system32\drivers\btserial.sys -- (BTSERIAL)
    DRV - [2003/09/15 09:58:34 | 000,222,876 | ---- | M] (WIDCOMM, Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\btslbcsp.sys -- (BTSLBCSP)
    DRV - [2003/08/01 08:47:24 | 000,029,239 | ---- | M] (Pinnacle Systems) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\vobid.sys -- (VOBID)
    DRV - [2003/07/14 11:49:04 | 000,254,868 | ---- | M] (Jungo) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atirwvd.sys -- (ATI Remote Wonder II)
    DRV - [2003/06/03 11:48:12 | 000,147,328 | ---- | M] (3Com Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\EL2K_XP.sys -- (EL2000)
    DRV - [2003/06/02 23:00:00 | 000,073,984 | R--- | M] (Promise Technology, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\ulsata.sys -- (UlSata)
    DRV - [2002/09/19 22:53:34 | 000,235,100 | ---- | M] (Analog Devices Inc) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\MidiSyn.sys -- (MidiSyn)
    DRV - [2002/07/17 04:05:10 | 000,016,512 | ---- | M] (Adaptec) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (ASPI)
    DRV - [2002/03/19 03:29:16 | 000,014,165 | ---- | M] (Pinnacle Systems GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\Pclepci.sys -- (PCLEPCI)
    DRV - [2001/10/04 05:53:16 | 000,009,728 | ---- | M] (VOB Computersysteme GmbH) [Kernel | Unavailable] -- C:\WINDOWS\system32\drivers\vobcom.sys -- (vobcom)
    DRV - [2001/10/02 19:47:28 | 000,051,072 | ---- | M] (SCM Microsystems Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\EUSBMSD.SYS -- (EUSBMSD)
    DRV - [2001/08/17 17:46:40 | 000,006,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\enum1394.sys -- (ENUM1394)
    DRV - [2001/08/17 16:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
    DRV - [2001/05/25 16:03:02 | 000,270,667 | ---- | M] (C-Media Inc) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\cmaudio.sys -- (cmpci) C-Media PCI Audio Driver (WDM)
    DRV - [2001/05/24 04:14:34 | 000,013,229 | ---- | M] (SCM Microsystems Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\Stltrk2k.sys -- (Stltrk2k)
    DRV - [2001/05/23 04:42:52 | 000,012,084 | ---- | M] (Aiptek) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\UTBLFILT.sys -- (utblfilt)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
    IE - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    IE - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com


    IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



    IE - HKU\NetworkService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
    IE - HKU\Noel_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKU\Noel_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost


    FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/04/22 10:14:03 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2002/01/01 09:36:28 | 000,000,000 | ---D | M]

    [2002/01/01 09:36:30 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
    [2002/01/01 09:36:30 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
    [2010/04/12 12:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
    [2009/06/04 20:29:28 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
    [2009/06/04 20:29:28 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
    [2009/06/04 20:29:27 | 000,000,748 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\MediaDICO-fr.xml
    [2009/06/04 20:29:28 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
    [2009/06/04 20:29:28 | 000,000,652 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml

    O1 HOSTS File: ([2010/04/26 06:36:10 | 000,303,015 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\HOSTS
    O1 - Hosts: 127.0.0.1 activate.adobe.com
    O1 - Hosts: 127.0.0.1 practivate.adobe.com
    O1 - Hosts: 127.0.0.1 ereg.adobe.com
    O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
    O1 - Hosts: 127.0.0.1 wip3.adobe.com
    O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
    O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
    O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
    O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
    O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
    O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
    O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com# Copyright © 1993-1999 Microsoft Corp.
    O1 - Hosts: 127.0.0.1 localhost
    O1 - Hosts: 127.0.0.1 www.007guard.com
    O1 - Hosts: 127.0.0.1 007guard.com
    O1 - Hosts: 127.0.0.1 008i.com
    O1 - Hosts: 127.0.0.1 www.008k.com
    O1 - Hosts: 127.0.0.1 008k.com
    O1 - Hosts: 127.0.0.1 www.00hq.com
    O1 - Hosts: 127.0.0.1 00hq.com
    O1 - Hosts: 127.0.0.1 010402.com
    O1 - Hosts: 127.0.0.1 www.032439.com
    O1 - Hosts: 10443 more lines...
    O2 - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\Snagit 9\SnagitBHO.dll (TechSmith Corporation)
    O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
    O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
    O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\Snagit 9\SnagitIEAddin.dll (TechSmith Corporation)
    O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O3 - HKLM\..\Toolbar: (SYSTRAN Standard 4.0) - {F9443A35-6BFD-11D7-ACD0-00B0D094B576} - C:\Program Files\SYSTRAN\4_0\Standard\IEPlugIn.dll (SYSTRAN)
    O3 - HKU\Noel_ON_C\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKU\Noel_ON_C\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe (Acronis)
    O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software)
    O4 - HKLM..\Run: [BHR4.1] C:\Program Files\Zamaan's Software\Browser Hijack Retaliator 4.1\BHR4.1.exe (Zamaan's Software)
    O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
    O4 - HKLM..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE (CANON INC.)
    O4 - HKLM..\Run: [HydraVisionDesktopManager] C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe (ATI Technologies Inc.)
    O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
    O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
    O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
    O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
    O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
    O4 - HKLM..\Run: [PtiuPbmd] C:\WINDOWS\System32\ptipbm.dll (Promise Technology,Inc.)
    O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
    O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe (Analog Devices, Inc.)
    O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
    O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
    O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
    O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Micro Application\TrueImage\TrueImageMonitor.exe (Acronis)
    O4 - HKLM..\Run: [Tweak UI] C:\WINDOWS\System32\TWEAKUI.CPL (Microsoft Corporation)
    O4 - HKLM..\Run: [Vade Retro Outlook Express] C:\Program Files\Goto Software\Vade Retro\Vaderetro_oe.exe ()
    O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
    O4 - HKU\Noel_ON_C..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe ()
    O4 - HKU\Noel_ON_C..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe (ATI Technologies Inc.)
    O4 - HKU\Noel_ON_C..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe (Nero AG)
    O4 - HKU\Noel_ON_C..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
    O4 - HKU\Noel_ON_C..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
    O4 - HKU\Noel_ON_C..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
    O4 - HKU\Noel_ON_C..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
    O4 - Startup: Error locating startup folders.
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\Noel_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Impression rapide - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Imprimer - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Prévisualiser - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm ()
    O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll (Google Inc.)
    O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
    O9 - Extra 'Tools' menuitem : Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
    O9 - Extra Button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} - C:\Program Files\ATI Multimedia\tv\EXPLBAR.DLL (ATI Technologies Inc.)
    O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm ()
    O9 - Extra 'Tools' menuitem : @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm ()
    O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/e/4/9/e494c802-d... (Office Genuine Advantage Validation Tool)
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/8/b/d/8bd77752-5... (Windows Genuine Advantage Validation Tool)
    O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} http://office.microsoft.com/officeupdate/content/opuc2.... (Office Update Installation Engine)
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls... (WUWebControl Class)
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Co... (MUWebControl Class)
    O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} http://a840.g.akamai.net/7/840/537/2005111401/housecall... (HouseCall Control)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} http://acs.pandasoftware.com/activescan/as5free/asinst.... (ActiveScan Installer Class)
    O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_11-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/fla... (Shockwave Flash Object)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.)
    O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
    O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\widimg {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\BTXPPanel.dll (Broadcom Corporation)
    O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
    O20 - AppInit_DLLs: (CLKERN.DLL) - C:\WINDOWS\System32\CLKERN.DLL (MicroBest Corporation)
    O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
    O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
    O20 - Winlogon\Notify\LBTServ: DllName - C:\Program Files\Fichiers communs\Logitech\Bluetooth\lbtserv.dll - C:\Program Files\Fichiers communs\Logitech\Bluetooth\lbtserv.dll File not found
    O24 - Desktop WallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O24 - Desktop BackupWallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
    O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
    O30 - LSA: Authentication Packages - (relog_ap) - C:\WINDOWS\System32\relog_ap.dll (Acronis)
    O30 - LSA: Authentication Packages - (CAL_MACHINE Se) - File not found
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2008/02/25 07:22:04 | 000,000,222 | ---- | M] () - C:\auto1.bat -- [ NTFS ]
    O32 - AutoRun File - [2005/06/15 15:40:32 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
    O32 - AutoRun File - [2005/05/19 12:57:30 | 000,000,000 | -H-- | M] () - F:\AUTOEXEC.BAT -- [ NTFS ]
    O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell - "" = AutoRun
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell\AutoRun\command - "" =
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell\AutoRun\command - "default" =
    O33 - MountPoints2\{5200bba6-ddc3-11d9-b8c4-806d6172696f}\Shell\PlayWithPowerDVD\Command - "" = C:\Program Files\CyberLink\PowerDVD\PowerDVD.exe -- [2003/09/05 10:25:00 | 000,409,600 | ---- | M] (CyberLink Corp.)
    O34 - HKLM BootExecute: (PDBoot.exe) - C:\WINDOWS\System32\PDBoot.exe (Raxco Software, Inc.)
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*

    ========== Files/Folders - Created Within 30 Days ==========

    [2011/11/05 19:45:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Application Data\Uniblue
    [2010/11/05 19:11:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Local Settings\Application Data\PCHealth
    [2010/06/28 11:38:44 | 000,000,000 | ---D | C] -- C:\_OTL
    [2010/06/24 18:37:42 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Noel\Recent
    [2010/06/22 12:46:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Mes documents\Fonds d'écran
    [2010/06/22 05:45:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Mes documents\Argentera Rando
    [2010/06/22 04:59:24 | 000,000,000 | ---D | C] -- C:\Program Files\GT2002
    [2010/06/22 04:48:04 | 000,000,000 | ---D | C] -- C:\Program Files\Cracklock
    [2010/06/18 07:17:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Local Settings\Application Data\Conduit
    [2010/06/14 02:51:46 | 000,000,000 | -HSD | C] -- C:\Config.Msi
    [2010/06/11 19:33:39 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
    [2008/12/22 05:02:44 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Noel\Application Data\pcouffin.sys
    [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    ========== Files - Modified Within 30 Days ==========

    [2011/11/05 19:05:22 | 000,000,430 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{362E2F5D-27EF-45CB-A2B3-8BA53CB7ACA7}.job
    [2010/07/02 21:09:02 | 000,413,696 | ---- | M] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT
    [2010/07/02 21:09:02 | 000,413,696 | ---- | M] () -- C:\Documents and Settings\LocalService\NTUSER.DAT
    [2010/07/02 21:08:59 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2010/07/02 21:02:01 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
    [2010/07/02 21:01:44 | 2146,750,464 | -HS- | M] () -- C:\hiberfil.sys
    [2010/07/02 00:34:18 | 014,417,920 | ---- | M] () -- C:\Documents and Settings\Noel\ntuser.dat
    [2010/07/01 14:30:16 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
    [2010/06/24 20:10:33 | 000,000,284 | -HS- | M] () -- C:\Documents and Settings\Noel\ntuser.ini
    [2010/06/24 20:00:03 | 000,000,506 | ---- | M] () -- C:\WINDOWS\tasks\Maintenance en 1 clic.job
    [2010/06/24 19:53:01 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
    [2010/06/24 18:38:38 | 000,003,472 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100625_003834.reg
    [2010/06/24 18:37:28 | 000,000,717 | ---- | M] () -- C:\Documents and Settings\Noel\Bureau\CCleaner.lnk
    [2010/06/24 18:30:24 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
    [2010/06/24 18:30:22 | 000,040,960 | ---- | M] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2010/06/24 17:53:01 | 000,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
    [2010/06/24 07:58:38 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
    [2010/06/23 03:25:05 | 000,967,166 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
    [2010/06/23 03:25:05 | 000,826,134 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
    [2010/06/23 03:25:05 | 000,271,352 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
    [2010/06/23 03:25:05 | 000,218,638 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
    [2010/06/23 03:25:05 | 000,004,982 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
    [2010/06/22 08:06:37 | 000,000,628 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 3.rt2
    [2010/06/22 08:06:37 | 000,000,383 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 2.rt2
    [2010/06/22 08:06:37 | 000,000,365 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 4.rt2
    [2010/06/22 06:54:35 | 000,000,275 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.eta
    [2010/06/22 05:47:03 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.BMP
    [2010/06/15 18:28:36 | 000,013,616 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100616_002833.reg
    [2010/06/15 12:13:59 | 000,142,616 | ---- | M] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
    [2010/06/15 12:12:49 | 000,425,408 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2010/06/14 09:40:41 | 000,000,332 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\CheckMyTorrentIP.torrent
    [2010/06/14 02:16:32 | 000,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
    [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    ========== Files Created - No Company Name ==========

    [2010/06/28 07:57:11 | 2146,750,464 | -HS- | C] () -- C:\hiberfil.sys
    [2010/06/24 18:38:35 | 000,003,472 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100625_003834.reg
    [2010/06/22 08:06:37 | 000,000,628 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 3.rt2
    [2010/06/22 08:06:37 | 000,000,383 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 2.rt2
    [2010/06/22 08:06:37 | 000,000,365 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 4.rt2
    [2010/06/22 06:22:02 | 000,000,275 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.eta
    [2010/06/22 05:47:03 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.BMP
    [2010/06/18 05:24:30 | 014,417,920 | ---- | C] () -- C:\Documents and Settings\Noel\ntuser.dat
    [2010/06/15 18:28:34 | 000,013,616 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100616_002833.reg
    [2010/06/14 09:40:39 | 000,000,332 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\CheckMyTorrentIP.torrent
    [2009/10/24 02:20:34 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\PCIVP.SYS
    [2009/10/23 18:28:04 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
    [2009/10/21 05:22:00 | 000,298,752 | ---- | C] () -- C:\WINDOWS\System32\drivers\yk51x86.sys
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\sysprs7.dll
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth2.dll
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth1.dll
    [2009/08/01 03:13:14 | 000,000,205 | ---- | C] () -- C:\WINDOWS\System32\lsprst7.dll
    [2009/08/01 03:13:14 | 000,000,073 | ---- | C] () -- C:\WINDOWS\System32\ssprs.dll
    [2009/02/13 19:53:55 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\Days5.ini
    [2009/02/13 18:04:48 | 000,000,028 | ---- | C] () -- C:\Documents and Settings\Noel\Adobe Encore DVD_VUI.pref
    [2009/01/16 10:14:29 | 000,000,395 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
    [2008/12/22 05:03:06 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.log
    [2008/12/22 05:02:44 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\inst.exe
    [2008/12/22 05:02:44 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.cat
    [2008/12/22 05:02:44 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.inf
    [2008/12/19 12:00:13 | 000,001,028 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\WavCodec.wff
    [2008/07/17 18:25:43 | 000,034,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\mbamcatchme.sys
    [2008/07/15 18:41:59 | 000,000,823 | ---- | C] () -- C:\WINDOWS\tsc.ini
    [2008/07/15 18:41:58 | 000,071,749 | ---- | C] () -- C:\WINDOWS\hcextoutput.dll
    [2008/07/15 18:40:57 | 000,000,170 | ---- | C] () -- C:\WINDOWS\GetServer.ini
    [2008/07/15 02:46:48 | 001,776,795 | -HS- | C] () -- C:\WINDOWS\System32\gpekllfs.ini
    [2008/06/20 18:57:51 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
    [2008/04/26 02:52:21 | 000,471,552 | ---- | C] () -- C:\WINDOWS\System32\Smab.dll
    [2008/04/26 02:52:21 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
    [2008/02/19 09:20:43 | 000,001,028 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\AVIEncoder.wff
    [2008/02/04 13:23:10 | 000,693,792 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
    [2008/01/29 04:31:29 | 000,004,238 | ---- | C] () -- C:\Documents and Settings\Noel\UserCustomPreset_Adobe Premiere Pro 2.0.vpr
    [2007/11/09 10:44:52 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\$_hpcst$.hpc
    [2007/11/09 09:14:12 | 000,003,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\BANTExt.sys
    [2007/07/06 18:08:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\videodeLuxe.INI
    [2007/07/06 17:42:26 | 000,006,430 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
    [2007/05/03 16:01:35 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
    [2007/05/03 10:35:01 | 000,000,029 | ---- | C] () -- C:\WINDOWS\viewer.ini
    [2007/05/03 10:26:11 | 000,000,046 | ---- | C] () -- C:\WINDOWS\RmFile.ini
    [2007/05/03 10:25:56 | 000,000,029 | ---- | C] () -- C:\WINDOWS\System32\MprExe.Ini
    [2007/05/03 10:25:26 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\InkPanel.Dll
    [2007/05/03 10:25:26 | 000,000,224 | ---- | C] () -- C:\WINDOWS\System32\ScrSav.ini
    [2007/05/03 10:25:25 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\Wrting32.Dll
    [2007/05/03 10:21:21 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\Funckey.dll
    [2007/05/03 10:21:20 | 000,003,117 | ---- | C] () -- C:\WINDOWS\aiptbl.ini
    [2006/11/15 05:36:58 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\imhost8.dll
    [2006/06/28 09:43:07 | 000,000,056 | ---- | C] () -- C:\Documents and Settings\Noel\intlname.ols
    [2006/06/02 03:50:56 | 000,002,410 | ---- | C] () -- C:\WINDOWS\CDPlayer.ini
    [2006/06/01 12:22:29 | 000,180,295 | ---- | C] () -- C:\WINDOWS\System32\TurboDLL.dll
    [2006/06/01 11:50:56 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvLowrance.dll
    [2006/06/01 11:50:56 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvPyx.dll
    [2006/06/01 11:50:56 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvAvmap.dll
    [2006/06/01 11:50:56 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSuu.dll
    [2006/06/01 11:50:44 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\Polyclip.dll
    [2006/06/01 11:50:44 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\RCalcul.dll
    [2006/05/20 05:04:31 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Noel\AdobeWeb.log
    [2006/03/09 06:40:20 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\Rey_SubClasser.dll
    [2006/02/10 10:31:49 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
    [2005/12/12 03:48:10 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\ZPORT4AS.dll
    [2005/11/25 04:40:37 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
    [2005/11/10 11:00:09 | 000,000,065 | ---- | C] () -- C:\Documents and Settings\Noel\default.pls
    [2005/11/05 05:50:00 | 000,240,640 | ---- | C] () -- C:\WINDOWS\System32\NMOCOD.DLL
    [2005/10/22 04:22:07 | 000,000,365 | ---- | C] () -- C:\WINDOWS\PSADMIN.INI
    [2005/09/07 06:00:50 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\BiMResNT.dll
    [2005/09/07 06:00:50 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\BiCResNT.dll
    [2005/08/25 09:21:26 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
    [2005/08/25 09:21:26 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
    [2005/08/25 09:21:26 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
    [2005/07/30 00:22:58 | 000,045,634 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\bhrslog.txt
    [2005/07/26 05:23:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
    [2005/07/26 05:20:35 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS6d.DLL
    [2005/07/12 04:11:14 | 000,000,080 | ---- | C] () -- C:\WINDOWS\navigma.INI
    [2005/07/11 19:40:30 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\adistres.dll
    [2005/07/08 19:46:29 | 000,000,017 | ---- | C] () -- C:\WINDOWS\MovingPicture.ini
    [2005/07/08 17:30:33 | 000,335,955 | ---- | C] () -- C:\WINDOWS\System32\s12lo.dll
    [2005/07/08 17:30:33 | 000,155,715 | ---- | C] () -- C:\WINDOWS\System32\tn23.dll
    [2005/07/08 17:30:33 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\gbwx.dll
    [2005/07/08 17:30:33 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\vqs85.DLL
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc3.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc2.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc1.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc0.dll
    [2005/07/08 17:30:30 | 000,023,040 | ---- | C] () -- C:\WINDOWS\System32\auth.dll
    [2005/07/06 18:06:17 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\ptevideo.dll
    [2005/07/04 12:58:49 | 000,040,960 | ---- | C] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2005/06/26 17:42:10 | 000,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI
    [2005/06/25 06:32:54 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\fusioncache.dat
    [2005/06/25 05:38:40 | 000,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
    [2005/06/25 04:55:35 | 000,001,293 | ---- | C] () -- C:\WINDOWS\photoimpression.ini
    [2005/06/25 04:52:15 | 000,096,768 | ---- | C] () -- C:\WINDOWS\SlantAdj.dll
    [2005/06/25 04:52:15 | 000,001,571 | ---- | C] () -- C:\WINDOWS\Faxcpp1.ini
    [2005/06/25 04:52:15 | 000,000,422 | ---- | C] () -- C:\WINDOWS\Faxcpp.ini
    [2005/06/25 04:52:15 | 000,000,072 | ---- | C] () -- C:\WINDOWS\System32\epDPE.ini
    [2005/06/16 11:21:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ATIMMC.INI
    [2005/06/16 10:35:58 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
    [2005/06/16 10:35:37 | 000,000,295 | ---- | C] () -- C:\WINDOWS\cmmixer.ini
    [2005/06/16 10:32:31 | 000,000,135 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
    [2005/06/16 10:32:30 | 000,004,238 | ---- | C] () -- C:\WINDOWS\mixerdef.ini
    [2005/06/16 10:29:07 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
    [2005/06/16 09:06:55 | 000,262,144 | ---- | C] () -- C:\WINDOWS\system32\config\systemprofile\ntuser.dat
    [2005/06/16 09:06:55 | 000,008,192 | -H-- | C] () -- C:\WINDOWS\system32\config\systemprofile\ntuser.dat.LOG
    [2005/06/16 07:37:38 | 000,003,627 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
    [2005/06/16 07:37:37 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
    [2005/06/15 15:49:10 | 000,163,840 | -H-- | C] () -- C:\Documents and Settings\Noel\ntuser.dat.LOG
    [2005/06/15 15:49:10 | 000,000,284 | -HS- | C] () -- C:\Documents and Settings\Noel\ntuser.ini
    [2005/06/15 15:44:30 | 000,413,696 | ---- | C] () -- C:\Documents and Settings\LocalService\NTUSER.DAT
    [2005/06/15 15:44:30 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\LocalService\ntuser.dat.LOG
    [2005/06/15 15:44:30 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\LocalService\ntuser.ini
    [2005/06/15 15:44:24 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\NetworkService\ntuser.ini
    [2005/06/15 15:44:23 | 000,413,696 | ---- | C] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT
    [2005/06/15 15:44:23 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\NetworkService\ntuser.dat.LOG
    [2005/04/28 00:22:34 | 000,831,488 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
    [2005/04/28 00:22:34 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
    [2004/10/28 13:26:42 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
    [2004/06/06 06:53:42 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
    [2004/06/05 06:56:16 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
    [2004/03/18 02:44:29 | 001,663,068 | ---- | C] () -- C:\WINDOWS\System32\libmmd.dll
    [2003/12/09 09:09:26 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\Nmea.dll
    [2003/11/27 09:51:18 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\Ogc.dll
    [2003/11/27 09:50:26 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\ConversApi.dll
    [2003/11/10 08:07:38 | 000,066,560 | ---- | C] () -- C:\WINDOWS\System32\atiyuv12.dll
    [2003/11/10 08:07:38 | 000,013,601 | ---- | C] () -- C:\WINDOWS\System32\vctest.ini
    [2003/11/10 08:07:26 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
    [2003/10/03 05:18:40 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSilva.dll
    [2003/10/03 05:18:32 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSena.dll
    [2003/10/03 05:18:26 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvMlr.dll
    [2003/10/03 05:18:18 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvMagellan.dll
    [2003/10/03 05:18:12 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvGarmin.dll
    [2003/09/15 09:59:04 | 000,022,183 | ---- | C] () -- C:\WINDOWS\System32\drivers\btserial.sys
    [2003/04/01 04:58:02 | 000,005,260 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
    [2002/11/25 09:11:22 | 000,688,128 | ---- | C] () -- C:\WINDOWS\System32\BCGCB474.dll
    [2002/11/01 10:17:50 | 000,000,256 | ---- | C] () -- C:\WINDOWS\aucfg.ini
    [2002/10/15 18:54:04 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
    [2002/07/04 09:05:34 | 000,000,269 | ---- | C] () -- C:\WINDOWS\tmupdate.ini
    [2002/05/15 18:29:04 | 000,000,607 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest
    [2002/02/27 11:28:16 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\MASE32.DLL
    [2002/02/27 11:28:16 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\MASD32.DLL
    [2002/02/27 11:28:14 | 000,196,096 | ---- | C] () -- C:\WINDOWS\System32\MACD32.DLL
    [2002/02/27 11:28:14 | 000,136,192 | ---- | C] () -- C:\WINDOWS\System32\MAMC32.DLL
    [2002/02/27 11:28:14 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\MA32.DLL
    [2002/01/13 11:12:02 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\CP30FW.DLL
    [2001/12/19 03:07:50 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\BCGCBResFRA.dll
    [2001/12/14 07:34:46 | 000,164,864 | ---- | C] () -- C:\WINDOWS\patchw32.dll
    [2001/11/23 13:18:00 | 000,000,597 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest
    [2001/11/14 08:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
    [2000/11/29 04:50:40 | 000,471,040 | ---- | C] () -- C:\WINDOWS\System32\QTExporter.dll
    [1999/07/23 07:46:48 | 000,000,116 | ---- | C] () -- C:\WINDOWS\AuHCcup1.ini
    [1999/07/23 04:53:20 | 000,129,536 | ---- | C] () -- C:\WINDOWS\AuHCcup1.dll
    [1998/08/14 06:44:46 | 000,044,544 | ---- | C] () -- C:\WINDOWS\System32\GIF89.DLL

    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 24 bytes -> C:\WINDOWS:D 6BB024C4410F641
    < End of report >

    J ai essayé un démarrage de l'ordi normalement
    Le domaine pentium n'est toujours pas disponible

    Merci pour ta patience

    A demain si tu veux bien
    3 Juillet 2010 19:48:47

    re
    on va pousser le scan OTLPE, mais là, franchement je sais pas :/ 

    Possible que ça soit pas infectieux et que ton lien microsoft soit la raison de ton souci.

    Tu lances l'iso d'OTLPENet que tu as gravé.
  • une fois le bureau de reatogo chargé , tu lances OTLPE , l'icône jaune

  • Double-clique sur l'icone OTLPE
  • quand demandé "Do you wish to load the remote registry", select Yes
  • quand demandé "Do you wish to load remote user profile(s) for scanning", select Yes
  • vérifier que "Automatically Load All Remaining Users" est sélectionné et press OK



  • sous Custom Scan box
    1 copie_colle le contenu du cadre ci dessous:


    netsvcs
    msconfig
    safebootminimal
    safebootnetwork
    activex
    drivers32
    %ALLUSERSPROFILE%\Application Data\*.
    %ALLUSERSPROFILE%\Application Data\*.exe /s
    %SYSTEMDRIVE%\*.exe
    /md5start
    eventlog.dll
    scecli.dll
    netlogon.dll
    cngaudit.dll
    sceclt.dll
    ntelogon.dll
    logevent.dll
    iaStor.sys
    nvstor.sys
    atapi.sys
    cdrom.sys
    disk.sys
    ndis.sys
    mountmgr.sys
    aec.sys
    rasacd.sys
    mrxsmb10.sys
    mrxsmb20.sys
    termdd.sys
    mrxsmb.sys
    win32k.sys
    storport.sys
    IdeChnDr.sys
    viasraid.sys
    AGP440.sys
    vaxscsi.sys
    nvatabus.sys
    viamraid.sys
    nvata.sys
    nvgts.sys
    iastorv.sys
    ViPrt.sys
    eNetHook.dll
    ahcix86.sys
    KR10N.sys
    nvstor32.sys
    ahcix86s.sys
    nvrd32.sys
    /md5stop
    %systemroot%\*. /mp /s
    %systemroot%\system32\*.dll /lockedfiles
    %systemroot%\Tasks\*.job /lockedfiles
    %systemroot%\system32\drivers\*.sys /lockedfiles
    %systemroot%\System32\config\*.sav
    CREATERESTOREPOINT


  • copie colle ce texte dans un fichier texte|bloc note que tu enregistres sur clé usb que tu brancheras sous reatogo tu pourras alors facilement le copier\coller.
  • 2 Clic Run Scan pour démarrer le scan.
  • Une fois terminé , le fichier se trouve là C:\OTL.txt
  • Copie_colle le contenu dans ta prochaine réponse.
    4 Juillet 2010 23:57:56

    Bonsoir

    2 remarques :

    "quand demandé "Do you wish to load the remote registry", select Yes". Je n'ai pas eu cette question
    Le texte que j'ai collé sous "Custm Scan/Fixes" n'a pas disparu cette fois.

    Ci dessous le Le scan OLT

    OTL logfile created on: 7/5/2010 2:38:38 PM - Run
    OTLPE by OldTimer - Version 3.1.39.0 Folder = X:\Programs\OTLPE
    Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

    2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 86.00% Memory free
    2.00 Gb Paging File | 2.00 Gb Available in Paging File | 97.00% Paging File free
    Paging file location(s): C:\pagefile.sys 3070 3072 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 186.31 Gb Total Space | 120.43 Gb Free Space | 64.64% Space Free | Partition Type: NTFS
    Drive D: | 186.30 Gb Total Space | 96.52 Gb Free Space | 51.81% Space Free | Partition Type: NTFS
    Drive E: | 101.83 Gb Total Space | 51.88 Gb Free Space | 50.95% Space Free | Partition Type: NTFS
    Drive F: | 9.93 Gb Total Space | 6.17 Gb Free Space | 62.19% Space Free | Partition Type: NTFS
    G: Drive not present or media not loaded
    H: Drive not present or media not loaded
    I: Drive not present or media not loaded
    Drive L: | 3.76 Gb Total Space | 1.89 Gb Free Space | 50.35% Space Free | Partition Type: FAT32
    Drive X: | 433.24 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

    Computer Name: REATOGO
    Current User Name: SYSTEM
    Logged in as Administrator.

    Current Boot Mode: Normal
    Scan Mode: All users
    Company Name Whitelist: Off
    Skip Microsoft Files: Off
    File Age = 30 Days
    Output = Standard
    Using ControlSet: ControlSet004

    ========== Win32 Services (SafeList) ==========

    SRV - File not found [On_Demand] -- -- (x10nets)
    SRV - File not found [On_Demand] -- -- (Wcpi13sv)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [Auto] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
    SRV - [2010/04/22 17:09:09 | 000,867,080 | ---- | M] (Acresso Software Inc.) [On_Demand] -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
    SRV - [2009/12/14 22:00:09 | 000,604,488 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
    SRV - [2009/12/14 22:00:06 | 000,361,288 | ---- | M] (TuneUp Software) [On_Demand] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
    SRV - [2009/11/16 07:25:48 | 000,029,000 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
    SRV - [2009/09/06 00:06:20 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) [Auto] -- C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor8.0)
    SRV - [2009/07/17 11:58:18 | 000,145,504 | ---- | M] (B.H.A Corporation) [Auto] -- C:\WINDOWS\System32\bgsvcgen.exe -- (bgsvcgen)
    SRV - [2008/09/24 10:50:46 | 000,052,888 | ---- | M] () [Auto] -- C:\Program Files\VIA\RAID\vialogsv.exe -- (VRAID Log Service)
    SRV - [2008/02/19 09:18:06 | 000,425,988 | ---- | M] () [Auto] -- C:\Program Files\NCH Software\Eyeline\eyeline.exe -- (EyelineService)
    SRV - [2008/02/19 09:18:00 | 000,368,644 | ---- | M] () [Auto] -- C:\Program Files\NCH Software\BroadCam\broadCam.exe -- (BroadCamService)
    SRV - [2007/05/03 09:12:11 | 000,072,704 | ---- | M] (Adobe Systems) [On_Demand] -- C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service)
    SRV - [2006/11/03 13:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
    SRV - [2005/11/28 09:53:10 | 000,172,032 | ---- | M] (Acronis) [Auto] -- C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
    SRV - [2005/11/17 09:18:52 | 001,527,900 | ---- | M] (MAGIX®) [On_Demand] -- C:\MAGIX\Common\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)
    SRV - [2005/04/03 18:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
    SRV - [2005/02/09 05:52:00 | 000,483,397 | ---- | M] (Raxco Software, Inc.) [On_Demand] -- C:\Program Files\Raxco\PerfectDisk\PDEngine.exe -- (PDEngine)
    SRV - [2005/02/09 05:52:00 | 000,241,731 | ---- | M] (Raxco Software, Inc.) [Auto] -- C:\Program Files\Raxco\PerfectDisk\PDSched.exe -- (PDSched)
    SRV - [2004/10/28 13:30:02 | 000,163,840 | ---- | M] (Broadcom Corporation) [Auto] -- C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe -- (btwdins)
    SRV - [2003/10/12 18:20:34 | 000,143,360 | ---- | M] (Computer Associates International Inc.) [Auto] -- C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe -- (CA_LIC_CLNT)
    SRV - [2003/07/28 14:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
    SRV - [2003/06/19 17:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM)
    SRV - [2003/04/07 14:45:00 | 000,151,552 | ---- | M] (Computer Associates International Inc.) [On_Demand] -- C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe -- (CA_LIC_SRVR)
    SRV - [2002/09/20 15:29:00 | 000,053,248 | ---- | M] (Computer Associates) [Auto] -- C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe -- (LogWatch)
    SRV - [2002/09/20 09:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))


    ========== Driver Services (SafeList) ==========

    DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
    DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
    DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
    DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
    DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
    DRV - File not found [Kernel | System] -- -- (PCIDump)
    DRV - File not found [Kernel | System] -- -- (lbrtfdc)
    DRV - File not found [Kernel | On_Demand] -- -- (jfdcd)
    DRV - File not found [Kernel | System] -- -- (InCDRm)
    DRV - File not found [Kernel | System] -- -- (InCDPass)
    DRV - File not found [Kernel | System] -- -- (i2omgmt)
    DRV - File not found [Kernel | System] -- -- (Changer)
    DRV - File not found [Kernel | On_Demand] -- -- (catchme)
    DRV - [2010/05/06 17:39:23 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
    DRV - [2010/05/06 17:39:00 | 000,164,048 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
    DRV - [2010/05/06 17:34:27 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
    DRV - [2010/05/06 17:33:59 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
    DRV - [2010/05/06 17:33:47 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
    DRV - [2010/05/06 17:33:29 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
    DRV - [2009/11/08 23:21:18 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System] -- C:\WINDOWS\system32\drivers\scdemu.sys -- (SCDEmu)
    DRV - [2009/10/21 05:22:00 | 000,298,752 | ---- | M] () [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
    DRV - [2009/07/17 11:58:18 | 000,033,408 | ---- | M] (B.H.A Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
    DRV - [2009/02/25 18:58:57 | 003,565,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
    DRV - [2009/02/03 22:31:17 | 000,170,496 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinavt2.sys -- (ATIAVAIW)
    DRV - [2008/12/18 08:23:49 | 000,103,360 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD)
    DRV - [2008/07/21 08:11:58 | 000,024,392 | ---- | M] (Elaborate Bytes AG) [Kernel | System] -- C:\WINDOWS\system32\drivers\ElbyCDIO.sys -- (ElbyCDIO)
    DRV - [2008/05/13 06:44:00 | 000,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand] -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM)
    DRV - [2008/05/13 06:43:58 | 000,008,944 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
    DRV - [2008/05/13 06:43:56 | 000,055,024 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
    DRV - [2008/04/13 14:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
    DRV - [2008/04/13 14:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
    DRV - [2008/04/13 14:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Pilote USB audio (WDM)
    DRV - [2007/09/20 22:11:02 | 000,028,432 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt)
    DRV - [2007/09/20 22:10:46 | 000,036,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
    DRV - [2007/09/20 22:10:40 | 000,035,088 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
    DRV - [2007/09/20 22:10:20 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
    DRV - [2007/07/06 18:01:42 | 000,101,376 | ---- | M] (Protect Software GmbH) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\ACEDRV07.sys -- (ACEDRV07)
    DRV - [2007/05/04 08:51:06 | 000,249,152 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter)
    DRV - [2007/05/04 08:51:06 | 000,030,688 | ---- | M] (Acronis) [File_System | Auto] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
    DRV - [2007/05/04 08:51:00 | 000,096,320 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\snapman.sys -- (snapman)
    DRV - [2005/11/02 10:47:26 | 000,010,368 | R--- | M] (Padus, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
    DRV - [2005/08/15 06:08:26 | 000,127,488 | ---- | M] (Ahead Software AG) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\imagesrv.sys -- (imagesrv)
    DRV - [2005/08/15 06:08:26 | 000,005,888 | ---- | M] (Ahead Software AG) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\imagedrv.sys -- (imagedrv)
    DRV - [2005/04/07 11:18:34 | 000,003,840 | ---- | M] () [Kernel | System] -- C:\WINDOWS\System32\Drivers\BANTExt.sys -- (BANTExt)
    DRV - [2004/10/28 13:18:52 | 000,017,024 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (BtAudio)
    DRV - [2004/10/28 13:12:36 | 000,030,299 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
    DRV - [2004/10/28 13:12:00 | 000,054,488 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
    DRV - [2004/10/23 03:01:00 | 000,054,424 | ---- | M] (Raxco Software, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\defrag32b.sys -- (Defrag32b)
    DRV - [2004/10/23 03:01:00 | 000,054,424 | ---- | M] (Raxco Software, Inc.) [File_System | Auto] -- C:\WINDOWS\system32\drivers\defrag32.sys -- (Defrag32)
    DRV - [2004/08/03 05:10:34 | 000,062,976 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Cdrdrv.sys -- (cdrdrv)
    DRV - [2004/07/06 11:06:46 | 000,188,416 | ---- | M] (Pinnacle Systems GmbH) [File_System | System] -- C:\WINDOWS\system32\drivers\vobIW.sys -- (vobiw)
    DRV - [2004/06/21 10:03:22 | 000,078,976 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\MarvinBus.sys -- (MarvinBus)
    DRV - [2004/03/10 10:27:18 | 000,011,264 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\asapiW2k.sys -- (ASAPIW2k)
    DRV - [2004/02/26 12:50:38 | 000,611,820 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
    DRV - [2004/02/23 23:08:52 | 000,400,384 | ---- | M] (Sensaura) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS)
    DRV - [2003/11/27 22:42:08 | 000,071,040 | ---- | M] (VIA Technologies inc,.ltd) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\viasprid.sys -- (viasprid)
    DRV - [2003/10/21 13:23:00 | 000,013,824 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinmdxx.sys -- (MVDCODEC)
    DRV - [2003/10/21 13:20:55 | 000,104,960 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinrvxx.sys -- (atinrvxx)
    DRV - [2003/10/21 13:19:59 | 000,063,488 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinxsxx.sys -- (ATIXSAudio)
    DRV - [2003/10/21 13:19:12 | 000,051,712 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinraxx.sys -- (ativraxx)
    DRV - [2003/10/21 13:17:55 | 000,013,824 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinttxx.sys -- (TTDec)
    DRV - [2003/10/21 13:16:11 | 000,056,832 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atintuxx.sys -- (ATITUNEP)
    DRV - [2003/10/07 11:51:00 | 000,072,164 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
    DRV - [2003/10/07 11:51:00 | 000,022,356 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
    DRV - [2003/09/17 10:42:00 | 001,258,154 | R--- | M] (WIDCOMM, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
    DRV - [2003/09/17 10:37:00 | 000,041,315 | R--- | M] (WIDCOMM, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid)
    DRV - [2003/09/15 09:59:04 | 000,022,183 | ---- | M] () [Kernel | Auto] -- C:\WINDOWS\system32\drivers\btserial.sys -- (BTSERIAL)
    DRV - [2003/09/15 09:58:34 | 000,222,876 | ---- | M] (WIDCOMM, Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\btslbcsp.sys -- (BTSLBCSP)
    DRV - [2003/08/01 08:47:24 | 000,029,239 | ---- | M] (Pinnacle Systems) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\vobid.sys -- (VOBID)
    DRV - [2003/07/14 11:49:04 | 000,254,868 | ---- | M] (Jungo) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atirwvd.sys -- (ATI Remote Wonder II)
    DRV - [2003/06/03 11:48:12 | 000,147,328 | ---- | M] (3Com Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\EL2K_XP.sys -- (EL2000)
    DRV - [2003/06/02 23:00:00 | 000,073,984 | R--- | M] (Promise Technology, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\ulsata.sys -- (UlSata)
    DRV - [2002/09/19 22:53:34 | 000,235,100 | ---- | M] (Analog Devices Inc) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\MidiSyn.sys -- (MidiSyn)
    DRV - [2002/07/17 04:05:10 | 000,016,512 | ---- | M] (Adaptec) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (ASPI)
    DRV - [2002/03/19 03:29:16 | 000,014,165 | ---- | M] (Pinnacle Systems GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\Pclepci.sys -- (PCLEPCI)
    DRV - [2001/10/04 05:53:16 | 000,009,728 | ---- | M] (VOB Computersysteme GmbH) [Kernel | Unavailable] -- C:\WINDOWS\system32\drivers\vobcom.sys -- (vobcom)
    DRV - [2001/10/02 19:47:28 | 000,051,072 | ---- | M] (SCM Microsystems Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\EUSBMSD.SYS -- (EUSBMSD)
    DRV - [2001/08/17 17:46:40 | 000,006,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\enum1394.sys -- (ENUM1394)
    DRV - [2001/08/17 16:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
    DRV - [2001/05/25 16:03:02 | 000,270,667 | ---- | M] (C-Media Inc) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\cmaudio.sys -- (cmpci) C-Media PCI Audio Driver (WDM)
    DRV - [2001/05/24 04:14:34 | 000,013,229 | ---- | M] (SCM Microsystems Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\Stltrk2k.sys -- (Stltrk2k)
    DRV - [2001/05/23 04:42:52 | 000,012,084 | ---- | M] (Aiptek) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\UTBLFILT.sys -- (utblfilt)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
    IE - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    IE - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com


    IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



    IE - HKU\NetworkService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
    IE - HKU\Noel_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKU\Noel_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost


    FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/04/22 10:14:03 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2002/01/01 09:36:28 | 000,000,000 | ---D | M]

    [2002/01/01 09:36:30 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
    [2002/01/01 09:36:30 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
    [2010/04/12 12:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
    [2009/06/04 20:29:28 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
    [2009/06/04 20:29:28 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
    [2009/06/04 20:29:27 | 000,000,748 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\MediaDICO-fr.xml
    [2009/06/04 20:29:28 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
    [2009/06/04 20:29:28 | 000,000,652 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml

    O1 HOSTS File: ([2010/04/26 06:36:10 | 000,303,015 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\HOSTS
    O1 - Hosts: 127.0.0.1 activate.adobe.com
    O1 - Hosts: 127.0.0.1 practivate.adobe.com
    O1 - Hosts: 127.0.0.1 ereg.adobe.com
    O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
    O1 - Hosts: 127.0.0.1 wip3.adobe.com
    O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
    O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
    O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
    O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
    O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
    O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
    O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com# Copyright © 1993-1999 Microsoft Corp.
    O1 - Hosts: 127.0.0.1 localhost
    O1 - Hosts: 127.0.0.1 www.007guard.com
    O1 - Hosts: 127.0.0.1 007guard.com
    O1 - Hosts: 127.0.0.1 008i.com
    O1 - Hosts: 127.0.0.1 www.008k.com
    O1 - Hosts: 127.0.0.1 008k.com
    O1 - Hosts: 127.0.0.1 www.00hq.com
    O1 - Hosts: 127.0.0.1 00hq.com
    O1 - Hosts: 127.0.0.1 010402.com
    O1 - Hosts: 127.0.0.1 www.032439.com
    O1 - Hosts: 10443 more lines...
    O2 - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\Snagit 9\SnagitBHO.dll (TechSmith Corporation)
    O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
    O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
    O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\Snagit 9\SnagitIEAddin.dll (TechSmith Corporation)
    O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O3 - HKLM\..\Toolbar: (SYSTRAN Standard 4.0) - {F9443A35-6BFD-11D7-ACD0-00B0D094B576} - C:\Program Files\SYSTRAN\4_0\Standard\IEPlugIn.dll (SYSTRAN)
    O3 - HKU\Noel_ON_C\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKU\Noel_ON_C\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe (Acronis)
    O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software)
    O4 - HKLM..\Run: [BHR4.1] C:\Program Files\Zamaan's Software\Browser Hijack Retaliator 4.1\BHR4.1.exe (Zamaan's Software)
    O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
    O4 - HKLM..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE (CANON INC.)
    O4 - HKLM..\Run: [HydraVisionDesktopManager] C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe (ATI Technologies Inc.)
    O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
    O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
    O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
    O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
    O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
    O4 - HKLM..\Run: [PtiuPbmd] C:\WINDOWS\System32\ptipbm.dll (Promise Technology,Inc.)
    O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
    O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe (Analog Devices, Inc.)
    O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
    O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
    O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
    O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Micro Application\TrueImage\TrueImageMonitor.exe (Acronis)
    O4 - HKLM..\Run: [Tweak UI] C:\WINDOWS\System32\TWEAKUI.CPL (Microsoft Corporation)
    O4 - HKLM..\Run: [Vade Retro Outlook Express] C:\Program Files\Goto Software\Vade Retro\Vaderetro_oe.exe ()
    O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
    O4 - HKU\Noel_ON_C..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe ()
    O4 - HKU\Noel_ON_C..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe (ATI Technologies Inc.)
    O4 - HKU\Noel_ON_C..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe (Nero AG)
    O4 - HKU\Noel_ON_C..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
    O4 - HKU\Noel_ON_C..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
    O4 - HKU\Noel_ON_C..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
    O4 - HKU\Noel_ON_C..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
    O4 - Startup: Error locating startup folders.
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\Noel_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Impression rapide - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Imprimer - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Prévisualiser - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm ()
    O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll (Google Inc.)
    O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
    O9 - Extra 'Tools' menuitem : Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
    O9 - Extra Button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} - C:\Program Files\ATI Multimedia\tv\EXPLBAR.DLL (ATI Technologies Inc.)
    O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm ()
    O9 - Extra 'Tools' menuitem : @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm ()
    O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/e/4/9/e494c802-d... (Office Genuine Advantage Validation Tool)
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/8/b/d/8bd77752-5... (Windows Genuine Advantage Validation Tool)
    O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} http://office.microsoft.com/officeupdate/content/opuc2.... (Office Update Installation Engine)
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls... (WUWebControl Class)
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Co... (MUWebControl Class)
    O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} http://a840.g.akamai.net/7/840/537/2005111401/housecall... (HouseCall Control)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} http://acs.pandasoftware.com/activescan/as5free/asinst.... (ActiveScan Installer Class)
    O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_11-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/fla... (Shockwave Flash Object)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.)
    O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
    O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\widimg {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\BTXPPanel.dll (Broadcom Corporation)
    O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
    O20 - AppInit_DLLs: (CLKERN.DLL) - C:\WINDOWS\System32\CLKERN.DLL (MicroBest Corporation)
    O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
    O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
    O20 - Winlogon\Notify\LBTServ: DllName - C:\Program Files\Fichiers communs\Logitech\Bluetooth\lbtserv.dll - C:\Program Files\Fichiers communs\Logitech\Bluetooth\lbtserv.dll File not found
    O24 - Desktop WallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O24 - Desktop BackupWallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
    O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
    O30 - LSA: Authentication Packages - (relog_ap) - C:\WINDOWS\System32\relog_ap.dll (Acronis)
    O30 - LSA: Authentication Packages - (CAL_MACHINE Se) - File not found
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2008/02/25 07:22:04 | 000,000,222 | ---- | M] () - C:\auto1.bat -- [ NTFS ]
    O32 - AutoRun File - [2005/06/15 15:40:32 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
    O32 - AutoRun File - [2005/05/19 12:57:30 | 000,000,000 | -H-- | M] () - F:\AUTOEXEC.BAT -- [ NTFS ]
    O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell - "" = AutoRun
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell\AutoRun\command - "" =
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell\AutoRun\command - "default" =
    O33 - MountPoints2\{5200bba6-ddc3-11d9-b8c4-806d6172696f}\Shell\PlayWithPowerDVD\Command - "" = C:\Program Files\CyberLink\PowerDVD\PowerDVD.exe -- [2003/09/05 10:25:00 | 000,409,600 | ---- | M] (CyberLink Corp.)
    O34 - HKLM BootExecute: (PDBoot.exe) - C:\WINDOWS\System32\PDBoot.exe (Raxco Software, Inc.)
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*

    NetSvcs: 6to4 - File not found
    NetSvcs: Ias - C:\WINDOWS\system32\ias [2005/08/21 08:03:13 | 000,000,000 | ---D | M]
    NetSvcs: Iprip - File not found
    NetSvcs: Irmon - File not found
    NetSvcs: NWCWorkstation - File not found
    NetSvcs: Nwsapagent - File not found
    NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
    NetSvcs: WmdmPmSp - File not found

    MsConfig - StartUpReg: UniblueRegistryBooster - hkey= - key= - C:\Program Files\Uniblue\RegistryBooster\launcher.exe File not found
    MsConfig - State: "system.ini" - 0
    MsConfig - State: "win.ini" - 0
    MsConfig - State: "bootini" - 0
    MsConfig - State: "services" - 0
    MsConfig - State: "startup" - 0

    SafeBootMin: Base - Driver Group
    SafeBootMin: Boot Bus Extender - Driver Group
    SafeBootMin: Boot file system - Driver Group
    SafeBootMin: File system - Driver Group
    SafeBootMin: Filter - Driver Group
    SafeBootMin: PCI Configuration - Driver Group
    SafeBootMin: PNP Filter - Driver Group
    SafeBootMin: Primary disk - Driver Group
    SafeBootMin: SCSI Class - Driver Group
    SafeBootMin: sermouse.sys - Driver
    SafeBootMin: System Bus Extender - Driver Group
    SafeBootMin: vds - Service
    SafeBootMin: vga.sys - Driver
    SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
    SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
    SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
    SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
    SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
    SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
    SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
    SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
    SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
    SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
    SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
    SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
    SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
    SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
    SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

    SafeBootNet: Base - Driver Group
    SafeBootNet: Boot Bus Extender - Driver Group
    SafeBootNet: Boot file system - Driver Group
    SafeBootNet: File system - Driver Group
    SafeBootNet: Filter - Driver Group
    SafeBootNet: NDIS Wrapper - Driver Group
    SafeBootNet: NetBIOSGroup - Driver Group
    SafeBootNet: NetDDEGroup - Driver Group
    SafeBootNet: Network - Driver Group
    SafeBootNet: NetworkProvider - Driver Group
    SafeBootNet: PCI Configuration - Driver Group
    SafeBootNet: PNP Filter - Driver Group
    SafeBootNet: PNP_TDI - Driver Group
    SafeBootNet: Primary disk - Driver Group
    SafeBootNet: SCSI Class - Driver Group
    SafeBootNet: sermouse.sys - Driver
    SafeBootNet: Streams Drivers - Driver Group
    SafeBootNet: System Bus Extender - Driver Group
    SafeBootNet: TDI - Driver Group
    SafeBootNet: vga.sys - Driver
    SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
    SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
    SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
    SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
    SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
    SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
    SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
    SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
    SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
    SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
    SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
    SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
    SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
    SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
    SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
    SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
    SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
    SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

    ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
    ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering)
    ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
    ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
    ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
    ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906)
    ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
    ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java
    ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
    ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
    ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
    ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée
    ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:o E /CALLER:WINNT /user /install
    ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
    ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
    ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
    ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
    ActiveX: {47518319-C667-2F4F-048A-CB73DCABAD93} - Browser Customizations
    ActiveX: {476DCC72-03F0-4E80-A82B-75F5CDDA46FE} - Microsoft Windows Media Player
    ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation
    ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7
    ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
    ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
    ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
    ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
    ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
    ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
    ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
    ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Dossiers Web
    ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
    ActiveX: {8918D078-6F80-BB6D-6371-C3FBB6228CBB} - Browser Customizations
    ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
    ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
    ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
    ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
    ActiveX: {9A394342-4A68-4EBA-85A6-55B559F4E700} - .NET Framework
    ActiveX: {B508B3F1-A24A-32C0-B310-85786919EF28} - .NET Framework
    ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
    ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
    ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
    ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches
    ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
    ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
    ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
    ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
    ActiveX: {F196AC50-7C95-42E1-9947-BDAB18BF3C8C} - .NET Framework
    ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
    ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
    ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig
    ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
    ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
    ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

    Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
    Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
    Drivers32: msacm.lameacm - C:\WINDOWS\System32\LameACM.acm (http://www.mp3dev.org/)
    Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
    Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
    Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
    Drivers32: VIDC.CFHD - C:\WINDOWS\System32\cfhd.dll (CineForm Inc.)
    Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
    Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
    Drivers32: vidc.dvsd - C:\WINDOWS\System32\pdvcodec.dll (Matsushita Electric Industrial Co., Ltd.)
    Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
    Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
    Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
    Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
    Drivers32: VIDC.MJPG - C:\WINDOWS\System32\pvmjpg21.dll (Pegasus Imaging Corporation)
    Drivers32: VIDC.MP42 - C:\WINDOWS\System32\mpg4c32.dll (Microsoft Corporation)
    Drivers32: VIDC.MPG4 - C:\WINDOWS\System32\mpg4c32.dll (Microsoft Corporation)
    Drivers32: VIDC.PIM1 - C:\WINDOWS\System32\pclepim1.dll (Pinnacle Systems)
    Drivers32: vidc.ptev - C:\WINDOWS\System32\ptevideo.dll ()
    Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
    Drivers32: VIDC.YU12 - C:\WINDOWS\System32\atiyuv12.dll ()
    Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)

    ========== Files/Folders - Created Within 30 Days ==========

    [2011/11/05 19:45:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Application Data\Uniblue
    [2010/11/05 19:11:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Local Settings\Application Data\PCHealth
    [2010/06/28 11:38:44 | 000,000,000 | ---D | C] -- C:\_OTL
    [2010/06/24 18:37:42 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Noel\Recent
    [2010/06/22 12:46:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Mes documents\Fonds d'écran
    [2010/06/22 05:45:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Mes documents\Argentera Rando
    [2010/06/22 04:59:24 | 000,000,000 | ---D | C] -- C:\Program Files\GT2002
    [2010/06/22 04:48:04 | 000,000,000 | ---D | C] -- C:\Program Files\Cracklock
    [2010/06/18 07:17:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Local Settings\Application Data\Conduit
    [2010/06/14 02:51:46 | 000,000,000 | -HSD | C] -- C:\Config.Msi
    [2010/06/11 19:33:39 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
    [2008/12/22 05:02:44 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Noel\Application Data\pcouffin.sys
    [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    ========== Files - Modified Within 30 Days ==========

    [2011/11/05 19:05:22 | 000,000,430 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{362E2F5D-27EF-45CB-A2B3-8BA53CB7ACA7}.job
    [2010/07/03 12:57:55 | 014,417,920 | ---- | M] () -- C:\Documents and Settings\Noel\ntuser.dat
    [2010/07/03 07:05:57 | 000,413,696 | ---- | M] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT
    [2010/07/03 07:05:57 | 000,413,696 | ---- | M] () -- C:\Documents and Settings\LocalService\NTUSER.DAT
    [2010/07/03 07:05:54 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2010/07/03 07:02:00 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
    [2010/07/03 07:01:36 | 2146,750,464 | -HS- | M] () -- C:\hiberfil.sys
    [2010/07/01 14:30:16 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
    [2010/06/24 20:10:33 | 000,000,284 | -HS- | M] () -- C:\Documents and Settings\Noel\ntuser.ini
    [2010/06/24 20:00:03 | 000,000,506 | ---- | M] () -- C:\WINDOWS\tasks\Maintenance en 1 clic.job
    [2010/06/24 19:53:01 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
    [2010/06/24 18:38:38 | 000,003,472 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100625_003834.reg
    [2010/06/24 18:37:28 | 000,000,717 | ---- | M] () -- C:\Documents and Settings\Noel\Bureau\CCleaner.lnk
    [2010/06/24 18:30:24 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
    [2010/06/24 18:30:22 | 000,040,960 | ---- | M] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2010/06/24 17:53:01 | 000,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
    [2010/06/24 07:58:38 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
    [2010/06/23 03:25:05 | 000,967,166 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
    [2010/06/23 03:25:05 | 000,826,134 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
    [2010/06/23 03:25:05 | 000,271,352 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
    [2010/06/23 03:25:05 | 000,218,638 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
    [2010/06/23 03:25:05 | 000,004,982 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
    [2010/06/22 08:06:37 | 000,000,628 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 3.rt2
    [2010/06/22 08:06:37 | 000,000,383 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 2.rt2
    [2010/06/22 08:06:37 | 000,000,365 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 4.rt2
    [2010/06/22 06:54:35 | 000,000,275 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.eta
    [2010/06/22 05:47:03 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.BMP
    [2010/06/15 18:28:36 | 000,013,616 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100616_002833.reg
    [2010/06/15 12:13:59 | 000,142,616 | ---- | M] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
    [2010/06/15 12:12:49 | 000,425,408 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2010/06/14 09:40:41 | 000,000,332 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\CheckMyTorrentIP.torrent
    [2010/06/14 02:16:32 | 000,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
    [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    ========== Files Created - No Company Name ==========

    [2010/06/28 07:57:11 | 2146,750,464 | -HS- | C] () -- C:\hiberfil.sys
    [2010/06/24 18:38:35 | 000,003,472 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100625_003834.reg
    [2010/06/22 08:06:37 | 000,000,628 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 3.rt2
    [2010/06/22 08:06:37 | 000,000,383 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 2.rt2
    [2010/06/22 08:06:37 | 000,000,365 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 4.rt2
    [2010/06/22 06:22:02 | 000,000,275 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.eta
    [2010/06/22 05:47:03 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.BMP
    [2010/06/18 05:24:30 | 014,417,920 | ---- | C] () -- C:\Documents and Settings\Noel\ntuser.dat
    [2010/06/15 18:28:34 | 000,013,616 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100616_002833.reg
    [2010/06/14 09:40:39 | 000,000,332 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\CheckMyTorrentIP.torrent
    [2009/10/24 02:20:34 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\PCIVP.SYS
    [2009/10/23 18:28:04 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
    [2009/10/21 05:22:00 | 000,298,752 | ---- | C] () -- C:\WINDOWS\System32\drivers\yk51x86.sys
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\sysprs7.dll
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth2.dll
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth1.dll
    [2009/08/01 03:13:14 | 000,000,205 | ---- | C] () -- C:\WINDOWS\System32\lsprst7.dll
    [2009/08/01 03:13:14 | 000,000,073 | ---- | C] () -- C:\WINDOWS\System32\ssprs.dll
    [2009/02/13 19:53:55 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\Days5.ini
    [2009/02/13 18:04:48 | 000,000,028 | ---- | C] () -- C:\Documents and Settings\Noel\Adobe Encore DVD_VUI.pref
    [2009/01/16 10:14:29 | 000,000,395 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
    [2008/12/22 05:03:06 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.log
    [2008/12/22 05:02:44 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\inst.exe
    [2008/12/22 05:02:44 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.cat
    [2008/12/22 05:02:44 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.inf
    [2008/12/19 12:00:13 | 000,001,028 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\WavCodec.wff
    [2008/07/17 18:25:43 | 000,034,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\mbamcatchme.sys
    [2008/07/15 18:41:59 | 000,000,823 | ---- | C] () -- C:\WINDOWS\tsc.ini
    [2008/07/15 18:41:58 | 000,071,749 | ---- | C] () -- C:\WINDOWS\hcextoutput.dll
    [2008/07/15 18:40:57 | 000,000,170 | ---- | C] () -- C:\WINDOWS\GetServer.ini
    [2008/07/15 02:46:48 | 001,776,795 | -HS- | C] () -- C:\WINDOWS\System32\gpekllfs.ini
    [2008/06/20 18:57:51 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
    [2008/04/26 02:52:21 | 000,471,552 | ---- | C] () -- C:\WINDOWS\System32\Smab.dll
    [2008/04/26 02:52:21 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
    [2008/02/19 09:20:43 | 000,001,028 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\AVIEncoder.wff
    [2008/02/04 13:23:10 | 000,693,792 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
    [2008/01/29 04:31:29 | 000,004,238 | ---- | C] () -- C:\Documents and Settings\Noel\UserCustomPreset_Adobe Premiere Pro 2.0.vpr
    [2007/11/09 10:44:52 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\$_hpcst$.hpc
    [2007/11/09 09:14:12 | 000,003,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\BANTExt.sys
    [2007/07/06 18:08:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\videodeLuxe.INI
    [2007/07/06 17:42:26 | 000,006,430 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
    [2007/05/03 16:01:35 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
    [2007/05/03 10:35:01 | 000,000,029 | ---- | C] () -- C:\WINDOWS\viewer.ini
    [2007/05/03 10:26:11 | 000,000,046 | ---- | C] () -- C:\WINDOWS\RmFile.ini
    [2007/05/03 10:25:56 | 000,000,029 | ---- | C] () -- C:\WINDOWS\System32\MprExe.Ini
    [2007/05/03 10:25:26 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\InkPanel.Dll
    [2007/05/03 10:25:26 | 000,000,224 | ---- | C] () -- C:\WINDOWS\System32\ScrSav.ini
    [2007/05/03 10:25:25 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\Wrting32.Dll
    [2007/05/03 10:21:21 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\Funckey.dll
    [2007/05/03 10:21:20 | 000,003,117 | ---- | C] () -- C:\WINDOWS\aiptbl.ini
    [2006/11/15 05:36:58 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\imhost8.dll
    [2006/06/28 09:43:07 | 000,000,056 | ---- | C] () -- C:\Documents and Settings\Noel\intlname.ols
    [2006/06/02 03:50:56 | 000,002,410 | ---- | C] () -- C:\WINDOWS\CDPlayer.ini
    [2006/06/01 12:22:29 | 000,180,295 | ---- | C] () -- C:\WINDOWS\System32\TurboDLL.dll
    [2006/06/01 11:50:56 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvLowrance.dll
    [2006/06/01 11:50:56 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvPyx.dll
    [2006/06/01 11:50:56 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvAvmap.dll
    [2006/06/01 11:50:56 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSuu.dll
    [2006/06/01 11:50:44 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\Polyclip.dll
    [2006/06/01 11:50:44 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\RCalcul.dll
    [2006/05/20 05:04:31 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Noel\AdobeWeb.log
    [2006/03/09 06:40:20 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\Rey_SubClasser.dll
    [2006/02/10 10:31:49 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
    [2005/12/12 03:48:10 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\ZPORT4AS.dll
    [2005/11/25 04:40:37 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
    [2005/11/10 11:00:09 | 000,000,065 | ---- | C] () -- C:\Documents and Settings\Noel\default.pls
    [2005/11/05 05:50:00 | 000,240,640 | ---- | C] () -- C:\WINDOWS\System32\NMOCOD.DLL
    [2005/10/22 04:22:07 | 000,000,365 | ---- | C] () -- C:\WINDOWS\PSADMIN.INI
    [2005/09/07 06:00:50 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\BiMResNT.dll
    [2005/09/07 06:00:50 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\BiCResNT.dll
    [2005/08/25 09:21:26 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
    [2005/08/25 09:21:26 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
    [2005/08/25 09:21:26 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
    [2005/07/30 00:22:58 | 000,045,634 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\bhrslog.txt
    [2005/07/26 05:23:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
    [2005/07/26 05:20:35 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS6d.DLL
    [2005/07/12 04:11:14 | 000,000,080 | ---- | C] () -- C:\WINDOWS\navigma.INI
    [2005/07/11 19:40:30 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\adistres.dll
    [2005/07/08 19:46:29 | 000,000,017 | ---- | C] () -- C:\WINDOWS\MovingPicture.ini
    [2005/07/08 17:30:33 | 000,335,955 | ---- | C] () -- C:\WINDOWS\System32\s12lo.dll
    [2005/07/08 17:30:33 | 000,155,715 | ---- | C] () -- C:\WINDOWS\System32\tn23.dll
    [2005/07/08 17:30:33 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\gbwx.dll
    [2005/07/08 17:30:33 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\vqs85.DLL
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc3.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc2.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc1.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc0.dll
    [2005/07/08 17:30:30 | 000,023,040 | ---- | C] () -- C:\WINDOWS\System32\auth.dll
    [2005/07/06 18:06:17 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\ptevideo.dll
    [2005/07/04 12:58:49 | 000,040,960 | ---- | C] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2005/06/26 17:42:10 | 000,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI
    [2005/06/25 06:32:54 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\fusioncache.dat
    [2005/06/25 05:38:40 | 000,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
    [2005/06/25 04:55:35 | 000,001,293 | ---- | C] () -- C:\WINDOWS\photoimpression.ini
    [2005/06/25 04:52:15 | 000,096,768 | ---- | C] () -- C:\WINDOWS\SlantAdj.dll
    [2005/06/25 04:52:15 | 000,001,571 | ---- | C] () -- C:\WINDOWS\Faxcpp1.ini
    [2005/06/25 04:52:15 | 000,000,422 | ---- | C] () -- C:\WINDOWS\Faxcpp.ini
    [2005/06/25 04:52:15 | 000,000,072 | ---- | C] () -- C:\WINDOWS\System32\epDPE.ini
    [2005/06/16 11:21:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ATIMMC.INI
    [2005/06/16 10:35:58 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
    [2005/06/16 10:35:37 | 000,000,295 | ---- | C] () -- C:\WINDOWS\cmmixer.ini
    [2005/06/16 10:32:31 | 000,000,135 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
    [2005/06/16 10:32:30 | 000,004,238 | ---- | C] () -- C:\WINDOWS\mixerdef.ini
    [2005/06/16 10:29:07 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
    [2005/06/16 09:06:55 | 000,262,144 | ---- | C] () -- C:\WINDOWS\system32\config\systemprofile\ntuser.dat
    [2005/06/16 09:06:55 | 000,008,192 | -H-- | C] () -- C:\WINDOWS\system32\config\systemprofile\ntuser.dat.LOG
    [2005/06/16 07:37:38 | 000,003,627 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
    [2005/06/16 07:37:37 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
    [2005/06/15 15:49:10 | 000,012,288 | -H-- | C] () -- C:\Documents and Settings\Noel\ntuser.dat.LOG
    [2005/06/15 15:49:10 | 000,000,284 | -HS- | C] () -- C:\Documents and Settings\Noel\ntuser.ini
    [2005/06/15 15:44:30 | 000,413,696 | ---- | C] () -- C:\Documents and Settings\LocalService\NTUSER.DAT
    [2005/06/15 15:44:30 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\LocalService\ntuser.dat.LOG
    [2005/06/15 15:44:30 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\LocalService\ntuser.ini
    [2005/06/15 15:44:24 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\NetworkService\ntuser.ini
    [2005/06/15 15:44:23 | 000,413,696 | ---- | C] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT
    [2005/06/15 15:44:23 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\NetworkService\ntuser.dat.LOG
    [2005/04/28 00:22:34 | 000,831,488 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
    [2005/04/28 00:22:34 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
    [2004/10/28 13:26:42 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
    [2004/06/06 06:53:42 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
    [2004/06/05 06:56:16 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
    [2004/03/18 02:44:29 | 001,663,068 | ---- | C] () -- C:\WINDOWS\System32\libmmd.dll
    [2003/12/09 09:09:26 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\Nmea.dll
    [2003/11/27 09:51:18 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\Ogc.dll
    [2003/11/27 09:50:26 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\ConversApi.dll
    [2003/11/10 08:07:38 | 000,066,560 | ---- | C] () -- C:\WINDOWS\System32\atiyuv12.dll
    [2003/11/10 08:07:38 | 000,013,601 | ---- | C] () -- C:\WINDOWS\System32\vctest.ini
    [2003/11/10 08:07:26 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
    [2003/10/03 05:18:40 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSilva.dll
    [2003/10/03 05:18:32 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSena.dll
    [2003/10/03 05:18:26 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvMlr.dll
    [2003/10/03 05:18:18 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvMagellan.dll
    [2003/10/03 05:18:12 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvGarmin.dll
    [2003/09/15 09:59:04 | 000,022,183 | ---- | C] () -- C:\WINDOWS\System32\drivers\btserial.sys
    [2003/04/01 04:58:02 | 000,005,260 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
    [2002/11/25 09:11:22 | 000,688,128 | ---- | C] () -- C:\WINDOWS\System32\BCGCB474.dll
    [2002/11/01 10:17:50 | 000,000,256 | ---- | C] () -- C:\WINDOWS\aucfg.ini
    [2002/10/15 18:54:04 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
    [2002/07/04 09:05:34 | 000,000,269 | ---- | C] () -- C:\WINDOWS\tmupdate.ini
    [2002/05/15 18:29:04 | 000,000,607 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest
    [2002/02/27 11:28:16 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\MASE32.DLL
    [2002/02/27 11:28:16 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\MASD32.DLL
    [2002/02/27 11:28:14 | 000,196,096 | ---- | C] () -- C:\WINDOWS\System32\MACD32.DLL
    [2002/02/27 11:28:14 | 000,136,192 | ---- | C] () -- C:\WINDOWS\System32\MAMC32.DLL
    [2002/02/27 11:28:14 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\MA32.DLL
    [2002/01/13 11:12:02 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\CP30FW.DLL
    [2001/12/19 03:07:50 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\BCGCBResFRA.dll
    [2001/12/14 07:34:46 | 000,164,864 | ---- | C] () -- C:\WINDOWS\patchw32.dll
    [20
    5 Juillet 2010 00:02:59

    Re bonsoir

    Apparemment il n'a pas tout pris voici la suite

    [2001/12/14 07:34:46 | 000,164,864 | ---- | C] () -- C:\WINDOWS\patchw32.dll
    [2001/11/23 13:18:00 | 000,000,597 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest
    [2001/11/14 08:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
    [2000/11/29 04:50:40 | 000,471,040 | ---- | C] () -- C:\WINDOWS\System32\QTExporter.dll
    [1999/07/23 07:46:48 | 000,000,116 | ---- | C] () -- C:\WINDOWS\AuHCcup1.ini
    [1999/07/23 04:53:20 | 000,129,536 | ---- | C] () -- C:\WINDOWS\AuHCcup1.dll
    [1998/08/14 06:44:46 | 000,044,544 | ---- | C] () -- C:\WINDOWS\System32\GIF89.DLL

    ========== LOP Check ==========

    [2006/03/03 13:01:00 | 000,000,000 | ---D | M] -- C:\WINDOWS\system32\config\systemprofile\Application Data\Zeon
    [2005/07/13 03:08:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\ACD Systems
    [2009/12/26 06:51:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Azureus
    [2005/07/26 05:28:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\CD-LabelPrint
    [2006/04/05 18:00:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\EPSON
    [2007/08/10 12:41:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Green Parrots Software
    [2005/07/11 19:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\InterTrust
    [2009/10/16 09:53:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\KC Softwares
    [2006/10/13 20:03:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\LEAPS
    [2008/01/09 10:09:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\MAGIX
    [2006/09/30 03:49:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Micro Application
    [2008/02/19 09:18:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\NCH Swift Sound
    [2008/01/09 13:02:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Opera
    [2008/02/26 09:36:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Participatory Culture Foundation
    [2006/08/28 09:33:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Pegasys Inc
    [2006/04/05 09:00:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Quark
    [2009/01/16 10:26:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\ScanSoft
    [2008/05/26 06:33:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\TaoUSign
    [2007/06/05 03:38:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\TuneUp Software
    [2010/06/18 07:21:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Uniblue
    [2001/12/31 19:50:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Usenet.nl
    [2009/02/13 18:09:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\uTorrent
    [2005/07/07 05:22:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\VadeRetro
    [2009/02/09 14:02:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Vso
    [2005/07/08 10:50:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\X10 Commander
    [2005/12/24 12:49:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\XnView
    [2005/07/11 19:00:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\XnView Deluxe
    [2006/04/04 11:02:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Zeon
    [2010/06/24 20:00:03 | 000,000,506 | ---- | M] () -- C:\WINDOWS\Tasks\Maintenance en 1 clic.job
    [2010/06/24 07:58:38 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
    [2011/11/05 19:05:22 | 000,000,430 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{362E2F5D-27EF-45CB-A2B3-8BA53CB7ACA7}.job

    ========== Purity Check ==========



    ========== Custom Scans ==========


    Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.

    Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.exe

    < %SYSTEMDRIVE%\*.exe >
    [2001/05/24 07:59:30 | 000,162,304 | ---- | M] () -- C:\UNWISE.EXE


    < MD5 for: AEC.SYS >
    [2004/08/05 08:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:aec.sys
    [2008/10/09 13:36:36 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:aec.sys
    [2008/10/09 13:36:36 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:aec.sys
    [2006/02/14 20:22:26 | 000,142,464 | ---- | M] (Microsoft Corporation) MD5=1EE7B434BA961EF845DE136224C30FEC -- C:\Documents and Settings\Noel\Mes documents\My Drivers\MEDIA\wdmaudio.inf\aec.sys
    [2006/02/14 20:30:07 | 000,142,464 | ---- | M] (Microsoft Corporation) MD5=1EE7B434BA961EF845DE136224C30FEC -- C:\WINDOWS\$hf_mig$\KB900485\SP2QFE\aec.sys
    [2006/02/14 20:22:26 | 000,142,464 | ---- | M] (Microsoft Corporation) MD5=1EE7B434BA961EF845DE136224C30FEC -- C:\WINDOWS\$NtServicePackUninstall$\aec.sys
    [2004/08/05 08:00:00 | 000,142,464 | ---- | M] (Microsoft Corporation) MD5=841F385C6CFAF66B58FBD898722BB4F0 -- C:\WINDOWS\$NtUninstallKB900485$\aec.sys
    [2008/04/13 12:39:23 | 000,142,592 | ---- | M] (Microsoft Corporation) MD5=8BED39E3C35D6A489438B8141717A557 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Suppresseur d'écho acoustique (Noyau Microsoft)\aec.sys
    [2008/04/13 12:39:23 | 000,142,592 | ---- | M] (Microsoft Corporation) MD5=8BED39E3C35D6A489438B8141717A557 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Suppresseur d'écho acoustique (Noyau Microsoft)\aec.sys
    [2008/04/13 12:39:23 | 000,142,592 | ---- | M] (Microsoft Corporation) MD5=8BED39E3C35D6A489438B8141717A557 -- C:\WINDOWS\ServicePackFiles\i386\aec.sys
    [2008/04/13 12:39:23 | 000,142,592 | ---- | M] (Microsoft Corporation) MD5=8BED39E3C35D6A489438B8141717A557 -- C:\WINDOWS\system32\drivers\aec.sys

    < MD5 for: AGP440.SYS >
    [2004/08/05 08:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
    [2008/10/09 13:36:36 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
    [2008/10/09 13:36:36 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
    [2008/04/13 14:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Intel(R) 82865G PE P GV 82848P Processor to AGP Controller - 2571\agp440.sys
    [2008/04/13 14:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Intel(R) 82875P Processor to AGP Controller - 2579\agp440.sys
    [2008/04/13 14:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Intel(R) 82865G PE P GV 82848P Processor to AGP Controller - 2571\agp440.sys
    [2008/04/13 14:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Intel(R) 82875P Processor to AGP Controller - 2579\agp440.sys
    [2008/04/13 14:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
    [2008/04/13 14:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
    [2004/08/03 18:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\Documents and Settings\Noel\Mes documents\My Drivers\System\865.inf\agp440.sys
    [2004/08/03 18:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\$NtServicePackUninstall$\agp440.sys

    < MD5 for: ATAPI.SYS >
    [2004/08/05 08:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
    [2008/10/09 13:36:36 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
    [2008/10/09 13:36:36 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Canal IDE principal#1\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Canal IDE principal\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Canal IDE secondaire#1\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Canal IDE secondaire\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Intel(R) 82801EB Ultra ATA Storage Controllers#1\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Intel(R) 82801EB Ultra ATA Storage Controllers\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Canal IDE principal#1\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Canal IDE principal\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Canal IDE secondaire#1\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Canal IDE secondaire\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Intel(R) 82801EB Ultra ATA Storage Controllers#1\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Intel(R) 82801EB Ultra ATA Storage Controllers\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0021\DriverFiles\i386\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0029\DriverFiles\i386\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0047\DriverFiles\i386\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0048\DriverFiles\i386\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0049\DriverFiles\i386\atapi.sys
    [2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0050\DriverFiles\i386\atapi.sys
    [2004/08/03 17:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\hdc\mshdc.inf\atapi.sys
    [2004/08/03 17:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys

    < MD5 for: CDROM.SYS >
    [2004/08/05 08:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
    [2008/10/09 13:36:36 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
    [2008/10/09 13:36:36 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de CD-ROM#1\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de CD-ROM#10\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de CD-ROM#11\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de CD-ROM#2\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de CD-ROM#3\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de CD-ROM#4\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de CD-ROM#5\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de CD-ROM#6\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de CD-ROM#7\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de CD-ROM#8\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de CD-ROM#9\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de CD-ROM\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de CD-ROM#1\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de CD-ROM#10\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de CD-ROM#2\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de CD-ROM#3\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de CD-ROM#4\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de CD-ROM#5\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de CD-ROM#6\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de CD-ROM#7\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de CD-ROM#8\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de CD-ROM#9\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de CD-ROM\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
    [2008/04/13 14:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
    [2004/08/05 08:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

    < MD5 for: DISK.SYS >
    [2004/08/05 08:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:D isk.sys
    [2008/10/09 13:36:36 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:D isk.sys
    [2008/10/09 13:36:36 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:D isk.sys
    [2004/08/05 08:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=00CA44E4534865F8A3B64F7C0984BFF0 -- C:\WINDOWS\$NtServicePackUninstall$\disk.sys
    [2008/04/13 14:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de disque#1\disk.sys
    [2008/04/13 14:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de disque#2\disk.sys
    [2008/04/13 14:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de disque#3\disk.sys
    [2008/04/13 14:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de disque#4\disk.sys
    [2008/04/13 14:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Lecteur de disque\disk.sys
    [2008/04/13 14:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de disque#1\disk.sys
    [2008/04/13 14:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de disque#2\disk.sys
    [2008/04/13 14:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de disque#3\disk.sys
    [2008/04/13 14:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de disque#4\disk.sys
    [2008/04/13 14:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Lecteur de disque\disk.sys
    [2008/04/13 14:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\ServicePackFiles\i386\disk.sys
    [2008/04/13 14:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\system32\drivers\disk.sys

    < MD5 for: EVENTLOG.DLL >
    [2004/08/05 08:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=21E83876A6287F15538EF187D286FE11 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
    [2008/04/13 22:33:24 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
    [2008/04/13 22:33:24 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll

    < MD5 for: MOUNTMGR.SYS >
    [2004/08/05 08:00:00 | 000,042,240 | ---- | M] (Microsoft Corporation) MD5=65653F3B4477F3C63E68A9659F85EE2E -- C:\WINDOWS\$NtServicePackUninstall$\mountmgr.sys
    [2008/04/13 14:39:46 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=A80B9A0BAD1B73637DBCBBA7DF72D3FD -- C:\WINDOWS\ServicePackFiles\i386\mountmgr.sys
    [2008/04/13 14:39:46 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=A80B9A0BAD1B73637DBCBBA7DF72D3FD -- C:\WINDOWS\system32\drivers\mountmgr.sys

    < MD5 for: MRXSMB.SYS >
    [2004/08/05 08:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:mrxsmb.sys
    [2008/10/09 13:36:36 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:mrxsmb.sys
    [2008/10/09 13:36:36 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:mrxsmb.sys
    [2006/05/05 05:41:45 | 000,453,120 | ---- | M] (Microsoft Corporation) MD5=025AF03CE51645C62F3B6907A7E2BE5E -- C:\WINDOWS\$NtServicePackUninstall$\mrxsmb.sys
    [2004/08/05 08:00:00 | 000,451,456 | ---- | M] (Microsoft Corporation) MD5=1FD607FC67F7F7C633C3DA65BFC53D18 -- C:\WINDOWS\$NtUninstallKB885250$\mrxsmb.sys
    [2009/12/04 14:22:22 | 000,455,424 | ---- | M] (Microsoft Corporation) MD5=421F7B922CEC5A5F340E7574A98F7B7C -- C:\WINDOWS\$NtUninstallKB980232$\mrxsmb.sys
    [2005/01/19 00:26:52 | 000,451,584 | ---- | M] (Microsoft Corporation) MD5=5DDC9A1B2EB5A4BF010CE8C019A18C1F -- C:\WINDOWS\$NtUninstallKB914389$\mrxsmb.sys
    [2009/12/04 13:25:56 | 000,456,832 | ---- | M] (Microsoft Corporation) MD5=602549D1E8A622E5746991F6C56B21CA -- C:\WINDOWS\$hf_mig$\KB978251\SP3QFE\mrxsmb.sys
    [2008/10/24 07:21:09 | 000,455,296 | ---- | M] (Microsoft Corporation) MD5=60AE98742484E7AB80C3C1450E708148 -- C:\WINDOWS\$NtUninstallKB978251$\mrxsmb.sys
    [2008/04/13 15:17:01 | 000,456,576 | ---- | M] (Microsoft Corporation) MD5=68755F0FF16070178B54674FE5B847B0 -- C:\WINDOWS\$NtUninstallKB957097$\mrxsmb.sys
    [2008/04/13 15:17:01 | 000,456,576 | ---- | M] (Microsoft Corporation) MD5=68755F0FF16070178B54674FE5B847B0 -- C:\WINDOWS\ServicePackFiles\i386\mrxsmb.sys
    [2008/10/24 07:41:11 | 000,455,936 | ---- | M] (Microsoft Corporation) MD5=7170AB42B51954DEF2781A4D1CCE65F4 -- C:\WINDOWS\$hf_mig$\KB957097\SP3QFE\mrxsmb.sys
    [2006/05/05 06:16:39 | 000,454,400 | ---- | M] (Microsoft Corporation) MD5=7412CE77C6FD823F8889B4DF420C680B -- C:\WINDOWS\$hf_mig$\KB914389\SP2QFE\mrxsmb.sys
    [2005/01/18 23:51:57 | 000,451,584 | ---- | M] (Microsoft Corporation) MD5=7B195060FF456FA65954C72C5C1640FF -- C:\WINDOWS\$hf_mig$\KB885250\SP2QFE\mrxsmb.sys
    [2004/10/27 21:15:16 | 000,448,128 | ---- | M] (Microsoft Corporation) MD5=A1BE3CB080DCC0A8270D21E3CA3B7005 -- C:\WINDOWS\$hf_mig$\KB885835\SP2QFE\mrxsmb.sys
    [2010/02/24 07:57:57 | 000,457,216 | ---- | M] (Microsoft Corporation) MD5=D09B9F0B9960DD41E73127B7814C115F -- C:\WINDOWS\$hf_mig$\KB980232\SP3QFE\mrxsmb.sys
    [2010/02/24 09:11:07 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=F3AEFB11ABC521122B67095044169E98 -- C:\WINDOWS\Driver Cache\i386\mrxsmb.sys
    [2010/02/24 09:11:07 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=F3AEFB11ABC521122B67095044169E98 -- C:\WINDOWS\system32\dllcache\mrxsmb.sys
    [2010/02/24 09:11:07 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=F3AEFB11ABC521122B67095044169E98 -- C:\WINDOWS\system32\drivers\mrxsmb.sys

    < MD5 for: NDIS.SYS >
    [2008/04/13 15:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
    [2008/04/13 15:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
    [2004/08/05 08:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

    < MD5 for: NETLOGON.DLL >
    [2008/04/13 22:33:34 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
    [2008/04/13 22:33:34 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll
    [2004/08/05 08:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=FAF07FDCDE76000621A28D19F8E2E8EB -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll

    < MD5 for: RASACD.SYS >
    [2004/08/05 08:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\dllcache\rasacd.sys
    [2004/08/05 08:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\drivers\rasacd.sys

    < MD5 for: SCECLI.DLL >
    [2008/04/13 22:33:40 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
    [2008/04/13 22:33:40 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll
    [2004/08/05 08:00:00 | 000,186,368 | ---- | M] (Microsoft Corporation) MD5=DEC0397F35D027874804EC72979D03CC -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll

    < MD5 for: TERMDD.SYS >
    [2004/08/05 08:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:termdd.sys
    [2008/10/09 13:36:36 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:termdd.sys
    [2008/10/09 13:36:36 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:termdd.sys
    [2008/04/13 22:34:52 | 000,040,840 | ---- | M] (Microsoft Corporation) MD5=88155247177638048422893737429D9E -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Pilote clavier de Terminal Server\termdd.sys
    [2008/04/13 22:34:52 | 000,040,840 | ---- | M] (Microsoft Corporation) MD5=88155247177638048422893737429D9E -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\Pilote souris de Terminal Server\termdd.sys
    [2008/04/13 22:34:52 | 000,040,840 | ---- | M] (Microsoft Corporation) MD5=88155247177638048422893737429D9E -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Pilote clavier de Terminal Server\termdd.sys
    [2008/04/13 22:34:52 | 000,040,840 | ---- | M] (Microsoft Corporation) MD5=88155247177638048422893737429D9E -- C:\Documents and Settings\Noel\Mes documents\My Drivers\Driver Backup 11-27-2009-15346\Pilote souris de Terminal Server\termdd.sys
    [2008/04/13 22:34:52 | 000,040,840 | ---- | M] (Microsoft Corporation) MD5=88155247177638048422893737429D9E -- C:\WINDOWS\ServicePackFiles\i386\termdd.sys
    [2008/04/13 22:34:52 | 000,040,840 | ---- | M] (Microsoft Corporation) MD5=88155247177638048422893737429D9E -- C:\WINDOWS\system32\drivers\termdd.sys
    [2004/08/03 18:55:12 | 000,040,840 | ---- | M] (Microsoft Corporation) MD5=A540A99C281D933F3D69D55E48727F47 -- C:\Documents and Settings\Noel\Mes documents\My Drivers\System\machine.inf\termdd.sys
    [2004/08/03 18:55:12 | 000,040,840 | ---- | M] (Microsoft Corporation) MD5=A540A99C281D933F3D69D55E48727F47 -- C:\WINDOWS\$NtServicePackUninstall$\termdd.sys

    < MD5 for: VIAMRAID.SYS >
    [2008/07/09 15:19:02 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=00046AA2E396EDC2238556E740A8E5AF -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Backup\Driver Backup 1-23-2010-93811\VIA RAID Controller - 3249\viamraid.sys
    [2008/07/09 15:19:02 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=00046AA2E396EDC2238556E740A8E5AF -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\2K\viamraid.sys
    [2008/07/09 15:19:02 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=00046AA2E396EDC2238556E740A8E5AF -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\drvdisk\x86\NT5\viamraid.sys
    [2008/07/09 15:19:02 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=00046AA2E396EDC2238556E740A8E5AF -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\SRV2003\x86\viamraid.sys
    [2008/07/09 15:19:02 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=00046AA2E396EDC2238556E740A8E5AF -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\XP\x86\viamraid.sys
    [2008/07/09 15:19:02 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=00046AA2E396EDC2238556E740A8E5AF -- C:\WINDOWS\system32\drivers\viamraid.sys
    [2008/09/26 11:38:50 | 000,137,880 | ---- | M] (VIA Technologies Inc.,Ltd) MD5=0C619F1C0F1D0150C155C3CD7687DC87 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\drvdisk\VISTA\x86\viamraid.sys
    [2008/09/26 11:38:50 | 000,137,880 | ---- | M] (VIA Technologies Inc.,Ltd) MD5=0C619F1C0F1D0150C155C3CD7687DC87 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\VISTA\x86\viamraid.sys
    [2007/12/19 14:02:18 | 000,117,872 | ---- | M] (VIA Technologies inc,.ltd) MD5=923C74DE7CB0B4E060B8748968F9A620 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\drvdisk\x86\NT4\viamraid.sys
    [2007/12/19 14:02:18 | 000,117,872 | ---- | M] (VIA Technologies inc,.ltd) MD5=923C74DE7CB0B4E060B8748968F9A620 -- C:\Documents and Settings\Noel\Mes documents\DriverGenius\Temp\via_hyperionpro_524a\via_hyperionpro_524a\VRAIDDrv\NT4\viamraid.sys

    < MD5 for: WIN32K.SYS >
    [2008/04/13 21:58:06 | 001,845,760 | ---- | M] (Microsoft Corporation) MD5=0E65F97FF5B39068D1D2186B3D7600C7 -- C:\WINDOWS\$NtUninstallKB954211$\win32k.sys
    [2008/04/13 21:58:06 | 001,845,760 | ---- | M] (Microsoft Corporation) MD5=0E65F97FF5B39068D1D2186B3D7600C7 -- C:\WINDOWS\ServicePackFiles\i386\win32k.sys
    [2010/05/02 04:02:25 | 001,860,480 | ---- | M] (Microsoft Corporation) MD5=117089D35359DD8FE8054DA17AC6EE19 -- C:\WINDOWS\$hf_mig$\KB979559\SP3QFE\win32k.sys
    [2005/10/05 23:12:57 | 001,839,616 | ---- | M] (Microsoft Corporation) MD5=1D0E52F9F1A0B1D0A6A9C1A3B2F4EB34 -- C:\WINDOWS\$hf_mig$\KB896424\SP2QFE\win32k.sys
    [2007/03/08 11:45:59 | 001,844,096 | ---- | M] (Microsoft Corporation) MD5=24B0EF79632899E1831BD052F53A8A24 -- C:\WINDOWS\$hf_mig$\KB925902\SP2QFE\win32k.sys
    [2008/03/20 04:09:22 | 001,845,376 | ---- | M] (Microsoft Corporation) MD5=24FF05FBBC6284F8D9327AF547DBEF30 -- C:\WINDOWS\$NtServicePackUninstall$\win32k.sys
    [2009/08/14 11:58:52 | 001,859,840 | ---- | M] (Microsoft Corporation) MD5=479DD2D56488951B4842B6ECBB770239 -- C:\WINDOWS\$hf_mig$\KB969947\SP3QFE\win32k.sys
    [2005/10/05 23:08:49 | 001,839,616 | ---- | M] (Microsoft Corporation) MD5=692ED535C8ABAA2B38A13025DC0ED758 -- C:\WINDOWS\$NtUninstallKB925902$\win32k.sys
    [2004/08/05 08:00:00 | 001,836,032 | ---- | M] (Microsoft Corporation) MD5=6B8D8840CC7D6C822FD159613D61EBA3 -- C:\WINDOWS\$NtUninstallKB890859$\win32k.sys
    [2009/02/09 10:05:54 | 001,846,912 | ---- | M] (Microsoft Corporation) MD5=6D791CDCE0B1551D95A81D69E7352EF5 -- C:\WINDOWS\$NtUninstallKB968537$\win32k.sys
    [2008/03/20 03:56:50 | 001,846,016 | ---- | M] (Microsoft Corporation) MD5=76DB0C82A525036299B3E195479B4DF1 -- C:\WINDOWS\$hf_mig$\KB941693\SP2QFE\win32k.sys
    [2005/03/02 14:13:08 | 001,836,416 | ---- | M] (Microsoft Corporation) MD5=7EC7E0B304C1D7F73E9B6C4977952220 -- C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\win32k.sys
    [2009/08/14 11:13:59 | 001,850,752 | ---- | M] (Microsoft Corporation) MD5=8441F8A5DC42BD5F2BEAA95297EE0E10 -- C:\WINDOWS\$NtUninstallKB979559$\win32k.sys
    [2005/03/02 14:07:53 | 001,836,416 | ---- | M] (Microsoft Corporation) MD5=8B39DEFB4843B15A3044FFA23332B299 -- C:\WINDOWS\$NtUninstallKB896424$\win32k.sys
    [2008/09/15 11:26:07 | 001,846,528 | ---- | M] (Microsoft Corporation) MD5=9F1A0FB5BD8ACECC6CB0A9130BD8F3C3 -- C:\WINDOWS\$NtUninstallKB958690$\win32k.sys
    [2009/02/09 09:59:50 | 001,847,680 | ---- | M] (Microsoft Corporation) MD5=A06AF7F6B26F2BDEFB0961D4641D6453 -- C:\WINDOWS\$hf_mig$\KB958690\SP3QFE\win32k.sys
    [2009/04/19 15:42:34 | 001,847,936 | ---- | M] (Microsoft Corporation) MD5=A4CB910DA61C2AB50D1D4E15CDA48D32 -- C:\WINDOWS\$hf_mig$\KB968537\SP3QFE\win32k.sys
    [2007/03/08 11:33:58 | 001,843,712 | ---- | M] (Microsoft Corporation) MD5=A8B9B1911F1D52DB8D24C4AC37CEC0E3 -- C:\WINDOWS\$NtUninstallKB941693$\win32k.sys
    [2008/09/15 11:20:39 | 001,847,040 | ---- | M] (Microsoft Corporation) MD5=AC230363E6F0021E3F8336990F348A87 -- C:\WINDOWS\$hf_mig$\KB954211\SP3QFE\win32k.sys
    [2010/05/02 04:08:14 | 001,851,392 | ---- | M] (Microsoft Corporation) MD5=D6491CA433261FCBDC99D27064E5F180 -- C:\WINDOWS\system32\dllcache\win32k.sys
    [2010/05/02 04:08:14 | 001,851,392 | ---- | M] (Microsoft Corporation) MD5=D6491CA433261FCBDC99D27064E5F180 -- C:\WINDOWS\system32\win32k.sys
    [2009/04/19 15:50:30 | 001,847,296 | ---- | M] (Microsoft Corporation) MD5=E2D4E6609DCF4175FCC8BCA489F28D9C -- C:\WINDOWS\$NtUninstallKB969947$\win32k.sys

    < %systemroot%\*. /mp /s >

    < %systemroot%\system32\*.dll /lockedfiles >
    [2008/06/20 13:47:22 | 000,147,968 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dnsapi.dll
    [2010/05/06 06:33:36 | 011,076,096 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\ieframe.dll
    [2010/05/06 06:33:38 | 001,985,536 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\iertutil.dll
    [2008/04/13 22:33:33 | 000,281,600 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\mstask.dll
    [2008/04/13 22:33:36 | 000,067,072 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\ntdsapi.dll
    [2008/06/17 15:02:15 | 008,517,632 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\shell32.dll
    [3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

    < %systemroot%\Tasks\*.job /lockedfiles >

    < %systemroot%\system32\drivers\*.sys /lockedfiles >

    < %systemroot%\System32\config\*.sav >
    [2005/08/21 09:47:05 | 000,524,288 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
    [2005/08/21 07:36:36 | 000,262,144 | ---- | M] () -- C:\WINDOWS\system32\config\security.sav
    [2005/08/21 09:47:05 | 026,214,400 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
    [2005/08/21 09:47:05 | 003,932,160 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

    < CREATERESTOREPOINT >

    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 24 bytes -> C:\WINDOWS:D 6BB024C4410F641
    < End of report >

    Merci d'avance
    5 Juillet 2010 11:49:25

    re
    je me renseigne sur quelque chose qui me semble curieux...

    c'est un pc d'entreprise que tu as racheté?

    edit:
    on reprends au début:
    Citation :

    Suite à une vérification (de routine) de mon ordi avec Malwarebyte. Il a découvert et supprimé 2 malwares présents sur mon ordi :

    poste-moi le rapport stp
    5 Juillet 2010 16:41:02

    Bonjour

    C'est une tour que j'ai fait monter par un intégrateur il y a 3 ans

    J'ai déjà eu ce problème il y a un an. j'avais alors utilisé OPTRACK pour voir si il y avait un mot de passe
    Il y en avait pas ( comme je m'en doutais, j'en n'avais pas mis)
    Suite à cette manip j'ai redémarré mon ordi sans problème et je ne sais toujours pas pourquoi.
    Cette fois ci j'ai refait la même chose, avant d'appeler, mais ça n'a pas marché.

    Je n'ai pas enregistrer de rapport suite au scan de Malwarebite ( il l'a peut être fait automatiquement)
    Il faudra que je fasse une recherche en bootant avec le CD OLTP pour avoir accès à mes disques durs
    et je suis en déplacement jusqu'à jeudi soir donc pas d'accès à l'ordi

    C'est quoi ton idée ?

    Merci
    @+
    5 Juillet 2010 21:43:24

    re
    leon47@IDN a dit :
    C'est quoi ton idée ?

    Que MBAM aurait virer un fichier infectieux sans rétablir une clé importante:

    Citation :
    O30 - LSA: Authentication Packages - (CAL_MACHINE Se) - File not found


    d'où ma demande de voir le rapport de suppression de MBAM. ;) 
    voir:
    http://assiste.forum.free.fr/viewtopic.php?t=26725#O30-...


    Ce n'est qu'une hypothèse, mais franchement, je ne vois rien d'autre qui pourrait bloquer le redémarrage...

    Démarre OTLPENet à partir du CD comme tu viens de le faire.
    Copie le fichier Fix.txt sur ta clé USB.

    http://www.sendspace.com/file/pwruu1




  • Insère ta clé USB avec le fichier Fix.txt dans ton PC
  • Démarre OTLPE
  • Fais un glisser/déposer du fichier Fix.txt dans la boîte de dialogue Custom scans and fixes.



  • Si cela ne marche pas, clique sur Run Fix et une boîte de dialogue s'ouvrira pour te demander de sélectionner un endroit, déroule jusqu'au fichier Fix.txt qui est sur ta clé USB.
  • Puis clique sur Run Fix
  • Laisse l'outil travailler.
  • Poste un nouveau rapport OTL ( Ne coche pas les cases LOP et Purity cette fois )
    6 Juillet 2010 15:49:39

    Bonjour
    Rentré plus vite que prévu
    J'ai pu m'occuper de mon pb

    Ci après
    J'ai retrouvé le rapport MBAM que je te joint

    Malwarebytes' Anti-Malware 1.20
    Version de la base de données: 962
    Windows 5.1.2600 Service Pack 2

    01:26:50 18/07/2008
    mbam-log-7-18-2008 (01-26-36).txt

    Type de recherche: Examen complet (C:\|D:\|)
    Eléments examinés: 178448
    Temps écoulé: 58 minute(s), 43 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 1
    Clé(s) du Registre infectée(s): 10
    Valeur(s) du Registre infectée(s): 1
    Elément(s) de données du Registre infecté(s): 3
    Dossier(s) infecté(s): 9
    Fichier(s) infecté(s): 44

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    C:\WINDOWS\system32\opnkiJay.dll (Trojan.Vundo) -> No action taken.

    Clé(s) du Registre infectée(s):
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b74704d4-828b-4f0b-b87b-e14562f4216d} (Trojan.Vundo) -> No action taken.
    HKEY_CLASSES_ROOT\CLSID\{b74704d4-828b-4f0b-b87b-e14562f4216d} (Trojan.Vundo) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f0fccd91-e695-4651-82d7-029f328a8120} (Trojan.Vundo) -> No action taken.
    HKEY_CLASSES_ROOT\CLSID\{ae8a148f-7319-4bd8-aec4-32373126f3fe} (Trojan.Vundo) -> No action taken.
    HKEY_CLASSES_ROOT\CLSID\{b157ee05-4f6c-4c00-a0d2-5e4af8b3bb9e} (Trojan.Vundo) -> No action taken.
    HKEY_CLASSES_ROOT\CLSID\{3e4ccd0c-18d8-481c-a8ca-f9b8719d9e0f} (Trojan.Vundo) -> No action taken.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\aoprndtws (Trojan.Vundo) -> No action taken.

    Valeur(s) du Registre infectée(s):
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\b0978bc0 (Trojan.Vundo) -> No action taken.

    Elément(s) de données du Registre infecté(s):
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Security Packages (Trojan.Vundo) -> Data: c:\windows\system32\opnkijay -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Authentication Packages (Trojan.Vundo) -> Data: c:\windows\system32\opnkijay -> No action taken.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowHelp (Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.

    Dossier(s) infecté(s):
    C:\WINDOWS\websvr (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\addIns (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\addIns\Php (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\addIns\Php\dlls (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\myAdmin (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\system (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\user (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\user\admin (Malware.Trace) -> No action taken.

    Fichier(s) infecté(s):
    C:\WINDOWS\system32\opnkiJay.dll (Trojan.Vundo) -> No action taken.
    C:\WINDOWS\system32\yaJiknpo.ini (Trojan.Vundo) -> No action taken.
    C:\WINDOWS\system32\yaJiknpo.ini2 (Trojan.Vundo) -> No action taken.
    C:\WINDOWS\system32\hslkrinw.dll (Trojan.Vundo) -> No action taken.
    C:\WINDOWS\system32\wnirklsh.ini (Trojan.Vundo) -> No action taken.
    C:\WINDOWS\system32\ikvvxshr.dll (Trojan.Vundo) -> No action taken.
    C:\WINDOWS\system32\rhsxvvki.ini (Trojan.Vundo) -> No action taken.
    C:\Documents and Settings\Noel\Local Settings\Temporary Internet Files\Content.IE5\3O3460VK\kb767887[1] (Trojan.Vundo) -> No action taken.
    C:\Documents and Settings\Noel\Local Settings\Temporary Internet Files\Content.IE5\HKL1HWFC\kb456456[1] (Trojan.Vundo) -> No action taken.
    C:\Program Files\Microsoft AntiSpyware\Quarantine\2A349F74-8CDC-46B2-8045-361E24\252B9938-FBBF-482F-BF3F-B3239D (Adware.CommAd) -> No action taken.
    C:\Program Files\Microsoft AntiSpyware\Quarantine\2A349F74-8CDC-46B2-8045-361E24\92ADB16D-8686-4891-AF19-AF8054 (Adware.CommAd) -> No action taken.
    C:\WINDOWS\ntsvc(2).ocx (Spyware.Unknown) -> No action taken.
    C:\WINDOWS\system32\ayztgt.dll (Trojan.Vundo) -> No action taken.
    C:\WINDOWS\system32\fvpgvvmh.dll (Trojan.Vundo) -> No action taken.
    C:\WINDOWS\system32\gihrys.dll (Trojan.Vundo) -> No action taken.
    C:\WINDOWS\system32\hpamugpw.dll (Trojan.Vundo) -> No action taken.
    C:\WINDOWS\system32\japgovpt.dll (Trojan.Vundo) -> No action taken.
    C:\WINDOWS\system32\mlJAQGYQ.dll (Trojan.Vundo) -> No action taken.
    C:\WINDOWS\system32\napiab.dll (Trojan.Vundo) -> No action taken.
    C:\WINDOWS\system32\tiqjqkai.dll (Trojan.Vundo) -> No action taken.
    C:\WINDOWS\system32\wzteez.dll (Trojan.Vundo) -> No action taken.
    D:\Téléchargement\Astuces et formation\Astuces\Sp2TcpIPatchfr.exe (Rogue.Installer) -> No action taken.
    C:\WINDOWS\websvr\map.txt (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\addIns\Php\dlls\readme.txt (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\phpinfo.php (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\remview.php (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\myAdmin\Download phpmyadmin from sourceforge into this dir.txt (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\system\BACK.gif (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\system\BLANK.gif (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\system\COMPRESSED.gif (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\system\dnserror.htm (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\system\dnserror_de.htm (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\system\FILE.gif (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\system\FOLDER.gif (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\system\HTML.gif (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\system\PAGERROR.gif (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\system\PHP.gif (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\system\PICTURE.gif (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\system\REFRESH.gif (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\system\UPFOLDER.gif (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\user\test.htm (Malware.Trace) -> No action taken.
    C:\WINDOWS\websvr\htdocs\user\admin\htaccess.txt (Malware.Trace) -> No action taken.
    C:\WINDOWS\tmark2.dat (Malware.Trace) -> No action taken.
    C:\WINDOWS\cookies.ini (Malware.Trace) -> No action taken.


    Le log suite à la miseen place de Fix-it

    ========== REGISTRY ==========
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\"authentication packages"|hex(7):"msv1_0 relog_ap" /E : value set successfully!
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: Administrateur
    -> No Temporary Internet Files cache folder defined!

    User: All Users
    -> No Temporary Internet Files cache folder defined!

    User: Default User
    -> No Temporary Internet Files cache folder defined!

    User: LocalService
    -> No Temporary Internet Files cache folder defined!

    User: NetworkService
    -> No Temporary Internet Files cache folder defined!

    User: Noel
    -> No Temporary Internet Files cache folder defined!

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 2134506 bytes
    %systemroot%\System32 .tmp files removed: 12087087 bytes
    %systemroot%\System32\dllcache .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 247944 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 34313 bytes

    Total Files Cleaned = 14.00 mb


    OTLPE by OldTimer - Version 3.1.39.0 log created on 07072010_072405

    et le Run Scan

    OTL logfile created on: 7/7/2010 7:25:00 AM - Run
    OTLPE by OldTimer - Version 3.1.39.0 Folder = X:\Programs\OTLPE
    Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

    2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 85.00% Memory free
    2.00 Gb Paging File | 2.00 Gb Available in Paging File | 96.00% Paging File free
    Paging file location(s): C:\pagefile.sys 3070 3072 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 186.31 Gb Total Space | 120.44 Gb Free Space | 64.64% Space Free | Partition Type: NTFS
    Drive D: | 186.30 Gb Total Space | 96.52 Gb Free Space | 51.81% Space Free | Partition Type: NTFS
    Drive E: | 101.83 Gb Total Space | 51.88 Gb Free Space | 50.95% Space Free | Partition Type: NTFS
    Drive F: | 9.93 Gb Total Space | 6.17 Gb Free Space | 62.19% Space Free | Partition Type: NTFS
    G: Drive not present or media not loaded
    H: Drive not present or media not loaded
    I: Drive not present or media not loaded
    Drive L: | 3.76 Gb Total Space | 1.89 Gb Free Space | 50.35% Space Free | Partition Type: FAT32
    Drive X: | 433.24 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

    Computer Name: REATOGO
    Current User Name: SYSTEM
    Logged in as Administrator.

    Current Boot Mode: Normal
    Scan Mode: All users
    Company Name Whitelist: Off
    Skip Microsoft Files: Off
    File Age = 30 Days
    Output = Standard
    Using ControlSet: ControlSet004

    ========== Win32 Services (SafeList) ==========

    SRV - File not found [On_Demand] -- -- (x10nets)
    SRV - File not found [On_Demand] -- -- (Wcpi13sv)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [Auto] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
    SRV - [2010/04/22 17:09:09 | 000,867,080 | ---- | M] (Acresso Software Inc.) [On_Demand] -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
    SRV - [2009/12/14 22:00:09 | 000,604,488 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
    SRV - [2009/12/14 22:00:06 | 000,361,288 | ---- | M] (TuneUp Software) [On_Demand] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
    SRV - [2009/11/16 07:25:48 | 000,029,000 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
    SRV - [2009/09/06 00:06:20 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) [Auto] -- C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor8.0)
    SRV - [2009/07/17 11:58:18 | 000,145,504 | ---- | M] (B.H.A Corporation) [Auto] -- C:\WINDOWS\System32\bgsvcgen.exe -- (bgsvcgen)
    SRV - [2008/09/24 10:50:46 | 000,052,888 | ---- | M] () [Auto] -- C:\Program Files\VIA\RAID\vialogsv.exe -- (VRAID Log Service)
    SRV - [2008/02/19 09:18:06 | 000,425,988 | ---- | M] () [Auto] -- C:\Program Files\NCH Software\Eyeline\eyeline.exe -- (EyelineService)
    SRV - [2008/02/19 09:18:00 | 000,368,644 | ---- | M] () [Auto] -- C:\Program Files\NCH Software\BroadCam\broadCam.exe -- (BroadCamService)
    SRV - [2007/05/03 09:12:11 | 000,072,704 | ---- | M] (Adobe Systems) [On_Demand] -- C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service)
    SRV - [2006/11/03 13:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
    SRV - [2005/11/28 09:53:10 | 000,172,032 | ---- | M] (Acronis) [Auto] -- C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
    SRV - [2005/11/17 09:18:52 | 001,527,900 | ---- | M] (MAGIX®) [On_Demand] -- C:\MAGIX\Common\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)
    SRV - [2005/04/03 18:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
    SRV - [2005/02/09 05:52:00 | 000,483,397 | ---- | M] (Raxco Software, Inc.) [On_Demand] -- C:\Program Files\Raxco\PerfectDisk\PDEngine.exe -- (PDEngine)
    SRV - [2005/02/09 05:52:00 | 000,241,731 | ---- | M] (Raxco Software, Inc.) [Auto] -- C:\Program Files\Raxco\PerfectDisk\PDSched.exe -- (PDSched)
    SRV - [2004/10/28 13:30:02 | 000,163,840 | ---- | M] (Broadcom Corporation) [Auto] -- C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe -- (btwdins)
    SRV - [2003/10/12 18:20:34 | 000,143,360 | ---- | M] (Computer Associates International Inc.) [Auto] -- C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe -- (CA_LIC_CLNT)
    SRV - [2003/07/28 14:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
    SRV - [2003/06/19 17:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM)
    SRV - [2003/04/07 14:45:00 | 000,151,552 | ---- | M] (Computer Associates International Inc.) [On_Demand] -- C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe -- (CA_LIC_SRVR)
    SRV - [2002/09/20 15:29:00 | 000,053,248 | ---- | M] (Computer Associates) [Auto] -- C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe -- (LogWatch)
    SRV - [2002/09/20 09:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))


    ========== Driver Services (SafeList) ==========

    DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
    DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
    DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
    DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
    DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
    DRV - File not found [Kernel | System] -- -- (PCIDump)
    DRV - File not found [Kernel | System] -- -- (lbrtfdc)
    DRV - File not found [Kernel | On_Demand] -- -- (jfdcd)
    DRV - File not found [Kernel | System] -- -- (InCDRm)
    DRV - File not found [Kernel | System] -- -- (InCDPass)
    DRV - File not found [Kernel | System] -- -- (i2omgmt)
    DRV - File not found [Kernel | System] -- -- (Changer)
    DRV - File not found [Kernel | On_Demand] -- -- (catchme)
    DRV - [2010/05/06 17:39:23 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
    DRV - [2010/05/06 17:39:00 | 000,164,048 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
    DRV - [2010/05/06 17:34:27 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
    DRV - [2010/05/06 17:33:59 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
    DRV - [2010/05/06 17:33:47 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
    DRV - [2010/05/06 17:33:29 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
    DRV - [2009/11/08 23:21:18 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System] -- C:\WINDOWS\system32\drivers\scdemu.sys -- (SCDEmu)
    DRV - [2009/10/21 05:22:00 | 000,298,752 | ---- | M] () [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
    DRV - [2009/07/17 11:58:18 | 000,033,408 | ---- | M] (B.H.A Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
    DRV - [2009/02/25 18:58:57 | 003,565,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
    DRV - [2009/02/03 22:31:17 | 000,170,496 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinavt2.sys -- (ATIAVAIW)
    DRV - [2008/12/18 08:23:49 | 000,103,360 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD)
    DRV - [2008/07/21 08:11:58 | 000,024,392 | ---- | M] (Elaborate Bytes AG) [Kernel | System] -- C:\WINDOWS\system32\drivers\ElbyCDIO.sys -- (ElbyCDIO)
    DRV - [2008/05/13 06:44:00 | 000,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand] -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM)
    DRV - [2008/05/13 06:43:58 | 000,008,944 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
    DRV - [2008/05/13 06:43:56 | 000,055,024 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
    DRV - [2008/04/13 14:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
    DRV - [2008/04/13 14:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
    DRV - [2008/04/13 14:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Pilote USB audio (WDM)
    DRV - [2007/09/20 22:11:02 | 000,028,432 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt)
    DRV - [2007/09/20 22:10:46 | 000,036,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
    DRV - [2007/09/20 22:10:40 | 000,035,088 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
    DRV - [2007/09/20 22:10:20 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
    DRV - [2007/07/06 18:01:42 | 000,101,376 | ---- | M] (Protect Software GmbH) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\ACEDRV07.sys -- (ACEDRV07)
    DRV - [2007/05/04 08:51:06 | 000,249,152 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter)
    DRV - [2007/05/04 08:51:06 | 000,030,688 | ---- | M] (Acronis) [File_System | Auto] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
    DRV - [2007/05/04 08:51:00 | 000,096,320 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\snapman.sys -- (snapman)
    DRV - [2005/11/02 10:47:26 | 000,010,368 | R--- | M] (Padus, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
    DRV - [2005/08/15 06:08:26 | 000,127,488 | ---- | M] (Ahead Software AG) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\imagesrv.sys -- (imagesrv)
    DRV - [2005/08/15 06:08:26 | 000,005,888 | ---- | M] (Ahead Software AG) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\imagedrv.sys -- (imagedrv)
    DRV - [2005/04/07 11:18:34 | 000,003,840 | ---- | M] () [Kernel | System] -- C:\WINDOWS\System32\Drivers\BANTExt.sys -- (BANTExt)
    DRV - [2004/10/28 13:18:52 | 000,017,024 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (BtAudio)
    DRV - [2004/10/28 13:12:36 | 000,030,299 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
    DRV - [2004/10/28 13:12:00 | 000,054,488 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
    DRV - [2004/10/23 03:01:00 | 000,054,424 | ---- | M] (Raxco Software, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\defrag32b.sys -- (Defrag32b)
    DRV - [2004/10/23 03:01:00 | 000,054,424 | ---- | M] (Raxco Software, Inc.) [File_System | Auto] -- C:\WINDOWS\system32\drivers\defrag32.sys -- (Defrag32)
    DRV - [2004/08/03 05:10:34 | 000,062,976 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Cdrdrv.sys -- (cdrdrv)
    DRV - [2004/07/06 11:06:46 | 000,188,416 | ---- | M] (Pinnacle Systems GmbH) [File_System | System] -- C:\WINDOWS\system32\drivers\vobIW.sys -- (vobiw)
    DRV - [2004/06/21 10:03:22 | 000,078,976 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\MarvinBus.sys -- (MarvinBus)
    DRV - [2004/03/10 10:27:18 | 000,011,264 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\asapiW2k.sys -- (ASAPIW2k)
    DRV - [2004/02/26 12:50:38 | 000,611,820 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
    DRV - [2004/02/23 23:08:52 | 000,400,384 | ---- | M] (Sensaura) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS)
    DRV - [2003/11/27 22:42:08 | 000,071,040 | ---- | M] (VIA Technologies inc,.ltd) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\viasprid.sys -- (viasprid)
    DRV - [2003/10/21 13:23:00 | 000,013,824 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinmdxx.sys -- (MVDCODEC)
    DRV - [2003/10/21 13:20:55 | 000,104,960 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinrvxx.sys -- (atinrvxx)
    DRV - [2003/10/21 13:19:59 | 000,063,488 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinxsxx.sys -- (ATIXSAudio)
    DRV - [2003/10/21 13:19:12 | 000,051,712 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinraxx.sys -- (ativraxx)
    DRV - [2003/10/21 13:17:55 | 000,013,824 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinttxx.sys -- (TTDec)
    DRV - [2003/10/21 13:16:11 | 000,056,832 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atintuxx.sys -- (ATITUNEP)
    DRV - [2003/10/07 11:51:00 | 000,072,164 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
    DRV - [2003/10/07 11:51:00 | 000,022,356 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
    DRV - [2003/09/17 10:42:00 | 001,258,154 | R--- | M] (WIDCOMM, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
    DRV - [2003/09/17 10:37:00 | 000,041,315 | R--- | M] (WIDCOMM, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid)
    DRV - [2003/09/15 09:59:04 | 000,022,183 | ---- | M] () [Kernel | Auto] -- C:\WINDOWS\system32\drivers\btserial.sys -- (BTSERIAL)
    DRV - [2003/09/15 09:58:34 | 000,222,876 | ---- | M] (WIDCOMM, Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\btslbcsp.sys -- (BTSLBCSP)
    DRV - [2003/08/01 08:47:24 | 000,029,239 | ---- | M] (Pinnacle Systems) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\vobid.sys -- (VOBID)
    DRV - [2003/07/14 11:49:04 | 000,254,868 | ---- | M] (Jungo) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atirwvd.sys -- (ATI Remote Wonder II)
    DRV - [2003/06/03 11:48:12 | 000,147,328 | ---- | M] (3Com Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\EL2K_XP.sys -- (EL2000)
    DRV - [2003/06/02 23:00:00 | 000,073,984 | R--- | M] (Promise Technology, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\ulsata.sys -- (UlSata)
    DRV - [2002/09/19 22:53:34 | 000,235,100 | ---- | M] (Analog Devices Inc) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\MidiSyn.sys -- (MidiSyn)
    DRV - [2002/07/17 04:05:10 | 000,016,512 | ---- | M] (Adaptec) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (ASPI)
    DRV - [2002/03/19 03:29:16 | 000,014,165 | ---- | M] (Pinnacle Systems GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\Pclepci.sys -- (PCLEPCI)
    DRV - [2001/10/04 05:53:16 | 000,009,728 | ---- | M] (VOB Computersysteme GmbH) [Kernel | Unavailable] -- C:\WINDOWS\system32\drivers\vobcom.sys -- (vobcom)
    DRV - [2001/10/02 19:47:28 | 000,051,072 | ---- | M] (SCM Microsystems Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\EUSBMSD.SYS -- (EUSBMSD)
    DRV - [2001/08/17 17:46:40 | 000,006,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\enum1394.sys -- (ENUM1394)
    DRV - [2001/08/17 16:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
    DRV - [2001/05/25 16:03:02 | 000,270,667 | ---- | M] (C-Media Inc) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\cmaudio.sys -- (cmpci) C-Media PCI Audio Driver (WDM)
    DRV - [2001/05/24 04:14:34 | 000,013,229 | ---- | M] (SCM Microsystems Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\Stltrk2k.sys -- (Stltrk2k)
    DRV - [2001/05/23 04:42:52 | 000,012,084 | ---- | M] (Aiptek) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\UTBLFILT.sys -- (utblfilt)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
    IE - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    IE - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com


    IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



    IE - HKU\NetworkService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
    IE - HKU\Noel_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKU\Noel_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost


    FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/04/22 10:14:03 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2002/01/01 09:36:28 | 000,000,000 | ---D | M]

    [2002/01/01 09:36:30 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
    [2002/01/01 09:36:30 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
    [2010/04/12 12:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
    [2009/06/04 20:29:28 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
    [2009/06/04 20:29:28 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
    [2009/06/04 20:29:27 | 000,000,748 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\MediaDICO-fr.xml
    [2009/06/04 20:29:28 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
    [2009/06/04 20:29:28 | 000,000,652 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml

    O1 HOSTS File: ([2010/04/26 06:36:10 | 000,303,015 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\HOSTS
    O1 - Hosts: 127.0.0.1 activate.adobe.com
    O1 - Hosts: 127.0.0.1 practivate.adobe.com
    O1 - Hosts: 127.0.0.1 ereg.adobe.com
    O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
    O1 - Hosts: 127.0.0.1 wip3.adobe.com
    O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
    O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
    O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
    O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
    O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
    O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
    O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com# Copyright © 1993-1999 Microsoft Corp.
    O1 - Hosts: 127.0.0.1 localhost
    O1 - Hosts: 127.0.0.1 www.007guard.com
    O1 - Hosts: 127.0.0.1 007guard.com
    O1 - Hosts: 127.0.0.1 008i.com
    O1 - Hosts: 127.0.0.1 www.008k.com
    O1 - Hosts: 127.0.0.1 008k.com
    O1 - Hosts: 127.0.0.1 www.00hq.com
    O1 - Hosts: 127.0.0.1 00hq.com
    O1 - Hosts: 127.0.0.1 010402.com
    O1 - Hosts: 127.0.0.1 www.032439.com
    O1 - Hosts: 10443 more lines...
    O2 - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\Snagit 9\SnagitBHO.dll (TechSmith Corporation)
    O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
    O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
    O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\Snagit 9\SnagitIEAddin.dll (TechSmith Corporation)
    O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O3 - HKLM\..\Toolbar: (SYSTRAN Standard 4.0) - {F9443A35-6BFD-11D7-ACD0-00B0D094B576} - C:\Program Files\SYSTRAN\4_0\Standard\IEPlugIn.dll (SYSTRAN)
    O3 - HKU\Noel_ON_C\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKU\Noel_ON_C\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe (Acronis)
    O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software)
    O4 - HKLM..\Run: [BHR4.1] C:\Program Files\Zamaan's Software\Browser Hijack Retaliator 4.1\BHR4.1.exe (Zamaan's Software)
    O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
    O4 - HKLM..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE (CANON INC.)
    O4 - HKLM..\Run: [HydraVisionDesktopManager] C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe (ATI Technologies Inc.)
    O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
    O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
    O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
    O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
    O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
    O4 - HKLM..\Run: [PtiuPbmd] C:\WINDOWS\System32\ptipbm.dll (Promise Technology,Inc.)
    O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
    O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe (Analog Devices, Inc.)
    O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
    O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
    O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
    O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Micro Application\TrueImage\TrueImageMonitor.exe (Acronis)
    O4 - HKLM..\Run: [Tweak UI] C:\WINDOWS\System32\TWEAKUI.CPL (Microsoft Corporation)
    O4 - HKLM..\Run: [Vade Retro Outlook Express] C:\Program Files\Goto Software\Vade Retro\Vaderetro_oe.exe ()
    O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
    O4 - HKU\Noel_ON_C..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe ()
    O4 - HKU\Noel_ON_C..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe (ATI Technologies Inc.)
    O4 - HKU\Noel_ON_C..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe (Nero AG)
    O4 - HKU\Noel_ON_C..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
    O4 - HKU\Noel_ON_C..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
    O4 - HKU\Noel_ON_C..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
    O4 - HKU\Noel_ON_C..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
    O4 - Startup: Error locating startup folders.
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\Noel_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Impression rapide - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Imprimer - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Prévisualiser - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm ()
    O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll (Google Inc.)
    O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
    O9 - Extra 'Tools' menuitem : Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
    O9 - Extra Button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} - C:\Program Files\ATI Multimedia\tv\EXPLBAR.DLL (ATI Technologies Inc.)
    O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm ()
    O9 - Extra 'Tools' menuitem : @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm ()
    O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/e/4/9/e494c802-d... (Office Genuine Advantage Validation Tool)
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/8/b/d/8bd77752-5... (Windows Genuine Advantage Validation Tool)
    O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} http://office.microsoft.com/officeupdate/content/opuc2.... (Office Update Installation Engine)
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls... (WUWebControl Class)
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Co... (MUWebControl Class)
    O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} http://a840.g.akamai.net/7/840/537/2005111401/housecall... (HouseCall Control)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} http://acs.pandasoftware.com/activescan/as5free/asinst.... (ActiveScan Installer Class)
    O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_11-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/fla... (Shockwave Flash Object)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.)
    O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
    O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\widimg {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\BTXPPanel.dll (Broadcom Corporation)
    O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
    O20 - AppInit_DLLs: (CLKERN.DLL) - C:\WINDOWS\System32\CLKERN.DLL (MicroBest Corporation)
    O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
    O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
    O20 - Winlogon\Notify\LBTServ: DllName - C:\Program Files\Fichiers communs\Logitech\Bluetooth\lbtserv.dll - C:\Program Files\Fichiers communs\Logitech\Bluetooth\lbtserv.dll File not found
    O24 - Desktop WallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O24 - Desktop BackupWallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
    O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2008/02/25 07:22:04 | 000,000,222 | ---- | M] () - C:\auto1.bat -- [ NTFS ]
    O32 - AutoRun File - [2005/06/15 15:40:32 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
    O32 - AutoRun File - [2005/05/19 12:57:30 | 000,000,000 | -H-- | M] () - F:\AUTOEXEC.BAT -- [ NTFS ]
    O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell - "" = AutoRun
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell\AutoRun\command - "" =
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell\AutoRun\command - "default" =
    O33 - MountPoints2\{5200bba6-ddc3-11d9-b8c4-806d6172696f}\Shell\PlayWithPowerDVD\Command - "" = C:\Program Files\CyberLink\PowerDVD\PowerDVD.exe -- [2003/09/05 10:25:00 | 000,409,600 | ---- | M] (CyberLink Corp.)
    O34 - HKLM BootExecute: (PDBoot.exe) - C:\WINDOWS\System32\PDBoot.exe (Raxco Software, Inc.)
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*

    ========== Files/Folders - Created Within 30 Days ==========

    [2011/11/05 19:45:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Application Data\Uniblue
    [2010/11/05 19:11:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Local Settings\Application Data\PCHealth
    [2010/06/28 11:38:44 | 000,000,000 | ---D | C] -- C:\_OTL
    [2010/06/24 18:37:42 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Noel\Recent
    [2010/06/22 12:46:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Mes documents\Fonds d'écran
    [2010/06/22 05:45:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Mes documents\Argentera Rando
    [2010/06/22 04:59:24 | 000,000,000 | ---D | C] -- C:\Program Files\GT2002
    [2010/06/22 04:48:04 | 000,000,000 | ---D | C] -- C:\Program Files\Cracklock
    [2010/06/18 07:17:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Local Settings\Application Data\Conduit
    [2010/06/14 02:51:46 | 000,000,000 | -HSD | C] -- C:\Config.Msi
    [2010/06/11 19:33:39 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
    [2008/12/22 05:02:44 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Noel\Application Data\pcouffin.sys

    ========== Files - Modified Within 30 Days ==========

    [2011/11/05 19:05:22 | 000,000,430 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{362E2F5D-27EF-45CB-A2B3-8BA53CB7ACA7}.job
    [2010/07/05 08:54:52 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
    [2010/07/05 08:54:47 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
    [2010/07/05 08:54:35 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2010/07/05 08:54:29 | 2146,750,464 | -HS- | M] () -- C:\hiberfil.sys
    [2010/07/03 12:57:55 | 014,417,920 | ---- | M] () -- C:\Documents and Settings\Noel\ntuser.dat
    [2010/07/03 07:05:57 | 000,413,696 | ---- | M] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT
    [2010/07/03 07:05:57 | 000,413,696 | ---- | M] () -- C:\Documents and Settings\LocalService\NTUSER.DAT
    [2010/06/24 20:10:33 | 000,000,284 | -HS- | M] () -- C:\Documents and Settings\Noel\ntuser.ini
    [2010/06/24 20:00:03 | 000,000,506 | ---- | M] () -- C:\WINDOWS\tasks\Maintenance en 1 clic.job
    [2010/06/24 19:53:01 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
    [2010/06/24 18:38:38 | 000,003,472 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100625_003834.reg
    [2010/06/24 18:37:28 | 000,000,717 | ---- | M] () -- C:\Documents and Settings\Noel\Bureau\CCleaner.lnk
    [2010/06/24 18:30:24 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
    [2010/06/24 18:30:22 | 000,040,960 | ---- | M] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2010/06/24 17:53:01 | 000,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
    [2010/06/24 07:58:38 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
    [2010/06/23 03:25:05 | 000,967,166 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
    [2010/06/23 03:25:05 | 000,826,134 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
    [2010/06/23 03:25:05 | 000,271,352 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
    [2010/06/23 03:25:05 | 000,218,638 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
    [2010/06/23 03:25:05 | 000,004,982 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
    [2010/06/22 08:06:37 | 000,000,628 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 3.rt2
    [2010/06/22 08:06:37 | 000,000,383 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 2.rt2
    [2010/06/22 08:06:37 | 000,000,365 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 4.rt2
    [2010/06/22 06:54:35 | 000,000,275 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.eta
    [2010/06/22 05:47:03 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.BMP
    [2010/06/15 18:28:36 | 000,013,616 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100616_002833.reg
    [2010/06/15 12:13:59 | 000,142,616 | ---- | M] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
    [2010/06/15 12:12:49 | 000,425,408 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2010/06/14 09:40:41 | 000,000,332 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\CheckMyTorrentIP.torrent
    [2010/06/14 02:16:32 | 000,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT

    ========== Files Created - No Company Name ==========

    [2010/06/28 07:57:11 | 2146,750,464 | -HS- | C] () -- C:\hiberfil.sys
    [2010/06/24 18:38:35 | 000,003,472 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100625_003834.reg
    [2010/06/22 08:06:37 | 000,000,628 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 3.rt2
    [2010/06/22 08:06:37 | 000,000,383 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 2.rt2
    [2010/06/22 08:06:37 | 000,000,365 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 4.rt2
    [2010/06/22 06:22:02 | 000,000,275 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.eta
    [2010/06/22 05:47:03 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.BMP
    [2010/06/18 05:24:30 | 014,417,920 | ---- | C] () -- C:\Documents and Settings\Noel\ntuser.dat
    [2010/06/15 18:28:34 | 000,013,616 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100616_002833.reg
    [2010/06/14 09:40:39 | 000,000,332 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\CheckMyTorrentIP.torrent
    [2009/10/24 02:20:34 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\PCIVP.SYS
    [2009/10/23 18:28:04 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
    [2009/10/21 05:22:00 | 000,298,752 | ---- | C] () -- C:\WINDOWS\System32\drivers\yk51x86.sys
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\sysprs7.dll
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth2.dll
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth1.dll
    [2009/08/01 03:13:14 | 000,000,205 | ---- | C] () -- C:\WINDOWS\System32\lsprst7.dll
    [2009/08/01 03:13:14 | 000,000,073 | ---- | C] () -- C:\WINDOWS\System32\ssprs.dll
    [2009/02/13 19:53:55 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\Days5.ini
    [2009/02/13 18:04:48 | 000,000,028 | ---- | C] () -- C:\Documents and Settings\Noel\Adobe Encore DVD_VUI.pref
    [2009/01/16 10:14:29 | 000,000,395 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
    [2008/12/22 05:03:06 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.log
    [2008/12/22 05:02:44 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\inst.exe
    [2008/12/22 05:02:44 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.cat
    [2008/12/22 05:02:44 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.inf
    [2008/12/19 12:00:13 | 000,001,028 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\WavCodec.wff
    [2008/07/17 18:25:43 | 000,034,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\mbamcatchme.sys
    [2008/07/15 18:41:59 | 000,000,823 | ---- | C] () -- C:\WINDOWS\tsc.ini
    [2008/07/15 18:41:58 | 000,071,749 | ---- | C] () -- C:\WINDOWS\hcextoutput.dll
    [2008/07/15 18:40:57 | 000,000,170 | ---- | C] () -- C:\WINDOWS\GetServer.ini
    [2008/07/15 02:46:48 | 001,776,795 | -HS- | C] () -- C:\WINDOWS\System32\gpekllfs.ini
    [2008/06/20 18:57:51 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
    [2008/04/26 02:52:21 | 000,471,552 | ---- | C] () -- C:\WINDOWS\System32\Smab.dll
    [2008/04/26 02:52:21 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
    [2008/02/19 09:20:43 | 000,001,028 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\AVIEncoder.wff
    [2008/02/04 13:23:10 | 000,693,792 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
    [2008/01/29 04:31:29 | 000,004,238 | ---- | C] () -- C:\Documents and Settings\Noel\UserCustomPreset_Adobe Premiere Pro 2.0.vpr
    [2007/11/09 10:44:52 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\$_hpcst$.hpc
    [2007/11/09 09:14:12 | 000,003,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\BANTExt.sys
    [2007/07/06 18:08:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\videodeLuxe.INI
    [2007/07/06 17:42:26 | 000,006,430 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
    [2007/05/03 16:01:35 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
    [2007/05/03 10:35:01 | 000,000,029 | ---- | C] () -- C:\WINDOWS\viewer.ini
    [2007/05/03 10:26:11 | 000,000,046 | ---- | C] () -- C:\WINDOWS\RmFile.ini
    [2007/05/03 10:25:56 | 000,000,029 | ---- | C] () -- C:\WINDOWS\System32\MprExe.Ini
    [2007/05/03 10:25:26 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\InkPanel.Dll
    [2007/05/03 10:25:26 | 000,000,224 | ---- | C] () -- C:\WINDOWS\System32\ScrSav.ini
    [2007/05/03 10:25:25 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\Wrting32.Dll
    [2007/05/03 10:21:21 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\Funckey.dll
    [2007/05/03 10:21:20 | 000,003,117 | ---- | C] () -- C:\WINDOWS\aiptbl.ini
    [2006/11/15 05:36:58 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\imhost8.dll
    [2006/06/28 09:43:07 | 000,000,056 | ---- | C] () -- C:\Documents and Settings\Noel\intlname.ols
    [2006/06/02 03:50:56 | 000,002,410 | ---- | C] () -- C:\WINDOWS\CDPlayer.ini
    [2006/06/01 12:22:29 | 000,180,295 | ---- | C] () -- C:\WINDOWS\System32\TurboDLL.dll
    [2006/06/01 11:50:56 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvLowrance.dll
    [2006/06/01 11:50:56 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvPyx.dll
    [2006/06/01 11:50:56 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvAvmap.dll
    [2006/06/01 11:50:56 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSuu.dll
    [2006/06/01 11:50:44 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\Polyclip.dll
    [2006/06/01 11:50:44 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\RCalcul.dll
    [2006/05/20 05:04:31 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Noel\AdobeWeb.log
    [2006/03/09 06:40:20 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\Rey_SubClasser.dll
    [2006/02/10 10:31:49 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
    [2005/12/12 03:48:10 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\ZPORT4AS.dll
    [2005/11/25 04:40:37 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
    [2005/11/10 11:00:09 | 000,000,065 | ---- | C] () -- C:\Documents and Settings\Noel\default.pls
    [2005/11/05 05:50:00 | 000,240,640 | ---- | C] () -- C:\WINDOWS\System32\NMOCOD.DLL
    [2005/10/22 04:22:07 | 000,000,365 | ---- | C] () -- C:\WINDOWS\PSADMIN.INI
    [2005/09/07 06:00:50 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\BiMResNT.dll
    [2005/09/07 06:00:50 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\BiCResNT.dll
    [2005/08/25 09:21:26 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
    [2005/08/25 09:21:26 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
    [2005/08/25 09:21:26 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
    [2005/07/30 00:22:58 | 000,045,634 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\bhrslog.txt
    [2005/07/26 05:23:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
    [2005/07/26 05:20:35 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS6d.DLL
    [2005/07/12 04:11:14 | 000,000,080 | ---- | C] () -- C:\WINDOWS\navigma.INI
    [2005/07/11 19:40:30 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\adistres.dll
    [2005/07/08 19:46:29 | 000,000,017 | ---- | C] () -- C:\WINDOWS\MovingPicture.ini
    [2005/07/08 17:30:33 | 000,335,955 | ---- | C] () -- C:\WINDOWS\System32\s12lo.dll
    [2005/07/08 17:30:33 | 000,155,715 | ---- | C] () -- C:\WINDOWS\System32\tn23.dll
    [2005/07/08 17:30:33 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\gbwx.dll
    [2005/07/08 17:30:33 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\vqs85.DLL
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc3.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc2.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc1.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc0.dll
    [2005/07/08 17:30:30 | 000,023,040 | ---- | C] () -- C:\WINDOWS\System32\auth.dll
    [2005/07/06 18:06:17 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\ptevideo.dll
    [2005/07/04 12:58:49 | 000,040,960 | ---- | C] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2005/06/26 17:42:10 | 000,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI
    [2005/06/25 06:32:54 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\fusioncache.dat
    [2005/06/25 05:38:40 | 000,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
    [2005/06/25 04:55:35 | 000,001,293 | ---- | C] () -- C:\WINDOWS\photoimpression.ini
    [2005/06/25 04:52:15 | 000,096,768 | ---- | C] () -- C:\WINDOWS\SlantAdj.dll
    [2005/06/25 04:52:15 | 000,001,571 | ---- | C] () -- C:\WINDOWS\Faxcpp1.ini
    [2005/06/25 04:52:15 | 000,000,422 | ---- | C] () -- C:\WINDOWS\Faxcpp.ini
    [2005/06/25 04:52:15 | 000,000,072 | ---- | C] () -- C:\WINDOWS\System32\epDPE.ini
    [2005/06/16 11:21:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ATIMMC.INI
    [2005/06/16 10:35:58 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
    [2005/06/16 10:35:37 | 000,000,295 | ---- | C] () -- C:\WINDOWS\cmmixer.ini
    [2005/06/16 10:32:31 | 000,000,135 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
    [2005/06/16 10:32:30 | 000,004,238 | ---- | C] () -- C:\WINDOWS\mixerdef.ini
    [2005/06/16 10:29:07 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
    [2005/06/16 09:06:55 | 000,262,144 | ---- | C] () -- C:\WINDOWS\system32\config\systemprofile\ntuser.dat
    [2005/06/16 09:06:55 | 000,008,192 | -H-- | C] () -- C:\WINDOWS\system32\config\systemprofile\ntuser.dat.LOG
    [2005/06/16 07:37:38 | 000,003,627 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
    [2005/06/16 07:37:37 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
    [2005/06/15 15:49:10 | 000,065,536 | -H-- | C] () -- C:\Documents and Settings\Noel\ntuser.dat.LOG
    [2005/06/15 15:49:10 | 000,000,284 | -HS- | C] () -- C:\Documents and Settings\Noel\ntuser.ini
    [2005/06/15 15:44:30 | 000,413,696 | ---- | C] () -- C:\Documents and Settings\LocalService\NTUSER.DAT
    [2005/06/15 15:44:30 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\LocalService\ntuser.dat.LOG
    [2005/06/15 15:44:30 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\LocalService\ntuser.ini
    [2005/06/15 15:44:24 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\NetworkService\ntuser.ini
    [2005/06/15 15:44:23 | 000,413,696 | ---- | C] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT
    [2005/06/15 15:44:23 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\NetworkService\ntuser.dat.LOG
    [2005/04/28 00:22:34 | 000,831,488 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
    [2005/04/28 00:22:34 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
    [2004/10/28 13:26:42 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
    [2004/06/06 06:53:42 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
    [2004/06/05 06:56:16 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
    [2004/03/18 02:44:29 | 001,663,068 | ---- | C] () -- C:\WINDOWS\System32\libmmd.dll
    [2003/12/09 09:09:26 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\Nmea.dll
    [2003/11/27 09:51:18 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\Ogc.dll
    [2003/11/27 09:50:26 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\ConversApi.dll
    [2003/11/10 08:07:38 | 000,066,560 | ---- | C] () -- C:\WINDOWS\System32\atiyuv12.dll
    [2003/11/10 08:07:38 | 000,013,601 | ---- | C] () -- C:\WINDOWS\System32\vctest.ini
    [2003/11/10 08:07:26 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
    [2003/10/03 05:18:40 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSilva.dll
    [2003/10/03 05:18:32 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSena.dll
    [2003/10/03 05:18:26 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvMlr.dll
    [2003/10/03 05:18:18 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvMagellan.dll
    [2003/10/03 05:18:12 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvGarmin.dll
    [2003/09/15 09:59:04 | 000,022,183 | ---- | C] () -- C:\WINDOWS\System32\drivers\btserial.sys
    [2003/04/01 04:58:02 | 000,005,260 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
    [2002/11/25 09:11:22 | 000,688,128 | ---- | C] () -- C:\WINDOWS\System32\BCGCB474.dll
    [2002/11/01 10:17:50 | 000,000,256 | ---- | C] () -- C:\WINDOWS\aucfg.ini
    [2002/10/15 18:54:04 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
    [2002/07/04 09:05:34 | 000,000,269 | ---- | C] () -- C:\WINDOWS\tmupdate.ini
    [2002/05/15 18:29:04 | 000,000,607 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest
    [2002/02/27 11:28:16 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\MASE32.DLL
    [2002/02/27 11:28:16 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\MASD32.DLL
    [2002/02/27 11:28:14 | 000,196,096 | ---- | C] () -- C:\WINDOWS\System32\MACD32.DLL
    [2002/02/27 11:28:14 | 000,136,192 | ---- | C] () -- C:\WINDOWS\System32\MAMC32.DLL
    [2002/02/27 11:28:14 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\MA32.DLL
    [2002/01/13 11:12:02 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\CP30FW.DLL
    [2001/12/19 03:07:50 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\BCGCBResFRA.dll
    [2001/12/14 07:34:46 | 000,164,864 | ---- | C] () -- C:\WINDOWS\patchw32.dll
    [2001/11/23 13:18:00 | 000,000,597 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest
    [2001/11/14 08:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
    [2000/11/29 04:50:40 | 000,471,040 | ---- | C] () -- C:\WINDOWS\System32\QTExporter.dll
    [1999/07/23 07:46:48 | 000,000,116 | ---- | C] () -- C:\WINDOWS\AuHCcup1.ini
    [1999/07/23 04:53:20 | 000,129,536 | ---- | C] () -- C:\WINDOWS\AuHCcup1.dll
    [1998/08/14 06:44:46 | 000,044,544 | ---- | C] () -- C:\WINDOWS\System32\GIF89.DLL

    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 24 bytes -> C:\WINDOWS:D 6BB024C4410F641
    < End of report >

    J'ai essayé de redémarrer normalement, il a été plus long avant de me demander un mot de passe
    Merci de m'avoir permi de lire le lien que tu as joint, même si je ne comprend pas grand chose j'ai moins l'impression d'être un boulet;
    Après lecture de ton lien et de celui de Microsoft il parle de : Msv1_0.dll (après SP1)
    Et j'ai vu vu de ton fix-it : "msv1_0 relog_ap"
    Tu dois te rapprocher du problème (ce n'est que l'avis d'un Béotien en informatique)

    A bientôt
    6 Juillet 2010 19:32:30

    re

    tu vois:
    Citation :
    Elément(s) de données du Registre infecté(s):
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Security Packages (Trojan.Vundo) -> Data: c:\windows\system32\opnkijay -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Authentication Packages (Trojan.Vundo) -> Data: c:\windows\system32\opnkijay -> No action taken.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowHelp (Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.

    mais je pense que tu as fais quand même la suppression car sinon, le boot n'aurait pas foiré...

    refais otlpe avec ce fix:
    http://www.sendspace.com/file/j90onh

    9 Juillet 2010 11:20:54

    Bonjour

    J'ai appliqué ton dernier fix mais sans résultat la situation est toujours la même.
    Je joins le log et le run fix

    ========== REGISTRY ==========
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\"authentication packages"|hex(7):"msv1_0" /E : value set successfully!
    HKLM\SOFTWARE_ON_C\Microsoft\Windows NT\CurrentVersion\Winlogon\\"Shell"|"explorer.exe" /E : value set successfully!
    HKLM\SOFTWARE_ON_C\Microsoft\Windows NT\CurrentVersion\Winlogon\\"Userinit"|"C:\\WINDOWS\\system32\\Userinit.exe," /E : value set successfully!

    OTLPE by OldTimer - Version 3.1.39.0 log created on 07102010_033912

    Le Run Fix

    OTL logfile created on: 7/10/2010 3:39:47 AM - Run
    OTLPE by OldTimer - Version 3.1.39.0 Folder = X:\Programs\OTLPE
    Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

    2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 85.00% Memory free
    2.00 Gb Paging File | 2.00 Gb Available in Paging File | 96.00% Paging File free
    Paging file location(s): C:\pagefile.sys 3070 3072 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 186.31 Gb Total Space | 120.44 Gb Free Space | 64.64% Space Free | Partition Type: NTFS
    Drive D: | 186.30 Gb Total Space | 96.52 Gb Free Space | 51.81% Space Free | Partition Type: NTFS
    Drive E: | 101.83 Gb Total Space | 51.88 Gb Free Space | 50.95% Space Free | Partition Type: NTFS
    Drive F: | 9.93 Gb Total Space | 6.17 Gb Free Space | 62.19% Space Free | Partition Type: NTFS
    G: Drive not present or media not loaded
    H: Drive not present or media not loaded
    I: Drive not present or media not loaded
    Drive L: | 3.76 Gb Total Space | 1.89 Gb Free Space | 50.35% Space Free | Partition Type: FAT32
    Drive X: | 433.24 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

    Computer Name: REATOGO
    Current User Name: SYSTEM
    Logged in as Administrator.

    Current Boot Mode: Normal
    Scan Mode: All users
    Company Name Whitelist: Off
    Skip Microsoft Files: Off
    File Age = 30 Days
    Output = Standard
    Using ControlSet: ControlSet004

    ========== Win32 Services (SafeList) ==========

    SRV - File not found [On_Demand] -- -- (x10nets)
    SRV - File not found [On_Demand] -- -- (Wcpi13sv)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
    SRV - [2010/05/06 17:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [Auto] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
    SRV - [2010/04/22 17:09:09 | 000,867,080 | ---- | M] (Acresso Software Inc.) [On_Demand] -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
    SRV - [2009/12/14 22:00:09 | 000,604,488 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
    SRV - [2009/12/14 22:00:06 | 000,361,288 | ---- | M] (TuneUp Software) [On_Demand] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
    SRV - [2009/11/16 07:25:48 | 000,029,000 | ---- | M] (TuneUp Software) [Auto] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
    SRV - [2009/09/06 00:06:20 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) [Auto] -- C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor8.0)
    SRV - [2009/07/17 11:58:18 | 000,145,504 | ---- | M] (B.H.A Corporation) [Auto] -- C:\WINDOWS\System32\bgsvcgen.exe -- (bgsvcgen)
    SRV - [2008/09/24 10:50:46 | 000,052,888 | ---- | M] () [Auto] -- C:\Program Files\VIA\RAID\vialogsv.exe -- (VRAID Log Service)
    SRV - [2008/02/19 09:18:06 | 000,425,988 | ---- | M] () [Auto] -- C:\Program Files\NCH Software\Eyeline\eyeline.exe -- (EyelineService)
    SRV - [2008/02/19 09:18:00 | 000,368,644 | ---- | M] () [Auto] -- C:\Program Files\NCH Software\BroadCam\broadCam.exe -- (BroadCamService)
    SRV - [2007/05/03 09:12:11 | 000,072,704 | ---- | M] (Adobe Systems) [On_Demand] -- C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service)
    SRV - [2006/11/03 13:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
    SRV - [2005/11/28 09:53:10 | 000,172,032 | ---- | M] (Acronis) [Auto] -- C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
    SRV - [2005/11/17 09:18:52 | 001,527,900 | ---- | M] (MAGIX®) [On_Demand] -- C:\MAGIX\Common\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)
    SRV - [2005/04/03 18:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
    SRV - [2005/02/09 05:52:00 | 000,483,397 | ---- | M] (Raxco Software, Inc.) [On_Demand] -- C:\Program Files\Raxco\PerfectDisk\PDEngine.exe -- (PDEngine)
    SRV - [2005/02/09 05:52:00 | 000,241,731 | ---- | M] (Raxco Software, Inc.) [Auto] -- C:\Program Files\Raxco\PerfectDisk\PDSched.exe -- (PDSched)
    SRV - [2004/10/28 13:30:02 | 000,163,840 | ---- | M] (Broadcom Corporation) [Auto] -- C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe -- (btwdins)
    SRV - [2003/10/12 18:20:34 | 000,143,360 | ---- | M] (Computer Associates International Inc.) [Auto] -- C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe -- (CA_LIC_CLNT)
    SRV - [2003/07/28 14:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
    SRV - [2003/06/19 17:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM)
    SRV - [2003/04/07 14:45:00 | 000,151,552 | ---- | M] (Computer Associates International Inc.) [On_Demand] -- C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe -- (CA_LIC_SRVR)
    SRV - [2002/09/20 15:29:00 | 000,053,248 | ---- | M] (Computer Associates) [Auto] -- C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe -- (LogWatch)
    SRV - [2002/09/20 09:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))


    ========== Driver Services (SafeList) ==========

    DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
    DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
    DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
    DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
    DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
    DRV - File not found [Kernel | System] -- -- (PCIDump)
    DRV - File not found [Kernel | System] -- -- (lbrtfdc)
    DRV - File not found [Kernel | On_Demand] -- -- (jfdcd)
    DRV - File not found [Kernel | System] -- -- (InCDRm)
    DRV - File not found [Kernel | System] -- -- (InCDPass)
    DRV - File not found [Kernel | System] -- -- (i2omgmt)
    DRV - File not found [Kernel | System] -- -- (Changer)
    DRV - File not found [Kernel | On_Demand] -- -- (catchme)
    DRV - [2010/05/06 17:39:23 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
    DRV - [2010/05/06 17:39:00 | 000,164,048 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
    DRV - [2010/05/06 17:34:27 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
    DRV - [2010/05/06 17:33:59 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
    DRV - [2010/05/06 17:33:47 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
    DRV - [2010/05/06 17:33:29 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
    DRV - [2009/11/08 23:21:18 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System] -- C:\WINDOWS\system32\drivers\scdemu.sys -- (SCDEmu)
    DRV - [2009/10/21 05:22:00 | 000,298,752 | ---- | M] () [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
    DRV - [2009/07/17 11:58:18 | 000,033,408 | ---- | M] (B.H.A Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
    DRV - [2009/02/25 18:58:57 | 003,565,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
    DRV - [2009/02/03 22:31:17 | 000,170,496 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinavt2.sys -- (ATIAVAIW)
    DRV - [2008/12/18 08:23:49 | 000,103,360 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD)
    DRV - [2008/07/21 08:11:58 | 000,024,392 | ---- | M] (Elaborate Bytes AG) [Kernel | System] -- C:\WINDOWS\system32\drivers\ElbyCDIO.sys -- (ElbyCDIO)
    DRV - [2008/05/13 06:44:00 | 000,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand] -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM)
    DRV - [2008/05/13 06:43:58 | 000,008,944 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
    DRV - [2008/05/13 06:43:56 | 000,055,024 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
    DRV - [2008/04/13 14:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
    DRV - [2008/04/13 14:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
    DRV - [2008/04/13 14:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Pilote USB audio (WDM)
    DRV - [2007/09/20 22:11:02 | 000,028,432 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt)
    DRV - [2007/09/20 22:10:46 | 000,036,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
    DRV - [2007/09/20 22:10:40 | 000,035,088 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
    DRV - [2007/09/20 22:10:20 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
    DRV - [2007/07/06 18:01:42 | 000,101,376 | ---- | M] (Protect Software GmbH) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\ACEDRV07.sys -- (ACEDRV07)
    DRV - [2007/05/04 08:51:06 | 000,249,152 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter)
    DRV - [2007/05/04 08:51:06 | 000,030,688 | ---- | M] (Acronis) [File_System | Auto] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
    DRV - [2007/05/04 08:51:00 | 000,096,320 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\snapman.sys -- (snapman)
    DRV - [2005/11/02 10:47:26 | 000,010,368 | R--- | M] (Padus, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
    DRV - [2005/08/15 06:08:26 | 000,127,488 | ---- | M] (Ahead Software AG) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\imagesrv.sys -- (imagesrv)
    DRV - [2005/08/15 06:08:26 | 000,005,888 | ---- | M] (Ahead Software AG) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\imagedrv.sys -- (imagedrv)
    DRV - [2005/04/07 11:18:34 | 000,003,840 | ---- | M] () [Kernel | System] -- C:\WINDOWS\System32\Drivers\BANTExt.sys -- (BANTExt)
    DRV - [2004/10/28 13:18:52 | 000,017,024 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (BtAudio)
    DRV - [2004/10/28 13:12:36 | 000,030,299 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
    DRV - [2004/10/28 13:12:00 | 000,054,488 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
    DRV - [2004/10/23 03:01:00 | 000,054,424 | ---- | M] (Raxco Software, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\defrag32b.sys -- (Defrag32b)
    DRV - [2004/10/23 03:01:00 | 000,054,424 | ---- | M] (Raxco Software, Inc.) [File_System | Auto] -- C:\WINDOWS\system32\drivers\defrag32.sys -- (Defrag32)
    DRV - [2004/08/03 05:10:34 | 000,062,976 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Cdrdrv.sys -- (cdrdrv)
    DRV - [2004/07/06 11:06:46 | 000,188,416 | ---- | M] (Pinnacle Systems GmbH) [File_System | System] -- C:\WINDOWS\system32\drivers\vobIW.sys -- (vobiw)
    DRV - [2004/06/21 10:03:22 | 000,078,976 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\MarvinBus.sys -- (MarvinBus)
    DRV - [2004/03/10 10:27:18 | 000,011,264 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\asapiW2k.sys -- (ASAPIW2k)
    DRV - [2004/02/26 12:50:38 | 000,611,820 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
    DRV - [2004/02/23 23:08:52 | 000,400,384 | ---- | M] (Sensaura) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS)
    DRV - [2003/11/27 22:42:08 | 000,071,040 | ---- | M] (VIA Technologies inc,.ltd) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\viasprid.sys -- (viasprid)
    DRV - [2003/10/21 13:23:00 | 000,013,824 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinmdxx.sys -- (MVDCODEC)
    DRV - [2003/10/21 13:20:55 | 000,104,960 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinrvxx.sys -- (atinrvxx)
    DRV - [2003/10/21 13:19:59 | 000,063,488 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinxsxx.sys -- (ATIXSAudio)
    DRV - [2003/10/21 13:19:12 | 000,051,712 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atinraxx.sys -- (ativraxx)
    DRV - [2003/10/21 13:17:55 | 000,013,824 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atinttxx.sys -- (TTDec)
    DRV - [2003/10/21 13:16:11 | 000,056,832 | ---- | M] (ATI Technologies Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atintuxx.sys -- (ATITUNEP)
    DRV - [2003/10/07 11:51:00 | 000,072,164 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
    DRV - [2003/10/07 11:51:00 | 000,022,356 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
    DRV - [2003/09/17 10:42:00 | 001,258,154 | R--- | M] (WIDCOMM, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
    DRV - [2003/09/17 10:37:00 | 000,041,315 | R--- | M] (WIDCOMM, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid)
    DRV - [2003/09/15 09:59:04 | 000,022,183 | ---- | M] () [Kernel | Auto] -- C:\WINDOWS\system32\drivers\btserial.sys -- (BTSERIAL)
    DRV - [2003/09/15 09:58:34 | 000,222,876 | ---- | M] (WIDCOMM, Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\btslbcsp.sys -- (BTSLBCSP)
    DRV - [2003/08/01 08:47:24 | 000,029,239 | ---- | M] (Pinnacle Systems) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\vobid.sys -- (VOBID)
    DRV - [2003/07/14 11:49:04 | 000,254,868 | ---- | M] (Jungo) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\atirwvd.sys -- (ATI Remote Wonder II)
    DRV - [2003/06/03 11:48:12 | 000,147,328 | ---- | M] (3Com Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\EL2K_XP.sys -- (EL2000)
    DRV - [2003/06/02 23:00:00 | 000,073,984 | R--- | M] (Promise Technology, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\ulsata.sys -- (UlSata)
    DRV - [2002/09/19 22:53:34 | 000,235,100 | ---- | M] (Analog Devices Inc) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\MidiSyn.sys -- (MidiSyn)
    DRV - [2002/07/17 04:05:10 | 000,016,512 | ---- | M] (Adaptec) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (ASPI)
    DRV - [2002/03/19 03:29:16 | 000,014,165 | ---- | M] (Pinnacle Systems GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\Pclepci.sys -- (PCLEPCI)
    DRV - [2001/10/04 05:53:16 | 000,009,728 | ---- | M] (VOB Computersysteme GmbH) [Kernel | Unavailable] -- C:\WINDOWS\system32\drivers\vobcom.sys -- (vobcom)
    DRV - [2001/10/02 19:47:28 | 000,051,072 | ---- | M] (SCM Microsystems Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\EUSBMSD.SYS -- (EUSBMSD)
    DRV - [2001/08/17 17:46:40 | 000,006,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\enum1394.sys -- (ENUM1394)
    DRV - [2001/08/17 16:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
    DRV - [2001/05/25 16:03:02 | 000,270,667 | ---- | M] (C-Media Inc) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\cmaudio.sys -- (cmpci) C-Media PCI Audio Driver (WDM)
    DRV - [2001/05/24 04:14:34 | 000,013,229 | ---- | M] (SCM Microsystems Inc.) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\Stltrk2k.sys -- (Stltrk2k)
    DRV - [2001/05/23 04:42:52 | 000,012,084 | ---- | M] (Aiptek) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\UTBLFILT.sys -- (utblfilt)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
    IE - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    IE - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com


    IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



    IE - HKU\NetworkService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
    IE - HKU\Noel_ON_C\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
    IE - HKU\Noel_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKU\Noel_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost


    FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/04/22 10:14:03 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2002/01/01 09:36:28 | 000,000,000 | ---D | M]

    [2002/01/01 09:36:30 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
    [2002/01/01 09:36:30 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
    [2010/04/12 12:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
    [2009/06/04 20:29:28 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
    [2009/06/04 20:29:28 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
    [2009/06/04 20:29:27 | 000,000,748 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\MediaDICO-fr.xml
    [2009/06/04 20:29:28 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
    [2009/06/04 20:29:28 | 000,000,652 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml

    O1 HOSTS File: ([2010/04/26 06:36:10 | 000,303,015 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\HOSTS
    O1 - Hosts: 127.0.0.1 activate.adobe.com
    O1 - Hosts: 127.0.0.1 practivate.adobe.com
    O1 - Hosts: 127.0.0.1 ereg.adobe.com
    O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
    O1 - Hosts: 127.0.0.1 wip3.adobe.com
    O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
    O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
    O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
    O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
    O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
    O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
    O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com# Copyright © 1993-1999 Microsoft Corp.
    O1 - Hosts: 127.0.0.1 localhost
    O1 - Hosts: 127.0.0.1 www.007guard.com
    O1 - Hosts: 127.0.0.1 007guard.com
    O1 - Hosts: 127.0.0.1 008i.com
    O1 - Hosts: 127.0.0.1 www.008k.com
    O1 - Hosts: 127.0.0.1 008k.com
    O1 - Hosts: 127.0.0.1 www.00hq.com
    O1 - Hosts: 127.0.0.1 00hq.com
    O1 - Hosts: 127.0.0.1 010402.com
    O1 - Hosts: 127.0.0.1 www.032439.com
    O1 - Hosts: 10443 more lines...
    O2 - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\Snagit 9\SnagitBHO.dll (TechSmith Corporation)
    O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
    O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
    O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\Snagit 9\SnagitIEAddin.dll (TechSmith Corporation)
    O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O3 - HKLM\..\Toolbar: (SYSTRAN Standard 4.0) - {F9443A35-6BFD-11D7-ACD0-00B0D094B576} - C:\Program Files\SYSTRAN\4_0\Standard\IEPlugIn.dll (SYSTRAN)
    O3 - HKU\Noel_ON_C\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKU\Noel_ON_C\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe (Acronis)
    O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software)
    O4 - HKLM..\Run: [BHR4.1] C:\Program Files\Zamaan's Software\Browser Hijack Retaliator 4.1\BHR4.1.exe (Zamaan's Software)
    O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
    O4 - HKLM..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE (CANON INC.)
    O4 - HKLM..\Run: [HydraVisionDesktopManager] C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe (ATI Technologies Inc.)
    O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
    O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
    O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
    O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
    O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
    O4 - HKLM..\Run: [PtiuPbmd] C:\WINDOWS\System32\ptipbm.dll (Promise Technology,Inc.)
    O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
    O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe (Analog Devices, Inc.)
    O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
    O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
    O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
    O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Micro Application\TrueImage\TrueImageMonitor.exe (Acronis)
    O4 - HKLM..\Run: [Tweak UI] C:\WINDOWS\System32\TWEAKUI.CPL (Microsoft Corporation)
    O4 - HKLM..\Run: [Vade Retro Outlook Express] C:\Program Files\Goto Software\Vade Retro\Vaderetro_oe.exe ()
    O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
    O4 - HKU\Noel_ON_C..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe ()
    O4 - HKU\Noel_ON_C..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe (ATI Technologies Inc.)
    O4 - HKU\Noel_ON_C..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe (Nero AG)
    O4 - HKU\Noel_ON_C..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
    O4 - HKU\Noel_ON_C..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
    O4 - HKU\Noel_ON_C..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
    O4 - HKU\Noel_ON_C..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
    O4 - Startup: Error locating startup folders.
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\Noel_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Impression rapide - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Imprimer - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Prévisualiser - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm ()
    O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll (Google Inc.)
    O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
    O9 - Extra 'Tools' menuitem : Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
    O9 - Extra Button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} - C:\Program Files\ATI Multimedia\tv\EXPLBAR.DLL (ATI Technologies Inc.)
    O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm ()
    O9 - Extra 'Tools' menuitem : @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm ()
    O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/e/4/9/e494c802-d... (Office Genuine Advantage Validation Tool)
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/8/b/d/8bd77752-5... (Windows Genuine Advantage Validation Tool)
    O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} http://office.microsoft.com/officeupdate/content/opuc2.... (Office Update Installation Engine)
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls... (WUWebControl Class)
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Co... (MUWebControl Class)
    O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} http://a840.g.akamai.net/7/840/537/2005111401/housecall... (HouseCall Control)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} http://acs.pandasoftware.com/activescan/as5free/asinst.... (ActiveScan Installer Class)
    O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_11-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-wind... (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-wind... (Java Plug-in 1.6.0_20)
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/fla... (Shockwave Flash Object)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.)
    O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
    O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\widimg {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\BTXPPanel.dll (Broadcom Corporation)
    O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
    O20 - AppInit_DLLs: (CLKERN.DLL) - C:\WINDOWS\System32\CLKERN.DLL (MicroBest Corporation)
    O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
    O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
    O20 - Winlogon\Notify\LBTServ: DllName - C:\Program Files\Fichiers communs\Logitech\Bluetooth\lbtserv.dll - C:\Program Files\Fichiers communs\Logitech\Bluetooth\lbtserv.dll File not found
    O24 - Desktop WallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O24 - Desktop BackupWallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
    O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2008/02/25 07:22:04 | 000,000,222 | ---- | M] () - C:\auto1.bat -- [ NTFS ]
    O32 - AutoRun File - [2005/06/15 15:40:32 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
    O32 - AutoRun File - [2005/05/19 12:57:30 | 000,000,000 | -H-- | M] () - F:\AUTOEXEC.BAT -- [ NTFS ]
    O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell - "" = AutoRun
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell\AutoRun\command - "" =
    O33 - MountPoints2\{5200bba4-ddc3-11d9-b8c4-806d6172696f}\Shell\AutoRun\command - "default" =
    O33 - MountPoints2\{5200bba6-ddc3-11d9-b8c4-806d6172696f}\Shell\PlayWithPowerDVD\Command - "" = C:\Program Files\CyberLink\PowerDVD\PowerDVD.exe -- [2003/09/05 10:25:00 | 000,409,600 | ---- | M] (CyberLink Corp.)
    O34 - HKLM BootExecute: (PDBoot.exe) - C:\WINDOWS\System32\PDBoot.exe (Raxco Software, Inc.)
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*

    ========== Files/Folders - Created Within 30 Days ==========

    [2011/11/05 19:45:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Application Data\Uniblue
    [2010/11/05 19:11:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Local Settings\Application Data\PCHealth
    [2010/06/28 11:38:44 | 000,000,000 | ---D | C] -- C:\_OTL
    [2010/06/24 18:37:42 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Noel\Recent
    [2010/06/22 12:46:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Mes documents\Fonds d'écran
    [2010/06/22 05:45:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Mes documents\Argentera Rando
    [2010/06/22 04:59:24 | 000,000,000 | ---D | C] -- C:\Program Files\GT2002
    [2010/06/22 04:48:04 | 000,000,000 | ---D | C] -- C:\Program Files\Cracklock
    [2010/06/18 07:17:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Noel\Local Settings\Application Data\Conduit
    [2010/06/14 02:51:46 | 000,000,000 | -HSD | C] -- C:\Config.Msi
    [2010/06/11 19:33:39 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
    [2008/12/22 05:02:44 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Noel\Application Data\pcouffin.sys

    ========== Files - Modified Within 30 Days ==========

    [2011/11/05 19:05:22 | 000,000,430 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{362E2F5D-27EF-45CB-A2B3-8BA53CB7ACA7}.job
    [2010/07/07 07:28:42 | 014,417,920 | ---- | M] () -- C:\Documents and Settings\Noel\ntuser.dat
    [2010/07/07 01:56:00 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2010/07/07 01:51:08 | 2146,750,464 | -HS- | M] () -- C:\hiberfil.sys
    [2010/07/07 01:33:14 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
    [2010/07/05 08:54:52 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
    [2010/07/03 07:05:57 | 000,413,696 | ---- | M] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT
    [2010/07/03 07:05:57 | 000,413,696 | ---- | M] () -- C:\Documents and Settings\LocalService\NTUSER.DAT
    [2010/06/24 20:10:33 | 000,000,284 | -HS- | M] () -- C:\Documents and Settings\Noel\ntuser.ini
    [2010/06/24 20:00:03 | 000,000,506 | ---- | M] () -- C:\WINDOWS\tasks\Maintenance en 1 clic.job
    [2010/06/24 19:53:01 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
    [2010/06/24 18:38:38 | 000,003,472 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100625_003834.reg
    [2010/06/24 18:37:28 | 000,000,717 | ---- | M] () -- C:\Documents and Settings\Noel\Bureau\CCleaner.lnk
    [2010/06/24 18:30:24 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
    [2010/06/24 18:30:22 | 000,040,960 | ---- | M] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2010/06/24 17:53:01 | 000,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
    [2010/06/24 07:58:38 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
    [2010/06/23 03:25:05 | 000,967,166 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
    [2010/06/23 03:25:05 | 000,826,134 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
    [2010/06/23 03:25:05 | 000,271,352 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
    [2010/06/23 03:25:05 | 000,218,638 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
    [2010/06/23 03:25:05 | 000,004,982 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
    [2010/06/22 08:06:37 | 000,000,628 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 3.rt2
    [2010/06/22 08:06:37 | 000,000,383 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 2.rt2
    [2010/06/22 08:06:37 | 000,000,365 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 4.rt2
    [2010/06/22 06:54:35 | 000,000,275 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.eta
    [2010/06/22 05:47:03 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.BMP
    [2010/06/15 18:28:36 | 000,013,616 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100616_002833.reg
    [2010/06/15 12:13:59 | 000,142,616 | ---- | M] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
    [2010/06/15 12:12:49 | 000,425,408 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2010/06/14 09:40:41 | 000,000,332 | ---- | M] () -- C:\Documents and Settings\Noel\Mes documents\CheckMyTorrentIP.torrent
    [2010/06/14 02:16:32 | 000,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT

    ========== Files Created - No Company Name ==========

    [2010/06/28 07:57:11 | 2146,750,464 | -HS- | C] () -- C:\hiberfil.sys
    [2010/06/24 18:38:35 | 000,003,472 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100625_003834.reg
    [2010/06/22 08:06:37 | 000,000,628 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 3.rt2
    [2010/06/22 08:06:37 | 000,000,383 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 2.rt2
    [2010/06/22 08:06:37 | 000,000,365 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\JOUR 4.rt2
    [2010/06/22 06:22:02 | 000,000,275 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.eta
    [2010/06/22 05:47:03 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\Carte Argentera.BMP
    [2010/06/18 05:24:30 | 014,417,920 | ---- | C] () -- C:\Documents and Settings\Noel\ntuser.dat
    [2010/06/15 18:28:34 | 000,013,616 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\cc_20100616_002833.reg
    [2010/06/14 09:40:39 | 000,000,332 | ---- | C] () -- C:\Documents and Settings\Noel\Mes documents\CheckMyTorrentIP.torrent
    [2009/10/24 02:20:34 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\PCIVP.SYS
    [2009/10/23 18:28:04 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
    [2009/10/21 05:22:00 | 000,298,752 | ---- | C] () -- C:\WINDOWS\System32\drivers\yk51x86.sys
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\sysprs7.dll
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth2.dll
    [2009/08/01 03:13:14 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth1.dll
    [2009/08/01 03:13:14 | 000,000,205 | ---- | C] () -- C:\WINDOWS\System32\lsprst7.dll
    [2009/08/01 03:13:14 | 000,000,073 | ---- | C] () -- C:\WINDOWS\System32\ssprs.dll
    [2009/02/13 19:53:55 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\Days5.ini
    [2009/02/13 18:04:48 | 000,000,028 | ---- | C] () -- C:\Documents and Settings\Noel\Adobe Encore DVD_VUI.pref
    [2009/01/16 10:14:29 | 000,000,395 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
    [2008/12/22 05:03:06 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.log
    [2008/12/22 05:02:44 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\inst.exe
    [2008/12/22 05:02:44 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.cat
    [2008/12/22 05:02:44 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\pcouffin.inf
    [2008/12/19 12:00:13 | 000,001,028 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\WavCodec.wff
    [2008/07/17 18:25:43 | 000,034,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\mbamcatchme.sys
    [2008/07/15 18:41:59 | 000,000,823 | ---- | C] () -- C:\WINDOWS\tsc.ini
    [2008/07/15 18:41:58 | 000,071,749 | ---- | C] () -- C:\WINDOWS\hcextoutput.dll
    [2008/07/15 18:40:57 | 000,000,170 | ---- | C] () -- C:\WINDOWS\GetServer.ini
    [2008/07/15 02:46:48 | 001,776,795 | -HS- | C] () -- C:\WINDOWS\System32\gpekllfs.ini
    [2008/06/20 18:57:51 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
    [2008/04/26 02:52:21 | 000,471,552 | ---- | C] () -- C:\WINDOWS\System32\Smab.dll
    [2008/04/26 02:52:21 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
    [2008/02/19 09:20:43 | 000,001,028 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\AVIEncoder.wff
    [2008/02/04 13:23:10 | 000,693,792 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
    [2008/01/29 04:31:29 | 000,004,238 | ---- | C] () -- C:\Documents and Settings\Noel\UserCustomPreset_Adobe Premiere Pro 2.0.vpr
    [2007/11/09 10:44:52 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\$_hpcst$.hpc
    [2007/11/09 09:14:12 | 000,003,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\BANTExt.sys
    [2007/07/06 18:08:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\videodeLuxe.INI
    [2007/07/06 17:42:26 | 000,006,430 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
    [2007/05/03 16:01:35 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
    [2007/05/03 10:35:01 | 000,000,029 | ---- | C] () -- C:\WINDOWS\viewer.ini
    [2007/05/03 10:26:11 | 000,000,046 | ---- | C] () -- C:\WINDOWS\RmFile.ini
    [2007/05/03 10:25:56 | 000,000,029 | ---- | C] () -- C:\WINDOWS\System32\MprExe.Ini
    [2007/05/03 10:25:26 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\InkPanel.Dll
    [2007/05/03 10:25:26 | 000,000,224 | ---- | C] () -- C:\WINDOWS\System32\ScrSav.ini
    [2007/05/03 10:25:25 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\Wrting32.Dll
    [2007/05/03 10:21:21 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\Funckey.dll
    [2007/05/03 10:21:20 | 000,003,117 | ---- | C] () -- C:\WINDOWS\aiptbl.ini
    [2006/11/15 05:36:58 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\imhost8.dll
    [2006/06/28 09:43:07 | 000,000,056 | ---- | C] () -- C:\Documents and Settings\Noel\intlname.ols
    [2006/06/02 03:50:56 | 000,002,410 | ---- | C] () -- C:\WINDOWS\CDPlayer.ini
    [2006/06/01 12:22:29 | 000,180,295 | ---- | C] () -- C:\WINDOWS\System32\TurboDLL.dll
    [2006/06/01 11:50:56 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvLowrance.dll
    [2006/06/01 11:50:56 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvPyx.dll
    [2006/06/01 11:50:56 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvAvmap.dll
    [2006/06/01 11:50:56 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSuu.dll
    [2006/06/01 11:50:44 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\Polyclip.dll
    [2006/06/01 11:50:44 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\RCalcul.dll
    [2006/05/20 05:04:31 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Noel\AdobeWeb.log
    [2006/03/09 06:40:20 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\Rey_SubClasser.dll
    [2006/02/10 10:31:49 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
    [2005/12/12 03:48:10 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\ZPORT4AS.dll
    [2005/11/25 04:40:37 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
    [2005/11/10 11:00:09 | 000,000,065 | ---- | C] () -- C:\Documents and Settings\Noel\default.pls
    [2005/11/05 05:50:00 | 000,240,640 | ---- | C] () -- C:\WINDOWS\System32\NMOCOD.DLL
    [2005/10/22 04:22:07 | 000,000,365 | ---- | C] () -- C:\WINDOWS\PSADMIN.INI
    [2005/09/07 06:00:50 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\BiMResNT.dll
    [2005/09/07 06:00:50 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\BiCResNT.dll
    [2005/08/25 09:21:26 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
    [2005/08/25 09:21:26 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
    [2005/08/25 09:21:26 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
    [2005/07/30 00:22:58 | 000,045,634 | ---- | C] () -- C:\Documents and Settings\Noel\Application Data\bhrslog.txt
    [2005/07/26 05:23:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
    [2005/07/26 05:20:35 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS6d.DLL
    [2005/07/12 04:11:14 | 000,000,080 | ---- | C] () -- C:\WINDOWS\navigma.INI
    [2005/07/11 19:40:30 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\adistres.dll
    [2005/07/08 19:46:29 | 000,000,017 | ---- | C] () -- C:\WINDOWS\MovingPicture.ini
    [2005/07/08 17:30:33 | 000,335,955 | ---- | C] () -- C:\WINDOWS\System32\s12lo.dll
    [2005/07/08 17:30:33 | 000,155,715 | ---- | C] () -- C:\WINDOWS\System32\tn23.dll
    [2005/07/08 17:30:33 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\gbwx.dll
    [2005/07/08 17:30:33 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\vqs85.DLL
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc3.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc2.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc1.dll
    [2005/07/08 17:30:33 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\lame_enc0.dll
    [2005/07/08 17:30:30 | 000,023,040 | ---- | C] () -- C:\WINDOWS\System32\auth.dll
    [2005/07/06 18:06:17 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\ptevideo.dll
    [2005/07/04 12:58:49 | 000,040,960 | ---- | C] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2005/06/26 17:42:10 | 000,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI
    [2005/06/25 06:32:54 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\Noel\Local Settings\Application Data\fusioncache.dat
    [2005/06/25 05:38:40 | 000,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
    [2005/06/25 04:55:35 | 000,001,293 | ---- | C] () -- C:\WINDOWS\photoimpression.ini
    [2005/06/25 04:52:15 | 000,096,768 | ---- | C] () -- C:\WINDOWS\SlantAdj.dll
    [2005/06/25 04:52:15 | 000,001,571 | ---- | C] () -- C:\WINDOWS\Faxcpp1.ini
    [2005/06/25 04:52:15 | 000,000,422 | ---- | C] () -- C:\WINDOWS\Faxcpp.ini
    [2005/06/25 04:52:15 | 000,000,072 | ---- | C] () -- C:\WINDOWS\System32\epDPE.ini
    [2005/06/16 11:21:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ATIMMC.INI
    [2005/06/16 10:35:58 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
    [2005/06/16 10:35:37 | 000,000,295 | ---- | C] () -- C:\WINDOWS\cmmixer.ini
    [2005/06/16 10:32:31 | 000,000,135 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
    [2005/06/16 10:32:30 | 000,004,238 | ---- | C] () -- C:\WINDOWS\mixerdef.ini
    [2005/06/16 10:29:07 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
    [2005/06/16 09:06:55 | 000,262,144 | ---- | C] () -- C:\WINDOWS\system32\config\systemprofile\ntuser.dat
    [2005/06/16 09:06:55 | 000,008,192 | -H-- | C] () -- C:\WINDOWS\system32\config\systemprofile\ntuser.dat.LOG
    [2005/06/16 07:37:38 | 000,003,627 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
    [2005/06/16 07:37:37 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
    [2005/06/15 15:49:10 | 000,053,248 | -H-- | C] () -- C:\Documents and Settings\Noel\ntuser.dat.LOG
    [2005/06/15 15:49:10 | 000,000,284 | -HS- | C] () -- C:\Documents and Settings\Noel\ntuser.ini
    [2005/06/15 15:44:30 | 000,413,696 | ---- | C] () -- C:\Documents and Settings\LocalService\NTUSER.DAT
    [2005/06/15 15:44:30 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\LocalService\ntuser.dat.LOG
    [2005/06/15 15:44:30 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\LocalService\ntuser.ini
    [2005/06/15 15:44:24 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\NetworkService\ntuser.ini
    [2005/06/15 15:44:23 | 000,413,696 | ---- | C] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT
    [2005/06/15 15:44:23 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\NetworkService\ntuser.dat.LOG
    [2005/04/28 00:22:34 | 000,831,488 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
    [2005/04/28 00:22:34 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
    [2004/10/28 13:26:42 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
    [2004/06/06 06:53:42 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
    [2004/06/05 06:56:16 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
    [2004/03/18 02:44:29 | 001,663,068 | ---- | C] () -- C:\WINDOWS\System32\libmmd.dll
    [2003/12/09 09:09:26 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\Nmea.dll
    [2003/11/27 09:51:18 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\Ogc.dll
    [2003/11/27 09:50:26 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\ConversApi.dll
    [2003/11/10 08:07:38 | 000,066,560 | ---- | C] () -- C:\WINDOWS\System32\atiyuv12.dll
    [2003/11/10 08:07:38 | 000,013,601 | ---- | C] () -- C:\WINDOWS\System32\vctest.ini
    [2003/11/10 08:07:26 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
    [2003/10/03 05:18:40 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSilva.dll
    [2003/10/03 05:18:32 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvSena.dll
    [2003/10/03 05:18:26 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvMlr.dll
    [2003/10/03 05:18:18 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvMagellan.dll
    [2003/10/03 05:18:12 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\OgcDrvGarmin.dll
    [2003/09/15 09:59:04 | 000,022,183 | ---- | C] () -- C:\WINDOWS\System32\drivers\btserial.sys
    [2003/04/01 04:58:02 | 000,005,260 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
    [2002/11/25 09:11:22 | 000,688,128 | ---- | C] () -- C:\WINDOWS\System32\BCGCB474.dll
    [2002/11/01 10:17:50 | 000,000,256 | ---- | C] () -- C:\WINDOWS\aucfg.ini
    [2002/10/15 18:54:04 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
    [2002/07/04 09:05:34 | 000,000,269 | ---- | C] () -- C:\WINDOWS\tmupdate.ini
    [2002/05/15 18:29:04 | 000,000,607 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest
    [2002/02/27 11:28:16 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\MASE32.DLL
    [2002/02/27 11:28:16 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\MASD32.DLL
    [2002/02/27 11:28:14 | 000,196,096 | ---- | C] () -- C:\WINDOWS\System32\MACD32.DLL
    [2002/02/27 11:28:14 | 000,136,192 | ---- | C] () -- C:\WINDOWS\System32\MAMC32.DLL
    [2002/02/27 11:28:14 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\MA32.DLL
    [2002/01/13 11:12:02 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\CP30FW.DLL
    [2001/12/19 03:07:50 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\BCGCBResFRA.dll
    [2001/12/14 07:34:46 | 000,164,864 | ---- | C] () -- C:\WINDOWS\patchw32.dll
    [2001/11/23 13:18:00 | 000,000,597 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest
    [2001/11/14 08:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
    [2000/11/29 04:50:40 | 000,471,040 | ---- | C] () -- C:\WINDOWS\System32\QTExporter.dll
    [1999/07/23 07:46:48 | 000,000,116 | ---- | C] () -- C:\WINDOWS\AuHCcup1.ini
    [1999/07/23 04:53:20 | 000,129,536 | ---- | C] () -- C:\WINDOWS\AuHCcup1.dll
    [1998/08/14 06:44:46 | 000,044,544 | ---- | C] () -- C:\WINDOWS\System32\GIF89.DLL

    ========== LOP Check ==========

    [2006/03/03 13:01:00 | 000,000,000 | ---D | M] -- C:\WINDOWS\system32\config\systemprofile\Application Data\Zeon
    [2005/07/13 03:08:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\ACD Systems
    [2009/12/26 06:51:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Azureus
    [2005/07/26 05:28:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\CD-LabelPrint
    [2006/04/05 18:00:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\EPSON
    [2007/08/10 12:41:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Green Parrots Software
    [2005/07/11 19:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\InterTrust
    [2009/10/16 09:53:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\KC Softwares
    [2006/10/13 20:03:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\LEAPS
    [2008/01/09 10:09:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\MAGIX
    [2006/09/30 03:49:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Micro Application
    [2008/02/19 09:18:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\NCH Swift Sound
    [2008/01/09 13:02:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Opera
    [2008/02/26 09:36:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Participatory Culture Foundation
    [2006/08/28 09:33:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Pegasys Inc
    [2006/04/05 09:00:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Quark
    [2009/01/16 10:26:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\ScanSoft
    [2008/05/26 06:33:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\TaoUSign
    [2007/06/05 03:38:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\TuneUp Software
    [2010/06/18 07:21:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Uniblue
    [2001/12/31 19:50:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Usenet.nl
    [2009/02/13 18:09:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\uTorrent
    [2005/07/07 05:22:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\VadeRetro
    [2009/02/09 14:02:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Vso
    [2005/07/08 10:50:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\X10 Commander
    [2005/12/24 12:49:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\XnView
    [2005/07/11 19:00:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\XnView Deluxe
    [2006/04/04 11:02:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Noel\Application Data\Zeon
    [2010/06/24 20:00:03 | 000,000,506 | ---- | M] () -- C:\WINDOWS\Tasks\Maintenance en 1 clic.job
    [2010/06/24 07:58:38 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
    [2011/11/05 19:05:22 | 000,000,430 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{362E2F5D-27EF-45CB-A2B3-8BA53CB7ACA7}.job

    ========== Purity Check ==========



    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 24 bytes -> C:\WINDOWS:D 6BB024C4410F641
    < End of report >

    Je pense que je m'achemine doucement vers un formatage
    En tout cas merci beaucoup pour ta patience et ta générosité.
    J'attends ton feux vert avant de procéder au formatage de mon disque dur

    @+
    10 Juillet 2010 14:24:12

    Bonjour
    je ne comprends pas...

    pas normal qu'il ne reboote pas.

    avant de formater, essyaye un réparation.
    n'oublie pas que tu peux récupérer tes données avec OTLPE avant de formater

    je pars demain, retour fin aout.
    :hello: 
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS