Se connecter / S'enregistrer
Votre question

Impossible d'installer un antivirus

Tags :
  • X86
  • Sécurité
Dernière réponse : dans Sécurité et virus
31 Janvier 2010 02:34:36

Bonsoir,

Je n'arrive plus à installer un antivirus sur mon ordinateur.

Voici le rapport :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:29:08, on 31/01/2010
Platform: Windows 2003 SP2 (WinNT 5.02.3790)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\a-squared Free\a2service.exe
C:\PROGRA~2\COMMON~1\AOL\ACS\AOLacsd.exe
C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
C:\Program Files (x86)\IObit\IObit Security 360\IS360srv.exe
C:\Program Files (x86)\Java\jre6\bin\jqs.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe
C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
C:\Program Files\HijackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_BAND_SEARCHBAR_HTML
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://192.168.1.1/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.missim.org/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = C:\Program Files (x86)\AOL Toolbar\welcome.html
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://update.microsoft.com/
R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - C:\PROGRA~2\Copernic Agent\CopernicAgentExt.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: Download-FR Toolbar - {8e7da7e7-9f7e-426e-b964-be9f1cbc9d79} - C:\Program Files (x86)\Download-FR\tbDow1.dll
R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\tbfre1.dll
R3 - URLSearchHook: Softonic France Toolbar - {364d4e0c-543f-4b85-abe3-19551139da4f} - C:\Program Files (x86)\Softonic_France\tbSoft.dll
O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files (x86)\Orbitdownloader\orbitcth.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll
O2 - BHO: Softonic France Toolbar - {364d4e0c-543f-4b85-abe3-19551139da4f} - C:\Program Files (x86)\Softonic_France\tbSoft.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files (x86)\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Download-FR Toolbar - {8e7da7e7-9f7e-426e-b964-be9f1cbc9d79} - C:\Program Files (x86)\Download-FR\tbDow1.dll
O2 - BHO: BywifiBHO - {C4743D3E-20D7-4B52-84F2-5E4E277B2D82} - C:\Program Files (x86)\Bywifi\bywifiie.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files (x86)\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\tbfre1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: (no name) - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - (no file)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files (x86)\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: Download-FR Toolbar - {8e7da7e7-9f7e-426e-b964-be9f1cbc9d79} - C:\Program Files (x86)\Download-FR\tbDow1.dll
O3 - Toolbar: (no name) - {8B79EE88-E62D-4AA8-B530-CC357BA112B7} - (no file)
O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\tbfre1.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: ßíäåêñ.Áàð - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files (x86)\Yandex\YandexBarIE\yndbar.dll
O3 - Toolbar: Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files (x86)\Orbitdownloader\GrabPro.dll
O3 - Toolbar: Softonic France Toolbar - {364d4e0c-543f-4b85-abe3-19551139da4f} - C:\Program Files (x86)\Softonic_France\tbSoft.dll
O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\PROGRA~2\Copernic Agent\CopernicAgentExt.dll
O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Global Startup: Logitech SetPoint.lnk = ?
O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/201
O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/204
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files (x86)\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: Add to &Teleport - C:\Program Files (x86)\Teleport Pro\teleport.htm
O8 - Extra context menu item: Barre RoboForm - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: Chercher avec Copernic Agent - res://C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_MENU_SEARCHEXT
O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/203
O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/202
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files (x86)\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files (x86)\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files (x86)\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files (x86)\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
O8 - Extra context menu item: Enregistrer le formulaire - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: Personnaliser le menu - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Remplir le formulaire - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dlfvideo.htm
O9 - Extra button: Bywifi: Video Downloader - {09E90109-A9AA-4980-BCEF-76F8D924E902} - C:\WINDOWS\SysWOW64\shdocvw.dll
O9 - Extra 'Tools' menuitem: Bywifi: Video Downloader - {09E90109-A9AA-4980-BCEF-76F8D924E902} - C:\WINDOWS\SysWOW64\shdocvw.dll
O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~2\Copernic Agent\CopernicAgent.exe
O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~2\Copernic Agent\CopernicAgent.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Remplir - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Remplir le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Enregistrer - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Enregistrer le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\WINDOWS\SysWOW64\shdocvw.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\WINDOWS\SysWOW64\shdocvw.dll
O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\PROGRA~2\Copernic Agent\CopernicAgent.exe
O9 - Extra button: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Platinum Play Online Casino - 2D48CEEC-F6FD-42FC-93A3-D6F0D292F771 - C:\Microgaming\Casino\PlatinumPlay\Casinogame.exe (HKCU)
O9 - Extra button: Bywifi: Video Downloader - {09E90109-A9AA-4980-BCEF-76F8D924E902} - C:\WINDOWS\SysWOW64\shdocvw.dll (HKCU)
O9 - Extra 'Tools' menuitem: Bywifi: Video Downloader - {09E90109-A9AA-4980-BCEF-76F8D924E902} - C:\WINDOWS\SysWOW64\shdocvw.dll (HKCU)
O9 - Extra button: HiDownload - {F4FBA929-A891-492C-A0F6-5C79CC4F1742} - C:\Program Files (x86)\StreamingStar\HiDownload\hidownload.exe (HKCU)
O15 - ESC Trusted Zone: http://runonce.msn.com
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Contro...
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} -
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/shockwave/cabs/fl...
O17 - HKLM\System\CCS\Services\Tcpip\..\{9E137C0F-E643-4662-96D5-04678656C5CA}: NameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{B254C732-508B-458E-BF31-F5F13C68391F}: NameServer = 208.67.222.222,208.67.220.220
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files (x86)\a-squared Free\a2service.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~2\COMMON~1\AOL\ACS\AOLacsd.exe
O23 - Service: ASKUpgrade - Unknown owner - C:\Program Files (x86)\AskBarDis\bar\bin\ASKUpgrade.exe
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: Browser Defender Update Service - Threat Expert Ltd. - C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe
O23 - Service: cFosSpeed System Service (cFosSpeedS) - cFos Software GmbH - C:\Program Files\cFosSpeed\spd.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: Event Log (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe (file missing)
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: HTTP SSL (HTTPFilter) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IMAPI CD-Burning COM Service (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe (file missing)
O23 - Service: IS360service - IObit - C:\Program Files (x86)\IObit\IObit Security 360\IS360srv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files (x86)\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files (x86)\ma-config.com\maconfservice.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Distributed Transaction Coordinator (MSDTC) - Unknown owner - C:\WINDOWS\system32\msdtc.exe (file missing)
O23 - Service: Net Logon (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NT LM Security Support Provider (NtLmSsp) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvsvc64.exe (file missing)
O23 - Service: Plug and Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe (file missing)
O23 - Service: IPSEC Services (PolicyAgent) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Protected Storage (ProtectedStorage) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Remote Desktop Help Session Manager (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe (file missing)
O23 - Service: Security Accounts Manager (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Telnet (TlntSvr) - Unknown owner - C:\WINDOWS\system32\tlntsvr.exe (file missing)
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - Unknown owner - C:\WINDOWS\System32\TuneUpDefragService.exe (file missing)
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - Unknown owner - C:\WINDOWS\System32\TUProgSt.exe (file missing)
O23 - Service: Virtual Disk Service (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe (file missing)
O23 - Service: WMI Performance Adapter (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe (file missing)

--
End of file - 18385 bytes


Merci de m'aider au plus vite.

Autres pages sur : impossible installer antivirus

a c 295 8 Sécurité
31 Janvier 2010 10:10:35

Bonjour,

Je vois NOD32 comme antivirus.
31 Janvier 2010 17:45:08

J'ai bien l'antivirus Nod 32, mais il est impossible de le désinstaller et d'en installer un autre.

L'antivirus Nod32 n'apparaît pas dans le panneau de configuration.




Contenus similaires
a c 295 8 Sécurité
31 Janvier 2010 18:01:01

  • Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
  • Double-clique sur RSIT.exe afin de lancer le programme.
    (Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)
  • Clique sur Continue à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

    Note : les rapports sont sauvegardés dans le dossier C:\Rsit.
    31 Janvier 2010 21:29:46

    Je viens de télécharger RSIT, et je l'ai mis sur le bureau, mais je n'arrive pas à l'installer.

    J'ai le message suivant qui s'affiche :

    Autolt Error


    Line -1 :

    Error:Variable used without being declared


    Je ne sais pas ce qu'il faut faire.
    a c 295 8 Sécurité
    31 Janvier 2010 23:35:58

  • Télécharge OTL (de OldTimer) sur ton Bureau.
  • Double-clique sur OTL pour le lancer.
    (Sous Vista/7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)
  • Une fenêtre apparaît. Dans la section Output en haut de cette fenêtre, coche Minimal Output.
  • Coche également les cases à côté de LOP Check et Purity Check.
  • Enfin, clique sur le bouton Run Scan. Le scan ne prendra pas beaucoup de temps.
  • Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTL (donc par défaut sur le Bureau).

    Pour me transmettre les rapports :
  • Clique sur ce lien : http://www.cijoint.fr/
  • Clique sur Parcourir... et cherche le fichier du rapport que tu souhaites me transmettre.
  • Clique sur Ouvrir.
  • Clique sur Cliquez ici pour déposer le fichier.
  • Un lien de cette forme, hxxp://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt, est ajouté dans la page.
  • Copie-colle ce lien dans ta réponse.
    a c 295 8 Sécurité
    1 Février 2010 17:06:09

    a-squared Free 4.5, Malwarebytes' Anti-Malware, Spyware Doctor 7.0...

    Garde un seul antispyware.

  • Double-clique sur OTL pour le lancer.
    (Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)
  • Sous l'onglet Custom Scans/Fixes en bas de la fenêtre, copie-colle le texte suivant (entre les deux espaces) :

    :OTL
    PRC - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe (ESET)
    SRV:[b]64bit:[/b] - (EhttpSrv) -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe (ESET)
    SRV:[b]64bit:[/b] - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe (ESET)
    SRV - (ASKUpgrade) -- C:\Program Files (x86)\AskBarDis\bar\bin\ASKUpgrade.exe ()
    O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)
    O3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)
    O3 - HKLM\..\Toolbar: (no name) - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - No CLSID value found.
    O3 - HKLM\..\Toolbar: (no name) - {8B79EE88-E62D-4AA8-B530-CC357BA112B7} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)

    :files
    C:\Program Files (x86)\AskBarDis
    C:\Program Files\ESET

    :commands
    [emptytemp]
    [reboot]

  • Puis clique sur le bouton Run Fix en haut de la fenêtre.
  • Laisse le programme travailler, redémarre une fois le fix terminé.
  • Poste le rapport qui s'affichera après redémarrage.
    1 Février 2010 17:44:26

    Voici le rapport :

    All processes killed
    ========== OTL ==========
    Process ekrn.exe killed successfully!
    Service EhttpSrv stopped successfully!
    Service EhttpSrv deleted successfully!
    C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe moved successfully.
    Error: Unable to stop service ekrn!
    Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ekrn deleted successfully.
    C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe moved successfully.
    Error: No service named ASKUpgrade was found to stop!
    Unable to stop service ASKUpgrade!
    File C:\Program Files (x86)\AskBarDis\bar\bin\ASKUpgrade.exe not found.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{201f27d4-3704-41d6-89c1-aa35e39143ed}\ not found.
    File C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll not found.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{3041d03e-fd4b-44e0-b742-2d9b88305f98} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3041d03e-fd4b-44e0-b742-2d9b88305f98}\ not found.
    File C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll not found.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{4982D40A-C53B-4615-B15B-B5B5E98D167C} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4982D40A-C53B-4615-B15B-B5B5E98D167C}\ not found.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{8B79EE88-E62D-4AA8-B530-CC357BA112B7} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8B79EE88-E62D-4AA8-B530-CC357BA112B7}\ not found.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{3041D03E-FD4B-44E0-B742-2D9B88305F98} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3041D03E-FD4B-44E0-B742-2D9B88305F98}\ not found.
    File C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll not found.
    ========== FILES ==========
    File\Folder C:\Program Files (x86)\AskBarDis not found.
    C:\Program Files\ESET\ESET NOD32 Antivirus\x86 folder moved successfully.
    C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird\Components folder moved successfully.
    C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird folder moved successfully.
    C:\Program Files\ESET\ESET NOD32 Antivirus\Drivers\epfwtdir folder moved successfully.
    C:\Program Files\ESET\ESET NOD32 Antivirus\Drivers\ehdrv folder moved successfully.
    C:\Program Files\ESET\ESET NOD32 Antivirus\Drivers\eamon folder moved successfully.
    C:\Program Files\ESET\ESET NOD32 Antivirus\Drivers folder moved successfully.
    C:\Program Files\ESET\ESET NOD32 Antivirus folder moved successfully.
    C:\Program Files\ESET folder moved successfully.
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: Administrator
    ->Temp folder emptied: 655032931 bytes
    ->Temporary Internet Files folder emptied: 249232849 bytes
    ->Java cache emptied: 0 bytes
    ->FireFox cache emptied: 330977626 bytes
    ->Opera cache emptied: 53824403 bytes

    User: All Users

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes

    User: LocalService
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes

    User: NetworkService
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 402 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 2685474 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 512 bytes
    RecycleBin emptied: 2144538325 bytes

    Total Files Cleaned = 3 277,00 mb


    OTL by OldTimer - Version 3.1.27.1 log created on 02012010_173550

    Files\Folders moved on Reboot...

    Registry entries deleted on Reboot...
    a c 295 8 Sécurité
    2 Février 2010 00:29:02

    Bien, refais un scan OTL et poste le rapport.
    2 Février 2010 01:01:04

    Voici le rapport OTL :

    OTL logfile created on: 02/02/2010 00:58:10 - Run 2
    OTL by OldTimer - Version 3.1.27.1 Folder = C:\Documents and Settings\Administrator\Desktop
    64bit-Windows Server 2003 Service Pack 2 (Version = 5.2.3790) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

    4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 76,00% Memory free
    6,00 Gb Paging File | 5,00 Gb Available in Paging File | 89,00% Paging File free
    Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 931,50 Gb Total Space | 382,63 Gb Free Space | 41,08% Space Free | Partition Type: NTFS
    D: Drive not present or media not loaded
    E: Drive not present or media not loaded
    F: Drive not present or media not loaded
    G: Drive not present or media not loaded
    Drive H: | 1,96 Gb Total Space | 1,95 Gb Free Space | 99,83% Space Free | Partition Type: FAT32
    I: Drive not present or media not loaded
    Drive L: | 3,72 Gb Total Space | 0,76 Gb Free Space | 20,51% Space Free | Partition Type: FAT32

    Computer Name: COYEN-PC
    Current User Name: Administrator
    Logged in as Administrator.

    Current Boot Mode: Normal
    Scan Mode: Current user
    Include 64bit Scans
    Company Name Whitelist: Off
    Skip Microsoft Files: Off
    File Age = 30 Days
    Output = Minimal

    ========== Processes (SafeList) ==========

    PRC - C:\Documents and Settings\Administrator\Desktop\OTL.exe (OldTimer Tools)
    PRC - C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe (Siber Systems)
    PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
    PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
    PRC - c:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe (McAfee, Inc.)
    PRC - C:\Program Files (x86)\Orbitdownloader\orbitdm.exe (Orbitdownloader.com)
    PRC - C:\Program Files (x86)\Orbitdownloader\orbitnet.exe (Orbitdownloader.com)
    PRC - C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
    PRC - C:\Program Files (x86)\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
    PRC - C:\Program Files\Daemon Tools\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
    PRC - C:\Program Files (x86)\Common Files\Yandex\Yupdate\yupdate.exe (ООО "ЯНДЕКС")
    PRC - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (Rocket Division Software)
    PRC - C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe ()
    PRC - C:\Program Files (x86)\Common Files\AOL\ACS\AOLacsd.exe (America Online, Inc.)


    ========== Modules (SafeList) ==========

    MOD - C:\Documents and Settings\Administrator\Desktop\OTL.exe (OldTimer Tools)
    MOD - C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll (Microsoft Corporation)
    MOD - C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcp80.dll (Microsoft Corporation)
    MOD - C:\Program Files\Logitech\SetPoint\x86\GameHook.dll (Logitech Inc.)
    MOD - C:\Program Files\Logitech\SetPoint\x86\lgscroll.dll (Logitech Inc.)
    MOD - C:\WINDOWS\SysWOW64\comdlg32.dll (Microsoft Corporation)
    MOD - C:\WINDOWS\SysWOW64\MSCTFIME.IME (Microsoft Corporation)
    MOD - C:\WINDOWS\WinSxS\wow64_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.3790.3959_x-ww_5FA17F4E\comctl32.dll (Microsoft Corporation)


    ========== Win32 Services (SafeList) ==========

    SRV:64bit: - (cFosSpeedS) -- C:\Program Files\cFosSpeed\spd.exe (cFos Software GmbH)
    SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
    SRV - (McAfee SiteAdvisor Service) -- c:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe (McAfee, Inc.)
    SRV - (JavaQuickStarterService) -- C:\Program Files (x86)\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
    SRV - (maconfservice) -- C:\Program Files (x86)\ma-config.com\maconfservice.exe (CybelSoft)
    SRV - (UxTuneUp) -- C:\WINDOWS\SysWOW64\uxtuneup.dll (TuneUp Software)
    SRV - (Microsoft Office Groove Audit Service) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe (Microsoft Corporation)
    SRV - (ATKKeyboardService) -- C:\WINDOWS\ATKKBService.exe (ASUSTeK COMPUTER INC.)
    SRV - (clr_optimization_v2.0.50727_64) -- C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
    SRV - (aspnet_state) -- C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\aspnet_state.exe (Microsoft Corporation)
    SRV - (StarWindServiceAE) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (Rocket Division Software)
    SRV - (IASJet) -- C:\WINDOWS\SysWOW64\iasrecst.dll (Microsoft Corporation)
    SRV - (helpsvc) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll (Microsoft Corporation)
    SRV - (UMWdf) -- C:\WINDOWS\SysWOW64\wdfmgr.exe (Microsoft Corporation)
    SRV - (FirebirdServerMAGIXInstance) -- C:\Program Files (x86)\MAGIX\Common\Database\bin\fbserver.exe (MAGIX®)
    SRV - (IDriverT) -- C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe (Macrovision Corporation)
    SRV - (AOL ACS) -- C:\Program Files (x86)\Common Files\AOL\ACS\AOLacsd.exe (America Online, Inc.)


    ========== Driver Services (SafeList) ==========

    DRV - (AnyDVD) -- C:\WINDOWS\SysWOW64\Drivers\AnyDVD.sys (SlySoft, Inc.)
    DRV - (ElbyCDIO) -- C:\WINDOWS\SysWOW64\ElbyCDIO.dll (Elaborate Bytes AG)
    DRV - (EIO_XP) -- C:\WINDOWS\SysWOW64\Drivers\EIO64_xp.sys (ASUSTeK Computer Inc.)
    DRV - (PCANDIS5) -- C:\WINDOWS\SysWOW64\PCANDIS5.sys (Printing Communications Assoc., Inc. (PCAUSA))
    DRV - (driverhardwarev2x64) -- C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys (CybelSoft)
    DRV - (ISODrive) -- C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys (EZB Systems, Inc.)
    DRV - (splitter) -- C:\WINDOWS\SysWOW64\splitter.ax ()
    DRV - (AsIO) -- C:\WINDOWS\SysWOW64\Drivers\AsIO.sys ()
    DRV - (mnmdd) -- C:\WINDOWS\SysWOW64\mnmdd.dll (Microsoft Corporation)
    DRV - (speedfan) -- C:\WINDOWS\SysWOW64\speedfan.sys (Windows (R) Server 2003 DDK provider)
    DRV - (nvport) -- C:\WINDOWS\SysWOW64\Drivers\nvport.sys (NVIDIA Corporation.)
    DRV - (pfc) -- C:\WINDOWS\SysWOW64\Drivers\pfc.sys (Padus, Inc.)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = C:\Program Files (x86)\AOL Toolbar\welcome.html
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.missim.org/

    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://192.168.1.1/
    IE - HKCU\..\URLSearchHook: {364d4e0c-543f-4b85-abe3-19551139da4f} - C:\Program Files (x86)\Softonic_France\tbSoft.dll (Conduit Ltd.)
    IE - HKCU\..\URLSearchHook: {8e7da7e7-9f7e-426e-b964-be9f1cbc9d79} - C:\Program Files (x86)\Download-FR\tbDow1.dll (Conduit Ltd.)
    IE - HKCU\..\URLSearchHook: {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
    IE - HKCU\..\URLSearchHook: {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\tbfre1.dll (Conduit Ltd.)
    IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    ========== FireFox ==========

    FF - prefs.js..browser.search.defaultenginename: "Secure Search"
    FF - prefs.js..browser.search.defaultthis.engineName: "blueshirtstudio Customized Web Search"
    FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT109485...{searchTerms}"
    FF - prefs.js..browser.search.order.1: "Ask"
    FF - prefs.js..browser.search.selectedEngine: "Google"
    FF - prefs.js..browser.search.useDBForOrder: true
    FF - prefs.js..browser.startup.homepage: "http://www.google.fr"
    FF - prefs.js..extensions.enabledItems: {22119944-ED35-4ab1-910B-E619EA06A115}:6.9.97
    FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.3
    FF - prefs.js..extensions.enabledItems: bookmarkpreviews@mozdev.org:0.8.0
    FF - prefs.js..extensions.enabledItems: {63df8e21-711c-4074-a257-b065cadc28d8}:1.9.3
    FF - prefs.js..extensions.enabledItems: {DDC359D1-844A-42a7-9AA1-88A850A938A8}:1.1.8
    FF - prefs.js..extensions.enabledItems: {8e7da7e7-9f7e-426e-b964-be9f1cbc9d79}:2.5.6.0
    FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.7
    FF - prefs.js..extensions.enabledItems: firedownload@mozilla.org:1.1.7
    FF - prefs.js..extensions.enabledItems: {44d0a1b4-9c90-4f86-ac92-8680b5d6549e}:0.6.4.1
    FF - prefs.js..extensions.enabledItems: imdldb@p4ul.info:1.1
    FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
    FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:3.0
    FF - prefs.js..extensions.enabledItems: {39379F86-9CCB-4724-AE33-4278DE266C88}:1.0.1
    FF - prefs.js..extensions.enabledItems: {dc572301-7619-498c-a57d-39143191b318}:0.3.8.2
    FF - prefs.js..extensions.enabledItems: {54BB9F3F-07E5-486c-9B39-C7398B99391C}:3.1.2009110201
    FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.5.200812101546
    FF - prefs.js..keyword.URL: "http://fr.search.yahoo.com/search?fr=mcafee&p="
    FF - prefs.js..network.proxy.autoconfig_url: "http://localhost:9000/proxy.pac"
    FF - prefs.js..network.proxy.http: "148.233.239.24"
    FF - prefs.js..network.proxy.http_port: 80


    FF - HKLM\software\mozilla\Firefox\extensions\\{22119944-ED35-4ab1-910B-E619EA06A115}: C:\Program Files (x86)\Siber Systems\AI RoboForm\Firefox [2010/01/20 23:34:28 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Firefox\extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files (x86)\McAfee\SiteAdvisor [2010/02/02 00:02:10 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/02/01 17:21:34 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/01/17 00:04:55 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

    [2009/11/06 03:13:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
    [2009/11/06 03:13:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions\maxtv@developer.max-tv.be
    [2009/09/30 16:40:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions\mozswing@mozswing.org
    [2010/02/02 00:28:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions
    [2009/11/06 02:19:49 | 000,000,000 | ---D | M] (MegaUpload Time Attack) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\{1cdccf78-1ea9-4f40-b69f-ef7674dbef8c}
    [2009/10/25 17:08:50 | 000,000,000 | ---D | M] (Mega Manager Integration) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\{40a1f5d7-afc2-498f-b264-02668d616ff6}
    [2010/02/01 15:25:15 | 000,000,000 | ---D | M] (Gmail Notifier) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\{44d0a1b4-9c90-4f86-ac92-8680b5d6549e}
    [2010/02/02 00:33:22 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}
    [2009/11/27 20:00:30 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\{54BB9F3F-07E5-486c-9B39-C7398B99391C}
    [2009/08/07 11:26:32 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
    [2010/01/31 23:36:00 | 000,000,000 | ---D | M] (CuteMenus - Crystal SVG) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\{63df8e21-711c-4074-a257-b065cadc28d8}
    [2010/01/22 01:02:13 | 000,000,000 | ---D | M] (Download-FR Toolbar) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\{8e7da7e7-9f7e-426e-b964-be9f1cbc9d79}
    [2010/01/22 01:02:11 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
    [2010/01/22 01:02:09 | 000,000,000 | ---D | M] (blueshirtstudio Toolbar) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\{bfcdcebe-e1fb-40f9-b4e2-7bb1138ef76c}
    [2010/01/22 01:02:08 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
    [2010/02/02 00:28:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\{dc572301-7619-498c-a57d-39143191b318}
    [2010/01/22 01:02:07 | 000,000,000 | ---D | M] (DownThemAll!) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
    [2009/11/01 02:03:50 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus(R))) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
    [2010/01/18 05:53:55 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
    [2010/02/01 20:59:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\bookmarkpreviews@mozdev.org
    [2009/11/01 19:10:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\dave2x@download
    [2010/01/18 05:53:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\DTToolbar@toolbarnet.com
    [2009/11/06 02:19:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\firedownload@mozilla.org
    [2010/01/28 22:48:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\foxyproxy@eric.h.jung
    [2009/11/01 18:51:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\imdldb@p4ul.info
    [2010/02/02 00:33:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\extensions\staged-xpis
    [2009/07/05 12:11:16 | 000,000,687 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\searchplugins\ask.xml
    [2009/10/06 17:08:16 | 000,000,892 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\searchplugins\conduit.xml
    [2009/08/30 04:02:34 | 000,002,399 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\dyd2izs5.default\searchplugins\daemon-search.xml
    [2010/01/17 00:04:55 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
    [2009/07/07 17:30:54 | 000,000,000 | ---D | M] (Download-FR Toolbar) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{8e7da7e7-9f7e-426e-b964-be9f1cbc9d79}
    [2009/07/17 23:20:23 | 000,226,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdrmv2.dll
    [2009/07/17 23:21:46 | 000,364,544 | ---- | M] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdsplay.dll
    [2009/07/17 23:21:07 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npwmsdrm.dll
    [2009/12/22 04:51:01 | 000,001,516 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\amazon-france.xml
    [2009/12/22 04:51:01 | 000,001,822 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml
    [2009/12/22 04:51:01 | 000,000,757 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\eBay-france.xml
    [2010/02/01 15:24:10 | 000,002,027 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\McSiteAdvisor.xml
    [2009/12/22 04:51:01 | 000,001,426 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-fr.xml
    [2009/12/22 04:51:01 | 000,000,652 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\yahoo-france.xml

    Hosts file not found
    O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
    O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files (x86)\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
    O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
    O2 - BHO: (Softonic France Toolbar) - {364d4e0c-543f-4b85-abe3-19551139da4f} - C:\Program Files (x86)\Softonic_France\tbSoft.dll (Conduit Ltd.)
    O2 - BHO: (EWPBrowseObject Class) - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files (x86)\Canon\Easy-WebPrint\EWPBrowseLoader.dll ()
    O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
    O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
    O2 - BHO: (Download-FR Toolbar) - {8e7da7e7-9f7e-426e-b964-be9f1cbc9d79} - C:\Program Files (x86)\Download-FR\tbDow1.dll (Conduit Ltd.)
    O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
    O2 - BHO: (BywifiBHO Class) - {C4743D3E-20D7-4B52-84F2-5E4E277B2D82} - C:\Program Files (x86)\Bywifi\bywifiie.dll (bywifi.com)
    O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
    O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files (x86)\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
    O2 - BHO: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\tbfre1.dll (Conduit Ltd.)
    O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
    O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
    O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
    O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files (x86)\Canon\Easy-WebPrint\Toolband.dll ()
    O3 - HKLM\..\Toolbar: (Softonic France Toolbar) - {364d4e0c-543f-4b85-abe3-19551139da4f} - C:\Program Files (x86)\Softonic_France\tbSoft.dll (Conduit Ltd.)
    O3 - HKLM\..\Toolbar: (&RoboForm) - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
    O3 - HKLM\..\Toolbar: (Download-FR Toolbar) - {8e7da7e7-9f7e-426e-b964-be9f1cbc9d79} - C:\Program Files (x86)\Download-FR\tbDow1.dll (Conduit Ltd.)
    O3 - HKLM\..\Toolbar: (ßíäåêñ.Áàð) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files (x86)\Yandex\YandexBarIE\yndbar.dll (ООО «ЯНДЕКС»)
    O3 - HKLM\..\Toolbar: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files (x86)\Orbitdownloader\GrabPro.dll ()
    O3 - HKLM\..\Toolbar: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\tbfre1.dll (Conduit Ltd.)
    O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
    O3 - HKLM\..\Toolbar: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
    O3 - HKCU\..\Toolbar\WebBrowser: (Softonic France Toolbar) - {364D4E0C-543F-4B85-ABE3-19551139DA4F} - C:\Program Files (x86)\Softonic_France\tbSoft.dll (Conduit Ltd.)
    O3 - HKCU\..\Toolbar\WebBrowser: (Download-FR Toolbar) - {8E7DA7E7-9F7E-426E-B964-BE9F1CBC9D79} - C:\Program Files (x86)\Download-FR\tbDow1.dll (Conduit Ltd.)
    O3 - HKCU\..\Toolbar\WebBrowser: (ßíäåêñ.Áàð) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files (x86)\Yandex\YandexBarIE\yndbar.dll (ООО «ЯНДЕКС»)
    O3 - HKCU\..\Toolbar\WebBrowser: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files (x86)\Orbitdownloader\GrabPro.dll ()
    O3 - HKCU\..\Toolbar\WebBrowser: (free-downloads.net Toolbar) - {ECDEE021-0D17-467F-A1FF-C7A115230949} - C:\Program Files (x86)\free-downloads.net\tbfre1.dll (Conduit Ltd.)
    O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
    O3 - HKCU\..\Toolbar\WebBrowser: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
    O4:64bit: - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
    O4:64bit: - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech Inc.)
    O4:64bit: - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\SysNative\NvCpl.DLL File not found
    O4:64bit: - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
    O4:64bit: - HKLM..\Run: [SkyTel] C:\WINDOWS\SkyTel.exe (Realtek Semiconductor Corp.)
    O4 - HKCU..\Run: [AnyDVD] C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVD.exe (SlySoft, Inc.)
    O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\Daemon Tools\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
    O4 - HKCU..\Run: [RoboForm] C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe (Siber Systems)
    O4 - HKCU..\Run: [Yupdate!] C:\Program Files (x86)\Common Files\Yandex\Yupdate\yupdate.exe (ООО "ЯНДЕКС")
    O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech Inc.)
    O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Orbit.lnk = C:\Program Files (x86)\Orbitdownloader\orbitdm.exe (Orbitdownloader.com)
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0
    O8:64bit: - Extra context menu item: &Download by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
    O8:64bit: - Extra context menu item: &Grab video by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
    O8:64bit: - Extra context menu item: &Recherche AOL Toolbar - C:\Program Files (x86)\AOL Toolbar\toolbar.dll (IE Toolbar)
    O8:64bit: - Extra context menu item: Add to &Teleport - C:\Program Files (x86)\Teleport Pro\teleport.htm ()
    O8:64bit: - Extra context menu item: Barre RoboForm - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
    O8:64bit: - Extra context menu item: Chercher avec Copernic Agent - C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.rdl (Copernic Technologies Inc.)
    O8:64bit: - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
    O8:64bit: - Extra context menu item: Down&load all by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
    O8:64bit: - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - C:\Program Files (x86)\Canon\Easy-WebPrint\Toolband.dll ()
    O8:64bit: - Extra context menu item: Easy-WebPrint Impression rapide - C:\Program Files (x86)\Canon\Easy-WebPrint\Toolband.dll ()
    O8:64bit: - Extra context menu item: Easy-WebPrint Imprimer - C:\Program Files (x86)\Canon\Easy-WebPrint\Toolband.dll ()
    O8:64bit: - Extra context menu item: Easy-WebPrint Prévisualiser - C:\Program Files (x86)\Canon\Easy-WebPrint\Toolband.dll ()
    O8:64bit: - Extra context menu item: Enregistrer le formulaire - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
    O8:64bit: - Extra context menu item: Personnaliser le menu - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html ()
    O8:64bit: - Extra context menu item: Remplir le formulaire - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
    O8 - Extra context menu item: &Download by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
    O8 - Extra context menu item: &Grab video by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
    O8 - Extra context menu item: &Recherche AOL Toolbar - C:\Program Files (x86)\AOL Toolbar\toolbar.dll (IE Toolbar)
    O8 - Extra context menu item: Add to &Teleport - C:\Program Files (x86)\Teleport Pro\teleport.htm ()
    O8 - Extra context menu item: Barre RoboForm - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
    O8 - Extra context menu item: Chercher avec Copernic Agent - C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.rdl (Copernic Technologies Inc.)
    O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
    O8 - Extra context menu item: Down&load all by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
    O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - C:\Program Files (x86)\Canon\Easy-WebPrint\Toolband.dll ()
    O8 - Extra context menu item: Easy-WebPrint Impression rapide - C:\Program Files (x86)\Canon\Easy-WebPrint\Toolband.dll ()
    O8 - Extra context menu item: Easy-WebPrint Imprimer - C:\Program Files (x86)\Canon\Easy-WebPrint\Toolband.dll ()
    O8 - Extra context menu item: Easy-WebPrint Prévisualiser - C:\Program Files (x86)\Canon\Easy-WebPrint\Toolband.dll ()
    O8 - Extra context menu item: Enregistrer le formulaire - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
    O8 - Extra context menu item: Personnaliser le menu - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html ()
    O8 - Extra context menu item: Remplir le formulaire - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
    O9:64bit: - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
    O9:64bit: - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
    O9 - Extra Button: Bywifi: Video Downloader - {09E90109-A9AA-4980-BCEF-76F8D924E902} - Reg Error: Value error. File not found
    O9 - Extra 'Tools' menuitem : Bywifi: Video Downloader - {09E90109-A9AA-4980-BCEF-76F8D924E902} - Reg Error: Value error. File not found
    O9 - Extra 'Tools' menuitem : Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\Program Files (x86)\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.)
    O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
    O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
    O9 - Extra Button: Remplir - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
    O9 - Extra 'Tools' menuitem : Remplir le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
    O9 - Extra Button: Enregistrer - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
    O9 - Extra 'Tools' menuitem : Enregistrer le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
    O9 - Extra Button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - Reg Error: Key error. File not found
    O9 - Extra 'Tools' menuitem : AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - Reg Error: Value error. File not found
    O9 - Extra Button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\Program Files (x86)\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.)
    O9 - Extra Button: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
    O9 - Extra 'Tools' menuitem : Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
    O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
    O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
    O15:64bit: - ..Trusted Domains: 57 domain(s) and sub-domain(s) not assigned to a zone.
    O15 - HKLM\..Trusted Domains: 57 domain(s) and sub-domain(s) not assigned to a zone.
    O15 - HKCU\..Trusted Domains: 63 domain(s) and sub-domain(s) not assigned to a zone.
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-wind... (Java Plug-in 1.6.0_16)
    O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-wind... (Java Plug-in 1.6.0_16)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-wind... (Reg Error: Key error.)
    O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/direc... (Shockwave ActiveX Control)
    O16 - DPF: {32564D57-9980-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/wmv8dmo.cab (Reg Error: Key error.)
    O16 - DPF: {33564D57-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/D/0/D/D0DD87DA-9... (Reg Error: Key error.)
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls... (WUWebControl Class)
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Contro... (MUWebControl Class)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-wind... (Java Plug-in 1.6.0_14)
    O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-wind... (Java Plug-in 1.6.0_14)
    O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-wind... (Java Plug-in 1.6.0_14)
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/shockwave/cabs/fl... (Shockwave Flash Object)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
    O18:64bit: - Protocol\Handler\copernicagent {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\copernicagentcache {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
    O18:64bit: - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\SysNative\wiascr.dll File not found
    O18 - Protocol\Handler\copernicagent {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} - C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
    O18 - Protocol\Handler\copernicagentcache {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} - C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
    O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
    O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
    O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
    O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - File not found
    O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - File not found
    O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - File not found
    O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: UIHost - (%SystemRoot%\system32\logonui.exe) - C:\WINDOWS\SysNative\logonui.exe File not found
    O20:64bit: - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - File not found
    O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: System - (lsass.exe) - File not found
    O20:64bit: - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - File not found
    O20:64bit: - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - File not found
    O20:64bit: - Winlogon\Notify\cscdll: DllName - cscdll.dll - File not found
    O20:64bit: - Winlogon\Notify\dimsntfy: DllName - dimsntfy.dll - File not found
    O20:64bit: - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - File not found
    O20:64bit: - Winlogon\Notify\Schedule: DllName - wlnotify.dll - File not found
    O20:64bit: - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - File not found
    O20:64bit: - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - File not found
    O20:64bit: - Winlogon\Notify\termsrv: DllName - Reg Error: Value error. - File not found
    O20:64bit: - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - File not found
    O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.DLL File not found
    O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - File not found
    O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - File not found
    O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - File not found
    O20 - Winlogon\Notify\termsrv: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
    O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - File not found
    O21:64bit: - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\SysNative\stobject.dll File not found
    O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O28:64bit: - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - File not found
    O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files (x86)\SUPERAntiSpyware\SASSEH.DLL File not found
    O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2009/06/16 13:19:06 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    64bit: O35 - comfile [open] -- "%1" %* File not found
    64bit: O35 - exefile [open] -- "%1" %* File not found
    O35 - comfile [open] -- "%1" %*
    O35 - exefile [open] -- "%1" %*

    ========== Files/Folders - Created Within 30 Days ==========

    [2010/02/01 19:24:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Slysoft Any DVD
    [2010/02/01 18:14:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Browster
    [2010/02/01 18:01:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AvantClick 2
    [2010/02/01 17:35:50 | 000,000,000 | ---D | C] -- C:\_OTL
    [2010/02/01 15:52:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\dwhelper
    [2010/02/01 15:29:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Mes rapports
    [2010/02/01 15:28:59 | 000,548,864 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
    [2010/01/31 23:49:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\McAfee
    [2010/01/31 23:49:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee
    [2010/01/31 23:46:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SiteAdvisor
    [2010/01/31 23:26:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FireTune
    [2010/01/31 23:09:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Notepad++
    [2010/01/31 23:08:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Notepad++
    [2010/01/31 22:55:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Paste and Go
    [2010/01/31 22:38:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\JDownloader
    [2010/01/31 21:22:42 | 000,000,000 | ---D | C] -- C:\rsit
    [2010/01/31 02:29:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Mes rapports Hijackthis
    [2010/01/30 23:56:04 | 000,000,000 | -HSD | C] -- C:\Config.Msi
    [2010/01/30 23:55:03 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
    [2010/01/30 23:54:09 | 000,061,440 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.dll
    [2010/01/30 23:54:06 | 011,632,640 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcompiler.dll
    [2010/01/30 23:53:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GDATA
    [2010/01/30 05:27:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\FM09_temp
    [2010/01/30 05:27:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Fifa Master
    [2010/01/27 23:00:01 | 008,378,664 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\Administrator\My Documents\WindowsXP-KB841625-x86MUI-FRA.exe
    [2010/01/25 05:13:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\The KMPlayer
    [2010/01/25 05:12:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\The KMPlayer
    [2010/01/25 02:44:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SlySoft
    [2010/01/25 02:12:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\MagicSoftware
    [2010/01/25 02:12:01 | 000,082,816 | ---- | C] (VSO Software) -- C:\Documents and Settings\Administrator\Application Data\pcouffin.sys
    [2010/01/25 02:12:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\PcSetup
    [2010/01/25 02:12:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Vso
    [2010/01/25 02:11:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MagicDVDCopier
    [2010/01/25 01:19:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\UltraISO
    [2010/01/25 01:19:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\EZB Systems
    [2010/01/25 00:08:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Mes blocs notes
    [2010/01/21 21:05:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\DriverScanner
    [2010/01/21 20:59:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{66E2F539-12B6-4870-A500-7689CDE75C5E}
    [2010/01/21 03:00:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Mes archives WinRar
    [2010/01/20 23:34:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\RoboForm
    [2010/01/20 22:34:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\My RoboForm Data
    [2010/01/20 22:33:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Siber Systems
    [2010/01/19 03:35:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xvid
    [2010/01/19 03:32:57 | 000,652,794 | ---- | C] (Xvid team ) -- C:\WINDOWS\SysWow64\Xvid-1.2.2-07062009.exe
    [2010/01/18 17:04:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\test decoupage winrar
    [2010/01/16 22:11:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Mes tutoriaux
    [2010/01/14 23:05:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Mes mots de passes
    [2010/01/14 21:52:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Mes Uploads
    [2010/01/11 22:53:38 | 000,081,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvwddi.dll
    [2010/01/09 20:28:13 | 000,000,000 | -HSD | C] -- C:\found.000
    [2010/01/07 19:41:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\PesCompleteEditor_9.04
    [2010/01/07 19:26:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\PRO-EVO Editing Studio 2009 V1.0.0.0
    [2010/01/04 19:12:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Mes backups
    [2009/07/17 23:02:37 | 011,052,944 | ---- | C] (NVIDIA Corporation) -- C:\Program Files (x86)\4.62_nforce_audio_winxp2k_international_whql.exe
    [2009/07/17 21:56:25 | 030,399,024 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Program Files (x86)\WDM_R228.exe
    [2009/06/16 13:19:05 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
    [2009/06/16 13:19:05 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
    [2009/06/16 13:19:05 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
    [2009/06/16 13:19:05 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
    [2004/11/24 19:25:52 | 000,335,872 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\drvc.dll

    ========== Files - Modified Within 30 Days ==========

    [2010/02/02 00:59:00 | 000,000,446 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{EC593F8E-31D8-44C0-9156-11596B778625}.job
    [2010/02/02 00:51:47 | 000,088,576 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2010/02/02 00:00:00 | 000,000,536 | ---- | M] () -- C:\WINDOWS\tasks\Maintenance en 1 clic.job
    [2010/02/01 22:56:50 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Orbit.lnk
    [2010/02/01 22:56:33 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
    [2010/02/01 22:56:31 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2010/02/01 22:54:55 | 014,942,208 | ---- | M] () -- C:\Documents and Settings\Administrator\NTUSER.DAT
    [2010/02/01 22:54:55 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Administrator\ntuser.ini
    [2010/02/01 22:54:43 | 004,278,912 | -H-- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\IconCache.db
    [2010/02/01 22:54:14 | 000,000,000 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP
    [2010/02/01 19:25:14 | 000,000,796 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AnyDVD.lnk
    [2010/02/01 17:15:40 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\PCTBD6843609.dmp
    [2010/02/01 17:15:08 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\PCTBD6810750.dmp
    [2010/02/01 15:28:59 | 000,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
    [2010/01/31 23:30:04 | 000,000,790 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\JDownloader.lnk
    [2010/01/31 23:09:45 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Notepad++.lnk
    [2010/01/31 21:24:47 | 000,781,909 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\RSIT.exe
    [2010/01/31 00:46:45 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\PCTBD248437.dmp
    [2010/01/31 00:46:45 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\PCTBD248234.dmp
    [2010/01/31 00:45:41 | 000,001,016 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\AVS4YOU Software Navigator.lnk
    [2010/01/31 00:45:02 | 000,000,957 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\AVS Video Converter 6.lnk
    [2010/01/30 20:52:12 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\PCTBD7465890.dmp
    [2010/01/30 05:46:44 | 000,002,391 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\FIFA90 Patch.lnk
    [2010/01/30 05:27:23 | 000,000,984 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\CM 09.lnk
    [2010/01/30 05:13:14 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
    [2010/01/30 05:05:07 | 000,000,570 | ---- | M] () -- C:\WINDOWS\tasks\Malwarebytes' Scheduled Scan for Administrator.job
    [2010/01/30 05:00:04 | 000,000,556 | ---- | M] () -- C:\WINDOWS\tasks\Malwarebytes' Scheduled Update for Administrator.job
    [2010/01/27 23:00:24 | 008,378,664 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Administrator\My Documents\WindowsXP-KB841625-x86MUI-FRA.exe
    [2010/01/27 22:55:40 | 000,015,160 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\readme.htm
    [2010/01/27 19:04:51 | 000,031,168 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\votrebordereaupdf.zip
    [2010/01/26 04:07:49 | 000,001,048 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\El Grande Patch PES 2010.lnk
    [2010/01/26 03:29:35 | 000,000,754 | ---- | M] () -- C:\WINDOWS\win.ini
    [2010/01/25 19:24:07 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\PCTBD12142187.dmp
    [2010/01/25 05:12:49 | 000,000,756 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\KMPlayer.lnk
    [2010/01/25 02:44:49 | 000,000,169 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
    [2010/01/25 02:13:02 | 000,034,308 | ---- | M] () -- C:\WINDOWS\SysWow64\bassmod.dll
    [2010/01/25 02:12:01 | 000,099,384 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\inst.exe
    [2010/01/25 02:12:01 | 000,082,816 | ---- | M] (VSO Software) -- C:\Documents and Settings\Administrator\Application Data\pcouffin.sys
    [2010/01/25 02:12:01 | 000,007,859 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\pcouffin.cat
    [2010/01/25 02:12:01 | 000,001,167 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\pcouffin.inf
    [2010/01/25 02:12:00 | 000,000,732 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Magic DVD Copier.lnk
    [2010/01/25 01:19:25 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\UltraISO.lnk
    [2010/01/21 22:34:31 | 000,175,329 | ---- | M] () -- C:\WINDOWS\SysWow64\framedyn.zip
    [2010/01/19 03:33:01 | 000,652,794 | ---- | M] (Xvid team ) -- C:\WINDOWS\SysWow64\Xvid-1.2.2-07062009.exe
    [2010/01/18 18:05:50 | 000,000,566 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Calculatrice.lnk
    [2010/01/17 00:04:58 | 000,001,656 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
    [2010/01/13 22:21:54 | 072,627,129 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\rzr-fa10.iso.part
    [2010/01/12 05:03:33 | 014,520,320 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvogl32.dll
    [2010/01/12 05:03:33 | 011,632,640 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcompiler.dll
    [2010/01/12 05:03:33 | 004,104,192 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuda.dll
    [2010/01/12 05:03:33 | 004,077,672 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuvenc.dll
    [2010/01/12 05:03:33 | 002,259,560 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuvid.dll
    [2010/01/12 05:03:33 | 001,081,344 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvapi.dll
    [2010/01/12 05:03:33 | 000,061,440 | ---- | M] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.dll
    [2010/01/11 22:53:38 | 000,081,920 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvwddi.dll
    [2010/01/08 02:59:12 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for
    [2010/01/07 16:07:14 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysWow64\drivers\mbamswissarmy.sys
    [2010/01/04 18:21:22 | 000,022,882 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\cretin jackie coyen.zip

    ========== Files Created - No Company Name ==========

    [2010/02/01 17:15:40 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\PCTBD6843609.dmp
    [2010/02/01 17:15:08 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\PCTBD6810750.dmp
    [2010/02/01 15:54:08 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Orbit.lnk
    [2010/01/31 23:30:04 | 000,000,790 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\JDownloader.lnk
    [2010/01/31 23:09:45 | 000,000,762 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Notepad++.lnk
    [2010/01/31 18:03:33 | 000,781,909 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\RSIT.exe
    [2010/01/31 00:46:45 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\PCTBD248437.dmp
    [2010/01/31 00:46:45 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\PCTBD248234.dmp
    [2010/01/31 00:45:41 | 000,001,016 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\AVS4YOU Software Navigator.lnk
    [2010/01/31 00:45:02 | 000,000,957 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\AVS Video Converter 6.lnk
    [2010/01/30 20:52:12 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\PCTBD7465890.dmp
    [2010/01/30 05:27:23 | 000,000,984 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\CM 09.lnk
    [2010/01/27 22:55:40 | 000,015,160 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\readme.htm
    [2010/01/27 19:04:51 | 000,031,168 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\votrebordereaupdf.zip
    [2010/01/26 04:07:49 | 000,001,048 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\El Grande Patch PES 2010.lnk
    [2010/01/25 19:24:07 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\PCTBD12142187.dmp
    [2010/01/25 05:12:49 | 000,000,756 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\KMPlayer.lnk
    [2010/01/25 02:42:33 | 000,000,796 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AnyDVD.lnk
    [2010/01/25 02:12:30 | 000,034,308 | ---- | C] () -- C:\WINDOWS\SysWow64\bassmod.dll
    [2010/01/25 02:12:19 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\pcouffin.log
    [2010/01/25 02:12:01 | 000,099,384 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\inst.exe
    [2010/01/25 02:12:01 | 000,007,859 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\pcouffin.cat
    [2010/01/25 02:12:01 | 000,001,167 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\pcouffin.inf
    [2010/01/25 02:12:00 | 000,000,732 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Magic DVD Copier.lnk
    [2010/01/25 01:19:25 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\UltraISO.lnk
    [2010/01/21 22:32:44 | 000,175,329 | ---- | C] () -- C:\WINDOWS\SysWow64\framedyn.zip
    [2010/01/19 03:35:39 | 000,180,224 | ---- | C] () -- C:\WINDOWS\SysWow64\xvidvfw.dll
    [2010/01/19 03:28:27 | 000,819,200 | ---- | C] () -- C:\WINDOWS\SysWow64\xvidcore.dll
    [2010/01/18 18:05:50 | 000,000,566 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Calculatrice.lnk
    [2010/01/17 00:04:58 | 000,001,656 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
    [2010/01/13 22:21:54 | 072,627,129 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\rzr-fa10.iso.part
    [2010/01/08 02:59:12 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn
    [2010/01/08 02:59:12 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for
    [2010/01/07 20:06:48 | 000,129,142 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\WEBR_Editor.swf
    [2010/01/07 20:06:48 | 000,072,192 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\zlib.dll
    [2010/01/07 20:06:48 | 000,053,248 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\adx2wav.dll
    [2010/01/07 20:06:48 | 000,004,297 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\slpm_657.88.ini
    [2010/01/07 20:06:48 | 000,004,070 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\PES4.EXE.ini
    [2010/01/07 20:06:48 | 000,004,007 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\WE8.EXE.ini
    [2010/01/04 18:21:22 | 000,022,882 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\cretin jackie coyen.zip
    [2009/12/19 00:42:46 | 000,000,066 | ---- | C] () -- C:\WINDOWS\WinInit.Ini
    [2009/10/25 18:03:57 | 000,000,050 | ---- | C] () -- C:\WINDOWS\MegaManager.INI
    [2009/10/08 17:25:59 | 000,002,082 | ---- | C] () -- C:\Program Files (x86)\readme.txt
    [2009/10/08 17:25:14 | 000,236,744 | ---- | C] () -- C:\Program Files (x86)\xvidcore.zip
    [2009/09/23 17:07:27 | 000,043,520 | ---- | C] () -- C:\WINDOWS\SysWow64\CmdLineExt03.dll
    [2009/09/02 20:27:09 | 000,120,200 | ---- | C] () -- C:\WINDOWS\SysWow64\DLLDEV32i.dll
    [2009/09/02 20:26:46 | 000,006,360 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
    [2009/08/04 18:54:47 | 000,000,179 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\setup.log
    [2009/08/04 18:54:37 | 000,000,760 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\setup_ldm.iss
    [2009/07/28 16:16:29 | 000,002,374 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\xybkbcgh.exe
    [2009/07/20 20:23:41 | 001,584,149 | ---- | C] () -- C:\WINDOWS\SysWow64\setupapinew.dll
    [2009/07/20 20:23:41 | 000,789,525 | ---- | C] () -- C:\WINDOWS\SysWow64\rpcrt4new.dll
    [2009/07/20 20:23:41 | 000,633,871 | ---- | C] () -- C:\WINDOWS\SysWow64\user32new.dll
    [2009/07/20 20:23:41 | 000,134,671 | ---- | C] () -- C:\WINDOWS\SysWow64\winstanew.dll
    [2009/07/20 20:23:41 | 000,072,707 | ---- | C] () -- C:\WINDOWS\SysWow64\secur32new.dll
    [2009/07/20 20:23:41 | 000,000,236 | -H-- | C] () -- C:\Program Files (x86)\Common Files\dx.reg
    [2009/07/20 20:23:40 | 000,874,502 | ---- | C] () -- C:\WINDOWS\SysWow64\kernel32new.dll
    [2009/07/20 20:23:40 | 000,681,478 | ---- | C] () -- C:\WINDOWS\SysWow64\msvcrtnew.dll
    [2009/07/20 20:23:40 | 000,376,832 | ---- | C] () -- C:\WINDOWS\SysWow64\M2000Twn.dll
    [2009/07/20 20:23:40 | 000,167,948 | ---- | C] () -- C:\WINDOWS\SysWow64\dxgi.dll
    [2009/07/20 20:23:40 | 000,096,783 | ---- | C] () -- C:\WINDOWS\SysWow64\powrprofnew.dll
    [2009/07/20 20:23:40 | 000,087,558 | ---- | C] () -- C:\WINDOWS\SysWow64\ntdsapinew.dll
    [2009/07/20 20:23:40 | 000,039,948 | ---- | C] () -- C:\WINDOWS\SysWow64\dwmapi.dll
    [2009/07/20 20:23:40 | 000,025,037 | ---- | C] () -- C:\WINDOWS\SysWow64\Nucleus.dll
    [2009/07/20 20:23:39 | 001,029,126 | ---- | C] () -- C:\WINDOWS\SysWow64\d3d10.dll
    [2009/07/20 20:23:39 | 000,974,354 | ---- | C] () -- C:\WINDOWS\SysWow64\crypt32new.dll
    [2009/07/20 20:23:39 | 000,770,069 | ---- | C] () -- C:\WINDOWS\SysWow64\advapi32new.dll
    [2009/07/20 20:23:39 | 000,187,398 | ---- | C] () -- C:\WINDOWS\SysWow64\d3d10core.dll
    [2009/07/20 20:23:39 | 000,171,023 | ---- | C] () -- C:\WINDOWS\SysWow64\apphelpnew.dll
    [2009/07/09 20:26:43 | 000,000,169 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
    [2009/07/07 23:37:02 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\fusioncache.dat
    [2009/07/07 12:39:02 | 000,721,920 | ---- | C] () -- C:\WINDOWS\SysWow64\libxml2.dll
    [2009/07/07 12:39:02 | 000,150,016 | ---- | C] () -- C:\WINDOWS\SysWow64\libxslt.dll
    [2009/07/07 12:39:02 | 000,051,200 | ---- | C] () -- C:\WINDOWS\SysWow64\libexslt.dll
    [2009/07/07 12:34:40 | 001,192,414 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
    [2009/07/06 17:29:55 | 000,088,576 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2009/07/04 18:49:56 | 000,000,250 | ---- | C] () -- C:\WINDOWS\gmer.ini
    [2009/07/04 18:49:53 | 000,573,503 | ---- | C] () -- C:\WINDOWS\gmer.dll
    [2009/07/04 15:07:45 | 000,000,428 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
    [2009/07/04 11:40:05 | 000,278,528 | ---- | C] () -- C:\Program Files (x86)\Common Files\FDEUnInstaller.exe
    [2009/06/16 13:59:24 | 000,024,576 | R--- | C] () -- C:\WINDOWS\SysWow64\AsIO.dll
    [2009/06/16 13:59:24 | 000,014,392 | R--- | C] () -- C:\WINDOWS\SysWow64\drivers\AsIO.sys
    [2009/06/16 13:59:22 | 000,011,832 | ---- | C] () -- C:\WINDOWS\SysWow64\drivers\AsInsHelp64.sys
    [2009/06/16 13:59:22 | 000,010,216 | ---- | C] () -- C:\WINDOWS\SysWow64\drivers\AsInsHelp32.sys
    [2009/06/16 13:44:32 | 000,031,082 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
    [2009/06/16 13:41:05 | 000,030,629 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
    [2009/06/16 13:41:04 | 000,010,296 | ---- | C] () -- C:\WINDOWS\SysWow64\drivers\ASUSHWIO.SYS
    [2009/04/21 23:19:06 | 000,172,173 | ---- | C] () -- C:\WINDOWS\SysWow64\xlive.dll.cat
    [2009/01/10 23:15:44 | 000,159,744 | ---- | C] () -- C:\WINDOWS\SysWow64\mmfinfo.dll
    [2009/01/10 23:14:06 | 000,023,552 | ---- | C] () -- C:\WINDOWS\SysWow64\mkunicode.dll
    [2008/11/06 17:34:00 | 000,000,416 | ---- | C] () -- C:\WINDOWS\SysWow64\dtu100.dll.manifest
    [2008/10/09 02:42:32 | 000,772,846 | ---- | C] () -- C:\WINDOWS\avformat.dll
    [2008/10/09 02:42:30 | 007,209,772 | ---- | C] () -- C:\WINDOWS\avcodec.dll
    [2008/10/09 02:42:28 | 000,093,243 | ---- | C] () -- C:\WINDOWS\avutil.dll
    [2008/10/07 08:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\SysWow64\AgCPanelTraditionalChinese.dll
    [2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\SysWow64\AgCPanelSwedish.dll
    [2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\SysWow64\AgCPanelSpanish.dll
    [2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\SysWow64\AgCPanelSimplifiedChinese.dll
    [2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\SysWow64\AgCPanelPortugese.dll
    [2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\SysWow64\AgCPanelKorean.dll
    [2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\SysWow64\AgCPanelJapanese.dll
    [2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\SysWow64\AgCPanelGerman.dll
    [2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\SysWow64\AgCPanelFrench.dll
    [2007/10/13 10:30:20 | 000,000,137 | ---- | C] () -- C:\WINDOWS\SysWow64\Registration.ini
    [2007/02/26 22:24:20 | 000,245,248 | ---- | C] () -- C:\WINDOWS\SysWow64\dxr.dll
    [2007/02/26 22:22:42 | 000,148,992 | ---- | C] () -- C:\WINDOWS\SysWow64\mkx.dll
    [2007/02/26 22:22:36 | 000,108,032 | ---- | C] () -- C:\WINDOWS\SysWow64\avi.dll
    [2007/02/26 22:22:34 | 000,102,400 | ---- | C] () -- C:\WINDOWS\SysWow64\avss.dll
    [2007/02/26 22:22:30 | 000,141,312 | ---- | C] () -- C:\WINDOWS\SysWow64\mp4.dll
    [2007/02/26 22:22:24 | 000,120,832 | ---- | C] () -- C:\WINDOWS\SysWow64\ogm.dll
    [2007/02/26 22:22:04 | 000,163,840 | ---- | C] () -- C:\WINDOWS\SysWow64\ts.dll
    [2007/02/26 22:21:46 | 000,097,280 | ---- | C] () -- C:\WINDOWS\SysWow64\avs.dll
    [2007/02/26 22:21:3
    2 Février 2010 01:08:33

    suite du rapport :

    [2007/02/26 22:21:38 | 000,079,360 | ---- | C] () -- C:\WINDOWS\SysWow64\mkzlib.dll
    [2007/02/18 13:00:00 | 001,277,952 | ---- | C] () -- C:\WINDOWS\SysWow64\quartz.dll
    [2007/02/18 13:00:00 | 000,733,696 | ---- | C] () -- C:\WINDOWS\SysWow64\qedwipes.dll
    [2007/02/18 13:00:00 | 000,512,512 | ---- | C] () -- C:\WINDOWS\SysWow64\qedit.dll
    [2007/02/18 13:00:00 | 000,498,742 | ---- | C] () -- C:\WINDOWS\SysWow64\dxmasf.dll
    [2007/02/18 13:00:00 | 000,396,288 | ---- | C] () -- C:\WINDOWS\SysWow64\encdec.dll
    [2007/02/18 13:00:00 | 000,385,536 | ---- | C] () -- C:\WINDOWS\SysWow64\qdvd.dll
    [2007/02/18 13:00:00 | 000,355,112 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
    [2007/02/18 13:00:00 | 000,279,040 | ---- | C] () -- C:\WINDOWS\SysWow64\qdv.dll
    [2007/02/18 13:00:00 | 000,276,992 | ---- | C] () -- C:\WINDOWS\SysWow64\sbe.dll
    [2007/02/18 13:00:00 | 000,192,512 | ---- | C] () -- C:\WINDOWS\SysWow64\qcap.dll
    [2007/02/18 13:00:00 | 000,114,688 | ---- | C] () -- C:\WINDOWS\SysWow64\msencode.dll
    [2007/02/18 13:00:00 | 000,072,704 | ---- | C] () -- C:\WINDOWS\SysWow64\amstream.dll
    [2007/02/18 13:00:00 | 000,062,464 | ---- | C] () -- C:\WINDOWS\SysWow64\mciqtz32.dll
    [2007/02/18 13:00:00 | 000,061,440 | ---- | C] () -- C:\WINDOWS\SysWow64\devenum.dll
    [2007/02/18 13:00:00 | 000,016,896 | ---- | C] () -- C:\WINDOWS\SysWow64\tsd32.dll
    [2007/02/18 13:00:00 | 000,014,336 | ---- | C] () -- C:\WINDOWS\SysWow64\msdmo.dll
    [2007/02/18 13:00:00 | 000,004,126 | ---- | C] () -- C:\WINDOWS\SysWow64\msdxmlc.dll
    [2007/02/12 20:21:22 | 003,426,304 | ---- | C] () -- C:\WINDOWS\SysWow64\libavcodec.dll
    [2007/02/12 20:21:22 | 000,741,376 | ---- | C] () -- C:\WINDOWS\SysWow64\audxlib.dll
    [2007/02/12 20:21:22 | 000,462,848 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_x264.dll
    [2007/02/12 20:21:22 | 000,399,872 | ---- | C] () -- C:\WINDOWS\SysWow64\libmplayer.dll
    [2007/02/12 20:21:22 | 000,245,760 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_libfaad2.dll
    [2007/02/12 20:21:22 | 000,225,280 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_kernelDeint.dll
    [2007/02/12 20:21:22 | 000,200,704 | ---- | C] () -- C:\WINDOWS\SysWow64\TomsMoComp_ff.dll
    [2007/02/12 20:21:22 | 000,155,648 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_libdts.dll
    [2007/02/12 20:21:22 | 000,143,360 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_theora.dll
    [2007/02/12 20:21:22 | 000,122,880 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_samplerate.dll
    [2007/02/12 20:21:22 | 000,118,784 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_libmad.dll
    [2007/02/12 20:21:22 | 000,114,688 | ---- | C] () -- C:\WINDOWS\SysWow64\libmpeg2_ff.dll
    [2007/02/12 20:21:22 | 000,097,280 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_realaac.dll
    [2007/02/12 20:21:22 | 000,079,872 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_tremor.dll
    [2007/02/12 20:21:22 | 000,040,960 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_liba52.dll
    [2007/02/12 20:21:22 | 000,038,400 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_unrar.dll
    [2007/02/12 20:21:22 | 000,026,624 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_wmv9.dll
    [2006/07/07 16:51:02 | 000,008,192 | ---- | C] () -- C:\WINDOWS\SysWow64\FLT_ffdshow.dll
    [2004/10/11 10:19:00 | 000,092,672 | ---- | C] () -- C:\WINDOWS\SysWow64\ASUSASV2.DLL
    [2004/09/08 18:56:40 | 000,158,208 | ---- | C] () -- C:\WINDOWS\SysWow64\unrar.dll
    [2002/12/14 22:46:02 | 000,237,568 | ---- | C] () -- C:\WINDOWS\SysWow64\oggDS.dll
    [2002/12/14 22:46:02 | 000,188,416 | ---- | C] () -- C:\WINDOWS\SysWow64\vorbis.dll
    [2002/12/14 22:46:02 | 000,045,056 | ---- | C] () -- C:\WINDOWS\SysWow64\ogg.dll
    [2002/12/14 21:46:04 | 000,921,600 | ---- | C] () -- C:\WINDOWS\SysWow64\vorbisenc.dll
    [2002/11/15 13:11:26 | 000,077,824 | ---- | C] () -- C:\WINDOWS\SysWow64\MMSwitch.dll
    [2002/05/17 23:18:30 | 000,124,928 | ---- | C] () -- C:\WINDOWS\SysWow64\mp4fil32.dll
    [1998/08/29 12:50:28 | 000,040,448 | ---- | C] () -- C:\WINDOWS\SysWow64\unace.dll
    [1995/11/07 13:46:00 | 000,199,168 | ---- | C] () -- C:\WINDOWS\SysWow64\ir32_32.dll

    ========== LOP Check ==========

    [2010/01/26 19:41:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Azureus
    [2009/12/11 13:52:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Canon
    [2009/12/07 22:45:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Copernic
    [2009/08/30 23:19:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DAEMON Tools Lite
    [2009/08/30 20:45:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DAEMON Tools Pro
    [2009/07/30 20:58:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Desktop Mechanic
    [2009/12/07 21:06:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Desktopicon
    [2009/10/09 21:53:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DMCache
    [2009/11/06 03:13:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DMV Technologies
    [2009/11/13 02:09:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\FileZilla
    [2009/10/30 07:03:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\FreeFLVConverter
    [2009/11/02 06:24:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\GetRightToGo
    [2009/10/26 23:37:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\GrabPro
    [2009/07/08 15:07:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\HTML Executable
    [2009/08/19 20:18:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\ImgBurn
    [2009/07/15 20:22:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Leadertech
    [2010/01/26 19:37:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\LimeWire
    [2009/09/24 18:50:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Lingoes
    [2009/09/02 20:31:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\MAGIX
    [2009/10/25 15:40:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Megaupload
    [2010/01/31 23:12:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Notepad++
    [2009/07/04 18:53:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Opera
    [2010/02/01 22:57:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Orbit
    [2010/01/20 23:34:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\RoboForm
    [2009/07/04 15:07:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\ScanSoft
    [2010/01/26 19:35:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Shareaza
    [2009/10/29 15:34:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Software Informer
    [2009/08/22 18:18:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Systweak
    [2009/09/02 20:23:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Thinstall
    [2009/07/04 17:54:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\TuneUp Software
    [2009/10/14 15:25:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Uniblue
    [2009/07/18 20:32:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\VitySoft
    [2010/01/25 02:12:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Vso
    [2009/07/14 16:01:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\WNR
    [2009/09/02 20:35:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Yandex
    [2010/02/01 17:26:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Anti-AD Guard 2
    [2009/07/05 21:20:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus
    [2009/07/04 15:03:47 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
    [2009/08/30 04:02:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
    [2010/01/21 21:17:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DriverScanner
    [2009/07/15 20:47:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
    [2009/07/04 18:41:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Grisoft
    [2009/10/23 12:51:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IObit
    [2009/12/20 18:06:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\KONAMI
    [2009/09/24 18:50:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Lingoes
    [2009/09/02 04:30:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ma-config.com
    [2009/09/02 20:31:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MAGIX
    [2009/10/03 15:35:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MGS
    [2009/11/09 19:31:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\page
    [2009/10/15 18:13:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Pinnacle
    [2009/07/04 15:07:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
    [2010/01/25 02:44:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SlySoft
    [2009/09/02 20:35:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Solo9
    [2010/02/01 17:16:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
    [2009/07/04 17:54:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software
    [2009/08/10 17:20:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Venta
    [2009/07/04 12:03:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
    [2009/09/04 21:16:32 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}
    [2010/01/21 21:05:02 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{66E2F539-12B6-4870-A500-7689CDE75C5E}
    [2009/12/07 22:52:11 | 000,000,441 | ---- | M] () -- C:\WINDOWS\Tasks\1 Copernic Intra-Daily ~COYEN-PC Administrator.job
    [2009/12/07 22:52:11 | 000,000,431 | ---- | M] () -- C:\WINDOWS\Tasks\2 Copernic Daily ~COYEN-PC Administrator.job
    [2009/12/07 22:52:11 | 000,000,436 | ---- | M] () -- C:\WINDOWS\Tasks\3 Copernic Weekly ~COYEN-PC Administrator.job
    [2009/12/07 22:52:11 | 000,000,433 | ---- | M] () -- C:\WINDOWS\Tasks\4 Copernic Monthly ~COYEN-PC Administrator.job
    [2010/02/02 01:00:00 | 000,000,536 | ---- | M] () -- C:\WINDOWS\Tasks\Maintenance en 1 clic.job
    [2010/02/01 22:59:00 | 000,032,568 | ---- | M] () -- C:\WINDOWS\Tasks\SchedLgU.Txt
    [2010/02/02 00:59:00 | 000,000,446 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{EC593F8E-31D8-44C0-9156-11596B778625}.job

    ========== Purity Check ==========



    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 48 bytes -> C:\WINDOWS:207181627EAE202B
    @Alternate Data Stream - 16 bytes -> C:\Documents and Settings\Administrator\My Documents\Shareaza Downloads:Shareaza.GUID
    @Alternate Data Stream - 157 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0D786AE3
    @Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E965A533
    @Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34
    @Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A8ADE5D8
    @Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D FC5A2B2
    < End of report >
    a c 295 8 Sécurité
    2 Février 2010 01:34:33

    Tu as essayé d'installer quel antivirus ?
    2 Février 2010 17:23:34

    J'ai essayé d'installer Kaspersky et Gdata,mais je n'ai pas pu les installer.

    Pour installer Kaspersky, il fallait désinstaller file on-access scanner,mais je n'arrive pas à le désinstaller.

    a c 295 8 Sécurité
    2 Février 2010 17:44:23

    Et pour G-Data ?
    2 Février 2010 18:43:34

    Pour GDATA, il me disait de désinstaller Nod32 alors qu'il n'était pas présent dans le panneau
    de configuration.
    2 Février 2010 19:28:35

    Bonjour,
    As-tu regardé si tu as bien un dossier dans "Program Files" contenant un dossier Nod32 (avec à l'intérieur, un exécutable de type 'uninstall') ?
    2 Février 2010 19:44:39

    Oui,j'ai bien regardé dans Program Files si il y avait un dossier Nod32 avec l'executable uninstall,mais il n'y avait pas l'executable uninstall dans le dossier Nod 32.

    2 Février 2010 21:19:41

    J'ai téléchargé le logiciel nod32 removal tool, je l'ai ouvert, et j'ai cliqué sur yes.

    Que faut-il que je fasse après ?
    a c 295 8 Sécurité
    2 Février 2010 21:33:50

    Tu as essayé d'installer Avira AntiVir Personal ?
    2 Février 2010 22:36:14

    Non je n'ai pas essayé d'installer Avira AntiVir Personal.
    2 Février 2010 23:09:57

    Volger a dit :
    J'ai téléchargé le logiciel nod32 removal tool, je l'ai ouvert, et j'ai cliqué sur yes.

    Que faut-il que je fasse après ?

    Si tu as bien exécuté l'outil, tu devrais ne plus avoir de traces de Nod32.
    3 Février 2010 18:27:52

    Bonsoir,

    J'ai réussis à installer un antivirus,j'ai installé G Data Antivirus.

    Merci Destrio5 et akred3 de m'avoir aidé.

    Il me reste quelques problèmes à régler.


    Mon ordinateur fait souvent des écrans bleus,et le système d'exploitation est en anglais alors que je l'avais au début en Français.


    Voiçi le message qui est affiché quand l'écran bleu apparaît :

    IRQL_NOT_LESS_OR_EQUAL
    3 Février 2010 19:25:06

    Tente d'effectuer une réparation de Windows ou une restauration à une date antérieur, où tu n'avais pas eu de problèmes.
    3 Février 2010 20:14:55

    Comment faire une réparation de Windows ou une restauration ?


    Est-ce que je perdrais mes données sur le disque dur si je fais une réparation de Windows ou une restauration ?

    Cela fait quelques mois que j'ai des écrans bleus, et je ne sait pas comment faire pour régler ce problème.
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS