Aide de traduction...

Accélérer son PC et résoudre les problèmes de lenteur PC et Windows

Modérateur : Mods Windows

philipp

Aide de traduction...

par philipp »

Bonjour,
Suite à un ralentissement de la machine j'ai effectuer pas mal de maintenance, mais n'étant pas un fin limier, je me tourne donc "vers" vous qui saurais me diriger pour arriver à mes fin et la bonne santé de ce cher Pc. Merci.
Ci-joint quelques logs suite aux opérations:


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 03:10:26, on 13/01/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17093)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\xampplite\apache\bin\httpd.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\TOSHIBA\Power Management\CeEPwrSvc.exe
C:\WINDOWS\System32\dllhost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\xampplite\mysql\bin\mysqld.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Trend Micro\Web Protection Add-On\TmProxy.exe
C:\Program Files\Trend Micro\Web Protection Add-On\TMWebProtect.exe
C:\xampplite\apache\bin\httpd.exe
C:\Program Files\UPHClean\uphclean.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Trend Micro\Web Protection Add-On\TMWebProtectTray.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://free.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [TMWebProtectTray] "C:\Program Files\Trend Micro\Web Protection Add-On\TMWebProtectTray.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O15 - Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/microso ... 0071102921
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 0071087625
O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/stat ... DP-1.0.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{FED758EC-9521-40B2-B799-75ED156C69CA}: Domain = free.fr
O17 - HKLM\System\CCS\Services\Tcpip\..\{FED758EC-9521-40B2-B799-75ED156C69CA}: NameServer = 212.27.54.252,212.27.53.252
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList = free.fr
O17 - HKLM\System\CS5\Services\Tcpip\Parameters: SearchList = free.fr
O17 - HKLM\System\CS6\Services\Tcpip\Parameters: SearchList = free.fr
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = free.fr
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apache2.2 - Apache Software Foundation - C:\xampplite\apache\bin\httpd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CeEPwrSvc - COMPAL ELECTRONIC INC. - C:\Program Files\TOSHIBA\Power Management\CeEPwrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MySQL - MySQL AB - C:\xampplite\mysql\bin\mysqld.exe
O23 - Service: Sony Ericsson PCCompanion - Avanquest Software - C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe
O23 - Service: Trend Micro Proxy Service (TmProxy) - Trend Micro Inc. - C:\Program Files\Trend Micro\Web Protection Add-On\TmProxy.exe
O23 - Service: Trend Micro Web Protection Add-On Service (TMWebProtect) - Trend Micro Inc. - C:\Program Files\Trend Micro\Web Protection Add-On\TMWebProtect.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

--
End of file - 6894 bytes
J'ai supprimer deux entrées considéré comme superflue par http://www.hijackthis.de/fr mais pour le reste?...

Ensuite:

ComboFix 11-01-11.03 - philipp 13/01/2011 0:45.1.1 - x86 MINIMAL
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.352.1036.18.1246.840 [GMT 1:00]
Lancé depuis: c:\documents and settings\philipp\Bureau\ComboFix.exe
AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
FW: ZoneAlarm Firewall *Disabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}

AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\daemon.dll
c:\windows\system32\sfc_os.dll.orig
c:\windows\system32\tar.exe
c:\windows\system32\tmp.reg
c:\windows\system32\zlibwapi.dll

.
((((((((((((((((((((((((((((( Fichiers créés du 2010-12-12 au 2011-01-12 ))))))))))))))))))))))))))))))))))))
.

2011-01-12 13:59 . 2008-03-02 02:28 206608 ----a-w- c:\windows\system32\drivers\TMPassthru.sys
2011-01-12 13:57 . 2011-01-12 13:57 -------- d-----w- c:\documents and settings\philipp\Application Data\InstallShield
2011-01-12 13:57 . 2009-03-11 11:05 83728 ----a-w- c:\windows\system32\drivers\tmtdi.sys
2011-01-11 18:27 . 2011-01-11 18:27 -------- d-----w- c:\documents and settings\philipp\Application Data\InfraRecorder
2011-01-11 18:27 . 2011-01-11 18:27 -------- d-----w- c:\program files\InfraRecorder
2011-01-11 13:33 . 2011-01-11 13:33 -------- dc----w- C:\Canneverbe Limited
2011-01-05 12:30 . 2011-01-05 12:30 -------- d-----w- c:\program files\iPod
2011-01-05 12:30 . 2011-01-05 12:32 -------- dc----w- c:\documents and settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2011-01-05 12:30 . 2011-01-05 12:32 -------- d-----w- c:\program files\iTunes
2011-01-05 12:20 . 2011-01-05 12:20 -------- d-----w- c:\program files\Bonjour
2010-12-27 12:43 . 2010-12-27 12:43 -------- d-----w- c:\documents and settings\LocalService\Menu Démarrer
2010-12-21 13:10 . 2010-12-21 13:13 -------- d-----w- c:\documents and settings\philipp\Application Data\vlc
2010-12-17 18:47 . 2010-12-17 18:47 -------- d-----w- c:\documents and settings\NetworkService\Menu Démarrer
2010-12-16 11:46 . 2010-03-29 06:53 32576 ----a-w- c:\program files\Mozilla Firefox\plugins\np_gp.dll
2010-12-16 08:03 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2010-12-16 07:56 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2010-12-14 11:08 . 2010-12-14 11:09 -------- dc----w- c:\documents and settings\Ghys\Application Data\Notepad++
2010-12-14 07:45 . 2010-12-14 07:45 -------- dc----w- c:\documents and settings\Ghys\Application Data\OpenOffice.org

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-20 17:09 . 2010-07-31 10:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-12-20 17:08 . 2010-07-31 10:39 20952 -c--a-w- c:\windows\system32\drivers\mbam.sys
2010-12-17 18:46 . 2009-09-25 22:28 61960 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2010-12-17 18:46 . 2009-09-25 22:28 135096 ----a-w- c:\windows\system32\drivers\avipbb.sys
2010-11-29 16:38 . 2010-11-29 16:38 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-11-29 16:38 . 2010-11-29 16:38 69632 ----a-w- c:\windows\system32\QuickTime.qts
2010-11-18 18:12 . 2003-08-29 05:11 86016 ----a-w- c:\windows\system32\isign32.dll
2010-11-12 17:53 . 2010-04-17 15:49 472808 -c--a-w- c:\windows\system32\deployJava1.dll
2010-11-12 15:34 . 2007-06-01 11:01 73728 ----a-w- c:\windows\system32\javacpl.cpl
2010-11-09 14:52 . 2003-08-29 14:00 249856 ----a-w- c:\windows\system32\odbc32.dll
2010-11-06 00:28 . 2005-06-17 23:26 832512 ----a-w- c:\windows\system32\wininet.dll
2010-11-06 00:28 . 2003-08-29 14:00 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2010-11-06 00:28 . 2004-08-19 23:09 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-11-06 00:28 . 2003-08-29 14:00 17408 ----a-w- c:\windows\system32\corpol.dll
2010-11-03 12:25 . 2004-08-19 22:56 389120 ----a-w- c:\windows\system32\html.iec
2010-11-02 15:17 . 2003-08-29 14:00 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys
2010-10-28 13:14 . 2003-08-29 14:00 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-10-26 14:07 . 2003-08-29 14:01 1853440 ----a-w- c:\windows\system32\win32k.sys
.

------- Sigcheck -------

[-] 2002-08-29 . A0EE5C06390357FEE7B7949DBCA156D3 . 165376 . . [5.1.2600.1106] . . c:\windows\system32\appmgmts.dll
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2006-02-07 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2006-02-07 118784]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2006-02-07 94208]
"SunJavaUpdateSched"="c:\program files\Fichiers communs\Java\Java Update\jusched.exe" [2010-05-14 248552]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-11-29 421888]
"ZoneAlarm Client"="c:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2010-09-29 1043968]

c:\documents and settings\Ghys\Menu D‚marrer\Programmes\D‚marrage\
OpenOffice.org 3.2.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2010-5-20 1195008]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoSMMyPictures"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoSimpleStartMenu"= 0 (0x0)
"NoStartMenuMyMusic"= 1 (0x1)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMMyPictures"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoStartMenuMyMusic"= 1 (0x1)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\startupfolder\C:^Documents and Settings^philipp^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 3.2.lnk]
backup=c:\windows\pss\OpenOffice.org 3.2.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt]
2010-08-17 12:38 281768 ----a-w- c:\program files\Avira\AntiVir Desktop\avgnt.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
2008-04-14 02:33 15360 ----a-w- c:\windows\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
2010-11-16 10:07 422912 ----a-w- c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TMWebProtectTray]
2009-09-02 02:29 288136 ----a-w- c:\program files\Trend Micro\Web Protection Add-On\TMWebProtectTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"iPod Service"=3 (0x3)
"WinVNC4"=2 (0x2)
"winvnc"=2 (0x2)
"WZCSVC"=2 (0x2)
"SCardSvr"=3 (0x3)
"mnmsrvc"=3 (0x3)
"Irmon"=2 (0x2)
"a2AntiDialer"=2 (0x2)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ctfmon.exe"=c:\windows\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"MSConfig"=c:\windows\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
"IgfxTray"=c:\windows\System32\igfxtray.exe
"HotKeysCmds"=c:\windows\System32\hkcmd.exe
"CeEKEY"=c:\program files\TOSHIBA\E-KEY\CeEKey.exe
"CeEPOWER"=c:\program files\TOSHIBA\Power Management\CePMTray.exe
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_07\bin\jusched.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\WYSIWYG\\Bin\\Wyg.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"4662:TCP"= 4662:TCP:192.168.0.10/255.255.255.255:Enabled:tony TCP
"4662:UDP"= 4662:UDP:192.168.0.10/255.255.255.255:Enabled:Tony UDP
"3389:TCP"= 3389:TCP:192.168.0.30/255.255.255.255,255.255.255.0/255.255.255.255:Enabled:@xpsp2res.dll,-22009

R0 d343bus;d343bus;c:\windows\system32\drivers\d343bus.sys [20/10/2005 09:15 136704]
R0 d343port;d343port;c:\windows\system32\drivers\d343port.sys [20/10/2005 09:15 5632]
R0 kmmini2a;kmmini2a;c:\windows\system32\drivers\kmmini2a.sys [06/04/2000 19:29 21015]
R0 kmmini2d;kmmini2d;c:\windows\system32\drivers\kmmini2d.sys [04/04/2000 18:19 20071]
R1 Asapi;Asapi;c:\windows\system32\drivers\asapi.sys [27/07/2005 00:54 11264]
R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [19/09/2010 10:26 27632]
S0 Cdr4vsd;Cdr4vsd; [x]
S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys --> c:\windows\system32\DRIVERS\Lbd.sys [?]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [23/02/2007 20:18 691696]
S2 SBKUPNT;SBKUPNT;c:\windows\system32\drivers\SBKUPNT.SYS [18/10/2009 11:39 14976]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [05/12/2007 16:44 13224]
S3 k600bus;Sony Ericsson 600i driver (WDM);c:\windows\system32\DRIVERS\k600bus.sys --> c:\windows\system32\DRIVERS\k600bus.sys [?]
S3 k600mdfl;Sony Ericsson 600i USB WMC Modem Filter;c:\windows\system32\DRIVERS\k600mdfl.sys --> c:\windows\system32\DRIVERS\k600mdfl.sys [?]
S3 k600mdm;Sony Ericsson 600i USB WMC Modem Drivers;c:\windows\system32\DRIVERS\k600mdm.sys --> c:\windows\system32\DRIVERS\k600mdm.sys [?]
S3 k600mgmt;Sony Ericsson 600i USB WMC Device Management Drivers;c:\windows\system32\DRIVERS\k600mgmt.sys --> c:\windows\system32\DRIVERS\k600mgmt.sys [?]
S3 k600obex;Sony Ericsson 600i USB WMC OBEX Interface Drivers;c:\windows\system32\DRIVERS\k600obex.sys --> c:\windows\system32\DRIVERS\k600obex.sys [?]
S3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\system32\drivers\s0017bus.sys [01/10/2009 14:44 86824]
S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\system32\drivers\s0017mdfl.sys [01/10/2009 14:44 15016]
S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\system32\drivers\s0017mdm.sys [01/10/2009 14:44 114600]
S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0017mgmt.sys [01/10/2009 14:45 108328]
S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\system32\drivers\s0017nd5.sys [01/10/2009 14:44 26024]
S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\system32\drivers\s0017obex.sys [01/10/2009 14:45 104616]
S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\system32\drivers\s0017unic.sys [01/10/2009 14:45 109736]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\drivers\s1018bus.sys [19/09/2010 10:50 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\drivers\s1018mdfl.sys [19/09/2010 10:50 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\drivers\s1018mdm.sys [19/09/2010 10:50 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1018mgmt.sys [19/09/2010 10:50 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1018nd5.sys [19/09/2010 10:50 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface;c:\windows\system32\drivers\s1018obex.sys [19/09/2010 10:50 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1018unic.sys [19/09/2010 10:50 109864]
S3 se57bus;Sony Ericsson Device 087 driver (WDM);c:\windows\system32\drivers\se57bus.sys [26/10/2007 16:24 61536]
S3 se57mdfl;Sony Ericsson Device 087 USB WMC Modem Filter;c:\windows\system32\drivers\se57mdfl.sys [11/12/2007 12:07 9360]
S3 se57mdm;Sony Ericsson Device 087 USB WMC Modem Driver;c:\windows\system32\drivers\se57mdm.sys [11/12/2007 12:07 97088]
S3 se57mgmt;Sony Ericsson Device 087 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\se57mgmt.sys [26/10/2007 16:28 88624]
S3 se57nd5;Sony Ericsson Device 087 USB Ethernet Emulation SEMC57 (NDIS);c:\windows\system32\drivers\se57nd5.sys [26/10/2007 16:28 18704]
S3 se57obex;Sony Ericsson Device 087 USB WMC OBEX Interface;c:\windows\system32\drivers\se57obex.sys [26/10/2007 16:27 86432]
S3 se57unic;Sony Ericsson Device 087 USB Ethernet Emulation SEMC57 (WDM);c:\windows\system32\drivers\se57unic.sys [26/10/2007 16:28 90800]
S3 TMPassthru;Trend Micro Passthru Ndis Service;c:\windows\system32\drivers\TMPassthru.sys [12/01/2011 14:59 206608]
S3 TMPassthruMP;TMPassthruMP;c:\windows\system32\drivers\TMPassthru.sys [12/01/2011 14:59 206608]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [29/08/2010 18:59 11520]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
nosGetPlusHelper REG_MULTI_SZ nosGetPlusHelper
getPlusHelper REG_MULTI_SZ getPlusHelper
.
Contenu du dossier 'Tâches planifiées'
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://free.fr/
uInternet Settings,ProxyOverride = *.local
Trusted Zone: microsoft.com \*.update
TCP: {FED758EC-9521-40B2-B799-75ED156C69CA} = 212.27.54.252,212.27.53.252
DPF: DirectAnimation Java Classes
DPF: Microsoft XML Parser for Java
DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} - hxxps://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.0.cab
FF - ProfilePath - c:\documents and settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1396957&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Mininova Customized Web Search
FF - prefs.js: browser.startup.homepage - hxxp://free.fr/
FF - Ext: United States English Spellchecker: [email protected] - %profile%\extensions\[email protected]
FF - Ext: Dictionnaire français «Réforme 1990»: [email protected] - %profile%\extensions\[email protected]
FF - Ext: PDF Download: {37E4D8EA-8BDA-4831-8EA1-89053939A250} - %profile%\extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}
FF - Ext: Aero Fox Silver XL: {5c876f30-10ce-11dd-bd0b-0800200c9a66} - %profile%\extensions\{5c876f30-10ce-11dd-bd0b-0800200c9a66}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Ext: Add-Art: [email protected] - %profile%\extensions\[email protected]
FF - Ext: FireFTP: {a7c6cf7f-112c-4500-a7ea-39801a327e5f} - %profile%\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}
FF - Ext: Flagfox: {1018e4d6-728f-4b20-ad56-37578a4de76b} - %profile%\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
FF - Ext: MidnightFox: {66871bd1-5ba2-4739-b485-2a15f5969bd8} - %profile%\extensions\{66871bd1-5ba2-4739-b485-2a15f5969bd8}
FF - Ext: Addictive Typing Lessons: [email protected] - %profile%\extensions\[email protected]
FF - Ext: WindowsUpdate: {35106bca-6c78-48c7-ac28-56df30b51d2b} - %profile%\extensions\{35106bca-6c78-48c7-ac28-56df30b51d2b}
FF - Ext: WOT: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} - %profile%\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF - Ext: NoScript: {73a6fe31-595d-460b-a920-fcc0f8843232} - %profile%\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
FF - Ext: Web Developer: {c45c406e-ab73-11d8-be73-000a95be3b12} - %profile%\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}
FF - Ext: Firebug: [email protected] - %profile%\extensions\[email protected]
FF - Ext: Adobe DLM (powered by getPlus(R)): {E2883E8F-472F-4fb0-9522-AC9BF37916A7} - %profile%\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
FF - Ext: Virtus Search Opt-in: [email protected] - %profile%\extensions\[email protected]
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Java Quick Starter: [email protected] - c:\program files\Java\jre6\lib\deploy\jqs\ff
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: content.max.tokenizing.time - 200000
FF - user.js: content.notify.interval - 100000
FF - user.js: content.switch.threshold - 650000
FF - user.js: nglayout.initialpaint.delay - 300
.
.
------- Associations de fichier -------
.
vbsfile\shell\edit\command=%SystemRoot%\System32\Notepad.exe %1
.scr=AutoCADLTScriptFile
.
- - - - ORPHELINS SUPPRIMES - - - -

Notify-avgwlntf - (no file)
Notify-WgaLogon - (no file)
AddRemove-{76E41F43-59D2-4F30-BA42-9A762EE1E8DE} - c:\program files\InstallShield Installation Information\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\Setup.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-01-13 00:56
Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_USERS\S-1-5-21-1229336797-2356155799-2440628043-1005\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)

[HKEY_USERS\S-1-5-21-1229336797-2356155799-2440628043-1005\Software\Policies\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (S-1-5-21-1229336797-2356155799-2440628043-1005)
@Allowed: (Read) (S-1-5-21-1229336797-2356155799-2440628043-1005)
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\Ø•€|ÿÿÿÿ•€|ù•9~*]
"C040110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|ÿÿÿÿÀ•€|ù•9~*]
"C040110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
.
Heure de fin: 2011-01-13 01:05:05
ComboFix-quarantined-files.txt 2011-01-13 00:04

Avant-CF: 12 484 255 744 octets libres
Après-CF: 16 576 462 848 octets libres

Current=5 Default=5 Failed=2 LastKnownGood=6 Sets=1,2,3,4,5,6
- - End Of File - - 01D81D5481C3E85AB2DAE2B79B17931A

J'ai un problême avec les lignes S3 dans la section (((( Points de chargement Reg )))) beaucoup trop de drivers SonyEricsson suite à changement de mobile, modem, USB Ethernet Emulation, etc, etc je ne peu les supprimer??? si vous avez une idée.


Et dernier log pour finir: avec OTL mais sur post suivant ça faisais trop de caractères sur un seul.



Voilà. J'espère que vous pourrez me dire si tout vas bien du coté intrus. Ou si il y a encore des manip à faire.
Merci a vous
.
philipp

Re: Aide de traduction...

par philipp »

Donc le suivant:

OTL logfile created on: 13/01/2011 03:13:57 - Run 3
OTL by OldTimer - Version 3.2.20.1 Folder = C:\Documents and Settings\philipp\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 0000140C | Country: Luxembourg | Language: FRL | Date Format: dd/MM/yyyy

1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 56,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,25 Gb Total Space | 17,64 Gb Free Space | 47,36% Space Free | Partition Type: NTFS

Computer Name: MANY | User Name: philipp | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/01/12 15:12:53 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\philipp\Bureau\OTL.exe
PRC - [2010/12/17 19:46:02 | 000,267,944 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2010/10/16 00:40:40 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/09/29 17:17:04 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe
PRC - [2010/09/29 17:14:56 | 001,043,968 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
PRC - [2010/08/17 13:39:03 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2010/08/17 13:38:55 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010/05/14 10:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
PRC - [2010/01/14 22:11:14 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2009/12/19 23:00:00 | 006,095,504 | ---- | M] (MySQL AB) -- C:\xampplite\mysql\bin\mysqld.exe
PRC - [2009/12/19 23:00:00 | 000,029,416 | ---- | M] (Apache Software Foundation) -- C:\xampplite\apache\bin\httpd.exe
PRC - [2009/09/02 03:29:54 | 000,288,136 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\Web Protection Add-On\TMWebProtectTray.exe
PRC - [2009/09/02 03:29:52 | 000,591,232 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\Web Protection Add-On\TMWebProtect.exe
PRC - [2009/03/11 12:05:06 | 000,685,320 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\Web Protection Add-On\TmProxy.exe
PRC - [2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2005/04/27 12:59:24 | 000,241,725 | ---- | M] (Microsoft Corporation) -- C:\Program Files\UPHClean\uphclean.exe
PRC - [2003/07/11 11:18:46 | 000,073,728 | ---- | M] (COMPAL ELECTRONIC INC.) -- C:\Program Files\TOSHIBA\Power Management\CeEPwrSvc.exe


========== Modules (SafeList) ==========

MOD - [2011/01/12 15:12:53 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\philipp\Bureau\OTL.exe
MOD - [2010/08/23 17:12:39 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- C:\Program Files\RealVNC\WinVNC.exe -- (winvnc)
SRV - [2010/12/17 19:46:02 | 000,267,944 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2010/10/26 16:05:24 | 000,155,344 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe -- (Sony Ericsson PCCompanion)
SRV - [2010/10/16 00:40:40 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/09/29 17:17:04 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\WINDOWS\System32\ZoneLabs\vsmon.exe -- (vsmon)
SRV - [2010/09/01 14:52:56 | 000,066,112 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper_3004.dll -- (nosGetPlusHelper) getPlus(R)
SRV - [2010/08/17 13:39:03 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010/03/29 07:53:22 | 000,068,000 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus(R)
SRV - [2009/12/19 23:00:00 | 006,095,504 | ---- | M] (MySQL AB) [Auto | Running] -- C:\xampplite\mysql\bin\mysqld.exe -- (MySQL)
SRV - [2009/12/19 23:00:00 | 000,029,416 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\xampplite\apache\bin\httpd.exe -- (Apache2.2)
SRV - [2009/09/02 03:29:52 | 000,591,232 | ---- | M] (Trend Micro Inc.) [Auto | Running] -- C:\Program Files\Trend Micro\Web Protection Add-On\TMWebProtect.exe -- (TMWebProtect)
SRV - [2009/03/11 12:05:06 | 000,685,320 | ---- | M] (Trend Micro Inc.) [Auto | Running] -- C:\Program Files\Trend Micro\Web Protection Add-On\TmProxy.exe -- (TmProxy)
SRV - [2008/04/14 03:33:27 | 000,036,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\iprip.dll -- (Iprip)
SRV - [2007/08/25 11:59:15 | 000,217,208 | ---- | M] (Emsi Software GmbH) [Disabled | Stopped] -- C:\Program Files\a-squared Anti-Dialer\a2service.exe -- (a2AntiDialer)
SRV - [2005/11/14 01:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2005/04/27 12:59:24 | 000,241,725 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\UPHClean\uphclean.exe -- (UPHClean)
SRV - [2003/07/11 11:18:46 | 000,073,728 | ---- | M] (COMPAL ELECTRONIC INC.) [Auto | Running] -- C:\Program Files\TOSHIBA\Power Management\CeEPwrSvc.exe -- (CeEPwrSvc)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\w810obex.sys -- (w810obex)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\w810mgmt.sys -- (w810mgmt) Sony Ericsson W810 USB WMC Device Management Drivers (WDM)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\w810mdm.sys -- (w810mdm)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\w810mdfl.sys -- (w810mdfl)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\w810bus.sys -- (w810bus) Sony Ericsson W810 Driver driver (WDM)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\TVICHW32.SYS -- (TVICHW32)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\RT2500.sys -- (RT2500)
DRV - File not found [File_System | Boot | Stopped] -- C:\WINDOWS\System32\DRIVERS\Lbd.sys -- (Lbd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\k600obex.sys -- (k600obex)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\k600mgmt.sys -- (k600mgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\k600mdm.sys -- (k600mdm)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\k600mdfl.sys -- (k600mdfl)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\k600bus.sys -- (k600bus) Sony Ericsson 600i driver (WDM)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\philipp\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\btwusb.sys -- (BTWUSB)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\btwhid.sys -- (btwhid)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\btwdndis.sys -- (BTWDNDIS)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\btport.sys -- (BTDriver)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\btaudio.sys -- (btaudio)
DRV - [2010/12/17 19:46:10 | 000,135,096 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2010/12/17 19:46:10 | 000,061,960 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2010/06/17 15:28:02 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010/06/17 15:27:52 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2010/05/13 10:02:32 | 000,532,224 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant)
DRV - [2010/02/11 13:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2009/11/02 18:30:25 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009/04/06 08:13:52 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2009/04/06 08:13:52 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2009/03/25 16:48:00 | 000,114,728 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mdm.sys -- (s1018mdm)
DRV - [2009/03/25 16:48:00 | 000,109,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018unic.sys -- (s1018unic) Sony Ericsson Device 1018 USB Ethernet Emulation (WDM)
DRV - [2009/03/25 16:48:00 | 000,106,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mgmt.sys -- (s1018mgmt) Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM)
DRV - [2009/03/25 16:48:00 | 000,104,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018obex.sys -- (s1018obex)
DRV - [2009/03/25 16:48:00 | 000,086,824 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018bus.sys -- (s1018bus) Sony Ericsson Device 1018 driver (WDM)
DRV - [2009/03/25 16:48:00 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018nd5.sys -- (s1018nd5) Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS)
DRV - [2009/03/25 16:48:00 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mdfl.sys -- (s1018mdfl)
DRV - [2009/03/11 12:05:20 | 000,083,728 | ---- | M] (Trend Micro Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tmtdi.sys -- (tmtdi)
DRV - [2009/02/13 20:02:52 | 000,011,520 | R--- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2008/10/21 09:22:48 | 000,114,600 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017mdm.sys -- (s0017mdm)
DRV - [2008/10/21 09:22:48 | 000,109,736 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017unic.sys -- (s0017unic) Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM)
DRV - [2008/10/21 09:22:48 | 000,108,328 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017mgmt.sys -- (s0017mgmt) Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM)
DRV - [2008/10/21 09:22:48 | 000,104,616 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017obex.sys -- (s0017obex)
DRV - [2008/10/21 09:22:48 | 000,086,824 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017bus.sys -- (s0017bus) Sony Ericsson Device 0017 driver (WDM)
DRV - [2008/10/21 09:22:48 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017nd5.sys -- (s0017nd5) Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS)
DRV - [2008/10/21 09:22:48 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017mdfl.sys -- (s0017mdfl)
DRV - [2008/09/24 09:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2008/07/17 14:40:32 | 000,109,952 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2008/04/13 19:56:06 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)
DRV - [2008/04/13 19:53:09 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2008/03/02 03:28:00 | 000,206,608 | ---- | M] (Trend Micro Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\TMPassthru.sys -- (TMPassthruMP)
DRV - [2008/03/02 03:28:00 | 000,206,608 | ---- | M] (Trend Micro Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TMPassthru.sys -- (TMPassthru)
DRV - [2008/01/09 11:28:34 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri)
DRV - [2007/06/25 10:43:38 | 000,098,344 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117obex.sys -- (s117obex)
DRV - [2007/06/25 10:43:36 | 000,108,456 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117mdm.sys -- (s117mdm)
DRV - [2007/06/25 10:43:36 | 000,100,264 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117mgmt.sys -- (s117mgmt) Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM)
DRV - [2007/06/25 10:43:36 | 000,098,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117unic.sys -- (s117unic) Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM)
DRV - [2007/06/25 10:43:36 | 000,022,952 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117nd5.sys -- (s117nd5) Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS)
DRV - [2007/06/25 10:43:26 | 000,014,888 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117mdfl.sys -- (s117mdfl)
DRV - [2007/06/25 10:43:22 | 000,082,984 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117bus.sys -- (s117bus) Sony Ericsson Device 117 driver (WDM)
DRV - [2007/04/24 11:33:46 | 000,100,488 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125mgmt.sys -- (s125mgmt) Sony Ericsson Device 125 USB WMC Device Management Drivers (WDM)
DRV - [2007/04/24 11:33:46 | 000,098,696 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125obex.sys -- (s125obex)
DRV - [2007/04/24 11:33:44 | 000,108,680 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125mdm.sys -- (s125mdm)
DRV - [2007/04/24 11:33:42 | 000,015,112 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125mdfl.sys -- (s125mdfl)
DRV - [2007/04/24 11:33:34 | 000,083,336 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125bus.sys -- (s125bus) Sony Ericsson Device 125 driver (WDM)
DRV - [2007/04/03 12:59:42 | 000,099,080 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616unic.sys -- (s616unic) Sony Ericsson Device 616 USB Ethernet Emulation SEMC616 (WDM)
DRV - [2007/04/03 12:59:42 | 000,098,568 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616obex.sys -- (s616obex)
DRV - [2007/04/03 12:59:42 | 000,023,176 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616nd5.sys -- (s616nd5) Sony Ericsson Device 616 USB Ethernet Emulation SEMC616 (NDIS)
DRV - [2007/04/03 12:59:40 | 000,100,360 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616mgmt.sys -- (s616mgmt) Sony Ericsson Device 616 USB WMC Device Management Drivers (WDM)
DRV - [2007/04/03 12:59:38 | 000,108,680 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616mdm.sys -- (s616mdm)
DRV - [2007/04/03 12:59:36 | 000,015,112 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616mdfl.sys -- (s616mdfl)
DRV - [2007/04/03 12:59:30 | 000,083,208 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616bus.sys -- (s616bus) Sony Ericsson Device 616 driver (WDM)
DRV - [2006/11/30 15:12:48 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se57unic.sys -- (se57unic) Sony Ericsson Device 087 USB Ethernet Emulation SEMC57 (WDM)
DRV - [2006/11/30 15:12:42 | 000,086,432 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se57obex.sys -- (se57obex)
DRV - [2006/11/30 15:12:38 | 000,088,624 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se57mgmt.sys -- (se57mgmt) Sony Ericsson Device 087 USB WMC Device Management Drivers (WDM)
DRV - [2006/11/30 15:12:38 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se57nd5.sys -- (se57nd5) Sony Ericsson Device 087 USB Ethernet Emulation SEMC57 (NDIS)
DRV - [2006/11/30 15:12:32 | 000,097,088 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se57mdm.sys -- (se57mdm)
DRV - [2006/11/30 15:12:32 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se57mdfl.sys -- (se57mdfl)
DRV - [2006/11/30 15:12:26 | 000,061,536 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se57bus.sys -- (se57bus) Sony Ericsson Device 087 driver (WDM)
DRV - [2006/11/02 06:00:08 | 000,039,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\winusb.sys -- (WinUSB)
DRV - [2006/06/07 16:28:40 | 000,030,285 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwmodem.sys -- (btwmodem)
DRV - [2006/05/01 12:18:54 | 000,086,560 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Eobex.sys -- (SE2Eobex)
DRV - [2006/05/01 12:18:04 | 000,088,688 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Emgmt.sys -- (SE2Emgmt) Sony Ericsson Device 046 USB WMC Device Management Drivers (WDM)
DRV - [2006/05/01 12:17:16 | 000,097,184 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Emdm.sys -- (SE2Emdm)
DRV - [2006/05/01 12:17:12 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Emdfl.sys -- (SE2Emdfl)
DRV - [2006/05/01 12:16:22 | 000,061,600 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Ebus.sys -- (SE2Ebus) Sony Ericsson Device 046 Driver driver (WDM)
DRV - [2006/05/01 12:15:50 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se2End5.sys -- (se2End5) Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (NDIS)
DRV - [2006/05/01 12:15:44 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se2Eunic.sys -- (se2Eunic) Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (WDM)
DRV - [2005/07/28 08:18:40 | 000,685,056 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (Hardlock)
DRV - [2004/08/04 06:31:32 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rtl8139.sys -- (rtl8139) Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C)
DRV - [2003/12/15 17:46:30 | 000,136,704 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\d343bus.sys -- (d343bus)
DRV - [2003/12/15 16:29:42 | 000,005,632 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\d343port.sys -- (d343port)
DRV - [2003/09/01 06:57:14 | 000,006,896 | ---- | M] (Compal Electronic Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hkdrv.sys -- (EPOWER)
DRV - [2003/07/29 13:25:52 | 000,322,720 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2003/06/20 14:40:12 | 000,093,912 | R--- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2003/06/13 19:48:40 | 000,033,847 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wA301a.sys -- ({E2B953A6-195A-44F9-9BA3-3D5F4E32BB55})
DRV - [2002/12/20 12:07:34 | 001,164,576 | R--- | M] (Agere Systems) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2002/12/18 18:56:34 | 000,005,888 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\SSIOMngr.sys -- (SrvcSSIOMngr)
DRV - [2002/12/18 18:56:32 | 000,005,888 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\EPIOMngr.sys -- (SrvcEPIOMngr)
DRV - [2002/12/18 18:56:32 | 000,005,888 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\EKIOMngr.sys -- (SrvcEKIOMngr)
DRV - [2002/09/17 15:12:38 | 000,809,872 | R--- | M] (LT) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LTSM.sys -- (TOSHIBASoftModem)
DRV - [2002/08/30 14:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)
DRV - [2002/08/30 14:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)
DRV - [2002/07/17 16:45:48 | 000,004,183 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\TPIOMngr.sys -- (SrvcTPIOMngr)
DRV - [2002/04/23 12:08:12 | 000,035,913 | ---- | M] (SMC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\smcirda.sys -- (SMCIRDA)
DRV - [2002/04/17 19:27:02 | 000,011,264 | R--- | M] (VOB Computersysteme GmbH) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\asapi.sys -- (Asapi)
DRV - [2001/11/25 01:11:54 | 000,081,924 | ---- | M] (FUJI PHOTO FILM CO.,LTD.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\V4CB010B.SYS -- (FINEPIX_PCC)
DRV - [2001/07/13 12:56:14 | 000,014,976 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\SBKUPNT.SYS -- (SBKUPNT)
DRV - [2001/06/21 22:39:02 | 000,073,728 | ---- | M] (Rainbow Technologies, Inc.) [Kernel | Auto | Stopped] -- C:\WINDOWS\System32\Drivers\SENTINEL.SYS -- (Sentinel)
DRV - [2001/06/21 22:39:02 | 000,020,032 | ---- | M] (Rainbow Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SNTNLUSB.SYS -- (Sntnlusb)
DRV - [2000/07/27 09:36:56 | 000,014,235 | ---- | M] (Pinnacle Systems GmbH) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\Pclepci.sys -- (PCLEPCI)
DRV - [2000/04/06 19:29:46 | 000,021,015 | ---- | M] (Kyushu Matsushita Electric Co., Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\kmmini2a.sys -- (kmmini2a)
DRV - [2000/04/04 18:19:48 | 000,020,071 | ---- | M] (Kyushu Matsushita Electric Co., Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\kmmini2d.sys -- (kmmini2d)
DRV - [1998/11/12 12:06:00 | 000,025,920 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\aspi32.sys -- (Aspi32)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://free.fr/
IE - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultthis.engineName: "Mininova Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=971163"
FF - prefs.js..browser.search.selectedEngine: "Mininova Customized Web Search"
FF - prefs.js..browser.startup.homepage: "http://free.fr/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: [email protected]:0.8.55
FF - prefs.js..extensions.enabledItems: [email protected]:3.0
FF - prefs.js..extensions.enabledItems: [email protected]:3.5
FF - prefs.js..extensions.enabledItems: {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.10
FF - prefs.js..extensions.enabledItems: {1018e4d6-728f-4b20-ad56-37578a4de76b}:4.0.12
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {37E4D8EA-8BDA-4831-8EA1-89053939A250}:3.0.0.1
FF - prefs.js..extensions.enabledItems: [email protected]:5.0.1
FF - prefs.js..extensions.enabledItems: {35106bca-6c78-48c7-ac28-56df30b51d2b}:1.1.12
FF - prefs.js..extensions.enabledItems: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20100908
FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.0.9.3
FF - prefs.js..extensions.enabledItems: {c45c406e-ab73-11d8-be73-000a95be3b12}:1.1.9
FF - prefs.js..extensions.enabledItems: [email protected]:1.6.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1.6.2.91
FF - prefs.js..extensions.enabledItems: [email protected]:3.6.7
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {5c876f30-10ce-11dd-bd0b-0800200c9a66}:3.6.7
FF - prefs.js..extensions.enabledItems: {66871bd1-5ba2-4739-b485-2a15f5969bd8}:2.20100123
FF - prefs.js..network.proxy.no_proxies_on: "*.local"


FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/01/09 14:46:43 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/01/05 13:26:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.7\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2010/12/11 22:54:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.7\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins [2011/01/05 13:26:41 | 000,000,000 | ---D | M]

[2010/07/25 12:01:54 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Extensions
[2010/07/25 12:01:54 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2011/01/12 19:55:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions
[2009/09/12 16:34:16 | 000,000,000 | ---D | M] (iFox Metal) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{08c834b4-e025-44a3-9b95-e9885adc4be0}
[2010/12/22 13:15:42 | 000,000,000 | ---D | M] (Flagfox) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2010/01/01 12:05:47 | 000,000,000 | ---D | M] (WindowsUpdate) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{35106bca-6c78-48c7-ac28-56df30b51d2b}
[2009/10/17 09:38:39 | 000,000,000 | ---D | M] (PDF Download) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}
[2010/11/27 11:29:13 | 000,000,000 | ---D | M] (Aero Fox Silver XL) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{5c876f30-10ce-11dd-bd0b-0800200c9a66}
[2010/02/16 20:39:21 | 000,000,000 | ---D | M] (MidnightFox) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{66871bd1-5ba2-4739-b485-2a15f5969bd8}
[2011/01/07 15:32:44 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2009/05/12 19:00:38 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}(2)
[2010/10/07 17:01:09 | 000,000,000 | ---D | M] (WOT) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2010/12/04 09:57:01 | 000,000,000 | ---D | M] (FireFTP) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}
[2009/05/12 19:00:42 | 000,000,000 | ---D | M] ("Ma-config.com") -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}(2)
[2011/01/07 17:03:00 | 000,000,000 | ---D | M] (Web Developer) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}
[2010/12/24 13:35:53 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010/10/21 08:29:00 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus(R))) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2010/01/01 12:05:48 | 000,000,000 | ---D | M] (Addictive Typing Lessons) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]
[2010/01/01 12:05:28 | 000,000,000 | ---D | M] (Chromin Frame Carbon) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]
[2010/11/16 17:53:42 | 000,000,000 | ---D | M] ("Add-Art") -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]
[2010/09/23 17:52:52 | 000,000,000 | ---D | M] (United States English Spellchecker) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]
[2010/11/27 11:29:50 | 000,000,000 | ---D | M] (Virtus Search Opt-in) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]
[2011/01/07 15:31:38 | 000,000,000 | ---D | M] (Firebug) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]
[2010/02/16 20:39:56 | 000,000,000 | ---D | M] (Dictionnaire français «Réforme 1990») -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]
[2010/11/27 11:29:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]\chrome
[2010/11/27 11:29:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]\defaults
[2010/11/27 11:29:13 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{5c876f30-10ce-11dd-bd0b-0800200c9a66}\chrome\win\mozapps\extensions
[2010/02/16 20:39:30 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{66871bd1-5ba2-4739-b485-2a15f5969bd8}\chrome\mozapps\extensions
[2010/02/16 20:39:29 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{66871bd1-5ba2-4739-b485-2a15f5969bd8}\chrome\mozapps\extensions\CVS
[2009/04/22 13:38:04 | 000,000,878 | ---- | M] () -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\searchplugins\conduit.xml
[2011/01/12 19:55:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/04/17 16:49:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/10/20 22:48:04 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/01/04 16:26:21 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2009/06/14 11:58:17 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/01/12 16:47:15 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2010/11/12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/07/25 12:13:42 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
[2010/07/25 12:13:43 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/07/25 12:13:43 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
[2010/07/25 12:13:43 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
[2010/07/25 12:13:43 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml

O1 HOSTS File: ([2011/01/13 00:56:19 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\..\Toolbar\WebBrowser: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [TMWebProtectTray] C:\Program Files\Trend Micro\Web Protection Add-On\TMWebProtectTray.exe (Trend Micro Inc.)
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD)
O4 - Startup: C:\Documents and Settings\Ghys\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 3.2.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSimpleStartMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoUserNameInStartMenu = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceStartMenuLogoff = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSharedDocuments = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\..Trusted Domains: ([]msn in My Computer)
O15 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\..Trusted Domains: microsoft.com ([*.update] http in Sites de confiance)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/ ... ontrol.cab (Office Genuine Advantage Validation Tool)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/microso ... 0071102921 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 0071087625 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} https://static.impots.gouv.fr/tdir/stat ... DP-1.0.cab (AdSignerLCContrl Class)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/get/fl ... wflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java Reg Error: Value error. (Reg Error: Key error.)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/x-mrml {C51721BE-858B-4A66-A8BF-D2882FF49820} - C:\Program Files\Fichiers communs\A&W\MidRadio.ocx (YAMAHA CORPORATION)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\philipp\Mes documents\Mes images\Ecran de veille\biohazard[1314x1066] copie.png
O24 - Desktop BackupWallPaper: C:\Documents and Settings\philipp\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2003/08/29 06:14:10 | 000,000,000 | ---- | M] () - C:\autoexec.001 -- [ NTFS ]
O32 - AutoRun File - [2007/11/04 16:30:37 | 000,000,013 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
-------------------------->
philipp

Re: Aide de traduction...

par philipp »

Pour finir.

========== Files/Folders - Created Within 30 Days ==========

[2011/01/13 02:55:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Bureau\Rapport Infections
[2011/01/13 02:36:46 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\philipp\Recent
[2011/01/13 02:11:09 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011/01/13 01:05:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2011/01/12 20:54:27 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011/01/12 20:54:27 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011/01/12 20:54:26 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011/01/12 20:54:26 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011/01/12 20:54:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011/01/12 20:48:06 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/01/12 15:12:51 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\philipp\Bureau\OTL.exe
[2011/01/12 15:01:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Trend Micro Web Protection Add-On
[2011/01/12 14:59:41 | 000,206,608 | ---- | C] (Trend Micro Inc.) -- C:\WINDOWS\System32\drivers\TMPassthru.sys
[2011/01/12 14:57:57 | 000,083,728 | ---- | C] (Trend Micro Inc.) -- C:\WINDOWS\System32\drivers\tmtdi.sys
[2011/01/12 14:57:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Application Data\InstallShield
[2011/01/11 19:27:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Application Data\InfraRecorder
[2011/01/11 19:27:10 | 000,000,000 | ---D | C] -- C:\Program Files\InfraRecorder
[2011/01/09 13:41:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Bureau\Icon
[2011/01/05 13:32:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\iTunes
[2011/01/05 13:30:26 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/01/05 13:30:11 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/01/05 13:30:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011/01/05 13:20:38 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2010/12/21 14:10:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Application Data\vlc
[2010/12/20 10:17:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Mes documents\Pail
[2006/09/08 17:04:17 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\philipp\Application Data\pcouffin.sys
[2005/10/20 09:15:27 | 000,136,704 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d343bus.sys
[2005/10/20 09:15:27 | 000,005,632 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d343port.sys
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/01/13 02:41:41 | 000,004,212 | -H-- | M] () -- C:\WINDOWS\System32\zllictbl.dat
[2011/01/13 02:06:55 | 000,513,736 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2011/01/13 02:06:55 | 000,444,362 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/01/13 02:06:55 | 000,085,842 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2011/01/13 02:06:55 | 000,072,238 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/01/13 02:06:54 | 000,423,032 | ---- | M] () -- C:\WINDOWS\System32\perfh040.dat
[2011/01/13 02:06:54 | 000,052,898 | ---- | M] () -- C:\WINDOWS\System32\perfc040.dat
[2011/01/13 02:02:16 | 000,000,000 | ---- | M] () -- C:\WINDOWS\TempFile
[2011/01/13 02:01:55 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/01/13 01:27:02 | 000,000,225 | -HS- | M] () -- C:\boot.ini
[2011/01/13 00:56:19 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011/01/12 19:53:18 | 004,152,982 | R--- | M] () -- C:\Documents and Settings\philipp\Bureau\ComboFix.exe
[2011/01/12 16:44:02 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/01/12 15:12:53 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\philipp\Bureau\OTL.exe
[2011/01/12 10:44:33 | 000,576,004 | ---- | M] () -- C:\Documents and Settings\philipp\Bureau\asm
[2011/01/12 01:42:52 | 004,506,682 | ---- | M] () -- C:\Documents and Settings\philipp\Bureau\Licence FFR
[2011/01/11 19:27:13 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\philipp\Application Data\Microsoft\Internet Explorer\Quick Launch\InfraRecorder.lnk
[2011/01/10 16:12:34 | 000,203,776 | ---- | M] () -- C:\Documents and Settings\philipp\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/05 13:11:20 | 000,002,155 | ---- | M] () -- C:\Documents and Settings\philipp\Application Data\Microsoft\Internet Explorer\Quick Launch\iTunes (2).lnk
[2010/12/30 19:06:44 | 000,000,808 | ---- | M] () -- C:\Documents and Settings\philipp\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/12/20 19:56:19 | 000,000,372 | ---- | M] () -- C:\Documents and Settings\philipp\Mes documents\spider.sav
[2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/12/20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/12/17 19:46:10 | 000,135,096 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2010/12/17 19:46:10 | 000,061,960 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys
[2010/12/16 09:45:13 | 000,385,608 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/01/12 20:54:27 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011/01/12 20:54:27 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011/01/12 20:54:27 | 000,089,088 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011/01/12 20:54:27 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011/01/12 20:54:27 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011/01/12 19:53:12 | 004,152,982 | R--- | C] () -- C:\Documents and Settings\philipp\Bureau\ComboFix.exe
[2011/01/12 10:44:23 | 000,576,004 | ---- | C] () -- C:\Documents and Settings\philipp\Bureau\asm rugby
[2011/01/12 01:36:51 | 004,506,682 | ---- | C] () -- C:\Documents and Settings\philipp\Bureau\Licence FFR
[2011/01/11 19:27:13 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\philipp\Application Data\Microsoft\Internet Explorer\Quick Launch\InfraRecorder.lnk
[2010/12/30 12:28:33 | 000,000,243 | ---- | C] () -- C:\Documents and Settings\philipp\Bureau\mw_header_r_b.png
[2010/12/30 12:28:33 | 000,000,239 | ---- | C] () -- C:\Documents and Settings\philipp\Bureau\mw_header_b.png
[2010/12/30 12:28:33 | 000,000,236 | ---- | C] () -- C:\Documents and Settings\philipp\Bureau\mw_header_l_b.png
[2010/12/20 19:56:19 | 000,000,372 | ---- | C] () -- C:\Documents and Settings\philipp\Mes documents\spider.sav
[2010/10/14 14:24:26 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\philipp\Local Settings\Application Data\PUTTY.RND
[2009/11/02 18:44:46 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\ODBCMON.DLL
[2009/11/02 18:44:46 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\ODBCSTF.DLL
[2009/10/18 11:39:04 | 000,014,976 | ---- | C] () -- C:\WINDOWS\System32\drivers\SBKUPNT.SYS
[2009/10/18 11:38:52 | 000,002,799 | ---- | C] () -- C:\WINDOWS\SKLANG.INI
[2009/10/04 13:07:39 | 000,000,027 | ---- | C] () -- C:\WINDOWS\System32\VideoGenieSetup.ini
[2008/12/25 15:50:45 | 000,000,077 | ---- | C] () -- C:\WINDOWS\MediaManager.INI
[2008/10/25 18:57:28 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2008/04/30 02:57:10 | 000,000,206 | ---- | C] () -- C:\WINDOWS\System32\badbdddfe9_z.dll
[2007/11/06 20:25:51 | 000,000,177 | ---- | C] () -- C:\WINDOWS\yesmessenger.ini
[2007/11/04 16:30:37 | 000,000,015 | ---- | C] () -- C:\WINDOWS\wgedit.ini
[2007/08/01 15:35:23 | 000,001,359 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2007/03/05 12:34:28 | 000,676,224 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2007/02/23 20:18:39 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2006/09/17 12:07:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\TPTray.INI
[2006/09/08 17:04:26 | 000,000,033 | ---- | C] () -- C:\Documents and Settings\philipp\Application Data\pcouffin.log
[2006/09/08 17:04:17 | 000,081,920 | ---- | C] () -- C:\Documents and Settings\philipp\Application Data\ezpinst.exe
[2006/09/08 17:04:17 | 000,007,176 | ---- | C] () -- C:\Documents and Settings\philipp\Application Data\pcouffin.cat
[2006/09/08 17:04:17 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\philipp\Application Data\pcouffin.inf
[2006/09/04 21:22:37 | 000,000,026 | ---- | C] () -- C:\WINDOWS\System32\satsukidecodersettings.ini
[2006/08/11 14:07:03 | 000,030,464 | ---- | C] () -- C:\WINDOWS\macromix.dll
[2006/08/10 19:02:13 | 000,001,072 | ---- | C] () -- C:\WINDOWS\CDHome.ini
[2006/08/01 02:12:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\LiveBilliards.INI
[2006/04/14 16:30:16 | 000,001,070 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006/03/24 16:11:54 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2006/02/23 22:11:06 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\libtar.dll
[2005/12/31 18:33:15 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2005/12/28 13:53:03 | 000,000,040 | ---- | C] () -- C:\WINDOWS\NAVIGMA.INI
[2005/12/28 13:03:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\bbcauto.INI
[2005/12/27 12:08:22 | 000,024,217 | ---- | C] () -- C:\Documents and Settings\philipp\Application Data\Valeurs séparées par des virgules (DOS).ADR
[2005/12/25 19:19:54 | 000,024,201 | ---- | C] () -- C:\Documents and Settings\philipp\Application Data\Valeurs séparées par des virgules (Windows).ADR
[2005/12/18 15:58:24 | 000,000,426 | ---- | C] () -- C:\WINDOWS\System32\Px.ini
[2005/12/13 23:29:40 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\xmltok.dll
[2005/12/13 23:29:40 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\xmlparse.dll
[2005/11/04 09:27:24 | 000,000,291 | ---- | C] () -- C:\WINDOWS\CorelDRAW.ini
[2005/11/02 14:22:48 | 000,210,944 | ---- | C] () -- C:\WINDOWS\System32\Msvcrt10.dll
[2005/11/01 13:45:01 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
[2005/09/23 23:26:23 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2005/09/23 23:25:46 | 000,000,009 | ---- | C] () -- C:\WINDOWS\sierra.ini
[2005/08/27 15:58:53 | 000,000,000 | ---- | C] () -- C:\WINDOWS\SETUP32.INI
[2005/08/18 15:17:32 | 000,203,776 | ---- | C] () -- C:\Documents and Settings\philipp\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/07/27 00:50:39 | 000,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/07/26 13:13:59 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\philipp\Local Settings\Application Data\fusioncache.dat
[2003/10/01 10:24:15 | 000,000,000 | ---- | C] () -- C:\WINDOWS\CeEKey.INI
[2003/09/01 08:09:35 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NDSTRAY.INI
[2003/09/01 08:09:31 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2003/09/01 07:59:05 | 000,006,679 | ---- | C] () -- C:\WINDOWS\Tcds.ini
[2003/09/01 07:58:05 | 000,006,202 | ---- | C] () -- C:\WINDOWS\TcdsASCD.ini
[2003/09/01 07:18:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI
[2003/09/01 07:01:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\CePMTray.INI
[2003/09/01 06:54:39 | 000,128,113 | ---- | C] () -- C:\WINDOWS\System32\csellang.ini
[2003/09/01 06:54:39 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\csellang.dll
[2003/09/01 06:54:39 | 000,009,559 | ---- | C] () -- C:\WINDOWS\System32\tosmreg.ini
[2003/09/01 06:54:39 | 000,007,671 | ---- | C] () -- C:\WINDOWS\System32\cseltbl.ini
[2003/08/29 15:01:40 | 000,000,083 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2003/08/29 07:06:02 | 000,004,399 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2003/08/29 06:52:23 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2003/08/29 06:31:36 | 000,000,931 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2003/07/29 15:34:04 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\CeEKPolicy.dll
[2003/07/23 17:35:04 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\CeEPPolicy.dll
[2003/07/23 17:03:48 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\CeEPDefDat.dll
[2003/04/01 10:58:02 | 000,005,260 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/07/17 16:45:48 | 000,004,183 | ---- | C] () -- C:\WINDOWS\System32\drivers\TPIOMngr.sys
[1999/04/08 14:47:00 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\FViGxDS1.dll
[1998/02/12 12:38:08 | 000,000,016 | ---- | C] () -- C:\WINDOWS\System32\nslshelp.dll
[1997/11/21 17:03:20 | 000,338,944 | ---- | C] () -- C:\WINDOWS\System32\Lffpx7.dll
[1997/09/30 13:30:02 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\Lfkodak.dll

========== LOP Check ==========

[2006/12/10 18:04:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic
[2010/09/19 15:43:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Arovax
[2007/03/21 17:08:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Autodesk
[2010/09/19 10:19:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
[2010/11/14 17:12:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited
[2009/11/02 18:28:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2006/11/11 19:34:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations
[2010/09/06 18:15:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\F-Secure
[2007/07/19 01:01:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Flying Pig Systems
[2009/09/06 18:30:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ma-config.com
[2008/12/06 00:19:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Drivers Headquarters
[2009/10/01 14:36:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Teleca
[2009/10/25 12:52:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011/01/05 13:32:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/07/31 21:05:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ghys\Application Data\CheckPoint
[2010/07/15 18:51:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ghys\Application Data\GARMIN
[2010/12/14 12:09:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ghys\Application Data\Notepad++
[2010/12/14 08:45:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ghys\Application Data\OpenOffice.org
[2010/07/15 17:52:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ghys\Application Data\pdfforge
[2010/07/15 17:53:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ghys\Application Data\Search Settings
[2010/07/25 12:16:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ghys\Application Data\Thunderbird
[2007/02/25 23:29:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\AVG7
[2007/03/21 17:36:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Autodesk
[2010/11/14 17:12:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Canneverbe Limited
[2010/07/31 20:34:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\CheckPoint
[2006/08/29 00:56:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\DataLayer
[2010/09/25 10:51:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Dev-Cpp
[2010/12/28 19:06:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\FileZilla
[2006/12/16 16:15:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Flying Pig Systems
[2006/04/28 14:34:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\FUJIFILM
[2011/01/11 19:27:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\InfraRecorder
[2005/08/30 13:45:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\InterVideo
[2009/02/15 11:44:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\iScreensaver
[2010/02/21 10:21:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\LaCie
[2010/12/05 11:21:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Notepad++
[2010/11/23 19:16:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\OpenOffice.org
[2010/06/20 15:28:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\pdfforge
[2010/06/20 15:29:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Search Settings
[2008/12/01 11:18:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Teleca
[2010/07/25 12:01:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Thunderbird
[2008/12/06 15:44:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Vso

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\WgaTray.exe:SummaryInformation
@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\tcpsvcs.exe:SummaryInformation
@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\ialmgdev.dll:SummaryInformation
@Alternate Data Stream - 88 bytes -> C:\UNWISE.EXE:SummaryInformation
@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\philipp\Bureau\Licence FFR:SummaryInformation
@Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8FF81EB0
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7E95B6FD

< End of report >

Merci.
Malekal_morte
Messages : 112090
Inscription : 10 sept. 2005 13:57

Re: Aide de traduction...

par Malekal_morte »

Salut,

Je déplace dans optimisation.
Première règle élémentaire de sécurité : on réfléchit puis on clic et pas l'inverse - Les fichiers/programmes c'est comme les bonbons, quand ça vient d'un inconnu, on n'accepte pas !
Comment protéger son PC des virus
Windows 11 : Compatibilité, Configuration minimale requise, télécharger ISO et installer Windows 11

Comment demander de l'aide sur le forum
Partagez malekal.com : n'hésitez pas à partager les articles qui vous plaisent sur la page Facebook du site.
dosXX

[résolu]Re: Aide de traduction...

par dosXX »

Re Bonjour,
Malekal_morte merci pour la rapidité de ta réponse, vu que tu ne fais pas de commentaire particulier, dois je
considérer qu'il n'y a plus de problèmes à ce niveau ?
Mais que je peu cherché dans cette section pour les drivers récalcitrant ?
Merci.
ps*: philipp = DosXX. J'avais un peu oublié le "Sésame".
Dernière modification par dosXX le 20 janv. 2011 13:23, modifié 1 fois.
SkyTech

Re: Aide de traduction...

par SkyTech »

Salut,

Y a quelques restes de toolbars...

/!\ Désactive temporairement ton antivirus /!\

Télécharge AD-Remover (de Cyrildu17 / C_XX) sur ton Bureau.
  • /!\ Déconnecte-toi et ferme toutes applications en cours /!\
  • Double-clique sur le raccourci Ad-Remover sur ton Bureau.
  • Prends Nettoyer

    /!\ Laisse travailler l'outil /!\
  • Poste le rapport qui apparaît à la fin.
(Le rapport est sauvegardé aussi sous C:\Ad-report(date).log)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

Note :"Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
dosXX

Re: Aide de traduction...

par dosXX »

Salut SkyTeck,
D'abord merci pour l'aide apporté.
J'ai fais un scan en premier dont voici le rapport:


======= RAPPORT D'AD-REMOVER 2.0.0.2,D | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/01/11 à 19:00
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files\Ad-Remover\main.exe (SCAN [2]) -> Lancé à 23:42:38 le 13/01/2011, Mode normal

Microsoft Windows XP Édition familiale Service Pack 3 (X86)
[email protected] ( )

============== RECHERCHE ==============


Dossier trouvé: C:\Documents and Settings\philipp\Application Data\Mozilla\FireFox\Profiles\j025l99q.default\conduit
Fichier trouvé: C:\Documents and Settings\philipp\Application Data\Mozilla\FireFox\Profiles\j025l99q.default\searchplugins\conduit.xml
Dossier trouvé: C:\Documents and Settings\philipp\Local Settings\Application Data\Conduit
Dossier trouvé: C:\Program Files\Conduit
Dossier trouvé: C:\Documents and Settings\philipp\Application Data\pdfforge
Dossier trouvé: C:\Documents and Settings\Ghys\Application Data\pdfforge
Dossier trouvé: C:\Documents and Settings\philipp\Application Data\Search Settings
Dossier trouvé: C:\Documents and Settings\Ghys\Application Data\Search Settings

-- Fichier ouvert: C:\Documents and Settings\philipp\Application Data\Mozilla\FireFox\Profiles\j025l99q.default\Prefs.js --
Ligne trouvée: user_pref("CT2613520.SearchEngine", "Recherche||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_...
Ligne trouvée: user_pref("CT2613520.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT261...
Ligne trouvée: user_pref("CT2613520.ct2613520.SearchEngine", "Recherche||hxxp://search.conduit.com/Results.aspx?q=U...
Ligne trouvée: user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1396957&Sea...
-- Fichier Fermé --


Clé trouvée: HKLM\Software\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}
Clé trouvée: HKLM\Software\Classes\Toolbar.CT2613520
Clé trouvée: HKLM\Software\Conduit
Clé trouvée: HKCU\Software\Conduit
Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}


============== SCAN ADDITIONNEL ==============

** Mozilla Firefox Version [3.6.13 (fr)] **

-- C:\Documents and Settings\philipp\Application Data\Mozilla\FireFox\Profiles\j025l99q.default\Prefs.js --
browser.download.lastDir, C:\\Documents and Settings\\philipp\\Bureau
browser.search.defaulturl, hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1396957&SearchSource=3&q={searchTerms}
browser.search.selectedEngine, Mininova Customized Web Search
browser.startup.homepage, hxxp://free.fr/
browser.startup.homepage_override.mstone, rv:1.9.2.13
privacy.popups.showBrowserMessage, false

-- C:\Documents and Settings\Administrateur\Application Data\Mozilla\FireFox\Profiles\7shwhm8w.default\Prefs.js --
browser.startup.homepage, hxxp://en-us.start.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:fr:official

-- C:\Documents and Settings\Ghys\Application Data\Mozilla\FireFox\Profiles\prel2ljw.default\Prefs.js --
browser.download.dir, C:\\Documents and Settings\\Ghys\\Bureau\\Téléchargements
browser.download.lastDir, C:\\Documents and Settings\\Ghys\\Bureau\\Téléchargements
browser.search.selectedEngine, Yahoo
browser.startup.homepage, hxxp:www.google.fr
browser.startup.homepage_override.mstone, rv:1.9.2.13

========================================

** Internet Explorer Version [8.0.6001.18702] **

[HKCU\Software\Microsoft\Internet Explorer\Main]
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Show_ToolBar: yes
Start Page: hxxp://free.fr/

[HKLM\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: hxxp://go.microsoft.com/fwlink/?LinkId=69157

[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm

========================================

C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 2 Fichier(s)

C:\Ad-Report-SCAN[1].txt - 14/01/2011 (4581 Octet(s))
C:\Ad-Report-SCAN[2].txt - 14/01/2011 (2196 Octet(s))

Fin à: 23:44:05, 13/01/2011

============== E.O.F ==============

Petite question, les réfs "hxxp://" font elle référence aux toolbars en question? merci.
Donc le rapport de nettoyage:


======= RAPPORT D'AD-REMOVER 2.0.0.2,D | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/01/11 à 19:00
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 00:07:49 le 14/01/2011, Mode normal

Microsoft Windows XP Édition familiale Service Pack 3 (X86)
[email protected] ( )

============== ACTION(S) ==============


Dossier supprimé: C:\Documents and Settings\philipp\Application Data\Mozilla\FireFox\Profiles\j025l99q.default\conduit
Fichier supprimé: C:\Documents and Settings\philipp\Application Data\Mozilla\FireFox\Profiles\j025l99q.default\searchplugins\conduit.xml
Dossier supprimé: C:\Documents and Settings\philipp\Local Settings\Application Data\Conduit
Dossier supprimé: C:\Program Files\Conduit
Dossier supprimé: C:\Documents and Settings\philipp\Application Data\pdfforge
Dossier supprimé: C:\Documents and Settings\Ghys\Application Data\pdfforge
Dossier supprimé: C:\Documents and Settings\philipp\Application Data\Search Settings
Dossier supprimé: C:\Documents and Settings\Ghys\Application Data\Search Settings

(!) -- Fichiers temporaires supprimés.


-- Fichier ouvert: C:\Documents and Settings\philipp\Application Data\Mozilla\FireFox\Profiles\j025l99q.default\Prefs.js --
Ligne supprimée:
Ligne supprimée:
Ligne supprimée: user_pref("CT2613520.SearchEngine", "Recherche||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_...
Ligne supprimée: user_pref("CT2613520.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT261...
Ligne supprimée: user_pref("CT2613520.ct2613520.SearchEngine", "Recherche||hxxp://search.conduit.com/Results.aspx?q=U...
Ligne supprimée: user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1396957&Sea...
-- Fichier Fermé --


Clé supprimée: HKLM\Software\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2613520
Clé supprimée: HKLM\Software\Conduit
Clé supprimée: HKCU\Software\Conduit
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}


============== SCAN ADDITIONNEL ==============

** Mozilla Firefox Version [3.6.13 (fr)] **

-- C:\Documents and Settings\philipp\Application Data\Mozilla\FireFox\Profiles\j025l99q.default\Prefs.js --
browser.download.lastDir, C:\\Documents and Settings\\philipp\\Bureau
browser.search.selectedEngine, Mininova Customized Web Search
browser.startup.homepage, hxxp://free.fr/
browser.startup.homepage_override.mstone, rv:1.9.2.13
privacy.popups.showBrowserMessage, false

-- C:\Documents and Settings\Administrateur\Application Data\Mozilla\FireFox\Profiles\7shwhm8w.default\Prefs.js --
browser.startup.homepage, hxxp://en-us.start.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:fr:official

-- C:\Documents and Settings\Ghys\Application Data\Mozilla\FireFox\Profiles\prel2ljw.default\Prefs.js --
browser.download.dir, C:\\Documents and Settings\\Ghys\\Bureau\\Téléchargements
browser.download.lastDir, C:\\Documents and Settings\\Ghys\\Bureau\\Téléchargements
browser.search.selectedEngine, Yahoo
browser.startup.homepage, hxxp:www.google.fr
browser.startup.homepage_override.mstone, rv:1.9.2.13

========================================

** Internet Explorer Version [8.0.6001.18702] **

[HKCU\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Show_ToolBar: yes
Start Page: hxxp://fr.msn.com/

[HKLM\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/

[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm

========================================

C:\Program Files\Ad-Remover\Quarantine: 12 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 14 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 14/01/2011 (2315 Octet(s))

Fin à: 00:09:49, 14/01/2011

============== E.O.F ==============

Merci encore, à tous pour votre aide.
SkyTech

Re: Aide de traduction...

par SkyTech »

Salut,

Relance AD-Remover et prends Désinstaller.
dosXX a écrit :Petite question, les réfs "hxxp://" font elle référence aux toolbars en question? merci.
Dans certains cas.
J'ai un problême avec les lignes S3 dans la section (((( Points de chargement Reg )))) beaucoup trop de drivers SonyEricsson suite à changement de mobile, modem, USB Ethernet Emulation, etc, etc je ne peu les supprimer??? si vous avez une idée.
Liste les programmes installés et je te dirais : https://www.malekal.com/tutorial-et-guide-hijackthis/

---

- Menu Démarrer / exécuter et tape : Combofix /uninstall puis OK (attention il y a pas d’espace entre le / et le uninstall)

---

Relance OTL.
o sous Personnalisation, copie_colle le contenu du cadre ci dessous et clic Correction, un rapport apparaitra suite à l’opération que tu conserveras afin d’en coller le résultat:
:OTL
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\w810obex.sys -- (w810obex)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\w810mgmt.sys -- (w810mgmt) Sony Ericsson W810 USB WMC Device Management Drivers (WDM)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\w810mdm.sys -- (w810mdm)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\w810mdfl.sys -- (w810mdfl)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\w810bus.sys -- (w810bus) Sony Ericsson W810 Driver driver (WDM)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\TVICHW32.SYS -- (TVICHW32)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\RT2500.sys -- (RT2500)
DRV - File not found [File_System | Boot | Stopped] -- C:\WINDOWS\System32\DRIVERS\Lbd.sys -- (Lbd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\k600obex.sys -- (k600obex)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\k600mgmt.sys -- (k600mgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\k600mdm.sys -- (k600mdm)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\k600mdfl.sys -- (k600mdfl)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\k600bus.sys -- (k600bus) Sony Ericsson 600i driver (WDM)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\philipp\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\btwusb.sys -- (BTWUSB)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\btwhid.sys -- (btwhid)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\btwdndis.sys -- (BTWDNDIS)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\btport.sys -- (BTDriver)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\btaudio.sys -- (btaudio)
SRV - File not found [Disabled | Stopped] -- C:\Program Files\RealVNC\WinVNC.exe -- (winvnc)
FF - prefs.js..browser.search.selectedEngine: "Mininova Customized Web Search"
[2010/07/25 12:01:54 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2010/04/17 16:49:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/10/20 22:48:04 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
O3 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\..\Toolbar\WebBrowser: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No CLSID value found.
[2011/01/12 16:47:15 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\WgaTray.exe:SummaryInformation
@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\tcpsvcs.exe:SummaryInformation
@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\ialmgdev.dll:SummaryInformation
@Alternate Data Stream - 88 bytes -> C:\UNWISE.EXE:SummaryInformation
@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\philipp\Bureau\Licence FFR:SummaryInformation
@Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8FF81EB0
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7E95B6FD
[2010/09/06 18:15:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\F-Secure
[2007/02/25 23:29:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\AVG7
[2007/11/06 20:25:51 | 000,000,177 | ---- | C] () -- C:\WINDOWS\yesmessenger.ini
[2011/01/12 20:54:27 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011/01/12 20:54:27 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011/01/12 20:54:27 | 000,089,088 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011/01/12 20:54:27 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011/01/12 20:54:27 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
:reg
[-HKLM\~\startupfolder\C:^Documents and Settings^philipp^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 3.2.lnk]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"igfxhkcmd"=-
"igfxpers"=-
"igfxtray"=-
"QuickTime Task"=-
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ctfmon.exe"=-
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"MSConfig"=-
"iTunesHelper"=-
"IgfxTray"=-
"HotKeysCmds"=-
"QuickTime Task"=-
:files
c:\documents and settings\Ghys\Menu D‚marrer\Programmes\D‚marrage\
OpenOffice.org 3.2.lnk
c:\documents and settings\Ghys\Menu Démarrer\Programmes\D‚marrage\
OpenOffice.org 3.2.lnk
:commands
[purity]
[emptytemp]
[emptyflash]
* redémarre le pc sous windows et poste le rapport ici

---

Télécharge JavaRa (de Paul McLain et Fred de Vries)
  • Décompresse le fichier sur ton Bureau (clic droit > Extraire tout)
  • Double-clique sur le répertoire JavaRa obtenu.
  • Puis double-clique sur le fichier JavaRa.exe (le .exe peut ne pas s'afficher)
  • Clique sur Effacer les anciennes versions
  • Clique sur Oui pour confirmer. L'outil va travailler, clique ensuite sur Ok, puis une deuxième fois sur Ok
  • Ferme l'application.
  • Poste le contenu de C:\JavaRa.log
dosXX

Re: Aide de traduction...

par dosXX »

Salut SkyTeck,
Dsl de ne avoir repris contact plus rapidement, mais le vendredi soir c'est training rugby!!! et le samedi match!!!
Beaucoup de boxon ce matin....
Pour le Navigateur par exemple actuellement: plus de barre d'adresse,les raccourcies back et forward,actualise,home, ont disparue. Il y à encore deux minutes le clavier ne répondait plus,impossible d'écrire dans la zone "exécuter" pour virer Combofix. Je voulais renommer HijackThis comme recommandé "clic droit -->renommer:impossible. Cela me renvoyer sur les propriétés de raccourcie?!!!! donc pour le moment les choses re-fonctionnent et ci-joint le rapport HJK uninstall.

@ plus merci.

ps*:PC Companion et SEUE sont pour moi logique puisque c'est le nouveau soft SONY-ERICSSON (éventuellement j'ai fais une copie d'écran des drivers, si tu veux que je la dépose quelques part?).

7-Zip 9.20
Adobe Download Manager
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Illustrator 10
Adobe Photoshop 7.0
Adobe Reader X
Adobe Shockwave Player 11.5
Adobe SVG Viewer 3.0
Ad-Remover By C_XX
ALPS Touch Pad Driver
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ASAPI Update
AutoCAD LT 2004
Autodesk Express Viewer
Avira AntiVir Personal - Free Antivirus
AxCrypt 1.7.2126.0
Bonjour
CCleaner
CDex extraction audio
Console TOSHIBA
CorelDRAW 10
CorelDRAW 10
Dev-C++ 5 beta 9 release (4.9.9.2)
EVEREST Home Edition v2.20
FileHippo.com Update Checker
Free Window Registry Repair
Genesys USB Mass Storage Device
HASP HL Device Driver
Hog3PC 2.1.0.1618
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
hp deskjet 930c series (Supprimer uniquement)
HP USB Disk Storage Format Tool
InfraRecorder
Intel(R) Extreme Graphics 2 Driver
iTunes
J2SE Runtime Environment 5.0 Update 10
J2SE Runtime Environment 5.0 Update 11
J2SE Runtime Environment 5.0 Update 6
J2SE Runtime Environment 5.0 Update 9
Java 2 Runtime Environment, SE v1.4.2
Java(TM) 6 Update 2
Java(TM) 6 Update 23
Java(TM) 6 Update 3
Java(TM) 6 Update 5
Java(TM) 6 Update 7
Java(TM) SE Runtime Environment 6 Update 1
Lecteur Windows Media 11
Live Usb Helper 0.0.8
Malwarebytes' Anti-Malware
Microsoft .NET Framework (French)
Microsoft .NET Framework (French) v1.0.3705
Microsoft .NET Framework 1.0 Hotfix (KB928367)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 French Language Pack
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1
Microsoft Baseline Security Analyzer 2.2
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft WinUsb 1.0
MIKSOFT Mobile Media Converter
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB2183461)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB2360131)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB2416400)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB2360131)
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB2416400)
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB981332)
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB982381)
Mise à jour pour Windows Internet Explorer 8 (KB2447568)
Mise à jour pour Windows Internet Explorer 8 (KB976662)
Mozilla Firefox (3.6.13)
Mozilla Thunderbird (3.1.7)
MSXML 4.0 SP2 (KB925672)
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MyDefrag v4.3.1
Notepad++
OpenOffice.org 3.2
QuickTime
Realtek AC'97 Audio
Revo Uninstaller 1.91
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Sentinel System Driver
SMSC IrCC Driver V5.1.2462.0 (WinXP)
Sony Ericsson PC Companion 2.01.078
Sony Ericsson Update Engine

TOSHIBA ConfigFree
Toshiba screensaver
Trend Micro Web Protection Add-On
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
User Profile Hive Cleanup Service
Utilitaire Economie TOSHIBA
Utilitaire Hotkey TOSHIBA
Utilitaire TouchPad ON/OFF
VC 9.0 Runtime
Vista WYSIWYG Driver
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
Windows Genuine Advantage v1.3.0254.0
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Player Firefox Plugin
WinZip
WYSIWYG
ZoneAlarm
dosXX

Re: Aide de traduction...

par dosXX »

SkyTeck,
Ci-dessous les logs OTL et JavaRa, pour les commandes du "mulot" tout semble être revenu dans l'ordre, pour le Nav je regarderais dans les préfs d'affichage si une option ne ce serait virée avec toutes les manips via les progs!!!
JavaRa après le redémarrage n'a pas ouvert de log, je l'ai donc ré-exécuté. Merci pour cette info.Je ne savais pas que l'on pouvait effacer les anciennes versions. Cela dis il reste du J2SE et Java Update. faut il l'exécuter de nouveau?

Pour les services sony-Ericsson je comprend qu'il sont "stoppé et effacé".Quand aux drivers dois je les désinstaller à la main ? via le "gestionnaire de périphs"

Encore merci pour l'aide que tu apportes.

All processes killed
========== OTL ==========
Service w810obex stopped successfully!
Service w810obex deleted successfully!
File C:\WINDOWS\System32\DRIVERS\w810obex.sys not found.
Error: No service named w810mgmt) Sony Ericsson W810 USB WMC Device Management Drivers (WDM was found to stop!
Service\Driver key w810mgmt) Sony Ericsson W810 USB WMC Device Management Drivers (WDM not found.
File C:\WINDOWS\System32\DRIVERS\w810mgmt.sys not found.
Service w810mdm stopped successfully!
Service w810mdm deleted successfully!
File C:\WINDOWS\System32\DRIVERS\w810mdm.sys not found.
Service w810mdfl stopped successfully!
Service w810mdfl deleted successfully!
File C:\WINDOWS\System32\DRIVERS\w810mdfl.sys not found.
Error: No service named w810bus) Sony Ericsson W810 Driver driver (WDM was found to stop!
Service\Driver key w810bus) Sony Ericsson W810 Driver driver (WDM not found.
File C:\WINDOWS\System32\DRIVERS\w810bus.sys not found.
Service TVICHW32 stopped successfully!
Service TVICHW32 deleted successfully!
File C:\WINDOWS\System32\DRIVERS\TVICHW32.SYS not found.
Service RT2500 stopped successfully!
Service RT2500 deleted successfully!
File C:\WINDOWS\System32\DRIVERS\RT2500.sys not found.
Service Lbd stopped successfully!
Service Lbd deleted successfully!
File C:\WINDOWS\System32\DRIVERS\Lbd.sys not found.
Service k600obex stopped successfully!
Service k600obex deleted successfully!
File C:\WINDOWS\System32\DRIVERS\k600obex.sys not found.
Service k600mgmt stopped successfully!
Service k600mgmt deleted successfully!
File C:\WINDOWS\System32\DRIVERS\k600mgmt.sys not found.
Service k600mdm stopped successfully!
Service k600mdm deleted successfully!
File C:\WINDOWS\System32\DRIVERS\k600mdm.sys not found.
Service k600mdfl stopped successfully!
Service k600mdfl deleted successfully!
File C:\WINDOWS\System32\DRIVERS\k600mdfl.sys not found.
Error: No service named k600bus) Sony Ericsson 600i driver (WDM was found to stop!
Service\Driver key k600bus) Sony Ericsson 600i driver (WDM not found.
File C:\WINDOWS\System32\DRIVERS\k600bus.sys not found.
Service catchme stopped successfully!
Service catchme deleted successfully!
File C:\DOCUME~1\philipp\LOCALS~1\Temp\catchme.sys not found.
Service BTWUSB stopped successfully!
Service BTWUSB deleted successfully!
File C:\WINDOWS\System32\Drivers\btwusb.sys not found.
Service btwhid stopped successfully!
Service btwhid deleted successfully!
File C:\WINDOWS\System32\DRIVERS\btwhid.sys not found.
Service BTWDNDIS stopped successfully!
Service BTWDNDIS deleted successfully!
File C:\WINDOWS\System32\DRIVERS\btwdndis.sys not found.
Service BTDriver stopped successfully!
Service BTDriver deleted successfully!
File C:\WINDOWS\System32\DRIVERS\btport.sys not found.
Service btaudio stopped successfully!
Service btaudio deleted successfully!
File C:\WINDOWS\System32\drivers\btaudio.sys not found.
Service winvnc stopped successfully!
Service winvnc deleted successfully!
File C:\Program Files\RealVNC\WinVNC.exe not found.
Prefs.js: "Mininova Customized Web Search" removed from browser.search.selectedEngine
C:\Documents and Settings\philipp\Application Data\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\content folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\content folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} folder moved successfully.
Registry value HKEY_USERS\S-1-5-21-1229336797-2356155799-2440628043-1005\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107}\ not found.
C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION\defaults\preferences folder moved successfully.
C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION\defaults folder moved successfully.
C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION\chrome folder moved successfully.
C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION folder moved successfully.
Starting removal of ActiveX control {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
ADS C:\WINDOWS\System32\WgaTray.exe:SummaryInformation deleted successfully.
ADS C:\WINDOWS\System32\tcpsvcs.exe:SummaryInformation deleted successfully.
ADS C:\WINDOWS\System32\ialmgdev.dll:SummaryInformation deleted successfully.
ADS C:\UNWISE.EXE:SummaryInformation deleted successfully.
ADS C:\Documents and Settings\philipp\Bureau\Licence FFR:SummaryInformation deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8FF81EB0 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7E95B6FD deleted successfully.
C:\Documents and Settings\All Users\Application Data\F-Secure\Daas2\cert folder moved successfully.
C:\Documents and Settings\All Users\Application Data\F-Secure\Daas2 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\F-Secure folder moved successfully.
C:\Documents and Settings\LocalService\Application Data\AVG7 folder moved successfully.
C:\WINDOWS\yesmessenger.ini moved successfully.
File C:\WINDOWS\PEV.exe not found.
File C:\WINDOWS\sed.exe not found.
File C:\WINDOWS\MBR.exe not found.
File C:\WINDOWS\grep.exe not found.
File C:\WINDOWS\zip.exe not found.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\System32\msxml3.dll.tmp deleted successfully.
C:\WINDOWS\System32\sfc_os.dll.tmp deleted successfully.
C:\WINDOWS\000001_.tmp deleted successfully.
C:\WINDOWS\005285_.tmp deleted successfully.
C:\WINDOWS\msdownld.tmp folder deleted successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\~\startupfolder\C:^Documents and Settings^philipp^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 3.2.lnk\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\igfxhkcmd deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\igfxpers deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\igfxtray not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-\\ctfmon.exe deleted successfully.
Registry value HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-\\MSConfig deleted successfully.
Registry value HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-\\iTunesHelper deleted successfully.
Registry value HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-\\IgfxTray deleted successfully.
Registry value HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-\\HotKeysCmds deleted successfully.
Registry value HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-\\QuickTime Task deleted successfully.
========== FILES ==========
Folder c:\documents and settings\Ghys\Menu D‚marrer\Programmes\D‚marrage not found.
File\Folder OpenOffice.org 3.2.lnk not found.
Folder c:\documents and settings\Ghys\Menu Démarrer\Programmes\D‚marrage not found.
File\Folder OpenOffice.org 3.2.lnk not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrateur
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->FireFox cache emptied: 2458047 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Ghys
->Temp folder emptied: 200216 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 49430966 bytes
->Flash cache emptied: 1408 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes
->FireFox cache emptied: 4315822 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: philipp
->Temp folder emptied: 4427714 bytes
->Temporary Internet Files folder emptied: 41061 bytes
->Java cache emptied: 118545 bytes
->FireFox cache emptied: 56576289 bytes
->Flash cache emptied: 2112 bytes

User: Propriétaire

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 33024 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 59031 bytes
RecycleBin emptied: 134622 bytes

Total Files Cleaned = 112,00 mb


[EMPTYFLASH]

User: Administrateur

User: All Users

User: Default User

User: Ghys
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

User: philipp
->Flash cache emptied: 0 bytes

User: Propriétaire

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.20.1 log created on 01162011_111040

Files\Folders moved on Reboot...
C:\Documents and Settings\philipp\Local Settings\Temp\~DF69DB.tmp moved successfully.
C:\WINDOWS\temp\Perflib_Perfdata_3c0.dat moved successfully.
File\Folder C:\WINDOWS\temp\ZLT06406.TMP not found!

Registry entries deleted on Reboot...







JavaRa 1.16 Removal Log.

Report follows after line.

------------------------------------

The JavaRa removal process was started on Sun Jan 16 10:33:29 2011

Found and removed: C:\Program Files\Java\j2re1.4.2

Found and removed: C:\Program Files\Java\jre1.5.0_06

Found and removed: C:\Program Files\Java\jre1.5.0_09

Found and removed: C:\Program Files\Java\jre1.5.0_10

Found and removed: C:\Program Files\Java\jre1.5.0_11

Found and removed: C:\Program Files\Java\jre1.6.0_01

Found and removed: C:\Program Files\Java\jre1.6.0_02

Found and removed: C:\Program Files\Java\jre1.6.0_03

Found and removed: C:\Program Files\Java\jre1.6.0_05

Found and removed: C:\Program Files\Java\jre1.6.0_07

Found and removed: C:\Documents and Settings\philipp\Application Data\Sun\Java\jre1.6.0_14

Found and removed: C:\Documents and Settings\philipp\Application Data\Sun\Java\jre1.6.0_15

Found and removed: C:\Documents and Settings\philipp\Application Data\Sun\Java\jre1.6.0_17

Found and removed: C:\Documents and Settings\philipp\Application Data\Sun\Java\jre1.6.0_20

Found and removed: C:\Documents and Settings\philipp\Application Data\Sun\Java\jre1.6.0_22

Found and removed: C:\WINDOWS\Installer\{7148F0A8-6813-11D6-A77B-00B0D0142000}

Found and removed: Applications\java.exe

Found and removed: Applications\javaw.exe

Found and removed: Installer\Products\8A0F842331866D117AB7000B0D610007

Found and removed: CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}

Found and removed: JavaScript

Found and removed: JavaScript Author

Found and removed: JavaScript1.1

Found and removed: JavaScript1.1 Author

Found and removed: JavaScript1.2

Found and removed: JavaScript1.2 Author

Found and removed: Software\Classes\CLSID\{E19F9331-3110-11D4-991C-005004D3B3DB}

Found and removed: Software\Classes\JavaPlugin.142

Found and removed: Software\Classes\JavaPlugin.150_06

Found and removed: Software\Classes\JavaPlugin.150_09

Found and removed: Software\Classes\JavaPlugin.150_10

Found and removed: Software\Classes\JavaPlugin.150_11

Found and removed: Software\Classes\JavaPlugin.160_01

Found and removed: Software\Classes\JavaPlugin.160_02

Found and removed: Software\Classes\JavaPlugin.160_03

Found and removed: Software\Classes\JavaPlugin.160_05

Found and removed: Software\Classes\JavaPlugin.160_07

Found and removed: Software\JavaSoft\Java Update

Found and removed: Software\JavaSoft\Java Runtime Environment\1.4.2

Found and removed: Software\JavaSoft\Java Runtime Environment\1.5.0_06

Found and removed: Software\JavaSoft\Java Runtime Environment\1.5.0_09

Found and removed: Software\JavaSoft\Java Runtime Environment\1.5.0_10

Found and removed: Software\JavaSoft\Java Runtime Environment\1.5.0_11

Found and removed: Software\JavaSoft\Java Runtime Environment\1.6.0_01

Found and removed: Software\JavaSoft\Java Runtime Environment\1.6.0_02

Found and removed: Software\JavaSoft\Java Runtime Environment\1.6.0_03

Found and removed: Software\JavaSoft\Java Runtime Environment\1.6.0_05

Found and removed: Software\JavaSoft\Java Runtime Environment\1.6.0_07

Found and removed: Software\JavaSoft\Java2D\1.5.0_06

Found and removed: Software\JavaSoft\Java2D\1.5.0_09

Found and removed: Software\JavaSoft\Java2D\1.5.0_10

Found and removed: Software\JavaSoft\Java2D\1.5.0_11

Found and removed: SOFTWARE\Classes\JavaPlugin.142

Found and removed: SOFTWARE\Classes\JavaPlugin.150_06

Found and removed: SOFTWARE\Classes\JavaPlugin.150_09

Found and removed: SOFTWARE\Classes\JavaPlugin.150_10

Found and removed: SOFTWARE\Classes\JavaPlugin.150_11

Found and removed: SOFTWARE\Classes\JavaPlugin.160_01

Found and removed: SOFTWARE\Classes\JavaPlugin.160_02

Found and removed: SOFTWARE\Classes\JavaPlugin.160_03

Found and removed: SOFTWARE\Classes\JavaPlugin.160_05

Found and removed: SOFTWARE\Classes\JavaPlugin.160_07

Found and removed: SOFTWARE\Classes\JavaWebStart.isInstalled.1.4.2.0

Found and removed: SOFTWARE\Classes\JavaWebStart.isInstalled.1.5.0.0

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.4.2

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.5.0_06

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.5.0_09

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.5.0_10

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.5.0_11

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_01

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_02

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_03

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_05

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_07

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.4

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.5

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_06

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_09

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_10

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_11

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_01

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_02

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_03

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_05

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_07

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_02

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_03

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_04

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2.0_01

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.4.2

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.5.0_06

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.5.0_09

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.5.0_10

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.5.0_11

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_01

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_02

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_03

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_05

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_07

Found and removed: SOFTWARE\Microsoft\Active Setup\Installed Components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.5.0_06\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.5.0_09\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.5.0_10\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.5.0_11\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_01\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_02\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_03\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_05\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_07\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0357E4991DA5FF14F9615B3412062B02

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0357E4991DA5FF14F9615B3412062B03

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0357E4991DA5FF14F9615B3612062B02

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0357E4991DA5FF14F9615B3612062B03

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.1

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.1.1

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.1.3

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.2

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.2.1

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.3

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.3.1

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.4

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.4.1

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.5

JavaRa 1.16 Removal Log.

Report follows after line.

------------------------------------

The JavaRa removal process was started on Sun Jan 16 10:45:36 2011

Found and removed: CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}

------------------------------------

Finished reporting.
SkyTech

Re: Aide de traduction...

par SkyTech »

Salut,

Supprime JavaRa & C:\JavaRa.log

Relance OTL et clic sur Purge outil.
dosXX a écrit :Pour les services sony-Ericsson je comprend qu'il sont "stoppé et effacé".Quand aux drivers dois je les désinstaller à la main ? via le "gestionnaire de périphs"
dosXX a écrit :ps*:PC Companion et SEUE sont pour moi logique puisque c'est le nouveau soft SONY-ERICSSON (éventuellement j'ai fais une copie d'écran des drivers, si tu veux que je la dépose quelques part?).
Je comprends pas, tu as des softs Sony et tu voudrais virer les drivers qui vont avec ?
dosXX a écrit :Cela dis il reste du J2SE et Java Update. faut il l'exécuter de nouveau?
Désinstalle-les via Ajout\Suppression de programmes.

Désinstalle aussi :
  • Adobe Download Manager
    Ad-Remover By C_XX
    Bonjour
dosXX

Re: Aide de traduction...

par dosXX »

Salut,
Je te réponds via autre Pc ,le malade redémarre.
SkyTech a écrit :Je comprends pas, tu as des softs Sony et tu voudrais virer les drivers qui vont avec ?

En fait ceux sont des drivers qui correspondent à d'anciens téléphones. Comme beaucoup je suis passé sur un "AndroPhone" et donc après avoir virer l'ancienne version du soft de gestion (sauvegarde contacts,MàJ,etc,etc,)les drivers eux sont toujours installé (apparent dans le gestionnaire de périph.)je les ai donc désactivé mais ne pouvais pas les virer(services toujours actif??). Du fait que les "services" soit effacé mais les drivers toujours présent, dois je donc les supprimés manuellement?
SkyTech

Re: Aide de traduction...

par SkyTech »

OK, supprime-les via le gestionnaire de périphériques.

Poste un nouveau rapport OTL quand c'est fait.
dosXX

Re: Aide de traduction...

par dosXX »

Salut SkyTeck,
Pour en revenir aux drivers encore et toujours...Je ne pouvais les désinstaller via "clic droit" peut être parce qu'ils étaient désactivés?!
Je l'ai ai donc remis en services et ils ont disparu du gestionnaire.
D'après le log OTL ci-joint "W810, K600" ne figurent plus sur la liste, je considère donc qu'ils ne sont plus sur le Pc. Mais peut être ai je tord ? vu ce qu'il reste de ligne Sony Ericsson.
Dans tout les cas, c'est super intéressant de savoir tout ce que renferme une machine au fil du temps. Même si l'on pense que le ménage est correctement fait et qu'avec les logiciels lambda que tout le monde peut exécuter tout va bien, je me rend compte que je suis bien loin d'une blancheur éclatante.
Tout ça pour dire un grand merci à toi et aux gens qui participent à ces forums d'entraides, qui partagent leurs connaissances et donnent de leur temps pour nous permettre de retrouver une machine saine et surtout d'être guidé pour ne pas faire de grosse bourde quand on se lance dans ce genre de manipulation. Un grand merci.

OTL logfile created on: 17/01/2011 18:31:53 - Run 2
OTL by OldTimer - Version 3.2.20.2 Folder = C:\Documents and Settings\philipp\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000140C | Country: Luxembourg | Language: FRL | Date Format: dd/MM/yyyy

1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 80,00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,25 Gb Total Space | 17,91 Gb Free Space | 48,08% Space Free | Partition Type: NTFS

Computer Name: MANY | User Name: philipp | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/01/17 01:15:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\philipp\Bureau\OTL.exe
PRC - [2010/12/17 19:46:02 | 000,267,944 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2010/10/16 00:40:40 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/09/29 17:17:04 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe
PRC - [2010/09/29 17:14:56 | 001,043,968 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
PRC - [2010/08/17 13:39:03 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2010/08/17 13:38:55 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010/08/09 13:47:54 | 000,248,832 | ---- | M] (FileHippo.com) -- C:\Program Files\FileHippo.com\UpdateChecker.exe
PRC - [2010/01/14 22:11:14 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2009/12/19 23:00:00 | 006,095,504 | ---- | M] (MySQL AB) -- C:\xampplite\mysql\bin\mysqld.exe
PRC - [2009/12/19 23:00:00 | 000,029,416 | ---- | M] (Apache Software Foundation) -- C:\xampplite\apache\bin\httpd.exe
PRC - [2009/09/02 03:29:54 | 000,288,136 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\Web Protection Add-On\TMWebProtectTray.exe
PRC - [2009/09/02 03:29:52 | 000,591,232 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\Web Protection Add-On\TMWebProtect.exe
PRC - [2009/03/11 12:05:06 | 000,685,320 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\Web Protection Add-On\TmProxy.exe
PRC - [2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2005/04/27 12:59:24 | 000,241,725 | ---- | M] (Microsoft Corporation) -- C:\Program Files\UPHClean\uphclean.exe
PRC - [2003/07/11 11:18:46 | 000,073,728 | ---- | M] (COMPAL ELECTRONIC INC.) -- C:\Program Files\TOSHIBA\Power Management\CeEPwrSvc.exe


========== Modules (SafeList) ==========

MOD - [2011/01/17 01:15:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\philipp\Bureau\OTL.exe
MOD - [2010/08/23 17:12:39 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (iPod Service)
SRV - File not found [On_Demand | Stopped] -- -- (getPlusHelper) getPlus(R)
SRV - [2010/12/17 19:46:02 | 000,267,944 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2010/10/26 16:05:24 | 000,155,344 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe -- (Sony Ericsson PCCompanion)
SRV - [2010/10/16 00:40:40 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/09/29 17:17:04 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\WINDOWS\System32\ZoneLabs\vsmon.exe -- (vsmon)
SRV - [2010/08/17 13:39:03 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2009/12/19 23:00:00 | 006,095,504 | ---- | M] (MySQL AB) [Auto | Running] -- C:\xampplite\mysql\bin\mysqld.exe -- (MySQL)
SRV - [2009/12/19 23:00:00 | 000,029,416 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\xampplite\apache\bin\httpd.exe -- (Apache2.2)
SRV - [2009/09/02 03:29:52 | 000,591,232 | ---- | M] (Trend Micro Inc.) [Auto | Running] -- C:\Program Files\Trend Micro\Web Protection Add-On\TMWebProtect.exe -- (TMWebProtect)
SRV - [2009/03/11 12:05:06 | 000,685,320 | ---- | M] (Trend Micro Inc.) [Auto | Running] -- C:\Program Files\Trend Micro\Web Protection Add-On\TmProxy.exe -- (TmProxy)
SRV - [2008/04/14 03:33:27 | 000,036,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\iprip.dll -- (Iprip)
SRV - [2007/08/25 11:59:15 | 000,217,208 | ---- | M] (Emsi Software GmbH) [Disabled | Stopped] -- C:\Program Files\a-squared Anti-Dialer\a2service.exe -- (a2AntiDialer)
SRV - [2005/11/14 01:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2005/04/27 12:59:24 | 000,241,725 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\UPHClean\uphclean.exe -- (UPHClean)
SRV - [2003/07/11 11:18:46 | 000,073,728 | ---- | M] (COMPAL ELECTRONIC INC.) [Auto | Running] -- C:\Program Files\TOSHIBA\Power Management\CeEPwrSvc.exe -- (CeEPwrSvc)


========== Driver Services (SafeList) ==========

DRV - [2010/12/17 19:46:10 | 000,135,096 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2010/12/17 19:46:10 | 000,061,960 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2010/06/17 15:28:02 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010/06/17 15:27:52 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2010/05/13 10:02:32 | 000,532,224 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant)
DRV - [2010/02/11 13:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2009/11/02 18:30:25 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009/04/06 08:13:52 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2009/04/06 08:13:52 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2009/03/25 16:48:00 | 000,114,728 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mdm.sys -- (s1018mdm)
DRV - [2009/03/25 16:48:00 | 000,109,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018unic.sys -- (s1018unic) Sony Ericsson Device 1018 USB Ethernet Emulation (WDM)
DRV - [2009/03/25 16:48:00 | 000,106,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mgmt.sys -- (s1018mgmt) Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM)
DRV - [2009/03/25 16:48:00 | 000,104,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018obex.sys -- (s1018obex)
DRV - [2009/03/25 16:48:00 | 000,086,824 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018bus.sys -- (s1018bus) Sony Ericsson Device 1018 driver (WDM)
DRV - [2009/03/25 16:48:00 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018nd5.sys -- (s1018nd5) Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS)
DRV - [2009/03/25 16:48:00 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mdfl.sys -- (s1018mdfl)
DRV - [2009/03/11 12:05:20 | 000,083,728 | ---- | M] (Trend Micro Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tmtdi.sys -- (tmtdi)
DRV - [2009/02/13 20:02:52 | 000,011,520 | R--- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2008/10/21 09:22:48 | 000,114,600 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017mdm.sys -- (s0017mdm)
DRV - [2008/10/21 09:22:48 | 000,109,736 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017unic.sys -- (s0017unic) Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM)
DRV - [2008/10/21 09:22:48 | 000,108,328 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017mgmt.sys -- (s0017mgmt) Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM)
DRV - [2008/10/21 09:22:48 | 000,104,616 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017obex.sys -- (s0017obex)
DRV - [2008/10/21 09:22:48 | 000,086,824 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017bus.sys -- (s0017bus) Sony Ericsson Device 0017 driver (WDM)
DRV - [2008/10/21 09:22:48 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017nd5.sys -- (s0017nd5) Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS)
DRV - [2008/10/21 09:22:48 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017mdfl.sys -- (s0017mdfl)
DRV - [2008/09/24 09:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2008/07/17 14:40:32 | 000,109,952 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2008/04/13 19:56:06 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)
DRV - [2008/04/13 19:53:09 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2008/03/02 03:28:00 | 000,206,608 | ---- | M] (Trend Micro Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\TMPassthru.sys -- (TMPassthruMP)
DRV - [2008/03/02 03:28:00 | 000,206,608 | ---- | M] (Trend Micro Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TMPassthru.sys -- (TMPassthru)
DRV - [2008/01/09 11:28:34 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri)
DRV - [2007/06/25 10:43:38 | 000,098,344 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117obex.sys -- (s117obex)
DRV - [2007/06/25 10:43:36 | 000,108,456 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117mdm.sys -- (s117mdm)
DRV - [2007/06/25 10:43:36 | 000,100,264 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117mgmt.sys -- (s117mgmt) Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM)
DRV - [2007/06/25 10:43:36 | 000,098,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117unic.sys -- (s117unic) Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM)
DRV - [2007/06/25 10:43:36 | 000,022,952 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117nd5.sys -- (s117nd5) Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS)
DRV - [2007/06/25 10:43:26 | 000,014,888 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117mdfl.sys -- (s117mdfl)
DRV - [2007/06/25 10:43:22 | 000,082,984 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117bus.sys -- (s117bus) Sony Ericsson Device 117 driver (WDM)
DRV - [2007/04/24 11:33:46 | 000,100,488 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125mgmt.sys -- (s125mgmt) Sony Ericsson Device 125 USB WMC Device Management Drivers (WDM)
DRV - [2007/04/24 11:33:46 | 000,098,696 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125obex.sys -- (s125obex)
DRV - [2007/04/24 11:33:44 | 000,108,680 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125mdm.sys -- (s125mdm)
DRV - [2007/04/24 11:33:42 | 000,015,112 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125mdfl.sys -- (s125mdfl)
DRV - [2007/04/24 11:33:34 | 000,083,336 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s125bus.sys -- (s125bus) Sony Ericsson Device 125 driver (WDM)
DRV - [2007/04/03 12:59:42 | 000,099,080 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616unic.sys -- (s616unic) Sony Ericsson Device 616 USB Ethernet Emulation SEMC616 (WDM)
DRV - [2007/04/03 12:59:42 | 000,098,568 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616obex.sys -- (s616obex)
DRV - [2007/04/03 12:59:42 | 000,023,176 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616nd5.sys -- (s616nd5) Sony Ericsson Device 616 USB Ethernet Emulation SEMC616 (NDIS)
DRV - [2007/04/03 12:59:40 | 000,100,360 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616mgmt.sys -- (s616mgmt) Sony Ericsson Device 616 USB WMC Device Management Drivers (WDM)
DRV - [2007/04/03 12:59:38 | 000,108,680 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616mdm.sys -- (s616mdm)
DRV - [2007/04/03 12:59:36 | 000,015,112 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616mdfl.sys -- (s616mdfl)
DRV - [2007/04/03 12:59:30 | 000,083,208 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616bus.sys -- (s616bus) Sony Ericsson Device 616 driver (WDM)
DRV - [2006/11/30 15:12:48 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se57unic.sys -- (se57unic) Sony Ericsson Device 087 USB Ethernet Emulation SEMC57 (WDM)
DRV - [2006/11/30 15:12:42 | 000,086,432 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se57obex.sys -- (se57obex)
DRV - [2006/11/30 15:12:38 | 000,088,624 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se57mgmt.sys -- (se57mgmt) Sony Ericsson Device 087 USB WMC Device Management Drivers (WDM)
DRV - [2006/11/30 15:12:38 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se57nd5.sys -- (se57nd5) Sony Ericsson Device 087 USB Ethernet Emulation SEMC57 (NDIS)
DRV - [2006/11/30 15:12:32 | 000,097,088 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se57mdm.sys -- (se57mdm)
DRV - [2006/11/30 15:12:32 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se57mdfl.sys -- (se57mdfl)
DRV - [2006/11/30 15:12:26 | 000,061,536 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se57bus.sys -- (se57bus) Sony Ericsson Device 087 driver (WDM)
DRV - [2006/11/02 06:00:08 | 000,039,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\winusb.sys -- (WinUSB)
DRV - [2006/06/07 16:28:40 | 000,030,285 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwmodem.sys -- (btwmodem)
DRV - [2006/05/01 12:18:54 | 000,086,560 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Eobex.sys -- (SE2Eobex)
DRV - [2006/05/01 12:18:04 | 000,088,688 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Emgmt.sys -- (SE2Emgmt) Sony Ericsson Device 046 USB WMC Device Management Drivers (WDM)
DRV - [2006/05/01 12:17:16 | 000,097,184 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Emdm.sys -- (SE2Emdm)
DRV - [2006/05/01 12:17:12 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Emdfl.sys -- (SE2Emdfl)
DRV - [2006/05/01 12:16:22 | 000,061,600 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Ebus.sys -- (SE2Ebus) Sony Ericsson Device 046 Driver driver (WDM)
DRV - [2006/05/01 12:15:50 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se2End5.sys -- (se2End5) Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (NDIS)
DRV - [2006/05/01 12:15:44 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se2Eunic.sys -- (se2Eunic) Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (WDM)
DRV - [2005/07/28 08:18:40 | 000,685,056 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (Hardlock)
DRV - [2004/08/04 06:31:32 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rtl8139.sys -- (rtl8139) Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C)
DRV - [2003/12/15 17:46:30 | 000,136,704 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\d343bus.sys -- (d343bus)
DRV - [2003/12/15 16:29:42 | 000,005,632 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\d343port.sys -- (d343port)
DRV - [2003/09/01 06:57:14 | 000,006,896 | ---- | M] (Compal Electronic Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hkdrv.sys -- (EPOWER)
DRV - [2003/07/29 13:25:52 | 000,322,720 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2003/06/20 14:40:12 | 000,093,912 | R--- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2003/06/13 19:48:40 | 000,033,847 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wA301a.sys -- ({E2B953A6-195A-44F9-9BA3-3D5F4E32BB55})
DRV - [2002/12/20 12:07:34 | 001,164,576 | R--- | M] (Agere Systems) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2002/12/18 18:56:34 | 000,005,888 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\SSIOMngr.sys -- (SrvcSSIOMngr)
DRV - [2002/12/18 18:56:32 | 000,005,888 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\EPIOMngr.sys -- (SrvcEPIOMngr)
DRV - [2002/12/18 18:56:32 | 000,005,888 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\EKIOMngr.sys -- (SrvcEKIOMngr)
DRV - [2002/09/17 15:12:38 | 000,809,872 | R--- | M] (LT) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LTSM.sys -- (TOSHIBASoftModem)
DRV - [2002/08/30 14:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)
DRV - [2002/08/30 14:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)
DRV - [2002/07/17 16:45:48 | 000,004,183 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\TPIOMngr.sys -- (SrvcTPIOMngr)
DRV - [2002/04/23 12:08:12 | 000,035,913 | ---- | M] (SMC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\smcirda.sys -- (SMCIRDA)
DRV - [2002/04/17 19:27:02 | 000,011,264 | R--- | M] (VOB Computersysteme GmbH) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\asapi.sys -- (Asapi)
DRV - [2001/11/25 01:11:54 | 000,081,924 | ---- | M] (FUJI PHOTO FILM CO.,LTD.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\V4CB010B.SYS -- (FINEPIX_PCC)
DRV - [2001/07/13 12:56:14 | 000,014,976 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\SBKUPNT.SYS -- (SBKUPNT)
DRV - [2001/06/21 22:39:02 | 000,073,728 | ---- | M] (Rainbow Technologies, Inc.) [Kernel | Auto | Stopped] -- C:\WINDOWS\System32\Drivers\SENTINEL.SYS -- (Sentinel)
DRV - [2001/06/21 22:39:02 | 000,020,032 | ---- | M] (Rainbow Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SNTNLUSB.SYS -- (Sntnlusb)
DRV - [2000/07/27 09:36:56 | 000,014,235 | ---- | M] (Pinnacle Systems GmbH) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\Pclepci.sys -- (PCLEPCI)
DRV - [2000/04/06 19:29:46 | 000,021,015 | ---- | M] (Kyushu Matsushita Electric Co., Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\kmmini2a.sys -- (kmmini2a)
DRV - [2000/04/04 18:19:48 | 000,020,071 | ---- | M] (Kyushu Matsushita Electric Co., Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\kmmini2d.sys -- (kmmini2d)
DRV - [1998/11/12 12:06:00 | 000,025,920 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\aspi32.sys -- (Aspi32)
Dernière modification par dosXX le 17 janv. 2011 19:52, modifié 1 fois.
dosXX

Re: Aide de traduction...

par dosXX »

Suite


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultthis.engineName: "Mininova Customized Web Search"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=971163"
FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..browser.startup.homepage: "http://free.fr/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: [email protected]:0.8.55
FF - prefs.js..extensions.enabledItems: [email protected]:3.0
FF - prefs.js..extensions.enabledItems: [email protected]:3.5
FF - prefs.js..extensions.enabledItems: {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.10
FF - prefs.js..extensions.enabledItems: {1018e4d6-728f-4b20-ad56-37578a4de76b}:4.0.12
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {37E4D8EA-8BDA-4831-8EA1-89053939A250}:3.0.0.1
FF - prefs.js..extensions.enabledItems: [email protected]:5.0.1
FF - prefs.js..extensions.enabledItems: {35106bca-6c78-48c7-ac28-56df30b51d2b}:1.1.12
FF - prefs.js..extensions.enabledItems: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20100908
FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.0.9.3
FF - prefs.js..extensions.enabledItems: {c45c406e-ab73-11d8-be73-000a95be3b12}:1.1.9
FF - prefs.js..extensions.enabledItems: [email protected]:1.6.1
FF - prefs.js..extensions.enabledItems: [email protected]:3.6.7
FF - prefs.js..extensions.enabledItems: {5c876f30-10ce-11dd-bd0b-0800200c9a66}:3.6.7
FF - prefs.js..extensions.enabledItems: {66871bd1-5ba2-4739-b485-2a15f5969bd8}:2.20100123
FF - prefs.js..network.proxy.no_proxies_on: "*.local"


FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/01/09 14:46:43 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/01/16 20:53:36 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.7\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2010/12/11 22:54:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.7\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins [2011/01/13 14:50:51 | 000,000,000 | ---D | M]

[2011/01/16 19:28:31 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Extensions
[2011/01/16 19:28:31 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2011/01/16 23:44:17 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions
[2009/09/12 16:34:16 | 000,000,000 | ---D | M] (iFox Metal) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{08c834b4-e025-44a3-9b95-e9885adc4be0}
[2010/12/22 13:15:42 | 000,000,000 | ---D | M] (Flagfox) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2010/01/01 12:05:47 | 000,000,000 | ---D | M] (WindowsUpdate) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{35106bca-6c78-48c7-ac28-56df30b51d2b}
[2009/10/17 09:38:39 | 000,000,000 | ---D | M] (PDF Download) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}
[2010/11/27 11:29:13 | 000,000,000 | ---D | M] (Aero Fox Silver XL) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{5c876f30-10ce-11dd-bd0b-0800200c9a66}
[2010/02/16 20:39:21 | 000,000,000 | ---D | M] (MidnightFox) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{66871bd1-5ba2-4739-b485-2a15f5969bd8}
[2011/01/07 15:32:44 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2009/05/12 19:00:38 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}(2)
[2010/10/07 17:01:09 | 000,000,000 | ---D | M] (WOT) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2010/12/04 09:57:01 | 000,000,000 | ---D | M] (FireFTP) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}
[2009/05/12 19:00:42 | 000,000,000 | ---D | M] ("Ma-config.com") -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}(2)
[2011/01/07 17:03:00 | 000,000,000 | ---D | M] (Web Developer) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}
[2010/12/24 13:35:53 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010/01/01 12:05:48 | 000,000,000 | ---D | M] (Addictive Typing Lessons) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]
[2010/01/01 12:05:28 | 000,000,000 | ---D | M] (Chromin Frame Carbon) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]
[2010/11/16 17:53:42 | 000,000,000 | ---D | M] ("Add-Art") -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]
[2010/09/23 17:52:52 | 000,000,000 | ---D | M] (United States English Spellchecker) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]
[2010/11/27 11:29:50 | 000,000,000 | ---D | M] (Virtus Search Opt-in) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]
[2011/01/07 15:31:38 | 000,000,000 | ---D | M] (Firebug) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]
[2010/02/16 20:39:56 | 000,000,000 | ---D | M] (Dictionnaire français «Réforme 1990») -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]
[2010/11/27 11:29:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]\chrome
[2010/11/27 11:29:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\[email protected]\defaults
[2010/11/27 11:29:13 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{5c876f30-10ce-11dd-bd0b-0800200c9a66}\chrome\win\mozapps\extensions
[2010/02/16 20:39:30 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{66871bd1-5ba2-4739-b485-2a15f5969bd8}\chrome\mozapps\extensions
[2010/02/16 20:39:29 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\philipp\Application Data\Mozilla\Firefox\Profiles\j025l99q.default\extensions\{66871bd1-5ba2-4739-b485-2a15f5969bd8}\chrome\mozapps\extensions\CVS
[2011/01/17 18:13:17 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2009/06/14 11:58:17 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/01/16 23:32:16 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2010/11/12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/07/25 12:13:42 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
[2010/07/25 12:13:43 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/07/25 12:13:43 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
[2010/07/25 12:13:43 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
[2010/07/25 12:13:43 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml

O1 HOSTS File: ([2011/01/13 00:56:19 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [TMWebProtectTray] C:\Program Files\Trend Micro\Web Protection Add-On\TMWebProtectTray.exe (Trend Micro Inc.)
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD)
O4 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005..\Run: [FileHippo.com] C:\Program Files\FileHippo.com\UpdateChecker.exe (FileHippo.com)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSimpleStartMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoUserNameInStartMenu = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceStartMenuLogoff = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSharedDocuments = 0
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O15 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\..Trusted Domains: ([]msn in My Computer)
O15 - HKU\S-1-5-21-1229336797-2356155799-2440628043-1005\..Trusted Domains: microsoft.com ([*.update] http in Trusted sites)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/ ... ontrol.cab (Office Genuine Advantage Validation Tool)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/microso ... 0071102921 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 0071087625 (MUWebControl Class)
O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} https://static.impots.gouv.fr/tdir/stat ... DP-1.0.cab (AdSignerLCContrl Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/get/fl ... wflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java Reg Error: Value error. (Reg Error: Key error.)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/x-mrml {C51721BE-858B-4A66-A8BF-D2882FF49820} - C:\Program Files\Fichiers communs\A&W\MidRadio.ocx (YAMAHA CORPORATION)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\philipp\Mes documents\Mes images\Ecran de veille\biohazard[1314x1066] copie.png
O24 - Desktop BackupWallPaper: C:\Documents and Settings\philipp\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2003/08/29 06:14:10 | 000,000,000 | ---- | M] () - C:\autoexec.001 -- [ NTFS ]
O32 - AutoRun File - [2007/11/04 16:30:37 | 000,000,013 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/01/17 12:24:21 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\philipp\Recent
[2011/01/17 01:15:19 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\philipp\Bureau\OTL.exe
[2011/01/16 21:09:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Mes documents\My Pictures
[2011/01/14 16:46:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Local Settings\Application Data\Temp
[2011/01/14 15:52:21 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2011/01/14 11:14:44 | 001,218,492 | ---- | C] (El Desaparecido & C_XX) -- C:\Documents and Settings\philipp\Bureau\UsbFix.exe
[2011/01/13 20:20:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Menu Démarrer\Programmes\CDex
[2011/01/13 20:20:29 | 000,000,000 | ---D | C] -- C:\Program Files\CDex_150
[2011/01/13 19:44:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Application Data\WinRAR
[2011/01/13 18:32:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Tracing
[2011/01/13 18:18:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\microsoft
[2011/01/13 15:38:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2011/01/13 15:19:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Menu Démarrer\Programmes\Accessories
[2011/01/13 15:19:31 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\philipp\IETldCache
[2011/01/13 15:10:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2011/01/13 15:03:25 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2011/01/13 14:54:25 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Windows Live
[2011/01/13 14:36:36 | 000,000,000 | ---D | C] -- C:\Program Files\FileHippo.com
[2011/01/13 02:55:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Bureau\Rapport Infections
[2011/01/13 02:11:09 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011/01/13 01:05:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2011/01/12 20:54:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011/01/12 15:01:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Trend Micro Web Protection Add-On
[2011/01/12 14:59:41 | 000,206,608 | ---- | C] (Trend Micro Inc.) -- C:\WINDOWS\System32\drivers\TMPassthru.sys
[2011/01/12 14:57:57 | 000,083,728 | ---- | C] (Trend Micro Inc.) -- C:\WINDOWS\System32\drivers\tmtdi.sys
[2011/01/12 14:57:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Application Data\InstallShield
[2011/01/11 19:27:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Application Data\InfraRecorder
[2011/01/11 19:27:10 | 000,000,000 | ---D | C] -- C:\Program Files\InfraRecorder
[2011/01/09 13:41:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Bureau\Icon
[2011/01/05 13:32:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\iTunes
[2011/01/05 13:30:11 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/01/05 13:30:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/12/21 14:10:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Application Data\vlc
[2010/12/20 10:17:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\philipp\Mes documents\Paillardes
[2006/09/08 17:04:17 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\philipp\Application Data\pcouffin.sys
[2005/10/20 09:15:27 | 000,136,704 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d343bus.sys
[2005/10/20 09:15:27 | 000,005,632 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d343port.sys

========== Files - Modified Within 30 Days ==========

[2011/01/17 18:11:52 | 000,004,212 | -H-- | M] () -- C:\WINDOWS\System32\zllictbl.dat
[2011/01/17 17:13:04 | 000,000,000 | ---- | M] () -- C:\WINDOWS\TempFile
[2011/01/17 17:12:44 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/01/17 10:41:04 | 000,001,371 | ---- | M] () -- C:\Documents and Settings\philipp\Mes documents\mbam-log ghyslaine-2011-01-17 (10-40-16)
[2011/01/17 01:15:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\philipp\Bureau\OTL.exe
[2011/01/16 20:03:57 | 000,385,608 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/01/16 19:34:26 | 000,227,543 | ---- | M] () -- C:\Documents and Settings\philipp\Bureau\New1728Ven14-2 Tarif free
[2011/01/16 12:45:57 | 000,000,826 | ---- | M] () -- C:\Documents and Settings\philipp\Application Data\Microsoft\Internet Explorer\Quick Launch\Raccourci vers HjkT.lnk
[2011/01/16 10:31:31 | 000,159,757 | ---- | M] () -- C:\Documents and Settings\philipp\Bureau\JavaRa.zip
[2011/01/14 11:14:45 | 001,218,492 | ---- | M] (El Desaparecido & C_XX) -- C:\Documents and Settings\philipp\Bureau\UsbFix.exe
[2011/01/13 15:59:36 | 000,242,471 | ---- | M] () -- C:\Documents and Settings\philipp\Bureau\cartes réseau.jpg
[2011/01/13 15:57:32 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\philipp\Bureau\Nouveau Adobe Photoshop Image.psd
[2011/01/13 02:06:55 | 000,513,736 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2011/01/13 02:06:55 | 000,444,362 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/01/13 02:06:55 | 000,085,842 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2011/01/13 02:06:55 | 000,072,238 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/01/13 02:06:54 | 000,423,032 | ---- | M] () -- C:\WINDOWS\System32\perfh040.dat
[2011/01/13 02:06:54 | 000,052,898 | ---- | M] () -- C:\WINDOWS\System32\perfc040.dat
[2011/01/13 01:27:02 | 000,000,225 | -HS- | M] () -- C:\boot.ini
[2011/01/13 00:56:19 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011/01/12 16:44:02 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/01/12 10:44:33 | 000,576,004 | ---- | M] () -- C:\Documents and Settings\philipp\Bureau\asm
[2011/01/12 01:42:52 | 004,506,682 | ---- | M] () -- C:\Documents and Settings\philipp\Bureau\Licence FFR
[2011/01/11 19:27:13 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\philipp\Application Data\Microsoft\Internet Explorer\Quick Launch\InfraRecorder.lnk
[2011/01/10 16:12:34 | 000,203,776 | ---- | M] () -- C:\Documents and Settings\philipp\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/05 13:11:20 | 000,002,155 | ---- | M] () -- C:\Documents and Settings\philipp\Application Data\Microsoft\Internet Explorer\Quick Launch\iTunes (2).lnk
[2010/12/30 19:06:44 | 000,000,808 | ---- | M] () -- C:\Documents and Settings\philipp\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/12/20 19:56:19 | 000,000,372 | ---- | M] () -- C:\Documents and Settings\philipp\Mes documents\spider.sav
[2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/12/20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

========== Files Created - No Company Name ==========

[2011/01/17 10:41:04 | 000,001,371 | ---- | C] () -- C:\Documents and Settings\philipp\Mes documents\mbam-log ghyslaine-2011-01-17 (10-40-16)
[2011/01/16 19:34:26 | 000,227,543 | ---- | C] () -- C:\Documents and Settings\philipp\Bureau\New1728Ven14-2 Tarif free
[2011/01/16 12:43:54 | 000,000,826 | ---- | C] () -- C:\Documents and Settings\philipp\Application Data\Microsoft\Internet Explorer\Quick Launch\Raccourci vers HjkT.lnk
[2011/01/16 10:31:29 | 000,159,757 | ---- | C] () -- C:\Documents and Settings\philipp\Bureau\JavaRa.zip
[2011/01/13 15:59:31 | 000,242,471 | ---- | C] () -- C:\Documents and Settings\philipp\Bureau\cartes réseau.jpg
[2011/01/13 15:57:32 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\philipp\Bureau\Nouveau Adobe Photoshop Image.psd
[2011/01/12 10:44:23 | 000,576,004 | ---- | C] () -- C:\Documents and Settings\philipp\Bureau\asm
[2011/01/12 01:36:51 | 004,506,682 | ---- | C] () -- C:\Documents and Settings\philipp\Bureau\Licence FFR
[2011/01/11 19:27:13 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\philipp\Application Data\Microsoft\Internet Explorer\Quick Launch\InfraRecorder.lnk
[2010/12/30 12:28:33 | 000,000,243 | ---- | C] () -- C:\Documents and Settings\philipp\Bureau\mw_header_r_b.png
[2010/12/30 12:28:33 | 000,000,239 | ---- | C] () -- C:\Documents and Settings\philipp\Bureau\mw_header_b.png
[2010/12/30 12:28:33 | 000,000,236 | ---- | C] () -- C:\Documents and Settings\philipp\Bureau\mw_header_l_b.png
[2010/12/20 19:56:19 | 000,000,372 | ---- | C] () -- C:\Documents and Settings\philipp\Mes documents\spider.sav
[2010/10/14 14:24:26 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\philipp\Local Settings\Application Data\PUTTY.RND
[2009/11/02 18:44:46 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\ODBCMON.DLL
[2009/11/02 18:44:46 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\ODBCSTF.DLL
[2009/10/18 11:39:04 | 000,014,976 | ---- | C] () -- C:\WINDOWS\System32\drivers\SBKUPNT.SYS
[2009/10/18 11:38:52 | 000,002,799 | ---- | C] () -- C:\WINDOWS\SKLANG.INI
[2009/10/04 13:07:39 | 000,000,027 | ---- | C] () -- C:\WINDOWS\System32\VideoGenieSetup.ini
[2008/12/25 15:50:45 | 000,000,077 | ---- | C] () -- C:\WINDOWS\MediaManager.INI
[2008/10/25 18:57:28 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2008/04/30 02:57:10 | 000,000,206 | ---- | C] () -- C:\WINDOWS\System32\badbdddfe9_z.dll
[2007/11/04 16:30:37 | 000,000,015 | ---- | C] () -- C:\WINDOWS\wgedit.ini
[2007/08/01 15:35:23 | 000,001,359 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2007/03/05 12:34:28 | 000,676,224 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2007/02/23 20:18:39 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2006/09/17 12:07:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\TPTray.INI
[2006/09/08 17:04:26 | 000,000,033 | ---- | C] () -- C:\Documents and Settings\philipp\Application Data\pcouffin.log
[2006/09/08 17:04:17 | 000,081,920 | ---- | C] () -- C:\Documents and Settings\philipp\Application Data\ezpinst.exe
[2006/09/08 17:04:17 | 000,007,176 | ---- | C] () -- C:\Documents and Settings\philipp\Application Data\pcouffin.cat
[2006/09/08 17:04:17 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\philipp\Application Data\pcouffin.inf
[2006/09/04 21:22:37 | 000,000,026 | ---- | C] () -- C:\WINDOWS\System32\satsukidecodersettings.ini
[2006/08/11 14:07:03 | 000,030,464 | ---- | C] () -- C:\WINDOWS\macromix.dll
[2006/08/10 19:02:13 | 000,001,072 | ---- | C] () -- C:\WINDOWS\CDHome.ini
[2006/08/01 02:12:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\LiveBilliards.INI
[2006/04/14 16:30:16 | 000,001,070 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006/03/24 16:11:54 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2006/02/23 22:11:06 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\libtar.dll
[2005/12/31 18:33:15 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2005/12/28 13:53:03 | 000,000,040 | ---- | C] () -- C:\WINDOWS\NAVIGMA.INI
[2005/12/28 13:03:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\bbcauto.INI
[2005/12/27 12:08:22 | 000,024,217 | ---- | C] () -- C:\Documents and Settings\philipp\Application Data\Valeurs séparées par des virgules (DOS).ADR
[2005/12/25 19:19:54 | 000,024,201 | ---- | C] () -- C:\Documents and Settings\philipp\Application Data\Valeurs séparées par des virgules (Windows).ADR
[2005/12/18 15:58:24 | 000,000,426 | ---- | C] () -- C:\WINDOWS\System32\Px.ini
[2005/12/13 23:29:40 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\xmltok.dll
[2005/12/13 23:29:40 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\xmlparse.dll
[2005/11/04 09:27:24 | 000,000,291 | ---- | C] () -- C:\WINDOWS\CorelDRAW.ini
[2005/11/02 14:22:48 | 000,210,944 | ---- | C] () -- C:\WINDOWS\System32\Msvcrt10.dll
[2005/11/01 13:45:01 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
[2005/09/23 23:26:23 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2005/09/23 23:25:46 | 000,000,009 | ---- | C] () -- C:\WINDOWS\sierra.ini
[2005/08/27 15:58:53 | 000,000,000 | ---- | C] () -- C:\WINDOWS\SETUP32.INI
[2005/08/18 15:17:32 | 000,203,776 | ---- | C] () -- C:\Documents and Settings\philipp\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/07/27 00:50:39 | 000,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/07/26 13:13:59 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\philipp\Local Settings\Application Data\fusioncache.dat
[2003/10/01 10:24:15 | 000,000,000 | ---- | C] () -- C:\WINDOWS\CeEKey.INI
[2003/09/01 08:09:35 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NDSTRAY.INI
[2003/09/01 08:09:31 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2003/09/01 07:59:05 | 000,006,679 | ---- | C] () -- C:\WINDOWS\Tcds.ini
[2003/09/01 07:58:05 | 000,006,202 | ---- | C] () -- C:\WINDOWS\TcdsASCD.ini
[2003/09/01 07:18:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI
[2003/09/01 07:01:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\CePMTray.INI
[2003/09/01 06:54:39 | 000,128,113 | ---- | C] () -- C:\WINDOWS\System32\csellang.ini
[2003/09/01 06:54:39 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\csellang.dll
[2003/09/01 06:54:39 | 000,009,559 | ---- | C] () -- C:\WINDOWS\System32\tosmreg.ini
[2003/09/01 06:54:39 | 000,007,671 | ---- | C] () -- C:\WINDOWS\System32\cseltbl.ini
[2003/08/29 15:01:40 | 000,000,083 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2003/08/29 07:06:02 | 000,004,399 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2003/08/29 06:52:23 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2003/08/29 06:31:36 | 000,000,931 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2003/07/29 15:34:04 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\CeEKPolicy.dll
[2003/07/23 17:35:04 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\CeEPPolicy.dll
[2003/07/23 17:03:48 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\CeEPDefDat.dll
[2003/04/01 10:58:02 | 000,005,260 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/07/17 16:45:48 | 000,004,183 | ---- | C] () -- C:\WINDOWS\System32\drivers\TPIOMngr.sys
[1999/04/08 14:47:00 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\FViGxDS1.dll
[1998/02/12 12:38:08 | 000,000,016 | ---- | C] () -- C:\WINDOWS\System32\nslshelp.dll
[1997/11/21 17:03:20 | 000,338,944 | ---- | C] () -- C:\WINDOWS\System32\Lffpx7.dll
[1997/09/30 13:30:02 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\Lfkodak.dll

========== LOP Check ==========

[2006/12/10 18:04:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic
[2010/09/19 15:43:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Arovax
[2007/03/21 17:08:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Autodesk
[2010/09/19 10:19:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
[2010/11/14 17:12:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited
[2009/11/02 18:28:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2006/11/11 19:34:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations
[2007/07/19 01:01:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Flying Pig Systems
[2009/09/06 18:30:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ma-config.com
[2008/12/06 00:19:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Drivers Headquarters
[2009/10/01 14:36:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Teleca
[2009/10/25 12:52:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011/01/05 13:32:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/07/31 21:05:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ghys\Application Data\CheckPoint
[2010/07/15 18:51:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ghys\Application Data\GARMIN
[2010/12/14 12:09:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ghys\Application Data\Notepad++
[2010/12/14 08:45:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ghys\Application Data\OpenOffice.org
[2010/07/25 12:16:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ghys\Application Data\Thunderbird
[2007/03/21 17:36:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Autodesk
[2010/11/14 17:12:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Canneverbe Limited
[2010/07/31 20:34:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\CheckPoint
[2006/08/29 00:56:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\DataLayer
[2011/01/17 02:19:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Dev-Cpp
[2010/12/28 19:06:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\FileZilla
[2006/12/16 16:15:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Flying Pig Systems
[2006/04/28 14:34:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\FUJIFILM
[2011/01/11 19:27:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\InfraRecorder
[2005/08/30 13:45:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\InterVideo
[2009/02/15 11:44:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\iScreensaver
[2010/02/21 10:21:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\LaCie
[2011/01/13 14:45:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Notepad++
[2010/11/23 19:16:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\OpenOffice.org
[2008/12/01 11:18:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Teleca
[2010/07/25 12:01:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Thunderbird
[2008/12/06 15:44:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\philipp\Application Data\Vso

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\Program Files\Mozilla Firefox\firefox.exe:SummaryInformation

< End of report >
  • Sujets similaires
    Réponses
    Vues
    Dernier message

Revenir à « Accélérer Windows et problème de lenteur PC »