[Resolu] PX engine ne fonctionne plus !

Tous les problèmes de Windows : message d'erreur, BSOD et écran bleu, erreur Windows Update ou d'installation, etc

Modérateur : Mods Windows

fourize

[Resolu] PX engine ne fonctionne plus !

par fourize »

bonjour les amis :)

J'ai un petit souci avec "PX engine". En fait, il ne fonctionne plus !

Tout commence quand j'ai voulu désinstaller "DAEMON Tools", en cours de
désinstallation, il plante l'ordi <Ecran bleue> et l'ordi redémarre.
Et quand je saisie mon mot de passe, je tombe sur cette première fenêtre:

Image

je clique sur [Chercher une solution] et m'ouvre une deuxième fenêtre :

Image

Et je tombe sur un site, qui m'aide pas tout et qui n'a rien avoir avec mon problème!

Si je comprend bien, c'est "PX engine" qui ne fonctionne plus et que je ferai mieux d'installer
de mise à jour. Sauf que je ne sais ni ou le trouver ni de quoi il s'agit !

Merci d'avance pour votre aide.
Dernière modification par fourize le 10 oct. 2012 15:47, modifié 2 fois.
Avatar de l’utilisateur
angelique
Messages : 31153
Inscription : 28 févr. 2008 13:58
Localisation : Breizhilienne

Re: PX engine ne fonctionne plus !

par angelique »

DT -- To disable CD Emulation programs using DeFogger please perform these steps:

Please download DeFogger http://www.bleepingcomputer.com/downloa ... n/defogger | http://download.bleepingcomputer.com/dl ... fogger.exe and save it to your desktop.

* Once downloaded, double-click on the DeFogger icon to start the tool.
* The application window will appear.
* You should now click on the Disable button to disable your CD Emulation drivers.
* When it prompts you whether or not you want to continue, please click on the Yes button to continue.
* When the program has completed you will see a Finished! message. Click on the OK button to exit the program.
* If CD Emulation programs are present and have been disabled, DeFogger will now ask you to reboot the machine. Please allow it to do so by clicking on the OK button.

...et desinstalle DaemonTool
Avec Gnu_Linux t'as un Noyau ... avec Ѡindows t'as que les pépins
https://helicium.altervista.org/
Supprimer les "virus" gratuitement http://www.supprimer-trojan.com/
Ne soyez pas Rat!Je fais parti des millions de pauvres en France
Image
SkyTech

Re: PX engine ne fonctionne plus !

par SkyTech »

Salut,

Ca serait en rapport avec ton logiciel de gravure Roxio...

Tente déjà ça :

http://www.jpshortstuff.247fixes.com/Defogger.exe

Image

* Please download DeFogger to your desktop.

Double click DeFogger to run the tool.
o The application window will appear
o Click the Disable button to disable your CD Emulation drivers
o Click Yes to continue
o A 'Finished!' message will appear
o Click OK
o DeFogger will now ask to reboot the machine - click OK
Do not re-enable these drivers until otherwise instructed.
fourize

Re: PX engine ne fonctionne plus !

par fourize »

Bonsoir Angelique et SkyTech :)

Merci pour vos reponses. ( Au passage, ça me fait plaisir de vous revoir ! )

Parcontre, ça n'a pas resolu le probleme. Voici les rapports que j'ai eu sur le bureau.

Le fichier : defogger_disable
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 20:22 on 22/09/2012 (MONNOM MONPRENOM)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
Le fichier : defogger_enable
defogger_enable by jpshortstuff (23.02.10.1)
Log created at 20:23 on 22/09/2012 (MONNOM MONPRENOM)

Parsing file...
HKCU:DAEMON Tools Lite -> Value set successfully


-=E.O.F=-
En espérant que ça aide...


AU RÉVEIL CE MATIN :
=> Mon ordinateur a beaucoup ralenti;
=> Des publicités dans tous les sens, Même ABP sur firefox n'y peut rien!

Diable de Daemon tools, Mon ordi était nickel depuis au moins un an !

En Attendant vos réponses, je vais lire un de vos tuto sur les infection. Merci.
fourize

Re: PX engine ne fonctionne plus !

par fourize »

Re;

Pourquoi je n'arrive toujours pas à desintaller Daemon tools.

=> Après une analyse complet de mon systeme par AVIRA, rien n'ai detecté. Donc pas de virus.

=> Par contre, je viens de rendre compte que SkyTech,
me demander de ne pas reactiver ces pilotes avant un avis contraier.
Do not re-enable these drivers until otherwise instructed.
Ai-je fais une betise en les reactivant tout de suite !?
Comment savoir si je dois les reactiver, Tu me le diras SkyTech ou c'est la Machine ?

J'ai refais un disable, sans reactiver les pilotes, dont voici le rapport.
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 13:19 on 25/09/2012 (MONNOM MONPRENOM)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
Et ça ne marche toujours pas.

=> Chef : je fais quoi en mode sans echec, le "disable" seul ou le "disable + desinstallation de daemon tools" ??

PDT_010
Dernière modification par fourize le 25 sept. 2012 13:40, modifié 1 fois.
chef

Re: PX engine ne fonctionne plus !

par chef »

bonjour,
pour les pubs fais ceci pour voir :
Téléchargez AdwCleaner( d'Xplode ) sur votre bureau.
Lancez le, cliquez sur [Suppression] puis patientez le temps du scan.
Une fois le scan fini, un rapport s'ouvrira.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt
Poste le rapport.
Remarque importante : Nous avons été avertis par un commentaire que le filtre SmartScreen d'Internet Explorer bloque le téléchargement d'AdwCleaner. C'est évidemment une fausse alerte...
pour daemon tu es sur d'avoir démonté tous ce que tu as pus mettre .
cd/dvd ect....
sinon essaye en mode sans echec
fourize

Re: PX engine ne fonctionne plus !

par fourize »

Bonjour chef,

=> En fait, Même en "mode sans echec" ça n'as pas marcher !
=> L'outil des pubs, non plus. J'ai toujours la pub !

Ceci dit, je tiens à te remercier, car ça a permis de supprimer des tools bars, que je
voyais même pas. Voici donc le Rapport "adwCleaner" comme convenu :
# AdwCleaner v2.003 - Rapport créé le 26/09/2012 à 13:05:06
# Mis à jour le 23/09/2012 par Xplode
# Système d'exploitation : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Nom d'utilisateur : MONNOM - PC-DE-MONNOM
# Mode de démarrage : Normal
# Exécuté depuis : C:\Users\MONNOM\Desktop\adwcleaner.exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\Program Files\Windows Searchqu Toolbar
Dossier Supprimé : C:\ProgramData\boost_interprocess
Dossier Supprimé : C:\Users\MONNOM\AppData\LocalLow\searchquband
Dossier Supprimé : C:\Users\MONNOM\AppData\LocalLow\Searchqutoolbar
Dossier Supprimé : C:\Users\MONNOM\AppData\Roaming\Mozilla\Firefox\Profiles\6khgy212.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
Dossier Supprimé : C:\Users\MONNOM\AppData\Roaming\Mozilla\Firefox\Profiles\6khgy212.default\Searchqutoolbar
Dossier Supprimé : C:\Users\MONNOM\AppData\Roaming\Mozilla\Firefox\Profiles\xgptsqln.Ben sudrik\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
Dossier Supprimé : C:\Users\MONNOM\AppData\Roaming\Mozilla\Firefox\Profiles\xgptsqln.Ben sudrik\Searchqutoolbar
Fichier Supprimé : C:\Program Files\Mozilla Firefox\searchplugins\SearchResults.xml
Fichier Supprimé : C:\Users\MONNOM\AppData\Roaming\Mozilla\Firefox\Profiles\6khgy212.default\searchplugins\Ask.xml
Fichier Supprimé : C:\Users\MONNOM\AppData\Roaming\Mozilla\Firefox\Profiles\6khgy212.default\searchplugins\SearchResults.xml
Fichier Supprimé : C:\Users\MONNOM\AppData\Roaming\Mozilla\Firefox\Profiles\xgptsqln.Ben sudrik\searchplugins\Conduit.xml

***** [Registre] *****

Clé Supprimée : HKCU\Software\AppDataLow\Software\searchqutoolbar
Clé Supprimée : HKCU\Software\DataMngr
Clé Supprimée : HKCU\Software\Headlight
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Searchqu 0 MediaBar
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D717F81-9148-4F12-8568-69135F087DB0}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
Clé Supprimée : HKCU\Software\pdfforge.org
Clé Supprimée : HKCU\Software\Softonic
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{9D717F81-9148-4F12-8568-69135F087DB0}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515}
Clé Supprimée : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard
Clé Supprimée : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard.1
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{5B4144E1-B61D-495A-9A50-CD1A95D86D15}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{841D5A49-E48D-413C-9C28-EB3D9081D705}
Clé Supprimée : HKLM\Software\DataMngr
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Searchqu 0 MediaBar
Clé Supprimée : HKLM\Software\pdfforge.org
Clé Supprimée : HKLM\Software\SearchquMediabarTb
Donnée Supprimée : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~1\WI9130~1\Datamngr\datamngr.dll C:\PROGRA~1\WI9130~1\Datamngr\IEBHO.dll
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [DataMngr]

***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16421

Restauré : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restauré : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restauré : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restauré : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restauré : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Remplacé : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www.searchqu.com/414 --> hxxp://www.google.com

-\\ Mozilla Firefox v15.0.1 (fr)

Nom du profil : default
Fichier : C:\Users\MONNOM\AppData\Roaming\Mozilla\Firefox\Profiles\6khgy212.default\prefs.js

C:\Users\MONNOM\AppData\Roaming\Mozilla\Firefox\Profiles\6khgy212.default\user.js ... Supprimé !

Supprimée : user_pref("browser.search.defaultenginename", "Web Search");
Supprimée : user_pref("browser.search.selectedEngine", "Web Search");
Supprimée : user_pref("browser.startup.homepage", "hxxp://www.searchqu.com/414");
Supprimée : user_pref("keyword.URL", "hxxp://www.searchqu.com//web?src=ffb&appid=0&s ... 14&sr=0&q=");
Supprimée : user_pref("browser.search.order.1", "Web Search");

Nom du profil : Ben sudrik [Profil par défaut]
Fichier : C:\Users\MONNOM\AppData\Roaming\Mozilla\Firefox\Profiles\xgptsqln.monnom\prefs.js

Supprimée : user_pref("browser.search.defaultthis.engineName", "Elf 1.15 Customized Web Search");
Supprimée : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2866295&Sea[...]

-\\ Google Chrome v21.0.1180.89

Fichier : C:\Users\MONNOM\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[S1].txt - [6558 octets] - [26/09/2012 13:05:07]

########## EOF - C:\AdwCleaner[S1].txt - [6618 octets] ##########
Help Help...

F.
chef

Re: PX engine ne fonctionne plus !

par chef »

hello,
c'est quoi comme pub ??
essaye malwarebytes -->http://fr.malwarebytes.org/ , mise a jour et scanne complet .
si il trouve des trucs supprime les et poste sont rapport.
tuto :
https://www.malekal.com/malwarebyte-ant ... les-virus/
fourize

Re: PX engine ne fonctionne plus !

par fourize »

Bonsoir,

Cette satané de "Daemon tools" a foutu le bordel dans mon bijoux (PC) décidément !
chef a écrit :hello,
c'est quoi comme pub ??
C'est de pub completement stupides qui me proposent de gagner 200€ en 10 minutes PDT_004
voici quelque exemples :
[url]hxxp://actuweb.net/index.php?site=actupp18435[/url]
[url]hxxp://www.lesnulsenbourse.com/?a_aid=pdir1826&UId=18435[/url]
[url]hxxp://affpx.com/methode-argent/ma/methodes3.html[/url]
essaye malwarebytes -->http://fr.malwarebytes.org/ , mise a jour et scanne complet .
si il trouve des trucs supprime les et poste sont rapport.
tuto :
https://www.malekal.com/malwarebyte-ant ... les-virus/
A ma grande surprise, Six elements malveillants ! Tout supprimés et voici le rapport :
Malwarebytes Anti-Malware 1.65.0.1400
http://www.malwarebytes.org

Version de la base de données: v2012.09.26.09

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
MONNOM :: PC-DE-MONNOM [administrateur]

26/09/2012 17:49:27
mbam-log-2012-09-26 (17-49-27).txt

Type d'examen: Examen complet (C:\|)
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 446566
Temps écoulé: 2 heure(s), 51 minute(s), 18 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 5
HKCU\SOFTWARE\CE8SIIFGSU (Trojan.FakeAlert) -> Mis en quarantaine et supprimé avec succès.
HKCU\SOFTWARE\DD1APJEZAI (Trojan.FakeAlert) -> Mis en quarantaine et supprimé avec succès.
HKCU\SOFTWARE\NtWqIVLZEWZU (Trojan.FakeAlert) -> Mis en quarantaine et supprimé avec succès.
HKCU\SOFTWARE\XML (Trojan.FakeAlert) -> Mis en quarantaine et supprimé avec succès.
HKCU\SOFTWARE\Microsoft\Handle (Malware.Trace) -> Mis en quarantaine et supprimé avec succès.

Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 1
C:\Users\Public\sudi'slogiciels\SoftonicDownloader_pour_geogebra.exe (PUP.OfferBundler.ST) -> Mis en quarantaine et supprimé avec succès.

(fin)
Ceci dit, la publicité est toujours - et Daemon tools aussi PDT_013 PDT_013

F.
Dernière modification par fourize le 26 sept. 2012 21:28, modifié 1 fois.
Raison : Liens à la con ! :)
SkyTech

Re: PX engine ne fonctionne plus !

par SkyTech »

* Télécharge >> OTL <<sur ton bureau.

* Fait un double-clic sur l'icône d'OTL pour le lancer
/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

* Assure toi d'avoir fermé toutes les applications en court de fonctionnement.

* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case "Rapport minimal" soit cochée.

* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL "Personnalisation"
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%temp%\*.exe /s
%SYSTEMDRIVE%\*.exe
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
/md5start
explorer.exe
winlogon.exe
wininit.exe
/md5stop
HKEY_LOCAL_MACHINE\SYSTEM\SYSTEM\CurrentControlSet\Services\lanmanserver\parameters /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems /s
CREATERESTOREPOINT
nslookup http://www.google.fr /c
SAVEMBR:0
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs

* Cliques sur l'icône "Analyse" (en haut à gauche) .
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un ou deux rapports vont s'ouvrir "OTL.Txt" et ( ou ) "Extras.Txt"( dans certains cas).
* Copie et colle le ou les rapports dans ta réponse stp...
* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés
fourize

Re: PX engine ne fonctionne plus !

par fourize »

Salut tout le monde.

voici donc les rapports de OTL.
OTL logfile created on: 28/09/2012 09:33:50 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\MONNOM\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1013,38 Mb Total Physical Memory | 335,05 Mb Available Physical Memory | 33,06% Memory free
2,24 Gb Paging File | 1,07 Gb Available in Paging File | 48,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 102,47 Gb Total Space | 47,01 Gb Free Space | 45,88% Space Free | Partition Type: NTFS
Drive D: | 6,55 Gb Total Space | 2,38 Gb Free Space | 36,28% Space Free | Partition Type: NTFS

Computer Name: PC-DE-BENSUDRIK | User Name: MONNOM | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\MONNOM\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.)
PRC - C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
PRC - C:\Windows\System32\mmrtkrnl.exe (AlcaTech)
PRC - C:\Windows\System32\lxddcoms.exe ( )
PRC - C:\Program Files\Lexmark 2500 Series\lxddmon.exe ()
PRC - C:\Program Files\Lexmark 2500 Series\lxddamon.exe (Lexmark)


========== Modules (No Company Name) ==========

MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\f2691cfa7671cdc58179e56ba9227591\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\18f9789aa214c657113e676b3a9015aa\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\846b9cf2756fdd15f704c9bab9c70b6f\System.Runtime.Remoting.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bd76aaaa03ddc15d1840207b5a480644\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\6cc7aca81a3abfc1ab90b0c72f302702\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\28d633338fc8d29f8af31935ef7d001b\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\af9c9e9d7e0523cd444f8b551baa9cbf\mscorlib.ni.dll ()
MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_fr_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\Program Files\Hp\QuickPlay\Kernel\common\MCEMediaStatus.dll ()
MOD - C:\Program Files\Lexmark 2500 Series\lxddmon.exe ()
MOD - C:\Program Files\Lexmark 2500 Series\App4R.Monitor.Core.dll ()
MOD - C:\Program Files\Lexmark 2500 Series\App4R.Monitor.Common.dll ()
MOD - C:\Program Files\Lexmark 2500 Series\App4R.DevMons.ScanDevMon.dll ()
MOD - C:\Program Files\Lexmark 2500 Series\App4R.DevMons.MCMDevMon.dll ()
MOD - C:\Program Files\Lexmark 2500 Series\lxdddatr.dll ()
MOD - C:\Windows\System32\igfxTMM.dll ()
MOD - C:\Program Files\Lexmark 2500 Series\App4R.DevMons.MCMDevMon.AutoPlayUtil.dll ()
MOD - C:\Program Files\Lexmark 2500 Series\lxddscw.dll ()


========== Services (SafeList) ==========

SRV - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe File not found
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
SRV - (BBSvc) -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.)
SRV - (BBUpdate) -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
SRV - (LBTServ) -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (AresChatServer) -- C:\Program Files\Ares\chatServer.exe (Ares Development Group)
SRV - (lxdd_device) -- C:\Windows\System32\lxddcoms.exe ( )


========== Driver Services (SafeList) ==========

DRV - (USBAAPL) -- System32\Drivers\usbaapl.sys File not found
DRV - (NwlnkFwd) -- system32\DRIVERS\nwlnkfwd.sys File not found
DRV - (NwlnkFlt) -- system32\DRIVERS\nwlnkflt.sys File not found
DRV - (IpInIp) -- system32\DRIVERS\ipinip.sys File not found
DRV - (blbdrive) -- C:\Windows\system32\drivers\blbdrive.sys File not found
DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira GmbH)
DRV - (avkmgr) -- C:\Windows\System32\drivers\avkmgr.sys (Avira GmbH)
DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (LUsbFilt) -- C:\Windows\System32\drivers\LUsbFilt.sys (Logitech, Inc.)
DRV - (LMouFilt) -- C:\Windows\System32\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV - (LHidFilt) -- C:\Windows\System32\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV - (MMRTKRNL) -- C:\Windows\System32\drivers\mmrtkrnl.sys (AlcaTech)
DRV - (HdAudAddService) -- C:\Windows\System32\drivers\CHDART.sys (Conexant Systems Inc.)
DRV - (RTL8023xp) -- C:\Windows\System32\drivers\Rtnicxp.sys (Realtek Semiconductor Corporation )
DRV - (NETw3v32) -- C:\Windows\System32\drivers\NETw3v32.sys (Intel® Corporation)
DRV - (eabfiltr) -- C:\Windows\System32\drivers\eabfiltr.sys (Hewlett-Packard Development Company, L.P.)
DRV - (XAudio) -- C:\Windows\System32\drivers\XAudio.sys (Conexant Systems, Inc.)
DRV - (HBtnKey) -- C:\Windows\System32\drivers\CPQBttn.sys (Hewlett-Packard Development Company, L.P.)
DRV - (w300mdm) -- C:\Windows\System32\drivers\w300mdm.sys (MCCI)
DRV - (w300mdfl) -- C:\Windows\System32\drivers\w300mdfl.sys (MCCI)
DRV - (w300bus) -- C:\Windows\System32\drivers\w300bus.sys (MCCI)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = Reg Error: Value error.
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{F5858232-2FCC-4178-8192-601684DD954A}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://mathsbyb9.freeheberg.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKCU\..\SearchScopes\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}: "URL" = http://search.pdfcreator-toolbar.org/se ... arch-field
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... lz=1I7GFRD
IE - HKCU\..\SearchScopes\{89B88F42-1AB2-41CC-953D-ECBF882CC72F}: "URL" = http://search.yahoo.com/search?ei=ISO-8 ... earchTerms}
IE - HKCU\..\SearchScopes\{A0B271A9-D8AA-8E74-7392-2164D6A1C03C}: "URL" = http://www.iesearch.com/s/?q={searchTerms}&s=sbox
IE - HKCU\..\SearchScopes\{AC854C16-CA1E-43f1-8513-0D2F36C726ED}: "URL" = http://www.simalo.com/search/?q={search ... s=Zq4Mfz4s
IE - HKCU\..\SearchScopes\Live Search: "URL" = http://search.live.com/results.aspx?q={ ... ORM=MIMWA2
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaulturl: "http://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q="
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2
FF - prefs.js..extensions.enabledItems: [email protected]:1.5.3
FF - prefs.js..extensions.enabledItems: {86009AEF-9162-4EBC-B698-FF71D7B6B049}:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_278.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.448: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\MONNOM\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\MONNOM\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}: C:\ProgramData\Mozilla\Firefox Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2008/03/22 01:17:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\KompoZer\Extensions\\Plugins: C:\Program Files\KompoZer\Plugins [2012/09/22 13:08:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\KompoZer\Extensions\\Components: C:\Program Files\KompoZer\Components [2008/09/24 17:52:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/09/12 14:39:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/09/22 13:08:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 2.0.0.24\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2011/08/16 22:27:15 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 2.0.0.24\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins

[2011/09/26 20:51:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MONNOM\AppData\Roaming\mozilla\Extensions
[2010/01/10 17:52:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MONNOM\AppData\Roaming\mozilla\Extensions\[email protected]
[2012/09/26 13:05:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MONNOM\AppData\Roaming\mozilla\Firefox\Profiles\6khgy212.default\extensions
[2010/05/01 10:48:49 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\MONNOM\AppData\Roaming\mozilla\Firefox\Profiles\6khgy212.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/05/01 10:48:49 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\MONNOM\AppData\Roaming\mozilla\Firefox\Profiles\6khgy212.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010/03/13 10:51:35 | 000,000,000 | ---D | M] (Firebug) -- C:\Users\MONNOM\AppData\Roaming\mozilla\Firefox\Profiles\6khgy212.default\extensions\[email protected]
[2012/09/26 13:05:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MONNOM\AppData\Roaming\mozilla\Firefox\Profiles\xgptsqln.MONNOM\extensions
[2010/07/11 16:58:07 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\MONNOM\AppData\Roaming\mozilla\Firefox\Profiles\xgptsqln.MONNOM\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012/09/12 14:03:44 | 000,058,062 | ---- | M] () (No name found) -- C:\Users\MONNOM\AppData\Roaming\mozilla\firefox\profiles\xgptsqln.MONNOM\extensions\[email protected]
[2012/06/27 13:36:51 | 000,637,327 | ---- | M] () (No name found) -- C:\Users\MONNOM\AppData\Roaming\mozilla\firefox\profiles\xgptsqln.MONNOM\extensions\[email protected]
[2012/09/02 18:42:26 | 001,625,368 | ---- | M] () (No name found) -- C:\Users\MONNOM\AppData\Roaming\mozilla\firefox\profiles\xgptsqln.MONNOM\extensions\[email protected]
[2012/07/25 22:11:24 | 000,741,958 | ---- | M] () (No name found) -- C:\Users\MONNOM\AppData\Roaming\mozilla\firefox\profiles\xgptsqln.MONNOM\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2009/04/26 17:04:16 | 000,001,775 | ---- | M] () -- C:\Users\MONNOM\AppData\Roaming\mozilla\firefox\profiles\6khgy212.default\searchplugins\live-search.xml
[2012/04/03 00:33:30 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2008/01/09 20:33:36 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2009/09/16 00:34:48 | 000,000,000 | ---D | M] (SeekService) -- C:\Program Files\Mozilla Firefox\extensions\{86009AEF-9162-4EBC-B698-FF71D7B6B049}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2012/09/12 14:39:23 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/03/08 22:47:12 | 000,530,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012/05/09 12:05:06 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2012/09/12 14:39:21 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/05/09 12:05:06 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2012/05/09 12:05:06 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2009/02/05 20:51:34 | 000,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDICO-fr.xml
[2009/07/06 01:41:05 | 000,002,399 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seekservice115.xml
[2009/08/08 19:31:35 | 000,002,399 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seekservice117.xml
[2009/08/25 23:06:36 | 000,002,399 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seekservice121.xml
[2009/09/10 14:43:11 | 000,002,399 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seekservice125.xml
[2009/09/16 00:34:49 | 000,002,399 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seekservice127.xml
[2012/05/09 12:05:06 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2012/05/09 12:05:06 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

========== Chrome ==========

CHR - homepage: http://google.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://google.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\MONNOM\AppData\Local\Google\Chrome\Application\21.0.1180.89\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\MONNOM\AppData\Local\Google\Chrome\Application\21.0.1180.89\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\MONNOM\AppData\Local\Google\Chrome\Application\21.0.1180.89\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\MONNOM\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 7.0.0.119 (Enabled) = C:\Program Files\Java\jre7\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 7 (Enabled) = C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: QuickTime Plug-in 7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: YouTube = C:\Users\MONNOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Recherche Google = C:\Users\MONNOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Gmail = C:\Users\MONNOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009/04/26 18:51:12 | 000,306,409 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.123topsearch.com
O1 - Hosts: 127.0.0.1 123topsearch.com
O1 - Hosts: 127.0.0.1 www.132.com
O1 - Hosts: 127.0.0.1 132.com
O1 - Hosts: 127.0.0.1 www.136136.net
O1 - Hosts: 127.0.0.1 136136.net
O1 - Hosts: 127.0.0.1 www.163ns.com
O1 - Hosts: 10550 more lines...
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [FaxCenterServer] C:\Program Files\Lexmark Fax Solutions\fm3032.exe ()
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [lxddamon] C:\Program Files\Lexmark 2500 Series\lxddamon.exe (Lexmark)
O4 - HKLM..\Run: [LXDDCATS] C:\Windows\System32\spool\DRIVERS\W32X86\3\LXDDtime.DLL (Lexmark International, Inc.)
O4 - HKLM..\Run: [lxddmon.exe] C:\Program Files\Lexmark 2500 Series\lxddmon.exe ()
O4 - HKLM..\Run: [Realtime Audio Engine] C:\Windows\System32\mmrtkrnl.exe (AlcaTech)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogoff = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0
O13 - gopher Prefix: missing
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7AFE5E59-CEE3-441E-B64B-7B8C03090C3B}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C49B4646-71FD-4B11-9D33-97E5B18401F5}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet32: DllName - (cryptnet32.dll) - File not found
O24 - Desktop WallPaper: C:\Users\MONNOM\Pictures\Usa.jpg
O24 - Desktop BackupWallPaper: C:\Users\MONNOM\Pictures\Usa.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2005/09/11 17:18:54 | 000,000,340 | -HS- | M] () - D:\AUTOMODE -- [ NTFS ]
O33 - MountPoints2\{0f771d85-2596-11e1-97ca-0016d4f17042}\Shell - "" = AutoRun
O33 - MountPoints2\{0f771d85-2596-11e1-97ca-0016d4f17042}\Shell\AutoRun\command - "" = J:\LaunchU3.exe -a
O33 - MountPoints2\{a1b5157f-c857-11dd-bbd6-0016d4f17042}\Shell - "" = AutoRun
O33 - MountPoints2\{a1b5157f-c857-11dd-bbd6-0016d4f17042}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O33 - MountPoints2\{d9b3d225-01bc-11e2-85c5-0016d4f17042}\Shell - "" = AutoRun
O33 - MountPoints2\{d9b3d225-01bc-11e2-85c5-0016d4f17042}\Shell\AutoRun\command - "" = "G:\WD SmartWare.exe" autoplay=true
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found


SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - File not found
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet: WudfPf - Driver
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} -
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0
ActiveX: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} -
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Macromedia Shockwave Flash
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F4B2380F-9F83-482B-B51F-FD18C7EDD923} - Installation Helper
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: >{E54A439F-A4B0-4526-A16B-B4E2ECE95B3D} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.tscc - C:\Windows\System32\tsccvid.dll (TechSmith Corporation)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2012/09/28 09:28:37 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\MONNOM\Desktop\OTL.exe
[2012/09/26 17:45:41 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012/09/26 17:45:41 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012/09/26 17:43:28 | 010,524,080 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\MONNOM\Desktop\mbam-setup-1.65.0.1400.exe
[2012/09/22 20:59:59 | 000,000,000 | ---D | C] -- C:\Users\MONNOM\AppData\Local\{1066C0D2-8651-4376-BEFC-CA4FFE3F1E69}
[2012/09/22 11:35:41 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/09/22 11:35:40 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/09/22 11:35:40 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2012/09/22 11:35:40 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/09/22 11:35:39 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2012/09/22 11:35:38 | 001,800,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012/09/22 11:35:38 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/09/22 11:35:36 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012/09/22 10:21:07 | 000,000,000 | ---D | C] -- C:\Users\MONNOM\AppData\Local\Mixxx
[2012/09/22 10:19:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mixxx
[2012/09/22 10:17:05 | 000,000,000 | ---D | C] -- C:\Program Files\Mixxx
[2012/09/18 20:51:46 | 000,000,000 | ---D | C] -- C:\ProgramData\SAS
[2012/09/18 20:50:57 | 000,000,000 | ---D | C] -- C:\Users\MONNOM\AppData\Local\SAS
[2012/09/18 20:44:28 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/09/18 20:32:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2012/09/18 20:31:26 | 000,242,240 | ---- | C] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2012/09/18 20:31:19 | 000,000,000 | ---D | C] -- C:\Users\MONNOM\AppData\Roaming\DAEMON Tools Lite
[2012/09/18 20:31:16 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2012/09/18 20:30:19 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2012/09/16 15:06:25 | 000,000,000 | ---D | C] -- C:\Users\MONNOM\AppData\Local\{B0B4F618-37CD-4E69-9B89-AEB128FC9E2E}
[2012/09/15 15:30:16 | 000,000,000 | ---D | C] -- C:\Users\MONNOM\AppData\Local\{BE5C19C3-729D-4A38-A40F-1307A6EB6861}
[2012/09/09 15:56:35 | 000,000,000 | ---D | C] -- C:\Users\MONNOM\AppData\Local\{55106F4C-2F3D-45E1-8771-626F9B0E2704}
[2012/09/08 15:07:22 | 000,000,000 | ---D | C] -- C:\Users\MONNOM\AppData\Local\{6EA9E59F-2C49-4C84-BEEE-084FD893F051}
[2012/09/07 19:06:08 | 000,000,000 | ---D | C] -- C:\Users\MONNOM\AppData\Local\{B2103E34-20BC-4C7E-B601-99B293DC6124}
[2012/09/06 17:13:18 | 000,000,000 | ---D | C] -- C:\Users\MONNOM\AppData\Local\{51F06D5B-2F65-42BE-A311-0F6414B7FB53}
[2012/09/05 19:43:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012/09/05 19:43:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2012/09/05 17:49:37 | 000,000,000 | ---D | C] -- C:\Users\MONNOM\AppData\Local\{C9CEDD1C-9B7B-426B-B59C-3B1CF479336A}
[2012/09/04 14:54:34 | 000,000,000 | ---D | C] -- C:\Users\MONNOM\AppData\Local\{79F847D3-67C2-42CF-8F90-E34DF792633B}
[2012/09/03 11:11:12 | 000,000,000 | ---D | C] -- C:\Users\MONNOM\AppData\Local\{E12710C7-84B7-4F2E-B76F-EBFA12FE1A16}
[2012/09/02 19:06:53 | 000,000,000 | ---D | C] -- C:\Users\MONNOM\AppData\Local\{04E3CB70-A7AE-4B4B-A653-7FBBD03E55C7}

========== Files - Modified Within 30 Days ==========

[2012/09/28 09:39:39 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012/09/28 09:39:17 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/09/28 09:30:06 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\MONNOM\Desktop\OTL.exe
[2012/09/28 09:27:10 | 000,692,408 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2012/09/28 09:27:10 | 000,608,672 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/09/28 09:27:10 | 000,133,116 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2012/09/28 09:27:10 | 000,110,152 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/09/28 09:21:50 | 000,001,122 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4164484115-1426155280-873663606-1000UA.job
[2012/09/28 09:21:27 | 000,001,072 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/09/28 09:20:13 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/09/28 09:20:13 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/09/28 09:20:01 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/09/27 09:20:02 | 000,001,076 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/09/26 19:21:03 | 000,001,070 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4164484115-1426155280-873663606-1000Core.job
[2012/09/26 17:45:45 | 000,000,866 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/09/26 17:43:52 | 010,524,080 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\MONNOM\Desktop\mbam-setup-1.65.0.1400.exe
[2012/09/26 15:33:56 | 000,029,696 | ---- | M] () -- C:\Users\MONNOM\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/09/26 14:09:10 | 198,571,949 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/09/26 13:03:54 | 000,513,501 | ---- | M] () -- C:\Users\MONNOM\Desktop\adwcleaner.exe
[2012/09/25 13:17:39 | 000,000,156 | ---- | M] () -- C:\Users\MONNOM\defogger_reenable
[2012/09/25 13:05:40 | 000,050,477 | ---- | M] () -- C:\Users\MONNOM\Desktop\Defogger.exe
[2012/09/22 13:06:48 | 000,696,240 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/09/22 13:06:48 | 000,073,136 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012/09/18 20:31:26 | 000,242,240 | ---- | M] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2012/09/18 10:04:09 | 000,001,506 | ---- | M] () -- C:\Users\MONNOM\.recently-used.xbel
[2012/09/07 17:04:46 | 000,022,856 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012/09/05 19:43:06 | 000,001,878 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk

========== Files Created - No Company Name ==========

[2012/09/28 09:39:39 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012/09/26 17:45:45 | 000,000,866 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/09/26 13:03:36 | 000,513,501 | ---- | C] () -- C:\Users\MONNOM\Desktop\adwcleaner.exe
[2012/09/25 13:17:37 | 000,000,156 | ---- | C] () -- C:\Users\MONNOM\defogger_reenable
[2012/09/25 13:09:44 | 000,050,477 | ---- | C] () -- C:\Users\MONNOM\Desktop\Defogger.exe
[2012/09/22 13:06:55 | 000,001,002 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/09/18 20:44:17 | 198,571,949 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012/09/18 10:04:09 | 000,001,506 | ---- | C] () -- C:\Users\MONNOM\.recently-used.xbel
[2010/06/27 20:08:04 | 000,072,080 | ---- | C] () -- C:\Users\MONNOM\g2mdlhlpx.exe
[2010/05/21 14:12:46 | 003,098,112 | ---- | C] () -- C:\Users\MONNOM\openofficeorg32.msi
[2010/05/21 14:11:16 | 000,460,088 | ---- | C] () -- C:\Users\MONNOM\setup.exe
[2010/05/21 14:08:54 | 129,598,377 | ---- | C] () -- C:\Users\MONNOM\openofficeorg1.cab
[2009/12/21 17:42:17 | 000,000,688 | ---- | C] () -- C:\Users\MONNOM\SciTE.session
[2009/04/23 22:06:28 | 000,000,290 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2008/12/22 01:43:11 | 000,000,000 | ---- | C] () -- C:\Users\MONNOM\sup.tex
[2008/04/07 18:02:01 | 000,000,206 | ---- | C] () -- C:\Users\MONNOM\AppData\Local\RAExpertHistory.xml
[2008/03/03 14:08:46 | 000,000,305 | ---- | C] () -- C:\ProgramData\addr_file.html
[2007/12/20 18:25:58 | 000,000,600 | ---- | C] () -- C:\Users\MONNOM\AppData\Local\PUTTY.RND
[2007/11/10 21:06:40 | 000,001,356 | ---- | C] () -- C:\Users\MONNOM\AppData\Local\d3d9caps.dat
[2007/09/29 21:22:01 | 000,001,598 | ---- | C] () -- C:\Users\MONNOM\AppData\Roaming\wklnhst.dat
[2007/09/29 21:18:38 | 000,029,696 | ---- | C] () -- C:\Users\MONNOM\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== ZeroAccess Check ==========

[2006/11/02 14:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 19:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 08:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 08:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
fourize

Re: PX engine ne fonctionne plus !

par fourize »

========== Custom Scans ==========

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2010/11/25 21:18:20 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Adobe
[2008/01/21 14:32:51 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\AlcaTech
[2007/12/20 18:18:16 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Apple Computer
[2011/02/13 12:16:56 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Artisteer
[2008/02/27 20:35:55 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\AVG7
[2011/10/29 21:04:22 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Avira
[2009/11/25 00:15:18 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Bull
[2008/09/14 23:10:58 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\CoreFTP
[2007/09/30 12:30:14 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\CyberLink
[2012/09/18 20:50:10 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\DAEMON Tools Lite
[2008/04/29 19:43:52 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\DeepBurner
[2008/04/15 08:42:02 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Dev-Cpp
[2011/07/08 01:16:16 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\FaxCtr
[2012/06/28 14:14:59 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\FileZilla
[2011/09/26 20:58:56 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\FreeVideoConverter
[2008/03/15 04:27:45 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\GetRightToGo
[2008/01/29 19:41:50 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Google
[2012/06/27 14:20:19 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\gtk-2.0
[2007/09/29 20:47:06 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Hewlett-Packard
[2007/09/30 12:30:01 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\HP
[2007/09/29 21:09:06 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Identities
[2010/11/11 23:29:58 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\inkscape
[2008/02/01 21:23:42 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\InstallShield
[2011/08/08 11:38:22 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Intelli-studio
[2010/12/30 08:32:01 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\IrfanView
[2008/09/24 17:52:37 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\KompoZer
[2009/05/10 22:03:39 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Lexmark Imaging Studio
[2008/08/15 17:08:15 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Logitech
[2007/09/29 21:04:25 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Macromedia
[2010/11/30 14:38:00 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Malwarebytes
[2006/11/02 14:37:34 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Media Center Programs
[2008/08/26 17:17:15 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Media Player Classic
[2010/07/12 14:52:31 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Micro Application
[2012/06/21 17:43:16 | 000,000,000 | --SD | M] -- C:\Users\MONNOM\AppData\Roaming\Microsoft
[2011/05/29 22:12:10 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Mozilla
[2010/02/14 20:59:28 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\NCH Software
[2010/01/27 00:35:54 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\NCH Swift Sound
[2008/09/24 16:25:05 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Notepad++
[2008/12/10 22:33:03 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\OpenOffice.org
[2009/02/22 19:39:01 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\OpenOffice.org2
[2009/01/18 20:40:38 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Opera
[2010/01/18 14:39:44 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Real
[2009/07/06 01:39:51 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Real Desktop
[2009/09/29 07:28:31 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Roxio
[2010/02/02 01:13:22 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Scilab
[2012/09/05 19:41:06 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Skype
[2008/08/30 11:03:05 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Talkback
[2007/09/29 21:22:02 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Template
[2008/08/30 11:02:42 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Thunderbird
[2009/09/03 18:28:15 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\VoipDiscount
[2012/04/22 13:20:50 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\Windows Live Writer
[2008/12/22 01:24:49 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\xm1

< %APPDATA%\*.exe /s >
[2009/03/08 13:31:00 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\Users\MONNOM\AppData\Roaming\Adobe\AdobeUpdate .exe
[2011/08/08 11:29:53 | 017,983,128 | ---- | M] () -- C:\Users\MONNOM\AppData\Roaming\Intelli-studio\iUpdate.exe
[2008/07/20 20:25:12 | 000,010,134 | R--- | M] () -- C:\Users\MONNOM\AppData\Roaming\Microsoft\Installer\{D374F8CD-E0F3-4810-A48F-3C96E86AF6B4}\ARPPRODUCTICON.exe
[2008/07/20 20:25:12 | 000,053,248 | R--- | M] (Macrovision Corporation) -- C:\Users\MONNOM\AppData\Roaming\Microsoft\Installer\{D374F8CD-E0F3-4810-A48F-3C96E86AF6B4}\NewShortcut11_A37A26D584444862933B478371D0299D.exe
[2008/07/20 20:25:12 | 000,053,248 | R--- | M] (Macrovision Corporation) -- C:\Users\MONNOM\AppData\Roaming\Microsoft\Installer\{D374F8CD-E0F3-4810-A48F-3C96E86AF6B4}\NewShortcut1_A37A26D584444862933B478371D0299D.exe
[2008/07/20 20:25:12 | 000,008,854 | R--- | M] () -- C:\Users\MONNOM\AppData\Roaming\Microsoft\Installer\{D374F8CD-E0F3-4810-A48F-3C96E86AF6B4}\UNINST_Uninstall_C_A37A26D584444862933B478371D0299D.exe
[2011/01/15 00:46:14 | 000,000,000 | R--- | M] () -- C:\Users\MONNOM\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe
[2009/04/26 17:04:16 | 000,086,576 | ---- | M] (Microsoft Corporation) -- C:\Users\MONNOM\AppData\Roaming\Microsoft\Services Windows Live\Raccourci Galerie de Photos Windows Live.exe
[2009/04/26 17:04:16 | 000,132,672 | ---- | M] (Microsoft Corporation) -- C:\Users\MONNOM\AppData\Roaming\Microsoft\Services Windows Live\Raccourci Windows Live Messenger.exe
[2007/08/29 15:36:06 | 000,167,424 | ---- | M] () -- C:\Users\MONNOM\AppData\Roaming\NCH Software\Components\aacdec\aacdec.exe
[2007/08/29 16:36:00 | 000,110,592 | ---- | M] () -- C:\Users\MONNOM\AppData\Roaming\NCH Software\Components\mp3el\mp3enc.exe

< %temp%\*.exe /s >
[2012/08/22 23:34:00 | 000,763,232 | ---- | M] (Google Inc.) -- C:\Users\BENSUD~1\AppData\Local\Temp\GoogleUpdateSetup.exe2c7983
[16 C:\Users\BENSUD~1\AppData\Local\Temp\*.tmp files -> C:\Users\BENSUD~1\AppData\Local\Temp\*.tmp -> ]
[2012/08/22 13:34:00 | 000,045,376 | ---- | M] (DT Soft Ltd) -- C:\Users\BENSUD~1\AppData\Local\Temp\nsgE5AD.tmp\SetupHelper.exe
[2012/08/22 13:34:00 | 000,045,376 | ---- | M] (DT Soft Ltd) -- C:\Users\BENSUD~1\AppData\Local\Temp\nsh7BE4.tmp\SetupHelper.exe
[2012/08/22 13:34:00 | 000,045,376 | ---- | M] (DT Soft Ltd) -- C:\Users\BENSUD~1\AppData\Local\Temp\nsjD182.tmp\SetupHelper.exe
[2012/08/22 13:34:00 | 000,045,376 | ---- | M] (DT Soft Ltd) -- C:\Users\BENSUD~1\AppData\Local\Temp\nsm1D41.tmp\SetupHelper.exe
[2012/08/22 13:34:00 | 000,045,376 | ---- | M] (DT Soft Ltd) -- C:\Users\BENSUD~1\AppData\Local\Temp\nsn83B0.tmp\SetupHelper.exe
[2012/08/22 13:34:00 | 000,045,376 | ---- | M] (DT Soft Ltd) -- C:\Users\BENSUD~1\AppData\Local\Temp\nsr9C30.tmp\SetupHelper.exe
[2012/08/22 13:34:00 | 000,045,376 | ---- | M] (DT Soft Ltd) -- C:\Users\BENSUD~1\AppData\Local\Temp\nss510D.tmp\SetupHelper.exe
[2012/08/22 13:34:00 | 000,045,376 | ---- | M] (DT Soft Ltd) -- C:\Users\BENSUD~1\AppData\Local\Temp\nswB6D1.tmp\SetupHelper.exe
[2012/08/22 13:34:00 | 000,045,376 | ---- | M] (DT Soft Ltd) -- C:\Users\BENSUD~1\AppData\Local\Temp\nswBEBD.tmp\SetupHelper.exe

< %SYSTEMDRIVE%\*.exe >
[2007/06/11 16:15:08 | 000,167,936 | ---- | M] (Micro Application) -- C:\ASSR.exe
[2007/06/12 11:55:34 | 000,237,568 | ---- | M] (Micro Application) -- C:\CDR.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2011/05/26 20:11:01 | 000,353,792 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtmsft.dll
[2011/05/26 20:11:01 | 000,223,232 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtrans.dll

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2006/11/02 12:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV
[2006/11/02 12:34:05 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV
[2006/11/02 12:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV
[2006/11/02 12:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV
[2006/11/02 12:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV

< MD5 for: EXPLORER.EXE >
[2008/10/29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008/10/29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008/10/30 05:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2007/11/14 20:53:21 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=6D06CD98D954FE87FB2DB8108793B399 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16549_none_4fac29707cae347a\explorer.exe
[2007/11/14 20:53:19 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=BD06F0BF753BC704B653C3A50F89D362 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20668_none_501f261995dcf2cf\explorer.exe
[2009/04/11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009/04/11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008/10/28 04:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2006/11/02 11:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5D7084D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16386_none_4f7de5167cd15deb\explorer.exe
[2008/01/19 09:33:10 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe

< MD5 for: WININIT.EXE >
[2008/01/19 09:33:37 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=101BA3EA053480BB5D957EF37C06B5ED -- C:\Windows\System32\wininit.exe
[2008/01/19 09:33:37 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=101BA3EA053480BB5D957EF37C06B5ED -- C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.0.6001.18000_none_30f2b8cf0450a6a2\wininit.exe
[2006/11/02 11:45:57 | 000,095,744 | ---- | M] (Microsoft Corporation) MD5=D4385B03E8CCCEE6F0EE249F827C1F3E -- C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.0.6000.16386_none_2ebbf6d3076595ce\wininit.exe

< MD5 for: WINLOGON.EXE >
[2012/09/07 17:04:42 | 000,218,696 | ---- | M] () MD5=4E0D8C9F83B7FD82393F7D8CCC27E7AE -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2009/04/11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2009/04/11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2006/11/02 11:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe
[2008/01/19 09:33:37 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe

< HKEY_LOCAL_MACHINE\SYSTEM\SYSTEM\CurrentControlSet\Services\lanmanserver\parameters /s >

< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems /s >
"Debug" =
"" = mnmsrvc
"Kmode" = \SystemRoot\System32\win32k.sys
"Optional" = Posix [binary data]
"Posix" = %SystemRoot%\system32\psxss.exe
"Required" = DebugWindows [binary data]
"Windows" = %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,12288,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems\CSRSS]
"CsrSrvSharedSectionBase" = 2137980928


< nslookup http://www.google.fr /c >
Serveur : Livebox-72E0
Address: 192.168.1.1

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2012/09/12 14:39:20 | 000,886,032 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2012/09/12 14:39:20 | 000,886,032 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/09/12 14:39:20 | 000,886,032 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2012/09/12 14:39:23 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2012/09/12 14:39:23 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2012/09/12 14:39:23 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Users\MONNOM\AppData\Local\Google\Chrome\Application\chrome.exe" --show-icons [2012/08/30 04:58:46 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Users\MONNOM\AppData\Local\Google\Chrome\Application\chrome.exe" --hide-icons [2012/08/30 04:58:46 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Users\MONNOM\AppData\Local\Google\Chrome\Application\chrome.exe" --make-default-browser [2012/08/30 04:58:46 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Users\MONNOM\AppData\Local\Google\Chrome\Application\chrome.exe" [2012/08/30 04:58:46 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2011/05/26 20:11:01 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2011/05/26 20:11:01 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2011/05/26 20:11:01 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2012/08/24 09:34:41 | 000,748,680 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: %programfiles%\Internet Explorer\iexplore.exe [2012/08/24 09:34:41 | 000,748,680 | ---- | M] (Microsoft Corporation)

< hklm\software\clients\startmenuinternet|command /64 /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2012/09/12 14:39:20 | 000,886,032 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2012/09/12 14:39:20 | 000,886,032 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/09/12 14:39:20 | 000,886,032 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2012/09/12 14:39:23 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2012/09/12 14:39:23 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2012/09/12 14:39:23 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Users\MONNOM\AppData\Local\Google\Chrome\Application\chrome.exe" --show-icons [2012/08/30 04:58:46 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Users\MONNOM\AppData\Local\Google\Chrome\Application\chrome.exe" --hide-icons [2012/08/30 04:58:46 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Users\MONNOM\AppData\Local\Google\Chrome\Application\chrome.exe" --make-default-browser [2012/08/30 04:58:46 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Users\MONNOM\AppData\Local\Google\Chrome\Application\chrome.exe" [2012/08/30 04:58:46 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2011/05/26 20:11:01 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2011/05/26 20:11:01 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2011/05/26 20:11:01 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2012/08/24 09:34:41 | 000,748,680 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: %programfiles%\Internet Explorer\iexplore.exe [2012/08/24 09:34:41 | 000,748,680 | ---- | M] (Microsoft Corporation)

< End of report >

Oh, my gash ! c'est quoi tout ces liens, j'avais pas d'historique moi ! Afin, je croyais ...
Et voici le Extras.txt
OTL Extras logfile created on: 28/09/2012 09:33:50 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\MONNOM\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1013,38 Mb Total Physical Memory | 335,05 Mb Available Physical Memory | 33,06% Memory free
2,24 Gb Paging File | 1,07 Gb Available in Paging File | 48,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 102,47 Gb Total Space | 47,01 Gb Free Space | 45,88% Space Free | Partition Type: NTFS
Drive D: | 6,55 Gb Total Space | 2,38 Gb Free Space | 36,28% Space Free | Partition Type: NTFS

Computer Name: PC-DE-BENSUDRIK | User Name: MON_NOM | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- FirefoxURL

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- C:\Program Files\pythonxy\console\console.exe -d "%L" -t "Command Window" (Ingenuity Unlimited Ltd.)
Directory [cmdpy] -- C:\Program Files\pythonxy\console\console.exe -d "%L" -t "IPython (sh)" (Ingenuity Unlimited Ltd.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 1
"InternetSettingsDisableNotify" = 1
"AutoUpdateDisableNotify" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{5994F60A-805B-431F-B8C2-A6BB4C5AEC38}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{81D62B4C-71CC-4169-976A-C25551E86826}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{826C3155-5E8D-4D13-ADD3-22361158C581}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{D3B3B160-BF21-4CDC-94BB-68271677757B}" = lport=2869 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{211D8170-75F3-4EDB-A16D-A195565EAEEA}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{29D5E31F-2EAB-45CB-9F49-4A37C59B7A05}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{38D98EFC-8008-4AE3-9FBE-04C51268207B}" = protocol=17 | dir=in | app=c:\program files\lexmark 2500 series\app4r.exe |
"{3DE896E2-5580-45D0-A58C-5F96AE76BBEE}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{41FDB3ED-8FDD-4588-86B7-753BF89065D4}" = dir=in | app=c:\program files\windows live\mesh\moe.exe |
"{49C11260-B5BA-4748-8B55-8A99474EF805}" = protocol=17 | dir=in | app=c:\program files\windows searchqu toolbar\datamngr\toolbar\dtuser.exe |
"{4D286B96-FFCE-4936-B16A-5C3C7B853BC7}" = protocol=6 | dir=in | app=c:\program files\limewire\limewire.exe |
"{4E5EC56E-BACC-4C79-A900-5231E05F1B2D}" = protocol=17 | dir=in | app=c:\users\MONNOM\desktop\vti\limewire\limewire.exe |
"{610A646A-D607-473D-B652-3E8B33ED2BCD}" = protocol=6 | dir=in | app=c:\windows\system32\lxddcoms.exe |
"{66CCC344-91F1-48C4-BE53-75A3DA610E7F}" = protocol=6 | dir=in | app=c:\users\MONNOM\desktop\vti\limewire\limewire.exe |
"{77151794-B5F1-4C23-8C0C-E8824E095433}" = protocol=17 | dir=in | app=c:\users\MONNOM\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{77FCABEB-1A3F-4358-A8BF-2F2229A74EAC}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{780653A6-6B76-4DC7-8335-EB28C8B6854E}" = protocol=6 | dir=in | app=c:\program files\lexmark 2500 series\lxddamon.exe |
"{7B2C7850-090C-4690-B211-2F98A57B38DF}" = protocol=6 | dir=in | app=c:\users\MONNOM\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{8E251DAE-724E-4E08-B400-4E2C3A6BDF77}" = protocol=17 | dir=in | app=c:\program files\lexmark 2500 series\lxddmon.exe |
"{9A34A4F1-394B-49A3-8650-D4FFB1AE903A}" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"{A99E0063-59E4-48BF-A5CF-0EEF06FAFD53}" = dir=in | app=c:\program files\hp\quickplay\qp.exe |
"{BE498DD3-0C2C-46C6-A6A1-1155A8E97606}" = protocol=17 | dir=in | app=c:\program files\lexmark 2500 series\lxddamon.exe |
"{C6DE5B4F-5FC5-47A6-A3E2-42E27B392FE1}" = protocol=6 | dir=in | app=c:\program files\lexmark 2500 series\lxddmon.exe |
"{C9B3B5A0-50F8-42B2-A3E4-AB83DE347247}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{D3E8B06E-B832-4A5F-B321-ED70F0CBA38F}" = protocol=17 | dir=in | app=c:\program files\limewire\limewire.exe |
"{D434B111-AA1A-4441-AB24-B5B06A3C26DD}" = protocol=6 | dir=in | app=c:\program files\windows searchqu toolbar\datamngr\toolbar\dtuser.exe |
"{DB2DE305-D1C9-4FC6-A546-61E4786EE206}" = dir=in | app=c:\program files\hp\quickplay\qpservice.exe |
"{E76AA7AD-79E1-44BF-8D9E-823549896999}" = protocol=6 | dir=in | app=c:\program files\lexmark 2500 series\app4r.exe |
"{F060E957-3FB8-4996-A0AF-10DF5B52FD51}" = protocol=17 | dir=in | app=c:\windows\system32\lxddcoms.exe |
"TCP Query User{03CAF078-7607-455A-8B12-2AD6C069D378}C:\program files\real\realplayer\realplay.exe" = protocol=6 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"TCP Query User{13387959-9760-4B82-9E30-4539A9866A15}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{1FC4A9BB-EEB5-4134-BD20-911D0FF2C811}C:\program files\ares\ares.exe" = protocol=6 | dir=in | app=c:\program files\ares\ares.exe |
"TCP Query User{244EE396-4F2B-4DB9-A1DF-B7525E654C8D}C:\program files\ares\ares.exe" = protocol=6 | dir=in | app=c:\program files\ares\ares.exe |
"TCP Query User{2CEA4843-928C-4FBC-8F7E-87FAF920C617}C:\program files\lexmark 2500 series\app4r.exe" = protocol=6 | dir=in | app=c:\program files\lexmark 2500 series\app4r.exe |
"TCP Query User{32BFC774-7A5C-40F1-844F-A36141E16D14}C:\program files\emule\emule.exe" = protocol=6 | dir=in | app=c:\program files\emule\emule.exe |
"TCP Query User{4D79B408-B4E5-4A35-A580-27325A2726A3}C:\program files\voipdiscount.com\voipdiscount\voipdiscount.exe" = protocol=6 | dir=in | app=c:\program files\voipdiscount.com\voipdiscount\voipdiscount.exe |
"TCP Query User{5301C84C-C356-4680-90E6-44578CC54622}C:\users\MONNOM\documents\emule\emule.exe" = protocol=6 | dir=in | app=c:\users\MONNOM\documents\emule\emule.exe |
"TCP Query User{56972F5D-5D2A-4194-B997-47B2785E2D5D}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{6E1D52C0-0E33-411D-A309-94D9E2E68134}C:\program files\itunes\itunes.exe" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"TCP Query User{7C9BC4D8-B3FF-4EF9-A91F-44ED2E3BE165}C:\program files\filezilla ftp client\filezilla.exe" = protocol=6 | dir=in | app=c:\program files\filezilla ftp client\filezilla.exe |
"TCP Query User{82AE8AFC-C34B-49E2-83B8-9CE081C0E15E}C:\program files\voipdiscount.com\voipdiscount\voipdiscount.exe" = protocol=6 | dir=in | app=c:\program files\voipdiscount.com\voipdiscount\voipdiscount.exe |
"TCP Query User{A0752E1B-3DF6-4EA8-BBEF-8B9761940523}C:\users\MONNOM\desktop\vti\limewire\limewire.exe" = protocol=6 | dir=in | app=c:\users\MONNOM\desktop\vti\limewire\limewire.exe |
"TCP Query User{C15EF3EF-9A30-4FC5-9F28-F92E04161B9E}C:\program files\limewire\limewire.exe" = protocol=6 | dir=in | app=c:\program files\limewire\limewire.exe |
"TCP Query User{D214133C-8EF7-4249-8237-3463469A4783}C:\users\MONNOM\documents\installer-13387-855-nero-showtime-french.exe" = protocol=6 | dir=in | app=c:\users\MONNOM\documents\installer-13387-855-nero-showtime-french.exe |
"TCP Query User{DA57FD42-27EB-4925-A6B5-7846F3BF817E}C:\program files\lexmark 2500 series\lxddamon.exe" = protocol=6 | dir=in | app=c:\program files\lexmark 2500 series\lxddamon.exe |
"UDP Query User{0D85891A-DD02-430E-8246-15206582AA9E}C:\program files\ares\ares.exe" = protocol=17 | dir=in | app=c:\program files\ares\ares.exe |
"UDP Query User{1F44CC00-377C-4F43-8EFA-FC79074AD1A5}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{1FD692CA-07A0-4C74-8AD2-42218F0C3CED}C:\program files\emule\emule.exe" = protocol=17 | dir=in | app=c:\program files\emule\emule.exe |
"UDP Query User{22D4D3B4-7278-4070-8B49-21C443D7EE29}C:\program files\lexmark 2500 series\app4r.exe" = protocol=17 | dir=in | app=c:\program files\lexmark 2500 series\app4r.exe |
"UDP Query User{28E077B4-FFAC-4561-9666-EA8501F6605A}C:\program files\itunes\itunes.exe" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"UDP Query User{32A63FBD-A549-41C4-AE8F-F83F8649873C}C:\users\MONNOM\documents\installer-13387-855-nero-showtime-french.exe" = protocol=17 | dir=in | app=c:\users\MONNOM\documents\installer-13387-855-nero-showtime-french.exe |
"UDP Query User{5A14680D-0589-49AF-8314-F93261D0AA76}C:\program files\ares\ares.exe" = protocol=17 | dir=in | app=c:\program files\ares\ares.exe |
"UDP Query User{68DBBF10-F4B3-456E-ADBA-5283BC6E354B}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{826E5B47-59A3-43A3-85BC-ABDC7B6E5E66}C:\program files\voipdiscount.com\voipdiscount\voipdiscount.exe" = protocol=17 | dir=in | app=c:\program files\voipdiscount.com\voipdiscount\voipdiscount.exe |
"UDP Query User{A88A1C48-93BD-4282-A916-43FA145CF6C5}C:\users\MONNOM\documents\emule\emule.exe" = protocol=17 | dir=in | app=c:\users\MONNOM\documents\emule\emule.exe |
"UDP Query User{ACA4C6CB-14B7-425B-91E5-76D6921A720D}C:\program files\voipdiscount.com\voipdiscount\voipdiscount.exe" = protocol=17 | dir=in | app=c:\program files\voipdiscount.com\voipdiscount\voipdiscount.exe |
"UDP Query User{AEA307C6-4A3E-4F5C-B200-05F554B8C87B}C:\program files\filezilla ftp client\filezilla.exe" = protocol=17 | dir=in | app=c:\program files\filezilla ftp client\filezilla.exe |
"UDP Query User{BA44E5F0-766C-4309-B049-D16799173BA5}C:\program files\real\realplayer\realplay.exe" = protocol=17 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"UDP Query User{CC714B2C-FD94-4486-B7A6-3D735E783075}C:\users\MONNOM\desktop\vti\limewire\limewire.exe" = protocol=17 | dir=in | app=c:\users\MONNOM\desktop\vti\limewire\limewire.exe |
"UDP Query User{E1137A41-AFE7-47A2-B50B-E58025EC013F}C:\program files\limewire\limewire.exe" = protocol=17 | dir=in | app=c:\program files\limewire\limewire.exe |
"UDP Query User{E808CB35-263A-400B-B2DB-44CAE6D0D4FE}C:\program files\lexmark 2500 series\lxddamon.exe" = protocol=17 | dir=in | app=c:\program files\lexmark 2500 series\lxddamon.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========
fourize

Re: PX engine ne fonctionne plus !

par fourize »

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{00BA866C-F2A2-4BB9-A308-3DFA695B6F7C}" = Java DB 10.5.3.0
"{0394CDC8-FABD-4ed8-B104-03393876DFDF}" = Roxio Creator Tools
"{044C3969-26EF-4A3D-A800-63FBE060AAF2}" = ESU for Microsoft Vista
"{05653DE1-6567-40C6-B930-39D399B64369}" = OpenOffice.org 3.3
"{05E379CC-F626-4E7D-8354-463865B303BF}" = Windows Live UX Platform Language Pack
"{082702D5-5DD8-4600-BCE5-48B15174687F}" = HP Doc Viewer
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{0D397393-9B50-4c52-84D5-77E344289F87}" = Roxio Creator Data
"{0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}" = Microsoft .NET Framework 4 Client Profile FRA Language Pack
"{11F93B4B-48F0-4A4E-AE77-DFA96A99664B}" = Roxio Creator EasyArchive
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1F9A5CFA-BF15-46E7-A723-A654EA29D6F7}" = Mulimedia Logic
"{1FF7993C-23B1-4C91-B1F6-09D13C57A06A}_is1" = VirtualDub 1.9.6 Fr
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2075CB0A-D26F-4DAA-B424-5079296B43BA}" = Windows Live FolderShare
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{24aab420-4e30-4496-9739-3e216f3de6ae}" = Python 2.6.2
"{254C37AA-6B72-4300-84F6-98A82419187E}" = Hewlett-Packard Active Check
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 24
"{26A24AE4-039D-4CA4-87B4-2F83217000FF}" = Java(TM) 7 Update
"{290B83AA-093A-45BF-A917-D1C4A1E8D917}" = HP Active Support Library
"{2ADE2157-7A5E-122C-B51D-EB8A01B15943}" = DeepBurner v1.9.0.228
"{2D6E3D97-1FDF-4993-AC75-72F59EC445C5}" = Windows Live Family Safety
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{32A3A4F4-B792-11D6-A78A-00B0D0170000}" = Java(TM) SE Development Kit 7
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{336A609A-6ECC-4E05-B320-CCC085BF7EA7}" = MSCU for Microsoft Vista
"{33C65B6A-5D73-4E3E-A1F9-127C27BD3F72}" = Roxio MyDVD Basic v9
"{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live
"{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}" = Roxio Activation Module
"{3B9A92DA-6374-4872-B646-253F18624D5F}" = Windows Live Writer
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra
"{40F7AED3-0C7D-4582-99F6-484A515C73F2}" = HP Easy Setup - Frontend
"{45D707E9-F3C4-11D9-A373-0050BAE317E1}" = HP DVD Play 3.2
"{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{55D003F4-9599-44BF-BA9E-95D060730DD3}" = Contrôle ActiveX Windows Live Mesh pour connexions à distance
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5D38A14D-8B90-434E-A28F-47A2279C0F40}" = ActiveState Komodo Edit 6.1.3
"{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
"{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}" = Roxio Creator Copy
"{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Hewlett-Packard Asset Agent
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}" = Microsoft Works
"{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker
"{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}" = Complément Messenger
"{7059BDA7-E1DB-442C-B7A1-6144596720A4}" = HP Update
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{83FFCFC7-88C6-41c6-8752-958A45325C82}" = Roxio Creator Audio
"{841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}" = Windows Live Mesh
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}" = QuickTime
"{97C82B44-D408-4F14-9252-47FC1636D23E}_is1" = IZArc 3.81
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C05B2CC-68D0-4B46-A9C8-40CC4BF10C33}" = Windows Live Family Safety
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A87B11AC-4344-4E5D-8B12-8F471A87DAD9}" = LightScribe 1.4.136.1
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AB61A2E9-37D3-485D-9085-19FBDF8CEF4A}" = Windows Live Messenger
"{AB93C51F-71F9-4A28-8134-FE1B5B9373E9}" = Windows Live Remote Service Resources
"{AC76BA86-7AD7-1036-7B44-A95000000001}" = Adobe Reader 9.5.2 - Français
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B045B608-4A47-4C77-9EAD-06C394503306}" = iTunes
"{B4089055-D468-45A4-A6BA-5A138DD715FC}" = Bing Bar
"{B6335C5F-0064-4F90-8447-52614F8F0CE0}" = HP User Guides 0079
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common
"{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}" = Roxio Creator Basic v9
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D32067CD-7409-4792-BFA0-1469BCD8F0C8}" = HP Wireless Assistant
"{D374F8CD-E0F3-4810-A48F-3C96E86AF6B4}" = Code de la Route Pratic
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D6E6B04E-0498-4794-B272-2EDE12E02837}_is1" = VirtualDub Plugin Pack 1.0.0.6 Fr
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DFDBE1F9-04CE-4645-BB6C-4590EABC7A9C}" = Windows Live Remote Client Resources
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{FAB0C302-CB18-4A7A-BA03-C3DC23101A68}" = HP Active Support Library 32 bit components
"{FE0646A7-19D0-41B4-A2BB-2C35D644270D}" = Windows Live OneCare safety scanner
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"afplanet" = AnglaisFacile.com - Planet English
"Amazon Kindle" = Amazon Kindle
"Ares" = Ares 2.0.9
"Audacity_is1" = Audacity 1.2.6
"Avira AntiVir Desktop" = Avira Free Antivirus
"AxCrypt" = AxCrypt (Désinstaller uniquement)
"B991B020-2968-11D8-AF23-444553540000_is1" = FreeMind
"Camtasia Studio 3" = Camtasia Studio 3
"CNXT_HDAUDIO" = Conexant HD Audio
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_5045&SUBSYS_103C30B7" = HDAUDIO Soft Data Fax Modem with SmartCP
"DAEMON Tools Lite" = DAEMON Tools Lite
"Dev-C++" = Dev-C++ 5 beta 9 release (4.9.9.2)
"Eclipse - Pydev 1.5.0" = Eclipse - Pydev 1.5.0
"Eclipse - QtEclipse 1.5.2" = Eclipse - QtEclipse 1.5.2
"Eclipse - StartExplorer 0.5.0" = Eclipse - StartExplorer 0.5.0
"FileZilla Client" = FileZilla Client 3.5.1
"Free Video Converter_is1" = Free Video Converter V 3.0
"GeoGebra" = GeoGebra
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"Inkscape" = Inkscape 0.47
"KompoZer" = KompoZer 0.7.10 (supprimer uniquement)
"Lexmark 2500 Series" = Lexmark 2500 Series
"Lexmark Fax Solutions" = Solutions de télécopie Lexmark
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.65.0.1400
"Markets.com MetaTrader" = Markets.com MetaTrader
"Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile FRA Language Pack" = Module linguistique Microsoft .NET Framework 4 Client Profile FRA
"Mixxx (1.10.1)" = Mixxx 1.10.1
"Mozilla Firefox 15.0.1 (x86 fr)" = Mozilla Firefox 15.0.1 (x86 fr)
"Mozilla Thunderbird (2.0.0.24)" = Mozilla Thunderbird (2.0.0.24)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Notepad++" = Notepad++
"PyQt4 - QtHelp 4.5.2" = PyQt4 - QtHelp 4.5.2
"PyQt4 - Qwt5 5.2.0" = PyQt4 - Qwt5 5.2.0
"Python 2.6 - formlayout 1.0.5" = Python 2.6 - formlayout 1.0.5
"Python 2.6 - Gnuplot 1.8" = Python 2.6 - Gnuplot 1.8
"Python 2.6 - h5py 1.2.1" = Python 2.6 - h5py 1.2.1
"Python 2.6 - IPython 0.10" = Python 2.6 - IPython 0.10
"Python 2.6 - matplotlib 0.99.1" = Python 2.6 - matplotlib 0.99.1
"Python 2.6 - nose 0.11.1" = Python 2.6 - nose 0.11.1
"Python 2.6 - numexpr 1.3.1" = Python 2.6 - numexpr 1.3.1
"Python 2.6 - numpy 1.3.0" = Python 2.6 - numpy 1.3.0
"Python 2.6 - PIL 1.1.6" = Python 2.6 - PIL 1.1.6
"Python 2.6 - py2exe 0.6.9" = Python 2.6 - py2exe 0.6.9
"Python 2.6 - pylint 0.18.1" = Python 2.6 - pylint 0.18.1
"Python 2.6 - PyQt4 4.5.4" = Python 2.6 - PyQt4 4.5.4
"Python 2.6 - pyreadline 1.5" = Python 2.6 - pyreadline 1.5
"Python 2.6 - pywin32 2.14" = Python 2.6 - pywin32 2.14
"Python 2.6 - reportlab 2.3" = Python 2.6 - reportlab 2.3
"Python 2.6 - scipy 0.7.1" = Python 2.6 - scipy 0.7.1
"Python 2.6 - setuptools 0.6.9" = Python 2.6 - setuptools 0.6.9
"Python 2.6 - spyder 1.0.1" = Python 2.6 - spyder 1.0.1
"Python 2.6 - tables 2.1.2" = Python 2.6 - tables 2.1.2
"Python 2.6 - vitables 2.0" = Python 2.6 - vitables 2.0
"Python 2.6 - vtk 5.4.2" = Python 2.6 - vtk 5.4.2
"Python 2.6 - xy 1.1.0" = Python 2.6 - xy 1.1.0
"Python(x,y)" = Python(x,y)
"Python(x,y) - console 2.0.144" = Python(x,y) - console 2.0.144
"Python(x,y) - eclipse 3.5.1" = Python(x,y) - eclipse 3.5.1
"Python(x,y) - mingw 4.4.0" = Python(x,y) - mingw 4.4.0
"Python(x,y) - SciTE 2.01" = Python(x,y) - SciTE 2.01
"Python(x,y) - WinMerge 2.12.4" = Python(x,y) - WinMerge 2.12.4
"Python(x,y) - xydoc 1.0.3" = Python(x,y) - xydoc 1.0.3
"R for Windows 2.13.1_is1" = R for Windows 2.13.1
"RealPlayer 12.0" = RealPlayer
"Revo Uninstaller" = Revo Uninstaller 1.83
"RSS Xpress" = RSS Xpress 2.8.6
"scilab-5.2.0_is1" = scilab-5.2.0
"Screen Antics" = Screen Antics 2.1
"Switch" = Switch Sound File Converter
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Texmaker" = Texmaker
"WebExpress_is1" = WebExpress version 1.0
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinLiveSuite" = Windows Live

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Capturino V2" = Capturino V2
"Google Chrome" = Google Chrome
"GoToMeeting" = GoToMeeting 4.8.0.723

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 22/09/2012 05:31:56 | Computer Name = PC-de-MON_NOM | Source = Microsoft-Windows-CAPI2 | ID = 131585
Description =

Error - 22/09/2012 11:47:55 | Computer Name = PC-de-MON_NOM | Source = VSS | ID = 8194
Description =

Error - 22/09/2012 11:48:10 | Computer Name = PC-de-MON_NOM | Source = Microsoft-Windows-CAPI2 | ID = 131585
Description =

Error - 25/09/2012 13:55:52 | Computer Name = PC-de-MON_NOM | Source = Microsoft-Windows-CAPI2 | ID = 131585
Description =

Error - 25/09/2012 13:56:06 | Computer Name = PC-de-MON_NOM | Source = Microsoft-Windows-CAPI2 | ID = 131585
Description =

Error - 26/09/2012 07:56:19 | Computer Name = PC-de-MON_NOM | Source = EventSystem | ID = 4609
Description =

Error - 26/09/2012 11:25:45 | Computer Name = PC-de-MON_NOM | Source = Microsoft-Windows-CAPI2 | ID = 131585
Description =

Error - 26/09/2012 11:25:56 | Computer Name = PC-de-MON_NOM | Source = Microsoft-Windows-CAPI2 | ID = 131585
Description =

Error - 26/09/2012 11:48:08 | Computer Name = PC-de-MON_NOM | Source = Application Error | ID = 1000
Description = Application défaillante firefox.exe, version 15.0.1.4631, horodatage
0x5047f9c5, module défaillant xul.dll, version 15.0.1.4631, horodatage 0x5047f93b,
code d’exception 0xc0000005, décalage d’erreur 0x0010e567, ID du processus 0x748,
heure de début de l’application 0x01cd9bfd3c97714d.

Error - 28/09/2012 03:39:14 | Computer Name = PC-de-MON_NOM | Source = Microsoft-Windows-CAPI2 | ID = 131585
Description =

[ System Events ]
Error - 26/09/2012 07:57:00 | Computer Name = PC-de-MON_NOM | Source = Service Control Manager | ID = 7001
Description =

Error - 26/09/2012 07:57:00 | Computer Name = PC-de-MON_NOM | Source = Service Control Manager | ID = 7026
Description =

Error - 26/09/2012 07:57:00 | Computer Name = PC-de-MON_NOM | Source = Service Control Manager | ID = 7001
Description =

Error - 26/09/2012 07:57:00 | Computer Name = PC-de-MON_NOM | Source = Service Control Manager | ID = 7001
Description =

Error - 26/09/2012 07:57:00 | Computer Name = PC-de-MON_NOM | Source = Service Control Manager | ID = 7001
Description =

Error - 26/09/2012 07:57:00 | Computer Name = PC-de-MON_NOM | Source = DCOM | ID = 10005
Description =

Error - 26/09/2012 07:57:02 | Computer Name = PC-de-MON_NOM | Source = DCOM | ID = 10005
Description =

Error - 26/09/2012 07:57:36 | Computer Name = PC-de-MON_NOM | Source = Service Control Manager | ID = 7001
Description =

Error - 26/09/2012 08:09:20 | Computer Name = PC-de-MON_NOM | Source = EventLog | ID = 6008
Description = L'arrêt système précédant à 14:07:23 le 26/09/2012 n'était pas prévu.

Error - 27/09/2012 03:08:01 | Computer Name = PC-de-MON_NOM | Source = DCOM | ID = 10000
Description =


< End of report >
Je tiens à m'excuser que ça soit aussi long, mais c'est bien les "rapports minimal". Merci.

En esperant que ça aide...
SkyTech

Re: PX engine ne fonctionne plus !

par SkyTech »

Yop,

Désinstalle :

Bing Bar
HP User Guides 0079


---

Relance OTL.
o sous Personnalisation, copie_colle le contenu du cadre ci dessous et clic Correction, un rapport apparraitra suite à l’operation que tu conserveras sur clé usb par exemple afin d’en coller le resultat:
:OTL
SRV - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe File not found
DRV - (USBAAPL) -- System32\Drivers\usbaapl.sys File not found
DRV - (NwlnkFwd) -- system32\DRIVERS\nwlnkfwd.sys File not found
DRV - (NwlnkFlt) -- system32\DRIVERS\nwlnkflt.sys File not found
DRV - (IpInIp) -- system32\DRIVERS\ipinip.sys File not found
DRV - (blbdrive) -- C:\Windows\system32\drivers\blbdrive.sys File not found
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://mathsbyb9.freeheberg.com/
IE - HKCU\..\SearchScopes\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}: "URL" = http://search.pdfcreator-toolbar.org/se ... Q&ts=ne&w={searchTerms}&csrc=search-field
IE - HKCU\..\SearchScopes\{89B88F42-1AB2-41CC-953D-ECBF882CC72F}: "URL" = http://search.yahoo.com/search?ei=ISO-8 ... ype=vmn&q={searchTerms}
IE - HKCU\..\SearchScopes\{A0B271A9-D8AA-8E74-7392-2164D6A1C03C}: "URL" = http://www.iesearch.com/s/?q={searchTerms}&s=sbox
IE - HKCU\..\SearchScopes\{AC854C16-CA1E-43f1-8513-0D2F36C726ED}: "URL" = http://www.simalo.com/search/?q={search ... s=Zq4Mfz4s
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\MONNOM\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\MONNOM\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
[2010/05/01 10:48:49 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\MONNOM\AppData\Roaming\mozilla\Firefox\Profiles\6khgy212.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/07/11 16:58:07 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\MONNOM\AppData\Roaming\mozilla\Firefox\Profiles\xgptsqln.MONNOM\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009/04/26 17:04:16 | 000,001,775 | ---- | M] () -- C:\Users\MONNOM\AppData\Roaming\mozilla\firefox\profiles\6khgy212.default\searchplugins\live-search.xml
[2009/09/16 00:34:48 | 000,000,000 | ---D | M] (SeekService) -- C:\Program Files\Mozilla Firefox\extensions\{86009AEF-9162-4EBC-B698-FF71D7B6B049}
[2009/07/06 01:41:05 | 000,002,399 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seekservice115.xml
[2009/08/08 19:31:35 | 000,002,399 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seekservice117.xml
[2009/08/25 23:06:36 | 000,002,399 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seekservice121.xml
[2009/09/10 14:43:11 | 000,002,399 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seekservice125.xml
[2009/09/16 00:34:49 | 000,002,399 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seekservice127.xml
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
[2012/09/28 09:21:50 | 000,001,122 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4164484115-1426155280-873663606-1000UA.job
[2012/09/28 09:21:27 | 000,001,072 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/09/27 09:20:02 | 000,001,076 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/09/26 19:21:03 | 000,001,070 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4164484115-1426155280-873663606-1000Core.job
[2012/09/26 13:03:54 | 000,513,501 | ---- | M] () -- C:\Users\MONNOM\Desktop\adwcleaner.exe
[2008/02/27 20:35:55 | 000,000,000 | ---D | M] -- C:\Users\MONNOM\AppData\Roaming\AVG7
:commands
[ResetHosts]
[purity]
[emptytemp]
[emptyflash]
* redemarre le pc sous windows et poste le rapport ici
fourize

Re: PX engine ne fonctionne plus !

par fourize »

bonjour,

Je croyais que j'allais rencontrer le même problème que "Daemon tools" lors de la desinstallation
de "Bing Bar"; mais non ! il s'est bien desintallé.

Et voici le rapport :
All processes killed
========== OTL ==========
Service wlcrasvc stopped successfully!
Service wlcrasvc deleted successfully!
File C:\Program Files\Windows Live\Mesh\wlcrasvc.exe File not found not found.
Service USBAAPL stopped successfully!
Service USBAAPL deleted successfully!
File System32\Drivers\usbaapl.sys File not found not found.
Service NwlnkFwd stopped successfully!
Service NwlnkFwd deleted successfully!
File system32\DRIVERS\nwlnkfwd.sys File not found not found.
Service NwlnkFlt stopped successfully!
Service NwlnkFlt deleted successfully!
File system32\DRIVERS\nwlnkflt.sys File not found not found.
Service IpInIp stopped successfully!
Service IpInIp deleted successfully!
File system32\DRIVERS\ipinip.sys File not found not found.
Service blbdrive stopped successfully!
Service blbdrive deleted successfully!
File C:\Windows\system32\drivers\blbdrive.sys File not found not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Restore| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{89B88F42-1AB2-41CC-953D-ECBF882CC72F}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{89B88F42-1AB2-41CC-953D-ECBF882CC72F}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A0B271A9-D8AA-8E74-7392-2164D6A1C03C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A0B271A9-D8AA-8E74-7392-2164D6A1C03C}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AC854C16-CA1E-43f1-8513-0D2F36C726ED}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AC854C16-CA1E-43f1-8513-0D2F36C726ED}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@Apple.com/iTunes,version=\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
File C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll not found.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
File C:\Users\MONNOM\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll not found.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
File C:\Users\MONNOM\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5\ deleted successfully.
c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=\ not found.
Folder C:\Users\MONNOM\AppData\Roaming\mozilla\Firefox\Profiles\6khgy212.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}\ not found.
Folder C:\Users\MONNOM\AppData\Roaming\mozilla\Firefox\Profiles\xgptsqln.MONNOM\extensions\{20a82645-c095-46ed-80e3-08825760534b}\ not found.
File C:\Users\MONNOM\AppData\Roaming\mozilla\firefox\profiles\6khgy212.default\searchplugins\live-search.xml not found.
C:\Program Files\Mozilla Firefox\extensions\{86009AEF-9162-4EBC-B698-FF71D7B6B049}\defaults\preferences folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{86009AEF-9162-4EBC-B698-FF71D7B6B049}\defaults folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{86009AEF-9162-4EBC-B698-FF71D7B6B049}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{86009AEF-9162-4EBC-B698-FF71D7B6B049} folder moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins\seekservice115.xml moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins\seekservice117.xml moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins\seekservice121.xml moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins\seekservice125.xml moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins\seekservice127.xml moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4164484115-1426155280-873663606-1000UA.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4164484115-1426155280-873663606-1000Core.job moved successfully.
File C:\Users\MONNOM\Desktop\adwcleaner.exe not found.
Folder C:\Users\MONNOM\AppData\Roaming\AVG7\ not found.
========== COMMANDS ==========
File move failed. C:\Windows\System32\drivers\etc\Hosts scheduled to be moved on reboot.
Error: Unble to create default HOSTS file!

[EMPTYTEMP]

User: All Users

User: MONNOM
->Temp folder emptied: 48972537 bytes
->Temporary Internet Files folder emptied: 217161371 bytes
->Java cache emptied: 7236007 bytes
->FireFox cache emptied: 60858311 bytes
->Google Chrome cache emptied: 69807141 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 506 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 375015257 bytes
RecycleBin emptied: 1238150 bytes

Total Files Cleaned = 744,00 mb


[EMPTYFLASH]

User: All Users

User: MONNOM
->Flash cache emptied: 0 bytes

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 09292012_110228

Files\Folders moved on Reboot...
File move failed. C:\Windows\System32\drivers\etc\Hosts scheduled to be moved on reboot.
C:\Users\MONNOM\AppData\Local\Temp\ehmsas.txt moved successfully.
File\Folder C:\Windows\temp\TMP00000047E8E8BA7023203897 not found!

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
Fourize
  • Sujets similaires
    Réponses
    Vues
    Dernier message

Revenir à « Windows : Résoudre les problèmes »