S'abonner :

Newsletters

Magazines

01men.

Avis sur les produits

Avis sur les logiciels

Avis sur les jeux

Actualités

A propos de 01net

725 utilisateurs connectés

Forum de 01net / Sécurité / Redirection de mes recherches google

Redirection de mes recherches google

celvec le 10 aout 2009 à 17h16

Bonsoir, depuis un certain temps (environ un mois), lorsque je clique sur le résultat d'une de mes recherches google, je suis redirigé vers tout un tas de site n'ayant rien a voir...(eBay, Yahoo, mainexoclik, parfois site porno). Bref, ce que je crois être un "malware" devient très gênant au quotidien, d'autant plus que mes antivirus et pare feu n'y voient que du feu... A cela s'ajoute que mon pc (pourtant récent) "plante" (écran bleu) de manière aléatoire depuis la même période. J'aimerais qu'une âme charitable aide mon pc a recouvrir la santé, et qu'il me donne les moyens de lutter contre ce dérangement.

pour info: je suis sous vista avec bitdefender total security (pas si totale la sécurité...)

répondre

Curson le 10 aout 2009 à 20h02

Bonsoir,

1) Désactive l'UAC. Tutorial.

2) Télécharge HiJackThis de Merijn sur ton bureau.

- Double-clic sur HijackThis.
- Génère un rapport en suivant ces indications :
- Exécute le et clique sur Do a scan and save log file.
- Le rapport s'ouvre sur le Bloc-Note.

- Colle le rapport ici, pour cela :
- Menu Edition / Selectionner Tout
- Menu Edition / copier
- Ici dans un nouveau message : clic droit / coller

Aide : N'hésite pas à consulter l'aide HiJackThis.

Cordialement.

-------
Si votre sujet reste sans réponse, merci de le signaler ici.

répondre

celvec le 10 aout 2009 à 21h54

Merci pour la rapidité de réponse:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:26:56, on 10/08/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\WTablet\Pen_TabletUser.exe
C:\Windows\system32\WTablet\Wacom_TabletUser.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Windows\explorer.exe
C:\Program Files\Pinnacle\Shared Files\Programs\StrmServer\StrmServer.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Live\Mail\wlmail.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
C:\Users\Adrien Messaoud\Downloads\!RnE - 2009.08.10 13.52.14 - Portable Adobe Illustrator CS3\Portable Adobe Illustrator CS3\Portable Adobe Illustrator CS3.exe
C:\Users\ADRIEN~1\AppData\Local\Temp\nswC977.tmp\Portable Adobe Illustrator CS3.exe
C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c(...)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c(...)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c(...)
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: LPVideoPlugin - {1C64EEE2-FD54-4ED9-9017-CB8A16B70809} - C:\Windows\system32\LPVideo.dll (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Google Gears Helper - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.30.0\gears.dll
O3 - Toolbar: BS.Player ControlBar - {2C688203-7EB3-4327-9995-1CB417BA23F9} - C:\Program Files\BS.Player ControlBar\BSToolbar.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" update "Software\CyberLink\YouCam\2.0"
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [OnScreenDisplay] C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BDWizReg] "C:\Program Files\BitDefender\BitDefender 2009\bdwizreg.exe" /complete
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [AdobeUpdater] C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: Pinnacle Streaming Server.lnk = C:\Program Files\Pinnacle\Shared Files\Programs\StrmServer\StrmServer.exe
O4 - Global Startup: TabUserW.exe.lnk = C:\Windows\System32\Wtablet\TabUserW.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.30.0\gears.dll
O9 - Extra 'Tools' menuitem: Paramètres de Google &Gears - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.30.0\gears.dll
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B2D15271-84E1-4796-B3DC-E1FCA067103F}: NameServer = 85.255.112.119,85.255.112.101
O17 - HKLM\System\CCS\Services\Tcpip\..\{F51B00EA-55E8-4693-B6C9-A5DA57D81264}: NameServer = 85.255.112.119,85.255.112.101
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.112.119,85.255.112.101
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.112.119,85.255.112.101
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_030ac640\aestsrv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. http://www.bitdefender.com - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
O23 - Service: Google Update Service (gupdate1c98953bd2d8e20) (gupdate1c98953bd2d8e20) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\Windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: QuickPlay Background Capture Service (QBCS) (QPCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
O23 - Service: QuickPlay Task Scheduler (QTS) (QPSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
O23 - Service: Recovery Service for Windows - Unknown owner - C:\Windows\SMINST\BLService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_030ac640\STacSV.exe
O23 - Service: TabletServicePen - Wacom Technology, Corp. - C:\Windows\system32\Pen_Tablet.exe
O23 - Service: TabletServiceWacom - Wacom Technology, Corp. - C:\Windows\system32\Wacom_Tablet.exe
O23 - Service: TeamViewer 3 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer3\TeamViewer_Service.exe
O23 - Service: TVService - Team MediaPortal - C:\Program Files\Team MediaPortal\MediaPortal TV Server\TVService.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - RealVNC Ltd. - C:\Program Files\RealVNC\VNC4\WinVNC4.exe

--
End of file - 13651 bytes

répondre

Curson le 10 aout 2009 à 22h01

Bonsoir,

Désactive tes logiciels de sécurité durant la procédure.

Télécharge OTL (de OldTimer) et enregistre-le sur ton Bureau.

- Quitte les applications en cours afin de ne pas interrompre le scan.
- Une fenêtre apparaît. Dans la section Output en haut de cette fenêtre, coche "Minimal Output". Fais de même avec "Scan All Users".
- Coche également les cases à côté de "LOP Check" et "Purity Check".
- Dans la zone Extra Registry, coche "Use Safelist".

Ne modifie pas les autres paramètres !

- Clique sur le bouton Run Scan.
- Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTListIT2 (donc par défaut sur le Bureau).

- Copie/colle ici le contenu des deux fichiers. Utilise un message par rapport.

Cordialement.

-------
Si votre sujet reste sans réponse, merci de le signaler ici.

répondre

celvec le 10 aout 2009 à 22h46

le OTL.txt

OTL logfile created on: 10/08/2009 22:28:10 - Run 1
OTL by OldTimer - Version 3.0.10.5 Folder = C:\Users\Adrien Messaoud\Desktop
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 1,33 Gb Available Physical Memory | 66,69% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): ?:\pagefile.sys

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 223,62 Gb Total Space | 44,82 Gb Free Space | 20,04% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PORTABLE-ADRIEN
Current User Name: Adrien Messaoud
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation)
PRC - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_030ac640\STacSV.exe (IDT, Inc.)
PRC - C:\Windows\System32\Hpservice.exe (Hewlett-Packard Corporation)
PRC - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_030ac640\aestsrv.exe (Andrea Electronics Corporation)
PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
PRC - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe (Intel Corporation)
PRC - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo)
PRC - C:\Program Files\Google\Update\1.2.183.7\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Program Files\Common Files\LightScribe\LSSrvc.exe (Hewlett-Packard Company)
PRC - C:\Windows\System32\WISPTIS.EXE (Microsoft Corporation)
PRC - C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe (BitDefender SRL)
PRC - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe (Nero AG)
PRC - C:\Windows\System32\IoctlSvc.exe (Prolific Technology Inc.)
PRC - C:\Windows\System32\PnkBstrA.exe ()
PRC - C:\Windows\System32\PnkBstrB.exe ()
PRC - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)
PRC - C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe ()
PRC - C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe ()
PRC - C:\Windows\SMINST\BLService.exe ()
PRC - C:\Program Files\CyberLink\Shared Files\RichVideo.exe ()
PRC - C:\Windows\System32\Pen_Tablet.exe (Wacom Technology, Corp.)
PRC - C:\Windows\System32\Wacom_Tablet.exe (Wacom Technology, Corp.)
PRC - C:\Program Files\TeamViewer3\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe (BitDefender S. R. L.)
PRC - C:\Program Files\RealVNC\VNC4\WinVNC4.exe (RealVNC Ltd.)
PRC - C:\Windows\ehome\ehsched.exe (Microsoft Corporation)
PRC - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe (Hewlett-Packard)
PRC - C:\Windows\ehome\ehRecvr.exe (Microsoft Corporation)
PRC - C:\Windows\System32\WISPTIS.EXE (Microsoft Corporation)
PRC - C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe (Microsoft Corporation)
PRC - C:\Windows\Explorer.EXE (Microsoft Corporation)
PRC - C:\Windows\System32\WTablet\Pen_TabletUser.exe (Wacom Technology, Corp.)
PRC - C:\Windows\System32\Pen_Tablet.exe (Wacom Technology, Corp.)
PRC - C:\Windows\System32\WTablet\Wacom_TabletUser.exe (Wacom Technology, Corp.)
PRC - C:\Windows\System32\Wacom_Tablet.exe (Wacom Technology, Corp.)
PRC - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
PRC - C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
PRC - C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
PRC - C:\Program Files\HP\QuickPlay\QPService.exe (CyberLink Corp.)
PRC - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe ( Hewlett-Packard Development Company, L.P.)
PRC - C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe ( Hewlett-Packard Development Company, L.P.)
PRC - C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard)
PRC - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe (Hewlett-Packard Development Company, L.P.)
PRC - C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
PRC - C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe (BitDefender S.R.L.)
PRC - C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
PRC - C:\Windows\ehome\ehtray.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
PRC - C:\Program Files\Pinnacle\Shared Files\Programs\StrmServer\StrmServer.exe (Avid Development GmbH)
PRC - C:\Program Files\WinZip\WZQKPICK.EXE (WinZip Computing, S.L.)
PRC - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe (Hewlett-Packard Development Company, L.P.)
PRC - C:\Windows\ehome\ehmsas.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
PRC - C:\Windows\System32\wbem\wmiprvse.exe (Microsoft Corporation)
PRC - C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
PRC - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe (Hewlett-Packard Development Company, L.P.)
PRC - C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE (Hewlett-Packard Development Company, L.P.)
PRC - C:\Windows\System32\wbem\unsecapp.exe (Microsoft Corporation)
PRC - C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe ()
PRC - C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
PRC - C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Synaptics, Inc.)
PRC - C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe (Microsoft Corporation)
PRC - C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe ()
PRC - C:\Windows\System32\conime.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Users\Adrien Messaoud\Desktop\OTL.exe (OldTimer Tools)

========== Win32 Services (SafeList) ==========

SRV - (Adobe LM Service [On_Demand | Stopped]) -- C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe (Adobe Systems)
SRV - (AESTFilters [Auto | Running]) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_030ac640\aestsrv.exe (Andrea Electronics Corporation)
SRV - (Apple Mobile Device [Auto | Running]) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (Arrakis3 [On_Demand | Stopped]) -- C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe (BitDefender S.R.L. http://www.bitdefender.com)
SRV - (aspnet_state [On_Demand | Stopped]) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (Microsoft Corporation)
SRV - (Bonjour Service [Auto | Running]) -- C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
SRV - (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (Com4QLBEx [On_Demand | Running]) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe (Hewlett-Packard Development Company, L.P.)
SRV - (ehRecvr [On_Demand | Running]) -- C:\Windows\ehome\ehRecvr.exe (Microsoft Corporation)
SRV - (ehSched [On_Demand | Running]) -- C:\Windows\ehome\ehsched.exe (Microsoft Corporation)
SRV - (ehstart [Auto | Stopped]) -- C:\Windows\ehome\ehstart.dll (Microsoft Corporation)
SRV - (Eventlog [Auto | Running]) -- C:\Windows\System32\wevtsvc.dll (Microsoft Corporation)
SRV - (ezSharedSvc [Auto | Running]) -- C:\Windows\System32\ezsvc7.dll (EasyBits Sofware AS)
SRV - (FLEXnet Licensing Service [On_Demand | Stopped]) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (FontCache3.0.0.0 [On_Demand | Stopped]) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
SRV - (GameConsoleService [On_Demand | Stopped]) -- C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe (WildTangent, Inc.)
SRV - (gupdate1c98953bd2d8e20 [Auto | Stopped]) -- C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
SRV - (HP Health Check Service [Auto | Running]) -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe (Hewlett-Packard)
SRV - (hpqwmiex [On_Demand | Running]) -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe (Hewlett-Packard Development Company, L.P.)
SRV - (hpsrv [Auto | Running]) -- C:\Windows\System32\Hpservice.exe (Hewlett-Packard Corporation)
SRV - (IAANTMON [Auto | Running]) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe (Intel Corporation)
SRV - (IDriverT [On_Demand | Stopped]) -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (idsvc [Unknown | Stopped]) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe (Microsoft Corporation)
SRV - (iPod Service [On_Demand | Running]) -- C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
SRV - (IviRegMgr [Auto | Running]) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo)
SRV - (LightScribeService [Auto | Running]) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe (Hewlett-Packard Company)
SRV - (LIVESRV [Auto | Running]) -- C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe (BitDefender SRL)
SRV - (MSCSPTISRV [On_Demand | Stopped]) -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe (Sony Corporation)
SRV - (Nero BackItUp Scheduler 3 [Auto | Running]) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe (Nero AG)
SRV - (NetTcpPortSharing [Disabled | Stopped]) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (NMIndexingService [On_Demand | Stopped]) -- C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe (Nero AG)
SRV - (nvsvc [Auto | Running]) -- C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation)
SRV - (odserv [On_Demand | Stopped]) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose [On_Demand | Stopped]) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (PACSPTISVR [On_Demand | Stopped]) -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe ()
SRV - (PLFlash DeviceIoControl Service [Auto | Running]) -- C:\Windows\System32\IoctlSvc.exe (Prolific Technology Inc.)
SRV - (PnkBstrA [Auto | Running]) -- C:\Windows\System32\PnkBstrA.exe ()
SRV - (PnkBstrB [Auto | Running]) -- C:\Windows\System32\PnkBstrB.exe ()
SRV - (PSI_SVC_2 [Auto | Running]) -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)
SRV - (QPCapSvc [Auto | Running]) -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe ()
SRV - (QPSched [Auto | Running]) -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe ()
SRV - (Recovery Service for Windows [Auto | Running]) -- C:\Windows\SMINST\BLService.exe ()
SRV - (RichVideo [Auto | Running]) -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe ()
SRV - (scan [On_Demand | Stopped]) -- C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\scan.dll (S.C. BitDefender S.R.L)
SRV - (SonicStage Back-End Service [On_Demand | Stopped]) -- C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe (Sony Corporation)
SRV - (SPTISRV [On_Demand | Stopped]) -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe (Sony Corporation)
SRV - (SSScsiSV [On_Demand | Stopped]) -- C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe (Sony Corporation)
SRV - (STacSV [Auto | Running]) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_030ac640\STacSV.exe (IDT, Inc.)
SRV - (TabletServicePen [Auto | Running]) -- C:\Windows\System32\Pen_Tablet.exe (Wacom Technology, Corp.)
SRV - (TabletServiceWacom [Auto | Running]) -- C:\Windows\System32\Wacom_Tablet.exe (Wacom Technology, Corp.)
SRV - (TeamViewer [Auto | Running]) -- C:\Program Files\TeamViewer3\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (TVService [On_Demand | Stopped]) -- C:\Program Files\Team MediaPortal\MediaPortal TV Server\TVService.exe (Team MediaPortal)
SRV - (usnjsvc [On_Demand | Stopped]) -- C:\Program Files\Windows Live\Messenger\usnsvc.exe (Microsoft Corporation)
SRV - (VSSERV [Auto | Running]) -- C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe (BitDefender S. R. L.)
SRV - (WinDefend [Auto | Stopped]) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (WinVNC4 [Auto | Running]) -- C:\Program Files\RealVNC\VNC4\WinVNC4.exe (RealVNC Ltd.)
SRV - (WLSetupSvc [On_Demand | Stopped]) -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe (Microsoft Corporation)
SRV - (WMPNetworkSvc [On_Demand | Running]) -- C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV - (Accelerometer [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\Accelerometer.sys (Hewlett-Packard Corporation)
DRV - (adp94xx [Boot | Running]) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (adpahci [Boot | Running]) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (adpu160m [Boot | Running]) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (adpu320 [Boot | Running]) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (aic78xx [Boot | Running]) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (aliide [Boot | Running]) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (arc [Boot | Running]) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (arcsas [Boot | Running]) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (BCM43XV [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\bcmwl6.sys (Broadcom Corporation)
DRV - (bdfm [On_Demand | Stopped]) -- C:\Windows\System32\drivers\bdfm.sys (BitDefender S.R.L. Bucharest, ROMANIA)
DRV - (Bdfndisf [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\bdfndisf.sys (BitDefender LLC)
DRV - (bdfsfltr [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\bdfsfltr.sys (BitDefender S.R.L. Bucharest, ROMANIA)
DRV - (bdftdif [System | Running]) -- C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys (BitDefender LLC)
DRV - (BDVEDISK [Auto | Running]) -- C:\Program Files\BitDefender\BitDefender 2009\BDVEDISK.sys (BitDefender S.R.L.)
DRV - (BrFiltLo [On_Demand | Stopped]) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrFiltUp [On_Demand | Stopped]) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (Brserid [On_Demand | Stopped]) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrSerWdm [On_Demand | Stopped]) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm [On_Demand | Stopped]) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (BrUsbSer [On_Demand | Stopped]) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (cmdide [Boot | Running]) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (E1G60 [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\E1G60I32.sys (Intel Corporation)
DRV - (ElbyCDFL [On_Demand | Running]) -- C:\Windows\System32\Drivers\ElbyCDFL.sys (SlySoft, Inc.)
DRV - (ElbyCDIO [System | Running]) -- C:\Windows\System32\Drivers\ElbyCDIO.sys (Elaborate Bytes AG)
DRV - (elxstor [Boot | Running]) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (enecir [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\enecir.sys (ENE TECHNOLOGY INC.)
DRV - (GEARAspiWDM [On_Demand | Running]) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (HpCISSs [Boot | Running]) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (hpdskflt [Boot | Running]) -- C:\Windows\system32\DRIVERS\hpdskflt.sys (Hewlett-Packard Corporation)
DRV - (HpqKbFiltr [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\HpqKbFiltr.sys (Hewlett-Packard Development Company, L.P.)
DRV - (HpqRemHid [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\HpqRemHid.sys (Hewlett-Packard Development Company, L.P.)
DRV - (HSFHWAZL [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\VSTAZL3.SYS (Conexant Systems, Inc.)
DRV - (HSF_DPV [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\VSTDPV3.SYS (Conexant Systems, Inc.)
DRV - (iaStor [Boot | Running]) -- C:\Windows\system32\DRIVERS\iaStor.sys (Intel Corporation)
DRV - (iaStorV [Boot | Running]) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (iirsp [Boot | Running]) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (iteatapi [Boot | Running]) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (iteraid [Boot | Running]) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (JMCR [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\jmcr.sys (JMicron Technology Corp.)
DRV - (LSI_FC [Boot | Running]) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (LSI_SAS [Boot | Running]) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (LSI_SCSI [Boot | Running]) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (Ltn_stk7070P [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\Ltn_stk7070P.sys (LITEON)
DRV - (Ltn_stkrc [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\Ltn_stkrc.sys (LITEON)
DRV - (megasas [Boot | Running]) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation)
DRV - (MegaSR [Boot | Running]) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.)
DRV - (mod7700 [On_Demand | Stopped]) -- C:\Windows\System32\Drivers\mod7700.sys (DiBcom SA)
DRV - (MODRC [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\modrc.sys (DiBcom S.A.)
DRV - (Mraid35x [Boot | Running]) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (NETw5v32 [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\NETw5v32.sys (Intel Corporation)
DRV - (nfrd960 [Boot | Running]) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (ntrigdigi [On_Demand | Stopped]) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (NVENETFD [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\nvm60x32.sys (NVIDIA Corporation)
DRV - (NVHDA [On_Demand | Running]) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation)
DRV - (nvlddmkm [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\nvlddmkm.sys (NVIDIA Corporation)
DRV - (nvraid [Boot | Running]) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor [Boot | Running]) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (PenClass [Boot | Running]) -- C:\Windows\system32\Drivers\penclass.sys (Wacom Technology Corporation)
DRV - (PxHelp20 [Boot | Running]) -- C:\Windows\System32\Drivers\PxHelp20.sys (Sonic Solutions)
DRV - (ql2300 [Boot | Running]) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (ql40xx [Boot | Running]) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (regi [Auto | Running]) -- C:\Windows\System32\drivers\regi.sys (InterVideo)
DRV - (RTL8169 [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\Rtlh86.sys (Realtek Corporation )
DRV - (secdrv [Auto | Running]) -- C:\Windows\System32\drivers\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (SiSRaid4 [Boot | Running]) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (sptd [Boot | Running]) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (STHDA [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\stwrt.sys (IDT, Inc.)
DRV - (Symc8xx [Boot | Running]) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_hi [Boot | Running]) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Sym_u3 [Boot | Running]) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (SynTP [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\SynTP.sys (Synaptics, Inc.)
DRV - (uliahci [Boot | Running]) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (UlSata [Boot | Running]) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (ulsata2 [Boot | Running]) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (USBAAPL [On_Demand | Stopped]) -- C:\Windows\System32\Drivers\usbaapl.sys (Apple, Inc.)
DRV - (usbaudio [On_Demand | Stopped]) -- C:\Windows\System32\drivers\usbaudio.sys (Microsoft Corporation)
DRV - (usbbus [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\lgusbbus.sys (LG Electronics Inc.)
DRV - (UsbDiag [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\lgusbdiag.sys (LG Electronics Inc.)
DRV - (USBModem [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\lgusbmodem.sys (LG Electronics Inc.)
DRV - (viaide [Boot | Running]) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (vncmirror [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\vncmirror.sys (RealVNC Ltd.)
DRV - (vsmraid [Boot | Running]) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (wacmoumonitor [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\wacmoumonitor.sys (Wacom Technology)
DRV - (wacommousefilter [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\wacommousefilter.sys (Wacom Technology)
DRV - (wacomvhid [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\wacomvhid.sys (Wacom Technology)
DRV - (WacomVKHid [On_Demand | Running]) -- C:\Windows\System32\DRIVERS\WacomVKHid.sys (Wacom Technology)
DRV - (winachsf [On_Demand | Stopped]) -- C:\Windows\System32\DRIVERS\VSTCNXT3.SYS (Conexant Systems, Inc.)
DRV - (BDSelfPr [On_Demand | Running]) -- C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys (BitDefender S.R.L.)
DRV - (Profos [On_Demand | Running]) -- C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\profos.sys ()
DRV - (Trufos [On_Demand | Running]) -- C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\trufos.sys ()

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c(...)
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c(...)

IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1353200964-3524906340-1747845312-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c(...)
IE - HKU\S-1-5-21-1353200964-3524906340-1747845312-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-1353200964-3524906340-1747845312-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKU\S-1-5-21-1353200964-3524906340-1747845312-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
IE - HKU\S-1-5-21-1353200964-3524906340-1747845312-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-1353200964-3524906340-1747845312-1000\S-1-5-21-1353200964-3524906340-1747845312-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1353200964-3524906340-1747845312-1000\S-1-5-21-1353200964-3524906340-1747845312-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Alapage"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.com/ig?hl=fr"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.5.2.20080717
FF - prefs.js..extensions.enabledItems: FFToolbar@bitdefender.com:2.0
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.13

FF - HKLM\software\mozilla\Firefox\Extensions\\{000a9d1c-beef-4f90-9363-039d445309b8}: C:\Program Files\Google\Google Gears\Firefox\ [2009/07/18 08:16:52 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2009\FFToolbar\ [2009/08/10 16:55:50 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/08/10 16:57:37 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/08/05 09:44:18 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\bdThunderbird@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2009\tbextension\ [2009/08/10 16:55:51 | 00,000,000 | ---D | M]

[2008/08/14 13:50:23 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\mozilla\Extensions
[2008/08/14 13:50:23 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/08/10 19:34:19 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\mozilla\Firefox\Profiles\tah1c9n5.default\extensions
[2009/04/19 13:59:03 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\mozilla\Firefox\Profiles\tah1c9n5.default\extensions\{62d7e2b3-7029-4619-a268-1dae09d20e1d}
[2009/04/10 14:16:32 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\mozilla\Firefox\Profiles\tah1c9n5.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2009/04/10 14:16:33 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009/08/05 09:44:17 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008/12/08 00:49:14 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}
[2009/04/10 14:15:34 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
[2009/08/05 09:44:11 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/08/05 09:44:11 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2008/10/30 17:34:42 | 00,039,424 | ---- | M] () -- C:\Program Files\mozilla firefox\components\FFComm.dll
[2009/04/15 22:24:54 | 01,044,480 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\mozilla firefox\plugins\libdivx.dll
[2007/04/10 17:21:08 | 00,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll
[2009/04/10 14:14:10 | 00,410,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll
[2009/04/15 22:24:36 | 01,337,648 | ---- | M] (DivX,Inc.) -- C:\Program Files\mozilla firefox\plugins\npdivx32.dll
[2009/04/15 22:24:44 | 00,098,304 | ---- | M] (DivX, Inc) -- C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll
[2009/08/05 09:44:12 | 00,065,528 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2006/10/26 20:12:16 | 00,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL
[2008/12/19 00:25:43 | 00,144,960 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll
[2009/03/14 17:15:51 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2009/03/14 17:15:52 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2009/03/14 17:15:52 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2009/03/14 17:15:52 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2009/03/14 17:15:52 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2009/03/14 17:15:52 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2009/03/14 17:15:52 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2008/12/19 00:25:56 | 00,008,192 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprjplug.dll
[2008/12/19 00:25:11 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll
[2009/04/15 22:24:54 | 00,200,704 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\mozilla firefox\plugins\ssldivx.dll
[2008/09/28 13:28:38 | 00,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2008/11/14 08:09:33 | 00,000,757 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2008/09/28 13:28:38 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2008/09/28 13:28:38 | 00,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDICO-fr.xml
[2008/09/28 13:28:38 | 00,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2008/09/28 13:28:38 | 00,000,652 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

O1 HOSTS File: (761 bytes) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (LPVideoPlugin) - {1C64EEE2-FD54-4ED9-9017-CB8A16B70809} - C:\Windows\System32\LPVideo.dll File not found
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Google Gears Helper) - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.30.0\gears.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (BS.Player ControlBar) - {2C688203-7EB3-4327-9995-1CB417BA23F9} - C:\Program Files\BS.Player ControlBar\BSToolbar.dll ()
O3 - HKLM\..\Toolbar: (BitDefender Toolbar) - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll (Bitdefender)
O3 - HKU\S-1-5-21-1353200964-3524906340-1747845312-1000\..\Toolbar\WebBrowser: (BS.Player ControlBar) - {2C688203-7EB3-4327-9995-1CB417BA23F9} - C:\Program Files\BS.Player ControlBar\BSToolbar.dll ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [BDAgent] C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe (BitDefender S.R.L.)
O4 - HKLM..\Run: [BitDefender Antiphishing Helper] C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe (BitDefender)
O4 - HKLM..\Run: [CloneCDTray] C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.)
O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe (Hewlett-Packard)
O4 - HKLM..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [OnScreenDisplay] C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe ( Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe ( Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [QPService] C:\Program Files\HP\QuickPlay\QPService.exe (CyberLink Corp.)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [UCam_Menu] C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)
O4 - HKU\S-1-5-21-1353200964-3524906340-1747845312-1000..\Run: [AdobeUpdater] C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe (Adobe Systems Incorporated)
O4 - HKU\S-1-5-21-1353200964-3524906340-1747845312-1000..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1353200964-3524906340-1747845312-1000..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1353200964-3524906340-1747845312-1000..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: E&xporter vers Microsoft Excel - C:\Programmes\Microsoft Office\Office12\EXCEL.EXE File not found
O9 - Extra 'Tools' menuitem : Paramètres de Google &Gears - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.30.0\gears.dll (Google Inc.)
O9 - Extra Button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll (Apple Inc.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programmes\Microsoft Office\Office12\REFIEBAR.DLL File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKU\.DEFAULT\..Trusted Ranges: Range1 ([http] in Local intranet)
O15 - HKU\S-1-5-18\..Trusted Ranges: Range1 ([http] in Local intranet)
O15 - HKU\S-1-5-21-1353200964-3524906340-1747845312-1000\..Trusted Ranges: Range1 ([http] in Local intranet)
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab (Solitaire Showdown Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 128.1.0.5
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.112.119,85.255.112.101
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programmes\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll File not found
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programmes\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programmes\Common Files\Skype\Skype4COM.dll File not found
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter: - text/xml - C:\Programmes\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/07/02 09:44:35 | 00,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found

========== Files/Folders - Created Within 30 Days ==========

[1 C:\Users\Adrien Messaoud\Documents\*.tmp files]
[2009/08/10 22:21:29 | 00,513,536 | ---- | C] (OldTimer Tools) -- C:\Users\Adrien Messaoud\Desktop\OTL.exe
[2009/08/10 17:57:54 | 00,000,850 | ---- | C] () -- C:\Windows\System32\ProductTweaks.xml
[2009/08/10 17:57:53 | 00,000,385 | ---- | C] () -- C:\Windows\System32\user_gensett.xml
[2009/08/10 17:54:34 | 00,065,024 | ---- | C] () -- C:\Windows\System32\drivers\kjofnmrxvsbortqi.sys
[2009/08/10 17:52:41 | 00,495,246 | ---- | C] () -- C:\Users\Adrien Messaoud\Desktop\Page internet-google redirigée - La solution.webarchive
[2009/08/10 17:21:11 | 00,001,917 | ---- | C] () -- C:\Users\Adrien Messaoud\Desktop\HijackThis.lnk
[2009/08/10 17:21:11 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009/08/10 16:57:38 | 00,002,078 | ---- | C] () -- C:\Users\Public\Desktop\BitDefender Total Security 2009.lnk
[2009/08/10 16:57:36 | 00,000,000 | ---D | C] -- C:\Users\Adrien Messaoud\AppData\Roaming\BitDefender
[2009/08/10 16:55:36 | 00,000,000 | ---D | C] -- C:\ProgramData\BitDefender
[2009/08/10 16:51:07 | 00,967,974 | ---- | C] () -- C:\Users\Adrien Messaoud\Documents\[HELP] Recherches Google redirigées (12finder) - forum 01net.webarchive
[2009/08/10 16:51:00 | 00,531,884 | ---- | C] () -- C:\Users\Adrien Messaoud\Documents\Page internet-google redirigée - La solution.webarchive
[2009/08/10 16:45:00 | 00,000,000 | -HSD | C] -- C:\Config.Msi
[2009/08/10 13:56:57 | 00,065,024 | ---- | C] () -- C:\Windows\System32\drivers\empoyxpfbintinpb.sys
[2009/08/10 13:55:08 | 00,000,000 | ---D | C] -- C:\Users\Adrien Messaoud\AppData\Roaming\Thinstall
[2009/08/10 13:47:18 | 00,000,000 | ---D | C] -- C:\Users\Adrien Messaoud\Desktop\logo-meeting&co
[2009/08/10 11:56:18 | 00,000,000 | ---D | C] -- C:\Users\Adrien Messaoud\Documents\steph
[2009/08/10 10:36:38 | 14,613,66272 | ---- | C] () -- C:\Users\Adrien Messaoud\Documents\ADBEILSTCS4_LS4.7z.dlm
[2009/08/10 10:36:38 | 01,228,288 | ---- | C] (Adobe Systems Incorporated) -- C:\Users\Adrien Messaoud\Documents\ADBEILSTCS4_LS4.exe
[2009/08/10 10:36:37 | 00,000,639 | ---- | C] () -- C:\Users\Adrien Messaoud\Desktop\Lancer le Download Manager.html
[2009/08/09 20:33:58 | 00,037,574 | ---- | C] () -- C:\Users\Adrien Messaoud\Desktop\nico7.jpg
[2009/08/08 15:56:19 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2009/08/08 14:47:21 | 00,000,512 | ---- | C] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2009/08/08 14:34:55 | 00,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2009/08/08 13:54:23 | 00,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2009/08/08 13:54:23 | 00,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2009/08/05 10:40:29 | 00,000,000 | ---D | C] -- C:\Program Files\Groove Monkee
[2009/08/03 19:52:49 | 00,485,752 | ---- | C] () -- C:\Users\Adrien Messaoud\Desktop\parcoursfooting.jpg
[2009/08/02 12:50:06 | 00,000,838 | ---- | C] () -- C:\Users\Adrien Messaoud\Desktop\iReceiver.lnk
[2009/07/31 16:22:02 | 00,419,358 | ---- | C] () -- C:\Users\Adrien Messaoud\Desktop\sayobeach.jpg
[2009/07/31 16:12:04 | 00,174,761 | ---- | C] () -- C:\Users\Adrien Messaoud\Desktop\biche.jpg
[2009/07/30 18:33:57 | 00,000,675 | ---- | C] () -- C:\Users\Adrien Messaoud\AppData\Roaming\waver_2.95.dat
[2009/07/30 18:29:15 | 00,000,004 | ---- | C] () -- C:\Windows\System32\qwolt.pdg
[2009/07/30 18:29:11 | 00,000,842 | ---- | C] () -- C:\Users\Adrien Messaoud\Desktop\Waver.lnk
[2009/07/30 18:29:09 | 00,000,000 | ---D | C] -- C:\Program Files\Flop
[2009/07/30 17:23:04 | 00,000,000 | R--D | C] -- C:\Users\Adrien Messaoud\Desktop\Sans titre Project
[2009/07/29 18:02:30 | 00,021,597 | ---- | C] () -- C:\Users\Adrien Messaoud\Desktop\questions.html
[2009/07/29 17:58:44 | 77,240,2585 | ---- | C] () -- C:\Users\Adrien Messaoud\Desktop\The hours.mp4
[2009/07/29 17:52:15 | 00,000,000 | ---D | C] -- C:\Users\Adrien Messaoud\Documents\Red Kawa
[2009/07/29 17:52:15 | 00,000,000 | ---D | C] -- C:\Users\Adrien Messaoud\AppData\Roaming\Red Kawa
[2009/07/29 17:51:22 | 00,000,000 | ---D | C] -- C:\Users\Adrien Messaoud\Documents\Regensoft
[2009/07/29 17:51:21 | 00,001,974 | ---- | C] () -- C:\Users\Public\Desktop\YouTube Downloader App.lnk
[2009/07/29 17:51:21 | 00,000,000 | ---D | C] -- C:\Program Files\Regensoft
[2009/07/29 17:51:05 | 00,000,000 | ---D | C] -- C:\Program Files\AviSynth 2.5
[2009/07/29 17:51:00 | 00,002,038 | ---- | C] () -- C:\Users\Public\Desktop\Videora iPhone Converter.lnk
[2009/07/29 17:50:59 | 00,000,000 | ---D | C] -- C:\Program Files\Red Kawa
[2009/07/29 02:11:37 | 00,000,000 | ---D | C] -- C:\Program Files\mbpowertools
[2009/07/28 02:24:01 | 00,000,600 | ---- | C] () -- C:\Users\Adrien Messaoud\AppData\Roaming\PUTTY.RND
[2009/07/28 02:24:01 | 00,000,600 | ---- | C] () -- C:\Users\Adrien Messaoud\AppData\Local\PUTTY.RND
[2009/07/28 02:10:02 | 00,000,000 | ---D | C] -- C:\Users\Adrien Messaoud\AppData\Roaming\FileZilla
[2009/07/28 02:09:54 | 00,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client
[2009/07/20 07:00:56 | 00,000,000 | ---D | C] -- C:\Users\Adrien Messaoud\AppData\Roaming\Atrise
[2009/07/20 07:00:56 | 00,000,000 | ---D | C] -- C:\ProgramData\Atrise
[2009/07/20 00:15:25 | 00,000,000 | ---D | C] -- C:\Program Files\Atrise
[2009/07/20 00:06:24 | 00,000,000 | ---D | C] -- C:\Program Files\Music AlarmClock v2
[2009/05/09 15:43:09 | 00,144,144 | ---- | C] () -- C:\Windows\System32\MASE32.DLL
[2009/05/09 15:43:09 | 00,141,584 | ---- | C] () -- C:\Windows\System32\MAMC32.DLL
[2009/05/09 15:43:09 | 00,063,248 | ---- | C] () -- C:\Windows\System32\MASD32.DLL
[2009/05/09 15:43:08 | 00,201,488 | ---- | C] () -- C:\Windows\System32\MACD32.DLL
[2009/05/09 15:43:08 | 00,033,040 | ---- | C] () -- C:\Windows\System32\MA32.DLL
[2008/12/30 12:03:50 | 00,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2008/10/09 15:31:54 | 00,192,512 | ---- | C] () -- C:\Windows\System32\txmlutil.dll
[2008/10/07 20:22:31 | 00,532,480 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Sony.dll
[2008/08/20 13:06:10 | 00,717,296 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2008/08/18 01:13:15 | 00,022,328 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2008/08/16 20:10:23 | 00,000,702 | ---- | C] () -- C:\Windows\NewsRover.INI
[2008/08/14 15:36:51 | 00,548,864 | ---- | C] () -- C:\Windows\System32\x264vfw.dll
[2008/08/14 15:36:50 | 00,593,920 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2008/08/14 15:36:50 | 00,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2008/08/14 15:36:49 | 00,010,752 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2008/08/14 15:36:49 | 00,000,547 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll.manifest
[2007/01/31 13:50:32 | 00,913,408 | ---- | C] () -- C:\Windows\System32\xreglib.dll
[2006/12/22 11:36:06 | 00,143,360 | ---- | C] () -- C:\Windows\System32\tvOut.dll
[2006/12/22 11:36:06 | 00,038,912 | ---- | C] () -- C:\Windows\System32\stvp.dll
[2006/11/02 14:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 12:23:31 | 00,000,256 | ---- | C] () -- C:\Windows\win.ini
[2006/11/02 12:23:31 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini
[2006/11/02 09:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/03/09 11:58:00 | 01,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll

========== Files - Modified Within 30 Days ==========

[2 C:\Windows\*.tmp files]
[1 C:\Users\Adrien Messaoud\Documents\*.tmp files]
[2009/08/10 22:21:29 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Adrien Messaoud\Desktop\OTL.exe
[2009/08/10 22:16:00 | 00,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2009/08/10 21:55:54 | 00,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009/08/10 21:55:54 | 00,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009/08/10 18:09:29 | 00,000,477 | ---- | M] () -- C:\Users\Public\Documents\hpqp.ini
[2009/08/10 18:09:27 | 00,056,967 | ---- | M] () -- C:\ProgramData\nvModes.001
[2009/08/10 18:08:57 | 00,000,349 | ---- | M] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2009/08/10 18:08:34 | 00,056,967 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2009/08/10 18:08:33 | 00,001,050 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2009/08/10 17:57:54 | 00,000,850 | ---- | M] () -- C:\Windows\System32\ProductTweaks.xml
[2009/08/10 17:57:53 | 00,000,385 | ---- | M] () -- C:\Windows\System32\user_gensett.xml
[2009/08/10 17:55:55 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/08/10 17:55:52 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/08/10 17:55:45 | 32,182,96832 | -HS- | M] () -- C:\hiberfil.sys
[2009/08/10 17:55:44 | 32,366,4498 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2009/08/10 17:54:34 | 00,065,024 | ---- | M] () -- C:\Windows\System32\drivers\kjofnmrxvsbortqi.sys
[2009/08/10 17:52:41 | 00,495,246 | ---- | M] () -- C:\Users\Adrien Messaoud\Desktop\Page internet-google redirigée - La solution.webarchive
[2009/08/10 17:21:11 | 00,001,917 | ---- | M] () -- C:\Users\Adrien Messaoud\Desktop\HijackThis.lnk
[2009/08/10 16:57:38 | 00,002,078 | ---- | M] () -- C:\Users\Public\Desktop\BitDefender Total Security 2009.lnk
[2009/08/10 16:51:25 | 02,932,783 | -H-- | M] () -- C:\Users\Adrien Messaoud\AppData\Local\IconCache.db
[2009/08/10 16:51:07 | 00,967,974 | ---- | M] () -- C:\Users\Adrien Messaoud\Documents\[HELP] Recherches Google redirigées (12finder) - forum 01net.webarchive
[2009/08/10 16:51:00 | 00,531,884 | ---- | M] () -- C:\Users\Adrien Messaoud\Documents\Page internet-google redirigée - La solution.webarchive
[2009/08/10 16:42:18 | 00,081,984 | ---- | M] () -- C:\Windows\System32\bdod.bin
[2009/08/10 14:47:00 | 00,000,512 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2009/08/10 14:33:57 | 00,000,984 | ---- | M] () -- C:\Users\Adrien Messaoud\AppData\Local\7F68A003.il
[2009/08/10 14:33:57 | 00,000,280 | ---- | M] () -- C:\Users\Adrien Messaoud\AppData\Local\IndexIE_7F68A003.il
[2009/08/10 13:56:57 | 00,065,024 | ---- | M] () -- C:\Windows\System32\drivers\empoyxpfbintinpb.sys
[2009/08/10 11:53:10 | 00,000,680 | ---- | M] () -- C:\Users\Adrien Messaoud\AppData\Local\d3d9caps.dat
[2009/08/10 11:46:03 | 14,613,66272 | ---- | M] () -- C:\Users\Adrien Messaoud\Documents\ADBEILSTCS4_LS4.7z.dlm
[2009/08/10 10:37:26 | 00,000,639 | ---- | M] () -- C:\Users\Adrien Messaoud\Desktop\Lancer le Download Manager.html
[2009/08/10 10:37:00 | 01,228,288 | ---- | M] (Adobe Systems Incorporated) -- C:\Users\Adrien Messaoud\Documents\ADBEILSTCS4_LS4.exe
[2009/08/09 20:34:00 | 00,037,574 | ---- | M] () -- C:\Users\Adrien Messaoud\Desktop\nico7.jpg
[2009/08/09 18:57:14 | 00,112,128 | ---- | M] () -- C:\Users\Adrien Messaoud\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/08/07 18:18:25 | 01,499,290 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009/08/07 18:18:25 | 00,679,418 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2009/08/07 18:18:25 | 00,595,946 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/08/07 18:18:25 | 00,128,418 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2009/08/07 18:18:25 | 00,105,276 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/08/07 11:03:17 | 00,000,549 | ---- | M] () -- C:\Users\Adrien Messaoud\Documents\Mes dossiers de partage.lnk
[2009/08/03 22:38:19 | 77,240,2585 | ---- | M] () -- C:\Users\Adrien Messaoud\Desktop\The hours.mp4
[2009/08/03 19:52:50 | 00,485,752 | ---- | M] () -- C:\Users\Adrien Messaoud\Desktop\parcoursfooting.jpg
[2009/08/02 12:50:06 | 00,000,838 | ---- | M] () -- C:\Users\Adrien Messaoud\Desktop\iReceiver.lnk
[2009/07/31 16:22:03 | 00,419,358 | ---- | M] () -- C:\Users\Adrien Messaoud\Desktop\sayobeach.jpg
[2009/07/31 16:12:04 | 00,174,761 | ---- | M] () -- C:\Users\Adrien Messaoud\Desktop\biche.jpg
[2009/07/30 18:33:57 | 00,000,675 | ---- | M] () -- C:\Users\Adrien Messaoud\AppData\Roaming\waver_2.95.dat
[2009/07/30 18:29:15 | 00,000,004 | ---- | M] () -- C:\Windows\System32\qwolt.pdg
[2009/07/30 18:29:11 | 00,000,842 | ---- | M] () -- C:\Users\Adrien Messaoud\Desktop\Waver.lnk
[2009/07/29 18:02:34 | 00,021,597 | ---- | M] () -- C:\Users\Adrien Messaoud\Desktop\questions.html
[2009/07/29 17:51:21 | 00,001,974 | ---- | M] () -- C:\Users\Public\Desktop\YouTube Downloader App.lnk
[2009/07/29 17:51:00 | 00,002,038 | ---- | M] () -- C:\Users\Public\Desktop\Videora iPhone Converter.lnk
[2009/07/29 14:49:22 | 00,000,600 | ---- | M] () -- C:\Users\Adrien Messaoud\AppData\Local\PUTTY.RND
[2009/07/28 02:24:01 | 00,000,600 | ---- | M] () -- C:\Users\Adrien Messaoud\AppData\Roaming\PUTTY.RND
[2009/07/20 13:23:20 | 02,511,912 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/20 00:27:51 | 00,107,816 | ---- | M] () -- C:\Users\Adrien Messaoud\AppData\Local\GDIPFONTCACHEV1.DAT

========== LOP Check ==========

[2009/08/10 16:57:36 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming
[2009/03/21 14:27:19 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\Ableton
[2008/11/22 15:01:47 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\Acoustica
[2009/02/21 23:10:31 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\Ambient Design
[2009/07/20 07:00:56 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\Atrise
[2009/08/10 16:57:36 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\BitDefender
[2009/01/15 13:47:10 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\BSplayer
[2008/12/31 16:43:34 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\BSplayer Pro
[2008/12/29 16:11:10 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\Corel
[2008/12/20 18:12:02 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\CyberLink
[2008/08/20 13:05:41 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\DAEMON Tools
[2009/05/11 00:45:38 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\DiskAid
[2009/08/10 10:37:00 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\Download Manager
[2009/07/27 16:28:03 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\dvdcss
[2008/09/23 18:46:49 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\EPSON
[2009/07/31 14:16:23 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\FileZilla
[2008/12/27 15:33:51 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\HandBrake
[2006/11/02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\Media Center Programs
[2008/09/14 21:31:39 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\Morpheus Software
[2008/08/14 16:46:15 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\muvee Technologies
[2008/09/01 10:48:53 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\NewsLeecher
[2008/12/20 18:29:41 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\NewsRover
[2008/08/16 02:20:43 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\PlayFirst
[2009/07/29 17:52:15 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\Red Kawa
[2008/11/03 21:48:14 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\Screaming Bee
[2009/07/29 01:18:51 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\Spotify
[2009/02/21 13:22:36 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\Steinberg
[2008/12/24 17:13:11 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\SystemRequirementsLab
[2008/12/08 20:49:11 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\TeamViewer
[2009/08/10 13:55:08 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\Thinstall
[2008/08/15 23:37:49 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\WildTangent
[2009/08/10 18:08:36 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\WTablet
[2009/05/14 23:18:36 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming
[2006/11/02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Media Center Programs
[2009/05/14 23:18:36 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming
[2006/11/02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Media Center Programs
[2009/08/10 14:47:00 | 00,000,512 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job
[2009/08/10 18:08:33 | 00,001,050 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2009/08/10 22:16:00 | 00,001,054 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2009/08/10 17:55:55 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT
[2009/08/10 16:51:32 | 00,032,572 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009/05/10 00:15:42 | 00,000,126 | ---- | M] () -- C:\Windows\Tasks\SesamTVMC.job

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 64 bytes -> C:\Users\Adrien Messaoud\Desktop\The hours.mp4:TOC.WMV
< End of report >

répondre

celvec le 10 aout 2009 à 22h47

Le extras.txt

OTL Extras logfile created on: 10/08/2009 22:28:10 - Run 1
OTL by OldTimer - Version 3.0.10.5 Folder = C:\Users\Adrien Messaoud\Desktop
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 1,33 Gb Available Physical Memory | 66,69% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): ?:\pagefile.sys

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 223,62 Gb Total Space | 44,82 Gb Free Space | 20,04% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PORTABLE-ADRIEN
Current User Name: Adrien Messaoud
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1353200964-3524906340-1747845312-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 0
"InternetSettingsDisableNotify" = 0
"AutoUpdateDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1D2CB62B-9C3A-4406-9913-E15DAFA7A1DD}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{1F0E34AD-A5C3-4D93-BA6A-F9CA18D1F0D0}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{3EAF3D3F-FBF3-405C-AF20-B0B1A591BB02}" = rport=445 | protocol=6 | dir=out | app=system |
"{4B6B5687-D746-459C-9458-DCDAE567AEFB}" = lport=2869 | protocol=6 | dir=in | app=system |
"{63A9A73B-9395-4B1F-9A1D-B6A4565FFDD2}" = lport=34641 | protocol=6 | dir=in | name=ireceiver |
"{71795D37-9766-4A6A-8B12-940DB5C5F96D}" = rport=138 | protocol=17 | dir=out | app=system |
"{97BF9A97-AD4D-4E8A-B351-72F8AA98D892}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{A3AA87C3-446E-49DF-A34F-73CD9D79F6CD}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{AB73D3A5-0919-4F96-9B3E-54BDAD79BEF4}" = rport=137 | protocol=17 | dir=out | app=system |
"{CC3D08DD-BA98-4894-A04F-43F1A7E2255D}" = lport=137 | protocol=17 | dir=in | app=system |
"{D66D642F-A647-4004-ACF0-2B3540572176}" = rport=139 | protocol=6 | dir=out | app=system |
"{D94F7EB7-3A5A-402F-8AD0-2343481FC3D7}" = lport=445 | protocol=6 | dir=in | app=system |
"{FDC2FE21-FAEC-48CE-B544-9A83FC67CB16}" = lport=138 | protocol=17 | dir=in | app=system |
"{FE75380B-4797-4F11-BE12-2BEEA72CDB88}" = lport=139 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{078E866F-A279-49B6-B1B9-22D242F5935F}" = protocol=17 | dir=in | app=c:\program files\pinnacle\shared files\programs\strmserver\strmserver.exe |
"{0D816D73-F3B3-4BB5-9C41-12E7DE117D81}" = protocol=6 | dir=in | app=c:\program files\ubisoft\far cry 2\bin\fc2editor.exe |
"{0ED27CFD-564B-41C1-824B-895DAE982B08}" = protocol=17 | dir=in | app=c:\program files\ubisoft\far cry 2\bin\farcry2.exe |
"{1E12BE74-A364-4177-A4EE-E6D0040E6BA3}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{1F1A5F2C-0E0D-49F9-BD15-679FC4717866}" = dir=in | app=c:\program files\hp\quickplay\qp.exe |
"{2356F9ED-8EC9-4BF1-AC9F-4A8570523401}" = dir=in | app=c:\program files\hp\quickplay\qpservice.exe |
"{26577453-D4C7-4919-802A-E04D8BB69D2B}" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"{28191BBD-A1EF-4D58-B01B-7E15F15E40D9}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{3962467E-4E63-41AE-B058-DAD59D7F9AB0}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{46A3C132-B744-44D7-83FD-1FDF87E47D14}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{53CBD5C7-974D-4B35-8526-BFA5C25D8983}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{57D11878-872B-427C-A040-A1DB36A6D33E}" = protocol=17 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{595DBF8E-FEC1-470E-A769-3234F3ADA949}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{5E5A7FF6-9857-4AD7-9BF4-69158DF6D032}" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"{5F6E2CE7-FA46-4E99-9FB9-BEBF4F3229D6}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{6369A652-09B4-448D-A135-4BA4575C4234}" = dir=in | app=c:\program files\windows live\messenger\livecall.exe |
"{658EBA84-7C6C-4D5E-A784-77605A5F3FEA}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{6A5E0385-C467-421B-A217-E61C8EC9FBA9}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{6AF629FF-BA36-4B4D-B730-20F5637EE95D}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{7C7E9CA0-0A63-4EB0-B6CF-80363090D0C3}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{7DD65D90-6AD1-41D7-BE96-FF68D20B75A2}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{8356F151-9074-469E-9E34-0FA300E8592E}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{85AB9103-72FC-4CB5-8965-50C9995A6466}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{8A37AD59-6AA9-49E3-ACB9-3D427A70ECD2}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{8E0446A5-850B-4545-A14D-E71276C55215}" = protocol=17 | dir=in | app=c:\program files\mbpowertools\ireceiver.exe |
"{9404598C-35DC-48E9-9497-18F48E2F38A4}" = protocol=6 | dir=in | app=c:\program files\ubisoft\far cry 2\bin\farcry2.exe |
"{94B16E9F-E1EF-462E-86D7-344A0A71D4D1}" = protocol=6 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{9E2C3AA1-B844-4E0A-949F-71173F724689}" = protocol=17 | dir=in | app=c:\program files\ubisoft\far cry 2\bin\fc2launcher.exe |
"{9EE1A3C5-3FF9-4660-B081-C33A418EC788}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{A3913CA5-2CDC-44F8-9BAA-4960B9FF0A7E}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{A765893D-551D-47D7-AAAB-9A2B0580BFAA}" = protocol=17 | dir=in | app=c:\program files\ubisoft\far cry 2\bin\fc2editor.exe |
"{A9A7B94A-DFBF-446F-9CC9-3AEB87642BD1}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{AE128C9F-AAC6-4DB0-85DE-38CCE491F265}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{BC225053-9525-47E4-A4C6-595C1475FC1B}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{C2FAA43C-2B17-42A7-9800-59BEF35457B5}" = protocol=6 | dir=in | app=c:\program files\pinnacle\shared files\programs\strmserver\strmserver.exe |
"{CB893DAA-19B5-43E2-9CD1-AE3869608CE3}" = protocol=6 | dir=in | app=c:\program files\ubisoft\far cry 2\bin\fc2launcher.exe |
"{D90B2061-79A9-47DD-B3DB-99B22D3010B0}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{E4323AF4-9F47-4AD7-8B6F-7303030ACC35}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{E67B60DD-2D4B-4964-B193-742C096427A4}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{F1166D9A-2D4E-472B-A391-7F026E0AFD86}" = protocol=6 | dir=in | app=c:\program files\mbpowertools\ireceiver.exe |
"{F1F06440-4AA0-4501-BB26-8F1B189EA5DA}" = dir=in | app=c:\program files\cyberlink\powerdirector\pdr.exe |
"{FE52F9C1-1FF4-405E-8E6D-0007666249A9}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{082702D5-5DD8-4600-BCE5-48B15174687F}" = HP Doc Viewer
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{0A9C92A5-D27F-4BD9-9DB9-0EFD8C681E29}" = Safari
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1BDC9633-895B-4842-BCB6-8FA1EC2A3C5A}" = Adobe Shockwave Player
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime
"{228C6B46-64E2-404E-898A-EF0830603EF4}" = HPNetworkAssistant
"{254C37AA-6B72-4300-84F6-98A82419187E}" = Hewlett-Packard Active Check for Health Check
"{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron JMB38X Flash Media Controller
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 13
"{28C3E5E6-5ACA-408D-9A46-089C5334EC97}" = HP Help and Support
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{30DAA715-5032-40F9-A0AE-95C9AEBB3E3F}" = HP QuickTouch 1.00 D2
"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5
"{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.40 D1
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{3B160861-7250-451E-B5EE-8B92BF30A710}" = Microsoft Works
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{45D707E9-F3C4-11D9-A373-0050BAE317E1}" = HP QuickPlay 3.7
"{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}" = Bonjour
"{51E5C397-0AA0-48DD-9CB6-7259AFFDFB0A}" = HP Easy Setup - Frontend
"{53C141BA-4F9E-43FB-B4F9-0C01BB716FA8}" = Adobe Audition 3.0
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{582287DA-0806-4AC0-BF19-C15E3A466034}" = LightScribe System Software 1.12.33.2
"{5AFDA63F-D659-4991-81B1-57B4311E5C82}" = Pen Tablet
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{5EFCBB42-36AB-4FF9-B90C-E78C7B9EE7B3}" = iTunes
"{659B48CD-0608-4ED5-94C0-0B6C87114F10}" = Apple Mobile Device Support
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Hewlett-Packard Asset Agent for Health Check
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6DA9102E-199F-43A0-A36B-6EF48081A658}" = Panneau de configuration MobileMe
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73B5D990-04EA-4751-B10F-5534770B91F2}" = Adobe Color EU Recommended Settings
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7C7AC2D4-1077-45C8-826A-16445B5E0DB7}" = Pinnacle DistanTV Server
"{7C84E006-D044-4441-A294-E318B147476C}" = VLC iPhone Connection Utility
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169 8168 8101E 8102E Ethernet Driver
"{891D0B03-05DF-4CD1-B267-268FDA1C1036}" = Nero 8
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0015-040C-0000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2007
"{90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0019-040C-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2007
"{90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007
"{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{5A2F65A4-808F-4A1E-973E-92E17824982D}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{5A2F65A4-808F-4A1E-973E-92E17824982D}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{3EC77D26-799B-4CD8-914F-C1565E796173}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{3EC77D26-799B-4CD8-914F-C1565E796173}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{430971B1-C31E-45DA-81E0-72C095BAB72C}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{430971B1-C31E-45DA-81E0-72C095BAB72C}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{F7A31780-33C4-4E39-951A-5EC9B91D7BF1}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{F7A31780-33C4-4E39-951A-5EC9B91D7BF1}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0020-040C-0000-0000000FF1CE}" = Module de compatibilité pour Microsoft Office System 2007
"{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{EC50B538-CBE1-42E6-B7FE-87AA540AADFB}" = Microsoft Office Language Pack 2007 Service Pack 1 (SP1)
"{90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{EC50B538-CBE1-42E6-B7FE-87AA540AADFB}" = Microsoft Office Language Pack 2007 Service Pack 1 (SP1)
"{90120000-00B2-0409-0000-0000000FF1CE}" = Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{926DEB4E-2B0A-4C5C-AE4A-BF6C06949702}" = Adobe Setup
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00AF-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (French)
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9D615069-AA8F-4E89-AE9D-77AAE90F529F}" = ProtectSmart Hard Drive Protection
"{9E2CCD5E-1990-4EF2-9B61-32F0BBACC29B}" = HP Active Support Library
"{A0383B7D-81A2-49D3-BE06-C0FD9EFB9DFC}" = Corel Painter IX
"{A0EB195B-5876-48E6-879D-33D4B2102610}" = SonicStage 4.3
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A5CE7175-080D-49AC-B5A3-E7E3502428F5}" = HP Wireless Assistant
"{A5FB086B-B602-4452-8FE9-DF6BFBCE3D09}" = Cubase Studio 4
"{A68F4E2D-3488-47B9-B517-A07F602A9E53}" = ArtRage 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AB152608-B0D3-46AF-A6D0-F34DD1C3F8ED}_is1" = iReceiver 1.5.3
"{AC76BA86-7AD7-1036-7B44-A81000000003}" = Adobe Reader 8.1.0 - Français
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B16DA0F8-26BC-4FFC-9363-1D9F3E6C3E21}" = HP Customer Experience Enhancements
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B6F7DBE7-2FE2-458F-A738-B10832746036}" = Microsoft Reader
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{BADF6744-3787-48F6-B8C9-4C4995401D65}" = Windows Live Messenger
"{BEEB434F-CAFE-4708-BE3A-7C61587FA8C8}" = Music AlarmClock v2.1.0
"{BF794769-8875-4E01-B7BE-E00104604F4A}" = Adobe Photoshop CS3
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{C514C594-23AA-4F13-A070-DB8BDB27594F}" = Windows Live Mail
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C731ACA8-EEE2-4B5A-9838-41D0AAD080C8}" = BitDefender Total Security 2009
"{C8FD5BC1-92EF-4C15-92A9-F9AC7F61985F}" = HP Update
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC016F21-3970-11DE-B878-005056806466}" = Google Earth
"{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240B5}" = WinZip 11.1
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{DF4E46F4-B5DE-4578-9617-C6ECBEFE385D}" = Air Cam
"{E3993D46-AE3F-402E-9F9D-EEBDFBEC3564}" = Corel WinDVD 9
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{f32502b5-5b64-4882-bf61-77f23edcac4f}" = HP Total Care Advisor
"{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA}" = Pinnacle TVCenter Pro
"{F48098CD-2D66-4861-85EC-DC1D4D09D5F9}" = HP User Guides 0102
"{F724042F-367A-3B58-9BE3-8EF7A6F058D6}" = Google Gears
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}" = Windows Live installer
"{FF29A7E2-FF40-4D07-B7E4-2093DE59E10A}" = Adobe Color NA Extra Settings
"Acoustica Effects Pack" = Acoustica Effects Pack
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe Audition 3.0" = Adobe Audition 3.0
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_32e9033392a51340b32fdc6ad893ab7" = Adobe Photoshop CS3
"Atrise Wakeup" = Atrise Wakeup 2.1.0
"AV Voice Changer Software DIAMOND 6.0" = AV Voice Changer Software DIAMOND 6.0
"AviSynth" = AviSynth 2.5
"BS.Player ControlBar" = BS.Player ControlBar
"BSPlayerf" = BS.Player FREE
"CCleaner" = CCleaner (remove only)
"CloneCD" = CloneCD
"DiskAid_is1" = DiskAid 2.52
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"EPSON Scanner" = EPSON Scan
"FileZilla Client" = FileZilla Client 3.2.6.1
"Free iPod Video Converter_is1" = Free iPod Video Converter 1.34
"Groove Monkee Sample Pack" = Groove Monkee Sample Pack
"HaaliMkx" = Haali Media Splitter
"HandBrake" = HandBrake 0.9.3
"HijackThis" = HijackThis 2.0.2
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"InstallShield_{5AFDA63F-D659-4991-81B1-57B4311E5C82}" = Pen Tablet
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"InstallShield_{E3993D46-AE3F-402E-9F9D-EEBDFBEC3564}" = Corel WinDVD 9
"iPhone Video Converter" = iPhone Video Converter
"IsoBuster_is1" = IsoBuster 2.2
"KLiteCodecPack_is1" = K-Lite Codec Pack 3.1.0 Full
"Live 7.0.3" = Live 7.0.3
"MediaPortal" = MediaPortal
"MediaPortal TV Server" = MediaPortal TV Server / Client
"Messenger Plus! Live" = Messenger Plus! Live
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Mozilla Firefox (3.0.13)" = Mozilla Firefox (3.0.13)
"Navigator" = SesamTV Media Center
"NewsLeecher_is1" = NewsLeecher v3.9 Final
"NVIDIA Drivers" = NVIDIA Drivers
"OpenMG HotFix4.7-07-13-22-01" = OpenMG Limited Patch 4.7-07-14-05-01
"Pen Tablet Driver" = Pen Tablet
"PROPLUS" = Microsoft Office Professional Plus 2007
"PunkBusterSvc" = PunkBuster Services
"QuickPar" = QuickPar 0.9
"RealPlayer 6.0" = RealPlayer
"RealVNC_is1" = VNC Free Edition 4.1.3
"reFX Nexus 1.4.0_is1" = reFX Nexus 1.4.0
"SlingMedia.QPSlingPlayer_is1" = QuickPlay SlingPlayer 0.4.6
"Spotify" = Spotify
"Stanza" = Stanza
"StuffPlug3" = StuffPlug 3
"Syncrosoft's License Control" = Le Centre de Contrôle de Licences de Syncrosoft
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"SystemRequirementsLab" = System Requirements Lab
"TeamViewer 3" = TeamViewer 3
"TeamViewer 4" = TeamViewer 4
"Videora iPhone Converter" = Videora iPhone Converter 4.08
"ViewpointMediaPlayer" = Viewpoint Media Player
"VLC media player" = VLC media player 0.9.8a
"VNCMirror_is1" = VNC Mirror Driver 1.8.0
"Wacom Tablet Driver" = Tablette Wacom
"Waver_is1" = Waver Version 2.95
"WildTangent hp Master Uninstall" = My HP Games
"YouTube Downloader App" = YouTube Downloader App 1.03

========== Last 10 Event Log Errors ==========

Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

< End of report >

répondre

Curson le 10 aout 2009 à 23h50

Bonsoir,

Désactive tes logiciels de sécurité durant la procédure.

1) Désinstalle les applications suivantes (si présentes) via ajout/suppression de programmes :

Bonjour
BS.Player ControlBar
BS.Player FREE ; ce programme comporte un spyware.
Viewpoint Media Player
My HP Games

2) Relance OTL

- Copie-colle l'entièreté de ceci ci dessous dans la partie "Customs Scans/Fixes" :

:otl
SRV - (Bonjour Service [Auto | Running]) -- C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
SRV - (GameConsoleService [On_Demand | Stopped]) -- C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe (WildTangent, Inc.)
O2 - BHO: (LPVideoPlugin) - {1C64EEE2-FD54-4ED9-9017-CB8A16B70809} - C:\Windows\System32\LPVideo.dll File not found
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
O3 - HKLM\..\Toolbar: (BS.Player ControlBar) - {2C688203-7EB3-4327-9995-1CB417BA23F9} - C:\Program Files\BS.Player ControlBar\BSToolbar.dll ()
O3 - HKU\S-1-5-21-1353200964-3524906340-1747845312-1000\..\Toolbar\WebBrowser: (BS.Player ControlBar) - {2C688203-7EB3-4327-9995-1CB417BA23F9} - C:\Program Files\BS.Player ControlBar\BSToolbar.dll ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.112.119,85.255.112.101
[2009/08/10 17:57:54 | 00,000,850 | ---- | C] () -- C:\Windows\System32\ProductTweaks.xml
[2009/08/10 17:57:53 | 00,000,385 | ---- | C] () -- C:\Windows\System32\user_gensett.xml
[2009/08/10 17:54:34 | 00,065,024 | ---- | C] () -- C:\Windows\System32\drivers\kjofnmrxvsbortqi.sys
[2009/08/10 13:56:57 | 00,065,024 | ---- | C] () -- C:\Windows\System32\drivers\empoyxpfbintinpb.sys
[2009/08/10 18:09:29 | 00,000,477 | ---- | M] () -- C:\Users\Public\Documents\hpqp.ini
[2009/08/10 14:47:00 | 00,000,512 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2009/08/08 14:34:55 | 00,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2009/08/10 14:33:57 | 00,000,984 | ---- | M] () -- C:\Users\Adrien Messaoud\AppData\Local\7F68A003.il
[2009/08/10 14:33:57 | 00,000,280 | ---- | M] () -- C:\Users\Adrien Messaoud\AppData\Local\IndexIE_7F68A003.il
[2009/08/07 18:18:25 | 00,679,418 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2009/08/07 18:18:25 | 00,595,946 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/08/07 18:18:25 | 00,128,418 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2009/08/07 18:18:25 | 00,105,276 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/01/15 13:47:10 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\BSplayer
[2008/12/31 16:43:34 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\BSplayer Pro
[2008/08/15 23:37:49 | 00,000,000 | ---D | M] -- C:\Users\Adrien Messaoud\AppData\Roaming\WildTangent

:reg
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{B2D15271-84E1-4796-B3DC-E1FCA067103F}]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{F51B00EA-55E8-4693-B6C9-A5DA57D81264}]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\Parameters]
"NameServer"=-
"NameServer"=""

:files
C:\Program Files\Bonjour
C:\Program Files\HP Games
C:\Program Files\BS.Player ControlBar
C:\Program Files\bsplayer
C:\Program Files\bs.player

:Commands
[Purity]
[emptytemp]
[start explorer]
[Reboot]

Clique ensuite sur "Run Fix". L'ordinateur peut demander à redémarrer, accepte.
Une fois l'opération terminée, un fichier texte apparaîtra à l'écran. Copie/colle son contenu ici.

Si tu n'as plus accès à Internet après l'utilisation de ComboFix :
Suis cette procédure : Réparer le protocole TCP/IP de Windows Vista

3) Télécharge Malwarebytes Anti-Malware.

- Installe-le et fais les mises à jour.

Note : Si la mise à jour est impossible, télécharge ce fichier et enregistre-le sur ton bureau.

- Exécute-le et suis les instructions.

4) Lance MBAM :

- Coche la case "Exécuter un examen complet" puis clique sur Rechercher.
- Sélectionne (coche) toutes tes partitions puis clique sur "Lancer l'examen".
- Lorsque le scan est terminé, un message te prévient. Clique alors sur le bouton "Montrer les résultats".
- Dans la fenêtre suivante clique sur "Supprimer la sélection". Si le programme te propose de redémarrer l'ordinateur, accepte!
- Le rapport de scan va s'afficher. Sauvegarde le puis poste son contenu.

5) Analyse ton système avec le Kaspersky Online Scanner. Tutorial.
Poste le résultat de l'analyse ici.

Comment se comporte le système ?

Cordialement.

-->Message édité par Curson le 11/08/2009 01:07:31<--

-------
Si votre sujet reste sans réponse, merci de le signaler ici.

répondre