Ecran noir

**invite6f9dc52a** · 19/05/2011, 20h51

Bonjour,

Ma fille m'amène son Dell Inspiron 1525 qui présente un pointeur de souris blanc qui peut bouger mais ne clique pas sur un écran noir.
Tout se passe bien jusqu'au choix de la session.
Quelques programmes sont accessibles par raccourcis clavier et semblent fonctionner normalement.
Par Malwarebyte antimalware, il y a eu 29 fichiers infectés que j'ai supprimé (via le mode sans échec qui semble fonctionner correctement, y compris avec réseau) mais le problème ne change pas .

Une idée de l'origine ?

Bien entendu, il n'y a même pas un point de restauration de crée sur cette machine.

Je me laisse convaincre de la nature infectieuse du problème.
http://forums.futura-sciences.com/lo...ml#post3558247

**invite42302d4e** · 19/05/2011, 20h56

hello,

enfin un cas de cette épidémie de black screens avec un pointeur sur FS....

Je ne te promet rien mais on va faire le maximum..
essais à l'écran de démarrage sélectif de redémarrer en "dernière bonne configuration fonctionnelle/connue" et dit moi si ça redémarre stp...

**invite6f9dc52a** · 19/05/2011, 21h33

Sur ce

d'ordinateur, il n'y a pas de"dernière bonne configuration fonctionnelle/connue" (pas un seul point de restauration ou quoi que ce soit : tu ne connais pas ma fille ...).
J'essaie de réinstaller a partir de la partition du disque dur mais il me demande de me présenter en tant qu' "autre utilisateur" et je n'arrive pas a me connecter (les noms et MdP des utilisateurs habituels sont refusés : "le domaine spécifié n'existe pas ou n'a pas pu être contacté").

**invite42302d4e** · 19/05/2011, 21h45

Quelle est la version de windows stp...?
est ce que tu as le choix "mode sans échec" ou "invité de commande en mode sans échec"

A voir en vidéo sur Futura · Aujourd'hui

**invite6f9dc52a** · 19/05/2011, 22h02

Vista service pack 2
J'ai bien l'accès au mode sans échec et sans échec avec invite de commande.

**invite42302d4e** · 19/05/2011, 22h20

ok, redémarre en mode sans échec....
enfonce les touches windows+r et dans la fenêtre qui s'ouvre tape regedit et valide par "OK"

est-ce que l'éditeur de registre s'ouvre ?

**invite6f9dc52a** · 19/05/2011, 22h29

Oui, j'ai l'éditeur de registre.

**invite42302d4e** · 19/05/2011, 22h34

ok,

développe dans la partie gauche de l'éditeur ...

Code:

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer

.

fais un clic sur explorer (dans la partie gauche de l'éditeur) et dit moi le nom des valeurs qui apparaissent dans la partie droite de la fenêtre stp

**invite6f9dc52a** · 19/05/2011, 22h57

Respectivement (2 lignes) :

REG_SZ (valeur non définie)
REG_DWORD 0x00000091 (145)

**invite42302d4e** · 19/05/2011, 23h03

ok, rien de louche là dedans, referme l'éditeur de registre...

est-ce que tu as accès au web avec ce pc en mode normal, soit au pire en "mode sans échec avec prise en charge réseaux" ?

**invite6f9dc52a** · 19/05/2011, 23h20

Je redémarre en mode "sans échec avec réseau".

**invite42302d4e** · 20/05/2011, 17h07

Hello,

télécharge et exécute Fixshell

ensuite tente un démarrage en mode normal pour voir stp

**invite6f9dc52a** · 20/05/2011, 22h03

Nifl, ça n'a pas (encore) marché.

Mais je suis tout ouïe(s) et prêt à tout ...

**invite42302d4e** · 20/05/2011, 22h28

re,

je m'en doutait un peu, mais bon

peut tu me décrire comment est ton bureau en mode normal stp...

est-il sur fond noir avec une barre des tache en bas de l'écran ?

**invite6f9dc52a** · 20/05/2011, 22h32

Même pas de barre de tâche : le noir complet (juste le curseur de la souris).

(fait pas les choses a moitié, la chtiotte !)

**invite42302d4e** · 20/05/2011, 22h40

dans cette situation, si tu enfonce les touches Windows+R est-ce que tu as une fenêtre "exécuter" qui s'ouvre ou bien rien ne se passe ?

Désolé si je te pose beaucoup de questions, mais c'est important car ce genre de cas se multiplie en ce moment et on n'en connais pas encore la raison (ça se passe au niveau du registre apparemment)

**invite6f9dc52a** · 20/05/2011, 22h47

Je le redémarre ... et manquerait plus que je critique ta façon de travailler et de m'aider ...

Finalement, ça serait pas la faute de l'utilisatrice, j'en reste bouche bée (ante) ...

**invite6f9dc52a** · 20/05/2011, 22h50

A rendutou (rien ne se passe avec cette combinaison).

**invite6f9dc52a** · 20/05/2011, 23h00

L'économiseur d'écran (qui fait défiler les photos se déclenche et se déroule normalement).
Ma fille me disait que le raccourci clavier adéquat, elle démarrait Mozilla et que celui-ci fonctionnait normalement.

**invite42302d4e** · 20/05/2011, 23h01

ok,,

on va donc passer par un liveCD...

Il te faut un pc qui fonctionne et un CD/DVD vierge

fais cela stp...

Insère un CD (ou un DVD) vierge dans ton graveur...si une fenêtre s'ouvre te demandant ce que tu veux faire, ferme cette fenêtre.

Télécharge OTLPENet.iso sur ton bureau.
Insère un CD vierge dans ton graveur, si une fenêtre s'ouvre te demandant ce que tu veux faire, ferme cette fenêtre.
Fais un double-clic sur l'icône d'OTLPENet.iso et suis les instructions pour graver le CD/DVD automatiquement

Note : Le CD gravé, vous devez maintenant redémarrer votre machine sur le lecteur CDROM

Si ton pc ne boot pas automatiquement sur le CD, je t'invite sur ce lien : http://forum.malekal.com/booter-sur-dvd-t9447.html
= Le setup se charge en RAM

= Une fois le CD lancé Windows se charge (comptez 15 à 20 minutes) vous arrivez sur le bureau REATOGO-X-PE

= Double cliquer sur OTLPE

=une fenêtre "Broose for folder" >> "choose Windows directory" risque de s’ouvrir, si c'est le cas, sélectionne le dossier "c:\Windows" de manière à ce que Windows soit afficher en bas de la fenêtre et valide
= Une fenêtre s'ouvre : Do you wish to load the remote registry ; Cliquez sur YES

= Une seconde : Do you wish to load remote user profile(s) for scanning ;choisis ta session et Clique sur YES

= Veillez à ce que la case "Automatically Load All Remaining Users" soit cochée et cliquez sur "OK"

=OTL se lance tu arrives sur cette fenêtre

Tu utilises une clé usb pour sauver le contenu en gras ci dessous dans un fichier bloc notes , afin de le transférer sur le pc et le retrouver facilement.
ouvre le fichier bloc note "sélectionner tout" (select all) et "copier" (copy) et de le coller (paste) sous" Custom Scan box"

NetSvcs
%systemroot%\system32\drivers\ *.sys /lockedfiles
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%APPDATA%\*.
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe
netsvcs
/md5start
volsnap.sys
sptd.sys
explorer.exe
userinit.exe
winlogon.exe
tcpip.sys
Sfloppy.sys
Changer.sys
cdrom.sys
disk.sys
ndis.sys
usbscan.sys
usbprint.sys
tdtcp.sys
tdpipe.sys
swmidi.sys
splitter.sys
rdpwd.sys
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
RASACD.SYS
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles

* cliques Run Scan pour démarrer le scan.
* une fois terminé , le fichier se trouve là C:\OTL.txt
* copie_colle le sur ta clef USB et poste son contenu dans ta prochaine réponse

**invite6f9dc52a** · 20/05/2011, 23h30

Ça roule ...

**invite6f9dc52a** · 20/05/2011, 23h54

Ca commence fort (I/O error! blabla, write error et W 23:49:09 Retry Failed - Reason: Cannot Write Medium - Incompatible Format)

Bon, je change de média puisque c'est si gentiment demandé.

**invite6f9dc52a** · 21/05/2011, 03h31

Cacaprout : il commençait a booter corectement puis :
File /i386/system32/KDCOM.DLL could not be loaded.
The error code is 4.
(le / est à l'envers mais l'esprit y est)
Je grave un nouveau CD mais ça recommence.

J'essaie alors ce CD la : http://oldtimer.geekstogo.com/OTLPEStd.exe

Je mets le rapport en PJ car trop long et j'essaie de le saucissonner.

**invite6f9dc52a** · 21/05/2011, 03h32

OTL logfile created on: 5/21/2011 4:12:42 AM - Run
OTLPE by OldTimer - Version 3.1.46.0 Folder = X:\Programs\OTLPE
Windows Vista (TM) Home Premium Service Pack 2 (Version = 6.0.6002) - Type = System
Internet Explorer (Version = 7.0.6002.18005)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 90.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 98.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 220.29 Gb Total Space | 19.14 Gb Free Space | 8.69% Space Free | Partition Type: NTFS
Drive D: | 7.46 Gb Total Space | 6.44 Gb Free Space | 86.28% Space Free | Partition Type: FAT32
Drive E: | 10.00 Gb Total Space | 5.58 Gb Free Space | 55.85% Space Free | Partition Type: NTFS
Drive X: | 284.12 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet003

========== Win32 Services (SafeList) ==========

SRV - [2011/05/20 17:46:19 | 003,275,864 | ---- | M] () [Auto] -- C:\Program Files\Common Files\Akamai\netsession_win_88 32f4b.dll -- (Akamai)
SRV - [2011/05/20 17:28:49 | 000,033,792 | ---- | M] (Qjdygrk Software) [Auto] -- C:\Windows\TEMP\cuit\setup.exe -- (AMService)
SRV - [2011/05/20 15:33:09 | 000,813,568 | ---- | M] () [Auto] -- C:\Windows\System32\tafwyfiw.d ll -- (monzidjv)
SRV - [2010/06/09 16:32:07 | 000,867,080 | ---- | M] (Acresso Software Inc.) [On_Demand] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService. exe -- (FLEXnet Licensing Service)
SRV - [2010/01/15 08:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2009/11/24 15:25:34 | 004,463,400 | ---- | M] (Wacom Technology, Corp.) [Auto] -- C:\Windows\System32\Wacom_Tabl et.exe -- (TabletServiceWacom)
SRV - [2008/08/13 19:04:44 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2008/05/21 11:28:25 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand] -- C:\Program Files\Citrix\GoToAssist\514\g2 aservice.exe -- (GoToAssist)
SRV - [2008/05/21 11:12:18 | 000,072,704 | ---- | M] (Creative Labs) [Auto] -- C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensi ng.exe -- (Creative Labs Licensing Service)
SRV - [2008/05/07 19:29:38 | 000,122,880 | ---- | M] (CrypKey (Canada) Ltd.) [Auto] -- C:\Windows\System32\Crypserv.e xe -- (Crypkey License)
SRV - [2008/01/19 03:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/11/12 07:07:20 | 000,102,400 | ---- | M] (IDT, Inc.) [Auto] -- C:\Windows\System32\stacsv.exe -- (STacSV)
SRV - [2007/11/12 07:07:16 | 000,073,728 | ---- | M] (Andrea Electronics Corporation) [Auto] -- C:\Windows\System32\AEstSrv.ex e -- (AESTFilters)
SRV - [2007/07/24 06:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto] -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2007/03/21 08:00:04 | 000,355,096 | ---- | M] (Intel Corporation) [Auto] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2007/01/04 06:41:26 | 000,124,976 | ---- | M] (symantec) [On_Demand] -- C:\Program Files\Symantec AntiVirus\SavRoam.exe -- (SavRoam)
SRV - [2007/01/04 06:41:02 | 001,984,048 | ---- | M] (Symantec Corporation) [Auto] -- C:\Program Files\Symantec AntiVirus\Rtvscan.exe -- (Symantec AntiVirus)
SRV - [2007/01/04 06:40:16 | 000,030,768 | ---- | M] (Symantec Corporation) [Auto] -- C:\Program Files\Symantec AntiVirus\DefWatch.exe -- (DefWatch)
SRV - [2006/11/22 11:12:16 | 000,107,624 | ---- | M] (Symantec Corporation) [Auto] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2006/11/22 11:12:16 | 000,107,624 | ---- | M] (Symantec Corporation) [Unavailable] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2006/11/08 06:32:26 | 002,541,248 | ---- | M] (Symantec Corporation) [On_Demand] -- C:\Program Files\Symantec\LiveUpdate\LuCo mServer_3_2.EXE -- (LiveUpdate)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand] -- -- (XDva380)
DRV - File not found [Kernel | On_Demand] -- -- (XDva370)
DRV - File not found [Kernel | On_Demand] -- -- (XDva362)
DRV - File not found [Kernel | On_Demand] -- -- (XDva359)
DRV - File not found [Kernel | On_Demand] -- -- (XDva352)
DRV - File not found [Kernel | On_Demand] -- -- (XDva332)
DRV - File not found [Kernel | On_Demand] -- -- (XDva328)
DRV - File not found [Kernel | On_Demand] -- -- (XDva326)
DRV - File not found [Kernel | On_Demand] -- -- (XDva306)
DRV - File not found [Kernel | On_Demand] -- -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand] -- -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand] -- -- (IpInIp)
DRV - File not found [Kernel | On_Demand] -- -- (EagleNT)
DRV - File not found [Kernel | On_Demand] -- -- (cpuz132)
DRV - [2011/04/18 04:00:00 | 001,393,144 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\ProgramData\Symantec\Defini tions\VirusDefs\20110507.002\n avex15.sys -- (NAVEX15)
DRV - [2011/04/18 04:00:00 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\ProgramData\Symantec\Defini tions\VirusDefs\20110507.002\n aveng.sys -- (NAVENG)
DRV - [2010/08/19 04:00:00 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2009/08/27 18:06:32 | 000,016,168 | ---- | M] (Wacom Technology) [Kernel | On_Demand] -- C:\Windows\System32\drivers\wa cmoumonitor.sys -- (wacmoumonitor)
DRV - [2009/05/20 14:54:06 | 000,013,736 | ---- | M] (Wacom Technology) [Kernel | On_Demand] -- C:\Windows\System32\drivers\wa comvhid.sys -- (wacomvhid)
DRV - [2008/05/28 17:45:01 | 000,109,744 | ---- | M] (Symantec Corporation) [Kernel | Unavailable] -- C:\Windows\System32\drivers\SY MEVENT.SYS -- (SymEvent)
DRV - [2008/05/28 17:26:22 | 000,646,392 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot] -- C:\Windows\System32\drivers\sp td.sys -- (sptd)
DRV - [2008/05/02 05:58:14 | 000,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand] -- C:\Windows\System32\drivers\us bser_lowerflt.sys -- (upperdev)
DRV - [2008/05/02 05:58:12 | 000,017,536 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\Windows\System32\drivers\cc dcmb.sys -- (nmwcd)
DRV - [2008/03/17 12:45:52 | 000,019,584 | ---- | M] () [Kernel | System] -- C:\Windows\system32\ckldrv.sys -- (NetworkX)
DRV - [2008/03/06 03:58:44 | 000,111,616 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\In tcHdmi.sys -- (IntcHdmiAddService) Intel(R)
DRV - [2008/03/04 01:05:34 | 000,007,424 | ---- | M] (EyePower Games Pte. Ltd.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\OE M02Vfx.sys -- (OEM02Vfx)
DRV - [2008/03/04 01:05:18 | 000,235,648 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\OE M02Dev.sys -- (OEM02Dev)
DRV - [2007/11/12 07:07:28 | 000,330,240 | ---- | M] (IDT, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\st wrt.sys -- (STHDA)
DRV - [2007/09/26 02:12:00 | 002,251,776 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\NE Tw4v32.sys -- (NETw4v32) Pilote de carte Intel(R)
DRV - [2007/09/07 02:49:56 | 000,155,136 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\Ap filtr.sys -- (ApfiltrService)
DRV - [2007/09/06 12:35:16 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto] -- C:\Windows\System32\drivers\ri xdptsk.sys -- (rismxdp)
DRV - [2007/09/06 12:35:14 | 000,039,936 | ---- | M] (REDC) [Kernel | Auto] -- C:\Windows\System32\drivers\ri mmptsk.sys -- (rimmptsk)
DRV - [2007/09/06 12:35:12 | 000,042,496 | ---- | M] (REDC) [Kernel | Auto] -- C:\Windows\System32\drivers\ri msptsk.sys -- (rimsptsk)
DRV - [2007/02/16 14:12:36 | 000,011,312 | ---- | M] (Wacom Technology) [Kernel | On_Demand] -- C:\Windows\System32\drivers\wa commousefilter.sys -- (wacommousefilter)
DRV - [2006/11/22 10:17:06 | 000,274,328 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\sr tspl.sys -- (SRTSPL)
DRV - [2006/11/22 10:17:06 | 000,247,144 | ---- | M] (Symantec Corporation) [File_System | System] -- C:\Windows\System32\drivers\sr tsp.sys -- (SRTSP)
DRV - [2006/11/22 10:17:06 | 000,025,448 | ---- | M] (Symantec Corporation) [Kernel | System] -- C:\Windows\System32\drivers\sr tspx.sys -- (SRTSPX)
DRV - [2006/11/02 03:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\at ikmdag.sys -- (R300)
DRV - [2006/11/02 03:30:55 | 000,200,704 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\e1 e6032.sys -- (e1express) Pilote de la connexion réseau Intel(R)
DRV - [2006/10/26 06:01:34 | 000,185,744 | ---- | M] (Symantec Corporation) [Kernel | System] -- C:\Windows\System32\Drivers\SY MTDI.SYS -- (SYMTDI)
DRV - [2006/10/26 06:01:34 | 000,026,384 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\Windows\System32\Drivers\SY MREDRV.SYS -- (SYMREDRV)
DRV - [2006/10/06 08:26:16 | 000,406,672 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2006/08/04 20:39:10 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto] -- C:\Windows\System32\drivers\XA udio.sys -- (XAudio)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

**invite6f9dc52a** · 21/05/2011, 03h36

IE - HKLM\Software\Microsoft\Intern et Explorer\Main,Default_Page_URL = http://www.google.fr/ig/dell?hl=fr&c...fr&ibd=0080521
IE - HKLM\Software\Microsoft\Intern et Explorer\Main,Local Page = %SystemRoot%\system32\blank.ht m
IE - HKLM\Software\Microsoft\Intern et Explorer\Main,Start Page = http://home.sweetim.com
IE - HKLM\Software\Microsoft\Intern et Explorer\Search,SearchAssistan t = http://www.google.com/ie

IE - HKU\.DEFAULT\Software\Microsof t\Windows\CurrentVersion\Inter net Settings: "ProxyEnable" = 0

IE - HKU\Mamounette_ON_C\Software\M icrosoft\Internet Explorer\Main,Default_Search_U RL = http://www.google.com/ie
IE - HKU\Mamounette_ON_C\Software\M icrosoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\Mamounette_ON_C\Software\M icrosoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
IE - HKU\Mamounette_ON_C\Software\M icrosoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\Mamounette_ON_C\Software\M icrosoft\Internet Explorer\Search,Default_Search _URL = http://www.google.com/ie
IE - HKU\Mamounette_ON_C\Software\M icrosoft\Internet Explorer\Search,SearchAssistan t = http://www.google.com/ie
IE - HKU\Mamounette_ON_C\..\URLSear chHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Interne t Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKU\Mamounette_ON_C\Software\M icrosoft\Windows\CurrentVersio n\Internet Settings: "ProxyEnable" = 0
IE - HKU\Mamounette_ON_C\Software\M icrosoft\Windows\CurrentVersio n\Internet Settings: "ProxyOverride" = *.local

IE - HKU\Tétardon_ON_C\Software\Mic rosoft\Internet Explorer\Main,Start Page = http://search.iminent.com/?appId=4bc...6&ref=homepage
IE - HKU\Tétardon_ON_C\Software\Mic rosoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\Tétardon_ON_C\Software\Mic rosoft\Windows\CurrentVersion\ Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defau ltenginename: "SweetIM Search"
FF - prefs.js..browser.search.defau lturl: "http://search.sweetim.com/search.asp?src=2&q="
FF - prefs.js..browser.search.param .yahoo-fr: "moz2-ytff-"
FF - prefs.js..browser.search.param .yahoo-fr-cjkt: "moz2-ytff-"
FF - prefs.js..browser.search.selec tedEngine: "Google"
FF - prefs.js..browser.startup.home page: "http://home.sweetim.com"
FF - prefs.js..extensions.enabledIt ems: en-US@dictionaries.addons.mozilla .org:4.0.0
FF - prefs.js..extensions.enabledIt ems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledIt ems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.1.2009102902 1655
FF - prefs.js..extensions.enabledIt ems: {7b13ec3e-999a-4b70-b9cb-2617b8323822}:2.7.1.3
FF - prefs.js..extensions.enabledIt ems: {EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.10
FF - prefs.js..extensions.enabledIt ems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..keyword.URL: "http://search.sweetim.com/search.asp?src=2&q="
FF - prefs.js..sweetim.toolbar.prev ious.browser.search.defaulteng inename: "Yahoo"
FF - prefs.js..sweetim.toolbar.prev ious.browser.search.defaulturl : "http://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p="
FF - prefs.js..sweetim.toolbar.prev ious.browser.search.selectedEn gine: "Yahoo"
FF - prefs.js..browser.startup.home page: "http://www.yahoo.com/"
FF - prefs.js..sweetim.toolbar.prev ious.keyword.URL: "http://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p="

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/04/30 05:34:08 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/04/30 05:34:08 | 000,000,000 | ---D | M]

[2010/02/18 09:36:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Mamounette\AppData\Ro aming\Mozilla\Extensions
[2011/05/19 03:43:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Mamounette\AppData\Ro aming\Mozilla\Firefox\Profiles \9w46bf1v.default\extensions
[2010/06/30 12:01:49 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Mamounette\AppData\Ro aming\Mozilla\Firefox\Profiles \9w46bf1v.default\extensions\{ 20a82645-c095-46ed-80e3-08825760534b}
[2010/12/20 21:32:01 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Users\Mamounette\AppData\Ro aming\Mozilla\Firefox\Profiles \9w46bf1v.default\extensions\{ 3112ca9c-de6d-4884-a869-9855de68056c}
[2010/06/30 12:01:49 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Mamounette\AppData\Ro aming\Mozilla\Firefox\Profiles \9w46bf1v.default\extensions\{ 635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/12/13 15:59:56 | 000,000,000 | ---D | M] (Zynga Toolbar) -- C:\Users\Mamounette\AppData\Ro aming\Mozilla\Firefox\Profiles \9w46bf1v.default\extensions\{ 7b13ec3e-999a-4b70-b9cb-2617b8323822}
[2011/01/01 12:51:29 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Users\Mamounette\AppData\Ro aming\Mozilla\Firefox\Profiles \9w46bf1v.default\extensions\{ EEE6C361-6118-11DC-9C72-001320C79847}
[2010/02/18 10:37:17 | 000,000,000 | ---D | M] (United States English Dictionary) -- C:\Users\Mamounette\AppData\Ro aming\Mozilla\Firefox\Profiles \9w46bf1v.default\extensions\e n-US@dictionaries.addons.mozilla .org
[2011/01/01 12:51:20 | 000,003,915 | ---- | M] () -- C:\Users\Mamounette\AppData\Ro aming\Mozilla\Firefox\Profiles \9w46bf1v.default\searchplugin s\sweetim.xml
[2011/05/19 03:43:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/06/21 09:39:54 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011/03/31 12:44:41 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/02/02 15:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1. dll
[2011/03/25 12:48:52 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
[2011/03/25 12:48:52 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml
[2011/03/25 12:48:52 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
[2011/03/25 12:48:53 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedi a-fr.xml
[2011/03/25 12:48:53 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml

Hosts file not found
O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\Ac roIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (VMN Toolbar) - {A057A204-BACC-4D26-8287-79A187E26987} - C:\Program Files\vmntoolbar\vmntoolbar.dl l (Visicom Media Inc. )
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNoti fier\5.6.5805.1910\swg.dll (Google Inc.)
O2 - BHO: () - {B715CB04-F0D1-1E19-8CD9-A9D12EBEBE59} - C:\Windows\System32\tafwyfiw.d ll ()
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Interne t Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (VMN Toolbar) - {A057A204-BACC-4D26-8287-79A187E26987} - C:\Program Files\vmntoolbar\vmntoolbar.dl l (Visicom Media Inc. )
O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Interne t Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKU\Mamounette_ON_C\..\Toolbar \WebBrowser: (VMN Toolbar) - {A057A204-BACC-4D26-8287-79A187E26987} - C:\Program Files\vmntoolbar\vmntoolbar.dl l (Visicom Media Inc. )
O3 - HKU\Mamounette_ON_C\..\Toolbar \WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Interne t Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKU\Tétardon_ON_C\..\Toolbar\W ebBrowser: (no name) - {346DE098-61F9-4B42-89DA-6DFBA7091BB6} - No CLSID value found.
O3 - HKU\Tétardon_ON_C\..\Toolbar\W ebBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No CLSID value found.
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [DELL Webcam Manager] C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [dscactivate] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.ex e ( )
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [installer] C:\Program Files\Installer\lnetworker.exe ()
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [OEM02Mon.exe] C:\Windows\OEM02Mon.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [PCMService] C:\Program Files\Dell\MediaDirect\PCMServ ice.exe (CyberLink Corp.)
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetI M.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [UpdReg] C:\Windows\Updreg.EXE (Creative Technology Ltd.)
O4 - HKLM..\Run: [VolPanel] C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [vptray] C:\Program Files\Symantec AntiVirus\VPTray.exe (Symantec Corporation)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\LocalService_ON_C..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.d ll (Microsoft Corporation)
O4 - HKU\Mamounette_ON_C..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.)
O4 - HKU\Mamounette_ON_C..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKU\Mamounette_ON_C..\Run: [EA Core] File not found
O4 - HKU\Mamounette_ON_C..\Run: [ISUSPM Startup] File not found
O4 - HKU\NetworkService_ON_C..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.d ll (Microsoft Corporation)
O4 - HKU\Tétardon_ON_C..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKU\Tétardon_ON_C..\Run: [msnmsgr] File not found
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKU\Mamounette_ON_C..\RunOnce: [FlashPlayerUpdate] C:\Windows\System32\Macromed\F lash\FlashUtil10p_Plugin.exe (Adobe Systems, Inc.)
O4 - HKU\Mamounette_ON_C..\RunOnce: [Iminent.Notifier Install] C:\Users\Mamounette\AppData\Lo cal\Temp\NotifierSetup.exe (Iminent )
O4 - Startup: C:\Users\Mamounette\AppData\Ro aming\Microsoft\Windows\Start Menu\Programs\Startup\Notifica tion de cadeaux MSN.lnk = File not found
O7 - HKU\.DEFAULT\SOFTWARE\Microsof t\Windows\CurrentVersion\polic ies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsof t\Windows\CurrentVersion\polic ies\System: LogonHoursAction = 2
O7 - HKU\.DEFAULT\SOFTWARE\Microsof t\Windows\CurrentVersion\polic ies\System: DontDisplayLogonHoursWarnings = 1
O7 - HKU\Mamounette_ON_C\SOFTWARE\M icrosoft\Windows\CurrentVersio n\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Mamounette_ON_C\SOFTWARE\M icrosoft\Windows\CurrentVersio n\policies\System: LogonHoursAction = 2
O7 - HKU\Mamounette_ON_C\SOFTWARE\M icrosoft\Windows\CurrentVersio n\policies\System: DontDisplayLogonHoursWarnings = 1
O7 - HKU\Tétardon_ON_C\SOFTWARE\Mic rosoft\Windows\CurrentVersion\ policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Tétardon_ON_C\SOFTWARE\Mic rosoft\Windows\CurrentVersion\ policies\System: LogonHoursAction = 2
O7 - HKU\Tétardon_ON_C\SOFTWARE\Mic rosoft\Windows\CurrentVersion\ policies\System: DontDisplayLogonHoursWarnings = 1
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.sc r (Google Inc.)
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolba rDynamic_mui_en_950DF09FAB501E 03.dll (Google Inc.)
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10 - NameSpace_Catalog5\Catalog_Ent ries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)

**invite6f9dc52a** · 21/05/2011, 03h37

O10 - Protocol_Catalog9\Catalog_Entr ies\000000000001 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entr ies\000000000002 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entr ies\000000000003 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entr ies\000000000004 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entr ies\000000000005 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entr ies\000000000006 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entr ies\000000000007 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entr ies\000000000008 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entr ies\000000000020 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/Messen.../GAME_UNO1.cab (UnoCtrl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary...t.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip \Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\G OEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.d ll (Google)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\GoToAssist: DllName - C:\Program Files\Citrix\GoToAssist\514\G2 AWinLogon.dll - C:\Program Files\Citrix\GoToAssist\514\g2 awinlogon.dll (Citrix Online, a division of Citrix Systems, Inc.)
O20 - Winlogon\Notify\memegon: DllName - C:\Windows\system32\config\sys temprofile\AppData\Local\memeg on.dll - C:\Windows\System32\config\sys temprofile\AppData\Local\memeg on.dll ()
O24 - Desktop WallPaper:
O24 - Desktop BackupWallPaper:
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 17:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{64fa6ddf-06cb-11e0-a620-001fe1f13847}\Shell\AutoRun\co mmand - "" = AUTORUN\S-1-6-21-2434476501-1644491937-600003330-1213\autorun.exe
O33 - MountPoints2\{64fa6ddf-06cb-11e0-a620-001fe1f13847}\Shell\open\comma nd - "" = AUTORUN\S-1-6-21-2434476501-1644491937-600003330-1213\autorun.exe
O33 - MountPoints2\{d842aec1-2cfc-11dd-a10d-001fe1f13847}\Shell - "" = AutoRun
O33 - MountPoints2\{d842aec1-2cfc-11dd-a10d-001fe1f13847}\Shell\AutoRun\co mmand - "" = G:\SETUP.EXE
O33 - MountPoints2\{d842aec1-2cfc-11dd-a10d-001fe1f13847}\Shell\configure\ command - "" = G:\SETUP.EXE
O33 - MountPoints2\{d842aec1-2cfc-11dd-a10d-001fe1f13847}\Shell\install\co mmand - "" = G:\SETUP.EXE
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: monzidjv - C:\Windows\System32\tafwyfiw.d ll ()
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

**invite6f9dc52a** · 21/05/2011, 03h38

SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: GoToAssist - C:\Program Files\Citrix\GoToAssist\514\g2 aservice.exe (Citrix Online, a division of Citrix Systems, Inc.)
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet: WudfPf - Driver
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {166B1BCA-3F9C-11CF-8075-444553540000} - Macromedia Shockwave Director 8.5.1
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} -
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0
ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Macromedia Shockwave Director 8.5.1
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32 .exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui. dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} -
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.e xe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.e xe C:\Windows\system32\mscories.d ll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E9190C91-EE1B-2167-7955-525F04B8AA3A} - Browser Customizations
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.e xe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.e xe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.a cm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.d ll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com)

NetSvcs: monzidjv - C:\Windows\System32\tafwyfiw.d ll ()
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

========== Files/Folders - Created Within 30 Days ==========

[2011/05/21 02:49:06 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011/05/19 03:41:09 | 000,000,000 | ---D | C] -- C:\Users\Mamounette\AppData\Ro aming\Malwarebytes
[2011/05/19 03:41:05 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mb amswissarmy.sys
[2011/05/19 03:41:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo ws\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/05/19 03:41:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/05/19 03:41:02 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mb am.sys
[2011/05/19 03:41:01 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/05/11 13:20:21 | 000,000,000 | ---D | C] -- C:\Users\Tétardon\AppData\Roam ing\WTablet
[2011/05/10 12:33:07 | 000,000,000 | ---D | C] -- C:\SupportSoft
[2011/05/10 12:32:26 | 000,000,000 | ---D | C] -- C:\Google
[2011/05/09 15:56:14 | 000,000,000 | ---D | C] -- C:\Users\Mamounette\AppData\Ro aming\6F46CABF37EF6570709F426D A6C12F9C
[2011/04/27 17:08:04 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.d ll
[2011/04/27 17:08:03 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLega cyGDFs.dll
[2011/04/27 17:07:54 | 000,876,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.d ll

========== Files - Modified Within 30 Days ==========

[2011/05/20 19:22:00 | 000,001,056 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateT askMachineUA.job
[2011/05/20 18:57:05 | 000,681,798 | ---- | M] () -- C:\Windows\System32\perfh00C.d at
[2011/05/20 18:57:05 | 000,598,900 | ---- | M] () -- C:\Windows\System32\perfh009.d at
[2011/05/20 18:57:05 | 000,127,504 | ---- | M] () -- C:\Windows\System32\perfc00C.d at
[2011/05/20 18:57:05 | 000,104,914 | ---- | M] () -- C:\Windows\System32\perfc009.d at
[2011/05/20 18:55:36 | 000,001,000 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2011/05/20 18:52:02 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateT askMachineCore.job
[2011/05/20 18:51:48 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/05/20 18:51:48 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/05/20 18:51:30 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/05/20 18:51:08 | 3210,784,768 | -HS- | M] () -- C:\hiberfil.sys
[2011/05/20 16:08:35 | 000,001,356 | ---- | M] () -- C:\Users\Mamounette\AppData\Lo cal\d3d9caps.dat
[2011/05/20 15:58:44 | 000,000,428 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Syn chronization-{36388B55-3405-4901-85A5-E87C4A19AEE0}.job
[2011/05/20 15:33:09 | 000,813,568 | ---- | M] () -- C:\Windows\System32\tafwyfiw.d ll
[2011/05/19 03:41:05 | 000,000,908 | ---- | M] () -- C:\Users\Public\Desktop\Malwar ebytes' Anti-Malware.lnk
[2011/05/19 03:41:05 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windo ws\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/05/17 17:35:20 | 265,699,852 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011/05/16 12:00:04 | 000,004,268 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011/05/15 08:44:38 | 001,037,084 | ---- | M] () -- C:\Users\Mamounette\Desktop\bo okmarks-2011-05-15.json
[2011/05/10 12:26:44 | 002,979,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2011/05/08 18:24:38 | 000,081,920 | ---- | M] () -- C:\Users\Mamounette\AppData\Lo cal\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/04/24 18:23:25 | 000,405,296 | ---- | M] () -- C:\Windows\System32\FNTCACHE.D AT
[2011/04/24 14:08:06 | 000,001,954 | ---- | M] () -- C:\ProgramData\Microsoft\Windo ws\Start Menu\Programs\Corel Painter Sketch Pad.lnk
[2011/04/23 12:42:51 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windo ws\Start Menu\Programs\Microsoft Silverlight

**invite6f9dc52a** · 21/05/2011, 03h39

========== Files Created - No Company Name ==========

[2011/05/20 18:44:20 | 3210,784,768 | -HS- | C] () -- C:\hiberfil.sys
[2011/05/20 15:33:09 | 000,813,568 | ---- | C] () -- C:\Windows\System32\tafwyfiw.d ll
[2011/05/19 03:41:05 | 000,000,908 | ---- | C] () -- C:\Users\Public\Desktop\Malwar ebytes' Anti-Malware.lnk
[2011/05/15 08:44:37 | 001,037,084 | ---- | C] () -- C:\Users\Mamounette\Desktop\bo okmarks-2011-05-15.json
[2011/01/01 10:58:31 | 000,011,264 | ---- | C] () -- C:\Windows\System32\Utils.dll
[2010/09/16 13:36:36 | 000,298,550 | ---- | C] () -- C:\Users\Mamounette\AppData\Lo cal\bxthur_nav.dat
[2010/09/16 13:36:36 | 000,003,851 | ---- | C] () -- C:\Users\Mamounette\AppData\Lo cal\bxthur_navps.dat
[2010/09/16 13:36:36 | 000,003,378 | ---- | C] () -- C:\Users\Mamounette\AppData\Lo cal\bxthur.dat
[2010/08/24 19:48:09 | 000,000,094 | ---- | C] () -- C:\Users\Mamounette\AppData\Lo cal\ekqgv.bat
[2010/08/02 08:37:41 | 000,000,093 | ---- | C] () -- C:\Users\Mamounette\AppData\Lo cal\crgvkfv.bat
[2010/06/30 18:40:20 | 000,316,114 | ---- | C] () -- C:\Users\Mamounette\AppData\Lo cal\vckzyh_nav.dat
[2010/06/06 13:07:24 | 000,000,004 | ---- | C] () -- C:\Windows\vx86036.dat
[2010/06/06 13:06:16 | 000,000,068 | ---- | C] () -- C:\Windows\Crypkey.ini
[2010/06/06 13:05:28 | 000,027,648 | R--- | C] () -- C:\Windows\Setup_ck.exe
[2010/06/06 13:05:28 | 000,019,584 | ---- | C] () -- C:\Windows\System32\Ckldrv.sys
[2010/06/06 13:05:28 | 000,018,432 | ---- | C] () -- C:\Windows\Setup_ck.dll
[2010/06/06 13:05:28 | 000,011,776 | ---- | C] () -- C:\Windows\Ckrfresh.exe
[2010/06/06 13:05:23 | 000,178,176 | ---- | C] () -- C:\Windows\System32\StellarPro file.dll
[2010/05/07 02:29:34 | 000,000,095 | ---- | C] () -- C:\Users\Mamounette\AppData\Lo cal\hrbugy.bat
[2010/02/03 18:18:24 | 000,000,094 | ---- | C] () -- C:\Users\Mamounette\AppData\Lo cal\pbtehhk.bat
[2009/12/21 13:51:08 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009/12/13 14:18:12 | 000,000,952 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2009/12/13 13:27:14 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE
[2009/11/06 17:59:38 | 000,000,952 | -HS- | C] () -- C:\Windows\System32\KGyGaAvL.s ys
[2009/08/31 18:09:05 | 000,001,356 | ---- | C] () -- C:\Users\Mamounette\AppData\Lo cal\d3d9caps.dat
[2009/08/19 12:21:28 | 000,107,612 | ---- | C] () -- C:\Windows\System32\Structured QuerySchema.bin
[2009/08/19 12:21:27 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuth n.dll
[2009/07/01 15:23:25 | 000,006,516 | ---- | C] () -- C:\Users\Mamounette\AppData\Ro aming\wklnhst.dat
[2009/02/23 19:15:29 | 000,021,840 | ---- | C] () -- C:\Windows\System32\SIntfNT.dl l
[2009/02/23 19:15:29 | 000,017,212 | ---- | C] () -- C:\Windows\System32\SIntf32.dl l
[2009/02/23 19:15:29 | 000,012,067 | ---- | C] () -- C:\Windows\System32\SIntf16.dl l
[2009/02/23 19:13:47 | 000,000,861 | ---- | C] () -- C:\Windows\disney.ini
[2009/02/23 18:55:24 | 000,003,875 | ---- | C] () -- C:\Windows\SOUNDMIX.INI
[2009/02/23 18:55:22 | 000,000,644 | ---- | C] () -- C:\Windows\Marty.ini
[2009/02/23 18:54:40 | 000,283,648 | ---- | C] () -- C:\Windows\unin040c.exe
[2008/11/09 08:45:54 | 000,000,000 | ---- | C] () -- C:\Users\Tétardon\AppData\Roam ing\wklnhst.dat
[2008/08/10 15:02:43 | 000,018,904 | ---- | C] () -- C:\Windows\System32\Structured QuerySchemaTrivial.bin
[2008/06/28 18:28:31 | 000,024,064 | ---- | C] () -- C:\Users\Mamounette\AppData\Ro aming\UserTile.png
[2008/06/08 07:47:50 | 000,151,808 | ---- | C] () -- C:\Windows\System32\jnptvyqp.d at
[2008/06/08 07:47:50 | 000,135,936 | ---- | C] () -- C:\Windows\System32\nckbemms.d at
[2008/06/08 07:47:50 | 000,034,560 | ---- | C] () -- C:\Windows\System32\xymeifaq.d at
[2008/05/30 15:38:07 | 000,111,616 | ---- | C] () -- C:\Users\Tétardon\AppData\Loca l\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/05/28 19:13:18 | 000,081,920 | ---- | C] () -- C:\Users\Mamounette\AppData\Lo cal\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/05/21 18:53:25 | 000,004,608 | ---- | C] () -- C:\Windows\System32\HdmiCoin.d ll
[2008/05/21 18:53:24 | 001,953,696 | ---- | C] () -- C:\Windows\System32\igklg400.d ll
[2008/05/21 18:53:24 | 001,533,360 | ---- | C] () -- C:\Windows\System32\igklg450.d ll
[2008/05/21 18:53:24 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v 1409.dll
[2008/05/21 18:53:24 | 000,104,636 | ---- | C] () -- C:\Windows\System32\igmedcompk rn.dll
[2008/05/21 18:53:21 | 000,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.d ll
[2008/05/21 11:16:09 | 000,000,074 | RHS- | C] () -- C:\Windows\CT4CET.bin
[2008/05/21 11:12:55 | 000,000,628 | ---- | C] () -- C:\Windows\System32\PCI_VEN_11 02&DEV_FF05&SUBSYS_00001102.in i
[2008/05/21 11:12:54 | 000,101,376 | ---- | C] () -- C:\Windows\System32\APOMngr.dl l
[2008/05/21 11:12:54 | 000,066,560 | ---- | C] () -- C:\Windows\System32\CmdRtr.dll
[2008/05/21 11:00:47 | 000,004,268 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2007/07/25 11:40:02 | 000,999,424 | ---- | C] () -- C:\Windows\System32\WLIHVUI.dl l
[2007/04/03 05:59:54 | 006,148,096 | ---- | C] () -- C:\Windows\System32\dzcore.dll
[2006/12/05 10:07:16 | 000,032,256 | ---- | C] () -- C:\Windows\System32\dzbryce6.d ll
[2006/12/05 10:00:56 | 000,180,224 | ---- | C] () -- C:\Windows\System32\dzwrapper. dll
[2006/11/20 11:25:16 | 001,343,488 | ---- | C] () -- C:\Windows\System32\daz-qsa.dll
[2006/11/20 11:25:02 | 004,984,832 | ---- | C] () -- C:\Windows\System32\daz-qt-mt.dll
[2006/11/13 04:47:55 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.d at
[2006/11/03 12:25:56 | 000,389,120 | ---- | C] () -- C:\Windows\System32\btwhidcs.d ll
[2006/11/02 11:48:33 | 000,681,798 | ---- | C] () -- C:\Windows\System32\perfh00C.d at
[2006/11/02 11:48:33 | 000,340,236 | ---- | C] () -- C:\Windows\System32\perfi00C.d at
[2006/11/02 11:48:33 | 000,127,504 | ---- | C] () -- C:\Windows\System32\perfc00C.d at
[2006/11/02 11:48:33 | 000,037,390 | ---- | C] () -- C:\Windows\System32\perfd00C.d at
[2006/11/02 08:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 08:47:37 | 000,405,296 | ---- | C] () -- C:\Windows\System32\FNTCACHE.D AT
[2006/11/02 08:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE .dll
[2006/11/02 06:33:01 | 000,598,900 | ---- | C] () -- C:\Windows\System32\perfh009.d at
[2006/11/02 06:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.d at
[2006/11/02 06:33:01 | 000,104,914 | ---- | C] () -- C:\Windows\System32\perfc009.d at
[2006/11/02 06:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.d at
[2006/11/02 06:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.d ll
[2006/11/02 06:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 04:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 04:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 03:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.i ni
[2006/11/02 03:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2001/11/14 07:56:00 | 001,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dl l

========== LOP Check ==========

[2011/05/10 12:41:14 | 000,000,000 | ---D | M] -- C:\Users\Mamounette\AppData\Ro aming\6F46CABF37EF6570709F426D A6C12F9C
[2011/05/01 12:47:08 | 000,000,000 | ---D | M] -- C:\Users\Mamounette\AppData\Ro aming\Audacity
[2008/06/28 18:28:31 | 000,000,000 | ---D | M] -- C:\Users\Mamounette\AppData\Ro aming\PeerNetworking
[2009/07/01 15:23:27 | 000,000,000 | ---D | M] -- C:\Users\Mamounette\AppData\Ro aming\Template
[2009/12/13 11:10:31 | 000,000,000 | ---D | M] -- C:\ProgramData\AppData
[2008/05/28 16:47:12 | 000,000,000 | -HSD | M] -- C:\ProgramData\Application Data
[2008/05/28 16:47:12 | 000,000,000 | -HSD | M] -- C:\ProgramData\Bureau
[2010/06/06 13:07:02 | 000,000,000 | ---D | M] -- C:\ProgramData\CrypKey
[2008/05/28 16:47:12 | 000,000,000 | -HSD | M] -- C:\ProgramData\Documents
[2010/05/31 16:53:56 | 000,000,000 | ---D | M] -- C:\ProgramData\Driver Whiz
[2010/12/09 11:05:59 | 000,000,000 | ---D | M] -- C:\ProgramData\Electronic Arts
[2010/02/07 10:22:08 | 000,000,000 | ---D | M] -- C:\ProgramData\eMule
[2008/05/28 16:47:12 | 000,000,000 | -HSD | M] -- C:\ProgramData\Favoris
[2008/05/28 16:47:12 | 000,000,000 | -HSD | M] -- C:\ProgramData\Menu Démarrer
[2010/02/14 06:57:33 | 000,000,000 | ---D | M] -- C:\ProgramData\Messenger Plus!
[2008/05/28 16:47:12 | 000,000,000 | -HSD | M] -- C:\ProgramData\Modèles
[2008/05/21 11:21:02 | 000,000,000 | ---D | M] -- C:\ProgramData\SupportSoft
[2011/01/01 12:51:07 | 000,000,000 | ---D | M] -- C:\ProgramData\SweetIM
[2010/05/31 16:54:45 | 000,000,000 | ---D | M] -- C:\ProgramData\UAB
[2008/05/21 11:26:49 | 000,000,000 | ---D | M] -- C:\ProgramData\Uninstall
[2009/10/30 08:34:00 | 000,000,000 | ---D | M] -- C:\ProgramData\WindowsSearch
[2010/03/15 17:56:16 | 000,000,000 | ---D | M] -- C:\ProgramData\WinZip
[2010/02/07 12:37:05 | 000,000,000 | ---D | M] -- C:\ProgramData\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/07/01 07:02:12 | 000,000,000 | ---D | M] -- C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2011/05/17 17:52:01 | 000,032,496 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011/05/20 15:58:44 | 000,000,428 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Syn chronization-{36388B55-3405-4901-85A5-E87C4A19AEE0}.job

========== Purity Check ==========

========== Custom Scans ==========

< %systemroot%\system32\drivers\ *.sys /lockedfiles >

Invalid Environment Variable: %APPDATA%\*.

Invalid Environment Variable: %APPDATA%\*.exe

< %SYSTEMDRIVE%\*.exe >

**invite6f9dc52a** · 21/05/2011, 03h41

< MD5 for: AGP440.SYS >
[2008/01/19 03:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37D B0D360 -- C:\Windows\System32\DriverStor e\FileRepository\machine.inf_5 1b95d75\AGP440.sys
[2008/01/19 03:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37D B0D360 -- C:\Windows\System32\DriverStor e\FileRepository\machine.inf_f 750e484\AGP440.sys
[2008/01/19 03:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37D B0D360 -- C:\Windows\winsxs\x86_machine. inf_31bf3856ad364e35_6.0.6001. 18000_none_ba12ed3bbeb0d97a\AG P440.sys
[2008/01/19 03:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37D B0D360 -- C:\Windows\winsxs\x86_machine. inf_31bf3856ad364e35_6.0.6002. 18005_none_bbfe6647bbd2a4c6\AG P440.sys
[2008/05/21 18:36:10 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=8B10CE1C1F9F1D47E4DEB1A547 A00CD4 -- C:\Windows\System32\drivers\AG P440.sys
[2008/05/21 18:36:10 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=8B10CE1C1F9F1D47E4DEB1A547 A00CD4 -- C:\Windows\System32\DriverStor e\FileRepository\machine.inf_8 ed06b47\AGP440.sys
[2008/05/21 18:36:10 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=8B10CE1C1F9F1D47E4DEB1A547 A00CD4 -- C:\Windows\winsxs\x86_machine. inf_31bf3856ad364e35_6.0.6000. 16400_none_b82caac9c18a4e3b\AG P440.sys
[2008/05/21 18:36:10 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=BF34B4A0E0B64440C5389AA6B9 02F4AD -- C:\Windows\winsxs\x86_machine. inf_31bf3856ad364e35_6.0.6000. 20496_none_b85af81edaeb8461\AG P440.sys
[2006/11/02 05:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825C EAD7D8 -- C:\Windows\System32\DriverStor e\FileRepository\machine.inf_9 20a2c1f\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B 880BC4 -- C:\Windows\System32\drivers\at api.sys
[2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B 880BC4 -- C:\Windows\System32\DriverStor e\FileRepository\mshdc.inf_b12 d8e84\atapi.sys
[2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B 880BC4 -- C:\Windows\winsxs\x86_mshdc.in f_31bf3856ad364e35_6.0.6002.18 005_none_df23a1261eab99e8\atap i.sys
[2008/01/19 03:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562D E40ED9 -- C:\Windows\System32\DriverStor e\FileRepository\mshdc.inf_cc1 8792d\atapi.sys
[2008/01/19 03:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562D E40ED9 -- C:\Windows\winsxs\x86_mshdc.in f_31bf3856ad364e35_6.0.6001.18 000_none_dd38281a2189ce9c\atap i.sys
[2008/05/21 18:36:49 | 000,021,688 | ---- | M] (Microsoft Corporation) MD5=3E39E69F31F95D056703212E94 320899 -- C:\Windows\System32\DriverStor e\FileRepository\mshdc.inf_e6b 2949c\atapi.sys
[2008/05/21 18:36:49 | 000,021,688 | ---- | M] (Microsoft Corporation) MD5=3E39E69F31F95D056703212E94 320899 -- C:\Windows\winsxs\x86_mshdc.in f_31bf3856ad364e35_6.0.6000.20 544_none_dbb443eb3d9db847\atap i.sys
[2006/11/02 05:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7E C7300F -- C:\Windows\System32\DriverStor e\FileRepository\mshdc.inf_c6c 2e699\atapi.sys
[2008/05/21 18:36:38 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=5653737BAD8C6C10136451C195 C19881 -- C:\Windows\winsxs\x86_mshdc.in f_31bf3856ad364e35_6.0.6000.20 485_none_db8a029f3dbd443b\atap i.sys
[2008/05/21 18:52:53 | 000,021,688 | ---- | M] (Microsoft Corporation) MD5=61CA2C1E145809813C28752298 CF9843 -- C:\Windows\System32\DriverStor e\FileRepository\mshdc.inf_5da 5d093\atapi.sys
[2008/05/21 18:52:53 | 000,021,688 | ---- | M] (Microsoft Corporation) MD5=61CA2C1E145809813C28752298 CF9843 -- C:\Windows\winsxs\x86_mshdc.in f_31bf3856ad364e35_6.0.6000.20 580_none_db8503133dc1c2af\atap i.sys
[2008/05/21 18:52:53 | 000,021,688 | ---- | M] (Microsoft Corporation) MD5=7EB55F6BEFB392BD312CD0CD52 63305D -- C:\Windows\System32\DriverStor e\FileRepository\mshdc.inf_6c3 af7d3\atapi.sys
[2008/05/21 18:52:53 | 000,021,688 | ---- | M] (Microsoft Corporation) MD5=7EB55F6BEFB392BD312CD0CD52 63305D -- C:\Windows\winsxs\x86_mshdc.in f_31bf3856ad364e35_6.0.6000.16 470_none_db063634249c06f4\atap i.sys
[2008/05/21 18:36:08 | 000,021,688 | ---- | M] (Microsoft Corporation) MD5=9E7E85EC61D1C9C3171CC08427 108863 -- C:\Windows\System32\DriverStor e\FileRepository\mshdc.inf_5a9 555b4\atapi.sys
[2008/05/21 18:36:08 | 000,021,688 | ---- | M] (Microsoft Corporation) MD5=9E7E85EC61D1C9C3171CC08427 108863 -- C:\Windows\winsxs\x86_mshdc.in f_31bf3856ad364e35_6.0.6000.20 509_none_dbe4850d3d78c736\atap i.sys
[2008/05/21 18:36:38 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=A779CA2C76DA4FCB595E692C05 E8E4EB -- C:\Windows\System32\DriverStor e\FileRepository\mshdc.inf_823 39ef2\atapi.sys
[2008/05/21 18:36:38 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=A779CA2C76DA4FCB595E692C05 E8E4EB -- C:\Windows\winsxs\x86_mshdc.in f_31bf3856ad364e35_6.0.6000.16 391_none_daf194c024ab5b06\atap i.sys
[2008/05/21 18:47:35 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C8 7EDF17 -- C:\Windows\System32\DriverStor e\FileRepository\mshdc.inf_7de 13c21\atapi.sys
[2008/05/21 18:47:35 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C8 7EDF17 -- C:\Windows\winsxs\x86_mshdc.in f_31bf3856ad364e35_6.0.6000.16 632_none_db337a442479c42c\atap i.sys
[2008/05/21 18:47:35 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36A FC7C6F -- C:\Windows\System32\DriverStor e\FileRepository\mshdc.inf_64d fd8ea\atapi.sys
[2008/05/21 18:47:35 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36A FC7C6F -- C:\Windows\winsxs\x86_mshdc.in f_31bf3856ad364e35_6.0.6000.20 757_none_dbac78a93da31a8b\atap i.sys

< MD5 for: CDROM.SYS >
[2008/01/19 01:49:51 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1 778B57 -- C:\Windows\System32\DriverStor e\FileRepository\cdrom.inf_a29 e71c6\cdrom.sys
[2008/01/19 01:49:51 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1 778B57 -- C:\Windows\winsxs\x86_cdrom.in f_31bf3856ad364e35_6.0.6001.18 000_none_5fa95be2a3c76a4a\cdro m.sys
[2009/04/11 00:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD72809702427643 0DB314 -- C:\Windows\System32\drivers\cd rom.sys
[2009/04/11 00:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD72809702427643 0DB314 -- C:\Windows\System32\DriverStor e\FileRepository\cdrom.inf_c94 9a5b6\cdrom.sys
[2009/04/11 00:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD72809702427643 0DB314 -- C:\Windows\winsxs\x86_cdrom.in f_31bf3856ad364e35_6.0.6002.18 005_none_6194d4eea0e93596\cdro m.sys
[2006/11/02 04:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5 E4D303 -- C:\Windows\System32\DriverStor e\FileRepository\cdrom.inf_e48 7f727\cdrom.sys

< MD5 for: CNGAUDIT.DLL >
[2006/11/02 05:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D 5FED4D -- C:\Windows\System32\cngaudit.d ll
[2006/11/02 05:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D 5FED4D -- C:\Windows\winsxs\x86_microsof t-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000. 16386_none_e62d292932a96ce6\cn gaudit.dll

< MD5 for: DISK.SYS >
[2009/04/11 02:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8 F1AF6A -- C:\Windows\System32\drivers\di sk.sys
[2009/04/11 02:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8 F1AF6A -- C:\Windows\System32\DriverStor e\FileRepository\disk.inf_5c85 0fad\disk.sys
[2009/04/11 02:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8 F1AF6A -- C:\Windows\winsxs\x86_disk.inf _31bf3856ad364e35_6.0.6002.180 05_none_fbb1faf0714e4ea6\disk. sys
[2008/01/19 03:42:20 | 000,055,352 | ---- | M] (Microsoft Corporation) MD5=64109E623ABD6955C8FB110B59 2E68B7 -- C:\Windows\System32\DriverStor e\FileRepository\disk.inf_9072 2180\disk.sys
[2008/01/19 03:42:20 | 000,055,352 | ---- | M] (Microsoft Corporation) MD5=64109E623ABD6955C8FB110B59 2E68B7 -- C:\Windows\winsxs\x86_disk.inf _31bf3856ad364e35_6.0.6001.180 00_none_f9c681e4742c835a\disk. sys
[2006/11/02 05:49:51 | 000,052,840 | ---- | M] (Microsoft Corporation) MD5=841AF4C4D41D3E3B2F244E976B 0F7963 -- C:\Windows\System32\DriverStor e\FileRepository\disk.inf_e0b0 b355\disk.sys

< MD5 for: EXPLORER.EXE >
[2008/10/29 02:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7A BF06BE -- C:\Windows\winsxs\x86_microsof t-windows-explorer_31bf3856ad364e35_6.0. 6000.16771_none_4f83bb287ccdb7 e3\explorer.exe
[2008/10/29 02:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5B A1089D -- C:\Windows\winsxs\x86_microsof t-windows-explorer_31bf3856ad364e35_6.0. 6001.18164_none_5177ca9879e978 e8\explorer.exe
[2008/10/29 23:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3 BC606E -- C:\Windows\winsxs\x86_microsof t-windows-explorer_31bf3856ad364e35_6.0. 6001.22298_none_51e4f8c7931bd1 e1\explorer.exe
[2008/05/21 18:39:58 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=6D06CD98D954FE87FB2DB81087 93B399 -- C:\Windows\winsxs\x86_microsof t-windows-explorer_31bf3856ad364e35_6.0. 6000.16549_none_4fac29707cae34 7a\explorer.exe
[2011/05/10 12:26:44 | 002,979,840 | ---- | M] (Microsoft Corporation) MD5=6F04D6F095A640B6FB79DA651B B04261 -- C:\Windows\explorer.exe
[2008/05/21 18:39:58 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=BD06F0BF753BC704B653C3A50F 89D362 -- C:\Windows\winsxs\x86_microsof t-windows-explorer_31bf3856ad364e35_6.0. 6000.20668_none_501f261995dcf2 cf\explorer.exe
[2009/04/11 02:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F 2A1253 -- C:\Windows\winsxs\x86_microsof t-windows-explorer_31bf3856ad364e35_6.0. 6002.18005_none_53a0201e76de3a 0b\explorer.exe
[2008/10/27 22:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE 06E5FB -- C:\Windows\winsxs\x86_microsof t-windows-explorer_31bf3856ad364e35_6.0. 6000.20947_none_5033cb5995cd99 0b\explorer.exe
[2006/11/02 05:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5 D7084D -- C:\Windows\winsxs\x86_microsof t-windows-explorer_31bf3856ad364e35_6.0. 6000.16386_none_4f7de5167cd15d eb\explorer.exe
[2008/01/19 03:33:10 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E 174F9F -- C:\Windows\winsxs\x86_microsof t-windows-explorer_31bf3856ad364e35_6.0. 6001.18000_none_51b4a71279bc6e bf\explorer.exe

< MD5 for: IASTOR.SYS >
[2007/09/06 12:43:26 | 000,304,920 | ---- | M] (Intel Corporation) MD5=997E8F5939F2D12CD9F2E6B395 724C16 -- C:\Drivers\storage\R166200\ias tor.sys
[2007/03/21 07:58:56 | 000,304,920 | ---- | M] (Intel Corporation) MD5=997E8F5939F2D12CD9F2E6B395 724C16 -- C:\Program Files\Intel\Intel Matrix Storage Manager\Driver\IaStor.sys
[2007/09/06 12:43:26 | 000,304,920 | ---- | M] (Intel Corporation) MD5=997E8F5939F2D12CD9F2E6B395 724C16 -- C:\Windows\System32\drivers\ia Stor.sys
[2007/09/06 12:43:26 | 000,304,920 | ---- | M] (Intel Corporation) MD5=997E8F5939F2D12CD9F2E6B395 724C16 -- C:\Windows\System32\DriverStor e\FileRepository\iaahci.inf_3a 63e5a6\iaStor.sys
[2007/09/06 12:43:26 | 000,304,920 | ---- | M] (Intel Corporation) MD5=997E8F5939F2D12CD9F2E6B395 724C16 -- C:\Windows\System32\DriverStor e\FileRepository\iastor.inf_5f 6e7be5\iaStor.sys
[2007/03/21 07:59:30 | 000,381,720 | ---- | M] (Intel Corporation) MD5=9D7ED4275702E2FC409F2CC563 245740 -- C:\Program Files\Intel\Intel Matrix Storage Manager\Driver64\IaStor.sys

< MD5 for: IASTORV.SYS >
[2008/01/19 03:42:51 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3 AC3A14 -- C:\Windows\System32\DriverStor e\FileRepository\iastorv.inf_c 9df7691\iaStorV.sys
[2008/01/19 03:42:51 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3 AC3A14 -- C:\Windows\winsxs\x86_iastorv. inf_31bf3856ad364e35_6.0.6001. 18000_none_af11527887c7fa8f\ia StorV.sys
[2006/11/02 05:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101 E6C906 -- C:\Windows\System32\drivers\ia StorV.sys
[2006/11/02 05:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101 E6C906 -- C:\Windows\System32\DriverStor e\FileRepository\iastorv.inf_3 7cdafa4\iaStorV.sys

< MD5 for: NDIS.SYS >
[2009/04/11 02:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D 7BBB42 -- C:\Windows\System32\drivers\nd is.sys
[2009/04/11 02:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D 7BBB42 -- C:\Windows\winsxs\x86_microsof t-windows-ndis_31bf3856ad364e35_6.0.6002 .18005_none_a9b2a4d31930d864\n dis.sys
[2006/11/02 05:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) MD5=227C11E1E7CF6EF8AFB2A238D2 09760C -- C:\Windows\winsxs\x86_microsof t-windows-ndis_31bf3856ad364e35_6.0.6000 .16386_none_a59069cb1f23fc44\n dis.sys
[2008/01/19 03:43:31 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=9BDC71790FA08F0A0B5F10462B 1BD0B1 -- C:\Windows\winsxs\x86_microsof t-windows-ndis_31bf3856ad364e35_6.0.6001 .18000_none_a7c72bc71c0f0d18\n dis.sys
[2008/05/21 11:07:08 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=C8560010A542B5DCA94C62468D C20784 -- C:\Windows\winsxs\x86_microsof t-windows-ndis_31bf3856ad364e35_6.0.6001 .22110_none_a845f8a63534c8d3\n dis.sys
[2008/05/21 11:07:08 | 000,503,352 | ---- | M] (Microsoft Corporation) MD5=E50187F20ED749F57C97836FED E14BD6 -- C:\Windows\winsxs\x86_microsof t-windows-ndis_31bf3856ad364e35_6.0.6000 .20768_none_a631acb4382f8e4f\n dis.sys

< MD5 for: NETLOGON.DLL >

**invite6f9dc52a** · 21/05/2011, 03h43

[2006/11/02 05:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B 3D553B -- C:\Windows\winsxs\x86_microsof t-windows-security-netlogon_31bf3856ad364e35_6.0. 6000.16386_none_fb80f5473b0ed7 83\netlogon.dll
[2009/04/11 02:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54 E37DDE -- C:\Windows\System32\netlogon.d ll
[2009/04/11 02:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54 E37DDE -- C:\Windows\winsxs\x86_microsof t-windows-security-netlogon_31bf3856ad364e35_6.0. 6002.18005_none_ffa3304f351bb3 a3\netlogon.dll
[2008/01/19 03:35:36 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025 D4E37F -- C:\Windows\winsxs\x86_microsof t-windows-security-netlogon_31bf3856ad364e35_6.0. 6001.18000_none_fdb7b74337f9e8 57\netlogon.dll

< MD5 for: NVSTOR.SYS >
[2006/11/02 05:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB 76DFFC -- C:\Windows\System32\drivers\nv stor.sys
[2006/11/02 05:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB 76DFFC -- C:\Windows\System32\DriverStor e\FileRepository\nvraid.inf_73 3654ff\nvstor.sys
[2008/01/19 03:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2 688177 -- C:\Windows\System32\DriverStor e\FileRepository\nvraid.inf_31 c3d71d\nvstor.sys
[2008/01/19 03:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2 688177 -- C:\Windows\winsxs\x86_nvraid.i nf_31bf3856ad364e35_6.0.6001.1 8000_none_39dac327befea467\nvs tor.sys

< MD5 for: RASACD.SYS >
[2008/01/19 01:56:31 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=147D7F9C556D259924351FEB0D E606C3 -- C:\Windows\System32\drivers\ra sacd.sys
[2008/01/19 01:56:31 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=147D7F9C556D259924351FEB0D E606C3 -- C:\Windows\winsxs\x86_microsof t-windows-rasautodial_31bf3856ad364e35_6 .0.6001.18000_none_0fd9feb6655 31f63\rasacd.sys
[2006/11/02 04:58:13 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=BD7B30F55B3649506DD8B3D38F 571D2A -- C:\Windows\winsxs\x86_microsof t-windows-rasautodial_31bf3856ad364e35_6 .0.6000.16386_none_0da33cba686 80e8f\rasacd.sys

< MD5 for: RDPWD.SYS >
[2009/04/11 00:51:27 | 000,180,736 | ---- | M] (Microsoft Corporation) MD5=30BFBDFB7F95559EDE971F9DDB 9A00BA -- C:\Windows\System32\drivers\rd pwd.sys
[2009/04/11 00:51:27 | 000,180,736 | ---- | M] (Microsoft Corporation) MD5=30BFBDFB7F95559EDE971F9DDB 9A00BA -- C:\Windows\winsxs\x86_microsof t-windows-t..dp-winstationdriver_31bf3856ad364 e35_6.0.6002.18005_none_4d6101 53d22453a6\rdpwd.sys
[2006/11/02 05:02:15 | 000,160,256 | ---- | M] (Microsoft Corporation) MD5=8830E790A74A96605FABA74F96 65BB3C -- C:\Windows\winsxs\x86_microsof t-windows-t..dp-winstationdriver_31bf3856ad364 e35_6.0.6000.16386_none_493ec6 4bd8177786\rdpwd.sys
[2008/01/19 02:01:21 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=E1C18F4097A5ABCEC941DC4B2F 99DB7E -- C:\Windows\winsxs\x86_microsof t-windows-t..dp-winstationdriver_31bf3856ad364 e35_6.0.6001.18000_none_4b7588 47d502885a\rdpwd.sys
[2008/05/21 18:36:00 | 000,161,280 | ---- | M] (Microsoft Corporation) MD5=E2AFAC98FC6CA2AD2D09F2DE1B C71AD9 -- C:\Windows\winsxs\x86_microsof t-windows-t..dp-winstationdriver_31bf3856ad364 e35_6.0.6000.20670_none_49cd35 12f1325da3\rdpwd.sys

< MD5 for: SCECLI.DLL >
[2008/01/19 03:36:19 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D5 91E0B9 -- C:\Windows\winsxs\x86_microsof t-windows-s..urationengineclient_31bf385 6ad364e35_6.0.6001.18000_none_ 380de25bd91b6f12\scecli.dll
[2006/11/02 05:46:12 | 000,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A0 8BFF61 -- C:\Windows\winsxs\x86_microsof t-windows-s..urationengineclient_31bf385 6ad364e35_6.0.6000.16386_none_ 35d7205fdc305e3e\scecli.dll
[2009/04/11 02:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044 105EE1 -- C:\Windows\System32\scecli.dll
[2009/04/11 02:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044 105EE1 -- C:\Windows\winsxs\x86_microsof t-windows-s..urationengineclient_31bf385 6ad364e35_6.0.6002.18005_none_ 39f95b67d63d3a5e\scecli.dll

< MD5 for: SFLOPPY.SYS >
[2006/11/02 04:51:40 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=46ED8E91793B2E6F848015445A 0AC188 -- C:\Windows\System32\drivers\sf loppy.sys
[2006/11/02 04:51:40 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=46ED8E91793B2E6F848015445A 0AC188 -- C:\Windows\System32\DriverStor e\FileRepository\flpydisk.inf_ 7a4ca8e4\sfloppy.sys
[2008/01/19 01:49:48 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=C33BFBD6E9E41FCD9FFEF9729E 9FAED6 -- C:\Windows\System32\DriverStor e\FileRepository\flpydisk.inf_ 36da1340\sfloppy.sys
[2008/01/19 01:49:48 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=C33BFBD6E9E41FCD9FFEF9729E 9FAED6 -- C:\Windows\winsxs\x86_flpydisk .inf_31bf3856ad364e35_6.0.6001 .18000_none_e70a102d7a7bbf43\s floppy.sys

< MD5 for: SPTD.SYS >
[2008/05/28 17:26:22 | 000,646,392 | ---- | M] (Duplex Secure Ltd.) MD5=E8B705F9ABE446AAF7A315EF8B 4AEA5A -- C:\Windows\System32\drivers\sp td.sys

< MD5 for: TCPIP.SYS >
[2008/04/26 04:08:16 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=01EC1E92595F839BEE70D439C4 6796E3 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6001.22167_none_b36dd19b7fae39 c7\tcpip.sys
[2008/05/21 18:37:39 | 000,802,816 | ---- | M] (Microsoft Corporation) MD5=028061C7F6D2D03068C72E2A27 E4228A -- C:\Windows\winsxs\x86_microsof t-windows-tcpip_31bf3856ad364e35_6.0.600 0.16567_none_5f6577ce925d75a7\ tcpip.sys
[2009/04/11 02:33:02 | 000,897,000 | ---- | M] (Microsoft Corporation) MD5=0E6B0885C3D5E4643ED2D043DE 3433D8 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6002.18005_none_b5098b5e63880c 42\tcpip.sys
[2008/05/21 18:36:00 | 000,803,840 | ---- | M] (Microsoft Corporation) MD5=1915A0B89583583A87563750A5 43D221 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip_31bf3856ad364e35_6.0.600 0.20597_none_5fcea2efab936c1d\ tcpip.sys
[2009/12/08 16:52:30 | 000,897,624 | ---- | M] (Microsoft Corporation) MD5=1ACBB7A47E78F4CC82D2EFFB72 901528 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6001.18377_none_b2d96a966698ad 63\tcpip.sys
[2009/08/15 17:30:53 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=2512B4D1353370D6688B1AF1F5 AFA1CF -- C:\Windows\winsxs\x86_microsof t-windows-tcpip_31bf3856ad364e35_6.0.600 0.21108_none_6030d425ab49af00\ tcpip.sys
[2009/08/14 13:01:55 | 000,900,168 | ---- | M] (Microsoft Corporation) MD5=2608E71AAD54564647D4BB984E 1925AA -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6001.22497_none_b34d67897fc685 0f\tcpip.sys
[2010/02/18 07:51:51 | 000,818,688 | ---- | M] (Microsoft Corporation) MD5=2C1F7005AA3B62721BFDB307BD 5F5010 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip_31bf3856ad364e35_6.0.600 0.21226_none_6019359fab5bb15b\ tcpip.sys
[2010/02/18 10:49:38 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=2EAE4500984C2F8DACFB977060 300A15 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6001.18427_none_b30f7c1866701e d5\tcpip.sys
[2009/08/14 10:24:47 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=300208927321066EA53761FDC9 8747C6 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip_31bf3856ad364e35_6.0.600 0.16908_none_5fa75f38922bdbf4\ tcpip.sys
[2008/05/21 18:37:39 | 000,804,352 | ---- | M] (Microsoft Corporation) MD5=43EAE40B50FE3E60D194DD9C97 EBB1FD -- C:\Windows\winsxs\x86_microsof t-windows-tcpip_31bf3856ad364e35_6.0.600 0.20689_none_5fdb7555ab898001\ tcpip.sys
[2009/12/08 16:15:00 | 000,907,832 | ---- | M] (Microsoft Corporation) MD5=46E6685F3E92AEC743773ADD4C D54F57 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6002.22283_none_b53aaa1b7ce856 0d\tcpip.sys
[2010/02/18 10:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F9 0D84CA -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6002.18209_none_b50d905263846b ec\tcpip.sys
[2010/02/18 08:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) MD5=4A82FA8F0DF67AA354580C3FAA F8BDE3 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip_31bf3856ad364e35_6.0.600 0.17021_none_5f8a957c924295b7\ tcpip.sys
[2008/05/21 18:47:12 | 000,806,400 | ---- | M] (Microsoft Corporation) MD5=52A8BD6294F7D1443C6184C67A E13AF4 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip_31bf3856ad364e35_6.0.600 0.20752_none_5ff4e4f9ab7777f4\ tcpip.sys
[2009/12/08 16:37:09 | 000,900,696 | ---- | M] (Microsoft Corporation) MD5=5653230D480A9C54D169E1B080 B72CF5 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6001.22577_none_b36309477fb64a 54\tcpip.sys
[2008/05/21 18:47:12 | 000,803,328 | ---- | M] (Microsoft Corporation) MD5=5DF77458AA92FDB36FCE79C60F 74AB5D -- C:\Windows\winsxs\x86_microsof t-windows-tcpip_31bf3856ad364e35_6.0.600 0.16627_none_5f90b964923d030a\ tcpip.sys
[2010/06/16 11:55:58 | 000,902,032 | ---- | M] (Microsoft Corporation) MD5=6216A954ED7045B62880A92D6C 9B9FC7 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6001.22713_none_b39feb737f8937 a0\tcpip.sys
[2009/08/14 12:27:34 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=65877AA1B6A7CB797488E83169 8973E9 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6002.18091_none_b4a43aea63d4a2 5f\tcpip.sys
[2010/06/16 12:39:32 | 000,912,776 | ---- | M] (Microsoft Corporation) MD5=6A10AFCE0B38371064BE41C1FB FD3C6B -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6002.22425_none_b57d8e037cb5db 63\tcpip.sys
[2010/06/16 11:59:54 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=782568AB6A43160A159B6215B7 0BCCE9 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6001.18493_none_b2bfcb7c66ac7d 10\tcpip.sys
[2008/04/26 04:26:49 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=82E266BEE5F0167E41C6ECFDD2 A79C02 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6001.18063_none_b2e033a8669434 a1\tcpip.sys
[2009/12/08 13:58:13 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=8734BD051FFDCBF8425CF22214 1C3741 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip_31bf3856ad364e35_6.0.600 0.16973_none_5f56ae52926920d8\ tcpip.sys
[2009/08/14 13:07:56 | 000,897,608 | ---- | M] (Microsoft Corporation) MD5=8A7AD2A214233F684242F289ED 83EBC3 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6001.18311_none_b3144862666d6d b3\tcpip.sys
[2010/02/18 13:36:50 | 000,902,024 | ---- | M] (Microsoft Corporation) MD5=93A5655CD9CD2F080EF1CB71A3 666215 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6001.22636_none_b38d4a937f96be 60\tcpip.sys
[2010/06/16 12:04:57 | 000,905,088 | ---- | M] (Microsoft Corporation) MD5=A474879AFA4A596B3A531F3E69 730DBF -- C:\Windows\System32\drivers\tc pip.sys
[2010/06/16 12:04:57 | 000,905,088 | ---- | M] (Microsoft Corporation) MD5=A474879AFA4A596B3A531F3E69 730DBF -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6002.18272_none_b4baded863c37e 22\tcpip.sys
[2009/12/08 13:45:32 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=CA3A5756672013A66BB9D547A5 A62DCA -- C:\Windows\winsxs\x86_microsof t-windows-tcpip_31bf3856ad364e35_6.0.600 0.21175_none_5fe223d3ab852692\ tcpip.sys
[2006/11/02 04:58:38 | 000,802,816 | ---- | M] (Microsoft Corporation) MD5=D944522B048A5FEB7700B5170D 3D9423 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip_31bf3856ad364e35_6.0.600 0.16386_none_5f4ed3e0926e99e4\ tcpip.sys
[2010/02/18 10:22:11 | 000,910,216 | ---- | M] (Microsoft Corporation) MD5=D9F5DD5BBC8348E8F8220CCBF1 4C022E -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6002.22341_none_b563eb1d7cc9b0 c2\tcpip.sys
[2009/12/08 16:01:08 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=DA467E7619AE5F4588E6262C13 C8940A -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6002.18160_none_b4c3ac4a63bd32 5c\tcpip.sys
[2008/01/19 03:43:39 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=FC6E2835D667774D409C7C7021 EAF9C4 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6001.18000_none_b31e1252666640 f6\tcpip.sys
[2009/08/14 12:33:50 | 000,905,784 | ---- | M] (Microsoft Corporation) MD5=FF71856BD4CD6D4367F9FD84BE 79A874 -- C:\Windows\winsxs\x86_microsof t-windows-tcpip-binaries_31bf3856ad364e35_6.0. 6002.22200_none_b58e289d7caa2a 80\tcpip.sys

Ecran noir

Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Re : Ecran noir

Discussions similaires

[Brun] Ecran TFT Bélinéa écran noir (resolu)

[Brun] Ecran Benq - Problème d'alimentation? - ecran noir

[Blanc] Ecran plasma Grandin LG PDP42X2 ECRAN NOIR

[Brun] Réparation Ecran 17" ecran noir

Réparation Ecran 17" ecran noir