[Résolu] infection search web.net

Bonsoir
j'ai suivi les tuto pour supprimez search web.net infecté via chat land et a la fin de la procédure la page est toujours présente
que dois je faire?
Merci

Décidement il frappe fort celui la :s

je pense que l'on va te dire de lire ca : http://www.bibou0007.com/t2887-procedure-a-suivre-avant-de-poster Wink

et de patienter...

ok je l'ai vu avant je doit sans doute poster les rapports
merci Nicolaseo de ta réponse

oui il faut leurs faire gagner du temps comme ont peu Wink

Ils le mérite !
Bon courage Wink

Bonsoir

En fait, je préférerai avoir le rapport OTL qui est enregistré sur le bureau siouplé Very Happy

Merci Nicolaseo

__________________________________________________________________________________________________________________
Profitez d'offres promotionnelles et suivez Bibou0007.com sur Facebook -------->

*
*

oui ,merci,
je fait les analyses et je post

le rapport otl seul suffit? GrosBébé

Ce ne sera que le début Smile

Ensuite :

Relance OTL
Coche Recherche Lop et Recherche Purity
Sous Personnalisation (en bas), copie/colle ceci

msconfig
%SYSTEMDRIVE%\*.*
%PROGRAMFILES%\*.*
%PROGRAMFILES%\*.
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
CREATERESTOREPOINT
Clique sur le bouton Analyse en haut à gauche puis patiente quelques instants.

Communique moi le rapport s'il te plait.

Je me déconnecte, bonne soirée Smile

__________________________________________________________________________________________________________________
Profitez d'offres promotionnelles et suivez Bibou0007.com sur Facebook -------->

*
*

OTL logfile created on: 09/05/2011 21:59:08 - Run 2
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\MONG\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 64,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 80,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 458,17 Gb Total Space | 113,10 Gb Free Space | 24,69% Space Free | Partition Type: NTFS

Computer Name: MONG-PC | User Name: MONG | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/05/09 21:42:24 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\MONG\Desktop\OTL.exe
PRC - [2011/05/01 13:52:34 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/03/07 21:22:30 | 000,043,936 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe
PRC - [2011/03/07 21:22:26 | 002,050,864 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe
PRC - [2011/03/07 21:22:20 | 001,442,152 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe
PRC - [2011/02/26 07:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/12/20 18:08:58 | 000,363,344 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2010/12/20 18:08:56 | 000,443,728 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2009/07/14 03:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe

========== Modules (SafeList) ==========

MOD - [2011/05/09 21:42:24 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\MONG\Desktop\OTL.exe
MOD - [2011/04/07 18:17:14 | 000,276,992 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00087_006\plugin_nt.m32
MOD - [2011/04/01 17:13:31 | 000,657,408 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00087_006\plugin_fragments.m32
MOD - [2011/04/01 17:13:31 | 000,166,912 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00087_006\plugin_extra.m32
MOD - [2011/04/01 17:13:31 | 000,136,704 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00087_006\plugin_base.m32
MOD - [2011/04/01 17:13:31 | 000,089,600 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00087_006\plugin_net.m32
MOD - [2011/04/01 17:13:30 | 000,232,968 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00087_006\midas32.dll
MOD - [2011/04/01 17:13:30 | 000,120,832 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00087_006\plugin_registry.m32
MOD - [2010/08/21 07:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll

========== Win32 Services (SafeList) ==========

SRV - [2011/05/08 21:00:58 | 000,403,240 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011/03/07 21:22:30 | 000,043,936 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe -- (Updatesrv)
SRV - [2011/03/07 21:22:26 | 002,050,864 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe -- (VSSERV)
SRV - [2011/03/07 21:22:22 | 000,307,544 | ---- | M] (BitDefender) [On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe -- (Update Server)
SRV - [2010/12/20 18:08:58 | 000,363,344 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2010/03/25 11:25:22 | 030,969,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2009/07/14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2005/11/17 16:18:52 | 001,527,900 | ---- | M] (MAGIX®) [On_Demand | Stopped] -- C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)

========== Driver Services (SafeList) ==========

DRV - [2011/03/18 16:37:39 | 000,103,496 | ---- | M] (BitDefender LLC) [Kernel | On_Demand | Running] -- C:\Program Files\BitDefender\BitDefender 2011\bdselfpr.sys -- (bdselfpr)
DRV - [2011/03/07 21:22:17 | 000,308,152 | ---- | M] (BitDefender S.R.L.) [File_System | Auto | Running] -- C:\Windows\System32\drivers\trufos.sys -- (Trufos)
DRV - [2010/12/20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2010/11/27 15:59:56 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010/08/20 18:41:54 | 000,088,144 | ---- | M] (BitDefender) [Kernel | System | Running] -- C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys -- (bdfwfpf)
DRV - [2010/07/09 15:08:14 | 000,327,368 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\bdfsfltr.sys -- (bdfsfltr)
DRV - [2010/06/28 12:55:42 | 000,970,320 | ---- | M] (BitDefender) [File_System | Disabled | Stopped] -- C:\Windows\System32\drivers\avckf.sys -- (avckf)
DRV - [2010/06/28 12:55:36 | 000,633,424 | ---- | M] (BitDefender) [File_System | Disabled | Stopped] -- C:\Windows\System32\drivers\avc3.sys -- (avc3)
DRV - [2010/05/13 16:52:04 | 000,152,528 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\bdfm.sys -- (BDFM)
DRV - [2010/02/08 02:11:12 | 000,016,688 | ---- | M] (IBM) [Kernel | System | Running] -- C:\Windows\System32\drivers\LUMDriver.sys -- (LUMDriver)
DRV - [2009/07/14 03:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009/07/14 03:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009/07/14 03:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009/07/14 01:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009/07/14 01:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009/07/14 01:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009/07/14 00:02:53 | 000,545,792 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netr73.sys -- (netr73)
DRV - [2009/07/14 00:02:50 | 000,211,456 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Pilote de la connexion réseau Intel(R)
DRV - [2009/06/10 23:19:48 | 009,853,248 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = B9 60 6C 80 22 88 CB 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Amazon.fr"
FF - prefs.js..browser.startup.homepage: "http://www.search-web.net/"
FF - prefs.js..extensions.enabledItems: fastdebrid@gmail.com:2.0
FF - prefs.js..extensions.enabledItems: orbitdownloaderfix@e4zune.com.ar:1.0.1
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.1
FF - prefs.js..extensions.enabledItems: FFToolbar@bitdefender.com:2.0
FF - prefs.js..extensions.enabledItems: smartwebprinting@hp.com:4.51
FF - prefs.js..extensions.enabledItems: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20110323
FF - prefs.js..keyword.URL: "http://search-web.net/results.php?cx=partner-pub-0420647136319153%3A5n6ugpjrdrh&cof=GIMP%3ACCCCCC%3BT%3A000000%3BALC%3A551a8b%3BGFNT%3AB7B7B7%3BLC%3A2200cc%3BBGC%3AFFFFFF%3BVLC%3A551a8b%3BGALT%3A008B45%3BFORID%3A10%3BDIV%3A%23FFFFF0%3B&ie=iso-8859-1&oe=iso-8859-1&sa=Rechercher&lang=en&q="

FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/11/20 11:20:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/11/23 19:14:52 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2011\bdaphffext\ [2011/03/31 15:32:17 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/05/01 13:52:35 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/05/01 13:52:35 | 000,000,000 | ---D | M]

[2010/12/27 14:28:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MONG\AppData\Roaming\mozilla\Extensions
[2011/05/09 18:50:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MONG\AppData\Roaming\mozilla\Firefox\Profiles\4hpbxs5t.default\extensions
[2011/05/09 18:50:08 | 000,000,000 | ---D | M] (WOT) -- C:\Users\MONG\AppData\Roaming\mozilla\Firefox\Profiles\4hpbxs5t.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2011/01/05 15:46:32 | 000,000,000 | ---D | M] (Fast-Debrid - Plugin Premium) -- C:\Users\MONG\AppData\Roaming\mozilla\Firefox\Profiles\4hpbxs5t.default\extensions\fastdebrid@gmail.com
[2011/01/01 17:43:43 | 000,000,000 | ---D | M] (E4ZUNE | ORBIT DOWNLOADER FIX) -- C:\Users\MONG\AppData\Roaming\mozilla\Firefox\Profiles\4hpbxs5t.default\extensions\orbitdownloaderfix@e4zune.com.ar
[2010/12/27 14:24:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
[2011/03/31 15:32:17 | 000,000,000 | ---D | M] ("BitDefender Antiphishing Toolbar") -- C:\PROGRAM FILES\BITDEFENDER\BITDEFENDER 2011\BDAPHFFEXT
[2010/11/23 19:14:52 | 000,000,000 | ---D | M] (HP Smart Web Printing) -- C:\PROGRAM FILES\HP\DIGITAL IMAGING\SMART WEB PRINTING\MOZILLAADDON3
[2010/11/20 11:20:25 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2010/12/03 20:04:57 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2010/12/03 20:04:57 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/12/03 20:04:57 | 000,000,757 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2010/12/03 20:04:57 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2010/12/03 20:04:57 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

O1 HOSTS File: ([2009/06/10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (BitDefender Toolbar) - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll (BitDefender S.R.L.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [BDAgent] C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe (BitDefender S.R.L.)
O4 - HKLM..\Run: [BitDefender Antiphishing Helper] C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe (BitDefender S.R.L.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0
O8 - Extra context menu item: &Download by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: &Grab video by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Down&load all by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/uno1/GAME_UNO1.cab (UnoCtrl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{2c6c2fc0-f41e-11df-b026-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{2c6c2fc0-f41e-11df-b026-806e6f6e6963}\Shell\AutoRun\command - "" = "K:\WD SmartWare.exe" autoplay=true
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

MsConfig - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk - C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe - (Hewlett-Packard Co.)
MsConfig - StartUpReg: DAEMON Tools Lite - hkey= - key= - C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
MsConfig - StartUpReg: Google Update - hkey= - key= - C:\Users\MONG\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
MsConfig - StartUpReg: HP Software Update - hkey= - key= - C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (Hewlett-Packard)
MsConfig - StartUpReg: hpqSRMon - hkey= - key= - C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe (Hewlett-Packard)
MsConfig - StartUpReg: iTunesHelper - hkey= - key= - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
MsConfig - StartUpReg: msnmsgr - hkey= - key= - C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
MsConfig - StartUpReg: QuickTime Task - hkey= - key= - C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
MsConfig - StartUpReg: TkBellExe - hkey= - key= - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
MsConfig - State: "startup" - 2

========== Files/Folders - Created Within 30 Days ==========

[2011/05/09 21:42:24 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\MONG\Desktop\OTL.exe
[2011/05/09 21:36:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
[2011/05/09 21:36:57 | 000,000,000 | ---D | C] -- C:\Program Files\ZHPDiag
[2011/05/09 21:36:42 | 002,459,389 | ---- | C] (Nicolas Coolman ) -- C:\Users\MONG\Desktop\ZHPDiag2.exe
[2011/05/09 21:27:17 | 000,446,464 | ---- | C] (OldTimer Tools) -- C:\Users\MONG\Desktop\TFC.exe
[2011/05/09 19:32:43 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/05/09 19:32:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/05/09 19:32:39 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/05/09 19:32:39 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/05/09 17:53:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011/05/09 17:53:23 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/05/09 10:42:15 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{13887CB0-6B2F-4D00-9657-C55F4837A994}
[2011/05/08 22:41:41 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{42A26948-97BE-4B3C-86F8-348D5DD5576B}
[2011/05/08 10:42:56 | 000,000,000 | ---D | C] -- C:\Users\MONG\Desktop\PAPA
[2011/05/08 10:19:47 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{95DE2882-054B-446A-9678-840E8D4E7F5F}
[2011/05/08 00:26:45 | 000,000,000 | ---D | C] -- C:\Users\MONG\historique_ChatLand
[2011/05/07 23:12:18 | 000,000,000 | ---D | C] -- C:\Users\MONG\Desktop\3D [2002]
[2011/05/07 23:01:52 | 000,000,000 | ---D | C] -- C:\Users\MONG\Desktop\TLC - Fanmail
[2011/05/07 11:07:04 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{D9A26833-3B2C-4F71-BBFD-6035B0CEB787}
[2011/05/06 22:07:37 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{6130D40F-0FFB-45E0-8705-6B48130355BD}
[2011/05/06 20:35:29 | 000,000,000 | ---D | C] -- C:\Users\MONG\Desktop\The Way I See It
[2011/05/05 22:29:37 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{9244F544-8069-49BD-A258-8E059E5FBFFB}
[2011/05/05 18:54:01 | 000,000,000 | ---D | C] -- C:\Users\MONG\Desktop\VA-Fast_Five_OST-2011
[2011/05/05 10:29:12 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{04826188-2775-49B5-B8E9-F7C990E49355}
[2011/05/04 22:13:54 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{4B5710B6-DFA9-4BF5-826F-62B909ED53CF}
[2011/05/04 21:12:07 | 000,000,000 | ---D | C] -- C:\Users\MONG\Desktop\Paris
[2011/05/04 10:13:30 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{D289CCB2-2265-41D1-B031-26B968968BAE}
[2011/05/03 21:50:51 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{7C8C4EE4-6092-42F0-9557-9E29B608172A}
[2011/05/03 09:29:53 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{C6C4B22D-FF65-41A6-95EC-669CEE823C08}
[2011/05/02 20:07:39 | 000,000,000 | ---D | C] -- C:\Users\MONG\Desktop\Nouveau dossier (2)
[2011/05/02 19:15:01 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{5E101A37-2518-4405-B306-CB1356D065C8}
[2011/05/02 10:43:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Badoo
[2011/05/01 23:41:00 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{05670FF7-4785-4372-8289-FDFF110360C9}
[2011/05/01 19:07:07 | 000,000,000 | ---D | C] -- C:\Users\MONG\Desktop\PRISC A
[2011/05/01 11:40:38 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{E280EABB-30AE-45FD-AF83-B76C8F58A968}
[2011/04/30 12:52:37 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{2F54C4BD-8D08-4001-9365-E8B055BCA1D9}
[2011/04/29 17:52:42 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{58AAF53C-B81B-469C-B8AD-396265399258}
[2011/04/28 22:38:40 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{4AFA70BE-C495-4605-B4AA-E3679AD4A12A}
[2011/04/28 16:46:52 | 000,000,000 | --SD | C] -- C:\Users\MONG\Desktop\The Underdog Project - It Doesn't Matter
[2011/04/28 10:38:03 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{5CC896D7-6343-47D1-847D-C69A421AAD97}
[2011/04/27 22:37:28 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{D4C551C9-6E6A-4A44-95C1-8AF35E56F078}
[2011/04/27 10:41:22 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prevhost.exe
[2011/04/27 10:41:17 | 001,686,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\esent.dll
[2011/04/27 10:41:16 | 000,146,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\storport.sys
[2011/04/27 10:41:16 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fsutil.exe
[2011/04/27 10:41:10 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2011/04/27 10:41:09 | 002,614,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2011/04/27 10:37:03 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{FA9020FD-9846-4727-9D9B-4B7B6ED3FD56}
[2011/04/26 18:45:53 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{4F9CF3EA-FCFE-4B3F-9F93-696E26CCA247}
[2011/04/26 17:50:30 | 000,000,000 | ---D | C] -- C:\Users\MONG\Desktop\The Rite
[2011/04/25 23:28:23 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{948E75F8-43F2-4643-A22B-2638428D78DA}
[2011/04/25 11:27:58 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{5F88D4FE-5018-4A17-A4D2-4F48896CEBE3}
[2011/04/24 23:19:47 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{3581D23B-CDE7-442F-B4F7-F429CCB0C694}
[2011/04/24 12:49:38 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Power Tab Software
[2011/04/24 12:49:38 | 000,000,000 | ---D | C] -- C:\Program Files\Power Tab Software
[2011/04/24 11:19:22 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{9CE80916-F5E2-4CBA-BD11-DD662155CAC1}
[2011/04/23 22:24:25 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{92CBC0A7-15A9-44AF-BBC1-7F526A03BD8A}
[2011/04/23 18:33:31 | 000,000,000 | ---D | C] -- C:\Users\MONG\Desktop\YANN
[2011/04/23 10:23:59 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{8C871D46-0D56-4ABA-8D35-5F2599791CA6}
[2011/04/22 21:59:16 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{1989BA65-4EEC-4C03-B21A-9F547C4B2A80}
[2011/04/22 09:14:23 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{CC40A56A-2190-41A9-AA91-7FC99A4ECCFE}
[2011/04/21 13:26:31 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{245E6ABD-8C67-4785-9BA4-25D06CFC97AA}
[2011/04/20 23:47:27 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{CE1DC30C-3092-4AD7-8955-20D4E8194BB1}
[2011/04/20 10:45:11 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{8E251C35-FAE2-4508-B2FD-F4F6D16A82E9}
[2011/04/19 13:28:28 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{63EFE3CF-56B9-4214-89A6-ADAE6A1A89D5}
[2011/04/19 00:47:42 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{3A0B4082-92B1-4D32-B72A-31E72E29D029}
[2011/04/18 12:47:15 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{5D5905CD-D2EB-4035-B7A0-CBDC5FED51C1}
[2011/04/17 23:57:14 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{FA2B60D9-115D-4E62-A96F-99BC8BB102AD}
[2011/04/17 21:32:22 | 000,000,000 | ---D | C] -- C:\Users\MONG\Desktop\Wayne Wonder - No Holding Back (RETAIL)-2003-VOD
[2011/04/17 11:56:39 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{BA7783F0-0901-4F0E-A150-9836474A787B}
[2011/04/16 23:56:04 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{90ED6E35-7036-4A64-8543-3D055E5766EC}
[2011/04/16 22:05:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SopCast
[2011/04/16 22:05:26 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast
[2011/04/16 22:05:26 | 000,000,000 | ---D | C] -- C:\Program Files\SopCast
[2011/04/16 19:52:09 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TimeAdjuster
[2011/04/16 19:52:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster
[2011/04/16 19:52:09 | 000,000,000 | ---D | C] -- C:\Program Files\TimeAdjuster
[2011/04/16 19:13:37 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Roaming\StreamTorrent
[2011/04/16 11:05:53 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{21C0EAF3-A059-4916-8D88-CCEFC01193E9}
[2011/04/15 21:53:32 | 000,000,000 | ---D | C] -- C:\Users\MONG\Desktop\PARIS 042011
[2011/04/15 13:29:12 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{0C8C9D74-C5A0-4AF9-A82E-3E5E7A4D8959}
[2011/04/15 12:37:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\astrojargon.net
[2011/04/15 12:37:54 | 000,000,000 | ---D | C] -- C:\Program Files\astrojargon.net
[2011/04/15 12:36:48 | 001,207,002 | ---- | C] (astrojargon.net) -- C:\Users\MONG\Desktop\setupeosinfo.exe
[2011/04/15 12:19:44 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Roaming\Canon
[2011/04/15 12:17:24 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\CANON_INC
[2011/04/15 12:10:17 | 000,000,000 | ---D | C] -- C:\ProgramData\ZoomBrowser
[2011/04/15 12:09:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
[2011/04/15 12:09:26 | 000,000,000 | ---D | C] -- C:\Program Files\Canon
[2011/04/15 12:08:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Canon
[2011/04/14 13:20:01 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{430B7FCC-4384-4CCF-801B-54EDFDDD3E97}
[2011/04/14 09:36:00 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2011/04/14 09:36:00 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011/04/14 09:35:58 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2011/04/14 09:35:53 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2011/04/14 09:35:53 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2011/04/14 09:35:36 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2011/04/14 09:35:36 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011/04/14 09:35:36 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011/04/14 09:35:36 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2011/04/14 09:35:36 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011/04/14 09:35:36 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011/04/14 09:35:36 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2011/04/14 09:35:36 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011/04/14 09:35:36 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2011/04/14 09:35:36 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2011/04/14 09:35:35 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011/04/14 09:35:19 | 002,331,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011/04/14 09:35:17 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSCOVER.exe
[2011/04/14 09:35:15 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011/04/14 09:35:12 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2011/04/14 09:35:12 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2011/04/13 21:17:10 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{42A5023A-9F7D-414D-87B1-E52C08081C1D}
[2011/04/12 20:24:29 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{35F89C81-03E8-4C6D-89F5-94199D173185}
[2011/04/11 22:53:40 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{080ECEBD-B5E7-46E4-9B92-26C9CD246A48}
[2011/04/11 21:02:19 | 000,000,000 | ---D | C] -- C:\Users\MONG\Desktop\Adele - 21
[2011/04/11 11:26:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Planning Equipe Entreprise
[2011/04/11 10:47:07 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{999A16D7-A144-4095-9A81-97A41F0CDB84}
[2011/04/10 17:31:23 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{037C3215-CF29-43A3-BC47-9BE08C1A8E0A}
[2011/04/10 12:28:35 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\Apps
[2011/04/10 00:38:58 | 000,000,000 | ---D | C] -- C:\Users\MONG\AppData\Local\{96876AE4-BBC1-4D78-BAC9-DE04F308DFC6}
[1 C:\Users\MONG\*.tmp files -> C:\Users\MONG\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/05/09 21:42:24 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\MONG\Desktop\OTL.exe
[2011/05/09 21:41:37 | 000,000,512 | ---- | M] () -- C:\PhysicalDisk0_MBR.bin
[2011/05/09 21:40:01 | 000,001,074 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3131330445-3356535024-454379051-1001UA.job
[2011/05/09 21:38:01 | 000,000,956 | ---- | M] () -- C:\Users\Public\Desktop\MBRCheck.lnk
[2011/05/09 21:38:01 | 000,000,949 | ---- | M] () -- C:\Users\Public\Desktop\ZHPDiag.lnk
[2011/05/09 21:38:01 | 000,000,944 | ---- | M] () -- C:\Users\Public\Desktop\ZHPFix.lnk
[2011/05/09 21:37:16 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/05/09 21:37:16 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/05/09 21:36:43 | 002,459,389 | ---- | M] (Nicolas Coolman ) -- C:\Users\MONG\Desktop\ZHPDiag2.exe
[2011/05/09 21:30:07 | 000,001,048 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/05/09 21:29:53 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/05/09 21:29:49 | 2616,696,832 | -HS- | M] () -- C:\hiberfil.sys
[2011/05/09 21:27:47 | 000,446,464 | ---- | M] (OldTimer Tools) -- C:\Users\MONG\Desktop\TFC.exe
[2011/05/09 21:26:05 | 000,739,397 | ---- | M] () -- C:\Users\MONG\Desktop\OneClick2RP.exe
[2011/05/09 21:03:15 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/05/09 20:43:43 | 000,002,391 | ---- | M] () -- C:\Users\MONG\Desktop\Google chrome.lnk
[2011/05/09 19:32:43 | 000,001,091 | ---- | M] () -- C:\Users\MONG\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2011/05/09 11:40:00 | 000,001,022 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3131330445-3356535024-454379051-1001Core.job
[2011/05/09 00:05:58 | 000,076,369 | ---- | M] () -- C:\Users\MONG\Desktop\broom.gif.png
[2011/05/08 14:39:16 | 000,704,242 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2011/05/08 14:39:16 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/05/08 14:39:16 | 000,130,548 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2011/05/08 14:39:16 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/05/07 13:16:07 | 000,044,521 | ---- | M] () -- C:\Users\MONG\Desktop\martool--107_g--fly--fr--2008-04-14.pdf
[2011/05/07 01:46:33 | 001,381,426 | ---- | M] () -- C:\Users\MONG\Desktop\dsc09421.jpg
[2011/05/07 00:54:55 | 007,381,613 | ---- | M] () -- C:\Users\MONG\Desktop\IMG_0189.JPG
[2011/05/07 00:50:55 | 003,628,177 | ---- | M] () -- C:\Users\MONG\Desktop\IMG_0341.JPG
[2011/05/07 00:46:33 | 005,166,353 | ---- | M] () -- C:\Users\MONG\Desktop\IMG_0372.JPG
[2011/05/06 22:57:27 | 008,052,617 | ---- | M] () -- C:\Users\MONG\Desktop\29 Birdy - Skinny Love.mp3
[2011/05/06 22:47:19 | 004,631,510 | ---- | M] () -- C:\Users\MONG\Desktop\Not - Cheyenne Mize.mp3
[2011/05/06 20:45:03 | 1173,412,831 | ---- | M] () -- C:\Users\MONG\Desktop\1-3-3-8.com_the.vampire.diaries.s02e21.720p.hdtv.x264-ctu.mkv
[2011/05/06 20:44:20 | 000,037,107 | ---- | M] () -- C:\Users\MONG\Desktop\The Vampire Diaries S02E21 hdtv fr.srt
[2011/05/06 13:32:05 | 005,435,908 | ---- | M] () -- C:\Users\MONG\Desktop\IMG_0386.JPG
[2011/05/06 13:32:00 | 005,070,032 | ---- | M] () -- C:\Users\MONG\Desktop\IMG_0380.JPG
[2011/05/06 10:47:47 | 000,570,347 | ---- | M] () -- C:\Users\MONG\Desktop\aaliyah-029.jpg
[2011/05/05 23:10:25 | 196,931,608 | ---- | M] () -- C:\Users\MONG\Desktop\Naruto Shippuden 210 SDWWW.SOFt-6.COM.mp4
[2011/05/05 21:09:16 | 000,058,469 | ---- | M] () -- C:\Users\MONG\Desktop\I Am Number Four (2011).720p.www.subsynchro.com.srt
[2011/05/05 20:23:03 | 4233,207,827 | ---- | M] () -- C:\Users\MONG\Desktop\i.am.number.four.proper.1080p.bluray.x264-blow.mkv
[2011/05/04 20:43:43 | 005,076,796 | ---- | M] () -- C:\Users\MONG\Desktop\Rick Ross feat Styles P - Blowing Money Fast BMF.mp3
[2011/05/04 13:54:12 | 000,302,080 | ---- | M] () -- C:\Users\MONG\Desktop\gmer.exe
[2011/05/04 11:42:17 | 001,525,705 | ---- | M] () -- C:\Users\MONG\Desktop\k1600x1200.png
[2011/05/03 19:13:54 | 002,036,071 | ---- | M] () -- C:\Users\MONG\Desktop\IMG_0300.JPG
[2011/05/02 23:42:24 | 720,785,408 | ---- | M] () -- C:\Users\MONG\Desktop\StreetDancer.avi
[2011/05/01 17:33:56 | 1172,591,520 | ---- | M] () -- C:\Users\MONG\Desktop\The.Vampire.Diaries.S02E20.VOSTFR.720p.HDTV.x264-GKS-wWw.Extreme-Down.Com.mkv
[2011/05/01 13:45:58 | 006,598,549 | ---- | M] () -- C:\Users\MONG\Desktop\cosmic-girl-jamiroquai.mp3
[2011/05/01 13:12:33 | 002,546,202 | ---- | M] () -- C:\Users\MONG\Desktop\Sergio Mendes and Brasil 66 - Mais Que Nada.mp3
[2011/05/01 12:27:44 | 006,379,971 | ---- | M] () -- C:\Users\MONG\Desktop\01 Mas Que Nada ft. Sergio Mendes.mp3
[2011/04/24 19:36:55 | 003,572,382 | ---- | M] () -- C:\Users\MONG\Desktop\The Carpenters - Close To You.mp3
[2011/04/24 16:21:49 | 003,806,648 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/04/21 13:16:10 | 009,755,299 | ---- | M] () -- C:\Users\MONG\Desktop\Adele-Rolling-in-the-Deep-The-Lost-Boys-Remix.mp3
[2011/04/20 23:58:06 | 003,031,029 | ---- | M] () -- C:\Users\MONG\Desktop\114-la_fouine-tu_n'as_aucun_swagg (bonus).mp3
[2011/04/16 22:05:27 | 000,000,949 | ---- | M] () -- C:\Users\MONG\Desktop\SopCast.lnk
[2011/04/16 19:52:10 | 000,001,922 | ---- | M] () -- C:\Users\MONG\Desktop\TimeAdjuster.lnk
[2011/04/16 12:04:30 | 000,055,204 | ---- | M] () -- C:\Users\MONG\Desktop\Grey's Anatomy S07E18 720p-hdtv dim-lyrics fr(2).srt
[2011/04/15 12:36:55 | 001,207,002 | ---- | M] (astrojargon.net) -- C:\Users\MONG\Desktop\setupeosinfo.exe
[2011/04/14 20:31:29 | 003,595,011 | ---- | M] () -- C:\Users\MONG\Desktop\MYMP - Especially For You.mp3
[2011/04/14 19:44:34 | 251,558,522 | ---- | M] () -- C:\Users\MONG\Desktop\The Music Box - Daniel Cloud Campos.mp4
[1 C:\Users\MONG\*.tmp files -> C:\Users\MONG\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/05/09 21:46:51 | 000,302,080 | ---- | C] () -- C:\Users\MONG\Desktop\gmer.exe
[2011/05/09 21:41:37 | 000,000,512 | ---- | C] () -- C:\PhysicalDisk0_MBR.bin
[2011/05/09 21:38:01 | 000,000,956 | ---- | C] () -- C:\Users\Public\Desktop\MBRCheck.lnk
[2011/05/09 21:38:01 | 000,000,949 | ---- | C] () -- C:\Users\Public\Desktop\ZHPDiag.lnk
[2011/05/09 21:38:01 | 000,000,944 | ---- | C] () -- C:\Users\Public\Desktop\ZHPFix.lnk
[2011/05/09 21:26:04 | 000,739,397 | ---- | C] () -- C:\Users\MONG\Desktop\OneClick2RP.exe
[2011/05/09 19:32:43 | 000,001,091 | ---- | C] () -- C:\Users\MONG\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2011/05/09 00:05:57 | 000,076,369 | ---- | C] () -- C:\Users\MONG\Desktop\broom.gif.png
[2011/05/08 00:28:19 | 000,000,114 | ---- | C] () -- C:\Users\MONG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chat-Land site de chat et de rencontre gratuit.URL
[2011/05/07 13:16:07 | 000,044,521 | ---- | C] () -- C:\Users\MONG\Desktop\martool--107_g--fly--fr--2008-04-14.pdf
[2011/05/07 01:46:32 | 001,381,426 | ---- | C] () -- C:\Users\MONG\Desktop\dsc09421.jpg
[2011/05/07 00:54:52 | 007,381,613 | ---- | C] () -- C:\Users\MONG\Desktop\IMG_0189.JPG
[2011/05/07 00:50:52 | 003,628,177 | ---- | C] () -- C:\Users\MONG\Desktop\IMG_0341.JPG
[2011/05/07 00:46:29 | 005,166,353 | ---- | C] () -- C:\Users\MONG\Desktop\IMG_0372.JPG
[2011/05/06 22:57:05 | 008,052,617 | ---- | C] () -- C:\Users\MONG\Desktop\29 Birdy - Skinny Love.mp3
[2011/05/06 22:47:05 | 004,631,510 | ---- | C] () -- C:\Users\MONG\Desktop\Not - Cheyenne Mize.mp3
[2011/05/06 20:44:19 | 000,037,107 | ---- | C] () -- C:\Users\MONG\Desktop\The Vampire Diaries S02E21 hdtv fr.srt
[2011/05/06 20:39:01 | 1173,412,831 | ---- | C] () -- C:\Users\MONG\Desktop\1-3-3-8.com_the.vampire.diaries.s02e21.720p.hdtv.x264-ctu.mkv
[2011/05/06 13:32:02 | 005,435,908 | ---- | C] () -- C:\Users\MONG\Desktop\IMG_0386.JPG
[2011/05/06 13:31:58 | 005,070,032 | ---- | C] () -- C:\Users\MONG\Desktop\IMG_0380.JPG
[2011/05/06 11:42:03 | 000,058,469 | ---- | C] () -- C:\Users\MONG\Desktop\I Am Number Four (2011).720p.www.subsynchro.com.srt
[2011/05/06 11:31:21 | 4233,207,827 | ---- | C] () -- C:\Users\MONG\Desktop\i.am.number.four.proper.1080p.bluray.x264-blow.mkv
[2011/05/06 10:47:45 | 000,570,347 | ---- | C] () -- C:\Users\MONG\Desktop\aaliyah-029.jpg
[2011/05/05 23:09:08 | 196,931,608 | ---- | C] () -- C:\Users\MONG\Desktop\Naruto Shippuden 210 SDWWW.SOFt-6.COM.mp4
[2011/05/04 20:43:35 | 005,076,796 | ---- | C] () -- C:\Users\MONG\Desktop\Rick Ross feat Styles P - Blowing Money Fast BMF.mp3
[2011/05/04 11:42:16 | 001,525,705 | ---- | C] () -- C:\Users\MONG\Desktop\k1600x1200.png
[2011/05/03 19:13:51 | 002,036,071 | ---- | C] () -- C:\Users\MONG\Desktop\IMG_0300.JPG
[2011/05/02 23:35:20 | 720,785,408 | ---- | C] () -- C:\Users\MONG\Desktop\StreetDancer.avi
[2011/05/01 17:26:17 | 1172,591,520 | ---- | C] () -- C:\Users\MONG\Desktop\The.Vampire.Diaries.S02E20.VOSTFR.720p.HDTV.x264-GKS-wWw.Extreme-Down.Com.mkv
[2011/05/01 13:45:43 | 006,598,549 | ---- | C] () -- C:\Users\MONG\Desktop\cosmic-girl-jamiroquai.mp3
[2011/05/01 13:12:26 | 002,546,202 | ---- | C] () -- C:\Users\MONG\Desktop\Sergio Mendes and Brasil 66 - Mais Que Nada.mp3
[2011/05/01 12:27:30 | 006,379,971 | ---- | C] () -- C:\Users\MONG\Desktop\01 Mas Que Nada ft. Sergio Mendes.mp3
[2011/04/24 19:36:38 | 003,572,382 | ---- | C] () -- C:\Users\MONG\Desktop\The Carpenters - Close To You.mp3
[2011/04/21 13:15:31 | 009,755,299 | ---- | C] () -- C:\Users\MONG\Desktop\Adele-Rolling-in-the-Deep-The-Lost-Boys-Remix.mp3
[2011/04/20 23:57:11 | 003,031,029 | ---- | C] () -- C:\Users\MONG\Desktop\114-la_fouine-tu_n'as_aucun_swagg (bonus).mp3
[2011/04/16 22:05:27 | 000,000,949 | ---- | C] () -- C:\Users\MONG\Desktop\SopCast.lnk
[2011/04/16 19:52:10 | 000,001,922 | ---- | C] () -- C:\Users\MONG\Desktop\TimeAdjuster.lnk
[2011/04/16 12:04:29 | 000,055,204 | ---- | C] () -- C:\Users\MONG\Desktop\Grey's Anatomy S07E18 720p-hdtv dim-lyrics fr(2).srt
[2011/04/14 20:31:14 | 003,595,011 | ---- | C] () -- C:\Users\MONG\Desktop\MYMP - Especially For You.mp3
[2011/04/14 19:29:50 | 251,558,522 | ---- | C] () -- C:\Users\MONG\Desktop\The Music Box - Daniel Cloud Campos.mp4
[2011/03/21 22:13:29 | 000,120,200 | ---- | C] () -- C:\Windows\System32\DLLDEV32i.dll
[2011/03/21 22:13:15 | 000,006,360 | ---- | C] () -- C:\Windows\mgxoschk.ini
[2011/02/16 23:39:17 | 000,010,586 | ---- | C] () -- C:\Users\MONG\AppData\Local\Temp14.html
[2011/02/16 23:38:23 | 000,001,667 | ---- | C] () -- C:\Users\MONG\AppData\Local\Temp1.html
[2010/12/30 00:38:09 | 000,000,000 | ---- | C] () -- C:\Windows\System32\imblacklist.dat
[2010/12/29 23:34:47 | 000,155,415 | ---- | C] () -- C:\ProgramData\bdinstall.bin
[2010/11/24 22:26:24 | 000,025,600 | ---- | C] () -- C:\Users\MONG\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/11/24 22:26:10 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2010/11/23 19:10:29 | 000,181,412 | ---- | C] () -- C:\Windows\hpoins13.dat
[2010/11/23 19:10:29 | 000,000,457 | ---- | C] () -- C:\Windows\hpomdl13.dat
[2010/08/05 19:06:28 | 000,679,936 | ---- | C] () -- C:\Windows\System32\pavedius6db.dat
[2010/07/08 10:37:14 | 000,101,544 | ---- | C] () -- C:\Program Files\Common Files\LinkInstaller.exe
[2009/07/19 15:13:20 | 000,704,242 | ---- | C] () -- C:\Windows\System32\perfh00C.dat
[2009/07/19 15:13:20 | 000,344,522 | ---- | C] () -- C:\Windows\System32\perfi00C.dat
[2009/07/19 15:13:20 | 000,130,548 | ---- | C] () -- C:\Windows\System32\perfc00C.dat
[2009/07/19 15:13:20 | 000,038,160 | ---- | C] () -- C:\Windows\System32\perfd00C.dat
[2009/07/14 06:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 06:33:53 | 003,806,648 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/14 04:05:48 | 000,615,810 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 04:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/14 04:05:48 | 000,106,190 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 04:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/14 04:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/14 04:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/14 02:55:09 | 001,332,736 | ---- | C] () -- C:\Windows\System32\hpotiop1.dll
[2009/07/14 02:19:49 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2009/07/14 01:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2007/01/31 14:50:32 | 000,913,408 | ---- | C] () -- C:\Windows\System32\xreglib.dll

========== LOP Check ==========

[2011/01/20 17:05:43 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\AD3CA89C64D65D9B35498E35FA69A7EC
[2010/12/30 00:35:39 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\BitDefender
[2011/04/15 12:19:44 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\Canon
[2010/12/17 23:03:54 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\DAEMON Tools Lite
[2010/12/17 21:44:59 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\DassaultSystemes
[2011/01/09 18:37:54 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\DMCache
[2010/11/20 20:54:02 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\GrabPro
[2011/03/01 15:26:54 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\HDRsoft
[2010/12/18 20:03:17 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\ImgBurn
[2011/03/21 22:18:06 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\MAGIX
[2011/05/09 18:01:39 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\Orbit
[2010/11/20 20:55:11 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\ProgSense
[2010/12/29 23:35:42 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\QuickScan
[2011/04/16 19:13:37 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\StreamTorrent
[2010/11/21 17:49:50 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\Xilisoft Corporation
[2011/04/14 09:25:09 | 000,032,606 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.* >
[2009/06/10 23:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2011/05/09 21:28:57 | 000,169,505 | ---- | M] () -- C:\bdlog.txt
[2009/07/14 03:38:58 | 000,383,562 | RHS- | M] () -- C:\bootmgr
[2010/11/20 05:58:45 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2009/06/10 23:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
[2011/05/09 21:29:49 | 2616,696,832 | -HS- | M] () -- C:\hiberfil.sys
[2010/04/13 18:46:30 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010/11/21 17:48:08 | 000,004,068 | ---- | M] () -- C:\MP4debug.log
[2010/04/13 18:46:30 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011/05/09 21:29:51 | 3488,931,840 | -HS- | M] () -- C:\pagefile.sys
[2011/05/09 21:41:37 | 000,000,512 | ---- | M] () -- C:\PhysicalDisk0_MBR.bin
[2010/11/19 22:46:08 | 000,411,605 | RHS- | M] () -- C:\PLSYX
[2010/11/19 22:46:08 | 000,000,020 | RHS- | M] () -- C:\win7.ld

< %PROGRAMFILES%\*.* >
[2009/07/14 06:41:57 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini

< %PROGRAMFILES%\*. >
[2010/12/15 20:53:09 | 000,000,000 | ---D | M] -- C:\Program Files\7-Zip
[2011/03/26 20:15:47 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2010/11/19 23:21:00 | 000,000,000 | ---D | M] -- C:\Program Files\Apple Software Update
[2011/04/15 12:37:54 | 000,000,000 | ---D | M] -- C:\Program Files\astrojargon.net
[2011/03/10 20:48:45 | 000,000,000 | ---D | M] -- C:\Program Files\AviSynth 2.5
[2010/12/30 01:24:43 | 000,000,000 | ---D | M] -- C:\Program Files\BitDefender
[2010/11/19 23:20:28 | 000,000,000 | ---D | M] -- C:\Program Files\Bonjour
[2011/04/15 12:10:50 | 000,000,000 | ---D | M] -- C:\Program Files\Canon
[2011/05/09 17:53:25 | 000,000,000 | ---D | M] -- C:\Program Files\CCleaner
[2011/03/26 18:13:29 | 000,000,000 | ---D | M] -- C:\Program Files\CodecOption
[2011/04/15 12:08:33 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2010/11/27 16:00:08 | 000,000,000 | ---D | M] -- C:\Program Files\DAEMON Tools Lite
[2011/02/05 14:17:44 | 000,000,000 | ---D | M] -- C:\Program Files\Dassault Systemes
[2011/01/20 00:47:35 | 000,000,000 | ---D | M] -- C:\Program Files\DivX
[2009/07/19 15:19:17 | 000,000,000 | ---D | M] -- C:\Program Files\DVD Maker
[2011/01/25 22:04:56 | 000,000,000 | ---D | M] -- C:\Program Files\Elcomsoft
[2011/01/25 22:04:56 | 000,000,000 | ---D | M] -- C:\Program Files\Elcomsoft Password Recovery
[2010/11/19 21:30:31 | 000,000,000 | -HSD | M] -- C:\Program Files\Fichiers communs
[2011/01/21 19:50:47 | 000,000,000 | ---D | M] -- C:\Program Files\FileOpen
[2011/01/01 16:55:30 | 000,000,000 | ---D | M] -- C:\Program Files\Google
[2011/03/26 18:13:44 | 000,000,000 | ---D | M] -- C:\Program Files\Grass Valley
[2011/02/17 15:28:14 | 000,000,000 | ---D | M] -- C:\Program Files\Guitar Pro 5
[2010/11/23 19:14:36 | 000,000,000 | ---D | M] -- C:\Program Files\HP
[2010/12/18 19:20:13 | 000,000,000 | ---D | M] -- C:\Program Files\ImgBurn
[2011/04/15 08:39:29 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2010/11/19 23:26:30 | 000,000,000 | ---D | M] -- C:\Program Files\iPod
[2010/11/19 23:26:56 | 000,000,000 | ---D | M] -- C:\Program Files\iTunes
[2010/11/20 11:51:04 | 000,000,000 | ---D | M] -- C:\Program Files\Java
[2011/03/21 22:43:57 | 000,000,000 | ---D | M] -- C:\Program Files\MAGIX
[2011/05/09 19:32:44 | 000,000,000 | ---D | M] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/12/10 23:13:11 | 000,000,000 | ---D | M] -- C:\Program Files\Media Player Classic
[2010/12/12 20:47:01 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft
[2010/11/27 16:11:33 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Analysis Services
[2009/07/14 09:50:24 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Games
[2010/12/17 21:45:47 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2011/04/22 09:13:02 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Silverlight
[2011/03/21 23:00:27 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2010/11/27 16:13:51 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Sync Framework
[2010/11/27 16:14:25 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Synchronization Services
[2010/11/27 16:12:52 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Visual Studio 8
[2010/11/27 16:13:51 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2011/03/21 21:29:31 | 000,000,000 | ---D | M] -- C:\Program Files\Movie Maker 2.6
[2011/05/01 13:52:35 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2010/11/27 16:15:01 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2010/11/25 00:56:09 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 4.0
[2010/11/20 20:50:05 | 000,000,000 | ---D | M] -- C:\Program Files\Orbitdownloader
[2011/04/24 12:49:38 | 000,000,000 | ---D | M] -- C:\Program Files\Power Tab Software
[2010/11/19 23:21:36 | 000,000,000 | ---D | M] -- C:\Program Files\QuickTime
[2010/11/20 11:20:32 | 000,000,000 | ---D | M] -- C:\Program Files\Real
[2009/07/14 06:52:30 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2011/04/16 22:05:38 | 000,000,000 | ---D | M] -- C:\Program Files\SopCast
[2011/05/09 17:58:10 | 000,000,000 | ---D | M] -- C:\Program Files\Steam
[2010/11/21 14:00:19 | 000,000,000 | ---D | M] -- C:\Program Files\StorageCrypt
[2011/04/16 19:52:09 | 000,000,000 | ---D | M] -- C:\Program Files\TimeAdjuster
[2009/07/14 06:53:23 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2011/04/13 08:36:57 | 000,000,000 | ---D | M] -- C:\Program Files\URUSoft
[2010/11/29 21:05:38 | 000,000,000 | ---D | M] -- C:\Program Files\Veetle
[2010/11/19 23:10:20 | 000,000,000 | ---D | M] -- C:\Program Files\VideoLAN
[2011/02/15 17:21:44 | 000,000,000 | ---D | M] -- C:\Program Files\WBFS
[2011/02/16 23:39:00 | 000,000,000 | ---D | M] -- C:\Program Files\WhoCrashed
[2010/11/21 17:48:08 | 000,000,000 | ---D | M] -- C:\Program Files\WinAVI MP4 Converter
[2009/07/19 15:19:17 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Defender
[2009/07/19 15:19:17 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Journal
[2010/12/27 18:04:19 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live
[2010/12/18 12:59:21 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Mail
[2010/11/20 03:36:58 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2010/11/19 21:30:31 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2009/07/19 15:19:17 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Photo Viewer
[2009/07/14 06:52:32 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Portable Devices
[2009/07/19 15:19:17 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Sidebar
[2010/11/19 22:41:35 | 000,000,000 | ---D | M] -- C:\Program Files\WinRAR
[2010/11/21 17:49:17 | 000,000,000 | ---D | M] -- C:\Program Files\Xilisoft
[2011/05/09 21:41:39 | 000,000,000 | ---D | M] -- C:\Program Files\ZHPDiag

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2011/01/20 17:05:43 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\AD3CA89C64D65D9B35498E35FA69A7EC
[2011/03/26 20:00:47 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\Adobe
[2010/11/21 16:34:35 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\Apple Computer
[2010/12/30 00:35:39 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\BitDefender
[2011/04/15 12:19:44 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\Canon
[2010/12/17 23:03:54 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\DAEMON Tools Lite
[2010/12/17 21:44:59 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\DassaultSystemes
[2011/01/09 18:37:54 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\DMCache
[2010/12/07 16:39:39 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\dvdcss
[2010/11/20 20:54:02 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\GrabPro
[2011/03/01 15:26:54 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\HDRsoft
[2010/11/24 20:13:14 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\HP
[2010/11/19 21:31:07 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\Identities
[2010/12/18 20:03:17 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\ImgBurn
[2010/11/19 23:15:00 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\Macromedia
[2011/03/21 22:18:06 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\MAGIX
[2010/12/27 14:39:43 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\Malwarebytes
[2009/07/14 09:48:45 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\Media Center Programs
[2011/05/09 17:58:10 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\Media Player Classic
[2011/04/15 12:19:18 | 000,000,000 | --SD | M] -- C:\Users\MONG\AppData\Roaming\Microsoft
[2010/12/27 14:28:12 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\Mozilla
[2011/05/09 18:01:39 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\Orbit
[2010/11/20 20:55:11 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\ProgSense
[2010/12/29 23:35:42 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\QuickScan
[2011/02/21 01:57:30 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\Real
[2011/04/16 19:13:37 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\StreamTorrent
[2011/04/24 18:06:09 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\vlc
[2010/11/19 22:41:49 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\WinRAR
[2010/11/21 17:49:50 | 000,000,000 | ---D | M] -- C:\Users\MONG\AppData\Roaming\Xilisoft Corporation

< %APPDATA%\*.exe /s >
[2011/04/24 12:49:38 | 000,003,310 | R--- | M] () -- C:\Users\MONG\AppData\Roaming\Microsoft\Installer\{6B3CA80E-6AC0-4725-BABF-9B0FEF880CB3}\_16496df1.exe
[2011/04/24 12:49:38 | 000,001,078 | R--- | M] () -- C:\Users\MONG\AppData\Roaming\Microsoft\Installer\{6B3CA80E-6AC0-4725-BABF-9B0FEF880CB3}\_18be6784.exe
[2011/04/24 12:49:38 | 000,001,078 | R--- | M] () -- C:\Users\MONG\AppData\Roaming\Microsoft\Installer\{6B3CA80E-6AC0-4725-BABF-9B0FEF880CB3}\_294823.exe
[2011/04/24 12:49:38 | 000,001,078 | R--- | M] () -- C:\Users\MONG\AppData\Roaming\Microsoft\Installer\{6B3CA80E-6AC0-4725-BABF-9B0FEF880CB3}\_2cd672ae.exe
[2011/04/24 12:49:38 | 000,001,078 | R--- | M] () -- C:\Users\MONG\AppData\Roaming\Microsoft\Installer\{6B3CA80E-6AC0-4725-BABF-9B0FEF880CB3}\_4ae13d6c.exe
[2011/04/24 12:49:38 | 000,001,078 | R--- | M] () -- C:\Users\MONG\AppData\Roaming\Microsoft\Installer\{6B3CA80E-6AC0-4725-BABF-9B0FEF880CB3}\_69525f90.exe
[2011/01/21 19:50:47 | 000,014,846 | R--- | M] () -- C:\Users\MONG\AppData\Roaming\Microsoft\Installer\{AD6ACA58-30FE-4336-A5B0-461FD60AF727}\FileOpenNew.exe

========== Files - Unicode (All) ==========
[2011/04/16 00:19:45 | 003,902,563 | ---- | M] ()(C:\Users\MONG\Desktop\IU - Good Person (????).mp3) -- C:\Users\MONG\Desktop\IU - Good Person (좋은사람).mp3
[2011/04/16 00:19:27 | 003,902,563 | ---- | C] ()(C:\Users\MONG\Desktop\IU - Good Person (????).mp3) -- C:\Users\MONG\Desktop\IU - Good Person (좋은사람).mp3

< End of report >

Bonjour à toi

Relance OTL

Dans le cadre Personnalisation qui est en bas, colle le contenu du cadre ci dessous :

Citation:

:OTL
FF - prefs.js..browser.startup.homepage: "http://www.search-web.net/"
FF - prefs.js..keyword.URL: "http://search-web.net/results.php?cx=partner-pub-0420647136319153%3A5n6ugpjrdrh&cof=GIMP%3ACCCCCC%3BT%3A000000%3BALC%3A551a8b%3BGFNT%3AB7B7B7%3BLC%3A2200cc%3BBGC%3AFFFFFF%3BVLC%3A551a8b%3BGALT%3A008B45%3BFORID%3A10%3BDIV%3A%23FFFFF0%3B&ie=iso-8859-1&oe=iso-8859-1&sa=Rechercher&lang=en&q="
[2011/05/08 00:28:19 | 000,000,114 | ---- | C] () -- C:\Users\MONG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chat-Land site de chat et de rencontre gratuit.URL

:Services

:Reg

:Files

:Commands
[purity]
[emptytemp]

Puis clique sur le bouton Correction en haut.

Laisse OTL tourner, le pc va redémarrer.
Au redémarrage, un nouveau rapport va s'ouvrir, copie/colle son contenu ici svp

Ensuite, vérifie et dis moi si c'est bon s'il te plait.

Bonne journée Smile

__________________________________________________________________________________________________________________
Profitez d'offres promotionnelles et suivez Bibou0007.com sur Facebook -------->

*
*

All processes killed
========== OTL ==========
Prefs.js: "http://www.search-web.net/" removed from browser.startup.homepage
Prefs.js: "http://search-web.net/results.php?cx=partner-pub-0420647136319153%3A5n6ugpjrdrh&cof=GIMP%3ACCCCCC%3BT%3A000000%3BALC%3A551a8b%3BGFNT%3AB7B7B7%3BLC%3A2200cc%3BBGC%3AFFFFFF%3BVLC%3A551a8b%3BGALT%3A008B45%3BFORID%3A10%3BDIV%3A%23FFFFF0%3B&ie=iso-8859-1&oe=iso-8859-1&sa=Rechercher〈=en&q=" removed from keyword.URL
C:\Users\MONG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chat-Land site de chat et de rencontre gratuit.URL moved successfully.
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
========== FILES ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: MONG
->Temp folder emptied: 410417 bytes
->Temporary Internet Files folder emptied: 1573328 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 63990576 bytes
->Google Chrome cache emptied: 48143796 bytes
->Flash cache emptied: 776 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 71024 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 109,00 mb

OTL by OldTimer - Version 3.2.22.3 log created on 05102011_165651

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

Apres la manip que vous m'avez dit de faire avec otl, sur mozilla celui ci a l'air d'avoir disparu , mais toujours présent sur google chrome

Bonsoir Nayori

J'espère que ça ne pose pas de souci si on se tutoie Smile

Tu devrais pouvoir changer la page d'accueil sur Google Chrome. Confirme moi s'il te plait Smile

__________________________________________________________________________________________________________________
Profitez d'offres promotionnelles et suivez Bibou0007.com sur Facebook -------->

*
*

Bonsoir GrosBébé
Oui donc je viens de changer la page d'accueil via les options de démarrage de google chrome.
cela veut dire qu'il est juste masquer (donc toujours présent sur l'ordinateur)
ou seulement qu'il faut quand même le changer manuellement après le nettoyage?

Re

Citation:

cela veut dire qu'il est juste masquer (donc toujours présent sur l'ordinateur)
ou seulement qu'il faut quand même le changer manuellement après le nettoyage?

En fait, le problème résidait dans le fait qu'il y avait un programme qui empêche l'utilisateur de changer sa page d'accueil. En suivant cette procédure http://www.bibou0007.com/t4828-supprimer-search-webnet , OTL a supprimé le programme qui bloquait le changement de page.
A partir de là, tu peux changer la page d'accueil de tes navigateurs sans problème.

D'après ce que je vois de l'analyse rapide, c'est bon pour moi.

Tu as d'autres problèmes ?

__________________________________________________________________________________________________________________
Profitez d'offres promotionnelles et suivez Bibou0007.com sur Facebook -------->

*
*

Plus de problème GrosBébé, je voulais juste savoir ou le problème résidait et comme il a été résolu, merci a toi et toute l'équipe vous faites du super boulot.

Je vais te demander de retirer tout ce que je t'ai demandé d'installer.

Relance Ad-Remover, et sélectionne "Désinstaller".

Relance OTL et sélectionne "Purge Outils", ton pc va redémarrer, accepte.

Supprime tous les rapports que tu aurais encore sur le pc.

Désactive puis réactive la restauration du système :
Tutoriel désactiver la restauration du système sous Vista

C'est en utilisant chat land que search-web.net est arrivé sur ton pc. Je te laisse lire ce sujet pour en savoir un peu plus.
Une petite extension fort utile : WOT https://addons.mozilla.org/fr/firefox/addon/wot-safe-browsing-tool/
WOT t'indique quels sites ont mauvaises réputations, et chat land en fait parti.

Bonne soirée

__________________________________________________________________________________________________________________
Profitez d'offres promotionnelles et suivez Bibou0007.com sur Facebook -------->

*
*

ok merci pour tes conseils
bonne soirée

Le plaisir a été pour moi Smile

__________________________________________________________________________________________________________________
Profitez d'offres promotionnelles et suivez Bibou0007.com sur Facebook -------->

*
*

Le sujet semble résolu, je le verrouille. Si pour une raison ou une autre, vous avez besoin de le réouvrir, faites en la demande par Messagerie Privée

en précisant la raison et le lien vers ce sujet.
Ceci ne s'applique qu'à Nayori.
Pour les autres, créez votre propre sujet svp.

__________________________________________________________________________________________________________________
Profitez d'offres promotionnelles et suivez Bibou0007.com sur Facebook -------->

*
*

» [Résolu] Utilisation du composant ComboBox
» Male Yeast Infection Home Treatment
» [Résolu] Infection search web
» [Fermé] Encore une infection search-web.net
» [résolu]fr.search-results.com infection?

[Résolu] infection search web.net

[Résolu] infection search web.net

Sujets similaires

Sujets similaires