virus sacem

Gerard78 · le 08 Mai 2012 14:10

Bonjour.
Je viens d etre contamine par le virus sacem, le pc est completement bloque
j ai copie OTLPE qui me permet d avoir internet mais avec un clavier qwerty pas facile d ecrire.

Pouvez vous m aider, je vous remercie.

HexCrunch · le 08 Mai 2012 20:38

bonjour !!
Graver et Démarrer OTLPE depuis un CD

* Télécharge OTLPEnet :: http://oldtimer.geekstogo.com/OTLPENet.exe sur ton Bureau ou http://www.itxassociates.com/OT-Tools/OTLPENet.exe

* Quand le téléchargement sera fini, Double Clic sur OTLPENet.exe(clic droit executer en tant qu'administrateur sous vista|seven) et assures-toi d'avoir insérer un CDR vierge dans ton graveur CD/DVD. Une fenêtre va s'ouvrir pour te demander si tu souhaites graver Le CD, clique sur le bouton Oui.
* Patiente le temps de la décompression et de la gravure du CD.
* demarrer sur le cdrom crée de Reatogo , voir exemple: booter-sur-dvd-t9447.html

* Ton système doit montrer un bureau REATOGO-X-PE
* En fonction de votre type de connexion Internet, tu dois être en mesure d'accèder au Net, si bien que tu peux accéder à ce sujet plus facilement.
* Double-click sur l'icone OTLPE

» à ceci valider par ok:

» à ceci selectionner sa session:

** si le systeme d'exploitation est Vista ou Seven tu peux avoir ce message : "RunScanner Error - Target is not windows 2000 or later", il faut donc aller et sélectionner jusqu'au dossier c:\windows dans l'arborescence en dessous de local disk (c:)

* verifier que "Automatically Load All Remaining Users" est sélectionné et press OK

» OTLPE se lançe alors

o sous Custom Scan box copie_colle le contenu du cadre ci dessous:

netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe
/md5start
explorer.exe
userinit.exe
winlogon.exe
wininit.exe
csrss.exe
smss.exe
svchost.exe
services.exe
spoolsv.exe
alg.exe
ctfmon.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
i8042prt.sys
cdrom.sys
disk.sys
ndis.sys
tcpip.sys
imapi.sys
RDPCDD.sys
mountmgr.sys
aec.sys
rasacd.sys
redbook.sys
intelide.sys
mrxsmb10.sys
mrxsmb20.sys
termdd.sys
mrxsmb.sys
win32k.sys
storport.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
CREATERESTOREPOINT

* clic Run Scan pour demarrer le scan.
* une fois terminé , le fichier se trouve là C:\OTL.txt
* copie_colle le contenu dans ta prochaine reponse

Si ton rapport est trop long, utilise le site http://www.cjoint.com/ pour envoyer ton rapport, et mets le lien dans ta prochaine réponse.

attends quelqu'un pour t'aider
amicalement lien ci-joint remplacé

Gerard78 · le 09 Mai 2012 08:20

Tout d'abord, meci pour votre réponse.

J'essayerai de faire ce soir ce que vous m'avez indiqué, car pour l'heure je suis au bureau.

J'ai téléchargé hier OTLPE et gravé le cd.

Je suis sous XP.

Amicalement.

Gerard78 · le 10 Mai 2012 08:25

Bonjour,

J'ai fait le run scan comme demandé, mais je ne peux pas poster le rapport du scan car je ne parviens pas à ouvrir le lien proposé en cas de rapport trop long.

édit Pac : souci avec le lien. Les autres liens plus bas fonctionnent.

J'ai fait un upload limité à quatre jours vu que c'est du passé.

http://cjoint.com/?3EwlYO5ZuXl

HexCrunch · le 12 Mai 2012 14:51

salut
toujours redemarré sous OTLPE:
si tu te connectes a internet avec un cable fais le telechargement direcctement..sinon..telecharge ceci sous une clé USB puis mets la sur le PC infecté

Télécharger sur le bureau RogueKiller (par tigzy)
Quitter tous les programmes en cours
Lancer RogueKiller.exe.
Attendre la fin du Prescan ...
Cliquer sur Scan
Attendre la fin du scan
Le rapport a été généré sur le bureau.
Dans l'onglet Registre, décocher les éventuels faux positifs.
Cliquer sur le bouton Suppression.
Le rapport a été généré sur le bureau.

PUIS
* Assure-toi d'avoir fermé toutes les applications en court de fonctionnement.

* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case " Rapport minimal" soit cochée.

* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL "Personnalisation"

:OTL
IE - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.carrefour.fr/ <b>[Pays FR - 213.139.96.204]</b>
IE - HKU\CHOUPIE_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.theprizeday.com/today.php <b>[Pays US - 199.59.166.108]</b>
SRV - [2009/12/04 13:53:30 | 000,058,744 | ---- | M] () [Auto] -- C:\Documents and Settings\All Users\Application Data\QuestService\questservice129.exe -- (QuestService Service)
O4 - HKLM..\Run: [d31ybB8YFv9cUxg] C:\Documents and Settings\Gérard Boutelier\Application Data\itunes_service01.exe ()
O4 - HKU\Gérard_Boutelier_ON_C..\Run: [d31ybB8YFv9cUxg] C:\Documents and Settings\Gérard Boutelier\Application Data\itunes_service01.exe ()
O20 - HKLM Winlogon: Shell - (C:\Documents and Settings\Gérard Boutelier\Application Data\itunes_service01.exe) - C:\Documents and Settings\Gérard Boutelier\Application Data\itunes_service01.exe ()
O20 - HKLM Winlogon: System - (kdyqw.exe) - File not found
O20 - HKLM Winlogon: UserInit - (C:\Documents and Settings\Gérard Boutelier\Application Data\itunes_service01.exe) - C:\Documents and Settings\Gérard Boutelier\Application Data\itunes_service01.exe ()
O20 - HKU\Gérard_Boutelier_ON_C Winlogon: Shell - (C:\Documents and Settings\Gérard Boutelier\Application Data\itunes_service01.exe) - C:\Documents and Settings\Gérard Boutelier\Application Data\itunes_service01.exe ()
O20 - HKU\Gérard_Boutelier_ON_C Winlogon: UserInit - (C:\Documents and Settings\Gérard Boutelier\Application Data\itunes_service01.exe) - C:\Documents and Settings\Gérard Boutelier\Application Data\itunes_service01.exe ()
MsConfig - StartUpReg: Kujytuo - hkey= - key= - C:\Documents and Settings\Gérard Boutelier\Application Data\kujytuo\kujytuo.exe ()
O2 - BHO: (EvenMoreMegaSwellAdsForYou) - {EB692FE4-6873-09E0-C127-95E8BA2F94FF} - C:\Program Files\EvenMoreMegaSwellAdsForYou\EvenMoreMegaSwellAdsForYou.dll ()
SRV - [2009/12/04 13:53:30 | 000,058,744 | ---- | M] () [Auto] -- C:\Documents and Settings\All Users\Application Data\QuestService\questservice129.exe -- (QuestService Service)
SRV - [2001/11/12 08:31:48 | 000,020,480 | ---- | M] (X10) [On_Demand] -- C:\Program Files\Common Files\X10\Common\X10nets.exe -- (x10nets)
IE - HKU\CHOUPIE_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.theprizeday.com/today.php
IE - HKU\CHOUPIE_ON_C\..\URLSearchHook: {0579B4B6-0293-4d73-B02D-5EBB0BA0F0A2} - Reg Error: Key error. File not found
IE - HKU\CHOUPIE_ON_C\..\URLSearchHook: {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - Reg Error: Key error. File not found
IE - HKU\Gérard_Boutelier_ON_C\..\URLSearchHook: {4daac69c-cba7-45e2-9bc8-1044483d3352} - C:\Program Files\Softonic_France\prxtbSof1.dll (Conduit Ltd.)
IE - HKU\LocalService_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.carrefour.fr/
IE - HKU\nathalie_ON_C\..\URLSearchHook: {0579B4B6-0293-4d73-B02D-5EBB0BA0F0A2} - Reg Error: Key error. File not found
IE - HKU\nathalie_ON_C\..\URLSearchHook: {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - Reg Error: Key error. File not found
IE - HKU\NetworkService_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.carrefour.fr/
IE - HKU\systemprofile_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: %µ£ProxyServer%µ£ = http=127.0.0.1:4343
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{E63605FC-D583-4C81-867F-9457BDB3EA1B}: C:\Program Files\Web Search Operator\4.1.0.1990\FF [2009/12/11 09:40:15 | 000,000,000 | ---D | M]
[2011/02/12 11:55:29 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gérard Boutelier\Application Data\Mozilla\Firefox\Profiles\ceal85gd.default\extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}
[2012/01/14 04:53:08 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\Gérard Boutelier\Application Data\Mozilla\Firefox\Profiles\ceal85gd.default\extensions\ffxtlbr@babylon.com
[2008/10/06 15:11:46 | 000,024,683 | ---- | M] (Ask.com) -- C:\Program Files\mozilla firefox\plugins\NPAskSBr.dll
O2 - BHO: (Softonic_France Toolbar) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - C:\Program Files\Softonic_France\prxtbSof1.dll (Conduit Ltd.)
O2 - BHO: () - {F5938714-BD46-408A-9842-4058206D37E3} - File not found
O2 - BHO: () - {FCADDC14-BD46-408A-9842-CDBE1C6D37EB} - File not found
O3 - HKU\CHOUPIE_ON_C\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\CHOUPIE_ON_C\..\Toolbar\WebBrowser: (no name) - {350E72A9-E6DB-4967-9572-DD8E27D3E1BE} - No CLSID value found.
O3 - HKU\CHOUPIE_ON_C\..\Toolbar\WebBrowser: (Softonic_France Toolbar) - {4DAAC69C-CBA7-45E2-9BC8-1044483D3352} - C:\Program Files\Softonic_France\prxtbSof1.dll (Conduit Ltd.)
O3 - HKU\Gérard_Boutelier_ON_C\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKU\Gérard_Boutelier_ON_C\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.
O3 - HKU\Gérard_Boutelier_ON_C\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\Gérard_Boutelier_ON_C\..\Toolbar\WebBrowser: (no name) - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - No CLSID value found.
O3 - HKU\Gérard_Boutelier_ON_C\..\Toolbar\WebBrowser: (Softonic_France Toolbar) - {4DAAC69C-CBA7-45E2-9BC8-1044483D3352} - C:\Program Files\Softonic_France\prxtbSof1.dll (Conduit Ltd.)
O3 - HKU\nathalie_ON_C\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKU\nathalie_ON_C\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.
O3 - HKU\nathalie_ON_C\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\nathalie_ON_C\..\Toolbar\WebBrowser: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - No CLSID value found.
O3 - HKU\nathalie_ON_C\..\Toolbar\WebBrowser: (no name) - {350E72A9-E6DB-4967-9572-DD8E27D3E1BE} - No CLSID value found.
O3 - HKU\nathalie_ON_C\..\Toolbar\WebBrowser: (Softonic_France Toolbar) - {4DAAC69C-CBA7-45E2-9BC8-1044483D3352} - C:\Program Files\Softonic_France\prxtbSof1.dll (Conduit Ltd.)
O4 - HKLM..\Run: [] File not found
O4 - HKU\.DEFAULT..\Run: [ALUAlert] File not found
O4 - HKU\CHOUPIE_ON_C..\Run: [swg] File not found
O4 - HKU\nathalie_ON_C..\Run: [swg] File not found
O7 - HKU\Gérard_Boutelier_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 1
O7 - HKU\Gérard_Boutelier_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKU\Gérard_Boutelier_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 1
O20 - HKLM Winlogon: System - (kdyqw.exe) - File not found
MsConfig - StartUpReg: cgugces - hkey= - key= - File not found
MsConfig - StartUpReg: Kujytuo - hkey= - key= - C:\Documents and Settings\Gérard Boutelier\Application Data\kujytuo\kujytuo.exe ()
IE - HKU\Gérard_Boutelier_ON_C\..\URLSearchHook: {4daac69c-cba7-45e2-9bc8-1044483d3352} - C:\Program Files\Softonic_France\prxtbSof1.dll (Conduit Ltd.)
IE - HKU\nathalie_ON_C\..\URLSearchHook: {0579B4B6-0293-4d73-B02D-5EBB0BA0F0A2} - Reg Error: Key error. File not found
IE - HKU\nathalie_ON_C\..\URLSearchHook: {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - Reg Error: Key error. File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/10/27 03:15:39 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\adparatus@adparatus.com: C:\Program Files\Adparatus\FF\2594\ [2010/01/09 12:45:05 | 000,000,000 | ---D | M]
[2008/10/06 15:11:46 | 000,024,683 | ---- | M] (Ask.com) -- C:\Program Files\mozilla firefox\plugins\NPAskSBr.dll
O2 - BHO: (Softonic_France Toolbar) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - C:\Program Files\Softonic_France\prxtbSof1.dll (Conduit Ltd.)
O2 - BHO: (EvenMoreMegaSwellAdsForYou) - {EB692FE4-6873-09E0-C127-95E8BA2F94FF} - C:\Program Files\EvenMoreMegaSwellAdsForYou\EvenMoreMegaSwellAdsForYou.dll ()
O3 - HKLM\..\Toolbar: (Softonic_France Toolbar) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - C:\Program Files\Softonic_France\prxtbSof1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O20 - HKLM Winlogon: System - (kdyqw.exe) - File not found
MsConfig - StartUpReg: Kujytuo - hkey= - key= - C:\Documents and Settings\Gérard Boutelier\Application Data\kujytuo\kujytuo.exe ()
ActiveX: {0291E591-EA41-4c82-8106-3DC6CE7F7664} - Reg Error: Value error.
[2012/05/09 19:02:43 | 000,000,079 | ---- | M] () -- B:\Documents and Settings\Default User\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
@Alternate Data Stream - 24 bytes -> C:\WINDOWS:C14A42824A76300E

:Files
C:\Documents and Settings\Gérard Boutelier\Application Data\kujytuo\kujytuo.exe
C:\WINDOWS\System32\stera.exe
C:\WINDOWS\tasks\At3.job
C:\WINDOWS\tasks\At1.job
C:\Documents and Settings\nathalie\Application Data\PriceGong
C:\Documents and Settings\All Users\Application Data\Babylon
C:\Documents and Settings\All Users\Application Data\QuestService
C:\WINDOWS\Tasks\At1.job
C:\WINDOWS\Tasks\At2.job
C:\WINDOWS\Tasks\At3.job
C:\WINDOWS\Tasks\At4.job
C:\Documents and Settings\Gérard Boutelier\Application Data\itunes_service01.exe
C:\Documents and Settings\CHOUPIE\Application Data\PriceGong
C:\Documents and Settings\All Users\Application Data\QuestService
C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2006

:Folders
C:\Documents and Settings\nathalie\Application Data\PriceGong
C:\Documents and Settings\All Users\Application Data\Babylon
C:\Documents and Settings\All Users\Application Data\QuestService
C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2006

:Commands
[emptytemp]
[emptyflash]
[reboot]

* Cliques sur l'icône Correction (en haut à gauche) .
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un rapport s'ouvrir "OTL.log"
* Copie et colle le ou les rapports dans ta réponse stp...
* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés
Mets le rapport ici car il prend bien de la place.
http://cjoint.com/ lien OK

quel AV as tu ??
quelle est la derniere fois ou tu as formaté ton PC ?
je t'ai dit de mettre les rapport ici http://www.cjoint.com. édit Pac: blanc rajouté, sinon le lien tilte

.pas de souci edite ton dernier message et mets le rapport dans la balise [code].. en plus tu as mis deux rapports par faute et l'un est mélangé dans l'autre :lol:

..mais je me suis débrouillé..corrige juste le message préceedant

amicalement

Gerard78 · le 22 Mai 2012 10:18

Bonjour,

Excuse-moi de ne répondre qu'aujourd'hui à ton message dâté du 12 mai, mais je suis parti quelques jours et je ne suis rentré que dimanche.
Avant de partir j'ai réussi à faire une restauration système en allant dans l'invite de commande: nouvelle tâche, msconfig.
J'ai donc pu retrouver ( par chance j'en conviens) toutes les fonctionnalités du pc.
Mon anti virus est sophos 9.5
Je n'ai jamais formaté le disque dur.
Pour autant, j'ai peur que cela puisse encore se reproduire.
Que dois-je faire maintenant ?

Merci pour tout ce travail.

Bien amicalement.

HexCrunch · le 22 Mai 2012 10:24

salut
tout va OK maintenant ??
fais ceci en vérification:
• Télécharges & Installes ZHPDiag sur ton Bureau.

/!\ Utilisateur de Windows Vista et Windows Seven : Clique droit sur le logo de ZHPDiag, « Exécuter en tant qu'Administrateur » /!\

• Lances ZHPDiag.
• Cliques sur la Fléche Verte pour mettre à jour ZHPDiag.
• Cliques sur Option qui est représenté par l'icône d' un tournevis, et cliques sur Tous.
• Décoches la case "Derniers fichiers créés dans Windows Prefetcher (045)".
• Décoches la case "Derniers Fichiers Modifiés ou Crées (Utilisateur) (061)".
• Cliques sur l'icône représentant une loupe « Lancer Le Diagnostic ».
• Patientes le temps du scan.
• Enregistres le rapport sur ton Bureau à l'aide de l'icône représentant une disquette.
• Héberges le rapport ZHPDiag sur CJoint.com
• Postes le lien donné.

/!\ Note : Pour éviter de figer l'analyse ZHPDiag, laisses le travailler sans toucher à ton P.C. ! /!\

fais ceci pour eliminer d'éventuels morpions qui restent et puis on passera a la fin et aux conseils

amicalement :wink:

Gerard78 · le 23 Mai 2012 09:15

Bonjour,

J'ai installé zhpdiag et je l'ai lancé, j'ai bien le rapport, mais je n'arrive pas à l'héberger sur le site cjoint.com.

Le copié collé ne fonctionne pas, ou je m'y prend comme un nul .
Je te l'envoie de cette façon car ça, je maîtrise encore.

Bonne réception,
Amicalement.

Rapport de ZHPDiag v1.31.092 par Nicolas Coolman, Update du 17/05/2012
Run by Gérard Boutelier at 22/05/2012 19:30:03
Web site : http://www.premiumorange.com/zeb-help-p ... pdiag.html
Web site : http://nicolascoolman.skyrock.com/
State : Version à jour.

---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702 (Defaut)
GCIE: Google Chrome v19.0.1084.46

---\\ Windows Product Information
~ Langage: Français
Windows XP Home Edition Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : OK

---\\ System Information
~ Processor: x86 Family 15 Model 4 Stepping 3, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1023 MB (46% free)
System Restore: Activé (Enable)
System drive C: has 26 GB (27%) free of 93 GB

---\\ Logged in mode
~ Computer Name: PRINTEMPS-2005
~ User Name: Gérard Boutelier
~ All Users Names: SUPPORT_388945a0, SophosSAUPRINTEMPS-1, nathalie, HelpAssistant, Gérard Boutelier, CHOUPIE, ASPNET, Administrateur,
~ Unselected Option: O44,O45
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\Gérard Boutelier\Application Data\
~ %Desktop% : C:\Documents and Settings\Gérard Boutelier\Bureau\
~ %Favorites% : C:\Documents and Settings\Gérard Boutelier\Favoris\
~ %LocalAppData% : C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\Gérard Boutelier\Menu Démarrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\

---\\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 26 Go of 93 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 33 Go of 90 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 3 Go)
F:\ Hard drive, Flash drive, Thumb drive (Free 739 Go of 834 Go)
G:\ CD-ROM drive (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Hard drive, Flash drive, Thumb drive (Free 94 Go of 98 Go)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
K:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s

---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.D44608FCA100A5C48053588517517028] - (.Microsoft Corporation - Internet Extensions for Win32.) (.01/03/2012 - 12:00:23.) -- C:\WINDOWS\system32\wininet.dll [916992]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 - 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:49:54.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 - 19:40:30.) -- C:\WINDOWS\system32\Drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/04/2008 - 20:14:21.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2008 - 19:40:46.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.14/04/2008 - 02:57:38.) -- C:\WINDOWS\system32\Drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.13/04/2008 - 17:36:05.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.14/04/2008 - 03:00:52.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.13/04/2008 - 19:40:58.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.13/04/2008 - 19:57:15.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.13/04/2008 - 20:19:42.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:31.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2008 - 20:21:00.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 - 20:15:53.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/04/2008 - 03:09:40.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2008 - 20:19:43.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/04/2008 - 19:32:51.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.14/04/2008 - 02:57:34.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.14/04/2008 - 02:56:04.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53376]
~ Scan Generic Processes in 00mn 00s

---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/264
~ Mes musiques (My Musics) : 21/847
~ Mes Videos (My Videos) : 3/28
~ Mes Favoris (My Favorites) : 1/78
~ Mes Documents (My Documents) : 2/4292
~ Mon Bureau (My Desktop) : 0/30
~ Menu demarrer (Programs) : 1/44
~ Scan Hidden Files in 00mn 11s

---\\ Processus lancés
[MD5.9BDBDA21D3BA8E374FD06A405BE10215] - (.Macrovision - Macrovision RTS Service.) -- C:\WINDOWS\system32\drivers\CDAC11BA.exe [54784] [PID.]
[MD5.807CC526490D387EAC697DB274BD1A69] - (.Pas de propriétaire - CLCapSvc Module.) -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe [270434] [PID.]
[MD5.18AA92BA15EBB0C61C72308C6F20DD0E] - (.Cyberlink - NT CLMLServer.) -- C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe [1073152] [PID.]
[MD5.A0101E836D2A39682E134C47B1565256] - (.Nero AG - Nero BackItUp.) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [836904] [PID.]
[MD5.89007B160D58993FA18B87A9F48B3AF3] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 71.24.) -- C:\WINDOWS\system32\nvsvc32.exe [139331] [PID.]
[MD5.C615E02F2D1D4E82B5BC98BBBE5BB49E] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe [167936] [PID.]
[MD5.BD57B12FA4C21B1CE7DA3570410BF12D] - (.Sophos Plc - Sophos Administrator Service.) -- C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe [163056] [PID.]
[MD5.B5774835A13B5ED31378AABD07746262] - (.Sophos Plc - Sophos AutoUpdate Service..) -- C:\Program Files\Sophos\AutoUpdate\ALsvc.exe [232472] [PID.]
[MD5.DD0042F0C3B606A6A8B92D49AFB18AD6] - (.Yahoo! Inc. - AutoUpater Service Module.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe [602392] [PID.]
[MD5.34D7583A7A647B92CB9D7C462BFE8455] - (.Pas de propriétaire - CLSched Module.) -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe [122976] [PID.]
[MD5.15FFBB6BAD65E3E043929546F84B9C6C] - (.Sophos Plc - Sophos Endpoint Security and Control.) -- C:\Program Files\Sophos\AutoUpdate\almon.exe [439536] [PID.]
[MD5.0E34B7BB1FCF22BCC1E394D16F9E992B] - (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040] [PID.]
[MD5.D658AB1B55127D18DCFBCAC8CAAEA522] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208] [PID.]
[MD5.2AA60514B683F15CF484C4A9F21C3425] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\program files\real\realplayer\update\realsched.exe [273528] [PID.]
[MD5.AAAE9056DF70657D59929D6F3D9EBD94] - (...) -- C:\Program Files\SCBackup\scrlink.exe [167936] [PID.]
[MD5.83166BFFA8C4BBAC4413F47C865CC8EE] - (.Microsoft Corporation - Outil de notification de cadeaux MSN.) -- C:\Documents and Settings\Gérard Boutelier\Application Data\Microsoft\Outil de notification de cadeaux MSN\msnotif.exe [183096] [PID.]
[MD5.839D08F1375F3BFA6D86BAC25F3F3D78] - (.The PHP Group - CGI / FastCGI.) -- C:\Program Files\SCBackup\schlpr.exe [49230] [PID.]
[MD5.CCACC02343D97A2E6C4A911E9AA85ED8] - (.Server Link - Pas de description.) -- C:\Program Files\SCBackup\servlnk.exe [389120] [PID.]
[MD5.7D7337936C6B975F826D86CD212F9C3B] - (...) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [4537344] [PID.]
[MD5.836AEC603665F6DB83965EE57B3DCF57] - (.Sophos Plc - Performs virus scanning and disinfection fu.) -- C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe [97520] [PID.]
[MD5.AA5CA4A5F87C1576FF550A0372B3ED84] - (.Sophos Plc - Sophos Web Intelligence.) -- C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe [1543704] [PID.]
[MD5.5E9A6658A2A69AE7EB195113B7A2E7A9] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe [44544] [PID.]
~ Scan Processes Running in 00mn 02s

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
~ Scan Google Browser in 00mn 00s

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Documents and Settings\Gérard Boutelier\Application Data\Mozilla\Firefox\Profiles\ceal85gd.default\prefs.js
C:\Documents and Settings\Gérard Boutelier\Application Data\Mozilla\Firefox\Profiles\ceal85gd.default\user.js
M0 - MFSP: prefs.js [Gérard Boutelier - ceal85gd.default] http://en-us.start.mozilla.com
M2 - MFEP: prefs.js [Gérard Boutelier - ceal85gd.default\ffxtlbr@babylon.com] [] Babylon v1.2.0 (.Babylon.)
M2 - MFEP: prefs.js [Gérard Boutelier - ceal85gd.default\{b67942a3-c435-4c83-9654-3245b73b985c}] [xul] XUL Cache v1.0 (.Canonical Ltd..)
M2 - MFEP: prefs.js [Gérard Boutelier - ceal85gd.default\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}] [] DealPly v2.0 (.dealply.com.)
P2 - FPN:Firefox Plugin Navigator . (.Ask.com - Ask Toolbar Plugin Stub for 32-bit Windows.) -- C:\Program Files\Mozilla Firefox\Plugins\NPAskSBr.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.1.10329.0.) -- C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=12.0.1.669] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- c:\program files\real\realplayer\Netscape6\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprjplug;version=12.0.1.669] - (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- c:\program files\real\realplayer\Netscape6\nprjplug.dll
P2 - FPN: [HKLM] [@real.com/nprpchromebrowserrecordext;version=12.0.1.669] - (.RealNetworks, Inc. - RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In.) -- C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlu
P2 - FPN: [HKLM] [@real.com/nprphtml5videoshim;version=12.0.1.669] - (.RealNetworks, Inc. - RealPlayer(tm) HTML5VideoShim Plug-In.) -- C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videos
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=12.0.1.669] - (.RealNetworks, Inc. - 12.0.1.669.) -- c:\program files\real\realplayer\Netscape6\nprpjplug.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@viewpoint.com/VMP] - (.Pas de propriétaire - MetaStream 3 Plugin r4.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
P2 - FPN: [HKCU] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
~ Scan Firefox Browser in 00mn 01s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.19222 (longhorn_ie8_gdr.120227-1715)) -- C:\WINDOWS\system32\ieframe.dll
R3 - URLSearchHook: Softonic_France Toolbar - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\Softonic_France\prxtbSof1.dll
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
~ Scan IE Browser in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <local>
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Scan Keys in 00mn 00s

---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 20

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} Clé orpheline
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} Clé orpheline
O2 - BHO: Automated Content Enhancer - {1D74E9DD-8987-448b-B2CB-67FFF2B8A932} . (.Pas de propriétaire - ACE Helper Class.) -- C:\Program Files\Automated Content Enhancer\4.1.0.5260\ACEIEAddOn.dll
O2 - BHO: CIEIntegrator Object - {2178F3FB-2560-458F-BDEE-631E2FE0DFE4} . (.WinSoftware, Ltd. - WinAntiVirus 2006 Pro Intermediate Layer.) -- C:\Program Files\WinAntiVirus Pro 2006\winpgi.dll
O2 - BHO: Wincore Mediabar - {28387537-e3f9-4ed7-860c-11e69af4a8a0} . (.Pas de propriétaire - dtx Dynamic Link Library.) -- C:\Program Files\iMesh Applications\MediaBar\Datamngr\ToolBar\wincoreimdtx.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealPlayer - RealPlayer Download and Record Plugin.) -- C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordP
O2 - BHO: Sophos Web Content Scanner - {39EA7695-B3F2-4C44-A4BC-297ADA8FD235} . (.Sophos Plc - Sophos Browser Helper Object.) -- C:\Program Files\Sophos\Sophos Anti-Virus\SophosBHO.dll
O2 - BHO: Customized Platform Advancer - {42C7C39F-3128-4a17-BDB7-91C46032B5B9} . (...) -- C:\Program Files\Customized Platform Advancer\4.1.0.1850\CPAIEAddOn.dll (.not file.)
O2 - BHO: Softonic_France - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Softonic_France\prxtbSof1.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Adparatus - {8B2C7C9D-716D-4e9e-9358-B9C80A81B7ED} . (.Market Precision, Inc - Adparatus BHO.) -- C:\Program Files\Adparatus\Adparatus.dll
O2 - BHO: Content Management Wizard - {B72681C0-A222-4b21-A0E2-53A5A5CA3D41} . (...) -- C:\Program Files\Content Management Wizard\1.1.0.1990\CMWIE.dll (.not file.)
O2 - BHO: DataMngr - {BE7A24F5-69CB-4708-B77B-B1EDA6043B95} . (.iMesh, Inc - Url Helper.) -- C:\Program Files\iMesh Applications\MediaBar\Datamngr\BrowserConnection.dll
O2 - BHO: Textual Content Provider - {CAC89FF9-34A9-4431-8CFE-292A47F843BC} . (...) -- C:\Program Files\Textual Content Provider\1.1.0.1810\TCPIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EvenMoreMegaSwellAdsForYou - {EB692FE4-6873-09E0-C127-95E8BA2F94FF} . (...) -- C:\Program Files\EvenMoreMegaSwellAdsForYou\EvenMoreMegaSwellAdsForYou.dll
O2 - BHO: (no name) - {F5938714-BD46-408A-9842-4058206D37E3} . (...) -- C:\DOCUME~1\GRARDB~1\LOCALS~1\Temp\~00754.tmp (.not file.)
O2 - BHO: (no name) - {FCADDC14-BD46-408A-9842-CDBE1C6D37EB} . (...) -- C:\DOCUME~1\GRARDB~1\LOCALS~1\Temp\~00754.tmp (.not file.)
~ Scan BHO in 00mn 00s

---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Softonic_France Toolbar - [HKLM]{4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Softonic_France\prxtbSof1.dll
O3 - Toolbar: Wincore Mediabar - [HKLM]{28387537-e3f9-4ed7-860c-11e69af4a8a0} . (.Pas de propriétaire - dtx Dynamic Link Library.) -- C:\Program Files\iMesh Applications\MediaBar\Datamngr\ToolBar\wincoreimdtx.dll
~ Scan Toolbar in 00mn 00s

---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\NvCpl.dll
O4 - HKLM\..\Run: [Sophos AutoUpdate Monitor] . (.Sophos Plc - Sophos Endpoint Security and Control.) -- C:\Program Files\Sophos\AutoUpdate\almon.exe
O4 - HKLM\..\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\program files\real\realplayer\update\realsched.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [scrlink] . (...) -- C:\Program Files\SCBackup\scrlink.lnk
O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [Symantec NetDriver Warning] . (.Symantec Corporation - Symantec Network Driver Update Notification.) -- C:\Program Files\SymNetDrv\SNDWarn.exe
O4 - HKUS\S-1-5-18\..\Run: [ALUAlert] C:\Program Files\Symantec\LiveUpdate\ALUNotify.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [Symantec NetDriver Warning] . (.Symantec Corporation - Symantec Network Driver Update Notification.) -- C:\Program Files\SymNetDrv\SNDWarn.exe
O4 - HKUS\S-1-5-18\..\Run: [ALUAlert] C:\Program Files\Symantec\LiveUpdate\ALUNotify.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-174709409-2333227961-2120168992-1006\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-174709409-2333227961-2120168992-1006\..\Run: [scrlink] . (...) -- C:\Program Files\SCBackup\scrlink.lnk
O4 - HKUS\S-1-5-21-174709409-2333227961-2120168992-1006\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
~ Scan Application in 00mn 00s

---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe ImageReady CS.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Photoshop CS\ImageReady.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop Album Edition Découverte 3.0.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\Photoshop Album Sta
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop CS.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Photoshop CS\Photoshop.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 8.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A81300000003}\SC_Reader.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation.) -- C:\Program Files\Microsoft Works\MSWorks.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Office PowerPoint Viewer 2003.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\PowerPoint Viewer\PPTVIEW.EXE
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\MSN Messenger 6.2.lnk . (...) -- C:\WINDOWS\Installer\{ABEB838C-A1A7-4C5D-B7E1-8B4314600133}\MsblIco.Exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\MSN.lnk . (.Microsoft Corporation.) -- C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\SecurDisc Viewer.lnk . (...) -- C:\Program Files\Nero\Nero8\SecurDisc Viewer\SecurDisc Viewer.exe (.not file.)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Visionneuse Journal Windows.lnk . (.InstallShield Software Corp..) -- C:\WINDOWS\Installer\{43DCF766-6838-4F9A-8C91-D92DA586DFA7}\_C68C351F090F4EF39AFB6B7B54014C9E.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Search.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O4 - Global Startup: C:\Documents And Settings\nathalie\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\nathalie\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\nathalie\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\nathalie\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Documents And Settings\Gérard Boutelier\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Gérard Boutelier\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Gérard Boutelier\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\Gérard Boutelier\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Documents And Settings\CHOUPIE\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\CHOUPIE\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\CHOUPIE\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\CHOUPIE\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe ImageReady CS.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Photoshop CS\ImageReady.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop Album Edition Découverte 3.0.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\Photoshop Album Sta
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop CS.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Photoshop CS\Photoshop.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 8.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A81300000003}\SC_Reader.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation.) -- C:\Program Files\Microsoft Works\MSWorks.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Office PowerPoint Viewer 2003.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\PowerPoint Viewer\PPTVIEW.EXE
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\MSN Messenger 6.2.lnk . (...) -- C:\WINDOWS\Installer\{ABEB838C-A1A7-4C5D-B7E1-8B4314600133}\MsblIco.Exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\MSN.lnk . (.Microsoft Corporation.) -- C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\SecurDisc Viewer.lnk . (...) -- C:\Program Files\Nero\Nero8\SecurDisc Viewer\SecurDisc Viewer.exe (.not file.)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Visionneuse Journal Windows.lnk . (.InstallShield Software Corp..) -- C:\WINDOWS\Installer\{43DCF766-6838-4F9A-8C91-D92DA586DFA7}\_C68C351F090F4EF39AFB6B7B54014C9E.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Search.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O4 - Global Startup: C:\Documents And Settings\nathalie\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\nathalie\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\nathalie\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\nathalie\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Documents And Settings\Gérard Boutelier\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Gérard Boutelier\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Gérard Boutelier\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\Gérard Boutelier\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Documents And Settings\CHOUPIE\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\CHOUPIE\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\CHOUPIE\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\CHOUPIE\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
~ Scan Global Startup in 00mn 03s

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: &Recherche AOL Toolbar - (.not file.) - C:\Program Files\AOL Toolbar\toolbar.dll
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\Program Files\MICROS~3\Office12\EXCEL.exe
~ Scan IE Menu Contextuel in 00mn 00s

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: &Envoyer à OneNote - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
~ Scan IE Extra Buttons in 00mn 00s

---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
~ Scan Winsock in 00mn 00s

---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14)
O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.wanadoo.fr
~ Scan IE Paramètres WEB in 00mn 00s

---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: Garmin Communicator Plug-In (Garmin Communicator Plug-In) - https://static.garmincdn.com/gcp/ie/2.9 ... ontrol.CAB
O16 - DPF: {04F414E9-E352-4BC3-963D-7BFE5A5F31A9} () - http://scripts.dlv4.com/binaries/egacce ... 064_XP.cab
O16 - DPF: {0878F049-D33E-45E0-A157-C36A6683CF25} () - http://scripts.dlv4.com/binaries/egacce ... 063_XP.cab
O16 - DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} (PhotoboxPhotowaysUploader5 Control) - http://assets.photobox.com/assets/aurig ... 1031035959
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - (Installation Support) - (.Yahoo! Inc. - YInstHelper Module.) -- C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {321F38B6-7E5F-470E-B58C-927523B7AF92} () - http://scripts.dlv4.com/binaries/egacce ... _em_XP.cab
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/v ... .2.5.4.cab
O16 - DPF: {5E4CD363-CEA5-4992-81FD-1E9C53EC305D} () - http://scripts.dlv4.com/binaries/egacce ... _em_XP.cab
O16 - DPF: {5F4D3335-3194-4167-85AE-E7325F2695EF} () - http://scripts.dlv4.com/binaries/egacce ... _em_XP.cab
O16 - DPF: {5FD9726A-4977-449D-8352-25FDD8A510B5} () - http://scripts.dlv4.com/binaries/egacce ... _em_XP.cab
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/fl ... rashim.cab
O16 - DPF: {A31D9A13-4C45-4DFB-8827-BA4F402D9C95} () - http://scripts.dlv4.com/binaries/egacce ... 063_XP.cab
O16 - DPF: {AA59202C-5E41-48FC-AF7D-324F5FD6A9F1} () - http://scripts.dlv4.com/binaries/egacce ... _em_XP.cab
O16 - DPF: {BB224188-52BA-4006-9429-2C7E47EA975B} () - http://scripts.dlv4.com/binaries/egacce ... _em_XP.cab
O16 - DPF: {CB5D474E-A510-40A4-B5A4-838933BCBA64} () - http://scripts.dlv4.com/binaries/egacce ... 065_XP.cab
O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.photoways.com/clients/uploader_v2.2.0.6.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} () - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E1D20694-74D9-472D-AF03-08C26173A67F} () - http://scripts.dlv4.com/binaries/egacce ... _em_XP.cab
O16 - DPF: {F99973C8-43E7-48C4-9EF3-131B67301321} () - http://scripts.dlv4.com/binaries/egacce ... _em_XP.cab
O16 - DPF: {FA1D6D8F-C6ED-4752-8512-A33283240130} () - http://scripts.dlv4.com/binaries/egacce ... 066_XP.cab
~ Scan Objets ActiveX in 00mn 00s

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{92417E15-CC55-4986-91E0-26DDC585B1A7}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{92417E15-CC55-4986-91E0-26DDC585B1A7}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS3\Services\Tcpip\..\{92417E15-CC55-4986-91E0-26DDC585B1A7}: DhcpNameServer = 89.2.0.1 89.2.0.2
~ Scan Domain in 00mn 00s

---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} . (.Microsoft Corporation - GrooveSystemServices Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll
O18 - Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Windows Genuine Advantage Notification.) -- C:\WINDOWS\system32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
~ Scan Winlogon in 00mn 00s

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.iMesh, Inc - Data Manager.) - C:\Program Files\IMESHA~1\MediaBar\Datamngr\datamngr.dll
~ Scan AppInit DLL in 00mn 00s

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} . (.Microsoft Corporation - Moniteur et dossier UPNP Tray.) -- C:\WINDOWS\system32\upnpui.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll
~ Scan SSODL in 00mn 00s

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: C-DillaCdaC11BA (C-DillaCdaC11BA) . (.Macrovision - Macrovision RTS Service.) - C:\WINDOWS\system32\drivers\CDAC11BA.exe
O23 - Service: CyberLink Background Capture Service (CB (CLCapSvc) . (.Pas de propriétaire - CLCapSvc Module.) - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) . (.Pas de propriétaire - CLSched Module.) - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service (CyberLink Media Library Service) . (.Cyberlink - NT CLMLServer.) - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Service Google Update (gupdate1c9f42a6dd (gupdate1c9f42a6dd13240) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Nero BackItUp Scheduler 3 (Nero BackItUp Scheduler 3) . (.Nero AG - Nero BackItUp.) - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 71.24.) - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: QuestService Service (QuestService Service) . (...) - C:\Documents and Settings\All Users\Application Data\QuestService\questservice129.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Créateur de rapports d'état Sophos Anti- (SAVAdminService) . (.Sophos Plc - Sophos Administrator Service.) - C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
O23 - Service: Sophos Anti-Virus (SAVService) . (.Sophos Plc - Performs virus scanning and disinfection fu.) - C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe
O23 - Service: Sophos AutoUpdate Service (Sophos AutoUpdate Service) . (.Sophos Plc - Sophos AutoUpdate Service..) - C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
O23 - Service: Sophos Web Intelligence Service (swi_service) . (.Sophos Plc - Sophos Web Intelligence.) - C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
O23 - Service: Yahoo! Updater (YahooAUService) . (.Yahoo! Inc. - AutoUpater Service Module.) - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
~ Scan Services in 00mn 00s

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Desktop Component 0: (no name) - file:http://www.games-desktop.com/private/pics/04wallpapers/babies/thumbs/tn_1098.jpg
O24 - Desktop Component 1: (no name) - file:http://www.games-desktop.com/private/img/classic/deg_bigd.gif
O24 - Desktop Component 2: (no name) - file:http://fond-ecran.linternaute.com/image_wallpaper/starwar.jpg
O24 - Default MHTML Editor: Last - .(...) - C:\Program Files\Microsoft Office\OFFICE11\WINWORD.exe (.not file.)
O24 - Desktop General: BackupWallPaper - .(...) - C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop General: WallPaper - .(...) - C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
~ Scan Desktop Component in 00mn 00s

---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s

---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\At1.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\At2.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\At3.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\At4.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Contrôle Quotidien.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-174709409-2333227961-2120168992-1006.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-174709409-2333227961-2120168992-1009.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-174709409-2333227961-2120168992-1018.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-174709409-2333227961-2120168992-1006.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-174709409-2333227961-2120168992-1009.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-174709409-2333227961-2120168992-1018.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\RegistryBooster.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\User_Feed_Synchronization-{C1F53EF5-A90A-4463-B081-8DE80F973EE9}.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\User_Feed_Synchronization-{CFF4BF29-D2F3-4690-99EE-8AF269B91AFA}.job
~ Scan Scheduled Task in 00mn 00s

---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Mise à jour de la version d’Internet Explorer - <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} . (.Microsoft Corporation - IE Per User Active Setup Uninstall Utility.) -- C:\WINDOWS\system32\ieudinit.exe
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Utilitaire d'installation du Lecteur Windows Media de Microsoft.) -- C:\WINDOWS\inf\unregmp2.exe
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui
O40 - ASIC: Outlook Express - >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} . (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe
O40 - ASIC: Installation Support - {0291E591-EA41-4c82-8106-3DC6CE7F7664} . (.Yahoo! Inc. - YInstHelper Module.) -- C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O40 - ASIC: Viewpoint Media Player - {03F998B2-0E00-11D3-A498-00104B6EB52E} . (.Viewpoint Corporation - Viewpoint Media Player for Internet Explorer.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream.dll
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Viewpoint Media Player - {1B00725B-C455-4DE6-BFB6-AD540AD427CD} . (.Viewpoint Corporation - Viewpoint Media Player for Internet Explorer.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream.dll
O40 - ASIC: Microsoft NetShow Player - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\WINDOWS\system32\wmpdxm.dll
O40 - ASIC: Microsoft Windows Media Player 6.4 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\WINDOWS\system32\wmpdxm.dll
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\WINDOWS\system32\themeui.dll
O40 - ASIC: Installation Support - {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} . (.Yahoo! Inc. - YInstHelper Module.) -- C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O40 - ASIC: Installation Support - {347B0667-C7ED-429B-BDE3-CC8D3BACAA31} . (.Yahoo! Inc. - YInstHelper Module.) -- C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O40 - ASIC: Microsoft Outlook Express 6 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Bibliothèque d'installation Outlook Express.) -- C:\Program Files\Outlook Express\setup50.exe
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (...) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (...) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\WINDOWS\system32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (...) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Carnet d'adresses 6 - {7790769C-0471-11d2-AF11-00C04FA35D02} . (.Microsoft Corporation - Bibliothèque d'installation Outlook Express.) -- C:\Program Files\Outlook Express\setup50.exe
O40 - ASIC: Mise à jour du Bureau Windows - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\WINDOWS\system32\mscories.dll
O40 - ASIC: Fax - {8b15971b-5355-4c82-8c07-7e181ea07608} . (...) -- C:\WINDOWS\INF\fxsocm.inf
O40 - ASIC: IE Tour Reset Stub - {A509B1FF-37FF-4bFF-8CFF-4F3A747040FF} . (.Microsoft Corporation - ADVPACK.) -- C:\WINDOWS\system32\advpack.dll
~ Scan Active Setup in 00mn 00s

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\DRIVERS\cdrom.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\system32\DRIVERS\imapi.sys
O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\WINDOWS\system32\DRIVERS\intelppm.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\system32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\WINDOWS\system32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\system32\DRIVERS\netbt.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\system32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\system32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\WINDOWS\system32\DRIVERS\redbook.sys
O41 - Driver: (SAVOnAccessControl) . (.Sophos Plc - SAV On-access and HIPS for Windows XP (x86).) - C:\WINDOWS\system32\DRIVERS\savonaccesscontrol.sys
O41 - Driver: (SAVOnAccessFilter) . (.Sophos Plc - SAV On-access and HIPS for Windows XP (x86).) - C:\WINDOWS\system32\DRIVERS\savonaccessfilter.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\WINDOWS\system32\DRIVERS\serial.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\system32\DRIVERS\termdd.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (WS2IFSL) . (.Microsoft Corporation - Winsock2 IFS Layer.) - C:\WINDOWS\system32\drivers\ws2ifsl.sys
~ Scan Drivers in 00mn 00s

---\\ Logiciels installés (O42)
O42 - Logiciel: AC3Filter (remove only) - (.Pas de propriétaire.) [HKLM] -- AC3Filter
O42 - Logiciel: Action Replay Code Manager - (.Pas de propriétaire.) [HKLM] -- Action Replay Code Manager_is1
O42 - Logiciel: Adobe Acrobat 5.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Acrobat 5.0
O42 - Logiciel: Adobe Download Manager 2.2 (Supprimer uniquement) - (.Pas de propriétaire.) [HKLM] -- AdobeESD
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems, Inc..) [HKLM] -- {ECA1A3B6-898F-4DCE-9F04-714CF3BA126B}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Photoshop CS - (.Adobe Systems, Inc..) [HKLM] -- {EFB21DE7-8C19-4A88-BB28-A766E16493BC}
O42 - Logiciel: Adobe Reader 8.1.4 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A81300000003}
O42 - Logiciel: Adobe® Photoshop® Album Edition Découverte 3.0 - (.Adobe Systems, Inc..) [HKLM] -- {4BDFD2CE-6329-42E4-9801-9B3D1F10D79B}
O42 - Logiciel: Adparatus - (.Market Precision, Inc..) [HKLM] -- Adparatus
O42 - Logiciel: Agere Systems PCI Soft Modem - (.Pas de propriétaire.) [HKLM] -- Agere Systems Soft Modem
O42 - Logiciel: ArcSoft Software Suite - (.Pas de propriétaire.) [HKLM] -- {9E397B40-13F7-4CA2-9943-ADB29ACBBFDF}
O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Avery DesignPro - (.Pas de propriétaire.) [HKLM] -- {2CC982C0-7EAE-11D4-ACC3-0050568AD318}
O42 - Logiciel: Babe - (.Pas de propriétaire.) [HKLM] -- AmazingMathDeinstKey
O42 - Logiciel: C-Media High Definition Audio Driver - (.Pas de propriétaire.) [HKLM] -- C-Media Audio Driver
O42 - Logiciel: Compel Adaptec WinASPI - (.Pas de propriétaire.) [HKLM] -- Compel install Adaptec WinASPI-4.6.0(1021)_is1
O42 - Logiciel: Creatix V.92 Data Fax Modem - (.Pas de propriétaire.) [HKLM] -- Creatix V.92 Data Fax Modem
O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM] -- DVD Shrink_is1
O42 - Logiciel: DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5.1.2.2 - (.Fengtao Software Inc..) [HKLM] -- DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5_is1
O42 - Logiciel: DicteeCE2 - (.Pas de propriétaire.) [HKLM] -- DicteeCE2
O42 - Logiciel: DivX Codec - (.Pas de propriétaire.) [HKLM] -- DivX Codec
O42 - Logiciel: Diversity Stick - (.STD.) [HKLM] -- {7FF90D04-A60F-42A0-8F78-88623F99DCAC}
O42 - Logiciel: EvenMoreMegaSwellAdsForYou - (.Pas de propriétaire.) [HKLM] -- EvenMoreMegaSwellAdsForYou
O42 - Logiciel: Extension HighMAT pour l'Assistant Graver un CD de Microsoft Windows XP - (.Microsoft Corporation.) [HKLM] -- {FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}
O42 - Logiciel: Favorit (irtefgq) - (.Pas de propriétaire.) [HKLM] -- irtefgq
O42 - Logiciel: FoxTab PDF Creator - (.Pas de propriétaire.) [HKCU] -- FoxTab PDF Creator
O42 - Logiciel: Garmin City Navigator Europe NT 2011.10 - (.Garmin Ltd or its subsidiaries.) [HKLM] -- {9C45D9D2-D429-4EA7-8E9E-BFBBD9BAA4F2}
O42 - Logiciel: Garmin USB Drivers - (.Garmin Ltd or its subsidiaries.) [HKLM] -- {65F9E1F3-A2C1-4AA9-9F33-A3AEB0255F0E}
O42 - Logiciel: Garmin WebUpdater - (.Garmin Ltd or its subsidiaries.) [HKLM] -- {6C94A234-CA2C-4D3C-81E6-6AAA8069825D}
O42 - Logiciel: Generic USB CardReader 2.0 - (.Pas de propriétaire.) [HKLM] -- {EA1CB7AC-E221-4822-A789-0ADB051DC498}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP Photo Creations - (.HP Photo Creations Powered by RocketLife.) [HKLM] -- HP Photo Creations
O42 - Logiciel: HP Photosmart Plus B210 series - Enquête sur l'amélioration du produit - (.Hewlett-Packard Co..) [HKLM] -- {0D39BF66-2045-48EF-9399-8C98744FFDC2}
O42 - Logiciel: HP Photosmart Plus B210 series Aide - (.Hewlett Packard.) [HKLM] -- {7F5FDEA1-D0AC-4D80-9D95-59775FCCFA40}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}
O42 - Logiciel: Home Cinema - (.Pas de propriétaire.) [HKLM] -- {6B103F43-069C-11D6-9EA2-0050BAE317E1}
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399
O42 - Logiciel: Hotfix for Windows XP (KB915800-v4) - (.Microsoft Corporation.) [HKLM] -- KB915800-v4
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5
O42 - Logiciel: Information sur votre PC - (.Pas de propriétaire.) [HKLM] -- {36D6F663-DF15-45BD-B0C6-4B909308E3B6}
O42 - Logiciel: Instant Access - (.Pas de propriétaire.) [HKLM] -- Instant Access
O42 - Logiciel: InterActual Player - (.Pas de propriétaire.) [HKLM] -- InterActual Player
O42 - Logiciel: Java(TM) 6 Update 17 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216011FF}
O42 - Logiciel: Learn2 Player (Uninstall Only) - (.Pas de propriétaire.) [HKLM] -- StreetPlugin
O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player
O42 - Logiciel: LimeWire 5.5.14 - (.Lime Wire, LLC.) [HKLM] -- LimeWire
O42 - Logiciel: Live-Player - (.Favorit Network S.L..) [HKLM] -- Live-Player
O42 - Logiciel: Logiciel de base du périphérique HP Photosmart Plus B210 series - (.Hewlett-Packard Co..) [HKLM] -- {7932DBD1-97EF-46BA-BBC9-064060E32BA3}
O42 - Logiciel: MAX DS Video Converter - (.Pas de propriétaire.) [HKLM] -- MAX DS Video Converter_is1
O42 - Logiciel: MP3 Player Utilities - (. .) [HKLM] -- {5BBFB0E4-2250-49C3-A8A3-65BE2197D13B}
O42 - Logiciel: MSN Messenger 6.2 - (.Microsoft Corporation.) [HKLM] -- {ABEB838C-A1A7-4C5D-B7E1-8B4314600133}
O42 - Logiciel: MSXML 4.0 - (.Microsoft Corporation.) [HKLM] -- {428102E6-8A39-48B9-8389-847F5A44A600}
O42 - Logiciel: MSXML 4.0 - (.Microsoft Corporation.) [HKLM] -- {54BB0384-1C33-488F-A95B-877E480D3EDC}
O42 - Logiciel: MSXML 4.0 SP2 (KB927978) - (.Microsoft Corporation.) [HKLM] -- {37477865-A3F1-4772-AD43-AAFC6BCFF99F}
O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}
O42 - Logiciel: Macromedia Shockwave Player - (.Pas de propriétaire.) [HKLM] -- Macromedia Shockwave Player
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2656353) - (.Pas de propriétaire.) [HKLM] -- M2656353
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs
O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_ENTERPRISER_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_ENTERPRISER_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_ENTERPRISER_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_ENTERPRISER_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_ENTERPRISER_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_ENTERPRISER_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_ENTERPRISER_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_ENTERPRISER_{8283FD64-6A3B-4104-9E12-7CA25EF29A1A}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}_ENTERPRISER_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-00BA-040C-0000-0000000FF1CE}_ENTERPRISER_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}
O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM] -- ENTERPRISER
O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM] -- {90140000-2005-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Groove MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00BA-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_ENTERPRISER_{3E8EA473-ECCE-405F-A9CA-59446AEADD3A}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISER_{928D7B99-2BEA-49F9-83B8-20FA57860643}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISER_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISER_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_ENTERPRISER_{2C95E7EE-FEA7-4B3A-A6E5-DF90A88B816A}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISER_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}
O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {A059DE09-1B49-4450-B340-7AE097EC3F04}
O42 - Logiciel: MovieBox - (.Pas de propriétaire.) [HKLM] -- MovieBox
O42 - Logiciel: Multimedia Keyboard Driver - (.Pas de propriétaire.) [HKLM] -- {6E66ECBD-FCA7-4AE1-A8C5-1CA78BEEB057}
O42 - Logiciel: Musicmatch® Jukebox - (.Pas de propriétaire.) [HKLM] -- {8EF1122E-E90C-4EE9-AB0C-7FDE2BA42C26}
O42 - Logiciel: NVIDIA Drivers - (.Pas de propriétaire.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: Nero 8 - (.Nero AG.) [HKLM] -- {2B8F4D70-F9CA-4E94-B2A5-49AAD4CE1036}
O42 - Logiciel: Outil de notification de cadeaux MSN - (.Microsoft Corporation.) [HKCU] -- {CAD9C0EB-457D-49BB-A6AD-389304C38B2A}
O42 - Logiciel: Photo Notifier and Animation Creator - (.IncrediMail Ltd..) [HKLM] -- Photo Notifier and Animation Creator
O42 - Logiciel: Photo Notifier and Animation Creator - (.Nom de votre société.) [HKLM] -- {6B7F28D4-160E-40C6-B7C8-5EC6B9734DA7}
O42 - Logiciel: Photoc Home Picture Service - (.Pas de propriétaire.) [HKLM] -- Photoc Home Picture Service
O42 - Logiciel: PowerCinema - (.Pas de propriétaire.) [HKLM] -- {2637C347-9DAD-11D6-9EA2-00055D0CA761}
O42 - Logiciel: PowerDVD - (.Pas de propriétaire.) [HKLM] -- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1}
O42 - Logiciel: PowerProducer - (.Pas de propriétaire.) [HKLM] -- {B7A0CE06-068E-11D6-97FD-0050BACBF861}
O42 - Logiciel: QuestService 1.0 build 129 - (.Pas de propriétaire.) [HKLM] -- QuestService
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
O42 - Logiciel: RealNetworks - Microsoft Visual C++ 2008 Runtime - (.RealNetworks, Inc.) [HKLM] -- {7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}
O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM] -- RealPlayer 12.0
O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB}
O42 - Logiciel: SD Viewer for DSC - (.Pas de propriétaire.) [HKLM] -- {5A8D3524-79DB-11D5-99D1-00010256D40E}
O42 - Logiciel: SafeCast Shared Components - (.Macrovision.) [HKLM] -- CdaC13Ba
O42 - Logiciel: SecurDisc Viewer - (.Nero AG.) [HKLM] -- {4BC5B788-1670-44CA-90A2-F85193431036}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{5DD3FF90-B302-45B2-A188-C5EA7ACD5D46}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{A0D5F849-D9D5-48ED-99D0-C74D7BFA6A09}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{E34960DB-2A93-45DB-A208-02650F7AB09C}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{293FB6BE-D3EB-4162-B522-F9108040B9FE}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596880) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{31C0F635-15AD-4AA3-A3C6-B542B403D0EE}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2597162) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{3069CE04-082C-4669-9BA1-E6AA66330C1F}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{2B3C041A-A7F2-4A24-968D-4BEB6A123D15}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2598041) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{ABB5F56F-FC55-4C7E-9622-B8A1E670BAFC}
O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2597161) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{B4C12F08-B0EF-4CC4-AD5F-381DD62BF640}
O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edi - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{AEA16A27-0B97-4670-818F-A98D06EC0A6F}
O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edi - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{0EF0D4FB-BB23-4515-AAEA-1240AC2DA525}
O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edit - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{5A8732F0-C20F-4A9B-A2A9-66FE7A586C35}
O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2596917) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{075C2272-0881-46D3-B3A5-1D83D6940270}
O42 - Logiciel: Security Update for Windows Search 4 - KB963093 - (.Microsoft Corporation.) [HKLM] -- KB963093
O42 - Logiciel: Softonic_France Toolbar - (.Softonic_France.) [HKLM] -- Softonic_France Toolbar
O42 - Logiciel: Sophos Anti-Virus - (.Sophos Plc.) [HKLM] -- {9ACB414D-9347-40B6-A453-5EFB2DB59DFA}
O42 - Logiciel: Sophos AutoUpdate - (.Sophos Plc.) [HKLM] -- {15C418EB-7675-42be-B2B3-281952DA014D}
O42 - Logiciel: Sophos Virus Removal Tool - (.Sophos Limited.) [HKLM] -- {B829E117-D072-41EA-9606-9826A38D34C1}
O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}
O42 - Logiciel: Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2598290) 32-B - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{FF2E1543-EDB3-4B96-989C-A97DA428D88E}
O42 - Logiciel: Utilitaire de sauvegarde Windows - (.Microsoft Corporation.) [HKLM] -- {76EFFC7C-17A6-479D-9E47-8E658C1695AE}
O42 - Logiciel: VIA Rhine-Family Fast Ethernet Adapter - (.Pas de propriétaire.) [HKLM] -- VN_VUIns_Rhine_VIA
O42 - Logiciel: Viewpoint Media Player - (.Pas de propriétaire.) [HKLM] -- ViewpointMediaPlayer
O42 - Logiciel: VirginMega.Fr Premium - (.VirginMega.Fr.) [HKLM] -- {D416E000-D999-470A-BCAC-98E717CC1AFC}
O42 - Logiciel: Visionneuse Journal Windows Microsoft - (.Microsoft.) [HKLM] -- {43DCF766-6838-4F9A-8C91-D92DA586DFA7}
O42 - Logiciel: Visual C++ 8.0 CRT (x86) WinSXS MSM - (.Microsoft Corporation.) [HKLM] -- {98CB24AD-52FB-DB5F-FF1F-C8B3B9A1E18E}
O42 - Logiciel: VobSub v2.23 (Remove Only) - (.Pas de propriétaire.) [HKLM] -- VobSub
O42 - Logiciel: WebMediaPlayer - (.OOO «Favorit».) [HKLM] -- WebMediaPlayer
O42 - Logiciel: Weflirt - (.DreamNex.) [HKLM] -- DialMessenger_is1
O42 - Logiciel: WhereSphere - (.WhereSphere.) [HKCU] -- WhereSphere
O42 - Logiciel: WinAce Archiver - (.Pas de propriétaire.) [HKLM] -- WinAce Archiver
O42 - Logiciel: Wincore MediaBar - (.iMesh Inc..) [HKLM] -- Wincore MediaBar
O42 - Logiciel: Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0 - (.Garmin.) [HKLM] -- 49CF605F02C7954F4E139D18828DE298CD59217C
O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474) - (.Microsoft Corporation.) [HKLM] -- WgaNotify
O42 - Logiciel: Windows Internet Explorer 7 - (.Microsoft Corporation.) [HKLM] -- ie7
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11
O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11
O42 - Logiciel: Windows Search 4.0 - (.Microsoft Corporation.) [HKLM] -- KB940157
O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service
O42 - Logiciel: XviD 1.1 final uninstall - (.XviD team (Koepi).) [HKLM] -- XviD_is1
O42 - Logiciel: Yahoo! Install Manager - (.Pas de propriétaire.) [HKLM] -- YInstHelper
O42 - Logiciel: Yahoo! Software Update - (.Pas de propriétaire.) [HKLM] -- Yahoo! Software Update
O42 - Logiciel: iMesh - (.iMesh Inc..) [HKLM] -- iMesh
O42 - Logiciel: iMesh - (.iMesh Inc..) [HKLM] -- {8FB495A1-4A3F-4C1D-BD27-3F3AB2E66763}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\AC3Filter]
[HKCU\Software\AOLToolbar]
[HKCU\Software\ASProtect]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Adobe]
[HKCU\Software\Ahead]
[HKCU\Software\America Online]
[HKCU\Software\AppDataLow\Software\MarketPrecision]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\ArcSoft]
[HKCU\Software\Aurigma]
[HKCU\Software\Automated Content Enhancer]
[HKCU\Software\Avery]
[HKCU\Software\Borland]
[HKCU\Software\CDDB]
[HKCU\Software\CMW]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CodeGear]
[HKCU\Software\Conduit]
[HKCU\Software\Customized Platform Advancer]
[HKCU\Software\Cyberlink]
[HKCU\Software\DVD Decrypter]
[HKCU\Software\DVD Shrink]
[HKCU\Software\DVDFab]
[HKCU\Software\DataMngr]
[HKCU\Software\DataMngr_Toolbar]
[HKCU\Software\DivXNetworks]
[HKCU\Software\EGDHTML]
[HKCU\Software\EvenMoreMegaSwellAdsForYou]
[HKCU\Software\FRANCE TELECOM]
[HKCU\Software\Gabest]
[HKCU\Software\Garmin]
[HKCU\Software\Gnu]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\HookNetwork]
[HKCU\Software\IADirectShow]
[HKCU\Software\IM]
[HKCU\Software\ImInstaller]
[HKCU\Software\IncrediMail]
[HKCU\Software\InstallCore]
[HKCU\Software\InstantStormSavers]
[HKCU\Software\Intel]
[HKCU\Software\InterActual Technologies]
[HKCU\Software\JavaSoft]
[HKCU\Software\Lake]
[HKCU\Software\LanConfig]
[HKCU\Software\Leadertech]
[HKCU\Software\Live-Player]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\MMBPlayer]
[HKCU\Software\MUSICMATCH]
[HKCU\Software\Macromedia]
[HKCU\Software\Magnet]
[HKCU\Software\MarketPrecision]
[HKCU\Software\Masta]
[HKCU\Software\Media Access Startup]
[HKCU\Software\MediaHoldings]
[HKCU\Software\Monitored]
[HKCU\Software\Montorgueil]
[HKCU\Software\MovieBox]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NCH Software]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Opendisc]
[HKCU\Software\Opera Software]
[HKCU\Software\P2EClient]
[HKCU\Software\Panasonic]
[HKCU\Software\Peer2Me]
[HKCU\Software\PlayMP3]
[HKCU\Software\Policies]
[HKCU\Software\PriceGong]
[HKCU\Software\Raptr]
[HKCU\Software\RealNetworks]
[HKCU\Software\RegZooka2008]
[HKCU\Software\RegZooka]
[HKCU\Software\S.A.D]
[HKCU\Software\SPAMfighter]
[HKCU\Software\Sensaura]
[HKCU\Software\SlySoft]
[HKCU\Software\Softonic]
[HKCU\Software\Softonic_France]
[HKCU\Software\Software]
[HKCU\Software\Sophos]
[HKCU\Software\Symantec]
[HKCU\Software\Trolltech]
[HKCU\Software\VirginMega]
[HKCU\Software\Visan]
[HKCU\Software\Web Search Operator]
[HKCU\Software\WebMediaPlayer]
[HKCU\Software\WinAntiVirus Pro 2006]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\X10]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKCU\Software\e-merge]
[HKCU\Software\ej-technologies]
[HKCU\Software\exts]
[HKCU\Software\fcn]
[HKCU\Software\freeware]
[HKCU\Software\iMesh]
[HKCU\Software\kde.org]
[HKCU\Software\livesvc]
[HKCU\Software\mc]
[HKCU\Software\mediabarim]
[HKCU\Software\mozilla.org]
[HKCU\Software\settings]
[HKCU\Software\sponsoradulto]
[HKCU\Software\temp]
[HKLM\Software\ACE Compression Software]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Adobe]
[HKLM\Software\Agere]
[HKLM\Software\Ahead]
[HKLM\Software\America Online]
[HKLM\Software\AppDataLow]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple]
[HKLM\Software\ArcSoft]
[HKLM\Software\AskTBar]
[HKLM\Software\Audible]
[HKLM\Software\Automated Content Enhancer]
[HKLM\Software\Avery]
[HKLM\Software\Babylon]
[HKLM\Software\Boonty]
[HKLM\Software\BrowserChoice]
[HKLM\Software\Bulldog]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CDDB]
[HKLM\Software\Chicony]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Companion Wizard]
[HKLM\Software\ComputerAssociates]
[HKLM\Software\Conduit]
[HKLM\Software\Customized Platform Advancer]
[HKLM\Software\CyberLink]
[HKLM\Software\DIOC]
[HKLM\Software\DK Multimedia]
[HKLM\Software\DVD Decrypter 3.5.4.0 Fr]
[HKLM\Software\DVDFab]
[HKLM\Software\DataMngr]
[HKLM\Software\DivXNetworks]
[HKLM\Software\Excid.com]
[HKLM\Software\FRANCE TELECOM]
[HKLM\Software\GTek]
[HKLM\Software\GYOZA]
[HKLM\Software\Garmin]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\HP]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\ICSI]
[HKLM\Software\INTEL]
[HKLM\Software\ImInstaller]
[HKLM\Software\InterActual Technologies]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\KNC1]
[HKLM\Software\Lake]
[HKLM\Software\Licenses]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\MarketPrecision]
[HKLM\Software\Media Access Startup]
[HKLM\Software\MetaStream]
[HKLM\Software\MimarSinan]
[HKLM\Software\Mindscape]
[HKLM\Software\Morgan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\MusicMatch]
[HKLM\Software\MusicNet]
[HKLM\Software\NCH Software]
[HKLM\Software\NCH Swift Sound]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nero]
[HKLM\Software\ODBC]
[HKLM\Software\Panasonic]
[HKLM\Software\Photoc]
[HKLM\Software\Policies]
[HKLM\Software\PopCap]
[HKLM\Software\Program Groups]
[HKLM\Software\RealNetworks]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\RocketLife]
[HKLM\Software\S.A.D]
[HKLM\Software\STD]
[HKLM\Software\Schlumberger]
[HKLM\Software\Secure]
[HKLM\Software\SoftShape]
[HKLM\Software\Softonic_France]
[HKLM\Software\Sonic]
[HKLM\Software\Sophos]
[HKLM\Software\Sound Source Interactive]
[HKLM\Software\Symantec]
[HKLM\Software\TechCity]
[HKLM\Software\Ubi Soft]
[HKLM\Software\Uniblue]
[HKLM\Software\VN_VUIns]
[HKLM\Software\Viewpoint]
[HKLM\Software\VirginMega]
[HKLM\Software\Visan]
[HKLM\Software\Web Search Operator]
[HKLM\Software\WinAntiVirus Pro 2006]
[HKLM\Software\WinSock2]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\Windows]
[HKLM\Software\Xing Technology Corp.]
[HKLM\Software\Yahoo]
[HKLM\Software\Yuan High-Tech]
[HKLM\Software\ej-technologies]
[HKLM\Software\emme]
[HKLM\Software\emmegroups]
[HKLM\Software\http://202.64.251.110/ui.php]
[HKLM\Software\iMeshMediabarTb]
[HKLM\Software\magnet]
[HKLM\Software\mozilla.org]
[HKLM\Software\thelondonstockexchange.com]
~ Scan Softwares in 00mn 00s

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 13/04/2005 - 19:47:18 - [0,497] ----D C:\Program Files\AC3Filter
O43 - CFD: 12/03/2011 - 11:05:11 - [324,193] ----D C:\Program Files\Adobe
O43 - CFD: 09/01/2010 - 18:45:05 - [1,827] ----D C:\Program Files\Adparatus
O43 - CFD: 19/09/2009 - 14:51:26 - [0,285] ----D C:\Program Files\ADS Tech
O43 - CFD: 17/03/2008 - 13:05:55 - [68,796] ----D C:\Program Files\Ahead
O43 - CFD: 30/07/2005 - 10:50:05 - [310,286] ----D C:\Program Files\ArcSoft
O43 - CFD: 11/04/2012 - 17:44:29 - [0,063] ----D C:\Program Files\AskTBar
O43 - CFD: 11/12/2009 - 15:40:24 - [1,439] ----D C:\Program Files\Automated Content Enhancer
O43 - CFD: 19/05/2012 - 17:35:25 - [0] ----D C:\Program Files\AVS4YOU
O43 - CFD: 12/02/2011 - 17:56:10 - [13,599] ----D C:\Program Files\Azureus
O43 - CFD: 30/04/2005 - 17:24:52 - [0,009] ----D C:\Program Files\BoontyGames
O43 - CFD: 19/01/2005 - 14:04:26 - [3,687] ----D C:\Program Files\Cardreader Software
O43 - CFD: 26/10/2006 - 14:28:05 - [2,203] ----D C:\Program Files\Common Files
O43 - CFD: 10/12/2011 - 18:35:47 - [0,609] ----D C:\Program Files\Conduit
O43 - CFD: 11/12/2009 - 15:41:06 - [0,946] ----D C:\Program Files\Content Management Wizard
O43 - CFD: 11/12/2009 - 15:40:35 - [1,213] ----D C:\Program Files\Customized Platform Advancer
O43 - CFD: 25/11/2008 - 20:39:13 - [142,380] ----D C:\Program Files\CyberLink
O43 - CFD: 28/02/2009 - 18:37:22 - [16,153] ----D C:\Program Files\Datel
O43 - CFD: 07/02/2012 - 20:20:15 - [0,017] ----D C:\Program Files\DealPly
O43 - CFD: 03/03/2012 - 10:44:55 - [0,290] ----D C:\Program Files\DIFX
O43 - CFD: 13/04/2005 - 19:47:11 - [0,079] ----D C:\Program Files\DivX
O43 - CFD: 08/02/2008 - 17:26:02 - [0,684] ----D C:\Program Files\DVD Shrink
O43 - CFD: 08/02/2008 - 17:26:02 - [0,251] ----D C:\Program Files\DVD Shrink(2)
O43 - CFD: 11/12/2008 - 22:24:11 - [18,126] ----D C:\Program Files\DVDFab 5
O43 - CFD: 09/01/2010 - 18:42:12 - [0,204] ----D C:\Program Files\EvenMoreMegaSwellAdsForYou
O43 - CFD: 19/05/2012 - 16:38:00 - [579,381] ----D C:\Program Files\Fichiers communs
O43 - CFD: 14/01/2012 - 10:53:00 - [14,387] ----D C:\Program Files\FoxTabPDFConverter
O43 - CFD: 13/04/2005 - 19:47:14 - [0,059] ----D C:\Program Files\Gabest
O43 - CFD: 03/03/2012 - 10:44:52 - [60,061] ----D C:\Program Files\Garmin
O43 - CFD: 16/05/2012 - 11:53:41 - [298,706] ----D C:\Program Files\Google
O43 - CFD: 19/01/2005 - 16:22:59 - [2,147] ----D C:\Program Files\HighMAT CD Writing Wizard
O43 - CFD: 19/01/2005 - 15:11:26 - [109,780] ----D C:\Program Files\Home Cinema
O43 - CFD: 17/08/2011 - 16:33:03 - [49,665] ----D C:\Program Files\HP
O43 - CFD: 17/08/2011 - 16:33:09 - [0,352] ----D C:\Program Files\HP Photo Creations
O43 - CFD: 23/07/2011 - 09:38:32 - [59,780] ----D C:\Program Files\iMesh Applications
O43 - CFD: 02/10/2011 - 12:15:52 - [35,926] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 22/10/2005 - 15:51:34 - [338,579] ----D C:\Program Files\Instant access
O43 - CFD: 19/01/2005 - 12:13:07 - [0,045] ----D C:\Program Files\Intel
O43 - CFD: 13/04/2005 - 19:53:13 - [7,195] ----D C:\Program Files\InterActual
O43 - CFD: 11/05/2012 - 06:57:53 - [5,094] ----D C:\Program Files\Internet Explorer
O43 - CFD: 11/12/2009 - 15:40:49 - [3,053] ----D C:\Program Files\Internet Today
O43 - CFD: 23/07/2011 - 21:59:31 - [78,490] ----D C:\Program Files\Java
O43 - CFD: 12/05/2012 - 09:32:24 - [0] ----D C:\Program Files\Kwanzy
O43 - CFD: 19/01/2005 - 15:09:00 - [0,679] ----D C:\Program Files\Learn2.com
O43 - CFD: 31/08/2010 - 11:24:51 - [121,341] ----D C:\Program Files\LimeWire
O43 - CFD: 14/07/2009 - 19:07:16 - [1,984] ----D C:\Program Files\Live-Player
O43 - CFD: 26/02/2012 - 19:42:52 - [2,053] ----D C:\Program Files\Messenger
O43 - CFD: 10/12/2011 - 18:46:30 - [0] ----D C:\Program Files\Microsoft
O43 - CFD: 18/01/2005 - 18:15:28 - [0] ----D C:\Program Files\microsoft frontpage
O43 - CFD: 30/06/2011 - 17:11:21 - [672,826] ----D C:\Program Files\Microsoft Office
O43 - CFD: 12/05/2012 - 08:45:47 - [36,641] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 12/11/2009 - 10:27:35 - [0,014] ----D C:\Program Files\Microsoft Visual Studio
O43 - CFD: 08/01/2010 - 20:21:54 - [144,233] ----D C:\Program Files\Microsoft Works
O43 - CFD: 12/11/2009 - 10:26:28 - [7,774] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 26/02/2012 - 19:43:47 - [9,894] ----D C:\Program Files\Movie Maker
O43 - CFD: 04/07/2009 - 17:37:32 - [0] ----D C:\Program Files\MovieBox
O43 - CFD: 19/04/2010 - 10:24:31 - [0,795] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 31/01/2009 - 16:20:54 - [3,079] ----D C:\Program Files\MP3 Player Utilities
O43 - CFD: 12/11/2009 - 10:28:02 - [0,001] ----D C:\Program Files\MSBuild
O43 - CFD: 18/01/2005 - 18:12:41 - [18,385] ----D C:\Program Files\MSN
O43 - CFD: 18/01/2005 - 18:12:48 - [8,341] ----D C:\Program Files\MSN Gaming Zone
O43 - CFD: 19/01/2005 - 14:48:41 - [5,426] ----D C:\Program Files\MSN Messenger
O43 - CFD: 21/06/2007 - 21:50:03 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 19/01/2005 - 15:13:32 - [67,484] ----D C:\Program Files\Musicmatch
O43 - CFD: 09/03/2011 - 19:27:59 - [3,205] ----D C:\Program Files\NCH Software
O43 - CFD: 17/03/2008 - 13:30:55 - [788,206] ----D C:\Program Files\Nero
O43 - CFD: 26/02/2012 - 19:42:50 - [3,133] ----D C:\Program Files\NetMeeting
O43 - CFD: 13/08/2006 - 18:29:55 - [1,205] ----D C:\Program Files\Noos
O43 - CFD: 18/01/2005 - 18:12:53 - [0,002] ----D C:\Program Files\Online Services
O43 - CFD: 26/02/2012 - 19:43:46 - [10,052] ----D C:\Program Files\Outlook Express
O43 - CFD: 30/07/2005 - 10:48:32 - [20,244] ----D C:\Program Files\Panasonic
O43 - CFD: 10/12/2011 - 18:36:52 - [2,630] ----D C:\Program Files\Photo Notifier and Animation Creator
O43 - CFD: 10/09/2005 - 12:29:21 - [18,587] ----D C:\Program Files\Photoc Home Picture Service
O43 - CFD: 12/12/2009 - 11:36:28 - [0,145] ----D C:\Program Files\QuestService
O43 - CFD: 23/05/2009 - 14:28:40 - [77,956] ----D C:\Program Files\QuickTime
O43 - CFD: 12/02/2011 - 17:58:28 - [63,257] ----D C:\Program Files\Raptr
O43 - CFD: 27/10/2011 - 09:16:07 - [91,919] ----D C:\Program Files\Real
O43 - CFD: 16/01/2010 - 18:21:28 - [0] ----D C:\Program Files\RegZooka
O43 - CFD: 15/01/2011 - 18:10:38 - [5,310] ----D C:\Program Files\SCBackup
O43 - CFD: 18/01/2005 - 18:13:55 - [0,001] ----D C:\Program Files\Services en ligne
O43 - CFD: 09/09/2008 - 21:34:55 - [0] ----D C:\Program Files\SlySoft
O43 - CFD: 15/05/2012 - 17:41:30 - [12,326] ----D C:\Program Files\Softonic_France
O43 - CFD: 12/05/2012 - 09:01:44 - [464,168] ----D C:\Program Files\Sophos
O43 - CFD: 05/01/2007 - 23:16:00 - [0,746] ----D C:\Program Files\Sophos SWEEP for NT
O43 - CFD: 25/11/2008 - 20:34:09 - [3,413] ----D C:\Program Files\STD
O43 - CFD: 05/04/2006 - 10:09:52 - [0] ----D C:\Program Files\Symantec
O43 - CFD: 14/04/2005 - 10:16:05 - [0,208] ----D C:\Program Files\SymNetDrv
O43 - CFD: 11/12/2009 - 15:41:16 - [1,076] ----D C:\Program Files\Textual Content Provider
O43 - CFD: 10/12/2010 - 10:47:24 - [14,176] ----D C:\Program Files\Uniblue
O43 - CFD: 17/03/2008 - 09:48:18 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 19/01/2005 - 15:09:00 - [6,681] ----D C:\Program Files\Viewpoint
O43 - CFD: 01/05/2010 - 10:59:37 - [1,047] ----D C:\Program Files\VirginMega
O43 - CFD: 11/12/2009 - 15:40:15 - [1,046] ----D C:\Program Files\Web Search Operator
O43 - CFD: 18/10/2010 - 18:38:41 - [0,860] ----D C:\Program Files\WebMediaPlayer
O43 - CFD: 06/11/2006 - 22:53:40 - [0,601] ----D C:\Program Files\WinAntiVirus Pro 2006
O43 - CFD: 13/04/2005 - 19:47:00 - [0,070] ----D C:\Program Files\WinASPI
O43 - CFD: 12/11/2009 - 20:08:41 - [5,167] ----D C:\Program Files\Windows Desktop Search
O43 - CFD: 18/01/2005 - 18:18:32 - [1,996] ----D C:\Program Files\Windows Journal Viewer
O43 - CFD: 06/09/2007 - 19:30:58 - [0,001] ----D C:\Program Files\Windows Media Connect
O43 - CFD: 06/09/2007 - 19:32:42 - [3,415] ----D C:\Program Files\Windows Media Connect 2
O43 - CFD: 23/09/2008 - 20:10:54 - [12,420] ----D C:\Program Files\Windows Media Player
O43 - CFD: 23/09/2008 - 20:10:53 - [3,760] ----D C:\Program Files\Windows NT
O43 - CFD: 02/07/2005 - 18:30:32 - [0] --H-D C:\Program Files\WindowsUpdate
O43 - CFD: 13/01/2006 - 23:34:27 - [3,452] ----D C:\Program Files\WinRAR
O43 - CFD: 18/01/2005 - 18:15:28 - [0] ----D C:\Program Files\xerox
O43 - CFD: 20/02/2006 - 19:49:49 - [0,730] ----D C:\Program Files\XviD
O43 - CFD: 24/02/2012 - 10:49:01 - [1,048] ----D C:\Program Files\Yahoo!
O43 - CFD: 22/05/2012 - 19:30:21 - [13,553] ----D C:\Program Files\ZHPDiag
O43 - CFD: 12/03/2011 - 11:01:23 - [88,169] ----D C:\Program Files\Fichiers communs\Adobe
O43 - CFD: 17/03/2008 - 13:25:16 - [0] ----D C:\Program Files\Fichiers communs\Ahead
O43 - CFD: 19/05/2012 - 17:35:30 - [28,847] ----D C:\Program Files\Fichiers communs\AVSMedia
O43 - CFD: 06/03/2011 - 11:26:01 - [0,120] ----D C:\Program Files\Fichiers communs\Cisco Systems
O43 - CFD: 12/11/2009 - 10:27:35 - [0,089] ----D C:\Program Files\Fichiers communs\DESIGNER
O43 - CFD: 15/11/2009 - 11:10:42 - [0,156] ----D C:\Program Files\Fichiers communs\DriveCleaner Free
O43 - CFD: 19/01/2005 - 15:12:07 - [6,340] ----D C:\Program Files\Fichiers communs\InstallShield
O43 - CFD: 23/07/2011 - 22:00:32 - [0,002] ----D C:\Program Files\Fichiers communs\Java
O43 - CFD: 23/04/2005 - 21:30:38 - [0,258] ----D C:\Program Files\Fichiers communs\Macrovision Shared
O43 - CFD: 19/05/2012 - 16:38:53 - [273,570] ----D C:\Program Files\Fichiers communs\Microsoft Shared
O43 - CFD: 18/01/2005 - 18:13:42 - [0,271] ----D C:\Program Files\Fichiers communs\MSSoap
O43 - CFD: 17/03/2008 - 13:40:21 - [133,968] ----D C:\Program Files\Fichiers communs\Nero
O43 - CFD: 19/01/2005 - 15:08:53 - [2,151] ----D C:\Program Files\Fichiers communs\Nullsoft
O43 - CFD: 03/05/2005 - 19:57:15 - [0] ----D C:\Program Files\Fichiers communs\ODBC
O43 - CFD: 11/12/2010 - 12:06:54 - [1,265] ----D C:\Program Files\Fichiers communs\Real
O43 - CFD: 28/12/2009 - 16:29:58 - [0,775] ----D C:\Program Files\Fichiers communs\Scanner
O43 - CFD: 18/01/2005 - 18:13:43 - [0,008] ----D C:\Program Files\Fichiers communs\Services
O43 - CFD: 18/01/2005 - 19:09:05 - [3,612] ----D C:\Program Files\Fichiers communs\SpeechEngines
O43 - CFD: 23/09/2008 - 20:10:50 - [39,445] ----D C:\Program Files\Fichiers communs\System
O43 - CFD: 27/10/2011 - 09:15:55 - [0,336] ----D C:\Program Files\Fichiers communs\xing shared
O43 - CFD: 19/05/2012 - 16:40:07 - [-792,198] R---D C:\Documents and Settings\All Users\Application Data
O43 - CFD: 22/05/2012 - 19:28:13 - [0,027] ----D C:\Documents and Settings\All Users\Bureau
O43 - CFD: 17/05/2012 - 11:26:34 - [525,698] R---D C:\Documents and Settings\All Users\Documents
O43 - CFD: 15/07/2010 - 18:18:52 - [1,656] -SH-D C:\Documents and Settings\All Users\DRM
O43 - CFD: 18/01/2005 - 19:08:51 - [0] ----D C:\Documents and Settings\All Users\Favoris
O43 - CFD: 15/05/2012 - 17:04:47 - [0,335] R---D C:\Documents and Settings\All Users\Menu Démarrer
O43 - CFD: 18/01/2005 - 19:08:51 - [0] ----D C:\Documents and Settings\All Users\Modèles
O43 - CFD: 12/03/2011 - 11:09:07 - [29,564] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Adobe
O43 - CFD: 17/08/2007 - 14:51:47 - [0,000] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\AdobeUM
O43 - CFD: 23/02/2012 - 16:12:02 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\AdSigner
O43 - CFD: 23/11/2005 - 20:58:00 - [0,010] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Ahead
O43 - CFD: 19/01/2005 - 15:09:06 - [0,000] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\AOL
O43 - CFD: 01/10/2008 - 18:09:28 - [0,139] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Apple Computer
O43 - CFD: 30/07/2005 - 14:32:34 - [42,646] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\ArcSoft
O43 - CFD: 19/05/2012 - 16:40:00 - [0,010] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\AVS4YOU
O43 - CFD: 23/02/2012 - 16:12:15 - [6,330] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Azureus
O43 - CFD: 14/01/2012 - 10:52:55 - [0,013] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Babylon
O43 - CFD: 20/03/2005 - 18:41:50 - [0,015] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\CyberLink
O43 - CFD: 19/05/2010 - 15:21:56 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Download Manager
O43 - CFD: 08/06/2011 - 09:02:21 - [150,566] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\GARMIN
O43 - CFD: 17/09/2007 - 21:06:25 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Google
O43 - CFD: 20/07/2005 - 21:58:29 - [0,000] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Help
O43 - CFD: 17/08/2011 - 16:33:01 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\HpUpdate
O43 - CFD: 23/05/2005 - 18:18:33 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Identities
O43 - CFD: 01/11/2010 - 19:34:28 - [0,000] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\imeshmediabartb
O43 - CFD: 30/07/2005 - 10:52:23 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\InterTrust
O43 - CFD: 10/04/2012 - 19:20:14 - [0,373] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\kujytuo
O43 - CFD: 19/03/2011 - 10:48:41 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Leadertech
O43 - CFD: 23/07/2011 - 22:48:02 - [29,866] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\LimeWire
O43 - CFD: 04/07/2009 - 18:52:31 - [0,166] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\live-player
O43 - CFD: 19/01/2005 - 16:14:46 - [1,123] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Macromedia
O43 - CFD: 19/05/2012 - 16:34:32 - [0,014] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim
O43 - CFD: 27/07/2011 - 18:23:43 - [1,127] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim(2)
O43 - CFD: 26/02/2012 - 19:44:06 - [0,014] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim(3)
O43 - CFD: 26/02/2012 - 19:44:10 - [1,860] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\mediaplayer
O43 - CFD: 12/05/2012 - 09:01:59 - [3,052] -S--D C:\Documents and Settings\Gérard Boutelier\Application Data\Microsoft
O43 - CFD: 04/05/2007 - 14:41:54 - [3,408] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Mozilla
O43 - CFD: 09/03/2011 - 19:27:32 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\NCH Software
O43 - CFD: 29/01/2008 - 19:55:16 - [0,347] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Nero
O43 - CFD: 23/02/2012 - 16:12:15 - [5,695] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\OneSwarm
O43 - CFD: 19/05/2012 - 18:11:21 - [5,535] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\PriceGong
O43 - CFD: 12/02/2011 - 18:40:03 - [0,279] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Raptr
O43 - CFD: 11/12/2010 - 12:08:20 - [51,403] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Real
O43 - CFD: 01/10/2007 - 18:23:20 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\SlySoft
O43 - CFD: 15/05/2007 - 21:13:48 - [0,042] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\SPAMfighter
O43 - CFD: 04/02/2005 - 12:59:45 - [1,231] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Sun
O43 - CFD: 13/04/2005 - 19:19:41 - [0,028] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Symantec
O43 - CFD: 10/12/2010 - 10:47:41 - [1,290] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Uniblue
O43 - CFD: 11/12/2008 - 22:22:33 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Vso
O43 - CFD: 27/10/2007 - 11:10:53 - [0,001] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Weflirt
O43 - CFD: 17/05/2010 - 21:06:24 - [0,335] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\WhereSphere
O43 - CFD: 26/10/2006 - 14:27:25 - [0,003] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\WinAntiVirus Pro 2006
O43 - CFD: 19/05/2012 - 15:24:43 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\wincoreimband
O43 - CFD: 12/11/2009 - 10:49:26 - [0,000] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Windows Desktop Search
O43 - CFD: 19/12/2009 - 17:32:30 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Windows Search
O43 - CFD: 26/03/2009 - 22:03:24 - [0,021] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\Yahoo!
O43 - CFD: 19/01/2005 - 15:09:00 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\You've Got Pictures Screensaver
O43 - CFD: 12/11/2010 - 17:33:27 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\1.1.0.1810
O43 - CFD: 08/10/2007 - 22:20:54 - [0,578] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Adobe
O43 - CFD: 05/05/2008 - 18:57:48 - [32,033] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Ahead
O43 - CFD: 01/10/2008 - 18:07:32 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Apple
O43 - CFD: 01/10/2008 - 18:09:28 - [0,197] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Apple Computer
O43 - CFD: 20/02/2007 - 22:03:25 - [0,010] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\ApplicationHistory
O43 - CFD: 11/12/2009 - 15:40:26 - [0,496] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Automated Content Enhancer
O43 - CFD: 14/01/2012 - 10:52:56 - [3,790] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Babylon
O43 - CFD: 10/12/2011 - 18:45:11 - [1,877] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Conduit
O43 - CFD: 11/12/2009 - 15:40:36 - [0,421] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Customized Platform Advancer
O43 - CFD: 21/12/2010 - 15:38:50 - [2,697] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Downloaded Installations
O43 - CFD: 16/05/2012 - 11:53:39 - [1,317] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Google
O43 - CFD: 26/03/2005 - 23:37:55 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Help
O43 - CFD: 11/12/2009 - 15:51:20 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\HottieStar Toolbar
O43 - CFD: 17/08/2011 - 16:43:52 - [0,047] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\HP
O43 - CFD: 20/07/2005 - 11:14:35 - [536,337] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Identities
O43 - CFD: 10/12/2011 - 18:40:05 - [14,872] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\IM
O43 - CFD: 19/05/2012 - 16:47:31 - [47,376] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh
O43 - CFD: 10/12/2011 - 18:46:31 - [736,482] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft
O43 - CFD: 12/11/2009 - 10:21:03 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft Help
O43 - CFD: 04/05/2007 - 14:41:54 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Mozilla
O43 - CFD: 29/01/2008 - 22:15:41 - [0,061] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Nero
O43 - CFD: 10/12/2010 - 10:47:09 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\PackageAware
O43 - CFD: 23/02/2012 - 16:12:15 - [0,256] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Powercinema
O43 - CFD: 23/06/2009 - 19:48:14 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Real
O43 - CFD: 10/05/2007 - 21:36:59 - [0,001] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\SendPhoto
O43 - CFD: 17/05/2012 - 18:06:28 - [13,824] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France
O43 - CFD: 10/05/2007 - 21:58:27 - [0,034] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Sophos
O43 - CFD: 12/05/2011 - 10:05:28 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Temp
O43 - CFD: 11/12/2009 - 15:41:36 - [0,006] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Textual Content Provider
O43 - CFD: 11/12/2009 - 15:40:17 - [0,005] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Web Search Operator
O43 - CFD: 19/01/2005 - 17:11:41 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\WMTools Downloaded Files
O43 - CFD: 19/06/2010 - 09:47:44 - [0] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Yahoo
O43 - CFD: 04/02/2005 - 12:45:49 - [10,693] ----D C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150010}
O43 - CFD: 13/04/2005 - 19:47:18 - [0,004] ----D C:\Documents and Settings\Gérard Boutelier\Menu Démarrer\Programmes\AC3Filter
O43 - CFD: 17/03/2008 - 09:48:21 - [0,015] R---D C:\Documents and Settings\Gérard Boutelier\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 09/01/2010 - 18:45:05 - [0,004] ----D C:\Documents and Settings\Gérard Boutelier\Menu Démarrer\Programmes\Adparatus
O43 - CFD: 09/04/2012 - 16:44:41 - [0,001] R---D C:\Documents and Settings\Gérard Boutelier\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 14/01/2012 - 10:53:02 - [0,001] ----D C:\Documents and Settings\Gérard Boutelier\Menu Démarrer\Programmes\FoxTab PDF Creator
O43 - CFD: 31/08/2010 - 11:24:46 - [0,004] ----D C:\Documents and Settings\Gérard Boutelier\Menu Démarrer\Programmes\LimeWire
O43 - CFD: 18/01/2005 - 19:44:46 - [0,000] R---D C:\Documents and Settings\Gérard Boutelier\Menu Démarrer\Programmes\Outils d'administration
O43 - CFD: 10/09/2005 - 12:28:49 - [0,002] ----D C:\Documents and Settings\Gérard Boutelier\Menu Démarrer\Programmes\Photoc Home Picture Service
O43 - CFD: 12/05/2012 - 09:01:58 - [0,002] ----D C:\Documents and Settings\Gérard Boutelier\Menu Démarrer\Programmes\Sophos
O43 - CFD: 13/04/2005 - 19:47:15 - [0,001] ----D C:\Documents and Settings\Gérard Boutelier\Menu Démarrer\Programmes\VobSub
O43 - CFD: 24/12/2005 - 17:19:11 - [0,002] ----D C:\Documents and Settings\Gérard Boutelier\Menu Démarrer\Programmes\WinRAR
~ Scan Program Folder in 02mn 50s

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O46 - SEH:ShellExecuteHooks - Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll
~ Scan ShellExecuteHooks in 00mn 00s

---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
O47 - AAKE:Key Export SP - "C:\Program Files\MSN Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - MSN Messenger.) -- C:\Program Files\MSN Messenger\msnmsgr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\AOL 9.0\AOL.exe" [Enabled] .(...) -- C:\Program Files\AOL 9.0\AOL.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\AOL 9.0\WAOL.exe" [Enabled] .(...) -- C:\Program Files\AOL 9.0\WAOL.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\AOL\ACS\AOLACSD.exe" [Enabled] .(...) -- C:\Program Files\Fichiers communs\AOL\ACS\AOLACSD.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\AOL\ACS\AOLDIAL.exe" [Enabled] .(...) -- C:\Program Files\Fichiers communs\AOL\ACS\AOLDIAL.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\fxsclnt.exe" [Enabled] .(.Microsoft Corporation - Microsoft Fax Console.) -- C:\WINDOWS\system32\fxsclnt.exe
O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Internet Explorer\IEXPLORE.EXE" [Disabled] .(.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Wanadoo\EspaceWanadoo.exe" [Enabled] .(...) -- C:\Program Files\Wanadoo\EspaceWanadoo.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\LimeWire\LimeWire.exe" [Enabled] .(.Lime Wire, LLC - LimeWire.) -- C:\Program Files\LimeWire\LimeWire.exe
O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Real\RealPlayer\realplay.exe" [Enabled] .(.RealNetworks, Inc. - RealPlayer.) -- C:\Program Files\Real\RealPlayer\realplay.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Groove.) -- C:\Program Files\Microsoft Office\Office12\GROOVE.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe
O47 - AAKE:Key Export SP - "C:\WINDOWS\explorer.exe" [Enabled] .(.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\explorer.exe
O47 - AAKE:Key Export SP - "C:\Program Files\OneSwarm\OneSwarm.exe" [Enabled] .(...) -- C:\Program Files\OneSwarm\OneSwarm.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Azureus\Azureus.exe" [Enabled] .(...) -- C:\Program Files\Azureus\Azureus.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Raptr\raptr.exe" [Enabled] .(.Pas de propriétaire - Raptr Client.) -- C:\Program Files\Raptr\raptr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Raptr\raptr_im.exe" [Enabled] .(.Pas de propriétaire - Raptr Client.) -- C:\Program Files\Raptr\raptr_im.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\DeviceSetup.exe" [Enabled] .(.Hewlett-Packard Co. - DeviceSetup.exe.) -- C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\DeviceSetup.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPNetworkCommunicator.exe" [Enabled] .(.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPNetworkCommunicator.exe
O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\Bin\IncMail.exe" [Enabled] .(...) -- C:\Program Files\IncrediMail\Bin\IncMail.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\Bin\ImApp.exe" [Enabled] .(...) -- C:\Program Files\IncrediMail\Bin\ImApp.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\Bin\ImpCnt.exe" [Enabled] .(...) -- C:\Program Files\IncrediMail\Bin\ImpCnt.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\iMesh Applications\iMesh\iMesh.exe" [Enabled] .(.iMesh, Inc - iMesh.) -- C:\Program Files\iMesh Applications\iMesh\iMesh.exe
O47 - AAKE:Key Export SP - "C:\Program Files\iMesh Applications\MediaBar\Datamngr\ToolBar\dtUser.exe" [Enabled] .(.Visicom Media Inc. - DTX broker.) -- C:\Program Files\iMesh Applications\MediaBar\Datamngr\ToolBar\dtUser.exe
O47 - AAKE:Key Export DP - "C:\WINDOWS\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
O47 - AAKE:Key Export DP - "C:\Program Files\MSN Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - MSN Messenger.) -- C:\Program Files\MSN Messenger\msnmsgr.exe
O47 - AAKE:Key Export DP - "C:\Program Files\AOL 9.0\AOL.exe" [Enabled] .(...) -- C:\Program Files\AOL 9.0\AOL.exe (.not file.)
O47 - AAKE:Key Export DP - "C:\Program Files\AOL 9.0\WAOL.exe" [Enabled] .(...) -- C:\Program Files\AOL 9.0\WAOL.exe (.not file.)
O47 - AAKE:Key Export DP - "C:\Program Files\Fichiers communs\AOL\ACS\AOLACSD.exe" [Enabled] .(...) -- C:\Program Files\Fichiers communs\AOL\ACS\AOLACSD.exe (.not file.)
O47 - AAKE:Key Export DP - "C:\Program Files\Fichiers communs\AOL\ACS\AOLDIAL.exe" [Enabled] .(...) -- C:\Program Files\Fichiers communs\AOL\ACS\AOLDIAL.exe (.not file.)
O47 - AAKE:Key Export DP - "C:\WINDOWS\system32\fxsclnt.exe" [Enabled] .(.Microsoft Corporation - Microsoft Fax Console.) -- C:\WINDOWS\system32\fxsclnt.exe
O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O47 - AAKE:Key Export DP - "C:\WINDOWS\explorer.exe" [Enabled] .(.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\explorer.exe
O47 - AAKE:Key Export DP - "C:\Program Files\iMesh Applications\iMesh\iMesh.exe" [Enabled] .(.iMesh, Inc - iMesh.) -- C:\Program Files\iMesh Applications\iMesh\iMesh.exe
~ Scan Keys in 00mn 02s

---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\system32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\WINDOWS\system32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Kerberos Security Package.) -- C:\WINDOWS\system32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\system32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\WINDOWS\system32\wdigest.dll
~ Scan Keys in 00mn 00s

---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\system32\Drivers\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\system32\Drivers\ip6fw.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\system32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\system32\Drivers\rdpcdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\system32\Drivers\rdpdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\system32\Drivers\rdpwd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\system32\Drivers\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdpipe.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdtcp.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.)
~ Scan CSB in 00mn 00s

---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ Scan IFEO in 00mn 00s

---\\ MountPoints2 Shell Key (O51) (None)

---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(TM) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\system32\tssoft32.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\system32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\system32\ir41_32.ax
O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm
O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\system32\ir50_32.dll
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.xvid"="xvid.dll" . (...) -- C:\WINDOWS\system32\xvid.dll
O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivXNetworks, Inc. - DivX Video for Windows Codec.) -- C:\WINDOWS\system32\DivX.dll
O52 - TDSD: \Drivers32\"vidc.VP60"="C:\WINDOWS\system32\vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\WINDOWS\system32\vp6vfw.dll
O52 - TDSD: \Drivers32\"vidc.VP61"="C:\WINDOWS\system32\vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\WINDOWS\system32\vp6vfw.dll
O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
O52 - TDSD: \drivers.desc\"xvid.dll"="XviD codec (Neodivx Version)" . (...) -- C:\WINDOWS\system32\xvid.dll
O52 - TDSD: \drivers.desc\"xvidvfw.dll"="XviD MPEG-4 Video Codec" . (...) -- C:\WINDOWS\system32\xvidvfw.dll
O52 - TDSD: \drivers.desc\"vp6vfw.dll"="EA VP6 Codec" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\WINDOWS\system32\vp6vfw.dll
O52 - TDSD: \drivers.desc\"l3codecp.acm"="" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Audio Layer-3 Codec for MSACM.) -- C:\WINDOWS\system32\l3codecp.acm
~ Scan Keys in 00mn 01s

---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\Adobe Photo Downloader [Key] . (.Adobe Systems Incorporated - Adobe Photoshop Album Starter Edition 3.0 c.) -- C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
O53 - SMSR:HKLM\...\startupreg\Adparatus [Key] . (.Market Precision, Inc - Adparatus Process.) -- C:\Program Files\Adparatus\Adparatus.exe
O53 - SMSR:HKLM\...\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} [Key] . (.Nero AG - Nero Home.) -- C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe
O53 - SMSR:HKLM\...\startupreg\cgugces [Key] . (...) -- c:\windows\system32\cgugces.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\ctfmon.exe [Key] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O53 - SMSR:HKLM\...\startupreg\DATAMNGR [Key] . (.iMesh, Inc - Data Manager.) -- C:\Program Files\iMesh Applications\MediaBar\Datamngr\datamngrUI.exe
O53 - SMSR:HKLM\...\startupreg\emgoi [Key] . (...) -- c:\windows\system32\emgoi.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\eyesi [Key] . (...) -- c:\windows\system32\eyesi.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\GrooveMonitor [Key] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
O53 - SMSR:HKLM\...\startupreg\Instant Access [Key] . (...) -- C:\WINDOWS\system32\prodsrvs.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Internet Today Task [Key] . (...) -- C:\Program Files\Internet Today\1.1.0.1260\InternetToday.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\irtefgq [Key] . (...) -- c:\windows\system32\irtefgq.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Kujytuo [Key] . (...) -- C:\Documents and Settings\Gérard Boutelier\Application Data\kujytuo\kujytuo.exe
O53 - SMSR:HKLM\...\startupreg\MailSkinner [Key] . (...) -- c:\program files\mailskinner\mailskinner.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\NBKeyScan [Key] . (.Nero AG - Nero BackItUp.) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe
O53 - SMSR:HKLM\...\startupreg\ndjpde [Key] . (...) -- c:\windows\system32\ndjpde.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\NeroFilterCheck [Key] . (.Nero AG - NeroCheck.) -- C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O53 - SMSR:HKLM\...\startupreg\NvCplDaemon [Key] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\NvCpl.dll
O53 - SMSR:HKLM\...\startupreg\NvMediaCenter [Key] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\WINDOWS\system32\NvMcTray.dll
O53 - SMSR:HKLM\...\startupreg\nwiz [Key] . (.NVIDIA Corporation - NVIDIA nView Wizard, Version 100.25.) -- C:\WINDOWS\system32\nwiz.exe
O53 - SMSR:HKLM\...\startupreg\PCMService [Key] . (.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- C:\Program Files\CyberLink\PowerCinema\PCMService.exe
O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe
O53 - SMSR:HKLM\...\startupreg\SDR6V_Check [Key] . (...) -- C:\Program Files\Fichiers communs\DriveCleaner Free\udcsdr.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\SfKg6wIPuS [Key] . (...) -- C:\Documents and Settings\Gérard Boutelier\Application Data\Microsoft\Windows\oulwsv.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\skkqaqc [Key] . (...) -- c:\windows\system32\skkqaqc.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\skkqaqc_ [Key] . (...) -- c:\windows\system32\skkqaqc_.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe
O53 - SMSR:HKLM\...\startupreg\swg [Key] . (...) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\TkBellExe [Key] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\program files\real\realplayer\update\realsched.exe
O53 - SMSR:HKLM\...\startupreg\ToniArts EasyCleaner [Key] . (...) -- C:\DOCUME~1\GRARDB~1\LOCALS~1\Temp\Rar$EX00.250\EasyClea.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\updateMgr [Key] . (...) -- C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\WA6PV_Check [Key] . (...) -- C:\Program Files\Fichiers communs\DriveCleaner Free\udcwap.exe
O53 - SMSR:HKLM\...\startupreg\wciua [Key] . (...) -- c:\windows\system32\wciua.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Weflirt [Key] . (...) -- C:\Program Files\Weflirt\weflirt.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\WhereSphere [Key] . (...) -- C:\Documents and Settings\Gérard Boutelier\Application Data\WhereSphere\wheresphere.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\WinAntiVirusPro2006 [Key] . (...) -- C:\Program Files\WinAntiVirus Pro 2006\WinAV.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\WMPNSCFG [Key] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
O53 - SMSR:HKLM\...\startupreg\ykvtdpr [Key] . (...) -- c:\windows\system32\ykvtdpr.exe (.not file.)
~ Scan SMSR Keys in 00mn 04s

---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
~ Scan Keys in 00mn 00s

---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
~ Scan Keys in 00mn 00s

---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=149
O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1
~ Scan Keys in 00mn 00s

---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.97165948AF80EDA4A3015EB536A85818] - 06/10/2004 - 14:10:46 ---A- . (.Philips Semiconductors GmbH - 3xHybrid.) -- C:\WINDOWS\system32\Drivers\3xHybrid.sys [945152]
O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037]
~ Scan Drivers in 00mn 00s

---\\ Recherche heuristique Magic.control (O59)
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\cgugces_nav.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\cgugces_navps.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\dsbynhukoa_nav.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\dsbynhukoa_navps.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\emgoi_nav.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\emgoi_navps.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\eyesi_nav.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\eyesi_navps.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\irtefgq_nav.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\irtefgq_navps.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\ndjpde_nav.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\ndjpde_navps.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\qpqtqn_nav.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\qpqtqn_navps.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\skkqaqc_nav.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\skkqaqc_navps.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\skkqaqc__nav.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\skkqaqc__navps.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\ukuiqim_nav.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\ukuiqim_navps.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\wciua_nav.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\wciua_navps.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\cgugces.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\dsbynhukoa.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\emgoi.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\eyesi.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\irtefgq.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\ndjpde.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\qpqtqn.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\skkqaqc.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\skkqaqc_.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\ukuiqim.dat
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\WINDOWS\system32\wciua.dat
~ Scan Files in 00mn 10s

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC:Last File Created 19/05/2012 - 14:06:52 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\Repository\conduit_CT2542115_CT2542115\ToolbarLogin\data.bck.txt [4727]
O61 - LFC:Last File Created 19/05/2012 - 14:06:54 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\Repository\conduit_CT2542115_CT2542115\ToolbarLogin\data.txt [4727]
O61 - LFC:Last File Created 19/05/2012 - 14:07:11 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\9LVHA2CB.txt [391]
O61 - LFC:Last File Created 19/05/2012 - 14:07:20 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\42Z2RVHK.txt [572]
O61 - LFC:Last File Created 19/05/2012 - 14:07:44 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\LNUSNXKB.txt [392]
O61 - LFC:Last File Created 19/05/2012 - 14:07:45 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\S3CE5R36.txt [115]
O61 - LFC:Last File Created 19/05/2012 - 14:07:49 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\PY0Q5IST.txt [933]
O61 - LFC:Last File Created 19/05/2012 - 14:08:41 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\Z15QB59J.txt [415]
O61 - LFC:Last File Created 19/05/2012 - 14:09:25 ---A- C:\Documents and Settings\Gérard Boutelier\Favoris\Yahoo France.url [234]
O61 - LFC:Last File Created 19/05/2012 - 14:10:51 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\V6XSM4NQ.txt [402]
O61 - LFC:Last File Created 19/05/2012 - 14:13:04 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Office\12.0\msodata093.dat [3880]
O61 - LFC:Last File Created 19/05/2012 - 14:13:35 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\EUOUZI18.txt [416]
O61 - LFC:Last File Created 19/05/2012 - 14:21:42 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Microsoft\Internet Explorer\Quick Launch\iMesh.lnk [863]
O61 - LFC:Last File Created 19/05/2012 - 14:21:42 ---A- C:\Documents and Settings\Gérard Boutelier\Bureau\iMesh.lnk [845]
O61 - LFC:Last File Created 19/05/2012 - 14:22:01 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Temp\thanks.bat [71]
O61 - LFC:Last File Created 19/05/2012 - 14:22:16 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences [21144]
O61 - LFC:Last File Created 19/05/2012 - 14:22:16 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data [75776]
O61 - LFC:Last File Created 19/05/2012 - 14:22:21 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\EZFVZ9WC.txt [386]
O61 - LFC:Last File Created 19/05/2012 - 14:22:25 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim\guid.dat [38]
O61 - LFC:Last File Created 19/05/2012 - 14:22:27 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim\geoip.xml [220]
O61 - LFC:Last File Created 19/05/2012 - 14:27:34 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\D&D - youtube - z5ztAfeX5IA(100x100).jpeg [4186]
O61 - LFC:Last File Created 19/05/2012 - 14:27:34 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\youtube - z5ztAfeX5IA(150x150).jpeg [6754]
O61 - LFC:Last File Created 19/05/2012 - 14:27:56 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\D&D - youtube - rWgpU6cQCQM(100x100).jpeg [5723]
O61 - LFC:Last File Created 19/05/2012 - 14:27:56 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\youtube - rWgpU6cQCQM(150x150).jpeg [10835]
O61 - LFC:Last File Created 19/05/2012 - 14:28:04 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\D&D - youtube - eLzF8j-DRHk(100x100).jpeg [3084]
O61 - LFC:Last File Created 19/05/2012 - 14:28:04 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\youtube - eLzF8j-DRHk(150x150).jpeg [4727]
O61 - LFC:Last File Created 19/05/2012 - 14:28:08 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\D&D - youtube - _Xa_1KxR-8M(100x100).jpeg [4186]
O61 - LFC:Last File Created 19/05/2012 - 14:28:08 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\youtube - _Xa_1KxR-8M(150x150).jpeg [6754]
O61 - LFC:Last File Created 19/05/2012 - 14:37:43 ---A- C:\Documents and Settings\Gérard Boutelier\Mes documents\Ma musique\iMesh\COCKER JOE\Classics, Vol. 4\COCKER JOE - WITH A LITTLE HELP FROM MY FRIENDS.mp3 [4427904]
O61 - LFC:Last File Created 19/05/2012 - 14:39:04 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\Joe Cocker - With A Little Help From My Friends.mp3.lnk [948]
O61 - LFC:Last File Created 19/05/2012 - 14:39:07 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Real\RealPlayer\History\Joe Cocker - With A Little Help From ....lnk [2193]
O61 - LFC:Last File Created 19/05/2012 - 14:40:21 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\D&D - youtube - Ntdsd4BTWjg(100x100).jpeg [3061]
O61 - LFC:Last File Created 19/05/2012 - 14:40:21 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\youtube - Ntdsd4BTWjg(150x82).jpeg [3267]
O61 - LFC:Last File Created 19/05/2012 - 14:40:22 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\D&D - album - La Plus Grande Soiree 80's Disc 1 - ffffffff(100x100).jpeg [3061]
O61 - LFC:Last File Created 19/05/2012 - 14:40:22 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\album - La Plus Grande Soiree 80's Disc 1 - ffffffff(100x100).jpeg [3747]
O61 - LFC:Last File Created 19/05/2012 - 14:40:22 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\album - La Plus Grande Soiree 80's Disc 1 - ffffffff(150x150).jpeg [4896]
O61 - LFC:Last File Created 19/05/2012 - 14:40:25 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\youtube - Ntdsd4BTWjg(150x150).jpeg [4896]
O61 - LFC:Last File Created 19/05/2012 - 14:56:06 ---A- C:\Documents and Settings\Gérard Boutelier\Mes documents\Ma musique\iMesh\Gerard Blanc\Années 80 français\Une Autre Histoire - Gerard Blanc.mp3 [4156256]
O61 - LFC:Last File Created 19/05/2012 - 15:06:29 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\Gerard Blanc - Une Autre Histoire.mp3.lnk [1199]
O61 - LFC:Last File Created 19/05/2012 - 15:06:29 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\Unknown.lnk [769]
O61 - LFC:Last File Created 19/05/2012 - 15:08:50 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\Années 80 français.lnk [826]
O61 - LFC:Last File Created 19/05/2012 - 15:08:50 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\Une Autre Histoire - Gerard Blanc.mp3.lnk [1278]
O61 - LFC:Last File Created 19/05/2012 - 15:08:54 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Real\RealPlayer\History\Une autre histoire.lnk [2289]
O61 - LFC:Last File Created 19/05/2012 - 15:09:26 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Windows Media\11.0\WMSDKNS.XML [11236]
O61 - LFC:Last File Created 19/05/2012 - 15:09:27 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\GQ8WPGR3.txt [270]
O61 - LFC:Last File Created 19/05/2012 - 15:12:28 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\Basi musicali Karaoke - Supertramp - The logical song.mp3.lnk [1574]
O61 - LFC:Last File Created 19/05/2012 - 15:12:28 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\Retrospectacle- The Supertramp Anthology Disc 2.lnk [966]
O61 - LFC:Last File Created 19/05/2012 - 15:13:18 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\03 - the logical song(1).mp3.lnk [1289]
O61 - LFC:Last File Created 19/05/2012 - 15:13:18 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\Unknown Album.lnk [866]
O61 - LFC:Last File Created 19/05/2012 - 15:15:51 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\D&D - youtube - Jrjg0tXw6-I(100x100).jpeg [4707]
O61 - LFC:Last File Created 19/05/2012 - 15:15:51 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\youtube - Jrjg0tXw6-I(150x150).jpeg [8570]
O61 - LFC:Last File Created 19/05/2012 - 15:16:13 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\D&D - youtube - glf1aLTR4Rs(100x100).jpeg [4707]
O61 - LFC:Last File Created 19/05/2012 - 15:16:13 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\youtube - glf1aLTR4Rs(150x150).jpeg [8570]
O61 - LFC:Last File Created 19/05/2012 - 15:17:56 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\ROM69B3S.txt [374]
O61 - LFC:Last File Created 19/05/2012 - 15:27:21 ---A- C:\Documents and Settings\Gérard Boutelier\Mes documents\Ma musique\iMesh\At Vance\Heart of Steel\At Vance - Logical Song (Supertramp).mp3 [4539604]
O61 - LFC:Last File Created 19/05/2012 - 15:27:23 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\D&D - album - Heart of Steel - ffffffff(100x100).jpeg [5886]
O61 - LFC:Last File Created 19/05/2012 - 15:27:23 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\album - Heart of Steel - ffffffff(100x100).jpeg [5886]
O61 - LFC:Last File Created 19/05/2012 - 15:27:23 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Artwork\album - Heart of Steel - ffffffff(150x150).jpeg [12091]
O61 - LFC:Last File Created 19/05/2012 - 15:30:38 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\The logical song.ace.lnk [1025]
O61 - LFC:Last File Created 19/05/2012 - 15:31:34 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Real\RealPlayer\skins\data\normal\imgcache.dat [1010201]
O61 - LFC:Last File Created 19/05/2012 - 15:31:46 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\The logical song.lnk [825]
O61 - LFC:Last File Created 19/05/2012 - 15:34:23 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim\geodata.xml [188]
O61 - LFC:Last File Created 19/05/2012 - 15:34:23 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim\log.txt [262]
O61 - LFC:Last File Created 19/05/2012 - 15:34:31 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\Repository\conduit_CT2542115_fr-fr\ToolbarTranslation\data.bck.txt [103878]
O61 - LFC:Last File Created 19/05/2012 - 15:34:32 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\EmailNotifier\google.com.xml [5509]
O61 - LFC:Last File Created 19/05/2012 - 15:34:32 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\EmailNotifier\hotmail.com.xml [7466]
O61 - LFC:Last File Created 19/05/2012 - 15:34:32 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=GottenApps&locale=fr-fr.xml [7257]
O61 - LFC:Last File Created 19/05/2012 - 15:34:32 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=OtherApps&locale=fr-fr.xml [5694]
O61 - LFC:Last File Created 19/05/2012 - 15:34:32 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=SharedApps&locale=fr-fr.xml [6782]
O61 - LFC:Last File Created 19/05/2012 - 15:34:32 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=Toolbar&locale=fr-fr.xml [5675]
O61 - LFC:Last File Created 19/05/2012 - 15:34:33 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\EmailNotifier\aol.com.xml [4367]
O61 - LFC:Last File Created 19/05/2012 - 15:34:33 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\EmailNotifier\comcast.net.xml [6429]
O61 - LFC:Last File Created 19/05/2012 - 15:34:33 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\EmailNotifier\yahoo.com.xml [8549]
O61 - LFC:Last File Created 19/05/2012 - 15:34:33 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\SearchInNewTab\SearchInNewTabContent.xml [59923]
O61 - LFC:Last File Created 19/05/2012 - 15:34:37 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\WO9FFNVL.txt [393]
O61 - LFC:Last File Created 19/05/2012 - 15:34:45 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\DJZHHZ8X.txt [589]
O61 - LFC:Last File Created 19/05/2012 - 15:36:16 ---A- C:\Documents and Settings\Gérard Boutelier\Mes documents\Ma musique\AVSAudioConverter.exe [46072096]
O61 - LFC:Last File Created 19/05/2012 - 15:40:18 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\8VIUPEDJ.txt [430]
O61 - LFC:Last File Created 19/05/2012 - 15:40:18 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\KP2VQ3I2.txt [415]
O61 - LFC:Last File Created 19/05/2012 - 15:40:22 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\3R69QYX6.txt [392]
O61 - LFC:Last File Created 19/05/2012 - 15:41:06 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\The logical song.wav.lnk [1025]
O61 - LFC:Last File Created 19/05/2012 - 15:42:01 ----- C:\Documents and Settings\Gérard Boutelier\Mes documents\Ma musique\The logical song.mp3 [9971381]
O61 - LFC:Last File Created 19/05/2012 - 15:42:33 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\9Z1BIZOX.txt [284]
O61 - LFC:Last File Created 19/05/2012 - 15:46:13 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\KEDNKU1J.txt [262]
O61 - LFC:Last File Created 19/05/2012 - 15:46:44 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\T0W97RAF.txt [350]
O61 - LFC:Last File Created 19/05/2012 - 15:46:44 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\shistory.im [720]
O61 - LFC:Last File Created 19/05/2012 - 15:52:21 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\The logical song.mp3.lnk [1092]
O61 - LFC:Last File Created 19/05/2012 - 15:52:29 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Real\RealPlayer\History\The logical song.lnk [2069]
O61 - LFC:Last File Created 19/05/2012 - 15:55:32 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\compilation 2010.txt.lnk [538]
O61 - LFC:Last File Created 19/05/2012 - 16:08:56 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\Goodbye stranger.wav.lnk [1025]
O61 - LFC:Last File Created 19/05/2012 - 16:08:57 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\SUPERTRAMP.lnk [694]
O61 - LFC:Last File Created 19/05/2012 - 16:09:32 ----- C:\Documents and Settings\Gérard Boutelier\Mes documents\Ma musique\Goodbye stranger.mp3 [13906217]
O61 - LFC:Last File Created 19/05/2012 - 16:11:28 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\Ma musique.lnk [502]
O61 - LFC:Last File Created 19/05/2012 - 16:11:31 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Real\RealPlayer\History\Goodbye stranger.lnk [2069]
O61 - LFC:Last File Created 19/05/2012 - 16:11:54 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\AVS4YOU\AVSAudioConverter\RecentFiles.txt [220]
O61 - LFC:Last File Created 19/05/2012 - 16:18:23 ---A- C:\Documents and Settings\Gérard Boutelier\Mes documents\compilation 2010.nrj [21533]
O61 - LFC:Last File Created 19/05/2012 - 16:18:32 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Nero\Nero8\Nero StartSmart\NSSOptions.xml [4298]
O61 - LFC:Last File Created 19/05/2012 - 16:18:32 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Nero\Nero8\Nero StartSmart\QLApps.xml [126]
O61 - LFC:Last File Created 19/05/2012 - 16:19:12 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\compilation nov 2010.nri.lnk [646]
O61 - LFC:Last File Created 19/05/2012 - 16:19:26 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Ahead\Nero Home\crawlercfg.dat [2919]
O61 - LFC:Last File Created 19/05/2012 - 16:19:34 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\compilation 2010.nrj.lnk [626]
O61 - LFC:Last File Created 19/05/2012 - 16:21:15 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Media Player\G- _0.wmdb [72532]
O61 - LFC:Last File Created 19/05/2012 - 16:21:15 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Media Player\G- _1.wmdb [1236]
O61 - LFC:Last File Created 19/05/2012 - 16:21:15 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Media Player\G- _2.wmdb [1236]
O61 - LFC:Last File Created 19/05/2012 - 16:21:15 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Media Player\G- _3.wmdb [1236]
O61 - LFC:Last File Created 19/05/2012 - 16:21:15 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Media Player\G- _4.wmdb [1236]
O61 - LFC:Last File Created 19/05/2012 - 16:21:15 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Media Player\G- _5.wmdb [1236]
O61 - LFC:Last File Created 19/05/2012 - 16:23:54 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Office\12.0\msodata094.dat [3540]
O61 - LFC:Last File Created 19/05/2012 - 16:23:59 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\Repository\conduit_CT2542115_CT2542115\ToolbarSettings\data.bck.txt [282041]
O61 - LFC:Last File Created 19/05/2012 - 16:24:00 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\Repository\conduit_CT2542115_CT2542115\AppsMetaData\data.bck.txt [7193]
O61 - LFC:Last File Created 19/05/2012 - 16:24:00 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France\Repository\conduit_CT2542115_CT2542115\AppsMetaData\data.txt [7193]
O61 - LFC:Last File Created 19/05/2012 - 16:25:16 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Temp\WERca9a.dir00\iexplore.exe.mdmp [149410]
O61 - LFC:Last File Created 19/05/2012 - 16:25:20 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Temp\WERca9a.dir00\appcompat.txt [59660]
O61 - LFC:Last File Created 19/05/2012 - 16:25:20 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Temp\WERca9a.dir00\iexplore.exe.hdmp [30727211]
O61 - LFC:Last File Created 19/05/2012 - 16:25:20 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Temp\WERca9a.dir00\manifest.txt [1854]
O61 - LFC:Last File Created 19/05/2012 - 16:25:29 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Data\Albums.db [4415488]
O61 - LFC:Last File Created 19/05/2012 - 16:25:29 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Data\Artists.db [4358144]
O61 - LFC:Last File Created 19/05/2012 - 16:25:29 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Data\ContentFile.db [6684672]
O61 - LFC:Last File Created 19/05/2012 - 16:25:29 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Data\DownloadFile.db [4456448]
O61 - LFC:Last File Created 19/05/2012 - 16:25:29 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Data\PartsHashes.db [4423680]
O61 - LFC:Last File Created 19/05/2012 - 16:25:29 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Data\Playlists.db [4366336]
O61 - LFC:Last File Created 19/05/2012 - 16:25:29 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh\Data\VirtualFile.db [4308992]
O61 - LFC:Last File Created 19/05/2012 - 16:32:36 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\Goodbye stranger.mp3.lnk [320]
O61 - LFC:Last File Created 19/05/2012 - 16:32:36 ---A- C:\Documents and Settings\Gérard Boutelier\Recent\Lecteur CD.lnk [186]
O61 - LFC:Last File Created 19/05/2012 - 16:32:45 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Real\RealPlayer\History\stranger.lnk [1809]
O61 - LFC:Last File Created 19/05/2012 - 16:32:46 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Mozilla\Firefox\Profiles\ceal85gd.default\cookies.txt [5443]
O61 - LFC:Last File Created 19/05/2012 - 16:33:43 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Real\RealPlayer\realplayer.ste [1493]
O61 - LFC:Last File Created 19/05/2012 - 16:36:40 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\Z62O0UUK.txt [522]
O61 - LFC:Last File Created 19/05/2012 - 16:36:43 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\MG7NJ554.txt [386]
O61 - LFC:Last File Created 19/05/2012 - 16:36:59 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\J10R770L.txt [225]
O61 - LFC:Last File Created 19/05/2012 - 16:37:02 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\IINEL00Q.txt [393]
O61 - LFC:Last File Created 19/05/2012 - 16:39:47 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\P3NPFT4T.txt [79]
O61 - LFC:Last File Created 19/05/2012 - 16:39:47 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\RD4FINDF.txt [531]
O61 - LFC:Last File Created 19/05/2012 - 16:40:04 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\2OVMYZ8W.txt [112]
O61 - LFC:Last File Created 19/05/2012 - 16:40:04 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\7HJNBIT0.txt [563]
O61 - LFC:Last File Created 19/05/2012 - 16:40:05 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\EL48YK6T.txt [391]
O61 - LFC:Last File Created 19/05/2012 - 16:40:07 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\6EE97OMQ.txt [113]
O61 - LFC:Last File Created 19/05/2012 - 16:40:07 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\SLRYLUAQ.txt [78]
O61 - LFC:Last File Created 19/05/2012 - 16:40:08 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\AP0OL08R.txt [1344]
O61 - LFC:Last File Created 19/05/2012 - 16:40:10 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\SV2ZDM0P.txt [1332]
O61 - LFC:Last File Created 19/05/2012 - 16:40:29 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\6DFRNLTU.txt [427]
O61 - LFC:Last File Created 19/05/2012 - 16:40:29 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\G15EB3HV.txt [407]
O61 - LFC:Last File Created 19/05/2012 - 16:40:29 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\TVLX3S3Y.txt [427]
O61 - LFC:Last File Created 19/05/2012 - 16:40:30 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\CNMOZZ7O.txt [194]
O61 - LFC:Last File Created 19/05/2012 - 16:40:30 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\SERB5G80.txt [411]
O61 - LFC:Last File Created 19/05/2012 - 16:40:58 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\HYGPQWY6.txt [511]
O61 - LFC:Last File Created 19/05/2012 - 16:41:00 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\EDO76WKJ.txt [289]
O61 - LFC:Last File Created 19/05/2012 - 16:41:00 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\O4UBXO25.txt [165]
O61 - LFC:Last File Created 19/05/2012 - 16:41:00 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\OKFQZS8N.txt [103]
O61 - LFC:Last File Created 19/05/2012 - 16:41:01 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\RDDFMHD6.txt [1437]
O61 - LFC:Last File Created 19/05/2012 - 16:41:28 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\G5XEIR63.txt [478]
O61 - LFC:Last File Created 19/05/2012 - 16:41:29 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\KUG3MBXO.txt [352]
O61 - LFC:Last File Created 19/05/2012 - 16:41:43 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\O0MA5P8J.txt [1088]
O61 - LFC:Last File Created 19/05/2012 - 16:41:44 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\WFP12S2U.txt [370]
O61 - LFC:Last File Created 19/05/2012 - 16:42:01 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\QXCLQ1DB.txt [443]
O61 - LFC:Last File Created 19/05/2012 - 16:42:03 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\3TM4KBNP.txt [1409]
O61 - LFC:Last File Created 19/05/2012 - 16:42:03 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\77DQ703T.txt [1064]
O61 - LFC:Last File Created 19/05/2012 - 16:42:15 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\9UYPOLV7.txt [199]
O61 - LFC:Last File Created 19/05/2012 - 16:42:15 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\BNCORVT5.txt [427]
O61 - LFC:Last File Created 19/05/2012 - 16:42:16 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\Y7GJ9KH9.txt [413]
O61 - LFC:Last File Created 19/05/2012 - 16:42:36 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\OO1JM79Q.txt [172]
O61 - LFC:Last File Created 19/05/2012 - 16:42:55 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\VKS8G2D6.txt [352]
O61 - LFC:Last File Created 19/05/2012 - 16:43:03 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\HQ8MENLU.txt [390]
O61 - LFC:Last File Created 19/05/2012 - 16:43:18 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\7SEQN7IJ.txt [353]
O61 - LFC:Last File Created 19/05/2012 - 16:43:20 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\ICL9EWXH.txt [109]
O61 - LFC:Last File Created 19/05/2012 - 16:44:34 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\QO24HIB7.txt [388]
O61 - LFC:Last File Created 19/05/2012 - 16:44:47 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\4DOJHQOM.txt [71]
O61 - LFC:Last File Created 19/05/2012 - 16:45:05 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\3ORMC2K2.txt [347]
O61 - LFC:Last File Created 19/05/2012 - 16:46:48 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\2QFFEIDG.txt [390]
O61 - LFC:Last File Created 19/05/2012 - 16:46:48 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\UX1U9HFJ.txt [579]
O61 - LFC:Last File Created 19/05/2012 - 16:46:49 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\KEV31A4L.txt [147]
O61 - LFC:Last File Created 19/05/2012 - 16:47:02 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\PriceGong\Data\mru.xml [19256]
O61 - LFC:Last File Created 19/05/2012 - 17:11:50 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\DOXRTCPC.txt [363]
O61 - LFC:Last File Created 19/05/2012 - 17:11:54 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\I4SZFTU9.txt [389]
O61 - LFC:Last File Created 19/05/2012 - 17:11:56 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\CRLU27OV.txt [294]
O61 - LFC:Last File Created 19/05/2012 - 17:11:56 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\FEPDK6CK.txt [418]
O61 - LFC:Last File Created 19/05/2012 - 17:11:58 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com_root_1116697_1112401_FR.xml [210]
O61 - LFC:Last File Created 19/05/2012 - 17:11:58 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com_root_935078_930862_FR.xml [157]
O61 - LFC:Last File Created 19/05/2012 - 17:13:05 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\YRZ8HWLR.txt [447]
O61 - LFC:Last File Created 21/05/2012 - 16:43:09 ---A- C:\Documents and Settings\Gérard Boutelier\Favoris\Laurent Gerra Laurent Gerra, Podcast, Ecouter l'émission RTL.fr.url [319]
O61 - LFC:Last File Created 21/05/2012 - 16:43:17 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\OS6LOJ6R.txt [105]
O61 - LFC:Last File Created 21/05/2012 - 16:43:18 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\D3FA02WF.txt [190]
O61 - LFC:Last File Created 21/05/2012 - 16:43:19 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\09A30V5D.txt [1638]
O61 - LFC:Last File Created 21/05/2012 - 16:43:19 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\ASAJ6X63.txt [432]
O61 - LFC:Last File Created 21/05/2012 - 16:43:19 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\MD8BDC2D.txt [544]
O61 - LFC:Last File Created 21/05/2012 - 16:43:19 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\S120NGSQ.txt [925]
O61 - LFC:Last File Created 21/05/2012 - 16:43:19 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\TZNQXPO9.txt [638]
O61 - LFC:Last File Created 21/05/2012 - 16:43:19 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\VA1JHEJJ.txt [185]
O61 - LFC:Last File Created 21/05/2012 - 16:43:20 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\I2297JXQ.txt [443]
O61 - LFC:Last File Created 21/05/2012 - 16:53:03 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Sun\Java\Deployment\deployment.properties [0]
O61 - LFC:Last File Created 21/05/2012 - 16:54:37 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Adobe\Updater5\AdobeUpdaterPrefs.dat [449]
O61 - LFC:Last File Created 21/05/2012 - 17:01:31 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\DZYVNZ0D.txt [349]
O61 - LFC:Last File Created 21/05/2012 - 17:01:35 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\E7DXLQ15.txt [436]
O61 - LFC:Last File Created 21/05/2012 - 17:10:58 ---A- C:\Documents and Settings\Gérard Boutelier\Bureau\Microsoft Office Outlook 2007.lnk [2623]
O61 - LFC:Last File Created 21/05/2012 - 17:11:18 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Outlook\Outlook.xml.kfl [563]
O61 - LFC:Last File Created 21/05/2012 - 17:14:17 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\JCMANSIC.txt [108]
O61 - LFC:Last File Created 21/05/2012 - 17:14:18 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\VAR43XDF.txt [662]
O61 - LFC:Last File Created 21/05/2012 - 17:16:36 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Microsoft\Outlook\Outlook.NK2 [18941]
O61 - LFC:Last File Created 21/05/2012 - 17:16:36 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Microsoft\Outlook\Outlook.xml [3981]
O61 - LFC:Last File Created 21/05/2012 - 17:16:36 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Microsoft\Outlook\outcmd.dat [2708]
O61 - LFC:Last File Created 21/05/2012 - 17:16:36 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Office\12.0\msodata095.dat [728]
O61 - LFC:Last File Created 21/05/2012 - 17:16:36 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Office\12.0\msodata096.dat [4500]
O61 - LFC:Last File Created 21/05/2012 - 17:16:36 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Office\12.0\msodatalast.dat [4500]
O61 - LFC:Last File Created 21/05/2012 - 17:16:36 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Outlook\Outlook.pst [398976000]
O61 - LFC:Last File Created 21/05/2012 - 17:16:36 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Outlook\Outlook.sharing.xml.obi [4099]
O61 - LFC:Last File Created 21/05/2012 - 17:16:36 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Outlook\archive.pst [160515072]
O61 - LFC:Last File Created 21/05/2012 - 17:16:58 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\2Y9ALO94.txt [395]
O61 - LFC:Last File Created 21/05/2012 - 17:16:59 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\BG1BQ8UK.txt [423]
O61 - LFC:Last File Created 21/05/2012 - 17:17:47 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\QVLI6KL0.txt [1041]
O61 - LFC:Last File Created 21/05/2012 - 17:24:48 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\S5YKSLTB.txt [85]
O61 - LFC:Last File Created 21/05/2012 - 17:39:41 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\WMIFT65M.txt [475]
O61 - LFC:Last File Created 21/05/2012 - 17:41:09 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\JLPFP28J.txt [475]
O61 - LFC:Last File Created 21/05/2012 - 17:41:11 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\DVZ2Z9VR.txt [81]
O61 - LFC:Last File Created 21/05/2012 - 17:48:02 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\WYVS6PR1.txt [315]
O61 - LFC:Last File Created 21/05/2012 - 17:55:21 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\PQFV3V06.txt [281]
O61 - LFC:Last File Created 21/05/2012 - 17:55:26 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\WD82IINE.txt [629]
O61 - LFC:Last File Created 21/05/2012 - 17:55:29 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\9ITGS3GV.txt [2617]
O61 - LFC:Last File Created 21/05/2012 - 17:55:29 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\T8XP0D9W.txt [364]
O61 - LFC:Last File Created 21/05/2012 - 17:55:30 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\VPIAWKON.txt [110]
O61 - LFC:Last File Created 21/05/2012 - 17:56:51 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\C42TLCEC.txt [472]
O61 - LFC:Last File Created 21/05/2012 - 17:56:54 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\CPEGDZXL.txt [85]
O61 - LFC:Last File Created 21/05/2012 - 17:57:29 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\0IS2KXX6.txt [479]
O61 - LFC:Last File Created 21/05/2012 - 17:57:30 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\F7BTSCD7.txt [82]
O61 - LFC:Last File Created 21/05/2012 - 18:07:50 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\FW3RZDI0.txt [463]
O61 - LFC:Last File Created 21/05/2012 - 18:07:51 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\3M2BICPG.txt [670]
O61 - LFC:Last File Created 21/05/2012 - 18:08:19 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\UCZHU96B.txt [550]
O61 - LFC:Last File Created 21/05/2012 - 18:08:43 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\6SQ9JYLZ.txt [478]
O61 - LFC:Last File Created 21/05/2012 - 18:08:43 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\VQNHTI6X.txt [78]
O61 - LFC:Last File Created 21/05/2012 - 18:09:58 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\79OL7JYM.txt [486]
O61 - LFC:Last File Created 21/05/2012 - 18:09:59 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\NVUQZBBC.txt [81]
O61 - LFC:Last File Created 21/05/2012 - 18:10:09 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\1ST9ZF82.txt [475]
O61 - LFC:Last File Created 21/05/2012 - 18:10:10 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\BKQB4YS0.txt [82]
O61 - LFC:Last File Created 21/05/2012 - 18:10:11 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\EUB8TC08.txt [529]
O61 - LFC:Last File Created 21/05/2012 - 18:13:51 ---A- C:\Documents and Settings\Gérard Boutelier\UserData\index.dat [32768]
O61 - LFC:Last File Created 21/05/2012 - 18:14:54 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Temporary Internet Files\SuggestedSites.dat [5242991]
O61 - LFC:Last File Created 21/05/2012 - 18:15:13 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol [495]
O61 - LFC:Last File Created 22/05/2012 - 18:18:14 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\VAWUKCX6.txt [1175]
O61 - LFC:Last File Created 22/05/2012 - 18:18:31 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Real\rnadmin\rnsystem.dat [2328]
O61 - LFC:Last File Created 22/05/2012 - 18:21:56 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Feeds\FeedsStore.feedsdb-ms [6656]
O61 - LFC:Last File Created 22/05/2012 - 18:21:56 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Feeds\Microsoft Feeds~\Microsoft at Home~.feed-ms [344064]
O61 - LFC:Last File Created 22/05/2012 - 18:21:56 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Feeds\Microsoft Feeds~\Microsoft at Work~.feed-ms [282624]
O61 - LFC:Last File Created 22/05/2012 - 18:21:56 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\Sites suggérés d’Internet Explorer~.feed-ms [32768]
O61 - LFC:Last File Created 22/05/2012 - 18:25:05 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\Microsoft\Office\Groove12.pip [144]
O61 - LFC:Last File Created 22/05/2012 - 18:25:12 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\K1LNY8F5.txt [522]
O61 - LFC:Last File Created 22/05/2012 - 18:25:18 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\V4W3KI77.txt [366]
O61 - LFC:Last File Created 22/05/2012 - 18:25:21 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Temp\AdparatusTemp\DUH2.tmp.xml [2]
O61 - LFC:Last File Created 22/05/2012 - 18:25:22 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim\stats.dat [449]
O61 - LFC:Last File Created 22/05/2012 - 18:25:22 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Temp\AdparatusTemp\DUH3.tmp.xml [2]
O61 - LFC:Last File Created 22/05/2012 - 18:25:23 ---A- C:\Documents and Settings\Gérard Boutelier\Favoris\Google.url [260]
O61 - LFC:Last File Created 22/05/2012 - 18:25:24 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim\weather\58a86ad5ea9d4d56e7b2a5ddf4f2075d [6970]
O61 - LFC:Last File Created 22/05/2012 - 18:25:24 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim\weather\forecasts_cache.xml [74]
O61 - LFC:Last File Created 22/05/2012 - 18:25:24 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Textual Content Provider\1.1.0.1810\Data\TP_Data.mx [216]
O61 - LFC:Last File Created 22/05/2012 - 18:25:25 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim\weather\f9b8f0dbcb0c4c3bbb680d4c7d3caee2 [5347]
O61 - LFC:Last File Created 22/05/2012 - 18:25:25 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim\weather\observations_cache.xml [74]
O61 - LFC:Last File Created 22/05/2012 - 18:25:26 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim\version.xml [135]
O61 - LFC:Last File Created 22/05/2012 - 18:25:29 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\BTAL2QL4.txt [1239]
O61 - LFC:Last File Created 22/05/2012 - 18:25:31 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim\uninstallIE.dat [298]
O61 - LFC:Last File Created 22/05/2012 - 18:25:31 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim\weatherbutton_prefs.xml [379]
O61 - LFC:Last File Created 22/05/2012 - 18:25:31 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\9LM1W3ZX.txt [2063]
O61 - LFC:Last File Created 22/05/2012 - 18:25:32 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\I4MNUJT5.txt [206]
O61 - LFC:Last File Created 22/05/2012 - 18:25:32 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\O51XRCQ1.txt [642]
O61 - LFC:Last File Created 22/05/2012 - 18:25:32 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Temp\AdparatusTemp\DUH5.tmp.xml [2]
O61 - LFC:Last File Created 22/05/2012 - 18:25:33 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\OLJHGMOB.txt [1321]
O61 - LFC:Last File Created 22/05/2012 - 18:25:34 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Internet Explorer\frameiconcache.dat [7304]
O61 - LFC:Last File Created 22/05/2012 - 18:25:38 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\EMYI4LKC.txt [129]
O61 - LFC:Last File Created 22/05/2012 - 18:25:42 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Temp\AdparatusTemp\DUH6.tmp.xml [2]
O61 - LFC:Last File Created 22/05/2012 - 18:25:46 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\4NNCHEZF.txt [1548]
O61 - LFC:Last File Created 22/05/2012 - 18:25:46 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\EHQF413I.txt [121]
O61 - LFC:Last File Created 22/05/2012 - 18:25:46 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\N5LJE76P.txt [172]
O61 - LFC:Last File Created 22/05/2012 - 18:26:00 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\JNB1VUQ5.txt [99]
O61 - LFC:Last File Created 22/05/2012 - 18:26:00 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\MD1Y8XFA.txt [388]
O61 - LFC:Last File Created 22/05/2012 - 18:26:00 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Temp\AdparatusTemp\DUH7.tmp.xml [2]
O61 - LFC:Last File Created 22/05/2012 - 18:26:01 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\O90VB60F.txt [112]
O61 - LFC:Last File Created 22/05/2012 - 18:26:02 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\MGPF0M9V.txt [259]
O61 - LFC:Last File Created 22/05/2012 - 18:26:06 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\E6TRKH6I.txt [96]
O61 - LFC:Last File Created 22/05/2012 - 18:26:06 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\J2KRILZF.txt [75]
O61 - LFC:Last File Created 22/05/2012 - 18:26:07 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\AGBNCCL9.txt [910]
O61 - LFC:Last File Created 22/05/2012 - 18:26:07 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\I8QYPQHH.txt [1565]
O61 - LFC:Last File Created 22/05/2012 - 18:27:05 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Temp\AdparatusTemp\DUH8.tmp.xml [2]
O61 - LFC:Last File Created 22/05/2012 - 18:27:08 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Internet Explorer\DOMStore\N4AG9RE7\telechargement.zebulon[1].xml [394]
O61 - LFC:Last File Created 22/05/2012 - 18:27:11 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\5NS279MF.txt [206]
O61 - LFC:Last File Created 22/05/2012 - 18:27:11 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\S1YCTEZW.txt [155]
O61 - LFC:Last File Created 22/05/2012 - 18:27:17 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\A9BNB0XI.txt [362]
O61 - LFC:Last File Created 22/05/2012 - 18:27:18 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\V0GSIES6.txt [257]
O61 - LFC:Last File Created 22/05/2012 - 18:27:19 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\OOXAVQMC.txt [224]
O61 - LFC:Last File Created 22/05/2012 - 18:27:19 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\PQ423232.txt [96]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\1B52SA1X.txt [161]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\1G24B0AH.txt [530]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\1MJR0FS2.txt [662]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\39YQHY1E.txt [3465]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\3GA0YS78.txt [99]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\3UP583JS.txt [171]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\6ZJZH6W8.txt [640]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\A1A5HXAE.txt [411]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\GH3XMIF2.txt [1674]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\HGSXCRVS.txt [388]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\KITDQZXW.txt [1147]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\PJLR5E4N.txt [492]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\THIVSWH5.txt [2195]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\TJ39XKZG.txt [888]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\U8UPYY2U.txt [324]
O61 - LFC:Last File Created 22/05/2012 - 18:27:24 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\XGEI9BLA.txt [1250]
O61 - LFC:Last File Created 22/05/2012 - 18:27:25 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\FVVXGY31.txt [613]
O61 - LFC:Last File Created 22/05/2012 - 18:27:59 ---A- C:\Documents and Settings\Gérard Boutelier\Bureau\ZHPDiag2.exe [4678493]
O61 - LFC:Last File Created 22/05/2012 - 18:28:20 ---A- C:\Documents and Settings\Gérard Boutelier\Application Data\mediabarim\preferences.dat [97]
O61 - LFC:Last File Created 22/05/2012 - 18:28:20 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Internet Explorer\Recovery\Last Active\RecoveryStore.{2C8389AA-A36D-11E1-B9A3-001109BDE7DA}.dat [3584]
O61 - LFC:Last File Created 22/05/2012 - 18:28:20 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Internet Explorer\Recovery\Last Active\{85A54034-A433-11E1-B9A4-001109BDE7DA}.dat [117248]
O61 - LFC:Last File Created 22/05/2012 - 18:28:21 ---A- C:\Documents and Settings\Gérard Boutelier\Cookies\index.dat [720896]
O61 - LFC:Last File Created 22/05/2012 - 18:28:21 ---A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Historique\History.IE5\index.dat [458752]
O61 - LFC:Last File Created 30/12/1899 - 14:20:51 -S-A- C:\Documents and Settings\Gérard Boutelier\Application Data\Microsoft\CryptnetUrlCache\Content\74BFD122C0875EC75DBE5C6DB4C59019 [75307]
O61 - LFC:Last File Created 30/12/1899 - 14:20:51 -S-A- C:\Documents and Settings\Gérard Boutelier\Application Data\Microsoft\CryptnetUrlCache\MetaData\74BFD122C0875EC75DBE5C6DB4C59019 [124]
O61 - LFC:Last File Created 30/12/1899 - 15:38:39 -S-A- C:\Documents and Settings\Gérard Boutelier\Application Data\Microsoft\CryptnetUrlCache\Content\7B2238AACCEDC3F1FFE8E7EB5F575EC9 [552]
O61 - LFC:Last File Created 30/12/1899 - 15:38:39 -S-A- C:\Documents and Settings\Gérard Boutelier\Application Data\Microsoft\CryptnetUrlCache\MetaData\7B2238AACCEDC3F1FFE8E7EB5F575EC9 [132]
O61 - LFC:Last File Created 30/12/1899 - 16:46:54 -SHA- C:\Documents and Settings\Gérard Boutelier\Application Data\Microsoft\Internet Explorer\Desktop.htt [2726]
O61 - LFC:Last File Created 30/12/1899 - 18:13:51 -SHA- C:\Documents and Settings\Gérard Boutelier\PrivacIE\index.dat [3899392]
O61 - LFC:Last File Created 30/12/1899 - 18:24:58 -S-A- C:\Documents and Settings\Gérard Boutelier\IECompatCache\index.dat [868352]
O61 - LFC:Last File Created 30/12/1899 - 18:24:58 -S-A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat [32768]
O61 - LFC:Last File Created 30/12/1899 - 18:25:02 -S-A- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Microsoft\Internet Explorer\DOMStore\index.dat [32768]
O61 - LFC:Last File Created 30/12/1899 - 18:25:02 -SHA- C:\Documents and Settings\Gérard Boutelier\Local Settings\Historique\History.IE5\MSHist012012052220120523\index.dat [32768]
O61 - LFC:Last File Created 30/12/1899 - 18:27:17 -S-A- C:\Documents and Settings\Gérard Boutelier\IETldCache\index.dat [262144]
~ Scan Files in 04mn 00s

---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.31 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s

---\\ Liste des fichiers non signés (O65) (None)

---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe
O67 - Shell Spawning: <.html> <htmlfile>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe
~ Scan Keys in 00mn 00s

---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <chrome.exe> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <chrome.exe> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\WINDOWS\system32\ie4uinit.exe (.not file.)
O68 - StartMenuInternet: <chrome.exe> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\WINDOWS\system32\ie4uinit.exe (.not file.)
O68 - StartMenuInternet: <chrome.exe> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\WINDOWS\system32\ie4uinit.exe (.not file.)
~ Scan Keys in 00mn 00s

---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - () - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Search the web (Babylon)) - http://search.babylon.com
O69 - SBI: SearchScopes [HKCU] {32C396DE-81BB-473A-803B-8C4F9B82031A} - (Flickr) - http://www.flickr.com
O69 - SBI: SearchScopes [HKCU] {4DDCA111-5926-46CA-9791-A3523B828877} - (Yahoo!) - http://fr.search.yahoo.com
O69 - SBI: SearchScopes [HKCU] {5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} - (ALOT Recherche) - http://search.alot.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {743A233A-E78B-4BBF-AEC5-D521EACAEB18} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {8824F080-0EE4-4389-8FD5-0BBBF4A59C39} - (Search) - http://www.mirarsearch.com
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} [DefaultScope] - (Search Results) - http://dts.search-results.com
O69 - SBI: SearchScopes [HKCU] {9D4A0106-B40A-4776-8AB5-F547A1A40EA2} - (Adparatus) - http://www.adparatus.com
O69 - SBI: SearchScopes [HKCU] {9D5BD211-422C-4164-9298-BB4186A30F31} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (IncrediMail MediaBar Francais 2 Customized Web Search) - http://search.conduit.com
O69 - SBI: SearchScopes [HKCU] {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} - (MyStart Search) - http://mystart.incredimail.com
O69 - SBI: SearchScopes [HKCU] {F62FA085-7F58-4F1F-8175-7B37C3C7DAD0} - (eBay) - http://rover.ebay.com
~ Scan Keys in 00mn 00s

---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (...) -- C:\WINDOWS\system32\appmgmts.dll [0]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [42496]
O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [77824]
O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll [62464]
O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\system32\dmserver.dll [24576]
O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\system32\dhcpcsvc.dll [127488]
O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll [23040]
O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - Pas de description.) -- C:\WINDOWS\system32\es.dll [253952]
O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680]
O83 - Search Svchost Services: HidServ (HidServ) . (...) -- C:\WINDOWS\system32\hidserv.dll [0]
O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [99840]
O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [132096]
O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll [33792]
O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS\system32\netman.dll [198144]
O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll [247808]
O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll [438272]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [88576]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [186368]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [53248]
O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [194560]
O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\WINDOWS\system32\seclogon.dll [18944]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [39424]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à Microsoft NAT.) -- C:\WINDOWS\system32\ipnathlp.dll [332800]
O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du système.) -- C:\WINDOWS\system32\srsvc.dll [171520]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\WINDOWS\system32\tapisrv.dll [249856]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680]
O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [90112]
O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll [178176]
O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\system32\wzcsvc.dll [483840]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [145408]
O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [80896]
O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [129024]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\WINDOWS\system32\qmgr.dll [409088]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [6656]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680]
O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll [38400]
O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Exécution du service Agent de quarantaine.) -- C:\WINDOWS\system32\qagentrt.dll [293376]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [61440]
~ Scan Services in 00mn 00s

---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.C6974769939CBFF13785C83ABEEFAFAA] [SPRF][21/03/2005] (...) -- C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\fusioncache.dat [139]
[MD5.254FBCA565E049648B0CCE2CEADF05D2] [SPRF][09/09/2008] (...) -- C:\Documents and Settings\Gérard Boutelier\Application Data\inst.exe [87608]
[MD5.5B6C11DE7E839C05248CED8825470FEF] [SPRF][09/09/2008] (.VSO Software - low level access layer for CD/DVD/BD devices.) -- C:\Documents and Settings\Gérard Boutelier\Application Data\pcouffin.sys [47360]
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][20/03/2005] (...) -- C:\Documents and Settings\Gérard Boutelier\Application Data\wklnhst.dat [0]
[MD5.8393BBD4281EA2720E68BE478B97F5D9] [SPRF][09/04/2012] (.Microsoft Corporation - Installation IE8.) -- C:\Documents and Settings\Gérard Boutelier\Bureau\IE8-msn.exe [53402400]
[MD5.E3477D08A5660D41D0467512CA268D44] [SPRF][12/05/2012] (.Sophos Limited - Sophos Virus Removal Tool.) -- C:\Documents and Settings\Gérard Boutelier\Bureau\Sophos Virus Removal Tool.exe [81549840]
[MD5.9372A417EA637C0B9F17D94B28658914] [SPRF][22/05/2012] (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Gérard Boutelier\Bureau\ZHPDiag2.exe [4678493]
[MD5.387804211A84DCA79A7238E4406A1F21] [SPRF][20/11/2007] (.Adobe Systems Incorporated - Adobe® Flash® Player ActiveX Installer.) -- C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [1523536]
[MD5.D2D7620DF69EB31F940DF65E0FE527D2] [SPRF][08/04/2010] (.Akamai Technologies, Inc. - Download Manager ActiveX Control.) -- C:\WINDOWS\Downloaded Program Files\Manager.exe [705920]
~ Scan Files in 00mn 04s

---\\ Recherche d'infection Rogue (O86)
O43 - CFD: 06/11/2006 - 22:53:40 - [0,601] ----D C:\Program Files\WinAntiVirus Pro 2006
[MD5.78CD914E53B5F3A288EEAD68D0CB2A88] [SRI] (.WinSoftware, Ltd. - avkernel.dll.) -- C:\Program Files\WinAntiVirus Pro 2006\avkernel.dll [323584]
[MD5.211501E79CC1714307E206A03BF6F880] [SRI] (.SOFTWIN SRL - BitDefender AVCORE.) -- C:\Program Files\WinAntiVirus Pro 2006\bdcore.dll [108032]
[MD5.A063DDB15D7A08075574C1728D565CCE] [SRI] (.WinSoftware - WinAntiVirus 2006 Pro COM DLL.) -- C:\Program Files\WinAntiVirus Pro 2006\WAV6COM.dll [77824]
[MD5.42E706A7DC21BEA9C9C4DEFB607208BD] [SRI] (.WinSoftware, Ltd. - WinAntiVirus 2006 Pro Intermediate Layer.) -- C:\Program Files\WinAntiVirus Pro 2006\winpgi.dll [114688]
O43 - CFD: 26/10/2006 - 14:27:25 - [0,003] ----D C:\Documents and Settings\Gérard Boutelier\Application Data\WinAntiVirus Pro 2006
[MD5.BCD0CB0DC5D0F6A5ACA292E76FAA1D24] [SRI] (...) -- C:\Documents and Settings\Gérard Boutelier\Application Data\WinAntiVirus Pro 2006\PGE.dat [3072]
~ Scan Files in 00mn 00s

---\\ Scan Additionnel (O88)
Database Version : 9159 - (17/05/2012)
Clés trouvées (Keys found) : 201
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 37
Fichiers trouvés (Files found) : 0

[HKLM\Software\MozillaPlugins\@viewpoint.com/VMP] =>Adware.MetaStream
[HKLM\Software\Classes\AppID\DiscoveryHelper.DLL] =>PUP.BearShare
[HKLM\Software\Classes\AppID\GIFAnimator.DLL] =>PUP.BearShare
[HKLM\Software\Classes\AppID\iMesh.exe] =>PUP.iMesh
[HKLM\Software\Classes\AppID\IMTrProgress.DLL] =>PUP.BearShare
[HKLM\Software\Classes\AppID\IMWeb.DLL] =>PUP.BearShare
[HKLM\Software\Classes\AppID\WMHelper.DLL] =>PUP.BearShare
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Imesh] =>PUP.iMesh
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Live-Player] =>Adware.Navipromo
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\QuestService] =>Adware.DoubleD
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer] =>Adware.MetaStream
[HKCU\Software\Microsoft\SystemCertificates\TrustedPublisher\Certificates\62119ef862c6b3a0d853419b87eb3e2f6c78640a] =>Adware.Navipromo
[HKCU\Software\Microsoft\SystemCertificates\TrustedPublisher\Certificates\7ee743314c844c7f445b8b1d7617612df1fdd50f] =>Adware.Navipromo
[HKCU\Software\Microsoft\SystemCertificates\TrustedPublisher\Certificates\E6A6A4A475FCE37F8B5AC2F1244DEB2BFCA5615A] =>Adware.Navipromo
[HKLM\Software\Classes\axmetastream.metastreamctl] =>Adware.MetaStream
[HKLM\Software\Classes\axmetastream.metastreamctl.1] =>Adware.MetaStream
[HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary] =>Adware.MetaStream
[HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary.1] =>Adware.MetaStream
[HKLM\Software\Classes\Conduit.Engine] =>Toolbar.Conduit
[HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery] =>PUP.iMesh
[HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery.1] =>PUP.iMesh
[HKLM\Software\Classes\ExplorerBar.CMW] =>Adware.DoubleD
[HKLM\Software\Classes\ExplorerBar.CMW.1] =>Adware.DoubleD
[HKLM\Software\Classes\ExplorerBar.FunExplorer] =>Adware.DoubleD
[HKLM\Software\Classes\ExplorerBar.FunExplorer.1] =>Adware.DoubleD
[HKLM\Software\Classes\ExplorerBar.TCP] =>Adware.DoubleD
[HKLM\Software\Classes\ExplorerBar.TCP.1] =>Adware.DoubleD
[HKLM\Software\Classes\iMesh.AudioCD] =>PUP.iMesh
[HKLM\Software\Classes\iMesh.Device] =>PUP.iMesh
[HKLM\Software\Classes\iMesh.file] =>PUP.iMesh
[HKLM\Software\Classes\iMeshIEHelper.DNSGuard] =>PUP.iMesh
[HKLM\Software\Classes\iMeshIEHelper.DNSGuard.1] =>PUP.iMesh
[HKLM\Software\Classes\imside1egate.application.1] =>Adware.BHO
[HKLM\Software\Classes\imweb.imwebcontrol] =>PUP.iMesh
[HKLM\Software\Classes\moviebox] =>Trojan.FakeAlert
[HKLM\Software\Classes\Toolbar.ct2504091] =>Adware.Agent
[HKLM\Software\Classes\Toolbar.CT2542115] =>Adware.Hotbar
[HKLM\Software\Classes\winpgintegrator.ieintegrator] =>Rogue.Multiple
[HKLM\Software\Classes\winpgintegrator.ieintegrator.1] =>Rogue.Multiple
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0002ee26-8c11-49eb-9cdf-56eeffef664f}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0002ee26-8c11-49eb-9cdf-56eeffef664f}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2}] =>Toolbar.AskTBar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2}] =>Toolbar.AskTBar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0579b4b6-0293-4d73-b02d-5ebb0ba0f0a2}] =>Toolbar.Ask
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] =>Adware.Agent
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0ABE0FED-50E7-4e42-A125-57C0A11DBCDE}] =>PUP.iMesh
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Adware.MyWebSearch
[HKLM\Software\Classes\Interface\{1081D532-7DE4-40BD-B912-388FA6B27C78}] =>Adware.DoubleD
[HKLM\Software\Classes\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239}] =>Adware.MyWebSearch
[HKLM\Software\Classes\CLSID\{148132E6-626D-4A5E-8063-A761EB29A50B}] =>PUP.BearShare
[HKLM\Software\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}] =>Adware.MetaStream
[HKLM\Software\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}] =>Adware.MetaStream
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D74E9DD-8987-448B-B2CB-67FFF2B8A932}] =>Adware.DoubleD
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1D74E9DD-8987-448B-B2CB-67FFF2B8A932}] =>Adware.DoubleD
[HKLM\Software\Classes\CLSID\{1D74E9DD-8987-448B-B2CB-67FFF2B8A932}] =>Adware.DoubleD
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1D74E9DD-8987-448B-B2CB-67FFF2B8A932}] =>Adware.DoubleD
[HKLM\Software\Classes\AppID\{1fc41815-fa4c-4f8b-b143-2c045c8ea2fc}] =>Toolbar.Kiwee
[HKLM\Software\Classes\AppID\{21493C1F-D071-496A-9C27-450578888291}] =>PUP.iMesh
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2178f3fb-2560-458f-bdee-631e2fe0dfe4}] =>Rogue.Multiple
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2178f3fb-2560-458f-bdee-631e2fe0dfe4}] =>Rogue.Multiple
[HKLM\Software\Classes\CLSID\{2178f3fb-2560-458f-bdee-631e2fe0dfe4}] =>Rogue.Multiple
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2178f3fb-2560-458f-bdee-631e2fe0dfe4}] =>Rogue.Multiple
[HKLM\Software\Classes\TypeLib\{252c2315-cce0-4446-8da7-c00292a690ba}] =>PUP.iMesh
[HKLM\Software\Classes\CLSID\{2656B92B-0207-4afb-BEBF-F5FD231ECD39}] =>PUP.BearShare
[HKLM\Software\Classes\CLSID\{27BF8F8D-58B8-D41C-F913-B7EEB57EF6F6}] =>PUP.BearShare
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{28387537-e3f9-4ed7-860c-11e69af4a8a0}] =>PUP.iMesh
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{28387537-e3f9-4ed7-860c-11e69af4a8a0}] =>PUP.iMesh
[HKLM\Software\Classes\CLSID\{28387537-e3f9-4ed7-860c-11e69af4a8a0}] =>PUP.iMesh
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28387537-e3f9-4ed7-860c-11e69af4a8a0}] =>PUP.iMesh
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28387537-e3f9-4ed7-860c-11e69af4a8a0}] =>PUP.iMesh
[HKLM\Software\Classes\TypeLib\{2A743834-05F4-4ED4-8A1C-41332B10AC0C}] =>Adware.DoubleD
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4a99-B4B6-146BF802613B}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4a99-B4B6-146BF802613B}] =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}] =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{34CB0620-E343-4772-BBA8-D3074BC47516}] =>PUP.BearShare
[HKLM\Software\Classes\AppID\{367a86a5-d048-4785-86be-4e2706aafdd9}] =>Rogue.Multiple
[HKLM\Software\Classes\TypeLib\{367a86a5-d048-4785-86be-4e2706aafdd9}] =>Rogue.Multiple
[HKLM\Software\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581}] =>PUP.BearShare
[HKLM\Software\Classes\CLSID\{3DE88BEB-F271-484A-BA71-01D30F439F0C}] =>Adware.DoubleD
[HKLM\Software\Classes\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7}] =>PUP.iMesh
[HKLM\Software\Classes\TypeLib\{403A885F-CB00-40C1-BDC1-EB09053194F7}] =>PUP.iMesh
[HKLM\Software\Classes\CLSID\{412CD209-DDA4-4275-8C79-55F1C93FBD47}] =>PUP.BearShare
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{42C7C39F-3128-4A17-BDB7-91C46032B5B9}] =>Adware.DoubleD
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{42C7C39F-3128-4A17-BDB7-91C46032B5B9}] =>Adware.DoubleD
[HKLM\Software\Classes\CLSID\{42C7C39F-3128-4A17-BDB7-91C46032B5B9}] =>Adware.DoubleD
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42C7C39F-3128-4A17-BDB7-91C46032B5B9}] =>Adware.DoubleD
[HKLM\Software\Classes\CLSID\{474597C5-AB09-49d6-A4D5-2E8D7341384E}] =>PUP.iMesh
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{50AD41D2-B1F0-47CC-9EA7-395355EAEEBD}] =>Adware.DoubleD
[HKLM\Software\Classes\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48}] =>PUP.iMesh
[HKLM\Software\Classes\TypeLib\{55C1727F-5535-4C2A-9601-8C2458608B48}] =>PUP.iMesh
[HKLM\Software\Classes\TypeLib\{565DD573-549E-4DA9-8CD7-6AE3DF25339A}] =>Adware.DoubleD
[HKLM\Software\Classes\CLSID\{59570C1F-B692-48c9-91B4-7809E6945287}] =>PUP.BearShare
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}] =>Adware.CometSystems
[HKLM\Software\Classes\Interface\{6160f76a-1992-4b17-a32d-0c706d159105}] =>Adware.DoubleD
[HKLM\Software\Classes\Interface\{629cd6c2-e4c5-4554-aeb8-12e4e2cd40ff}] =>Adware.BHO
[HKLM\Software\Classes\CLSID\{63A0F7FA-2C95-4d7e-AF25-EFCC303D20A1}] =>PUP.BearShare
[HKLM\Software\Classes\CLSID\{6559E502-6EE1-46b8-A83C-F3A45BDA23EE}] =>Adware.BHO
[HKLM\Software\Classes\CLSID\{69d3f709-9de2-479f-980f-532d46895703}] =>Adware.BHO
[HKLM\Software\Classes\Interface\{69d3f709-9de2-479f-980f-532d46895703}] =>Adware.BHO
[HKLM\Software\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839}] =>PUP.BearShare
[HKLM\Software\Classes\CLSID\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}] =>PUP.iMesh
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}] =>PUP.iMesh
[HKLM\Software\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F}] =>PUP.BearShare
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{872F3C0B-4462-424c-BB9F-74C6899B9F92}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{877f3eab-4462-44df-8475-6064eafd7fbf}] =>Adware.DoubleD
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8b2c7c9d-716d-4e9e-9358-b9c80a81b7ed}] =>Adware.Adparatus
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8b2c7c9d-716d-4e9e-9358-b9c80a81b7ed}] =>Adware.Adparatus
[HKLM\Software\Classes\CLSID\{8b2c7c9d-716d-4e9e-9358-b9c80a81b7ed}] =>Adware.Adparatus
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8b2c7c9d-716d-4e9e-9358-b9c80a81b7ed}] =>Adware.Adparatus
[HKLM\Software\Classes\CLSID\{8CEB185E-81A5-46D3-BC20-C555D605AFBD}] =>Adware.DoubleD
[HKLM\Software\Classes\TypeLib\{96F7FABC-5789-EFA4-B6ED-1272F4C1D27B}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49dd-99D7-DC866BE87DBC}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49dd-99D7-DC866BE87DBC}] =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{A147AA03-820F-4A0F-9F34-D6CB4004A2F9}] =>PUP.iMesh
[HKLM\Software\Classes\CLSID\{A2858A72-758F-4486-B6A1-7F1DCC0924FA}] =>PUP.BearShare
[HKLM\Software\Classes\CLSID\{A72522BA-9FF3-4C83-ABC6-9B476728A396}] =>Adware.DoubleD
[HKLM\Software\Classes\AppID\{A7DDCBDE-5C86-415c-8A37-763AE183E7E4}] =>PUP.iMesh
[HKLM\Software\Classes\TypeLib\{ac5ab953-ed25-4f9c-87f0-b086b0178ffa}] =>Adware.DoubleD
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}] =>PUP.iMesh
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}] =>PUP.iMesh
[HKCU\Software\Microsoft\Explorer\Bars\{b72681c0-a222-4b21-a0e2-53a5a5ca3d411}] =>Adware.DoubleD
[HKLM\Software\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}] =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{C5762628-AE15-4ca6-96C4-B00DD17F3419}] =>Adware.DoubleD
[HKLM\Software\Classes\CLSID\{C63CA8A4-AB4E-49e5-A6C0-33FC86D80205}] =>PUP.BearShare
[HKLM\Software\Classes\CLSID\{C6A7847E-8931-4a9a-B4EF-72A91E3CCF4D}] =>PUP.BearShare
[HKLM\Software\Classes\CLSID\{D062E03E-65CA-49E4-9B15-31938BA98922}] =>Adware.DoubleD
[HKCU\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}] =>Adware.DoubleD
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}] =>Adware.DoubleD
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}] =>Adware.DoubleD
[HKLM\Software\Classes\CLSID\{DD0F1D24-E250-4e93-966C-65615720AEFB}] =>PUP.BearShare
[HKLM\Software\Classes\CLSID\{E46C8196-B634-44a1-AF6E-957C64278AB1}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EB4A577D-BCAD-4b1c-8AF2-9A74B8DD3431}] =>Adware.DoubleD
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EB4A577D-BCAD-4b1c-8AF2-9A74B8DD3431}] =>Adware.DoubleD
[HKLM\Software\Classes\CLSID\{EC1277BB-1C71-4c0d-BA6D-BFEA16E773A6}] =>PUP.BearShare
[HKLM\Software\Classes\TypeLib\{ec96f516-51b2-4b46-8451-8665f5a6ba2b}] =>Adware.BHO
[HKLM\Software\Classes\TypeLib\{f07fbd3e-2048-44a4-9065-71bf551e2672}] =>PUP.iMesh
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F0D4B239-DA4B-4DAF-81E4-DFEE4931A4AA}] =>Toolbar.AskBar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F0D4B239-DA4B-4DAF-81E4-DFEE4931A4AA}] =>Toolbar.AskBar
[HKLM\Software\Classes\CLSID\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}] =>PUP.iMesh
[HKLM\Software\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}] =>PUP.iMesh
[HKLM\Software\Classes\TypeLib\{F5B8C69C-9B45-4A6A-9380-DF225C546AE7}] =>Adware.ShopperReports
[HKLM\Software\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C}] =>PUP.iMesh
[HKLM\Software\Classes\CLSID\{F8AB43ED-EC88-4de7-B213-F89157D29C62}] =>PUP.iMesh
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}] =>Trojan.Adclicker
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}] =>Trojan.Adclicker
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{fcaddc14-bd46-408a-9842-cdbe1c6d37eb}] =>Trojan.FakeAlert
[HKLM\Software\Classes\CLSID\{fcaddc14-bd46-408a-9842-cdbe1c6d37eb}] =>Trojan.FakeAlert
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fcaddc14-bd46-408a-9842-cdbe1c6d37eb}] =>Trojan.FakeAlert
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{fe063db1-4ec0-403e-8dd8-394c54984b2c}] =>Toolbar.AskTBar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{fe063db1-4ec0-403e-8dd8-394c54984b2c}] =>Toolbar.AskTBar
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\HssSrv] =>Toolbar.Agent
[HKLM\SYSTEM\CurrentControlSet\Services\QuestService Service] =>Adware.DoubleD
[HKCU\Software\CMW] =>Adware.DoubleD
[HKCU\Software\Customized Platform Advancer] =>Adware.DoubleD
[HKLM\Software\Customized Platform Advancer] =>Adware.DoubleD
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\DataMngr] =>Adware.Bandoo
[HKCU\Software\DataMngr_Toolbar] =>Toolbar.Agent
[HKCU\Software\EvenMoreMegaSwellAdsForYou] =>Adware.PlayMP3Z.biz
[HKCU\Software\fcn] =>Rogue.Multiple
[HKCU\Software\iMesh] =>PUP.iMesh
[HKLM\Software\iMesh] =>PUP.iMesh
[HKLM\Software\iMeshMediabarTB] =>PUP.iMesh
[HKCU\Software\LanConfig] =>Adware.Navipromo
[HKCU\Software\live-player] =>Adware.Navipromo
[HKLM\Software\live-player] =>Adware.Navipromo
[HKCU\Software\Media Access Startup] =>Adware.DoubleD
[HKLM\Software\Media Access Startup] =>Adware.DoubleD
[HKLM\Software\MetaStream] =>Adware.MetaStream
[HKLM\Software\PopCap] =>Adware.PopCap
[HKCU\Software\PriceGong] =>Adware.PriceGong
[HKCU\Software\Softonic_France] =>Toolbar.Conduit
[HKLM\Software\Softonic_France] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Toolbar] =>Toolbar.Conduit
[HKLM\Software\Viewpoint] =>Adware.MetaStream
[HKCU\Software\WebMediaPlayer] =>Rogue.Multiple
[HKLM\Software\WebMediaPlayer] =>Rogue.Multiple
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Imesh] =>PUP.iMesh
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\live-player] =>
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\moviebox] =>Trojan.FakeAlert
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\QuestService] =>Adware.DoubleD
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Softonic_France Toolbar] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer] =>Adware.MetaStream
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Wincore MediaBar] =>PUP.iMesh
[HKLM\Software\Classes\Toolbar.CT2319505] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar.CT2504091] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar.CT2542115] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar.CT2604146] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar.CT2724431] =>Toolbar.Agent
C:\Program Files\AskTBar =>Toolbar.AskTBar
C:\Program Files\Automated Content Enhancer =>Adware.DoubleD
C:\Program Files\Conduit =>Toolbar.Conduit
C:\Program Files\Content Management Wizard =>Adware.DoubleD
C:\Program Files\Customized Platform Advancer =>Adware.DoubleD
C:\Program Files\DealPly =>PUP.DealPly
C:\Program Files\EvenMoreMegaSwellAdsForYou =>Adware.PlayMP3Z.biz
C:\Program Files\iMesh Applications =>PUP.iMesh
C:\Program Files\instant access =>Adware.EGDAccess
C:\Program Files\Internet Today =>Adware.DoubleD
C:\Program Files\kwanzy =>Adware.OneStep
C:\Program Files\Live-Player =>Adware.Navipromo
C:\Program Files\QuestService =>Adware.DoubleD
C:\Program Files\Softonic_France =>Toolbar.Conduit
C:\Program Files\Textual Content Provider =>Adware.DoubleD
C:\Program Files\Viewpoint =>Adware.MetaStream
C:\Program Files\Web Search Operator =>Adware.DoubleD
C:\Program Files\WebMediaPlayer =>Rogue.Multiple
C:\WINDOWS\system32\SysWoW32 =>Trojan.Tracur
C:\Documents and Settings\Gérard Boutelier\Application Data\Babylon =>Toolbar.Babylon
C:\Documents and Settings\Gérard Boutelier\Application Data\iMeshMediabarTb =>PUP.iMesh
C:\Documents and Settings\Gérard Boutelier\Application Data\Live-Player =>Adware.Navipromo
C:\Documents and Settings\Gérard Boutelier\Application Data\PriceGong =>Adware.PriceGong
C:\Documents and Settings\Gérard Boutelier\Application Data\WhereSphere =>Adware.Agent
C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Automated Content Enhancer =>Adware.DoubleD
C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Babylon =>Toolbar.Babylon
C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Conduit =>Toolbar.Conduit
C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Customized Platform Advancer =>Adware.DoubleD
C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\HottieStar Toolbar =>Adware.DoubleD
C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh =>PUP.iMesh
C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Softonic_France =>Toolbar.Conduit
C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Textual Content Provider =>Adware.DoubleD
C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Web Search Operator =>Adware.DoubleD
\Hotspot Shield =>Toolbar.Conduit
C:\Documents and Settings\Gérard Boutelier\Application Data\Mozilla\Firefox\Profiles\ceal85gd.default\Extensions\ffxtlbr@babylon.com =>Toolbar.Babylon
~ Scan Additionnel in 00mn 14s

---\\ Recherche détournement de DNS routeur (O89) (None)

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 11/05/2012 257696 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 23/04/2005 54784 | (C-DillaCdaC11BA) . (.Macrovision.) - C:\WINDOWS\system32\drivers\CDAC11BA.exe
SR - | Auto 270434 | (CLCapSvc) . (...) - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
SR - | Auto 122976 | (CLSched) . (...) - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
SR - | Auto 10/08/2006 1073152 | (CyberLink Media Library Service) . (.Cyberlink.) - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
SS - | Demand 14/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\dmadmin.exe
SS - | Auto 23/06/2009 133104 | (gupdate1c9f42a6dd13240) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 23/06/2009 133104 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Disabled 11/10/2009 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe
SR - | Auto 08/08/2007 836904 | (Nero BackItUp Scheduler 3) . (.Nero AG.) - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
SS - | Demand 21/08/2007 382248 | (NMIndexingService) . (.Nero AG.) - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
SR - | Auto 15/12/2004 139331 | (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe
SS - | Auto 58744 | (QuestService Service) . (...) - C:\Documents and Settings\All Users\Application Data\QuestService\questservice129.exe
SR - | Auto 167936 | (RichVideo) . (...) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
SS - | Auto 08/10/2010 163056 | (SAVAdminService) . (.Sophos Plc.) - C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
SS - | Auto 04/06/2010 97520 | (SAVService) . (.Sophos Plc.) - C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe
SR - | Auto 11/04/2012 232472 | (Sophos AutoUpdate Service) . (.Sophos Plc.) - C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
SR - | Auto 21/02/2012 1543704 | (swi_service) . (.Sophos Plc.) - C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
SS - | Demand 12/11/2001 20480 | (x10nets) . (.X10.) - C:\Program Files\Common Files\X10\Common\X10nets.exe
SR - | Auto 09/11/2008 602392 | (YahooAUService) . (.Yahoo! Inc..) - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
~ Scan Services in 00mn 03s

---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by Gérard Boutelier at 22/05/2012 19:45:09

device: opened successfully
user: MBR read successfully

Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
1 ntkrnlpa!IofCallDriver[0x804EF1B0] -> \Device\Harddisk0\DR0[0x86F40AB8]
3 CLASSPNP[0xF75BBFD7] -> ntkrnlpa!IofCallDriver[0x804EF1B0] -> \Device\00000060[0x86F46F18]
5 ACPI[0xF7431620] -> ntkrnlpa!IofCallDriver[0x804EF1B0] -> \Device\Ide\IdeDeviceP1T0L0-e[0x86F76030]
kernel: MBR read successfully
user & kernel MBR OK
~ Scan MBR in 00mn 02s

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Gérard Boutelier at 22/05/2012 19:45:11

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 04s

---\\ Alert Messages
WARNING : Adware.Navipromo/MagicControl found in registry or folder

End of the scan (2219 lines in 15mn 08s)(0)

HexCrunch · le 23 Mai 2012 21:13

salut
rien de bien méchant sauf une infection BT
• Télécharges AdwCleaner sur ton Bureau.

/!\ Utilisateur de Windows Vista et Windows Seven : Cliques droit sur le logo de AdwCleaner, « Exécuter en tant qu'Administrateur » /!\

• Lances AdwCleaner.
• Cliques sur le bouton Suppression.
• Patientes le temps du scan.
• AdwCleaner va ouvrir le bloc-notes et y copier le rapport d'analyse.
• Enregistres le rapport sur ton Bureau.
• Héberges le rapport AdwCleaner sur CJoint.com
• Postes le lien donné.

• Ensuite tu peux cliqué sur Désinstaller.

--------------

• Télécharges Ad-Remover sur ton Bureau.

/!\ Utilisateur de Windows Vista et Windows Seven : Clique droit sur le logo de Ad-Remover, « Exécuter en tant qu'Administrateur » /!\

• Lances Ad-Remover.
• Cliques sur le bouton Nettoyer.
• Patientes le temps du scan.
• Ad-Remover va ouvrir le bloc-notes et y copier le rapport d'analyse.
• Enregistres le rapport sur ton Bureau.
• Héberges le rapport Ad-Remover sur CJoint.com
• Postes le lien donné.

• Ensuite tu peux cliqué sur Désinstaller.[/quote]

Gerard78 · le 24 Mai 2012 20:21

Bonjour,
ci-joint les rapports demandés.
Bonne réception.
Amicalement.

# AdwCleaner v1.607 - Rapport créé le 24/05/2012 à 19:19:38
# Mis à jour le 23/05/2012 par Xplode
# Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
# Nom d'utilisateur : Gérard Boutelier - PRINTEMPS-2005
# Exécuté depuis : C:\Documents and Settings\Gérard Boutelier\Bureau\adwcleaner.exe
# Option [Suppression]

***** [Services] *****

***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Automated Content Enhancer
Dossier Supprimé : C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Babylon
Dossier Supprimé : C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Conduit
Dossier Supprimé : C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Customized Platform Advancer
Dossier Supprimé : C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Textual Content Provider
Dossier Supprimé : C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Web Search Operator
Dossier Supprimé : C:\Documents and Settings\nathalie\Local Settings\Application Data\Automated Content Enhancer
Dossier Supprimé : C:\Documents and Settings\nathalie\Local Settings\Application Data\Conduit
Dossier Supprimé : C:\Documents and Settings\nathalie\Local Settings\Application Data\ConduitEngine
Dossier Supprimé : C:\Documents and Settings\nathalie\Local Settings\Application Data\Customized Platform Advancer
Dossier Supprimé : C:\Documents and Settings\nathalie\Local Settings\Application Data\Textual Content Provider
Dossier Supprimé : C:\Documents and Settings\nathalie\Local Settings\Application Data\Web Search Operator
Dossier Supprimé : C:\Documents and Settings\CHOUPIE\Local Settings\Application Data\Automated Content Enhancer
Dossier Supprimé : C:\Documents and Settings\CHOUPIE\Local Settings\Application Data\Conduit
Dossier Supprimé : C:\Documents and Settings\CHOUPIE\Local Settings\Application Data\ConduitEngine
Dossier Supprimé : C:\Documents and Settings\CHOUPIE\Local Settings\Application Data\Customized Platform Advancer
Dossier Supprimé : C:\Documents and Settings\CHOUPIE\Local Settings\Application Data\Textual Content Provider
Dossier Supprimé : C:\Documents and Settings\CHOUPIE\Local Settings\Application Data\Web Search Operator
Dossier Supprimé : C:\Documents and Settings\Gérard Boutelier\Application Data\Babylon
Dossier Supprimé : C:\Documents and Settings\Gérard Boutelier\Application Data\kujytuo
Dossier Supprimé : C:\Documents and Settings\Gérard Boutelier\Application Data\PriceGong
Dossier Supprimé : C:\Documents and Settings\nathalie\Application Data\PriceGong
Dossier Supprimé : C:\Documents and Settings\CHOUPIE\Application Data\PriceGong
Dossier Supprimé : C:\Documents and Settings\Gérard Boutelier\Menu Démarrer\Programmes\adparatus
Dossier Supprimé : C:\Documents and Settings\Gérard Boutelier\Application Data\Mozilla\Firefox\Profiles\ceal85gd.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
Dossier Supprimé : C:\Documents and Settings\Gérard Boutelier\Application Data\Mozilla\Firefox\Profiles\ceal85gd.default\extensions\ffxtlbr@babylon.com
Dossier Supprimé : C:\Documents and Settings\All Users\Application Data\Babylon
Dossier Supprimé : C:\Documents and Settings\All Users\Application Data\Viewpoint
Dossier Supprimé : C:\Program Files\adparatus
Dossier Supprimé : C:\Program Files\AskTBar
Dossier Supprimé : C:\Program Files\Automated Content Enhancer
Dossier Supprimé : C:\Program Files\Conduit
Dossier Supprimé : C:\Program Files\Content Management Wizard
Dossier Supprimé : C:\Program Files\Customized Platform Advancer
Dossier Supprimé : C:\Program Files\DealPly
Dossier Supprimé : C:\Program Files\Internet Today
Dossier Supprimé : C:\Program Files\Kwanzy
Dossier Supprimé : C:\Program Files\Textual Content Provider
Dossier Supprimé : C:\Program Files\Viewpoint
Dossier Supprimé : C:\Program Files\Web Search Operator

***** [H. Navipromo] *****

Fichier Supprimé : C:\WINDOWS\system32\cgugces.dat
Fichier Supprimé : C:\WINDOWS\system32\cgugces_nav.dat
Fichier Supprimé : C:\WINDOWS\system32\cgugces_navps.dat
Fichier Supprimé : C:\WINDOWS\system32\dsbynhukoa.dat
Fichier Supprimé : C:\WINDOWS\system32\dsbynhukoa_nav.dat
Fichier Supprimé : C:\WINDOWS\system32\dsbynhukoa_navps.dat
Fichier Supprimé : C:\WINDOWS\system32\emgoi.dat
Fichier Supprimé : C:\WINDOWS\system32\emgoi_nav.dat
Fichier Supprimé : C:\WINDOWS\system32\emgoi_navps.dat
Fichier Supprimé : C:\WINDOWS\system32\eyesi.dat
Fichier Supprimé : C:\WINDOWS\system32\eyesi_nav.dat
Fichier Supprimé : C:\WINDOWS\system32\eyesi_navps.dat
Fichier Supprimé : C:\WINDOWS\system32\irtefgq.dat
Fichier Supprimé : C:\WINDOWS\system32\irtefgq_nav.dat
Fichier Supprimé : C:\WINDOWS\system32\irtefgq_navps.dat
Fichier Supprimé : C:\WINDOWS\system32\ndjpde.dat
Fichier Supprimé : C:\WINDOWS\system32\ndjpde_nav.dat
Fichier Supprimé : C:\WINDOWS\system32\ndjpde_navps.dat
Fichier Supprimé : C:\WINDOWS\system32\qpqtqn.dat
Fichier Supprimé : C:\WINDOWS\system32\qpqtqn_nav.dat
Fichier Supprimé : C:\WINDOWS\system32\qpqtqn_navps.dat
Fichier Supprimé : C:\WINDOWS\system32\skkqaqc.dat
Fichier Supprimé : C:\WINDOWS\system32\skkqaqc_.dat
Fichier Supprimé : C:\WINDOWS\system32\skkqaqc_nav.dat
Fichier Supprimé : C:\WINDOWS\system32\skkqaqc_navps.dat
Fichier Supprimé : C:\WINDOWS\system32\skkqaqc__nav.dat
Fichier Supprimé : C:\WINDOWS\system32\skkqaqc__navps.dat
Fichier Supprimé : C:\WINDOWS\system32\ukuiqim.dat
Fichier Supprimé : C:\WINDOWS\system32\ukuiqim_nav.dat
Fichier Supprimé : C:\WINDOWS\system32\ukuiqim_navps.dat
Fichier Supprimé : C:\WINDOWS\system32\wciua.dat
Fichier Supprimé : C:\WINDOWS\system32\wciua_nav.dat
Fichier Supprimé : C:\WINDOWS\system32\wciua_navps.dat
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\cgugces
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\emgoi
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\eyesi
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\irtefgq
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ndjpde
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\skkqaqc
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\skkqaqc_
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\wciua

***** [Registre] *****

[*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2319505
[*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2504091
[*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2542115
[*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2604146
[*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2724431
Clé Supprimée : HKCU\Toolbar
Clé Supprimée : HKCU\Software\Automated Content Enhancer
Clé Supprimée : HKCU\Software\Conduit
Clé Supprimée : HKCU\Software\Customized Platform Advancer
Clé Supprimée : HKCU\Software\DataMngr
Clé Supprimée : HKCU\Software\DataMngr_Toolbar
Clé Supprimée : HKCU\Software\MarketPrecision
Clé Supprimée : HKCU\Software\MediaHoldings
Clé Supprimée : HKCU\Software\Media Access Startup
Clé Supprimée : HKCU\Software\PlayMP3
Clé Supprimée : HKCU\Software\PriceGong
Clé Supprimée : HKCU\Software\Softonic
Clé Supprimée : HKCU\Software\Web Search Operator
Clé Supprimée : HKCU\Software\AppDataLow\Software\MarketPrecision
Clé Supprimée : HKLM\SOFTWARE\Automated Content Enhancer
Clé Supprimée : HKLM\SOFTWARE\Babylon
Clé Supprimée : HKLM\SOFTWARE\Conduit
Clé Supprimée : HKLM\SOFTWARE\Customized Platform Advancer
Clé Supprimée : HKLM\SOFTWARE\DataMngr
Clé Supprimée : HKLM\SOFTWARE\MarketPrecision
Clé Supprimée : HKLM\SOFTWARE\Media Access Startup
Clé Supprimée : HKLM\SOFTWARE\MetaStream
Clé Supprimée : HKLM\SOFTWARE\Viewpoint
Clé Supprimée : HKLM\SOFTWARE\Web Search Operator
Clé Supprimée : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Clé Supprimée : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Clé Supprimée : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Clé Supprimée : HKLM\SOFTWARE\Classes\Conduit.Engine
Clé Supprimée : HKLM\SOFTWARE\Classes\ExplorerBar.FunExplorer
Clé Supprimée : HKLM\SOFTWARE\Classes\ExplorerBar.FunExplorer.1
Clé Supprimée : HKLM\SOFTWARE\Classes\IMsiDe1egate.Application.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Clé Supprimée : HKCU\Software\Microsoft\SystemCertificates\TrustedPublisher\Certificates\62119EF862C6B3A0D853419B87EB3E2F6C78640A
Clé Supprimée : HKCU\Software\Microsoft\SystemCertificates\TrustedPublisher\Certificates\7EE743314C844C7F445B8B1D7617612DF1FDD50F
Clé Supprimée : HKCU\Software\Microsoft\SystemCertificates\TrustedPublisher\Certificates\E6A6A4A475FCE37F8B5AC2F1244DEB2BFCA5615A
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Adparatus
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Clé Supprimée : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Valeur Supprimée : HKCU\Software\Mozilla\Firefox\Extensions [adparatus@adparatus.com]
Valeur Supprimée : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{E63605FC-D583-4C81-867F-9457BDB3EA1B}]
Valeur Supprimée : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{8141440E-08F0-4339-9959-5C31C6A69F23}]
Valeur Supprimée : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{E889F097-B0BE-471B-89AD-B86B6F04B506}]

***** [Registre - GUID] *****

Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{418D86BE-7386-4F1A-83E0-53604ADBDA74}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1D74E9DD-8987-448B-B2CB-67FFF2B8A932}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3DE88BEB-F271-484A-BA71-01D30F439F0C}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{42C7C39F-3128-4A17-BDB7-91C46032B5B9}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{474597C5-AB09-49D6-A4D5-2E8D7341384E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{50AD41D2-B1F0-47CC-9EA7-395355EAEEBD}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{8CEB185E-81A5-46D3-BC20-C555D605AFBD}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{A72522BA-9FF3-4C83-ABC6-9B476728A396}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{B72681C0-A222-4B21-A0E2-53A5A5CA3D41}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{C5762628-AE15-4CA6-96C4-B00DD17F3419}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CAC89FF9-34A9-4431-8CFE-292A47F843BC}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{D062E03E-65CA-49E4-9B15-31938BA98922}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{1081D532-7DE4-40BD-B912-388FA6B27C78}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{6160F76A-1992-4B17-A32D-0C706D159105}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{629CD6C2-E4C5-4554-AEB8-12E4E2CD40FF}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{877F3EAB-4462-44DF-8475-6064EAFD7FBF}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D0B60438-57E7-44DE-8F8E-6C3BF305D430}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{2A743834-05F4-4ED4-8A1C-41332B10AC0C}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{565DD573-549E-4DA9-8CD7-6AE3DF25339A}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{A4BCA928-B566-49C6-AEF1-50BF8673F5CF}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{AC5AB953-ED25-4F9C-87F0-B086B0178FFA}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{F5B8C69C-9B45-4A6A-9380-DF225C546AE7}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1D74E9DD-8987-448B-B2CB-67FFF2B8A932}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42C7C39F-3128-4A17-BDB7-91C46032B5B9}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B72681C0-A222-4B21-A0E2-53A5A5CA3D41}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CAC89FF9-34A9-4431-8CFE-292A47F843BC}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{872F3C0B-4462-424C-BB9F-74C6899B9F92}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1D74E9DD-8987-448B-B2CB-67FFF2B8A932}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{42C7C39F-3128-4A17-BDB7-91C46032B5B9}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8B2C7C9D-716D-4E9E-9358-B9C80A81B7ED}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CB65201-89C4-402C-BA80-02D8C59F9B1D}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B72681C0-A222-4B21-A0E2-53A5A5CA3D41}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CAC89FF9-34A9-4431-8CFE-292A47F843BC}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D45817B8-3EAD-4D1D-8FCA-EC63A8E35DE2}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EB4A577D-BCAD-4B1C-8AF2-9A74B8DD3431}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FE063DB1-4EC0-403E-8DD8-394C54984B2C}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FE063DB9-4EC0-403E-8DD8-394C54984B2C}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D74E9DD-8987-448B-B2CB-67FFF2B8A932}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{42C7C39F-3128-4A17-BDB7-91C46032B5B9}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8B2C7C9D-716D-4E9E-9358-B9C80A81B7ED}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CB65201-89C4-402C-BA80-02D8C59F9B1D}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CB65206-89C4-402C-BA80-02D8C59F9B1D}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B72681C0-A222-4B21-A0E2-53A5A5CA3D41}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CAC89FF9-34A9-4431-8CFE-292A47F843BC}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D45817B8-3EAD-4D1D-8FCA-EC63A8E35DE2}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EB4A577D-BCAD-4B1C-8AF2-9A74B8DD3431}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE063DB1-4EC0-403E-8DD8-394C54984B2C}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE063DB9-4EC0-403E-8DD8-394C54984B2C}
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{28387537-E3F9-4ED7-860C-11E69AF4A8A0}]
Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D45817B8-3EAD-4D1D-8FCA-EC63A8E35DE2}]

***** [Navigateurs] *****

-\\ Internet Explorer v8.0.6001.18702

Remplacé : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://search.babylon.com/?AF=108988&tt ... 07ca03ac6e --> hxxp://www.google.fr

-\\ Mozilla Firefox v [Impossible d'obtenir la version]

Nom du profil : default
Fichier : C:\Documents and Settings\Gérard Boutelier\Application Data\Mozilla\Firefox\Profiles\ceal85gd.default\prefs.js

C:\Documents and Settings\Gérard Boutelier\Application Data\Mozilla\Firefox\Profiles\ceal85gd.default\user.js ... Supprimé !

[OK] Le fichier ne contient aucune entrée illégitime.

-\\ Google Chrome v18.0.1025.168

Fichier : C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[S1].txt - [18559 octets] - [24/05/2012 19:19:38]

########## EOF - C:\AdwCleaner[S1].txt - [18688 octets] ##########

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 19:27:29 le 24/05/2012, Mode normal

Microsoft Windows XP Édition familiale Service Pack 3 (X86)
Gérard Boutelier@PRINTEMPS-2005 ( )

============== ACTION(S) ==============

Service: "QuestService Service" Stoppé et supprimé

Fichier supprimé: C:\Program Files\Mozilla FireFox\plugins\NPAskSBr.dll
Fichier supprimé: C:\WINDOWS\tmlpcert2007
Dossier supprimé: C:\Documents and Settings\Gérard Boutelier\Mes documents\Imesh
Fichier supprimé: C:\Documents and Settings\Gérard Boutelier\Application Data\Microsoft\Internet Explorer\Quick Launch\imesh.lnk
Dossier supprimé: C:\Program Files\EvenMoreMegaSwellAdsForYou
Dossier supprimé: C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\HottieStar Toolbar
Dossier supprimé: C:\Documents and Settings\Gérard Boutelier\Application Data\live-player
Dossier supprimé: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\live-player
Dossier supprimé: C:\Program Files\live-player
Dossier supprimé: C:\Documents and Settings\All Users\Application Data\QuestService
Dossier supprimé: C:\Program Files\QuestService
Dossier supprimé: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WebMediaPlayer
Dossier supprimé: C:\Program Files\WebMediaPlayer
Dossier supprimé: C:\Documents and Settings\Gérard Boutelier\Application Data\WhereSphere
Dossier supprimé: C:\Documents and Settings\All Users\Application Data\iMesh
Dossier supprimé: C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\iMesh
Dossier supprimé: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\iMesh
Dossier supprimé: C:\Program Files\iMesh Applications
Dossier supprimé: C:\Documents and Settings\Gérard Boutelier\Application Data\iMeshMediabarTb

(!) -- Fichiers temporaires supprimés.

Clé supprimée: HKLM\Software\Classes\CLSID\{02AFA80F-4BEE-41FD-8572-214B58A9EF90}
Clé supprimée: HKLM\Software\Classes\CLSID\{148132E6-626D-4A5E-8063-A761EB29A50B}
Clé supprimée: HKLM\Software\Classes\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7}
Clé supprimée: HKLM\Software\Classes\CLSID\{24103041-884B-4772-B0D3-A600E7CBFEC7}
Clé supprimée: HKLM\Software\Classes\CLSID\{2656B92B-0207-4afb-BEBF-F5FD231ECD39}
Clé supprimée: HKLM\Software\Classes\CLSID\{27BF8F8D-58B8-D41C-F913-B7EEB57EF6F6}
Clé supprimée: HKLM\Software\Classes\AppID\{A7DDCBDE-5C86-415c-8A37-763AE183E7E4}
Clé supprimée: HKLM\Software\Classes\CLSID\{34CB0620-E343-4772-BBA8-D3074BC47516}
Clé supprimée: HKLM\Software\Classes\CLSID\{363F46BE-27B4-4C8D-99E7-B1E049B84376}
Clé supprimée: HKLM\Software\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581}
Clé supprimée: HKLM\Software\Classes\CLSID\{3C78B8E2-6C4D-11D1-AEE2-0000F7754B98}
Clé supprimée: HKLM\Software\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
Clé supprimée: HKLM\Software\Classes\CLSID\{3D446B6F-71DE-4437-BE15-8CE47174340F}
Clé supprimée: HKLM\Software\Classes\CLSID\{412CD209-DDA4-4275-8C79-55F1C93FBD47}
Clé supprimée: HKLM\Software\Classes\CLSID\{59570C1F-B692-48c9-91B4-7809E6945287}
Clé supprimée: HKLM\Software\Classes\CLSID\{5D637FAD-E202-48D1-8F18-5B9C459BD1E3}
Clé supprimée: HKLM\Software\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
Clé supprimée: HKLM\Software\Classes\CLSID\{63A0F7FA-2C95-4d7e-AF25-EFCC303D20A1}
Clé supprimée: HKLM\Software\Classes\CLSID\{6559E502-6EE1-46b8-A83C-F3A45BDA23EE}
Clé supprimée: HKLM\Software\Classes\CLSID\{69D3F709-9DE2-479F-980F-532D46895703}
Clé supprimée: HKLM\Software\Classes\Interface\{69D3F709-9DE2-479F-980F-532D46895703}
Clé supprimée: HKLM\Software\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839}
Clé supprimée: HKLM\Software\Classes\CLSID\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}
Clé supprimée: HKLM\Software\Classes\AppID\{21493C1F-D071-496A-9C27-450578888291}
Clé supprimée: HKLM\Software\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F}
Clé supprimée: HKLM\Software\Classes\CLSID\{8643B615-6A76-4060-8A29-C2C6BDF5D70F}
Clé supprimée: HKLM\Software\Classes\CLSID\{8EE49117-038C-4c4d-B05D-894B8C71D52E}
Clé supprimée: HKLM\Software\Classes\CLSID\{90A9B7D2-3794-45EA-9E23-140E3938D2D9}
Clé supprimée: HKLM\Software\Classes\CLSID\{950F80EF-32C2-47dd-9C35-9576E21EE66E}
Clé supprimée: HKLM\Software\Classes\CLSID\{A2858A72-758F-4486-B6A1-7F1DCC0924FA}
Clé supprimée: HKLM\Software\Classes\CLSID\{A6A695A2-B1AD-49A2-AD6F-FFB82E2A7832}
Clé supprimée: HKLM\Software\Classes\CLSID\{A753A1EC-973E-4718-AF8E-A3F554D45C44}
Clé supprimée: HKLM\Software\Classes\CLSID\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}
Clé supprimée: HKLM\Software\Classes\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48}
Clé supprimée: HKLM\Software\Classes\CLSID\{C63CA8A4-AB4E-49e5-A6C0-33FC86D80205}
Clé supprimée: HKLM\Software\Classes\CLSID\{C6A7847E-8931-4a9a-B4EF-72A91E3CCF4D}
Clé supprimée: HKLM\Software\Classes\CLSID\{D3D9D58B-45B5-48AB-B199-B8C40560AEC7}
Clé supprimée: HKLM\Software\Classes\CLSID\{DD0F1D24-E250-4e93-966C-65615720AEFB}
Clé supprimée: HKLM\Software\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
Clé supprimée: HKLM\Software\Classes\CLSID\{EB692FE4-6873-09E0-C127-95E8BA2F94FF}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EB692FE4-6873-09E0-C127-95E8BA2F94FF}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EB692FE4-6873-09E0-C127-95E8BA2F94FF}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EB692FE4-6873-09E0-C127-95E8BA2F94FF}
Clé supprimée: HKLM\Software\Classes\CLSID\{EC1277BB-1C71-4c0d-BA6D-BFEA16E773A6}
Clé supprimée: HKLM\Software\Classes\CLSID\{F0B801B1-A239-473B-B6B4-6AE3DB3ABBD3}
Clé supprimée: HKLM\Software\Classes\CLSID\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}
Clé supprimée: HKLM\Software\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}
Clé supprimée: HKLM\Software\Classes\CLSID\{F8AB43ED-EC88-4de7-B213-F89157D29C62}
Clé supprimée: HKLM\Software\Classes\AppID\{1FC41815-FA4C-4F8B-B143-2C045C8EA2FC}
Clé supprimée: HKLM\Software\Classes\CLSID\{FBA5FB05-58C3-45CB-8B0D-C2313EA048CF}
Clé supprimée: HKLM\Software\Classes\CLSID\{FD675817-9EFE-40cd-A75E-E94D1C85D1FE}
Clé supprimée: HKLM\Software\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C}
Clé supprimée: HKLM\Software\Classes\TypeLib\{057591CA-CDA7-4C77-B52D-7644767A1A1E}
Clé supprimée: HKLM\Software\Classes\TypeLib\{252C2315-CCE0-4446-8DA7-C00292A690BA}
Clé supprimée: HKLM\Software\Classes\TypeLib\{26A19260-CB61-486E-8654-C1C05C4FD1A5}
Clé supprimée: HKLM\Software\Classes\TypeLib\{403A885F-CB00-40C1-BDC1-EB09053194F7}
Clé supprimée: HKLM\Software\Classes\TypeLib\{55C1727F-5535-4C2A-9601-8C2458608B48}
Clé supprimée: HKLM\Software\Classes\TypeLib\{92F11F92-3D21-4DA5-CF1D-EF228FB116A1}
Clé supprimée: HKLM\Software\Classes\TypeLib\{96F7FABC-5789-EFA4-B6ED-1272F4C1D27B}
Clé supprimée: HKLM\Software\Classes\TypeLib\{A147AA03-820F-4A0F-9F34-D6CB4004A2F9}
Clé supprimée: HKLM\Software\Classes\TypeLib\{C4C4F1F4-3074-4CB6-9FB8-0A64273166F0}
Clé supprimée: HKLM\Software\Classes\TypeLib\{EC96F516-51B2-4B46-8451-8665F5A6BA2B}
Clé supprimée: HKLM\Software\Classes\TypeLib\{F07FBD3E-2048-44A4-9065-71BF551E2672}
Clé supprimée: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\irtefgq
Clé supprimée: HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery
Clé supprimée: HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery.1
Clé supprimée: HKLM\Software\Classes\ExplorerBar.CMW
Clé supprimée: HKLM\Software\Classes\ExplorerBar.CMW.1
Clé supprimée: HKLM\Software\Classes\ExplorerBar.TCP
Clé supprimée: HKLM\Software\Classes\ExplorerBar.TCP.1
Clé supprimée: HKLM\Software\Classes\iMesh.AudioCD
Clé supprimée: HKLM\Software\Classes\iMesh.Device
Clé supprimée: HKLM\Software\Classes\iMesh.file
Clé supprimée: HKLM\Software\Classes\iMeshIEHelper.DNSGuard
Clé supprimée: HKLM\Software\Classes\iMeshIEHelper.DNSGuard.1
Clé supprimée: HKLM\Software\iMesh
Clé supprimée: HKLM\Software\Live-Player
Clé supprimée: HKLM\Software\PopCap
Clé supprimée: HKLM\Software\QuestService
Clé supprimée: HKLM\Software\WebMediaPlayer
Clé supprimée: HKLM\Software\AppDataLow\Software\Internet Today
Clé supprimée: HKCU\Software\CMW
Clé supprimée: HKCU\Software\fcn
Clé supprimée: HKCU\Software\iMesh
Clé supprimée: HKCU\Software\Lanconfig
Clé supprimée: HKCU\Software\Live-Player
Clé supprimée: HKCU\Software\WebMediaPlayer
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Adparatus
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\live-player
Clé supprimée: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\AdParatus
Clé supprimée: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\DataMngr
Clé supprimée: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Instant Access
Clé supprimée: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Internet Today Task
Clé supprimée: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\MailSkinner
Clé supprimée: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\WhereSphere
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8824F080-0EE4-4389-8FD5-0BBBF4A59C39}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{8824F080-0EE4-4389-8FD5-0BBBF4A59C39}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0ABE0FED-50E7-4e42-A125-57C0A11DBCDE}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{73763F0A-638F-4414-852B-998D8B42C1A2}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\EvenMoreMegaSwellAdsForYou
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Imesh
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Live-Player
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\QuestService
Clé supprimée: HKCU\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}
Clé supprimée: HKCU\Software\Microsoft\Explorer\Bars\{B72681C0-A222-4b21-A0E2-53A5A5CA3D411}
Clé supprimée: HKCU\Software\Microsoft\Explorer\Bars\{CAC89FF9-34A9-4431-8CFE-292A47F843BC}
Clé supprimée: HKLM\Software\Microsoft\ESENT\Process\Adparatus

Valeur supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing\Trust Database\0|goicfboogidikkejccmclpieicihhlpo bgdjdn
Valeur supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing\Trust Database\0|goicfboogidikkejccmclpieicihhlpo jimddp
Valeur supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing\Trust Database\0|goicfboogidikkejccmclpieicihhlpo hpfanicgkffmccehnpkikogcffaepkfp
Valeur supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing\Trust Database\0|goicfboogidikkejccmclpieicihhlpo dgnckdmmolaijpbbakmplfhlfpdhglgc

============== SCAN ADDITIONNEL ==============

-- C:\Documents and Settings\Gérard Boutelier\Application Data\Mozilla\FireFox\Profiles\ceal85gd.default --
Extensions\{b67942a3-c435-4c83-9654-3245b73b985c} (XUL Cache)
Extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc} (?)
Prefs.js - browser.startup.homepage, hxxp://en-us.start.mozilla.com/firefox? ... r:official
Prefs.js - browser.startup.homepage_override.mstone, rv:1.8.1.3

========================================

**** Internet Explorer Version [8.0.6001.18702] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_URLSearchHooks|{4daac69c-cba7-45e2-9bc8-1044483d3352} - "Softonic_France Toolbar" (C:\Program Files\Softonic_France\prxtbSof1.dll)
HKCU_SearchScopes\{32C396DE-81BB-473A-803B-8C4F9B82031A} - "Flickr" (hxxp://www.flickr.com/search/?q={searchTerms})
HKCU_SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21} - "Search Results" (hxxp://dts.search-results.com/sr?src=ie ... =1&sr=0&q={searchTerms...)
HKCU_SearchScopes\{9D4A0106-B40A-4776-8AB5-F547A1A40EA2} - "Adparatus" (hxxp://www.adparatus.com/404_redirect.php?kw={searchTerms})
HKCU_SearchScopes\{F62FA085-7F58-4F1F-8175-7B37C3C7DAD0} - "eBay" (hxxp://rover.ebay.com/rover/1/709-71121 ... 4?satitle={searchTerms})
HKLM_SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21} - "Search Results" (hxxp://dts.search-results.com/sr?src=ie ... =1&sr=0&q={searchTerms...)
HKCU_Toolbar\ShellBrowser|{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} (x)
HKCU_Toolbar\WebBrowser|{4982D40A-C53B-4615-B15B-B5B5E98D167C} (x)
HKCU_Toolbar\WebBrowser|{0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} (x)
HKCU_Toolbar\WebBrowser|{4DAAC69C-CBA7-45E2-9BC8-1044483D3352} (C:\Program Files\Softonic_France\prxtbSof1.dll)
HKLM_Toolbar|{4daac69c-cba7-45e2-9bc8-1044483d3352} (C:\Program Files\Softonic_France\prxtbSof1.dll)
HKLM_ElevationPolicy\cbe37bde-b23a-442b-813f-b9fdc5dadb94 - C:\Program Files\HotSpot_International\HotSpot_InternationalToolbarHelper.exe (x)
HKLM_ElevationPolicy\cd9ec14c-8a84-4a66-ae88-8dba5dcadb84 - C:\Program Files\HotSpot_International\HotSpot_InternationalToolbarHelper.exe (x)
HKLM_ElevationPolicy\{E98CF149-CD14-43CD-ACE3-E42CB4C613E3} - C:\Documents and Settings\Gérard Boutelier\Local Settings\Application Data\Conduit\CT2542115\Softonic_FranceAutoUpdaterHelper.exe (x)
HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?)
BHO\{02478D38-C3F9-4efb-9B51-7695ECA05670} (?)
BHO\{2178F3FB-2560-458F-BDEE-631E2FE0DFE4} - "CIEIntegrator Object" (C:\Program Files\WinAntiVirus Pro 2006\winpgi.dll)
BHO\{39EA7695-B3F2-4C44-A4BC-297ADA8FD235} - "Sophos Web Content Scanner" (C:\Program Files\Sophos\Sophos Anti-Virus\SophosBHO.dll)
BHO\{4daac69c-cba7-45e2-9bc8-1044483d3352} - "Softonic_France Toolbar" (C:\Program Files\Softonic_France\prxtbSof1.dll)
BHO\{F5938714-BD46-408A-9842-4058206D37E3} - "?" (C:\DOCUME~1\GRARDB~1\LOCALS~1\Temp\~00754.tmp) (x)
BHO\{FCADDC14-BD46-408A-9842-CDBE1C6D37EB} - "?" (C:\DOCUME~1\GRARDB~1\LOCALS~1\Temp\~00754.tmp) (x)

========================================

C:\Program Files\Ad-Remover\Quarantine: 2938 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 13 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 24/05/2012 19:27:36 (15323 Octet(s))

Fin à: 19:29:45, 24/05/2012

============== E.O.F ==============

HexCrunch · le 25 Mai 2012 19:12

salut
comment va le PC ??
amicalement

Gerard78 · le 28 Mai 2012 17:14

Bonjour,

Et bien, il va bien enfin beaucoup mieux.

Déja, il ne rame plus, la connection au net est plus rapide.

j'ai vu que adwcleaner et ad-remover avaient fait le ménage sur le pc en éliminant en autre certains fichiers que j'avais téléchargés.

Qu'elles sont tes recommandations pour maintenir le pc en bon état de fonctionnement ?
Comment savoir qu' un programme peut présenter un risque avant de le télécharger? ( si toute fois cela est possible)

Je te remercie.

Amicalement.

HexCrunch · le 28 Mai 2012 21:18

salut
pas de quoi :wink:

Nous allons maintenant procéder au nettoyage des outils de désinfection !

Télécharge ->> DelFix <<- de Xplode

Lance le.
Choisit l'option "Suppression"
Un rapport va s'ouvrir à la fin, colle le dans la réponse ...
Ensuite pour le désinstaller ; tu relances et tu passes à l'option "Désinstallation"

=======================================================
1) Purge de la restauration système

Double-cliquez sur OneClick2RestorePoint pour l'exécuter (Sous Vista/Seven, fais un clic droit et choisir Exécuter en tant qu'administrateur).
Cliquez sur le bouton "Purger", l'outil de nettoyage de Windows va ensuite s'ouvrir.
Choisissez votre disque dur principal (en général C:\), puis patientez durant le scan.
Rendez-vous dans l'onglet "Autres options".
Dans la zone restauration système, cliquez sur le bouton "Nettoyer" puis sur le bouton "Supprimer".
Les points de restauration système seront purgés sauf le dernier créé.

2) Créer un point de restauration

Télécharge OneClick2RestorePoint de Laddy sur ton Bureau

Double-cliquez dessus pour l'exécuter (Sous Vista/Seven, fais un clic droit et choisir Exécuter en tant qu'administrateur).
Entrez la description suivante : "Pc-Propre"
Cliquez sur le bouton "Créer", puis sur le bouton OK.
Cliquez sur le bouton "Quitter" pour fermez l'application.

============================================================================

Pour le bien de votre PC:

Penser à effectuer la Mise à jours de Windows Update:
Démarrer => Tous les programmes => Windows Update
Mettez votre JaVa à jours.
Mettre à jours son navigateur intenet:
Mozilla Firefox
Internet explorer
Effectuer un Scan complet de votre pc avec votre Antivirus(Tous les 15J~)
Effectuer un Scan complet ou rapide avec Malwarebytes' Antimalware
utilisé lors de la désinfection en prenant soin de le mettre à jours avant chaque utilisations.
Ne cliquer pas sur des liens qu'on vous envoie bêtement.
Faite attention à vos téléchargement & à votre navigation sur internet:
(Site douteux: Pubs , porno , Emoticône... )
Fait attention aux Toolbars que vous installé => http://forum.malekal.com/les-toolbars-e ... t6173.html

Gerard78 · le 30 Mai 2012 08:50

Bonjour,

Voila, j'ai fait ce que tu m'a dit, et tout c'est bien déroulé.

Merci pour les conseils sur l'utilisation du pc que je vais prendre soin de suivre.

Est-ce que tout va bien maintenant ?

Amicalement.

HexCrunch · le 30 Mai 2012 12:17

salut
oui tout va bien sauf que si tu signales autre chose !!
amicalement

virus sacem

virus sacem

Re: virus sacem

Re: virus sacem

Re: virus sacem

Re: virus sacem

Re: virus sacem

Re: virus sacem

Re: virus sacem

Re: virus sacem

Re: virus sacem

Re: virus sacem

Re: virus sacem

Re: virus sacem

Re: virus sacem

Re: virus sacem

Sujets similaires

Qui est en ligne