[Résolu] Je deviens fou !

(2 Pages)
1
2
→

Vous ne pouvez pas commencer un sujet
Vous ne pouvez pas répondre à ce sujet

[Résolu] Je deviens fou ! Noter :

#1 synchronn

Member

Groupe : Membres
Messages : 64
Inscrit(e) : 25-mars 06

Posté 04 septembre 2011 - 09:37

Bonjour à tous, je passe ma journée à essayer de virer un virus ou trojan non identifié. Celui-ci réduit énormément la rapidité de mon pc, je fais de multiples scan avec spybot (ca donne rien) , ad awaren, spydoctor, avira et malwarebytes mais pour le moment rien de rien. Le scan complet de malwarebytes est en route depuis plus de 5 heures...

Et pour ne rien arranger, c'est un Eeeeeepc sous windows 7.

Voici le rapport hijackthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:42:11, on 04/09/2011
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16800)
Boot mode: Normal

Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\csrss.exe
C:\windows\system32\wininit.exe
C:\windows\system32\csrss.exe
C:\windows\system32\services.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\system32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\windows\System32\spoolsv.exe
C:\windows\system32\taskhost.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\windows\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\System32\AsusService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\windows\system32\svchost.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\windows\System32\svchost.exe
C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe
C:\Program Files\EeePC\HotkeyService\HotkeyService.exe
C:\Program Files\EeePC\SHE\SuperHybridEngine.exe
C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe
C:\Program Files\EeePC\CapsHook\CapsHook.exe
C:\windows\System32\svchost.exe
C:\Program Files\PC Tools Security\pctsAuxs.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\PC Tools Security\pctsGui.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\windows\system32\conhost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\windows\system32\wbem\unsecapp.exe
C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\windows\system32\SearchIndexer.exe
C:\windows\system32\svchost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Avira\AntiVir Desktop\avscan.exe
C:\Program Files\Avira\AntiVir Desktop\avscan.exe
C:\windows\system32\svchost.exe
C:\Program Files\PC Tools Security\pctsSvc.exe
C:\windows\system32\wuauclt.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
C:\windows\system32\conhost.exe
C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe
C:\windows\system32\conhost.exe
C:\windows\system32\igfxsrvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileBackup.exe
C:\windows\system32\conhost.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\windows\system32\SearchProtocolHost.exe
C:\Users\Thomas\Desktop\hijackthis.exe
C:\windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Asus | MSN
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Asus | MSN
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {472734EA-242A-422b-ADF8-83D1E48CC825} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [HotkeyMon] AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe
O4 - HKLM\..\Run: [HotkeyService] AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotkeyService.exe
O4 - HKLM\..\Run: [SuperHybridEngine] AsusSender.exe C:\Program Files\EeePC\SHE\SuperHybridEngine.exe
O4 - HKLM\..\Run: [LiveUpdate] AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto
O4 - HKLM\..\Run: [CapsHook] AsusSender.exe C:\Program Files\EeePC\CapsHook\CapsHook.exe
O4 - HKLM\..\Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe autorun
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUSPRP] C:\Program Files\ASUS\APRP\APRP.EXE
O4 - HKLM\..\Run: [SynAsusAcpi] %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files\ASUS\ASUS WebStorage\2.2.56.108\ASUSWSDashBoard.exe /S
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\PC Tools Security\pctsGui.exe" /hideGUI
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O13 - Gopher Prefix:
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Asus Launcher Service (AsusService) - Unknown owner - C:\Windows\System32\AsusService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\PC Tools Security\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\PC Tools Security\pctsSvc.exe

--
End of file - 9549 bytes

Merci de votre aide si vous voyez un truc qui cloche.

Ce message a été modifié par synchronn - 07 septembre 2011 - 09:17 .

Retour en haut of the page up there ^

#2 tomtom95

Godlike Member

Groupe : Equipe Sécurité
Messages : 2316
Inscrit(e) : 17-janvier 11

Posté 04 septembre 2011 - 10:17

Bonsoir synchronn

Rien de trés visible sur ce rapport

Pour commencer

Désactiver TeaTimer de spybot

Mode Avancé

Options Avancées :
menu Mode
-Mode Avancé. Une colonne de menus apparaît dans la partie gauche :
clique sur Outils
clique sur Résident
-Dans Résident :
décoche Résident "TeaTimer" pour le désactiver.
Si dans Spybot S&D tu as vacciné
Sur l'onglet "vaccination"
Clique sur "Vaccination" dans la colonne sur la gauche :
Clique sur annuler (la flèche bleue) pour annuler la vaccination.
IMPORTANT Il faut aussi savoir que Spybot utilise une technologie dépassée.
Si vous ajoutez à cela les problèmes causés par la vaccination qui ralentit le système et TeaTimer qui peut faire obstacle à une désinfection..... voir pour le désinstaller du pc

Supprime aussi Lavasoft Ad-Aware ,et PC Tools Security :outch:

Aprés les suppressions:

Télécharge RogueKiller (par tigzy). sur le bureau

IMPORTANT:Quitte tous tes programmes en cours
Sous Vista/Seven clique droit -> lancer en tant qu'administrateur
Lance RogueKiller.exe.
Lorsque demandé
tape 1 pour Recherche et valide avec [entrée]

Un rapport (RKreport.txt) a du se créer à côté de l'exécutable
colle son contenu dans la réponse en fin de procédure.

Puis pour une analyse un peu plus détailler de ton ordinateur
applique cette procédure stp.

Télécharge ZHPDiag de Nicolas Coolman sur ton Bureau
Lance l'outil : double-clique sur ZHPDiag pour XP
Pour Vista et seven
fais un clique droit sur l'icône et exécute en tant qu'administrateur.

Clique sur le Tournevis a droit en haut

Coche toutes les cases .
Puis Clique sur la petite loupe en haut à gauche pour débuter l'analyse :
L'analyse peut durer une dizaine de minutes.
Le rapport généré par l'outil se nomme ZHPDiag.txt
Clique sur le bouton avec l'appareil photo pour copier le contenu intégral du rapport généré par l'outil dans le presse-papier :
Dans ta prochaine réponse
clique sur les touches CTRL+V pour coller ce rapport.
Si tu rencontres un message d'erreur
cela signifie que le rapport est trop long. Il faut donc l'éditer en plusieurs parties en veillant bien à ne rien oublier
Tu peux aussi héberger le fichier contenant ce rapport ici
http://cjoint.com/
Indique ensuite dans ta prochaine réponse l'adresse d'hébergement de ce rapport pour que je puisse le télécharger et l'analyser.

A+

Besoin d'une aide desinfection.securite-academie.fr
"Un forum dédié au nettoyage des ordinateurs "infectés"
Cliquer ICI >>

Retour en haut of the page up there ^

#3 synchronn

Member

Groupe : Membres
Messages : 64
Inscrit(e) : 25-mars 06

Posté 05 septembre 2011 - 07:21

Salut Tomtom et merci pour prendre du temps pour m'aider :

Voici le rapport de rogue killer :

RogueKiller V5.3.4 [30/08/2011] par Tigzy
contact sur Forum Sciences / Forum Informatique - Sur la Toile (SLT)
mail: tigzyRK<at>gmail<dot>com
Remontees: [RogueKiller] Remontées (1/33)

Systeme d'exploitation: Windows 7 (6.1.7600 ) 32 bits version
Demarrage : Mode normal
Utilisateur: Thomas [Droits d'admin]
Mode: Recherche -- Date : 05/09/2011 08:18:26

Processus malicieux: 0

Entrees de registre: 4
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND
[HJ] HKLM\[...]\System : EnableLUA (0) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

Fichiers / Dossiers particuliers:
[FOLDER] plugs : c:\users\thomas\appdata\roaming\adobe\plugs --> FOUND
[FOLDER] shed : c:\users\thomas\appdata\roaming\adobe\shed --> FOUND

Fichier HOSTS:
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]

Termine : << RKreport[1].txt >>
RKreport[1].txt

Pour ZHP fix, je clique sur le tournevis (la légende est rapport de suppression) mais je n'ai rien à cocher, CTTFIX, HOSTFIX et le reste ont un ok en vert. Ensuite je ne vois pas la loupe...erf mais une icone pour Windows clean manager, est-ce celui-ci qu'il faut déclencher?

Ce message a été modifié par synchronn - 05 septembre 2011 - 07:21 .

Retour en haut of the page up there ^

#4 synchronn

Member

Groupe : Membres
Messages : 64
Inscrit(e) : 25-mars 06

Posté 05 septembre 2011 - 07:24

POUR ZHP c'est bon, j'ai relancé le logiciel, je vois les icones !

Retour en haut of the page up there ^

#5 synchronn

Member

Groupe : Membres
Messages : 64
Inscrit(e) : 25-mars 06

Posté 05 septembre 2011 - 11:25

Voici la suite:

Rapport de ZHPDiag v1.28.1346 par Nicolas Coolman, Update du 29/08/2011
Run by Thomas at 9/5/2011 12:19:14 PM
Web site : ZHPDiag Outil de diagnostic

---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
MFIE: Mozilla Firefox 6.0.1 v6.0.1 (Defaut)

---\\ Windows Product Information
Windows 7 Starter Edition, 32-bit (Build 7600)
Windows Server License Manager Script : OK
~ Windows® 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : YCJVG
Windows License : OK
~ Windows Remaining Initializations Number : 1
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: x86 Family 6 Model 28 Stepping 10, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1014.2 MB (48% free)
System Restore: Activé (Enable)
System drive C: has 28 GB (28%) free of 100 GB

---\\ Logged in mode
~ Computer Name: THOMAS-PC
~ User Name: Thomas
~ All Users Names: Thomas, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Thomas\AppData\Roaming\
~ %Desktop% : C:\Users\Thomas\Desktop\
~ %Favorites% : C:\Users\Thomas\Favorites\
~ %LocalAppData% : C:\Users\Thomas\AppData\Local\
~ %StartMenu% : C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\windows\
~ %System% : C:\windows\system32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 28 Go of 100 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 102 Go of 118 Go)

---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn AMs

---\\ Recherche particulière de fichiers génériques
[MD5.2AF58D15EDC06EC6FDACCE1F19482BBF] - (.Microsoft Corporation - Explorateur Windows.) (.6/14/2011 - 6:33:07 AM.) -- C:\windows\Explorer.exe [2614784]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (....) (.7/14/2009 - 2:14:31 AM.) -- C:\windows\system32\rundll32.exe [44544]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.7/14/2009 - 2:14:45 AM.) -- C:\windows\system32\Wininit.exe [96256]
[MD5.27CDAF355CCE3762C7F13719E814418B] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.8/6/2011 - 8:31:50 PM.) -- C:\windows\system32\wininet.dll [981504]
[MD5.37CDB7E72EB66BA85A87CBE37E7F03FD] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.6/24/2010 - 7:17:59 AM.) -- C:\windows\system32\Winlogon.exe [285696]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.7/14/2009 - 2:26:15 AM.) -- C:\windows\system32\drivers\atapi.sys [21584]
[MD5.3795DCD21F740EE799FB7223234215AF] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.7/14/2009 - 2:20:44 AM.) -- C:\windows\system32\drivers\ntfs.sys [1210432]
[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - (.Microsoft Corporation - Bibliothèque de licences.) (.7/14/2009 - 2:16:15 AM.) -- C:\windows\system32\sppcomapi.dll [193024]
[MD5.D8714A5FB3141F8226D16861F20C5AC4] - (....) (.7/26/2009 - 2:15:05 AM.) -- C:\windows\system32\fr-FR\user32.dll.mui [19968]
~ Scan Generic Processes in 00mn AMs

---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/2
~ Mes musiques (My Musics) : 71/583
~ Mes Favoris (My Favorites) : 2/32
~ Mes Documents (My Documents) : 2/220
~ Mon Bureau (My Desktop) : 1/57
~ Menu demarrer (Programs) : 6/25
~ Scan Hidden Files in 24mn AMs

---\\ Processus lancés
[MD5.A5BCBAF0477C4869B67E0195AEA4A9CD] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [136360] [PID.1412]
[MD5.3CCE4AFA4AACDB28E01A148394212186] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [269480] [PID.1708]
[MD5.20F6F19FE9E753F2780DC2FA083AD597] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664] [PID.1784]
[MD5.C4FB2613D3C75364BB159B9C23A00E7A] - (...) -- C:\Windows\System32\AsusService.exe [219136] [PID.1856]
[MD5.F2060A34C8A75BC24A9222EB4F8C07BD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [349472] [PID.1944]
[MD5.5AF1E9600E3FF841E522703A4993ED0C] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904] [PID.772]
[MD5.808B469BC03B39D735742D8D41D1C2C0] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9177632] [PID.1960]
[MD5.2E86071D074339BE1386DC7DB032557B] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1594664] [PID.1872]
[MD5.4D2987AFADD5A32417BD744C34ADF9FF] - (.Synaptics Incorporated - Asus Custom Acpi Monitor Application.) -- C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [83240] [PID.1952]
[MD5.710AB764FEAC87B4EB4BE3A6A5480BD0] - (.ASUSTeK Computer Inc. - HotkeyMon.) -- C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe [100328] [PID.1936]
[MD5.5806F3B00FE486DFE1ADD77CF3857845] - (.ASUSTeK Computer Inc. - Eee Super Hybrid Engine.) -- C:\Program Files\EeePC\SHE\SuperHybridEngine.exe [412600] [PID.1736]
[MD5.EB18FDC307FFA93EE053C9149D2C5842] - (.ASUSTeK Computer Inc. - Asus Eee PC Hotkey Service.) -- C:\Program Files\EeePC\HotkeyService\HotkeyService.exe [1242544] [PID.1536]
[MD5.9D5E8B45BD348DF0882C69EED0E83111] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [281768] [PID.432]
[MD5.360600AE01D1ABDD1FCEF8AFA32AF96D] - (.ASUS - CapsAndNumKeyNotify.) -- C:\Program Files\EeePC\CapsHook\CapsHook.exe [445344] [PID.1516]
[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe [11322880] [PID.864]
[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin [11314688] [PID.1028]
[MD5.D523A9BB4D1C1DEF96A3555AE472BFF1] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [103720] [PID.2128]
[MD5.CDE000884FD7BAF0C1FDFE029B0891DE] - (.Avira GmbH - AntiVir shadow copy service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76968] [PID.2432]
[MD5.7548066DF68A8A1A56B043359F915F37] - (.Intel Corporation - RAID Monitor.) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [354840] [PID.2732]
[MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\windows\system32\wuauclt.exe [53472] [PID.1360]
[MD5.7914370AAC5CDE8DCAE1C674A6C90229] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [669696] [PID.3628]
[MD5.4C287F9069FEDBD791178876EE9DE536] - (.Microsoft Corporation - Service de la plateforme de protection logi.) -- C:\windows\system32\sppsvc.exe [3179520] [PID.1592]
~ Scan Processes Running in 03mn AMs

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Thomas\AppData\Roaming\Mozilla\Firefox\Profiles\zc7laqia.default\prefs.js
C:\Users\Thomas\AppData\Roaming\Mozilla\Firefox\Profiles\zc7laqia.default\user.js (.not file.)
M3 - MFPP: Plugins - [Thomas] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Thomas] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Thomas] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Thomas] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Thomas] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Thomas] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Thomas] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Thomas - zc7laqia.default] Google
M2 - MFEP: prefs.js [Thomas - zc7laqia.default\plugin@yontoo.com] [] Yontoo Layers v1.20.00 (.Yontoo LLC.)
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java™ Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\windows\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.dll
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plug-in allows you to open and edit files using Microsoft Office a.) -- C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll
~ Scan Firefox Browser in 00mn AMs

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Asus | MSN
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search Microsoft.com
R0 - HKUS\S-1-5-21-2405251124-3916129693-1916960768-1000\Software\Microsoft\Internet Explorer\Main,Start Page = Asus | MSN
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Asus | MSN
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKUS\S-1-5-21-2405251124-3916129693-1916960768-1000\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
R3 - URLSearchHook: (no name) - {472734EA-242A-422b-ADF8-83D1E48CC825} . (...) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
~ Scan IE Browser in 00mn AMs

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn AMs

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn AMs

---\\ Redirection du fichier Hosts (O1)
~ Scan Hosts File in 14mn AMs

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java™ Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
~ Scan BHO in 00mn AMs

---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [HotkeyMon] . (.ASUSTeK Computer Inc. - HotkeyMon.) -- C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe
O4 - HKLM\..\Run: [HotkeyService] . (.ASUSTeK Computer Inc. - Asus Eee PC Hotkey Service.) -- C:\Program Files\EeePC\HotkeyService\HotkeyService.exe
O4 - HKLM\..\Run: [SuperHybridEngine] . (.ASUSTeK Computer Inc. - Eee Super Hybrid Engine.) -- C:\Program Files\EeePC\SHE\SuperHybridEngine.exe
O4 - HKLM\..\Run: [LiveUpdate] . (...) -- C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe
O4 - HKLM\..\Run: [CapsHook] . (.ASUS - CapsAndNumKeyNotify.) -- C:\Program Files\EeePC\CapsHook\CapsHook.exe
O4 - HKLM\..\Run: [Eee Docking] . (.Pas de propriétaire - Eee Docking Application.) -- C:\Program Files\ASUS\Eee Docking\Eee Docking.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUSPRP] . (.ASUSTek Computer Inc. - ASUS Product Register Program.) -- C:\Program Files\ASUS\APRP\APRP.exe
O4 - HKLM\..\Run: [SynAsusAcpi] . (.Synaptics Incorporated - Asus Custom Acpi Monitor Application.) -- C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
O4 - HKLM\..\Run: [ASUSWebStorage] . (.eCareme - Asus WebStorage DashBoard.) -- C:\Program Files\ASUS\ASUS WebStorage\2.2.56.108\ASUSWSDashBoard.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-2405251124-3916129693-1916960768-1000\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn AMs

---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Install Clean Up.lnk . (...) -- C:\Users\Thomas\AppData\Roaming\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe
O4 - Global Startup: C:\Users\Thomas\Desktop\CDisplay.lnk . (.David Ayton.) -- C:\Program Files\CDisplay\CDisplay.exe
O4 - Global Startup: C:\Users\Thomas\Desktop\Disque local (D) - Raccourci.lnk . (...) -- D:\
O4 - Global Startup: C:\Users\Thomas\Desktop\Format Factory.lnk . (.Free Time.) -- C:\Program Files\FreeTime\FormatFactory\FormatFactory.exe
O4 - Global Startup: C:\Users\Thomas\Desktop\Vuze Downloads - Raccourci.lnk . (...) -- C:\Users\Thomas\Documents\Vuze Downloads
O4 - Global Startup: C:\Users\Thomas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Thomas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\Thomas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Users\Thomas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk . (.Vuze Inc..) -- C:\Program Files\Vuze\Azureus.exe
~ Scan Global Startup in 00mn AMs

---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\windows\system32\wshbth.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000010\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
~ Scan Winsock in 00mn AMs

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{8E4FADF6-82F4-4976-899E-77730254AD45}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{E994D5B7-3E5B-4CCB-97BD-5041E2C0B102}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\..\{8E4FADF6-82F4-4976-899E-77730254AD45}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{E994D5B7-3E5B-4CCB-97BD-5041E2C0B102}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS2\Services\Tcpip\..\{8E4FADF6-82F4-4976-899E-77730254AD45}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{E994D5B7-3E5B-4CCB-97BD-5041E2C0B102}: DhcpNameServer = 212.27.40.240 212.27.40.241
~ Scan Domain in 00mn AMs

---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\windows\System32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\windows\system32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\windows\System32\itss.dll
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\windows\system32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\windows\system32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\windows\system32\mscoree.dll
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
~ Scan Protocole Additionnel in 00mn AMs

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\windows\system32\igfxdev.dll
~ Scan Winlogon in 00mn AMs

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn AMs

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Asus Launcher Service (AsusService) . (...) - C:\Windows\System32\AsusService.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
~ Scan Services in 00mn AMs

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn AMs

---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (...) -- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [CleanMem Mini Monitor] (...) -- C:\Program Files\CleanMem\mini_monitor.exe (.not file.)
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
~ Scan Scheduled Task in 05mn AMs

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\windows\system32\drivers\afd.sys
O41 - Driver: (AsUpIO) . (...) - C:\windows\system32\drivers\AsUpIO.sys
O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\windows\system32\DRIVERS\avipbb.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: C:\windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\windows\system32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\windows\system32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\windows\system32\drivers\rdprefmp.sys
O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\windows\system32\DRIVERS\ssmdrv.sys
O41 - Driver: C:\windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\windows\system32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn AMs

---\\ Logiciels installés (O42)
O42 - Logiciel: 7-Zip 9.20 - (.Pas de propriétaire.) [HKLM] -- 7-Zip
O42 - Logiciel: ASUS VIBE - (.Ecareme, Inc..) [HKLM] -- ASUS VIBE
O42 - Logiciel: ASUS WebStorage - (.eCareme Technologies, Inc..) [HKLM] -- ASUS WebStorage
O42 - Logiciel: ASUSUpdate for Eee PC - (.ASUSTeK Computer Inc..) [HKLM] -- {587178E7-B1DF-494E-9838-FA4DD36E873C}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Atheros Client Installation Program - (.Atheros.) [HKLM] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: CDisplay 1.8 - (.dvd8n.) [HKLM] -- CDisplay_is1
O42 - Logiciel: CapsHook - (.AsusTek Computer.) [HKLM] -- {4B5092B6-F231-4D18-83BC-2618B729CA45}
O42 - Logiciel: Definition update for Microsoft Office 2010 (KB982726) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2FD3FD50-4D6B-433B-9AB8-83F04675DA44}
O42 - Logiciel: Defraggler - (.Piriform.) [HKLM] -- Defraggler
O42 - Logiciel: DiskAid 4.53 - (.DigiDNA.) [HKLM] -- DiskAid_is1
O42 - Logiciel: Eee Docking 3.7.0 - (.ASUSTek Computer Inc..) [HKLM] -- Eee Docking_is1
O42 - Logiciel: EeeSplendid - (.ASUS.) [HKLM] -- {6333FC29-BFE5-4024-AC78-958A1A7555D1}
O42 - Logiciel: FontResizer - (.ASUSTek.) [HKLM] -- InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8}
O42 - Logiciel: FormatFactory 2.60 - (.Free Time.) [HKLM] -- FormatFactory
O42 - Logiciel: GSplit 3 - (.G.D.G. Software.) [HKLM] -- GSplit3Set
O42 - Logiciel: Hotkey Service - (.AsusTek Computer.) [HKLM] -- {71C0E38E-09F2-4386-9977-404D4F6640CD}
O42 - Logiciel: Intel® Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI
O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.1.1800 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft Office Professionnel Plus 2010 - (.Microsoft Corporation.) [HKLM] -- Office14.PROPLUS
O42 - Logiciel: Mozilla Firefox 6.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 6.0.1 (x86 fr)
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Security Update for Microsoft Excel 2010 (KB2523021) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{AA9E4C48-857D-4558-A4F4-343CA7680277}
O42 - Logiciel: Security Update for Microsoft InfoPath 2010 (KB2510065) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3C6C6854-EB6B-455C-B0A6-9871F0538028}
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289078) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{1D1A4F08-2F17-475B-BA72-476CE5992FEE}
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289161) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F134C2C6-30B3-4169-A325-58482B4CE6FC}
O42 - Logiciel: Security Update for Microsoft PowerPoint 2010 (KB2519975) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{45D7C5CD-B967-44AF-9DAB-E5C8545558AD}
O42 - Logiciel: Security Update for Microsoft Publisher 2010 (KB2409055) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{C3C277D5-36E3-4B1A-926A-175B2BC019CF}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: Super Hybrid Engine - (.AsusTek Computer.) [HKLM] -- {88F08F98-12BC-4613-81A2-8F9B88CFC73E}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2202188) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{86B7A074-265D-420C-9E1E-7A920EF0ECA7}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2494150) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2523113) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{C0FF04BF-A05E-408B-81CA-B7FACDA508A3}
O42 - Logiciel: Update for Microsoft OneNote 2010 (KB2493983) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{309EEC22-83CE-4109-B019-BA9392FAA322}
O42 - Logiciel: Update for Microsoft Outlook Social Connector (KB2441641) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{A10DC2B7-6FDA-4C17-9DF0-6A834CAC4306}
O42 - Logiciel: VLC media player 1.0.5 - (.VideoLAN Team.) [HKLM] -- VLC media player
O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01
O42 - Logiciel: Vuze - (.Vuze Inc..) [HKLM] -- 8461-7759-5462-8226
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/17/2009 6.2.0.9403) - (.Broadcom.) [HKLM] -- B41C7C96D83162A676DA7365ADEFD6C1AF62A4EE
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/29/2009 6.1.7100.0) - (.Broadcom.) [HKLM] -- B5C82F3814F82FB37F1513B3185399BD88892B08
O42 - Logiciel: Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) - (.Broadcom.) [HKLM] -- BF20603967CFDCB2BBF91950E8A56DFBC5C833FE
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite

---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\ASUS]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\AskToolbarInfo]
[HKCU\Software\AppDataLow\Software\AskToolbar]
[HKCU\Software\AppDataLow\Software\Conduit]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Vuze_Remote]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Ask.com]
[HKCU\Software\Avira]
[HKCU\Software\Azureus]
[HKCU\Software\CDisplay]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Conduit]
[HKCU\Software\ECAREME]
[HKCU\Software\FissaSearch]
[HKCU\Software\FreeTime]
[HKCU\Software\GNU]
[HKCU\Software\Gabest]
[HKCU\Software\GlarySoft]
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Macromedia]
[HKCU\Software\Magnet]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Skype]
[HKCU\Software\Spointer]
[HKCU\Software\Synaptics]
[HKCU\Software\Sysinternals]
[HKCU\Software\Trolltech]
[HKCU\Software\WideStream]
[HKCU\Software\ej-technologies]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Atheros]
[HKLM\Software\AviSynth]
[HKLM\Software\Avira]
[HKLM\Software\Azureus]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CoreSecurity]
[HKLM\Software\ECAREME]
[HKLM\Software\GEAR Software]
[HKLM\Software\GNU]
[HKLM\Software\GSplit]
[HKLM\Software\Google]
[HKLM\Software\HaaliMkx]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\KasperskyLab]
[HKLM\Software\Licenses]
[HKLM\Software\LogMeIn, Inc.]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Oberon Media]
[HKLM\Software\OldTimer Tools]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\SecureDigitalServices]
[HKLM\Software\Synaptics]
[HKLM\Software\TrendMicro]
[HKLM\Software\VideoLAN]
[HKLM\Software\X-AVCSD]
[HKLM\Software\ej-technologies]
[HKLM\Software\magnet]
[HKLM\Software\mozilla.org]
~ Scan Softwares in 00mn AMs

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 12/6/2010 - 7:03:52 PM - [3511045] ----D- C:\Program Files\7-Zip
O43 - CFD: 6/24/2010 - 6:12:16 PM - [685151689] ----D- C:\Program Files\Adobe
O43 - CFD: 6/8/2011 - 1:30:10 PM - [2307582] ----D- C:\Program Files\Apple Software Update
O43 - CFD: 7/4/2011 - 9:06:08 PM - [392066] ----D- C:\Program Files\Ask.com
O43 - CFD: 11/26/2010 - 7:35:30 PM - [122782187] ----D- C:\Program Files\ASUS
O43 - CFD: 6/24/2010 - 6:02:18 PM - [1078] ----D- C:\Program Files\Atheros
O43 - CFD: 9/4/2011 - 3:26:54 PM - [146763527] ----D- C:\Program Files\Avira
O43 - CFD: 5/29/2011 - 10:58:22 PM - [621222] ----D- C:\Program Files\Bonjour
O43 - CFD: 11/26/2010 - 7:08:18 PM - [3501304] ----D- C:\Program Files\CCleaner
O43 - CFD: 3/3/2011 - 7:23:52 PM - [2048286] ----D- C:\Program Files\CDisplay
O43 - CFD: 9/5/2011 - 8:14:44 AM - [0] ----D- C:\Program Files\CleanMem
O43 - CFD: 9/5/2011 - 8:14:44 AM - [627662750] ----D- C:\Program Files\Common Files
O43 - CFD: 11/27/2010 - 6:58:02 PM - [3780960] ----D- C:\Program Files\Defraggler
O43 - CFD: 6/24/2010 - 6:04:04 PM - [544736] ----D- C:\Program Files\DIFX
O43 - CFD: 5/31/2011 - 6:46:40 PM - [18449626] ----D- C:\Program Files\DigiDNA
O43 - CFD: 12/24/2010 - 12:52:54 AM - [4191414] ----D- C:\Program Files\DVD Maker
O43 - CFD: 6/24/2010 - 6:07:58 PM - [29] ----D- C:\Program Files\EBI
O43 - CFD: 6/24/2010 - 6:21:14 PM - [8960265] ----D- C:\Program Files\EeePC
O43 - CFD: 12/28/2010 - 12:17:44 AM - [118070272] ----D- C:\Program Files\FreeTime
O43 - CFD: 9/4/2011 - 10:19:44 PM - [4605920] ----D- C:\Program Files\Google
O43 - CFD: 12/26/2010 - 4:21:48 PM - [3623144] ----D- C:\Program Files\GSplit
O43 - CFD: 3/13/2011 - 8:38:12 PM - [0] ----D- C:\Program Files\Incomplete
O43 - CFD: 11/26/2010 - 7:17:54 PM - [69155930] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 6/24/2010 - 6:00:54 PM - [61805388] ----D- C:\Program Files\Intel
O43 - CFD: 9/4/2011 - 11:19:20 PM - [5619349] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 11/26/2010 - 7:21:44 PM - [1856115] ----D- C:\Program Files\iPod
O43 - CFD: 6/9/2011 - 9:29:52 PM - [128506935] ----D- C:\Program Files\iTunes
O43 - CFD: 12/18/2010 - 1:42:54 AM - [88574556] ----D- C:\Program Files\Java
O43 - CFD: 8/28/2011 - 10:17:36 PM - [0] ----D- C:\Program Files\LogMeIn
O43 - CFD: 9/4/2011 - 3:43:32 PM - [6953188] ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 11/26/2010 - 6:53:12 PM - [2664525] ----D- C:\Program Files\Microsoft
O43 - CFD: 7/14/2009 - 6:52:32 AM - [46990135] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 1/2/2011 - 6:50:16 PM - [418328357] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 8/6/2011 - 11:28:46 AM - [19018416] ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD: 1/2/2011 - 6:50:14 PM - [3635637] ----D- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 1/2/2011 - 6:50:40 PM - [326800] ----D- C:\Program Files\Microsoft Synchronization Services
O43 - CFD: 1/2/2011 - 6:50:14 PM - [8152064] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 9/1/2011 - 9:20:54 PM - [37229752] ----D- C:\Program Files\Mozilla Firefox
O43 - CFD: 7/14/2009 - 6:52:32 AM - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 6/9/2011 - 9:12:46 PM - [869270] ----D- C:\Program Files\MSECACHE
O43 - CFD: 6/24/2010 - 7:02:52 PM - [154033] ----D- C:\Program Files\MSXML 4.0
O43 - CFD: 8/23/2011 - 12:08:32 AM - [335413997] ----D- C:\Program Files\OpenOffice.org 3
O43 - CFD: 6/9/2011 - 9:23:30 PM - [76322555] ----D- C:\Program Files\QuickTime
O43 - CFD: 11/26/2010 - 6:43:18 PM - [15158377] ----D- C:\Program Files\Realtek
O43 - CFD: 7/14/2009 - 6:52:32 AM - [38597377] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 9/3/2011 - 11:43:44 PM - [30552186] ----D- C:\Program Files\Safari
O43 - CFD: 11/26/2010 - 11:52:24 PM - [64057391] ----D- C:\Program Files\Spybot - Search & Destroy
O43 - CFD: 11/26/2010 - 6:45:02 PM - [30140789] ----D- C:\Program Files\Synaptics
O43 - CFD: 11/26/2010 - 6:44:26 PM - [0] --H-D- C:\Program Files\Temp
O43 - CFD: 9/4/2011 - 10:56:42 PM - [844210] ----D- C:\Program Files\Trojan Remover
O43 - CFD: 7/14/2009 - 6:53:24 AM - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 11/27/2010 - 8:05:02 PM - [79194259] ----D- C:\Program Files\VideoLAN
O43 - CFD: 11/26/2010 - 7:13:22 PM - [110958547] ----D- C:\Program Files\Vuze
O43 - CFD: 12/24/2010 - 12:52:52 AM - [3049984] ----D- C:\Program Files\Windows Defender
O43 - CFD: 6/9/2011 - 9:13:26 PM - [142742] ----D- C:\Program Files\Windows Installer Clean Up
O43 - CFD: 11/27/2010 - 12:00:06 AM - [157906069] ----D- C:\Program Files\Windows Live
O43 - CFD: 4/19/2011 - 1:13:38 PM - [6180864] ----D- C:\Program Files\Windows Mail
O43 - CFD: 2/27/2011 - 12:31:50 PM - [6607787] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 7/14/2009 - 6:52:32 AM - [12197556] ----D- C:\Program Files\Windows NT
O43 - CFD: 12/24/2010 - 12:52:52 AM - [4417800] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 7/14/2009 - 6:52:34 AM - [189440] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 12/24/2010 - 12:52:54 AM - [5994114] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 9/5/2011 - 12:20:12 PM - [4018174] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 2/26/2011 - 10:35:50 PM - [14779391] ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 6/24/2010 - 6:08:24 PM - [32158176] ----D- C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 11/26/2010 - 7:21:42 PM - [102585068] ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 1/2/2011 - 6:50:40 PM - [99136] ----D- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 12/26/2010 - 4:21:46 PM - [130040] ----D- C:\Program Files\Common Files\GSplit
O43 - CFD: 11/26/2010 - 6:43:08 PM - [3179774] ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD: 8/23/2011 - 12:06:32 AM - [216716057] ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 6/24/2010 - 6:10:26 PM - [354896] ----D- C:\Program Files\Common Files\Oberon Media
O43 - CFD: 7/14/2009 - 4:37:06 AM - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 7/14/2009 - 4:37:06 AM - [41103783] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 12/24/2010 - 12:52:52 AM - [10102259] ----D- C:\Program Files\Common Files\System
O43 - CFD: 11/26/2010 - 6:50:16 PM - [206451468] ----D- C:\Program Files\Common Files\Windows Live
O43 - CFD: 6/24/2010 - 6:12:06 PM - [807] ----D- C:\ProgramData\Adobe
O43 - CFD: 11/26/2010 - 7:48:38 PM - [107684886] ----D- C:\ProgramData\Apple
O43 - CFD: 11/26/2010 - 7:21:42 PM - [67066516] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 6/24/2010 - 6:02:32 PM - [9357] ----D- C:\ProgramData\Atheros
O43 - CFD: 9/4/2011 - 3:26:54 PM - [58987723] ----D- C:\ProgramData\Avira
O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 6/24/2010 - 6:08:04 PM - [0] ----D- C:\ProgramData\EBI
O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 2/26/2011 - 11:09:56 PM - [0] ----D- C:\ProgramData\GoBoingo
O43 - CFD: 9/3/2011 - 11:43:44 PM - [208] ----D- C:\ProgramData\hL04903JkBpG04903
O43 - CFD: 3/13/2011 - 9:27:24 PM - [101] ----D- C:\ProgramData\Kaspersky Lab
O43 - CFD: 9/5/2011 - 8:01:42 AM - [72] ----D- C:\ProgramData\Lavasoft
O43 - CFD: 8/28/2011 - 10:17:36 PM - [232488] ----D- C:\ProgramData\LogMeIn
O43 - CFD: 9/4/2011 - 3:43:18 PM - [7327738] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 3/9/2011 - 10:51:26 PM - [2572675805] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 8/6/2011 - 11:29:56 AM - [53146] ----D- C:\ProgramData\Microsoft Help
O43 - CFD: 9/5/2011 - 8:03:42 AM - [73191824] ----D- C:\ProgramData\PC Tools
O43 - CFD: 6/24/2010 - 6:08:04 PM - [0] ----D- C:\ProgramData\RSMR
O43 - CFD: 9/4/2011 - 11:22:20 AM - [7567395] ----D- C:\ProgramData\Simply Super Software
O43 - CFD: 11/26/2010 - 7:36:38 PM - [19925144] ----D- C:\ProgramData\Skype
O43 - CFD: 9/5/2011 - 7:58:56 AM - [32440448] ----D- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 9/3/2011 - 3:28:02 PM - [98248] ----D- C:\ProgramData\Tarma Installer
O43 - CFD: 9/5/2011 - 8:07:48 AM - [0] ---AD- C:\ProgramData\TEMP
O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 11/26/2010 - 8:16:28 PM - [24055] ----D- C:\ProgramData\WindSolutions
O43 - CFD: 11/26/2010 - 7:22:26 PM - [541235] ----D- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
O43 - CFD: 9/4/2011 - 11:18:56 PM - [5764473] ----D- C:\Users\Thomas\AppData\Roaming\Adobe
O43 - CFD: 9/2/2011 - 3:28:46 AM - [4402600577] ----D- C:\Users\Thomas\AppData\Roaming\Apple Computer
O43 - CFD: 2/27/2011 - 8:16:20 PM - [23855041] ----D- C:\Users\Thomas\AppData\Roaming\ASUS WebStorage
O43 - CFD: 9/4/2011 - 3:29:22 PM - [0] ----D- C:\Users\Thomas\AppData\Roaming\Avira
O43 - CFD: 9/4/2011 - 10:56:56 PM - [13509147] ----D- C:\Users\Thomas\AppData\Roaming\Azureus
O43 - CFD: 5/31/2011 - 7:50:26 PM - [1257] ----D- C:\Users\Thomas\AppData\Roaming\DiskAid
O43 - CFD: 8/26/2011 - 11:37:56 PM - [199] ----D- C:\Users\Thomas\AppData\Roaming\dvdcss
O43 - CFD: 12/15/2010 - 12:13:48 AM - [0] ----D- C:\Users\Thomas\AppData\Roaming\EeeStorageUploader
O43 - CFD: 3/13/2011 - 9:27:30 PM - [105429] ----D- C:\Users\Thomas\AppData\Roaming\FrostWire
O43 - CFD: 11/27/2010 - 9:23:08 PM - [24625] ----D- C:\Users\Thomas\AppData\Roaming\GlarySoft
O43 - CFD: 12/26/2010 - 4:34:12 PM - [24561] ----D- C:\Users\Thomas\AppData\Roaming\GSplit
O43 - CFD: 7/14/2009 - 6:54:14 AM - [0] ----D- C:\Users\Thomas\AppData\Roaming\Identities
O43 - CFD: 6/24/2010 - 6:00:40 PM - [0] ----D- C:\Users\Thomas\AppData\Roaming\InstallShield
O43 - CFD: 3/10/2011 - 11:51:02 PM - [0] ----D- C:\Users\Thomas\AppData\Roaming\JivaroPref
O43 - CFD: 6/24/2010 - 6:08:18 PM - [497] ----D- C:\Users\Thomas\AppData\Roaming\Macromedia
O43 - CFD: 9/4/2011 - 3:43:44 PM - [1119752] ----D- C:\Users\Thomas\AppData\Roaming\Malwarebytes
O43 - CFD: 6/9/2011 - 9:13:26 PM - [15099827] -S--D- C:\Users\Thomas\AppData\Roaming\Microsoft
O43 - CFD: 11/26/2010 - 7:08:38 PM - [15905443] ----D- C:\Users\Thomas\AppData\Roaming\Mozilla
O43 - CFD: 8/23/2011 - 12:16:12 AM - [1502782] ----D- C:\Users\Thomas\AppData\Roaming\OpenOffice.org
O43 - CFD: 9/4/2011 - 11:22:20 AM - [0] ----D- C:\Users\Thomas\AppData\Roaming\Simply Super Software
O43 - CFD: 1/2/2011 - 5:55:50 PM - [430367313] ----D- C:\Users\Thomas\AppData\Roaming\TP
O43 - CFD: 9/4/2011 - 11:19:20 PM - [1947728] ----D- C:\Users\Thomas\AppData\Roaming\vlc
O43 - CFD: 12/18/2010 - 4:26:20 PM - [604] ----D- C:\Users\Thomas\AppData\Roaming\widestream
O43 - CFD: 3/11/2011 - 12:18:02 AM - [0] ----D- C:\Users\Thomas\AppData\Roaming\Windows Live Writer
O43 - CFD: 11/27/2010 - 8:19:36 PM - [8012] ----D- C:\Users\Thomas\AppData\Roaming\WindSolutions
O43 - CFD: 3/10/2011 - 11:58:48 PM - [0] ----D- C:\Users\Thomas\AppData\Roaming\WinRAR
O43 - CFD: 11/26/2010 - 9:38:06 PM - [23739112] ----D- C:\Users\Thomas\AppData\Local\Adobe
O43 - CFD: 2/21/2011 - 12:16:00 AM - [20170] ----D- C:\Users\Thomas\AppData\Local\AirMouse
O43 - CFD: 11/26/2010 - 7:18:38 PM - [96711976] ----D- C:\Users\Thomas\AppData\Local\Apple
O43 - CFD: 9/2/2011 - 3:16:16 AM - [204549718] ----D- C:\Users\Thomas\AppData\Local\Apple Computer
O43 - CFD: 11/26/2010 - 6:40:48 PM - [0] -SH-D- C:\Users\Thomas\AppData\Local\Application Data
O43 - CFD: 2/21/2011 - 12:15:00 AM - [4887040] ----D- C:\Users\Thomas\AppData\Local\Downloaded Installations
O43 - CFD: 9/4/2011 - 12:20:24 AM - [100816] ----D- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics
O43 - CFD: 4/2/2011 - 9:49:54 PM - [1946] ----D- C:\Users\Thomas\AppData\Local\Google
O43 - CFD: 11/26/2010 - 6:40:48 PM - [0] -SH-D- C:\Users\Thomas\AppData\Local\Historique
O43 - CFD: 5/31/2011 - 7:14:34 PM - [816] ----D- C:\Users\Thomas\AppData\Local\Macroplant
O43 - CFD: 7/19/2011 - 9:56:48 PM - [159601672] ----D- C:\Users\Thomas\AppData\Local\Microsoft
O43 - CFD: 1/2/2011 - 6:46:02 PM - [0] ----D- C:\Users\Thomas\AppData\Local\Microsoft Help
O43 - CFD: 11/26/2010 - 8:28:20 PM - [1746] ----D- C:\Users\Thomas\AppData\Local\Microsoft_Corporation
O43 - CFD: 11/26/2010 - 7:08:24 PM - [38163972] ----D- C:\Users\Thomas\AppData\Local\Mozilla
O43 - CFD: 5/31/2011 - 6:55:30 PM - [856] ----D- C:\Users\Thomas\AppData\Local\myPod_Apps
O43 - CFD: 9/4/2011 - 4:42:28 PM - [0] ----D- C:\Users\Thomas\AppData\Local\Sunbelt Software
O43 - CFD: 9/5/2011 - 12:18:42 PM - [9303722] ----D- C:\Users\Thomas\AppData\Local\Temp
O43 - CFD: 11/26/2010 - 6:40:48 PM - [0] -SH-D- C:\Users\Thomas\AppData\Local\Temporary Internet Files
O43 - CFD: 2/26/2011 - 10:52:24 PM - [78214] ----D- C:\Users\Thomas\AppData\Local\VirtualStore
O43 - CFD: 12/18/2010 - 4:38:50 PM - [191303] ----D- C:\Users\Thomas\AppData\Local\widestream6 Air
O43 - CFD: 9/3/2011 - 3:29:16 PM - [223026273] ----D- C:\Users\Thomas\AppData\Local\Windows Live
O43 - CFD: 3/11/2011 - 12:18:22 AM - [372494] ----D- C:\Users\Thomas\AppData\Local\Windows Live Writer
O43 - CFD: 9/1/2011 - 7:58:42 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{14CFE9F0-738D-4DA4-9063-A95E31A5B3CC}
O43 - CFD: 8/30/2011 - 8:05:00 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{18FCB113-6DD6-4632-9267-39B82C5B919E}
O43 - CFD: 9/3/2011 - 11:48:48 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{19FF1E37-AF8A-45E3-B3A1-B5E6AE07E025}
O43 - CFD: 8/6/2011 - 10:15:08 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{1D24877A-7278-42C7-A139-FF34AD8C58A9}
O43 - CFD: 8/23/2011 - 4:48:14 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{20CC5747-4C67-474A-A225-E60BB263C7EF}
O43 - CFD: 9/5/2011 - 8:18:44 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{248A06C1-B6E5-49DB-92C2-9F33EF6FF43C}
O43 - CFD: 8/17/2011 - 2:30:08 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{26147DE8-DC70-4B73-88AB-885332F3BD49}
O43 - CFD: 9/3/2011 - 10:13:22 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{2F13B24A-D2AF-45EC-B825-D487FB67FB2A}
O43 - CFD: 8/14/2011 - 10:15:02 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{3032F65E-7495-4530-A573-084B885EC717}
O43 - CFD: 9/1/2011 - 6:55:48 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{437A4E74-0D49-407C-9882-154D477312D6}
O43 - CFD: 9/4/2011 - 4:09:40 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{45417007-CB30-499D-9733-EDE26395B05B}
O43 - CFD: 8/24/2011 - 12:08:54 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{469C7931-8985-4094-85FE-F61311BAA456}
O43 - CFD: 9/4/2011 - 12:47:12 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{52B0FC22-8690-4DA5-A288-BF1C00AD2109}
O43 - CFD: 9/2/2011 - 3:10:32 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{55A3B2B3-11BA-4BB3-8419-08B0B1CB1E3F}
O43 - CFD: 8/29/2011 - 8:06:12 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{5C1B7500-C264-42F0-B11B-DA17AB8E34FF}
O43 - CFD: 8/26/2011 - 12:14:36 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{700C9EB3-1DAB-481E-AEF3-D2531A9F43C6}
O43 - CFD: 9/4/2011 - 6:26:56 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{72D2237C-8FA3-4B19-BA7A-F12C40AEF8A9}
O43 - CFD: 8/25/2011 - 8:03:54 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{A05ACE19-F12C-42A6-B750-F8C19999B38B}
O43 - CFD: 8/18/2011 - 11:28:48 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{A6F8B326-AC0E-4EE5-97C9-1FE090B60FA6}
O43 - CFD: 9/4/2011 - 12:03:46 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{ABEB5879-852B-42E6-AACB-95656FCFEDAA}
O43 - CFD: 8/24/2011 - 7:51:34 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{BF84BCC5-B092-49F5-82FA-C1019A4B7A21}
O43 - CFD: 8/17/2011 - 9:14:00 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{C7B178C3-BA47-49BE-9651-9AE2B479E51E}
O43 - CFD: 8/28/2011 - 8:24:16 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{C8028CF2-FB9F-465E-8DC0-80C35706AAE2}
O43 - CFD: 9/1/2011 - 11:13:04 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{D5BA09D9-F0C0-4CAE-82F2-EAD71350E457}
O43 - CFD: 8/26/2011 - 11:02:52 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{E5B901C2-0B11-4D8C-BA90-CF3EAE5F2AE6}
O43 - CFD: 8/19/2011 - 1:58:56 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{E9CB81EE-0D1D-44BC-8BA3-13C2AC0EF856}
~ Scan Program Folder in 39mn AMs

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.0652A8EB646E325CF202AB5AC2A4438A] - 8/17/2011 - 7:31:35 PM ---A- . (...) -- C:\.rnd [1024]
O44 - LFC:[MD5.4A97045AFCA4A7373C951ED2D7AECF16] - 8/17/2011 - 7:31:36 PM ---A- . (.LogMeIn, Inc. - LogMeIn Remote Control Helper.) -- C:\windows\system32\LMIinit.dll [87424]
O44 - LFC:[MD5.383842C021FC8C9F972F2841BC0743EC] - 8/17/2011 - 7:31:39 PM ---A- . (.LogMeIn, Inc. - LogMeIn Rfs Client Network Provider.) -- C:\windows\system32\LMIRfsClientNP.dll [83360]
O44 - LFC:[MD5.3FAA563DDF853320F90259D455A01D79] - 8/17/2011 - 7:31:39 PM ---A- . (.LogMeIn, Inc. - LogMeIn Rfs Drivemap Driver.) -- C:\windows\system32\drivers\LMIRfsDriver.sys [47640]
O44 - LFC:[MD5.5D3AA86F4D9AB5D4A50E6DAABB05C0BB] - 8/17/2011 - 7:31:40 PM ---A- . (.LogMeIn, Inc. - RemotelyAnywhere Printer Port Monitor.) -- C:\windows\system32\LMIport.dll [29568]
O44 - LFC:[MD5.32158034D2DB89D4AEC4F25A85A3D49E] - 8/23/2011 - 12:21:32 AM ---A- . (...) -- C:\windows\system32\FNTCACHE.DAT [355184]
O44 - LFC:[MD5.010B580D40397897738C5FDAF727400E] - 8/30/2011 - 6:17:44 PM --HA- . (...) -- C:\windows\system32\mlfcache.dat [128216]
O44 - LFC:[MD5.0F78D3DAE6DEDD99AE54C9491C62ADF2] - 9/4/2011 - 2:26:56 PM ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\windows\system32\drivers\avipbb.sys [138192]
O44 - LFC:[MD5.1E4114685DE1FFA9675E09C6A1FB3F4B] - 9/4/2011 - 2:26:56 PM ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\windows\system32\drivers\avgntflt.sys [66616]
O44 - LFC:[MD5.A36EE93698802CD899F98BFD553D8185] - 9/4/2011 - 2:27:00 PM ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\windows\system32\drivers\ssmdrv.sys [28520]
O44 - LFC:[MD5.24F03F19D4DD7903F82F75C355D5CAB6] - 9/4/2011 - 2:40:26 PM ---A- . (...) -- C:\TDSSKiller.2.5.17.0_04.09.2011_15.37.43_log.txt [67588]
O44 - LFC:[MD5.ECA00EED9AB95489007B0EF84C7149DE] - 9/4/2011 - 2:43:06 PM ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\windows\system32\drivers\mbam.sys [22712]
O44 - LFC:[MD5.B18225739ED9CAA83BA2DF966E9F43E8] - 9/4/2011 - 2:43:20 PM ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\windows\system32\drivers\mbamswissarmy.sys [41272]
O44 - LFC:[MD5.54454208B7EFA8D1779B706D915D20E2] - 9/4/2011 - 2:46:08 PM ---A- . (...) -- C:\PhysicalMBR.bin [512]
O44 - LFC:[MD5.BD275F683177C3140E10F4CF1ABDCB1A] - 9/4/2011 - 2:53:28 PM ---A- . (...) -- C:\TDSSKiller.2.5.17.0_04.09.2011_15.51.02_log.txt [67378]
O44 - LFC:[MD5.6B390CE5D85FF24755F8CB3B1F9B7B3F] - 9/4/2011 - 3:35:15 PM ---A- . (...) -- C:\TDSSKiller.2.5.17.0_04.09.2011_16.24.27_log.txt [67092]
O44 - LFC:[MD5.C1AE5D1F53285D79A0B73A62AF20734F] - 9/4/2011 - 3:53:13 PM ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\windows\system32\drivers\SBREDrv.sys [98392]
O44 - LFC:[MD5.3AFB7BAD0967EACE8D3ED16CF2A8FD8A] - 9/4/2011 - 5:40:04 PM ---A- . (...) -- C:\windows\system32\PerfStringBackup.INI [1524562]
O44 - LFC:[MD5.EED51D56C1041D48C08D31CFC0876496] - 9/4/2011 - 5:40:10 PM ---A- . (...) -- C:\windows\system32\perfc009.dat [103568]
O44 - LFC:[MD5.FF7FA933B2ABBB07373BDCD201A1ABA9] - 9/4/2011 - 5:40:10 PM ---A- . (...) -- C:\windows\system32\perfc00C.dat [127684]
O44 - LFC:[MD5.EE946017F68304658A20B6732CE5F8B8] - 9/4/2011 - 5:40:10 PM ---A- . (...) -- C:\windows\system32\perfh009.dat [607190]
O44 - LFC:[MD5.E4468BFBF99A521D733AA7B7BB2359F4] - 9/4/2011 - 5:40:10 PM ---A- . (...) -- C:\windows\system32\perfh00C.dat [695004]
O44 - LFC:[MD5.F2C9A81DA525668D8520EEBB1290957A] - 9/5/2011 - 10:15:39 AM ---A- . (...) -- C:\windows\WindowsUpdate.log [1048727]
O44 - LFC:[MD5.6AE80448676895E0EAB7F736F645C2B9] - 9/5/2011 - 7:14:43 AM ---A- . (...) -- C:\windows\PFRO.log [2544]
O44 - LFC:[MD5.E43560467064F80D6D9B174DC8D43ABE] - 9/5/2011 - 7:14:51 AM -S-A- . (...) -- C:\windows\bootstat.dat [67584]
O44 - LFC:[MD5.D74E3C688AA4F552EB9F55CB8EA67170] - 9/5/2011 - 7:15:02 AM ---A- . (...) -- C:\windows\setupact.log [56]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 9/5/2011 - 7:15:02 AM ---A- . (...) -- C:\windows\setuperr.log [0]
~ Scan Files in 05mn AMs

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.B408CDECF7E3F7AC767C891A2B79FD48] - 11/26/2010 - 11:14:38 AM ---A- - C:\windows\Prefetch\TASKHOST.EXE-437C05A8.pf
O45 - LFCP:[MD5.02131D91F1CB503E2B2ACE47D718D777] - 11/26/2010 - 11:18:30 AM ---A- - C:\windows\Prefetch\AgGlUAD_S-1-5-21-2405251124-3916129693-1916960768-1000.db
O45 - LFCP:[MD5.26A310A35DA58F7C3BE6ECAABC8BC5EF] - 11/26/2010 - 11:18:31 AM ---A- - C:\windows\Prefetch\AgGlUAD_P_S-1-5-21-2405251124-3916129693-1916960768-1000.db
O45 - LFCP:[MD5.D8FF7DC601DDB4EDC2B13BF214F49455] - 11/26/2010 - 11:18:44 AM ---A- - C:\windows\Prefetch\SVCHOST.EXE-932440A7.pf
O45 - LFCP:[MD5.799C85BF51428835567DB8A44AF80C8F] - 11/26/2010 - 11:19:08 AM ---A- - C:\windows\Prefetch\WMIPRVSE.EXE-43972D0F.pf
O45 - LFCP:[MD5.FE3C29AEAEEF3637F824312409561342] - 11/26/2010 - 12:51:43 PM ---A- - C:\windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.F56D828C3D513826C3CBC27A01F8389D] - 11/26/2010 - 12:52:45 PM ---A- - C:\windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.CB1BFCCD4F4CF68C8BC0FFF9A5351811] - 11/26/2010 - 7:19:04 AM ---A- - C:\windows\Prefetch\FIREFOX.EXE-E60C0AA7.pf
O45 - LFCP:[MD5.C15E5BD963DE6CAB10EF5223D3BD22AA] - 11/26/2010 - 7:28:12 AM ---A- - C:\windows\Prefetch\WERMGR.EXE-2A1BCBC7.pf
O45 - LFCP:[MD5.9877FCF1D74638EEA2C61689E1D5D30F] - 11/26/2010 - 8:06:11 PM ---A- - C:\windows\Prefetch\AZUREUS.EXE-E1F6BAFE.pf
O45 - LFCP:[MD5.C5919484E420E3254B8679525F6ADBBC] - 11/26/2010 - 8:22:20 AM ---A- - C:\windows\Prefetch\SEARCHFILTERHOST.EXE-AA7A1FDD.pf
O45 - LFCP:[MD5.63CE40C1B305D5405FDFD10D329DBF22] - 11/26/2010 - 8:22:20 AM ---A- - C:\windows\Prefetch\SEARCHPROTOCOLHOST.EXE-AFAD3EF9.pf
O45 - LFCP:[MD5.78802483A8D5DD330C97FE6B122231A4] - 11/26/2010 - 9:28:38 PM ---A- - C:\windows\Prefetch\I4JDEL0.EXE-5BE3860C.pf
O45 - LFCP:[MD5.8A3A2A2CC6A614AB6B7EA87027BF9B41] - 11/27/2010 - 11:19:27 AM ---A- - C:\windows\Prefetch\SPPSVC.EXE-CBE91656.pf
O45 - LFCP:[MD5.B8F6FDE0EF39667A66236BB859E67F8C] - 11/27/2010 - 7:14:06 AM ---A- - C:\windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.014CE79410D6270520BD59BF8083DB84] - 11/27/2010 - 9:13:12 AM ---A- - C:\windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.BB4B7A8CB0EFBAA4CA1463A17BB55EE2] - 11/27/2010 - 9:55:29 PM ---A- - C:\windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.F2BCAA1288F2F3D712F532CEB8922957] - 11/27/2010 - 9:55:50 PM ---A- - C:\windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.44061EF7657D62D5AEE4F6DB86787414] - 11/27/2010 - 9:55:52 PM ---A- - C:\windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.7B04C81A596905D9688F8604B1C31E1F] - 11/27/2010 - 9:55:54 PM ---A- - C:\windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.92F35A1A8BA179A30A1D49EF2C913A94] - 11/29/2010 - 11:28:18 AM ---A- - C:\windows\Prefetch\AgCx_SC2.db
O45 - LFCP:[MD5.3E8B575889D88DC5222925704917D767] - 12/18/2010 - 11:16:42 AM ---A- - C:\windows\Prefetch\AUDIODG.EXE-D0D776AC.pf
O45 - LFCP:[MD5.387BE9F0B2924A9CB9C8025AA2DD4D76] - 12/18/2010 - 11:19:25 AM ---A- - C:\windows\Prefetch\CONHOST.EXE-3218E401.pf
O45 - LFCP:[MD5.1CB0CC330F01F998F3ACA94C895F6E28] - 12/18/2010 - 8:12:57 AM ---A- - C:\windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.4A15546E6F9C93CC337730B6BD96A843] - 12/19/2010 - 10:56:10 AM ---A- - C:\windows\Prefetch\TASKENG.EXE-5BAF290C.pf
O45 - LFCP:[MD5.7830E768E034F85A6A0FC08E7F610F95] - 12/19/2010 - 7:25:44 PM ---A- - C:\windows\Prefetch\APPLEMOBILEDEVICEHELPER.EXE-B651274A.pf
O45 - LFCP:[MD5.F70F8CA43B385B6C3136BF5E8D292CFF] - 12/19/2010 - 7:25:53 PM ---A- - C:\windows\Prefetch\DISTNOTED.EXE-6676BA54.pf
O45 - LFCP:[MD5.9C6434AA501FFE4307BF1CBBCC646E97] - 12/19/2010 - 8:25:21 PM ---A- - C:\windows\Prefetch\SYNCSERVER.EXE-6194D6AC.pf
O45 - LFCP:[MD5.D78575CF6345E8E3F080E3064D4BEFE0] - 12/19/2010 - 8:39:54 PM ---A- - C:\windows\Prefetch\APPLEMOBILEBACKUP.EXE-AB38C858.pf
O45 - LFCP:[MD5.F6BE9BE77240C1B7456297101F92B095] - 12/19/2010 - 9:23:47 AM ---A- - C:\windows\Prefetch\MDCRASHREPORTTOOL.EXE-AC69EFBC.pf
O45 - LFCP:[MD5.A5875B9CD60A16C60B4556DE995CC938] - 12/8/2010 - 7:23:40 PM ---A- - C:\windows\Prefetch\ITUNES.EXE-049DB451.pf
O45 - LFCP:[MD5.C3CD89417D8C04C096E0B6177669E3BA] - 12/8/2010 - 8:22:11 PM ---A- - C:\windows\Prefetch\WUDFHOST.EXE-81420B07.pf
O45 - LFCP:[MD5.C433B213A71214E85DF51AAE4162132F] - 2/26/2011 - 7:19:51 AM ---A- - C:\windows\Prefetch\WUAUCLT.EXE-830BCC14.pf
O45 - LFCP:[MD5.5A300C70BF40F31A0CEF343B3110AEC3] - 4/2/2011 - 10:56:03 AM ---A- - C:\windows\Prefetch\GOOGLEUPDATE.EXE-8973CEDD.pf
O45 - LFCP:[MD5.DD17D94A1E1266DF452124D92A3BBB7A] - 4/20/2011 - 11:18:15 AM ---A- - C:\windows\Prefetch\LOGONUI.EXE-1BEE4A84.pf
O45 - LFCP:[MD5.26382EDEFC441E3D992555DF1D406B12] - 5/10/2011 - 11:16:36 AM ---A- - C:\windows\Prefetch\PLUGIN-CONTAINER.EXE-1D5F6C6B.pf
O45 - LFCP:[MD5.1CDE2E55D6333FCCFD875F47AD3A2D21] - 6/12/2011 - 10:15:24 AM ---A- - C:\windows\Prefetch\TRUSTEDINSTALLER.EXE-031B6478.pf
O45 - LFCP:[MD5.94A94C2319295655697CE7CAE3E8356E] - 6/5/2011 - 8:23:31 AM ---A- - C:\windows\Prefetch\VSSVC.EXE-04D079CC.pf
O45 - LFCP:[MD5.4E176ECC244C9AF5BBAA3D08B009F2B9] - 6/5/2011 - 8:23:32 AM ---A- - C:\windows\Prefetch\SVCHOST.EXE-A244D5C6.pf
O45 - LFCP:[MD5.1E620F04CB944EC8ED53394B9D756AB5] - 8/22/2011 - 11:19:30 AM ---A- - C:\windows\Prefetch\WMPNSCFG.EXE-DF1DD51A.pf
O45 - LFCP:[MD5.9CE7B016F9ED135CBB43123955CCD89A] - 8/30/2011 - 7:19:54 AM ---A- - C:\windows\Prefetch\WMIADAP.EXE-369DF1CD.pf
O45 - LFCP:[MD5.BA318EC5E9AAEA30B8F31720432FDD93] - 8/6/2011 - 7:18:28 AM ---A- - C:\windows\Prefetch\GOOGLECRASHHANDLER.EXE-83A14721.pf
O45 - LFCP:[MD5.8A46C7776FCAD3F0662364F60E371483] - 9/2/2011 - 7:02:03 AM ---A- - C:\windows\Prefetch\MSIEXEC.EXE-B5AFA339.pf
O45 - LFCP:[MD5.1F0D07A68C4F76078B94692390A5AC1F] - 9/4/2011 - 11:19:06 AM ---A- - C:\windows\Prefetch\AVWSC.EXE-877F4F63.pf
O45 - LFCP:[MD5.DB695F901B0727FC383DE8C9BF337D53] - 9/5/2011 - 11:14:15 AM ---A- - C:\windows\Prefetch\RUNDLL32.EXE-DB842724.pf
O45 - LFCP:[MD5.EF13497E14F0CD5E5DC12A4743F8D232] - 9/5/2011 - 11:18:25 AM ---A- - C:\windows\Prefetch\TASKMGR.EXE-72398DC0.pf
O45 - LFCP:[MD5.608D1614002AEBD81E442DFACED6F1D2] - 9/5/2011 - 11:18:40 AM ---A- - C:\windows\Prefetch\WERFAULT.EXE-B7E27BE5.pf
O45 - LFCP:[MD5.D80871AEA4CDD9BC8449AC6F3560C00F] - 9/5/2011 - 11:19:14 AM ---A- - C:\windows\Prefetch\ZHPDIAG.EXE-9D0EE457.pf
O45 - LFCP:[MD5.880EF0D52CF98099ECC4B38F7CCB6CB9] - 9/5/2011 - 11:19:25 AM ---A- - C:\windows\Prefetch\CSCRIPT.EXE-E4C98DEB.pf
O45 - LFCP:[MD5.318F84412C9EFE9623CB8E06E630E843] - 9/5/2011 - 11:19:53 AM ---A- - C:\windows\Prefetch\PV.EXE-8E63E86A.pf
O45 - LFCP:[MD5.05B2BA7661446BB669BDC978C272A04F] - 9/5/2011 - 11:20:26 AM ---A- - C:\windows\Prefetch\CMD.EXE-89305D47.pf
O45 - LFCP:[MD5.19871C443F1753B26F1DDF999EE66AD9] - 9/5/2011 - 11:20:26 AM ---A- - C:\windows\Prefetch\SCHTASKS.EXE-2DE769BF.pf
O45 - LFCP:[MD5.2446C8F4CDE33FBFA78E521E060FEFC7] - 9/5/2011 - 9:00:00 AM ---A- - C:\windows\Prefetch\SDCLT.EXE-2D2C4DDD.pf
~ Scan Prefetcher in 01mn AMs

---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\windows\system32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\windows\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\windows\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\windows\system32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\windows\system32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\windows\system32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\windows\system32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\windows\system32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\windows\system32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\windows\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\windows\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\windows\system32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\windows\system32\Drivers\volmgrx.sys
~ Scan CSB in 00mn AMs

---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\windows\system32\iccvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn AMs

---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O53 - SMSR:HKLM\...\startupreg\BCSSync [Key] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe
O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
~ Scan SMSR Keys in 00mn AMs

---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\windows\system32\credssp.dll
~ Scan Keys in 00mn AMs

---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ Scan Keys in 00mn AMs

---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
~ Scan Keys in 00mn AMs

---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 6/10/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\windows\system32\drivers\adp94xx.sys [422976]
O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 7/14/2009 - 2:26:17 AM ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\windows\system32\drivers\adpahci.sys [297552]
O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 7/14/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\windows\system32\drivers\adpu320.sys [146512]
O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 7/14/2009 - 2:26:15 AM ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\windows\system32\drivers\aliide.sys [14400]
O58 - SDL:[MD5.2101A86C25C154F8314B24EF49D7FBC2] - 6/10/2009 - 2:26:15 AM ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\windows\system32\drivers\amdsata.sys [79952]
O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 6/10/2009 - 2:26:15 AM ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\windows\system32\drivers\amdsbs.sys [159312]
O58 - SDL:[MD5.B81C2B5616F6420A9941EA093A92B150] - 7/14/2009 - 2:26:15 AM ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\windows\system32\drivers\amdxata.sys [23616]
O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 7/14/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\windows\system32\drivers\arc.sys [76368]
O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 7/14/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\windows\system32\drivers\arcsas.sys [86608]
O58 - SDL:[MD5.561D6B76C045311691B870F6B3F19EAB] - 6/24/2010 - 3:31:18 PM ---A- . (...) -- C:\windows\system32\drivers\AsUpIO.sys [11520]
O58 - SDL:[MD5.B6B5566B24329432E0FD1E4ED15A683B] - 11/26/2010 - 12:38:28 PM ---A- . (...) -- C:\windows\system32\drivers\ASUSHWIO.SYS [6144]
O58 - SDL:[MD5.B01751CC563AECAC09BBE36AAA21FBEF] - 6/24/2010 - 5:31:50 PM ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\windows\system32\drivers\athr.sys [1221632]
O58 - SDL:[MD5.1E4114685DE1FFA9675E09C6A1FB3F4B] - 9/4/2011 - 11:22:40 AM ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\windows\system32\drivers\avgntflt.sys [66616]
O58 - SDL:[MD5.0F78D3DAE6DEDD99AE54C9491C62ADF2] - 9/4/2011 - 11:22:41 AM ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\windows\system32\drivers\avipbb.sys [138192]
O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 7/14/2009 - 11:02:49 PM ---A- . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gigabit Ethernet..) -- C:\windows\system32\drivers\b57nd60x.sys [229888]
O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 7/14/2009 - 11:53:28 PM ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\windows\system32\drivers\BrFiltLo.sys [13568]
O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 7/14/2009 - 11:53:28 PM ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\windows\system32\drivers\BrFiltUp.sys [5248]
O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 7/14/2009 - 1:57:25 AM ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\windows\system32\drivers\BrSerId.sys [272128]
O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 7/14/2009 - 11:53:32 PM ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\windows\system32\drivers\BrSerWdm.sys [62336]
O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 7/14/2009 - 11:53:33 PM ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\windows\system32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 7/14/2009 - 11:53:33 PM ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\windows\system32\drivers\BrUsbSer.sys [11904]
O58 - SDL:[MD5.92C5B845803F3662637EB691AC0B250F] - 5/14/2010 - 3:36:46 AM ---A- . (.Broadcom Corporation. - Widcomm Bluetooth USB Filter for Windows XP.) -- C:\windows\system32\drivers\btusbflt.sys [43944]
O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 6/10/2009 - 11:02:48 PM ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\windows\system32\drivers\bxvbdx.sys [430080]
O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 7/14/2009 - 2:26:21 AM ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\windows\system32\drivers\cmdide.sys [15952]
O58 - SDL:[MD5.5CBF20674BE8364FEBB6A13451A42F0A] - 3/3/2011 - 12:44:24 PM ---A- . (.Infowatch - Cryptographic Algorithm Lib Driver..) -- C:\windows\system32\drivers\CSCrySec.sys [88632]
O58 - SDL:[MD5.2C3F213EDDD231099FB779A45D7680E0] - 3/3/2011 - 12:44:24 PM ---A- . (.Infowatch - Virtual Volume Container Driver (wxp).) -- C:\windows\system32\drivers\CSVirtualDiskDrv.sys [39352]
O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 6/10/2009 - 2:20:28 AM ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\windows\system32\drivers\djsvs.sys [70720]
O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 6/10/2009 - 2:20:28 AM ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\windows\system32\drivers\elxstor.sys [453712]
O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 6/10/2009 - 11:02:48 PM ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\windows\system32\drivers\evbdx.sys [3100160]
O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 11/26/2010 - 1:17:00 PM ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\windows\system32\drivers\GEARAspiWDM.sys [26600]
O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 7/14/2009 - 11:54:14 PM ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\windows\system32\drivers\hcw85cir.sys [26624]
O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 7/14/2009 - 2:20:28 AM ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\windows\system32\drivers\HpSAMD.sys [67152]
O58 - SDL:[MD5.D483687EACE0C065EE772481A96E05F5] - 6/24/2010 - 2:43:16 AM ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\windows\system32\drivers\iaStor.sys [330264]
O58 - SDL:[MD5.934AF4D7C5F457B9F0743F4299B77B67] - 6/10/2009 - 2:20:36 AM ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\windows\system32\drivers\iaStorV.sys [332352]
O58 - SDL:[MD5.D0074897C6BC132F3980EA4654BF7FB9] - 6/22/2010 - 7:48:04 AM ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\windows\system32\drivers\igdkmd32.sys [4806144]
O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 7/14/2009 - 2:20:36 AM ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\windows\system32\drivers\iirsp.sys [41040]
O58 - SDL:[MD5.3EB803312987FF44265C87CB960DF6AB] - 4/13/2010 - 3:36:12 AM ---A- . (.Pas de propriétaire - Keyboard Filter Driver.) -- C:\windows\system32\drivers\kbfiltr.sys [13880]
O58 - SDL:[MD5.A158CEA8644B8A5C1EC0E9A81B70F65A] - 6/24/2010 - 3:39:17 AM ---A- . (.Atheros Communications, Inc. - Atheros L1c PCI-E Gigabit Ethernet Controller.) -- C:\windows\system32\drivers\L1C62x86.sys [51712]
O58 - SDL:[MD5.4477689E2D8AE6B78BA34C9AF4CC1ED1] - 8/17/2011 - 6:04:00 PM ---A- . (.LogMeIn, Inc. - LogMeIn Mirror Miniport Driver.) -- C:\windows\system32\drivers\lmimirr.sys [10144]
O58 - SDL:[MD5.3FAA563DDF853320F90259D455A01D79] - 8/17/2011 - 6:04:04 PM ---A- . (.LogMeIn, Inc. - LogMeIn Rfs Drivemap Driver.) -- C:\windows\system32\drivers\LMIRfsDriver.sys [47640]
O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\windows\system32\drivers\lsi_fc.sys [95824]
O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 7/14/2009 - 2:20:37 AM ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\windows\system32\drivers\lsi_sas.sys [89168]
O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\windows\system32\drivers\lsi_sas2.sys [54864]
O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\windows\system32\drivers\lsi_scsi.sys [96848]
O58 - SDL:[MD5.ECA00EED9AB95489007B0EF84C7149DE] - 9/4/2011 - 6:52:42 PM ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\windows\system32\drivers\mbam.sys [22712]
O58 - SDL:[MD5.B18225739ED9CAA83BA2DF966E9F43E8] - 9/4/2011 - 6:52:42 PM ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\windows\system32\drivers\mbamswissarmy.sys [41272]
O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 6/10/2009 - 2:20:36 AM ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\windows\system32\drivers\megasas.sys [30800]
O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\windows\system32\drivers\MegaSR.sys [235584]
O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 7/14/2009 - 2:20:44 AM ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\windows\system32\drivers\nfrd960.sys [44624]
O58 - SDL:[MD5.3F3D04B1D08D43C16EA7963954EC768D] - 7/14/2009 - 2:20:44 AM ---A- . (.NVIDIA Corporation - NVIDIA® nForce™ RAID Driver.) -- C:\windows\system32\drivers\nvraid.sys [117312]
O58 - SDL:[MD5.C99F251A5DE63C6F129CF71933ACED0F] - 6/10/2009 - 2:20:44 AM ---A- . (.NVIDIA Corporation - NVIDIA® nForce™ Sata Performance Driver.) -- C:\windows\system32\drivers\nvstor.sys [142416]
O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 6/10/2009 - 2:19:04 AM ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\windows\system32\drivers\ql2300.sys [1383488]
O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 7/14/2009 - 2:19:04 AM ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\windows\system32\drivers\ql40xx.sys [106064]
O58 - SDL:[MD5.BF9866875EDF86AAE24DD8BD9418DEFF] - 11/26/2010 - 7:43:55 AM ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\windows\system32\drivers\RTKVHDA.sys [3084256]
O58 - SDL:[MD5.C1AE5D1F53285D79A0B73A62AF20734F] - 9/4/2011 - 3:53:13 PM ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\windows\system32\drivers\SBREDrv.sys [98392]
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 7/14/2009 - 9:50:20 PM ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\windows\system32\drivers\secdrv.sys [20480]
O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 6/10/2009 - 2:19:04 AM ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\windows\system32\drivers\sisraid2.sys [40016]
O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 7/14/2009 - 2:19:04 AM ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\windows\system32\drivers\sisraid4.sys [77888]
O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 9/4/2011 - 2:28:02 PM ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\windows\system32\drivers\ssmdrv.sys [28520]
O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 7/14/2009 - 2:19:04 AM ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\windows\system32\drivers\stexstor.sys [21072]
O58 - SDL:[MD5.BD8E7F87DE409A745A132A8812DE5A96] - 6/24/2010 - 3:37:48 AM ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\windows\system32\drivers\SynTP.sys [230448]
O58 - SDL:[MD5.83CAFCB53201BBAC04D822F32438E244] - 6/8/2011 - 7:06:08 AM ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\windows\system32\drivers\usbaapl.sys [42496]
O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 7/14/2009 - 2:19:10 AM ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\windows\system32\drivers\viaide.sys [16976]
O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 6/10/2009 - 2:19:11 AM ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\windows\system32\drivers\vsmraid.sys [141904]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 7/13/2009 - 10:40:41 PM ---A- . (...) -- C:\windows\system32\ANSI.SYS [9029]
O58 - SDL:[MD5.B01751CC563AECAC09BBE36AAA21FBEF] - 6/24/2010 - 5:31:50 PM ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\windows\system32\athr.sys [1221632]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 7/13/2009 - 10:40:44 PM ---A- . (...) -- C:\windows\system32\country.sys [27097]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 7/13/2009 - 10:40:40 PM ---A- . (...) -- C:\windows\system32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 7/13/2009 - 10:40:43 PM ---A- . (...) -- C:\windows\system32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 7/13/2009 - 10:40:43 PM ---A- . (...) -- C:\windows\system32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 7/13/2009 - 10:40:23 PM ---A- . (...) -- C:\windows\system32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 7/13/2009 - 10:40:31 PM ---A- . (...) -- C:\windows\system32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 7/13/2009 - 10:40:35 PM ---A- . (...) -- C:\windows\system32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 7/13/2009 - 10:40:39 PM ---A- . (...) -- C:\windows\system32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 7/13/2009 - 10:40:27 PM ---A- . (...) -- C:\windows\system32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 7/13/2009 - 10:40:11 PM ---A- . (...) -- C:\windows\system32\NTIO.SYS [33952]
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 7/13/2009 - 10:40:15 PM ---A- . (...) -- C:\windows\system32\NTIO404.SYS [34672]
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 7/13/2009 - 10:40:17 PM ---A- . (...) -- C:\windows\system32\NTIO411.SYS [35776]
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 7/13/2009 - 10:40:19 PM ---A- . (...) -- C:\windows\system32\NTIO412.SYS [35536]
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 7/13/2009 - 10:40:13 PM ---A- . (...) -- C:\windows\system32\NTIO804.SYS [34672]
~ Scan Drivers in 07mn AMs

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC:Last File Created 11/26/2010 - 2:12:27 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents [5120]
O61 - LFC:Last File Created 11/26/2010 - 7:25:25 PM --HA- C:\Users\Thomas\Music\iTunes\sentinel [8]
O61 - LFC:Last File Created 11/26/2010 - 7:25:26 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Library Extras.itdb [12288]
O61 - LFC:Last File Created 11/26/2010 - 8:23:52 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\SyncServices\Local\admin.syncdb [36864]
O61 - LFC:Last File Created 11/27/2010 - 7:28:49 AM ---A- C:\Users\Thomas\AppData\Local\Windows Live\uxcore_msnmsgr_00.etl [8192]
O61 - LFC:Last File Created 11/27/2010 - 9:23:36 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Info.plist [91083]
O61 - LFC:Last File Created 2/27/2011 - 7:17:30 AM ---A- C:\Users\Thomas\AppData\Roaming\ASUS WebStorage\Logs\AWS-explorer.txt [33284]
O61 - LFC:Last File Created 2/28/2011 - 7:16:11 AM ---A- C:\Users\Thomas\AppData\Roaming\ASUS WebStorage\Logs\AWS-AsusWSDashBoard.txt [47094]
O61 - LFC:Last File Created 3/3/2011 - 2:28:45 PM ----- C:\Users\Thomas\AppData\Local\Windows Live\uxcore_iexplore_00.etl [4096]
O61 - LFC:Last File Created 3/5/2011 - 12:55:34 PM ---A- C:\Users\Thomas\AppData\Roaming\ASUS WebStorage\Logs\AWS-firefox.txt [3666]
O61 - LFC:Last File Created 6/14/2007 - 3:12:03 PM ---A- C:\Users\Thomas\Downloads\RegSeeker\RegSeeker\Languages\English.lng [5756]
O61 - LFC:Last File Created 6/14/2007 - 3:56:32 PM ---A- C:\Users\Thomas\Downloads\RegSeeker\RegSeeker\history.txt [56]
O61 - LFC:Last File Created 6/23/2011 - 12:17:23 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Flash Player\AssetCache\4ZHJ3RBF\9F67B1C289A5B5DB7B32844AF679E758541D101B.heu [149]
O61 - LFC:Last File Created 6/23/2011 - 12:17:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Flash Player\AssetCache\4ZHJ3RBF\76C30565F803F2587F156A8344E4091992D31B27.heu [149]
O61 - LFC:Last File Created 6/23/2011 - 12:17:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Flash Player\AssetCache\4ZHJ3RBF\8F903698240FE799F61EEDA8595181137B996156.heu [149]
O61 - LFC:Last File Created 6/23/2011 - 12:17:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Flash Player\AssetCache\4ZHJ3RBF\9A7DEE2B537712BEF484CBD9E4DDBF88C78F436C.heu [149]
O61 - LFC:Last File Created 6/23/2011 - 12:17:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Flash Player\AssetCache\4ZHJ3RBF\B63185FCA5D2BDBB568593F2BF232E87E5A20A7E.heu [149]
O61 - LFC:Last File Created 6/23/2011 - 12:17:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Flash Player\AssetCache\4ZHJ3RBF\D1680A46DD686B3B0CC9EC01D8C584666A78E145.heu [149]
O61 - LFC:Last File Created 6/23/2011 - 12:17:25 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Flash Player\AssetCache\4ZHJ3RBF\49280E749D7318EA369BC7E61369C34AD2D22859.heu [149]
O61 - LFC:Last File Created 9/2/2011 - 10:00:27 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Mobile Applications\Demolition3D.ipa [89191170]
O61 - LFC:Last File Created 9/2/2011 - 10:01:11 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Mobile Applications\EmakiDefense.ipa [168514335]
O61 - LFC:Last File Created 9/2/2011 - 10:01:57 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Mobile Applications\Geared.ipa [17282666]
O61 - LFC:Last File Created 9/2/2011 - 10:02:14 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Mobile Applications\Parking Expert.ipa [15416109]
O61 - LFC:Last File Created 9/2/2011 - 10:02:26 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Mobile Applications\Sprinkle.ipa [26408794]
O61 - LFC:Last File Created 9/2/2011 - 2:12:50 AM ---A- C:\Users\Thomas\Downloads\SafariQuickTimeSetup.exe [57175408]
O61 - LFC:Last File Created 9/2/2011 - 2:16:17 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Safari\PubSub\Database\Database.sqlite3 [37888]
O61 - LFC:Last File Created 9/2/2011 - 2:16:20 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Safari\Configurations.plist.signed [19555]
O61 - LFC:Last File Created 9/2/2011 - 2:16:23 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Safari\PubSub\Clients.plist [739]
O61 - LFC:Last File Created 9/2/2011 - 2:16:31 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Safari\TopSites.plist [820]
O61 - LFC:Last File Created 9/2/2011 - 2:16:45 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Preferences\keychain.plist [56]
O61 - LFC:Last File Created 9/2/2011 - 2:20:31 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Preferences\PubSub.plist [70]
O61 - LFC:Last File Created 9/2/2011 - 2:21:32 AM ---A- C:\Users\Thomas\AppData\Local\Apple Computer\Safari\SafeBrowsing.db [10717184]
O61 - LFC:Last File Created 9/2/2011 - 2:29:13 PM ----- C:\Users\Thomas\AppData\Local\Windows Live\uxcore_iexplore_01.etl [4096]
O61 - LFC:Last File Created 9/2/2011 - 2:29:22 AM ---A- C:\Users\Thomas\AppData\Local\Apple Computer\Safari\WebpageIcons.db [38912]
O61 - LFC:Last File Created 9/2/2011 - 2:29:22 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Safari\Bookmarks.plist [9772]
O61 - LFC:Last File Created 9/2/2011 - 2:29:22 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Safari\ReadingList.plist [236]
O61 - LFC:Last File Created 9/2/2011 - 2:29:35 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Preferences\com.apple.Safari.plist [1946]
O61 - LFC:Last File Created 9/2/2011 - 2:29:36 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\WebKit2WebProcess\Cookies\Cookies.binarycookies [16]
O61 - LFC:Last File Created 9/2/2011 - 2:29:37 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Safari\Cookies\Cookies.binarycookies [4790]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\127d73afb1f92e0ce4982b585f05c47df93a7f4e [739]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\22f95b9141084f09f686cf0dca8d1ca0d79cd763 [15319]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\36eb88809db6179b2fda77099cefce12792f0889 [578]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\3cfb2dcaa08df221f3cdee22dcf367db211b04b1 [9216]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\5586f65df8290024985d70e7c7f0338a3c4270d2 [252]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\56185fb14e4d8c1ae6631320c6cea96c333b1ce2 [13750]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\82462df12b658accbfcb6391287cf47af5c4c991 [10821]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\8c74be92ceb2ba5fd9d16142de4bf0d5fffbaf4c [6363]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\91f710b0dc9c51998f921dad177d2fcee289fa5e [247947]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\95e5807abfa11c51f96ab513ff9ace6dae2fcc40 [12814]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\990b2f152e69fde2c84e94ee84614a32767d68fb [13885]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\a95e6a88d4fcdda41056615a4fad1987dadf4114 [18867]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\d3ea4e6a0b562be895894fcea17d0b1aa12df880 [10016]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\f793aec38dcb09b5456c42c9e7663a7bc9d36d16 [484]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\f827e51cd0f7b2e2c950b9b4352919156ee0196a [315]
O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\fce603f2400354fae7607fbbf0ea46407882e3d5 [676]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\016f6fd721a1cd5fe3ecb1324c2367f3e3805a96 [2]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\02ed246e4b56f7c24e808728c91eb931a6342225 [15648]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\180b86230aa9771cc9824349122bad65df1afff0 [2612]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1b3c4153cc66979f46b9211d442b539ee6cdde1e [10662]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1de8899e93739d96647ee08e3de899a94c0e6b4f [14950]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1e6da3977cd11a1b8ad17844e81048f69752819a [12936]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\237b405da7545aab6e54c6ecbc596bcc4c8a6087 [18926]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\26dce6c7abc1b83e4157cb0fa257ea1c93dc9f36 [505]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\2b2b0084a1bc3a5ac8c27afdf14afb42c61a19ca [28672]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\2be5c6ca80002c2dfed22595ad659df2b9a0a959 [86]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\395afc940756c1782fff426e5285c69059df90cd [8295]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\405cc7e17af056f8bffddf1cb7c0394124a2d2c1 [18307]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\46216da375194f77c39fcc4d3ab3c261c2cd5d3a [1495]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\49c24fb9614f1bfff6ae593441347b9e3d8a197a [614]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\56fe1a2c271499322ebc2345e60501daa207c404 [18111]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\6fe1e0793ece4a22ca81a5f8dadb2cad673c4108 [531]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\753d0ff1da4d5ebc9a699261706831d94ab7f3fc [11953]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9281049ff1d27f1129c0bd17a95c863350e6f5a2 [7264]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9881ee0679a5eb011a32eb1ac86e0bbca24d63b1 [666]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\a82da6a39ee36801fa1899f3c950f5a6380d523b [3874]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\aef4dd875f6369aaf5cb1266099b8a726ea8b397 [643]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\c8b6abd5e191b7d4646a2682cf7c3194c5b8480c [20480]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\d8628f6a2f82649bc4f01dcb68d983eb7dd1375a [9324]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\e275e79b249f83b26e57303bb7d2d6d7d8741b6c [586]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\e2bdecf3d4f06d69125abc489868db878084612d [19522]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\e695e55a8313c8b59135e12a8661992ad670a6bb [549]
O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\e8e84fda4b75c2a92f4ed7ed4c5fed1cea654ab6 [1463]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\0be0423d98547800bcc0cd0b13b3863726e36dec [1096]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\15339ab241f5e5dfc35212d79147a49c6638b4b1 [252]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1cfb536409535b97c5d851be5c33e4a3cd9d3588 [17011]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1f6914cbf7d57d4107a760c7e8c274ad8368563d [560]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\24b1f99d37ce8ab2ab291a03c176ad7cf2f33445 [6940]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\29646549b6b0c400866c0d093d8c0fc36045330e [10745]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\2ba7761428c39f478472037906c000183ada3400 [23678]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\2fdcd655b0ad22cb9c4caf388f44fe6185f9556c [70]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\31bb7ba8914766d4ba40d6dfb6113c8b614be442 [249856]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\388c88370dffc559903461d94801c1032076a123 [662]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\3ea0280c7d1bd352397fc658b2328a7f3b124f3b [38906]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\41790f498655c44b429f9f127e9e67d5a346bf05 [147559]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\43c035a3474bef59b695f95ccc53b7cb5fdc300e [17125]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\5ad24b9a0bdebad5c128e7820d0b648b983f9a13 [17848]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\6382fffffcd71cbb268fe29f57ffe62fdcce70ee [683]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\6609a7acb7dd7da0933f361935739979a5b67a18 [593]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\68a003ecb5ad39e3665143d8b51248539685885f [12754]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\692b76d1a33ef42dd80e4204abbfe1308009a4b5 [243]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\6f9feba6ce77e7cd1b5fabd4a91742cb1cd9c876 [635]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\7354d391d6afddc09cc9fd7c1196aec38ba29e7c [3663]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\78ae17e828dc7c7232e6ee7c70b5f26477bc12fb [248]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\8ef50b34085bcc0d233b4c0657ee68f90e573c32 [670]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9e167fd509df52252d076b7496795749ea08ddd0 [11138]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\a1dd344caeba80d5eebc46c5cef7f137816ddd7a [6764]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\acea63d6fd3e442148da7dd978a37260e13c05c7 [5153]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\b3b506df58b11afbf8ef2522832582b68e834a9b [9025]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\b751ebbb1b192b87185aa90ee8567d846be519bc [10560477]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\bc00c89f6a4934b378850f81bc285e5a9ba707c5 [163840]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\bef6bb8f96965b737d0a5d21c37cba55d0e29696 [613]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\da0fa517f4181f73452944e4eb608c042a9b5dcc [10953]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\dc3f87fdad9b94910ad8438f1156d47a7d9f8158 [630]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\dd248acecadab73501087ae3102dfa58b5c5735b [20223]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\e56576f4696310ad7961aa4597c32b8b2814ff46 [2834]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\e5c45a19f89ea280f7593ad1889e2a1dd794a26c [12770]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\eacfb1cca596244f2ce6165ea59cfed6c86e5b39 [1267]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\f35267e2584d378b8006d7b930ce4e28530e59e6 [617]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\f7cdce50d71e4c7612815774dc28ad562b43e7c8 [4477]
O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\fe6b24ee437e267cb44728f0174f9b212d27cce4 [635]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\0f9f2b1f2a528d85b9c81f8cf84e21f4e5204981 [689]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\10e3046d0ca5954f2a13beef28faa8ac1673c8cd [2178]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1224e65c43af668e07249c39f5af79b4f13bb784 [252]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1d6740792a2b845f4c1e6220c43906d7f0afe8ab [8707]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\3b3b9fee0e0cba039682c957db3c47d4cd433e86 [628]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\451e2e01f7e588f58465122629a67ba0a27cfb7c [564]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\61d80edcba2b02ac5c50d266a4d390cd4e4962f8 [610]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\75890a00ba41bea4209b0fd85dcf249351de9e89 [20268]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\79985b512836fa59e26e79082567a03f27b4c88e [600]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\7ea83530d83ed8743ebfb0ce810d12d77c880943 [24698]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\82282dbc5c713fded35cceedf72842f3d29fe315 [6543]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\8ae075b204eb112212a6a82037afda43a20bfa32 [2427]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\8d95447156e017e712b2572ccc76c1864be83bb6 [526]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9598ce4a8f7268442ec530991d4283276f47d70f [561]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9653bef5e16152691c1a108eed6613eb13e5fb36 [558]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9adf6f7f293e28dc9577f54cc2578f2afca29351 [177849]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9f2140d8e87b45a9bb5dfc813fd2299c02851e6b [4603904]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\a8f4f57aa4b650d5e6acf53ee807e78d0f63c474 [14407]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\aa5615d6843d1180b9029f9123d57d37b6d52902 [18124]
O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\bfda4f2420c5d76fe452d6b2c64589afac01464e [2776]
O61 - LFC:Last File Created 9/2/2011 - 6:25:35 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\BFM _ Chronique de Marc Fiorentino\01 BFM Business _ Chronique de Marc 2.mp3 [2598052]
O61 - LFC:Last File Created 9/2/2011 - 6:25:42 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\3D Petanque_2011-09-02-102753_Thomas.crash [19654]
O61 - LFC:Last File Created 9/2/2011 - 6:25:42 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\3D Petanque_2011-09-02-102753_Thomas.plist [21189]
O61 - LFC:Last File Created 9/2/2011 - 6:25:43 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\AUM_2011-09-02-102750_Thomas.crash [23400]
O61 - LFC:Last File Created 9/2/2011 - 6:25:43 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\AUM_2011-09-02-102750_Thomas.plist [25039]
O61 - LFC:Last File Created 9/2/2011 - 6:25:43 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\AUM_2011-09-02-150802_Thomas.crash [23051]
O61 - LFC:Last File Created 9/2/2011 - 6:25:43 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\AUM_2011-09-02-150802_Thomas.plist [24690]
O61 - LFC:Last File Created 9/2/2011 - 6:25:43 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Baseband\log-bb-2011-09-01-stats.plist [1357]
O61 - LFC:Last File Created 9/2/2011 - 6:25:43 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-035755_Thomas.crash [26023]
O61 - LFC:Last File Created 9/2/2011 - 6:25:43 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-035755_Thomas.plist [27732]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-133514_Thomas.crash [25762]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-133514_Thomas.plist [27471]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-160213_Thomas.crash [25214]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-160213_Thomas.plist [26893]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\GizmodoFR_2011-09-02-033711_Thomas.crash [25054]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\GizmodoFR_2011-09-02-033711_Thomas.plist [26789]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Installous-2011-09-02-102751.crash [95454]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Installous-2011-09-02-102751.plist [99708]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-105917_Thomas.crash [27146]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-105917_Thomas.plist [28851]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-133509_Thomas.crash [20419]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-133509_Thomas.plist [21944]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-145953_Thomas.crash [23461]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-145953_Thomas.plist [25010]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-150804_Thomas.crash [20925]
O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-150804_Thomas.plist [22480]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-155626_Thomas.crash [21870]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-155626_Thomas.plist [23407]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-160215_Thomas.crash [20925]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-160215_Thomas.plist [22480]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-171706_Thomas.crash [21480]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-171706_Thomas.plist [22999]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-171835_Thomas.crash [20211]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-171835_Thomas.plist [21736]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\MegaStuntMayhemPro_2011-09-02-033707_Thomas.crash [31208]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\MegaStuntMayhemPro_2011-09-02-033707_Thomas.plist [33063]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\MeteoFrance_2011-09-02-155623_Thomas.crash [19297]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\MeteoFrance_2011-09-02-155623_Thomas.plist [20778]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Notebooks_2011-09-02-115147_Thomas.crash [22760]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Notebooks_2011-09-02-115147_Thomas.plist [24441]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Preferences-2011-09-02-171833.crash [89459]
O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Preferences-2011-09-02-171833.plist [93641]
O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Quotify_2011-09-02-033710_Thomas.crash [24058]
O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Quotify_2011-09-02-033710_Thomas.plist [25747]
O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\SFR WiFi_2011-09-02-033713_Thomas.crash [21525]
O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\SFR WiFi_2011-09-02-033713_Thomas.plist [23090]
O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\VDM_2011-09-02-151641_Thomas.crash [25023]
O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\VDM_2011-09-02-151641_Thomas.plist [26746]
O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\iPenpal_2011-09-02-171838_Thomas.crash [22766]
O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\iPenpal_2011-09-02-171838_Thomas.plist [24467]
O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\ifonfr_2011-09-02-151638_Thomas.crash [26748]
O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\ifonfr_2011-09-02-151638_Thomas.plist [28471]
O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\mBoxMail_2011-09-02-033714_Thomas.crash [22964]
O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\mBoxMail_2011-09-02-033714_Thomas.plist [24607]
O61 - LFC:Last File Created 9/2/2011 - 6:25:47 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\mBoxMail_2011-09-02-150801_Thomas.crash [23473]
O61 - LFC:Last File Created 9/2/2011 - 6:25:47 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\mBoxMail_2011-09-02-150801_Thomas.plist [25080]
O61 - LFC:Last File Created 9/2/2011 - 6:25:47 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\newsrepublic_2011-09-02-133512_Thomas.crash [23835]
O61 - LFC:Last File Created 9/2/2011 - 6:25:47 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\newsrepublic_2011-09-02-133512_Thomas.plist [25540]
O61 - LFC:Last File Created 9/2/2011 - 6:25:47 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\newsrepublic_2011-09-02-163618_Thomas.crash [24704]
O61 - LFC:Last File Created 9/2/2011 - 6:25:47 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\newsrepublic_2011-09-02-163618_Thomas.plist [26427]
O61 - LFC:Last File Created 9/2/2011 - 6:26:00 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Europe1 - Nicolas Canteloup - Revue de p\Vivement le calendrier d'Europe 1 !.mp3 [4822405]
O61 - LFC:Last File Created 9/2/2011 - 6:26:03 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Europe1 - Télédélire\Masterchef, le jeu pour dépressifs.mp3 [3301897]
O61 - LFC:Last File Created 9/2/2011 - 6:26:12 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Europe1 - Jérôme Commandeur\_Vas y Tristane, sois forte !_.mp3 [3161849]
O61 - LFC:Last File Created 9/2/2011 - 6:26:17 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Europe1 - Willy Rovelli\Francis Huster, Jeune & Joli !.mp3 [3620671]
O61 - LFC:Last File Created 9/2/2011 - 6:26:23 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Le Zappeur de RTL\Le Meilleur de la Matinale du 2 Sept.mp3 [1860887]
O61 - LFC:Last File Created 9/2/2011 - 6:26:25 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Mobile Applications\Meetic.ipa [5794217]
O61 - LFC:Last File Created 9/2/2011 - 6:26:26 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\09\14\02\79E8A6907A433F4E-2A00768C952072E9.itc2 [289013]
O61 - LFC:Last File Created 9/2/2011 - 6:26:26 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\15\12\04\79E8A6907A433F4E-5BDEB8739B68C4CF.itc2 [270404]
O61 - LFC:Last File Created 9/2/2011 - 6:26:29 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\00\15\15\79E8A6907A433F4E-1901035010445FF0.itc2 [291728]
O61 - LFC:Last File Created 9/2/2011 - 6:26:30 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\14\02\10\79E8A6907A433F4E-766E47BF753ADA2E.itc2 [315534]
O61 - LFC:Last File Created 9/2/2011 - 6:26:33 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\14\04\07\79E8A6907A433F4E-26CAD0E81F76474E.itc2 [235168]
O61 - LFC:Last File Created 9/2/2011 - 6:26:34 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\07\04\05\79E8A6907A433F4E-100AE5DFE6A90547.itc2 [112319]
O61 - LFC:Last File Created 9/2/2011 - 6:26:37 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\05\04\05\79E8A6907A433F4E-79BBA950262EE545.itc2 [59702]
O61 - LFC:Last File Created 9/2/2011 - 6:26:38 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\09\03\03\79E8A6907A433F4E-F863449D5A8A0339.itc2 [119988]
O61 - LFC:Last File Created 9/2/2011 - 6:26:38 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\12\09\08\79E8A6907A433F4E-2AE49B94AA29689C.itc2 [298011]
O61 - LFC:Last File Created 9/2/2011 - 6:26:41 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\15\07\06\79E8A6907A433F4E-E29547F87758367F.itc2 [251740]
O61 - LFC:Last File Created 9/2/2011 - 6:27:36 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\06\02\03\79E8A6907A433F4E-90AD3BAC43D08326.itc2 [525277]
O61 - LFC:Last File Created 9/2/2011 - 6:27:37 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\07\08\01\79E8A6907A433F4E-753855E1D391B187.itc2 [501206]
O61 - LFC:Last File Created 9/2/2011 - 6:27:38 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\03\04\15\79E8A6907A433F4E-B3D921FB9628CF43.itc2 [291577]
O61 - LFC:Last File Created 9/2/2011 - 6:28:07 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\03\13\13\79E8A6907A433F4E-EBBAF308BE1B6DD3.itc2 [258780]
O61 - LFC:Last File Created 9/2/2011 - 6:28:08 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\14\06\08\79E8A6907A433F4E-FD1E765A5E55D86E.itc2 [408084]
O61 - LFC:Last File Created 9/2/2011 - 6:28:11 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\05\04\02\79E8A6907A433F4E-5E307347EE07A245.itc2 [562579]
O61 - LFC:Last File Created 9/2/2011 - 6:28:23 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Best of YouTube (iPod video)\606. US Debt Crisis Explained - Best.mp4 [49491349]
O61 - LFC:Last File Created 9/2/2011 - 6:28:24 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Laurent Gerra\Laurent Gerra décortique l'actu 4.mp3 [8590652]
O61 - LFC:Last File Created 9/2/2011 - 6:28:32 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\RMC _ Le parti pris d'Hervé Gattegno\01 RMC _ 02_09 - Le parti pris d'Her.mp3 [2408377]
O61 - LFC:Last File Created 9/2/2011 - 6:28:35 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\09\00\06\79E8A6907A433F4E-BF7B8EB61BEAD609.itc2 [240679]
O61 - LFC:Last File Created 9/2/2011 - 6:28:37 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Z comme Zemmour\Eric Zemmour _ _Français, vous avez.mp3 [2900150]
O61 - LFC:Last File Created 9/2/2011 - 6:28:38 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\On refait le monde\On refait le monde du 01 sept. 2011.mp3 [40495269]
O61 - LFC:Last File Created 9/2/2011 - 6:28:49 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\13\14\05\79E8A6907A433F4E-465D2D3DF70BD5ED.itc2 [243033]
O61 - LFC:Last File Created 9/2/2011 - 6:29:01 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\07\08\12\79E8A6907A433F4E-44944EB6F976DC87.itc2 [415884]
O61 - LFC:Last File Created 9/2/2011 - 6:29:01 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\C'est sur le net\_C'est sur le Net_ du 2 septembre 20.mp3 [2747085]
O61 - LFC:Last File Created 9/2/2011 - 6:29:02 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\04\13\00\79E8A6907A433F4E-AAA5BE9D5E7980D4.itc2 [310619]
O61 - LFC:Last File Created 9/2/2011 - 6:29:03 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\15\09\08\79E8A6907A433F4E-C37D73999308889F.itc2 [292679]
O61 - LFC:Last File Created 9/2/2011 - 6:29:21 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\RSR - La vie est belle - Couleur 3\La vie est belle - 02.09.2011.mp3 [2688450]
O61 - LFC:Last File Created 9/2/2011 - 6:29:27 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Le débat économique\Le débat économique 02.09.2011.mp3 [8130688]
O61 - LFC:Last File Created 9/2/2011 - 6:29:34 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\02\00\04\79E8A6907A433F4E-0025A0D289E1B402.itc2 [69151]
O61 - LFC:Last File Created 9/2/2011 - 6:29:34 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\La marque du Mailhot\_La marque du Mailhot_ _ _Martine Au.mp3 [2360930]
O61 - LFC:Last File Created 9/2/2011 - 6:29:35 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\14\07\00\79E8A6907A433F4E-DA0B38A6B8E0007E.itc2 [409720]
O61 - LFC:Last File Created 9/2/2011 - 6:29:56 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Le Zapping du Web\Le Zapping du Web - Vendredi 02 sept.mov [23799264]
O61 - LFC:Last File Created 9/2/2011 - 8:16:03 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\TéléZapping\L'UMP en campus pour effacer les div.mp4 [9260677]
O61 - LFC:Last File Created 9/2/2011 - 8:17:07 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\On refait le monde\On refait le monde du 02 sept. 2011.mp3 [33211113]
O61 - LFC:Last File Created 9/2/2011 - 9:59:03 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\4f00eb4381ac611b6f91e339522c05642643276f [3582]
O61 - LFC:Last File Created 9/2/2011 - 9:59:03 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\58c3f780fbaff2072cda4abd0cb64adc707c444b [243]
O61 - LFC:Last File Created 9/2/2011 - 9:59:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\58712d199dca0217d87052ba7acdb8e34425f12f [305152]
O61 - LFC:Last File Created 9/2/2011 - 9:59:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\75fd110140a1ffcbf6c7d4abb77f7cb1b77e6add [73728]
O61 - LFC:Last File Created 9/2/2011 - 9:59:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\76fb3c685d422334fd25d9777d64db74af7cb25a [370]
O61 - LFC:Last File Created 9/2/2011 - 9:59:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\962ce100833b35fcd52e5a666bef1303db065255 [728]
O61 - LFC:Last File Created 9/2/2011 - 9:59:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\c1922c89e9ed40ad27766ca3ea9c6fa57678250c [138]
O61 - LFC:Last File Created 9/2/2011 - 9:59:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\d71f0604b0319e26f9f8be3b9b6dacc7ae12229b [252]
O61 - LFC:Last File Created 9/2/2011 - 9:59:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\e7532f808c1e24e4bf0b06816ad43b43b7d79f50 [290]
O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\229240e2befff633b59b2c4dbaf63439fb136028 [594]
O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\588dad6d704ed60e6b4ed5c7a6bf49ad0655a439 [1388]
O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\59445c4fae86445d6326f08d3c3bcf7b60ac54d3 [4142]
O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\6d1d5a56e6c02bba239deae88810eb6555107806 [3096576]
O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9fb1df4196ebb6770d08da63e37ef4d1886d77ad [168]
O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\a690d7769cce8904ca2b67320b107c8fe5f79412 [5157]
O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\eccfa5c590ca6a62715bfcac033d37fdb1f47a1a [5815]
O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\ef6055126fd8a8c3c0745678e33ab8be0952b253 [6728]
O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\fc9bd1975492e62e893a5e955de357b3133a0ac2 [2416]
O61 - LFC:Last File Created 9/2/2011 - 9:59:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1df72c970f51af8b3e41c45c16c901a9b41fd705 [0]
O61 - LFC:Last File Created 9/2/2011 - 9:59:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\2816a0ece61238f85cd42e2720b6f322e906d2f6 [1292]
O61 - LFC:Last File Created 9/2/2011 - 9:59:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\384eb9e62ba50d7f3a21d9224123db62879ef423 [5388]
O61 - LFC:Last File Created 9/2/2011 - 9:59:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\44a1b3422d9d502b8a4c3ad40eaccff8fada0116 [24576]
O61 - LFC:Last File Created 9/2/2011 - 9:59:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\74d09804aa188dcff04c780977163f932ccc812b [1729]
O61 - LFC:Last File Created 9/2/2011 - 9:59:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\dd6a7840dfa3e04e67f0160518315e9ade25501b [135]
O61 - LFC:Last File Created 9/2/2011 - 9:59:12 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\cd7d8815f851b45f62dea9633d212966ecbc096e [81920]
O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-221753_Thomas.crash [25315]
O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-221753_Thomas.plist [27024]
O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Installous-2011-09-02-221732.crash [96742]
O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Installous-2011-09-02-221732.plist [100984]
O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-202158_Thomas.crash [22307]
O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-202158_Thomas.plist [23862]
O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-221734_Thomas.crash [21636]
O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-221734_Thomas.plist [23215]
O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Parking Expert_2011-09-02-224358_Thomas.crash [20380]
O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Parking Expert_2011-09-02-224358_Thomas.plist [21975]
O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\dm3diphone_2011-09-02-224409_Thomas.crash [27947]
O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\dm3diphone_2011-09-02-224409_Thomas.plist [29720]
O61 - LFC:Last File Created 9/2/2011 - 9:59:23 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\mBoxMail_2011-09-02-221736_Thomas.crash [22203]
O61 - LFC:Last File Created 9/2/2011 - 9:59:23 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\mBoxMail_2011-09-02-221736_Thomas.plist [23804]
O61 - LFC:Last File Created 9/2/2011 - 9:59:23 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\sid_2011-09-02-221746_Thomas.crash [22969]
O61 - LFC:Last File Created 9/2/2011 - 9:59:23 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\sid_2011-09-02-221746_Thomas.plist [24542]
O61 - LFC:Last File Created 9/2/2011 - 9:59:58 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Mobile Applications\Defense Craft.ipa [114443089]
O61 - LFC:Last File Created 9/3/2011 - 10:35:58 PM ---A- C:\Users\All Users\hL04903JkBpG04903\hL04903JkBpG04903 [208]
O61 - LFC:Last File Created 9/3/2011 - 10:55:10 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Laurent Gerra\Best Of Laurent Gerra _ La saga DSK.mp3 [6544501]
O61 - LFC:Last File Created 9/3/2011 - 2:00:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND [www.play-the.net].torrent [28193]
O61 - LFC:Last File Created 9/3/2011 - 2:11:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Hard-Fi_-_Killer_Sounds-2011-MOD[www.torrent411.com].torrent [13877]
O61 - LFC:Last File Created 9/3/2011 - 2:22:43 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\00_hard-fi_-_killer_sounds-2011-scan.jpg [1043194]
O61 - LFC:Last File Created 9/3/2011 - 2:22:43 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\00_hard-fi_-_killer_sounds-2011.m3u [313]
O61 - LFC:Last File Created 9/3/2011 - 2:22:43 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\00_hard-fi_-_killer_sounds-2011.sfv [423]
O61 - LFC:Last File Created 9/3/2011 - 2:22:53 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\07_hard-fi_-_stay_alive.mp3 [7535579]
O61 - LFC:Last File Created 9/3/2011 - 2:22:54 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\06_hard-fi_-_stop.mp3 [7326059]
O61 - LFC:Last File Created 9/3/2011 - 2:22:59 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\02_hard-fi_-_fire_in_the_house.mp3 [8051077]
O61 - LFC:Last File Created 9/3/2011 - 2:23:00 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\04_hard-fi_-_bring_it_on.mp3 [7619185]
O61 - LFC:Last File Created 9/3/2011 - 2:23:01 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\09_hard-fi_-_love_song.mp3 [6438224]
O61 - LFC:Last File Created 9/3/2011 - 2:23:01 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\10_hard-fi_-_sweat.mp3 [6245696]
O61 - LFC:Last File Created 9/3/2011 - 2:23:01 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\11_hard-fi_-_killer_sounds.mp3 [6729717]
O61 - LFC:Last File Created 9/3/2011 - 2:23:03 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\01_hard-fi_-_good_for_nothing.mp3 [7968488]
O61 - LFC:Last File Created 9/3/2011 - 2:23:04 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\05_hard-fi_-_feels_good.mp3 [7977383]
O61 - LFC:Last File Created 9/3/2011 - 2:23:04 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\08_hard-fi_-_excitement.mp3 [6895464]
O61 - LFC:Last File Created 9/3/2011 - 2:23:05 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\03_hard-fi_-_give_it_up.mp3 [9206685]
O61 - LFC:Last File Created 9/3/2011 - 2:24:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\plugs\KB18748683 [208]
O61 - LFC:Last File Created 9/3/2011 - 2:24:10 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\EF1026A6B2C08D2296085B96AF37353EEDEF8DD9.dat [15767]
O61 - LFC:Last File Created 9/3/2011 - 2:28:16 PM RS--- C:\Users\All Users\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.dat [98248]
O61 - LFC:Last File Created 9/3/2011 - 2:29:15 PM ----- C:\Users\Thomas\AppData\Local\Windows Live\uxcore_iexplore_02.etl [4096]
O61 - LFC:Last File Created 9/3/2011 - 2:29:50 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E02.VOSTFR.DVDRIP.XviD-MiND.avi [368003072]
O61 - LFC:Last File Created 9/3/2011 - 2:30:38 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\E1DDDDEB54A867B2222F3F3DD6015BB279EBC02A.dat [34074]
O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E01.VOSTFR.DVDRIP.XviD-MiND.avi [578791424]
O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E03.VOSTFR.DVDRIP.XviD-MiND.avi [367998976]
O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E04.VOSTFR.DVDRIP.XviD-MiND.avi [368035840]
O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E05.VOSTFR.DVDRIP.XviD-MiND.avi [368035840]
O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E06.VOSTFR.DVDRIP.XviD-MiND.avi [368035840]
O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E07.VOSTFR.DVDRIP.XviD-MiND.avi [368039936]
O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E08.VOSTFR.DVDRIP.XviD-MiND.avi [577742848]
O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E09.VOSTFR.DVDRIP.XviD-MiND.avi [367988736]
O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E10.VOSTFR.DVDRIP.XviD-MiND.avi [368033792]
O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E11.VOSTFR.DVDRIP.XviD-MiND.avi [369070080]
O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E12.VOSTFR.DVDRIP.XviD-MiND.avi [368015360]
O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E13.FINAL.VOSTFR.DVDRIP.XviD-MiND.avi [577695744]
O61 - LFC:Last File Created 9/3/2011 - 9:23:03 AM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\06\11\05\79E8A6907A433F4E-3648F34301E6A5B6.itc2 [249085]
O61 - LFC:Last File Created 9/3/2011 - 9:23:05 AM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\10\08\10\79E8A6907A433F4E-4AF76EE1CD31FA8A.itc2 [597856]
O61 - LFC:Last File Created 9/3/2011 - 9:23:19 AM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\03\04\00\79E8A6907A433F4E-CA06923D0ACC5043.itc2 [249105]
O61 - LFC:Last File Created 9/3/2011 - 9:23:20 AM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\14\14\01\79E8A6907A433F4E-97C3AAD7C0E291EE.itc2 [253705]
O61 - LFC:Last File Created 9/3/2011 - 9:23:21 AM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\12\00\11\79E8A6907A433F4E-F06D08A3BAA70B0C.itc2 [178795]
O61 - LFC:Last File Created 9/3/2011 - 9:23:23 AM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Europe1 - Ailleurs sur le web\Un jeu TV qui expulse les sans-papie.mp3 [1098613]
O61 - LFC:Last File Created 9/3/2011 - 9:23:26 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\40f85bf64e662a9fad385d4ae4c56352a2355443 [23243]
O61 - LFC:Last File Created 9/3/2011 - 9:23:26 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\7ff7fe545440ab72b1570232d0ed81b84a5334dd [301]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\05dba87c4ead304c03ba15f59769aca05c49576f [3521]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\06642c767b9d974f12af8d72212b766709ba08fe [127]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\0dc926a1810f7aee4e8f38793ed788701f93bf9d [680]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\0fbbd41630bdc55cb0b46cfaf672f68878698da5 [589]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\3953d95b549560c2f4c7d7924480cb7fbf739dfe [1081344]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\3d0d7e5fb2ce288813306e4d4636395e047a3d28 [167936]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\4200286b2cd65ba25790384d03c1ed0718d97840 [113]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\462db712aa8d833ff164035c1244726c477891bd [12288]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\51a4616e576dd33cd2abadfea874eb8ff246bf0e [78613]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\57abe97189047a814cc335cde2d720f619672c74 [267]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\5cfa9db121949c3bf3b889caefc8d5ba766dbd09 [520]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\5f6165d4b21efe1b9b4b5eca6133c619225fff4b [1988]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\63e928471d296cb47a6ffb5343b40b90a0e5d92b [388]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\75cdfb4f2643bae1b39e0ea7d04f1e4f82a3737a [224]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\8218978e4ab0a48035bb92653145a6be872ea858 [4406]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9143d986a77ab8cf5878e4e9ac80627477eb6674 [36864]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\992df473bbb9e132f4b3b6e4d33f72171e97bc7a [28672]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\ade0340f576ee14793c607073bd7e8e409af07a8 [16156]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\aeacdfd9fadbbe56548a40e02b7685d324050e54 [2520]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\ce78a34a7c030a803ea0ae2efa03c0fac1861b56 [68]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\cfa63c2cb0fd80843034e75395ea3be8d1ba6529 [170]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\ea4f4a1a45ab93a97917e22dd28d298d78686dd4 [392]
O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\fb7786ced1add24313fa258c8e1ed041e24d52a4 [335]
O61 - LFC:Last File Created 9/3/2011 - 9:23:28 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\7ddb1ea8c09e5baae5e2d2ecac604a4e4e3087de [10446]
O61 - LFC:Last File Created 9/3/2011 - 9:23:28 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\bfecaa9c467e3acb085a5b312bd27bdd5cd7579a [161]
O61 - LFC:Last File Created 9/3/2011 - 9:23:28 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\c58045292621673cabe64aa6050921a2f4807851 [42]
O61 - LFC:Last File Created 9/3/2011 - 9:23:28 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\d2894e0d13244226ae63a27671a2654a22dd3cf3 [2453504]
O61 - LFC:Last File Created 9/3/2011 - 9:23:28 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\fdda2f81cc0b838dc00e3050b14da7ef2d835f3c [242242]
O61 - LFC:Last File Created 9/3/2011 - 9:23:31 AM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Europe1 - Le duel\Primes, salaires, indemnités _ où fi.mp3 [4188558]
O61 - LFC:Last File Created 9/3/2011 - 9:23:33 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\662bc19b13aecef58a7e855d0316e4cf61e2642b [1540]
O61 - LFC:Last File Created 9/3/2011 - 9:23:34 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Manifest.mbdb [836150]
O61 - LFC:Last File Created 9/3/2011 - 9:23:34 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Manifest.mbdx [165396]
O61 - LFC:Last File Created 9/3/2011 - 9:23:34 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Manifest.plist [6995]
O61 - LFC:Last File Created 9/3/2011 - 9:23:40 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Baseband\log-bb-2011-09-02-stats.plist [917]
O61 - LFC:Last File Created 9/3/2011 - 9:23:41 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-03-002130_Thomas.crash [21398]
O61 - LFC:Last File Created 9/3/2011 - 9:23:41 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-03-002130_Thomas.plist [22917]
O61 - LFC:Last File Created 9/3/2011 - 9:24:34 AM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\AlloCiné _ Faux Raccord\Faux Raccord N°45 - _Star Wars - Epi.mp4 [44519041]
O61 - LFC:Last File Created 9/3/2011 - 9:24:35 AM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\10\15\03\79E8A6907A433F4E-E3321575E17603FA.itc2 [147667]
O61 - LFC:Last File Created 9/4/2011 - 10:19:22 PM -SHA- C:\Users\LogMeInRemoteUser\ntuser.dat [786432]
O61 - LFC:Last File Created 9/4/2011 - 10:22:47 AM ---A- C:\Users\All Users\Simply Super Software\Trojan Remover\Data\reflist.dta [750307]
O61 - LFC:Last File Created 9/4/2011 - 10:22:47 AM ---A- C:\Users\All Users\Simply Super Software\Trojan Remover\Data\trjlist2.dta [4743690]
O61 - LFC:Last File Created 9/4/2011 - 10:22:47 AM ---A- C:\Users\All Users\Simply Super Software\Trojan Remover\Data\trjlist3.dta [960298]
O61 - LFC:Last File Created 9/4/2011 - 10:22:47 AM ---A- C:\Users\All Users\Simply Super Software\Trojan Remover\Data\trjlist33.dta [13705]
O61 - LFC:Last File Created 9/4/2011 - 10:22:47 AM ---A- C:\Users\Thomas\Documents\Simply Super Software\Trojan Remover Logfiles\UPDLOG.TXT [751]
O61 - LFC:Last File Created 9/4/2011 - 10:25:35 AM ---A- C:\Users\Thomas\Documents\Simply Super Software\Trojan Remover Logfiles\TRLOG.TXT [26607]
O61 - LFC:Last File Created 9/4/2011 - 11:15:30 AM ---A- C:\Users\Thomas\Downloads\RegSeeker\RegSeeker\Backup\clean-9-4-2011-12.15.28 PM.reg [27987]
O61 - LFC:Last File Created 9/4/2011 - 11:20:23 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\2011090322.000\AudioDiagnostic.0.debugreport.xml [11912]
O61 - LFC:Last File Created 9/4/2011 - 11:20:23 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\2011090322.000\DeviceDiagnostic.0.debugreport.xml [1349]
O61 - LFC:Last File Created 9/4/2011 - 11:20:25 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\2011090322.000\results.xsl [49097]
O61 - LFC:Last File Created 9/4/2011 - 11:20:46 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\2011090322.000\AudioDiagnostic.1.debugreport.xml [8832]
O61 - LFC:Last File Created 9/4/2011 - 11:20:46 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\2011090322.000\DeviceDiagnostic.1.debugreport.xml [1349]
O61 - LFC:Last File Created 9/4/2011 - 11:20:46 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\2011090322.000\ResultReport.xml [11044]
O61 - LFC:Last File Created 9/4/2011 - 11:20:46 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\2011090322.000\results.xml [321]
O61 - LFC:Last File Created 9/4/2011 - 11:20:46 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\latest.cab [16912]
O61 - LFC:Last File Created 9/4/2011 - 12:51:22 PM ---A- C:\Users\Thomas\Downloads\setup.exe [67845282]
O61 - LFC:Last File Created 9/4/2011 - 1:10:52 PM ---A- C:\Users\Thomas\Downloads\HousecallLauncher.exe [2002424]
O61 - LFC:Last File Created 9/4/2011 - 1:11:03 PM ---A- C:\Users\Thomas\AppData\Local\housecall.guid.cache [36]
O61 - LFC:Last File Created 9/4/2011 - 1:19:46 PM ---A- C:\Users\Thomas\Downloads\Ad-AwareInstall.exe [130913632]
O61 - LFC:Last File Created 9/4/2011 - 1:30:33 PM ---A- C:\Users\Thomas\AppData\Local\ars.cache [103471]
O61 - LFC:Last File Created 9/4/2011 - 1:31:00 PM ---A- C:\Users\Thomas\AppData\Local\census.cache [191068]
O61 - LFC:Last File Created 9/4/2011 - 1:40:29 PM ---A- C:\Users\Thomas\Downloads\vcredist_x86.exe [4216840]
O61 - LFC:Last File Created 9/4/2011 - 1:56:31 PM ---A- C:\Users\Thomas\Downloads\sdsetup_revwire207.exe [512992]
O61 - LFC:Last File Created 9/4/2011 - 1:58:37 PM ---A- C:\Users\All Users\PC Tools\DownloadManager\Spyware Doctor8.0\sdsetup_revwire207_aff_dl.exe [73191824]
O61 - LFC:Last File Created 9/4/2011 - 2:24:34 PM ---A- C:\Users\Thomas\Downloads\avira_antivirus_personal_fr.exe [68450544]
O61 - LFC:Last File Created 9/4/2011 - 2:34:51 PM ---A- C:\Users\Thomas\Downloads\OTL.exe [581120]
O61 - LFC:Last File Created 9/4/2011 - 2:37:27 PM ---A- C:\Users\Thomas\Downloads\tdsskiller.exe [1406768]
O61 - LFC:Last File Created 9/4/2011 - 2:42:39 PM ---A- C:\Users\Thomas\Downloads\mbam-setup-1.51.1.1800.exe [9466208]
O61 - LFC:Last File Created 9/4/2011 - 2:43:44 PM ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\config.conf [2399]
O61 - LFC:Last File Created 9/4/2011 - 2:43:44 PM ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\news.conf [250]
O61 - LFC:Last File Created 9/4/2011 - 2:43:45 PM ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\custom.conf [5]
O61 - LFC:Last File Created 9/4/2011 - 2:44:17 PM ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\rules.ref [7324501]
O61 - LFC:Last File Created 9/4/2011 - 2:44:18 PM ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\build.conf [260]
O61 - LFC:Last File Created 9/4/2011 - 2:44:44 PM ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\ignore.dat [0]
O61 - LFC:Last File Created 9/4/2011 - 3:05:16 PM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.62608 [182]
O61 - LFC:Last File Created 9/4/2011 - 3:05:16 PM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.62608 [306]
O61 - LFC:Last File Created 9/4/2011 - 3:05:17 PM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.42215 [89]
O61 - LFC:Last File Created 9/4/2011 - 3:05:17 PM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.93570 [83]
O61 - LFC:Last File Created 9/4/2011 - 3:05:17 PM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.42215 [194048]
O61 - LFC:Last File Created 9/4/2011 - 3:05:17 PM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.93570 [922624]
O61 - LFC:Last File Created 9/4/2011 - 3:05:19 PM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2011-09-04 (16-05-19).txt [1356]
O61 - LFC:Last File Created 9/4/2011 - 3:07:16 PM ---A- C:\Users\Thomas\AppData\Local\Temp\~DF69AA35E9408F3615.TMP [16384]
O61 - LFC:Last File Created 9/4/2011 - 3:10:26 PM ---A- C:\Users\Thomas\AppData\Local\Temp\~DF9C227AF52CD4D54B.TMP [147456]
O61 - LFC:Last File Created 9/4/2011 - 3:53:44 PM ---A- C:\Users\All Users\Lavasoft\License\adaware.da2 [0]
O61 - LFC:Last File Created 9/4/2011 - 3:55:58 PM ---A- C:\Users\Thomas\Downloads\RegSeeker\RegSeeker\Backup\clean-9-4-2011-4.55.55 PM.reg [30256]
O61 - LFC:Last File Created 9/4/2011 - 4:25:00 PM ---A- C:\Users\Thomas\AppData\Local\Temp\e4j1130.tmp_dir21076\exe4jlib.jar [27329]
O61 - LFC:Last File Created 9/4/2011 - 4:25:00 PM ---A- C:\Users\Thomas\AppData\Local\Temp\e4j1130.tmp_dir21076\i4jdel.exe [4608]
O61 - LFC:Last File Created 9/4/2011 - 4:26:03 PM ---A- C:\Users\Thomas\AppData\Local\Temp\swtlib-32\swt-win32-3650.dll [385024]
O61 - LFC:Last File Created 9/4/2011 - 4:26:41 PM ---A- C:\Users\Thomas\AppData\Local\Temp\swtlib-32\swt-gdip-win32-3650.dll [118784]
O61 - LFC:Last File Created 9/4/2011 - 4:28:58 PM ---A- C:\Users\Thomas\AppData\Local\Temp\Vuze_4.6.0.4c_win32.zip [8048672]
O61 - LFC:Last File Created 9/4/2011 - 4:35:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND [www.play-the.net].torrent [7452]
O61 - LFC:Last File Created 9/4/2011 - 4:37:02 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Gantz.2011.FRENCH.SUBFORCED.BRRiP.REPACK.XViD-HYPER [www.play-the.net].torrent [15420]
O61 - LFC:Last File Created 9/4/2011 - 4:40:37 PM R--A- C:\Users\Thomas\AppData\Local\Temp\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS.torrent [105165]
O61 - LFC:Last File Created 9/4/2011 - 4:41:36 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS.torrent [105165]
O61 - LFC:Last File Created 9/4/2011 - 4:56:40 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Gantz 2011 FRENCH SUBFORCED BRRiP REPACK XViD-HYPER.avi [788848004]
O61 - LFC:Last File Created 9/4/2011 - 4:59:06 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND.jpg [132545]
O61 - LFC:Last File Created 9/4/2011 - 4:59:06 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND.nfo [2283]
O61 - LFC:Last File Created 9/4/2011 - 5:06:01 PM ---A- C:\Users\Thomas\AppData\Local\Temp\~DF32F4F295F503D7E9.TMP [16384]
O61 - LFC:Last File Created 9/4/2011 - 5:12:14 PM ---A- C:\Users\Thomas\AppData\Local\Temp\~DFE487FF09973ED754.TMP [16384]
O61 - LFC:Last File Created 9/4/2011 - 5:14:55 PM ---A- C:\Users\Thomas\AppData\Local\Temp\~DF63A19F69C76B140D.TMP [16384]
O61 - LFC:Last File Created 9/4/2011 - 5:15:31 PM ---A- C:\Users\Thomas\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog.bak [0]
O61 - LFC:Last File Created 9/4/2011 - 5:25:13 PM ---A- C:\Users\Thomas\AppData\Local\Temp\AskSLib.dll [246440]
O61 - LFC:Last File Created 9/4/2011 - 5:26:52 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Europe1 - Guy Carlier\Gamineries à l'UMP.mp3 [4588370]
O61 - LFC:Last File Created 9/4/2011 - 5:29:59 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Laurent Gerra\Best Of Laurent Gerra _ La saga DSK 1.mp3 [7353252]
O61 - LFC:Last File Created 9/4/2011 - 6:55:29 AM ---A- C:\Users\All Users\Lavasoft\License\guid.dat [72]
O61 - LFC:Last File Created 9/4/2011 - 7:13:04 AM --HA- C:\Users\Thomas\AppData\Local\IconCache.db [1009007]
O61 - LFC:Last File Created 9/4/2011 - 7:25:10 PM ---A- C:\Users\Thomas\AppData\Local\Apple Computer\iTunes\iTunesPrefs.xml [813407]
O61 - LFC:Last File Created 9/4/2011 - 7:31:35 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\ipfilter.cache [0]
O61 - LFC:Last File Created 9/4/2011 - 7:33:39 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\addresses.dat [65]
O61 - LFC:Last File Created 9/4/2011 - 7:33:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\plugins\azupnpav\cd.dat [1907]
O61 - LFC:Last File Created 9/4/2011 - 7:34:18 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\tmp\AZU7603230544359958830.tmp\Vuze_4.6.0.4c_win32.exe [9026488]
O61 - LFC:Last File Created 9/4/2011 - 7:35:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND.avi [366418732]
O61 - LFC:Last File Created 9/4/2011 - 7:37:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\version.dat [20]
O61 - LFC:Last File Created 9/4/2011 - 8:06:38 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\MOTOGP SAN MARIN COURSE MOTOGP 040911 FRENCH.vob[www.torrent411.com].torrent [30020]
O61 - LFC:Last File Created 9/4/2011 - 8:12:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\devices.config [11002]
O61 - LFC:Last File Created 9/4/2011 - 8:22:02 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Library.itl [479537]
O61 - LFC:Last File Created 9/4/2011 - 8:22:03 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Music Library.xml [823943]
O61 - LFC:Last File Created 9/4/2011 - 8:22:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\iTunes\iTunesPrefs.xml [223491]
O61 - LFC:Last File Created 9/4/2011 - 8:23:07 PM ---A- C:\Users\Thomas\AppData\Local\Apple Computer\iTunes\iPodDevices.xml [1457]
O61 - LFC:Last File Created 9/4/2011 - 8:23:08 PM ---A- C:\Users\All Users\Apple Computer\iTunes\iPodDevices.xml [1457]
O61 - LFC:Last File Created 9/4/2011 - 8:23:39 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Preferences\ByHost\com.apple.syncservices.{e29ac6c0-7037-11de-816d-806e6f6e6963}.plist [73]
O61 - LFC:Last File Created 9/4/2011 - 8:23:53 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\SyncServices\Local\schemas.adminarchive [133490]
O61 - LFC:Last File Created 9/4/2011 - 8:38:22 PM ---A- C:\Users\Thomas\AppData\Local\Apple Computer\iTunes\goog-phish-shavar.dat [902982]
O61 - LFC:Last File Created 9/4/2011 - 8:39:17 PM ---A- C:\Users\Thomas\AppData\Local\Apple Computer\iTunes\goog-phish-shavar.db [5394432]
O61 - LFC:Last File Created 9/4/2011 - 8:40:34 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Snapshot\63e928471d296cb47a6ffb5343b40b90a0e5d92b [384]
O61 - LFC:Last File Created 9/4/2011 - 8:40:34 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Snapshot\c32ebf659fe9f38238aeb6e54764211b4b828240 [248]
O61 - LFC:Last File Created 9/4/2011 - 8:40:34 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Snapshot\d53fb6feb4bbaf71bf1454c08eaf7ef77a67c2e6.upload [0]
O61 - LFC:Last File Created 9/4/2011 - 8:40:34 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Status.plist [190]
O61 - LFC:Last File Created 9/4/2011 - 8:43:15 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\292DA9D70808AC0530EAAA014F08F62FC671422C.dat [30367]
O61 - LFC:Last File Created 9/4/2011 - 8:44:48 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\C35E749E99CFFAED3E376ED3887592E08922B2CC.dat [54572]
O61 - LFC:Last File Created 9/4/2011 - 8:55:15 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\657B2DFA5EDC62E4DF69AB23A663B6F77FDA6EB4.dat [61179]
O61 - LFC:Last File Created 9/4/2011 - 9:17:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\96B515DD0F8AA4D151EAE26136101A0B78392825.dat [16147]
O61 - LFC:Last File Created 9/4/2011 - 9:21:49 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\C60E36A86B8E9706E6107D6D595E8BADB4079208.dat [20539]
O61 - LFC:Last File Created 9/4/2011 - 9:22:56 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\05546B3927B2DA4E13FD5AD9D5CCA8CFBBC16F69.dat [36199]
O61 - LFC:Last File Created 9/4/2011 - 9:24:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\3C715993FD71C3383E3A8F2D49BBDE123F07A832.dat [23742]
O61 - LFC:Last File Created 9/4/2011 - 9:24:36 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\6F2C94358A60232DA83D83477D6D851C90D1C511.dat [14089]
O61 - LFC:Last File Created 9/4/2011 - 9:24:48 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\0CF2B48AD4D8E1562397E246C5AC2FE188EBB497.dat [40968]
O61 - LFC:Last File Created 9/4/2011 - 9:24:48 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\6067542C2847129C10085124C90A1C075CC80FB3.dat [17521]
O61 - LFC:Last File Created 9/4/2011 - 9:25:54 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\CEE6DA6D74D7952C6AEE3CE4FE8BB5B6E4DD8F01.dat [35389]
O61 - LFC:Last File Created 9/4/2011 - 9:27:56 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\net\pm_12322.dat [30995]
O61 - LFC:Last File Created 9/4/2011 - 9:27:57 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\VuzeActivities.config [1102]
O61 - LFC:Last File Created 9/4/2011 - 9:27:58 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\contacts.dat [548]
O61 - LFC:Last File Created 9/4/2011 - 9:27:58 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\diverse.dat [813]
O61 - LFC:Last File Created 9/4/2011 - 9:27:59 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\azureus.statistics [185]
O61 - LFC:Last File Created 9/4/2011 - 9:27:59 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\general.dat [174]
O61 - LFC:Last File Created 9/4/2011 - 9:28:01 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\downloads.config [14657]
O61 - LFC:Last File Created 9/4/2011 - 9:28:01 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E01.VOSTFR.DVDRip.XviD-GKS.avi [590376146]
O61 - LFC:Last File Created 9/4/2011 - 9:28:01 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E02.VOSTFR.DVDRip.XviD-GKS.avi [367241726]
O61 - LFC:Last File Created 9/4/2011 - 9:28:01 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E03.VOSTFR.DVDRip.XviD-GKS.avi [367271248]
O61 - LFC:Last File Created 9/4/2011 - 9:28:01 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E04.VOSTFR.DVDRip.XviD-GKS.avi [367257328]
O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\A75AA5663F40E57C8CDF1F2A383133F08617763E.dat [112264]
O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E05.VOSTFR.DVDRip.XviD-GKS.avi [367676160]
O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E06.VOSTFR.DVDRip.XviD-GKS.avi [367187134]
O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E07.VOSTFR.DVDRip.XviD-GKS.avi [367434442]
O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E08.VOSTFR.DVDRip.XviD-GKS.avi [589981056]
O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E09.VOSTFR.DVDRip.XviD-GKS.avi [367579314]
O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E10.VOSTFR.DVDRip.XviD-GKS.avi [367630854]
O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E11.VOSTFR.DVDRip.XviD-GKS.avi [367971090]
O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E12.VOSTFR.DVDRip.XviD-GKS.avi [367648594]
O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E13.FiNAL.VOSTFR.DVDRip.XviD-GKS.avi [590278838]
O61 - LFC:Last File Created 9/4/2011 - 9:28:03 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\2A16A9DA02846BBA26EB2191CF369219ECA2B515.dat [13612]
O61 - LFC:Last File Created 9/4/2011 - 9:28:03 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\A3665E4A46C03025D7631BCD2DCCEBA07F35F1DD.dat [24144]
O61 - LFC:Last File Created 9/4/2011 - 9:28:03 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\MOTOGP SAN MARIN COURSE MOTOGP 040911 FRENCH.vob [774952978]
O61 - LFC:Last File Created 9/4/2011 - 9:28:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\7B65EDC061B72F48B70E1BD22D9E6E3C6FABB214.dat [38307]
O61 - LFC:Last File Created 9/4/2011 - 9:28:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\B0509281250A449C1EEE165AB79E1290CA931B75.dat [28212]
O61 - LFC:Last File Created 9/4/2011 - 9:28:05 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\FC4769F45D37C72A1AFCA675E69104AB9309B6E5.dat [32636]
O61 - LFC:Last File Created 9/4/2011 - 9:28:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\95FDF2A4BC0FF06D6DD03B418A34ACA3020302F8.dat [34579]
O61 - LFC:Last File Created 9/4/2011 - 9:28:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\36B5311D908C3F65ABE901038212B65D37CE6CC6.dat [24625]
O61 - LFC:Last File Created 9/4/2011 - 9:28:08 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\8C991B24E2A8C80B6AC4787E505D556B6EA80FF8.dat [25843]
O61 - LFC:Last File Created 9/4/2011 - 9:28:09 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\3AB3AE3CE01E8C23A9CB9D15F547DEB1CC8D6850.dat [59337]
O61 - LFC:Last File Created 9/4/2011 - 9:28:09 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\BFA4CF6E2B2EAF30D6F73AD2026279D270CEEE98.dat [59966]
O61 - LFC:Last File Created 9/4/2011 - 9:28:10 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\28E0A398CA26485BB960D9609C49CEFE26D31B51.dat [46912]
O61 - LFC:Last File Created 9/4/2011 - 9:28:10 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\DF5828765831B3C79CF6C2C41F30632C00472802.dat [124382]
O61 - LFC:Last File Created 9/4/2011 - 9:28:10 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\cache.dat [6526]
O61 - LFC:Last File Created 9/4/2011 - 9:28:15 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\sidebarauto.config [77]
O61 - LFC:Last File Created 9/4/2011 - 9:28:18 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\tables.config [13886]
O61 - LFC:Last File Created 9/4/2011 - 9:28:23 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\azureus.config [9491]
O61 - LFC:Last File Created 9/5/2011 - 1:42:29 AM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2011-09-05 (02-42-27).txt [1064]
O61 - LFC:Last File Created 9/5/2011 - 7:03:02 AM ---A- C:\Users\Thomas\AppData\Local\Temp\Uninstall Log 2011-09-05 #002.txt [6640]
O61 - LFC:Last File Created 9/5/2011 - 7:03:04 AM ---A- C:\Users\Thomas\AppData\Local\Temp\GenericTdiDll.txt [2]
O61 - LFC:Last File Created 9/5/2011 - 7:03:05 AM ---A- C:\Users\Thomas\AppData\Local\Temp\Uninstall Log 2011-09-05 #003.txt [3885]
O61 - LFC:Last File Created 9/5/2011 - 7:03:09 AM ---A- C:\Users\Thomas\AppData\Local\Temp\Uninstall Log 2011-09-05 #004.txt [4735]
O61 - LFC:Last File Created 9/5/2011 - 7:03:44 AM ---A- C:\Users\Thomas\AppData\Local\Temp\PCTInstaller\sd_url.txt [241]
O61 - LFC:Last File Created 9/5/2011 - 7:07:46 AM ---A- C:\Users\Thomas\AppData\Local\Temp\Uninstall Log 2011-09-05 #001.txt [128135]
O61 - LFC:Last File Created 9/5/2011 - 7:07:52 AM ---A- C:\Users\Thomas\AppData\Local\Temp\info.txt [0]
O61 - LFC:Last File Created 9/5/2011 - 7:10:35 AM ---A- C:\Users\Thomas\Downloads\RogueKiller.exe [570368]
O61 - LFC:Last File Created 9/5/2011 - 7:12:17 AM ---A- C:\Users\Thomas\Downloads\ZHPDiag2.exe [2582227]
O61 - LFC:Last File Created 9/5/2011 - 7:15:41 AM ---A- C:\Users\Thomas\AppData\Roaming\OpenOffice.org\3\.lock [140]
O61 - LFC:Last File Created 9/5/2011 - 7:15:41 AM ---A- C:\Users\Thomas\AppData\Roaming\OpenOffice.org\3\user\registrymodifications.xcu [24402]
O61 - LFC:Last File Created 9/5/2011 - 7:15:41 AM ---A- C:\Users\Thomas\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog [0]
O61 - LFC:Last File Created 9/5/2011 - 7:28:47 AM ---A- C:\Users\Thomas\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt00.sqm [548]
~ Scan Files in 19mn AMs

---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis
O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn AMs

---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 6/21/2010 - C:\windows\system32\drivers\AsUpIO.sys - No object (No service) .(...) - LEGACY_ASUPIO
O64 - Services: CurCS - 7/21/2011 - C:\windows\system32\DRIVERS\avgntflt.sys - No object(No service) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT
O64 - Services: CurCS - 7/21/2011 - C:\windows\system32\DRIVERS\avipbb.sys - No object(No service) .(.Avira GmbH - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB
O64 - Services: CurCS - 12/30/1899 - C:\Program Files\LogMeIn\x86\RaInfo.sys (.not file.) - No object (No service) .(...) - LEGACY_LMIINFO
O64 - Services: CurCS - 1/11/2011 - C:\windows\system32\drivers\LMIRfsDriver.sys - No object(No service) .(.LogMeIn, Inc. - LogMeIn Rfs Drivemap Driver.) - LEGACY_LMIRFSDRIVER
O64 - Services: CurCS - 6/17/2010 - C:\windows\system32\DRIVERS\ssmdrv.sys - No object(No service) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV
~ Scan Services in 02mn AMs

---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\windows\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\windows\regedit.exe
~ Scan Keys in 00mn AMs

---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn AMs

---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {b41306c6-96d0-442a-bcc4-b0f621e82ce9} - (Fissa) - Fissa search
~ Scan Keys in 00mn AMs

---\\ Internet Feature Controls (O81)
O81 - IFC: Internet Feature Controls [HKUS\.DEFAULT] [FEATURE_BROWSER_EMULATION] -- svchost.exe
O81 - IFC: Internet Feature Controls [HKUS\S-1-5-18] [FEATURE_BROWSER_EMULATION] -- svchost.exe
~ Scan Keys in 00mn AMs

---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.23D0CA0B92101C28E0294E80B0B65B34] [SPRF][9/4/2011] (.Ask.com - AskIC Dynamic Link Library.) -- C:\Users\Thomas\AppData\Local\Temp\AskSLib.dll [246440]
[MD5.E8269245566BE948F6A219135B434160] [SPRF][2/26/2011] (.Trend Micro Inc. - HijackThis.) -- C:\Users\Thomas\Desktop\HiJackThis.exe [401720]
[MD5.9C0519648438775677CEB4E4AAE64BFA] [SPRF][9/5/2011] (...) -- C:\Users\Thomas\Desktop\RogueKiller.exe [570368]
[MD5.5CAAFF20C5695611F08ABD954E58DEA2] [SPRF][9/5/2011] (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Thomas\Desktop\ZHPDiag2.exe [2582227]
~ Scan Files in 00mn AMs

---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "{B1C57B77-80F4-4D56-83E3-298B30253599}" | In - Private - P6 - TRUE | .(.Vuze Inc. - Pas de description.) -- C:\Program Files\Vuze\Azureus.exe
O87 - FAEL: "{E858C264-0F03-4FC6-85C4-41D5AAF4C13E}" | In - Private - P17 - TRUE | .(.Vuze Inc. - Pas de description.) -- C:\Program Files\Vuze\Azureus.exe
O87 - FAEL: "{4851A0CF-E86E-4B50-8096-62FB5012A34A}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{A9B748FD-9803-40D6-B44C-D2ED125BE32B}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{6BBB6D35-2305-49C2-BF2C-A545EB6336ED}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe
O87 - FAEL: "TCP Query User{E6DC5A5F-CEC4-480A-B9AB-892C0DF96FDD}C:\program files\vuze\azureus.exe" | In - Public - P6 - TRUE | .(.Vuze Inc. - Pas de description.) -- C:\program files\vuze\azureus.exe
O87 - FAEL: "UDP Query User{362AAE09-E367-497C-9F3B-E5476938D3E4}C:\program files\vuze\azureus.exe" | In - Public - P17 - TRUE | .(.Vuze Inc. - Pas de description.) -- C:\program files\vuze\azureus.exe
O87 - FAEL: "TCP Query User{0D6B98DC-CC36-4ABB-A0C5-3A1F7205ED76}C:\program files\java\jre6\bin\javaw.exe" | In - Private - P6 - TRUE | .(.Sun Microsystems, Inc. - Java™ Platform SE binary.) -- C:\program files\java\jre6\bin\javaw.exe
O87 - FAEL: "UDP Query User{04D6881D-F951-475C-840E-C2D3DF923B97}C:\program files\java\jre6\bin\javaw.exe" | In - Private - P17 - TRUE | .(.Sun Microsystems, Inc. - Java™ Platform SE binary.) -- C:\program files\java\jre6\bin\javaw.exe
O87 - FAEL: "TCP Query User{EA356420-2943-4636-9595-3D5A59F88123}C:\program files\air mouse\air mouse\air mouse.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\air mouse\air mouse\air mouse.exe (.not file.)
O87 - FAEL: "UDP Query User{34D8CC7C-ABD3-4735-AFB4-D8AFB65C31BD}C:\program files\air mouse\air mouse\air mouse.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\air mouse\air mouse\air mouse.exe (.not file.)
O87 - FAEL: "TCP Query User{B82A82A0-F3C0-41F2-98D0-6353B055BF52}C:\program files\spyware terminator\spywareterminatorupdate.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\spyware terminator\spywareterminatorupdate.exe (.not file.)
O87 - FAEL: "UDP Query User{9243FB1F-71DD-40D3-B514-0156223CE6C1}C:\program files\spyware terminator\spywareterminatorupdate.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\spyware terminator\spywareterminatorupdate.exe (.not file.)
~ Scan Firewall in 01mn AMs

---\\ Scan Additionnel (O88)
Database Version : 8618 - (29/08/2011)
Clés trouvées (Keys found) : 26
Valeurs trouvées (Values found) : 1
Dossiers trouvés (Folders found) : 8
Fichiers trouvés (Files found) : 0

[HKLM\Software\Classes\AppID\GenericAskToolbar.DLL] =>Toolbar.AskSBar
[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd] =>Toolbar.AskSBar
[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1] =>Toolbar.AskSBar
[HKLM\Software\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}] =>Toolbar.AskTBar
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}] =>Toolbar.Agent
[HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}] =>Toolbar.AskSBar
[HKLM\Software\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}] =>Adware.Hotbar
[HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}] =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}] =>Toolbar.Ask
[HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}] =>Toolbar.AskSBar
[HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Toolbar.AskSBar
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Toolbar.AskSBar
[HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}] =>Toolbar.Ask
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{b41306c6-96d0-442a-bcc4-b0f621e82ce9}] =>PUP.OfferBox
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.AskSBar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.AskSBar
[HKCU\Software\Ask.com] =>Toolbar.AskBar
[HKCU\Software\Ask.com] =>Toolbar.AskBarDis
[HKCU\Software\AppDataLow\Software\AskToolbar] =>Toolbar.AskTBar
[HKCU\Software\AppDataLow\AskToolbarInfo] =>Toolbar.AskTBar
[HKCU\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\FissaSearch] =>PUP.OfferBox
[HKCU\Software\Spointer] =>Adware.SPointer
[HKCU\Software\WideStream] =>Adware.SPointer
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Toolbar.AskSBar
C:\Users\Thomas\AppData\Roaming\Adobe\plugs =>Trojan.FakeAlert
C:\Users\Thomas\AppData\Roaming\Adobe\shed =>Trojan.FakeAlert
C:\Program Files\Ask.com =>Toolbar.AskBar
C:\Users\Thomas\AppData\Roaming\Widestream =>Adware.SPointer
C:\Users\Thomas\AppData\Local\widestream6 Air =>Adware.SPointer
C:\Users\Thomas\AppData\LocalLow\AskToolbar =>Toolbar.AskTBar
C:\Users\Thomas\AppData\LocalLow\Vuze_Remote =>Toolbar.Conduit
~ Scan Additionnel in 20mn AMs

---\\ Recherche détournement de DNS routeur (O89)
Serveur : dns1.proxad.net
Address: 212.27.40.240
Nom : www.l.google.com
Addresses: 209.85.148.103
209.85.148.99
209.85.148.147
209.85.148.105
209.85.148.104
209.85.148.106
Aliases: www.google.fr
www.google.com
~ Scan DNS in 03mn AMs

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 9/4/2011 136360 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
SR - | Auto 9/4/2011 269480 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
SR - | Auto 5/29/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 219136 | (AsusService) . (...) - C:\Windows\System32\AsusService.exe
SR - | Auto 5/29/2011 349472 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - | Auto 4/2/2011 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 4/2/2011 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SR - | Auto 6/24/2010 354840 | (IAANTMON) . (.Intel Corporation.) - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
SS - | Demand 6/9/2011 820008 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 7/14/2009 20992 | C:\windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\windows\system32\svchost.exe
~ Scan Services in 05mn AMs

---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover
~ Scan MBR in 11mn AMs

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Thomas at 9/5/2011 12:29:12 PM

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 13mn AMs

End of the scan (1666 lines in 57mn AMs)(0)

Retour en haut of the page up there ^

#6 tomtom95

Godlike Member

Groupe : Equipe Sécurité
Messages : 2316
Inscrit(e) : 17-janvier 11

Posté 05 septembre 2011 - 07:35

Bonsoir synchronn

Ok,une petite erreur ,entre ZHPDiag,et ZHPFix

Pour les rapport stp utilise cjoint plus facile pour moi,Merci
héberger le fichier contenant ce rapport ici
http://cjoint.com/
Indique ensuite dans ta prochaine réponse l'adresse d'hébergement de ce rapport pour que je puisse le télécharger et l'analyser.

Je vois que tu as déja utiliser des outils ( comme TDSSKiller,Trojan Remover etc..)
ATTENTION:RegSeeker nettoyeur du registre trés dangereux pour la stabilité de ton système exploitation
Et pas adapter pour SEVEN ,il va supprimer des clés IMPORTANTE ,ET LEGITIME.A NE PAS UTILISER. :outch:

Applique les outils dans l'ordre

Relance l'outil RogueKiller

Relance RogueKiller.exe.
IMPORTANT:Quitte tous tes programmes en cours
Sous Vista/Seven clique droit -> lancer en tant qu'administrateur
Lance RogueKiller.exe.
Lorsque demandé
tape 2 pour Suppression et valide avec [entrée]

Un rapport (RKreport.txt) a du se créer à côté de l'exécutable
colle son contenu dans ton prochain post.

Temp File Cleaner

TFC

Old Timer

Bureau

sauvegarde

tous tes travaux en cours et ferme les applications

TFC.exe

(sous Vista - Windows 7 clique droit
"exécuter en tant qu'administrateur)

Start

Si l'outil demande à redémarrer

Clique sur Yes
•Si l'outil ne propose pas le redémarrage
redémarrer manuellement.
Dans la barre de TFC il va y avoir un chiffre noté en rouge
indique le moi.

Ferme toutes les applications ouvertes
Désactive tes défenses (anti-virus,anti-spyware)
Double-clique sur ZHPFix
Pour Vista et seven
fais un clique droit sur l'icône et exécute en tant qu'administrateur

Un raccourci installé par ZHPDiag sur le Bureau

Sélectionne et surligne correctement avec la souris et "Clique droit > "Copier" ou "Ctrl+C"
ces lignes ci dessous :

Citation
C:\Users\Thomas\AppData\Roaming\Mozilla\Firefox\Profiles\zc7laqia.default\user.js (.not file.)
R0 - HKUS\S-1-5-21-2405251124-3916129693-1916960768-1000\Software\Microsoft\Internet Explorer\Main,Start Page = Asus | MSN
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Asus | MSN
R3 - URLSearchHook: (no name) - {472734EA-242A-422b-ADF8-83D1E48CC825} . (...) (No version) -- (.not file.)
O4 - Global Startup: C:\Users\Thomas\Desktop\Vuze Downloads - Raccourci.lnk . (...) -- C:\Users\Thomas\Documents\Vuze Downloads
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (...) -- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [CleanMem Mini Monitor] (...) -- C:\Program Files\CleanMem\mini_monitor.exe (.not file.)
O42 - Logiciel: Vuze - (.Vuze Inc..) [HKLM] -- 8461-7759-5462-8226
[HKCU\Software\AppDataLow\AskToolbarInfo]
[HKCU\Software\AppDataLow\Software\AskToolbar]
[HKCU\Software\AppDataLow\Software\Conduit]
[HKCU\Software\AppDataLow\Software\Vuze_Remote]
[HKCU\Software\Ask.com]
[HKCU\Software\Azureus]
[HKCU\Software\Conduit]
[HKCU\Software\FissaSearch]
[HKCU\Software\Spointer]
[HKCU\Software\WideStream]
[HKLM\Software\Azureus]
O43 - CFD: 7/4/2011 - 9:06:08 PM - [392066] ----D- C:\Program Files\Ask.com
O43 - CFD: 11/26/2010 - 7:13:22 PM - [110958547] ----D- C:\Program Files\Vuze
O43 - CFD: 9/3/2011 - 11:43:44 PM - [208] ----D- C:\ProgramData\hL04903JkBpG04903
O43 - CFD: 3/13/2011 - 9:27:24 PM - [101] ----D- C:\ProgramData\Kaspersky Lab
O43 - CFD: 9/4/2011 - 10:56:56 PM - [13509147] ----D- C:\Users\Thomas\AppData\Roaming\Azureus
O43 - CFD: 3/13/2011 - 9:27:30 PM - [105429] ----D- C:\Users\Thomas\AppData\Roaming\FrostWire
O43 - CFD: 12/18/2010 - 4:26:20 PM - [604] ----D- C:\Users\Thomas\AppData\Roaming\widestream
O43 - CFD: 12/18/2010 - 4:38:50 PM - [191303] ----D- C:\Users\Thomas\AppData\Local\widestream6 Air
O43 - CFD: 9/3/2011 - 3:28:02 PM - [98248] ----D- C:\ProgramData\Tarma Installer
O61 - LFC:Last File Created 9/3/2011 - 10:35:58 PM ---A- C:\Users\All Users\hL04903JkBpG04903\hL04903JkBpG04903 [208]
O61 - LFC:Last File Created 9/3/2011 - 2:00:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND [www.play-the.net].torrent [28193]
O61 - LFC:Last File Created 9/3/2011 - 2:11:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Hard-Fi_-_Killer_Sounds-2011-MOD[www.torrent411.com].torrent [13877]
O61 - LFC:Last File Created 9/3/2011 - 2:24:10 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\EF1026A6B2C08D2296085B96AF37353EEDEF8DD9.dat [15767]
O61 - LFC:Last File Created 9/3/2011 - 2:28:16 PM RS--- C:\Users\All Users\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.dat [98248]
O61 - LFC:Last File Created 9/3/2011 - 2:30:38 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\E1DDDDEB54A867B2222F3F3DD6015BB279EBC02A.dat [34074]
O61 - LFC:Last File Created 9/4/2011 - 12:51:22 PM ---A- C:\Users\Thomas\Downloads\setup.exe [67845282]
O61 - LFC:Last File Created 9/4/2011 - 1:19:46 PM ---A- C:\Users\Thomas\Downloads\Ad-AwareInstall.exe [130913632]
O61 - LFC:Last File Created 9/4/2011 - 1:58:37 PM ---A- C:\Users\All Users\PC Tools\DownloadManager\Spyware Doctor8.0\sdsetup_revwire207_aff_dl.exe [73191824]
O61 - LFC:Last File Created 9/4/2011 - 3:53:44 PM ---A- C:\Users\All Users\Lavasoft\License\adaware.da2 [0]
O61 - LFC:Last File Created 9/4/2011 - 4:35:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND [www.play-the.net].torrent [7452]
O61 - LFC:Last File Created 9/4/2011 - 4:37:02 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Gantz.2011.FRENCH.SUBFORCED.BRRiP.REPACK.XViD-HYPER [www.play-the.net].torrent [15420]
O61 - LFC:Last File Created 9/4/2011 - 7:31:35 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\ipfilter.cache [0]
O61 - LFC:Last File Created 9/4/2011 - 7:34:18 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\tmp\AZU7603230544359958830.tmp\Vuze_4.6.0.4c_win32.exe [9026488]
O61 - LFC:Last File Created 9/4/2011 - 7:37:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\version.dat [20]
O61 - LFC:Last File Created 9/4/2011 - 8:06:38 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\MOTOGP SAN MARIN COURSE MOTOGP 040911 FRENCH.vob[www.torrent411.com].torrent [30020]
O61 - LFC:Last File Created 9/4/2011 - 8:12:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\devices.config [11002]
O61 - LFC:Last File Created 9/4/2011 - 8:43:15 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\292DA9D70808AC0530EAAA014F08F62FC671422C.dat [30367]
O61 - LFC:Last File Created 9/4/2011 - 8:44:48 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\C35E749E99CFFAED3E376ED3887592E08922B2CC.dat [54572]
O61 - LFC:Last File Created 9/4/2011 - 8:55:15 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\657B2DFA5EDC62E4DF69AB23A663B6F77FDA6EB4.dat [61179]
O61 - LFC:Last File Created 9/4/2011 - 9:17:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\96B515DD0F8AA4D151EAE26136101A0B78392825.dat [16147]
O61 - LFC:Last File Created 9/4/2011 - 9:21:49 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\C60E36A86B8E9706E6107D6D595E8BADB4079208.dat [20539]
O61 - LFC:Last File Created 9/4/2011 - 9:22:56 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\05546B3927B2DA4E13FD5AD9D5CCA8CFBBC16F69.dat [36199]
O61 - LFC:Last File Created 9/4/2011 - 9:24:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\3C715993FD71C3383E3A8F2D49BBDE123F07A832.dat [23742]
O61 - LFC:Last File Created 9/4/2011 - 9:24:36 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\6F2C94358A60232DA83D83477D6D851C90D1C511.dat [14089]
O61 - LFC:Last File Created 9/4/2011 - 9:24:48 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\0CF2B48AD4D8E1562397E246C5AC2FE188EBB497.dat [40968]
O61 - LFC:Last File Created 9/4/2011 - 9:24:48 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\6067542C2847129C10085124C90A1C075CC80FB3.dat [17521]
O61 - LFC:Last File Created 9/4/2011 - 9:25:54 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\CEE6DA6D74D7952C6AEE3CE4FE8BB5B6E4DD8F01.dat [35389]
O61 - LFC:Last File Created 9/4/2011 - 9:27:56 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\net\pm_12322.dat [30995]
O61 - LFC:Last File Created 9/4/2011 - 9:27:57 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\VuzeActivities.config [1102]
O61 - LFC:Last File Created 9/4/2011 - 9:27:58 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\contacts.dat [548]
O61 - LFC:Last File Created 9/4/2011 - 9:27:58 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\diverse.dat [813]
O61 - LFC:Last File Created 9/4/2011 - 9:27:59 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\azureus.statistics [185] => Azureus PeerToPeer
O61 - LFC:Last File Created 9/4/2011 - 9:27:59 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\general.dat [174]
O61 - LFC:Last File Created 9/4/2011 - 9:28:01 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\downloads.config [14657]
O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\A75AA5663F40E57C8CDF1F2A383133F08617763E.dat [112264]
O61 - LFC:Last File Created 9/4/2011 - 9:28:03 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\2A16A9DA02846BBA26EB2191CF369219ECA2B515.dat [13612]
O61 - LFC:Last File Created 9/4/2011 - 9:28:03 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\A3665E4A46C03025D7631BCD2DCCEBA07F35F1DD.dat [24144]
O61 - LFC:Last File Created 9/4/2011 - 9:28:15 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\sidebarauto.config [77]
O61 - LFC:Last File Created 9/4/2011 - 9:28:18 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\tables.config [13886]
O61 - LFC:Last File Created 9/4/2011 - 9:28:23 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\azureus.config [9491]
O61 - LFC:Last File Created 9/5/2011 - 7:15:41 AM ---A- C:\Users\Thomas\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog [0]
O69 - SBI: SearchScopes [HKCU] {b41306c6-96d0-442a-bcc4-b0f621e82ce9} - (Fissa) - Fissa search
[MD5.23D0CA0B92101C28E0294E80B0B65B34] [SPRF][9/4/2011] (.Ask.com - AskIC Dynamic Link Library.) -- C:\Users\Thomas\AppData\Local\Temp\AskSLib.dll [246440]

HOSTFix
FirewallRAZ
EmptyTemp
EmptyFlash
Clique successivement sur l'icône H (pour effacer le rapport qui s'est affiché) puis sur l'icône de la "malette cachée par la feuille" .
Vérifie que toutes les lignes que je t'ai demandé de copier sont dans la fenêtre.
Et seulement ces lignes
Puis clique sur le bouton [OK]
A ce moment apparaîtra au début de chaque ligne
une petite case vide. [ ]
Ensuite clique sur Tous puis sur Nettoyer
Valide par Oui la désinstallation des programmes si demandé
Laisse l'outil travailler. Si un redémarrage est demandé accepte et redémarre le PC
Le rapport ZHPFixReport.txt s'affiche. Copie-colle le contenu de ce rapport dans ta réponse.

Le rapport ZHPFixReport.txt est enregistré sous C:\Program files\ZHPFix\ZHPFixReport.txt
héberger le fichier contenant ce rapport ici
Accueil de Cjoint.com
Indique ensuite dans ta prochaine réponse

A+

Besoin d'une aide desinfection.securite-academie.fr
"Un forum dédié au nettoyage des ordinateurs "infectés"
Cliquer ICI >>

Retour en haut of the page up there ^

#7 synchronn

Member

Groupe : Membres
Messages : 64
Inscrit(e) : 25-mars 06

Posté 05 septembre 2011 - 08:30

D'abord merci pour tout Tomtom, c'est du vrai chinois pour moi toute cette démarche et ces chiffres...

Voici le rapport ZHP
Lien CJoint.com AIfvIBLiMOJ

RK /

RogueKiller V5.3.4 [30/08/2011] par Tigzy
contact sur Forum Sciences / Forum Informatique - Sur la Toile (SLT)
mail: tigzyRK<at>gmail<dot>com
Remontees: [RogueKiller] Remontées (1/33)

Systeme d'exploitation: Windows 7 (6.1.7600 ) 32 bits version
Demarrage : Mode normal
Utilisateur: Thomas [Droits d'admin]
Mode: Suppression -- Date : 05/09/2011 21:19:25

Processus malicieux: 0

Entrees de registre: 0

Fichiers / Dossiers particuliers:

Fichier HOSTS:
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]

Termine : << RKreport[1].txt >>
RKreport[1].txt

Et le chiffre rouge est 67.

J'ai dl Glary utilities entre temps

j'espère que ça ne va pas mettre la démarche en péril.

Retour en haut of the page up there ^

#8 synchronn

Member

Groupe : Membres
Messages : 64
Inscrit(e) : 25-mars 06

Posté 05 septembre 2011 - 08:38

Mince je pensais avoir désactiver Antivir mais apparement, j'ai loupé...dois-je recommencer ?

Retour en haut of the page up there ^

#9 tomtom95

Godlike Member

Groupe : Equipe Sécurité
Messages : 2316
Inscrit(e) : 17-janvier 11

Posté 05 septembre 2011 - 08:49

Non ,pas de problème

Par contre n'utilise pas d'autres outils stp.

Relance l'outil RogueKiller

Relance RogueKiller.exe.
IMPORTANT:Quitte tous tes programmes en cours
Sous Vista/Seven clique droit -> lancer en tant qu'administrateur
Lance RogueKiller.exe.
Lorsque demandé
tape 3 pour Hosts Raz et valide avec [entrée]

Un rapport (RKreport.txt) a du se créer à côté de l'exécutable
colle son contenu dans la réponse en fin de procédure.
******************************************
Pour voir plus clair,avec tous les outils que tu as télécharge on va les supprimer

Télecharge sur le site DelFix (de Xplode) sur ton Bureau
Choisis l'option "Recherche"
Valide sur Entrée
Laisse travailler l'outil
Copie/colle le rapport obtenu

Relance Delfix
Choisis l'option "Suppression"
Valide sur Entrée
Laisse travailler l'outil
Copie/colle le rapport obtenu

Supprime DelFix ainsi que les autres outils restant éventuellement sur le bureau.

**********************************************
Ensuite :
Télécharger http://support.kaspe.../tdsskiller.exe ]TDSSkiller [/url]de Kaspersky sur le Bureau

(clique droit -> lancer en tant qu'adminstrateur sous Vista et seven )
Faire un double clique sur TDSSKiller.exe pour le lancer.(clique droit -> lancer en tant qu'adminstrateur sous Vista et seven )
Cliquer sur Start scan pour lancer l'analyse

Lorsque l'outil a terminé son travail d'inspection
si des nuisibles ("Malicious objects") ont été trouvés
vérifier que l'option (Cure) est sélectionnée

Si des objects suspects ("Suspicious objects") ont été détectés
sur l'écran de demande de confirmation
modifier l'action à entreprendre et indiquer Quarantine (au lieu de Skip)

Puis cliquer sur le bouton (Continue) puis sur [Reboot Now]

Attendre l'affichage du fichier rapport.

Si l'outil a besoin d'un redémarrage pour finaliser le nettoyage
cliquer sur le bouton (Reboot computer).
Post: le rapport de TDSSKiller (contenu du fichier SystemDrive\TDSSKiller.Version_Date_Heure_log.txt)
Si TDSS.tdl2 est détecté l'option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
Si Suspicious file est indiqué
laisse l'option cochée sur Skip
Clique sur Continue puis sur Reboot now pour redémarrer le PC.
Copie-colle le rapport généré dans ta prochaine réponse (Il est aussi sauvegardé à la racine de ta partition système sous le nom C:\TDSSKiller_Quarantine\JJ.MM.AA_HH.MM.SS. (JJ.MM.AA date du passage de l'outil
HH.MM.SS heure de passage).

A+

Besoin d'une aide desinfection.securite-academie.fr
"Un forum dédié au nettoyage des ordinateurs "infectés"
Cliquer ICI >>

Retour en haut of the page up there ^

#10 synchronn

Member

Groupe : Membres
Messages : 64
Inscrit(e) : 25-mars 06

Posté 05 septembre 2011 - 09:06

Dans l'ordre :

RogueKiller V5.3.4 [30/08/2011] par Tigzy
contact sur Forum Sciences / Forum Informatique - Sur la Toile (SLT)
mail: tigzyRK<at>gmail<dot>com
Remontees: [RogueKiller] Remontées (1/33)

Systeme d'exploitation: Windows 7 (6.1.7600 ) 32 bits version
Demarrage : Mode normal
Utilisateur: Thomas [Droits d'admin]
Mode: HOSTS RAZ -- Date : 05/09/2011 22:10:41

Processus malicieux: 0

Fichier HOSTS:
127.0.0.1 localhost

Nouveau fichier HOSTS:
127.0.0.1 localhost

Termine : << RKreport[1].txt >>
RKreport[1].txt

--------------------------------------------------

# DelFix v8.3 - Rapport créé le 05/09/2011 à 22:01
# Mis à jour le 04/08/11 à 11h par Xplode
# Système d'exploitation : Windows 7 Starter (32 bits) [version 6.1.7600]
# Nom d'utilisateur : Thomas - THOMAS-PC (Administrateur)
# Exécuté depuis : C:\Users\Thomas\Desktop\delfix0.exe
# Option [Recherche]

~~~~~~ Dossier(s) ~~~~~~

Présent : C:\ZHP
Présent : C:\Program Files\ZHPDiag
Présent : C:\Users\Thomas\Desktop\RK_Quarantine
Présent : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP

~~~~~~ Fichier(s) ~~~~~~

Présent : C:\PhysicalDisk0_MBR.bin
Présent : C:\TDSSKiller.2.5.17.0_04.09.2011_15.37.43_log.txt
Présent : C:\TDSSKiller.2.5.17.0_04.09.2011_15.51.02_log.txt
Présent : C:\TDSSKiller.2.5.17.0_04.09.2011_16.24.27_log.txt
Présent : C:\Users\Thomas\Desktop\HiJackThis.exe
Présent : C:\Users\Thomas\Desktop\RKreport[1].txt
Présent : C:\Users\Thomas\Desktop\RogueKiller.exe
Présent : C:\Users\Thomas\Desktop\TFC.exe
Présent : C:\Users\Thomas\Desktop\ZHPDiag2.exe
Présent : C:\Users\Public\Desktop\MBRCheck.lnk
Présent : C:\Users\Public\Desktop\ZHPDiag.lnk
Présent : C:\Users\Public\Desktop\ZHPFix.lnk
Présent : C:\Users\Public\Desktop\MBRCheck.lnk
Présent : C:\Users\Public\Desktop\ZHPDiag.lnk
Présent : C:\Users\Public\Desktop\ZHPFix.lnk
Présent : C:\Users\Thomas\Downloads\OTL.exe
Présent : C:\Users\Thomas\Downloads\RogueKiller.exe
Présent : C:\Users\Thomas\Downloads\tdsskiller.exe
Présent : C:\Users\Thomas\Downloads\TFC.exe
Présent : C:\Users\Thomas\Downloads\ZHPDiag2.exe

~~~~~~ Registre ~~~~~~

Clé Présente : HKLM\Software\OldTimer Tools
Clé Présente : HKLM\Software\TrendMicro\Hijackthis
Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Hijackthis
Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1
Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\HijackThis.exe

~~~~~~ Autre ~~~~~~

########## EOF - "C:\DelFixSearch.txt" - [2053 octets] ##########

------------------------

# DelFix v8.3 - Rapport créé le 05/09/2011 à 22:02
# Mis à jour le 04/08/11 à 11h par Xplode
# Système d'exploitation : Windows 7 Starter (32 bits) [version 6.1.7600]
# Nom d'utilisateur : Thomas - THOMAS-PC (Administrateur)
# Exécuté depuis : C:\Users\Thomas\Desktop\delfix0.exe
# Option [Suppression]

~~~~~~ Dossier(s) ~~~~~~

Supprimé : C:\ZHP
Supprimé : C:\Program Files\ZHPDiag
Supprimé : C:\Users\Thomas\Desktop\RK_Quarantine
Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP

~~~~~~ Fichier(s) ~~~~~~

Supprimé : C:\PhysicalDisk0_MBR.bin
Supprimé : C:\TDSSKiller.2.5.17.0_04.09.2011_15.37.43_log.txt
Supprimé : C:\TDSSKiller.2.5.17.0_04.09.2011_15.51.02_log.txt
Supprimé : C:\TDSSKiller.2.5.17.0_04.09.2011_16.24.27_log.txt
Supprimé : C:\Users\Thomas\Desktop\HiJackThis.exe
Supprimé : C:\Users\Thomas\Desktop\RKreport[1].txt
Supprimé : C:\Users\Thomas\Desktop\RogueKiller.exe
Supprimé : C:\Users\Thomas\Desktop\TFC.exe
Supprimé : C:\Users\Thomas\Desktop\ZHPDiag2.exe
Supprimé : C:\Users\Public\Desktop\MBRCheck.lnk
Supprimé : C:\Users\Public\Desktop\ZHPDiag.lnk
Supprimé : C:\Users\Public\Desktop\ZHPFix.lnk
Supprimé : C:\Users\Thomas\Downloads\OTL.exe
Supprimé : C:\Users\Thomas\Downloads\RogueKiller.exe
Supprimé : C:\Users\Thomas\Downloads\tdsskiller.exe
Supprimé : C:\Users\Thomas\Downloads\TFC.exe
Supprimé : C:\Users\Thomas\Downloads\ZHPDiag2.exe

~~~~~~ Registre ~~~~~~

Clé Supprimée : HKLM\Software\OldTimer Tools
Clé Supprimée : HKLM\Software\TrendMicro\Hijackthis
Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Hijackthis
Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1
Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\HijackThis.exe

~~~~~~ Autre ~~~~~~

-> Prefetch vidé

########## EOF - "C:\DelFixSuppr.txt" - [1958 octets] ##########

Pour TDSSkiller , il n'a rien trouvé.

Retour en haut of the page up there ^

(2 Pages)
1
2
→

Vous ne pouvez pas commencer un sujet
Vous ne pouvez pas répondre à ce sujet

Similar Topics
Sujet	Commencé par	Statistiques	Infos sur le dernier message
[Résolu] Firefox a cessé de fonctionner	patisijm	6 réponses 186 vues	25 mai 2012 - 03:40 Par : patisijm
[Résolu] GPU 98° WTTTTF ? 1 2	alakisi	12 réponses 205 vues	25 mai 2012 - 05:42 Par : Tonton
(Résolu)Regedit incomplet	gilles88	6 réponses 125 vues	24 mai 2012 - 09:47 Par : ticlou
[Résolu] Réseau Wifi Up !	Dragost	2 réponses 151 vues	23 mai 2012 - 07:40 Par : Dragost
[Résolu] Problème drivers Nvidia	yoyothebest	3 réponses 213 vues	25 mai 2012 - 08:59 Par : yoyothebest
[Résolu] Problème avec Java 1 2 3 4	Editha	33 réponses 1243 vues	19 avril 2012 - 06:24 Par : Editha
[Résolu] Installclick Connector	gilles88	1 réponses 183 vues	22 mai 2012 - 10:21 Par : Raymond 78
[Résolu] Extraire texte et images d'un PDF 1 2 [Résolu… si l'on veut !] Comment procéder ?	BayernFan62	11 réponses 1410 vues	19 août 2011 - 02:41 Par : asap
[Résolu] Apparition bandeau noir sur fond noir Au démarrage de Windows XP	pyramides	8 réponses 303 vues	21 mai 2012 - 07:07 Par : pyramides
[Résolu] Overclock AMD Athlon II X3 Comment l'overclocker, SVP ?	GOTCHA	2 réponses 3944 vues	24 avril 2011 - 10:48 Par : GOTCHA