Aller au contenu

ray97

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    9

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par ray97

  1. ray97
    Salut , O.K. tout marche. Les infos supplémentaires me seront très utiles, et le rapport d'infection sera fait sur Malware-Complaints. Merci de ton aide, et bravo à toute l'équipe du forum de . Bye Ray97
  2. ray97
    Salut, Toutes lesmanips st réalisées. Le poste fonctionne bien ,et le rapport de Spybot : --- Report generated: 2007-09-06 20:45 --- Advertising.com: Cookie traceur (Firefox: default) (Cookie, fixed) Advertising.com: Cookie traceur (Firefox: default) (Cookie, fixed) Adviva: Cookie traceur (Firefox: default) (Cookie, fixed) Clickbank: Cookie traceur (Firefox: default) (Cookie, fixed) Tradedoubler: Cookie traceur (Firefox: default) (Cookie, fixed) --- Spybot - Search & Destroy version: 1.4 (build: 20050523) --- 2007-09-02 unins000.exe (51.41.0.0) 2005-05-31 blindman.exe (1.0.0.1) 2005-05-31 SpybotSD.exe (1.4.0.3) 2005-05-31 TeaTimer.exe (1.4.0.2) 2005-05-31 Update.exe (1.4.0.0) 2005-05-31 aports.dll (2.1.0.0) 2005-05-31 borlndmm.dll (7.0.4.453) 2005-05-31 delphimm.dll (7.0.4.453) 2005-05-31 SDHelper.dll (1.4.0.0) 2005-05-31 UnzDll.dll (1.73.1.1) 2005-05-31 ZipDll.dll (1.73.2.0) 2007-05-23 advcheck.dll (1.5.3.0) 2007-07-31 Tools.dll (2.1.2.0) 2007-08-29 Includes\Cookies.sbi (*) 2004-11-29 Includes\LSP.sbi (*) 2007-08-29 Includes\Revision.sbi (*) 2007-08-21 Includes\Tracks.uti 2007-08-29 Includes\DialerC.sbi (*) 2007-08-29 Includes\HijackersC.sbi (*) 2007-08-29 Includes\KeyloggersC.sbi (*) 2007-08-29 Includes\MalwareC.sbi (*) 2007-08-29 Includes\PUPSC.sbi (*) 2007-08-29 Includes\SecurityC.sbi (*) 2007-08-29 Includes\SpybotsC.sbi (*) 2007-08-29 Includes\TrojansC.sbi (*) 2007-07-25 Includes\Dialer.sbi (*) 2007-08-29 Includes\Hijackers.sbi (*) 2007-07-25 Includes\Keyloggers.sbi (*) 2007-08-29 Includes\Malware.sbi (*) 2007-08-29 Includes\PUPS.sbi (*) 2007-05-30 Includes\Security.sbi (*) 2007-08-01 Includes\Spybots.sbi (*) 2007-08-29 Includes\Trojans.sbi (*) 2007-06-06 Plugins\TCPIPAddress.dll @+ Ray971
  3. ray97
    Salut Charles , Les manips sont éalisées. Le PC foctie tout à fait correctement (très bien même) , et je te remercie pour tes conseils très avisés re . Voici le rapport de WinPFind3u : [Registry - Non-Microsoft Only] Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} deleted successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{74CC49F7-EB32-4A08-B204-948962A6E3DB} deleted successfully. [Registry - Additional Scans - Non-Microsoft Only] Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\%windir%\system32\winav.exe deleted successfully. File %windir%\system32\winav.exe:*:Enabled:@xpsp2res.dll,-22019 not found. [Registry - Additional Scans - Non-Microsoft Only] Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Need2FindBar Uninstall not found. [Files/Folders - Created Within 60 days] C:\WINDOWS\SYSTEM32\ldinfo.ldr moved successfully. [Files/Folders - Modified Within 60 days] File C:\WINDOWS\SYSTEM32\ldinfo.ldr not found! [ Extra Files ] File/Folder C:\WINDOWS\PSS\system.exeStartup not found. File/Folder C:\WINDOWS\PSS\autorun.exeCommon Startup not found. File/Folder C:\Documents and Settings\véronique darin\Local Settings\Temp\ICD1.TMP\UWA7PV_0001_N96M0206NetInstaller.exe not found. C:\Documents and Settings\véronique darin\Bureau\Downloads\Nouveau dossier (2)\SmitfraudFix\SmitfraudFix moved successfully. C:\Documents and Settings\véronique darin\Bureau\Downloads\Nouveau dossier (2)\SmitfraudFix moved successfully. C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\Clean\clean moved successfully. C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\Clean moved successfully. C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\MSNFix\MSNFix\incl moved successfully. C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\MSNFix\MSNFix moved successfully. C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\MSNFix moved successfully. File/Folder C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Démarrage\SYSTEM.EXE not found. C:\Program Files\Common Files\Companion Wizard moved successfully. [Empty Temp Folders] C:\DOCUME~1\VÉRONI~1\LOCALS~1\Temp\ -> emptied. C:\Documents and Settings\véronique darin\Local Settings\Temporary Internet Files\Content.IE5\ -> emptied RecycleBin -> emptied. < End of log > Created on 09/05/2007 00:30:02 @+ Ray971
  4. ray97
    Salut Charles, Voici le rapport de WinPFind3u : WinPFind3 logfile created on: 04/09/2007 16:03:36 WinPFind3U by OldTimer - Version 1.0.41 Folder = C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\winpfind3u\WinPFind3u\ Microsoft Windows XP Service Pack 2 (Version = 5.1.2600) Internet Explorer (Version = 7.0.5730.11) 502,42 Mb Total Physical Memory | 261,23 Mb Available Physical Memory | 51,99% Memory free 1,20 Gb Paging File | 0,98 Gb Available in Paging File | 81,93% Paging File free Paging file location(s): C:\pagefile.sys 756 1512; %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 35,60 Gb Total Space | 2,66 Gb Free Space | 7,47% Space Free Drive D: | 35,98 Gb Total Space | 11,59 Gb Free Space | 32,21% Space Free E: Drive not present or media not loaded F: Drive not present or media not loaded Computer Name: BICHOU Current User Name: véronique darin Logged in as Administrator. Current Boot Mode: Normal [Processes - Non-Microsoft Only] anbmserv.exe -> %SystemDrive%\Acer\eManager\anbmServ.exe -> OSA Technologies Inc. [Ver = 3.0.6.9 | Size = 1273344 bytes | Modified Date = 06/06/2005 19:08:58 | Attr = ] ashdisp.exe -> %ProgramFiles%\Alwil Software\Avast4\ashDisp.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 75128 bytes | Modified Date = 28/07/2007 00:03:34 | Attr = ] ashmaisv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashMaiSv.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 243064 bytes | Modified Date = 28/07/2007 00:03:08 | Attr = ] ashserv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashServ.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 132472 bytes | Modified Date = 28/07/2007 00:03:28 | Attr = ] ashwebsv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashWebSv.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 345464 bytes | Modified Date = 28/07/2007 00:02:20 | Attr = ] aswupdsv.exe -> %ProgramFiles%\Alwil Software\Avast4\aswUpdSv.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 16248 bytes | Modified Date = 27/07/2007 23:52:46 | Attr = ] googletoolbarnotifier.exe -> %ProgramFiles%\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe -> Google Inc. [Ver = 2, 0, 301, 1654 | Size = 68856 bytes | Modified Date = 31/03/2007 20:22:38 | Attr = ] googleupdaterservice.exe -> %ProgramFiles%\Google\Common\Google Updater\GoogleUpdaterService.exe -> Google [Ver = 2.2.824.5515.beta | Size = 138680 bytes | Modified Date = 07/08/2007 16:04:14 | Attr = ] lxcrcoms.exe -> %System32%\lxcrcoms.exe -> [Ver = 99.99.99.99 | Size = 495616 bytes | Modified Date = 20/02/2006 20:23:08 | Attr = ] winpfind3u.exe -> %UserDesktop%\Downloads\OutilsVirus\winpfind3u\WinPFind3u\WinPFind3U.exe -> OldTimer Tools [Ver = 1.0.41.0 | Size = 322560 bytes | Modified Date = 31/08/2007 10:30:22 | Attr = ] [Win32 Services - All] (Alerter) Avertissement [Win32_Shared | Disabled | Stopped] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (ALG) Service de la passerelle de la couche Application [Win32_Own | On_Demand | Running] -> %System32%\alg.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 44544 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (anbmService) Notebook Manager Service [Win32_Own | Auto | Running] -> %SystemDrive%\Acer\eManager\anbmServ.exe -> OSA Technologies Inc. [Ver = 3.0.6.9 | Size = 1273344 bytes | Modified Date = 06/06/2005 19:08:58 | Attr = ] (AppMgmt) Gestion d'applications [Win32_Shared | On_Demand | Stopped] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (aswUpdSv) avast! iAVS4 Control Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Alwil Software\Avast4\aswUpdSv.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 16248 bytes | Modified Date = 27/07/2007 23:52:46 | Attr = ] (AudioSrv) Audio Windows [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (avast! Antivirus) avast! Antivirus [Win32_Own | Auto | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashServ.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 132472 bytes | Modified Date = 28/07/2007 00:03:28 | Attr = ] (avast! Mail Scanner) avast! Mail Scanner [Win32_Own | On_Demand | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashMaiSv.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 243064 bytes | Modified Date = 28/07/2007 00:03:08 | Attr = ] (avast! Web Scanner) avast! Web Scanner [Win32_Own | On_Demand | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashWebSv.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 345464 bytes | Modified Date = 28/07/2007 00:02:20 | Attr = ] (BITS) Service de transfert intelligent en arrière-plan [Win32_Shared | On_Demand | Stopped] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (Browser) Explorateur d'ordinateur [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (CiSvc) Service d'indexation [Win32_Shared | On_Demand | Stopped] -> %System32%\cisvc.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 5632 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (ClipSrv) Gestionnaire de l'Album [Win32_Own | Disabled | Stopped] -> %System32%\clipsrv.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 33280 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (COMSysApp) Application système COM+ [Win32_Own | On_Demand | Stopped] -> %System32%\dllhost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 5120 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (CryptSvc) Services de cryptographie [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (DcomLaunch) Lanceur de processus serveur DCOM [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (Dhcp) Client DHCP [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (dmadmin) Service d'administration du Gestionnaire de disque logique [Win32_Shared | On_Demand | Stopped] -> %System32%\dmadmin.exe -> Microsoft Corp., Veritas Software [Ver = 2600.2180.503.0 | Size = 225280 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (dmserver) Gestionnaire de disque logique [Win32_Shared | On_Demand | Stopped] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (Dnscache) Client DNS [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (ERSvc) Service de rapport d'erreurs [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (Eventlog) Journal des événements [Win32_Shared | Auto | Running] -> %System32%\services.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 108544 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (EventSystem) Système d'événements de COM+ [Win32_Shared | On_Demand | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (FastUserSwitchingCompatibility) Compatibilité avec le Changement rapide d'utilisateur [Win32_Shared | On_Demand | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (Fax) Fax [Win32_Own | Auto | Stopped] -> %System32%\fxssvc.exe -> Microsoft Corporation [Ver = 5.2.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 268800 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (gusvc) Google Updater Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Google\Common\Google Updater\GoogleUpdaterService.exe -> Google [Ver = 2.2.824.5515.beta | Size = 138680 bytes | Modified Date = 07/08/2007 16:04:14 | Attr = ] (helpsvc) Aide et support [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (HidServ) Accès du périphérique d'interface utilisateur [Win32_Shared | Disabled | Stopped] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (HTTPFilter) HTTP SSL [Win32_Shared | On_Demand | Stopped] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (ImapiService) Service COM de gravage de CD IMAPI [Win32_Own | On_Demand | Stopped] -> %System32%\imapi.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 150016 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (lanmanserver) Serveur [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (lanmanworkstation) Station de travail [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (LmHosts) Assistance TCP/IP NetBIOS [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (lxcr_device) lxcr_device [Win32_Own | On_Demand | Running] -> %System32%\lxcrcoms.exe -> [Ver = 99.99.99.99 | Size = 495616 bytes | Modified Date = 20/02/2006 20:23:08 | Attr = ] (Messenger) Affichage des messages [Win32_Shared | Disabled | Stopped] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (mnmsrvc) Partage de Bureau à distance NetMeeting [Win32_Own | On_Demand | Stopped] -> %System32%\mnmsrvc.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 | Size = 32768 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (MSDTC) Distributed Transaction Coordinator [Win32_Own | On_Demand | Stopped] -> %System32%\msdtc.exe -> Microsoft Corporation [Ver = 2001.12.4414.258 | Size = 6144 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (MSIServer) Windows Installer [Win32_Shared | On_Demand | Running] -> %System32%\msiexec.exe -> Microsoft Corporation [Ver = 3.1.4000.1823 | Size = 78848 bytes | Modified Date = 25/08/2007 | Attr = ] (NetDDE) DDE réseau [Win32_Shared | Disabled | Stopped] -> %System32%\netdde.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 114176 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (NetDDEdsdm) DSDM DDE réseau [Win32_Shared | Disabled | Stopped] -> %System32%\netdde.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 114176 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (Netlogon) Ouverture de session réseau [Win32_Shared | On_Demand | Stopped] -> %System32%\lsass.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 13312 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (Netman) Connexions réseau [Win32_Shared | On_Demand | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (Nla) NLA (Network Location Awareness) [Win32_Shared | On_Demand | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (NtLmSsp) Fournisseur de la prise en charge de sécurité LM NT [Win32_Shared | On_Demand | Stopped] -> %System32%\lsass.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 13312 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (NtmlSvc) NtmlSvc [Win32_Own | Auto | Stopped] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (NtmsSvc) Stockage amovible [Win32_Shared | On_Demand | Stopped] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (PlugPlay) Plug-and-Play [Win32_Shared | Auto | Running] -> %System32%\services.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 108544 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (PolicyAgent) Services IPSEC [Win32_Shared | Auto | Running] -> %System32%\lsass.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 13312 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (ProtectedStorage) Emplacement protégé [Win32_Shared | Auto | Running] -> %System32%\lsass.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 13312 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (RasAuto) Gestionnaire de connexion automatique d'accès distant [Win32_Shared | On_Demand | Stopped] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (RasMan) Gestionnaire de connexions d'accès distant [Win32_Shared | On_Demand | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (RDSessMgr) Gestionnaire de session d'aide sur le Bureau à distance [Win32_Own | On_Demand | Stopped] -> %System32%\sessmgr.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 142336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (RemoteAccess) Routage et accès distant [Win32_Shared | Disabled | Stopped] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (RpcLocator) Localisateur d'appels de procédure distante (RPC) [Win32_Own | On_Demand | Stopped] -> %System32%\locator.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 75264 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (RpcSs) Appel de procédure distante (RPC) [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (RSVP) QoS RSVP [Win32_Own | On_Demand | Stopped] -> %System32%\rsvp.exe -> Microsoft Corporation [Ver = 5.1.2600.0 (xpclient.010817-1148) | Size = 132608 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (SamSs) Gestionnaire de comptes de sécurité [Win32_Shared | Auto | Running] -> %System32%\lsass.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 13312 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (SCardSvr) Carte à puce [Win32_Shared | On_Demand | Stopped] -> %System32%\scardsvr.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 100352 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (Schedule) Planificateur de tâches [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (seclogon) Connexion secondaire [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (SENS) Notification d'événement système [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (SharedAccess) Pare-feu Windows / Partage de connexion Internet [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (ShellHWDetection) Détection matériel noyau [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (Spooler) Spouleur d'impression [Win32_Own | Auto | Running] -> %System32%\spoolsv.exe -> Microsoft Corporation [Ver = 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519) | Size = 57856 bytes | Modified Date = 10/06/2005 19:53:32 | Attr = ] (srservice) Service de restauration système [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (SSDPSRV) Service de découvertes SSDP [Win32_Shared | On_Demand | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (STI Simulator) STI Simulator [Win32_Own | Auto | Stopped] -> -> File not found (stisvc) Acquisition d'image Windows (WIA) [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (SwPrv) MS Software Shadow Copy Provider [Win32_Own | On_Demand | Stopped] -> %System32%\dllhost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 5120 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (SysmonLog) Journaux et alertes de performance [Win32_Own | On_Demand | Stopped] -> %System32%\smlogsvc.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 93184 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (TapiSrv) Téléphonie [Win32_Shared | On_Demand | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (TermService) Services Terminal Server [Win32_Shared | On_Demand | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (Themes) Thèmes [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (TrkWks) Client de suivi de lien distribué [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (upnphost) Hôte de périphérique universel Plug-and-Play [Win32_Shared | On_Demand | Stopped] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (UPS) Onduleur [Win32_Own | On_Demand | Stopped] -> %System32%\ups.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 18432 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (usnjsvc) Service Messenger Sharing Folders USN Journal Reader [Win32_Own | On_Demand | Stopped] -> %ProgramFiles%\MSN Messenger\usnsvc.exe -> Microsoft Corporation [Ver = 8.1.0178.00 | Size = 97136 bytes | Modified Date = 19/01/2007 12:54:14 | Attr = ] (VSS) Cliché instantané de volume [Win32_Own | On_Demand | Stopped] -> %System32%\vssvc.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 295424 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (W32Time) Horloge Windows [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (WebClient) WebClient [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (winmgmt) Infrastructure de gestion Windows [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (WmdmPmSN) Service de numéro de série du lecteur multimédia portable [Win32_Shared | On_Demand | Stopped] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (WmiApSrv) Carte de performance WMI [Win32_Own | On_Demand | Stopped] -> %System32%\wbem\wmiapsrv.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 126464 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (WMPNetworkSvc) Service Partage réseau du Lecteur Windows Media [Win32_Own | On_Demand | Stopped] -> %ProgramFiles%\Windows Media Player\wmpnetwk.exe -> Microsoft Corporation [Ver = 11.0.5721.5145 (WMP_11.061018-2006) | Size = 918016 bytes | Modified Date = 03/11/2006 09:59:14 | Attr = ] (wscsvc) Centre de sécurité [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (wuauserv) Mises à jour automatiques [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (WudfSvc) Windows Driver Foundation - User-mode Driver Framework [Win32_Shared | On_Demand | Stopped] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (WZCSVC) Configuration automatique sans fil [Win32_Shared | Auto | Running] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (xmlprov) Service d'approvisionnement réseau [Win32_Shared | On_Demand | Stopped] -> %System32%\svchost.exe -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 14336 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] [Registry - Non-Microsoft Only] < Run [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> avast! -> %ProgramFiles%\Alwil Software\Avast4\ashDisp.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 75128 bytes | Modified Date = 28/07/2007 00:03:34 | Attr = ] LXCRCATS -> %System32%\spool\drivers\w32x86\3\lxcrtime.dll [rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCRtime.dll,_RunDLLEntry@16] -> [Ver = | Size = 65536 bytes | Modified Date = 24/02/2006 12:54:40 | Attr = ] < OptionalComponents [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\ -> IMAIL -> Installed = 1 -> MAPI -> Installed = 1 -> MSFS -> Installed = 1 -> < Run [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> swg -> %ProgramFiles%\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe -> Google Inc. [Ver = 2, 0, 301, 1654 | Size = 68856 bytes | Modified Date = 31/03/2007 20:22:38 | Attr = ] < SecurityProviders [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders -> < Winlogon settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> < Winlogon settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> < Winlogon\Notify settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ -> igfxcui -> %System32%\igfxsrvc.dll -> Intel Corporation [Ver = 3.0.0.4020 | Size = 348160 bytes | Modified Date = 23/01/2005 10:31:10 | Attr = R ] < CurrentVersion Policy Settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{BDEADF00-C265-11D0-BCED-00A0C90AB50F} -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF} -> 1073741857 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{0DF44EAA-FF21-4412-828E-260A8728E7F1} -> 32 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\dontdisplaylastusername -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticecaption -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticetext -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\shutdownwithoutlogon -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\undockwithoutlogon -> 1 -> < CurrentVersion Policy Settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\ -> -> < HOSTS File > -> -> -> Hosts file not found -> < Internet Explorer Settings > -> -> HKLM: Default_Page_URL -> http://go.microsoft.com/fwlink/?LinkId=69157 -> HKLM: Main\\Default_Search_URL -> http://go.microsoft.com/fwlink/?LinkId=54896 -> HKLM: Local Page -> %SystemRoot%\system32\blank.htm -> HKLM: Search Page -> http://go.microsoft.com/fwlink/?LinkId=54896 -> HKLM: Start Page -> http://go.microsoft.com/fwlink/?LinkId=69157 -> HKLM: CustomizeSearch -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm -> HKLM: Search\\Default_Search_URL -> http://www.google.com/ie -> HKLM: SearchAssistant -> http://www.google.com/ie -> HKCU: Default_Search_URL -> http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch -> HKCU: Local Page -> C:\WINDOWS\system32\blank.htm -> HKCU: Search Bar -> http://www.google.com/ie -> HKCU: Search Page -> http://www.google.com -> HKCU: Start Page -> http://www.google.com -> HKCU: SearchAssistant -> http://www.google.com/ie -> HKCU: ProxyEnable -> 0 -> < Internet Explorer ToolBars [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar -> {2318C2B1-4965-11d4-9B18-009027A5CD4F} [HKLM] -> %ProgramFiles%\Google\googletoolbar1.dll [&Google] -> Google Inc. [Ver = 4, 0, 1601, 4978 | Size = 2436160 bytes | Modified Date = 31/03/2007 20:27:38 | Attr = R ] {EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKLM] -> %ProgramFiles%\Yahoo!\Companion\Installs\cpn\yt.dll [Yahoo! Toolbar avec bloqueur de fenêtres pop-up] -> Yahoo! Inc. [Ver = 2005, 8, 4, 2 | Size = 343112 bytes | Modified Date = 04/08/2005 21:54:42 | Attr = ] < Internet Explorer ToolBars [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ -> ShellBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found] -> File not found ShellBrowser\\{74CC49F7-EB32-4A08-B204-948962A6E3DB} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found] -> File not found WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} [HKLM] -> %ProgramFiles%\Google\googletoolbar1.dll [&Google] -> Google Inc. [Ver = 4, 0, 1601, 4978 | Size = 2436160 bytes | Modified Date = 31/03/2007 20:27:38 | Attr = R ] WebBrowser\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKLM] -> %ProgramFiles%\Yahoo!\Companion\Installs\cpn\yt.dll [Yahoo! Toolbar avec bloqueur de fenêtres pop-up] -> Yahoo! Inc. [Ver = 2005, 8, 4, 2 | Size = 343112 bytes | Modified Date = 04/08/2005 21:54:42 | Attr = ] < Internet Explorer Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> {08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKLM] -> %ProgramFiles%\Java\jre1.5.0_06\bin\npjpi150_06.dll [MenuText: Console Java (Sun)] -> Sun Microsystems, Inc. [Ver = 5.0.60.5 | Size = 69746 bytes | Modified Date = 10/11/2005 13:22:12 | Attr = ] {08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKCU] -> %ProgramFiles%\Java\jre1.5.0_06\bin\ssv.dll [MenuText: Console Java (Sun)] -> Sun Microsystems, Inc. [Ver = 5.0.60.5 | Size = 184423 bytes | Modified Date = 10/11/2005 13:22:12 | Attr = ] {85d1f590-48f4-11d9-9669-0800200c9a66} [HKLM] -> Reg Data - Key not found [MenuText: Uninstall BitDefender Online Scanner v8] -> File not found {e2e2dd38-d088-4134-82b7-f2ba38496583} [HKLM] -> Reg Data - Key not found [MenuText: @xpsp3res.dll,-20001] -> File not found {FB5F1910-F110-11d2-BB9E-00C04F795683} -> %ProgramFiles%\Messager Wanadoo\Messager Wanadoo.exe [buttonText: Messager Wanadoo] -> France Telecom [Ver = 3, 1, 31, 9 | Size = 1802240 bytes | Modified Date = 07/04/2003 11:10:20 | Attr = ] < Internet Explorer Menu Extensions [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ -> &Windows Live Search -> %ProgramFiles%\Windows Live Toolbar\msntb.dll\search.htm -> File not found Add to Windows &Live Favorites -> http:\favorites.live.com\quickadd.asp -> File not found < User Agent Post Platform [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform -> Wanadoo 6.0 -> IEAKFT -> < DNS Name Servers [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ -> {2F0D6B97-CFC7-440E-93D5-61DFD7A9656B} -> (Realtek RTL8139/810x Family Fast Ethernet NIC) -> {314C99A3-9FDB-4FCD-A73C-051F21C2DEA1} -> () -> {33993692-E2E0-44F1-B6DC-788DDBF6B99A} -> () -> {9126982E-A93B-4999-AD18-06365A7900DA} -> (Carte réseau Broadcom 802.11g) -> < Protocol Handlers [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ -> ipp -> Reg Data - Key not found -> File not found msdaipp -> Reg Data - Key not found -> File not found < Protocol Filters [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ -> text/html -> Reg Data - Key not found -> File not found < Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> {00B71CFB-6864-4346-A978-C0A14556272C} -> Checkers Class - CodeBase = http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab -> {1D6711C8-7154-40BB-8380-3DEA45B69CBF} -> - CodeBase = -> {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -> BDSCANONLINE Control - CodeBase = http://www.zebulon.fr/scan8/oscan8.cab -> {8AD9C840-044E-11D1-B3E9-00805F499D93} -> Java Plug-in 1.5.0_06 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab -> {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} -> MessengerStatsClient Class - CodeBase = http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab -> {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} -> - CodeBase = http://fpdownload.macromedia.com/get/flash...t/ultrashim.cab -> {9122D757-5A4F-4768-82C5-B4171D8556A7} -> PhotoPickConvert Class - CodeBase = http://appdirectory.messenger.msn.com/AppD...ap/PhtPkMSN.cab -> {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} -> ActiveScan Installer Class - CodeBase = http://acs.pandasoftware.com/activescan/as5free/asinst.cab -> {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} -> BatchDownloader Class - CodeBase = http://appdirectory.messenger.msn.com/AppD...ap/DigWXMSN.cab -> {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} -> Java Plug-in 1.5.0_06 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab -> {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -> Java Plug-in 1.5.0_06 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab -> {D27CDB6E-AE6D-11CF-96B8-444553540000} -> - CodeBase = http://download.macromedia.com/pub/shockwa...ash/swflash.cab -> [Registry - Additional Scans - Non-Microsoft Only] < Security Settings > -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\AntiVirusDisableNotify -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\FirewallDisableNotify -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\UpdatesDisableNotify -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\AntiVirusOverride -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\FirewallOverride -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\Type -> 32 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\Start -> 3 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\ErrorControl -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\ImagePath -> %SystemRoot%\system32\svchost.exe -k netsvcs -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\DisplayName -> Service de transfert intelligent en arrière-plan -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\DependOnService -> RpcSs; -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\DependOnGroup -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\ObjectName -> LocalSystem -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\Description -> Transfère des données entre les clients et les serveurs en tâche de fond. Si le service BITS est désactivé, les fonctionnalités telles que Windows Update ne fonctionneront pas correctement. -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\FailureActions -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Parameters\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Parameters\\ServiceDll -> C:\WINDOWS\system32\qmgr.dll -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Security\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Security\\Security -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Enum\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Enum\ -> Root\LEGACY_BITS00 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Enum\\Count -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Enum\\NextInstance -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\DependOnGroup -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\DependOnService -> Netman;WinMgmt; -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\Description -> Assure la traduction d'adresses de réseau, l'adressage, les services de résolution de noms et/ou les services de prévention d'intrusion pour un réseau de petite entreprise ou un réseau domestique. -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\DisplayName -> Pare-feu Windows / Partage de connexion Internet -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\ErrorControl -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\ImagePath -> %SystemRoot%\system32\svchost.exe -k netsvcs -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\ObjectName -> LocalSystem -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\Start -> 2 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\Type -> 32 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch\\Epoch -> 36783 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\\ServiceDll -> %SystemRoot%\System32\ipnathlp.dll -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\%windir%\system32\sessmgr.exe -> %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\msncall.exe -> C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone) -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\msnmsgr.exe -> C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\livecall.exe -> C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\%windir%\Network Diagnostic\xpnetdiag.exe -> %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List\\139:TCP -> 139:TCP:*:Enabled:@xpsp2res.dll,-22004 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List\\445:TCP -> 445:TCP:*:Enabled:@xpsp2res.dll,-22005 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List\\137:UDP -> 137:UDP:*:Enabled:@xpsp2res.dll,-22001 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List\\138:UDP -> 138:UDP:*:Enabled:@xpsp2res.dll,-22002 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\\EnableFirewall -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\\DoNotAllowExceptions -> 0 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\\DisableNotifications -> 0 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\%windir%\system32\sessmgr.exe -> %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\Messenger\msmsgs.exe -> C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os47.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os47.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\Kazaa\kazaa.exe -> C:\Program Files\Kazaa\kazaa.exe:*:Enabled:Kazaa Media Desktop -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os10B.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os10B.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\SuperCopier\SuperCopier.exe -> C:\Program Files\SuperCopier\SuperCopier.exe:*:Enabled:SuperCopier -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os160.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os160.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os12.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os12.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os1C.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os1C.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\msncall.exe -> C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone) -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~osF.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~osF.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os11.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os11.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os8.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os8.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os61.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os61.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~osD.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~osD.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os1F.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os1F.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\%windir%\system32\winav.exe -> %windir%\system32\winav.exe:*:Enabled:@xpsp2res.dll,-22019 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\msnmsgr.exe -> C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\livecall.exe -> C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\%windir%\Network Diagnostic\xpnetdiag.exe -> %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\1900:UDP -> 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\2869:TCP -> 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\139:TCP -> 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\445:TCP -> 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\137:UDP -> 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\138:UDP -> 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Setup\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Setup\\ServiceUpgrade -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Setup\InterfacesUnfirewalledAtUpdate\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Setup\InterfacesUnfirewalledAtUpdate\\All -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Enum\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Enum\ -> Root\LEGACY_SHAREDACCESS00 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Enum\\Count -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Enum\\NextInstance -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\Type -> 32 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\Start -> 2 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\ErrorControl -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\ImagePath -> %systemroot%\system32\svchost.exe -k netsvcs -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\DisplayName -> Mises à jour automatiques -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\ObjectName -> LocalSystem -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\Description -> Active le téléchargement et l'installation des mises à jour Windows. Si ce service est désactivé, cet ordinateur ne pourra pas utiliser la fonctionnalité des mises à jour automatiques ou le site Windows Update. -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Parameters\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Parameters\\ServiceDll -> C:\WINDOWS\system32\wuauserv.dll -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Security\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Security\\Security -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Enum\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Enum\ -> Root\LEGACY_WUAUSERV00 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Enum\\Count -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Enum\\NextInstance -> 1 -> < Software Policy Settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\ -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultExecMenuItems\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultExecMenuItems\\tWhiteList -> Close|GeneralInfo|Quit|FirstPage|PrevPage|NextPage|LastPage|ActualSize|FitPage|FitWidth|FitHeight|SinglePage|OneColumn|TwoPages|TwoColumns|ZoomViewIn|ZoomViewOut|ShowHideBookmarks|ShowHideThumbnails|Print|GoToPage|ZoomTo|GeneralPrefs|SaveAs|FullScreen|OpenOrganizer|Scan|Web2PDF:OpnURL|AcroSendMail:SendMail|Spelling:Check Spelling|PageSetup|Find|FindSearch|GoBack|GoForward|FitVisible|ShowHideToolbarEditing|ShowHideToolbarCommenting|ShowHideToolbarEdit|ShowHideToolbarFile|ShowHideToolbarFind|ShowHideToolbarForms|ShowHideToolbarMeasuring|ShowHideToolbarData|ShowHideToolbarPageDisplay|ShowHideToolbarNavigation|ShowHideToolbarPrintProduction|ShowHideToolbarRedaction|ShowHideToolbarBasicTools|ShowHideToolbarTasks|ShowHideToolbarTypewriter|PropertyToolbar|ShowHideArticles|ShowHideFileAttachment|ShowHideAnnotManager|ShowHideFields|ShowHideOptCont|ShowHideModelTree|ShowHideSignatures|InsertPages|ExtractPages|ReplacePages|DeletePages|CropPages|RotatePages|AddFileAttachment|FindCurrentBookmark|BookmarkShowLocation|GoBackDoc|GoForwardDoc|HelpUserGuide|HelpReader -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultLaunchAttachmentPerms\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultLaunchAttachmentPerms\\tBuiltInPermList -> version:1|.ade:3|.adp:3|.app:3|.asp:3|.bas:3|.bat:3|.bz:3|.bz2:3|.chm:3|.class:3|.cmd:3|.com:3|.command:3|.cpl:3|.crt:3|.csh:3|.desktop:3|.exe:3|.fxp:3|.gz:3|.hex:3|.hlp:3|.hqx:3|.hta:3|.inf:3|.ini:3|.ins:3|.isp:3|.its:3|.job:3|.js:3|.jse:3|.ksh:3|.lnk:3|.lzh:3|.mad:3|.maf:3|.mag:3|.mam:3|.maq:3|.mar:3|.mas:3|.mat:3|.mau:3|.mav:3|.maw:3|.mda:3|.mde:3|.mdt:3|.mdw:3|.mdz:3|.msc:3|.msi:3|.msp:3|.mst:3|.ocx:3|.ops:3|.pcd:3|.pi:3|.pif:3|.prf:3|.prg:3|.pst:3|.rar:3|.reg:3|.scf:3|.scr:3|.sct:3|.sea:3|.shb:3|.shs:3|.sit:3|.tar:3|.tgz:3|.tmp:3|.url:3|.vb:3|.vbe:3|.vbs:3|.vsmacros:3|.vss:3|.vst:3|.vsw:3|.webloc:3|.ws:3|.wsc:3|.wsf:3|.wsh:3|.zip:3|.zlo:3|.zoo:3|.pdf:2|.fdf:2 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultLaunchURLPerms\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultLaunchURLPerms\\tSchemePerms -> version:1|shell:3|hcp:3|ms-help:3|ms-its:3|ms-itss:3|its:3|mk:3|mhtml:3|help:3|disk:3|afp:3|disks:3|telnet:3|ssh:3|acrobat:2|mailto:2|file:1 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Conferencing\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\MRT\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\WindowsLiveCall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\WindowsLiveCall\CertificatePolicy\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\WindowsLiveCall\PortRange\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\{A5B45060-354F-4097-A928-5125436C46F1}\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\{A5B45060-354F-4097-A928-5125436C46F1}\\DisableServerCheck -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\{A5B45060-354F-4097-A928-5125436C46F1}\\LegacyPresence -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\{A5B45060-354F-4097-A928-5125436C46F1}\CertificatePolicy\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\{A5B45060-354F-4097-A928-5125436C46F1}\PortRange\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Installer\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Installer\\EnableAdminTSRemote -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\RTC\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\RTC\CertificatePolicy\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\RTC\PortRange\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\\ExecutableTypes -> ADE;ADP;BAS;BAT;CHM;CMD;COM;CPL;CRT;EXE;HLP;HTA;INF;INS;ISP;LNK;MDB;MDE;MSC;MSI;MSP;MST;OCX;PCD;PIF;REG;SCR;SHS;URL;VB;WSC; -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\\TransparentEnabled -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\\DefaultLevel -> 262144 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\\AuthenticodeEnabled -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\\PolicyScope -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\Description -> Stop the download of this file -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\FriendlyName -> Mdac11.cab -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\SaferFlags -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\HashAlg -> 32771 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\ItemData -> ^«0O•zI‰j HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\LastModified -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\ItemSize -> ; -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\Description -> Stop the download of this file -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\FriendlyName -> mdac20.cab -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\SaferFlags -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\HashAlg -> 32771 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\ItemData -> g°Ô‹4:?Ó¼éÜdgó” -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\LastModified -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\ItemSize -> ; -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\Description -> Stop the download of this file -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\FriendlyName -> mdac20_a.cab -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\SaferFlags -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\HashAlg -> 32771 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\ItemData -> 2xÜþøÈ“ÜŠ°Ý„} -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\LastModified -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\ItemSize -> –; -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\Description -> Stop the download of this file -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\FriendlyName -> _msadc10.cab -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\SaferFlags -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\HashAlg -> 32771 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\ItemData -> ½š*ÛBëØV%Mø/g -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\LastModified -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\ItemSize -> å; -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\Description -> Stop the download of this file -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\FriendlyName -> msadc11.cab -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\SaferFlags -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\HashAlg -> 32771 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\ItemData -> 8k_„ìöiÓk•j"À€ -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\LastModified -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\ItemSize -> r; -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33}\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33}\\Description -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33}\\SaferFlags -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33}\\ItemData -> %HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\Cache%OLK* -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33}\\LastModified -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\WindowsUpdate\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\WindowsUpdate\\DoNotAllowXPSP2 -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows NT\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows NT\Terminal Services\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\WindowsFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\WindowsFirewall\DomainProfile\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\WindowsFirewall\DomainProfile\\EnableFirewall -> 1 -> < Software Policy Settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\policies\ -> HKEY_CURRENT_USER\Software\Policies\ -> -> HKEY_CURRENT_USER\Software\Policies\Microsoft\ -> -> < Uninstall List > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> {0542AC3C-963B-4176-8FFD-41029EFC95AA} -> Détecteur de flux Windows Live Toolbar (Windows Live Toolbar) -> {07E449E6-23A5-4011-90B0-3F5B06039EDB} -> Barre d'outils Outlook de Windows Live (Windows Live Toolbar) -> {18D10072035C4515918F7E37EAFAACFC} -> AutoUpdate -> {2318C2B1-4965-11d4-9B18-009027A5CD4F} -> Google Toolbar for Internet Explorer -> {2637C347-9DAD-11D6-9EA2-00055D0CA761} -> Arcade 3.0 -> {26a03535-d10f-4434-9724-ce6d2f9a0549} -> DFX 8 for Windows Media Player -> {3248F0A8-6813-11D6-A77B-00B0D0150060} -> J2SE Runtime Environment 5.0 Update 6 -> {350C940c-3D7C-4EE8-BAA9-00BCB3D54227} -> WebFldrs XP -> {37477865-A3F1-4772-AD43-AAFC6BCFF99F} -> MSXML 4.0 SP2 (KB927978) -> {44A4B84F-FEBD-4E4D-BC1F-187AA501AE9D} -> Bloqueur de fenêtres pop-up (Windows Live Toolbar) -> {469434A4-E972-4828-8288-1C1E721478D9} -> Extension de Windows Live Toolbar (Windows Live Toolbar) -> {49672EC2-171B-47B4-8CE7-50D7806360D7} -> Windows Live Sign-in Assistant -> {4A3C7929-C8E8-4679-8B45-E53BE636EAC9} -> Menus intelligents (Windows Live Toolbar) -> {4BDFD2CE-6329-42E4-9801-9B3D1F10D79B} -> Adobe® Photoshop® Album Edition Découverte 3.0 -> {58E5844B-7CE2-413D-83D1-99294BF6C74F} -> Acer ePowerManagement -> {65C39C99-F2C0-4286-A37A-23182E9A5E8E} -> NTI CD & DVD-Maker -> {786C4AD1-DCBA-49A6-B0EF-B317A344BD66} -> Windows Live Favorites pour Windows Live Toolbar -> {7AC15160-A49B-4A89-B181-D4619C025FFF} -> Samsung Samples Installer -> {7B63B2922B174135AFC0E1377DD81EC2} -> DivX Codec -> {827289F5-B44F-4E49-9993-840741585A62} -> Acer eManager for Notebook -> {89ACA875-BDB9-443C-B7C7-D74D3BDE8FE2} -> Philips VLounge -> {8A708DD8-A5E6-11D4-A706-000629E95E20} -> Intel® Graphics Media Accelerator Driver for Mobile -> {8ADFC4160D694100B5B8A22DE9DCABD9} -> DivX Player -> {A059DE09-1B49-4450-B340-7AE097EC3F04} -> Microsoft Works -> {AC76BA86-7AD7-1036-7B44-A81000000003} -> Adobe Reader 8.1.0 - Français -> {ACF60000-22B9-4CE9-98D6-2CCF359BAC07} -> ABBYY FineReader 6.0 Sprint -> {B13A7C41581B411290FBC0395694E2A9} -> DivX Converter -> {B7050CBDB2504B34BC2A9CA0A692CC29} -> DivX Web Player -> {B7A0CE06-068E-11D6-97FD-0050BACBF861} -> PowerProducer -> {C04E32E0-0416-434D-AFB9-6969D703A9EF} -> MSXML 4.0 SP2 (KB936181) -> {D050D7362D214723AD585B541FFB6C11} -> DivX Content Uploader -> {D0846526-66DD-4DC9-A02C-98F9A2806812} -> Launch Manager V1.0.8.8 -> {D41FAAA9-8048-4906-86B2-9AADEA1FA0B7} -> Alcatel SpeedTouch USB Software -> {D65F0073-A820-4085-B997-A061171595A7} -> oggcodecs -> {DBEA1034-5882-4A88-8033-81C4EF0CFA29} -> Google Toolbar for Internet Explorer -> {E66653A2-2B5C-4909-B71E-218164336960} -> SPC 610NC Laptop Camera -> {E8A81E1F-665E-4F81-B04D-B6D164A8F360} -> Windows Live Toolbar -> {EBA29752-DDD2-4B62-B2E3-9841F92A3E3A} -> Samsung PC Studio 3 USB Driver Installer -> {ED79C7E1-386E-4C12-81C7-8FEFB6D396B5} -> NTI Backup NOW! 4 -> {F242B06B-517F-4D62-B654-16B11564A912} -> OneCare Advisor (Windows Live Toolbar) -> {F6326B60-1B1D-4ABF-BFCD-7B7404F44411} -> Windows Live Messenger -> {FB08F381-6533-4108-B7DD-039E11FBC27E} -> Realtek AC'97 Audio -> Ad-Aware SE Personal -> Ad-Aware SE Personal -> Adobe Flash Player ActiveX -> Adobe Flash Player ActiveX -> avast! -> avast! Antivirus -> CNXT_MODEM_PCI_VEN_8086&DEV_266D&SUBSYS_006A1025 -> SoftV90 Data Fax Modem with SmartCP -> Droppix Recorder_is1 -> Droppix Recorder -> EspaceWanadoo.exe -> Wanadoo -> EVEREST Ultimate Edition_is1 -> EVEREST Ultimate Edition v3.50 -> Google Updater -> Outil de mise à jour Google -> GridVista -> Acer GridVista -> HijackThis -> HijackThis 1.99.1 -> IDNMitigationAPIs -> Microsoft Internationalized Domain Names Mitigation APIs -> ie7 -> Windows Internet Explorer 7 -> InstallShield_{65C39C99-F2C0-4286-A37A-23182E9A5E8E} -> NTI CD & DVD-Maker Gold -> InstallShield_{827289F5-B44F-4E49-9993-840741585A62} -> Acer eManager for Notebook -> InstallShield_{E66653A2-2B5C-4909-B71E-218164336960} -> SPC 610NC Laptop Camera -> InstallShield_{ED79C7E1-386E-4C12-81C7-8FEFB6D396B5} -> NTI Backup NOW! 4 -> KB873339 -> Correctif Windows XP - KB873339 -> KB885250 -> Correctif Windows XP - KB885250 -> KB885835 -> Correctif Windows XP - KB885835 -> KB885836 -> Correctif Windows XP - KB885836 -> KB886185 -> Correctif Windows XP - KB886185 -> KB887472 -> Correctif Windows XP - KB887472 -> KB887742 -> Correctif Windows XP - KB887742 -> KB888113 -> Correctif Windows XP - KB888113 -> KB888302 -> Correctif Windows XP - KB888302 -> KB890046 -> Mise à jour de sécurité pour Windows XP (KB890046) -> KB890859 -> Correctif Windows XP - KB890859 -> KB891781 -> Correctif Windows XP - KB891781 -> KB892130 -> Windows Genuine Advantage Validation Tool (KB892130) -> KB893066 -> Mise à jour de sécurité pour Windows XP (KB893066) -> KB893756 -> Mise à jour de sécurité pour Windows XP (KB893756) -> KB893803v2 -> Windows Installer 3.1 (KB893803) -> KB894391 -> Mise à jour pour Windows XP (KB894391) -> KB896358 -> Mise à jour de sécurité pour Windows XP (KB896358) -> KB896422 -> Mise à jour de sécurité pour Windows XP (KB896422) -> KB896423 -> Mise à jour de sécurité pour Windows XP (KB896423) -> KB896424 -> Mise à jour de sécurité pour Windows XP (KB896424) -> KB896428 -> Mise à jour de sécurité pour Windows XP (KB896428) -> KB898461 -> Mise à jour pour Windows XP (KB898461) -> KB899587 -> Mise à jour de sécurité pour Windows XP (KB899587) -> KB899591 -> Mise à jour de sécurité pour Windows XP (KB899591) -> KB900485 -> Mise à jour pour Windows XP (KB900485) -> KB900725 -> Mise à jour de sécurité pour Windows XP (KB900725) -> KB901017 -> Mise à jour de sécurité pour Windows XP (KB901017) -> KB901190 -> Mise à jour de sécurité pour Windows XP (KB901190) -> KB901214 -> Mise à jour de sécurité pour Windows XP (KB901214) -> KB902400 -> Mise à jour de sécurité pour Windows XP (KB902400) -> KB904706 -> Mise à jour de sécurité pour Windows XP (KB904706) -> KB904942 -> Mise à jour pour Windows XP (KB904942) -> KB905414 -> Mise à jour de sécurité pour Windows XP (KB905414) -> KB905749 -> Mise à jour de sécurité pour Windows XP (KB905749) -> KB905915 -> Mise à jour de sécurité pour Windows XP (KB905915) -> KB908519 -> Mise à jour de sécurité pour Windows XP (KB908519) -> KB908531 -> Mise à jour de sécurité pour Windows XP (KB908531) -> KB910437 -> Mise à jour pour Windows XP (KB910437) -> KB911280 -> Mise à jour pour Windows XP (KB911280) -> KB911562 -> Mise à jour de sécurité pour Windows XP (KB911562) -> KB911564 -> Mise à jour de sécurité pour Lecteur Windows Media (KB911564) -> KB911565 -> Mise à jour de sécurité pour Lecteur Windows Media 9 (KB911565) -> KB911567 -> Mise à jour de sécurité pour Windows XP (KB911567) -> KB911927 -> Mise à jour de sécurité pour Windows XP (KB911927) -> KB912812 -> Mise à jour de sécurité pour Windows XP (KB912812) -> KB912919 -> Mise à jour de sécurité pour Windows XP (KB912919) -> KB913446 -> Mise à jour de sécurité pour Windows XP (KB913446) -> KB913580 -> Mise à jour de sécurité pour Windows XP (KB913580) -> KB914388 -> Mise à jour de sécurité pour Windows XP (KB914388) -> KB914389 -> Mise à jour de sécurité pour Windows XP (KB914389) -> KB914440 -> Correctif pour Windows XP (KB914440) -> KB915865 -> Hotfix for Windows XP (KB915865) -> KB916281 -> Mise à jour de sécurité pour Windows XP (KB916281) -> KB916595 -> Mise à jour pour Windows XP (KB916595) -> KB917159 -> Mise à jour de sécurité pour Windows XP (KB917159) -> KB917344 -> Mise à jour de sécurité pour Windows XP (KB917344) -> KB917422 -> Mise à jour de sécurité pour Windows XP (KB917422) -> KB917953 -> Mise à jour de sécurité pour Windows XP (KB917953) -> KB918118 -> Mise à jour de sécurité pour Windows XP (KB918118) -> KB918439 -> Mise à jour de sécurité pour Windows XP (KB918439) -> KB918899 -> Mise à jour de sécurité pour Windows XP (KB918899) -> KB919007 -> Mise à jour de sécurité pour Windows XP (KB919007) -> KB920213 -> Mise à jour de sécurité pour Windows XP (KB920213) -> KB920214 -> Mise à jour de sécurité pour Windows XP (KB920214) -> KB920670 -> Mise à jour de sécurité pour Windows XP (KB920670) -> KB920683 -> Mise à jour de sécurité pour Windows XP (KB920683) -> KB920685 -> Mise à jour de sécurité pour Windows XP (KB920685) -> KB920872 -> Mise à jour pour Windows XP (KB920872) -> KB921398 -> Mise à jour de sécurité pour Windows XP (KB921398) -> KB921503 -> Mise à jour de sécurité pour Windows XP (KB921503) -> KB921883 -> Mise à jour de sécurité pour Windows XP (KB921883) -> KB922582 -> Mise à jour pour Windows XP (KB922582) -> KB922616 -> Mise à jour de sécurité pour Windows XP (KB922616) -> KB922819 -> Mise à jour de sécurité pour Windows XP (KB922819) -> KB923191 -> Mise à jour de sécurité pour Windows XP (KB923191) -> KB923414 -> Mise à jour de sécurité pour Windows XP (KB923414) -> KB923694 -> Mise à jour de sécurité pour Windows XP (KB923694) -> KB923980 -> Mise à jour de sécurité pour Windows XP (KB923980) -> KB924191 -> Mise à jour de sécurité pour Windows XP (KB924191) -> KB924270 -> Mise à jour de sécurité pour Windows XP (KB924270) -> KB924496 -> Mise à jour de sécurité pour Windows XP (KB924496) -> KB924667 -> Mise à jour de sécurité pour Windows XP (KB924667) -> KB925398_WMP64 -> Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398) -> KB925454 -> Mise à jour de sécurité pour Windows XP (KB925454) -> KB925486 -> Mise à jour de sécurité pour Windows XP (KB925486) -> KB925902 -> Mise à jour de sécurité pour Windows XP (KB925902) -> KB926239 -> Hotfix for Windows XP (KB926239) -> KB926255 -> Mise à jour de sécurité pour Windows XP (KB926255) -> KB926436 -> Mise à jour de sécurité pour Windows XP (KB926436) -> KB927779 -> Mise à jour de sécurité pour Windows XP (KB927779) -> KB927802 -> Mise à jour de sécurité pour Windows XP (KB927802) -> KB927891 -> Mise à jour pour Windows XP (KB927891) -> KB928090 -> Mise à jour de sécurité pour Windows XP (KB928090) -> KB928255 -> Mise à jour de sécurité pour Windows XP (KB928255) -> KB928843 -> Mise à jour de sécurité pour Windows XP (KB928843) -> KB929123 -> Mise à jour de sécurité pour Windows XP (KB929123) -> KB929338 -> Mise à jour pour Windows XP (KB929338) -> KB929399 -> Hotfix for Windows Media Format 11 SDK (KB929399) -> KB929969 -> Mise à jour de sécurité pour Windows XP (KB929969) -> KB930178 -> Mise à jour de sécurité pour Windows XP (KB930178) -> KB930916 -> Mise à jour pour Windows XP (KB930916) -> KB931261 -> Mise à jour de sécurité pour Windows XP (KB931261) -> KB931768 -> Mise à jour de sécurité pour Windows XP (KB931768) -> KB931784 -> Mise à jour de sécurité pour Windows XP (KB931784) -> KB931836 -> Mise à jour pour Windows XP (KB931836) -> KB932168 -> Mise à jour de sécurité pour Windows XP (KB932168) -> KB933360 -> Mise à jour pour Windows XP (KB933360) -> KB933566 -> Mise à jour de sécurité pour Windows XP (KB933566) -> KB935839 -> Mise à jour de sécurité pour Windows XP (KB935839) -> KB935840 -> Mise à jour de sécurité pour Windows XP (KB935840) -> KB936021 -> Mise à jour de sécurité pour Windows XP (KB936021) -> KB936357 -> Mise à jour pour Windows XP (KB936357) -> KB936782_WMP11 -> Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782) -> KB937143 -> Mise à jour de sécurité pour Windows XP (KB937143) -> KB938127 -> Mise à jour de sécurité pour Windows XP (KB938127) -> KB938828 -> Mise à jour pour Windows XP (KB938828) -> KB938829 -> Mise à jour de sécurité pour Windows XP (KB938829) -> KB939683 -> Correctif pour Lecteur Windows Media 11 (KB939683) -> KLiteCodecPack_is1 -> K-Lite Codec Pack 2.71 Full -> Language pack for Ad-Aware SE -> Language pack for Ad-Aware SE -> Lexmark 2400 Series -> Lexmark 2400 Series -> Lexmark Fax Solutions -> Solutions de télécopie Lexmark -> Messager Wanadoo.exe -> Messager Wanadoo -> Mozilla Firefox (2.0.0.6) -> Mozilla Firefox (2.0.0.6) -> MSCompPackV1 -> Microsoft Compression Client Pack 1.0 for Windows XP -> MsgPlus! Plugin -> Messenger Plus! 3 -> MSNINST -> MSN -> NLSDownlevelMapping -> Microsoft National Language Support Downlevel APIs -> Panda ActiveScan -> Panda ActiveScan -> SAMSUNG CDMA Modem -> SAMSUNG CDMA Modem Driver Set -> SAMSUNG Mobile USB Modem -> SAMSUNG Mobile USB Modem Software -> SAMSUNG Mobile USB Modem 1.0 -> SAMSUNG Mobile USB Modem 1.0 Software -> Spybot - Search & Destroy_is1 -> Spybot - Search & Destroy 1.4 -> StuffPlug3 -> StuffPlug 3 -> StuffPlug-NG -> StuffPlug-NG (Messenger Plus! Plugins) -> SuperCopier2 -> SuperCopier2 -> SynTPDeinstKey -> Synaptics Pointing Device Driver -> Vodafone 804SS USB driver -> Vodafone 804SS USB driver Software -> WGA -> Windows Genuine Advantage Validation Tool (KB892130) -> WgaNotify -> Windows Genuine Advantage Notifications (KB905474) -> Windows Live Toolbar -> Windows Live Toolbar -> Windows Media Format Runtime -> Windows Media Format 11 runtime -> Windows Media Player -> Lecteur Windows Media 11 -> WinRAR archiver -> Archiveur WinRAR -> WinZip -> WinZip -> WMFDist11 -> Windows Media Format 11 runtime -> wmp11 -> Windows Media Player 11 -> Wudf01000 -> Microsoft User-Mode Driver Framework Feature Pack 1.0 -> Yahoo! Companion -> Yahoo! Toolbar avec bloqueur de fenêtres pop-up -> Yahoo! Toolbar -> Yahoo! Toolbar -> [Files/Folders - Created Within 60 days] hiberfil.sys -> %SystemDrive%\hiberfil.sys -> [Ver = | Size = 526897152 bytes | Created Date = 02/01/1601 23:00:00 | Attr = HS] Config.Msi -> %SystemDrive%\Config.Msi -> [Folder | Created Date = 25/08/2007 16:23:33 | Attr = HS] WA7PV -> %SystemDrive%\WA7PV -> [Folder | Created Date = 25/08/2007 15:24:29 | Attr = HS] sqmnoopt06.sqm -> %SystemDrive%\sqmnoopt06.sqm -> [Ver = | Size = 244 bytes | Created Date = 13/07/2007 23:24:37 | Attr = H ] sqmdata06.sqm -> %SystemDrive%\sqmdata06.sqm -> [Ver = | Size = 268 bytes | Created Date = 13/07/2007 23:24:37 | Attr = H ] sqmnoopt07.sqm -> %SystemDrive%\sqmnoopt07.sqm -> [Ver = | Size = 244 bytes | Created Date = 14/07/2007 10:49:08 | Attr = H ] sqmdata07.sqm -> %SystemDrive%\sqmdata07.sqm -> [Ver = | Size = 268 bytes | Created Date = 14/07/2007 10:49:08 | Attr = H ] sqmnoopt08.sqm -> %SystemDrive%\sqmnoopt08.sqm -> [Ver = | Size = 244 bytes | Created Date = 16/07/2007 11:10:49 | Attr = H ] sqmdata08.sqm -> %SystemDrive%\sqmdata08.sqm -> [Ver = | Size = 268 bytes | Created Date = 16/07/2007 11:10:49 | Attr = H ] sqmnoopt09.sqm -> %SystemDrive%\sqmnoopt09.sqm -> [Ver = | Size = 244 bytes | Created Date = 17/07/2007 14:29:08 | Attr = H ] sqmdata09.sqm -> %SystemDrive%\sqmdata09.sqm -> [Ver = | Size = 268 bytes | Created Date = 17/07/2007 14:29:08 | Attr = H ] sqmnoopt10.sqm -> %SystemDrive%\sqmnoopt10.sqm -> [Ver = | Size = 244 bytes | Created Date = 18/07/2007 14:05:32 | Attr = H ] sqmdata10.sqm -> %SystemDrive%\sqmdata10.sqm -> [Ver = | Size = 268 bytes | Created Date = 18/07/2007 14:05:32 | Attr = H ] ie7 -> %SystemRoot%\ie7 -> [Folder | Created Date = 04/09/2007 14:42:56 | Attr = H ] WBEM -> %SystemRoot%\WBEM -> [Folder | Created Date = 04/09/2007 14:44:29 | Attr = ] BDOSCAN8 -> %SystemRoot%\BDOSCAN8 -> [Folder | Created Date = 03/09/2007 12:53:21 | Attr = ] $NtUninstallKB936357$ -> %SystemRoot%\$NtUninstallKB936357$ -> [Folder | Created Date = 25/07/2007 04:43:47 | Attr = H ] $NtUninstallKB939683$ -> %SystemRoot%\$NtUninstallKB939683$ -> [Folder | Created Date = 04/09/2007 14:31:58 | Attr = H ] $NtUninstallKB937143_0$ -> %SystemRoot%\$NtUninstallKB937143_0$ -> [Folder | Created Date = 15/08/2007 17:55:41 | Attr = H ] $NtUninstallKB936782_WMP11$ -> %SystemRoot%\$NtUninstallKB936782_WMP11$ -> [Folder | Created Date = 16/08/2007 14:43:43 | Attr = H ] $NtUninstallKB938127$ -> %SystemRoot%\$NtUninstallKB938127$ -> [Folder | Created Date = 16/08/2007 14:44:24 | Attr = H ] $NtUninstallKB938829$ -> %SystemRoot%\$NtUninstallKB938829$ -> [Folder | Created Date = 16/08/2007 14:44:49 | Attr = H ] $NtUninstallKB921503$ -> %SystemRoot%\$NtUninstallKB921503$ -> [Folder | Created Date = 16/08/2007 14:45:15 | Attr = H ] $NtUninstallKB938828$ -> %SystemRoot%\$NtUninstallKB938828$ -> [Folder | Created Date = 16/08/2007 14:45:42 | Attr = H ] $NtUninstallKB936021$ -> %SystemRoot%\$NtUninstallKB936021$ -> [Folder | Created Date = 16/08/2007 14:46:09 | Attr = H ] $NtUninstallKB933360$ -> %SystemRoot%\$NtUninstallKB933360$ -> [Folder | Created Date = 01/09/2007 21:58:39 | Attr = H ] $NtUninstallKB904942$ -> %SystemRoot%\$NtUninstallKB904942$ -> [Folder | Created Date = 04/09/2007 14:40:39 | Attr = H ] $NtUninstallKB914440$ -> %SystemRoot%\$NtUninstallKB914440$ -> [Folder | Created Date = 04/09/2007 14:40:45 | Attr = H ] network diagnostic -> %SystemRoot%\network diagnostic -> [Folder | Created Date = 04/09/2007 14:40:46 | Attr = ] $NtUninstallKB937143$ -> %SystemRoot%\$NtUninstallKB937143$ -> [Folder | Created Date = 04/09/2007 14:40:50 | Attr = H ] $NtUninstallKB915865$ -> %SystemRoot%\$NtUninstallKB915865$ -> [Folder | Created Date = 04/09/2007 14:41:53 | Attr = H ] $NtServicePackUninstallNLSDownlevelMapping$ -> %SystemRoot%\$NtServicePackUninstallNLSDownlevelMapping$ -> [Folder | Created Date = 04/09/2007 14:42:23 | Attr = H ] $NtServicePackUninstallIDNMitigationAPIs$ -> %SystemRoot%\$NtServicePackUninstallIDNMitigationAPIs$ -> [Folder | Created Date = 04/09/2007 14:42:43 | Attr = H ] Vérifier les mises à jour de Windows Live Toolbar.job -> %SystemRoot%\tasks\Vérifier les mises à jour de Windows Live Toolbar.job -> [Ver = | Size = 274 bytes | Created Date = 04/09/2007 14:52:44 | Attr = ] divxsm.tlb -> %System32%\divxsm.tlb -> [Ver = | Size = 4816 bytes | Created Date = 09/07/2007 20:07:53 | Attr = ] dpl100.dll -> %System32%\dpl100.dll -> DivX, Inc. [Ver = 1, 2, 0, 12 | Size = 73728 bytes | Created Date = 09/07/2007 20:05:58 | Attr = ] dpu11.dll -> %System32%\dpu11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 294912 bytes | Created Date = 09/07/2007 20:05:56 | Attr = ] dpu10.dll -> %System32%\dpu10.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 294912 bytes | Created Date = 09/07/2007 20:05:56 | Attr = ] dpuGUI11.dll -> %System32%\dpuGUI11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 593920 bytes | Created Date = 09/07/2007 20:05:56 | Attr = ] dpus11.dll -> %System32%\dpus11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 344064 bytes | Created Date = 09/07/2007 20:05:56 | Attr = ] dpv11.dll -> %System32%\dpv11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 57344 bytes | Created Date = 09/07/2007 20:05:56 | Attr = ] dtu100.dll -> %System32%\dtu100.dll -> DivX, Inc. [Ver = 1, 2, 0, 12 | Size = 196608 bytes | Created Date = 09/07/2007 20:05:58 | Attr = ] libdivx.dll -> %System32%\libdivx.dll -> The OpenSSL Project, http://www.openssl.org/ [Ver = 0.9.8b | Size = 1044480 bytes | Created Date = 09/07/2007 20:07:44 | Attr = ] qt-dx331.dll -> %System32%\qt-dx331.dll -> [Ver = | Size = 3596288 bytes | Created Date = 09/07/2007 20:07:50 | Attr = ] ssldivx.dll -> %System32%\ssldivx.dll -> The OpenSSL Project, http://www.openssl.org/ [Ver = 0.9.8b | Size = 200704 bytes | Created Date = 09/07/2007 20:07:44 | Attr = ] tmp.reg -> %System32%\tmp.reg -> [Ver = | Size = 6072 bytes | Created Date = 02/09/2007 23:15:38 | Attr = ] dpufr.qm -> %System32%\dpufr.qm -> [Ver = | Size = 8835 bytes | Created Date = 09/07/2007 20:05:13 | Attr = ] actskin4.ocx -> %System32%\actskin4.ocx -> [Ver = 4, 2, 7, 3 | Size = 380928 bytes | Created Date = 03/09/2007 18:23:00 | Attr = ] DivX.dll -> %System32%\DivX.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 740442 bytes | Created Date = 09/07/2007 20:05:54 | Attr = ] dtu_fr.qm -> %System32%\dtu_fr.qm -> [Ver = | Size = 3162 bytes | Created Date = 09/07/2007 20:05:13 | Attr = ] dsm_fr.qm -> %System32%\dsm_fr.qm -> [Ver = | Size = 9878 bytes | Created Date = 09/07/2007 20:07:53 | Attr = ] dpuGUI10.dll -> %System32%\dpuGUI10.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 53248 bytes | Created Date = 09/07/2007 20:05:57 | Attr = ] divx_xx0c.dll -> %System32%\divx_xx0c.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 823296 bytes | Created Date = 09/07/2007 20:05:54 | Attr = ] px.dll -> %System32%\px.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 527096 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] pxmas.dll -> %System32%\pxmas.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 183032 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] pxwave.dll -> %System32%\pxwave.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 379640 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] vxblock.dll -> %System32%\vxblock.dll -> Sonic Solutions [Ver = 1.00.74a | Size = 39672 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] divx_xx07.dll -> %System32%\divx_xx07.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 823296 bytes | Created Date = 09/07/2007 20:05:54 | Attr = ] pxdrv.dll -> %System32%\pxdrv.dll -> Sonic Solutions [Ver = 1.02.01a | Size = 502520 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] divx_xx11.dll -> %System32%\divx_xx11.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 802816 bytes | Created Date = 09/07/2007 20:05:54 | Attr = ] pxsfs.dll -> %System32%\pxsfs.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 1329912 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] MRT.INI -> %System32%\MRT.INI -> [Ver = | Size = 118 bytes | Created Date = 15/08/2007 17:56:59 | Attr = ] pxafs.dll -> %System32%\pxafs.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 129784 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] pxhpinst.exe -> %System32%\pxhpinst.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 72440 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] DivXsm.exe -> %System32%\DivXsm.exe -> DivX Inc. [Ver = 6, 6, 1, 4 | Size = 524288 bytes | Created Date = 09/07/2007 20:07:53 | Attr = ] Divxdec.ax -> %System32%\Divxdec.ax -> DivX, Inc. [Ver = 6.6.1.4 | Size = 638976 bytes | Created Date = 09/07/2007 20:05:49 | Attr = ] DivXMedia.ax -> %System32%\DivXMedia.ax -> DivXNetworks [Ver = 0.0.0.028 | Size = 352401 bytes | Created Date = 09/07/2007 20:05:48 | Attr = ] pxinsa64.exe -> %System32%\pxinsa64.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 64760 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] pxinsi64.exe -> %System32%\pxinsi64.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 118520 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] pxcpya64.exe -> %System32%\pxcpya64.exe -> Sonic Solutions [Ver = 1.00.39a | Size = 64760 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] DivXWMPExtType.dll -> %System32%\DivXWMPExtType.dll -> [Ver = | Size = 12288 bytes | Created Date = 09/07/2007 20:05:28 | Attr = ] DivXCodecUpdateChecker.exe -> %System32%\DivXCodecUpdateChecker.exe -> DivX, Inc. [Ver = 6, 2, 5, 7 | Size = 124472 bytes | Created Date = 09/07/2007 20:05:28 | Attr = ] pxcpyi64.exe -> %System32%\pxcpyi64.exe -> Sonic Solutions [Ver = 1.00.39a | Size = 116472 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] gpedit.msc -> %System32%\gpedit.msc -> [Ver = | Size = 34352 bytes | Created Date = 02/09/2007 19:40:02 | Attr = ] ldinfo.ldr -> %System32%\ldinfo.ldr -> [Ver = | Size = 745 bytes | Created Date = 21/08/2007 16:46:02 | Attr = ] aswBoot.exe -> %System32%\aswBoot.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 783224 bytes | Created Date = 03/09/2007 18:23:00 | Attr = ] AvastSS.scr -> %System32%\AvastSS.scr -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 95608 bytes | Created Date = 03/09/2007 18:23:05 | Attr = ] ActiveScan -> %System32%\ActiveScan -> [Folder | Created Date = 03/09/2007 22:08:15 | Attr = ] GroupPolicy -> %System32%\GroupPolicy -> [Folder | Created Date = 02/09/2007 19:40:02 | Attr = H ] pavas.ico -> %System32%\pavas.ico -> [Ver = | Size = 30590 bytes | Created Date = 03/09/2007 22:08:18 | Attr = ] Help.ico -> %System32%\Help.ico -> [Ver = | Size = 1406 bytes | Created Date = 03/09/2007 22:08:21 | Attr = ] Uninstall.ico -> %System32%\Uninstall.ico -> [Ver = | Size = 2550 bytes | Created Date = 03/09/2007 22:08:21 | Attr = ] ZPORT4AS.dll -> %System32%\ZPORT4AS.dll -> [Ver = | Size = 11776 bytes | Created Date = 03/09/2007 22:08:56 | Attr = ] asuninst.exe -> %System32%\asuninst.exe -> Panda Software [Ver = 1, 0, 0, 2 | Size = 73728 bytes | Created Date = 03/09/2007 22:08:56 | Attr = ] fr-fr -> %System32%\fr-fr -> [Folder | Created Date = 04/09/2007 14:44:28 | Attr = ] cdralw2k.sys -> %System32%\drivers\cdralw2k.sys -> Sonic Solutions [Ver = 8.0.0.212 | Size = 2560 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] cdr4_xp.sys -> %System32%\drivers\cdr4_xp.sys -> Sonic Solutions [Ver = 8.0.0.212 | Size = 2432 bytes | Created Date = 28/07/2007 02:19:41 | Attr = ] PxHelp20.sys -> %System32%\drivers\PxHelp20.sys -> Sonic Solutions [Ver = 3.00.43J | Size = 36624 bytes | Created Date = 28/07/2007 02:19:41 | Attr = ] klif.cab -> %System32%\drivers\klif.cab -> [Ver = | Size = 78123 bytes | Created Date = 25/08/2007 16:23:22 | Attr = ] aswmon.sys -> %System32%\drivers\aswmon.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 92848 bytes | Created Date = 03/09/2007 18:23:05 | Attr = ] aswmon2.sys -> %System32%\drivers\aswmon2.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 94416 bytes | Created Date = 03/09/2007 18:23:05 | Attr = ] aavmker4.sys -> %System32%\drivers\aavmker4.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 26624 bytes | Created Date = 03/09/2007 18:23:06 | Attr = ] aswTdi.sys -> %System32%\drivers\aswTdi.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 42912 bytes | Created Date = 03/09/2007 18:23:07 | Attr = ] aswRdr.sys -> %System32%\drivers\aswRdr.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 23152 bytes | Created Date = 03/09/2007 18:23:08 | Attr = ] hosts.20070902-203346.backup -> %System32%\drivers\etc\hosts.20070902-203346.backup -> [Ver = | Size = 659 bytes | Created Date = 02/09/2007 19:33:46 | Attr = R ] Grisoft -> %AllUsersAppData%\Grisoft -> [Folder | Created Date = 01/09/2007 22:29:48 | Attr = ] Lavasoft -> %AllUsersAppData%\Lavasoft -> [Folder | Created Date = 01/09/2007 23:20:50 | Attr = ] Spybot - Search & Destroy -> %AllUsersAppData%\Spybot - Search & Destroy -> [Folder | Created Date = 02/09/2007 18:30:46 | Attr = ] Windows Live Toolbar -> %AllUsersAppData%\Windows Live Toolbar -> [Folder | Created Date = 04/09/2007 14:52:47 | Attr = ] DivX -> %UserAppData%\DivX -> [Folder | Created Date = 28/07/2007 02:24:13 | Attr = ] Lavasoft -> %UserAppData%\Lavasoft -> [Folder | Created Date = 02/09/2007 16:05:20 | Attr = ] Mes Historiques de Conversation -> %UserDocuments%\Mes Historiques de Conversation -> [Folder | Created Date = 25/07/2007 19:17:57 | Attr = ] QSDQDQSD.doc -> %UserDocuments%\QSDQDQSD.doc -> [Ver = | Size = 858 bytes | Created Date = 21/08/2007 20:22:28 | Attr = ] je mappelle Véro.doc -> %UserDocuments%\je mappelle Véro.doc -> [Ver = | Size = 940 bytes | Created Date = 21/08/2007 20:26:44 | Attr = ] mémoire jp.wps -> %UserDocuments%\mémoire jp.wps -> [Ver = | Size = 166400 bytes | Created Date = 21/08/2007 20:42:22 | Attr = ] Document.rtf -> %UserDocuments%\Document.rtf -> [Ver = | Size = 264 bytes | Created Date = 21/08/2007 21:10:17 | Attr = ] Mes dossiers de partage.lnk -> %UserDocuments%\Mes dossiers de partage.lnk -> [Ver = | Size = 849 bytes | Created Date = 24/08/2007 22:18:08 | Attr = ] DivX Converter.lnk -> %AllUsersDesktop%\DivX Converter.lnk -> [Ver = | Size = 714 bytes | Created Date = 28/07/2007 02:19:38 | Attr = ] DivX Player.lnk -> %AllUsersDesktop%\DivX Player.lnk -> [Ver = | Size = 703 bytes | Created Date = 28/07/2007 02:19:53 | Attr = ] Ad-Aware SE Personal.lnk -> %AllUsersDesktop%\Ad-Aware SE Personal.lnk -> [Ver = | Size = 749 bytes | Created Date = 02/09/2007 16:05:11 | Attr = ] avast! Antivirus.lnk -> %AllUsersDesktop%\avast! Antivirus.lnk -> [Ver = | Size = 1617 bytes | Created Date = 03/09/2007 18:23:08 | Attr = ] DivX Movies.lnk -> %UserDesktop%\DivX Movies.lnk -> [Ver = | Size = 1514 bytes | Created Date = 28/07/2007 02:19:39 | Attr = ] kav700123fr_1645.exe -> %UserDesktop%\kav700123fr_1645.exe -> Kaspersky Lab France [Ver = 7.0.0.123 | Size = 24708797 bytes | Created Date = 25/08/2007 16:13:47 | Attr = ] Quarantaine_Voir -> %UserDesktop%\Quarantaine_Voir -> [Folder | Created Date = 01/09/2007 21:17:17 | Attr = ] Spybot - Search & Destroy.lnk -> %UserDesktop%\Spybot - Search & Destroy.lnk -> [Ver = | Size = 871 bytes | Created Date = 02/09/2007 18:30:46 | Attr = ] Panda ActiveScan.lnk -> %UserDesktop%\Panda ActiveScan.lnk -> [Ver = | Size = 1132 bytes | Created Date = 03/09/2007 22:56:12 | Attr = ] [Files/Folders - Modified Within 60 days] hiberfil.sys -> %SystemDrive%\hiberfil.sys -> [Ver = | Size = 526897152 bytes | Modified Date = 04/09/2007 15:46:02 | Attr = HS] Config.Msi -> %SystemDrive%\Config.Msi -> [Folder | Modified Date = 25/08/2007 17:23:34 | Attr = HS] WA7PV -> %SystemDrive%\WA7PV -> [Folder | Modified Date = 25/08/2007 16:24:30 | Attr = HS] bOoT.iNi -> %SystemDrive%\bOoT.iNi -> [Ver = | Size = 216 bytes | Modified Date = 03/09/2007 17:17:02 | Attr = RHS] sqmnoopt06.sqm -> %SystemDrive%\sqmnoopt06.sqm -> [Ver = | Size = 244 bytes | Modified Date = 14/07/2007 00:24:38 | Attr = H ] sqmdata06.sqm -> %SystemDrive%\sqmdata06.sqm -> [Ver = | Size = 268 bytes | Modified Date = 14/07/2007 00:24:38 | Attr = H ] sqmnoopt07.sqm -> %SystemDrive%\sqmnoopt07.sqm -> [Ver = | Size = 244 bytes | Modified Date = 14/07/2007 11:49:10 | Attr = H ] sqmdata07.sqm -> %SystemDrive%\sqmdata07.sqm -> [Ver = | Size = 268 bytes | Modified Date = 14/07/2007 11:49:10 | Attr = H ] sqmnoopt08.sqm -> %SystemDrive%\sqmnoopt08.sqm -> [Ver = | Size = 244 bytes | Modified Date = 16/07/2007 12:10:50 | Attr = H ] sqmdata08.sqm -> %SystemDrive%\sqmdata08.sqm -> [Ver = | Size = 268 bytes | Modified Date = 16/07/2007 12:10:50 | Attr = H ] sqmnoopt09.sqm -> %SystemDrive%\sqmnoopt09.sqm -> [Ver = | Size = 244 bytes | Modified Date = 17/07/2007 15:29:10 | Attr = H ] sqmdata09.sqm -> %SystemDrive%\sqmdata09.sqm -> [Ver = | Size = 268 bytes | Modified Date = 17/07/2007 15:29:10 | Attr = H ] sqmnoopt10.sqm -> %SystemDrive%\sqmnoopt10.sqm -> [Ver = | Size = 244 bytes | Modified Date = 18/07/2007 15:05:34 | Attr = H ] sqmdata10.sqm -> %SystemDrive%\sqmdata10.sqm -> [Ver = | Size = 268 bytes | Modified Date = 18/07/2007 15:05:34 | Attr = H ] system.ini -> %SystemRoot%\system.ini -> [Ver = | Size = 227 bytes | Modified Date = 03/09/2007 17:17:02 | Attr = ] win.ini -> %SystemRoot%\win.ini -> [Ver = | Size = 614 bytes | Modified Date = 03/09/2007 23:16:46 | Attr = ] bootstat.dat -> %SystemRoot%\bootstat.dat -> [Ver = | Size = 2048 bytes | Modified Date = 04/09/2007 15:46:04 | Attr = S] ComponentList.xml -> %SystemRoot%\ComponentList.xml -> [Ver = | Size = 97 bytes | Modified Date = 03/09/2007 00:36:42 | Attr = ] imsins.BAK -> %SystemRoot%\imsins.BAK -> [Ver = | Size = 1355 bytes | Modified Date = 04/09/2007 15:42:46 | Attr = ] ie7 -> %SystemRoot%\ie7 -> [Folder | Modified Date = 04/09/2007 15:42:58 | Attr = H ] WBEM -> %SystemRoot%\WBEM -> [Folder | Modified Date = 04/09/2007 15:44:30 | Attr = ] BDOSCAN8 -> %SystemRoot%\BDOSCAN8 -> [Folder | Modified Date = 03/09/2007 13:53:22 | Attr = ] $NtUninstallKB936357$ -> %SystemRoot%\$NtUninstallKB936357$ -> [Folder | Modified Date = 25/07/2007 05:43:48 | Attr = H ] $NtUninstallKB939683$ -> %SystemRoot%\$NtUninstallKB939683$ -> [Folder | Modified Date = 04/09/2007 15:32:00 | Attr = H ] $NtUninstallKB937143_0$ -> %SystemRoot%\$NtUninstallKB937143_0$ -> [Folder | Modified Date = 15/08/2007 18:55:42 | Attr = H ] $NtUninstallKB936782_WMP11$ -> %SystemRoot%\$NtUninstallKB936782_WMP11$ -> [Folder | Modified Date = 16/08/2007 15:43:44 | Attr = H ] $NtUninstallKB938127$ -> %SystemRoot%\$NtUninstallKB938127$ -> [Folder | Modified Date = 16/08/2007 15:44:26 | Attr = H ] $NtUninstallKB938829$ -> %SystemRoot%\$NtUninstallKB938829$ -> [Folder | Modified Date = 16/08/2007 15:44:50 | Attr = H ] $NtUninstallKB921503$ -> %SystemRoot%\$NtUninstallKB921503$ -> [Folder | Modified Date = 16/08/2007 15:45:16 | Attr = H ] $NtUninstallKB938828$ -> %SystemRoot%\$NtUninstallKB938828$ -> [Folder | Modified Date = 16/08/2007 15:45:44 | Attr = H ] $NtUninstallKB936021$ -> %SystemRoot%\$NtUninstallKB936021$ -> [Folder | Modified Date = 16/08/2007 15:46:10 | Attr = H ] $NtUninstallKB933360$ -> %SystemRoot%\$NtUninstallKB933360$ -> [Folder | Modified Date = 01/09/2007 22:58:40 | Attr = H ] $NtUninstallKB904942$ -> %SystemRoot%\$NtUninstallKB904942$ -> [Folder | Modified Date = 04/09/2007 15:40:40 | Attr = H ] $NtUninstallKB914440$ -> %SystemRoot%\$NtUninstallKB914440$ -> [Folder | Modified Date = 04/09/2007 15:40:46 | Attr = H ] network diagnostic -> %SystemRoot%\network diagnostic -> [Folder | Modified Date = 04/09/2007 15:40:48 | Attr = ] $NtUninstallKB937143$ -> %SystemRoot%\$NtUninstallKB937143$ -> [Folder | Modified Date = 04/09/2007 15:40:52 | Attr = H ] $NtUninstallKB915865$ -> %SystemRoot%\$NtUninstallKB915865$ -> [Folder | Modified Date = 04/09/2007 15:41:54 | Attr = H ] $NtServicePackUninstallNLSDownlevelMapping$ -> %SystemRoot%\$NtServicePackUninstallNLSDownlevelMapping$ -> [Folder | Modified Date = 04/09/2007 15:42:24 | Attr = H ] $NtServicePackUninstallIDNMitigationAPIs$ -> %SystemRoot%\$NtServicePackUninstallIDNMitigationAPIs$ -> [Folder | Modified Date = 04/09/2007 15:42:44 | Attr = H ] SA.DAT -> %SystemRoot%\tasks\SA.DAT -> [Ver = | Size = 6 bytes | Modified Date = 04/09/2007 15:46:12 | Attr = H ] Vérifier les mises à jour de Windows Live Toolbar.job -> %SystemRoot%\tasks\Vérifier les mises à jour de Windows Live Toolbar.job -> [Ver = | Size = 274 bytes | Modified Date = 04/09/2007 15:52:46 | Attr = ] wpa.dbl -> %System32%\wpa.dbl -> [Ver = | Size = 1158 bytes | Modified Date = 04/09/2007 15:46:38 | Attr = ] perfc009.dat -> %System32%\perfc009.dat -> [Ver = | Size = 40998 bytes | Modified Date = 25/07/2007 01:17:54 | Attr = ] perfh009.dat -> %System32%\perfh009.dat -> [Ver = | Size = 313280 bytes | Modified Date = 25/07/2007 01:17:54 | Attr = ] perfc00C.dat -> %System32%\perfc00C.dat -> [Ver = | Size = 49924 bytes | Modified Date = 25/07/2007 01:17:54 | Attr = ] perfh00C.dat -> %System32%\perfh00C.dat -> [Ver = | Size = 369864 bytes | Modified Date = 25/07/2007 01:17:54 | Attr = ] divxsm.tlb -> %System32%\divxsm.tlb -> [Ver = | Size = 4816 bytes | Modified Date = 09/07/2007 21:07:54 | Attr = ] dpl100.dll -> %System32%\dpl100.dll -> DivX, Inc. [Ver = 1, 2, 0, 12 | Size = 73728 bytes | Modified Date = 09/07/2007 21:06:00 | Attr = ] dpu11.dll -> %System32%\dpu11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 294912 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ] dpu10.dll -> %System32%\dpu10.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 294912 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ] dpuGUI11.dll -> %System32%\dpuGUI11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 593920 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ] dpus11.dll -> %System32%\dpus11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 344064 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ] dpv11.dll -> %System32%\dpv11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 57344 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ] dtu100.dll -> %System32%\dtu100.dll -> DivX, Inc. [Ver = 1, 2, 0, 12 | Size = 196608 bytes | Modified Date = 09/07/2007 21:06:00 | Attr = ] libdivx.dll -> %System32%\libdivx.dll -> The OpenSSL Project, http://www.openssl.org/ [Ver = 0.9.8b | Size = 1044480 bytes | Modified Date = 09/07/2007 21:07:46 | Attr = ] qt-dx331.dll -> %System32%\qt-dx331.dll -> [Ver = | Size = 3596288 bytes | Modified Date = 09/07/2007 21:07:52 | Attr = ] ssldivx.dll -> %System32%\ssldivx.dll -> The OpenSSL Project, http://www.openssl.org/ [Ver = 0.9.8b | Size = 200704 bytes | Modified Date = 09/07/2007 21:07:46 | Attr = ] tmp.reg -> %System32%\tmp.reg -> [Ver = | Size = 6072 bytes | Modified Date = 03/09/2007 00:18:54 | Attr = ] dpufr.qm -> %System32%\dpufr.qm -> [Ver = | Size = 8835 bytes | Modified Date = 09/07/2007 21:05:14 | Attr = ] CONFIG.NT -> %System32%\CONFIG.NT -> [Ver = | Size = 3121 bytes | Modified Date = 03/09/2007 19:23:08 | Attr = ] PerfStringBackup.INI -> %System32%\PerfStringBackup.INI -> [Ver = | Size = 779768 bytes | Modified Date = 25/07/2007 01:17:54 | Attr = ] eRLog.ini -> %System32%\eRLog.ini -> [Ver = | Size = 0 bytes | Modified Date = 03/09/2007 00:37:02 | Attr = ] DivX.dll -> %System32%\DivX.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 740442 bytes | Modified Date = 09/07/2007 21:05:56 | Attr = ] dtu_fr.qm -> %System32%\dtu_fr.qm -> [Ver = | Size = 3162 bytes | Modified Date = 09/07/2007 21:05:14 | Attr = ] dsm_fr.qm -> %System32%\dsm_fr.qm -> [Ver = | Size = 9878 bytes | Modified Date = 09/07/2007 21:07:54 | Attr = ] dpuGUI10.dll -> %System32%\dpuGUI10.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 53248 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ] divx_xx0c.dll -> %System32%\divx_xx0c.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 823296 bytes | Modified Date = 09/07/2007 21:05:56 | Attr = ] px.dll -> %System32%\px.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 527096 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] pxmas.dll -> %System32%\pxmas.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 183032 bytes | Modified Date = 09/07/2007 21:07:50 | Attr = ] pxwave.dll -> %System32%\pxwave.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 379640 bytes | Modified Date = 09/07/2007 21:07:50 | Attr = ] vxblock.dll -> %System32%\vxblock.dll -> Sonic Solutions [Ver = 1.00.74a | Size = 39672 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] divx_xx07.dll -> %System32%\divx_xx07.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 823296 bytes | Modified Date = 09/07/2007 21:05:56 | Attr = ] pxdrv.dll -> %System32%\pxdrv.dll -> Sonic Solutions [Ver = 1.02.01a | Size = 502520 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] divx_xx11.dll -> %System32%\divx_xx11.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 802816 bytes | Modified Date = 09/07/2007 21:05:56 | Attr = ] pxsfs.dll -> %System32%\pxsfs.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 1329912 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] MRT.INI -> %System32%\MRT.INI -> [Ver = | Size = 118 bytes | Modified Date = 15/08/2007 18:57:00 | Attr = ] pxafs.dll -> %System32%\pxafs.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 129784 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] pxhpinst.exe -> %System32%\pxhpinst.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 72440 bytes | Modified Date = 09/07/2007 21:07:50 | Attr = ] DivXsm.exe -> %System32%\DivXsm.exe -> DivX Inc. [Ver = 6, 6, 1, 4 | Size = 524288 bytes | Modified Date = 09/07/2007 21:07:54 | Attr = ] Divxdec.ax -> %System32%\Divxdec.ax -> DivX, Inc. [Ver = 6.6.1.4 | Size = 638976 bytes | Modified Date = 09/07/2007 21:05:50 | Attr = ] DivXMedia.ax -> %System32%\DivXMedia.ax -> DivXNetworks [Ver = 0.0.0.028 | Size = 352401 bytes | Modified Date = 09/07/2007 21:05:50 | Attr = ] pxinsa64.exe -> %System32%\pxinsa64.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 64760 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] pxinsi64.exe -> %System32%\pxinsi64.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 118520 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] pxcpya64.exe -> %System32%\pxcpya64.exe -> Sonic Solutions [Ver = 1.00.39a | Size = 64760 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] DivXWMPExtType.dll -> %System32%\DivXWMPExtType.dll -> [Ver = | Size = 12288 bytes | Modified Date = 09/07/2007 21:05:30 | Attr = ] DivXCodecUpdateChecker.exe -> %System32%\DivXCodecUpdateChecker.exe -> DivX, Inc. [Ver = 6, 2, 5, 7 | Size = 124472 bytes | Modified Date = 09/07/2007 21:05:30 | Attr = ] pxcpyi64.exe -> %System32%\pxcpyi64.exe -> Sonic Solutions [Ver = 1.00.39a | Size = 116472 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] ldinfo.ldr -> %System32%\ldinfo.ldr -> [Ver = | Size = 745 bytes | Modified Date = 21/08/2007 17:47:20 | Attr = ] aswBoot.exe -> %System32%\aswBoot.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 783224 bytes | Modified Date = 28/07/2007 00:07:22 | Attr = ] AvastSS.scr -> %System32%\AvastSS.scr -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 95608 bytes | Modified Date = 27/07/2007 23:57:50 | Attr = ] ActiveScan -> %System32%\ActiveScan -> [Folder | Modified Date = 03/09/2007 23:08:16 | Attr = ] GroupPolicy -> %System32%\GroupPolicy -> [Folder | Modified Date = 02/09/2007 20:40:04 | Attr = H ] pavas.ico -> %System32%\pavas.ico -> [Ver = | Size = 30590 bytes | Modified Date = 03/09/2007 23:08:22 | Attr = ] Help.ico -> %System32%\Help.ico -> [Ver = | Size = 1406 bytes | Modified Date = 03/09/2007 23:08:22 | Attr = ] Uninstall.ico -> %System32%\Uninstall.ico -> [Ver = | Size = 2550 bytes | Modified Date = 03/09/2007 23:08:24 | Attr = ] fr-fr -> %System32%\fr-fr -> [Folder | Modified Date = 04/09/2007 15:44:30 | Attr = ] cdralw2k.sys -> %System32%\drivers\cdralw2k.sys -> Sonic Solutions [Ver = 8.0.0.212 | Size = 2560 bytes | Modified Date = 09/07/2007 21:07:50 | Attr = ] cdr4_xp.sys -> %System32%\drivers\cdr4_xp.sys -> Sonic Solutions [Ver = 8.0.0.212 | Size = 2432 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] PxHelp20.sys -> %System32%\drivers\PxHelp20.sys -> Sonic Solutions [Ver = 3.00.43J | Size = 36624 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] klif.cab -> %System32%\drivers\klif.cab -> [Ver = | Size = 78123 bytes | Modified Date = 25/08/2007 17:23:24 | Attr = ] aswmon.sys -> %System32%\drivers\aswmon.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 92848 bytes | Modified Date = 28/07/2007 00:02:50 | Attr = ] aswmon2.sys -> %System32%\drivers\aswmon2.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 94416 bytes | Modified Date = 28/07/2007 00:02:34 | Attr = ] aavmker4.sys -> %System32%\drivers\aavmker4.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 26624 bytes | Modified Date = 27/07/2007 23:58:36 | Attr = ] aswTdi.sys -> %System32%\drivers\aswTdi.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 42912 bytes | Modified Date = 27/07/2007 23:59:58 | Attr = ] aswRdr.sys -> %System32%\drivers\aswRdr.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 23152 bytes | Modified Date = 28/07/2007 00:00:40 | Attr = ] hosts.20070902-203346.backup -> %System32%\drivers\etc\hosts.20070902-203346.backup -> [Ver = | Size = 659 bytes | Modified Date = 02/09/2007 19:56:36 | Attr = R ] Grisoft -> %AllUsersAppData%\Grisoft -> [Folder | Modified Date = 01/09/2007 23:29:50 | Attr = ] Lavasoft -> %AllUsersAppData%\Lavasoft -> [Folder | Modified Date = 02/09/2007 00:20:52 | Attr = ] Spybot - Search & Destroy -> %AllUsersAppData%\Spybot - Search & Destroy -> [Folder | Modified Date = 02/09/2007 19:30:48 | Attr = ] Windows Live Toolbar -> %AllUsersAppData%\Windows Live Toolbar -> [Folder | Modified Date = 04/09/2007 15:52:48 | Attr = ] wklnhst.dat -> %UserAppData%\wklnhst.dat -> [Ver = | Size = 7828 bytes | Modified Date = 01/09/2007 15:56:20 | Attr = ] DivX -> %UserAppData%\DivX -> [Folder | Modified Date = 28/07/2007 03:24:14 | Attr = ] Lavasoft -> %UserAppData%\Lavasoft -> [Folder | Modified Date = 02/09/2007 17:05:22 | Attr = ] DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> %LocalAppData%\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [Ver = | Size = 86528 bytes | Modified Date = 25/08/2007 16:24:00 | Attr = ] Mes images -> %UserDocuments%\Mes images -> [Folder | Modified Date = 04/09/2007 15:46:30 | Attr = R ] Ma musique -> %UserDocuments%\Ma musique -> [Folder | Modified Date = 04/09/2007 15:46:30 | Attr = R ] desktop.ini -> %UserDocuments%\desktop.ini -> [Ver = | Size = 173 bytes | Modified Date = 04/09/2007 15:46:30 | Attr = HS] Mes fichiers reçus -> %UserDocuments%\Mes fichiers reçus -> [Folder | Modified Date = 28/07/2007 19:21:18 | Attr = ] Droppix Recorder projects -> %UserDocuments%\Droppix Recorder projects -> [Folder | Modified Date = 22/08/2007 05:08:10 | Attr = R ] Droppix Label Maker projects -> %UserDocuments%\Droppix Label Maker projects -> [Folder | Modified Date = 01/08/2007 19:48:08 | Attr = R ] Droppix Label Maker Misc -> %UserDocuments%\Droppix Label Maker Misc -> [Folder | Modified Date = 01/08/2007 19:48:08 | Attr = R ] Mes Historiques de Conversation -> %UserDocuments%\Mes Historiques de Conversation -> [Folder | Modified Date = 25/07/2007 20:17:58 | Attr = ] QSDQDQSD.doc -> %UserDocuments%\QSDQDQSD.doc -> [Ver = | Size = 858 bytes | Modified Date = 21/08/2007 21:22:30 | Attr = ] je mappelle Véro.doc -> %UserDocuments%\je mappelle Véro.doc -> [Ver = | Size = 940 bytes | Modified Date = 21/08/2007 21:26:46 | Attr = ] mémoire jp.wps -> %UserDocuments%\mémoire jp.wps -> [Ver = | Size = 166400 bytes | Modified Date = 21/08/2007 21:42:24 | Attr = ] Document.rtf -> %UserDocuments%\Document.rtf -> [Ver = | Size = 264 bytes | Modified Date = 21/08/2007 22:10:18 | Attr = ] Mes dossiers de partage.lnk -> %UserDocuments%\Mes dossiers de partage.lnk -> [Ver = | Size = 849 bytes | Modified Date = 25/08/2007 17:40:42 | Attr = ] Espace Wanadoo.lnk -> %AllUsersDesktop%\Espace Wanadoo.lnk -> [Ver = | Size = 1422 bytes | Modified Date = 25/07/2007 01:11:42 | Attr = ] Mozilla Firefox.lnk -> %AllUsersDesktop%\Mozilla Firefox.lnk -> [Ver = | Size = 1510 bytes | Modified Date = 07/08/2007 17:08:56 | Attr = ] DivX Converter.lnk -> %AllUsersDesktop%\DivX Converter.lnk -> [Ver = | Size = 714 bytes | Modified Date = 28/07/2007 03:19:40 | Attr = ] DivX Player.lnk -> %AllUsersDesktop%\DivX Player.lnk -> [Ver = | Size = 703 bytes | Modified Date = 28/07/2007 03:19:54 | Attr = ] Ad-Aware SE Personal.lnk -> %AllUsersDesktop%\Ad-Aware SE Personal.lnk -> [Ver = | Size = 749 bytes | Modified Date = 02/09/2007 17:05:12 | Attr = ] avast! Antivirus.lnk -> %AllUsersDesktop%\avast! Antivirus.lnk -> [Ver = | Size = 1617 bytes | Modified Date = 03/09/2007 19:23:10 | Attr = ] DivX Movies.lnk -> %UserDesktop%\DivX Movies.lnk -> [Ver = | Size = 1514 bytes | Modified Date = 28/07/2007 03:19:56 | Attr = ] kav700123fr_1645.exe -> %UserDesktop%\kav700123fr_1645.exe -> Kaspersky Lab France [Ver = 7.0.0.123 | Size = 24708797 bytes | Modified Date = 25/08/2007 17:21:42 | Attr = ] Quarantaine_Voir -> %UserDesktop%\Quarantaine_Voir -> [Folder | Modified Date = 01/09/2007 22:17:18 | Attr = ] Spybot - Search & Destroy.lnk -> %UserDesktop%\Spybot - Search & Destroy.lnk -> [Ver = | Size = 871 bytes | Modified Date = 02/09/2007 23:47:04 | Attr = ] Panda ActiveScan.lnk -> %UserDesktop%\Panda ActiveScan.lnk -> [Ver = | Size = 1132 bytes | Modified Date = 03/09/2007 23:56:14 | Attr = ] [File String Scan - Non-Microsoft Only] aspack , -> %SystemRoot%\ACER.SCR -> [Ver = | Size = 187392 bytes | Modified Date = 14/06/2004 11:50:08 | Attr = ] PEC2 , -> %System32%\dfrg.msc -> [Ver = | Size = 41131 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] winsync , -> %System32%\wbdbase.deu -> [Ver = | Size = 1309184 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] WSUD , -> %System32%\ALSNDMGR.CPL -> Realtek Semiconductor Corp. [Ver = 2.2.0.43 | Size = 18706432 bytes | Modified Date = 18/04/2005 19:57:58 | Attr = ] Thawte Consulting , -> %System32%\XceedSco.dll -> Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com [Ver = 1.1.104.0 | Size = 266952 bytes | Modified Date = 19/05/2003 11:37:20 | Attr = ] Thawte Consulting , -> %System32%\XceedCry.dll -> Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com [Ver = 1.1.103.0 | Size = 516656 bytes | Modified Date = 02/02/2003 12:01:34 | Attr = ] PEC2 , PECompact2 , -> %System32%\DivX.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 740442 bytes | Modified Date = 09/07/2007 21:05:56 | Attr = ] UPX! , UPX0 , -> %System32%\aswBoot.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 783224 bytes | Modified Date = 28/07/2007 00:07:22 | Attr = ] File scan skipped for file %UserDocuments%\discours pr mon annif.zip -> File size too big (155237498 bytes) -> FSG! , -> %UserDocuments%\journée playa.zip -> [Ver = | Size = 8578334 bytes | Modified Date = 06/06/2006 22:02:18 | Attr = ] < End of report > Voici aussi le rapport de MNSFix du 03092007_22260112 : MSNFix 1.486 C:\Documents and Settings\v‚ronique darin\Bureau\Downloads\OutilsVirus\MSNFix\MSNFix Fix exécuté le 03/09/2007 - 22:22:20,96 By v‚ronique darin mode normal ************************ Recherche les fichiers présents ... C:\WINDOWS\album95.zip ... C:\WINDOWS\images021.zip ... C:\WINDOWS\images027.zip ... C:\WINDOWS\photos091.zip ... C:\WINDOWS\photos061.zip ... C:\WINDOWS\photo66.zip ... C:\WINDOWS\itsME28.zip ... C:\WINDOWS\itsME7.zip ************************ Recherche les dossiers présents ... C:\Temp\ ************************ Suppression des fichiers .. OK ... C:\WINDOWS\album95.zip .. OK ... C:\WINDOWS\images021.zip .. OK ... C:\WINDOWS\images027.zip .. OK ... C:\WINDOWS\photos091.zip .. OK ... C:\WINDOWS\photos061.zip .. OK ... C:\WINDOWS\photo66.zip .. OK ... C:\WINDOWS\itsME28.zip .. OK ... C:\WINDOWS\itsME7.zip ************************ Suppression des dossiers .. OK ... C:\Temp\ ************************ Nettoyage du registre ************************ Fichiers suspects Aucun Fichier trouvé Les fichiers et clés de registre supprimés ont été sauvegardés dans le fichier 03092007_22260112.zip ------------------------------------------------------------------------ Auteur : !aur3n7 Contact: http://changelog.fr ------------------------------------------------------------------------ --------------------------------------------- END --------------------------------------------- Et aussi le 04092007_15583228 : MSNFix 1.486 C:\Documents and Settings\v‚ronique darin\Bureau\Downloads\OutilsVirus\MSNFix\MSNFix Fix exécuté le 04/09/2007 - 15:57:53,28 By v‚ronique darin mode normal ************************ Recherche les fichiers présents Aucun Fichier trouvé ************************ Recherche les dossiers présents Aucun dossier trouvé ************************ Fichiers suspects Aucun Fichier trouvé ------------------------------------------------------------------------ Auteur : !aur3n7 Contact: http://changelog.fr ------------------------------------------------------------------------ --------------------------------------------- END --------------------------------------------- Merci @+
  5. ray97
    Charles, Voici le rapport de ActiveScan : Incident Statut Analyse Outil indésirable:application/need2find No Désinfecté hkey_local_machine\software\microsoft\windows\currentversion\uninstall\Need2FindBar Uninstall Outil indésirable:application/altnet No Désinfecté hkey_local_machine\software\microsoft\windows\currentversion\app management\arpcache\AltnetDM Adware:adware/instafinder No Désinfecté Registre Windows Adware:Adware/WinAntiVirus2007 No Désinfecté C:\WINDOWS\PSS\system.exeStartup Adware:Adware/WinAntiVirus2007 No Désinfecté C:\WINDOWS\PSS\autorun.exeCommon Startup Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\véronique darin\Local Settings\Temp\Cookies\véronique darin@xiti[1].txt Spyware:Cookie/888 No Désinfecté C:\Documents and Settings\véronique darin\Local Settings\Temp\Cookies\véronique darin@888[2].txt Spyware:Cookie/888 No Désinfecté C:\Documents and Settings\véronique darin\Local Settings\Temp\Cookies\véronique darin@888[1].txt Spyware:Cookie/Cassava No Désinfecté C:\Documents and Settings\véronique darin\Local Settings\Temp\Cookies\véronique darin@cassava[1].txt Adware:Adware/WinAntiVirus2007 No Désinfecté C:\Documents and Settings\véronique darin\Local Settings\Temp\ICD1.TMP\UWA7PV_0001_N96M0206NetInstaller.exe Outil indésirable:Application/Processor No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\Nouveau dossier (2)\SmitfraudFix\SmitfraudFix.zip[smitfraudFix/Process.exe] Outil indésirable:Application/SuperFast No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\Nouveau dossier (2)\SmitfraudFix\SmitfraudFix.zip[smitfraudFix/restart.exe] Outil indésirable:Application/Processor No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\Nouveau dossier (2)\SmitfraudFix\SmitfraudFix\Process.exe Outil indésirable:Application/SuperFast No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\Nouveau dossier (2)\SmitfraudFix\SmitfraudFix\RESTART.EXE Outil indésirable:Application/Pskill.K No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\Clean\CLEAN.ZIP[clean/pskill.exe] Outil indésirable:Application/Pskill.K No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\Clean\CLEAN\PSKILL.EXE Outil indésirable:Application/Processor No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\MSNFix\MSNFix.zip[MSNFix/incl/Process.exe] Outil indésirable:Application/Processor No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\MSNFix\MSNFix\INCL\Process.exe Spyware:Cookie/Overture No Désinfecté C:\Documents and Settings\véronique darin\Cookies\véronique darin@overture[2].txt Spyware:Cookie/Toplist No Désinfecté C:\Documents and Settings\véronique darin\Cookies\véronique darin@toplist[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\véronique darin\Application Data\Mozilla\Firefox\Profiles\kwu3ngb9.default\COOKIES.TXT[.xiti.com/] Spyware:Cookie/Advertising No Désinfecté C:\Documents and Settings\véronique darin\Application Data\Mozilla\Firefox\Profiles\kwu3ngb9.default\COOKIES.TXT[.advertising.com/] Adware:Adware/WinAntiVirus2007 No Désinfecté C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Démarrage\SYSTEM.EXE Adware:Adware/WinAntivirus2006 No Désinfecté C:\Program Files\Common Files\Companion Wizard\WapCHK.dll @+
  6. ray97
    re Charles , j'ai réalisé la première partie des manips. Au reboot, tout semble OK . J'accède de nouveau aux panneau de conf et autres. Voici le résultat du scan winpfind3u : [Registry - Non-Microsoft Only] Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoControlPanel deleted successfully. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\DisableRegistryTools deleted successfully. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\DisableTaskMgr deleted successfully. Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoControlPanel deleted successfully. Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoWindowsUpdate deleted successfully. Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableRegistryTools not found. Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableTaskMgr not found. Registry key ShellBrowser\\{74CC49F7-EB32-4A08-B204-948962A6E3DB} [HKLM]\ not found. Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\&Search deleted successfully. [Registry - Additional Scans - Non-Microsoft Only] Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\%windir%\system32\winav.exe deleted successfully. File %windir%\system32\winav.exe:*:Enabled:@xpsp2res.dll,-22019 not found. Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\WINDOWS\System32\P2P Networking\P2P Networking.exe deleted successfully. File C:\WINDOWS\System32\P2P Networking\P2P Networking.exe:*:Enabled:P2P Networking not found. [Files/Folders - Created Within 60 days] File C:\WINDOWS\album95.zip not found! File C:\WINDOWS\photos091.zip not found! File C:\WINDOWS\images021.zip not found! File C:\WINDOWS\photos061.zip not found! File C:\WINDOWS\photo66.zip not found! File C:\WINDOWS\itsME28.zip not found! File C:\WINDOWS\itsME7.zip not found! File C:\WINDOWS\images027.zip not found! C:\WINDOWS\tasks\RegCure.job moved successfully. C:\WINDOWS\tasks\RegCure Program Check.job moved successfully. File move failed. C:\WINDOWS\SYSTEM32\xpdx.sys scheduled to be moved on reboot. C:\WINDOWS\SYSTEM32\f06WtR moved successfully. C:\Documents and Settings\All Users\Application Data\file joy proc deaf moved successfully. C:\Documents and Settings\All Users\Application Data\Iso log peak file moved successfully. Folder move failed. C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007\Data\ActivationCode scheduled to be moved on reboot. Folder move failed. C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007\Data\Abbr scheduled to be moved on reboot. Folder move failed. C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007\Data\ProductCode scheduled to be moved on reboot. C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007\Data moved successfully. C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007 moved successfully. C:\Documents and Settings\All Users\Bureau\RegCure.lnk moved successfully. [Files/Folders - Modified Within 60 days] File C:\WINDOWS\album95.zip not found! File C:\WINDOWS\photos091.zip not found! File C:\WINDOWS\images021.zip not found! File C:\WINDOWS\photos061.zip not found! File C:\WINDOWS\photo66.zip not found! File C:\WINDOWS\itsME28.zip not found! File C:\WINDOWS\itsME7.zip not found! File C:\WINDOWS\images027.zip not found! File C:\WINDOWS\tasks\RegCure.job not found! File C:\WINDOWS\tasks\RegCure Program Check.job not found! File move failed. C:\WINDOWS\SYSTEM32\xpdx.sys scheduled to be moved on reboot. File C:\WINDOWS\SYSTEM32\f06WtR not found! C:\WINDOWS\SYSTEM32\n.ini moved successfully. File C:\Documents and Settings\All Users\Application Data\file joy proc deaf not found! File C:\Documents and Settings\All Users\Application Data\Iso log peak file not found! File C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007 not found! File C:\Documents and Settings\All Users\Bureau\RegCure.lnk not found! < End of log > Created on 09/03/2007 22:31:01 reste le scan Panda @+
  7. ray97
    Salut Charles, Voici le rapport de winpfind3u : WinPFind3 logfile created on: 03/09/2007 20:03:10 WinPFind3U by OldTimer - Version 1.0.41 Folder = C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\winpfind3u\WinPFind3u\ Microsoft Windows XP Service Pack 2 (Version = 5.1.2600) Internet Explorer (Version = 6.0.2900.2180) 502,42 Mb Total Physical Memory | 263,63 Mb Available Physical Memory | 52,47% Memory free 1,20 Gb Paging File | 0,93 Gb Available in Paging File | 77,77% Paging File free Paging file location(s): C:\pagefile.sys 756 1512; %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 35,60 Gb Total Space | 3,66 Gb Free Space | 10,28% Space Free Drive D: | 35,98 Gb Total Space | 11,59 Gb Free Space | 32,21% Space Free E: Drive not present or media not loaded F: Drive not present or media not loaded Computer Name: BICHOU Current User Name: véronique darin Logged in as Administrator. Current Boot Mode: Normal [Processes - Non-Microsoft Only] anbmserv.exe -> %SystemDrive%\Acer\eManager\anbmServ.exe -> OSA Technologies Inc. [Ver = 3.0.6.9 | Size = 1273344 bytes | Modified Date = 06/06/2005 19:08:58 | Attr = ] ashdisp.exe -> %ProgramFiles%\Alwil Software\Avast4\ashDisp.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 75128 bytes | Modified Date = 28/07/2007 00:03:34 | Attr = ] ashmaisv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashMaiSv.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 243064 bytes | Modified Date = 28/07/2007 00:03:08 | Attr = ] ashserv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashServ.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 132472 bytes | Modified Date = 28/07/2007 00:03:28 | Attr = ] ashwebsv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashWebSv.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 345464 bytes | Modified Date = 28/07/2007 00:02:20 | Attr = ] aswupdsv.exe -> %ProgramFiles%\Alwil Software\Avast4\aswUpdSv.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 16248 bytes | Modified Date = 27/07/2007 23:52:46 | Attr = ] firefox.exe -> %ProgramFiles%\Mozilla Firefox\firefox.exe -> Mozilla Corporation [Ver = 1.8.1.6: 2007072518 | Size = 7644520 bytes | Modified Date = 12/08/2007 22:29:40 | Attr = ] googletoolbarnotifier.exe -> %ProgramFiles%\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe -> Google Inc. [Ver = 2, 0, 301, 1654 | Size = 68856 bytes | Modified Date = 31/03/2007 20:22:38 | Attr = ] googleupdaterservice.exe -> %ProgramFiles%\Google\Common\Google Updater\GoogleUpdaterService.exe -> Google [Ver = 2.2.824.5515.beta | Size = 138680 bytes | Modified Date = 07/08/2007 16:04:14 | Attr = ] lxcrcoms.exe -> %System32%\lxcrcoms.exe -> [Ver = 99.99.99.99 | Size = 495616 bytes | Modified Date = 20/02/2006 20:23:08 | Attr = ] winpfind3u.exe -> %UserDesktop%\Downloads\OutilsVirus\winpfind3u\WinPFind3u\WinPFind3U.exe -> OldTimer Tools [Ver = 1.0.41.0 | Size = 322560 bytes | Modified Date = 31/08/2007 10:30:22 | Attr = ] [Win32 Services - Non-Microsoft Only] (anbmService) Notebook Manager Service [Win32_Own | Auto | Running] -> %SystemDrive%\Acer\eManager\anbmServ.exe -> OSA Technologies Inc. [Ver = 3.0.6.9 | Size = 1273344 bytes | Modified Date = 06/06/2005 19:08:58 | Attr = ] (aswUpdSv) avast! iAVS4 Control Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Alwil Software\Avast4\aswUpdSv.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 16248 bytes | Modified Date = 27/07/2007 23:52:46 | Attr = ] (avast! Antivirus) avast! Antivirus [Win32_Own | Auto | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashServ.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 132472 bytes | Modified Date = 28/07/2007 00:03:28 | Attr = ] (avast! Mail Scanner) avast! Mail Scanner [Win32_Own | On_Demand | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashMaiSv.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 243064 bytes | Modified Date = 28/07/2007 00:03:08 | Attr = ] (avast! Web Scanner) avast! Web Scanner [Win32_Own | On_Demand | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashWebSv.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 345464 bytes | Modified Date = 28/07/2007 00:02:20 | Attr = ] (dmadmin) Service d'administration du Gestionnaire de disque logique [Win32_Shared | On_Demand | Stopped] -> %System32%\dmadmin.exe -> Microsoft Corp., Veritas Software [Ver = 2600.2180.503.0 | Size = 225280 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] (gusvc) Google Updater Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Google\Common\Google Updater\GoogleUpdaterService.exe -> Google [Ver = 2.2.824.5515.beta | Size = 138680 bytes | Modified Date = 07/08/2007 16:04:14 | Attr = ] (lxcr_device) lxcr_device [Win32_Own | On_Demand | Running] -> %System32%\lxcrcoms.exe -> [Ver = 99.99.99.99 | Size = 495616 bytes | Modified Date = 20/02/2006 20:23:08 | Attr = ] (STI Simulator) STI Simulator [Win32_Own | Auto | Stopped] -> -> File not found [Registry - Non-Microsoft Only] < Run [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> avast! -> %ProgramFiles%\Alwil Software\Avast4\ashDisp.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 75128 bytes | Modified Date = 28/07/2007 00:03:34 | Attr = ] LXCRCATS -> %System32%\spool\drivers\w32x86\3\lxcrtime.dll [rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCRtime.dll,_RunDLLEntry@16] -> [Ver = | Size = 65536 bytes | Modified Date = 24/02/2006 12:54:40 | Attr = ] < OptionalComponents [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\ -> IMAIL -> Installed = 1 -> MAPI -> Installed = 1 -> MSFS -> Installed = 1 -> < Run [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> swg -> %ProgramFiles%\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe -> Google Inc. [Ver = 2, 0, 301, 1654 | Size = 68856 bytes | Modified Date = 31/03/2007 20:22:38 | Attr = ] < SecurityProviders [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders -> < Winlogon settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> < Winlogon settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> < Winlogon\Notify settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ -> igfxcui -> %System32%\igfxsrvc.dll -> Intel Corporation [Ver = 3.0.0.4020 | Size = 348160 bytes | Modified Date = 23/01/2005 10:31:10 | Attr = R ] < CurrentVersion Policy Settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoControlPanel -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{BDEADF00-C265-11D0-BCED-00A0C90AB50F} -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF} -> 1073741857 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{0DF44EAA-FF21-4412-828E-260A8728E7F1} -> 32 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\dontdisplaylastusername -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticecaption -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticetext -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\shutdownwithoutlogon -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\undockwithoutlogon -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\DisableRegistryTools -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\DisableTaskMgr -> 1 -> < CurrentVersion Policy Settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun -> 144 -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoControlPanel -> 1 -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoWindowsUpdate -> 1 -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableRegistryTools -> 1 -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableTaskMgr -> 1 -> < HOSTS File > -> -> -> Hosts file not found -> < Internet Explorer Settings > -> -> HKLM: Default_Page_URL -> http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome -> HKLM: Main\\Default_Search_URL -> http://www.google.com/ie -> HKLM: Search Page -> http://www.google.com -> HKLM: Start Page -> http://www.google.com -> HKLM: CustomizeSearch -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm -> HKLM: Search\\Default_Search_URL -> http://www.google.com/ie -> HKLM: SearchAssistant -> http://www.google.com/ie -> HKCU: Default_Search_URL -> http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch -> HKCU: Search Bar -> http://www.google.com/ie -> HKCU: Search Page -> http://www.google.com -> HKCU: Start Page -> http://www.google.com -> HKCU: SearchAssistant -> http://www.google.com/ie -> HKCU: ProxyEnable -> 0 -> < Trusted Sites > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> msn.com [ - ] -> -> < Internet Explorer ToolBars [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar -> {2318C2B1-4965-11d4-9B18-009027A5CD4F} [HKLM] -> %ProgramFiles%\Google\googletoolbar1.dll [&Google] -> Google Inc. [Ver = 4, 0, 1601, 4978 | Size = 2436160 bytes | Modified Date = 31/03/2007 20:27:38 | Attr = R ] {EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKLM] -> %ProgramFiles%\Yahoo!\Companion\Installs\cpn\yt.dll [Yahoo! Toolbar avec bloqueur de fenêtres pop-up] -> Yahoo! Inc. [Ver = 2005, 8, 4, 2 | Size = 343112 bytes | Modified Date = 04/08/2005 21:54:42 | Attr = ] < Internet Explorer ToolBars [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ -> ShellBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found] -> File not found ShellBrowser\\{74CC49F7-EB32-4A08-B204-948962A6E3DB} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found] -> File not found WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} [HKLM] -> %ProgramFiles%\Google\googletoolbar1.dll [&Google] -> Google Inc. [Ver = 4, 0, 1601, 4978 | Size = 2436160 bytes | Modified Date = 31/03/2007 20:27:38 | Attr = R ] WebBrowser\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKLM] -> %ProgramFiles%\Yahoo!\Companion\Installs\cpn\yt.dll [Yahoo! Toolbar avec bloqueur de fenêtres pop-up] -> Yahoo! Inc. [Ver = 2005, 8, 4, 2 | Size = 343112 bytes | Modified Date = 04/08/2005 21:54:42 | Attr = ] < Internet Explorer Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> {08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKLM] -> %ProgramFiles%\Java\jre1.5.0_06\bin\npjpi150_06.dll [MenuText: Console Java (Sun)] -> Sun Microsystems, Inc. [Ver = 5.0.60.5 | Size = 69746 bytes | Modified Date = 10/11/2005 13:22:12 | Attr = ] {08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKCU] -> %ProgramFiles%\Java\jre1.5.0_06\bin\ssv.dll [MenuText: Console Java (Sun)] -> Sun Microsystems, Inc. [Ver = 5.0.60.5 | Size = 184423 bytes | Modified Date = 10/11/2005 13:22:12 | Attr = ] {85d1f590-48f4-11d9-9669-0800200c9a66} [HKLM] -> Reg Data - Key not found [MenuText: Uninstall BitDefender Online Scanner v8] -> File not found {FB5F1910-F110-11d2-BB9E-00C04F795683} -> %ProgramFiles%\Messager Wanadoo\Messager Wanadoo.exe [buttonText: Messager Wanadoo] -> France Telecom [Ver = 3, 1, 31, 9 | Size = 1802240 bytes | Modified Date = 07/04/2003 11:10:20 | Attr = ] < Internet Explorer Menu Extensions [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ -> &Search -> http:\ko.bar.need2find.com\KO\menusearch.htm -> File not found < User Agent Post Platform [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform -> SV1 -> -> Wanadoo 6.0 -> IEAKFT -> < DNS Name Servers [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ -> {2F0D6B97-CFC7-440E-93D5-61DFD7A9656B} -> (Realtek RTL8139/810x Family Fast Ethernet NIC) -> {314C99A3-9FDB-4FCD-A73C-051F21C2DEA1} -> () -> {33993692-E2E0-44F1-B6DC-788DDBF6B99A} -> () -> {9126982E-A93B-4999-AD18-06365A7900DA} -> (Carte réseau Broadcom 802.11g) -> < Protocol Handlers [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ -> ipp -> Reg Data - Key not found -> File not found msdaipp -> Reg Data - Key not found -> File not found < Protocol Filters [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ -> text/html -> Reg Data - Key not found -> File not found < Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> {00B71CFB-6864-4346-A978-C0A14556272C} -> Checkers Class - CodeBase = http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab -> {1D6711C8-7154-40BB-8380-3DEA45B69CBF} -> - CodeBase = -> {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -> BDSCANONLINE Control - CodeBase = http://www.zebulon.fr/scan8/oscan8.cab -> {8AD9C840-044E-11D1-B3E9-00805F499D93} -> Java Plug-in 1.5.0_06 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab -> {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} -> MessengerStatsClient Class - CodeBase = http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab -> {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} -> - CodeBase = http://fpdownload.macromedia.com/get/flash...t/ultrashim.cab -> {9122D757-5A4F-4768-82C5-B4171D8556A7} -> PhotoPickConvert Class - CodeBase = http://appdirectory.messenger.msn.com/AppD...ap/PhtPkMSN.cab -> {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} -> BatchDownloader Class - CodeBase = http://appdirectory.messenger.msn.com/AppD...ap/DigWXMSN.cab -> {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} -> Java Plug-in 1.5.0_06 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab -> {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -> Java Plug-in 1.5.0_06 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab -> {D27CDB6E-AE6D-11CF-96B8-444553540000} -> - CodeBase = http://download.macromedia.com/pub/shockwa...ash/swflash.cab -> [Registry - Additional Scans - Non-Microsoft Only] < Security Settings > -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\AntiVirusDisableNotify -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\FirewallDisableNotify -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\UpdatesDisableNotify -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\AntiVirusOverride -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\FirewallOverride -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\Type -> 32 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\Start -> 2 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\ErrorControl -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\ImagePath -> %SystemRoot%\system32\svchost.exe -k netsvcs -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\DisplayName -> Service de transfert intelligent en arrière-plan -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\DependOnService -> RpcSs; -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\DependOnGroup -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\ObjectName -> LocalSystem -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\Description -> Transfère des données entre les clients et les serveurs en tâche de fond. Si le service BITS est désactivé, les fonctionnalités telles que Windows Update ne fonctionneront pas correctement. -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\FailureActions -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Parameters\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Parameters\\ServiceDll -> C:\WINDOWS\system32\qmgr.dll -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Security\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Security\\Security -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Enum\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Enum\ -> Root\LEGACY_BITS00 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Enum\\Count -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Enum\\NextInstance -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\DependOnGroup -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\DependOnService -> Netman;WinMgmt; -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\Description -> Assure la traduction d'adresses de réseau, l'adressage, les services de résolution de noms et/ou les services de prévention d'intrusion pour un réseau de petite entreprise ou un réseau domestique. -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\DisplayName -> Pare-feu Windows / Partage de connexion Internet -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\ErrorControl -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\ImagePath -> %SystemRoot%\system32\svchost.exe -k netsvcs -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\ObjectName -> LocalSystem -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\Start -> 4 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\Type -> 32 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch\\Epoch -> 36770 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\\ServiceDll -> %SystemRoot%\System32\ipnathlp.dll -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\%windir%\system32\sessmgr.exe -> %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\msncall.exe -> C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone) -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\%windir%\system32\winav.exe -> %windir%\system32\winav.exe:*:Enabled:@xpsp2res.dll,-22019 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\msnmsgr.exe -> C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\livecall.exe -> C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List\\139:TCP -> 139:TCP:*:Enabled:@xpsp2res.dll,-22004 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List\\445:TCP -> 445:TCP:*:Enabled:@xpsp2res.dll,-22005 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List\\137:UDP -> 137:UDP:*:Enabled:@xpsp2res.dll,-22001 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List\\138:UDP -> 138:UDP:*:Enabled:@xpsp2res.dll,-22002 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\\EnableFirewall -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\\DoNotAllowExceptions -> 0 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\\DisableNotifications -> 0 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\%windir%\system32\sessmgr.exe -> %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\Messenger\msmsgs.exe -> C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os47.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os47.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\WINDOWS\System32\P2P Networking\P2P Networking.exe -> C:\WINDOWS\System32\P2P Networking\P2P Networking.exe:*:Enabled:P2P Networking -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\Kazaa\kazaa.exe -> C:\Program Files\Kazaa\kazaa.exe:*:Enabled:Kazaa Media Desktop -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os10B.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os10B.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\SuperCopier\SuperCopier.exe -> C:\Program Files\SuperCopier\SuperCopier.exe:*:Enabled:SuperCopier -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os160.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os160.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os12.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os12.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os1C.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os1C.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\msncall.exe -> C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone) -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~osF.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~osF.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os11.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os11.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os8.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os8.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os61.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os61.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~osD.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~osD.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os1F.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os1F.tmp\ossproxy.exe:*:Enabled:ossproxy.exe -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\%windir%\system32\winav.exe -> %windir%\system32\winav.exe:*:Enabled:@xpsp2res.dll,-22019 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\msnmsgr.exe -> C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\livecall.exe -> C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\1900:UDP -> 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\2869:TCP -> 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\139:TCP -> 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\445:TCP -> 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\137:UDP -> 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\138:UDP -> 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Setup\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Setup\\ServiceUpgrade -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Setup\InterfacesUnfirewalledAtUpdate\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Setup\InterfacesUnfirewalledAtUpdate\\All -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Enum\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Enum\ -> Root\LEGACY_SHAREDACCESS00 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Enum\\Count -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Enum\\NextInstance -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\Type -> 32 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\Start -> 2 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\ErrorControl -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\ImagePath -> %systemroot%\system32\svchost.exe -k netsvcs -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\DisplayName -> Mises à jour automatiques -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\ObjectName -> LocalSystem -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\Description -> Active le téléchargement et l'installation des mises à jour Windows. Si ce service est désactivé, cet ordinateur ne pourra pas utiliser la fonctionnalité des mises à jour automatiques ou le site Windows Update. -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Parameters\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Parameters\\ServiceDll -> C:\WINDOWS\system32\wuauserv.dll -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Security\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Security\\Security -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Enum\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Enum\ -> Root\LEGACY_WUAUSERV00 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Enum\\Count -> 1 -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Enum\\NextInstance -> 1 -> < Software Policy Settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\ -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultExecMenuItems\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultExecMenuItems\\tWhiteList -> Close|GeneralInfo|Quit|FirstPage|PrevPage|NextPage|LastPage|ActualSize|FitPage|FitWidth|FitHeight|SinglePage|OneColumn|TwoPages|TwoColumns|ZoomViewIn|ZoomViewOut|ShowHideBookmarks|ShowHideThumbnails|Print|GoToPage|ZoomTo|GeneralPrefs|SaveAs|FullScreen|OpenOrganizer|Scan|Web2PDF:OpnURL|AcroSendMail:SendMail|Spelling:Check Spelling|PageSetup|Find|FindSearch|GoBack|GoForward|FitVisible|ShowHideToolbarEditing|ShowHideToolbarCommenting|ShowHideToolbarEdit|ShowHideToolbarFile|ShowHideToolbarFind|ShowHideToolbarForms|ShowHideToolbarMeasuring|ShowHideToolbarData|ShowHideToolbarPageDisplay|ShowHideToolbarNavigation|ShowHideToolbarPrintProduction|ShowHideToolbarRedaction|ShowHideToolbarBasicTools|ShowHideToolbarTasks|ShowHideToolbarTypewriter|PropertyToolbar|ShowHideArticles|ShowHideFileAttachment|ShowHideAnnotManager|ShowHideFields|ShowHideOptCont|ShowHideModelTree|ShowHideSignatures|InsertPages|ExtractPages|ReplacePages|DeletePages|CropPages|RotatePages|AddFileAttachment|FindCurrentBookmark|BookmarkShowLocation|GoBackDoc|GoForwardDoc|HelpUserGuide|HelpReader -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultLaunchAttachmentPerms\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultLaunchAttachmentPerms\\tBuiltInPermList -> version:1|.ade:3|.adp:3|.app:3|.asp:3|.bas:3|.bat:3|.bz:3|.bz2:3|.chm:3|.class:3|.cmd:3|.com:3|.command:3|.cpl:3|.crt:3|.csh:3|.desktop:3|.exe:3|.fxp:3|.gz:3|.hex:3|.hlp:3|.hqx:3|.hta:3|.inf:3|.ini:3|.ins:3|.isp:3|.its:3|.job:3|.js:3|.jse:3|.ksh:3|.lnk:3|.lzh:3|.mad:3|.maf:3|.mag:3|.mam:3|.maq:3|.mar:3|.mas:3|.mat:3|.mau:3|.mav:3|.maw:3|.mda:3|.mde:3|.mdt:3|.mdw:3|.mdz:3|.msc:3|.msi:3|.msp:3|.mst:3|.ocx:3|.ops:3|.pcd:3|.pi:3|.pif:3|.prf:3|.prg:3|.pst:3|.rar:3|.reg:3|.scf:3|.scr:3|.sct:3|.sea:3|.shb:3|.shs:3|.sit:3|.tar:3|.tgz:3|.tmp:3|.url:3|.vb:3|.vbe:3|.vbs:3|.vsmacros:3|.vss:3|.vst:3|.vsw:3|.webloc:3|.ws:3|.wsc:3|.wsf:3|.wsh:3|.zip:3|.zlo:3|.zoo:3|.pdf:2|.fdf:2 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultLaunchURLPerms\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultLaunchURLPerms\\tSchemePerms -> version:1|shell:3|hcp:3|ms-help:3|ms-its:3|ms-itss:3|its:3|mk:3|mhtml:3|help:3|disk:3|afp:3|disks:3|telnet:3|ssh:3|acrobat:2|mailto:2|file:1 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Conferencing\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\MRT\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\WindowsLiveCall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\WindowsLiveCall\CertificatePolicy\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\WindowsLiveCall\PortRange\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\{A5B45060-354F-4097-A928-5125436C46F1}\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\{A5B45060-354F-4097-A928-5125436C46F1}\\DisableServerCheck -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\{A5B45060-354F-4097-A928-5125436C46F1}\\LegacyPresence -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\{A5B45060-354F-4097-A928-5125436C46F1}\CertificatePolicy\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\{A5B45060-354F-4097-A928-5125436C46F1}\PortRange\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Installer\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Installer\\EnableAdminTSRemote -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\RTC\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\RTC\CertificatePolicy\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\RTC\PortRange\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\\ExecutableTypes -> ADE;ADP;BAS;BAT;CHM;CMD;COM;CPL;CRT;EXE;HLP;HTA;INF;INS;ISP;LNK;MDB;MDE;MSC;MSI;MSP;MST;OCX;PCD;PIF;REG;SCR;SHS;URL;VB;WSC; -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\\TransparentEnabled -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\\DefaultLevel -> 262144 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\\AuthenticodeEnabled -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\\PolicyScope -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\Description -> Stop the download of this file -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\FriendlyName -> Mdac11.cab -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\SaferFlags -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\HashAlg -> 32771 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\ItemData -> ^«0O•zI‰j HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\LastModified -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\ItemSize -> ; -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\Description -> Stop the download of this file -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\FriendlyName -> mdac20.cab -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\SaferFlags -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\HashAlg -> 32771 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\ItemData -> g°Ô‹4:?Ó¼éÜdgó” -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\LastModified -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\ItemSize -> ; -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\Description -> Stop the download of this file -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\FriendlyName -> mdac20_a.cab -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\SaferFlags -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\HashAlg -> 32771 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\ItemData -> 2xÜþøÈ“ÜŠ°Ý„} -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\LastModified -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\ItemSize -> –; -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\Description -> Stop the download of this file -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\FriendlyName -> _msadc10.cab -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\SaferFlags -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\HashAlg -> 32771 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\ItemData -> ½š*ÛBëØV%Mø/g -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\LastModified -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\ItemSize -> å; -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\Description -> Stop the download of this file -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\FriendlyName -> msadc11.cab -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\SaferFlags -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\HashAlg -> 32771 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\ItemData -> 8k_„ìöiÓk•j"À€ -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\LastModified -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\ItemSize -> r; -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33}\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33}\\Description -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33}\\SaferFlags -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33}\\ItemData -> %HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\Cache%OLK* -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33}\\LastModified -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows NT\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows NT\Terminal Services\ -> -> < Software Policy Settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\policies\ -> HKEY_CURRENT_USER\Software\Policies\ -> -> HKEY_CURRENT_USER\Software\Policies\Microsoft\ -> -> < Uninstall List > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> {18D10072035C4515918F7E37EAFAACFC} -> AutoUpdate -> {2318C2B1-4965-11d4-9B18-009027A5CD4F} -> Google Toolbar for Internet Explorer -> {2637C347-9DAD-11D6-9EA2-00055D0CA761} -> Arcade 3.0 -> {26a03535-d10f-4434-9724-ce6d2f9a0549} -> DFX 8 for Windows Media Player -> {3248F0A8-6813-11D6-A77B-00B0D0150060} -> J2SE Runtime Environment 5.0 Update 6 -> {350C940c-3D7C-4EE8-BAA9-00BCB3D54227} -> WebFldrs XP -> {37477865-A3F1-4772-AD43-AAFC6BCFF99F} -> MSXML 4.0 SP2 (KB927978) -> {49672EC2-171B-47B4-8CE7-50D7806360D7} -> Windows Live Sign-in Assistant -> {4BDFD2CE-6329-42E4-9801-9B3D1F10D79B} -> Adobe® Photoshop® Album Edition Découverte 3.0 -> {58E5844B-7CE2-413D-83D1-99294BF6C74F} -> Acer ePowerManagement -> {65C39C99-F2C0-4286-A37A-23182E9A5E8E} -> NTI CD & DVD-Maker -> {7AC15160-A49B-4A89-B181-D4619C025FFF} -> Samsung Samples Installer -> {7B63B2922B174135AFC0E1377DD81EC2} -> DivX Codec -> {827289F5-B44F-4E49-9993-840741585A62} -> Acer eManager for Notebook -> {89ACA875-BDB9-443C-B7C7-D74D3BDE8FE2} -> Philips VLounge -> {8A708DD8-A5E6-11D4-A706-000629E95E20} -> Intel® Graphics Media Accelerator Driver for Mobile -> {8ADFC4160D694100B5B8A22DE9DCABD9} -> DivX Player -> {A059DE09-1B49-4450-B340-7AE097EC3F04} -> Microsoft Works -> {AC76BA86-7AD7-1036-7B44-A81000000003} -> Adobe Reader 8.1.0 - Français -> {ACF60000-22B9-4CE9-98D6-2CCF359BAC07} -> ABBYY FineReader 6.0 Sprint -> {B13A7C41581B411290FBC0395694E2A9} -> DivX Converter -> {B7050CBDB2504B34BC2A9CA0A692CC29} -> DivX Web Player -> {B7A0CE06-068E-11D6-97FD-0050BACBF861} -> PowerProducer -> {C04E32E0-0416-434D-AFB9-6969D703A9EF} -> MSXML 4.0 SP2 (KB936181) -> {D050D7362D214723AD585B541FFB6C11} -> DivX Content Uploader -> {D0846526-66DD-4DC9-A02C-98F9A2806812} -> Launch Manager V1.0.8.8 -> {D41FAAA9-8048-4906-86B2-9AADEA1FA0B7} -> Alcatel SpeedTouch USB Software -> {D65F0073-A820-4085-B997-A061171595A7} -> oggcodecs -> {DBEA1034-5882-4A88-8033-81C4EF0CFA29} -> Google Toolbar for Internet Explorer -> {E66653A2-2B5C-4909-B71E-218164336960} -> SPC 610NC Laptop Camera -> {EBA29752-DDD2-4B62-B2E3-9841F92A3E3A} -> Samsung PC Studio 3 USB Driver Installer -> {ED79C7E1-386E-4C12-81C7-8FEFB6D396B5} -> NTI Backup NOW! 4 -> {F6326B60-1B1D-4ABF-BFCD-7B7404F44411} -> Windows Live Messenger -> {FB08F381-6533-4108-B7DD-039E11FBC27E} -> Realtek AC'97 Audio -> Ad-Aware SE Personal -> Ad-Aware SE Personal -> Adobe Flash Player ActiveX -> Adobe Flash Player ActiveX -> avast! -> avast! Antivirus -> CNXT_MODEM_PCI_VEN_8086&DEV_266D&SUBSYS_006A1025 -> SoftV90 Data Fax Modem with SmartCP -> Droppix Recorder_is1 -> Droppix Recorder -> EspaceWanadoo.exe -> Wanadoo -> EVEREST Ultimate Edition_is1 -> EVEREST Ultimate Edition v3.50 -> Google Updater -> Outil de mise à jour Google -> GridVista -> Acer GridVista -> HijackThis -> HijackThis 1.99.1 -> InstallShield_{65C39C99-F2C0-4286-A37A-23182E9A5E8E} -> NTI CD & DVD-Maker Gold -> InstallShield_{827289F5-B44F-4E49-9993-840741585A62} -> Acer eManager for Notebook -> InstallShield_{E66653A2-2B5C-4909-B71E-218164336960} -> SPC 610NC Laptop Camera -> InstallShield_{ED79C7E1-386E-4C12-81C7-8FEFB6D396B5} -> NTI Backup NOW! 4 -> KB873339 -> Correctif Windows XP - KB873339 -> KB885250 -> Correctif Windows XP - KB885250 -> KB885835 -> Correctif Windows XP - KB885835 -> KB885836 -> Correctif Windows XP - KB885836 -> KB886185 -> Correctif Windows XP - KB886185 -> KB887472 -> Correctif Windows XP - KB887472 -> KB887742 -> Correctif Windows XP - KB887742 -> KB888113 -> Correctif Windows XP - KB888113 -> KB888302 -> Correctif Windows XP - KB888302 -> KB890046 -> Mise à jour de sécurité pour Windows XP (KB890046) -> KB890859 -> Correctif Windows XP - KB890859 -> KB891781 -> Correctif Windows XP - KB891781 -> KB893066 -> Mise à jour de sécurité pour Windows XP (KB893066) -> KB893756 -> Mise à jour de sécurité pour Windows XP (KB893756) -> KB893803v2 -> Windows Installer 3.1 (KB893803) -> KB894391 -> Mise à jour pour Windows XP (KB894391) -> KB896358 -> Mise à jour de sécurité pour Windows XP (KB896358) -> KB896422 -> Mise à jour de sécurité pour Windows XP (KB896422) -> KB896423 -> Mise à jour de sécurité pour Windows XP (KB896423) -> KB896424 -> Mise à jour de sécurité pour Windows XP (KB896424) -> KB896428 -> Mise à jour de sécurité pour Windows XP (KB896428) -> KB898461 -> Mise à jour pour Windows XP (KB898461) -> KB899587 -> Mise à jour de sécurité pour Windows XP (KB899587) -> KB899591 -> Mise à jour de sécurité pour Windows XP (KB899591) -> KB900485 -> Mise à jour pour Windows XP (KB900485) -> KB900725 -> Mise à jour de sécurité pour Windows XP (KB900725) -> KB901017 -> Mise à jour de sécurité pour Windows XP (KB901017) -> KB901190 -> Mise à jour de sécurité pour Windows XP (KB901190) -> KB901214 -> Mise à jour de sécurité pour Windows XP (KB901214) -> KB902400 -> Mise à jour de sécurité pour Windows XP (KB902400) -> KB904706 -> Mise à jour de sécurité pour Windows XP (KB904706) -> KB905414 -> Mise à jour de sécurité pour Windows XP (KB905414) -> KB905749 -> Mise à jour de sécurité pour Windows XP (KB905749) -> KB905915 -> Mise à jour de sécurité pour Windows XP (KB905915) -> KB908519 -> Mise à jour de sécurité pour Windows XP (KB908519) -> KB908531 -> Mise à jour de sécurité pour Windows XP (KB908531) -> KB910437 -> Mise à jour pour Windows XP (KB910437) -> KB911280 -> Mise à jour pour Windows XP (KB911280) -> KB911562 -> Mise à jour de sécurité pour Windows XP (KB911562) -> KB911564 -> Mise à jour de sécurité pour Lecteur Windows Media (KB911564) -> KB911565 -> Mise à jour de sécurité pour Lecteur Windows Media 9 (KB911565) -> KB911567 -> Mise à jour de sécurité pour Windows XP (KB911567) -> KB911927 -> Mise à jour de sécurité pour Windows XP (KB911927) -> KB912812 -> Mise à jour de sécurité pour Windows XP (KB912812) -> KB912919 -> Mise à jour de sécurité pour Windows XP (KB912919) -> KB913446 -> Mise à jour de sécurité pour Windows XP (KB913446) -> KB913580 -> Mise à jour de sécurité pour Windows XP (KB913580) -> KB914388 -> Mise à jour de sécurité pour Windows XP (KB914388) -> KB914389 -> Mise à jour de sécurité pour Windows XP (KB914389) -> KB916281 -> Mise à jour de sécurité pour Windows XP (KB916281) -> KB916595 -> Mise à jour pour Windows XP (KB916595) -> KB917159 -> Mise à jour de sécurité pour Windows XP (KB917159) -> KB917344 -> Mise à jour de sécurité pour Windows XP (KB917344) -> KB917422 -> Mise à jour de sécurité pour Windows XP (KB917422) -> KB917953 -> Mise à jour de sécurité pour Windows XP (KB917953) -> KB918118 -> Mise à jour de sécurité pour Windows XP (KB918118) -> KB918439 -> Mise à jour de sécurité pour Windows XP (KB918439) -> KB918899 -> Mise à jour de sécurité pour Windows XP (KB918899) -> KB919007 -> Mise à jour de sécurité pour Windows XP (KB919007) -> KB920213 -> Mise à jour de sécurité pour Windows XP (KB920213) -> KB920214 -> Mise à jour de sécurité pour Windows XP (KB920214) -> KB920670 -> Mise à jour de sécurité pour Windows XP (KB920670) -> KB920683 -> Mise à jour de sécurité pour Windows XP (KB920683) -> KB920685 -> Mise à jour de sécurité pour Windows XP (KB920685) -> KB920872 -> Mise à jour pour Windows XP (KB920872) -> KB921398 -> Mise à jour de sécurité pour Windows XP (KB921398) -> KB921503 -> Mise à jour de sécurité pour Windows XP (KB921503) -> KB921883 -> Mise à jour de sécurité pour Windows XP (KB921883) -> KB922582 -> Mise à jour pour Windows XP (KB922582) -> KB922616 -> Mise à jour de sécurité pour Windows XP (KB922616) -> KB922819 -> Mise à jour de sécurité pour Windows XP (KB922819) -> KB923191 -> Mise à jour de sécurité pour Windows XP (KB923191) -> KB923414 -> Mise à jour de sécurité pour Windows XP (KB923414) -> KB923694 -> Mise à jour de sécurité pour Windows XP (KB923694) -> KB923980 -> Mise à jour de sécurité pour Windows XP (KB923980) -> KB924191 -> Mise à jour de sécurité pour Windows XP (KB924191) -> KB924270 -> Mise à jour de sécurité pour Windows XP (KB924270) -> KB924496 -> Mise à jour de sécurité pour Windows XP (KB924496) -> KB924667 -> Mise à jour de sécurité pour Windows XP (KB924667) -> KB925398_WMP64 -> Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398) -> KB925454 -> Mise à jour de sécurité pour Windows XP (KB925454) -> KB925486 -> Mise à jour de sécurité pour Windows XP (KB925486) -> KB925902 -> Mise à jour de sécurité pour Windows XP (KB925902) -> KB926239 -> Hotfix for Windows XP (KB926239) -> KB926255 -> Mise à jour de sécurité pour Windows XP (KB926255) -> KB926436 -> Mise à jour de sécurité pour Windows XP (KB926436) -> KB927779 -> Mise à jour de sécurité pour Windows XP (KB927779) -> KB927802 -> Mise à jour de sécurité pour Windows XP (KB927802) -> KB927891 -> Mise à jour pour Windows XP (KB927891) -> KB928090 -> Mise à jour de sécurité pour Windows XP (KB928090) -> KB928255 -> Mise à jour de sécurité pour Windows XP (KB928255) -> KB928843 -> Mise à jour de sécurité pour Windows XP (KB928843) -> KB929123 -> Mise à jour de sécurité pour Windows XP (KB929123) -> KB929338 -> Mise à jour pour Windows XP (KB929338) -> KB929399 -> Hotfix for Windows Media Format 11 SDK (KB929399) -> KB929969 -> Mise à jour de sécurité pour Windows XP (KB929969) -> KB930178 -> Mise à jour de sécurité pour Windows XP (KB930178) -> KB930916 -> Mise à jour pour Windows XP (KB930916) -> KB931261 -> Mise à jour de sécurité pour Windows XP (KB931261) -> KB931768 -> Mise à jour de sécurité pour Windows XP (KB931768) -> KB931784 -> Mise à jour de sécurité pour Windows XP (KB931784) -> KB931836 -> Mise à jour pour Windows XP (KB931836) -> KB932168 -> Mise à jour de sécurité pour Windows XP (KB932168) -> KB933360 -> Mise à jour pour Windows XP (KB933360) -> KB933566 -> Mise à jour de sécurité pour Windows XP (KB933566) -> KB935839 -> Mise à jour de sécurité pour Windows XP (KB935839) -> KB935840 -> Mise à jour de sécurité pour Windows XP (KB935840) -> KB936021 -> Mise à jour de sécurité pour Windows XP (KB936021) -> KB936357 -> Mise à jour pour Windows XP (KB936357) -> KB936782_WMP11 -> Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782) -> KB937143 -> Mise à jour de sécurité pour Windows XP (KB937143) -> KB938127 -> Mise à jour de sécurité pour Windows XP (KB938127) -> KB938828 -> Mise à jour pour Windows XP (KB938828) -> KB938829 -> Mise à jour de sécurité pour Windows XP (KB938829) -> KLiteCodecPack_is1 -> K-Lite Codec Pack 2.71 Full -> Language pack for Ad-Aware SE -> Language pack for Ad-Aware SE -> Lexmark 2400 Series -> Lexmark 2400 Series -> Lexmark Fax Solutions -> Solutions de télécopie Lexmark -> Messager Wanadoo.exe -> Messager Wanadoo -> Mozilla Firefox (2.0.0.6) -> Mozilla Firefox (2.0.0.6) -> MSCompPackV1 -> Microsoft Compression Client Pack 1.0 for Windows XP -> MsgPlus! Plugin -> Messenger Plus! 3 -> MSN Toolbar -> Barre d'outils MSN -> MSNINST -> MSN -> Need2FindBar Uninstall -> Need2Find Bar -> RegCure -> RegCure 1.5.0.0 -> SAMSUNG CDMA Modem -> SAMSUNG CDMA Modem Driver Set -> SAMSUNG Mobile USB Modem -> SAMSUNG Mobile USB Modem Software -> SAMSUNG Mobile USB Modem 1.0 -> SAMSUNG Mobile USB Modem 1.0 Software -> Spybot - Search & Destroy_is1 -> Spybot - Search & Destroy 1.4 -> StuffPlug3 -> StuffPlug 3 -> StuffPlug-NG -> StuffPlug-NG (Messenger Plus! Plugins) -> SuperCopier2 -> SuperCopier2 -> SynTPDeinstKey -> Synaptics Pointing Device Driver -> Vodafone 804SS USB driver -> Vodafone 804SS USB driver Software -> WgaNotify -> Windows Genuine Advantage Notifications (KB905474) -> Windows Media Format Runtime -> Windows Media Format 11 runtime -> Windows Media Player -> Lecteur Windows Media 11 -> WinRAR archiver -> Archiveur WinRAR -> WinZip -> WinZip -> WMFDist11 -> Windows Media Format 11 runtime -> wmp11 -> Windows Media Player 11 -> Wudf01000 -> Microsoft User-Mode Driver Framework Feature Pack 1.0 -> Yahoo! Companion -> Yahoo! Toolbar avec bloqueur de fenêtres pop-up -> Yahoo! Toolbar -> Yahoo! Toolbar -> [Files/Folders - Created Within 60 days] hiberfil.sys -> %SystemDrive%\hiberfil.sys -> [Ver = | Size = 526897152 bytes | Created Date = 02/01/1601 23:00:00 | Attr = HS] Config.Msi -> %SystemDrive%\Config.Msi -> [Folder | Created Date = 25/08/2007 16:23:33 | Attr = HS] WA7PV -> %SystemDrive%\WA7PV -> [Folder | Created Date = 25/08/2007 15:24:29 | Attr = HS] Temp -> %SystemDrive%\Temp -> [Folder | Created Date = 21/08/2007 16:46:02 | Attr = ] sqmnoopt06.sqm -> %SystemDrive%\sqmnoopt06.sqm -> [Ver = | Size = 244 bytes | Created Date = 13/07/2007 23:24:37 | Attr = H ] sqmdata06.sqm -> %SystemDrive%\sqmdata06.sqm -> [Ver = | Size = 268 bytes | Created Date = 13/07/2007 23:24:37 | Attr = H ] sqmnoopt07.sqm -> %SystemDrive%\sqmnoopt07.sqm -> [Ver = | Size = 244 bytes | Created Date = 14/07/2007 10:49:08 | Attr = H ] sqmdata07.sqm -> %SystemDrive%\sqmdata07.sqm -> [Ver = | Size = 268 bytes | Created Date = 14/07/2007 10:49:08 | Attr = H ] sqmnoopt08.sqm -> %SystemDrive%\sqmnoopt08.sqm -> [Ver = | Size = 244 bytes | Created Date = 16/07/2007 11:10:49 | Attr = H ] sqmdata08.sqm -> %SystemDrive%\sqmdata08.sqm -> [Ver = | Size = 268 bytes | Created Date = 16/07/2007 11:10:49 | Attr = H ] sqmnoopt09.sqm -> %SystemDrive%\sqmnoopt09.sqm -> [Ver = | Size = 244 bytes | Created Date = 17/07/2007 14:29:08 | Attr = H ] sqmdata09.sqm -> %SystemDrive%\sqmdata09.sqm -> [Ver = | Size = 268 bytes | Created Date = 17/07/2007 14:29:08 | Attr = H ] sqmnoopt10.sqm -> %SystemDrive%\sqmnoopt10.sqm -> [Ver = | Size = 244 bytes | Created Date = 18/07/2007 14:05:32 | Attr = H ] sqmdata10.sqm -> %SystemDrive%\sqmdata10.sqm -> [Ver = | Size = 268 bytes | Created Date = 18/07/2007 14:05:32 | Attr = H ] album95.zip -> %SystemRoot%\album95.zip -> [Ver = | Size = 22 bytes | Created Date = 19/08/2007 01:41:48 | Attr = ] photos091.zip -> %SystemRoot%\photos091.zip -> [Ver = | Size = 22 bytes | Created Date = 18/08/2007 01:26:55 | Attr = ] images021.zip -> %SystemRoot%\images021.zip -> [Ver = | Size = 22 bytes | Created Date = 18/08/2007 01:35:55 | Attr = ] photos061.zip -> %SystemRoot%\photos061.zip -> [Ver = | Size = 22 bytes | Created Date = 18/08/2007 16:04:58 | Attr = ] photo66.zip -> %SystemRoot%\photo66.zip -> [Ver = | Size = 22 bytes | Created Date = 19/08/2007 16:02:56 | Attr = ] itsME28.zip -> %SystemRoot%\itsME28.zip -> [Ver = | Size = 22 bytes | Created Date = 18/08/2007 18:00:29 | Attr = ] itsME7.zip -> %SystemRoot%\itsME7.zip -> [Ver = | Size = 22 bytes | Created Date = 20/08/2007 17:43:22 | Attr = ] images027.zip -> %SystemRoot%\images027.zip -> [Ver = | Size = 22 bytes | Created Date = 21/08/2007 14:43:48 | Attr = ] BDOSCAN8 -> %SystemRoot%\BDOSCAN8 -> [Folder | Created Date = 03/09/2007 12:53:21 | Attr = ] $NtUninstallKB936357$ -> %SystemRoot%\$NtUninstallKB936357$ -> [Folder | Created Date = 25/07/2007 04:43:47 | Attr = H ] $NtUninstallKB937143$ -> %SystemRoot%\$NtUninstallKB937143$ -> [Folder | Created Date = 15/08/2007 17:55:41 | Attr = H ] $NtUninstallKB936782_WMP11$ -> %SystemRoot%\$NtUninstallKB936782_WMP11$ -> [Folder | Created Date = 16/08/2007 14:43:43 | Attr = H ] $NtUninstallKB938127$ -> %SystemRoot%\$NtUninstallKB938127$ -> [Folder | Created Date = 16/08/2007 14:44:24 | Attr = H ] $NtUninstallKB938829$ -> %SystemRoot%\$NtUninstallKB938829$ -> [Folder | Created Date = 16/08/2007 14:44:49 | Attr = H ] $NtUninstallKB921503$ -> %SystemRoot%\$NtUninstallKB921503$ -> [Folder | Created Date = 16/08/2007 14:45:15 | Attr = H ] $NtUninstallKB938828$ -> %SystemRoot%\$NtUninstallKB938828$ -> [Folder | Created Date = 16/08/2007 14:45:42 | Attr = H ] $NtUninstallKB936021$ -> %SystemRoot%\$NtUninstallKB936021$ -> [Folder | Created Date = 16/08/2007 14:46:09 | Attr = H ] $NtUninstallKB933360$ -> %SystemRoot%\$NtUninstallKB933360$ -> [Folder | Created Date = 01/09/2007 21:58:39 | Attr = H ] RegCure.job -> %SystemRoot%\tasks\RegCure.job -> [Ver = | Size = 392 bytes | Created Date = 03/09/2007 16:33:14 | Attr = ] RegCure Program Check.job -> %SystemRoot%\tasks\RegCure Program Check.job -> [Ver = | Size = 458 bytes | Created Date = 03/09/2007 16:33:15 | Attr = ] divxsm.tlb -> %System32%\divxsm.tlb -> [Ver = | Size = 4816 bytes | Created Date = 09/07/2007 20:07:53 | Attr = ] dpl100.dll -> %System32%\dpl100.dll -> DivX, Inc. [Ver = 1, 2, 0, 12 | Size = 73728 bytes | Created Date = 09/07/2007 20:05:58 | Attr = ] dpu11.dll -> %System32%\dpu11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 294912 bytes | Created Date = 09/07/2007 20:05:56 | Attr = ] dpu10.dll -> %System32%\dpu10.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 294912 bytes | Created Date = 09/07/2007 20:05:56 | Attr = ] dpuGUI11.dll -> %System32%\dpuGUI11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 593920 bytes | Created Date = 09/07/2007 20:05:56 | Attr = ] dpus11.dll -> %System32%\dpus11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 344064 bytes | Created Date = 09/07/2007 20:05:56 | Attr = ] dpv11.dll -> %System32%\dpv11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 57344 bytes | Created Date = 09/07/2007 20:05:56 | Attr = ] dtu100.dll -> %System32%\dtu100.dll -> DivX, Inc. [Ver = 1, 2, 0, 12 | Size = 196608 bytes | Created Date = 09/07/2007 20:05:58 | Attr = ] libdivx.dll -> %System32%\libdivx.dll -> The OpenSSL Project, http://www.openssl.org/ [Ver = 0.9.8b | Size = 1044480 bytes | Created Date = 09/07/2007 20:07:44 | Attr = ] qt-dx331.dll -> %System32%\qt-dx331.dll -> [Ver = | Size = 3596288 bytes | Created Date = 09/07/2007 20:07:50 | Attr = ] ssldivx.dll -> %System32%\ssldivx.dll -> The OpenSSL Project, http://www.openssl.org/ [Ver = 0.9.8b | Size = 200704 bytes | Created Date = 09/07/2007 20:07:44 | Attr = ] tmp.reg -> %System32%\tmp.reg -> [Ver = | Size = 6072 bytes | Created Date = 02/09/2007 23:15:38 | Attr = ] dpufr.qm -> %System32%\dpufr.qm -> [Ver = | Size = 8835 bytes | Created Date = 09/07/2007 20:05:13 | Attr = ] actskin4.ocx -> %System32%\actskin4.ocx -> [Ver = 4, 2, 7, 3 | Size = 380928 bytes | Created Date = 03/09/2007 18:23:00 | Attr = ] DivX.dll -> %System32%\DivX.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 740442 bytes | Created Date = 09/07/2007 20:05:54 | Attr = ] dtu_fr.qm -> %System32%\dtu_fr.qm -> [Ver = | Size = 3162 bytes | Created Date = 09/07/2007 20:05:13 | Attr = ] dsm_fr.qm -> %System32%\dsm_fr.qm -> [Ver = | Size = 9878 bytes | Created Date = 09/07/2007 20:07:53 | Attr = ] dpuGUI10.dll -> %System32%\dpuGUI10.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 53248 bytes | Created Date = 09/07/2007 20:05:57 | Attr = ] divx_xx0c.dll -> %System32%\divx_xx0c.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 823296 bytes | Created Date = 09/07/2007 20:05:54 | Attr = ] px.dll -> %System32%\px.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 527096 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] pxmas.dll -> %System32%\pxmas.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 183032 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] pxwave.dll -> %System32%\pxwave.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 379640 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] vxblock.dll -> %System32%\vxblock.dll -> Sonic Solutions [Ver = 1.00.74a | Size = 39672 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] xpdx.sys -> %System32%\xpdx.sys -> [Ver = | Size = 55004 bytes | Created Date = 02/01/1601 23:00:00 | Attr = ] divx_xx07.dll -> %System32%\divx_xx07.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 823296 bytes | Created Date = 09/07/2007 20:05:54 | Attr = ] pxdrv.dll -> %System32%\pxdrv.dll -> Sonic Solutions [Ver = 1.02.01a | Size = 502520 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] divx_xx11.dll -> %System32%\divx_xx11.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 802816 bytes | Created Date = 09/07/2007 20:05:54 | Attr = ] pxsfs.dll -> %System32%\pxsfs.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 1329912 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] MRT.INI -> %System32%\MRT.INI -> [Ver = | Size = 118 bytes | Created Date = 15/08/2007 17:56:59 | Attr = ] pxafs.dll -> %System32%\pxafs.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 129784 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] pxhpinst.exe -> %System32%\pxhpinst.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 72440 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] DivXsm.exe -> %System32%\DivXsm.exe -> DivX Inc. [Ver = 6, 6, 1, 4 | Size = 524288 bytes | Created Date = 09/07/2007 20:07:53 | Attr = ] Divxdec.ax -> %System32%\Divxdec.ax -> DivX, Inc. [Ver = 6.6.1.4 | Size = 638976 bytes | Created Date = 09/07/2007 20:05:49 | Attr = ] DivXMedia.ax -> %System32%\DivXMedia.ax -> DivXNetworks [Ver = 0.0.0.028 | Size = 352401 bytes | Created Date = 09/07/2007 20:05:48 | Attr = ] pxinsa64.exe -> %System32%\pxinsa64.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 64760 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] pxinsi64.exe -> %System32%\pxinsi64.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 118520 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] pxcpya64.exe -> %System32%\pxcpya64.exe -> Sonic Solutions [Ver = 1.00.39a | Size = 64760 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] DivXWMPExtType.dll -> %System32%\DivXWMPExtType.dll -> [Ver = | Size = 12288 bytes | Created Date = 09/07/2007 20:05:28 | Attr = ] DivXCodecUpdateChecker.exe -> %System32%\DivXCodecUpdateChecker.exe -> DivX, Inc. [Ver = 6, 2, 5, 7 | Size = 124472 bytes | Created Date = 09/07/2007 20:05:28 | Attr = ] pxcpyi64.exe -> %System32%\pxcpyi64.exe -> Sonic Solutions [Ver = 1.00.39a | Size = 116472 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] gpedit.msc -> %System32%\gpedit.msc -> [Ver = | Size = 34352 bytes | Created Date = 02/09/2007 19:40:02 | Attr = ] ldinfo.ldr -> %System32%\ldinfo.ldr -> [Ver = | Size = 745 bytes | Created Date = 21/08/2007 16:46:02 | Attr = ] aswBoot.exe -> %System32%\aswBoot.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 783224 bytes | Created Date = 03/09/2007 18:23:00 | Attr = ] AvastSS.scr -> %System32%\AvastSS.scr -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 95608 bytes | Created Date = 03/09/2007 18:23:05 | Attr = ] f06WtR -> %System32%\f06WtR -> [Folder | Created Date = 21/08/2007 16:46:02 | Attr = ] n.ini -> %System32%\n.ini -> [Ver = | Size = 75 bytes | Created Date = 21/08/2007 16:46:06 | Attr = ] GroupPolicy -> %System32%\GroupPolicy -> [Folder | Created Date = 02/09/2007 19:40:02 | Attr = H ] cdralw2k.sys -> %System32%\drivers\cdralw2k.sys -> Sonic Solutions [Ver = 8.0.0.212 | Size = 2560 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ] cdr4_xp.sys -> %System32%\drivers\cdr4_xp.sys -> Sonic Solutions [Ver = 8.0.0.212 | Size = 2432 bytes | Created Date = 28/07/2007 02:19:41 | Attr = ] PxHelp20.sys -> %System32%\drivers\PxHelp20.sys -> Sonic Solutions [Ver = 3.00.43J | Size = 36624 bytes | Created Date = 28/07/2007 02:19:41 | Attr = ] klif.cab -> %System32%\drivers\klif.cab -> [Ver = | Size = 78123 bytes | Created Date = 25/08/2007 16:23:22 | Attr = ] aswmon.sys -> %System32%\drivers\aswmon.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 92848 bytes | Created Date = 03/09/2007 18:23:05 | Attr = ] aswmon2.sys -> %System32%\drivers\aswmon2.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 94416 bytes | Created Date = 03/09/2007 18:23:05 | Attr = ] aavmker4.sys -> %System32%\drivers\aavmker4.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 26624 bytes | Created Date = 03/09/2007 18:23:06 | Attr = ] aswTdi.sys -> %System32%\drivers\aswTdi.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 42912 bytes | Created Date = 03/09/2007 18:23:07 | Attr = ] aswRdr.sys -> %System32%\drivers\aswRdr.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 23152 bytes | Created Date = 03/09/2007 18:23:08 | Attr = ] hosts.20070902-203346.backup -> %System32%\drivers\etc\hosts.20070902-203346.backup -> [Ver = | Size = 659 bytes | Created Date = 02/09/2007 19:33:46 | Attr = R ] file joy proc deaf -> %AllUsersAppData%\file joy proc deaf -> [Folder | Created Date = 13/08/2007 19:27:18 | Attr = ] Iso log peak file -> %AllUsersAppData%\Iso log peak file -> [Folder | Created Date = 13/08/2007 19:27:28 | Attr = ] WinAntiVirus Pro 2007 -> %AllUsersAppData%\WinAntiVirus Pro 2007 -> [Folder | Created Date = 25/08/2007 15:23:01 | Attr = ] Grisoft -> %AllUsersAppData%\Grisoft -> [Folder | Created Date = 01/09/2007 22:29:48 | Attr = ] Lavasoft -> %AllUsersAppData%\Lavasoft -> [Folder | Created Date = 01/09/2007 23:20:50 | Attr = ] Spybot - Search & Destroy -> %AllUsersAppData%\Spybot - Search & Destroy -> [Folder | Created Date = 02/09/2007 18:30:46 | Attr = ] DivX -> %UserAppData%\DivX -> [Folder | Created Date = 28/07/2007 02:24:13 | Attr = ] Lavasoft -> %UserAppData%\Lavasoft -> [Folder | Created Date = 02/09/2007 16:05:20 | Attr = ] Mes Historiques de Conversation -> %UserDocuments%\Mes Historiques de Conversation -> [Folder | Created Date = 25/07/2007 19:17:57 | Attr = ] QSDQDQSD.doc -> %UserDocuments%\QSDQDQSD.doc -> [Ver = | Size = 858 bytes | Created Date = 21/08/2007 20:22:28 | Attr = ] je mappelle Véro.doc -> %UserDocuments%\je mappelle Véro.doc -> [Ver = | Size = 940 bytes | Created Date = 21/08/2007 20:26:44 | Attr = ] mémoire jp.wps -> %UserDocuments%\mémoire jp.wps -> [Ver = | Size = 166400 bytes | Created Date = 21/08/2007 20:42:22 | Attr = ] Document.rtf -> %UserDocuments%\Document.rtf -> [Ver = | Size = 264 bytes | Created Date = 21/08/2007 21:10:17 | Attr = ] Mes dossiers de partage.lnk -> %UserDocuments%\Mes dossiers de partage.lnk -> [Ver = | Size = 849 bytes | Created Date = 24/08/2007 22:18:08 | Attr = ] DivX Converter.lnk -> %AllUsersDesktop%\DivX Converter.lnk -> [Ver = | Size = 714 bytes | Created Date = 28/07/2007 02:19:38 | Attr = ] DivX Player.lnk -> %AllUsersDesktop%\DivX Player.lnk -> [Ver = | Size = 703 bytes | Created Date = 28/07/2007 02:19:53 | Attr = ] Ad-Aware SE Personal.lnk -> %AllUsersDesktop%\Ad-Aware SE Personal.lnk -> [Ver = | Size = 749 bytes | Created Date = 02/09/2007 16:05:11 | Attr = ] RegCure.lnk -> %AllUsersDesktop%\RegCure.lnk -> [Ver = | Size = 441 bytes | Created Date = 03/09/2007 16:33:11 | Attr = ] avast! Antivirus.lnk -> %AllUsersDesktop%\avast! Antivirus.lnk -> [Ver = | Size = 1617 bytes | Created Date = 03/09/2007 18:23:08 | Attr = ] DivX Movies.lnk -> %UserDesktop%\DivX Movies.lnk -> [Ver = | Size = 1514 bytes | Created Date = 28/07/2007 02:19:39 | Attr = ] kav700123fr_1645.exe -> %UserDesktop%\kav700123fr_1645.exe -> Kaspersky Lab France [Ver = 7.0.0.123 | Size = 24708797 bytes | Created Date = 25/08/2007 16:13:47 | Attr = ] Quarantaine_Voir -> %UserDesktop%\Quarantaine_Voir -> [Folder | Created Date = 01/09/2007 21:17:17 | Attr = ] Spybot - Search & Destroy.lnk -> %UserDesktop%\Spybot - Search & Destroy.lnk -> [Ver = | Size = 871 bytes | Created Date = 02/09/2007 18:30:46 | Attr = ] DocsVeronique -> %UserDesktop%\DocsVeronique -> [Folder | Created Date = 03/09/2007 17:51:00 | Attr = ] [Files/Folders - Modified Within 60 days] hiberfil.sys -> %SystemDrive%\hiberfil.sys -> [Ver = | Size = 526897152 bytes | Modified Date = 03/09/2007 19:24:20 | Attr = HS] Config.Msi -> %SystemDrive%\Config.Msi -> [Folder | Modified Date = 25/08/2007 17:23:34 | Attr = HS] WA7PV -> %SystemDrive%\WA7PV -> [Folder | Modified Date = 25/08/2007 16:24:30 | Attr = HS] bOoT.iNi -> %SystemDrive%\bOoT.iNi -> [Ver = | Size = 216 bytes | Modified Date = 03/09/2007 17:17:02 | Attr = RHS] Temp -> %SystemDrive%\Temp -> [Folder | Modified Date = 21/08/2007 17:46:04 | Attr = ] sqmnoopt06.sqm -> %SystemDrive%\sqmnoopt06.sqm -> [Ver = | Size = 244 bytes | Modified Date = 14/07/2007 00:24:38 | Attr = H ] sqmdata06.sqm -> %SystemDrive%\sqmdata06.sqm -> [Ver = | Size = 268 bytes | Modified Date = 14/07/2007 00:24:38 | Attr = H ] sqmnoopt07.sqm -> %SystemDrive%\sqmnoopt07.sqm -> [Ver = | Size = 244 bytes | Modified Date = 14/07/2007 11:49:10 | Attr = H ] sqmdata07.sqm -> %SystemDrive%\sqmdata07.sqm -> [Ver = | Size = 268 bytes | Modified Date = 14/07/2007 11:49:10 | Attr = H ] sqmnoopt08.sqm -> %SystemDrive%\sqmnoopt08.sqm -> [Ver = | Size = 244 bytes | Modified Date = 16/07/2007 12:10:50 | Attr = H ] sqmdata08.sqm -> %SystemDrive%\sqmdata08.sqm -> [Ver = | Size = 268 bytes | Modified Date = 16/07/2007 12:10:50 | Attr = H ] sqmnoopt09.sqm -> %SystemDrive%\sqmnoopt09.sqm -> [Ver = | Size = 244 bytes | Modified Date = 17/07/2007 15:29:10 | Attr = H ] sqmdata09.sqm -> %SystemDrive%\sqmdata09.sqm -> [Ver = | Size = 268 bytes | Modified Date = 17/07/2007 15:29:10 | Attr = H ] sqmnoopt10.sqm -> %SystemDrive%\sqmnoopt10.sqm -> [Ver = | Size = 244 bytes | Modified Date = 18/07/2007 15:05:34 | Attr = H ] sqmdata10.sqm -> %SystemDrive%\sqmdata10.sqm -> [Ver = | Size = 268 bytes | Modified Date = 18/07/2007 15:05:34 | Attr = H ] system.ini -> %SystemRoot%\system.ini -> [Ver = | Size = 227 bytes | Modified Date = 03/09/2007 17:17:02 | Attr = ] win.ini -> %SystemRoot%\win.ini -> [Ver = | Size = 555 bytes | Modified Date = 03/09/2007 17:17:02 | Attr = ] imsins.BAK -> %SystemRoot%\imsins.BAK -> [Ver = | Size = 1374 bytes | Modified Date = 16/08/2007 15:46:20 | Attr = ] bootstat.dat -> %SystemRoot%\bootstat.dat -> [Ver = | Size = 2048 bytes | Modified Date = 03/09/2007 19:29:36 | Attr = S] ComponentList.xml -> %SystemRoot%\ComponentList.xml -> [Ver = | Size = 97 bytes | Modified Date = 03/09/2007 00:36:42 | Attr = ] album95.zip -> %SystemRoot%\album95.zip -> [Ver = | Size = 22 bytes | Modified Date = 02/09/2007 05:17:04 | Attr = ] photos091.zip -> %SystemRoot%\photos091.zip -> [Ver = | Size = 22 bytes | Modified Date = 02/09/2007 05:17:04 | Attr = ] images021.zip -> %SystemRoot%\images021.zip -> [Ver = | Size = 22 bytes | Modified Date = 02/09/2007 05:17:06 | Attr = ] photos061.zip -> %SystemRoot%\photos061.zip -> [Ver = | Size = 22 bytes | Modified Date = 02/09/2007 05:17:06 | Attr = ] photo66.zip -> %SystemRoot%\photo66.zip -> [Ver = | Size = 22 bytes | Modified Date = 02/09/2007 05:17:06 | Attr = ] itsME28.zip -> %SystemRoot%\itsME28.zip -> [Ver = | Size = 22 bytes | Modified Date = 02/09/2007 05:17:08 | Attr = ] itsME7.zip -> %SystemRoot%\itsME7.zip -> [Ver = | Size = 22 bytes | Modified Date = 02/09/2007 05:17:08 | Attr = ] images027.zip -> %SystemRoot%\images027.zip -> [Ver = | Size = 22 bytes | Modified Date = 01/09/2007 20:50:14 | Attr = ] BDOSCAN8 -> %SystemRoot%\BDOSCAN8 -> [Folder | Modified Date = 03/09/2007 13:53:22 | Attr = ] $NtUninstallKB936357$ -> %SystemRoot%\$NtUninstallKB936357$ -> [Folder | Modified Date = 25/07/2007 05:43:48 | Attr = H ] $NtUninstallKB937143$ -> %SystemRoot%\$NtUninstallKB937143$ -> [Folder | Modified Date = 15/08/2007 18:55:42 | Attr = H ] $NtUninstallKB936782_WMP11$ -> %SystemRoot%\$NtUninstallKB936782_WMP11$ -> [Folder | Modified Date = 16/08/2007 15:43:44 | Attr = H ] $NtUninstallKB938127$ -> %SystemRoot%\$NtUninstallKB938127$ -> [Folder | Modified Date = 16/08/2007 15:44:26 | Attr = H ] $NtUninstallKB938829$ -> %SystemRoot%\$NtUninstallKB938829$ -> [Folder | Modified Date = 16/08/2007 15:44:50 | Attr = H ] $NtUninstallKB921503$ -> %SystemRoot%\$NtUninstallKB921503$ -> [Folder | Modified Date = 16/08/2007 15:45:16 | Attr = H ] $NtUninstallKB938828$ -> %SystemRoot%\$NtUninstallKB938828$ -> [Folder | Modified Date = 16/08/2007 15:45:44 | Attr = H ] $NtUninstallKB936021$ -> %SystemRoot%\$NtUninstallKB936021$ -> [Folder | Modified Date = 16/08/2007 15:46:10 | Attr = H ] $NtUninstallKB933360$ -> %SystemRoot%\$NtUninstallKB933360$ -> [Folder | Modified Date = 01/09/2007 22:58:40 | Attr = H ] SA.DAT -> %SystemRoot%\tasks\SA.DAT -> [Ver = | Size = 6 bytes | Modified Date = 03/09/2007 19:29:56 | Attr = H ] RegCure.job -> %SystemRoot%\tasks\RegCure.job -> [Ver = | Size = 392 bytes | Modified Date = 03/09/2007 17:33:16 | Attr = ] RegCure Program Check.job -> %SystemRoot%\tasks\RegCure Program Check.job -> [Ver = | Size = 458 bytes | Modified Date = 03/09/2007 19:31:06 | Attr = ] wpa.dbl -> %System32%\wpa.dbl -> [Ver = | Size = 1158 bytes | Modified Date = 03/09/2007 19:31:24 | Attr = ] perfc009.dat -> %System32%\perfc009.dat -> [Ver = | Size = 40998 bytes | Modified Date = 25/07/2007 01:17:54 | Attr = ] perfh009.dat -> %System32%\perfh009.dat -> [Ver = | Size = 313280 bytes | Modified Date = 25/07/2007 01:17:54 | Attr = ] perfc00C.dat -> %System32%\perfc00C.dat -> [Ver = | Size = 49924 bytes | Modified Date = 25/07/2007 01:17:54 | Attr = ] perfh00C.dat -> %System32%\perfh00C.dat -> [Ver = | Size = 369864 bytes | Modified Date = 25/07/2007 01:17:54 | Attr = ] divxsm.tlb -> %System32%\divxsm.tlb -> [Ver = | Size = 4816 bytes | Modified Date = 09/07/2007 21:07:54 | Attr = ] dpl100.dll -> %System32%\dpl100.dll -> DivX, Inc. [Ver = 1, 2, 0, 12 | Size = 73728 bytes | Modified Date = 09/07/2007 21:06:00 | Attr = ] dpu11.dll -> %System32%\dpu11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 294912 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ] dpu10.dll -> %System32%\dpu10.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 294912 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ] dpuGUI11.dll -> %System32%\dpuGUI11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 593920 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ] dpus11.dll -> %System32%\dpus11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 344064 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ] dpv11.dll -> %System32%\dpv11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 57344 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ] dtu100.dll -> %System32%\dtu100.dll -> DivX, Inc. [Ver = 1, 2, 0, 12 | Size = 196608 bytes | Modified Date = 09/07/2007 21:06:00 | Attr = ] libdivx.dll -> %System32%\libdivx.dll -> The OpenSSL Project, http://www.openssl.org/ [Ver = 0.9.8b | Size = 1044480 bytes | Modified Date = 09/07/2007 21:07:46 | Attr = ] qt-dx331.dll -> %System32%\qt-dx331.dll -> [Ver = | Size = 3596288 bytes | Modified Date = 09/07/2007 21:07:52 | Attr = ] ssldivx.dll -> %System32%\ssldivx.dll -> The OpenSSL Project, http://www.openssl.org/ [Ver = 0.9.8b | Size = 200704 bytes | Modified Date = 09/07/2007 21:07:46 | Attr = ] tmp.reg -> %System32%\tmp.reg -> [Ver = | Size = 6072 bytes | Modified Date = 03/09/2007 00:18:54 | Attr = ] dpufr.qm -> %System32%\dpufr.qm -> [Ver = | Size = 8835 bytes | Modified Date = 09/07/2007 21:05:14 | Attr = ] CONFIG.NT -> %System32%\CONFIG.NT -> [Ver = | Size = 3121 bytes | Modified Date = 03/09/2007 19:23:08 | Attr = ] PerfStringBackup.INI -> %System32%\PerfStringBackup.INI -> [Ver = | Size = 779768 bytes | Modified Date = 25/07/2007 01:17:54 | Attr = ] eRLog.ini -> %System32%\eRLog.ini -> [Ver = | Size = 0 bytes | Modified Date = 03/09/2007 00:37:02 | Attr = ] DivX.dll -> %System32%\DivX.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 740442 bytes | Modified Date = 09/07/2007 21:05:56 | Attr = ] dtu_fr.qm -> %System32%\dtu_fr.qm -> [Ver = | Size = 3162 bytes | Modified Date = 09/07/2007 21:05:14 | Attr = ] dsm_fr.qm -> %System32%\dsm_fr.qm -> [Ver = | Size = 9878 bytes | Modified Date = 09/07/2007 21:07:54 | Attr = ] dpuGUI10.dll -> %System32%\dpuGUI10.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 53248 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ] divx_xx0c.dll -> %System32%\divx_xx0c.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 823296 bytes | Modified Date = 09/07/2007 21:05:56 | Attr = ] px.dll -> %System32%\px.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 527096 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] pxmas.dll -> %System32%\pxmas.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 183032 bytes | Modified Date = 09/07/2007 21:07:50 | Attr = ] pxwave.dll -> %System32%\pxwave.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 379640 bytes | Modified Date = 09/07/2007 21:07:50 | Attr = ] vxblock.dll -> %System32%\vxblock.dll -> Sonic Solutions [Ver = 1.00.74a | Size = 39672 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] xpdx.sys -> %System32%\xpdx.sys -> [Ver = | Size = 55004 bytes | Modified Date = 21/08/2007 16:04:04 | Attr = ] divx_xx07.dll -> %System32%\divx_xx07.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 823296 bytes | Modified Date = 09/07/2007 21:05:56 | Attr = ] pxdrv.dll -> %System32%\pxdrv.dll -> Sonic Solutions [Ver = 1.02.01a | Size = 502520 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] divx_xx11.dll -> %System32%\divx_xx11.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 802816 bytes | Modified Date = 09/07/2007 21:05:56 | Attr = ] pxsfs.dll -> %System32%\pxsfs.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 1329912 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] MRT.INI -> %System32%\MRT.INI -> [Ver = | Size = 118 bytes | Modified Date = 15/08/2007 18:57:00 | Attr = ] pxafs.dll -> %System32%\pxafs.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 129784 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] pxhpinst.exe -> %System32%\pxhpinst.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 72440 bytes | Modified Date = 09/07/2007 21:07:50 | Attr = ] DivXsm.exe -> %System32%\DivXsm.exe -> DivX Inc. [Ver = 6, 6, 1, 4 | Size = 524288 bytes | Modified Date = 09/07/2007 21:07:54 | Attr = ] Divxdec.ax -> %System32%\Divxdec.ax -> DivX, Inc. [Ver = 6.6.1.4 | Size = 638976 bytes | Modified Date = 09/07/2007 21:05:50 | Attr = ] DivXMedia.ax -> %System32%\DivXMedia.ax -> DivXNetworks [Ver = 0.0.0.028 | Size = 352401 bytes | Modified Date = 09/07/2007 21:05:50 | Attr = ] pxinsa64.exe -> %System32%\pxinsa64.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 64760 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] pxinsi64.exe -> %System32%\pxinsi64.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 118520 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] pxcpya64.exe -> %System32%\pxcpya64.exe -> Sonic Solutions [Ver = 1.00.39a | Size = 64760 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] DivXWMPExtType.dll -> %System32%\DivXWMPExtType.dll -> [Ver = | Size = 12288 bytes | Modified Date = 09/07/2007 21:05:30 | Attr = ] DivXCodecUpdateChecker.exe -> %System32%\DivXCodecUpdateChecker.exe -> DivX, Inc. [Ver = 6, 2, 5, 7 | Size = 124472 bytes | Modified Date = 09/07/2007 21:05:30 | Attr = ] pxcpyi64.exe -> %System32%\pxcpyi64.exe -> Sonic Solutions [Ver = 1.00.39a | Size = 116472 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] ldinfo.ldr -> %System32%\ldinfo.ldr -> [Ver = | Size = 745 bytes | Modified Date = 21/08/2007 17:47:20 | Attr = ] aswBoot.exe -> %System32%\aswBoot.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 783224 bytes | Modified Date = 28/07/2007 00:07:22 | Attr = ] AvastSS.scr -> %System32%\AvastSS.scr -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 95608 bytes | Modified Date = 27/07/2007 23:57:50 | Attr = ] f06WtR -> %System32%\f06WtR -> [Folder | Modified Date = 21/08/2007 17:46:04 | Attr = ] n.ini -> %System32%\n.ini -> [Ver = | Size = 75 bytes | Modified Date = 21/08/2007 17:47:02 | Attr = ] GroupPolicy -> %System32%\GroupPolicy -> [Folder | Modified Date = 02/09/2007 20:40:04 | Attr = H ] cdralw2k.sys -> %System32%\drivers\cdralw2k.sys -> Sonic Solutions [Ver = 8.0.0.212 | Size = 2560 bytes | Modified Date = 09/07/2007 21:07:50 | Attr = ] cdr4_xp.sys -> %System32%\drivers\cdr4_xp.sys -> Sonic Solutions [Ver = 8.0.0.212 | Size = 2432 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] PxHelp20.sys -> %System32%\drivers\PxHelp20.sys -> Sonic Solutions [Ver = 3.00.43J | Size = 36624 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ] klif.cab -> %System32%\drivers\klif.cab -> [Ver = | Size = 78123 bytes | Modified Date = 25/08/2007 17:23:24 | Attr = ] aswmon.sys -> %System32%\drivers\aswmon.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 92848 bytes | Modified Date = 28/07/2007 00:02:50 | Attr = ] aswmon2.sys -> %System32%\drivers\aswmon2.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 94416 bytes | Modified Date = 28/07/2007 00:02:34 | Attr = ] aavmker4.sys -> %System32%\drivers\aavmker4.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 26624 bytes | Modified Date = 27/07/2007 23:58:36 | Attr = ] aswTdi.sys -> %System32%\drivers\aswTdi.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 42912 bytes | Modified Date = 27/07/2007 23:59:58 | Attr = ] aswRdr.sys -> %System32%\drivers\aswRdr.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 23152 bytes | Modified Date = 28/07/2007 00:00:40 | Attr = ] hosts.20070902-203346.backup -> %System32%\drivers\etc\hosts.20070902-203346.backup -> [Ver = | Size = 659 bytes | Modified Date = 02/09/2007 19:56:36 | Attr = R ] file joy proc deaf -> %AllUsersAppData%\file joy proc deaf -> [Folder | Modified Date = 13/08/2007 20:27:20 | Attr = ] Iso log peak file -> %AllUsersAppData%\Iso log peak file -> [Folder | Modified Date = 13/08/2007 20:27:30 | Attr = ] WinAntiVirus Pro 2007 -> %AllUsersAppData%\WinAntiVirus Pro 2007 -> [Folder | Modified Date = 25/08/2007 16:23:02 | Attr = ] Grisoft -> %AllUsersAppData%\Grisoft -> [Folder | Modified Date = 01/09/2007 23:29:50 | Attr = ] Lavasoft -> %AllUsersAppData%\Lavasoft -> [Folder | Modified Date = 02/09/2007 00:20:52 | Attr = ] Spybot - Search & Destroy -> %AllUsersAppData%\Spybot - Search & Destroy -> [Folder | Modified Date = 02/09/2007 19:30:48 | Attr = ] wklnhst.dat -> %UserAppData%\wklnhst.dat -> [Ver = | Size = 7828 bytes | Modified Date = 01/09/2007 15:56:20 | Attr = ] DivX -> %UserAppData%\DivX -> [Folder | Modified Date = 28/07/2007 03:24:14 | Attr = ] Lavasoft -> %UserAppData%\Lavasoft -> [Folder | Modified Date = 02/09/2007 17:05:22 | Attr = ] DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> %LocalAppData%\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [Ver = | Size = 86528 bytes | Modified Date = 25/08/2007 16:24:00 | Attr = ] Mes fichiers reçus -> %UserDocuments%\Mes fichiers reçus -> [Folder | Modified Date = 28/07/2007 19:21:18 | Attr = ] Droppix Recorder projects -> %UserDocuments%\Droppix Recorder projects -> [Folder | Modified Date = 22/08/2007 05:08:10 | Attr = R ] Droppix Label Maker projects -> %UserDocuments%\Droppix Label Maker projects -> [Folder | Modified Date = 01/08/2007 19:48:08 | Attr = R ] Droppix Label Maker Misc -> %UserDocuments%\Droppix Label Maker Misc -> [Folder | Modified Date = 01/08/2007 19:48:08 | Attr = R ] Mes Historiques de Conversation -> %UserDocuments%\Mes Historiques de Conversation -> [Folder | Modified Date = 25/07/2007 20:17:58 | Attr = ] QSDQDQSD.doc -> %UserDocuments%\QSDQDQSD.doc -> [Ver = | Size = 858 bytes | Modified Date = 21/08/2007 21:22:30 | Attr = ] je mappelle Véro.doc -> %UserDocuments%\je mappelle Véro.doc -> [Ver = | Size = 940 bytes | Modified Date = 21/08/2007 21:26:46 | Attr = ] mémoire jp.wps -> %UserDocuments%\mémoire jp.wps -> [Ver = | Size = 166400 bytes | Modified Date = 21/08/2007 21:42:24 | Attr = ] Document.rtf -> %UserDocuments%\Document.rtf -> [Ver = | Size = 264 bytes | Modified Date = 21/08/2007 22:10:18 | Attr = ] Mes dossiers de partage.lnk -> %UserDocuments%\Mes dossiers de partage.lnk -> [Ver = | Size = 849 bytes | Modified Date = 25/08/2007 17:40:42 | Attr = ] Espace Wanadoo.lnk -> %AllUsersDesktop%\Espace Wanadoo.lnk -> [Ver = | Size = 1422 bytes | Modified Date = 25/07/2007 01:11:42 | Attr = ] Mozilla Firefox.lnk -> %AllUsersDesktop%\Mozilla Firefox.lnk -> [Ver = | Size = 1510 bytes | Modified Date = 07/08/2007 17:08:56 | Attr = ] DivX Converter.lnk -> %AllUsersDesktop%\DivX Converter.lnk -> [Ver = | Size = 714 bytes | Modified Date = 28/07/2007 03:19:40 | Attr = ] DivX Player.lnk -> %AllUsersDesktop%\DivX Player.lnk -> [Ver = | Size = 703 bytes | Modified Date = 28/07/2007 03:19:54 | Attr = ] Ad-Aware SE Personal.lnk -> %AllUsersDesktop%\Ad-Aware SE Personal.lnk -> [Ver = | Size = 749 bytes | Modified Date = 02/09/2007 17:05:12 | Attr = ] RegCure.lnk -> %AllUsersDesktop%\RegCure.lnk -> [Ver = | Size = 441 bytes | Modified Date = 03/09/2007 17:33:12 | Attr = ] avast! Antivirus.lnk -> %AllUsersDesktop%\avast! Antivirus.lnk -> [Ver = | Size = 1617 bytes | Modified Date = 03/09/2007 19:23:10 | Attr = ] DivX Movies.lnk -> %UserDesktop%\DivX Movies.lnk -> [Ver = | Size = 1514 bytes | Modified Date = 28/07/2007 03:19:56 | Attr = ] kav700123fr_1645.exe -> %UserDesktop%\kav700123fr_1645.exe -> Kaspersky Lab France [Ver = 7.0.0.123 | Size = 24708797 bytes | Modified Date = 25/08/2007 17:21:42 | Attr = ] Quarantaine_Voir -> %UserDesktop%\Quarantaine_Voir -> [Folder | Modified Date = 01/09/2007 22:17:18 | Attr = ] Spybot - Search & Destroy.lnk -> %UserDesktop%\Spybot - Search & Destroy.lnk -> [Ver = | Size = 871 bytes | Modified Date = 02/09/2007 23:47:04 | Attr = ] DocsVeronique -> %UserDesktop%\DocsVeronique -> [Folder | Modified Date = 03/09/2007 18:51:02 | Attr = ] [File String Scan - Non-Microsoft Only] aspack , -> %SystemRoot%\ACER.SCR -> [Ver = | Size = 187392 bytes | Modified Date = 14/06/2004 11:50:08 | Attr = ] PEC2 , -> %System32%\dfrg.msc -> [Ver = | Size = 41131 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] winsync , -> %System32%\wbdbase.deu -> [Ver = | Size = 1309184 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ] WSUD , -> %System32%\ALSNDMGR.CPL -> Realtek Semiconductor Corp. [Ver = 2.2.0.43 | Size = 18706432 bytes | Modified Date = 18/04/2005 19:57:58 | Attr = ] Thawte Consulting , -> %System32%\XceedSco.dll -> Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com [Ver = 1.1.104.0 | Size = 266952 bytes | Modified Date = 19/05/2003 11:37:20 | Attr = ] Thawte Consulting , -> %System32%\XceedCry.dll -> Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com [Ver = 1.1.103.0 | Size = 516656 bytes | Modified Date = 02/02/2003 12:01:34 | Attr = ] PEC2 , PECompact2 , -> %System32%\DivX.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 740442 bytes | Modified Date = 09/07/2007 21:05:56 | Attr = ] UPX! , UPX0 , -> %System32%\aswBoot.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 783224 bytes | Modified Date = 28/07/2007 00:07:22 | Attr = ] File scan skipped for file %UserDocuments%\discours pr mon annif.zip -> File size too big (155237498 bytes) -> FSG! , -> %UserDocuments%\journée playa.zip -> [Ver = | Size = 8578334 bytes | Modified Date = 06/06/2006 22:02:18 | Attr = ] < End of report > Merci @+
  8. ray97
  9. ray97
    Bonjour, je suis dans l'impossibiité d'utiliser le paneau de configuration et de désinstaller des prorammes. J'ai comme message : " Cette operation a été annulée en raison de restrictions en vigueur sur cet ordinateur. Contactez votre administrateur système". Voici le rapport Hijackthis : Logfile of HijackThis v1.99.1 Scan saved at 15:10:32, on 03/09/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Acer\eManager\anbmServ.exe C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\system32\lxcrcoms.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\Hijackthis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar1.02.5000.1021\fr\msntb.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar1.02.5000.1021 \fr\msntb.dll O4 - HKLM\..\Run: [LXCRCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCRtime.dll,_RunDLLEntry@16 O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1 O7 - HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1 O8 - Extra context menu item: &Search - http://ko.bar.need2find.com/KO/menusearch.html?p=KO O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06 \bin\ssv.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir% \bdoscandel.exe (file missing) O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU) O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} - O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppD...ap/PhtPkMSN.cab O16 - DPF: {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} (BatchDownloader Class) - http://appdirectory.messenger.msn.com/AppD...ap/DigWXMSN.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Filter: text/html - (no CLSID) - (no file) O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: Notebook Manager Service (anbmService) - OSA Technologies Inc. - C:\Acer\eManager\anbmServ.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: lxcr_device - - C:\WINDOWS\system32\lxcrcoms.exe O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe (file missing) Merci @+
×
×
  • Créer...