Impossible d'aceder au panneau de configuration.... [Résolu]

ray97 · le 3 septembre 2007

Bonjour,

je suis dans l'impossibiité d'utiliser le paneau de configuration et de désinstaller des prorammes. J'ai comme message :

" Cette operation a été annulée en raison de restrictions en vigueur sur cet ordinateur. Contactez votre administrateur système".

Voici le rapport Hijackthis :

Logfile of HijackThis v1.99.1

Scan saved at 15:10:32, on 03/09/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Acer\eManager\anbmServ.exe

C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\WINDOWS\system32\lxcrcoms.exe

C:\WINDOWS\system32\wscntfy.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\Hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN

Toolbar1.02.5000.1021\fr\msntb.dll

O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program

Files\Yahoo!\Companion\Installs\cpn\yt.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll

O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar1.02.5000.1021

\fr\msntb.dll

O4 - HKLM\..\Run: [LXCRCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCRtime.dll,_RunDLLEntry@16

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1

O7 - HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1

O8 - Extra context menu item: &Search - http://ko.bar.need2find.com/KO/menusearch.html?p=KO

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06

\bin\ssv.dll

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%

\bdoscandel.exe (file missing)

O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe

O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager

Wanadoo.exe

O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)

O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab

O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} -

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab

O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) -

http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) -

http://appdirectory.messenger.msn.com/AppD...ap/PhtPkMSN.cab

O16 - DPF: {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} (BatchDownloader Class) -

http://appdirectory.messenger.msn.com/AppD...ap/DigWXMSN.cab

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Filter: text/html - (no CLSID) - (no file)

O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: Notebook Manager Service (anbmService) - OSA Technologies Inc. - C:\Acer\eManager\anbmServ.exe

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file

missing)

O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file

missing)

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: lxcr_device - - C:\WINDOWS\system32\lxcrcoms.exe

O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe (file missing)

Merci

@+

Modifié le 8 septembre 2007 par ray97

Thanos · le 3 septembre 2007

salut et bienvenue ray97

Peux tu poster le rapport suivant stp ? >

Télécharge WinPFind3U.exe sur ton bureau.

Ouvre le dossier et double clique sur le fichier WinPFind3U.exe pour lancer le programme.
Sous le groupe Files Created Within sélectionne 60 days
Sous le groupe Files Modified Within sélectionne 60 days
Sous le groupe String Search sélectionne Non-Microsoft
Sous le groupe Additional Scans coche les cases >
Reg- Uninstall List
Reg- Security Settings
Reg- Software Policy Settings
Reg- Additional Folder Scans
A présent clique sur le bouton Run Scan dans la barre d'outils
Lorsque le scan est terminé,le bloc-notes s'ouvre et affiche le rapport.
Clique sur le menu "Format" et assure toi que la case "Retour automatique à la ligne" ne soit pas cochée.
Copie/Colle le contenu du rapport dans ta prochaine réponse.

@+

ray97 · le 3 septembre 2007

salut et bienvenue ray97

Peux tu poster le rapport suivant stp ? >

Télécharge WinPFind3U.exe sur ton bureau.

Ouvre le dossier et double clique sur le fichier WinPFind3U.exe pour lancer le programme.

Sous le groupe Files Created Within sélectionne 60 days

Sous le groupe Files Modified Within sélectionne 60 days

Sous le groupe String Search sélectionne Non-Microsoft

Sous le groupe Additional Scans coche les cases >
Reg- Uninstall List
Reg- Security Settings
Reg- Software Policy Settings
Reg- Additional Folder Scans

A présent clique sur le bouton Run Scan dans la barre d'outils

Lorsque le scan est terminé,le bloc-notes s'ouvre et affiche le rapport.

Clique sur le menu "Format" et assure toi que la case "Retour automatique à la ligne" ne soit pas cochée.

Copie/Colle le contenu du rapport dans ta prochaine réponse.

@+

ray97 · le 3 septembre 2007

Salut Charles,

Voici le rapport de winpfind3u :

WinPFind3 logfile created on: 03/09/2007 20:03:10

WinPFind3U by OldTimer - Version 1.0.41 Folder = C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\winpfind3u\WinPFind3u\

Microsoft Windows XP Service Pack 2 (Version = 5.1.2600)

Internet Explorer (Version = 6.0.2900.2180)

502,42 Mb Total Physical Memory | 263,63 Mb Available Physical Memory | 52,47% Memory free

1,20 Gb Paging File | 0,93 Gb Available in Paging File | 77,77% Paging File free

Paging file location(s): C:\pagefile.sys 756 1512;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 35,60 Gb Total Space | 3,66 Gb Free Space | 10,28% Space Free

Drive D: | 35,98 Gb Total Space | 11,59 Gb Free Space | 32,21% Space Free

E: Drive not present or media not loaded

F: Drive not present or media not loaded

Computer Name: BICHOU

Current User Name: véronique darin

Logged in as Administrator.

Current Boot Mode: Normal

[Processes - Non-Microsoft Only]

anbmserv.exe -> %SystemDrive%\Acer\eManager\anbmServ.exe -> OSA Technologies Inc. [Ver = 3.0.6.9 | Size = 1273344 bytes | Modified Date = 06/06/2005 19:08:58 | Attr = ]

ashdisp.exe -> %ProgramFiles%\Alwil Software\Avast4\ashDisp.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 75128 bytes | Modified Date = 28/07/2007 00:03:34 | Attr = ]

ashmaisv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashMaiSv.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 243064 bytes | Modified Date = 28/07/2007 00:03:08 | Attr = ]

ashserv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashServ.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 132472 bytes | Modified Date = 28/07/2007 00:03:28 | Attr = ]

ashwebsv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashWebSv.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 345464 bytes | Modified Date = 28/07/2007 00:02:20 | Attr = ]

aswupdsv.exe -> %ProgramFiles%\Alwil Software\Avast4\aswUpdSv.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 16248 bytes | Modified Date = 27/07/2007 23:52:46 | Attr = ]

firefox.exe -> %ProgramFiles%\Mozilla Firefox\firefox.exe -> Mozilla Corporation [Ver = 1.8.1.6: 2007072518 | Size = 7644520 bytes | Modified Date = 12/08/2007 22:29:40 | Attr = ]

googletoolbarnotifier.exe -> %ProgramFiles%\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe -> Google Inc. [Ver = 2, 0, 301, 1654 | Size = 68856 bytes | Modified Date = 31/03/2007 20:22:38 | Attr = ]

googleupdaterservice.exe -> %ProgramFiles%\Google\Common\Google Updater\GoogleUpdaterService.exe -> Google [Ver = 2.2.824.5515.beta | Size = 138680 bytes | Modified Date = 07/08/2007 16:04:14 | Attr = ]

lxcrcoms.exe -> %System32%\lxcrcoms.exe -> [Ver = 99.99.99.99 | Size = 495616 bytes | Modified Date = 20/02/2006 20:23:08 | Attr = ]

winpfind3u.exe -> %UserDesktop%\Downloads\OutilsVirus\winpfind3u\WinPFind3u\WinPFind3U.exe -> OldTimer Tools [Ver = 1.0.41.0 | Size = 322560 bytes | Modified Date = 31/08/2007 10:30:22 | Attr = ]

[Win32 Services - Non-Microsoft Only]

(dmadmin) Service d'administration du Gestionnaire de disque logique [Win32_Shared | On_Demand | Stopped] -> %System32%\dmadmin.exe -> Microsoft Corp., Veritas Software [Ver = 2600.2180.503.0 | Size = 225280 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ]

(STI Simulator) STI Simulator [Win32_Own | Auto | Stopped] -> -> File not found

[Registry - Non-Microsoft Only]

< Run [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->

avast! -> %ProgramFiles%\Alwil Software\Avast4\ashDisp.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 75128 bytes | Modified Date = 28/07/2007 00:03:34 | Attr = ]

LXCRCATS -> %System32%\spool\drivers\w32x86\3\lxcrtime.dll [rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCRtime.dll,_RunDLLEntry@16] -> [Ver = | Size = 65536 bytes | Modified Date = 24/02/2006 12:54:40 | Attr = ]

< OptionalComponents [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\ ->

IMAIL -> Installed = 1 ->

MAPI -> Installed = 1 ->

MSFS -> Installed = 1 ->

< Run [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->

swg -> %ProgramFiles%\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe -> Google Inc. [Ver = 2, 0, 301, 1654 | Size = 68856 bytes | Modified Date = 31/03/2007 20:22:38 | Attr = ]

< SecurityProviders [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders ->

< Winlogon settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon ->

< Winlogon settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon ->

< Winlogon\Notify settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ ->

igfxcui -> %System32%\igfxsrvc.dll -> Intel Corporation [Ver = 3.0.0.4020 | Size = 348160 bytes | Modified Date = 23/01/2005 10:31:10 | Attr = R ]

< CurrentVersion Policy Settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoControlPanel -> 1 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{BDEADF00-C265-11D0-BCED-00A0C90AB50F} -> 1 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF} -> 1073741857 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{0DF44EAA-FF21-4412-828E-260A8728E7F1} -> 32 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\dontdisplaylastusername -> 0 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticecaption -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticetext -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\shutdownwithoutlogon -> 1 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\undockwithoutlogon -> 1 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\DisableRegistryTools -> 1 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\DisableTaskMgr -> 1 ->

< CurrentVersion Policy Settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ ->

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> ->

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> ->

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun -> 144 ->

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoControlPanel -> 1 ->

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoWindowsUpdate -> 1 ->

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\ -> ->

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableRegistryTools -> 1 ->

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableTaskMgr -> 1 ->

< HOSTS File > -> ->

-> Hosts file not found ->

< Internet Explorer Settings > -> ->

HKLM: Default_Page_URL -> http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome ->

HKLM: Main\\Default_Search_URL -> http://www.google.com/ie ->

HKLM: Search Page -> http://www.google.com ->

HKLM: Start Page -> http://www.google.com ->

HKLM: CustomizeSearch -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm ->

HKLM: Search\\Default_Search_URL -> http://www.google.com/ie ->

HKLM: SearchAssistant -> http://www.google.com/ie ->

HKCU: Default_Search_URL -> http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch ->

HKCU: Search Bar -> http://www.google.com/ie ->

HKCU: Search Page -> http://www.google.com ->

HKCU: Start Page -> http://www.google.com ->

HKCU: SearchAssistant -> http://www.google.com/ie ->

HKCU: ProxyEnable -> 0 ->

< Trusted Sites > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->

msn.com [ - ] -> ->

< Internet Explorer ToolBars [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar ->

{2318C2B1-4965-11d4-9B18-009027A5CD4F} [HKLM] -> %ProgramFiles%\Google\googletoolbar1.dll [&Google] -> Google Inc. [Ver = 4, 0, 1601, 4978 | Size = 2436160 bytes | Modified Date = 31/03/2007 20:27:38 | Attr = R ]

{EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKLM] -> %ProgramFiles%\Yahoo!\Companion\Installs\cpn\yt.dll [Yahoo! Toolbar avec bloqueur de fenêtres pop-up] -> Yahoo! Inc. [Ver = 2005, 8, 4, 2 | Size = 343112 bytes | Modified Date = 04/08/2005 21:54:42 | Attr = ]

< Internet Explorer ToolBars [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ ->

ShellBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found] -> File not found

ShellBrowser\\{74CC49F7-EB32-4A08-B204-948962A6E3DB} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found] -> File not found

WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} [HKLM] -> %ProgramFiles%\Google\googletoolbar1.dll [&Google] -> Google Inc. [Ver = 4, 0, 1601, 4978 | Size = 2436160 bytes | Modified Date = 31/03/2007 20:27:38 | Attr = R ]

WebBrowser\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKLM] -> %ProgramFiles%\Yahoo!\Companion\Installs\cpn\yt.dll [Yahoo! Toolbar avec bloqueur de fenêtres pop-up] -> Yahoo! Inc. [Ver = 2005, 8, 4, 2 | Size = 343112 bytes | Modified Date = 04/08/2005 21:54:42 | Attr = ]

< Internet Explorer Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ ->

{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKLM] -> %ProgramFiles%\Java\jre1.5.0_06\bin\npjpi150_06.dll [MenuText: Console Java (Sun)] -> Sun Microsystems, Inc. [Ver = 5.0.60.5 | Size = 69746 bytes | Modified Date = 10/11/2005 13:22:12 | Attr = ]

{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKCU] -> %ProgramFiles%\Java\jre1.5.0_06\bin\ssv.dll [MenuText: Console Java (Sun)] -> Sun Microsystems, Inc. [Ver = 5.0.60.5 | Size = 184423 bytes | Modified Date = 10/11/2005 13:22:12 | Attr = ]

{85d1f590-48f4-11d9-9669-0800200c9a66} [HKLM] -> Reg Data - Key not found [MenuText: Uninstall BitDefender Online Scanner v8] -> File not found

{FB5F1910-F110-11d2-BB9E-00C04F795683} -> %ProgramFiles%\Messager Wanadoo\Messager Wanadoo.exe [buttonText: Messager Wanadoo] -> France Telecom [Ver = 3, 1, 31, 9 | Size = 1802240 bytes | Modified Date = 07/04/2003 11:10:20 | Attr = ]

< Internet Explorer Menu Extensions [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ ->

&Search -> http:\ko.bar.need2find.com\KO\menusearch.htm -> File not found

< User Agent Post Platform [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform ->

SV1 -> ->

Wanadoo 6.0 -> IEAKFT ->

< DNS Name Servers [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ ->

{2F0D6B97-CFC7-440E-93D5-61DFD7A9656B} -> (Realtek RTL8139/810x Family Fast Ethernet NIC) ->

{314C99A3-9FDB-4FCD-A73C-051F21C2DEA1} -> () ->

{33993692-E2E0-44F1-B6DC-788DDBF6B99A} -> () ->

{9126982E-A93B-4999-AD18-06365A7900DA} -> (Carte réseau Broadcom 802.11g) ->

< Protocol Handlers [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ ->

ipp -> Reg Data - Key not found -> File not found

msdaipp -> Reg Data - Key not found -> File not found

< Protocol Filters [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ ->

text/html -> Reg Data - Key not found -> File not found

< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ ->

{00B71CFB-6864-4346-A978-C0A14556272C} -> Checkers Class - CodeBase = http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab ->

{1D6711C8-7154-40BB-8380-3DEA45B69CBF} -> - CodeBase = ->

{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -> BDSCANONLINE Control - CodeBase = http://www.zebulon.fr/scan8/oscan8.cab ->

{8AD9C840-044E-11D1-B3E9-00805F499D93} -> Java Plug-in 1.5.0_06 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab ->

{8E0D4DE5-3180-4024-A327-4DFAD1796A8D} -> MessengerStatsClient Class - CodeBase = http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab ->

{8FFBE65D-2C9C-4669-84BD-5829DC0B603C} -> - CodeBase = http://fpdownload.macromedia.com/get/flash...t/ultrashim.cab ->

{9122D757-5A4F-4768-82C5-B4171D8556A7} -> PhotoPickConvert Class - CodeBase = http://appdirectory.messenger.msn.com/AppD...ap/PhtPkMSN.cab ->

{A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} -> BatchDownloader Class - CodeBase = http://appdirectory.messenger.msn.com/AppD...ap/DigWXMSN.cab ->

{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} -> Java Plug-in 1.5.0_06 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab ->

{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -> Java Plug-in 1.5.0_06 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab ->

{D27CDB6E-AE6D-11CF-96B8-444553540000} -> - CodeBase = http://download.macromedia.com/pub/shockwa...ash/swflash.cab ->

[Registry - Additional Scans - Non-Microsoft Only]

< Security Settings > -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\AntiVirusDisableNotify -> 0 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\FirewallDisableNotify -> 0 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\UpdatesDisableNotify -> 0 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\AntiVirusOverride -> 0 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\FirewallOverride -> 0 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\Type -> 32 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\Start -> 2 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\ErrorControl -> 1 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\ImagePath -> %SystemRoot%\system32\svchost.exe -k netsvcs ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\DisplayName -> Service de transfert intelligent en arrière-plan ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\DependOnService -> RpcSs; ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\DependOnGroup -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\ObjectName -> LocalSystem ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\Description -> Transfère des données entre les clients et les serveurs en tâche de fond. Si le service BITS est désactivé, les fonctionnalités telles que Windows Update ne fonctionneront pas correctement. ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\\FailureActions ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Parameters\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Parameters\\ServiceDll -> C:\WINDOWS\system32\qmgr.dll ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Security\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Security\\Security ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Enum\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Enum\ -> Root\LEGACY_BITS00 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Enum\\Count -> 1 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS\Enum\\NextInstance -> 1 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\DependOnGroup -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\DependOnService -> Netman;WinMgmt; ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\Description -> Assure la traduction d'adresses de réseau, l'adressage, les services de résolution de noms et/ou les services de prévention d'intrusion pour un réseau de petite entreprise ou un réseau domestique. ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\DisplayName -> Pare-feu Windows / Partage de connexion Internet ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\ErrorControl -> 1 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\ImagePath -> %SystemRoot%\system32\svchost.exe -k netsvcs ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\ObjectName -> LocalSystem ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\Start -> 4 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\\Type -> 32 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch\\Epoch -> 36770 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\\ServiceDll -> %SystemRoot%\System32\ipnathlp.dll ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\%windir%\system32\sessmgr.exe -> %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\msncall.exe -> C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone) ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\%windir%\system32\winav.exe -> %windir%\system32\winav.exe:*:Enabled:@xpsp2res.dll,-22019 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\msnmsgr.exe -> C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\livecall.exe -> C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List\\139:TCP -> 139:TCP:*:Enabled:@xpsp2res.dll,-22004 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List\\445:TCP -> 445:TCP:*:Enabled:@xpsp2res.dll,-22005 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List\\137:UDP -> 137:UDP:*:Enabled:@xpsp2res.dll,-22001 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List\\138:UDP -> 138:UDP:*:Enabled:@xpsp2res.dll,-22002 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\\EnableFirewall -> 1 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\\DoNotAllowExceptions -> 0 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\\DisableNotifications -> 0 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\%windir%\system32\sessmgr.exe -> %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\Messenger\msmsgs.exe -> C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os47.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os47.tmp\ossproxy.exe:*:Enabled:ossproxy.exe ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\WINDOWS\System32\P2P Networking\P2P Networking.exe -> C:\WINDOWS\System32\P2P Networking\P2P Networking.exe:*:Enabled:P2P Networking ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\Kazaa\kazaa.exe -> C:\Program Files\Kazaa\kazaa.exe:*:Enabled:Kazaa Media Desktop ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os10B.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os10B.tmp\ossproxy.exe:*:Enabled:ossproxy.exe ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\SuperCopier\SuperCopier.exe -> C:\Program Files\SuperCopier\SuperCopier.exe:*:Enabled:SuperCopier ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os160.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os160.tmp\ossproxy.exe:*:Enabled:ossproxy.exe ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os12.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os12.tmp\ossproxy.exe:*:Enabled:ossproxy.exe ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os1C.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os1C.tmp\ossproxy.exe:*:Enabled:ossproxy.exe ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\msncall.exe -> C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone) ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~osF.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~osF.tmp\ossproxy.exe:*:Enabled:ossproxy.exe ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os11.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os11.tmp\ossproxy.exe:*:Enabled:ossproxy.exe ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os8.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os8.tmp\ossproxy.exe:*:Enabled:ossproxy.exe ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os61.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os61.tmp\ossproxy.exe:*:Enabled:ossproxy.exe ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~osD.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~osD.tmp\ossproxy.exe:*:Enabled:ossproxy.exe ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\véronique darin\Local Settings\Temp\~os1F.tmp\ossproxy.exe -> C:\Documents and Settings\véronique darin\Local Settings\Temp\~os1F.tmp\ossproxy.exe:*:Enabled:ossproxy.exe ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\%windir%\system32\winav.exe -> %windir%\system32\winav.exe:*:Enabled:@xpsp2res.dll,-22019 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\msnmsgr.exe -> C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\MSN Messenger\livecall.exe -> C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\1900:UDP -> 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\2869:TCP -> 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\139:TCP -> 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\445:TCP -> 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\137:UDP -> 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\138:UDP -> 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Setup\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Setup\\ServiceUpgrade -> 1 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Setup\InterfacesUnfirewalledAtUpdate\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Setup\InterfacesUnfirewalledAtUpdate\\All -> 1 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Enum\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Enum\ -> Root\LEGACY_SHAREDACCESS00 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Enum\\Count -> 1 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Enum\\NextInstance -> 1 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\Type -> 32 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\Start -> 2 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\ErrorControl -> 1 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\ImagePath -> %systemroot%\system32\svchost.exe -k netsvcs ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\DisplayName -> Mises à jour automatiques ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\ObjectName -> LocalSystem ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\\Description -> Active le téléchargement et l'installation des mises à jour Windows. Si ce service est désactivé, cet ordinateur ne pourra pas utiliser la fonctionnalité des mises à jour automatiques ou le site Windows Update. ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Parameters\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Parameters\\ServiceDll -> C:\WINDOWS\system32\wuauserv.dll ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Security\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Security\\Security ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Enum\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Enum\ -> Root\LEGACY_WUAUSERV00 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Enum\\Count -> 1 ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Enum\\NextInstance -> 1 ->

< Software Policy Settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\policies\ ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultExecMenuItems\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultLaunchAttachmentPerms\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultLaunchAttachmentPerms\\tBuiltInPermList -> version:1|.ade:3|.adp:3|.app:3|.asp:3|.bas:3|.bat:3|.bz:3|.bz2:3|.chm:3|.class:3|.cmd:3|.com:3|.command:3|.cpl:3|.crt:3|.csh:3|.desktop:3|.exe:3|.fxp:3|.gz:3|.hex:3|.hlp:3|.hqx:3|.hta:3|.inf:3|.ini:3|.ins:3|.isp:3|.its:3|.job:3|.js:3|.jse:3|.ksh:3|.lnk:3|.lzh:3|.mad:3|.maf:3|.mag:3|.mam:3|.maq:3|.mar:3|.mas:3|.mat:3|.mau:3|.mav:3|.maw:3|.mda:3|.mde:3|.mdt:3|.mdw:3|.mdz:3|.msc:3|.msi:3|.msp:3|.mst:3|.ocx:3|.ops:3|.pcd:3|.pi:3|.pif:3|.prf:3|.prg:3|.pst:3|.rar:3|.reg:3|.scf:3|.scr:3|.sct:3|.sea:3|.shb:3|.shs:3|.sit:3|.tar:3|.tgz:3|.tmp:3|.url:3|.vb:3|.vbe:3|.vbs:3|.vsmacros:3|.vss:3|.vst:3|.vsw:3|.webloc:3|.ws:3|.wsc:3|.wsf:3|.wsh:3|.zip:3|.zlo:3|.zoo:3|.pdf:2|.fdf:2 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Adobe\Acrobat Reader\8.0\FeatureLockdown\cDefaultLaunchURLPerms\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Conferencing\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\MRT\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\WindowsLiveCall\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\WindowsLiveCall\CertificatePolicy\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\WindowsLiveCall\PortRange\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\{A5B45060-354F-4097-A928-5125436C46F1}\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\{A5B45060-354F-4097-A928-5125436C46F1}\\DisableServerCheck -> 1 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\{A5B45060-354F-4097-A928-5125436C46F1}\\LegacyPresence -> 1 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\{A5B45060-354F-4097-A928-5125436C46F1}\CertificatePolicy\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\RTC\{A5B45060-354F-4097-A928-5125436C46F1}\PortRange\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Installer\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Installer\\EnableAdminTSRemote -> 1 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\RTC\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\RTC\CertificatePolicy\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\RTC\PortRange\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\\ExecutableTypes -> ADE;ADP;BAS;BAT;CHM;CMD;COM;CPL;CRT;EXE;HLP;HTA;INF;INS;ISP;LNK;MDB;MDE;MSC;MSI;MSP;MST;OCX;PCD;PIF;REG;SCR;SHS;URL;VB;WSC; ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\\TransparentEnabled -> 1 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\\DefaultLevel -> 262144 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\\AuthenticodeEnabled -> 0 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\\PolicyScope -> 0 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\Description -> Stop the download of this file ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\FriendlyName -> Mdac11.cab ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\SaferFlags -> 0 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\HashAlg -> 32771 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\ItemData -> ^«0O•zI‰j

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\LastModified -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{349d35ab-37b5-462f-9b89-edd5fbde1328}\\ItemSize -> ; ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\Description -> Stop the download of this file ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\FriendlyName -> mdac20.cab ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\SaferFlags -> 0 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\HashAlg -> 32771 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\ItemData -> g°Ô‹4:?Ó¼éÜdgó” ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\LastModified -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{7fb9cd2e-3076-4df9-a57b-b813f72dbb91}\\ItemSize -> ; ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\Description -> Stop the download of this file ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\FriendlyName -> mdac20_a.cab ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\SaferFlags -> 0 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\HashAlg -> 32771 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\ItemData -> 2xÜþøÈ“ÜŠ°Ý„} ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\LastModified -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{81d1fe15-dd9d-4762-b16d-7c29ddecae3f}\\ItemSize -> –; ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\Description -> Stop the download of this file ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\FriendlyName -> _msadc10.cab ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\SaferFlags -> 0 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\HashAlg -> 32771 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\ItemData -> ½š*ÛBëØV%Mø/g ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\LastModified -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{94e3e076-8f53-42a5-8411-085bcc18a68d}\\ItemSize -> å; ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\Description -> Stop the download of this file ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\FriendlyName -> msadc11.cab ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\SaferFlags -> 0 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\HashAlg -> 32771 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\ItemData -> 8k_„ìöiÓk•j"À€ ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\LastModified -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Hashes\{dc971ee5-44eb-4fe4-ae2e-b91490411bfc}\\ItemSize -> r; ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33}\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33}\\Description -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33}\\SaferFlags -> 0 ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33}\\ItemData -> %HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\Cache%OLK* ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows\Safer\CodeIdentifiers\Paths\{dda3f824-d8cb-441b-834d-be2efd2c1a33}\\LastModified -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows NT\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\policies\Microsoft\Windows NT\Terminal Services\ -> ->

< Software Policy Settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\policies\ ->

HKEY_CURRENT_USER\Software\Policies\ -> ->

HKEY_CURRENT_USER\Software\Policies\Microsoft\ -> ->

< Uninstall List > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ ->

{18D10072035C4515918F7E37EAFAACFC} -> AutoUpdate ->

{2318C2B1-4965-11d4-9B18-009027A5CD4F} -> Google Toolbar for Internet Explorer ->

{2637C347-9DAD-11D6-9EA2-00055D0CA761} -> Arcade 3.0 ->

{26a03535-d10f-4434-9724-ce6d2f9a0549} -> DFX 8 for Windows Media Player ->

{3248F0A8-6813-11D6-A77B-00B0D0150060} -> J2SE Runtime Environment 5.0 Update 6 ->

{350C940c-3D7C-4EE8-BAA9-00BCB3D54227} -> WebFldrs XP ->

{37477865-A3F1-4772-AD43-AAFC6BCFF99F} -> MSXML 4.0 SP2 (KB927978) ->

{49672EC2-171B-47B4-8CE7-50D7806360D7} -> Windows Live Sign-in Assistant ->

{4BDFD2CE-6329-42E4-9801-9B3D1F10D79B} -> Adobe® Photoshop® Album Edition Découverte 3.0 ->

{58E5844B-7CE2-413D-83D1-99294BF6C74F} -> Acer ePowerManagement ->

{65C39C99-F2C0-4286-A37A-23182E9A5E8E} -> NTI CD & DVD-Maker ->

{7AC15160-A49B-4A89-B181-D4619C025FFF} -> Samsung Samples Installer ->

{7B63B2922B174135AFC0E1377DD81EC2} -> DivX Codec ->

{827289F5-B44F-4E49-9993-840741585A62} -> Acer eManager for Notebook ->

{89ACA875-BDB9-443C-B7C7-D74D3BDE8FE2} -> Philips VLounge ->

{8A708DD8-A5E6-11D4-A706-000629E95E20} -> Intel® Graphics Media Accelerator Driver for Mobile ->

{8ADFC4160D694100B5B8A22DE9DCABD9} -> DivX Player ->

{A059DE09-1B49-4450-B340-7AE097EC3F04} -> Microsoft Works ->

{AC76BA86-7AD7-1036-7B44-A81000000003} -> Adobe Reader 8.1.0 - Français ->

{ACF60000-22B9-4CE9-98D6-2CCF359BAC07} -> ABBYY FineReader 6.0 Sprint ->

{B13A7C41581B411290FBC0395694E2A9} -> DivX Converter ->

{B7050CBDB2504B34BC2A9CA0A692CC29} -> DivX Web Player ->

{B7A0CE06-068E-11D6-97FD-0050BACBF861} -> PowerProducer ->

{C04E32E0-0416-434D-AFB9-6969D703A9EF} -> MSXML 4.0 SP2 (KB936181) ->

{D050D7362D214723AD585B541FFB6C11} -> DivX Content Uploader ->

{D0846526-66DD-4DC9-A02C-98F9A2806812} -> Launch Manager V1.0.8.8 ->

{D41FAAA9-8048-4906-86B2-9AADEA1FA0B7} -> Alcatel SpeedTouch USB Software ->

{D65F0073-A820-4085-B997-A061171595A7} -> oggcodecs ->

{DBEA1034-5882-4A88-8033-81C4EF0CFA29} -> Google Toolbar for Internet Explorer ->

{E66653A2-2B5C-4909-B71E-218164336960} -> SPC 610NC Laptop Camera ->

{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A} -> Samsung PC Studio 3 USB Driver Installer ->

{ED79C7E1-386E-4C12-81C7-8FEFB6D396B5} -> NTI Backup NOW! 4 ->

{F6326B60-1B1D-4ABF-BFCD-7B7404F44411} -> Windows Live Messenger ->

{FB08F381-6533-4108-B7DD-039E11FBC27E} -> Realtek AC'97 Audio ->

Ad-Aware SE Personal -> Ad-Aware SE Personal ->

Adobe Flash Player ActiveX -> Adobe Flash Player ActiveX ->

avast! -> avast! Antivirus ->

CNXT_MODEM_PCI_VEN_8086&DEV_266D&SUBSYS_006A1025 -> SoftV90 Data Fax Modem with SmartCP ->

Droppix Recorder_is1 -> Droppix Recorder ->

EspaceWanadoo.exe -> Wanadoo ->

EVEREST Ultimate Edition_is1 -> EVEREST Ultimate Edition v3.50 ->

Google Updater -> Outil de mise à jour Google ->

GridVista -> Acer GridVista ->

HijackThis -> HijackThis 1.99.1 ->

InstallShield_{65C39C99-F2C0-4286-A37A-23182E9A5E8E} -> NTI CD & DVD-Maker Gold ->

InstallShield_{827289F5-B44F-4E49-9993-840741585A62} -> Acer eManager for Notebook ->

InstallShield_{E66653A2-2B5C-4909-B71E-218164336960} -> SPC 610NC Laptop Camera ->

InstallShield_{ED79C7E1-386E-4C12-81C7-8FEFB6D396B5} -> NTI Backup NOW! 4 ->

KB873339 -> Correctif Windows XP - KB873339 ->

KB885250 -> Correctif Windows XP - KB885250 ->

KB885835 -> Correctif Windows XP - KB885835 ->

KB885836 -> Correctif Windows XP - KB885836 ->

KB886185 -> Correctif Windows XP - KB886185 ->

KB887472 -> Correctif Windows XP - KB887472 ->

KB887742 -> Correctif Windows XP - KB887742 ->

KB888113 -> Correctif Windows XP - KB888113 ->

KB888302 -> Correctif Windows XP - KB888302 ->

KB890046 -> Mise à jour de sécurité pour Windows XP (KB890046) ->

KB890859 -> Correctif Windows XP - KB890859 ->

KB891781 -> Correctif Windows XP - KB891781 ->

KB893066 -> Mise à jour de sécurité pour Windows XP (KB893066) ->

KB893756 -> Mise à jour de sécurité pour Windows XP (KB893756) ->

KB893803v2 -> Windows Installer 3.1 (KB893803) ->

KB894391 -> Mise à jour pour Windows XP (KB894391) ->

KB896358 -> Mise à jour de sécurité pour Windows XP (KB896358) ->

KB896422 -> Mise à jour de sécurité pour Windows XP (KB896422) ->

KB896423 -> Mise à jour de sécurité pour Windows XP (KB896423) ->

KB896424 -> Mise à jour de sécurité pour Windows XP (KB896424) ->

KB896428 -> Mise à jour de sécurité pour Windows XP (KB896428) ->

KB898461 -> Mise à jour pour Windows XP (KB898461) ->

KB899587 -> Mise à jour de sécurité pour Windows XP (KB899587) ->

KB899591 -> Mise à jour de sécurité pour Windows XP (KB899591) ->

KB900485 -> Mise à jour pour Windows XP (KB900485) ->

KB900725 -> Mise à jour de sécurité pour Windows XP (KB900725) ->

KB901017 -> Mise à jour de sécurité pour Windows XP (KB901017) ->

KB901190 -> Mise à jour de sécurité pour Windows XP (KB901190) ->

KB901214 -> Mise à jour de sécurité pour Windows XP (KB901214) ->

KB902400 -> Mise à jour de sécurité pour Windows XP (KB902400) ->

KB904706 -> Mise à jour de sécurité pour Windows XP (KB904706) ->

KB905414 -> Mise à jour de sécurité pour Windows XP (KB905414) ->

KB905749 -> Mise à jour de sécurité pour Windows XP (KB905749) ->

KB905915 -> Mise à jour de sécurité pour Windows XP (KB905915) ->

KB908519 -> Mise à jour de sécurité pour Windows XP (KB908519) ->

KB908531 -> Mise à jour de sécurité pour Windows XP (KB908531) ->

KB910437 -> Mise à jour pour Windows XP (KB910437) ->

KB911280 -> Mise à jour pour Windows XP (KB911280) ->

KB911562 -> Mise à jour de sécurité pour Windows XP (KB911562) ->

KB911564 -> Mise à jour de sécurité pour Lecteur Windows Media (KB911564) ->

KB911565 -> Mise à jour de sécurité pour Lecteur Windows Media 9 (KB911565) ->

KB911567 -> Mise à jour de sécurité pour Windows XP (KB911567) ->

KB911927 -> Mise à jour de sécurité pour Windows XP (KB911927) ->

KB912812 -> Mise à jour de sécurité pour Windows XP (KB912812) ->

KB912919 -> Mise à jour de sécurité pour Windows XP (KB912919) ->

KB913446 -> Mise à jour de sécurité pour Windows XP (KB913446) ->

KB913580 -> Mise à jour de sécurité pour Windows XP (KB913580) ->

KB914388 -> Mise à jour de sécurité pour Windows XP (KB914388) ->

KB914389 -> Mise à jour de sécurité pour Windows XP (KB914389) ->

KB916281 -> Mise à jour de sécurité pour Windows XP (KB916281) ->

KB916595 -> Mise à jour pour Windows XP (KB916595) ->

KB917159 -> Mise à jour de sécurité pour Windows XP (KB917159) ->

KB917344 -> Mise à jour de sécurité pour Windows XP (KB917344) ->

KB917422 -> Mise à jour de sécurité pour Windows XP (KB917422) ->

KB917953 -> Mise à jour de sécurité pour Windows XP (KB917953) ->

KB918118 -> Mise à jour de sécurité pour Windows XP (KB918118) ->

KB918439 -> Mise à jour de sécurité pour Windows XP (KB918439) ->

KB918899 -> Mise à jour de sécurité pour Windows XP (KB918899) ->

KB919007 -> Mise à jour de sécurité pour Windows XP (KB919007) ->

KB920213 -> Mise à jour de sécurité pour Windows XP (KB920213) ->

KB920214 -> Mise à jour de sécurité pour Windows XP (KB920214) ->

KB920670 -> Mise à jour de sécurité pour Windows XP (KB920670) ->

KB920683 -> Mise à jour de sécurité pour Windows XP (KB920683) ->

KB920685 -> Mise à jour de sécurité pour Windows XP (KB920685) ->

KB920872 -> Mise à jour pour Windows XP (KB920872) ->

KB921398 -> Mise à jour de sécurité pour Windows XP (KB921398) ->

KB921503 -> Mise à jour de sécurité pour Windows XP (KB921503) ->

KB921883 -> Mise à jour de sécurité pour Windows XP (KB921883) ->

KB922582 -> Mise à jour pour Windows XP (KB922582) ->

KB922616 -> Mise à jour de sécurité pour Windows XP (KB922616) ->

KB922819 -> Mise à jour de sécurité pour Windows XP (KB922819) ->

KB923191 -> Mise à jour de sécurité pour Windows XP (KB923191) ->

KB923414 -> Mise à jour de sécurité pour Windows XP (KB923414) ->

KB923694 -> Mise à jour de sécurité pour Windows XP (KB923694) ->

KB923980 -> Mise à jour de sécurité pour Windows XP (KB923980) ->

KB924191 -> Mise à jour de sécurité pour Windows XP (KB924191) ->

KB924270 -> Mise à jour de sécurité pour Windows XP (KB924270) ->

KB924496 -> Mise à jour de sécurité pour Windows XP (KB924496) ->

KB924667 -> Mise à jour de sécurité pour Windows XP (KB924667) ->

KB925398_WMP64 -> Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398) ->

KB925454 -> Mise à jour de sécurité pour Windows XP (KB925454) ->

KB925486 -> Mise à jour de sécurité pour Windows XP (KB925486) ->

KB925902 -> Mise à jour de sécurité pour Windows XP (KB925902) ->

KB926239 -> Hotfix for Windows XP (KB926239) ->

KB926255 -> Mise à jour de sécurité pour Windows XP (KB926255) ->

KB926436 -> Mise à jour de sécurité pour Windows XP (KB926436) ->

KB927779 -> Mise à jour de sécurité pour Windows XP (KB927779) ->

KB927802 -> Mise à jour de sécurité pour Windows XP (KB927802) ->

KB927891 -> Mise à jour pour Windows XP (KB927891) ->

KB928090 -> Mise à jour de sécurité pour Windows XP (KB928090) ->

KB928255 -> Mise à jour de sécurité pour Windows XP (KB928255) ->

KB928843 -> Mise à jour de sécurité pour Windows XP (KB928843) ->

KB929123 -> Mise à jour de sécurité pour Windows XP (KB929123) ->

KB929338 -> Mise à jour pour Windows XP (KB929338) ->

KB929399 -> Hotfix for Windows Media Format 11 SDK (KB929399) ->

KB929969 -> Mise à jour de sécurité pour Windows XP (KB929969) ->

KB930178 -> Mise à jour de sécurité pour Windows XP (KB930178) ->

KB930916 -> Mise à jour pour Windows XP (KB930916) ->

KB931261 -> Mise à jour de sécurité pour Windows XP (KB931261) ->

KB931768 -> Mise à jour de sécurité pour Windows XP (KB931768) ->

KB931784 -> Mise à jour de sécurité pour Windows XP (KB931784) ->

KB931836 -> Mise à jour pour Windows XP (KB931836) ->

KB932168 -> Mise à jour de sécurité pour Windows XP (KB932168) ->

KB933360 -> Mise à jour pour Windows XP (KB933360) ->

KB933566 -> Mise à jour de sécurité pour Windows XP (KB933566) ->

KB935839 -> Mise à jour de sécurité pour Windows XP (KB935839) ->

KB935840 -> Mise à jour de sécurité pour Windows XP (KB935840) ->

KB936021 -> Mise à jour de sécurité pour Windows XP (KB936021) ->

KB936357 -> Mise à jour pour Windows XP (KB936357) ->

KB936782_WMP11 -> Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782) ->

KB937143 -> Mise à jour de sécurité pour Windows XP (KB937143) ->

KB938127 -> Mise à jour de sécurité pour Windows XP (KB938127) ->

KB938828 -> Mise à jour pour Windows XP (KB938828) ->

KB938829 -> Mise à jour de sécurité pour Windows XP (KB938829) ->

KLiteCodecPack_is1 -> K-Lite Codec Pack 2.71 Full ->

Language pack for Ad-Aware SE -> Language pack for Ad-Aware SE ->

Lexmark 2400 Series -> Lexmark 2400 Series ->

Lexmark Fax Solutions -> Solutions de télécopie Lexmark ->

Messager Wanadoo.exe -> Messager Wanadoo ->

Mozilla Firefox (2.0.0.6) -> Mozilla Firefox (2.0.0.6) ->

MSCompPackV1 -> Microsoft Compression Client Pack 1.0 for Windows XP ->

MsgPlus! Plugin -> Messenger Plus! 3 ->

MSN Toolbar -> Barre d'outils MSN ->

MSNINST -> MSN ->

Need2FindBar Uninstall -> Need2Find Bar ->

RegCure -> RegCure 1.5.0.0 ->

SAMSUNG CDMA Modem -> SAMSUNG CDMA Modem Driver Set ->

SAMSUNG Mobile USB Modem -> SAMSUNG Mobile USB Modem Software ->

SAMSUNG Mobile USB Modem 1.0 -> SAMSUNG Mobile USB Modem 1.0 Software ->

Spybot - Search & Destroy_is1 -> Spybot - Search & Destroy 1.4 ->

StuffPlug3 -> StuffPlug 3 ->

StuffPlug-NG -> StuffPlug-NG (Messenger Plus! Plugins) ->

SuperCopier2 -> SuperCopier2 ->

SynTPDeinstKey -> Synaptics Pointing Device Driver ->

Vodafone 804SS USB driver -> Vodafone 804SS USB driver Software ->

WgaNotify -> Windows Genuine Advantage Notifications (KB905474) ->

Windows Media Format Runtime -> Windows Media Format 11 runtime ->

Windows Media Player -> Lecteur Windows Media 11 ->

WinRAR archiver -> Archiveur WinRAR ->

WinZip -> WinZip ->

WMFDist11 -> Windows Media Format 11 runtime ->

wmp11 -> Windows Media Player 11 ->

Wudf01000 -> Microsoft User-Mode Driver Framework Feature Pack 1.0 ->

Yahoo! Companion -> Yahoo! Toolbar avec bloqueur de fenêtres pop-up ->

Yahoo! Toolbar -> Yahoo! Toolbar ->

[Files/Folders - Created Within 60 days]

hiberfil.sys -> %SystemDrive%\hiberfil.sys -> [Ver = | Size = 526897152 bytes | Created Date = 02/01/1601 23:00:00 | Attr = HS]

Config.Msi -> %SystemDrive%\Config.Msi -> [Folder | Created Date = 25/08/2007 16:23:33 | Attr = HS]

WA7PV -> %SystemDrive%\WA7PV -> [Folder | Created Date = 25/08/2007 15:24:29 | Attr = HS]

Temp -> %SystemDrive%\Temp -> [Folder | Created Date = 21/08/2007 16:46:02 | Attr = ]

sqmnoopt06.sqm -> %SystemDrive%\sqmnoopt06.sqm -> [Ver = | Size = 244 bytes | Created Date = 13/07/2007 23:24:37 | Attr = H ]

sqmdata06.sqm -> %SystemDrive%\sqmdata06.sqm -> [Ver = | Size = 268 bytes | Created Date = 13/07/2007 23:24:37 | Attr = H ]

sqmnoopt07.sqm -> %SystemDrive%\sqmnoopt07.sqm -> [Ver = | Size = 244 bytes | Created Date = 14/07/2007 10:49:08 | Attr = H ]

sqmdata07.sqm -> %SystemDrive%\sqmdata07.sqm -> [Ver = | Size = 268 bytes | Created Date = 14/07/2007 10:49:08 | Attr = H ]

sqmnoopt08.sqm -> %SystemDrive%\sqmnoopt08.sqm -> [Ver = | Size = 244 bytes | Created Date = 16/07/2007 11:10:49 | Attr = H ]

sqmdata08.sqm -> %SystemDrive%\sqmdata08.sqm -> [Ver = | Size = 268 bytes | Created Date = 16/07/2007 11:10:49 | Attr = H ]

sqmnoopt09.sqm -> %SystemDrive%\sqmnoopt09.sqm -> [Ver = | Size = 244 bytes | Created Date = 17/07/2007 14:29:08 | Attr = H ]

sqmdata09.sqm -> %SystemDrive%\sqmdata09.sqm -> [Ver = | Size = 268 bytes | Created Date = 17/07/2007 14:29:08 | Attr = H ]

sqmnoopt10.sqm -> %SystemDrive%\sqmnoopt10.sqm -> [Ver = | Size = 244 bytes | Created Date = 18/07/2007 14:05:32 | Attr = H ]

sqmdata10.sqm -> %SystemDrive%\sqmdata10.sqm -> [Ver = | Size = 268 bytes | Created Date = 18/07/2007 14:05:32 | Attr = H ]

album95.zip -> %SystemRoot%\album95.zip -> [Ver = | Size = 22 bytes | Created Date = 19/08/2007 01:41:48 | Attr = ]

photos091.zip -> %SystemRoot%\photos091.zip -> [Ver = | Size = 22 bytes | Created Date = 18/08/2007 01:26:55 | Attr = ]

images021.zip -> %SystemRoot%\images021.zip -> [Ver = | Size = 22 bytes | Created Date = 18/08/2007 01:35:55 | Attr = ]

photos061.zip -> %SystemRoot%\photos061.zip -> [Ver = | Size = 22 bytes | Created Date = 18/08/2007 16:04:58 | Attr = ]

photo66.zip -> %SystemRoot%\photo66.zip -> [Ver = | Size = 22 bytes | Created Date = 19/08/2007 16:02:56 | Attr = ]

itsME28.zip -> %SystemRoot%\itsME28.zip -> [Ver = | Size = 22 bytes | Created Date = 18/08/2007 18:00:29 | Attr = ]

itsME7.zip -> %SystemRoot%\itsME7.zip -> [Ver = | Size = 22 bytes | Created Date = 20/08/2007 17:43:22 | Attr = ]

images027.zip -> %SystemRoot%\images027.zip -> [Ver = | Size = 22 bytes | Created Date = 21/08/2007 14:43:48 | Attr = ]

BDOSCAN8 -> %SystemRoot%\BDOSCAN8 -> [Folder | Created Date = 03/09/2007 12:53:21 | Attr = ]

$NtUninstallKB936357$ -> %SystemRoot%\$NtUninstallKB936357$ -> [Folder | Created Date = 25/07/2007 04:43:47 | Attr = H ]

$NtUninstallKB937143$ -> %SystemRoot%\$NtUninstallKB937143$ -> [Folder | Created Date = 15/08/2007 17:55:41 | Attr = H ]

$NtUninstallKB936782_WMP11$ -> %SystemRoot%\$NtUninstallKB936782_WMP11$ -> [Folder | Created Date = 16/08/2007 14:43:43 | Attr = H ]

$NtUninstallKB938127$ -> %SystemRoot%\$NtUninstallKB938127$ -> [Folder | Created Date = 16/08/2007 14:44:24 | Attr = H ]

$NtUninstallKB938829$ -> %SystemRoot%\$NtUninstallKB938829$ -> [Folder | Created Date = 16/08/2007 14:44:49 | Attr = H ]

$NtUninstallKB921503$ -> %SystemRoot%\$NtUninstallKB921503$ -> [Folder | Created Date = 16/08/2007 14:45:15 | Attr = H ]

$NtUninstallKB938828$ -> %SystemRoot%\$NtUninstallKB938828$ -> [Folder | Created Date = 16/08/2007 14:45:42 | Attr = H ]

$NtUninstallKB936021$ -> %SystemRoot%\$NtUninstallKB936021$ -> [Folder | Created Date = 16/08/2007 14:46:09 | Attr = H ]

$NtUninstallKB933360$ -> %SystemRoot%\$NtUninstallKB933360$ -> [Folder | Created Date = 01/09/2007 21:58:39 | Attr = H ]

RegCure.job -> %SystemRoot%\tasks\RegCure.job -> [Ver = | Size = 392 bytes | Created Date = 03/09/2007 16:33:14 | Attr = ]

RegCure Program Check.job -> %SystemRoot%\tasks\RegCure Program Check.job -> [Ver = | Size = 458 bytes | Created Date = 03/09/2007 16:33:15 | Attr = ]

divxsm.tlb -> %System32%\divxsm.tlb -> [Ver = | Size = 4816 bytes | Created Date = 09/07/2007 20:07:53 | Attr = ]

dpl100.dll -> %System32%\dpl100.dll -> DivX, Inc. [Ver = 1, 2, 0, 12 | Size = 73728 bytes | Created Date = 09/07/2007 20:05:58 | Attr = ]

dpu11.dll -> %System32%\dpu11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 294912 bytes | Created Date = 09/07/2007 20:05:56 | Attr = ]

dpu10.dll -> %System32%\dpu10.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 294912 bytes | Created Date = 09/07/2007 20:05:56 | Attr = ]

dpuGUI11.dll -> %System32%\dpuGUI11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 593920 bytes | Created Date = 09/07/2007 20:05:56 | Attr = ]

dpus11.dll -> %System32%\dpus11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 344064 bytes | Created Date = 09/07/2007 20:05:56 | Attr = ]

dpv11.dll -> %System32%\dpv11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 57344 bytes | Created Date = 09/07/2007 20:05:56 | Attr = ]

dtu100.dll -> %System32%\dtu100.dll -> DivX, Inc. [Ver = 1, 2, 0, 12 | Size = 196608 bytes | Created Date = 09/07/2007 20:05:58 | Attr = ]

libdivx.dll -> %System32%\libdivx.dll -> The OpenSSL Project, http://www.openssl.org/ [Ver = 0.9.8b | Size = 1044480 bytes | Created Date = 09/07/2007 20:07:44 | Attr = ]

qt-dx331.dll -> %System32%\qt-dx331.dll -> [Ver = | Size = 3596288 bytes | Created Date = 09/07/2007 20:07:50 | Attr = ]

ssldivx.dll -> %System32%\ssldivx.dll -> The OpenSSL Project, http://www.openssl.org/ [Ver = 0.9.8b | Size = 200704 bytes | Created Date = 09/07/2007 20:07:44 | Attr = ]

tmp.reg -> %System32%\tmp.reg -> [Ver = | Size = 6072 bytes | Created Date = 02/09/2007 23:15:38 | Attr = ]

dpufr.qm -> %System32%\dpufr.qm -> [Ver = | Size = 8835 bytes | Created Date = 09/07/2007 20:05:13 | Attr = ]

actskin4.ocx -> %System32%\actskin4.ocx -> [Ver = 4, 2, 7, 3 | Size = 380928 bytes | Created Date = 03/09/2007 18:23:00 | Attr = ]

DivX.dll -> %System32%\DivX.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 740442 bytes | Created Date = 09/07/2007 20:05:54 | Attr = ]

dtu_fr.qm -> %System32%\dtu_fr.qm -> [Ver = | Size = 3162 bytes | Created Date = 09/07/2007 20:05:13 | Attr = ]

dsm_fr.qm -> %System32%\dsm_fr.qm -> [Ver = | Size = 9878 bytes | Created Date = 09/07/2007 20:07:53 | Attr = ]

dpuGUI10.dll -> %System32%\dpuGUI10.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 53248 bytes | Created Date = 09/07/2007 20:05:57 | Attr = ]

divx_xx0c.dll -> %System32%\divx_xx0c.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 823296 bytes | Created Date = 09/07/2007 20:05:54 | Attr = ]

px.dll -> %System32%\px.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 527096 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ]

pxmas.dll -> %System32%\pxmas.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 183032 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ]

pxwave.dll -> %System32%\pxwave.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 379640 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ]

vxblock.dll -> %System32%\vxblock.dll -> Sonic Solutions [Ver = 1.00.74a | Size = 39672 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ]

xpdx.sys -> %System32%\xpdx.sys -> [Ver = | Size = 55004 bytes | Created Date = 02/01/1601 23:00:00 | Attr = ]

divx_xx07.dll -> %System32%\divx_xx07.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 823296 bytes | Created Date = 09/07/2007 20:05:54 | Attr = ]

pxdrv.dll -> %System32%\pxdrv.dll -> Sonic Solutions [Ver = 1.02.01a | Size = 502520 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ]

divx_xx11.dll -> %System32%\divx_xx11.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 802816 bytes | Created Date = 09/07/2007 20:05:54 | Attr = ]

pxsfs.dll -> %System32%\pxsfs.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 1329912 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ]

MRT.INI -> %System32%\MRT.INI -> [Ver = | Size = 118 bytes | Created Date = 15/08/2007 17:56:59 | Attr = ]

pxafs.dll -> %System32%\pxafs.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 129784 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ]

pxhpinst.exe -> %System32%\pxhpinst.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 72440 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ]

DivXsm.exe -> %System32%\DivXsm.exe -> DivX Inc. [Ver = 6, 6, 1, 4 | Size = 524288 bytes | Created Date = 09/07/2007 20:07:53 | Attr = ]

Divxdec.ax -> %System32%\Divxdec.ax -> DivX, Inc. [Ver = 6.6.1.4 | Size = 638976 bytes | Created Date = 09/07/2007 20:05:49 | Attr = ]

DivXMedia.ax -> %System32%\DivXMedia.ax -> DivXNetworks [Ver = 0.0.0.028 | Size = 352401 bytes | Created Date = 09/07/2007 20:05:48 | Attr = ]

pxinsa64.exe -> %System32%\pxinsa64.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 64760 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ]

pxinsi64.exe -> %System32%\pxinsi64.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 118520 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ]

pxcpya64.exe -> %System32%\pxcpya64.exe -> Sonic Solutions [Ver = 1.00.39a | Size = 64760 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ]

DivXWMPExtType.dll -> %System32%\DivXWMPExtType.dll -> [Ver = | Size = 12288 bytes | Created Date = 09/07/2007 20:05:28 | Attr = ]

DivXCodecUpdateChecker.exe -> %System32%\DivXCodecUpdateChecker.exe -> DivX, Inc. [Ver = 6, 2, 5, 7 | Size = 124472 bytes | Created Date = 09/07/2007 20:05:28 | Attr = ]

pxcpyi64.exe -> %System32%\pxcpyi64.exe -> Sonic Solutions [Ver = 1.00.39a | Size = 116472 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ]

gpedit.msc -> %System32%\gpedit.msc -> [Ver = | Size = 34352 bytes | Created Date = 02/09/2007 19:40:02 | Attr = ]

ldinfo.ldr -> %System32%\ldinfo.ldr -> [Ver = | Size = 745 bytes | Created Date = 21/08/2007 16:46:02 | Attr = ]

aswBoot.exe -> %System32%\aswBoot.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 783224 bytes | Created Date = 03/09/2007 18:23:00 | Attr = ]

AvastSS.scr -> %System32%\AvastSS.scr -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 95608 bytes | Created Date = 03/09/2007 18:23:05 | Attr = ]

f06WtR -> %System32%\f06WtR -> [Folder | Created Date = 21/08/2007 16:46:02 | Attr = ]

n.ini -> %System32%\n.ini -> [Ver = | Size = 75 bytes | Created Date = 21/08/2007 16:46:06 | Attr = ]

GroupPolicy -> %System32%\GroupPolicy -> [Folder | Created Date = 02/09/2007 19:40:02 | Attr = H ]

cdralw2k.sys -> %System32%\drivers\cdralw2k.sys -> Sonic Solutions [Ver = 8.0.0.212 | Size = 2560 bytes | Created Date = 28/07/2007 02:19:40 | Attr = ]

cdr4_xp.sys -> %System32%\drivers\cdr4_xp.sys -> Sonic Solutions [Ver = 8.0.0.212 | Size = 2432 bytes | Created Date = 28/07/2007 02:19:41 | Attr = ]

PxHelp20.sys -> %System32%\drivers\PxHelp20.sys -> Sonic Solutions [Ver = 3.00.43J | Size = 36624 bytes | Created Date = 28/07/2007 02:19:41 | Attr = ]

klif.cab -> %System32%\drivers\klif.cab -> [Ver = | Size = 78123 bytes | Created Date = 25/08/2007 16:23:22 | Attr = ]

aswmon.sys -> %System32%\drivers\aswmon.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 92848 bytes | Created Date = 03/09/2007 18:23:05 | Attr = ]

aswmon2.sys -> %System32%\drivers\aswmon2.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 94416 bytes | Created Date = 03/09/2007 18:23:05 | Attr = ]

aavmker4.sys -> %System32%\drivers\aavmker4.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 26624 bytes | Created Date = 03/09/2007 18:23:06 | Attr = ]

aswTdi.sys -> %System32%\drivers\aswTdi.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 42912 bytes | Created Date = 03/09/2007 18:23:07 | Attr = ]

aswRdr.sys -> %System32%\drivers\aswRdr.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 23152 bytes | Created Date = 03/09/2007 18:23:08 | Attr = ]

hosts.20070902-203346.backup -> %System32%\drivers\etc\hosts.20070902-203346.backup -> [Ver = | Size = 659 bytes | Created Date = 02/09/2007 19:33:46 | Attr = R ]

file joy proc deaf -> %AllUsersAppData%\file joy proc deaf -> [Folder | Created Date = 13/08/2007 19:27:18 | Attr = ]

Iso log peak file -> %AllUsersAppData%\Iso log peak file -> [Folder | Created Date = 13/08/2007 19:27:28 | Attr = ]

WinAntiVirus Pro 2007 -> %AllUsersAppData%\WinAntiVirus Pro 2007 -> [Folder | Created Date = 25/08/2007 15:23:01 | Attr = ]

Grisoft -> %AllUsersAppData%\Grisoft -> [Folder | Created Date = 01/09/2007 22:29:48 | Attr = ]

Lavasoft -> %AllUsersAppData%\Lavasoft -> [Folder | Created Date = 01/09/2007 23:20:50 | Attr = ]

Spybot - Search & Destroy -> %AllUsersAppData%\Spybot - Search & Destroy -> [Folder | Created Date = 02/09/2007 18:30:46 | Attr = ]

DivX -> %UserAppData%\DivX -> [Folder | Created Date = 28/07/2007 02:24:13 | Attr = ]

Lavasoft -> %UserAppData%\Lavasoft -> [Folder | Created Date = 02/09/2007 16:05:20 | Attr = ]

Mes Historiques de Conversation -> %UserDocuments%\Mes Historiques de Conversation -> [Folder | Created Date = 25/07/2007 19:17:57 | Attr = ]

QSDQDQSD.doc -> %UserDocuments%\QSDQDQSD.doc -> [Ver = | Size = 858 bytes | Created Date = 21/08/2007 20:22:28 | Attr = ]

je mappelle Véro.doc -> %UserDocuments%\je mappelle Véro.doc -> [Ver = | Size = 940 bytes | Created Date = 21/08/2007 20:26:44 | Attr = ]

mémoire jp.wps -> %UserDocuments%\mémoire jp.wps -> [Ver = | Size = 166400 bytes | Created Date = 21/08/2007 20:42:22 | Attr = ]

Document.rtf -> %UserDocuments%\Document.rtf -> [Ver = | Size = 264 bytes | Created Date = 21/08/2007 21:10:17 | Attr = ]

Mes dossiers de partage.lnk -> %UserDocuments%\Mes dossiers de partage.lnk -> [Ver = | Size = 849 bytes | Created Date = 24/08/2007 22:18:08 | Attr = ]

DivX Converter.lnk -> %AllUsersDesktop%\DivX Converter.lnk -> [Ver = | Size = 714 bytes | Created Date = 28/07/2007 02:19:38 | Attr = ]

DivX Player.lnk -> %AllUsersDesktop%\DivX Player.lnk -> [Ver = | Size = 703 bytes | Created Date = 28/07/2007 02:19:53 | Attr = ]

Ad-Aware SE Personal.lnk -> %AllUsersDesktop%\Ad-Aware SE Personal.lnk -> [Ver = | Size = 749 bytes | Created Date = 02/09/2007 16:05:11 | Attr = ]

RegCure.lnk -> %AllUsersDesktop%\RegCure.lnk -> [Ver = | Size = 441 bytes | Created Date = 03/09/2007 16:33:11 | Attr = ]

avast! Antivirus.lnk -> %AllUsersDesktop%\avast! Antivirus.lnk -> [Ver = | Size = 1617 bytes | Created Date = 03/09/2007 18:23:08 | Attr = ]

DivX Movies.lnk -> %UserDesktop%\DivX Movies.lnk -> [Ver = | Size = 1514 bytes | Created Date = 28/07/2007 02:19:39 | Attr = ]

kav700123fr_1645.exe -> %UserDesktop%\kav700123fr_1645.exe -> Kaspersky Lab France [Ver = 7.0.0.123 | Size = 24708797 bytes | Created Date = 25/08/2007 16:13:47 | Attr = ]

Quarantaine_Voir -> %UserDesktop%\Quarantaine_Voir -> [Folder | Created Date = 01/09/2007 21:17:17 | Attr = ]

Spybot - Search & Destroy.lnk -> %UserDesktop%\Spybot - Search & Destroy.lnk -> [Ver = | Size = 871 bytes | Created Date = 02/09/2007 18:30:46 | Attr = ]

DocsVeronique -> %UserDesktop%\DocsVeronique -> [Folder | Created Date = 03/09/2007 17:51:00 | Attr = ]

[Files/Folders - Modified Within 60 days]

hiberfil.sys -> %SystemDrive%\hiberfil.sys -> [Ver = | Size = 526897152 bytes | Modified Date = 03/09/2007 19:24:20 | Attr = HS]

Config.Msi -> %SystemDrive%\Config.Msi -> [Folder | Modified Date = 25/08/2007 17:23:34 | Attr = HS]

WA7PV -> %SystemDrive%\WA7PV -> [Folder | Modified Date = 25/08/2007 16:24:30 | Attr = HS]

bOoT.iNi -> %SystemDrive%\bOoT.iNi -> [Ver = | Size = 216 bytes | Modified Date = 03/09/2007 17:17:02 | Attr = RHS]

Temp -> %SystemDrive%\Temp -> [Folder | Modified Date = 21/08/2007 17:46:04 | Attr = ]

sqmnoopt06.sqm -> %SystemDrive%\sqmnoopt06.sqm -> [Ver = | Size = 244 bytes | Modified Date = 14/07/2007 00:24:38 | Attr = H ]

sqmdata06.sqm -> %SystemDrive%\sqmdata06.sqm -> [Ver = | Size = 268 bytes | Modified Date = 14/07/2007 00:24:38 | Attr = H ]

sqmnoopt07.sqm -> %SystemDrive%\sqmnoopt07.sqm -> [Ver = | Size = 244 bytes | Modified Date = 14/07/2007 11:49:10 | Attr = H ]

sqmdata07.sqm -> %SystemDrive%\sqmdata07.sqm -> [Ver = | Size = 268 bytes | Modified Date = 14/07/2007 11:49:10 | Attr = H ]

sqmnoopt08.sqm -> %SystemDrive%\sqmnoopt08.sqm -> [Ver = | Size = 244 bytes | Modified Date = 16/07/2007 12:10:50 | Attr = H ]

sqmdata08.sqm -> %SystemDrive%\sqmdata08.sqm -> [Ver = | Size = 268 bytes | Modified Date = 16/07/2007 12:10:50 | Attr = H ]

sqmnoopt09.sqm -> %SystemDrive%\sqmnoopt09.sqm -> [Ver = | Size = 244 bytes | Modified Date = 17/07/2007 15:29:10 | Attr = H ]

sqmdata09.sqm -> %SystemDrive%\sqmdata09.sqm -> [Ver = | Size = 268 bytes | Modified Date = 17/07/2007 15:29:10 | Attr = H ]

sqmnoopt10.sqm -> %SystemDrive%\sqmnoopt10.sqm -> [Ver = | Size = 244 bytes | Modified Date = 18/07/2007 15:05:34 | Attr = H ]

sqmdata10.sqm -> %SystemDrive%\sqmdata10.sqm -> [Ver = | Size = 268 bytes | Modified Date = 18/07/2007 15:05:34 | Attr = H ]

system.ini -> %SystemRoot%\system.ini -> [Ver = | Size = 227 bytes | Modified Date = 03/09/2007 17:17:02 | Attr = ]

win.ini -> %SystemRoot%\win.ini -> [Ver = | Size = 555 bytes | Modified Date = 03/09/2007 17:17:02 | Attr = ]

imsins.BAK -> %SystemRoot%\imsins.BAK -> [Ver = | Size = 1374 bytes | Modified Date = 16/08/2007 15:46:20 | Attr = ]

bootstat.dat -> %SystemRoot%\bootstat.dat -> [Ver = | Size = 2048 bytes | Modified Date = 03/09/2007 19:29:36 | Attr = S]

ComponentList.xml -> %SystemRoot%\ComponentList.xml -> [Ver = | Size = 97 bytes | Modified Date = 03/09/2007 00:36:42 | Attr = ]

album95.zip -> %SystemRoot%\album95.zip -> [Ver = | Size = 22 bytes | Modified Date = 02/09/2007 05:17:04 | Attr = ]

photos091.zip -> %SystemRoot%\photos091.zip -> [Ver = | Size = 22 bytes | Modified Date = 02/09/2007 05:17:04 | Attr = ]

images021.zip -> %SystemRoot%\images021.zip -> [Ver = | Size = 22 bytes | Modified Date = 02/09/2007 05:17:06 | Attr = ]

photos061.zip -> %SystemRoot%\photos061.zip -> [Ver = | Size = 22 bytes | Modified Date = 02/09/2007 05:17:06 | Attr = ]

photo66.zip -> %SystemRoot%\photo66.zip -> [Ver = | Size = 22 bytes | Modified Date = 02/09/2007 05:17:06 | Attr = ]

itsME28.zip -> %SystemRoot%\itsME28.zip -> [Ver = | Size = 22 bytes | Modified Date = 02/09/2007 05:17:08 | Attr = ]

itsME7.zip -> %SystemRoot%\itsME7.zip -> [Ver = | Size = 22 bytes | Modified Date = 02/09/2007 05:17:08 | Attr = ]

images027.zip -> %SystemRoot%\images027.zip -> [Ver = | Size = 22 bytes | Modified Date = 01/09/2007 20:50:14 | Attr = ]

BDOSCAN8 -> %SystemRoot%\BDOSCAN8 -> [Folder | Modified Date = 03/09/2007 13:53:22 | Attr = ]

$NtUninstallKB936357$ -> %SystemRoot%\$NtUninstallKB936357$ -> [Folder | Modified Date = 25/07/2007 05:43:48 | Attr = H ]

$NtUninstallKB937143$ -> %SystemRoot%\$NtUninstallKB937143$ -> [Folder | Modified Date = 15/08/2007 18:55:42 | Attr = H ]

$NtUninstallKB936782_WMP11$ -> %SystemRoot%\$NtUninstallKB936782_WMP11$ -> [Folder | Modified Date = 16/08/2007 15:43:44 | Attr = H ]

$NtUninstallKB938127$ -> %SystemRoot%\$NtUninstallKB938127$ -> [Folder | Modified Date = 16/08/2007 15:44:26 | Attr = H ]

$NtUninstallKB938829$ -> %SystemRoot%\$NtUninstallKB938829$ -> [Folder | Modified Date = 16/08/2007 15:44:50 | Attr = H ]

$NtUninstallKB921503$ -> %SystemRoot%\$NtUninstallKB921503$ -> [Folder | Modified Date = 16/08/2007 15:45:16 | Attr = H ]

$NtUninstallKB938828$ -> %SystemRoot%\$NtUninstallKB938828$ -> [Folder | Modified Date = 16/08/2007 15:45:44 | Attr = H ]

$NtUninstallKB936021$ -> %SystemRoot%\$NtUninstallKB936021$ -> [Folder | Modified Date = 16/08/2007 15:46:10 | Attr = H ]

$NtUninstallKB933360$ -> %SystemRoot%\$NtUninstallKB933360$ -> [Folder | Modified Date = 01/09/2007 22:58:40 | Attr = H ]

SA.DAT -> %SystemRoot%\tasks\SA.DAT -> [Ver = | Size = 6 bytes | Modified Date = 03/09/2007 19:29:56 | Attr = H ]

RegCure.job -> %SystemRoot%\tasks\RegCure.job -> [Ver = | Size = 392 bytes | Modified Date = 03/09/2007 17:33:16 | Attr = ]

RegCure Program Check.job -> %SystemRoot%\tasks\RegCure Program Check.job -> [Ver = | Size = 458 bytes | Modified Date = 03/09/2007 19:31:06 | Attr = ]

wpa.dbl -> %System32%\wpa.dbl -> [Ver = | Size = 1158 bytes | Modified Date = 03/09/2007 19:31:24 | Attr = ]

perfc009.dat -> %System32%\perfc009.dat -> [Ver = | Size = 40998 bytes | Modified Date = 25/07/2007 01:17:54 | Attr = ]

perfh009.dat -> %System32%\perfh009.dat -> [Ver = | Size = 313280 bytes | Modified Date = 25/07/2007 01:17:54 | Attr = ]

perfc00C.dat -> %System32%\perfc00C.dat -> [Ver = | Size = 49924 bytes | Modified Date = 25/07/2007 01:17:54 | Attr = ]

perfh00C.dat -> %System32%\perfh00C.dat -> [Ver = | Size = 369864 bytes | Modified Date = 25/07/2007 01:17:54 | Attr = ]

divxsm.tlb -> %System32%\divxsm.tlb -> [Ver = | Size = 4816 bytes | Modified Date = 09/07/2007 21:07:54 | Attr = ]

dpl100.dll -> %System32%\dpl100.dll -> DivX, Inc. [Ver = 1, 2, 0, 12 | Size = 73728 bytes | Modified Date = 09/07/2007 21:06:00 | Attr = ]

dpu11.dll -> %System32%\dpu11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 294912 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ]

dpu10.dll -> %System32%\dpu10.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 294912 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ]

dpuGUI11.dll -> %System32%\dpuGUI11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 593920 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ]

dpus11.dll -> %System32%\dpus11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 344064 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ]

dpv11.dll -> %System32%\dpv11.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 57344 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ]

dtu100.dll -> %System32%\dtu100.dll -> DivX, Inc. [Ver = 1, 2, 0, 12 | Size = 196608 bytes | Modified Date = 09/07/2007 21:06:00 | Attr = ]

libdivx.dll -> %System32%\libdivx.dll -> The OpenSSL Project, http://www.openssl.org/ [Ver = 0.9.8b | Size = 1044480 bytes | Modified Date = 09/07/2007 21:07:46 | Attr = ]

qt-dx331.dll -> %System32%\qt-dx331.dll -> [Ver = | Size = 3596288 bytes | Modified Date = 09/07/2007 21:07:52 | Attr = ]

ssldivx.dll -> %System32%\ssldivx.dll -> The OpenSSL Project, http://www.openssl.org/ [Ver = 0.9.8b | Size = 200704 bytes | Modified Date = 09/07/2007 21:07:46 | Attr = ]

tmp.reg -> %System32%\tmp.reg -> [Ver = | Size = 6072 bytes | Modified Date = 03/09/2007 00:18:54 | Attr = ]

dpufr.qm -> %System32%\dpufr.qm -> [Ver = | Size = 8835 bytes | Modified Date = 09/07/2007 21:05:14 | Attr = ]

CONFIG.NT -> %System32%\CONFIG.NT -> [Ver = | Size = 3121 bytes | Modified Date = 03/09/2007 19:23:08 | Attr = ]

PerfStringBackup.INI -> %System32%\PerfStringBackup.INI -> [Ver = | Size = 779768 bytes | Modified Date = 25/07/2007 01:17:54 | Attr = ]

eRLog.ini -> %System32%\eRLog.ini -> [Ver = | Size = 0 bytes | Modified Date = 03/09/2007 00:37:02 | Attr = ]

DivX.dll -> %System32%\DivX.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 740442 bytes | Modified Date = 09/07/2007 21:05:56 | Attr = ]

dtu_fr.qm -> %System32%\dtu_fr.qm -> [Ver = | Size = 3162 bytes | Modified Date = 09/07/2007 21:05:14 | Attr = ]

dsm_fr.qm -> %System32%\dsm_fr.qm -> [Ver = | Size = 9878 bytes | Modified Date = 09/07/2007 21:07:54 | Attr = ]

dpuGUI10.dll -> %System32%\dpuGUI10.dll -> DivXNetworks [Ver = 1, 1, 1, 3 | Size = 53248 bytes | Modified Date = 09/07/2007 21:05:58 | Attr = ]

divx_xx0c.dll -> %System32%\divx_xx0c.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 823296 bytes | Modified Date = 09/07/2007 21:05:56 | Attr = ]

px.dll -> %System32%\px.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 527096 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ]

pxmas.dll -> %System32%\pxmas.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 183032 bytes | Modified Date = 09/07/2007 21:07:50 | Attr = ]

pxwave.dll -> %System32%\pxwave.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 379640 bytes | Modified Date = 09/07/2007 21:07:50 | Attr = ]

vxblock.dll -> %System32%\vxblock.dll -> Sonic Solutions [Ver = 1.00.74a | Size = 39672 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ]

xpdx.sys -> %System32%\xpdx.sys -> [Ver = | Size = 55004 bytes | Modified Date = 21/08/2007 16:04:04 | Attr = ]

divx_xx07.dll -> %System32%\divx_xx07.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 823296 bytes | Modified Date = 09/07/2007 21:05:56 | Attr = ]

pxdrv.dll -> %System32%\pxdrv.dll -> Sonic Solutions [Ver = 1.02.01a | Size = 502520 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ]

divx_xx11.dll -> %System32%\divx_xx11.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 802816 bytes | Modified Date = 09/07/2007 21:05:56 | Attr = ]

pxsfs.dll -> %System32%\pxsfs.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 1329912 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ]

MRT.INI -> %System32%\MRT.INI -> [Ver = | Size = 118 bytes | Modified Date = 15/08/2007 18:57:00 | Attr = ]

pxafs.dll -> %System32%\pxafs.dll -> Sonic Solutions [Ver = 3.4.46.500 | Size = 129784 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ]

pxhpinst.exe -> %System32%\pxhpinst.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 72440 bytes | Modified Date = 09/07/2007 21:07:50 | Attr = ]

DivXsm.exe -> %System32%\DivXsm.exe -> DivX Inc. [Ver = 6, 6, 1, 4 | Size = 524288 bytes | Modified Date = 09/07/2007 21:07:54 | Attr = ]

Divxdec.ax -> %System32%\Divxdec.ax -> DivX, Inc. [Ver = 6.6.1.4 | Size = 638976 bytes | Modified Date = 09/07/2007 21:05:50 | Attr = ]

DivXMedia.ax -> %System32%\DivXMedia.ax -> DivXNetworks [Ver = 0.0.0.028 | Size = 352401 bytes | Modified Date = 09/07/2007 21:05:50 | Attr = ]

pxinsa64.exe -> %System32%\pxinsa64.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 64760 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ]

pxinsi64.exe -> %System32%\pxinsi64.exe -> Sonic Solutions [Ver = 3.00.43J | Size = 118520 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ]

pxcpya64.exe -> %System32%\pxcpya64.exe -> Sonic Solutions [Ver = 1.00.39a | Size = 64760 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ]

DivXWMPExtType.dll -> %System32%\DivXWMPExtType.dll -> [Ver = | Size = 12288 bytes | Modified Date = 09/07/2007 21:05:30 | Attr = ]

DivXCodecUpdateChecker.exe -> %System32%\DivXCodecUpdateChecker.exe -> DivX, Inc. [Ver = 6, 2, 5, 7 | Size = 124472 bytes | Modified Date = 09/07/2007 21:05:30 | Attr = ]

pxcpyi64.exe -> %System32%\pxcpyi64.exe -> Sonic Solutions [Ver = 1.00.39a | Size = 116472 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ]

ldinfo.ldr -> %System32%\ldinfo.ldr -> [Ver = | Size = 745 bytes | Modified Date = 21/08/2007 17:47:20 | Attr = ]

aswBoot.exe -> %System32%\aswBoot.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 783224 bytes | Modified Date = 28/07/2007 00:07:22 | Attr = ]

AvastSS.scr -> %System32%\AvastSS.scr -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 95608 bytes | Modified Date = 27/07/2007 23:57:50 | Attr = ]

f06WtR -> %System32%\f06WtR -> [Folder | Modified Date = 21/08/2007 17:46:04 | Attr = ]

n.ini -> %System32%\n.ini -> [Ver = | Size = 75 bytes | Modified Date = 21/08/2007 17:47:02 | Attr = ]

GroupPolicy -> %System32%\GroupPolicy -> [Folder | Modified Date = 02/09/2007 20:40:04 | Attr = H ]

cdralw2k.sys -> %System32%\drivers\cdralw2k.sys -> Sonic Solutions [Ver = 8.0.0.212 | Size = 2560 bytes | Modified Date = 09/07/2007 21:07:50 | Attr = ]

cdr4_xp.sys -> %System32%\drivers\cdr4_xp.sys -> Sonic Solutions [Ver = 8.0.0.212 | Size = 2432 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ]

PxHelp20.sys -> %System32%\drivers\PxHelp20.sys -> Sonic Solutions [Ver = 3.00.43J | Size = 36624 bytes | Modified Date = 09/07/2007 21:07:48 | Attr = ]

klif.cab -> %System32%\drivers\klif.cab -> [Ver = | Size = 78123 bytes | Modified Date = 25/08/2007 17:23:24 | Attr = ]

aswmon.sys -> %System32%\drivers\aswmon.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 92848 bytes | Modified Date = 28/07/2007 00:02:50 | Attr = ]

aswmon2.sys -> %System32%\drivers\aswmon2.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 94416 bytes | Modified Date = 28/07/2007 00:02:34 | Attr = ]

aavmker4.sys -> %System32%\drivers\aavmker4.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 26624 bytes | Modified Date = 27/07/2007 23:58:36 | Attr = ]

aswTdi.sys -> %System32%\drivers\aswTdi.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 42912 bytes | Modified Date = 27/07/2007 23:59:58 | Attr = ]

aswRdr.sys -> %System32%\drivers\aswRdr.sys -> ALWIL Software [Ver = 4.7.1029.0 | Size = 23152 bytes | Modified Date = 28/07/2007 00:00:40 | Attr = ]

hosts.20070902-203346.backup -> %System32%\drivers\etc\hosts.20070902-203346.backup -> [Ver = | Size = 659 bytes | Modified Date = 02/09/2007 19:56:36 | Attr = R ]

file joy proc deaf -> %AllUsersAppData%\file joy proc deaf -> [Folder | Modified Date = 13/08/2007 20:27:20 | Attr = ]

Iso log peak file -> %AllUsersAppData%\Iso log peak file -> [Folder | Modified Date = 13/08/2007 20:27:30 | Attr = ]

WinAntiVirus Pro 2007 -> %AllUsersAppData%\WinAntiVirus Pro 2007 -> [Folder | Modified Date = 25/08/2007 16:23:02 | Attr = ]

Grisoft -> %AllUsersAppData%\Grisoft -> [Folder | Modified Date = 01/09/2007 23:29:50 | Attr = ]

Lavasoft -> %AllUsersAppData%\Lavasoft -> [Folder | Modified Date = 02/09/2007 00:20:52 | Attr = ]

Spybot - Search & Destroy -> %AllUsersAppData%\Spybot - Search & Destroy -> [Folder | Modified Date = 02/09/2007 19:30:48 | Attr = ]

wklnhst.dat -> %UserAppData%\wklnhst.dat -> [Ver = | Size = 7828 bytes | Modified Date = 01/09/2007 15:56:20 | Attr = ]

DivX -> %UserAppData%\DivX -> [Folder | Modified Date = 28/07/2007 03:24:14 | Attr = ]

Lavasoft -> %UserAppData%\Lavasoft -> [Folder | Modified Date = 02/09/2007 17:05:22 | Attr = ]

DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> %LocalAppData%\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [Ver = | Size = 86528 bytes | Modified Date = 25/08/2007 16:24:00 | Attr = ]

Mes fichiers reçus -> %UserDocuments%\Mes fichiers reçus -> [Folder | Modified Date = 28/07/2007 19:21:18 | Attr = ]

Droppix Recorder projects -> %UserDocuments%\Droppix Recorder projects -> [Folder | Modified Date = 22/08/2007 05:08:10 | Attr = R ]

Droppix Label Maker projects -> %UserDocuments%\Droppix Label Maker projects -> [Folder | Modified Date = 01/08/2007 19:48:08 | Attr = R ]

Droppix Label Maker Misc -> %UserDocuments%\Droppix Label Maker Misc -> [Folder | Modified Date = 01/08/2007 19:48:08 | Attr = R ]

Mes Historiques de Conversation -> %UserDocuments%\Mes Historiques de Conversation -> [Folder | Modified Date = 25/07/2007 20:17:58 | Attr = ]

QSDQDQSD.doc -> %UserDocuments%\QSDQDQSD.doc -> [Ver = | Size = 858 bytes | Modified Date = 21/08/2007 21:22:30 | Attr = ]

je mappelle Véro.doc -> %UserDocuments%\je mappelle Véro.doc -> [Ver = | Size = 940 bytes | Modified Date = 21/08/2007 21:26:46 | Attr = ]

mémoire jp.wps -> %UserDocuments%\mémoire jp.wps -> [Ver = | Size = 166400 bytes | Modified Date = 21/08/2007 21:42:24 | Attr = ]

Document.rtf -> %UserDocuments%\Document.rtf -> [Ver = | Size = 264 bytes | Modified Date = 21/08/2007 22:10:18 | Attr = ]

Mes dossiers de partage.lnk -> %UserDocuments%\Mes dossiers de partage.lnk -> [Ver = | Size = 849 bytes | Modified Date = 25/08/2007 17:40:42 | Attr = ]

Espace Wanadoo.lnk -> %AllUsersDesktop%\Espace Wanadoo.lnk -> [Ver = | Size = 1422 bytes | Modified Date = 25/07/2007 01:11:42 | Attr = ]

Mozilla Firefox.lnk -> %AllUsersDesktop%\Mozilla Firefox.lnk -> [Ver = | Size = 1510 bytes | Modified Date = 07/08/2007 17:08:56 | Attr = ]

DivX Converter.lnk -> %AllUsersDesktop%\DivX Converter.lnk -> [Ver = | Size = 714 bytes | Modified Date = 28/07/2007 03:19:40 | Attr = ]

DivX Player.lnk -> %AllUsersDesktop%\DivX Player.lnk -> [Ver = | Size = 703 bytes | Modified Date = 28/07/2007 03:19:54 | Attr = ]

Ad-Aware SE Personal.lnk -> %AllUsersDesktop%\Ad-Aware SE Personal.lnk -> [Ver = | Size = 749 bytes | Modified Date = 02/09/2007 17:05:12 | Attr = ]

RegCure.lnk -> %AllUsersDesktop%\RegCure.lnk -> [Ver = | Size = 441 bytes | Modified Date = 03/09/2007 17:33:12 | Attr = ]

avast! Antivirus.lnk -> %AllUsersDesktop%\avast! Antivirus.lnk -> [Ver = | Size = 1617 bytes | Modified Date = 03/09/2007 19:23:10 | Attr = ]

DivX Movies.lnk -> %UserDesktop%\DivX Movies.lnk -> [Ver = | Size = 1514 bytes | Modified Date = 28/07/2007 03:19:56 | Attr = ]

kav700123fr_1645.exe -> %UserDesktop%\kav700123fr_1645.exe -> Kaspersky Lab France [Ver = 7.0.0.123 | Size = 24708797 bytes | Modified Date = 25/08/2007 17:21:42 | Attr = ]

Quarantaine_Voir -> %UserDesktop%\Quarantaine_Voir -> [Folder | Modified Date = 01/09/2007 22:17:18 | Attr = ]

Spybot - Search & Destroy.lnk -> %UserDesktop%\Spybot - Search & Destroy.lnk -> [Ver = | Size = 871 bytes | Modified Date = 02/09/2007 23:47:04 | Attr = ]

DocsVeronique -> %UserDesktop%\DocsVeronique -> [Folder | Modified Date = 03/09/2007 18:51:02 | Attr = ]

[File String Scan - Non-Microsoft Only]

aspack , -> %SystemRoot%\ACER.SCR -> [Ver = | Size = 187392 bytes | Modified Date = 14/06/2004 11:50:08 | Attr = ]

PEC2 , -> %System32%\dfrg.msc -> [Ver = | Size = 41131 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ]

winsync , -> %System32%\wbdbase.deu -> [Ver = | Size = 1309184 bytes | Modified Date = 05/08/2004 05:00:00 | Attr = ]

WSUD , -> %System32%\ALSNDMGR.CPL -> Realtek Semiconductor Corp. [Ver = 2.2.0.43 | Size = 18706432 bytes | Modified Date = 18/04/2005 19:57:58 | Attr = ]

Thawte Consulting , -> %System32%\XceedSco.dll -> Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com [Ver = 1.1.104.0 | Size = 266952 bytes | Modified Date = 19/05/2003 11:37:20 | Attr = ]

Thawte Consulting , -> %System32%\XceedCry.dll -> Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com [Ver = 1.1.103.0 | Size = 516656 bytes | Modified Date = 02/02/2003 12:01:34 | Attr = ]

PEC2 , PECompact2 , -> %System32%\DivX.dll -> DivX, Inc. [Ver = 6.6.1.4 | Size = 740442 bytes | Modified Date = 09/07/2007 21:05:56 | Attr = ]

UPX! , UPX0 , -> %System32%\aswBoot.exe -> ALWIL Software [Ver = 4, 7, 1029, 0 | Size = 783224 bytes | Modified Date = 28/07/2007 00:07:22 | Attr = ]

File scan skipped for file %UserDocuments%\discours pr mon annif.zip -> File size too big (155237498 bytes) ->

FSG! , -> %UserDocuments%\journée playa.zip -> [Ver = | Size = 8578334 bytes | Modified Date = 06/06/2006 22:02:18 | Attr = ]

< End of report >

Merci @+

Thanos · le 3 septembre 2007

re!

Ok il y a pas mal de restrictions qui ont été placées dans le registre, ce qui explique que tu ne puisses plus accéder au Panneau de Configuration (mais aussi au Gestionnaire de tâches, à regedit etc....)

Voilà la suite des manipulations >

1) Télécharge MSNFix.zip (de !aur3n7) sur ton bureau:

Décompresse-le (clic droit >> Extraire ici) et double clique sur le fichier MSNFix.bat

- Exécute l'option R.

- Si l'infection est détectée, un message l'indiquera et il suffira de presser une touche pour lancer le nettoyage

Note :

Si une erreur de suppression est détectée un message s'affichera demandant de redémarrer l'ordinateur afin de terminer les opérations. Dans ce cas il suffit de redémarrer l'ordinateur en mode normal

- Le rapport sera enregistré dans le même dossier que MSNFix sous forme date_heure.txt

2)Démarre WinPFind3U en double cliquant sur WinPFind3U.exe et copie/colle le texte ci dessous (ne copie pas le mot CODE)

dans le Panneau Paste fix here , puis clique sur le bouton Run Fix.

[Registry - Non-Microsoft Only]
< CurrentVersion Policy Settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\
YN -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoControlPanel -> 1
YN -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\DisableRegistryTools -> 1
YN -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\DisableTaskMgr -> 1
< CurrentVersion Policy Settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\
YN -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoControlPanel -> 1
YN -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoWindowsUpdate -> 1
YN -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableRegistryTools -> 1
YN -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableTaskMgr -> 1
< Internet Explorer ToolBars [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\
YN -> ShellBrowser\\{74CC49F7-EB32-4A08-B204-948962A6E3DB} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found]
< Internet Explorer Menu Extensions [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\
YN -> &Search -> http:\ko.bar.need2find.com\KO\menusearch.htm
[Registry - Additional Scans - Non-Microsoft Only]
< Security Settings > -> 
YY -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\%windir%\system32\winav.exe -> %windir%\system32\winav.exe:*:Enabled:@xpsp2res.dll,-22019
YY -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\WINDOWS\System32\P2P Networking\P2P Networking.exe -> C:\WINDOWS\System32\P2P Networking\P2P Networking.exe:*:Enabled:P2P Networking
[Files/Folders - Created Within 60 days]
NY -> album95.zip -> %SystemRoot%\album95.zip
NY -> photos091.zip -> %SystemRoot%\photos091.zip
NY -> images021.zip -> %SystemRoot%\images021.zip
NY -> photos061.zip -> %SystemRoot%\photos061.zip
NY -> photo66.zip -> %SystemRoot%\photo66.zip
NY -> itsME28.zip -> %SystemRoot%\itsME28.zip
NY -> itsME7.zip -> %SystemRoot%\itsME7.zip
NY -> images027.zip -> %SystemRoot%\images027.zip
NY -> RegCure.job -> %SystemRoot%\tasks\RegCure.job
NY -> RegCure Program Check.job -> %SystemRoot%\tasks\RegCure Program Check.job
NY -> xpdx.sys -> %System32%\xpdx.sys
NY -> f06WtR -> %System32%\f06WtR
NY -> file joy proc deaf -> %AllUsersAppData%\file joy proc deaf
NY -> Iso log peak file -> %AllUsersAppData%\Iso log peak file
NY -> WinAntiVirus Pro 2007 -> %AllUsersAppData%\WinAntiVirus Pro 2007
NY -> RegCure.lnk -> %AllUsersDesktop%\RegCure.lnk
[Files/Folders - Modified Within 60 days]
NY -> album95.zip -> %SystemRoot%\album95.zip
NY -> photos091.zip -> %SystemRoot%\photos091.zip
NY -> images021.zip -> %SystemRoot%\images021.zip
NY -> photos061.zip -> %SystemRoot%\photos061.zip
NY -> photo66.zip -> %SystemRoot%\photo66.zip
NY -> itsME28.zip -> %SystemRoot%\itsME28.zip
NY -> itsME7.zip -> %SystemRoot%\itsME7.zip
NY -> images027.zip -> %SystemRoot%\images027.zip
NY -> RegCure.job -> %SystemRoot%\tasks\RegCure.job
NY -> RegCure Program Check.job -> %SystemRoot%\tasks\RegCure Program Check.job
NY -> xpdx.sys -> %System32%\xpdx.sys
NY -> f06WtR -> %System32%\f06WtR
NY -> n.ini -> %System32%\n.ini
NY -> file joy proc deaf -> %AllUsersAppData%\file joy proc deaf
NY -> Iso log peak file -> %AllUsersAppData%\Iso log peak file
NY -> WinAntiVirus Pro 2007 -> %AllUsersAppData%\WinAntiVirus Pro 2007
NY -> RegCure.lnk -> %AllUsersDesktop%\RegCure.lnk

Le Fix va se faire rapidement, il te sera peut être demandé de redémarrer ton pc : accepte en cliquant sur Yes

Poste le rapport qui se trouve dans le dossier WinPFind3u( c'est un rapport qui a pour nom la date du jour\mois\année\heure).

3) Fais un scan en ligne avec Panda :

http://www.pandasoftware.fr/Activescan/Activescan.html .

Et poste le rapport qu'il t'affichera à la fin, pour cela, assure toi que IE est correctement configuré pour le scan en ligne comme indiqué ici : http://www.malekal.com/scan_Av_en_ligne.html#mozTocId898809 .

Si tu n'y arrives pas, le tuto est : http://www.malekal.com/scan_Av_en_ligne.html#mozTocId237368

Tu n'es pas obligé de donner ton email, tu peux utiliser une adresse jetable si tu le souhaites : http://www.jetable.org/fr/index

Attention!! Panda et Avast entrent en conflit, pour pouvoir télécharger le contrôle active x de Panda, il faut que tu désactives le bouclier web d'Avast le temps du scan. Clique sur le bouton "Pause" >

courage

Modifié le 3 septembre 2007 par charles ingals

ray97 · le 3 septembre 2007

re Charles ,

j'ai réalisé la première partie des manips. Au reboot, tout semble OK . J'accède de nouveau aux panneau de conf et autres.

Voici le résultat du scan winpfind3u :

[Registry - Non-Microsoft Only]

Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoControlPanel deleted successfully.

Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\DisableRegistryTools deleted successfully.

Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\DisableTaskMgr deleted successfully.

Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoControlPanel deleted successfully.

Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoWindowsUpdate deleted successfully.

Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableRegistryTools not found.

Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableTaskMgr not found.

Registry key ShellBrowser\\{74CC49F7-EB32-4A08-B204-948962A6E3DB} [HKLM]\ not found.

Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\&Search deleted successfully.

[Registry - Additional Scans - Non-Microsoft Only]

Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\%windir%\system32\winav.exe deleted successfully.

File %windir%\system32\winav.exe:*:Enabled:@xpsp2res.dll,-22019 not found.

Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\WINDOWS\System32\P2P Networking\P2P Networking.exe deleted successfully.

File C:\WINDOWS\System32\P2P Networking\P2P Networking.exe:*:Enabled:P2P Networking not found.

[Files/Folders - Created Within 60 days]

File C:\WINDOWS\album95.zip not found!

File C:\WINDOWS\photos091.zip not found!

File C:\WINDOWS\images021.zip not found!

File C:\WINDOWS\photos061.zip not found!

File C:\WINDOWS\photo66.zip not found!

File C:\WINDOWS\itsME28.zip not found!

File C:\WINDOWS\itsME7.zip not found!

File C:\WINDOWS\images027.zip not found!

C:\WINDOWS\tasks\RegCure.job moved successfully.

C:\WINDOWS\tasks\RegCure Program Check.job moved successfully.

File move failed. C:\WINDOWS\SYSTEM32\xpdx.sys scheduled to be moved on reboot.

C:\WINDOWS\SYSTEM32\f06WtR moved successfully.

C:\Documents and Settings\All Users\Application Data\file joy proc deaf moved successfully.

C:\Documents and Settings\All Users\Application Data\Iso log peak file moved successfully.

Folder move failed. C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007\Data\ActivationCode scheduled to be moved on reboot.

Folder move failed. C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007\Data\Abbr scheduled to be moved on reboot.

Folder move failed. C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007\Data\ProductCode scheduled to be moved on reboot.

C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007\Data moved successfully.

C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007 moved successfully.

C:\Documents and Settings\All Users\Bureau\RegCure.lnk moved successfully.

[Files/Folders - Modified Within 60 days]

File C:\WINDOWS\album95.zip not found!

File C:\WINDOWS\photos091.zip not found!

File C:\WINDOWS\images021.zip not found!

File C:\WINDOWS\photos061.zip not found!

File C:\WINDOWS\photo66.zip not found!

File C:\WINDOWS\itsME28.zip not found!

File C:\WINDOWS\itsME7.zip not found!

File C:\WINDOWS\images027.zip not found!

File C:\WINDOWS\tasks\RegCure.job not found!

File C:\WINDOWS\tasks\RegCure Program Check.job not found!

File move failed. C:\WINDOWS\SYSTEM32\xpdx.sys scheduled to be moved on reboot.

File C:\WINDOWS\SYSTEM32\f06WtR not found!

C:\WINDOWS\SYSTEM32\n.ini moved successfully.

File C:\Documents and Settings\All Users\Application Data\file joy proc deaf not found!

File C:\Documents and Settings\All Users\Application Data\Iso log peak file not found!

File C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007 not found!

File C:\Documents and Settings\All Users\Bureau\RegCure.lnk not found!

< End of log >

Created on 09/03/2007 22:31:01

reste le scan Panda

@+

ray97 · le 3 septembre 2007

Charles,

Voici le rapport de ActiveScan :

Incident Statut Analyse

Outil indésirable:application/need2find No Désinfecté hkey_local_machine\software\microsoft\windows\currentversion\uninstall\Need2FindBar Uninstall

Outil indésirable:application/altnet No Désinfecté hkey_local_machine\software\microsoft\windows\currentversion\app management\arpcache\AltnetDM

Adware:adware/instafinder No Désinfecté Registre Windows

Adware:Adware/WinAntiVirus2007 No Désinfecté C:\WINDOWS\PSS\system.exeStartup

Adware:Adware/WinAntiVirus2007 No Désinfecté C:\WINDOWS\PSS\autorun.exeCommon Startup

Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\véronique darin\Local Settings\Temp\Cookies\véronique darin@xiti[1].txt

Spyware:Cookie/888 No Désinfecté C:\Documents and Settings\véronique darin\Local Settings\Temp\Cookies\véronique darin@888[2].txt

Spyware:Cookie/888 No Désinfecté C:\Documents and Settings\véronique darin\Local Settings\Temp\Cookies\véronique darin@888[1].txt

Spyware:Cookie/Cassava No Désinfecté C:\Documents and Settings\véronique darin\Local Settings\Temp\Cookies\véronique darin@cassava[1].txt

Adware:Adware/WinAntiVirus2007 No Désinfecté C:\Documents and Settings\véronique darin\Local Settings\Temp\ICD1.TMP\UWA7PV_0001_N96M0206NetInstaller.exe

Outil indésirable:Application/Processor No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\Nouveau dossier (2)\SmitfraudFix\SmitfraudFix.zip[smitfraudFix/Process.exe]

Outil indésirable:Application/SuperFast No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\Nouveau dossier (2)\SmitfraudFix\SmitfraudFix.zip[smitfraudFix/restart.exe]

Outil indésirable:Application/Processor No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\Nouveau dossier (2)\SmitfraudFix\SmitfraudFix\Process.exe

Outil indésirable:Application/SuperFast No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\Nouveau dossier (2)\SmitfraudFix\SmitfraudFix\RESTART.EXE

Outil indésirable:Application/Pskill.K No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\Clean\CLEAN.ZIP[clean/pskill.exe]

Outil indésirable:Application/Pskill.K No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\Clean\CLEAN\PSKILL.EXE

Outil indésirable:Application/Processor No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\MSNFix\MSNFix.zip[MSNFix/incl/Process.exe]

Outil indésirable:Application/Processor No Désinfecté C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\MSNFix\MSNFix\INCL\Process.exe

Spyware:Cookie/Overture No Désinfecté C:\Documents and Settings\véronique darin\Cookies\véronique darin@overture[2].txt

Spyware:Cookie/Toplist No Désinfecté C:\Documents and Settings\véronique darin\Cookies\véronique darin@toplist[1].txt

Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\véronique darin\Application Data\Mozilla\Firefox\Profiles\kwu3ngb9.default\COOKIES.TXT[.xiti.com/]

Spyware:Cookie/Advertising No Désinfecté C:\Documents and Settings\véronique darin\Application Data\Mozilla\Firefox\Profiles\kwu3ngb9.default\COOKIES.TXT[.advertising.com/]

Adware:Adware/WinAntiVirus2007 No Désinfecté C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Démarrage\SYSTEM.EXE

Adware:Adware/WinAntivirus2006 No Désinfecté C:\Program Files\Common Files\Companion Wizard\WapCHK.dll

@+

Thanos · le 4 septembre 2007

salut,

Très bien A présent tu dois pouvoir accéder au Panneau de Configuration : désinstalle les programmes suivants via Ajouter/Supprimer des Programmes >

Need2Find Bar

RegCure 1.5.0.0

J'aimerai que tu relances WinpFind3U comme précédemment et que tu fasses un nouveau scan : poste le rapport >

* Ouvre le dossier et double clique sur le fichier WinPFind3U.exe pour lancer le programme.
* Sous le groupe Files Created Within sélectionne 60 days

* Sous le groupe Files Modified Within sélectionne 60 days

* Sous le groupe String Search sélectionne Non-Microsoft

* Sous le groupe Additional Scans coche les cases >

Reg- Uninstall List

Reg- Security Settings

Reg- Software Policy Settings

Reg- Additional Folder Scans

* A présent clique sur le bouton Run Scan dans la barre d'outils

* Lorsque le scan est terminé,le bloc-notes s'ouvre et affiche le rapport.

* Clique sur le menu "Format" et assure toi que la case "Retour automatique à la ligne" ne soit pas cochée.

* Copie/Colle le contenu du rapport dans ta prochaine réponse.

Poste aussi stp le rapport de MSNFix qui se trouve dans le même dossier que MSNFix sous forme date_heure.txt

@ +

ray97 · le 4 septembre 2007

Salut Charles,

Voici le rapport de WinPFind3u :

WinPFind3 logfile created on: 04/09/2007 16:03:36

WinPFind3U by OldTimer - Version 1.0.41 Folder = C:\Documents and Settings\véronique darin\Bureau\Downloads\OutilsVirus\winpfind3u\WinPFind3u\

Microsoft Windows XP Service Pack 2 (Version = 5.1.2600)

Internet Explorer (Version = 7.0.5730.11)

502,42 Mb Total Physical Memory | 261,23 Mb Available Physical Memory | 51,99% Memory free

1,20 Gb Paging File | 0,98 Gb Available in Paging File | 81,93% Paging File free

Paging file location(s): C:\pagefile.sys 756 1512;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 35,60 Gb Total Space | 2,66 Gb Free Space | 7,47% Space Free