Nettoyage infection

Huyo · le 24 novembre 2010

Bonjour à tous, je me suis peut être égaré sur mon autre topic.

On m'a donc conseillé de le refaire en allant à l'essentielle

Je vous poste donc le rapport et l'analyse

Voici le rapport Hajick

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 08:58:56, on 20/11/2010

Platform: Windows Vista (WinNT 6.00.1904)

MSIE: Internet Explorer v7.00 (7.00.6000.17037)

Boot mode: Normal

Running processes:

C:\Program Files\Norton AntiVirus\Engine\17.8.0.5\ccSvcHst.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\RtHDVCpl.exe

C:\Acer\Empowering Technology\SysMonitor.exe

C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Google\Google Talk\googletalk.exe

C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

C:\Windows\ehome\ehmsas.exe

C:\Users\Yoann\AppData\Local\Google\Update\GoogleUpdate.exe

C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe

C:\Users\Yoann\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe

C:\Program Files\Common Files\microsoft shared\Works Shared\WkCalRem.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Windows\system32\wuauclt.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

C:\Program Files\Wise Registry Cleaner 3\WiseRegistryCleaner.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Troner.net

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local;*.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe

O1 - Hosts: ::1 localhost

O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\17.8.0.5\IPSBHO.DLL

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll

O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll

O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll

O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe

O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe

O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe

O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe

O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe

O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe

O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [Mon Widget RMC] "C:\Program Files\Nosibay\Mon Widget RMC\launcher.exe"

O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun

O4 - HKCU\..\Run: [GreedyTorrent] "C:\Program Files\GreedyTorrent\GTor.exe" -tray

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [Google Update] "C:\Users\Yoann\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [Raptr] C:\PROGRA~1\Raptr\raptrstub.exe --startup

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-18\..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (User 'Default user')

O4 - Startup: Notification de cadeaux MSN.lnk = C:\Users\Yoann\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe

O4 - Startup: wkcalrem.LNK = C:\Program Files\Common Files\microsoft shared\Works Shared\WkCalRem.exe

O4 - Global Startup: PCM Media Sharing.lnk = C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe

O8 - Extra context menu item: Add to Windows &Live Favorites - Welcome to Windows Live

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000

O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll

O9 - Extra button: (no name) - cmdmapping - (no file) (HKCU)

O13 - Gopher Prefix:

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.m...ash/swflash.cab

O16 - DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} (VodClient Control Class) - Vexcast.com - Stream Yourself - All Stream

O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe

O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe

O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: ASKService - Unknown owner - C:\Program Files\AskBarDis\bar\bin\AskService.exe

O23 - Service: ASKUpgrade - Unknown owner - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe

O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe

O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe

O23 - Service: Norton AntiVirus (NAV) - Symantec Corporation - C:\Program Files\Norton AntiVirus\Engine\17.8.0.5\ccSvcHst.exe

O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

--

End of file - 11736 bytes

Voici la réponse de Ticlou

Salut

Ton rapport démontre une infection,

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local;*.local => Infection Rogue (Possible)

O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll => Infection BT (AskBarDis.Adw)

O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll => Infection BT (AskBarDis.Adw)

O23 - Service: ASKService - Unknown owner - C:\Program Files\AskBarDis\bar\bin\AskService.exe => Infection BT (AskBarDis.Adw)

O23 - Service: ASKUpgrade - Unknown owner - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe => Infection BT (AskBarDis.Adw)

En bas de la réponse Dans signaler

Dans fenêtre qui ouvre, tu demandes un transfert pour la désinfection et tu inscris L'URL de ton post, un modérateur va transférer ton post pour la désinfection. Commence par faire désinfecter ça peut résoudre ton crashdump, si non on reprendra les astuces

Amicalement

Ticlou

J'ai donc besoin de quelqu'un dans un 1er temps pour enlever cette cochonnerie.

Merci d'avance

pear · le 25 novembre 2010

Bonjour,

Téléchargez AD-Remover sur le bureau

Déconnectez-vous et fermez toutes les applications en cours

Cliquer sur "Ad-R.exe" pour lancer l'installation et laisser les paramètres par défaut .

Une fenêtre s'affichera Vous prévenant des risques de l'utilisation de ce logiciel

Cliquez sur "OUI"

Double cliquer sur l'icône Ad-remover sur le bureau

Au menu principal choisir l'optionScanner et Validez

Patientez pendant le travail de l'outil.

Poster le rapport qui apparait à la fin .

Il est sauvegardé aussi sous C:\Ad-report.log

Ensuite

Relancer Ad- remover , choisir l'option Nettoyer

Il y aura 2 rapports à poster après Scanner et Nettoyer

Pour désinstaller AD-Remover, lancez avec l'option D puis supprimer l'icône du bureau.

Lancez cet outil de diagnostic:

Téléchargez ZhpDiag de Coolman

Décompresser le fichier ZHPDiag.fix sur le bureau

puis double-cliquer sur le fichier ZHPDiag.exe pour installer l'outil

Sur le bureau ,il y aura 3 icônes

Sous XP, double clic sur ZhpDiag

Sous Vista/7, faire un clic droit et Exécuter en tant qu'administrateur

Clic sur la Loupe pour lancer le scan

Postez en le rapport ZhpDiag.txt qui apparait sur le bureau

Comment poster les rapports

Vous copiez/collez tout ou partie des rapports dans un ou plusieurs messages.

Autre solution:

Aller sur le site :Ci-Joint

Appuyez sur Parcourir et chercher les rapports sur le disque,

Ensuite appuyez sur Créer le lien CJoint,

>> dans la page suivante --> ,,

une adresse http//.. sera créée

Copier /coller cette adresse dans votre prochain message.

Huyo · le 25 novembre 2010

Je m'en charge ce soir..

Merci bien

Huyo · le 25 novembre 2010

Voici le rapport du Scan de AD

======= RAPPORT D'AD-REMOVER 2.0.0.2,B | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 11/11/10 à 11:40

Contact: AdRemover[DOT]contact[AT]gmail[DOT]com

Site web: TeamXscript : AD-Remover - FindyKill - UsbFix

C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 22:18:37 le 25/11/2010, Mode normal

Microsoft® Windows Vista™ Édition Familiale Premium (X86)

Yoann@PC-DE-YOANN ( )

============== RECHERCHE ==============

Service: "ASKService" Présent

Service: "ASKUpgrade" Présent

Fichier trouvé: C:\Program Files\Mozilla FireFox\Components\AskSearch.js

Dossier trouvé: C:\Program Files\Mozilla FireFox\extensions\deenero_toolbar@aedgency.com

Dossier trouvé: C:\Users\Yoann\AppData\Roaming\Mozilla\FireFox\Profiles\79umbxz9.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}

Fichier trouvé: C:\Users\Yoann\AppData\Roaming\Mozilla\FireFox\Profiles\79umbxz9.default\searchplugins\ask.xml

Fichier trouvé: C:\Users\Yoann\AppData\Roaming\Mozilla\FireFox\Profiles\79umbxz9.default\searchplugins\web-search.xml

Dossier trouvé: C:\Program Files\AskBarDis

Fichier trouvé: C:\Users\Yoann\Downloads\FLVDirect.exe

-- Fichier ouvert: C:\Users\Yoann\AppData\Roaming\Mozilla\FireFox\Profiles\79umbxz9.default\Prefs.js --

Ligne trouvée: user_pref("browser.search.defaultenginename", "Ask");

Ligne trouvée: user_pref("browser.search.order.1", "Ask");

Ligne trouvée: user_pref("extensions.snipit.askTbInstalled", true);

Ligne trouvée: user_pref("extensions.snipit.chromeURL", "hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101699&gct=&...

Ligne trouvée: user_pref("extensions.snipit.history_query", "colonie%20de%20vacances%20dans%20le%20nord=ASKURL=hxxp...

Ligne trouvée: user_pref("keyword.URL", "hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101699&gct=&gc=1&q=");

-- Fichier Fermé --

Clé trouvée: HKLM\Software\Classes\CLSID\{0702a2b6-13aa-4090-9e01-bcdc85dd933f}

Clé trouvée: HKLM\Software\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2}

Clé trouvée: HKLM\Software\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E}

Clé trouvée: HKLM\Software\Classes\CLSID\{201f27d4-3704-41d6-89c1-aa35e39143ed}

Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}

Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201f27d4-3704-41d6-89c1-aa35e39143ed}

Clé trouvée: HKLM\Software\Classes\CLSID\{3041d03e-fd4b-44e0-b742-2d9b88305f98}

Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041d03e-fd4b-44e0-b742-2d9b88305f98}

Clé trouvée: HKLM\Software\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60}

Clé trouvée: HKLM\Software\Classes\CLSID\{622fd888-4e91-4d68-84d4-7262fd0811bf}

Clé trouvée: HKLM\Software\Classes\CLSID\{b0de3308-5d5a-470d-81b9-634fc078393b}

Clé trouvée: HKLM\Software\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}

Clé trouvée: HKLM\Software\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}

Clé trouvée: HKLM\Software\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}

Clé trouvée: HKLM\Software\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}

Clé trouvée: HKLM\Software\Classes\TypeLib\{4B1C1E16-6B34-430E-B074-5928ECA4C150}

Clé trouvée: HKLM\Software\Classes\TypeLib\{D2E5FA06-DCC7-46F9-BEFF-BFD06F69B9B2}

Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterBarButton

Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterBarButton.1

Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl

Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl.1

Clé trouvée: HKLM\Software\Classes\AskToolBar.SettingsPlugin

Clé trouvée: HKLM\Software\Classes\AskToolBar.SettingsPlugin.1

Clé trouvée: HKLM\Software\AppDataLow\AskBarDis

Clé trouvée: HKCU\Software\AppDataLow\AskBarDis

Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}

Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}

Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ask Toolbar_is1

Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\ProtocolExecute\deenero

Valeur trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing\Trust Database\0|goicfboogidikkejccmclpieicihhlpo jimddp

Valeur trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing\Trust Database\0|goicfboogidikkejccmclpieicihhlpo hpfanicgkffmccehnpkikogcffaepkfp

Valeur trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing\Trust Database\0|goicfboogidikkejccmclpieicihhlpo dgnckdmmolaijpbbakmplfhlfpdhglgc

Valeur trouvée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{3041D03E-FD4B-44E0-B742-2D9B88305F98}

Valeur trouvée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{FE063DB9-4EC0-403E-8DD8-394C54984B2C}

Valeur trouvée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{3041D03E-FD4B-44E0-B742-2D9B88305F98}

============== SCAN ADDITIONNEL ==============

** Mozilla Firefox Version [3.6.12 (fr)] **

-- C:\Users\Yoann\AppData\Roaming\Mozilla\FireFox\Profiles\79umbxz9.default\Prefs.js --

browser.download.dir, C:\\Users\\Yoann\\Downloads

browser.download.lastDir, K:\\Fiches techniques Potel\\Blocs portes

browser.search.defaultenginename, Ask

browser.search.selectedEngine, DAEMON Search

browser.startup.homepage, hxxp://www.google.fr/|ht

browser.startup.homepage_override.mstone, rv:1.9.2.12

keyword.URL, hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101699&gct=&gc=1&q=

========================================

** Internet Explorer Version [7.0.6000.17037] **

[HKCU\Software\Microsoft\Internet Explorer\Main]

AutoHide: yes

Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Do404Search: 0x01000000

Enable Browser Extensions: yes

Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Show_ToolBar: yes

Start Page: hxxp://www.mydtzone.com/startpage

[HKLM\Software\Microsoft\Internet Explorer\Main]

AutoHide: yes

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Delete_Temp_Files_On_Exit: yes

Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Start Page: hxxp://www.troner.net/

[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]

Tabs: res://ieframe.dll/tabswelcome.htm

Blank: res://mshtml.dll/blank.htm

========================================

C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s)

C:\Program Files\Ad-Remover\Backup: 1 Fichier(s)

C:\Ad-Report-SCAN[1].txt - 25/11/2010 (6794 Octet(s))

Fin à: 22:22:09, 25/11/2010

============== E.O.F ==============

Huyo · le 25 novembre 2010

Et le rapport de nettoyage

======= RAPPORT D'AD-REMOVER 2.0.0.2,B | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 11/11/10 à 11:40

Contact: AdRemover[DOT]contact[AT]gmail[DOT]com

Site web: TeamXscript : AD-Remover - FindyKill - UsbFix

C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 22:24:47 le 25/11/2010, Mode normal

Microsoft® Windows Vista™ Édition Familiale Premium (X86)

Yoann@PC-DE-YOANN ( )

============== ACTION(S) ==============

Service: "ASKService" Stoppé et supprimé

Service: "ASKUpgrade" Stoppé et supprimé

Fichier supprimé: C:\Program Files\Mozilla FireFox\Components\AskSearch.js

Dossier supprimé: C:\Program Files\Mozilla FireFox\extensions\deenero_toolbar@aedgency.com

Dossier supprimé: C:\Users\Yoann\AppData\Roaming\Mozilla\FireFox\Profiles\79umbxz9.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}

Fichier supprimé: C:\Users\Yoann\AppData\Roaming\Mozilla\FireFox\Profiles\79umbxz9.default\searchplugins\ask.xml

Fichier supprimé: C:\Users\Yoann\AppData\Roaming\Mozilla\FireFox\Profiles\79umbxz9.default\searchplugins\web-search.xml

Dossier supprimé: C:\Program Files\AskBarDis

Fichier supprimé: C:\Users\Yoann\Downloads\FLVDirect.exe

(!) -- Fichiers temporaires supprimés.

-- Fichier ouvert: C:\Users\Yoann\AppData\Roaming\Mozilla\FireFox\Profiles\79umbxz9.default\Prefs.js --

Ligne supprimée:

Ligne supprimée: user_pref("browser.search.defaultenginename", "Ask");

Ligne supprimée: user_pref("browser.search.order.1", "Ask");

Ligne supprimée: user_pref("extensions.snipit.askTbInstalled", true);

Ligne supprimée: user_pref("extensions.snipit.chromeURL", "hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101699&gct=&...

Ligne supprimée: user_pref("extensions.snipit.history_query", "colonie%20de%20vacances%20dans%20le%20nord=ASKURL=hxxp...

Ligne supprimée: user_pref("keyword.URL", "hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101699&gct=&gc=1&q=");

-- Fichier Fermé --

Clé supprimée: HKLM\Software\Classes\CLSID\{0702a2b6-13aa-4090-9e01-bcdc85dd933f}

Clé supprimée: HKLM\Software\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2}

Clé supprimée: HKLM\Software\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E}

Clé supprimée: HKLM\Software\Classes\CLSID\{201f27d4-3704-41d6-89c1-aa35e39143ed}

Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}

Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201f27d4-3704-41d6-89c1-aa35e39143ed}

Clé supprimée: HKLM\Software\Classes\CLSID\{3041d03e-fd4b-44e0-b742-2d9b88305f98}

Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041d03e-fd4b-44e0-b742-2d9b88305f98}

Clé supprimée: HKLM\Software\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60}

Clé supprimée: HKLM\Software\Classes\CLSID\{622fd888-4e91-4d68-84d4-7262fd0811bf}

Clé supprimée: HKLM\Software\Classes\CLSID\{b0de3308-5d5a-470d-81b9-634fc078393b}

Clé supprimée: HKLM\Software\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}

Clé supprimée: HKLM\Software\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}

Clé supprimée: HKLM\Software\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}

Clé supprimée: HKLM\Software\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}

Clé supprimée: HKLM\Software\Classes\TypeLib\{4B1C1E16-6B34-430E-B074-5928ECA4C150}

Clé supprimée: HKLM\Software\Classes\TypeLib\{D2E5FA06-DCC7-46F9-BEFF-BFD06F69B9B2}

Clé supprimée: HKLM\Software\Classes\AskIBar.PopSwatterBarButton

Clé supprimée: HKLM\Software\Classes\AskIBar.PopSwatterBarButton.1

Clé supprimée: HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl

Clé supprimée: HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl.1

Clé supprimée: HKLM\Software\Classes\AskToolBar.SettingsPlugin

Clé supprimée: HKLM\Software\Classes\AskToolBar.SettingsPlugin.1

Clé supprimée: HKLM\Software\AppDataLow\AskBarDis

Clé supprimée: HKCU\Software\AppDataLow\AskBarDis

Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}

Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}

Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ask Toolbar_is1

Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\ProtocolExecute\deenero

Valeur supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing\Trust Database\0|goicfboogidikkejccmclpieicihhlpo jimddp

Valeur supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing\Trust Database\0|goicfboogidikkejccmclpieicihhlpo hpfanicgkffmccehnpkikogcffaepkfp

Valeur supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing\Trust Database\0|goicfboogidikkejccmclpieicihhlpo dgnckdmmolaijpbbakmplfhlfpdhglgc

Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{3041D03E-FD4B-44E0-B742-2D9B88305F98}

Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{FE063DB9-4EC0-403E-8DD8-394C54984B2C}

Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{3041D03E-FD4B-44E0-B742-2D9B88305F98}

============== SCAN ADDITIONNEL ==============

** Mozilla Firefox Version [3.6.12 (fr)] **

-- C:\Users\Yoann\AppData\Roaming\Mozilla\FireFox\Profiles\79umbxz9.default\Prefs.js --

browser.download.dir, C:\\Users\\Yoann\\Downloads

browser.download.lastDir, K:\\Fiches techniques Potel\\Blocs portes

browser.search.selectedEngine, DAEMON Search

browser.startup.homepage, hxxp://www.google.fr/|ht

browser.startup.homepage_override.mstone, rv:1.9.2.12

========================================

** Internet Explorer Version [7.0.6000.17037] **

[HKCU\Software\Microsoft\Internet Explorer\Main]

AutoHide: yes

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Do404Search: 0x01000000

Enable Browser Extensions: yes

Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896

Show_ToolBar: yes

Start Page: hxxp://fr.msn.com/

[HKLM\Software\Microsoft\Internet Explorer\Main]

AutoHide: yes

Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896

Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Delete_Temp_Files_On_Exit: yes

Search bar: hxxp://search.msn.com/spbasic.htm

Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Start Page: hxxp://fr.msn.com/

[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]

Tabs: res://ieframe.dll/tabswelcome.htm

Blank: res://mshtml.dll/blank.htm

========================================

C:\Program Files\Ad-Remover\Quarantine: 47 Fichier(s)

C:\Program Files\Ad-Remover\Backup: 17 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 25/11/2010 (6956 Octet(s))

C:\Ad-Report-SCAN[1].txt - 25/11/2010 (6923 Octet(s))

Fin à: 22:26:24, 25/11/2010

============== E.O.F ==============

Huyo · le 25 novembre 2010

Et voici la rapport de ZHP

Bah alors là bonne lecture et bon courage

Rapport de ZHPDiag v1.27.135 par Nicolas Coolman, Update du 22/11/2010

Run by Yoann at 25/11/2010 22:45:27

Web site : ZHPDiag Outil de diagnostic

Contact : nicolascoolman@yahoo.fr

---\\ Web Browser

MSIE: Internet Explorer v7.0.6000.17037

MFIE: Mozilla Firefox v3.6.12 (fr) (Defaut)

GCIE: Google Chrome v7.0.517.44

---\\ System Information

Windows Vista Home Premium Edition, 32-bit (Build 6000)

Processor: x86 Family 15 Model 67 Stepping 3, AuthenticAMD

Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 3070 MB (54% free)

System drive C: has 26 GB (23%) free of 112 GB

---\\ Logged in mode

Computer Name: PC-DE-YOANN

User Name: Yoann

All Users Names: Yoann, Administrateur,

Unselected Option: O1,O45,O61,O62,O65,O82

Logged in as Administrator

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 26 Go of 112 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 11 Go of 111 Go)

E:\ CD-ROM drive (Not Inserted)

F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

J:\ CD-ROM drive (Not Inserted)

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: Modified

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

---\\ Recherche particulière de fichiers génériques

[MD5.37440D09DEAE0B672A04DCCF7ABF06BE] - (.Microsoft Corporation - Explorateur Windows.) (.29/10/2008 07:20:29.) -- C:\Windows\Explorer.exe [2923520]

[MD5.D4385B03E8CCCEE6F0EE249F827C1F3E] - (.Microsoft Corporation - Application de démarrage de Windows.) (.02/11/2006 10:45:57.) -- C:\Windows\System32\Wininit.exe [95744]

[MD5.9F75392B9128A91ABAFB044EA350BAAD] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.02/11/2006 10:45:57.) -- C:\Windows\System32\Winlogon.exe [308224]

[MD5.B35CFCEF838382AB6490B321C87EDF17] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/02/2008 07:05:10.) -- C:\Windows\System32\drivers\atapi.sys [21560]

---\\ Processus lancés

[MD5.8FBAFD103A801D92E9EB528C9B841AEE] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe [4423680]

[MD5.7FA32987062D2DF4D897EDE27B079724] - (.Pas de propriétaire - Pas de description.) -- C:\Acer\Empowering Technology\SysMonitor.exe [319488]

[MD5.0921A68E8FE9B25DD0EFFAB949376B5F] - (.HiTRUST - eDataSecurity System Loader( Load and prepa.) -- C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe [464168]

[MD5.93DB1FF92B03D24738A71E6E4992DFD3] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [248552]

[MD5.EE38DDA58C47C9A83B0BD32EC78E54D8] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160]

[MD5.2E0953919779A44BF9DFB7B07C58535A] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe [125440]

[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]

[MD5.47CA2F039FDB67697EE60C260CB8083C] - (.Google - Google Talk.) -- C:\Program Files\Google\Google Talk\googletalk.exe [3297280]

[MD5.896A1DB9A972AD2339C2E8569EC926D1] - (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2144088]

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] - (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Yoann\AppData\Local\Google\Update\GoogleUpdate.exe [135664]

[MD5.FD3A651B9E9B6A20BBAC78525C8A4694] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe [200812]

[MD5.BC9C9BE7BB74D629362608ACE470E7DA] - (.Microsoft Corporation - Notification de cadeaux MSN.) -- C:\Users\Yoann\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe [135680]

[MD5.2DF216F6E6C2D7DB53CD6098B496D9F6] - (.Microsoft® Corporation - Microsoft® Works Calendar Reminder Service.) -- C:\Program Files\Common Files\microsoft shared\Works Shared\WkCalRem.exe [21504]

[MD5.E7704CBF568815C1CAA6E513387BD3F2] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [65536]

[MD5.693E4C15CEE5D6487D7913A2701B5E40] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\Windows\ehome\ehmsas.exe [37376]

[MD5.74EF310FAC89341CE2897B7F2C4A7B0F] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [65536]

[MD5.8E643FD5F38FA9A2EDA27268A1E9499F] - (.Symantec Corporation - Symantec Service Framework.) -- C:\Program Files\Norton AntiVirus\Engine\17.8.0.5\ccSvcHst.exe [126392]

[MD5.E1AB298BAFC8ECCA8C322A29C5FDC68C] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [912344]

[MD5.6F7ECB12B6782A2122DEBE9EC9DF2C5D] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856]

[MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\Windows\system32\wuauclt.exe [53472]

[MD5.AC53E87A01F8BCB1DDBCA60A817D87B7] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [621056]

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2)

P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll

P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll

P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll

P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL

P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.1".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll

P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll

P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_22 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll

P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.50917.0.) -- c:\Program Files\Microsoft Silverlight\4.0.50917.0\npctrl.dll

P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Microsoft Corp. - Office Live Update v1.3.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll

P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

P2 - FPN: [HKLM] [@veetle.com/veetleCorePlugin,version=0.9.15] - (.Veetle Inc - Version 0.9.15, Copyright 2006-2009 Veetle Inc<br><a href="http://www..'>http://www..'>http://www..) -- C:\Program Files\Veetle\plugins\npVeetle.dll

P2 - FPN: [HKLM] [@veetle.com/veetlePlayerPlugin,version=0.9.15] - (.Veetle Inc - Version 0.9.15, copyright 2006-2009 Veetle Inc<br><a href="http://www..) -- C:\Program Files\Veetle\Player\npvlc.dll

P2 - FPN: [HKCU] [@facebook.com/FBPlugin,version=1.0.3] - (.Pas de propriétaire - Provides additional functionality on Facebook. See <a href="http://www.) -- C:\Users\Yoann\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll

P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Users\Yoann\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll

M0 - MFSP: prefs.js [Yoann - 79umbxz9.default] http://www.google.fr/|ht

M2 - MFEP: prefs.js [Yoann - 79umbxz9.default\firefox@tvunetworks.com] [] TVU Web Player v2,4,9,1 (..)

M2 - MFEP: prefs.js [Yoann - 79umbxz9.default\vshare@toolbar] [] vShare Plugin v1.0.0 (.vShare.)

M2 - MFEP: prefs.js [Yoann - 79umbxz9.default\{0b457cAA-602d-484a-8fe7-c1d894a011ba}] [] FireShot v0.87 (.Eugene G. Suslikov.)

M2 - MFEP: prefs.js [Yoann - 79umbxz9.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)

M2 - MFEP: prefs.js [Yoann - 79umbxz9.default\{5B52016C-D097-4aec-BE61-9F129D8FDDBA}] [] UltraSurf Firefox Tool v1.2.1 (.UltraReach Internet Corp.)

M2 - MFEP: prefs.js [Yoann - 79umbxz9.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.1.2.20100119091315 (.Yahoo!.)

M2 - MFEP: prefs.js [Yoann - 79umbxz9.default\{73a6fe31-595d-460b-a920-fcc0f8843232}] [noscript] NoScript v2.0.5.1 (.Giorgio Maone.)

M2 - MFEP: prefs.js [Yoann - 79umbxz9.default\{7E77F5DF-8022-40e3-9122-F03DEBEFC43B}] [] PsicoTSI v2.0.5.1 (.Re4Ver, smates, Lizardopoli.)

M2 - MFEP: prefs.js [Yoann - 79umbxz9.default\{9d1f059c-cada-4111-9696-41a62d64e3ba}] [] FoxTrick v2.0.5.1 (.Karel Kolman.)

M2 - MFEP: prefs.js [Yoann - hc1frsil.Yoann\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v1.5.2.20080717 (.Yahoo!.)

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

"name": "DAEMON Search",

G1 - GCS: Preference [user Data\Default] DAEMON-Search.com :: EXPLORE

G0 - GCSP: Preference [user Data\Default][HomePage] Google

---\\ Internet Explorer, Démarrage,Recherche,URSearchHook (R0,R1,R3)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Sign In

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Sign In

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Sign In

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local;*.local

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} . (.Yahoo! Inc. - Yahoo! Toolbar.) (2006, 11, 29, 1) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe

F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline

O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} . (.Symantec Corporation - IPS Browser Helper DLL.) -- C:\Program Files\Norton AntiVirus\Engine\17.8.0.5\IPSBHO.DLL

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll

O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} . (.Google Inc. - Fast Search.) -- C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} . (.HiTRUST - eDStoolbar Module.) -- C:\Windows\system32\eDStoolbar.dll

O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll

---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe

O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe

O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] . (.Pas de propriétaire - Pas de description.) -- C:\Acer\Empowering Technology\SysMonitor.exe

O4 - HKLM\..\Run: [eDataSecurity Loader] . (.HiTRUST - eDataSecurity System Loader( Load and prepa.) -- C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe

O4 - HKLM\..\Run: [WarReg_PopUp] . (.Acer Inc. - WR_PopUp.) -- C:\Acer\WR_PopUp\WarReg_PopUp.exe

O4 - HKLM\..\Run: [Acer Tour Reminder] . (.Acer Inc. - Acer Tour Reminder.) -- C:\Acer\AcerTour\Reminder.exe

O4 - HKLM\..\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe

O4 - HKLM\..\Run: [startCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe

O4 - HKCU\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe

O4 - HKCU\..\Run: [WindowsWelcomeCenter] oobefldr.dll

O4 - HKCU\..\Run: [Acer Tour Reminder] Clé orpheline

O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O4 - HKCU\..\Run: [Mon Widget RMC] . (.Mon Widget RMC - Mon Widget RMC.) -- C:\Program Files\Nosibay\Mon Widget RMC\launcher.exe

O4 - HKCU\..\Run: [googletalk] . (.Google - Google Talk.) -- C:\Program Files\Google\Google Talk\googletalk.exe

O4 - HKCU\..\Run: [spybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Yoann\AppData\Local\Google\Update\GoogleUpdate.exe

O4 - HKCU\..\Run: [Raptr] . (.Pas de propriétaire - Raptr Client.) -- C:\PROGRA~1\Raptr\raptrstub.exe

O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe

O4 - HKUS\S-1-5-18\..\Run: [startCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

O4 - HKUS\S-1-5-18\..\Run: [Acer Tour Reminder] . (.Acer Inc. - Acer Tour Reminder.) -- C:\Acer\AcerTour\Reminder.exe

O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O4 - HKUS\S-1-5-18\..\Run: [startCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

O4 - HKUS\S-1-5-18\..\Run: [Acer Tour Reminder] . (.Acer Inc. - Acer Tour Reminder.) -- C:\Acer\AcerTour\Reminder.exe

O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll

O4 - HKUS\S-1-5-21-3112679214-4032356021-553926981-1000\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe

O4 - HKUS\S-1-5-21-3112679214-4032356021-553926981-1000\..\Run: [WindowsWelcomeCenter] oobefldr.dll

O4 - HKUS\S-1-5-21-3112679214-4032356021-553926981-1000\..\Run: [Acer Tour Reminder] Clé orpheline

O4 - HKUS\S-1-5-21-3112679214-4032356021-553926981-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe

O4 - HKUS\S-1-5-21-3112679214-4032356021-553926981-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKUS\S-1-5-21-3112679214-4032356021-553926981-1000\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O4 - HKUS\S-1-5-21-3112679214-4032356021-553926981-1000\..\Run: [Mon Widget RMC] . (.Mon Widget RMC - Mon Widget RMC.) -- C:\Program Files\Nosibay\Mon Widget RMC\launcher.exe

O4 - HKUS\S-1-5-21-3112679214-4032356021-553926981-1000\..\Run: [googletalk] . (.Google - Google Talk.) -- C:\Program Files\Google\Google Talk\googletalk.exe

O4 - HKUS\S-1-5-21-3112679214-4032356021-553926981-1000\..\Run: [spybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKUS\S-1-5-21-3112679214-4032356021-553926981-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Yoann\AppData\Local\Google\Update\GoogleUpdate.exe

O4 - HKUS\S-1-5-21-3112679214-4032356021-553926981-1000\..\Run: [Raptr] . (.Pas de propriétaire - Raptr Client.) -- C:\PROGRA~1\Raptr\raptrstub.exe

O4 - HKUS\S-1-5-21-3112679214-4032356021-553926981-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe

O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PCM Media Sharing.lnk . (.Pas de propriétaire.) -- C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe

O4 - Global Startup: C:\Users\Yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Notification de cadeaux MSN.lnk . (.Microsoft Corporation.) -- C:\Users\Yoann\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe

O4 - Global Startup: C:\Users\Yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wkcalrem.LNK . (.Microsoft® Corporation.) -- C:\Program Files\Common Files\microsoft shared\Works Shared\WkCalRem.exe

---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\'Folding@Home'.lnk - Clé orpheline

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\AIDA32.lnk . (.Pas de propriétaire.) -- C:\Program Files\AIDA32 - Personal System Information\aida32.exe

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\Clean Virus MSN.lnk . (.AxBx.) -- C:\Program Files\AxBx\Clean Virus MSN\CleanVirusMSN.exe

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\EXCEL.EXE - Raccourci.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\Office10\EXCEL.EXE

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\fm.exe - Raccourci (2).lnk . (.Sports Interactive.) -- C:\Program Files\Sports Interactive\Football Manager 2010\fm.exe

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\fm.exe - Raccourci.lnk . (.Sports Interactive.) -- C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\GoldBarre.lnk . (. GoldBarre.) -- C:\Program Files\GoldBarre\GoldBarre.exe

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\Yoann\AppData\Local\Google\Chrome\Application\chrome.exe

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\Google Talk.lnk . (.Google.) -- C:\Program Files\Google\Google Talk\googletalk.exe

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\ho.jar - Raccourci.lnk . (.Pas de propriétaire.) -- C:\Users\Yoann\Documents\Hattrick\HO 1-426\ho.jar

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\Internet - Raccourci.lnk - Clé orpheline

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\PhotoshopPortable.exe - Raccourci.lnk . (.PortableAppZ.blogspot.com.) -- C:\Users\Yoann\Downloads\PhotoshopPortable\PhotoshopPortable.exe

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\Revo Uninstaller.lnk . (.VS Revo Group.) -- C:\Program Files\VS Revo Group\Revo Uninstaller\Revouninstaller.exe

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\SpeedFan.lnk . (.Almico Software (www.almico.com).) -- C:\Program Files\SpeedFan\speedfan.exe

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\TreeSizeFree.exe - Raccourci.lnk . (.JAM Software.) -- C:\Program Files\JAM Software\TreeSize Free\TreeSizeFree.exe

O4 - Global Startup: C:\Documents And Settings\Yoann\Desktop\Yoann - Raccourci.lnk . (.Pas de propriétaire.) -- C:\Users\Yoann

O4 - Global Startup: C:\Users\Yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\Yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe

O4 - Global Startup: C:\Users\Yoann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe

O4 - Global Startup: C:\Users\Yoann\Desktop\'Folding@Home'.lnk - Clé orpheline

O4 - Global Startup: C:\Users\Yoann\Desktop\AIDA32.lnk . (.Pas de propriétaire.) -- C:\Program Files\AIDA32 - Personal System Information\aida32.exe

O4 - Global Startup: C:\Users\Yoann\Desktop\Clean Virus MSN.lnk . (.AxBx.) -- C:\Program Files\AxBx\Clean Virus MSN\CleanVirusMSN.exe

O4 - Global Startup: C:\Users\Yoann\Desktop\EXCEL.EXE - Raccourci.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\Office10\EXCEL.EXE

O4 - Global Startup: C:\Users\Yoann\Desktop\fm.exe - Raccourci (2).lnk . (.Sports Interactive.) -- C:\Program Files\Sports Interactive\Football Manager 2010\fm.exe

O4 - Global Startup: C:\Users\Yoann\Desktop\fm.exe - Raccourci.lnk . (.Sports Interactive.) -- C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe

O4 - Global Startup: C:\Users\Yoann\Desktop\GoldBarre.lnk . (. GoldBarre.) -- C:\Program Files\GoldBarre\GoldBarre.exe

O4 - Global Startup: C:\Users\Yoann\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\Yoann\AppData\Local\Google\Chrome\Application\chrome.exe

O4 - Global Startup: C:\Users\Yoann\Desktop\Google Talk.lnk . (.Google.) -- C:\Program Files\Google\Google Talk\googletalk.exe

O4 - Global Startup: C:\Users\Yoann\Desktop\ho.jar - Raccourci.lnk . (.Pas de propriétaire.) -- C:\Users\Yoann\Documents\Hattrick\HO 1-426\ho.jar

O4 - Global Startup: C:\Users\Yoann\Desktop\Internet - Raccourci.lnk - Clé orpheline

O4 - Global Startup: C:\Users\Yoann\Desktop\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O4 - Global Startup: C:\Users\Yoann\Desktop\PhotoshopPortable.exe - Raccourci.lnk . (.PortableAppZ.blogspot.com.) -- C:\Users\Yoann\Downloads\PhotoshopPortable\PhotoshopPortable.exe

O4 - Global Startup: C:\Users\Yoann\Desktop\Revo Uninstaller.lnk . (.VS Revo Group.) -- C:\Program Files\VS Revo Group\Revo Uninstaller\Revouninstaller.exe

O4 - Global Startup: C:\Users\Yoann\Desktop\SpeedFan.lnk . (.Almico Software (www.almico.com).) -- C:\Program Files\SpeedFan\speedfan.exe

O4 - Global Startup: C:\Users\Yoann\Desktop\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe

O4 - Global Startup: C:\Users\Yoann\Desktop\TreeSizeFree.exe - Raccourci.lnk . (.JAM Software.) -- C:\Program Files\JAM Software\TreeSize Free\TreeSizeFree.exe

O4 - Global Startup: C:\Users\Yoann\Desktop\Yoann - Raccourci.lnk . (.Pas de propriétaire.) -- C:\Users\Yoann

O4 - Global Startup: C:\Users\Yoann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\EXCEL.EXE - Raccourci.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\Office10\EXCEL.EXE

O4 - Global Startup: C:\Users\Yoann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\Yoann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - Clé orpheline

O4 - Global Startup: C:\Users\Yoann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: Add to Windows &Live Favorites - (.not file.) - http:\\favorites.live.com\quickadd.aspx

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\PROGRA~1\MICROS~2\Office10\EXCEL.exe

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} (VodClient Control Class) - Vexcast.com - Stream Yourself - All Stream

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{3AD83961-CF10-429C-A3F3-FF589C3A3859}: DhcpNameServer = 212.27.54.252 212.27.53.252

O17 - HKLM\System\CCS\Services\Tcpip\..\{6D245F40-7E8A-4CDC-ACFE-0F6B8390CE41}: DhcpNameServer = 212.27.40.241 212.27.40.240

O17 - HKLM\System\CS1\Services\Tcpip\..\{3AD83961-CF10-429C-A3F3-FF589C3A3859}: DhcpNameServer = 212.27.54.252 212.27.53.252

O17 - HKLM\System\CS1\Services\Tcpip\..\{6D245F40-7E8A-4CDC-ACFE-0F6B8390CE41}: DhcpNameServer = 212.27.40.241 212.27.40.240

O17 - HKLM\System\CS2\Services\Tcpip\..\{3AD83961-CF10-429C-A3F3-FF589C3A3859}: DhcpNameServer = 212.27.54.252 212.27.53.252

O17 - HKLM\System\CS2\Services\Tcpip\..\{6D245F40-7E8A-4CDC-ACFE-0F6B8390CE41}: DhcpNameServer = 212.27.40.241 212.27.40.240

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\system32\webcheck.dll

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: (Acer HomeMedia Connect Service) . (.CyberLink - CLMSServer.) - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe

O23 - Service: (AcerMemUsageCheckService) . (.Pas de propriétaire - MemCheck.Service.) - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe

O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe

O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: eDSService.exe (eDataSecurity Service) . (.HiTRSUT - eDataSecurity Service.) - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe

O23 - Service: (eRecoveryService) . (.Acer Inc. - eRecoveryService.) - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe

O23 - Service: (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: (NAV) - Clé orpheline

O23 - Service: (Planificateur LiveUpdate automatique) - Clé orpheline

O23 - Service: (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Desktop General: BackupWallPaper - .(.Pas de propriétaire - Pas de description.) - C:\Program Files\McDonaldsDragons\ice\desktops\ice.jpg

O24 - Desktop General: WallPaper - .(.Pas de propriétaire - Pas de description.) - C:\Program Files\McDonaldsDragons\ice\desktops\ice.jpg

O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - "C:\Program Files\Microsoft Office\Office12\WINWORD.exe (.not file.)

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3112679214-4032356021-553926981-1000Core.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3112679214-4032356021-553926981-1000UA.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\User_Feed_Synchronization-{1DEA2505-DD9B-4062-AC27-FFC8A822E4CB}.job

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskUserS-1-5-21-3112679214-4032356021-553926981-1000Core] (.Google Inc..) -- C:\Users\Yoann\AppData\Local\Google\Update\GoogleUpdate.exe

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskUserS-1-5-21-3112679214-4032356021-553926981-1000UA] (.Google Inc..) -- C:\Users\Yoann\AppData\Local\Google\Update\GoogleUpdate.exe

[MD5.187E0D2AB859AD03393DDD731076BE81] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe

[MD5.5DD90DE1428E51A2132B09AECF46946E] [APT] [symantec Error Analyzer 17.8.0.5] (.Symantec Corporation.) -- C:\Program Files\Norton AntiVirus\Engine\17.8.0.5\SymErr.exe

[MD5.5DD90DE1428E51A2132B09AECF46946E] [APT] [symantec Error Processor 17.8.0.5] (.Symantec Corporation.) -- C:\Program Files\Norton AntiVirus\Engine\17.8.0.5\SymErr.exe

---\\ Composants installés (ActiveSetup Installed Components) (O40)

O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll

O40 - ASIC: Microsoft Windows Mail 7 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- "C:\Program Files\Windows Mail\WinMail.exe

O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\Windows\system32\Macromed\Flash\Flash10e.ocx

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (BHDrvx86) . (.Symantec Corporation - BASH Driver.) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.1.0.19\Definitions\BASHDefs\20101104.001\BHDrvx86.sys

O41 - Driver: (ccHP) . (.Symantec Corporation - Common Client Hash Provider Driver.) - C:\Windows\system32\drivers\NAV\1108000.005\ccHPx86.sys

O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys

O41 - Driver: (DfsC) . (.Microsoft Corporation - DFS Client MUP Surrogate Driver.) - C:\Windows\System32\Drivers\dfsc.sys

O41 - Driver: (eeCtrl) . (.Symantec Corporation - Symantec Eraser Control Driver.) - C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys

O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys

O41 - Driver: (IDSVix86) . (.Symantec Corporation - IDS Core Driver.) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.1.0.19\Definitions\IPSDefs\20101124.002\IDSvix86.sys

O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys

O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys

O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys

O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys

O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys

O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys

O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys

O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys

O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys

O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys

O41 - Driver: (SRTSP) . (.Symantec Corporation - Symantec AutoProtect.) - C:\Windows\system32\Drivers\NAV\1108000.005\SRTSP.sys

O41 - Driver: (SRTSPX) . (.Symantec Corporation - Symantec AutoProtect.) - C:\Windows\system32\drivers\NAV\1108000.005\SRTSPX.sys

O41 - Driver: (SymIRON) . (.Symantec Corporation - Iron Driver.) - C:\Windows\system32\drivers\NAV\1108000.005\Ironx86.sys

O41 - Driver: (SYMTDIv) . (.Symantec Corporation - Network Dispatch Driver.) - C:\Windows\system32\Drivers\NAV\1108000.005\SYMTDIV.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Tcpip) . (.Microsoft Corporation - TCP/IP Driver.) - C:\Windows\System32\drivers\tcpip.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys

---\\ Logiciels installés (O42)

O42 - Logiciel: AIDA32 v3.93 - (.Tamas Miklos.) [HKLM] -- AIDA32_is1

O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM] -- {8018AD38-3EBB-A031-D4F8-EF6A5952F168}

O42 - Logiciel: ATI Uninstaller - (.ATI Technologies, Inc..) [HKLM] -- ATI Uninstaller

O42 - Logiciel: Acer Arcade Live Main Page - (.Acer Inc..) [HKLM] -- {EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37}

O42 - Logiciel: Acer DV Magician - (.Acer Inc..) [HKLM] -- {F6EFFB76-4A07-11DA-9D78-000129760D75}

O42 - Logiciel: Acer DVDivine - (.Acer Inc..) [HKLM] -- {B145EC69-66F5-11D8-9D75-000129760D75}

O42 - Logiciel: Acer Empowering Technology - (.Acer Inc..) [HKLM] -- {AB6097D9-D722-4987-BD9E-A076E2848EE2}

O42 - Logiciel: Acer HomeMedia - (.Acer Inc..) [HKLM] -- {AA4BF92B-2AAF-11DA-9D78-000129760D75}

O42 - Logiciel: Acer HomeMedia Connect - (.Acer Inc..) [HKLM] -- {132888AE-EF67-41C5-BCA2-7D5D2488AB63}

O42 - Logiciel: Acer ScreenSaver - (.Acer Inc..) [HKLM] -- {79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}

O42 - Logiciel: Acer SlideShow DVD - (.Acer Inc..) [HKLM] -- {41581EF5-45A7-11DA-9D78-000129760D75}

O42 - Logiciel: Acer Tour - (.Acer Inc..) [HKLM] -- {94389919-B0AA-4882-9BE8-9F0B004ECA35}

O42 - Logiciel: Acer VideoMagician - (.Acer Inc..) [HKLM] -- {F79A208D-D929-11D9-9D77-000129760D75}

O42 - Logiciel: Acer eDataSecurity Management - (.HiTRUST Inc..) [HKLM] -- {AEEAE013-92F1-4515-B278-139F1A692A36}

O42 - Logiciel: Acer ePerformance Management - (.Acer Inc..) [HKLM] -- {D462BF9E-0C35-4705-BF9B-3DF9F3816643}

O42 - Logiciel: Activation Assistant for the 2007 Microsoft Office suites - (.Microsoft Corporation.) [HKLM] -- Activation Assistant for the 2007 Microsoft Office suites

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin

O42 - Logiciel: Adobe Reader 9.4.1 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001}

O42 - Logiciel: Akamai NetSession Interface - (.Pas de propriétaire.) [HKLM] -- Akamai

O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {17424F35-8B77-4ADF-BC63-BF9B81418539}

O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {308B6AEA-DE50-4666-996D-0FA461719D6B}

O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}

O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver

O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}

O42 - Logiciel: AutoCAD LT 2009 - Français - (.Autodesk.) [HKLM] -- AutoCAD LT 2009 - Français

O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {FF1C31AE-0CDC-40CE-AB85-406F8B70D643}

O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner

O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1

O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM] -- {8D7133DE-27D2-47E5-B248-4180278D32AA}

O42 - Logiciel: Clean Virus MSN - (.AxBx.) [HKLM] -- Clean Virus MSN_is1

O42 - Logiciel: Debugging Tools for Windows (x86) - (.Microsoft Corporation.) [HKLM] -- {83DD27C9-CDC2-489A-87FA-8622C1F8F8EC}

O42 - Logiciel: Extension de Windows Live Toolbar (Windows Live Toolbar) - (.Microsoft Corporation.) [HKLM] -- {0CA6047C-D28B-4295-834A-07C52BA20C2D}

O42 - Logiciel: FM Modifier 2.25 - (.Jpee.) [HKLM] -- {AE86AE81-CD7F-496F-A39F-0210C985E71B}

O42 - Logiciel: Facebook Plug-In - (.Facebook, Inc..) [HKCU] -- Facebook Plug-In

O42 - Logiciel: Football Manager 2010 - (.Sports Interactive.) [HKLM] -- Football Manager 2010

O42 - Logiciel: Football Manager 2011 - (.Sports Interactive.) [HKLM] -- Football Manager 2011

O42 - Logiciel: Football Manager 2011 Demo - (.Sports Interactive.) [HKLM] -- Football Manager 2011 Demo

O42 - Logiciel: Foxit Reader - (.Pas de propriétaire.) [HKLM] -- Foxit Reader

O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}

O42 - Logiciel: GoldBarre - (.Pas de propriétaire.) [HKLM] -- GoldBarre

O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome

O42 - Logiciel: Google Talk (remove only) - (.Pas de propriétaire.) [HKLM] -- {226b64e8-dc75-4eea-a6c8-abcb496320f2}-Google Talk

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}

O42 - Logiciel: Hattrick Organizer (remove only) - (.Pas de propriétaire.) [HKLM] -- Hattrick Organizer

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8}

O42 - Logiciel: Java 6 Update 11 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216011F0}

O42 - Logiciel: Java 6 Update 22 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF}

O42 - Logiciel: Java 6 Update 7 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160070}

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619}

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}

O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF}

O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- {C523D256-313D-4866-B36A-F3DE528246EF}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {18754BA4-4F0C-4E6E-888B-9496AFA05F43}

O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1

O42 - Logiciel: McDonald's Dragons - (.Name of your company.) [HKLM] -- McDonald's Dragons

O42 - Logiciel: Menus intelligents (Windows Live Toolbar) - (.Microsoft Corporation.) [HKLM] -- {0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}

O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}

O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- HOMESTUDENTR

O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.) [HKLM] -- {57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}

O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{14809F99-C601-4D4A-9391-F1E8FAA964C5}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office XP Professional avec FrontPage - (.Microsoft Corporation.) [HKLM] -- {9028040C-6000-11D3-8CFE-0050048383C9}

O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}

O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {A49F249F-0C91-497F-86DF-B2585E8E76B7}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}

O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE}

O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra

O42 - Logiciel: Mon Widget RMC (remove only) - (.Nosibay.) [HKLM] -- Mon Widget RMC

O42 - Logiciel: Mozilla Firefox (3.6.12) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.12)

O42 - Logiciel: NTI Backup NOW! 4.7 - (.NewTech Infosystems.) [HKLM] -- {67ADE9AF-5CD9-4089-8825-55DE4B366799}

O42 - Logiciel: NTI CD & DVD-Maker - (.NewTech Infosystems.) [HKLM] -- InstallShield_{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}

O42 - Logiciel: Norton AntiVirus - (.Symantec Corporation.) [HKLM] -- NAV

O42 - Logiciel: Norton Security Scan - (.Symantec Corporation.) [HKLM] -- NSS

O42 - Logiciel: Notification de cadeaux MSN - (.Microsoft.) [HKCU] -- Notification de cadeaux MSN

O42 - Logiciel: OpenOffice.org Installer 1.0 - (.Sun Microsystems.) [HKLM] -- {3A2AF807-9F9F-43C9-A24A-17B617238B74}

O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}

O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {E7004147-2CCA-431C-AA05-2AB166B9785D}

O42 - Logiciel: Raptr - (.Pas de propriétaire.) [HKLM] -- Raptr

O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}

O42 - Logiciel: Revo Uninstaller 1.90 - (.VS Revo Group.) [HKLM] -- Revo Uninstaller

O42 - Logiciel: SAMSUNG CDMA Modem Driver Set - (.Pas de propriétaire.) [HKLM] -- SAMSUNG CDMA Modem

O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem 1.0

O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem

O42 - Logiciel: Safari - (.Apple Inc..) [HKLM] -- {20ACB2F8-3BCA-45A8-80A2-9D3CB5C25F43}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5C497F0B-2061-4CC9-A61C-6B45B867354D}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2289158) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{210B16C0-CEBD-4DE9-B474-04A7E8735E16}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2344875) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FC5C4C1-D7AE-44C3-94B7-6424FC3E752F}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{536FB502-775F-4494-BACE-C02CC90B7A5B}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7F207DCA-3399-40CB-A968-6E5991B1421A}

O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906

O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2345035) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{B23002DD-34EC-4988-B810-A5E2A0BF04F1}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer (KB2413381) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3DED0A62-44C8-4E00-A785-5212F297A9D9}

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}

O42 - Logiciel: SpeedFan (remove only) - (.Pas de propriétaire.) [HKLM] -- SpeedFan

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1

O42 - Logiciel: Surligneur (Windows Live Toolbar) - (.Microsoft Corporation.) [HKLM] -- {81B5F83F-2291-48B0-8375-36B63A9BF5B0}

O42 - Logiciel: TVUPlayer 2.4.7.2 - (.TVU networks.) [HKLM] -- TVUPlayer

O42 - Logiciel: Text-To-Speech-Runtime - (.Magix Development GmbH.) [HKLM] -- {7B3F0113-E63C-4D6D-AF19-111A3165CCA2}

O42 - Logiciel: TreeSize Free V2.3.3 - (.JAM Software.) [HKLM] -- TreeSize Free_is1

O42 - Logiciel: TuneUp Companion 1.9.0 - (.TuneUp Media, Inc..) [HKLM] -- TuneUpMedia

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707

O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{329050A9-EF80-40F9-B633-74508F54C1FF}

O42 - Logiciel: VCRedistSetup - (.Nero AG.) [HKLM] -- {3921A67A-5AB1-4E48-9444-C71814CF3027}

O42 - Logiciel: Veetle TV 0.9.15 - (.Veetle, Inc.) [HKLM] -- Veetle TV

O42 - Logiciel: VideoLAN VLC media player 0.8.6d - (.VideoLAN Team.) [HKLM] -- VLC media player

O42 - Logiciel: Vuze - (.Vuze Inc..) [HKLM] -- 8461-7759-5462-8226

O42 - Logiciel: WhoCrashed 2.10 - (.Resplendence Software Projects Sp..) [HKLM] -- WhoCrashed_is1

O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504}

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}

O42 - Logiciel: Windows Live Contrôle parental - (.Microsoft Corporation.) [HKLM] -- {9FF9FDF7-F84A-4F99-B4BB-066B6F95F33D}

O42 - Logiciel: Windows Live Favorites pour Windows Live Toolbar - (.Microsoft Corporation.) [HKLM] -- {786C4AD1-DCBA-49A6-B0EF-B317A344BD66}

O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {76810709-A7D3-468D-9167-A1780C1E766C}

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818}

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}

O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {230B83A5-7D88-4B95-B71E-F44C0C78B002}

O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM] -- {9D6524E6-15CF-4852-BF70-04FE973A3DE1}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA}

O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}

O42 - Logiciel: Wise Registry Cleaner Free 5.43 - (.WiseCleaner.com, Inc..) [HKLM] -- Wise Registry Cleaner_is1

O42 - Logiciel: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - (.Pas de propriétaire.) [HKLM] -- Yahoo! Companion

O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM] -- eMule

O42 - Logiciel: eSobi v2 - (.esobi Inc..) [HKLM] -- InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}

O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {E8843212-F0FC-4C3B-BFF3-D51829CB4F19}

O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}

---\\ HKCU & HKLM Software Keys

[HKCU\Software\?? ?? ???? ????? ??? ?? ????]

[HKCU\Software\ATI Technologies Inc.]

[HKCU\Software\ATI]

[HKCU\Software\AcerUtil]

[HKCU\Software\Adobe]

[HKCU\Software\Ahead]

[HKCU\Software\AppDataLow\Software\Google]

[HKCU\Software\AppDataLow\Software\Microsoft]

[HKCU\Software\AppDataLow\Software\Yahoo]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\Apple Computer, Inc.]

[HKCU\Software\Apple Inc.]

[HKCU\Software\Autodesk]

[HKCU\Software\Azureus]

[HKCU\Software\Binary Noise]

[HKCU\Software\CDDB]

[HKCU\Software\Canneverbe Limited]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\CyberLink]

[HKCU\Software\DT Soft]

[HKCU\Software\DivXNetworks]

[HKCU\Software\Foxit Software]

[HKCU\Software\GSC Game World]

[HKCU\Software\Genie™]

[HKCU\Software\Google]

[HKCU\Software\HookNetwork]

[HKCU\Software\IM Providers]

[HKCU\Software\JAM Software]

[HKCU\Software\JEDI-VCL]

[HKCU\Software\JavaSoft]

[HKCU\Software\Lavalys]

[HKCU\Software\Lavasoft]

[HKCU\Software\Licenses]

[HKCU\Software\Local AppWizard-Generated Applications]

[HKCU\Software\Macromedia]

[HKCU\Software\Magix]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Mozilla]

[HKCU\Software\Nero]

[HKCU\Software\Netscape]

[HKCU\Software\NewTech Infosystems]

[HKCU\Software\NortonUpdateAgent]

[HKCU\Software\Norton]

[HKCU\Software\Nosibay]

[HKCU\Software\ODBC]

[HKCU\Software\PT]

[HKCU\Software\Piriform]

[HKCU\Software\Policies]

[HKCU\Software\Raptr]

[HKCU\Software\Realtek]

[HKCU\Software\Resplendence Sp]

[HKCU\Software\Safer Networking Limited]

[HKCU\Software\Samsung]

[HKCU\Software\SecuROM]

[HKCU\Software\SpeedFan]

[HKCU\Software\Sports Interactive Ltd]

[HKCU\Software\Sun Microsystems]

[HKCU\Software\Symantec]

[HKCU\Software\Sysinternals]

[HKCU\Software\TVU networks]

[HKCU\Software\Tific]

[HKCU\Software\Trolltech]

[HKCU\Software\Unlimited Possibilities]

[HKCU\Software\VB and VBA Program Settings]

[HKCU\Software\VSRevoGroup]

[HKCU\Software\Valve]

[HKCU\Software\Veetle]

[HKCU\Software\Vistaprog]

[HKCU\Software\WinRAR SFX]

[HKCU\Software\WinRAR]

[HKCU\Software\Xobni]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\Yahoo]

[HKCU\Software\acer]

[HKCU\Software\cybelsoft]

[HKCU\Software\eMule]

[HKCU\Software\eSobi]

[HKCU\Software\ej-technologies]

[HKCU\Software\kde.org]

[HKLM\Software\14919ea49a8f3b4aa3cf1058d9a64cec]

[HKLM\Software\ALWIL Software]

[HKLM\Software\AMD]

[HKLM\Software\ATI Technologies]

[HKLM\Software\ATI]

[HKLM\Software\Acer]

[HKLM\Software\Adobe]

[HKLM\Software\AppDataLow]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\Apple Inc.]

[HKLM\Software\Autodesk]

[HKLM\Software\Azureus]

[HKLM\Software\C07ft5Y]

[HKLM\Software\CDDB]

[HKLM\Software\CDV Software Entertainment AG]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\CyberLink]

[HKLM\Software\DT Soft]

[HKLM\Software\Dofus 2]

[HKLM\Software\Electronic Arts]

[HKLM\Software\Foxit Software]

[HKLM\Software\FullCircle]

[HKLM\Software\GEAR Software]

[HKLM\Software\Google]

[HKLM\Software\HattrickOrganizer]

[HKLM\Software\InstallShield]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\LightScribe]

[HKLM\Software\MCCI]

[HKLM\Software\Macromedia]

[HKLM\Software\Magix]

[HKLM\Software\Malwarebytes' Anti-Malware]

[HKLM\Software\McAfee.com]

[HKLM\Software\MimarSinan]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\MyCompany]

[HKLM\Software\Name of your company]

[HKLM\Software\Nero]

[HKLM\Software\NewTech Infosystems]

[HKLM\Software\Norton]

[HKLM\Software\ODBC]

[HKLM\Software\PCTools]

[HKLM\Software\Piriform]

[HKLM\Software\Policies]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\S3R521]

[HKLM\Software\Safer Networking Limited]

[HKLM\Software\Sonic]

[HKLM\Software\Sports Interactive Ltd]

[HKLM\Software\Sun Microsystems]

[HKLM\Software\Symantec]

[HKLM\Software\TVU networks]

[HKLM\Software\TrendMicro]

[HKLM\Software\Valve]

[HKLM\Software\Veetle]

[HKLM\Software\VideoLAN]

[HKLM\Software\Volatile]

[HKLM\Software\WholeSecurity]

[HKLM\Software\Windows]

[HKLM\Software\Wise Solutions]

[HKLM\Software\WiseCleaner]

[HKLM\Software\Yahoo]

[HKLM\Software\cybelsoft]

[HKLM\Software\ej-technologies]

[HKLM\Software\magnet]

[HKLM\Software\mcafeeupdater]

[HKLM\Software\mozilla.org]

[HKLM\Software\muvee Technologies]

---\\ Contenu des dossiers ProgramFiles/ProgramData (O43)

O43 - CFD: 06/05/2007 - 20:33:42 ----D- C:\Program Files\Acer Arcade Live

O43 - CFD: 01/06/2007 - 01:46:32 ----D- C:\Program Files\Acer Inc

O43 - CFD: 06/05/2007 - 20:22:48 ----D- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites

O43 - CFD: 25/10/2010 - 18:37:28 ----D- C:\Program Files\Adobe

O43 - CFD: 21/11/2010 - 21:49:08 ----D- C:\Program Files\AIDA32 - Personal System Information

O43 - CFD: 05/11/2007 - 17:57:28 ----D- C:\Program Files\Alwil Software

O43 - CFD: 27/05/2010 - 21:19:34 ----D- C:\Program Files\Apple Software Update

O43 - CFD: 20/11/2010 - 22:33:08 ----D- C:\Program Files\ATI

O43 - CFD: 20/11/2010 - 22:33:02 ----D- C:\Program Files\ATI Stream

O43 - CFD: 20/11/2010 - 22:32:36 ----D- C:\Program Files\ATI Technologies

O43 - CFD: 26/09/2008 - 21:37:40 ----D- C:\Program Files\AutoCAD 2005

O43 - CFD: 27/09/2008 - 19:51:12 ----D- C:\Program Files\AutoCAD LT 2009

O43 - CFD: 29/06/2008 - 17:13:56 ----D- C:\Program Files\Autodesk

O43 - CFD: 25/10/2010 - 19:48:26 ----D- C:\Program Files\AxBx

O43 - CFD: 13/10/2010 - 22:43:02 ----D- C:\Program Files\Azureus

O43 - CFD: 27/09/2010 - 19:13:30 ----D- C:\Program Files\Bonjour

O43 - CFD: 21/11/2010 - 09:24:58 ----D- C:\Program Files\CCleaner

O43 - CFD: 15/11/2010 - 21:53:56 ----D- C:\Program Files\CDBurnerXP

O43 - CFD: 17/11/2010 - 23:08:22 ----D- C:\Program Files\Common Files

O43 - CFD: 06/05/2007 - 20:30:44 ----D- C:\Program Files\CyberLink

O43 - CFD: 20/11/2010 - 20:47:38 ----D- C:\Program Files\DAEMON Tools Lite

O43 - CFD: 21/11/2010 - 08:48:18 ----D- C:\Program Files\DAEMON Tools Toolbar

O43 - CFD: 19/11/2010 - 22:06:34 ----D- C:\Program Files\Debugging Tools for Windows (x86)

O43 - CFD: 20/11/2010 - 22:01:12 ----D- C:\Program Files\Driver Whiz

O43 - CFD: 15/09/2009 - 18:00:46 ----D- C:\Program Files\eMule

O43 - CFD: 06/05/2007 - 20:34:44 ----D- C:\Program Files\eSobi

O43 - CFD: 03/08/2007 - 22:43:06 -SH-D- C:\Program Files\Fichiers communs

O43 - CFD: 24/05/2009 - 21:00:10 ----D- C:\Program Files\FM Modifier 2.2

O43 - CFD: 18/04/2009 - 15:35:04 ----D- C:\Program Files\Foxit Software

O43 - CFD: 04/05/2009 - 17:46:54 ----D- C:\Program Files\GoldBarre

O43 - CFD: 06/08/2009 - 15:35:06 ----D- C:\Program Files\Google

O43 - CFD: 05/11/2010 - 21:45:32 --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD: 01/04/2010 - 02:18:58 ----D- C:\Program Files\Internet Explorer

O43 - CFD: 15/11/2010 - 21:54:28 ----D- C:\Program Files\iPod

O43 - CFD: 15/11/2010 - 21:55:26 ----D- C:\Program Files\iTunes

O43 - CFD: 04/11/2009 - 21:49:38 ----D- C:\Program Files\JAM Software

O43 - CFD: 08/11/2010 - 21:02:22 ----D- C:\Program Files\Java

O43 - CFD: 27/12/2009 - 17:07:14 ----D- C:\Program Files\ma-config.com

O43 - CFD: 18/04/2009 - 11:16:04 ----D- C:\Program Files\Malwarebytes' Anti-Malware

O43 - CFD: 18/01/2009 - 11:27:36 ----D- C:\Program Files\McDonaldsDragons

O43 - CFD: 14/10/2009 - 10:47:26 ----D- C:\Program Files\Microsoft

O43 - CFD: 25/08/2007 - 09:38:02 ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2

O43 - CFD: 02/11/2006 - 13:37:36 ----D- C:\Program Files\Microsoft Games

O43 - CFD: 29/06/2008 - 16:53:50 ----D- C:\Program Files\Microsoft Office

O43 - CFD: 03/10/2010 - 10:58:20 ----D- C:\Program Files\Microsoft Silverlight

O43 - CFD: 13/03/2008 - 20:17:00 ----D- C:\Program Files\Microsoft SQL Server Compact Edition

O43 - CFD: 03/06/2009 - 20:12:56 ----D- C:\Program Files\Microsoft Sync Framework

O43 - CFD: 15/10/2009 - 02:08:14 ----D- C:\Program Files\Microsoft Works

O43 - CFD: 06/05/2007 - 20:20:30 ----D- C:\Program Files\Microsoft.NET

O43 - CFD: 11/03/2010 - 03:19:54 ----D- C:\Program Files\Movie Maker

O43 - CFD: 28/10/2010 - 11:08:48 ----D- C:\Program Files\Mozilla Firefox

O43 - CFD: 02/11/2006 - 13:37:36 ----D- C:\Program Files\MSBuild

O43 - CFD: 06/06/2010 - 22:00:40 ----D- C:\Program Files\MSECache

O43 - CFD: 02/11/2006 - 13:37:36 ----D- C:\Program Files\MSN

O43 - CFD: 25/08/2007 - 09:28:52 ----D- C:\Program Files\MSXML 4.0

O43 - CFD: 12/02/2010 - 11:29:12 ----D- C:\Program Files\Navilog1

O43 - CFD: 09/03/2008 - 14:28:16 ----D- C:\Program Files\Nero

O43 - CFD: 06/05/2007 - 20:18:02 ----D- C:\Program Files\NewTech Infosystems

O43 - CFD: 21/06/2009 - 22:25:28 ----D- C:\Program Files\Norton AntiVirus

O43 - CFD: 17/04/2010 - 12:57:20 ----D- C:\Program Files\Norton Security Scan

O43 - CFD: 17/04/2010 - 12:57:18 ----D- C:\Program Files\NortonInstaller

O43 - CFD: 26/06/2009 - 22:34:06 ----D- C:\Program Files\Nosibay

O43 - CFD: 20/11/2010 - 22:09:20 ----D- C:\Program Files\PC Drivers HeadQuarters

O43 - CFD: 20/09/2010 - 19:18:48 ----D- C:\Program Files\QuickTime

O43 - CFD: 18/11/2010 - 06:39:56 ----D- C:\Program Files\Raptr

O43 - CFD: 06/05/2007 - 20:05:50 ----D- C:\Program Files\Realtek

O43 - CFD: 02/11/2006 - 13:37:36 ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 13/09/2010 - 19:06:20 ----D- C:\Program Files\Safari

O43 - CFD: 30/07/2010 - 07:37:00 ----D- C:\Program Files\SpeedFan

O43 - CFD: 21/11/2010 - 11:17:12 ----D- C:\Program Files\Sports Interactive

O43 - CFD: 12/02/2010 - 18:36:28 ----D- C:\Program Files\Spybot - Search & Destroy

O43 - CFD: 16/08/2008 - 09:32:22 ----D- C:\Program Files\Sun

O43 - CFD: 20/12/2009 - 09:38:40 ----D- C:\Program Files\Symantec

O43 - CFD: 17/04/2009 - 18:25:38 ----D- C:\Program Files\Trend Micro

O43 - CFD: 03/10/2010 - 09:02:32 ----D- C:\Program Files\TuneUpMedia

O43 - CFD: 18/03/2010 - 20:01:26 ----D- C:\Program Files\TVUPlayer

O43 - CFD: 02/11/2006 - 14:01:56 --H-D- C:\Program Files\Uninstall Information

O43 - CFD: 20/12/2009 - 16:59:28 ----D- C:\Program Files\Veetle

O43 - CFD: 10/01/2008 - 21:24:54 ----D- C:\Program Files\VideoLAN

O43 - CFD: 01/11/2009 - 10:04:30 ----D- C:\Program Files\VS Revo Group

O43 - CFD: 20/11/2010 - 21:31:08 ----D- C:\Program Files\WhoCrashed

O43 - CFD: 29/08/2007 - 20:07:20 ----D- C:\Program Files\Windows Calendar

O43 - CFD: 02/11/2006 - 13:42:34 ----D- C:\Program Files\Windows Collaboration

O43 - CFD: 25/08/2007 - 12:11:10 ----D- C:\Program Files\Windows Defender

O43 - CFD: 09/06/2010 - 09:25:36 ----D- C:\Program Files\Windows Live

O43 - CFD: 13/03/2008 - 20:15:58 ----D- C:\Program Files\Windows Live Favorites

O43 - CFD: 03/06/2009 - 19:49:40 ----D- C:\Program Files\Windows Live SkyDrive

O43 - CFD: 14/10/2009 - 10:46:26 ----D- C:\Program Files\Windows Live Toolbar

O43 - CFD: 14/04/2010 - 02:26:34 ----D- C:\Program Files\Windows Mail

O43 - CFD: 29/10/2009 - 03:20:04 ----D- C:\Program Files\Windows Media Player

O43 - CFD: 03/08/2007 - 22:43:06 ----D- C:\Program Files\Windows NT

O43 - CFD: 02/11/2006 - 13:42:34 ----D- C:\Program Files\Windows Photo Gallery

O43 - CFD: 10/01/2008 - 03:11:18 ----D- C:\Program Files\Windows Sidebar

O43 - CFD: 13/01/2008 - 21:32:22 ----D- C:\Program Files\WinRAR

O43 - CFD: 21/11/2010 - 03:11:18 ----D- C:\Program Files\Wise Registry Cleaner 3

O43 - CFD: 03/08/2007 - 22:48:16 ----D- C:\Program Files\Yahoo!

O43 - CFD: 28/10/2007 - 22:21:36 --H-D- C:\Program Files\Zero G Registry

O43 - CFD: 25/11/2010 - 22:45:40 ----D- C:\Program Files\ZHPDiag

O43 - CFD: 25/10/2010 - 18:37:32 ----D- C:\Program Files\Common Files\Adobe

O43 - CFD: 15/12/2009 - 22:48:56 ----D- C:\Program Files\Common Files\Adobe AIR

O43 - CFD: 25/11/2010 - 22:39:18 ----D- C:\Program Files\Common Files\Akamai

O43 - CFD: 15/11/2010 - 21:54:28 ----D- C:\Program Files\Common Files\Apple

O43 - CFD: 27/09/2008 - 19:51:36 ----D- C:\Program Files\Common Files\Autodesk Shared

O43 - CFD: 23/08/2010 - 16:11:52 ----D- C:\Program Files\Common Files\DESIGNER

O43 - CFD: 04/08/2007 - 00:21:32 ----D- C:\Program Files\Common Files\InstallShield

O43 - CFD: 20/09/2010 - 20:23:08 ----D- C:\Program Files\Common Files\Java

O43 - CFD: 06/05/2007 - 20:17:32 ----D- C:\Program Files\Common Files\LightScribe

O43 - CFD: 28/04/2008 - 20:06:26 ----D- C:\Program Files\Common Files\MAGIX Shared

O43 - CFD: 23/08/2010 - 16:11:58 ----D- C:\Program Files\Common Files\microsoft shared

O43 - CFD: 06/05/2007 - 20:17:14 ----D- C:\Program Files\Common Files\muvee Technologies

O43 - CFD: 06/05/2007 - 20:18:02 ----D- C:\Program Files\Common Files\NewTech Infosystems

O43 - CFD: 15/11/2010 - 21:47:08 ----D- C:\Program Files\Common Files\PX Storage Engine

O43 - CFD: 02/11/2006 - 12:18:34 ----D- C:\Program Files\Common Files\Services

O43 - CFD: 02/11/2006 - 12:18:34 ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 22/06/2009 - 22:47:12 ----D- C:\Program Files\Common Files\Symantec Shared

O43 - CFD: 29/06/2008 - 16:54:38 ----D- C:\Program Files\Common Files\System

O43 - CFD: 03/06/2009 - 19:26:56 ----D- C:\Program Files\Common Files\Windows Live

O43 - CFD: 13/03/2008 - 20:12:06 -SH-D- C:\Program Files\Common Files\WindowsLiveInstaller

O43 - CFD: 23/02/2009 - 16:05:48 ----D- C:\Program Files\Common Files\Wise Installation Wizard

O43 - CFD: 22/11/2010 - 19:49:24 ----D- C:\ProgramData\Adobe

O43 - CFD: 27/05/2010 - 22:26:06 ----D- C:\ProgramData\Apple

O43 - CFD: 19/04/2008 - 17:52:36 ----D- C:\ProgramData\Apple Computer

O43 - CFD: 02/11/2006 - 14:02:04 -SH-D- C:\ProgramData\Application Data

O43 - CFD: 20/11/2010 - 22:46:26 ----D- C:\ProgramData\ATI

O43 - CFD: 01/10/2008 - 18:41:46 ----D- C:\ProgramData\Autodesk

O43 - CFD: 08/01/2008 - 21:05:58 ----D- C:\ProgramData\Azureus

O43 - CFD: 03/08/2007 - 22:43:06 -SH-D- C:\ProgramData\Bureau

O43 - CFD: 15/11/2010 - 21:54:38 ----D- C:\ProgramData\Canneverbe Limited

O43 - CFD: 06/05/2007 - 20:34:10 ----D- C:\ProgramData\CyberLink

O43 - CFD: 31/10/2009 - 14:07:10 ----D- C:\ProgramData\DAEMON Tools Lite

O43 - CFD: 02/11/2006 - 14:02:04 -SH-D- C:\ProgramData\Desktop

O43 - CFD: 02/11/2006 - 14:02:04 -SH-D- C:\ProgramData\Documents

O43 - CFD: 20/11/2010 - 22:02:28 ----D- C:\ProgramData\Driver Whiz

O43 - CFD: 15/09/2009 - 18:01:00 ----D- C:\ProgramData\eMule

O43 - CFD: 04/08/2007 - 07:35:00 ----D- C:\ProgramData\eSobi

O43 - CFD: 03/08/2007 - 22:43:06 -SH-D- C:\ProgramData\Favoris

O43 - CFD: 02/11/2006 - 14:02:04 -SH-D- C:\ProgramData\Favorites

O43 - CFD: 09/01/2009 - 13:36:00 ----D- C:\ProgramData\Google

O43 - CFD: 10/12/2007 - 22:07:16 ----D- C:\ProgramData\Grisoft

O43 - CFD: 09/03/2008 - 14:37:04 ----D- C:\ProgramData\LightScribe

O43 - CFD: 27/12/2009 - 17:07:08 ----D- C:\ProgramData\ma-config.com

O43 - CFD: 18/04/2009 - 11:15:54 ----D- C:\ProgramData\Malwarebytes

O43 - CFD: 13/03/2010 - 11:18:02 ----D- C:\ProgramData\McAfee

O43 - CFD: 03/08/2007 - 22:43:06 -SH-D- C:\ProgramData\Menu Démarrer

O43 - CFD: 05/06/2010 - 02:01:16 -S--D- C:\ProgramData\Microsoft

O43 - CFD: 11/11/2010 - 03:03:32 ----D- C:\ProgramData\Microsoft Help

O43 - CFD: 03/08/2007 - 22:43:06 -SH-D- C:\ProgramData\Modèles

O43 - CFD: 31/10/2009 - 21:31:30 ----D- C:\ProgramData\Nero

O43 - CFD: 20/10/2010 - 09:59:12 ----D- C:\ProgramData\Norton

O43 - CFD: 21/06/2009 - 22:24:52 ----D- C:\ProgramData\NortonInstaller

O43 - CFD: 20/11/2010 - 22:09:58 ----D- C:\ProgramData\PC Drivers HeadQuarters

O43 - CFD: 21/06/2009 - 22:07:30 ----D- C:\ProgramData\PCSettings

O43 - CFD: 15/11/2010 - 21:38:28 ----D- C:\ProgramData\Roxio

O43 - CFD: 30/10/2009 - 20:26:20 ----D- C:\ProgramData\Sports Interactive

O43 - CFD: 23/11/2010 - 22:35:12 ----D- C:\ProgramData\Spybot - Search & Destroy

O43 - CFD: 02/11/2006 - 14:02:04 -SH-D- C:\ProgramData\Start Menu

O43 - CFD: 02/04/2010 - 06:05:12 ----D- C:\ProgramData\Sun

O43 - CFD: 17/04/2010 - 12:57:20 ----D- C:\ProgramData\Symantec

O43 - CFD: 21/06/2009 - 21:50:36 ----D- C:\ProgramData\Symantec Temporary Files

O43 - CFD: 18/09/2009 - 20:53:08 -SH-D- C:\ProgramData\System Restore

O43 - CFD: 02/11/2006 - 14:02:06 -SH-D- C:\ProgramData\Templates

O43 - CFD: 12/11/2010 - 20:31:38 ----D- C:\ProgramData\TuneUpMedia

O43 - CFD: 18/03/2010 - 20:01:26 ----D- C:\ProgramData\TVU Networks

O43 - CFD: 20/11/2010 - 22:02:36 ----D- C:\ProgramData\UAB

O43 - CFD: 03/06/2009 - 19:50:12 ----D- C:\ProgramData\WindowsLiveInstaller

O43 - CFD: 13/03/2008 - 19:58:40 ----D- C:\ProgramData\WLInstaller

O43 - CFD: 10/01/2009 - 19:09:22 ----D- C:\ProgramData\wmp

O43 - CFD: 26/08/2007 - 20:24:22 ----D- C:\ProgramData\Yahoo! Companion