[Résolu] Pas moyen de supprimer un virus sur mon PC : je deviens fou !

synchronn · le 4 septembre 2011

Bonjour à tous, je passe ma journée à essayer de virer un virus ou trojan non identifié. Celui-ci réduit énormément la rapidité de mon pc, je fais de multiples scan avec spybot (ca donne rien) , ad awaren, spydoctor, avira et malwarebytes mais pour le moment rien de rien. Le scan complet de malwarebytes est en route depuis plus de 5 heures...

Et pour ne rien arranger, c'est un Eeeeeepc sous windows 7.

Voici le rapport hijackthis

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 22:42:11, on 04/09/2011

Platform: Unknown Windows (WinNT 6.01.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16800)

Boot mode: Normal

Running processes:

C:\windows\System32\smss.exe

C:\windows\system32\csrss.exe

C:\windows\system32\wininit.exe

C:\windows\system32\csrss.exe

C:\windows\system32\services.exe

C:\windows\system32\winlogon.exe

C:\windows\system32\lsass.exe

C:\windows\system32\lsm.exe

C:\windows\system32\svchost.exe

C:\windows\System32\svchost.exe

C:\windows\system32\svchost.exe

C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe

C:\windows\system32\Dwm.exe

C:\windows\Explorer.EXE

C:\windows\System32\spoolsv.exe

C:\windows\system32\taskhost.exe

C:\Program Files\Avira\AntiVir Desktop\sched.exe

C:\windows\system32\svchost.exe

C:\Program Files\Avira\AntiVir Desktop\avguard.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Windows\System32\AsusService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\windows\system32\svchost.exe

C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\windows\System32\svchost.exe

C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe

C:\Program Files\EeePC\HotkeyService\HotkeyService.exe

C:\Program Files\EeePC\SHE\SuperHybridEngine.exe

C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe

C:\Program Files\EeePC\CapsHook\CapsHook.exe

C:\windows\System32\svchost.exe

C:\Program Files\PC Tools Security\pctsAuxs.exe

C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\PC Tools Security\pctsGui.exe

C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Program Files\Avira\AntiVir Desktop\avshadow.exe

C:\windows\system32\conhost.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\windows\system32\wbem\unsecapp.exe

C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe

C:\windows\system32\SearchIndexer.exe

C:\windows\system32\svchost.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files\Avira\AntiVir Desktop\avscan.exe

C:\windows\system32\svchost.exe

C:\Program Files\PC Tools Security\pctsSvc.exe

C:\windows\system32\wuauclt.exe

C:\Program Files\iTunes\iTunes.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe

C:\windows\system32\conhost.exe

C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe

C:\windows\system32\conhost.exe

C:\windows\system32\igfxsrvc.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileBackup.exe

C:\windows\system32\conhost.exe

C:\Program Files\CCleaner\CCleaner.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

C:\windows\system32\SearchProtocolHost.exe

C:\Users\Thomas\Desktop\hijackthis.exe

C:\windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Asus | MSN

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Asus | MSN

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: (no name) - {472734EA-242A-422b-ADF8-83D1E48CC825} - (no file)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe

O4 - HKLM\..\Run: [HotkeyMon] AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe

O4 - HKLM\..\Run: [HotkeyService] AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotkeyService.exe

O4 - HKLM\..\Run: [superHybridEngine] AsusSender.exe C:\Program Files\EeePC\SHE\SuperHybridEngine.exe

O4 - HKLM\..\Run: [LiveUpdate] AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto

O4 - HKLM\..\Run: [CapsHook] AsusSender.exe C:\Program Files\EeePC\CapsHook\CapsHook.exe

O4 - HKLM\..\Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe autorun

O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s

O4 - HKLM\..\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [ASUSPRP] C:\Program Files\ASUS\APRP\APRP.EXE

O4 - HKLM\..\Run: [synAsusAcpi] %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe

O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files\ASUS\ASUS WebStorage\2.2.56.108\ASUSWSDashBoard.exe /S

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [iSTray] "C:\Program Files\PC Tools Security\pctsGui.exe" /hideGUI

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')

O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O13 - Gopher Prefix:

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Asus Launcher Service (AsusService) - Unknown owner - C:\Windows\System32\AsusService.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe

O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe

O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\PC Tools Security\pctsAuxs.exe

O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\PC Tools Security\pctsSvc.exe

--

End of file - 9549 bytes

Merci de votre aide si vous voyez un truc qui cloche.

Modifié le 7 septembre 2011 par synchronn

tomtom95 · le 4 septembre 2011

Bonsoir synchronn

Rien de trés visible sur ce rapport

Pour commencer

Désactiver TeaTimer de spybot qui ne sert à rien et peut faire échouer une désinfection:!
Affiche d'abord le Mode Avancé dans Spybot
Options Avancées :
menu Mode
-Mode Avancé. Une colonne de menus apparaît dans la partie gauche :
clique sur Outils
clique sur Résident
-Dans Résident :
décoche Résident "TeaTimer" pour le désactiver.
Si dans Spybot S&D tu as vacciné
Sur l'onglet "vaccination"
Clique sur "Vaccination" dans la colonne sur la gauche :
Clique sur annuler (la flèche bleue) pour annuler la vaccination.
IMPORTANT Il faut aussi savoir que Spybot utilise une technologie dépassée.
Si vous ajoutez à cela les problèmes causés par la vaccination qui ralentit le système et TeaTimer qui peut faire obstacle à une désinfection..... voir pour le désinstaller du pc

Supprime aussi Lavasoft Ad-Aware ,et PC Tools Security :outch:

Aprés les suppressions:

Télécharge RogueKiller (par tigzy). sur le bureau

IMPORTANT:Quitte tous tes programmes en cours
Sous Vista/Seven clique droit -> lancer en tant qu'administrateur
Lance RogueKiller.exe.
Lorsque demandé
tape 1 pour Recherche et valide avec [entrée]

Un rapport (RKreport.txt) a du se créer à côté de l'exécutable
colle son contenu dans la réponse en fin de procédure.

Puis pour une analyse un peu plus détailler de ton ordinateur
applique cette procédure stp.

Télécharge ZHPDiag de Nicolas Coolman sur ton Bureau
Lance l'outil : double-clique sur ZHPDiag pour XP
Pour Vista et seven
fais un clique droit sur l'icône et exécute en tant qu'administrateur.

Clique sur le Tournevis a droit en haut

Coche toutes les cases .
Puis Clique sur la petite loupe en haut à gauche pour débuter l'analyse :
L'analyse peut durer une dizaine de minutes.
Le rapport généré par l'outil se nomme ZHPDiag.txt
Clique sur le bouton avec l'appareil photo pour copier le contenu intégral du rapport généré par l'outil dans le presse-papier :
Dans ta prochaine réponse
clique sur les touches CTRL+V pour coller ce rapport.
Si tu rencontres un message d'erreur
cela signifie que le rapport est trop long. Il faut donc l'éditer en plusieurs parties en veillant bien à ne rien oublier
Tu peux aussi héberger le fichier contenant ce rapport ici
http://cjoint.com/
Indique ensuite dans ta prochaine réponse l'adresse d'hébergement de ce rapport pour que je puisse le télécharger et l'analyser.

A+

synchronn · le 5 septembre 2011

Salut Tomtom et merci pour prendre du temps pour m'aider :

Voici le rapport de rogue killer :

RogueKiller V5.3.4 [30/08/2011] par Tigzy

contact sur Forum Sciences / Forum Informatique - Sur la Toile (SLT)

mail: tigzyRK<at>gmail<dot>com

Remontees: [RogueKiller] Remontées (1/33)

Systeme d'exploitation: Windows 7 (6.1.7600 ) 32 bits version

Demarrage : Mode normal

Utilisateur: Thomas [Droits d'admin]

Mode: Recherche -- Date : 05/09/2011 08:18:26

Processus malicieux: 0

Entrees de registre: 4

[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND

[HJ] HKLM\[...]\System : EnableLUA (0) -> FOUND

[HJ] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

[HJ] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

Fichiers / Dossiers particuliers:

[FOLDER] plugs : c:\users\thomas\appdata\roaming\adobe\plugs --> FOUND

[FOLDER] shed : c:\users\thomas\appdata\roaming\adobe\shed --> FOUND

Fichier HOSTS:

127.0.0.1 www.007guard.com

127.0.0.1 007guard.com

127.0.0.1 008i.com

127.0.0.1 www.008k.com

127.0.0.1 008k.com

127.0.0.1 www.00hq.com

127.0.0.1 00hq.com

127.0.0.1 010402.com

127.0.0.1 www.032439.com

127.0.0.1 032439.com

127.0.0.1 www.0scan.com

127.0.0.1 0scan.com

127.0.0.1 1000gratisproben.com

127.0.0.1 www.1000gratisproben.com

127.0.0.1 1001namen.com

127.0.0.1 www.1001namen.com

127.0.0.1 100888290cs.com

127.0.0.1 www.100888290cs.com

127.0.0.1 www.100sexlinks.com

127.0.0.1 100sexlinks.com

[...]

Termine : << RKreport[1].txt >>

RKreport[1].txt

Pour ZHP fix, je clique sur le tournevis (la légende est rapport de suppression) mais je n'ai rien à cocher, CTTFIX, HOSTFIX et le reste ont un ok en vert. Ensuite je ne vois pas la loupe...erf mais une icone pour Windows clean manager, est-ce celui-ci qu'il faut déclencher?

Modifié le 5 septembre 2011 par synchronn

synchronn · le 5 septembre 2011

POUR ZHP c'est bon, j'ai relancé le logiciel, je vois les icones !

synchronn · le 5 septembre 2011

Voici la suite:

Rapport de ZHPDiag v1.28.1346 par Nicolas Coolman, Update du 29/08/2011

Run by Thomas at 9/5/2011 12:19:14 PM

Web site : ZHPDiag Outil de diagnostic

---\\ Web Browser

MSIE: Internet Explorer v8.0.7600.16385

MFIE: Mozilla Firefox 6.0.1 v6.0.1 (Defaut)

---\\ Windows Product Information

Windows 7 Starter Edition, 32-bit (Build 7600)

Windows Server License Manager Script : OK

~ Windows® 7, OEM_SLP channel

System Locked Preinstallation (OEM_SLP) : OK

Windows ID Activation : OK

~ Windows Partial Key : YCJVG

Windows License : OK

~ Windows Remaining Initializations Number : 1

Software Protection Service (Protection logicielle) : OK

Windows Automatic Updates : OK

Windows Activation Technologies : OK

---\\ System Information

~ Processor: x86 Family 6 Model 28 Stepping 10, GenuineIntel

~ Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 1014.2 MB (48% free)

System Restore: Activé (Enable)

System drive C: has 28 GB (28%) free of 100 GB

---\\ Logged in mode

~ Computer Name: THOMAS-PC

~ User Name: Thomas

~ All Users Names: Thomas, Administrateur,

~ Unselected Option: None

Logged in as Administrator

---\\ Environnement Variables

~ System Unit : C:\

~ %AppData% : C:\Users\Thomas\AppData\Roaming\

~ %Desktop% : C:\Users\Thomas\Desktop\

~ %Favorites% : C:\Users\Thomas\Favorites\

~ %LocalAppData% : C:\Users\Thomas\AppData\Local\

~ %StartMenu% : C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\

~ %Windir% : C:\windows\

~ %System% : C:\windows\system32\

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 28 Go of 100 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 102 Go of 118 Go)

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK

[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK

[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK

~ Scan Security Center in 00mn AMs

---\\ Recherche particulière de fichiers génériques

[MD5.2AF58D15EDC06EC6FDACCE1F19482BBF] - (.Microsoft Corporation - Explorateur Windows.) (.6/14/2011 - 6:33:07 AM.) -- C:\windows\Explorer.exe [2614784]

[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (....) (.7/14/2009 - 2:14:31 AM.) -- C:\windows\system32\rundll32.exe [44544]

[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.7/14/2009 - 2:14:45 AM.) -- C:\windows\system32\Wininit.exe [96256]

[MD5.27CDAF355CCE3762C7F13719E814418B] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.8/6/2011 - 8:31:50 PM.) -- C:\windows\system32\wininet.dll [981504]

[MD5.37CDB7E72EB66BA85A87CBE37E7F03FD] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.6/24/2010 - 7:17:59 AM.) -- C:\windows\system32\Winlogon.exe [285696]

[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.7/14/2009 - 2:26:15 AM.) -- C:\windows\system32\drivers\atapi.sys [21584]

[MD5.3795DCD21F740EE799FB7223234215AF] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.7/14/2009 - 2:20:44 AM.) -- C:\windows\system32\drivers\ntfs.sys [1210432]

[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - (.Microsoft Corporation - Bibliothèque de licences.) (.7/14/2009 - 2:16:15 AM.) -- C:\windows\system32\sppcomapi.dll [193024]

[MD5.D8714A5FB3141F8226D16861F20C5AC4] - (....) (.7/26/2009 - 2:15:05 AM.) -- C:\windows\system32\fr-FR\user32.dll.mui [19968]

~ Scan Generic Processes in 00mn AMs

---\\ Etat des fichiers cachés (Caché/Total)

~ Mes images (My Pictures) : 1/2

~ Mes musiques (My Musics) : 71/583

~ Mes Favoris (My Favorites) : 2/32

~ Mes Documents (My Documents) : 2/220

~ Mon Bureau (My Desktop) : 1/57

~ Menu demarrer (Programs) : 6/25

~ Scan Hidden Files in 24mn AMs

---\\ Processus lancés

[MD5.A5BCBAF0477C4869B67E0195AEA4A9CD] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [136360] [PID.1412]

[MD5.3CCE4AFA4AACDB28E01A148394212186] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [269480] [PID.1708]

[MD5.20F6F19FE9E753F2780DC2FA083AD597] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664] [PID.1784]

[MD5.C4FB2613D3C75364BB159B9C23A00E7A] - (...) -- C:\Windows\System32\AsusService.exe [219136] [PID.1856]

[MD5.F2060A34C8A75BC24A9222EB4F8C07BD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [349472] [PID.1944]

[MD5.5AF1E9600E3FF841E522703A4993ED0C] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904] [PID.772]

[MD5.808B469BC03B39D735742D8D41D1C2C0] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9177632] [PID.1960]

[MD5.2E86071D074339BE1386DC7DB032557B] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1594664] [PID.1872]

[MD5.4D2987AFADD5A32417BD744C34ADF9FF] - (.Synaptics Incorporated - Asus Custom Acpi Monitor Application.) -- C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [83240] [PID.1952]

[MD5.710AB764FEAC87B4EB4BE3A6A5480BD0] - (.ASUSTeK Computer Inc. - HotkeyMon.) -- C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe [100328] [PID.1936]

[MD5.5806F3B00FE486DFE1ADD77CF3857845] - (.ASUSTeK Computer Inc. - Eee Super Hybrid Engine.) -- C:\Program Files\EeePC\SHE\SuperHybridEngine.exe [412600] [PID.1736]

[MD5.EB18FDC307FFA93EE053C9149D2C5842] - (.ASUSTeK Computer Inc. - Asus Eee PC Hotkey Service.) -- C:\Program Files\EeePC\HotkeyService\HotkeyService.exe [1242544] [PID.1536]

[MD5.9D5E8B45BD348DF0882C69EED0E83111] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [281768] [PID.432]

[MD5.360600AE01D1ABDD1FCEF8AFA32AF96D] - (.ASUS - CapsAndNumKeyNotify.) -- C:\Program Files\EeePC\CapsHook\CapsHook.exe [445344] [PID.1516]

[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe [11322880] [PID.864]

[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin [11314688] [PID.1028]

[MD5.D523A9BB4D1C1DEF96A3555AE472BFF1] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [103720] [PID.2128]

[MD5.CDE000884FD7BAF0C1FDFE029B0891DE] - (.Avira GmbH - AntiVir shadow copy service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76968] [PID.2432]

[MD5.7548066DF68A8A1A56B043359F915F37] - (.Intel Corporation - RAID Monitor.) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [354840] [PID.2732]

[MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\windows\system32\wuauclt.exe [53472] [PID.1360]

[MD5.7914370AAC5CDE8DCAE1C674A6C90229] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [669696] [PID.3628]

[MD5.4C287F9069FEDBD791178876EE9DE536] - (.Microsoft Corporation - Service de la plateforme de protection logi.) -- C:\windows\system32\sppsvc.exe [3179520] [PID.1592]

~ Scan Processes Running in 03mn AMs

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)

C:\Users\Thomas\AppData\Roaming\Mozilla\Firefox\Profiles\zc7laqia.default\prefs.js

C:\Users\Thomas\AppData\Roaming\Mozilla\Firefox\Profiles\zc7laqia.default\user.js (.not file.)

M3 - MFPP: Plugins - [Thomas] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml

M3 - MFPP: Plugins - [Thomas] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml

M3 - MFPP: Plugins - [Thomas] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml

M3 - MFPP: Plugins - [Thomas] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml

M3 - MFPP: Plugins - [Thomas] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml

M3 - MFPP: Plugins - [Thomas] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml

M3 - MFPP: Plugins - [Thomas] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml

M0 - MFSP: prefs.js [Thomas - zc7laqia.default] Google

M2 - MFEP: prefs.js [Thomas - zc7laqia.default\plugin@yontoo.com] [] Yontoo Layers v1.20.00 (.Yontoo LLC.)

P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll

P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\windows\system32\Macromed\Flash\NPSWF32.dll

P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.dll

P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plug-in allows you to open and edit files using Microsoft Office a.) -- C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.dll

P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

~ Scan Firefox Browser in 00mn AMs

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Asus | MSN

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search Microsoft.com

R0 - HKUS\S-1-5-21-2405251124-3916129693-1916960768-1000\Software\Microsoft\Internet Explorer\Main,Start Page = Asus | MSN

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Asus | MSN

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R1 - HKUS\S-1-5-21-2405251124-3916129693-1916960768-1000\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll

R3 - URLSearchHook: (no name) - {472734EA-242A-422b-ADF8-83D1E48CC825} . (...) (No version) -- (.not file.)

R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0

~ Scan IE Browser in 00mn AMs

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

~ Scan Proxy management in 00mn AMs

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=C:\windows\system32\SystemPropertiesPerformance.exe

~ Scan Keys in 00mn AMs

---\\ Redirection du fichier Hosts (O1)

~ Scan Hosts File in 14mn AMs

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files\Windows Live\Companion\companioncore.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

~ Scan BHO in 00mn AMs

---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [iAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe

O4 - HKLM\..\Run: [HotkeyMon] . (.ASUSTeK Computer Inc. - HotkeyMon.) -- C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe

O4 - HKLM\..\Run: [HotkeyService] . (.ASUSTeK Computer Inc. - Asus Eee PC Hotkey Service.) -- C:\Program Files\EeePC\HotkeyService\HotkeyService.exe

O4 - HKLM\..\Run: [superHybridEngine] . (.ASUSTeK Computer Inc. - Eee Super Hybrid Engine.) -- C:\Program Files\EeePC\SHE\SuperHybridEngine.exe

O4 - HKLM\..\Run: [LiveUpdate] . (...) -- C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe

O4 - HKLM\..\Run: [CapsHook] . (.ASUS - CapsAndNumKeyNotify.) -- C:\Program Files\EeePC\CapsHook\CapsHook.exe

O4 - HKLM\..\Run: [Eee Docking] . (.Pas de propriétaire - Eee Docking Application.) -- C:\Program Files\ASUS\Eee Docking\Eee Docking.exe

O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

O4 - HKLM\..\Run: [synTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [ASUSPRP] . (.ASUSTek Computer Inc. - ASUS Product Register Program.) -- C:\Program Files\ASUS\APRP\APRP.exe

O4 - HKLM\..\Run: [synAsusAcpi] . (.Synaptics Incorporated - Asus Custom Acpi Monitor Application.) -- C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe

O4 - HKLM\..\Run: [ASUSWebStorage] . (.eCareme - Asus WebStorage DashBoard.) -- C:\Program Files\ASUS\ASUS WebStorage\2.2.56.108\ASUSWSDashBoard.exe

O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe

O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-21-2405251124-3916129693-1916960768-1000\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe

~ Scan Application in 00mn AMs

---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Install Clean Up.lnk . (...) -- C:\Users\Thomas\AppData\Roaming\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe

O4 - Global Startup: C:\Users\Thomas\Desktop\CDisplay.lnk . (.David Ayton.) -- C:\Program Files\CDisplay\CDisplay.exe

O4 - Global Startup: C:\Users\Thomas\Desktop\Disque local (D) - Raccourci.lnk . (...) -- D:\

O4 - Global Startup: C:\Users\Thomas\Desktop\Format Factory.lnk . (.Free Time.) -- C:\Program Files\FreeTime\FormatFactory\FormatFactory.exe

O4 - Global Startup: C:\Users\Thomas\Desktop\Vuze Downloads - Raccourci.lnk . (...) -- C:\Users\Thomas\Documents\Vuze Downloads

O4 - Global Startup: C:\Users\Thomas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\Thomas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O4 - Global Startup: C:\Users\Thomas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe

O4 - Global Startup: C:\Users\Thomas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk . (.Vuze Inc..) -- C:\Program Files\Vuze\Azureus.exe

~ Scan Global Startup in 00mn AMs

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\windows\system32\mswsock.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\windows\system32\winrnr.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\windows\system32\napinsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\windows\system32\wshbth.dll

O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

O10 - WLSP:\000000000010\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll

~ Scan Winsock in 00mn AMs

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{8E4FADF6-82F4-4976-899E-77730254AD45}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\..\{E994D5B7-3E5B-4CCB-97BD-5041E2C0B102}: DhcpNameServer = 212.27.40.240 212.27.40.241

O17 - HKLM\System\CS1\Services\Tcpip\..\{8E4FADF6-82F4-4976-899E-77730254AD45}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{E994D5B7-3E5B-4CCB-97BD-5041E2C0B102}: DhcpNameServer = 212.27.40.240 212.27.40.241

O17 - HKLM\System\CS2\Services\Tcpip\..\{8E4FADF6-82F4-4976-899E-77730254AD45}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{E994D5B7-3E5B-4CCB-97BD-5041E2C0B102}: DhcpNameServer = 212.27.40.240 212.27.40.241

~ Scan Domain in 00mn AMs

---\\ Protocole additionnel (O18)

O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll

O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\windows\System32\itss.dll

O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll

O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\windows\system32\inetcomm.dll

O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll

O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\windows\System32\itss.dll

O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll

O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll

O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll

O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\windows\system32\mscoree.dll

O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\windows\system32\mscoree.dll

O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\windows\system32\mscoree.dll

O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

~ Scan Protocole Additionnel in 00mn AMs

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\windows\system32\igfxdev.dll

~ Scan Winlogon in 00mn AMs

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

~ Scan SSODL in 00mn AMs

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Asus Launcher Service (AsusService) . (...) - C:\Windows\System32\AsusService.exe

O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe

~ Scan Services in 00mn AMs

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(...) - (.not file.)

~ Scan Desktop Component in 00mn AMs

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\windows\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\windows\Tasks\GoogleUpdateTaskMachineUA.job

[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (...) -- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.)

[MD5.00000000000000000000000000000000] [APT] [CleanMem Mini Monitor] (...) -- C:\Program Files\CleanMem\mini_monitor.exe (.not file.)

[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe

[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe

[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe

~ Scan Scheduled Task in 05mn AMs

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: C:\windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\windows\system32\drivers\afd.sys

O41 - Driver: (AsUpIO) . (...) - C:\windows\system32\drivers\AsUpIO.sys

O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\windows\system32\DRIVERS\avipbb.sys

O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\windows\system32\DRIVERS\blbdrive.sys

O41 - Driver: C:\windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\windows\system32\Drivers\dfsc.sys

O41 - Driver: C:\windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\windows\system32\drivers\discache.sys

O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\windows\system32\DRIVERS\mssmbios.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\windows\system32\DRIVERS\netbios.sys

O41 - Driver: C:\windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\windows\system32\DRIVERS\netbt.sys

O41 - Driver: C:\windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\windows\system32\drivers\nsiproxy.sys

O41 - Driver: C:\windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\windows\system32\DRIVERS\pacer.sys

O41 - Driver: C:\windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\windows\system32\DRIVERS\rdbss.sys

O41 - Driver: C:\windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\windows\system32\DRIVERS\RDPCDD.sys

O41 - Driver: C:\windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\windows\system32\drivers\rdpencdd.sys

O41 - Driver: C:\windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\windows\system32\drivers\rdprefmp.sys

O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\windows\system32\DRIVERS\ssmdrv.sys

O41 - Driver: C:\windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\windows\system32\DRIVERS\tdx.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\windows\system32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\windows\system32\drivers\vga.sys

O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\windows\system32\DRIVERS\vwififlt.sys

O41 - Driver: C:\windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\windows\system32\DRIVERS\wanarp.sys

O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\windows\system32\DRIVERS\wfplwf.sys

~ Scan Drivers in 00mn AMs

---\\ Logiciels installés (O42)

O42 - Logiciel: 7-Zip 9.20 - (.Pas de propriétaire.) [HKLM] -- 7-Zip

O42 - Logiciel: ASUS VIBE - (.Ecareme, Inc..) [HKLM] -- ASUS VIBE

O42 - Logiciel: ASUS WebStorage - (.eCareme Technologies, Inc..) [HKLM] -- ASUS WebStorage

O42 - Logiciel: ASUSUpdate for Eee PC - (.ASUSTeK Computer Inc..) [HKLM] -- {587178E7-B1DF-494E-9838-FA4DD36E873C}

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin

O42 - Logiciel: Atheros Client Installation Program - (.Atheros.) [HKLM] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}

O42 - Logiciel: Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}

O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop

O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner

O42 - Logiciel: CDisplay 1.8 - (.dvd8n.) [HKLM] -- CDisplay_is1

O42 - Logiciel: CapsHook - (.AsusTek Computer.) [HKLM] -- {4B5092B6-F231-4D18-83BC-2618B729CA45}

O42 - Logiciel: Definition update for Microsoft Office 2010 (KB982726) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2FD3FD50-4D6B-433B-9AB8-83F04675DA44}

O42 - Logiciel: Defraggler - (.Piriform.) [HKLM] -- Defraggler

O42 - Logiciel: DiskAid 4.53 - (.DigiDNA.) [HKLM] -- DiskAid_is1

O42 - Logiciel: Eee Docking 3.7.0 - (.ASUSTek Computer Inc..) [HKLM] -- Eee Docking_is1

O42 - Logiciel: EeeSplendid - (.ASUS.) [HKLM] -- {6333FC29-BFE5-4024-AC78-958A1A7555D1}

O42 - Logiciel: FontResizer - (.ASUSTek.) [HKLM] -- InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8}

O42 - Logiciel: FormatFactory 2.60 - (.Free Time.) [HKLM] -- FormatFactory

O42 - Logiciel: GSplit 3 - (.G.D.G. Software.) [HKLM] -- GSplit3Set

O42 - Logiciel: Hotkey Service - (.AsusTek Computer.) [HKLM] -- {71C0E38E-09F2-4386-9977-404D4F6640CD}

O42 - Logiciel: Intel® Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI

O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}

O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.1.1800 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1

O42 - Logiciel: Microsoft Office Professionnel Plus 2010 - (.Microsoft Corporation.) [HKLM] -- Office14.PROPLUS

O42 - Logiciel: Mozilla Firefox 6.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 6.0.1 (x86 fr)

O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}

O42 - Logiciel: Security Update for Microsoft Excel 2010 (KB2523021) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{AA9E4C48-857D-4558-A4F4-343CA7680277}

O42 - Logiciel: Security Update for Microsoft InfoPath 2010 (KB2510065) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3C6C6854-EB6B-455C-B0A6-9871F0538028}

O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289078) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{1D1A4F08-2F17-475B-BA72-476CE5992FEE}

O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289161) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F134C2C6-30B3-4169-A325-58482B4CE6FC}

O42 - Logiciel: Security Update for Microsoft PowerPoint 2010 (KB2519975) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{45D7C5CD-B967-44AF-9DAB-E5C8545558AD}

O42 - Logiciel: Security Update for Microsoft Publisher 2010 (KB2409055) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{C3C277D5-36E3-4B1A-926A-175B2BC019CF}

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1

O42 - Logiciel: Super Hybrid Engine - (.AsusTek Computer.) [HKLM] -- {88F08F98-12BC-4613-81A2-8F9B88CFC73E}

O42 - Logiciel: Update for Microsoft Office 2010 (KB2202188) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{86B7A074-265D-420C-9E1E-7A920EF0ECA7}

O42 - Logiciel: Update for Microsoft Office 2010 (KB2494150) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}

O42 - Logiciel: Update for Microsoft Office 2010 (KB2523113) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{C0FF04BF-A05E-408B-81CA-B7FACDA508A3}

O42 - Logiciel: Update for Microsoft OneNote 2010 (KB2493983) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{309EEC22-83CE-4109-B019-BA9392FAA322}

O42 - Logiciel: Update for Microsoft Outlook Social Connector (KB2441641) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{A10DC2B7-6FDA-4C17-9DF0-6A834CAC4306}

O42 - Logiciel: VLC media player 1.0.5 - (.VideoLAN Team.) [HKLM] -- VLC media player

O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01

O42 - Logiciel: Vuze - (.Vuze Inc..) [HKLM] -- 8461-7759-5462-8226

O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/17/2009 6.2.0.9403) - (.Broadcom.) [HKLM] -- B41C7C96D83162A676DA7365ADEFD6C1AF62A4EE

O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/29/2009 6.1.7100.0) - (.Broadcom.) [HKLM] -- B5C82F3814F82FB37F1513B3185399BD88892B08

O42 - Logiciel: Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) - (.Broadcom.) [HKLM] -- BF20603967CFDCB2BBF91950E8A56DFBC5C833FE

O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite

---\\ HKCU & HKLM Software Keys

[HKCU\Software\7-Zip]

[HKCU\Software\ASUS]

[HKCU\Software\Adobe]

[HKCU\Software\AppDataLow\AskToolbarInfo]

[HKCU\Software\AppDataLow\Software\AskToolbar]

[HKCU\Software\AppDataLow\Software\Conduit]

[HKCU\Software\AppDataLow\Software\Microsoft]

[HKCU\Software\AppDataLow\Software\Vuze_Remote]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\Apple Computer, Inc.]

[HKCU\Software\Apple Inc.]

[HKCU\Software\Ask.com]

[HKCU\Software\Avira]

[HKCU\Software\Azureus]

[HKCU\Software\CDisplay]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\Conduit]

[HKCU\Software\ECAREME]

[HKCU\Software\FissaSearch]

[HKCU\Software\FreeTime]

[HKCU\Software\GNU]

[HKCU\Software\Gabest]

[HKCU\Software\GlarySoft]

[HKCU\Software\Google]

[HKCU\Software\Haali]

[HKCU\Software\IM Providers]

[HKCU\Software\Intel]

[HKCU\Software\JavaSoft]

[HKCU\Software\Macromedia]

[HKCU\Software\Magnet]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\Mozilla]

[HKCU\Software\Netscape]

[HKCU\Software\ODBC]

[HKCU\Software\OpenOffice.org]

[HKCU\Software\Piriform]

[HKCU\Software\Policies]

[HKCU\Software\Realtek]

[HKCU\Software\Safer Networking Limited]

[HKCU\Software\Skype]

[HKCU\Software\Spointer]

[HKCU\Software\Synaptics]

[HKCU\Software\Sysinternals]

[HKCU\Software\Trolltech]

[HKCU\Software\WideStream]

[HKCU\Software\ej-technologies]

[HKLM\Software\ASUS]

[HKLM\Software\ATI Technologies]

[HKLM\Software\Adobe]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\Apple Inc.]

[HKLM\Software\Atheros]

[HKLM\Software\AviSynth]

[HKLM\Software\Avira]

[HKLM\Software\Azureus]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\CoreSecurity]

[HKLM\Software\ECAREME]

[HKLM\Software\GEAR Software]

[HKLM\Software\GNU]

[HKLM\Software\GSplit]

[HKLM\Software\Google]

[HKLM\Software\HaaliMkx]

[HKLM\Software\Hewlett-Packard]

[HKLM\Software\InstalledOptions]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\KasperskyLab]

[HKLM\Software\Licenses]

[HKLM\Software\LogMeIn, Inc.]

[HKLM\Software\Macromedia]

[HKLM\Software\Malwarebytes' Anti-Malware]

[HKLM\Software\MimarSinan]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\ODBC]

[HKLM\Software\Oberon Media]

[HKLM\Software\OldTimer Tools]

[HKLM\Software\OpenOffice.org]

[HKLM\Software\Piriform]

[HKLM\Software\Policies]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\SRS Labs]

[HKLM\Software\Safer Networking Limited]

[HKLM\Software\SecureDigitalServices]

[HKLM\Software\Synaptics]

[HKLM\Software\TrendMicro]

[HKLM\Software\VideoLAN]

[HKLM\Software\X-AVCSD]

[HKLM\Software\ej-technologies]

[HKLM\Software\magnet]

[HKLM\Software\mozilla.org]

~ Scan Softwares in 00mn AMs

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 12/6/2010 - 7:03:52 PM - [3511045] ----D- C:\Program Files\7-Zip

O43 - CFD: 6/24/2010 - 6:12:16 PM - [685151689] ----D- C:\Program Files\Adobe

O43 - CFD: 6/8/2011 - 1:30:10 PM - [2307582] ----D- C:\Program Files\Apple Software Update

O43 - CFD: 7/4/2011 - 9:06:08 PM - [392066] ----D- C:\Program Files\Ask.com

O43 - CFD: 11/26/2010 - 7:35:30 PM - [122782187] ----D- C:\Program Files\ASUS

O43 - CFD: 6/24/2010 - 6:02:18 PM - [1078] ----D- C:\Program Files\Atheros

O43 - CFD: 9/4/2011 - 3:26:54 PM - [146763527] ----D- C:\Program Files\Avira

O43 - CFD: 5/29/2011 - 10:58:22 PM - [621222] ----D- C:\Program Files\Bonjour

O43 - CFD: 11/26/2010 - 7:08:18 PM - [3501304] ----D- C:\Program Files\CCleaner

O43 - CFD: 3/3/2011 - 7:23:52 PM - [2048286] ----D- C:\Program Files\CDisplay

O43 - CFD: 9/5/2011 - 8:14:44 AM - [0] ----D- C:\Program Files\CleanMem

O43 - CFD: 9/5/2011 - 8:14:44 AM - [627662750] ----D- C:\Program Files\Common Files

O43 - CFD: 11/27/2010 - 6:58:02 PM - [3780960] ----D- C:\Program Files\Defraggler

O43 - CFD: 6/24/2010 - 6:04:04 PM - [544736] ----D- C:\Program Files\DIFX

O43 - CFD: 5/31/2011 - 6:46:40 PM - [18449626] ----D- C:\Program Files\DigiDNA

O43 - CFD: 12/24/2010 - 12:52:54 AM - [4191414] ----D- C:\Program Files\DVD Maker

O43 - CFD: 6/24/2010 - 6:07:58 PM - [29] ----D- C:\Program Files\EBI

O43 - CFD: 6/24/2010 - 6:21:14 PM - [8960265] ----D- C:\Program Files\EeePC

O43 - CFD: 12/28/2010 - 12:17:44 AM - [118070272] ----D- C:\Program Files\FreeTime

O43 - CFD: 9/4/2011 - 10:19:44 PM - [4605920] ----D- C:\Program Files\Google

O43 - CFD: 12/26/2010 - 4:21:48 PM - [3623144] ----D- C:\Program Files\GSplit

O43 - CFD: 3/13/2011 - 8:38:12 PM - [0] ----D- C:\Program Files\Incomplete

O43 - CFD: 11/26/2010 - 7:17:54 PM - [69155930] --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD: 6/24/2010 - 6:00:54 PM - [61805388] ----D- C:\Program Files\Intel

O43 - CFD: 9/4/2011 - 11:19:20 PM - [5619349] ----D- C:\Program Files\Internet Explorer

O43 - CFD: 11/26/2010 - 7:21:44 PM - [1856115] ----D- C:\Program Files\iPod

O43 - CFD: 6/9/2011 - 9:29:52 PM - [128506935] ----D- C:\Program Files\iTunes

O43 - CFD: 12/18/2010 - 1:42:54 AM - [88574556] ----D- C:\Program Files\Java

O43 - CFD: 8/28/2011 - 10:17:36 PM - [0] ----D- C:\Program Files\LogMeIn

O43 - CFD: 9/4/2011 - 3:43:32 PM - [6953188] ----D- C:\Program Files\Malwarebytes' Anti-Malware

O43 - CFD: 11/26/2010 - 6:53:12 PM - [2664525] ----D- C:\Program Files\Microsoft

O43 - CFD: 7/14/2009 - 6:52:32 AM - [46990135] ----D- C:\Program Files\Microsoft Games

O43 - CFD: 1/2/2011 - 6:50:16 PM - [418328357] ----D- C:\Program Files\Microsoft Office

O43 - CFD: 8/6/2011 - 11:28:46 AM - [19018416] ----D- C:\Program Files\Microsoft Silverlight

O43 - CFD: 1/2/2011 - 6:50:14 PM - [3635637] ----D- C:\Program Files\Microsoft SQL Server Compact Edition

O43 - CFD: 1/2/2011 - 6:50:40 PM - [326800] ----D- C:\Program Files\Microsoft Synchronization Services

O43 - CFD: 1/2/2011 - 6:50:14 PM - [8152064] ----D- C:\Program Files\Microsoft.NET

O43 - CFD: 9/1/2011 - 9:20:54 PM - [37229752] ----D- C:\Program Files\Mozilla Firefox

O43 - CFD: 7/14/2009 - 6:52:32 AM - [25757] ----D- C:\Program Files\MSBuild

O43 - CFD: 6/9/2011 - 9:12:46 PM - [869270] ----D- C:\Program Files\MSECACHE

O43 - CFD: 6/24/2010 - 7:02:52 PM - [154033] ----D- C:\Program Files\MSXML 4.0

O43 - CFD: 8/23/2011 - 12:08:32 AM - [335413997] ----D- C:\Program Files\OpenOffice.org 3

O43 - CFD: 6/9/2011 - 9:23:30 PM - [76322555] ----D- C:\Program Files\QuickTime

O43 - CFD: 11/26/2010 - 6:43:18 PM - [15158377] ----D- C:\Program Files\Realtek

O43 - CFD: 7/14/2009 - 6:52:32 AM - [38597377] ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 9/3/2011 - 11:43:44 PM - [30552186] ----D- C:\Program Files\Safari

O43 - CFD: 11/26/2010 - 11:52:24 PM - [64057391] ----D- C:\Program Files\Spybot - Search & Destroy

O43 - CFD: 11/26/2010 - 6:45:02 PM - [30140789] ----D- C:\Program Files\Synaptics

O43 - CFD: 11/26/2010 - 6:44:26 PM - [0] --H-D- C:\Program Files\Temp

O43 - CFD: 9/4/2011 - 10:56:42 PM - [844210] ----D- C:\Program Files\Trojan Remover

O43 - CFD: 7/14/2009 - 6:53:24 AM - [0] --H-D- C:\Program Files\Uninstall Information

O43 - CFD: 11/27/2010 - 8:05:02 PM - [79194259] ----D- C:\Program Files\VideoLAN

O43 - CFD: 11/26/2010 - 7:13:22 PM - [110958547] ----D- C:\Program Files\Vuze

O43 - CFD: 12/24/2010 - 12:52:52 AM - [3049984] ----D- C:\Program Files\Windows Defender

O43 - CFD: 6/9/2011 - 9:13:26 PM - [142742] ----D- C:\Program Files\Windows Installer Clean Up

O43 - CFD: 11/27/2010 - 12:00:06 AM - [157906069] ----D- C:\Program Files\Windows Live

O43 - CFD: 4/19/2011 - 1:13:38 PM - [6180864] ----D- C:\Program Files\Windows Mail

O43 - CFD: 2/27/2011 - 12:31:50 PM - [6607787] ----D- C:\Program Files\Windows Media Player

O43 - CFD: 7/14/2009 - 6:52:32 AM - [12197556] ----D- C:\Program Files\Windows NT

O43 - CFD: 12/24/2010 - 12:52:52 AM - [4417800] ----D- C:\Program Files\Windows Photo Viewer

O43 - CFD: 7/14/2009 - 6:52:34 AM - [189440] ----D- C:\Program Files\Windows Portable Devices

O43 - CFD: 12/24/2010 - 12:52:54 AM - [5994114] ----D- C:\Program Files\Windows Sidebar

O43 - CFD: 9/5/2011 - 12:20:12 PM - [4018174] ----D- C:\Program Files\ZHPDiag

O43 - CFD: 2/26/2011 - 10:35:50 PM - [14779391] ----D- C:\Program Files\Common Files\Adobe

O43 - CFD: 6/24/2010 - 6:08:24 PM - [32158176] ----D- C:\Program Files\Common Files\Adobe AIR

O43 - CFD: 11/26/2010 - 7:21:42 PM - [102585068] ----D- C:\Program Files\Common Files\Apple

O43 - CFD: 1/2/2011 - 6:50:40 PM - [99136] ----D- C:\Program Files\Common Files\DESIGNER

O43 - CFD: 12/26/2010 - 4:21:46 PM - [130040] ----D- C:\Program Files\Common Files\GSplit

O43 - CFD: 11/26/2010 - 6:43:08 PM - [3179774] ----D- C:\Program Files\Common Files\InstallShield

O43 - CFD: 8/23/2011 - 12:06:32 AM - [216716057] ----D- C:\Program Files\Common Files\microsoft shared

O43 - CFD: 6/24/2010 - 6:10:26 PM - [354896] ----D- C:\Program Files\Common Files\Oberon Media

O43 - CFD: 7/14/2009 - 4:37:06 AM - [2702] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 7/14/2009 - 4:37:06 AM - [41103783] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 12/24/2010 - 12:52:52 AM - [10102259] ----D- C:\Program Files\Common Files\System

O43 - CFD: 11/26/2010 - 6:50:16 PM - [206451468] ----D- C:\Program Files\Common Files\Windows Live

O43 - CFD: 6/24/2010 - 6:12:06 PM - [807] ----D- C:\ProgramData\Adobe

O43 - CFD: 11/26/2010 - 7:48:38 PM - [107684886] ----D- C:\ProgramData\Apple

O43 - CFD: 11/26/2010 - 7:21:42 PM - [67066516] ----D- C:\ProgramData\Apple Computer

O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Application Data

O43 - CFD: 6/24/2010 - 6:02:32 PM - [9357] ----D- C:\ProgramData\Atheros

O43 - CFD: 9/4/2011 - 3:26:54 PM - [58987723] ----D- C:\ProgramData\Avira

O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Desktop

O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Documents

O43 - CFD: 6/24/2010 - 6:08:04 PM - [0] ----D- C:\ProgramData\EBI

O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Favorites

O43 - CFD: 2/26/2011 - 11:09:56 PM - [0] ----D- C:\ProgramData\GoBoingo

O43 - CFD: 9/3/2011 - 11:43:44 PM - [208] ----D- C:\ProgramData\hL04903JkBpG04903

O43 - CFD: 3/13/2011 - 9:27:24 PM - [101] ----D- C:\ProgramData\Kaspersky Lab

O43 - CFD: 9/5/2011 - 8:01:42 AM - [72] ----D- C:\ProgramData\Lavasoft

O43 - CFD: 8/28/2011 - 10:17:36 PM - [232488] ----D- C:\ProgramData\LogMeIn

O43 - CFD: 9/4/2011 - 3:43:18 PM - [7327738] ----D- C:\ProgramData\Malwarebytes

O43 - CFD: 3/9/2011 - 10:51:26 PM - [2572675805] -S--D- C:\ProgramData\Microsoft

O43 - CFD: 8/6/2011 - 11:29:56 AM - [53146] ----D- C:\ProgramData\Microsoft Help

O43 - CFD: 9/5/2011 - 8:03:42 AM - [73191824] ----D- C:\ProgramData\PC Tools

O43 - CFD: 6/24/2010 - 6:08:04 PM - [0] ----D- C:\ProgramData\RSMR

O43 - CFD: 9/4/2011 - 11:22:20 AM - [7567395] ----D- C:\ProgramData\Simply Super Software

O43 - CFD: 11/26/2010 - 7:36:38 PM - [19925144] ----D- C:\ProgramData\Skype

O43 - CFD: 9/5/2011 - 7:58:56 AM - [32440448] ----D- C:\ProgramData\Spybot - Search & Destroy

O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Start Menu

O43 - CFD: 9/3/2011 - 3:28:02 PM - [98248] ----D- C:\ProgramData\Tarma Installer

O43 - CFD: 9/5/2011 - 8:07:48 AM - [0] ---AD- C:\ProgramData\TEMP

O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Templates

O43 - CFD: 11/26/2010 - 8:16:28 PM - [24055] ----D- C:\ProgramData\WindSolutions

O43 - CFD: 11/26/2010 - 7:22:26 PM - [541235] ----D- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}

O43 - CFD: 9/4/2011 - 11:18:56 PM - [5764473] ----D- C:\Users\Thomas\AppData\Roaming\Adobe

O43 - CFD: 9/2/2011 - 3:28:46 AM - [4402600577] ----D- C:\Users\Thomas\AppData\Roaming\Apple Computer

O43 - CFD: 2/27/2011 - 8:16:20 PM - [23855041] ----D- C:\Users\Thomas\AppData\Roaming\ASUS WebStorage

O43 - CFD: 9/4/2011 - 3:29:22 PM - [0] ----D- C:\Users\Thomas\AppData\Roaming\Avira

O43 - CFD: 9/4/2011 - 10:56:56 PM - [13509147] ----D- C:\Users\Thomas\AppData\Roaming\Azureus

O43 - CFD: 5/31/2011 - 7:50:26 PM - [1257] ----D- C:\Users\Thomas\AppData\Roaming\DiskAid

O43 - CFD: 8/26/2011 - 11:37:56 PM - [199] ----D- C:\Users\Thomas\AppData\Roaming\dvdcss

O43 - CFD: 12/15/2010 - 12:13:48 AM - [0] ----D- C:\Users\Thomas\AppData\Roaming\EeeStorageUploader

O43 - CFD: 3/13/2011 - 9:27:30 PM - [105429] ----D- C:\Users\Thomas\AppData\Roaming\FrostWire

O43 - CFD: 11/27/2010 - 9:23:08 PM - [24625] ----D- C:\Users\Thomas\AppData\Roaming\GlarySoft

O43 - CFD: 12/26/2010 - 4:34:12 PM - [24561] ----D- C:\Users\Thomas\AppData\Roaming\GSplit

O43 - CFD: 7/14/2009 - 6:54:14 AM - [0] ----D- C:\Users\Thomas\AppData\Roaming\Identities

O43 - CFD: 6/24/2010 - 6:00:40 PM - [0] ----D- C:\Users\Thomas\AppData\Roaming\InstallShield

O43 - CFD: 3/10/2011 - 11:51:02 PM - [0] ----D- C:\Users\Thomas\AppData\Roaming\JivaroPref

O43 - CFD: 6/24/2010 - 6:08:18 PM - [497] ----D- C:\Users\Thomas\AppData\Roaming\Macromedia

O43 - CFD: 9/4/2011 - 3:43:44 PM - [1119752] ----D- C:\Users\Thomas\AppData\Roaming\Malwarebytes

O43 - CFD: 6/9/2011 - 9:13:26 PM - [15099827] -S--D- C:\Users\Thomas\AppData\Roaming\Microsoft

O43 - CFD: 11/26/2010 - 7:08:38 PM - [15905443] ----D- C:\Users\Thomas\AppData\Roaming\Mozilla

O43 - CFD: 8/23/2011 - 12:16:12 AM - [1502782] ----D- C:\Users\Thomas\AppData\Roaming\OpenOffice.org

O43 - CFD: 9/4/2011 - 11:22:20 AM - [0] ----D- C:\Users\Thomas\AppData\Roaming\Simply Super Software

O43 - CFD: 1/2/2011 - 5:55:50 PM - [430367313] ----D- C:\Users\Thomas\AppData\Roaming\TP

O43 - CFD: 9/4/2011 - 11:19:20 PM - [1947728] ----D- C:\Users\Thomas\AppData\Roaming\vlc

O43 - CFD: 12/18/2010 - 4:26:20 PM - [604] ----D- C:\Users\Thomas\AppData\Roaming\widestream

O43 - CFD: 3/11/2011 - 12:18:02 AM - [0] ----D- C:\Users\Thomas\AppData\Roaming\Windows Live Writer

O43 - CFD: 11/27/2010 - 8:19:36 PM - [8012] ----D- C:\Users\Thomas\AppData\Roaming\WindSolutions

O43 - CFD: 3/10/2011 - 11:58:48 PM - [0] ----D- C:\Users\Thomas\AppData\Roaming\WinRAR

O43 - CFD: 11/26/2010 - 9:38:06 PM - [23739112] ----D- C:\Users\Thomas\AppData\Local\Adobe

O43 - CFD: 2/21/2011 - 12:16:00 AM - [20170] ----D- C:\Users\Thomas\AppData\Local\AirMouse

O43 - CFD: 11/26/2010 - 7:18:38 PM - [96711976] ----D- C:\Users\Thomas\AppData\Local\Apple

O43 - CFD: 9/2/2011 - 3:16:16 AM - [204549718] ----D- C:\Users\Thomas\AppData\Local\Apple Computer

O43 - CFD: 11/26/2010 - 6:40:48 PM - [0] -SH-D- C:\Users\Thomas\AppData\Local\Application Data

O43 - CFD: 2/21/2011 - 12:15:00 AM - [4887040] ----D- C:\Users\Thomas\AppData\Local\Downloaded Installations

O43 - CFD: 9/4/2011 - 12:20:24 AM - [100816] ----D- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics

O43 - CFD: 4/2/2011 - 9:49:54 PM - [1946] ----D- C:\Users\Thomas\AppData\Local\Google

O43 - CFD: 11/26/2010 - 6:40:48 PM - [0] -SH-D- C:\Users\Thomas\AppData\Local\Historique

O43 - CFD: 5/31/2011 - 7:14:34 PM - [816] ----D- C:\Users\Thomas\AppData\Local\Macroplant

O43 - CFD: 7/19/2011 - 9:56:48 PM - [159601672] ----D- C:\Users\Thomas\AppData\Local\Microsoft

O43 - CFD: 1/2/2011 - 6:46:02 PM - [0] ----D- C:\Users\Thomas\AppData\Local\Microsoft Help

O43 - CFD: 11/26/2010 - 8:28:20 PM - [1746] ----D- C:\Users\Thomas\AppData\Local\Microsoft_Corporation

O43 - CFD: 11/26/2010 - 7:08:24 PM - [38163972] ----D- C:\Users\Thomas\AppData\Local\Mozilla

O43 - CFD: 5/31/2011 - 6:55:30 PM - [856] ----D- C:\Users\Thomas\AppData\Local\myPod_Apps

O43 - CFD: 9/4/2011 - 4:42:28 PM - [0] ----D- C:\Users\Thomas\AppData\Local\Sunbelt Software

O43 - CFD: 9/5/2011 - 12:18:42 PM - [9303722] ----D- C:\Users\Thomas\AppData\Local\Temp

O43 - CFD: 11/26/2010 - 6:40:48 PM - [0] -SH-D- C:\Users\Thomas\AppData\Local\Temporary Internet Files

O43 - CFD: 2/26/2011 - 10:52:24 PM - [78214] ----D- C:\Users\Thomas\AppData\Local\VirtualStore

O43 - CFD: 12/18/2010 - 4:38:50 PM - [191303] ----D- C:\Users\Thomas\AppData\Local\widestream6 Air

O43 - CFD: 9/3/2011 - 3:29:16 PM - [223026273] ----D- C:\Users\Thomas\AppData\Local\Windows Live

O43 - CFD: 3/11/2011 - 12:18:22 AM - [372494] ----D- C:\Users\Thomas\AppData\Local\Windows Live Writer

O43 - CFD: 9/1/2011 - 7:58:42 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{14CFE9F0-738D-4DA4-9063-A95E31A5B3CC}

O43 - CFD: 8/30/2011 - 8:05:00 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{18FCB113-6DD6-4632-9267-39B82C5B919E}

O43 - CFD: 9/3/2011 - 11:48:48 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{19FF1E37-AF8A-45E3-B3A1-B5E6AE07E025}

O43 - CFD: 8/6/2011 - 10:15:08 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{1D24877A-7278-42C7-A139-FF34AD8C58A9}

O43 - CFD: 8/23/2011 - 4:48:14 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{20CC5747-4C67-474A-A225-E60BB263C7EF}

O43 - CFD: 9/5/2011 - 8:18:44 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{248A06C1-B6E5-49DB-92C2-9F33EF6FF43C}

O43 - CFD: 8/17/2011 - 2:30:08 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{26147DE8-DC70-4B73-88AB-885332F3BD49}

O43 - CFD: 9/3/2011 - 10:13:22 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{2F13B24A-D2AF-45EC-B825-D487FB67FB2A}

O43 - CFD: 8/14/2011 - 10:15:02 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{3032F65E-7495-4530-A573-084B885EC717}

O43 - CFD: 9/1/2011 - 6:55:48 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{437A4E74-0D49-407C-9882-154D477312D6}

O43 - CFD: 9/4/2011 - 4:09:40 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{45417007-CB30-499D-9733-EDE26395B05B}

O43 - CFD: 8/24/2011 - 12:08:54 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{469C7931-8985-4094-85FE-F61311BAA456}

O43 - CFD: 9/4/2011 - 12:47:12 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{52B0FC22-8690-4DA5-A288-BF1C00AD2109}

O43 - CFD: 9/2/2011 - 3:10:32 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{55A3B2B3-11BA-4BB3-8419-08B0B1CB1E3F}

O43 - CFD: 8/29/2011 - 8:06:12 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{5C1B7500-C264-42F0-B11B-DA17AB8E34FF}

O43 - CFD: 8/26/2011 - 12:14:36 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{700C9EB3-1DAB-481E-AEF3-D2531A9F43C6}

O43 - CFD: 9/4/2011 - 6:26:56 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{72D2237C-8FA3-4B19-BA7A-F12C40AEF8A9}

O43 - CFD: 8/25/2011 - 8:03:54 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{A05ACE19-F12C-42A6-B750-F8C19999B38B}

O43 - CFD: 8/18/2011 - 11:28:48 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{A6F8B326-AC0E-4EE5-97C9-1FE090B60FA6}

O43 - CFD: 9/4/2011 - 12:03:46 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{ABEB5879-852B-42E6-AACB-95656FCFEDAA}

O43 - CFD: 8/24/2011 - 7:51:34 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{BF84BCC5-B092-49F5-82FA-C1019A4B7A21}

O43 - CFD: 8/17/2011 - 9:14:00 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{C7B178C3-BA47-49BE-9651-9AE2B479E51E}

O43 - CFD: 8/28/2011 - 8:24:16 AM - [0] ----D- C:\Users\Thomas\AppData\Local\{C8028CF2-FB9F-465E-8DC0-80C35706AAE2}

O43 - CFD: 9/1/2011 - 11:13:04 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{D5BA09D9-F0C0-4CAE-82F2-EAD71350E457}

O43 - CFD: 8/26/2011 - 11:02:52 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{E5B901C2-0B11-4D8C-BA90-CF3EAE5F2AE6}

O43 - CFD: 8/19/2011 - 1:58:56 PM - [0] ----D- C:\Users\Thomas\AppData\Local\{E9CB81EE-0D1D-44BC-8BA3-13C2AC0EF856}

~ Scan Program Folder in 39mn AMs

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.0652A8EB646E325CF202AB5AC2A4438A] - 8/17/2011 - 7:31:35 PM ---A- . (...) -- C:\.rnd [1024]

O44 - LFC:[MD5.4A97045AFCA4A7373C951ED2D7AECF16] - 8/17/2011 - 7:31:36 PM ---A- . (.LogMeIn, Inc. - LogMeIn Remote Control Helper.) -- C:\windows\system32\LMIinit.dll [87424]

O44 - LFC:[MD5.383842C021FC8C9F972F2841BC0743EC] - 8/17/2011 - 7:31:39 PM ---A- . (.LogMeIn, Inc. - LogMeIn Rfs Client Network Provider.) -- C:\windows\system32\LMIRfsClientNP.dll [83360]

O44 - LFC:[MD5.3FAA563DDF853320F90259D455A01D79] - 8/17/2011 - 7:31:39 PM ---A- . (.LogMeIn, Inc. - LogMeIn Rfs Drivemap Driver.) -- C:\windows\system32\drivers\LMIRfsDriver.sys [47640]

O44 - LFC:[MD5.5D3AA86F4D9AB5D4A50E6DAABB05C0BB] - 8/17/2011 - 7:31:40 PM ---A- . (.LogMeIn, Inc. - RemotelyAnywhere Printer Port Monitor.) -- C:\windows\system32\LMIport.dll [29568]

O44 - LFC:[MD5.32158034D2DB89D4AEC4F25A85A3D49E] - 8/23/2011 - 12:21:32 AM ---A- . (...) -- C:\windows\system32\FNTCACHE.DAT [355184]

O44 - LFC:[MD5.010B580D40397897738C5FDAF727400E] - 8/30/2011 - 6:17:44 PM --HA- . (...) -- C:\windows\system32\mlfcache.dat [128216]

O44 - LFC:[MD5.0F78D3DAE6DEDD99AE54C9491C62ADF2] - 9/4/2011 - 2:26:56 PM ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\windows\system32\drivers\avipbb.sys [138192]

O44 - LFC:[MD5.1E4114685DE1FFA9675E09C6A1FB3F4B] - 9/4/2011 - 2:26:56 PM ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\windows\system32\drivers\avgntflt.sys [66616]

O44 - LFC:[MD5.A36EE93698802CD899F98BFD553D8185] - 9/4/2011 - 2:27:00 PM ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\windows\system32\drivers\ssmdrv.sys [28520]

O44 - LFC:[MD5.24F03F19D4DD7903F82F75C355D5CAB6] - 9/4/2011 - 2:40:26 PM ---A- . (...) -- C:\TDSSKiller.2.5.17.0_04.09.2011_15.37.43_log.txt [67588]

O44 - LFC:[MD5.ECA00EED9AB95489007B0EF84C7149DE] - 9/4/2011 - 2:43:06 PM ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\windows\system32\drivers\mbam.sys [22712]

O44 - LFC:[MD5.B18225739ED9CAA83BA2DF966E9F43E8] - 9/4/2011 - 2:43:20 PM ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\windows\system32\drivers\mbamswissarmy.sys [41272]

O44 - LFC:[MD5.54454208B7EFA8D1779B706D915D20E2] - 9/4/2011 - 2:46:08 PM ---A- . (...) -- C:\PhysicalMBR.bin [512]

O44 - LFC:[MD5.BD275F683177C3140E10F4CF1ABDCB1A] - 9/4/2011 - 2:53:28 PM ---A- . (...) -- C:\TDSSKiller.2.5.17.0_04.09.2011_15.51.02_log.txt [67378]

O44 - LFC:[MD5.6B390CE5D85FF24755F8CB3B1F9B7B3F] - 9/4/2011 - 3:35:15 PM ---A- . (...) -- C:\TDSSKiller.2.5.17.0_04.09.2011_16.24.27_log.txt [67092]

O44 - LFC:[MD5.C1AE5D1F53285D79A0B73A62AF20734F] - 9/4/2011 - 3:53:13 PM ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\windows\system32\drivers\SBREDrv.sys [98392]

O44 - LFC:[MD5.3AFB7BAD0967EACE8D3ED16CF2A8FD8A] - 9/4/2011 - 5:40:04 PM ---A- . (...) -- C:\windows\system32\PerfStringBackup.INI [1524562]

O44 - LFC:[MD5.EED51D56C1041D48C08D31CFC0876496] - 9/4/2011 - 5:40:10 PM ---A- . (...) -- C:\windows\system32\perfc009.dat [103568]

O44 - LFC:[MD5.FF7FA933B2ABBB07373BDCD201A1ABA9] - 9/4/2011 - 5:40:10 PM ---A- . (...) -- C:\windows\system32\perfc00C.dat [127684]

O44 - LFC:[MD5.EE946017F68304658A20B6732CE5F8B8] - 9/4/2011 - 5:40:10 PM ---A- . (...) -- C:\windows\system32\perfh009.dat [607190]

O44 - LFC:[MD5.E4468BFBF99A521D733AA7B7BB2359F4] - 9/4/2011 - 5:40:10 PM ---A- . (...) -- C:\windows\system32\perfh00C.dat [695004]

O44 - LFC:[MD5.F2C9A81DA525668D8520EEBB1290957A] - 9/5/2011 - 10:15:39 AM ---A- . (...) -- C:\windows\WindowsUpdate.log [1048727]

O44 - LFC:[MD5.6AE80448676895E0EAB7F736F645C2B9] - 9/5/2011 - 7:14:43 AM ---A- . (...) -- C:\windows\PFRO.log [2544]

O44 - LFC:[MD5.E43560467064F80D6D9B174DC8D43ABE] - 9/5/2011 - 7:14:51 AM -S-A- . (...) -- C:\windows\bootstat.dat [67584]

O44 - LFC:[MD5.D74E3C688AA4F552EB9F55CB8EA67170] - 9/5/2011 - 7:15:02 AM ---A- . (...) -- C:\windows\setupact.log [56]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 9/5/2011 - 7:15:02 AM ---A- . (...) -- C:\windows\setuperr.log [0]

~ Scan Files in 05mn AMs

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)

O45 - LFCP:[MD5.B408CDECF7E3F7AC767C891A2B79FD48] - 11/26/2010 - 11:14:38 AM ---A- - C:\windows\Prefetch\TASKHOST.EXE-437C05A8.pf

O45 - LFCP:[MD5.02131D91F1CB503E2B2ACE47D718D777] - 11/26/2010 - 11:18:30 AM ---A- - C:\windows\Prefetch\AgGlUAD_S-1-5-21-2405251124-3916129693-1916960768-1000.db

O45 - LFCP:[MD5.26A310A35DA58F7C3BE6ECAABC8BC5EF] - 11/26/2010 - 11:18:31 AM ---A- - C:\windows\Prefetch\AgGlUAD_P_S-1-5-21-2405251124-3916129693-1916960768-1000.db

O45 - LFCP:[MD5.D8FF7DC601DDB4EDC2B13BF214F49455] - 11/26/2010 - 11:18:44 AM ---A- - C:\windows\Prefetch\SVCHOST.EXE-932440A7.pf

O45 - LFCP:[MD5.799C85BF51428835567DB8A44AF80C8F] - 11/26/2010 - 11:19:08 AM ---A- - C:\windows\Prefetch\WMIPRVSE.EXE-43972D0F.pf

O45 - LFCP:[MD5.FE3C29AEAEEF3637F824312409561342] - 11/26/2010 - 12:51:43 PM ---A- - C:\windows\Prefetch\AgCx_SC1.db.trx

O45 - LFCP:[MD5.F56D828C3D513826C3CBC27A01F8389D] - 11/26/2010 - 12:52:45 PM ---A- - C:\windows\Prefetch\AgCx_SC1.db

O45 - LFCP:[MD5.CB1BFCCD4F4CF68C8BC0FFF9A5351811] - 11/26/2010 - 7:19:04 AM ---A- - C:\windows\Prefetch\FIREFOX.EXE-E60C0AA7.pf

O45 - LFCP:[MD5.C15E5BD963DE6CAB10EF5223D3BD22AA] - 11/26/2010 - 7:28:12 AM ---A- - C:\windows\Prefetch\WERMGR.EXE-2A1BCBC7.pf

O45 - LFCP:[MD5.9877FCF1D74638EEA2C61689E1D5D30F] - 11/26/2010 - 8:06:11 PM ---A- - C:\windows\Prefetch\AZUREUS.EXE-E1F6BAFE.pf

O45 - LFCP:[MD5.C5919484E420E3254B8679525F6ADBBC] - 11/26/2010 - 8:22:20 AM ---A- - C:\windows\Prefetch\SEARCHFILTERHOST.EXE-AA7A1FDD.pf

O45 - LFCP:[MD5.63CE40C1B305D5405FDFD10D329DBF22] - 11/26/2010 - 8:22:20 AM ---A- - C:\windows\Prefetch\SEARCHPROTOCOLHOST.EXE-AFAD3EF9.pf

O45 - LFCP:[MD5.78802483A8D5DD330C97FE6B122231A4] - 11/26/2010 - 9:28:38 PM ---A- - C:\windows\Prefetch\I4JDEL0.EXE-5BE3860C.pf

O45 - LFCP:[MD5.8A3A2A2CC6A614AB6B7EA87027BF9B41] - 11/27/2010 - 11:19:27 AM ---A- - C:\windows\Prefetch\SPPSVC.EXE-CBE91656.pf

O45 - LFCP:[MD5.B8F6FDE0EF39667A66236BB859E67F8C] - 11/27/2010 - 7:14:06 AM ---A- - C:\windows\Prefetch\PfSvPerfStats.bin

O45 - LFCP:[MD5.014CE79410D6270520BD59BF8083DB84] - 11/27/2010 - 9:13:12 AM ---A- - C:\windows\Prefetch\NTOSBOOT-B00DFAAD.pf

O45 - LFCP:[MD5.BB4B7A8CB0EFBAA4CA1463A17BB55EE2] - 11/27/2010 - 9:55:29 PM ---A- - C:\windows\Prefetch\AgRobust.db

O45 - LFCP:[MD5.F2BCAA1288F2F3D712F532CEB8922957] - 11/27/2010 - 9:55:50 PM ---A- - C:\windows\Prefetch\AgGlGlobalHistory.db

O45 - LFCP:[MD5.44061EF7657D62D5AEE4F6DB86787414] - 11/27/2010 - 9:55:52 PM ---A- - C:\windows\Prefetch\AgGlFaultHistory.db

O45 - LFCP:[MD5.7B04C81A596905D9688F8604B1C31E1F] - 11/27/2010 - 9:55:54 PM ---A- - C:\windows\Prefetch\AgGlFgAppHistory.db

O45 - LFCP:[MD5.92F35A1A8BA179A30A1D49EF2C913A94] - 11/29/2010 - 11:28:18 AM ---A- - C:\windows\Prefetch\AgCx_SC2.db

O45 - LFCP:[MD5.3E8B575889D88DC5222925704917D767] - 12/18/2010 - 11:16:42 AM ---A- - C:\windows\Prefetch\AUDIODG.EXE-D0D776AC.pf

O45 - LFCP:[MD5.387BE9F0B2924A9CB9C8025AA2DD4D76] - 12/18/2010 - 11:19:25 AM ---A- - C:\windows\Prefetch\CONHOST.EXE-3218E401.pf

O45 - LFCP:[MD5.1CB0CC330F01F998F3ACA94C895F6E28] - 12/18/2010 - 8:12:57 AM ---A- - C:\windows\Prefetch\Layout.ini

O45 - LFCP:[MD5.4A15546E6F9C93CC337730B6BD96A843] - 12/19/2010 - 10:56:10 AM ---A- - C:\windows\Prefetch\TASKENG.EXE-5BAF290C.pf

O45 - LFCP:[MD5.7830E768E034F85A6A0FC08E7F610F95] - 12/19/2010 - 7:25:44 PM ---A- - C:\windows\Prefetch\APPLEMOBILEDEVICEHELPER.EXE-B651274A.pf

O45 - LFCP:[MD5.F70F8CA43B385B6C3136BF5E8D292CFF] - 12/19/2010 - 7:25:53 PM ---A- - C:\windows\Prefetch\DISTNOTED.EXE-6676BA54.pf

O45 - LFCP:[MD5.9C6434AA501FFE4307BF1CBBCC646E97] - 12/19/2010 - 8:25:21 PM ---A- - C:\windows\Prefetch\SYNCSERVER.EXE-6194D6AC.pf

O45 - LFCP:[MD5.D78575CF6345E8E3F080E3064D4BEFE0] - 12/19/2010 - 8:39:54 PM ---A- - C:\windows\Prefetch\APPLEMOBILEBACKUP.EXE-AB38C858.pf

O45 - LFCP:[MD5.F6BE9BE77240C1B7456297101F92B095] - 12/19/2010 - 9:23:47 AM ---A- - C:\windows\Prefetch\MDCRASHREPORTTOOL.EXE-AC69EFBC.pf

O45 - LFCP:[MD5.A5875B9CD60A16C60B4556DE995CC938] - 12/8/2010 - 7:23:40 PM ---A- - C:\windows\Prefetch\ITUNES.EXE-049DB451.pf

O45 - LFCP:[MD5.C3CD89417D8C04C096E0B6177669E3BA] - 12/8/2010 - 8:22:11 PM ---A- - C:\windows\Prefetch\WUDFHOST.EXE-81420B07.pf

O45 - LFCP:[MD5.C433B213A71214E85DF51AAE4162132F] - 2/26/2011 - 7:19:51 AM ---A- - C:\windows\Prefetch\WUAUCLT.EXE-830BCC14.pf

O45 - LFCP:[MD5.5A300C70BF40F31A0CEF343B3110AEC3] - 4/2/2011 - 10:56:03 AM ---A- - C:\windows\Prefetch\GOOGLEUPDATE.EXE-8973CEDD.pf

O45 - LFCP:[MD5.DD17D94A1E1266DF452124D92A3BBB7A] - 4/20/2011 - 11:18:15 AM ---A- - C:\windows\Prefetch\LOGONUI.EXE-1BEE4A84.pf

O45 - LFCP:[MD5.26382EDEFC441E3D992555DF1D406B12] - 5/10/2011 - 11:16:36 AM ---A- - C:\windows\Prefetch\PLUGIN-CONTAINER.EXE-1D5F6C6B.pf

O45 - LFCP:[MD5.1CDE2E55D6333FCCFD875F47AD3A2D21] - 6/12/2011 - 10:15:24 AM ---A- - C:\windows\Prefetch\TRUSTEDINSTALLER.EXE-031B6478.pf

O45 - LFCP:[MD5.94A94C2319295655697CE7CAE3E8356E] - 6/5/2011 - 8:23:31 AM ---A- - C:\windows\Prefetch\VSSVC.EXE-04D079CC.pf

O45 - LFCP:[MD5.4E176ECC244C9AF5BBAA3D08B009F2B9] - 6/5/2011 - 8:23:32 AM ---A- - C:\windows\Prefetch\SVCHOST.EXE-A244D5C6.pf

O45 - LFCP:[MD5.1E620F04CB944EC8ED53394B9D756AB5] - 8/22/2011 - 11:19:30 AM ---A- - C:\windows\Prefetch\WMPNSCFG.EXE-DF1DD51A.pf

O45 - LFCP:[MD5.9CE7B016F9ED135CBB43123955CCD89A] - 8/30/2011 - 7:19:54 AM ---A- - C:\windows\Prefetch\WMIADAP.EXE-369DF1CD.pf

O45 - LFCP:[MD5.BA318EC5E9AAEA30B8F31720432FDD93] - 8/6/2011 - 7:18:28 AM ---A- - C:\windows\Prefetch\GOOGLECRASHHANDLER.EXE-83A14721.pf

O45 - LFCP:[MD5.8A46C7776FCAD3F0662364F60E371483] - 9/2/2011 - 7:02:03 AM ---A- - C:\windows\Prefetch\MSIEXEC.EXE-B5AFA339.pf

O45 - LFCP:[MD5.1F0D07A68C4F76078B94692390A5AC1F] - 9/4/2011 - 11:19:06 AM ---A- - C:\windows\Prefetch\AVWSC.EXE-877F4F63.pf

O45 - LFCP:[MD5.DB695F901B0727FC383DE8C9BF337D53] - 9/5/2011 - 11:14:15 AM ---A- - C:\windows\Prefetch\RUNDLL32.EXE-DB842724.pf

O45 - LFCP:[MD5.EF13497E14F0CD5E5DC12A4743F8D232] - 9/5/2011 - 11:18:25 AM ---A- - C:\windows\Prefetch\TASKMGR.EXE-72398DC0.pf

O45 - LFCP:[MD5.608D1614002AEBD81E442DFACED6F1D2] - 9/5/2011 - 11:18:40 AM ---A- - C:\windows\Prefetch\WERFAULT.EXE-B7E27BE5.pf

O45 - LFCP:[MD5.D80871AEA4CDD9BC8449AC6F3560C00F] - 9/5/2011 - 11:19:14 AM ---A- - C:\windows\Prefetch\ZHPDIAG.EXE-9D0EE457.pf

O45 - LFCP:[MD5.880EF0D52CF98099ECC4B38F7CCB6CB9] - 9/5/2011 - 11:19:25 AM ---A- - C:\windows\Prefetch\CSCRIPT.EXE-E4C98DEB.pf

O45 - LFCP:[MD5.318F84412C9EFE9623CB8E06E630E843] - 9/5/2011 - 11:19:53 AM ---A- - C:\windows\Prefetch\PV.EXE-8E63E86A.pf

O45 - LFCP:[MD5.05B2BA7661446BB669BDC978C272A04F] - 9/5/2011 - 11:20:26 AM ---A- - C:\windows\Prefetch\CMD.EXE-89305D47.pf

O45 - LFCP:[MD5.19871C443F1753B26F1DDF999EE66AD9] - 9/5/2011 - 11:20:26 AM ---A- - C:\windows\Prefetch\SCHTASKS.EXE-2DE769BF.pf

O45 - LFCP:[MD5.2446C8F4CDE33FBFA78E521E060FEFC7] - 9/5/2011 - 9:00:00 AM ---A- - C:\windows\Prefetch\SDCLT.EXE-2D2C4DDD.pf

~ Scan Prefetcher in 01mn AMs

---\\ Contrôle du Safe Boot (CSB) (O49)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\windows\system32\Drivers\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\windows\system32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\windows\system32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\windows\system32\Drivers\volmgr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\windows\system32\Drivers\volmgrx.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\windows\system32\Drivers\ipnat.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\windows\system32\Drivers\nsiproxy.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\windows\system32\Drivers\rdpencdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\windows\system32\Drivers\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\windows\system32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\windows\system32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\windows\system32\Drivers\volmgr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\windows\system32\Drivers\volmgrx.sys

~ Scan CSB in 00mn AMs

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\windows\system32\iccvid.dll

O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

~ Scan Keys in 00mn AMs

---\\ ShareTools MSconfig StartupReg (O53)

O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe

O53 - SMSR:HKLM\...\startupreg\BCSSync [Key] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe

O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe

O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe

~ Scan SMSR Keys in 00mn AMs

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\windows\system32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\windows\system32\credssp.dll

~ Scan Keys in 00mn AMs

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

~ Scan Keys in 00mn AMs

---\\ Microsoft Windows Policies Explorer (O56)

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145

~ Scan Keys in 00mn AMs

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 6/10/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\windows\system32\drivers\adp94xx.sys [422976]

O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 7/14/2009 - 2:26:17 AM ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\windows\system32\drivers\adpahci.sys [297552]

O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 7/14/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\windows\system32\drivers\adpu320.sys [146512]

O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 7/14/2009 - 2:26:15 AM ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\windows\system32\drivers\aliide.sys [14400]

O58 - SDL:[MD5.2101A86C25C154F8314B24EF49D7FBC2] - 6/10/2009 - 2:26:15 AM ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\windows\system32\drivers\amdsata.sys [79952]

O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 6/10/2009 - 2:26:15 AM ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\windows\system32\drivers\amdsbs.sys [159312]

O58 - SDL:[MD5.B81C2B5616F6420A9941EA093A92B150] - 7/14/2009 - 2:26:15 AM ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\windows\system32\drivers\amdxata.sys [23616]

O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 7/14/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\windows\system32\drivers\arc.sys [76368]

O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 7/14/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\windows\system32\drivers\arcsas.sys [86608]

O58 - SDL:[MD5.561D6B76C045311691B870F6B3F19EAB] - 6/24/2010 - 3:31:18 PM ---A- . (...) -- C:\windows\system32\drivers\AsUpIO.sys [11520]

O58 - SDL:[MD5.B6B5566B24329432E0FD1E4ED15A683B] - 11/26/2010 - 12:38:28 PM ---A- . (...) -- C:\windows\system32\drivers\ASUSHWIO.SYS [6144]

O58 - SDL:[MD5.B01751CC563AECAC09BBE36AAA21FBEF] - 6/24/2010 - 5:31:50 PM ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\windows\system32\drivers\athr.sys [1221632]

O58 - SDL:[MD5.1E4114685DE1FFA9675E09C6A1FB3F4B] - 9/4/2011 - 11:22:40 AM ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\windows\system32\drivers\avgntflt.sys [66616]

O58 - SDL:[MD5.0F78D3DAE6DEDD99AE54C9491C62ADF2] - 9/4/2011 - 11:22:41 AM ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\windows\system32\drivers\avipbb.sys [138192]

O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 7/14/2009 - 11:02:49 PM ---A- . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gigabit Ethernet..) -- C:\windows\system32\drivers\b57nd60x.sys [229888]

O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 7/14/2009 - 11:53:28 PM ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\windows\system32\drivers\BrFiltLo.sys [13568]

O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 7/14/2009 - 11:53:28 PM ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\windows\system32\drivers\BrFiltUp.sys [5248]

O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 7/14/2009 - 1:57:25 AM ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\windows\system32\drivers\BrSerId.sys [272128]

O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 7/14/2009 - 11:53:32 PM ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\windows\system32\drivers\BrSerWdm.sys [62336]

O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 7/14/2009 - 11:53:33 PM ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\windows\system32\drivers\BrUsbMdm.sys [12160]

O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 7/14/2009 - 11:53:33 PM ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\windows\system32\drivers\BrUsbSer.sys [11904]

O58 - SDL:[MD5.92C5B845803F3662637EB691AC0B250F] - 5/14/2010 - 3:36:46 AM ---A- . (.Broadcom Corporation. - Widcomm Bluetooth USB Filter for Windows XP.) -- C:\windows\system32\drivers\btusbflt.sys [43944]

O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 6/10/2009 - 11:02:48 PM ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\windows\system32\drivers\bxvbdx.sys [430080]

O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 7/14/2009 - 2:26:21 AM ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\windows\system32\drivers\cmdide.sys [15952]

O58 - SDL:[MD5.5CBF20674BE8364FEBB6A13451A42F0A] - 3/3/2011 - 12:44:24 PM ---A- . (.Infowatch - Cryptographic Algorithm Lib Driver..) -- C:\windows\system32\drivers\CSCrySec.sys [88632]

O58 - SDL:[MD5.2C3F213EDDD231099FB779A45D7680E0] - 3/3/2011 - 12:44:24 PM ---A- . (.Infowatch - Virtual Volume Container Driver (wxp).) -- C:\windows\system32\drivers\CSVirtualDiskDrv.sys [39352]

O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 6/10/2009 - 2:20:28 AM ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\windows\system32\drivers\djsvs.sys [70720]

O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 6/10/2009 - 2:20:28 AM ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\windows\system32\drivers\elxstor.sys [453712]

O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 6/10/2009 - 11:02:48 PM ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\windows\system32\drivers\evbdx.sys [3100160]

O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 11/26/2010 - 1:17:00 PM ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\windows\system32\drivers\GEARAspiWDM.sys [26600]

O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 7/14/2009 - 11:54:14 PM ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\windows\system32\drivers\hcw85cir.sys [26624]

O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 7/14/2009 - 2:20:28 AM ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\windows\system32\drivers\HpSAMD.sys [67152]

O58 - SDL:[MD5.D483687EACE0C065EE772481A96E05F5] - 6/24/2010 - 2:43:16 AM ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\windows\system32\drivers\iaStor.sys [330264]

O58 - SDL:[MD5.934AF4D7C5F457B9F0743F4299B77B67] - 6/10/2009 - 2:20:36 AM ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\windows\system32\drivers\iaStorV.sys [332352]

O58 - SDL:[MD5.D0074897C6BC132F3980EA4654BF7FB9] - 6/22/2010 - 7:48:04 AM ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\windows\system32\drivers\igdkmd32.sys [4806144]

O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 7/14/2009 - 2:20:36 AM ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\windows\system32\drivers\iirsp.sys [41040]

O58 - SDL:[MD5.3EB803312987FF44265C87CB960DF6AB] - 4/13/2010 - 3:36:12 AM ---A- . (.Pas de propriétaire - Keyboard Filter Driver.) -- C:\windows\system32\drivers\kbfiltr.sys [13880]

O58 - SDL:[MD5.A158CEA8644B8A5C1EC0E9A81B70F65A] - 6/24/2010 - 3:39:17 AM ---A- . (.Atheros Communications, Inc. - Atheros L1c PCI-E Gigabit Ethernet Controller.) -- C:\windows\system32\drivers\L1C62x86.sys [51712]

O58 - SDL:[MD5.4477689E2D8AE6B78BA34C9AF4CC1ED1] - 8/17/2011 - 6:04:00 PM ---A- . (.LogMeIn, Inc. - LogMeIn Mirror Miniport Driver.) -- C:\windows\system32\drivers\lmimirr.sys [10144]

O58 - SDL:[MD5.3FAA563DDF853320F90259D455A01D79] - 8/17/2011 - 6:04:04 PM ---A- . (.LogMeIn, Inc. - LogMeIn Rfs Drivemap Driver.) -- C:\windows\system32\drivers\LMIRfsDriver.sys [47640]

O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\windows\system32\drivers\lsi_fc.sys [95824]

O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 7/14/2009 - 2:20:37 AM ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\windows\system32\drivers\lsi_sas.sys [89168]

O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\windows\system32\drivers\lsi_sas2.sys [54864]

O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\windows\system32\drivers\lsi_scsi.sys [96848]

O58 - SDL:[MD5.ECA00EED9AB95489007B0EF84C7149DE] - 9/4/2011 - 6:52:42 PM ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\windows\system32\drivers\mbam.sys [22712]

O58 - SDL:[MD5.B18225739ED9CAA83BA2DF966E9F43E8] - 9/4/2011 - 6:52:42 PM ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\windows\system32\drivers\mbamswissarmy.sys [41272]

O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 6/10/2009 - 2:20:36 AM ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\windows\system32\drivers\megasas.sys [30800]

O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\windows\system32\drivers\MegaSR.sys [235584]

O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 7/14/2009 - 2:20:44 AM ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\windows\system32\drivers\nfrd960.sys [44624]

O58 - SDL:[MD5.3F3D04B1D08D43C16EA7963954EC768D] - 7/14/2009 - 2:20:44 AM ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\windows\system32\drivers\nvraid.sys [117312]

O58 - SDL:[MD5.C99F251A5DE63C6F129CF71933ACED0F] - 6/10/2009 - 2:20:44 AM ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\windows\system32\drivers\nvstor.sys [142416]

O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 6/10/2009 - 2:19:04 AM ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\windows\system32\drivers\ql2300.sys [1383488]

O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 7/14/2009 - 2:19:04 AM ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\windows\system32\drivers\ql40xx.sys [106064]

O58 - SDL:[MD5.BF9866875EDF86AAE24DD8BD9418DEFF] - 11/26/2010 - 7:43:55 AM ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\windows\system32\drivers\RTKVHDA.sys [3084256]

O58 - SDL:[MD5.C1AE5D1F53285D79A0B73A62AF20734F] - 9/4/2011 - 3:53:13 PM ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\windows\system32\drivers\SBREDrv.sys [98392]

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 7/14/2009 - 9:50:20 PM ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\windows\system32\drivers\secdrv.sys [20480]

O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 6/10/2009 - 2:19:04 AM ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\windows\system32\drivers\sisraid2.sys [40016]

O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 7/14/2009 - 2:19:04 AM ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\windows\system32\drivers\sisraid4.sys [77888]

O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 9/4/2011 - 2:28:02 PM ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\windows\system32\drivers\ssmdrv.sys [28520]

O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 7/14/2009 - 2:19:04 AM ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\windows\system32\drivers\stexstor.sys [21072]

O58 - SDL:[MD5.BD8E7F87DE409A745A132A8812DE5A96] - 6/24/2010 - 3:37:48 AM ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\windows\system32\drivers\SynTP.sys [230448]

O58 - SDL:[MD5.83CAFCB53201BBAC04D822F32438E244] - 6/8/2011 - 7:06:08 AM ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\windows\system32\drivers\usbaapl.sys [42496]

O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 7/14/2009 - 2:19:10 AM ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\windows\system32\drivers\viaide.sys [16976]

O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 6/10/2009 - 2:19:11 AM ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\windows\system32\drivers\vsmraid.sys [141904]

O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 7/13/2009 - 10:40:41 PM ---A- . (...) -- C:\windows\system32\ANSI.SYS [9029]

O58 - SDL:[MD5.B01751CC563AECAC09BBE36AAA21FBEF] - 6/24/2010 - 5:31:50 PM ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\windows\system32\athr.sys [1221632]

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 7/13/2009 - 10:40:44 PM ---A- . (...) -- C:\windows\system32\country.sys [27097]

O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 7/13/2009 - 10:40:40 PM ---A- . (...) -- C:\windows\system32\HIMEM.SYS [4768]

O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 7/13/2009 - 10:40:43 PM ---A- . (...) -- C:\windows\system32\KEY01.SYS [42809]

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 7/13/2009 - 10:40:43 PM ---A- . (...) -- C:\windows\system32\KEYBOARD.SYS [42537]

O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 7/13/2009 - 10:40:23 PM ---A- . (...) -- C:\windows\system32\NTDOS.SYS [27866]

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 7/13/2009 - 10:40:31 PM ---A- . (...) -- C:\windows\system32\NTDOS404.SYS [29146]

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 7/13/2009 - 10:40:35 PM ---A- . (...) -- C:\windows\system32\NTDOS411.SYS [29370]

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 7/13/2009 - 10:40:39 PM ---A- . (...) -- C:\windows\system32\NTDOS412.SYS [29274]

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 7/13/2009 - 10:40:27 PM ---A- . (...) -- C:\windows\system32\NTDOS804.SYS [29146]

O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 7/13/2009 - 10:40:11 PM ---A- . (...) -- C:\windows\system32\NTIO.SYS [33952]

O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 7/13/2009 - 10:40:15 PM ---A- . (...) -- C:\windows\system32\NTIO404.SYS [34672]

O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 7/13/2009 - 10:40:17 PM ---A- . (...) -- C:\windows\system32\NTIO411.SYS [35776]

O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 7/13/2009 - 10:40:19 PM ---A- . (...) -- C:\windows\system32\NTIO412.SYS [35536]

O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 7/13/2009 - 10:40:13 PM ---A- . (...) -- C:\windows\system32\NTIO804.SYS [34672]

~ Scan Drivers in 07mn AMs

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)

O61 - LFC:Last File Created 11/26/2010 - 2:12:27 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents [5120]

O61 - LFC:Last File Created 11/26/2010 - 7:25:25 PM --HA- C:\Users\Thomas\Music\iTunes\sentinel [8]

O61 - LFC:Last File Created 11/26/2010 - 7:25:26 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Library Extras.itdb [12288]

O61 - LFC:Last File Created 11/26/2010 - 8:23:52 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\SyncServices\Local\admin.syncdb [36864]

O61 - LFC:Last File Created 11/27/2010 - 7:28:49 AM ---A- C:\Users\Thomas\AppData\Local\Windows Live\uxcore_msnmsgr_00.etl [8192]

O61 - LFC:Last File Created 11/27/2010 - 9:23:36 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Info.plist [91083]

O61 - LFC:Last File Created 2/27/2011 - 7:17:30 AM ---A- C:\Users\Thomas\AppData\Roaming\ASUS WebStorage\Logs\AWS-explorer.txt [33284]

O61 - LFC:Last File Created 2/28/2011 - 7:16:11 AM ---A- C:\Users\Thomas\AppData\Roaming\ASUS WebStorage\Logs\AWS-AsusWSDashBoard.txt [47094]

O61 - LFC:Last File Created 3/3/2011 - 2:28:45 PM ----- C:\Users\Thomas\AppData\Local\Windows Live\uxcore_iexplore_00.etl [4096]

O61 - LFC:Last File Created 3/5/2011 - 12:55:34 PM ---A- C:\Users\Thomas\AppData\Roaming\ASUS WebStorage\Logs\AWS-firefox.txt [3666]

O61 - LFC:Last File Created 6/14/2007 - 3:12:03 PM ---A- C:\Users\Thomas\Downloads\RegSeeker\RegSeeker\Languages\English.lng [5756]

O61 - LFC:Last File Created 6/14/2007 - 3:56:32 PM ---A- C:\Users\Thomas\Downloads\RegSeeker\RegSeeker\history.txt [56]

O61 - LFC:Last File Created 6/23/2011 - 12:17:23 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Flash Player\AssetCache\4ZHJ3RBF\9F67B1C289A5B5DB7B32844AF679E758541D101B.heu [149]

O61 - LFC:Last File Created 6/23/2011 - 12:17:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Flash Player\AssetCache\4ZHJ3RBF\76C30565F803F2587F156A8344E4091992D31B27.heu [149]

O61 - LFC:Last File Created 6/23/2011 - 12:17:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Flash Player\AssetCache\4ZHJ3RBF\8F903698240FE799F61EEDA8595181137B996156.heu [149]

O61 - LFC:Last File Created 6/23/2011 - 12:17:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Flash Player\AssetCache\4ZHJ3RBF\9A7DEE2B537712BEF484CBD9E4DDBF88C78F436C.heu [149]

O61 - LFC:Last File Created 6/23/2011 - 12:17:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Flash Player\AssetCache\4ZHJ3RBF\B63185FCA5D2BDBB568593F2BF232E87E5A20A7E.heu [149]

O61 - LFC:Last File Created 6/23/2011 - 12:17:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Flash Player\AssetCache\4ZHJ3RBF\D1680A46DD686B3B0CC9EC01D8C584666A78E145.heu [149]

O61 - LFC:Last File Created 6/23/2011 - 12:17:25 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\Flash Player\AssetCache\4ZHJ3RBF\49280E749D7318EA369BC7E61369C34AD2D22859.heu [149]

O61 - LFC:Last File Created 9/2/2011 - 10:00:27 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Mobile Applications\Demolition3D.ipa [89191170]

O61 - LFC:Last File Created 9/2/2011 - 10:01:11 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Mobile Applications\EmakiDefense.ipa [168514335]

O61 - LFC:Last File Created 9/2/2011 - 10:01:57 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Mobile Applications\Geared.ipa [17282666]

O61 - LFC:Last File Created 9/2/2011 - 10:02:14 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Mobile Applications\Parking Expert.ipa [15416109]

O61 - LFC:Last File Created 9/2/2011 - 10:02:26 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Mobile Applications\Sprinkle.ipa [26408794]

O61 - LFC:Last File Created 9/2/2011 - 2:12:50 AM ---A- C:\Users\Thomas\Downloads\SafariQuickTimeSetup.exe [57175408]

O61 - LFC:Last File Created 9/2/2011 - 2:16:17 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Safari\PubSub\Database\Database.sqlite3 [37888]

O61 - LFC:Last File Created 9/2/2011 - 2:16:20 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Safari\Configurations.plist.signed [19555]

O61 - LFC:Last File Created 9/2/2011 - 2:16:23 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Safari\PubSub\Clients.plist [739]

O61 - LFC:Last File Created 9/2/2011 - 2:16:31 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Safari\TopSites.plist [820]

O61 - LFC:Last File Created 9/2/2011 - 2:16:45 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Preferences\keychain.plist [56]

O61 - LFC:Last File Created 9/2/2011 - 2:20:31 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Preferences\PubSub.plist [70]

O61 - LFC:Last File Created 9/2/2011 - 2:21:32 AM ---A- C:\Users\Thomas\AppData\Local\Apple Computer\Safari\SafeBrowsing.db [10717184]

O61 - LFC:Last File Created 9/2/2011 - 2:29:13 PM ----- C:\Users\Thomas\AppData\Local\Windows Live\uxcore_iexplore_01.etl [4096]

O61 - LFC:Last File Created 9/2/2011 - 2:29:22 AM ---A- C:\Users\Thomas\AppData\Local\Apple Computer\Safari\WebpageIcons.db [38912]

O61 - LFC:Last File Created 9/2/2011 - 2:29:22 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Safari\Bookmarks.plist [9772]

O61 - LFC:Last File Created 9/2/2011 - 2:29:22 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Safari\ReadingList.plist [236]

O61 - LFC:Last File Created 9/2/2011 - 2:29:35 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Preferences\com.apple.Safari.plist [1946]

O61 - LFC:Last File Created 9/2/2011 - 2:29:36 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\WebKit2WebProcess\Cookies\Cookies.binarycookies [16]

O61 - LFC:Last File Created 9/2/2011 - 2:29:37 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Safari\Cookies\Cookies.binarycookies [4790]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\127d73afb1f92e0ce4982b585f05c47df93a7f4e [739]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\22f95b9141084f09f686cf0dca8d1ca0d79cd763 [15319]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\36eb88809db6179b2fda77099cefce12792f0889 [578]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\3cfb2dcaa08df221f3cdee22dcf367db211b04b1 [9216]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\5586f65df8290024985d70e7c7f0338a3c4270d2 [252]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\56185fb14e4d8c1ae6631320c6cea96c333b1ce2 [13750]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\82462df12b658accbfcb6391287cf47af5c4c991 [10821]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\8c74be92ceb2ba5fd9d16142de4bf0d5fffbaf4c [6363]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\91f710b0dc9c51998f921dad177d2fcee289fa5e [247947]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\95e5807abfa11c51f96ab513ff9ace6dae2fcc40 [12814]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\990b2f152e69fde2c84e94ee84614a32767d68fb [13885]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\a95e6a88d4fcdda41056615a4fad1987dadf4114 [18867]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\d3ea4e6a0b562be895894fcea17d0b1aa12df880 [10016]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\f793aec38dcb09b5456c42c9e7663a7bc9d36d16 [484]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\f827e51cd0f7b2e2c950b9b4352919156ee0196a [315]

O61 - LFC:Last File Created 9/2/2011 - 6:25:29 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\fce603f2400354fae7607fbbf0ea46407882e3d5 [676]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\016f6fd721a1cd5fe3ecb1324c2367f3e3805a96 [2]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\02ed246e4b56f7c24e808728c91eb931a6342225 [15648]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\180b86230aa9771cc9824349122bad65df1afff0 [2612]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1b3c4153cc66979f46b9211d442b539ee6cdde1e [10662]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1de8899e93739d96647ee08e3de899a94c0e6b4f [14950]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1e6da3977cd11a1b8ad17844e81048f69752819a [12936]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\237b405da7545aab6e54c6ecbc596bcc4c8a6087 [18926]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\26dce6c7abc1b83e4157cb0fa257ea1c93dc9f36 [505]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\2b2b0084a1bc3a5ac8c27afdf14afb42c61a19ca [28672]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\2be5c6ca80002c2dfed22595ad659df2b9a0a959 [86]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\395afc940756c1782fff426e5285c69059df90cd [8295]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\405cc7e17af056f8bffddf1cb7c0394124a2d2c1 [18307]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\46216da375194f77c39fcc4d3ab3c261c2cd5d3a [1495]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\49c24fb9614f1bfff6ae593441347b9e3d8a197a [614]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\56fe1a2c271499322ebc2345e60501daa207c404 [18111]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\6fe1e0793ece4a22ca81a5f8dadb2cad673c4108 [531]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\753d0ff1da4d5ebc9a699261706831d94ab7f3fc [11953]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9281049ff1d27f1129c0bd17a95c863350e6f5a2 [7264]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9881ee0679a5eb011a32eb1ac86e0bbca24d63b1 [666]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\a82da6a39ee36801fa1899f3c950f5a6380d523b [3874]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\aef4dd875f6369aaf5cb1266099b8a726ea8b397 [643]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\c8b6abd5e191b7d4646a2682cf7c3194c5b8480c [20480]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\d8628f6a2f82649bc4f01dcb68d983eb7dd1375a [9324]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\e275e79b249f83b26e57303bb7d2d6d7d8741b6c [586]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\e2bdecf3d4f06d69125abc489868db878084612d [19522]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\e695e55a8313c8b59135e12a8661992ad670a6bb [549]

O61 - LFC:Last File Created 9/2/2011 - 6:25:30 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\e8e84fda4b75c2a92f4ed7ed4c5fed1cea654ab6 [1463]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\0be0423d98547800bcc0cd0b13b3863726e36dec [1096]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\15339ab241f5e5dfc35212d79147a49c6638b4b1 [252]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1cfb536409535b97c5d851be5c33e4a3cd9d3588 [17011]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1f6914cbf7d57d4107a760c7e8c274ad8368563d [560]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\24b1f99d37ce8ab2ab291a03c176ad7cf2f33445 [6940]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\29646549b6b0c400866c0d093d8c0fc36045330e [10745]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\2ba7761428c39f478472037906c000183ada3400 [23678]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\2fdcd655b0ad22cb9c4caf388f44fe6185f9556c [70]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\31bb7ba8914766d4ba40d6dfb6113c8b614be442 [249856]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\388c88370dffc559903461d94801c1032076a123 [662]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\3ea0280c7d1bd352397fc658b2328a7f3b124f3b [38906]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\41790f498655c44b429f9f127e9e67d5a346bf05 [147559]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\43c035a3474bef59b695f95ccc53b7cb5fdc300e [17125]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\5ad24b9a0bdebad5c128e7820d0b648b983f9a13 [17848]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\6382fffffcd71cbb268fe29f57ffe62fdcce70ee [683]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\6609a7acb7dd7da0933f361935739979a5b67a18 [593]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\68a003ecb5ad39e3665143d8b51248539685885f [12754]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\692b76d1a33ef42dd80e4204abbfe1308009a4b5 [243]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\6f9feba6ce77e7cd1b5fabd4a91742cb1cd9c876 [635]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\7354d391d6afddc09cc9fd7c1196aec38ba29e7c [3663]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\78ae17e828dc7c7232e6ee7c70b5f26477bc12fb [248]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\8ef50b34085bcc0d233b4c0657ee68f90e573c32 [670]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9e167fd509df52252d076b7496795749ea08ddd0 [11138]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\a1dd344caeba80d5eebc46c5cef7f137816ddd7a [6764]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\acea63d6fd3e442148da7dd978a37260e13c05c7 [5153]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\b3b506df58b11afbf8ef2522832582b68e834a9b [9025]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\b751ebbb1b192b87185aa90ee8567d846be519bc [10560477]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\bc00c89f6a4934b378850f81bc285e5a9ba707c5 [163840]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\bef6bb8f96965b737d0a5d21c37cba55d0e29696 [613]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\da0fa517f4181f73452944e4eb608c042a9b5dcc [10953]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\dc3f87fdad9b94910ad8438f1156d47a7d9f8158 [630]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\dd248acecadab73501087ae3102dfa58b5c5735b [20223]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\e56576f4696310ad7961aa4597c32b8b2814ff46 [2834]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\e5c45a19f89ea280f7593ad1889e2a1dd794a26c [12770]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\eacfb1cca596244f2ce6165ea59cfed6c86e5b39 [1267]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\f35267e2584d378b8006d7b930ce4e28530e59e6 [617]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\f7cdce50d71e4c7612815774dc28ad562b43e7c8 [4477]

O61 - LFC:Last File Created 9/2/2011 - 6:25:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\fe6b24ee437e267cb44728f0174f9b212d27cce4 [635]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\0f9f2b1f2a528d85b9c81f8cf84e21f4e5204981 [689]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\10e3046d0ca5954f2a13beef28faa8ac1673c8cd [2178]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1224e65c43af668e07249c39f5af79b4f13bb784 [252]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1d6740792a2b845f4c1e6220c43906d7f0afe8ab [8707]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\3b3b9fee0e0cba039682c957db3c47d4cd433e86 [628]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\451e2e01f7e588f58465122629a67ba0a27cfb7c [564]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\61d80edcba2b02ac5c50d266a4d390cd4e4962f8 [610]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\75890a00ba41bea4209b0fd85dcf249351de9e89 [20268]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\79985b512836fa59e26e79082567a03f27b4c88e [600]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\7ea83530d83ed8743ebfb0ce810d12d77c880943 [24698]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\82282dbc5c713fded35cceedf72842f3d29fe315 [6543]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\8ae075b204eb112212a6a82037afda43a20bfa32 [2427]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\8d95447156e017e712b2572ccc76c1864be83bb6 [526]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9598ce4a8f7268442ec530991d4283276f47d70f [561]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9653bef5e16152691c1a108eed6613eb13e5fb36 [558]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9adf6f7f293e28dc9577f54cc2578f2afca29351 [177849]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9f2140d8e87b45a9bb5dfc813fd2299c02851e6b [4603904]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\a8f4f57aa4b650d5e6acf53ee807e78d0f63c474 [14407]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\aa5615d6843d1180b9029f9123d57d37b6d52902 [18124]

O61 - LFC:Last File Created 9/2/2011 - 6:25:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\bfda4f2420c5d76fe452d6b2c64589afac01464e [2776]

O61 - LFC:Last File Created 9/2/2011 - 6:25:35 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\BFM _ Chronique de Marc Fiorentino\01 BFM Business _ Chronique de Marc 2.mp3 [2598052]

O61 - LFC:Last File Created 9/2/2011 - 6:25:42 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\3D Petanque_2011-09-02-102753_Thomas.crash [19654]

O61 - LFC:Last File Created 9/2/2011 - 6:25:42 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\3D Petanque_2011-09-02-102753_Thomas.plist [21189]

O61 - LFC:Last File Created 9/2/2011 - 6:25:43 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\AUM_2011-09-02-102750_Thomas.crash [23400]

O61 - LFC:Last File Created 9/2/2011 - 6:25:43 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\AUM_2011-09-02-102750_Thomas.plist [25039]

O61 - LFC:Last File Created 9/2/2011 - 6:25:43 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\AUM_2011-09-02-150802_Thomas.crash [23051]

O61 - LFC:Last File Created 9/2/2011 - 6:25:43 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\AUM_2011-09-02-150802_Thomas.plist [24690]

O61 - LFC:Last File Created 9/2/2011 - 6:25:43 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Baseband\log-bb-2011-09-01-stats.plist [1357]

O61 - LFC:Last File Created 9/2/2011 - 6:25:43 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-035755_Thomas.crash [26023]

O61 - LFC:Last File Created 9/2/2011 - 6:25:43 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-035755_Thomas.plist [27732]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-133514_Thomas.crash [25762]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-133514_Thomas.plist [27471]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-160213_Thomas.crash [25214]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-160213_Thomas.plist [26893]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\GizmodoFR_2011-09-02-033711_Thomas.crash [25054]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\GizmodoFR_2011-09-02-033711_Thomas.plist [26789]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Installous-2011-09-02-102751.crash [95454]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Installous-2011-09-02-102751.plist [99708]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-105917_Thomas.crash [27146]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-105917_Thomas.plist [28851]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-133509_Thomas.crash [20419]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-133509_Thomas.plist [21944]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-145953_Thomas.crash [23461]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-145953_Thomas.plist [25010]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-150804_Thomas.crash [20925]

O61 - LFC:Last File Created 9/2/2011 - 6:25:44 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-150804_Thomas.plist [22480]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-155626_Thomas.crash [21870]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-155626_Thomas.plist [23407]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-160215_Thomas.crash [20925]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-160215_Thomas.plist [22480]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-171706_Thomas.crash [21480]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-171706_Thomas.plist [22999]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-171835_Thomas.crash [20211]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-171835_Thomas.plist [21736]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\MegaStuntMayhemPro_2011-09-02-033707_Thomas.crash [31208]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\MegaStuntMayhemPro_2011-09-02-033707_Thomas.plist [33063]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\MeteoFrance_2011-09-02-155623_Thomas.crash [19297]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\MeteoFrance_2011-09-02-155623_Thomas.plist [20778]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Notebooks_2011-09-02-115147_Thomas.crash [22760]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Notebooks_2011-09-02-115147_Thomas.plist [24441]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Preferences-2011-09-02-171833.crash [89459]

O61 - LFC:Last File Created 9/2/2011 - 6:25:45 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Preferences-2011-09-02-171833.plist [93641]

O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Quotify_2011-09-02-033710_Thomas.crash [24058]

O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Quotify_2011-09-02-033710_Thomas.plist [25747]

O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\SFR WiFi_2011-09-02-033713_Thomas.crash [21525]

O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\SFR WiFi_2011-09-02-033713_Thomas.plist [23090]

O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\VDM_2011-09-02-151641_Thomas.crash [25023]

O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\VDM_2011-09-02-151641_Thomas.plist [26746]

O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\iPenpal_2011-09-02-171838_Thomas.crash [22766]

O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\iPenpal_2011-09-02-171838_Thomas.plist [24467]

O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\ifonfr_2011-09-02-151638_Thomas.crash [26748]

O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\ifonfr_2011-09-02-151638_Thomas.plist [28471]

O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\mBoxMail_2011-09-02-033714_Thomas.crash [22964]

O61 - LFC:Last File Created 9/2/2011 - 6:25:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\mBoxMail_2011-09-02-033714_Thomas.plist [24607]

O61 - LFC:Last File Created 9/2/2011 - 6:25:47 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\mBoxMail_2011-09-02-150801_Thomas.crash [23473]

O61 - LFC:Last File Created 9/2/2011 - 6:25:47 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\mBoxMail_2011-09-02-150801_Thomas.plist [25080]

O61 - LFC:Last File Created 9/2/2011 - 6:25:47 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\newsrepublic_2011-09-02-133512_Thomas.crash [23835]

O61 - LFC:Last File Created 9/2/2011 - 6:25:47 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\newsrepublic_2011-09-02-133512_Thomas.plist [25540]

O61 - LFC:Last File Created 9/2/2011 - 6:25:47 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\newsrepublic_2011-09-02-163618_Thomas.crash [24704]

O61 - LFC:Last File Created 9/2/2011 - 6:25:47 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\newsrepublic_2011-09-02-163618_Thomas.plist [26427]

O61 - LFC:Last File Created 9/2/2011 - 6:26:00 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Europe1 - Nicolas Canteloup - Revue de p\Vivement le calendrier d'Europe 1 !.mp3 [4822405]

O61 - LFC:Last File Created 9/2/2011 - 6:26:03 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Europe1 - Télédélire\Masterchef, le jeu pour dépressifs.mp3 [3301897]

O61 - LFC:Last File Created 9/2/2011 - 6:26:12 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Europe1 - Jérôme Commandeur\_Vas y Tristane, sois forte !_.mp3 [3161849]

O61 - LFC:Last File Created 9/2/2011 - 6:26:17 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Europe1 - Willy Rovelli\Francis Huster, Jeune & Joli !.mp3 [3620671]

O61 - LFC:Last File Created 9/2/2011 - 6:26:23 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Le Zappeur de RTL\Le Meilleur de la Matinale du 2 Sept.mp3 [1860887]

O61 - LFC:Last File Created 9/2/2011 - 6:26:25 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Mobile Applications\Meetic.ipa [5794217]

O61 - LFC:Last File Created 9/2/2011 - 6:26:26 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\09\14\02\79E8A6907A433F4E-2A00768C952072E9.itc2 [289013]

O61 - LFC:Last File Created 9/2/2011 - 6:26:26 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\15\12\04\79E8A6907A433F4E-5BDEB8739B68C4CF.itc2 [270404]

O61 - LFC:Last File Created 9/2/2011 - 6:26:29 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\00\15\15\79E8A6907A433F4E-1901035010445FF0.itc2 [291728]

O61 - LFC:Last File Created 9/2/2011 - 6:26:30 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\14\02\10\79E8A6907A433F4E-766E47BF753ADA2E.itc2 [315534]

O61 - LFC:Last File Created 9/2/2011 - 6:26:33 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\14\04\07\79E8A6907A433F4E-26CAD0E81F76474E.itc2 [235168]

O61 - LFC:Last File Created 9/2/2011 - 6:26:34 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\07\04\05\79E8A6907A433F4E-100AE5DFE6A90547.itc2 [112319]

O61 - LFC:Last File Created 9/2/2011 - 6:26:37 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\05\04\05\79E8A6907A433F4E-79BBA950262EE545.itc2 [59702]

O61 - LFC:Last File Created 9/2/2011 - 6:26:38 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\09\03\03\79E8A6907A433F4E-F863449D5A8A0339.itc2 [119988]

O61 - LFC:Last File Created 9/2/2011 - 6:26:38 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\12\09\08\79E8A6907A433F4E-2AE49B94AA29689C.itc2 [298011]

O61 - LFC:Last File Created 9/2/2011 - 6:26:41 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\15\07\06\79E8A6907A433F4E-E29547F87758367F.itc2 [251740]

O61 - LFC:Last File Created 9/2/2011 - 6:27:36 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\06\02\03\79E8A6907A433F4E-90AD3BAC43D08326.itc2 [525277]

O61 - LFC:Last File Created 9/2/2011 - 6:27:37 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\07\08\01\79E8A6907A433F4E-753855E1D391B187.itc2 [501206]

O61 - LFC:Last File Created 9/2/2011 - 6:27:38 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\03\04\15\79E8A6907A433F4E-B3D921FB9628CF43.itc2 [291577]

O61 - LFC:Last File Created 9/2/2011 - 6:28:07 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\03\13\13\79E8A6907A433F4E-EBBAF308BE1B6DD3.itc2 [258780]

O61 - LFC:Last File Created 9/2/2011 - 6:28:08 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\14\06\08\79E8A6907A433F4E-FD1E765A5E55D86E.itc2 [408084]

O61 - LFC:Last File Created 9/2/2011 - 6:28:11 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\05\04\02\79E8A6907A433F4E-5E307347EE07A245.itc2 [562579]

O61 - LFC:Last File Created 9/2/2011 - 6:28:23 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Best of YouTube (iPod video)\606. US Debt Crisis Explained - Best.mp4 [49491349]

O61 - LFC:Last File Created 9/2/2011 - 6:28:24 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Laurent Gerra\Laurent Gerra décortique l'actu 4.mp3 [8590652]

O61 - LFC:Last File Created 9/2/2011 - 6:28:32 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\RMC _ Le parti pris d'Hervé Gattegno\01 RMC _ 02_09 - Le parti pris d'Her.mp3 [2408377]

O61 - LFC:Last File Created 9/2/2011 - 6:28:35 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\09\00\06\79E8A6907A433F4E-BF7B8EB61BEAD609.itc2 [240679]

O61 - LFC:Last File Created 9/2/2011 - 6:28:37 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Z comme Zemmour\Eric Zemmour _ _Français, vous avez.mp3 [2900150]

O61 - LFC:Last File Created 9/2/2011 - 6:28:38 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\On refait le monde\On refait le monde du 01 sept. 2011.mp3 [40495269]

O61 - LFC:Last File Created 9/2/2011 - 6:28:49 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\13\14\05\79E8A6907A433F4E-465D2D3DF70BD5ED.itc2 [243033]

O61 - LFC:Last File Created 9/2/2011 - 6:29:01 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\07\08\12\79E8A6907A433F4E-44944EB6F976DC87.itc2 [415884]

O61 - LFC:Last File Created 9/2/2011 - 6:29:01 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\C'est sur le net\_C'est sur le Net_ du 2 septembre 20.mp3 [2747085]

O61 - LFC:Last File Created 9/2/2011 - 6:29:02 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\04\13\00\79E8A6907A433F4E-AAA5BE9D5E7980D4.itc2 [310619]

O61 - LFC:Last File Created 9/2/2011 - 6:29:03 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\15\09\08\79E8A6907A433F4E-C37D73999308889F.itc2 [292679]

O61 - LFC:Last File Created 9/2/2011 - 6:29:21 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\RSR - La vie est belle - Couleur 3\La vie est belle - 02.09.2011.mp3 [2688450]

O61 - LFC:Last File Created 9/2/2011 - 6:29:27 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Le débat économique\Le débat économique 02.09.2011.mp3 [8130688]

O61 - LFC:Last File Created 9/2/2011 - 6:29:34 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\02\00\04\79E8A6907A433F4E-0025A0D289E1B402.itc2 [69151]

O61 - LFC:Last File Created 9/2/2011 - 6:29:34 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\La marque du Mailhot\_La marque du Mailhot_ _ _Martine Au.mp3 [2360930]

O61 - LFC:Last File Created 9/2/2011 - 6:29:35 PM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\14\07\00\79E8A6907A433F4E-DA0B38A6B8E0007E.itc2 [409720]

O61 - LFC:Last File Created 9/2/2011 - 6:29:56 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Le Zapping du Web\Le Zapping du Web - Vendredi 02 sept.mov [23799264]

O61 - LFC:Last File Created 9/2/2011 - 8:16:03 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\TéléZapping\L'UMP en campus pour effacer les div.mp4 [9260677]

O61 - LFC:Last File Created 9/2/2011 - 8:17:07 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\On refait le monde\On refait le monde du 02 sept. 2011.mp3 [33211113]

O61 - LFC:Last File Created 9/2/2011 - 9:59:03 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\4f00eb4381ac611b6f91e339522c05642643276f [3582]

O61 - LFC:Last File Created 9/2/2011 - 9:59:03 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\58c3f780fbaff2072cda4abd0cb64adc707c444b [243]

O61 - LFC:Last File Created 9/2/2011 - 9:59:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\58712d199dca0217d87052ba7acdb8e34425f12f [305152]

O61 - LFC:Last File Created 9/2/2011 - 9:59:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\75fd110140a1ffcbf6c7d4abb77f7cb1b77e6add [73728]

O61 - LFC:Last File Created 9/2/2011 - 9:59:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\76fb3c685d422334fd25d9777d64db74af7cb25a [370]

O61 - LFC:Last File Created 9/2/2011 - 9:59:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\962ce100833b35fcd52e5a666bef1303db065255 [728]

O61 - LFC:Last File Created 9/2/2011 - 9:59:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\c1922c89e9ed40ad27766ca3ea9c6fa57678250c [138]

O61 - LFC:Last File Created 9/2/2011 - 9:59:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\d71f0604b0319e26f9f8be3b9b6dacc7ae12229b [252]

O61 - LFC:Last File Created 9/2/2011 - 9:59:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\e7532f808c1e24e4bf0b06816ad43b43b7d79f50 [290]

O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\229240e2befff633b59b2c4dbaf63439fb136028 [594]

O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\588dad6d704ed60e6b4ed5c7a6bf49ad0655a439 [1388]

O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\59445c4fae86445d6326f08d3c3bcf7b60ac54d3 [4142]

O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\6d1d5a56e6c02bba239deae88810eb6555107806 [3096576]

O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9fb1df4196ebb6770d08da63e37ef4d1886d77ad [168]

O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\a690d7769cce8904ca2b67320b107c8fe5f79412 [5157]

O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\eccfa5c590ca6a62715bfcac033d37fdb1f47a1a [5815]

O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\ef6055126fd8a8c3c0745678e33ab8be0952b253 [6728]

O61 - LFC:Last File Created 9/2/2011 - 9:59:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\fc9bd1975492e62e893a5e955de357b3133a0ac2 [2416]

O61 - LFC:Last File Created 9/2/2011 - 9:59:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\1df72c970f51af8b3e41c45c16c901a9b41fd705 [0]

O61 - LFC:Last File Created 9/2/2011 - 9:59:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\2816a0ece61238f85cd42e2720b6f322e906d2f6 [1292]

O61 - LFC:Last File Created 9/2/2011 - 9:59:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\384eb9e62ba50d7f3a21d9224123db62879ef423 [5388]

O61 - LFC:Last File Created 9/2/2011 - 9:59:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\44a1b3422d9d502b8a4c3ad40eaccff8fada0116 [24576]

O61 - LFC:Last File Created 9/2/2011 - 9:59:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\74d09804aa188dcff04c780977163f932ccc812b [1729]

O61 - LFC:Last File Created 9/2/2011 - 9:59:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\dd6a7840dfa3e04e67f0160518315e9ade25501b [135]

O61 - LFC:Last File Created 9/2/2011 - 9:59:12 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\cd7d8815f851b45f62dea9633d212966ecbc096e [81920]

O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-221753_Thomas.crash [25315]

O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Facebook_2011-09-02-221753_Thomas.plist [27024]

O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Installous-2011-09-02-221732.crash [96742]

O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Installous-2011-09-02-221732.plist [100984]

O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-202158_Thomas.crash [22307]

O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-202158_Thomas.plist [23862]

O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-221734_Thomas.crash [21636]

O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-02-221734_Thomas.plist [23215]

O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Parking Expert_2011-09-02-224358_Thomas.crash [20380]

O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Parking Expert_2011-09-02-224358_Thomas.plist [21975]

O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\dm3diphone_2011-09-02-224409_Thomas.crash [27947]

O61 - LFC:Last File Created 9/2/2011 - 9:59:22 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\dm3diphone_2011-09-02-224409_Thomas.plist [29720]

O61 - LFC:Last File Created 9/2/2011 - 9:59:23 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\mBoxMail_2011-09-02-221736_Thomas.crash [22203]

O61 - LFC:Last File Created 9/2/2011 - 9:59:23 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\mBoxMail_2011-09-02-221736_Thomas.plist [23804]

O61 - LFC:Last File Created 9/2/2011 - 9:59:23 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\sid_2011-09-02-221746_Thomas.crash [22969]

O61 - LFC:Last File Created 9/2/2011 - 9:59:23 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\sid_2011-09-02-221746_Thomas.plist [24542]

O61 - LFC:Last File Created 9/2/2011 - 9:59:58 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Mobile Applications\Defense Craft.ipa [114443089]

O61 - LFC:Last File Created 9/3/2011 - 10:35:58 PM ---A- C:\Users\All Users\hL04903JkBpG04903\hL04903JkBpG04903 [208]

O61 - LFC:Last File Created 9/3/2011 - 10:55:10 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Laurent Gerra\Best Of Laurent Gerra _ La saga DSK.mp3 [6544501]

O61 - LFC:Last File Created 9/3/2011 - 2:00:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND [www.play-the.net].torrent [28193]

O61 - LFC:Last File Created 9/3/2011 - 2:11:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Hard-Fi_-_Killer_Sounds-2011-MOD[www.torrent411.com].torrent [13877]

O61 - LFC:Last File Created 9/3/2011 - 2:22:43 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\00_hard-fi_-_killer_sounds-2011-scan.jpg [1043194]

O61 - LFC:Last File Created 9/3/2011 - 2:22:43 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\00_hard-fi_-_killer_sounds-2011.m3u [313]

O61 - LFC:Last File Created 9/3/2011 - 2:22:43 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\00_hard-fi_-_killer_sounds-2011.sfv [423]

O61 - LFC:Last File Created 9/3/2011 - 2:22:53 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\07_hard-fi_-_stay_alive.mp3 [7535579]

O61 - LFC:Last File Created 9/3/2011 - 2:22:54 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\06_hard-fi_-_stop.mp3 [7326059]

O61 - LFC:Last File Created 9/3/2011 - 2:22:59 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\02_hard-fi_-_fire_in_the_house.mp3 [8051077]

O61 - LFC:Last File Created 9/3/2011 - 2:23:00 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\04_hard-fi_-_bring_it_on.mp3 [7619185]

O61 - LFC:Last File Created 9/3/2011 - 2:23:01 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\09_hard-fi_-_love_song.mp3 [6438224]

O61 - LFC:Last File Created 9/3/2011 - 2:23:01 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\10_hard-fi_-_sweat.mp3 [6245696]

O61 - LFC:Last File Created 9/3/2011 - 2:23:01 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\11_hard-fi_-_killer_sounds.mp3 [6729717]

O61 - LFC:Last File Created 9/3/2011 - 2:23:03 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\01_hard-fi_-_good_for_nothing.mp3 [7968488]

O61 - LFC:Last File Created 9/3/2011 - 2:23:04 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\05_hard-fi_-_feels_good.mp3 [7977383]

O61 - LFC:Last File Created 9/3/2011 - 2:23:04 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\08_hard-fi_-_excitement.mp3 [6895464]

O61 - LFC:Last File Created 9/3/2011 - 2:23:05 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Hard-Fi_-_Killer_Sounds-2011-MOD\03_hard-fi_-_give_it_up.mp3 [9206685]

O61 - LFC:Last File Created 9/3/2011 - 2:24:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Adobe\plugs\KB18748683 [208]

O61 - LFC:Last File Created 9/3/2011 - 2:24:10 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\EF1026A6B2C08D2296085B96AF37353EEDEF8DD9.dat [15767]

O61 - LFC:Last File Created 9/3/2011 - 2:28:16 PM RS--- C:\Users\All Users\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.dat [98248]

O61 - LFC:Last File Created 9/3/2011 - 2:29:15 PM ----- C:\Users\Thomas\AppData\Local\Windows Live\uxcore_iexplore_02.etl [4096]

O61 - LFC:Last File Created 9/3/2011 - 2:29:50 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E02.VOSTFR.DVDRIP.XviD-MiND.avi [368003072]

O61 - LFC:Last File Created 9/3/2011 - 2:30:38 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\E1DDDDEB54A867B2222F3F3DD6015BB279EBC02A.dat [34074]

O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E01.VOSTFR.DVDRIP.XviD-MiND.avi [578791424]

O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E03.VOSTFR.DVDRIP.XviD-MiND.avi [367998976]

O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E04.VOSTFR.DVDRIP.XviD-MiND.avi [368035840]

O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E05.VOSTFR.DVDRIP.XviD-MiND.avi [368035840]

O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E06.VOSTFR.DVDRIP.XviD-MiND.avi [368035840]

O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E07.VOSTFR.DVDRIP.XviD-MiND.avi [368039936]

O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E08.VOSTFR.DVDRIP.XviD-MiND.avi [577742848]

O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E09.VOSTFR.DVDRIP.XviD-MiND.avi [367988736]

O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E10.VOSTFR.DVDRIP.XviD-MiND.avi [368033792]

O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E11.VOSTFR.DVDRIP.XviD-MiND.avi [369070080]

O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E12.VOSTFR.DVDRIP.XviD-MiND.avi [368015360]

O61 - LFC:Last File Created 9/3/2011 - 2:33:33 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND\Sons.Of.Anarchy.S03E13.FINAL.VOSTFR.DVDRIP.XviD-MiND.avi [577695744]

O61 - LFC:Last File Created 9/3/2011 - 9:23:03 AM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\06\11\05\79E8A6907A433F4E-3648F34301E6A5B6.itc2 [249085]

O61 - LFC:Last File Created 9/3/2011 - 9:23:05 AM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\10\08\10\79E8A6907A433F4E-4AF76EE1CD31FA8A.itc2 [597856]

O61 - LFC:Last File Created 9/3/2011 - 9:23:19 AM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\03\04\00\79E8A6907A433F4E-CA06923D0ACC5043.itc2 [249105]

O61 - LFC:Last File Created 9/3/2011 - 9:23:20 AM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\14\14\01\79E8A6907A433F4E-97C3AAD7C0E291EE.itc2 [253705]

O61 - LFC:Last File Created 9/3/2011 - 9:23:21 AM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\12\00\11\79E8A6907A433F4E-F06D08A3BAA70B0C.itc2 [178795]

O61 - LFC:Last File Created 9/3/2011 - 9:23:23 AM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Europe1 - Ailleurs sur le web\Un jeu TV qui expulse les sans-papie.mp3 [1098613]

O61 - LFC:Last File Created 9/3/2011 - 9:23:26 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\40f85bf64e662a9fad385d4ae4c56352a2355443 [23243]

O61 - LFC:Last File Created 9/3/2011 - 9:23:26 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\7ff7fe545440ab72b1570232d0ed81b84a5334dd [301]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\05dba87c4ead304c03ba15f59769aca05c49576f [3521]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\06642c767b9d974f12af8d72212b766709ba08fe [127]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\0dc926a1810f7aee4e8f38793ed788701f93bf9d [680]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\0fbbd41630bdc55cb0b46cfaf672f68878698da5 [589]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\3953d95b549560c2f4c7d7924480cb7fbf739dfe [1081344]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\3d0d7e5fb2ce288813306e4d4636395e047a3d28 [167936]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\4200286b2cd65ba25790384d03c1ed0718d97840 [113]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\462db712aa8d833ff164035c1244726c477891bd [12288]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\51a4616e576dd33cd2abadfea874eb8ff246bf0e [78613]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\57abe97189047a814cc335cde2d720f619672c74 [267]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\5cfa9db121949c3bf3b889caefc8d5ba766dbd09 [520]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\5f6165d4b21efe1b9b4b5eca6133c619225fff4b [1988]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\63e928471d296cb47a6ffb5343b40b90a0e5d92b [388]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\75cdfb4f2643bae1b39e0ea7d04f1e4f82a3737a [224]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\8218978e4ab0a48035bb92653145a6be872ea858 [4406]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\9143d986a77ab8cf5878e4e9ac80627477eb6674 [36864]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\992df473bbb9e132f4b3b6e4d33f72171e97bc7a [28672]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\ade0340f576ee14793c607073bd7e8e409af07a8 [16156]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\aeacdfd9fadbbe56548a40e02b7685d324050e54 [2520]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\ce78a34a7c030a803ea0ae2efa03c0fac1861b56 [68]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\cfa63c2cb0fd80843034e75395ea3be8d1ba6529 [170]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\ea4f4a1a45ab93a97917e22dd28d298d78686dd4 [392]

O61 - LFC:Last File Created 9/3/2011 - 9:23:27 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\fb7786ced1add24313fa258c8e1ed041e24d52a4 [335]

O61 - LFC:Last File Created 9/3/2011 - 9:23:28 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\7ddb1ea8c09e5baae5e2d2ecac604a4e4e3087de [10446]

O61 - LFC:Last File Created 9/3/2011 - 9:23:28 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\bfecaa9c467e3acb085a5b312bd27bdd5cd7579a [161]

O61 - LFC:Last File Created 9/3/2011 - 9:23:28 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\c58045292621673cabe64aa6050921a2f4807851 [42]

O61 - LFC:Last File Created 9/3/2011 - 9:23:28 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\d2894e0d13244226ae63a27671a2654a22dd3cf3 [2453504]

O61 - LFC:Last File Created 9/3/2011 - 9:23:28 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\fdda2f81cc0b838dc00e3050b14da7ef2d835f3c [242242]

O61 - LFC:Last File Created 9/3/2011 - 9:23:31 AM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Europe1 - Le duel\Primes, salaires, indemnités _ où fi.mp3 [4188558]

O61 - LFC:Last File Created 9/3/2011 - 9:23:33 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\662bc19b13aecef58a7e855d0316e4cf61e2642b [1540]

O61 - LFC:Last File Created 9/3/2011 - 9:23:34 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Manifest.mbdb [836150]

O61 - LFC:Last File Created 9/3/2011 - 9:23:34 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Manifest.mbdx [165396]

O61 - LFC:Last File Created 9/3/2011 - 9:23:34 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Manifest.plist [6995]

O61 - LFC:Last File Created 9/3/2011 - 9:23:40 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Baseband\log-bb-2011-09-02-stats.plist [917]

O61 - LFC:Last File Created 9/3/2011 - 9:23:41 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-03-002130_Thomas.crash [21398]

O61 - LFC:Last File Created 9/3/2011 - 9:23:41 AM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Thomas\Meetic_2011-09-03-002130_Thomas.plist [22917]

O61 - LFC:Last File Created 9/3/2011 - 9:24:34 AM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\AlloCiné _ Faux Raccord\Faux Raccord N°45 - _Star Wars - Epi.mp4 [44519041]

O61 - LFC:Last File Created 9/3/2011 - 9:24:35 AM ---A- C:\Users\Thomas\Music\iTunes\Album Artwork\Cache\79E8A6907A433F4E\10\15\03\79E8A6907A433F4E-E3321575E17603FA.itc2 [147667]

O61 - LFC:Last File Created 9/4/2011 - 10:19:22 PM -SHA- C:\Users\LogMeInRemoteUser\ntuser.dat [786432]

O61 - LFC:Last File Created 9/4/2011 - 10:22:47 AM ---A- C:\Users\All Users\Simply Super Software\Trojan Remover\Data\reflist.dta [750307]

O61 - LFC:Last File Created 9/4/2011 - 10:22:47 AM ---A- C:\Users\All Users\Simply Super Software\Trojan Remover\Data\trjlist2.dta [4743690]

O61 - LFC:Last File Created 9/4/2011 - 10:22:47 AM ---A- C:\Users\All Users\Simply Super Software\Trojan Remover\Data\trjlist3.dta [960298]

O61 - LFC:Last File Created 9/4/2011 - 10:22:47 AM ---A- C:\Users\All Users\Simply Super Software\Trojan Remover\Data\trjlist33.dta [13705]

O61 - LFC:Last File Created 9/4/2011 - 10:22:47 AM ---A- C:\Users\Thomas\Documents\Simply Super Software\Trojan Remover Logfiles\UPDLOG.TXT [751]

O61 - LFC:Last File Created 9/4/2011 - 10:25:35 AM ---A- C:\Users\Thomas\Documents\Simply Super Software\Trojan Remover Logfiles\TRLOG.TXT [26607]

O61 - LFC:Last File Created 9/4/2011 - 11:15:30 AM ---A- C:\Users\Thomas\Downloads\RegSeeker\RegSeeker\Backup\clean-9-4-2011-12.15.28 PM.reg [27987]

O61 - LFC:Last File Created 9/4/2011 - 11:20:23 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\2011090322.000\AudioDiagnostic.0.debugreport.xml [11912]

O61 - LFC:Last File Created 9/4/2011 - 11:20:23 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\2011090322.000\DeviceDiagnostic.0.debugreport.xml [1349]

O61 - LFC:Last File Created 9/4/2011 - 11:20:25 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\2011090322.000\results.xsl [49097]

O61 - LFC:Last File Created 9/4/2011 - 11:20:46 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\2011090322.000\AudioDiagnostic.1.debugreport.xml [8832]

O61 - LFC:Last File Created 9/4/2011 - 11:20:46 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\2011090322.000\DeviceDiagnostic.1.debugreport.xml [1349]

O61 - LFC:Last File Created 9/4/2011 - 11:20:46 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\2011090322.000\ResultReport.xml [11044]

O61 - LFC:Last File Created 9/4/2011 - 11:20:46 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\2011090322.000\results.xml [321]

O61 - LFC:Last File Created 9/4/2011 - 11:20:46 PM ---A- C:\Users\Thomas\AppData\Local\ElevatedDiagnostics\2550435360\latest.cab [16912]

O61 - LFC:Last File Created 9/4/2011 - 12:51:22 PM ---A- C:\Users\Thomas\Downloads\setup.exe [67845282]

O61 - LFC:Last File Created 9/4/2011 - 1:10:52 PM ---A- C:\Users\Thomas\Downloads\HousecallLauncher.exe [2002424]

O61 - LFC:Last File Created 9/4/2011 - 1:11:03 PM ---A- C:\Users\Thomas\AppData\Local\housecall.guid.cache [36]

O61 - LFC:Last File Created 9/4/2011 - 1:19:46 PM ---A- C:\Users\Thomas\Downloads\Ad-AwareInstall.exe [130913632]

O61 - LFC:Last File Created 9/4/2011 - 1:30:33 PM ---A- C:\Users\Thomas\AppData\Local\ars.cache [103471]

O61 - LFC:Last File Created 9/4/2011 - 1:31:00 PM ---A- C:\Users\Thomas\AppData\Local\census.cache [191068]

O61 - LFC:Last File Created 9/4/2011 - 1:40:29 PM ---A- C:\Users\Thomas\Downloads\vcredist_x86.exe [4216840]

O61 - LFC:Last File Created 9/4/2011 - 1:56:31 PM ---A- C:\Users\Thomas\Downloads\sdsetup_revwire207.exe [512992]

O61 - LFC:Last File Created 9/4/2011 - 1:58:37 PM ---A- C:\Users\All Users\PC Tools\DownloadManager\Spyware Doctor8.0\sdsetup_revwire207_aff_dl.exe [73191824]

O61 - LFC:Last File Created 9/4/2011 - 2:24:34 PM ---A- C:\Users\Thomas\Downloads\avira_antivirus_personal_fr.exe [68450544]

O61 - LFC:Last File Created 9/4/2011 - 2:34:51 PM ---A- C:\Users\Thomas\Downloads\OTL.exe [581120]

O61 - LFC:Last File Created 9/4/2011 - 2:37:27 PM ---A- C:\Users\Thomas\Downloads\tdsskiller.exe [1406768]

O61 - LFC:Last File Created 9/4/2011 - 2:42:39 PM ---A- C:\Users\Thomas\Downloads\mbam-setup-1.51.1.1800.exe [9466208]

O61 - LFC:Last File Created 9/4/2011 - 2:43:44 PM ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\config.conf [2399]

O61 - LFC:Last File Created 9/4/2011 - 2:43:44 PM ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\news.conf [250]

O61 - LFC:Last File Created 9/4/2011 - 2:43:45 PM ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\custom.conf [5]

O61 - LFC:Last File Created 9/4/2011 - 2:44:17 PM ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\rules.ref [7324501]

O61 - LFC:Last File Created 9/4/2011 - 2:44:18 PM ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\build.conf [260]

O61 - LFC:Last File Created 9/4/2011 - 2:44:44 PM ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\ignore.dat [0]

O61 - LFC:Last File Created 9/4/2011 - 3:05:16 PM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.62608 [182]

O61 - LFC:Last File Created 9/4/2011 - 3:05:16 PM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.62608 [306]

O61 - LFC:Last File Created 9/4/2011 - 3:05:17 PM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.42215 [89]

O61 - LFC:Last File Created 9/4/2011 - 3:05:17 PM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.93570 [83]

O61 - LFC:Last File Created 9/4/2011 - 3:05:17 PM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.42215 [194048]

O61 - LFC:Last File Created 9/4/2011 - 3:05:17 PM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.93570 [922624]

O61 - LFC:Last File Created 9/4/2011 - 3:05:19 PM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2011-09-04 (16-05-19).txt [1356]

O61 - LFC:Last File Created 9/4/2011 - 3:07:16 PM ---A- C:\Users\Thomas\AppData\Local\Temp\~DF69AA35E9408F3615.TMP [16384]

O61 - LFC:Last File Created 9/4/2011 - 3:10:26 PM ---A- C:\Users\Thomas\AppData\Local\Temp\~DF9C227AF52CD4D54B.TMP [147456]

O61 - LFC:Last File Created 9/4/2011 - 3:53:44 PM ---A- C:\Users\All Users\Lavasoft\License\adaware.da2 [0]

O61 - LFC:Last File Created 9/4/2011 - 3:55:58 PM ---A- C:\Users\Thomas\Downloads\RegSeeker\RegSeeker\Backup\clean-9-4-2011-4.55.55 PM.reg [30256]

O61 - LFC:Last File Created 9/4/2011 - 4:25:00 PM ---A- C:\Users\Thomas\AppData\Local\Temp\e4j1130.tmp_dir21076\exe4jlib.jar [27329]

O61 - LFC:Last File Created 9/4/2011 - 4:25:00 PM ---A- C:\Users\Thomas\AppData\Local\Temp\e4j1130.tmp_dir21076\i4jdel.exe [4608]

O61 - LFC:Last File Created 9/4/2011 - 4:26:03 PM ---A- C:\Users\Thomas\AppData\Local\Temp\swtlib-32\swt-win32-3650.dll [385024]

O61 - LFC:Last File Created 9/4/2011 - 4:26:41 PM ---A- C:\Users\Thomas\AppData\Local\Temp\swtlib-32\swt-gdip-win32-3650.dll [118784]

O61 - LFC:Last File Created 9/4/2011 - 4:28:58 PM ---A- C:\Users\Thomas\AppData\Local\Temp\Vuze_4.6.0.4c_win32.zip [8048672]

O61 - LFC:Last File Created 9/4/2011 - 4:35:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND [www.play-the.net].torrent [7452]

O61 - LFC:Last File Created 9/4/2011 - 4:37:02 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Gantz.2011.FRENCH.SUBFORCED.BRRiP.REPACK.XViD-HYPER [www.play-the.net].torrent [15420]

O61 - LFC:Last File Created 9/4/2011 - 4:40:37 PM R--A- C:\Users\Thomas\AppData\Local\Temp\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS.torrent [105165]

O61 - LFC:Last File Created 9/4/2011 - 4:41:36 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS.torrent [105165]

O61 - LFC:Last File Created 9/4/2011 - 4:56:40 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Gantz 2011 FRENCH SUBFORCED BRRiP REPACK XViD-HYPER.avi [788848004]

O61 - LFC:Last File Created 9/4/2011 - 4:59:06 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND.jpg [132545]

O61 - LFC:Last File Created 9/4/2011 - 4:59:06 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND.nfo [2283]

O61 - LFC:Last File Created 9/4/2011 - 5:06:01 PM ---A- C:\Users\Thomas\AppData\Local\Temp\~DF32F4F295F503D7E9.TMP [16384]

O61 - LFC:Last File Created 9/4/2011 - 5:12:14 PM ---A- C:\Users\Thomas\AppData\Local\Temp\~DFE487FF09973ED754.TMP [16384]

O61 - LFC:Last File Created 9/4/2011 - 5:14:55 PM ---A- C:\Users\Thomas\AppData\Local\Temp\~DF63A19F69C76B140D.TMP [16384]

O61 - LFC:Last File Created 9/4/2011 - 5:15:31 PM ---A- C:\Users\Thomas\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog.bak [0]

O61 - LFC:Last File Created 9/4/2011 - 5:25:13 PM ---A- C:\Users\Thomas\AppData\Local\Temp\AskSLib.dll [246440]

O61 - LFC:Last File Created 9/4/2011 - 5:26:52 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Europe1 - Guy Carlier\Gamineries à l'UMP.mp3 [4588370]

O61 - LFC:Last File Created 9/4/2011 - 5:29:59 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Media\Podcasts\Laurent Gerra\Best Of Laurent Gerra _ La saga DSK 1.mp3 [7353252]

O61 - LFC:Last File Created 9/4/2011 - 6:55:29 AM ---A- C:\Users\All Users\Lavasoft\License\guid.dat [72]

O61 - LFC:Last File Created 9/4/2011 - 7:13:04 AM --HA- C:\Users\Thomas\AppData\Local\IconCache.db [1009007]

O61 - LFC:Last File Created 9/4/2011 - 7:25:10 PM ---A- C:\Users\Thomas\AppData\Local\Apple Computer\iTunes\iTunesPrefs.xml [813407]

O61 - LFC:Last File Created 9/4/2011 - 7:31:35 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\ipfilter.cache [0]

O61 - LFC:Last File Created 9/4/2011 - 7:33:39 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\addresses.dat [65]

O61 - LFC:Last File Created 9/4/2011 - 7:33:46 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\plugins\azupnpav\cd.dat [1907]

O61 - LFC:Last File Created 9/4/2011 - 7:34:18 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\tmp\AZU7603230544359958830.tmp\Vuze_4.6.0.4c_win32.exe [9026488]

O61 - LFC:Last File Created 9/4/2011 - 7:35:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND.avi [366418732]

O61 - LFC:Last File Created 9/4/2011 - 7:37:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\version.dat [20]

O61 - LFC:Last File Created 9/4/2011 - 8:06:38 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\MOTOGP SAN MARIN COURSE MOTOGP 040911 FRENCH.vob[www.torrent411.com].torrent [30020]

O61 - LFC:Last File Created 9/4/2011 - 8:12:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\devices.config [11002]

O61 - LFC:Last File Created 9/4/2011 - 8:22:02 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Library.itl [479537]

O61 - LFC:Last File Created 9/4/2011 - 8:22:03 PM ---A- C:\Users\Thomas\Music\iTunes\iTunes Music Library.xml [823943]

O61 - LFC:Last File Created 9/4/2011 - 8:22:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\iTunes\iTunesPrefs.xml [223491]

O61 - LFC:Last File Created 9/4/2011 - 8:23:07 PM ---A- C:\Users\Thomas\AppData\Local\Apple Computer\iTunes\iPodDevices.xml [1457]

O61 - LFC:Last File Created 9/4/2011 - 8:23:08 PM ---A- C:\Users\All Users\Apple Computer\iTunes\iPodDevices.xml [1457]

O61 - LFC:Last File Created 9/4/2011 - 8:23:39 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\Preferences\ByHost\com.apple.syncservices.{e29ac6c0-7037-11de-816d-806e6f6e6963}.plist [73]

O61 - LFC:Last File Created 9/4/2011 - 8:23:53 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\SyncServices\Local\schemas.adminarchive [133490]

O61 - LFC:Last File Created 9/4/2011 - 8:38:22 PM ---A- C:\Users\Thomas\AppData\Local\Apple Computer\iTunes\goog-phish-shavar.dat [902982]

O61 - LFC:Last File Created 9/4/2011 - 8:39:17 PM ---A- C:\Users\Thomas\AppData\Local\Apple Computer\iTunes\goog-phish-shavar.db [5394432]

O61 - LFC:Last File Created 9/4/2011 - 8:40:34 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Snapshot\63e928471d296cb47a6ffb5343b40b90a0e5d92b [384]

O61 - LFC:Last File Created 9/4/2011 - 8:40:34 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Snapshot\c32ebf659fe9f38238aeb6e54764211b4b828240 [248]

O61 - LFC:Last File Created 9/4/2011 - 8:40:34 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Snapshot\d53fb6feb4bbaf71bf1454c08eaf7ef77a67c2e6.upload [0]

O61 - LFC:Last File Created 9/4/2011 - 8:40:34 PM ---A- C:\Users\Thomas\AppData\Roaming\Apple Computer\MobileSync\Backup\efe75361bdeda5c7a50b504b5641341df1ffa3ce\Status.plist [190]

O61 - LFC:Last File Created 9/4/2011 - 8:43:15 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\292DA9D70808AC0530EAAA014F08F62FC671422C.dat [30367]

O61 - LFC:Last File Created 9/4/2011 - 8:44:48 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\C35E749E99CFFAED3E376ED3887592E08922B2CC.dat [54572]

O61 - LFC:Last File Created 9/4/2011 - 8:55:15 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\657B2DFA5EDC62E4DF69AB23A663B6F77FDA6EB4.dat [61179]

O61 - LFC:Last File Created 9/4/2011 - 9:17:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\96B515DD0F8AA4D151EAE26136101A0B78392825.dat [16147]

O61 - LFC:Last File Created 9/4/2011 - 9:21:49 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\C60E36A86B8E9706E6107D6D595E8BADB4079208.dat [20539]

O61 - LFC:Last File Created 9/4/2011 - 9:22:56 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\05546B3927B2DA4E13FD5AD9D5CCA8CFBBC16F69.dat [36199]

O61 - LFC:Last File Created 9/4/2011 - 9:24:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\3C715993FD71C3383E3A8F2D49BBDE123F07A832.dat [23742]

O61 - LFC:Last File Created 9/4/2011 - 9:24:36 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\6F2C94358A60232DA83D83477D6D851C90D1C511.dat [14089]

O61 - LFC:Last File Created 9/4/2011 - 9:24:48 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\0CF2B48AD4D8E1562397E246C5AC2FE188EBB497.dat [40968]

O61 - LFC:Last File Created 9/4/2011 - 9:24:48 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\6067542C2847129C10085124C90A1C075CC80FB3.dat [17521]

O61 - LFC:Last File Created 9/4/2011 - 9:25:54 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\CEE6DA6D74D7952C6AEE3CE4FE8BB5B6E4DD8F01.dat [35389]

O61 - LFC:Last File Created 9/4/2011 - 9:27:56 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\net\pm_12322.dat [30995]

O61 - LFC:Last File Created 9/4/2011 - 9:27:57 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\VuzeActivities.config [1102]

O61 - LFC:Last File Created 9/4/2011 - 9:27:58 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\contacts.dat [548]

O61 - LFC:Last File Created 9/4/2011 - 9:27:58 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\diverse.dat [813]

O61 - LFC:Last File Created 9/4/2011 - 9:27:59 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\azureus.statistics [185]

O61 - LFC:Last File Created 9/4/2011 - 9:27:59 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\general.dat [174]

O61 - LFC:Last File Created 9/4/2011 - 9:28:01 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\downloads.config [14657]

O61 - LFC:Last File Created 9/4/2011 - 9:28:01 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E01.VOSTFR.DVDRip.XviD-GKS.avi [590376146]

O61 - LFC:Last File Created 9/4/2011 - 9:28:01 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E02.VOSTFR.DVDRip.XviD-GKS.avi [367241726]

O61 - LFC:Last File Created 9/4/2011 - 9:28:01 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E03.VOSTFR.DVDRip.XviD-GKS.avi [367271248]

O61 - LFC:Last File Created 9/4/2011 - 9:28:01 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E04.VOSTFR.DVDRip.XviD-GKS.avi [367257328]

O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\A75AA5663F40E57C8CDF1F2A383133F08617763E.dat [112264]

O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E05.VOSTFR.DVDRip.XviD-GKS.avi [367676160]

O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E06.VOSTFR.DVDRip.XviD-GKS.avi [367187134]

O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E07.VOSTFR.DVDRip.XviD-GKS.avi [367434442]

O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E08.VOSTFR.DVDRip.XviD-GKS.avi [589981056]

O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E09.VOSTFR.DVDRip.XviD-GKS.avi [367579314]

O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E10.VOSTFR.DVDRip.XviD-GKS.avi [367630854]

O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E11.VOSTFR.DVDRip.XviD-GKS.avi [367971090]

O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E12.VOSTFR.DVDRip.XviD-GKS.avi [367648594]

O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\Sons.of.Anarchy.S03.VOSTFR.DVDRip.XviD-GKS\Sons.of.Anarchy.S03E13.FiNAL.VOSTFR.DVDRip.XviD-GKS.avi [590278838]

O61 - LFC:Last File Created 9/4/2011 - 9:28:03 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\2A16A9DA02846BBA26EB2191CF369219ECA2B515.dat [13612]

O61 - LFC:Last File Created 9/4/2011 - 9:28:03 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\A3665E4A46C03025D7631BCD2DCCEBA07F35F1DD.dat [24144]

O61 - LFC:Last File Created 9/4/2011 - 9:28:03 PM ---A- C:\Users\Thomas\Documents\Vuze Downloads\MOTOGP SAN MARIN COURSE MOTOGP 040911 FRENCH.vob [774952978]

O61 - LFC:Last File Created 9/4/2011 - 9:28:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\7B65EDC061B72F48B70E1BD22D9E6E3C6FABB214.dat [38307]

O61 - LFC:Last File Created 9/4/2011 - 9:28:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\B0509281250A449C1EEE165AB79E1290CA931B75.dat [28212]

O61 - LFC:Last File Created 9/4/2011 - 9:28:05 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\FC4769F45D37C72A1AFCA675E69104AB9309B6E5.dat [32636]

O61 - LFC:Last File Created 9/4/2011 - 9:28:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\95FDF2A4BC0FF06D6DD03B418A34ACA3020302F8.dat [34579]

O61 - LFC:Last File Created 9/4/2011 - 9:28:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\36B5311D908C3F65ABE901038212B65D37CE6CC6.dat [24625]

O61 - LFC:Last File Created 9/4/2011 - 9:28:08 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\8C991B24E2A8C80B6AC4787E505D556B6EA80FF8.dat [25843]

O61 - LFC:Last File Created 9/4/2011 - 9:28:09 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\3AB3AE3CE01E8C23A9CB9D15F547DEB1CC8D6850.dat [59337]

O61 - LFC:Last File Created 9/4/2011 - 9:28:09 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\BFA4CF6E2B2EAF30D6F73AD2026279D270CEEE98.dat [59966]

O61 - LFC:Last File Created 9/4/2011 - 9:28:10 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\28E0A398CA26485BB960D9609C49CEFE26D31B51.dat [46912]

O61 - LFC:Last File Created 9/4/2011 - 9:28:10 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\DF5828765831B3C79CF6C2C41F30632C00472802.dat [124382]

O61 - LFC:Last File Created 9/4/2011 - 9:28:10 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\cache.dat [6526]

O61 - LFC:Last File Created 9/4/2011 - 9:28:15 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\sidebarauto.config [77]

O61 - LFC:Last File Created 9/4/2011 - 9:28:18 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\tables.config [13886]

O61 - LFC:Last File Created 9/4/2011 - 9:28:23 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\azureus.config [9491]

O61 - LFC:Last File Created 9/5/2011 - 1:42:29 AM ---A- C:\Users\Thomas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2011-09-05 (02-42-27).txt [1064]

O61 - LFC:Last File Created 9/5/2011 - 7:03:02 AM ---A- C:\Users\Thomas\AppData\Local\Temp\Uninstall Log 2011-09-05 #002.txt [6640]

O61 - LFC:Last File Created 9/5/2011 - 7:03:04 AM ---A- C:\Users\Thomas\AppData\Local\Temp\GenericTdiDll.txt [2]

O61 - LFC:Last File Created 9/5/2011 - 7:03:05 AM ---A- C:\Users\Thomas\AppData\Local\Temp\Uninstall Log 2011-09-05 #003.txt [3885]

O61 - LFC:Last File Created 9/5/2011 - 7:03:09 AM ---A- C:\Users\Thomas\AppData\Local\Temp\Uninstall Log 2011-09-05 #004.txt [4735]

O61 - LFC:Last File Created 9/5/2011 - 7:03:44 AM ---A- C:\Users\Thomas\AppData\Local\Temp\PCTInstaller\sd_url.txt [241]

O61 - LFC:Last File Created 9/5/2011 - 7:07:46 AM ---A- C:\Users\Thomas\AppData\Local\Temp\Uninstall Log 2011-09-05 #001.txt [128135]

O61 - LFC:Last File Created 9/5/2011 - 7:07:52 AM ---A- C:\Users\Thomas\AppData\Local\Temp\info.txt [0]

O61 - LFC:Last File Created 9/5/2011 - 7:10:35 AM ---A- C:\Users\Thomas\Downloads\RogueKiller.exe [570368]

O61 - LFC:Last File Created 9/5/2011 - 7:12:17 AM ---A- C:\Users\Thomas\Downloads\ZHPDiag2.exe [2582227]

O61 - LFC:Last File Created 9/5/2011 - 7:15:41 AM ---A- C:\Users\Thomas\AppData\Roaming\OpenOffice.org\3\.lock [140]

O61 - LFC:Last File Created 9/5/2011 - 7:15:41 AM ---A- C:\Users\Thomas\AppData\Roaming\OpenOffice.org\3\user\registrymodifications.xcu [24402]

O61 - LFC:Last File Created 9/5/2011 - 7:15:41 AM ---A- C:\Users\Thomas\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog [0]

O61 - LFC:Last File Created 9/5/2011 - 7:28:47 AM ---A- C:\Users\Thomas\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt00.sqm [548]

~ Scan Files in 19mn AMs

---\\ Liste des outils de nettoyage (O63)

O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis

O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

~ Scan ADS in 00mn AMs

---\\ Liste des services Legacy (O64)

O64 - Services: CurCS - 6/21/2010 - C:\windows\system32\drivers\AsUpIO.sys - No object (No service) .(...) - LEGACY_ASUPIO

O64 - Services: CurCS - 7/21/2011 - C:\windows\system32\DRIVERS\avgntflt.sys - No object(No service) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT

O64 - Services: CurCS - 7/21/2011 - C:\windows\system32\DRIVERS\avipbb.sys - No object(No service) .(.Avira GmbH - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB

O64 - Services: CurCS - 12/30/1899 - C:\Program Files\LogMeIn\x86\RaInfo.sys (.not file.) - No object (No service) .(...) - LEGACY_LMIINFO

O64 - Services: CurCS - 1/11/2011 - C:\windows\system32\drivers\LMIRfsDriver.sys - No object(No service) .(.LogMeIn, Inc. - LogMeIn Rfs Drivemap Driver.) - LEGACY_LMIRFSDRIVER

O64 - Services: CurCS - 6/17/2010 - C:\windows\system32\DRIVERS\ssmdrv.sys - No object(No service) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV

~ Scan Services in 02mn AMs

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\windows\regedit.exe

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\windows\regedit.exe

~ Scan Keys in 00mn AMs

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

~ Scan Keys in 00mn AMs

---\\ Search Browser Infection (O69)

O69 - SBI: SearchScopes [HKCU] {b41306c6-96d0-442a-bcc4-b0f621e82ce9} - (Fissa) - Fissa search

~ Scan Keys in 00mn AMs

---\\ Internet Feature Controls (O81)

O81 - IFC: Internet Feature Controls [HKUS\.DEFAULT] [FEATURE_BROWSER_EMULATION] -- svchost.exe

O81 - IFC: Internet Feature Controls [HKUS\S-1-5-18] [FEATURE_BROWSER_EMULATION] -- svchost.exe

~ Scan Keys in 00mn AMs

---\\ Recherche particuliere à la racine de certains dossiers (O84)

[MD5.23D0CA0B92101C28E0294E80B0B65B34] [sPRF][9/4/2011] (.Ask.com - AskIC Dynamic Link Library.) -- C:\Users\Thomas\AppData\Local\Temp\AskSLib.dll [246440]

[MD5.E8269245566BE948F6A219135B434160] [sPRF][2/26/2011] (.Trend Micro Inc. - HijackThis.) -- C:\Users\Thomas\Desktop\HiJackThis.exe [401720]

[MD5.9C0519648438775677CEB4E4AAE64BFA] [sPRF][9/5/2011] (...) -- C:\Users\Thomas\Desktop\RogueKiller.exe [570368]

[MD5.5CAAFF20C5695611F08ABD954E58DEA2] [sPRF][9/5/2011] (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Thomas\Desktop\ZHPDiag2.exe [2582227]

~ Scan Files in 00mn AMs

---\\ Firewall Active Exception List (FirewallRules) (O87)

O87 - FAEL: "{B1C57B77-80F4-4D56-83E3-298B30253599}" | In - Private - P6 - TRUE | .(.Vuze Inc. - Pas de description.) -- C:\Program Files\Vuze\Azureus.exe

O87 - FAEL: "{E858C264-0F03-4FC6-85C4-41D5AAF4C13E}" | In - Private - P17 - TRUE | .(.Vuze Inc. - Pas de description.) -- C:\Program Files\Vuze\Azureus.exe

O87 - FAEL: "{4851A0CF-E86E-4B50-8096-62FB5012A34A}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe

O87 - FAEL: "{A9B748FD-9803-40D6-B44C-D2ED125BE32B}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe

O87 - FAEL: "{6BBB6D35-2305-49C2-BF2C-A545EB6336ED}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe

O87 - FAEL: "TCP Query User{E6DC5A5F-CEC4-480A-B9AB-892C0DF96FDD}C:\program files\vuze\azureus.exe" | In - Public - P6 - TRUE | .(.Vuze Inc. - Pas de description.) -- C:\program files\vuze\azureus.exe

O87 - FAEL: "UDP Query User{362AAE09-E367-497C-9F3B-E5476938D3E4}C:\program files\vuze\azureus.exe" | In - Public - P17 - TRUE | .(.Vuze Inc. - Pas de description.) -- C:\program files\vuze\azureus.exe

O87 - FAEL: "TCP Query User{0D6B98DC-CC36-4ABB-A0C5-3A1F7205ED76}C:\program files\java\jre6\bin\javaw.exe" | In - Private - P6 - TRUE | .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\program files\java\jre6\bin\javaw.exe

O87 - FAEL: "UDP Query User{04D6881D-F951-475C-840E-C2D3DF923B97}C:\program files\java\jre6\bin\javaw.exe" | In - Private - P17 - TRUE | .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\program files\java\jre6\bin\javaw.exe

O87 - FAEL: "TCP Query User{EA356420-2943-4636-9595-3D5A59F88123}C:\program files\air mouse\air mouse\air mouse.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\air mouse\air mouse\air mouse.exe (.not file.)

O87 - FAEL: "UDP Query User{34D8CC7C-ABD3-4735-AFB4-D8AFB65C31BD}C:\program files\air mouse\air mouse\air mouse.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\air mouse\air mouse\air mouse.exe (.not file.)

O87 - FAEL: "TCP Query User{B82A82A0-F3C0-41F2-98D0-6353B055BF52}C:\program files\spyware terminator\spywareterminatorupdate.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\spyware terminator\spywareterminatorupdate.exe (.not file.)

O87 - FAEL: "UDP Query User{9243FB1F-71DD-40D3-B514-0156223CE6C1}C:\program files\spyware terminator\spywareterminatorupdate.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\spyware terminator\spywareterminatorupdate.exe (.not file.)

~ Scan Firewall in 01mn AMs

---\\ Scan Additionnel (O88)

Database Version : 8618 - (29/08/2011)

Clés trouvées (Keys found) : 26

Valeurs trouvées (Values found) : 1

Dossiers trouvés (Folders found) : 8

Fichiers trouvés (Files found) : 0

[HKLM\Software\Classes\AppID\GenericAskToolbar.DLL] =>Toolbar.AskSBar

[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd] =>Toolbar.AskSBar

[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1] =>Toolbar.AskSBar

[HKLM\Software\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}] =>Toolbar.AskTBar

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}] =>Toolbar.Agent

[HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}] =>Toolbar.AskSBar

[HKLM\Software\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}] =>Adware.Hotbar

[HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}] =>Toolbar.Ask

[HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}] =>Toolbar.Ask

[HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}] =>Toolbar.AskSBar

[HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Toolbar.AskSBar

[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Toolbar.AskSBar

[HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}] =>Toolbar.Ask

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{b41306c6-96d0-442a-bcc4-b0f621e82ce9}] =>PUP.OfferBox

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.AskSBar

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.AskSBar

[HKCU\Software\Ask.com] =>Toolbar.AskBar

[HKCU\Software\Ask.com] =>Toolbar.AskBarDis

[HKCU\Software\AppDataLow\Software\AskToolbar] =>Toolbar.AskTBar

[HKCU\Software\AppDataLow\AskToolbarInfo] =>Toolbar.AskTBar

[HKCU\Software\Conduit] =>Toolbar.Conduit

[HKCU\Software\AppDataLow\Software\Conduit] =>Toolbar.Conduit

[HKCU\Software\FissaSearch] =>PUP.OfferBox

[HKCU\Software\Spointer] =>Adware.SPointer

[HKCU\Software\WideStream] =>Adware.SPointer

[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Toolbar.AskSBar

C:\Users\Thomas\AppData\Roaming\Adobe\plugs =>Trojan.FakeAlert

C:\Users\Thomas\AppData\Roaming\Adobe\shed =>Trojan.FakeAlert

C:\Program Files\Ask.com =>Toolbar.AskBar

C:\Users\Thomas\AppData\Roaming\Widestream =>Adware.SPointer

C:\Users\Thomas\AppData\Local\widestream6 Air =>Adware.SPointer

C:\Users\Thomas\AppData\LocalLow\AskToolbar =>Toolbar.AskTBar

C:\Users\Thomas\AppData\LocalLow\Vuze_Remote =>Toolbar.Conduit

~ Scan Additionnel in 20mn AMs

---\\ Recherche détournement de DNS routeur (O89)

Serveur : dns1.proxad.net

Address: 212.27.40.240

Nom : www.l.google.com

Addresses: 209.85.148.103

209.85.148.99

209.85.148.147

209.85.148.105

209.85.148.104

209.85.148.106

Aliases: www.google.fr

www.google.com

~ Scan DNS in 03mn AMs

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SR - | Auto 9/4/2011 136360 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe

SR - | Auto 9/4/2011 269480 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

SR - | Auto 5/29/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

SR - | Auto 219136 | (AsusService) . (...) - C:\Windows\System32\AsusService.exe

SR - | Auto 5/29/2011 349472 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe

SS - | Auto 4/2/2011 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe

SS - | Demand 4/2/2011 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe

SR - | Auto 6/24/2010 354840 | (IAANTMON) . (.Intel Corporation.) - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe

SS - | Demand 6/9/2011 820008 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe

SR - | Auto 7/14/2009 20992 | C:\windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\windows\system32\svchost.exe

~ Scan Services in 05mn AMs

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover

~ Scan MBR in 11mn AMs

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

Written by ad13, http://ad13.geekstog

Run by Thomas at 9/5/2011 12:29:12 PM

********* Dump file Name *********

C:\PhysicalDisk0_MBR.bin

~ Scan MBR in 13mn AMs

End of the scan (1666 lines in 57mn AMs)(0)

tomtom95 · le 5 septembre 2011

Bonsoir synchronn

Ok,une petite erreur ,entre ZHPDiag,et ZHPFix

Pour les rapport stp utilise cjoint plus facile pour moi,Merci

héberger le fichier contenant ce rapport ici

http://cjoint.com/

Indique ensuite dans ta prochaine réponse l'adresse d'hébergement de ce rapport pour que je puisse le télécharger et l'analyser.

Je vois que tu as déja utiliser des outils ( comme TDSSKiller,Trojan Remover etc..)

ATTENTION:RegSeeker nettoyeur du registre trés dangereux pour la stabilité de ton système exploitation

Et pas adapter pour SEVEN ,il va supprimer des clés IMPORTANTE ,ET LEGITIME.A NE PAS UTILISER. :outch:

Applique les outils dans l'ordre

Relance l'outil RogueKiller

Relance RogueKiller.exe.
IMPORTANT:Quitte tous tes programmes en cours
Sous Vista/Seven clique droit -> lancer en tant qu'administrateur
Lance RogueKiller.exe.
Lorsque demandé
tape 2 pour Suppression et valide avec [entrée]

Un rapport (RKreport.txt) a du se créer à côté de l'exécutable
colle son contenu dans ton prochain post.

Télécharge

Temp File Cleaner (TFC) de Old Timer :

•Enregistre-le sur le Bureau
•Enregistre (sauvegarde) tous tes travaux en cours et ferme les applications - quitte-les définitivement (l'outil les fermera de toute façon automatiquement)
•Double-clique sur TFC.exe (sous Vista - Windows 7 clique droit
"exécuter en tant qu'administrateur)
•Clique sur Start
•Laisse l'outil travailler (cela prend de quelques secondes à quelques minutes)
•Si l'outil demande à redémarrer :
Clique sur Yes
•Si l'outil ne propose pas le redémarrage
redémarrer manuellement.
Dans la barre de TFC il va y avoir un chiffre noté en rouge
indique le moi.

Ferme toutes les applications ouvertes
Désactive tes défenses (anti-virus,anti-spyware)
Double-clique sur ZHPFix
Pour Vista et seven
fais un clique droit sur l'icône et exécute en tant qu'administrateur

Un raccourci installé par ZHPDiag sur le Bureau

Sélectionne et surligne correctement avec la souris et "Clique droit > "Copier" ou "Ctrl+C"
ces lignes ci dessous :
C:\Users\Thomas\AppData\Roaming\Mozilla\Firefox\Profiles\zc7laqia.default\user.js (.not file.)
R0 - HKUS\S-1-5-21-2405251124-3916129693-1916960768-1000\Software\Microsoft\Internet Explorer\Main,Start Page = Asus | MSN
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Asus | MSN
R3 - URLSearchHook: (no name) - {472734EA-242A-422b-ADF8-83D1E48CC825} . (...) (No version) -- (.not file.)
O4 - Global Startup: C:\Users\Thomas\Desktop\Vuze Downloads - Raccourci.lnk . (...) -- C:\Users\Thomas\Documents\Vuze Downloads
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (...) -- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [CleanMem Mini Monitor] (...) -- C:\Program Files\CleanMem\mini_monitor.exe (.not file.)
O42 - Logiciel: Vuze - (.Vuze Inc..) [HKLM] -- 8461-7759-5462-8226
[HKCU\Software\AppDataLow\AskToolbarInfo]
[HKCU\Software\AppDataLow\Software\AskToolbar]
[HKCU\Software\AppDataLow\Software\Conduit]
[HKCU\Software\AppDataLow\Software\Vuze_Remote]
[HKCU\Software\Ask.com]
[HKCU\Software\Azureus]
[HKCU\Software\Conduit]
[HKCU\Software\FissaSearch]
[HKCU\Software\Spointer]
[HKCU\Software\WideStream]
[HKLM\Software\Azureus]
O43 - CFD: 7/4/2011 - 9:06:08 PM - [392066] ----D- C:\Program Files\Ask.com
O43 - CFD: 11/26/2010 - 7:13:22 PM - [110958547] ----D- C:\Program Files\Vuze
O43 - CFD: 9/3/2011 - 11:43:44 PM - [208] ----D- C:\ProgramData\hL04903JkBpG04903
O43 - CFD: 3/13/2011 - 9:27:24 PM - [101] ----D- C:\ProgramData\Kaspersky Lab
O43 - CFD: 9/4/2011 - 10:56:56 PM - [13509147] ----D- C:\Users\Thomas\AppData\Roaming\Azureus
O43 - CFD: 3/13/2011 - 9:27:30 PM - [105429] ----D- C:\Users\Thomas\AppData\Roaming\FrostWire
O43 - CFD: 12/18/2010 - 4:26:20 PM - [604] ----D- C:\Users\Thomas\AppData\Roaming\widestream
O43 - CFD: 12/18/2010 - 4:38:50 PM - [191303] ----D- C:\Users\Thomas\AppData\Local\widestream6 Air
O43 - CFD: 9/3/2011 - 3:28:02 PM - [98248] ----D- C:\ProgramData\Tarma Installer
O61 - LFC:Last File Created 9/3/2011 - 10:35:58 PM ---A- C:\Users\All Users\hL04903JkBpG04903\hL04903JkBpG04903 [208]
O61 - LFC:Last File Created 9/3/2011 - 2:00:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Sons.Of.Anarchy.S03.VOSTFR.DVDRIP.XviD-MiND [www.play-the.net].torrent [28193]
O61 - LFC:Last File Created 9/3/2011 - 2:11:06 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Hard-Fi_-_Killer_Sounds-2011-MOD[www.torrent411.com].torrent [13877]
O61 - LFC:Last File Created 9/3/2011 - 2:24:10 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\EF1026A6B2C08D2296085B96AF37353EEDEF8DD9.dat [15767]
O61 - LFC:Last File Created 9/3/2011 - 2:28:16 PM RS--- C:\Users\All Users\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.dat [98248]
O61 - LFC:Last File Created 9/3/2011 - 2:30:38 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\E1DDDDEB54A867B2222F3F3DD6015BB279EBC02A.dat [34074]
O61 - LFC:Last File Created 9/4/2011 - 12:51:22 PM ---A- C:\Users\Thomas\Downloads\setup.exe [67845282]
O61 - LFC:Last File Created 9/4/2011 - 1:19:46 PM ---A- C:\Users\Thomas\Downloads\Ad-AwareInstall.exe [130913632]
O61 - LFC:Last File Created 9/4/2011 - 1:58:37 PM ---A- C:\Users\All Users\PC Tools\DownloadManager\Spyware Doctor8.0\sdsetup_revwire207_aff_dl.exe [73191824]
O61 - LFC:Last File Created 9/4/2011 - 3:53:44 PM ---A- C:\Users\All Users\Lavasoft\License\adaware.da2 [0]
O61 - LFC:Last File Created 9/4/2011 - 4:35:07 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Suits.S01E11.FASTSUB.VOSTFR.HDTV.XviD-MiND [www.play-the.net].torrent [7452]
O61 - LFC:Last File Created 9/4/2011 - 4:37:02 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\Gantz.2011.FRENCH.SUBFORCED.BRRiP.REPACK.XViD-HYPER [www.play-the.net].torrent [15420]
O61 - LFC:Last File Created 9/4/2011 - 7:31:35 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\ipfilter.cache [0]
O61 - LFC:Last File Created 9/4/2011 - 7:34:18 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\tmp\AZU7603230544359958830.tmp\Vuze_4.6.0.4c_win32.exe [9026488]
O61 - LFC:Last File Created 9/4/2011 - 7:37:32 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\version.dat [20]
O61 - LFC:Last File Created 9/4/2011 - 8:06:38 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\torrents\MOTOGP SAN MARIN COURSE MOTOGP 040911 FRENCH.vob[www.torrent411.com].torrent [30020]
O61 - LFC:Last File Created 9/4/2011 - 8:12:33 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\devices.config [11002]
O61 - LFC:Last File Created 9/4/2011 - 8:43:15 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\292DA9D70808AC0530EAAA014F08F62FC671422C.dat [30367]
O61 - LFC:Last File Created 9/4/2011 - 8:44:48 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\C35E749E99CFFAED3E376ED3887592E08922B2CC.dat [54572]
O61 - LFC:Last File Created 9/4/2011 - 8:55:15 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\657B2DFA5EDC62E4DF69AB23A663B6F77FDA6EB4.dat [61179]
O61 - LFC:Last File Created 9/4/2011 - 9:17:04 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\96B515DD0F8AA4D151EAE26136101A0B78392825.dat [16147]
O61 - LFC:Last File Created 9/4/2011 - 9:21:49 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\C60E36A86B8E9706E6107D6D595E8BADB4079208.dat [20539]
O61 - LFC:Last File Created 9/4/2011 - 9:22:56 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\05546B3927B2DA4E13FD5AD9D5CCA8CFBBC16F69.dat [36199]
O61 - LFC:Last File Created 9/4/2011 - 9:24:24 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\3C715993FD71C3383E3A8F2D49BBDE123F07A832.dat [23742]
O61 - LFC:Last File Created 9/4/2011 - 9:24:36 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\6F2C94358A60232DA83D83477D6D851C90D1C511.dat [14089]
O61 - LFC:Last File Created 9/4/2011 - 9:24:48 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\0CF2B48AD4D8E1562397E246C5AC2FE188EBB497.dat [40968]
O61 - LFC:Last File Created 9/4/2011 - 9:24:48 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\6067542C2847129C10085124C90A1C075CC80FB3.dat [17521]
O61 - LFC:Last File Created 9/4/2011 - 9:25:54 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\CEE6DA6D74D7952C6AEE3CE4FE8BB5B6E4DD8F01.dat [35389]
O61 - LFC:Last File Created 9/4/2011 - 9:27:56 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\net\pm_12322.dat [30995]
O61 - LFC:Last File Created 9/4/2011 - 9:27:57 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\VuzeActivities.config [1102]
O61 - LFC:Last File Created 9/4/2011 - 9:27:58 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\contacts.dat [548]
O61 - LFC:Last File Created 9/4/2011 - 9:27:58 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\diverse.dat [813]
O61 - LFC:Last File Created 9/4/2011 - 9:27:59 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\azureus.statistics [185] => Azureus PeerToPeer
O61 - LFC:Last File Created 9/4/2011 - 9:27:59 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\dht\general.dat [174]
O61 - LFC:Last File Created 9/4/2011 - 9:28:01 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\downloads.config [14657]
O61 - LFC:Last File Created 9/4/2011 - 9:28:02 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\A75AA5663F40E57C8CDF1F2A383133F08617763E.dat [112264]
O61 - LFC:Last File Created 9/4/2011 - 9:28:03 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\2A16A9DA02846BBA26EB2191CF369219ECA2B515.dat [13612]
O61 - LFC:Last File Created 9/4/2011 - 9:28:03 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\active\A3665E4A46C03025D7631BCD2DCCEBA07F35F1DD.dat [24144]
O61 - LFC:Last File Created 9/4/2011 - 9:28:15 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\sidebarauto.config [77]
O61 - LFC:Last File Created 9/4/2011 - 9:28:18 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\tables.config [13886]
O61 - LFC:Last File Created 9/4/2011 - 9:28:23 PM ---A- C:\Users\Thomas\AppData\Roaming\Azureus\azureus.config [9491]
O61 - LFC:Last File Created 9/5/2011 - 7:15:41 AM ---A- C:\Users\Thomas\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog [0]
O69 - SBI: SearchScopes [HKCU] {b41306c6-96d0-442a-bcc4-b0f621e82ce9} - (Fissa) - Fissa search
[MD5.23D0CA0B92101C28E0294E80B0B65B34] [sPRF][9/4/2011] (.Ask.com - AskIC Dynamic Link Library.) -- C:\Users\Thomas\AppData\Local\Temp\AskSLib.dll [246440]

HOSTFix
FirewallRAZ
EmptyTemp
EmptyFlash
Clique successivement sur l'icône H (pour effacer le rapport qui s'est affiché) puis sur l'icône de la "malette cachée par la feuille" .
Vérifie que toutes les lignes que je t'ai demandé de copier sont dans la fenêtre.
Et seulement ces lignes
Puis clique sur le bouton [OK]
A ce moment apparaîtra au début de chaque ligne
une petite case vide. [ ]
Ensuite clique sur Tous puis sur Nettoyer
Valide par Oui la désinstallation des programmes si demandé
Laisse l'outil travailler. Si un redémarrage est demandé accepte et redémarre le PC
Le rapport ZHPFixReport.txt s'affiche. Copie-colle le contenu de ce rapport dans ta réponse.

Le rapport ZHPFixReport.txt est enregistré sous C:\Program files\ZHPFix\ZHPFixReport.txt
héberger le fichier contenant ce rapport ici
Accueil de Cjoint.com
Indique ensuite dans ta prochaine réponse

A+

synchronn · le 5 septembre 2011

D'abord merci pour tout Tomtom, c'est du vrai chinois pour moi toute cette démarche et ces chiffres...

Voici le rapport ZHP

Lien CJoint.com AIfvIBLiMOJ

RK /

RogueKiller V5.3.4 [30/08/2011] par Tigzy

contact sur Forum Sciences / Forum Informatique - Sur la Toile (SLT)

mail: tigzyRK<at>gmail<dot>com

Remontees: [RogueKiller] Remontées (1/33)

Systeme d'exploitation: Windows 7 (6.1.7600 ) 32 bits version

Demarrage : Mode normal

Utilisateur: Thomas [Droits d'admin]

Mode: Suppression -- Date : 05/09/2011 21:19:25

Processus malicieux: 0

Entrees de registre: 0

Fichiers / Dossiers particuliers:

Fichier HOSTS:

127.0.0.1 www.007guard.com

127.0.0.1 007guard.com

127.0.0.1 008i.com

127.0.0.1 www.008k.com

127.0.0.1 008k.com

127.0.0.1 www.00hq.com

127.0.0.1 00hq.com

127.0.0.1 010402.com

127.0.0.1 www.032439.com

127.0.0.1 032439.com

127.0.0.1 www.0scan.com

127.0.0.1 0scan.com

127.0.0.1 1000gratisproben.com

127.0.0.1 www.1000gratisproben.com

127.0.0.1 1001namen.com

127.0.0.1 www.1001namen.com

127.0.0.1 100888290cs.com

127.0.0.1 www.100888290cs.com

127.0.0.1 www.100sexlinks.com

127.0.0.1 100sexlinks.com

[...]

Termine : << RKreport[1].txt >>

RKreport[1].txt

Et le chiffre rouge est 67.

J'ai dl Glary utilities entre temps j'espère que ça ne va pas mettre la démarche en péril.

synchronn · le 5 septembre 2011

Mince je pensais avoir désactiver Antivir mais apparement, j'ai loupé...dois-je recommencer ?

tomtom95 · le 5 septembre 2011

Non ,pas de problème

Par contre n'utilise pas d'autres outils stp.

Relance l'outil RogueKiller

Relance RogueKiller.exe.
IMPORTANT:Quitte tous tes programmes en cours
Sous Vista/Seven clique droit -> lancer en tant qu'administrateur
Lance RogueKiller.exe.
Lorsque demandé
tape 3 pour Hosts Raz et valide avec [entrée]

Un rapport (RKreport.txt) a du se créer à côté de l'exécutable
colle son contenu dans la réponse en fin de procédure.
******************************************
Pour voir plus clair,avec tous les outils que tu as télécharge on va les supprimer

Télecharge sur le site DelFix (de Xplode) sur ton Bureau
Choisis l'option "Recherche"
Valide sur Entrée
Laisse travailler l'outil
Copie/colle le rapport obtenu

Relance Delfix
Choisis l'option "Suppression"
Valide sur Entrée
Laisse travailler l'outil
Copie/colle le rapport obtenu

Supprime DelFix ainsi que les autres outils restant éventuellement sur le bureau.

**********************************************
Ensuite :
Télécharger http://s upport.k a s per s k y.com/download s /util s /td s s k iller.exe ]TDSSkiller [/url]de Kaspersky sur le Bureau

(clique droit -> lancer en tant qu'adminstrateur sous Vista et seven )
Faire un double clique sur TDSSKiller.exe pour le lancer.(clique droit -> lancer en tant qu'adminstrateur sous Vista et seven )
Cliquer sur Start scan pour lancer l'analyse

Lorsque l'outil a terminé son travail d'inspection
si des nuisibles ("Malicious objects") ont été trouvés
vérifier que l'option (Cure) est sélectionnée

Si des objects suspects ("Suspicious objects") ont été détectés
sur l'écran de demande de confirmation
modifier l'action à entreprendre et indiquer Quarantine (au lieu de Skip)

Puis cliquer sur le bouton (Continue) puis sur [Reboot Now]

Attendre l'affichage du fichier rapport.

Si l'outil a besoin d'un redémarrage pour finaliser le nettoyage
cliquer sur le bouton (Reboot computer).
Post: le rapport de TDSSKiller (contenu du fichier SystemDrive\TDSSKiller.Version_Date_Heure_log.txt)
Si TDSS.tdl2 est détecté l'option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
Si Suspicious file est indiqué
laisse l'option cochée sur Skip
Clique sur Continue puis sur Reboot now pour redémarrer le PC.
Copie-colle le rapport généré dans ta prochaine réponse (Il est aussi sauvegardé à la racine de ta partition système sous le nom C:\TDSSKiller_Quarantine\JJ.MM.AA_HH.MM.SS. (JJ.MM.AA date du passage de l'outil
HH.MM.SS heure de passage).

A+

synchronn · le 5 septembre 2011

Dans l'ordre :

RogueKiller V5.3.4 [30/08/2011] par Tigzy

contact sur Forum Sciences / Forum Informatique - Sur la Toile (SLT)

mail: tigzyRK<at>gmail<dot>com

Remontees: [RogueKiller] Remontées (1/33)

Systeme d'exploitation: Windows 7 (6.1.7600 ) 32 bits version

Demarrage : Mode normal

Utilisateur: Thomas [Droits d'admin]

Mode: HOSTS RAZ -- Date : 05/09/2011 22:10:41

Processus malicieux: 0

Fichier HOSTS:

127.0.0.1 localhost

Nouveau fichier HOSTS:

127.0.0.1 localhost

Termine : << RKreport[1].txt >>

RKreport[1].txt

--------------------------------------------------

# DelFix v8.3 - Rapport créé le 05/09/2011 à 22:01

# Mis à jour le 04/08/11 à 11h par Xplode

# Système d'exploitation : Windows 7 Starter (32 bits) [version 6.1.7600]

# Nom d'utilisateur : Thomas - THOMAS-PC (Administrateur)

# Exécuté depuis : C:\Users\Thomas\Desktop\delfix0.exe

# Option [Recherche]

~~~~~~ Dossier(s) ~~~~~~

Présent : C:\ZHP

Présent : C:\Program Files\ZHPDiag

Présent : C:\Users\Thomas\Desktop\RK_Quarantine

Présent : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP

~~~~~~ Fichier(s) ~~~~~~

Présent : C:\PhysicalDisk0_MBR.bin

Présent : C:\TDSSKiller.2.5.17.0_04.09.2011_15.37.43_log.txt

Présent : C:\TDSSKiller.2.5.17.0_04.09.2011_15.51.02_log.txt

Présent : C:\TDSSKiller.2.5.17.0_04.09.2011_16.24.27_log.txt

Présent : C:\Users\Thomas\Desktop\HiJackThis.exe

Présent : C:\Users\Thomas\Desktop\RKreport[1].txt

Présent : C:\Users\Thomas\Desktop\RogueKiller.exe

Présent : C:\Users\Thomas\Desktop\TFC.exe

Présent : C:\Users\Thomas\Desktop\ZHPDiag2.exe

Présent : C:\Users\Public\Desktop\MBRCheck.lnk

Présent : C:\Users\Public\Desktop\ZHPDiag.lnk

Présent : C:\Users\Public\Desktop\ZHPFix.lnk

Présent : C:\Users\Public\Desktop\MBRCheck.lnk

Présent : C:\Users\Public\Desktop\ZHPDiag.lnk

Présent : C:\Users\Public\Desktop\ZHPFix.lnk

Présent : C:\Users\Thomas\Downloads\OTL.exe

Présent : C:\Users\Thomas\Downloads\RogueKiller.exe

Présent : C:\Users\Thomas\Downloads\tdsskiller.exe

Présent : C:\Users\Thomas\Downloads\TFC.exe

Présent : C:\Users\Thomas\Downloads\ZHPDiag2.exe

~~~~~~ Registre ~~~~~~

Clé Présente : HKLM\Software\OldTimer Tools

Clé Présente : HKLM\Software\TrendMicro\Hijackthis

Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Hijackthis

Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1

Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\HijackThis.exe

~~~~~~ Autre ~~~~~~

########## EOF - "C:\DelFixSearch.txt" - [2053 octets] ##########

------------------------

# DelFix v8.3 - Rapport créé le 05/09/2011 à 22:02

# Mis à jour le 04/08/11 à 11h par Xplode

# Système d'exploitation : Windows 7 Starter (32 bits) [version 6.1.7600]

# Nom d'utilisateur : Thomas - THOMAS-PC (Administrateur)

# Exécuté depuis : C:\Users\Thomas\Desktop\delfix0.exe

# Option [suppression]

~~~~~~ Dossier(s) ~~~~~~

Supprimé : C:\ZHP

Supprimé : C:\Program Files\ZHPDiag

Supprimé : C:\Users\Thomas\Desktop\RK_Quarantine

Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP

~~~~~~ Fichier(s) ~~~~~~

Supprimé : C:\PhysicalDisk0_MBR.bin

Supprimé : C:\TDSSKiller.2.5.17.0_04.09.2011_15.37.43_log.txt

Supprimé : C:\TDSSKiller.2.5.17.0_04.09.2011_15.51.02_log.txt

Supprimé : C:\TDSSKiller.2.5.17.0_04.09.2011_16.24.27_log.txt

Supprimé : C:\Users\Thomas\Desktop\HiJackThis.exe

Supprimé : C:\Users\Thomas\Desktop\RKreport[1].txt

Supprimé : C:\Users\Thomas\Desktop\RogueKiller.exe

Supprimé : C:\Users\Thomas\Desktop\TFC.exe

Supprimé : C:\Users\Thomas\Desktop\ZHPDiag2.exe

Supprimé : C:\Users\Public\Desktop\MBRCheck.lnk

Supprimé : C:\Users\Public\Desktop\ZHPDiag.lnk

Supprimé : C:\Users\Public\Desktop\ZHPFix.lnk

Supprimé : C:\Users\Thomas\Downloads\OTL.exe

Supprimé : C:\Users\Thomas\Downloads\RogueKiller.exe

Supprimé : C:\Users\Thomas\Downloads\tdsskiller.exe

Supprimé : C:\Users\Thomas\Downloads\TFC.exe

Supprimé : C:\Users\Thomas\Downloads\ZHPDiag2.exe

~~~~~~ Registre ~~~~~~

Clé Supprimée : HKLM\Software\OldTimer Tools

Clé Supprimée : HKLM\Software\TrendMicro\Hijackthis

Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Hijackthis

Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1

Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\HijackThis.exe

~~~~~~ Autre ~~~~~~

-> Prefetch vidé

########## EOF - "C:\DelFixSuppr.txt" - [1958 octets] ##########

Pour TDSSkiller , il n'a rien trouvé.

Connexion

Pas encore inscrit ?

[Résolu] Pas moyen de supprimer un virus sur mon PC : je deviens fou !

Messages recommandés

synchronn

tomtom95

synchronn

synchronn

synchronn

tomtom95

synchronn

synchronn

tomtom95

synchronn

Rejoindre la conversation

En ligne récemment 0 membre est en ligne

Zebulon

Outils en ligne

Naviguer