Rapport d'analyse - Pas constatation particulière à ce jour

Sécurité et insécurité. Virus, Trojans, Spywares, Failles etc. …

Modérateur: Modérateurs et Modératrices

Règles du forum
Assiste.com a suspendu l'assistance à la décontamination après presque 15 ans sur l'ancien forum puis celui-ci. Voir :

Procédure de décontamination 1 - Anti-malware
Décontamination anti-malwares

Procédure de décontamination 2 - Anti-malware et antivirus (La Manip)
La Manip - Procédure standard de décontamination

Entretien périodique d'un PC sous Windows
Entretien périodique d'un PC sous Windows

Protection des navigateurs, de la navigation et de la vie privée
Protéger le navigateur, la navigation et la vie privée

Rapport d'analyse - Pas constatation particulière à ce jour

Messagede Mamboo74 » 05 Aoû 2010, 11:12

Ci-joint mon rapport d'analyse :
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Version de la base de données: 4391

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

05/08/2010 11:47:05
mbam-log-2010-08-05 (11-47-05).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 163044
Temps écoulé: 7 minute(s), 31 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 4

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{d08d9f98-1c78-4704-87e6-368b0023d831} (Adware.RelevantKnowledge) -> No action taken.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
P:\Program Files\RelevantKnowledge (Spyware.MarketScore) -> No action taken.

Fichier(s) infecté(s):
P:\Program Files\RelevantKnowledge\MSVCP71.DLL (Spyware.MarketScore) -> No action taken.
P:\Program Files\RelevantKnowledge\MSVCR71.DLL (Spyware.MarketScore) -> No action taken.
P:\Program Files\RelevantKnowledge\rlservice.exe (Spyware.MarketScore) -> No action taken.
P:\Program Files\RelevantKnowledge\rlvknlg.exe (Spyware.MarketScore) -> No action taken.
Mamboo74
 
Messages: 3
Inscription: 05 Aoû 2010, 11:02

Rapport OTL.Txt

Messagede Mamboo74 » 05 Aoû 2010, 11:14

OTL logfile created on: 05/08/2010 11:45:25 - Run 1
OTL by OldTimer - Version 3.2.9.1 Folder = D:\C.Boisier\Configuration - Maintenance\IE\Désinfection Troyen
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 59,00% Memory free
5,00 Gb Paging File | 4,00 Gb Available in Paging File | 76,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = P:\Program Files
Drive C: | 63,48 Gb Total Space | 20,96 Gb Free Space | 33,01% Space Free | Partition Type: NTFS
Drive D: | 39,07 Gb Total Space | 17,32 Gb Free Space | 44,34% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive K: | 67,83 Gb Total Space | 1,62 Gb Free Space | 2,39% Space Free | Partition Type: NTFS
Drive M: | 39,07 Gb Total Space | 10,79 Gb Free Space | 27,61% Space Free | Partition Type: NTFS
Drive N: | 67,83 Gb Total Space | 1,62 Gb Free Space | 2,39% Space Free | Partition Type: NTFS
Drive O: | 50,25 Gb Total Space | 12,10 Gb Free Space | 24,07% Space Free | Partition Type: NTFS
Drive P: | 39,07 Gb Total Space | 30,73 Gb Free Space | 78,65% Space Free | Partition Type: NTFS
Drive R: | 12,00 Gb Total Space | 7,45 Gb Free Space | 62,04% Space Free | Partition Type: NTFS
Drive S: | 50,25 Gb Total Space | 12,10 Gb Free Space | 24,07% Space Free | Partition Type: NTFS
Drive T: | 50,25 Gb Total Space | 12,10 Gb Free Space | 24,07% Space Free | Partition Type: NTFS
Drive Y: | 34,41 Gb Total Space | 13,80 Gb Free Space | 40,11% Space Free | Partition Type: NTFS
Drive Z: | 34,41 Gb Total Space | 13,80 Gb Free Space | 40,11% Space Free | Partition Type: NTFS

Computer Name: DEV_4
Current User Name: C.Boisier
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/08/05 11:04:47 | 000,574,976 | ---- | M] (OldTimer Tools) -- D:\C.Boisier\Configuration - Maintenance\IE\Désinfection Troyen\OTL.exe
PRC - [2010/07/29 20:27:42 | 000,220,128 | ---- | M] () -- P:\Program Files\Macrium\Reflect\ReflectService.exe
PRC - [2010/07/23 04:11:07 | 000,910,296 | ---- | M] (Mozilla Corporation) -- P:\Program Files\Virtual Firefox\firefox.exe
PRC - [2010/07/23 04:11:07 | 000,014,808 | ---- | M] (Mozilla Corporation) -- P:\Program Files\Virtual Firefox\plugin-container.exe
PRC - [2010/07/16 17:32:34 | 000,619,800 | ---- | M] (http://tortoisesvn.net) -- P:\Program Files\TortoiseSVN\bin\TSVNCache.exe
PRC - [2010/07/14 21:12:26 | 006,364,672 | ---- | M] (Martin Prikryl) -- P:\Program Files\WinSCP\WinSCP.exe
PRC - [2010/07/03 18:56:58 | 001,331,200 | ---- | M] (Don HO don.h@free.fr) -- P:\Program Files\Notepad++\notepad++.exe
PRC - [2010/06/20 04:06:46 | 000,349,616 | ---- | M] (Adobe Systems Incorporated) -- P:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe
PRC - [2010/05/31 13:18:16 | 000,323,976 | ---- | M] (BillP Studios) -- P:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
PRC - [2010/05/28 13:04:52 | 000,911,920 | ---- | M] (Secunia) -- P:\Program Files\Secunia\PSI\psi.exe
PRC - [2010/05/27 13:31:18 | 000,030,192 | ---- | M] (Google) -- P:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
PRC - [2010/04/29 15:39:32 | 001,090,952 | ---- | M] (Malwarebytes Corporation) -- P:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
PRC - [2010/04/26 18:04:18 | 000,241,664 | ---- | M] (Ivan BUBLOZ) -- P:\Program Files\Snap Express\Snap Express.exe
PRC - [2010/04/06 00:41:46 | 000,116,224 | ---- | M] (Brio) -- P:\Program Files\FolderSize\FolderSizeSvc.exe
PRC - [2010/04/03 14:05:46 | 000,380,928 | ---- | M] () -- P:\Program Files\Launchy\Launchy.exe
PRC - [2010/03/19 10:49:20 | 000,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/02/05 11:26:58 | 000,083,440 | ---- | M] (Google) -- C:\Documents and Settings\C.Boisier\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe
PRC - [2010/01/22 21:57:08 | 000,395,824 | ---- | M] (VMware, Inc.) -- C:\WINDOWS\system32\vmnat.exe
PRC - [2010/01/22 21:56:46 | 000,064,048 | ---- | M] (VMware, Inc.) -- P:\Program Files\VMware\VMware Player\hqtray.exe
PRC - [2010/01/22 21:56:44 | 000,334,384 | ---- | M] (VMware, Inc.) -- C:\WINDOWS\system32\vmnetdhcp.exe
PRC - [2010/01/22 21:56:28 | 000,113,200 | ---- | M] (VMware, Inc.) -- P:\Program Files\VMware\VMware Player\vmware-authd.exe
PRC - [2010/01/22 21:00:48 | 000,563,760 | ---- | M] (VMware, Inc.) -- P:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
PRC - [2009/12/09 17:24:14 | 006,909,952 | ---- | M] (W3C INRIA) -- P:\Program Files\Amaya\WindowsWX\bin\amaya.exe
PRC - [2009/06/22 21:23:38 | 000,196,424 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
PRC - [2009/05/19 12:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) -- P:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2009/03/30 16:28:36 | 001,533,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE
PRC - [2009/03/30 16:28:36 | 000,183,152 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVCM.EXE
PRC - [2009/02/06 17:07:48 | 000,027,512 | ---- | M] (Microsoft Corporation) -- P:\Program Files\Windows Live\Contacts\wlcomm.exe
PRC - [2009/01/22 12:38:32 | 002,749,952 | ---- | M] (Luis Cobian) -- C:\Program Files\Cobian Backup 9\cbInterface.exe
PRC - [2009/01/22 12:38:26 | 000,579,584 | ---- | M] (Luis Cobian) -- C:\Program Files\Cobian Backup 9\Cobian.exe
PRC - [2008/12/19 13:22:51 | 000,064,664 | ---- | M] (Smartcom) -- C:\Program Files\Fichiers communs\SmartCom\Services\SmartcomSCPService.exe
PRC - [2008/10/20 22:18:26 | 000,071,096 | ---- | M] () -- P:\Program Files\CDBurnerXP\NMSAccessU.exe
PRC - [2008/10/02 22:07:44 | 000,924,160 | ---- | M] () -- P:\Program Files\Free CSS Toolbox\csstool.exe
PRC - [2008/08/04 11:44:48 | 000,108,392 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
PRC - [2008/08/04 11:44:46 | 000,115,560 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
PRC - [2008/08/04 11:44:38 | 001,660,288 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
PRC - [2008/08/04 11:44:36 | 002,479,488 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
PRC - [2008/08/04 11:44:30 | 002,240,944 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
PRC - [2008/07/10 03:49:44 | 000,098,840 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
PRC - [2008/04/13 20:34:04 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/10/09 08:25:12 | 000,139,264 | ---- | M] () -- P:\Program Files\Orange\Synchronisation Contacts\SyncManager.exe
PRC - [2007/10/09 08:24:08 | 000,684,032 | ---- | M] (Voxmobili) -- P:\Program Files\Orange\Synchronisation Contacts\Voxsync.exe
PRC - [2007/08/08 11:13:24 | 000,831,488 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMax4.exe
PRC - [2007/07/24 12:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- C:\Program Files\Fichiers communs\Protexis\License Service\PsiService_2.exe
PRC - [2007/07/10 06:39:32 | 001,036,288 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe
PRC - [2007/01/04 20:48:52 | 000,112,152 | R--- | M] (InterVideo) -- C:\Program Files\Fichiers communs\InterVideo\RegMgr\iviRegMgr.exe
PRC - [2006/05/01 14:15:56 | 000,126,976 | ---- | M] () -- P:\Program Files\Radio Fr Solo\RFScheduler.exe
PRC - [2003/06/20 00:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\MDM.EXE
PRC - [2002/03/19 18:30:00 | 000,045,632 | ---- | M] () -- C:\WINDOWS\system32\TaskSwitch.exe


========== Modules (SafeList) ==========

MOD - [2010/08/05 11:04:47 | 000,574,976 | ---- | M] (OldTimer Tools) -- D:\C.Boisier\Configuration - Maintenance\IE\Désinfection Troyen\OTL.exe
MOD - [2010/07/16 17:32:32 | 000,815,384 | ---- | M] (http://tortoisesvn.net) -- P:\Program Files\TortoiseSVN\bin\TortoiseSVN.dll
MOD - [2010/07/16 17:32:32 | 000,048,920 | ---- | M] (http://tortoisesvn.net) -- P:\Program Files\TortoiseSVN\bin\TortoiseStub.dll
MOD - [2010/07/16 17:32:20 | 000,186,136 | ---- | M] (Apache Software Foundation) -- P:\Program Files\TortoiseSVN\bin\libaprutil_tsvn.dll
MOD - [2010/07/16 17:32:20 | 000,128,280 | ---- | M] (Apache Software Foundation) -- P:\Program Files\TortoiseSVN\bin\libapr_tsvn.dll
MOD - [2010/07/16 17:32:18 | 000,062,744 | ---- | M] (Free Software Foundation) -- P:\Program Files\TortoiseSVN\bin\intl3_tsvn.dll
MOD - [2010/07/16 17:24:34 | 003,332,888 | ---- | M] (http://tortoisesvn.net) -- P:\Program Files\TortoiseSVN\Languages\TortoiseProc1036.dll
MOD - [2010/03/21 08:55:16 | 000,087,304 | ---- | M] (http://tortoisesvn.net) -- C:\Program Files\Fichiers communs\TortoiseOverlays\TortoiseOverlays.dll
MOD - [2009/07/12 00:02:02 | 000,653,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll
MOD - [2009/07/12 00:02:00 | 000,569,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll
MOD - [2009/03/08 15:50:00 | 000,062,776 | ---- | M] (BillP Studios) -- P:\Program Files\BillP Studios\WinPatrol\patrolpro.dll
MOD - [2009/02/27 17:37:16 | 000,311,296 | ---- | M] () -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\pdfshell.FRA
MOD - [2008/08/04 11:45:04 | 000,357,760 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\sysfer.dll
MOD - [2008/05/19 07:33:20 | 004,445,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msi.dll
MOD - [2008/04/13 20:33:42 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shfolder.dll
MOD - [2008/04/13 20:32:04 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008/04/13 12:36:48 | 002,986,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\xpsp2res.dll
MOD - [1998/06/12 01:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSSCRFR.DLL


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - File not found [Auto | Stopped] -- C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\016355~1.EXE -- (0163551233669445mcinstcleanup) McAfee Application Installer Cleanup (0163551233669445)
SRV - [2010/07/29 20:27:42 | 000,220,128 | ---- | M] () [Auto | Running] -- P:\Program Files\Macrium\Reflect\ReflectService.exe -- (ReflectService)
SRV - [2010/05/27 13:31:18 | 000,030,192 | ---- | M] (Google) [On_Demand | Stopped] -- P:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe -- (GoogleDesktopManager-051210-111108)
SRV - [2010/04/06 00:41:46 | 000,116,224 | ---- | M] (Brio) [Auto | Running] -- P:\Program Files\FolderSize\FolderSizeSvc.exe -- (FolderSize)
SRV - [2010/03/19 10:49:20 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/03/18 16:47:22 | 000,035,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe -- (aspnet_state)
SRV - [2010/03/18 13:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/01/26 18:45:08 | 000,243,056 | ---- | M] (CybelSoft) [On_Demand | Stopped] -- P:\Program Files\ma-config.com\maconfservice.exe -- (maconfservice)
SRV - [2010/01/22 21:57:08 | 000,395,824 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\WINDOWS\system32\vmnat.exe -- (VMware NAT Service)
SRV - [2010/01/22 21:56:44 | 000,334,384 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\WINDOWS\system32\vmnetdhcp.exe -- (VMnetDHCP)
SRV - [2010/01/22 21:56:28 | 000,113,200 | ---- | M] (VMware, Inc.) [Auto | Running] -- P:\Program Files\VMware\VMware Player\vmware-authd.exe -- (VMAuthdService)
SRV - [2010/01/22 21:00:48 | 000,563,760 | ---- | M] (VMware, Inc.) [Auto | Running] -- P:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe -- (VMUSBArbService)
SRV - [2009/10/12 14:32:24 | 000,191,024 | ---- | M] (VMware, Inc.) [On_Demand | Stopped] -- P:\Program Files\VMware\VMware Player\vmware-ufad.exe -- (ufad-ws60)
SRV - [2009/08/05 23:48:42 | 000,704,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- P:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2009/05/19 12:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) [Auto | Running] -- P:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2009/03/30 16:28:36 | 001,533,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV - [2009/03/30 03:25:26 | 043,010,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\sqlservr.exe -- (MSSQLSERVER) SQL Server (MSSQLSERVER)
SRV - [2009/03/30 03:23:32 | 000,254,808 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe -- (SQLBrowser)
SRV - [2009/03/30 03:23:24 | 000,366,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE -- (SQLSERVERAGENT) Agent SQL Server (MSSQLSERVER)
SRV - [2009/03/30 02:16:52 | 001,113,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft SQL Server\MSRS10.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesService.exe -- (ReportServer) SQL Server Reporting Services (MSSQLSERVER)
SRV - [2009/03/30 01:51:38 | 021,953,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\bin\msmdsrv.exe -- (MSSQLServerOLAPService) SQL Server Analysis Services (MSSQLSERVER)
SRV - [2008/12/19 13:22:51 | 000,064,664 | ---- | M] (Smartcom) [Auto | Running] -- C:\Program Files\Fichiers communs\SmartCom\Services\SmartcomSCPService.exe -- (SmartcomSCPService)
SRV - [2008/10/20 22:18:26 | 000,071,096 | ---- | M] () [Auto | Running] -- P:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU)
SRV - [2008/08/04 11:44:48 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2008/08/04 11:44:48 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2008/08/04 11:44:38 | 000,288,136 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE -- (SNAC)
SRV - [2008/08/04 11:44:36 | 002,479,488 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe -- (SmcService)
SRV - [2008/08/04 11:44:30 | 002,240,944 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe -- (Symantec AntiVirus)
SRV - [2008/07/29 14:10:46 | 003,201,024 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe -- (msvsmon90)
SRV - [2008/07/10 11:49:34 | 000,047,128 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE -- (MSSQLServerADHelper100)
SRV - [2008/07/10 03:49:44 | 000,098,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe -- (SQLWriter)
SRV - [2008/07/10 02:22:36 | 000,218,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft SQL Server\100\DTS\Binn\MsDtsSrvr.exe -- (MsDtsServer100)
SRV - [2008/07/10 02:15:32 | 000,031,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\fdlauncher.exe -- (MSSQLFDLauncher) SQL Full-text Filter Daemon Launcher (MSSQLSERVER)
SRV - [2007/09/10 17:49:13 | 003,093,872 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_3.EXE -- (LiveUpdate)
SRV - [2007/07/24 12:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2007/01/04 20:48:52 | 000,112,152 | R--- | M] (InterVideo) [Auto | Running] -- C:\Program Files\Fichiers communs\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr)
SRV - [2006/10/26 15:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2003/06/20 00:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM)
SRV - [1998/06/06 01:00:00 | 000,034,036 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\VARPC.EXE -- (Visual Studio Analyzer RPC bridge)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | Auto | Stopped] -- Q:\VirtualBox\Portable-VirtualBox\app32\drivers\USB\filter\VBoxUSBMon.sys -- (VBoxUSBMon)
DRV - File not found [Kernel | Auto | Stopped] -- Q:\VirtualBox\Portable-VirtualBox\app32\drivers\USB\device\VBoxUSB.sys -- (VBoxUSB)
DRV - File not found [Kernel | Auto | Stopped] -- Q:\VirtualBox\Portable-VirtualBox\app32\drivers\network\netadp\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV - File not found [Kernel | Auto | Stopped] -- Q:\VirtualBox\Portable-VirtualBox\app32\drivers\VBoxDrv\VBoxDrv.sys -- (VBoxDRV)
DRV - File not found [Kernel | On_Demand | Stopped] -- F:\LiberKey\Apps\PartitionFindandMount\App\PartitionFindandMount\slicedisk.sys -- (SliceDisk5)
DRV - File not found [Kernel | On_Demand | Stopped] -- P:\Program Files\SiSoftware\Sandra Lite 2009.SP3\WNt500x86\Sandra.sys -- (SANDRA)
DRV - [2010/07/29 20:28:02 | 000,015,328 | ---- | M] (Macrium Software) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\pssnap.sys -- (pssnap)
DRV - [2010/07/13 10:00:00 | 001,362,608 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\VirusDefs\20100804.040\NAVEX15.SYS -- (NAVEX15)
DRV - [2010/07/13 10:00:00 | 000,085,424 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\VirusDefs\20100804.040\NAVENG.SYS -- (NAVENG)
DRV - [2010/06/02 19:59:06 | 000,161,920 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WpsHelper.sys -- (WpsHelper)
DRV - [2010/05/28 13:04:52 | 000,014,896 | ---- | M] (Secunia) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\psi_mf.sys -- (PSI)
DRV - [2010/05/26 10:00:00 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2010/05/26 10:00:00 | 000,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2010/04/29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2010/02/11 15:28:26 | 000,014,336 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- P:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys -- (driverhardwarev2)
DRV - [2010/01/22 21:58:02 | 000,032,688 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\vmnetbridge.sys -- (VMnetBridge)
DRV - [2010/01/22 21:57:58 | 000,026,288 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\vmnetuserif.sys -- (VMnetuserif)
DRV - [2010/01/22 21:57:56 | 000,023,216 | ---- | M] (VMware, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VMkbd.sys -- (vmkbd)
DRV - [2010/01/22 21:57:54 | 000,854,192 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\vmx86.sys -- (vmx86)
DRV - [2010/01/22 21:57:54 | 000,070,704 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\vmci.sys -- (vmci)
DRV - [2010/01/22 21:00:42 | 000,032,304 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hcmon.sys -- (hcmon)
DRV - [2010/01/22 17:13:00 | 000,031,280 | R--- | M] (VMware, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vmusb.sys -- (vmusb)
DRV - [2010/01/22 17:13:00 | 000,016,560 | R--- | M] (VMware, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vmnetadapter.sys -- (VMnetAdapter)
DRV - [2010/01/20 17:53:06 | 000,013,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\epmntdrv.sys -- (epmntdrv)
DRV - [2010/01/20 17:53:04 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2009/12/18 00:25:12 | 000,026,024 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV - [2009/11/12 14:48:56 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009/11/11 16:11:30 | 000,181,792 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV - [2009/11/02 15:09:57 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009/10/14 13:29:54 | 000,030,880 | ---- | M] (Intel Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\iqvw32.sys -- (NAL)
DRV - [2009/10/12 14:31:52 | 000,022,448 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- P:\Program Files\VMware\VMware Player\vstor2-ws60.sys -- (vstor2-ws60)
DRV - [2009/09/15 09:36:10 | 000,031,240 | ---- | M] (O&O Software GmbH) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\oodivdh.sys -- (oodivdh)
DRV - [2009/09/15 09:36:08 | 000,163,848 | ---- | M] (O&O Software GmbH) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\oodivd.sys -- (oodivd)
DRV - [2009/08/05 23:48:42 | 000,054,752 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr)
DRV - [2009/03/30 03:09:28 | 000,239,336 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\RsFx0103.sys -- (RsFx0103)
DRV - [2009/02/03 16:11:58 | 000,123,952 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2009/01/21 15:25:22 | 000,137,384 | ---- | M] (EldoS Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cbfs32.sys -- (CbFs)
DRV - [2009/01/21 12:42:56 | 006,278,560 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm)
DRV - [2008/12/19 13:23:12 | 000,035,328 | ---- | M] (CACE Technologies) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\WPXT.sys -- (WPXT) WinPcap Packet Driver (WPXT)
DRV - [2008/12/05 07:58:48 | 000,241,296 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e1e5132.sys -- (e1express) Intel(R)
DRV - [2008/08/04 11:45:02 | 000,040,832 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\WPSDRVnt.sys -- (WPS)
DRV - [2008/08/04 11:44:50 | 000,317,616 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2008/08/04 11:44:50 | 000,279,088 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\srtsp.sys -- (SRTSP)
DRV - [2008/08/04 11:44:50 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2008/08/04 11:44:42 | 000,091,520 | ---- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\SYSTEM32\Drivers\SysPlant.sys -- (SysPlant)
DRV - [2008/08/04 11:44:42 | 000,049,536 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Teefer2.sys -- (Teefer2)
DRV - [2008/08/04 11:44:12 | 000,191,536 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2008/08/04 11:44:12 | 000,027,696 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV - [2008/08/04 11:44:08 | 000,420,400 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2008/07/30 18:42:12 | 000,023,888 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\COH_Mon.sys -- (COH_Mon)
DRV - [2008/04/13 12:53:10 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2008/04/13 10:36:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008/02/12 04:42:38 | 000,232,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\VMM.sys -- (vmm)
DRV - [2008/02/05 02:50:44 | 000,059,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VMNetSrv.sys -- (VPCNetS2)
DRV - [2008/01/25 11:12:34 | 000,025,088 | ---- | M] (TeamViewer GmbH) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\teamviewervpn.sys -- (teamviewervpn)
DRV - [2007/07/10 13:08:24 | 000,307,712 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV - [2007/06/29 15:20:30 | 000,051,712 | ---- | M] (Sagem Communication) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\UsbSagCom.sys -- (UsbSagCom)
DRV - [2007/05/11 21:00:14 | 000,045,056 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HECI.sys -- (HECI) Intel(R)
DRV - [2007/04/17 21:09:28 | 000,011,032 | ---- | M] (InterVideo) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\regi.sys -- (regi)
DRV - [2007/03/21 19:37:28 | 000,101,520 | ---- | M] (Syntek Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\STK02HW2.sys -- (DCamUSBSTK02H)
DRV - [2007/03/12 15:25:24 | 000,101,520 | ---- | M] (Syntek Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\STK02NW2.sys -- (DCamUSBSTK02N)
DRV - [2007/02/16 02:57:04 | 000,034,760 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2007/01/23 22:13:26 | 000,036,608 | ---- | M] (Infineon Technologies AG) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ifxtpm.sys -- (IFXTPM)
DRV - [2006/09/24 15:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2006/05/18 10:48:50 | 000,047,249 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftdibus.sys -- (FTDIBUS)
DRV - [2005/10/24 15:09:12 | 000,017,664 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PCASp50.SYS -- (PCASp50)
DRV - [2005/09/20 18:27:20 | 000,010,368 | ---- | M] (InterVideo, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\iviaspi.sys -- (Iviaspi)
DRV - [2005/06/17 21:20:20 | 000,119,424 | R--- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl)
DRV - [2004/12/29 16:34:10 | 000,167,424 | ---- | M] (SiS Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sis163u.sys -- (SIS163u)
DRV - [2004/11/26 20:22:08 | 000,012,800 | ---- | M] () [Kernel | Auto | Running] -- M:\Masters\Maintenance\Booting\CMOS PassWord Recovery Tools\v5.0\cmospwd-5.0\windows\ioperm.sys -- (ioperm)
DRV - [2004/08/03 19:29:50 | 000,019,455 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wVchNTxx.sys -- (iAimFP4)
DRV - [2004/08/03 19:29:48 | 000,012,063 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wSiINTxx.sys -- (iAimFP3)
DRV - [2004/08/03 19:29:46 | 000,025,471 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wATV10nt.sys -- (iAimTV5)
DRV - [2004/08/03 19:29:46 | 000,023,615 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wCh7xxNT.sys -- (iAimTV4)
DRV - [2004/08/03 19:29:46 | 000,022,271 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wATV06nt.sys -- (iAimTV6)
DRV - [2004/08/03 19:29:44 | 000,033,599 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wATV04nt.sys -- (iAimTV3)
DRV - [2004/08/03 19:29:44 | 000,019,551 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wATV02NT.sys -- (iAimTV1)
DRV - [2004/08/03 19:29:42 | 000,029,311 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wATV01nt.sys -- (iAimTV0)
DRV - [2004/08/03 19:29:42 | 000,011,871 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV09NT.sys -- (iAimFP7)
DRV - [2004/08/03 19:29:40 | 000,011,807 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV07nt.sys -- (iAimFP5)
DRV - [2004/08/03 19:29:40 | 000,011,295 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV08NT.sys -- (iAimFP6)
DRV - [2004/08/03 19:29:38 | 000,161,020 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\i81xnt5.sys -- (i81x)
DRV - [2004/08/03 19:29:38 | 000,012,415 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV01nt.sys -- (iAimFP0)
DRV - [2004/08/03 19:29:38 | 000,012,127 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV02NT.sys -- (iAimFP1)
DRV - [2004/08/03 19:29:38 | 000,011,775 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV05NT.sys -- (iAimFP2)
DRV - [2002/05/08 19:44:42 | 000,105,472 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2002/04/04 07:32:06 | 000,028,416 | R--- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symmpi.sys -- (Symmpi)
DRV - [2001/08/17 22:53:42 | 000,004,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\loop.sys -- (msloop)
DRV - [2001/08/17 17:20:04 | 000,096,256 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ac97intc.sys -- (ac97intc) Service d'installation du pilote audio Intel(r) 82801 (WDM)
DRV - [2001/08/17 17:07:42 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3)
DRV - [2001/08/17 17:07:40 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi)
DRV - [2001/08/17 17:07:36 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx)
DRV - [2001/08/17 17:07:34 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810)
DRV - [1996/04/03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.hp.com
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;<local>
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 192.168.0.1:80

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.hp.com
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;<local>
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 192.168.0.1:80

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.hp.com

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.hp.com

IE - HKU\S-1-5-21-854245398-583907252-682003330-1287\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-854245398-583907252-682003330-1287\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-854245398-583907252-682003330-1287\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://arve-info.com/arve-info/index.php/en [binary data]
IE - HKU\S-1-5-21-854245398-583907252-682003330-1287\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://arve-info.com/arve-info/index.php/fr
IE - HKU\S-1-5-21-854245398-583907252-682003330-1287\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-854245398-583907252-682003330-1287\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-854245398-583907252-682003330-1287\..\URLSearchHook: {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - P:\Program Files\pdfforge Toolbar\SearchSettings.dll (GreenTree Applications, Inc.)
IE - HKU\S-1-5-21-854245398-583907252-682003330-1287\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-854245398-583907252-682003330-1287\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKU\S-1-5-21-854245398-583907252-682003330-1287\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 192.168.0.1:80

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "DAEMON Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://mail.google.com/mail/?hl=fr/#inbox|http://bourse.lesechos.fr/bourse/index.jsp|http://www.filehippo.com/"
FF - prefs.js..extensions.enabledItems: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20100503
FF - prefs.js..extensions.enabledItems: foxmarks@kei.com:3.7.8
FF - prefs.js..extensions.enabledItems: {ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}:1.3
FF - prefs.js..extensions.enabledItems: {AB7308B2-C13C-4eba-AC78-2AD55B96EE09}:3.0.0
FF - prefs.js..extensions.enabledItems: {0c8fbd76-bdeb-4c52-9b24-d587ce7b9dc3}:2.0.5
FF - prefs.js..extensions.enabledItems: {340c2bbc-ce74-4362-90b5-7c26312808ef}:1.4.3
FF - prefs.js..extensions.enabledItems: {1280606b-2510-4fe0-97ef-9b5a22eafe41}:1.0.9
FF - prefs.js..extensions.enabledItems: support@lastpass.com:1.69.1
FF - prefs.js..extensions.enabledItems: firefox@ghostery.com:2.2.1
FF - prefs.js..extensions.enabledItems: yslow@yahoo-inc.com:2.0.7
FF - prefs.js..extensions.enabledItems: {B17C1C5A-04B1-11DB-9804-B622A1EF5492}:1.2
FF - prefs.js..extensions.enabledItems: {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.9
FF - prefs.js..extensions.enabledItems: {c45c406e-ab73-11d8-be73-000a95be3b12}:1.1.8
FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.5.4
FF - prefs.js..extensions.enabledItems: {4BBDD651-70CF-4821-84F8-2B918CF89CA3}:6.3.3.2
FF - prefs.js..extensions.enabledItems: firefinder@robertnyman.com:1.01
FF - prefs.js..extensions.enabledItems: FirePHPExtension-Build@firephp.org:0.4.3
FF - prefs.js..extensions.enabledItems: {3e9bb2a7-62ca-4efa-a4e6-f6f6168a652d}:0.8.19
FF - prefs.js..extensions.enabledItems: treestyletab@piro.sakura.ne.jp:0.10.2010073001
FF - prefs.js..extensions.enabledItems: ss_ffao@w3techs.com:1.0
FF - prefs.js..extensions.enabledItems: gmail_sigs@blankcanvasweb.com:1.12.7b
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.1
FF - prefs.js..extensions.enabledItems: {71328583-3CA7-4809-B4BA-570A85818FBB}:0.6.3
FF - prefs.js..extensions.enabledItems: {e1170235-2845-420c-acc3-42261a29dd46}:4.0.1
FF - prefs.js..extensions.enabledItems: ctrl-tab@design-noir.de:0.21.1
FF - prefs.js..extensions.enabledItems: inspector@mozilla.org:2.0.7
FF - prefs.js..extensions.enabledItems: {CB03C4C2-AD8F-11DE-A8F9-FF7A56D89593}:2.0
FF - prefs.js..extensions.enabledItems: {a644a980-c5f5-11dd-ad8b-0800200c9a66}:2.0
FF - prefs.js..extensions.enabledItems: {582195F5-92E7-40a0-A127-DB71295901D7}:0.6
FF - prefs.js..extensions.enabledItems: {3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}:0.8.6.1
FF - prefs.js..extensions.enabledItems: {1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}:2.5.10.1
FF - prefs.js..extensions.enabledItems: {9AA46F4F-4DC7-4c06-97AF-5035170634FE}:3.3.3
FF - prefs.js..extensions.enabledItems: {ca0849e8-2c76-42ae-9abe-34e14d337acf}:1.91
FF - prefs.js..extensions.enabledItems: {7f57cf46-4467-4c2d-adfa-0cba7c507e54}:0.19.5
FF - prefs.js..extensions.enabledItems: {A4732521-77D9-447E-A557-B279AC923F06}:0.6.8
FF - prefs.js..extensions.enabledItems: {E6C1199F-E687-42da-8C24-E7770CC3AE66}:1.7.2
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8
FF - prefs.js..extensions.enabledItems: {BE2100B3-1D80-48eb-ACCF-D26750644378}:0.4.23
FF - prefs.js..extensions.enabledItems: {0b457cAA-602d-484a-8fe7-c1d894a011ba}:0.80
FF - prefs.js..extensions.enabledItems: {61D0D7AF-4FF6-476a-B68F-6531F613A6D8}:0.2.2
FF - prefs.js..network.proxy.share_proxy_settings: true

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: P:\Program Files\Virtual Firefox\components [2010/07/26 15:03:19 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: P:\Program Files\Virtual Firefox\plugins [2010/07/26 15:03:18 | 000,000,000 | ---D | M]

[2009/02/05 17:06:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Extensions
[2010/08/05 09:28:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions
[2010/08/04 15:57:01 | 000,000,000 | ---D | M] (FireShot) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}
[2010/08/02 12:39:07 | 000,000,000 | ---D | M] (Resurrect Pages) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{0c8fbd76-bdeb-4c52-9b24-d587ce7b9dc3}
[2010/08/02 12:38:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe41}
[2010/08/04 15:57:09 | 000,000,000 | ---D | M] (IE Tab 2 (FF 3.6+)) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
[2010/08/02 12:38:58 | 000,000,000 | ---D | M] (Firefox Sync) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{340c2bbc-ce74-4362-90b5-7c26312808ef}
[2010/08/04 15:57:28 | 000,000,000 | ---D | M] (Html Validator) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}
[2010/08/02 13:46:39 | 000,000,000 | ---D | M] (ShowIP) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{3e9bb2a7-62ca-4efa-a4e6-f6f6168a652d}
[2010/08/02 13:47:05 | 000,000,000 | ---D | M] (FEBE) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}
[2010/08/04 15:57:16 | 000,000,000 | ---D | M] (Gmail Manager) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{582195F5-92E7-40a0-A127-DB71295901D7}
[2010/08/04 15:57:00 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{61D0D7AF-4FF6-476a-B68F-6531F613A6D8}
[2010/08/04 15:57:16 | 000,000,000 | ---D | M] (CacheViewer) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{71328583-3CA7-4809-B4BA-570A85818FBB}
[2010/08/04 15:57:03 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2010/08/04 15:57:07 | 000,000,000 | ---D | M] (Mozilla Archive Format) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{7f57cf46-4467-4c2d-adfa-0cba7c507e54}
[2010/08/04 15:57:08 | 000,000,000 | ---D | M] (ImTranslator) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}
[2010/08/02 09:49:53 | 000,000,000 | ---D | M] (WOT) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2010/08/04 15:57:03 | 000,000,000 | ---D | M] (Image Toolbar) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{A4732521-77D9-447E-A557-B279AC923F06}
[2010/08/04 15:57:16 | 000,000,000 | ---D | M] (ScheduleOnce Google Calendar Add-on) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{a644a980-c5f5-11dd-ad8b-0800200c9a66}
[2010/08/02 12:38:43 | 000,000,000 | ---D | M] (FireFTP) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}
[2010/08/02 12:21:08 | 000,000,000 | ---D | M] (CSS Validator) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{AB7308B2-C13C-4eba-AC78-2AD55B96EE09}
[2010/08/02 12:38:43 | 000,000,000 | ---D | M] (Password Exporter) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}
[2010/08/04 15:57:01 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010/08/04 15:57:01 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{BE2100B3-1D80-48eb-ACCF-D26750644378}
[2010/08/02 12:38:39 | 000,000,000 | ---D | M] (Web Developer) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}
[2010/08/04 15:57:08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{ca0849e8-2c76-42ae-9abe-34e14d337acf}
[2010/08/04 15:57:16 | 000,000,000 | ---D | M] (ScheduleOnce Gmail Add-on) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{CB03C4C2-AD8F-11DE-A8F9-FF7A56D89593}
[2010/08/04 15:57:17 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010/08/04 15:57:16 | 000,000,000 | ---D | M] (Clipmarks) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{e1170235-2845-420c-acc3-42261a29dd46}
[2010/08/04 15:57:01 | 000,000,000 | ---D | M] (QuickJava) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}
[2010/08/02 12:21:09 | 000,000,000 | ---D | M] (FoxTab) -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}
[2010/08/04 15:57:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\ctrl-tab@design-noir.de
[2010/08/02 12:38:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\firebug@software.joehewitt.com
[2010/08/02 13:47:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\firefinder@robertnyman.com
[2010/08/02 12:38:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\firefox@ghostery.com
[2010/08/02 13:47:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\FirePHPExtension-Build@firephp.org
[2010/08/02 09:49:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\foxmarks@kei.com
[2010/08/03 13:58:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\gmail_sigs@blankcanvasweb.com
[2010/08/04 15:57:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\inspector@mozilla.org
[2010/08/02 13:46:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\ss_ffao@w3techs.com
[2010/08/02 12:38:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\support@lastpass.com
[2010/08/02 13:46:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\treestyletab@piro.sakura.ne.jp
[2010/08/02 12:38:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\yslow@yahoo-inc.com
[2010/08/02 13:47:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\FirePHPExtension-Build@firephp.org\__MACOSX
[2010/08/02 13:47:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\FirePHPExtension-Build@firephp.org\chrome
[2010/08/02 13:47:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\FirePHPExtension-Build@firephp.org\defaults
[2010/05/20 11:53:52 | 000,001,481 | ---- | M] () -- C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\searchplugins\joomla-jed.xml

O1 HOSTS File: ([2006/03/02 04:00:00 | 000,000,790 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - P:\Program Files\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (DebugBar BHO) - {69FC0024-10EB-480A-BBF2-3BF4E78E17B1} - P:\Program Files\Core Services\DebugBar\DebugInfoBar.dll (Core Services)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live ID) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (LastPass Browser Helper Object) - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - P:\Program Files\LastPass\LPBar.dll (LastPass)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - P:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll (Google Inc.)
O2 - BHO: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - P:\Program Files\pdfforge Toolbar\WidgiToolbarIE.dll (GreenTree Applications, Inc.)
O2 - BHO: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - P:\Program Files\pdfforge Toolbar\SearchSettings.dll (GreenTree Applications, Inc.)
O3 - HKLM\..\Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No CLSID value found.
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - P:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (DebugBar) - {3E1201F4-1707-409F-BB45-A5F192381DA0} - P:\Program Files\Core Services\DebugBar\DebugToolBar.dll (Core Services)
O3 - HKLM\..\Toolbar: (FireShot) - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} - C:\Documents and Settings\C.Boisier\Application Data\Mozilla\Firefox\Profiles\uwkiqjhf.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}\library\FSAddin-0.85.dll ()
O3 - HKLM\..\Toolbar: (LastPass Toolbar) - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - P:\Program Files\LastPass\LPBar.dll (LastPass)
O3 - HKLM\..\Toolbar: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - P:\Program Files\pdfforge Toolbar\WidgiToolbarIE.dll (GreenTree Applications, Inc.)
O3 - HKLM\..\Toolbar: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - P:\Program Files\Orbitdownloader\GrabPro.dll ()
O3 - HKU\S-1-5-21-854245398-583907252-682003330-1287\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - P:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-854245398-583907252-682003330-1287\..\Toolbar\WebBrowser: (DebugBar) - {3E1201F4-1707-409F-BB45-A5F192381DA0} - P:\Program Files\Core Services\DebugBar\DebugToolBar.dll (Core Services)
O3 - HKU\S-1-5-21-854245398-583907252-682003330-1287\..\Toolbar\WebBrowser: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - P:\Program Files\Orbitdownloader\GrabPro.dll ()
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [CoolSwitch] C:\WINDOWS\system32\TaskSwitch.exe ()
O4 - HKLM..\Run: [Google Desktop Search] P:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
O4 - HKLM..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [VMware hqtray] P:\Program Files\VMware\VMware Player\hqtray.exe (VMware, Inc.)
O4 - HKLM..\Run: [WinPatrol] P:\Program Files\BillP Studios\WinPatrol\winpatrol.exe (BillP Studios)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 223
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-854245398-583907252-682003330-1287\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-854245398-583907252-682003330-1287\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = [binary data]
O7 - HKU\S-1-5-21-854245398-583907252-682003330-1287\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = [binary data]
O8 - Extra context menu item: &Download by Orbit - P:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: &Grab video by Orbit - P:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Do&wnload selected by Orbit - P:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Down&load all by Orbit - P:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: E&xporter vers Microsoft Excel - C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - P:\Program Files\WinHTTrack\WinHTTrackIEBar.dll ()
O9 - Extra 'Tools' menuitem : Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - P:\Program Files\WinHTTrack\WinHTTrackIEBar.dll ()
O9 - Extra Button: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - P:\Program Files\LastPass\LPBar.dll (LastPass)
O9 - Extra Button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - P:\Program Files\VMware\VMware Player\vsocklib.dll (VMware, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - P:\Program Files\VMware\VMware Player\vsocklib.dll (VMware, Inc.)
O15 - HKU\S-1-5-21-854245398-583907252-682003330-1287\..Trusted Domains: localhost ([]http in Trusted sites)
O15 - HKU\S-1-5-21-854245398-583907252-682003330-1287\..Trusted Ranges: GD ([http] in Local intranet)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 3737497000 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.5 192.168.0.3
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = arve-info.loc
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49b2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skyline {3a4f9195-65a8-11d5-85c1-0001023952c1} - P:\Program Files\Skyline\TerraExplorer\TerraExplorerX.dll (Skyline software systems Inc.)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - P:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (P:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) - P:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\BGInfo.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\BGInfo.bmp
O27 - HKLM IFEO\taskmgr.exe: Debugger - "M:\MASTERS\MAINTENANCE\PROCESS EXPLORER\PROCEXP.EXE" (Sysinternals - www.sysinternals.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/04/30 18:01:00 | 000,000,053 | -HS- | M] () - R:\Autorun.inf -- [ NTFS ]
O33 - MountPoints2\{427e9ab0-f418-11dd-8514-00237d214661}\Shell\AutoRun\command - "" = V:\wubi.exe -- File not found
O33 - MountPoints2\{718f2dad-0bee-11df-862f-00237d214661}\Shell\AutoRun\command - "" = F:\LiberKey\LiberKey.exe -- File not found
O33 - MountPoints2\{718f2dad-0bee-11df-862f-00237d214661}\Shell\Menu1\command - "" = F:\LiberKey\LiberKey.exe -- File not found
O33 - MountPoints2\{a7e92cb6-5367-11df-867c-005056c00008}\Shell\default\command - "" = F:\Key-Installer.exe -- File not found
O33 - MountPoints2\{b01d3013-1c5a-11df-8642-00237d214661}\Shell\AutoRun\command - "" = F:\LiberKey\LiberKey.exe -- File not found
O33 - MountPoints2\{b01d3013-1c5a-11df-8642-00237d214661}\Shell\Menu1\command - "" = F:\LiberKey\LiberKey.exe -- File not found
O33 - MountPoints2\{cae75916-d7fc-11de-85f5-00237d214661}\Shell\AutoRun\command - "" = X:\AllwaySync'n'Go.exe -- File not found
O33 - MountPoints2\{edf5a733-c9e1-11de-85ea-00237d214661}\Shell\AutoRun\command - "" = F:\KILLDISK.EXE -- File not found
O33 - MountPoints2\{edf5a734-c9e1-11de-85ea-00237d214661}\Shell\AutoRun\command - "" = H:\setupSNK.exe -- File not found
O33 - MountPoints2\{edf5a755-c9e1-11de-85ea-00237d214661}\Shell\AutoRun\command - "" = F:\wubi.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (pgdfgsvc C 1) - C:\WINDOWS\System32\pgdfgsvc.exe (Sysinternals - www.sysinternals.com)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: HidServ - C:\WINDOWS\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (59404830837309440)

========== Files/Folders - Created Within 30 Days ==========

[2010/08/05 11:21:01 | 000,000,000 | ---D | C] -- P:\Program Files\ERUNT
[2010/08/05 11:18:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\C.Boisier\Application Data\Malwarebytes
[2010/08/05 11:17:44 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/08/05 11:17:43 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/08/05 11:17:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/08/05 11:17:42 | 000,000,000 | ---D | C] -- P:\Program Files\Malwarebytes
[2010/08/05 10:34:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\C.Boisier\Application Data\FireShot
[2010/08/04 18:00:04 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\C.Boisier\Recent
[2010/08/04 16:23:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\winrm
[2010/08/04 16:23:13 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$968930Uinstall_KB968930$
[2010/08/03 10:01:39 | 000,000,000 | ---D | C] -- D:\C.Boisier\Reflect
[2010/08/03 09:53:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Macrium
[2010/08/03 09:38:17 | 000,000,000 | ---D | C] -- P:\Program Files\Macrium
[2010/08/02 08:31:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\C.Boi
Mamboo74
 
Messages: 3
Inscription: 05 Aoû 2010, 11:02

Rapport Extras.Txt

Messagede Mamboo74 » 05 Aoû 2010, 11:16

OTL Extras logfile created on: 05/08/2010 11:45:34 - Run 1
OTL by OldTimer - Version 3.2.9.1 Folder = D:\C.Boisier\Configuration - Maintenance\IE\Désinfection Troyen
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 59,00% Memory free
5,00 Gb Paging File | 4,00 Gb Available in Paging File | 76,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = P:\Program Files
Drive C: | 63,48 Gb Total Space | 20,96 Gb Free Space | 33,01% Space Free | Partition Type: NTFS
Drive D: | 39,07 Gb Total Space | 17,32 Gb Free Space | 44,34% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive K: | 67,83 Gb Total Space | 1,62 Gb Free Space | 2,39% Space Free | Partition Type: NTFS
Drive M: | 39,07 Gb Total Space | 10,79 Gb Free Space | 27,61% Space Free | Partition Type: NTFS
Drive N: | 67,83 Gb Total Space | 1,62 Gb Free Space | 2,39% Space Free | Partition Type: NTFS
Drive O: | 50,25 Gb Total Space | 12,10 Gb Free Space | 24,07% Space Free | Partition Type: NTFS
Drive P: | 39,07 Gb Total Space | 30,73 Gb Free Space | 78,65% Space Free | Partition Type: NTFS
Drive R: | 12,00 Gb Total Space | 7,45 Gb Free Space | 62,04% Space Free | Partition Type: NTFS
Drive S: | 50,25 Gb Total Space | 12,10 Gb Free Space | 24,07% Space Free | Partition Type: NTFS
Drive T: | 50,25 Gb Total Space | 12,10 Gb Free Space | 24,07% Space Free | Partition Type: NTFS
Drive Y: | 34,41 Gb Total Space | 13,80 Gb Free Space | 40,11% Space Free | Partition Type: NTFS
Drive Z: | 34,41 Gb Total Space | 13,80 Gb Free Space | 40,11% Space Free | Partition Type: NTFS

Computer Name: DEV_4
Current User Name: C.Boisier
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- P:\Program Files\Virtual Firefox\firefox.exe (Mozilla Corporation)
.inf [@ = inffile] -- C:\WINDOWS\System32\NOTEPAD.EXE ()
.ini [@ = inifile] -- C:\WINDOWS\System32\NOTEPAD.EXE ()
.txt [@ = txtfile] -- C:\WINDOWS\System32\NOTEPAD.EXE ()

[HKEY_USERS\S-1-5-21-854245398-583907252-682003330-1287\SOFTWARE\Classes\<extension>]
.html [@ = Amaya] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 ()
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 ()
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 ()
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 ()
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "P:\Program Files\Virtual Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "P:\Program Files\Virtual Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
inffile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 ()
inffile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 ()
inifile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 ()
inifile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 ()
jsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
jsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
jsefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
jsefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\NOTEPAD.EXE %1 ()
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 ()
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 ()
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 ()
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" ()
vbefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
vbefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
vbsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
vbsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
wsffile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
wsffile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "P:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Astase] -- "C:\WINDOWS\system32\cmd.exe" /K cd "%1" (Microsoft Corporation)
Directory [Browse with FastStone] -- "P:\Program Files\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [Burn With ImgTool...] -- P:\Program Files\ImgTool Burn\ImgTool.exe -c -d "%l" (CouJo)
Directory [cmd] -- cmd.exe /k "cd %L" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [FreeCommander] -- P:\Program Files\FreeCommander\FreeCommander.exe /C "%1" (Marek Jasinski - www.FreeCommander.com)
Directory [Parcourir avec XnView] -- "P:\Program Files\XnView\xnview.exe" "%1" (XnView, http://www.xnview.com)
Directory [PlayWithVLC] -- "P:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Universal Viewer] -- "P:\Program Files\Universal Viewer\Viewer.exe" "@@%1" (UVViewSoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"5900:TCP" = 5900:TCP:*:Enabled:vnc5900
"5800:TCP" = 5800:TCP:*:Enabled:vnc5800
"3306:TCP" = 3306:TCP:LocalSubNet:Enabled:mySQL
"995:TCP" = 995:TCP:LocalSubNet:Enabled:Google Desktop Search
"48113:TCP" = 48113:TCP:LocalSubNet:Enabled:maconfig_tcp
"48113:UDP" = 48113:UDP:LocalSubNet:Enabled:maconfig_udp

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe" = C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe:*:Enabled:Managed Services Agent -- File not found
"C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe" = C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe:*:Enabled:SMC Service -- (Symantec Corporation)
"C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE" = C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE:*:Enabled:SNAC Service -- (Symantec Corporation)
"C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" = C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe:*:Enabled:Symantec Email -- (Symantec Corporation)
"P:\Program Files\SiSoftware\Sandra Lite 2009.SP2\WNt500x86\RpcSandraSrv.exe" = P:\Program Files\SiSoftware\Sandra Lite 2009.SP2\WNt500x86\RpcSandraSrv.exe:*:Enabled:SiSoftware Sandra Agent Service -- File not found
"P:\Program Files\SiSoftware\Sandra Lite 2009.SP3\WNt500x86\RpcSandraSrv.exe" = P:\Program Files\SiSoftware\Sandra Lite 2009.SP3\WNt500x86\RpcSandraSrv.exe:*:Enabled:SiSoftware Sandra Agent Service -- File not found
"P:\Program Files\GT2002\gpstrack.exe" = P:\Program Files\GT2002\gpstrack.exe:*:Enabled:Gpstrack -- File not found
"P:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = P:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare -- (Microsoft Corporation)
"P:\Program Files\UltraVNC\winvnc.exe" = P:\Program Files\UltraVNC\winvnc.exe:*:Enabled:winvnc.exe -- File not found
"P:\Program Files\Gizmo5\Gizmo5.exe" = P:\Program Files\Gizmo5\Gizmo5.exe:*:Enabled:Gizmo5 -- File not found
"P:\Program Files\GNUcash\bin\gnucash-bin.exe" = P:\Program Files\GNUcash\bin\gnucash-bin.exe:*:Enabled:GnuCash Free Finance Manager -- ()
"P:\Program Files\GNUcash\bin\gconfd-2.exe" = P:\Program Files\GNUcash\bin\gconfd-2.exe:*:Enabled:GConf Settings Manager -- ()
"P:\Program Files\Opera\opera.exe" = P:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Documents and Settings\C.Boisier\Application Data\Facebook\facebook.exe" = C:\Documents and Settings\C.Boisier\Application Data\Facebook\facebook.exe:127.0.0.1/255.255.255.255:Enabled:Facebook -- ()
"C:\Documents and Settings\C.Boisier\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.dll" = C:\Documents and Settings\C.Boisier\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.dll:*:Enabled:Google Talk Plugin -- (Google)
"C:\Documents and Settings\C.Boisier\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe" = C:\Documents and Settings\C.Boisier\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin -- (Google)
"P:\Program Files\RayV\RayV\RayV.exe" = P:\Program Files\RayV\RayV\RayV.exe:*:Enabled:RayV -- File not found
"P:\Program Files\RayV\RayV\RayV.dll" = P:\Program Files\RayV\RayV\RayV.dll:*:Enabled:RayV -- File not found
"P:\Program Files\TeamViewer\Version5\TeamViewer.exe" = P:\Program Files\TeamViewer\Version5\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"P:\Program Files\ma-config.com\maconfservice.exe" = P:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice -- (CybelSoft)
"p:\program files\relevantknowledge\rlvknlg.exe" = p:\program files\relevantknowledge\rlvknlg.exe:*:Enabled:rlvknlg.exe -- (TMRG, Inc.)
"C:\Documents and Settings\C.Boisier\Application Data\Tonido\tonido.exe" = C:\Documents and Settings\C.Boisier\Application Data\Tonido\tonido.exe:*:Enabled:Tonido -- File not found
"P:\Program Files\Bonjour\mDNSResponder.exe" = P:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Service Bonjour -- File not found
"P:\Program Files\VMware\VMware Player\vmware-authd.exe" = P:\Program Files\VMware\VMware Player\vmware-authd.exe:*:Enabled:VMware Authd -- (VMware, Inc.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\WINDOWS\SMINST\Scheduler.exe" = C:\WINDOWS\SMINST\Scheduler.exe:*:Enabled:Scheduler -- ()
"P:\Program Files\SmartFTP Client\SmartFTP.exe" = P:\Program Files\SmartFTP Client\SmartFTP.exe:*:Enabled:SmartFTP Client 3.0 -- File not found
"P:\Program Files\Orbitdownloader\orbitdm.exe" = P:\Program Files\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit -- (Orbitdownloader.com)
"P:\Program Files\Orbitdownloader\orbitnet.exe" = P:\Program Files\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit -- (Orbitdownloader.com)
"P:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = P:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare -- (Microsoft Corporation)
"P:\Program Files\Virtual Firefox\firefox.exe" = P:\Program Files\Virtual Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"P:\Program Files\Opera\opera.exe" = P:\Program Files\Opera\opera.exe:*:Disabled:Opera Internet Browser -- (Opera Software)
"P:\Program Files\VMware\VMware Player\vmware-authd.exe" = P:\Program Files\VMware\VMware Player\vmware-authd.exe:*:Enabled:VMware Authd -- (VMware, Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{00BA866C-F2A2-4BB9-A308-3DFA695B6F7C}" = Java DB 10.5.3.0
"{03CAB33F-D1C2-48C6-8766-DAE84DFC25FE}" = Microsoft Sync Framework Services v1.0 (x86)
"{03F1CC67-5BD8-4C36-8394-76311B2AE69A}" = ArcSoft PhotoStudio 5
"{06A7EA72-0F00-4D53-A81C-A5D925711141}" = Microsoft SQL Server 2008 Full text search
"{076762A3-8A69-4DBE-B380-9AB06E9B6933}_is1" = GeoVisu Suite 5.0.0
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0B1C0E32-0589-49BE-AFEE-6888ED4A4FF4}" = Analyseur XML Microsoft
"{0BD83598-C2EF-3343-847B-7D2E84599128}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA
"{0DD140D3-9563-481E-AA75-BA457CBDAEF2}" = PC Inspector File Recovery
"{0DF3AE91-E533-3960-8516-B23737F8B7A2}" = Visual C++ 2008 x64 Runtime - (v9.0.30729)
"{0DF3AE91-E533-3960-8516-B23737F8B7A2}.vc_x64runtime_30729_01" = Visual C++ 2008 x64 Runtime - v9.0.30729.01
"{0E0DF90C-D0BA-4C89-9262-AD78D1A3DE51}" = HP USB Disk Storage Format Tool
"{0EBA7CFF-B7E9-4439-96AC-4D11086685AD}" = Microsoft SharedView
"{0F2DAA25-D4FB-4C8A-9CC2-85D87D50AEED}" = Microsoft .NET Compact Framework 3.5
"{10A44844-4465-456E-8C97-80BDD4F68845}" = Assistant de connexion Windows Live ID
"{11107A2A-AD44-4BC8-ABB5-E88E63BCA785}" = Intel(R) Network Connections 14.8.43.0
"{1240A058-8BCE-4A3B-BF82-6E5B801D71BA}" = Garmin City Navigator Europe NT 2009 Update
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{15F4085A-BC98-4590-AFFD-03BBBE49524E}" = Garmin Communicator Plugin
"{190E09FD-F08A-444F-B97E-FE482EC5D06C}" = TextPad Lexicons
"{19AE1804-C820-45c4-8CD0-79A78D6C0D3C}_is1" = MZ-Tools 3.0 pour VB 6.0
"{1A871155-1884-4BB3-AE79-BB85AD25B68A}" = Microsoft SQL Server 2008 Analysis Services
"{1B8FE958-A304-4902-BF7A-4E2F0F5B7017}_is1" = GPSBabel 1.3.7-beta20091003
"{1CB92574-96F2-467B-B793-5CEB35C40C29}" = Image Resizer Powertoy for Windows XP
"{1D2C96C3-A3F3-49E7-B839-95279DED837F}" = Opera 10.60
"{1D6236D9-6245-41E9-AB37-138D77AE2D37}" = Sandcastle Help File Builder
"{1F25F81F-AFC4-4A38-9CD0-7F321BFDEDBC}" = Microsoft SQL Server VSS Writer
"{2020045B-8DCF-4449-8D5C-EB5BA37440F1}" = Microsoft SQL Server 2008 Management Studio
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live
"{2075CB0A-D26F-4DAA-B424-5079296B43BA}" = Windows Live FolderShare
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{22E23C71-C27A-3F30-8849-BB6129E50679}" = Visual C++ 2008 IA64 Runtime - (v9.0.30729)
"{22E23C71-C27A-3F30-8849-BB6129E50679}.vc_i64runtime_30729_01" = Visual C++ 2008 IA64 Runtime - v9.0.30729.01
"{23D448C7-7DC7-4C15-B47D-C99364501F07}" = Microsoft SQL Server 2008 Database Engine Services
"{23F70562-02F4-4805-ACF5-6E52BAD167C2}" = Microsoft SQL Server 2008 Reporting Services
"{24aab420-4e30-4496-9739-3e216f3de6ae}" = Python 2.6.2
"{24F3019E-D2AB-3DAA-A02E-470352304005}" = MSDN Library for Visual Studio 2008 - FRA
"{2516845C-017F-4036-828B-3365FF640AB6}" = Crystal Reports Basic French Language Pack for Visual Studio 2008
"{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1" = Media Player Classic - Home Cinema v. 1.3.1249.0
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{27291811-BED3-4543-BF31-4DA7D0B1F549}" = Microsoft SQL Server 2008 BI Development Studio
"{2A9CD591-2DB0-415E-AD6E-E0D905CFD057}" = Macrium Reflect - Free Edition
"{2ADE2157-7A5E-122C-B51D-EB8A01B15943}" = DeepBurner v1.9.0.228
"{2E2966EA-2169-4E42-8A8A-CC1749D80088}" = Symantec Endpoint Protection
"{30614D5F-58BB-4A76-8BC9-C763A815CFC4}" = Hackman Suite
"{31492759-0E89-46B5-9770-F6E5808E3017}" = xImage
"{328019A7-0012-401D-96A2-4CDDD02675A8}" = Garmin POI Loader
"{32A3A4F4-B792-11D6-A78A-00B0D0160180}" = Java(TM) SE Development Kit 6 Update 18
"{3380F354-C5F7-4E71-8F51-EEE6C3F06C62}" = Fichiers de prise en charge de l'installation de Microsoft SQL Server (Français)
"{33AE9E89-47C9-4A0D-9E9D-BDD6966A3804}" = Microsoft SQL Server 2008 RsFx Driver
"{342D4AD7-EC4C-4EC8-AEA6-E70F5905A490}" = SQL Server System CLR Types
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3514CD14-6F9C-39C9-94F5-6644CAD122CF}" = Microsoft Visual Studio Tools for Applications 2.0 Language Pack - FRA
"{388E4B09-3E71-4649-8921-F44A3A2954A7}" = Microsoft Visual Studio 2005 Tools for Office Runtime
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C11D2DA-6802-3F66-BE6B-B2C046AFE866}" = Visual C++ 2008 x64 Runtime - (v9.0.30729.4148)
"{3C11D2DA-6802-3F66-BE6B-B2C046AFE866}.vc_x64runtime_30729_4148" = Visual C++ 2008 x64 Runtime - v9.0.30729.4148
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra
"{3F262ADC-5AD2-48E5-A586-44315E04A9E2}" = Microsoft Picture It! Album 10
"{3F608165-2A71-4142-B813-FEEE3C4F5103}" = Microsoft SQL Server 2008 Integration Services
"{3F9F7336-6DF8-476F-ABF6-C70A17FAF619}" = HP Backup and Recovery Manager
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{40F34A1C-65A2-4163-98CE-A0D0646CABEF}" = Microsoft SQL Server 2008 Integration Services
"{42756145-9997-4D28-809B-8756BFD00106}" = Microsoft Photo Premium 10
"{4401409D-25F1-4E85-8A3C-6BA6FFCFBFED}" = Microsoft SQL Server 2008 Browser
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4634B21A-CC07-4396-890C-2B8168661FEA}" = Windows Live Writer
"{46ABBC54-1872-4AA3-95E2-F2C063A63F31}" = Installation Windows Live
"{490905EC-D966-48A5-B075-8B9AAB33FEAF}" = Microsoft SQL Server 2008 Reporting Services
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A6F34E2-09E5-4616-B227-4A26A488A6F9}" = Microsoft SQL Server 2008 Common Files
"{4B719A70-F14A-4f5c-90B5-346B24B7FFF1}" = Windows 7 Upgrade Advisor
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{4D28EFCF-5999-44D2-8D4E-AC643E76C33F}" = Microsoft SQL Server 2008 Client Tools
"{5013C710-62F7-4FBE-8389-05ABB18010CB}" = Microsoft .NET Compact Framework 2.0 SP2
"{51DE0B73-7A33-41B8-9183-8321D40815E0}" = Microsoft SQL Server 2008 Common Files
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{58FD9176-17BF-4D9A-8773-5ECA2947D391}" = Microsoft SQL Server Compact 3.5 SP1 - Français
"{597E70FF-7C46-4EED-8092-91B7C2E0529D}" = Google SketchUp 7
"{5DB161C0-7C9C-41D7-8DA1-CB112F60946B}" = Microsoft Visual Studio 2005 Tools for Office Runtime Language Pack
"{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{62416A43-CB35-4860-8FCC-699189B5AD80}" = MGTEK Help Producer 2.2
"{625437A1-D012-4D96-8A93-25814E980439}" = Outils de requête de SQL Server Compact 3.5 SP1 - Français
"{633A27AE-C1C4-48E7-85D4-3C34994B5331}" = Yooda Map
"{64c5b887-b5ee-42b8-8596-78905a6b5f1f}" = Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense
"{6753B40C-0FBD-3BED-8A9D-0ACAC2DCD85D}" = Microsoft Document Explorer 2008
"{67B9AF41-C0B9-4960-84D9-A61D23DE85D8}" = Garmin Trip and Waypoint Manager v4
"{6855CCDD-BDF9-48E4-B80A-80DFB96FE36C}" = CmdHere Powertoy For Windows XP
"{68C17A81-81E1-458C-8555-3131C4D7A8DF}" = Garmin MapSource
"{6914733B-F128-37F6-8BB5-920C34071129}" = Microsoft Visual Studio 2008 Professional Edition - FRA
"{69333A04-5134-40A5-A055-9166A7AA1EC8}" =
"{69B040CC-E9B1-4769-950E-87786C9E16AD}" = OpenOffice.org 3.2
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6a984d7c-7e35-4b5f-b853-5315906a1248}" = Nero 9 Lite
"{6D68C954-4E4D-4CA7-9156-82EA41478687}" = Allway Sync
"{6E88CC59-832E-39AF-AE17-B9017DDB12C3}" = Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools - fra
"{7233474C-778C-38A5-A4FD-261F8900F0F4}" = Microsoft Visual Studio 2008 Team Explorer - FRA
"{72AD53CC-CCC0-3757-8480-9EE176866A7C}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA
"{7505DE9C-4E85-4636-82F0-50F38077B900}" = Crystal Reports XI
"{75671972-23C7-4AEF-9F93-BCE68EEE8F31}" = Garmin MapInstall
"{763C2911-E73D-4C95-A4B8-E95F5405BF7A}" = Microsoft SQL Server 2008 Policies
"{7694E0B1-2332-448B-9235-929F84B41E3F}" = Active@ ISO Burner
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{770F1BEC-2871-4E70-B837-FB8525FFA3B1}" = Windows Live Messenger
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{7B33F480-496D-334A-BAC2-205DEC0CBC2D}" = Visual C++ 2008 x86 Runtime - (v9.0.30729.4148)
"{7B33F480-496D-334A-BAC2-205DEC0CBC2D}.vc_x86runtime_30729_4148" = Visual C++ 2008 x86 Runtime - v9.0.30729.4148
"{7BD69968-EDD9-4898-B5B7-23C17689A779}" = Microsoft Sync Framework Runtime v1.0 (x86) fr
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{820B6609-4C97-3A2B-B644-573B06A0F0CC}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}" = Windows Live Call
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{842FAF7C-50EF-4463-9B8F-6222E1384D7D}" = Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8AD89DF9-9EFB-4039-B7FF-F5B6E870AE97}" = OODIX_32
"{8C5E0C2B-9A52-4C6A-A29C-A41A7AD71854}" = Fichiers de support d'installation de Microsoft SQL Server 2008
"{8FB53850-246A-3507-8ADE-0060093FFEA6}" = Visual Studio Tools for the Office system 3.0 Runtime
"{90120000-0020-040C-0000-0000000FF1CE}" = Module de compatibilité pour Microsoft Office System 2007
"{90120000-0021-0000-0000-0000000FF1CE}" = Microsoft Office Visual Web Developer 2007
"{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0021-040C-0000-0000000FF1CE}" = Microsoft Office Visual Web Developer MUI (French) 2007
"{90120000-0021-040C-0000-0000000FF1CE}_VisualWebDeveloper_{CCDA3DD6-E33D-4D75-B7C9-FF585580CE83}" = Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}_VisualWebDeveloper_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A4-040C-0000-0000000FF1CE}" = Microsoft Office 2003 Web Components
"{9111040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{9151040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Visio Professional 2003
"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD
"{94576E4F-703B-4038-806B-CDE9479A33AF}" = Windows Mobile 5.0 SDK R2 for Pocket PC
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95120000-0122-0409-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95120000-0122-040C-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{97C82B44-D408-4F14-9252-47FC1636D23E}_is1" = IZArc 4.1.1
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}" = Microsoft SQL Server Database Publishing Wizard 1.3
"{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack
"{9F7FC79B-3059-4264-9450-39EB368E3225}" = Microsoft Digital Image Library 9 - Blocker
"{A0AB6B40-680A-4E66-897C-A8EBEC8C9F63}" = Allway Sync
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A53A11EA-0095-493F-86FA-A15E8A86A405}" = VMware Player
"{A5774693-2D17-3E6C-9324-97B17C5AA1E9}" = Microsoft Device Emulator version 3.0 - FRA
"{A5D20C78-D226-4B41-A553-EEEBEB824853}" = Outils de conception SQL Server Compact 3.5 SP1 - Français
"{A6B3E729-BBAD-4F6D-8FE2-6196C42B5AAF}" = Sandcastle Help File Builder
"{A7050037-F0EA-4BAB-BCD5-FC05507D6147}" = Alt-Tab Task Switcher Powertoy for Windows XP
"{A8D93648-9F7F-407D-915C-62044644C3DA}" = MSI to redistribute MS VS2005 CRT libraries
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A93944F2-D2D4-4750-BFE7-9A288FEAF2CF}" = Apple Application Support
"{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}" = HP Help and Support
"{A9E12684-DD23-4D11-ACAF-6041954BCA00}_is1" = ISTool 5.3.0.1
"{AA467959-A1D6-4F45-90CD-11DC57733F32}" = Crystal Reports Basic for Visual Studio 2008
"{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}" = Microsoft Visual Studio Tools for Applications 2.0 - ENU
"{AACA7728-BE87-3D11-8A3F-773664BFCF1B}" = Microsoft Document Explorer 2008 Language Pack - FRA
"{AC54DC1F-EDA7-448C-BA4C-218A92F5E985}" = Microsoft SQL Server 2008 BI Development Studio
"{AC76BA86-7AD7-1036-7B44-A93000000001}" = Adobe Reader 9.3.3 - Français
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{ACE7680C-9505-4840-B166-6DF393039915}" = Allway Sync
"{AD483998-2E9A-4405-83FF-6E503AF49CBB}" = Microsoft Virtual PC 2007 SP1
"{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
"{AE97D691-DB7D-4735-8D6D-0E0164F75B94}" = nRoute
"{B131E59D-202C-43C6-84C9-68F0C37541F1}" = Galerie de photos Windows Live
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
"{B268E9A1-04A9-40D0-9866-846BE2B74BA7}" = Microsoft Windows SDK for Visual Studio 2008 SP1 Win32 Tools
"{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center
"{B3E6B7BB-2D32-463C-8A09-6071AC40CA03}" = Microsoft SQL Server 2008 Native Client
"{B4C6D770-DF2E-4731-8869-F89BA6670DDA}" = Microsoft SQL Server Compact 3.5 for Devices FRA
"{B4F7E8C5-90F2-47F1-ADEB-A8BF3C8C8397}" = Allway Sync
"{B5153233-9AEE-4CD4-9D2C-4FAAC870DBE2}" = Microsoft SQL Server 2008 Database Engine Services
"{B535B621-5559-11DE-A7A1-005056806466}" = Google Earth Plugin
"{B5C3B892-0849-476C-9F46-B12F84819D57}" = Apple Mobile Device Support
"{B6EC7388-E277-4A5B-8C8F-71067A41BA64}" = TextPad 5
"{B8B0FC8B-E69B-4215-AF1A-4BDFF20D794B}" = pdfforge Toolbar v1.0
"{B8BFB69F-BBBA-48A9-A788-851222571C77}" = MapSource Product Install
"{B9706D6B-754E-4D81-8EE9-393008D57EDB}" = Ma-Config.com
"{B9B76CE1-3A4B-4113-AD4D-3FEEE17A7ADF}" = Allway Sync
"{BBF6D0CD-A081-369F-B0B8-F168594CBB6B}" = Google Talk Plugin
"{BC4B59B2-8EC5-49A3-A0E6-DFB0ABDD3D1F}" = Active@ Data CD/DVD/Blu-ray Burner
"{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}" = Nero ControlCenter
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}" = Pivot Stickfigure Animator
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C2D129C0-7508-11DF-9F1B-005056806466}" = Google Earth
"{C2EBC2F1-B766-4AE3-A10C-6EBBC1EE3B02}" = Logiciel de Synchronisation Orange
"{C3EBEF79-DE34-44AE-8774-F6A17ABE27B2}" = Garmin nRoute
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C700F32C-32E6-4F47-A73B-3632CF29DA62}" = Growl for Windows
"{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}" = Nero Online Upgrade
"{C965F01C-76EA-4BD7-973E-46236AE312D7}" = Sql Server Customer Experience Improvement Program
"{C9C7AD5F-FE9D-4962-9453-0ED58F1C73DD}" = Microsoft SQL Server 2008 Management Studio
"{C9E4932C-8417-4E4C-A0E3-EE534810AB4D}" = ClearType Tuning Control Panel Applet
"{CAA376AF-0DE8-4FCA-942E-C6AC579B94B3}" = Microsoft Windows SDK for Visual Studio 2008 SP1 Tools
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CBC51194-5067-487D-AFB7-ADB17F487767}" = Microsoft SQL Server 2008 Client Tools
"{CCFA733C-2F56-4E8C-90B4-B38807400B7A}" = Windows Mobile 5.0 SDK R2 for Smartphone
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{d08d9f98-1c78-4704-87e6-368b0023d831}" = RelevantKnowledge
"{D2A42A0B-988D-47BF-A020-AFA2042BC757}" = WellPhone XT
"{D4AFF949-A03B-4F99-8F4C-A7CC6A89C838}" = SQL Server System CLR Types
"{D5D81435-B8DE-4CAF-867F-7998F2B92CFC}" = Windows Live Contrôle parental
"{D83836FD-4641-331E-ADF4-9080D5F15C56}" = Microsoft Visual Studio 2008 Shell (integrated mode) - FRA
"{D88EC516-F76D-4E40-8C52-3F2ECB2EF76F}" = Allway Sync
"{DA20D1D5-34A7-4CC6-A7B7-74C69864A357}" = Sandcastle
"{DA48EC21-CC7C-4808-A6B9-2BE06044D2FA}" = Drivers FlyCamOne² (STK02H 2.0)
"{DAA8590D-D93E-4697-9CBE-D96A7590A8E3}" = Microsoft SQL Server 2008 Analysis Services
"{DCB15271-EF77-3D65-8F75-9991CC772F29}" = Visual Studio Tools for the Office system 3.0 Runtime Language Pack - FRA
"{DEC2C123-3CE0-4669-B119-61519130CACD}" = TortoiseSVN 1.6.10.19898 (32 bit)
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag
"{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}" = jetAudio Basic VX
"{E0783143-EAE2-4047-A8D6-E155523C594C}" = Garmin WebUpdater
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E3993D46-AE3F-402E-9F9D-EEBDFBEC3564}" = Corel WinDVD 9
"{E42E07F5-5A90-4BA9-B55A-79FCF9EAF9B5}" = Drivers FlyCamOne² (STK02N 2.0)
"{E5484836-E51C-4423-A663-12B9DDD50DE6}" = Garmin BaseCamp
"{E8085D3C-7185-4A58-A6DD-27C4507CF179}" = Microsoft Team Foundation Server 2008 Power Tools - October 2008
"{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer
"{EAFEF30E-3789-49C7-A6D9-77C12E005BAC}" = Safari
"{ECA7CC52-A358-43E4-9A19-A3D359A76B9A}" = Documentation en ligne de Microsoft SQL Server 2008 (août 2008)
"{EE467474-04A8-48D5-8DDF-0F8D3A3CCBE5}" = VirginMega.Fr Premium
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E2B312-D7FD-4349-A9B6-E90B36DB1BD0}" = Paint.NET v3.5.5
"{F0FD00FD-CE66-474F-A116-72B4880E8B47}" = Microsoft SQL Server 2008 Database Engine Shared
"{F1415AF6-E4ED-4C12-A1A0-08B80177E96D}" = UpdateStar
"{F18DB86D-BC16-4E01-BCCE-63F62B931D82}" = InterVideo Register Manager
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F3494AB6-6900-41C6-AF57-823626827ED8}" = Microsoft SQL Server 2008 Database Engine Shared
"{F5346614-B7C4-4E94-826A-E2363155233D}" = EasyCleaner
"{F5E87B12-3C27-452F-8E78-21D42164FD83}" = Microsoft SQL Server 2008 Management Objects
"{F7B0939E-58DF-11DF-B3A6-005056806466}" = Google Earth
"{F7B9B60F-DBB3-4116-967B-BA93E278331E}" = ActivePerl 5.10.1 Build 1007
"{F7D27C70-90F5-49B9-B188-0A133C0CE353}" = Windows Live Toolbar
"{F7E1CA14-B39D-452A-960B-39423DDDD933}" = DriveImage XML (Private Edition)
"{FBFB7C7A-534B-4D39-9D18-F77017CDEDCB}" = Microsoft Sync Services for ADO.NET v2.0 (x86) fr
"{FC8D21C8-7B29-4104-ADB0-FEE9CA1C7922}" = Folder Size for Windows
"{FDC3D519-D04A-29F8-9C97-77601B964168}" = CodeS-SourceS ToolBox
"{FDCFB66E-18B2-4AD5-8091-0FB726CC387A}" = Enterprise Library 4.0 - May 2008
"{FF29527A-44CD-3422-945E-981A13584000}" = VC Runtimes MSI
"{FFD9383C-01D5-4897-A954-43AF599AED30}" = tools-windows
"7-Zip" = 7-Zip 4.65
"Active@ DVD Eraser v 1.1" = Active@ DVD Eraser v 1.1
"Active@ KillDisk FREE Suite" = Active@ KillDisk FREE Suite
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"aignesamdeadlink_is1" = AM-DeadLink 4.0
"AIMP2" = AIMP2
"Allway Sync 'n' Go_is1" = Allway Sync 'n' Go version 10.3.15
"Allway Sync_is1" = Allway Sync version 10.3.8
"Amaya" = Amaya
"Any Video Converter_is1" = Any Video Converter 3.0.5
"ArgoUML" = ArgoUML 0.30.2
"Aspell English Dictionary_is1" = Aspell English Dictionary-0.50-2
"Aspell French Dictionary_is1" = Aspell French Dictionary-0.50-3
"Astroburn" = Astroburn
"Audacity_is1" = Audacity 1.2.6
"BankPerfect" = BankPerfect 7.1
"Blender" = Blender (remove only)
"CaptCouleur_is1" = CaptCouleur V 2.1
"CCleaner" = CCleaner
"CloneCD" = CloneCD
"CobBackup9" = Cobian Backup 9
"Comptes et Budget V4.0_is1" = Comptes et Budget V4.0
"Core FTP LE 2.1" = Core FTP LE 2.1
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.51
"CSS Tab Designer_is1" = CSS Tab Designer v2.0
"CutePDF Writer Installation" = CutePDF Writer 2.7
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DebugBar" = DebugBar v5.4.1 pour Internet Explorer (supprimer seulement)
"Defraggler" = Defraggler
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup.divx.com" = Configuration DivX
"Dynamic HTML Editor_is1" = Dynamic HTML Editor 1.9
"EASEUS Partition Master Home Edition_is1" = EASEUS Partition Master 5.0.1 Home Edition
"EasyGPS_is1" = EasyGPS 3.82
"EditHexa" = EditHexa
"ERUNT_is1" = ERUNT 1.1j
"Event Log Explorer_is1" = Event Log Explorer 3.3
"Extracteur d'Icônes" = Extracteur d'Icônes
"Extracteur d'icônes_is1" = Extracteur d'icônes version 3.1
"FastStone Image Viewer" = FastStone Image Viewer 4.2
"filehippo.com" = FileHippo.com Update Checker
"FileZilla Client" = FileZilla Client 3.3.3
"FolderSizePropertyPage" = Folder Size Shell Extension v3.2
"France Info_is1" = France Info 1.0
"Free CSS Toolbox_is1" = Free CSS Toolbox 1.2
"FreeCommander_is1" = FreeCommander 2009.02a
"FreeFileSync" = FreeFileSync v3.3
"FTDICOMM" = IBR USB Driver
"GIF Animator" = Microsoft GIF Animator
"Gif Récupérateur_is1" = Gif Récupérateur 1.1
"Glary Utilities_is1" = Glary Utilities 2.20.0.831
"GMailFS" = GMail Drive Shell Extension
"GNU Aspell_is1" = GNU Aspell 0.50-3
"GnuCash_is1" = GnuCash 2.2.3
"Google Desktop" = Google Desktop
"GPL Ghostscript 8.70" = GPL Ghostscript 8.70
"GPL Ghostscript Fonts" = GPL Ghostscript Fonts
"Grisbi 0.6.0 RC 2" = Grisbi 0.6.0 RC 2
"GSview 4.9" = GSview 4.9
"Handbrake" = Handbrake 0.9.4
"Handy Recovery 1.0" = Handy Recovery 1.0
"HashCalc_is1" = HashCalc 2.02
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HECI" = Interface Intel® Management Engine
"HijackThis" = HijackThis 2.0.2
"HTML Help Workshop" = HTML Help Workshop
"HTMLKit_is1" = HTML-Kit
"IconEdit32" = IconEdit32
"ie8" = Windows Internet Explorer 8
"IETester" = IETester v0.4.4 (remove only)
"Img2gps_is1" = Img2gps v2.81
"ImgBurn" = ImgBurn
"InfraRecorder" = InfraRecorder
"Inkscape" = Inkscape 0.47
"Inno Setup 5_is1" = Inno Setup version 5.3.8
"InstallShield_{E3993D46-AE3F-402E-9F9D-EEBDFBEC3564}" = Corel WinDVD 9
"IrfanView" = IrfanView (remove only)
"KC Softwares SUMo_is1" = KC Softwares SUMo
"KeePass Password Safe_is1" = KeePass Password Safe 1.17
"KeePassPasswordSafe2_is1" = KeePass Password Safe 2.09
"KLiteCodecPack_is1" = K-Lite Codec Pack 6.2.0 (Full)
"KraMixer DJ Software_is1" = KraMixer DJ Software 1.0.3.3
"Launchy_21344213_is1" = Launchy 2.5
"LiveUpdate" = LiveUpdate 3.3 (Symantec Corporation)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MapMaker_is1" = MapMaker 1.2.02
"mes données" = mes données 1.2.1.9
"Messenger Plus! Live" = Messenger Plus! Live
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft Developer Network - Visual Studio 6.0a (fra)" = MSDN Library pour Visual Studio 6.0a (Français)
"Microsoft Document Explorer 2008" = Microsoft Document Explorer 2008
"Microsoft Document Explorer 2008 Language Pack - FRA" = Module linguistique Microsoft Document Explorer 2008 - FRA
"Microsoft SQL Server 10" = Microsoft SQL Server 2008
"Microsoft SQL Server 10 Release" = Microsoft SQL Server 2008
"Microsoft Visual Studio 2005 Tools for Office Runtime" = Visual Studio 2005 Tools pour Office Second Edition Runtime
"Microsoft Visual Studio 2005 Tools for Office Runtime Language Pack" = Microsoft Visual Studio 2005 Tools for Office Runtime Language Pack
"Microsoft Visual Studio 2008 Professional Edition - FRA" = Microsoft Visual Studio 2008 Professional Edition - Français
"Microsoft Visual Studio 2008 Team Explorer - FRA" = Microsoft Visual Studio 2008 Team Explorer - FRA
"MixSense_is1" = MixSense 1.0.1
"Money Manager Ex_is1" = Money Manager Ex 0.9.5.1
"Money2005b" = Microsoft Money
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"MSDN Library pour Visual Studio 2008 - FRA" = MSDN Library pour Visual Studio 2008 - FRA
"MyDefrag v4.3.1_is1" = MyDefrag v4.3.1
"Navigation" = Navigation 2.7
"nLite_is1" = nLite 1.4.9.1
"Notepad++" = Notepad++
"NSIS" = Nullsoft Install System
"Nvu_is1" = Nvu 1.0
"Orbit_is1" = Orbit Downloader
"Passware Kit 6.1" = Passware Kit 6.1
"Password Safe" = Password Safe
"PE Builder_is1" = PE Builder 3.1.10a
"PhotoFiltre" = PhotoFiltre
"Picasa 3" = Picasa 3
"PictureItPrem_v10" = Microsoft Photo Premium 10
"Pierre Le Muzic - Editeur Fichier CSS" = Pierre Le Muzic - Editeur Fichier CSS 1.2
"PowerBatch_is1" = PowerBatch 6
"PSPad editor_is1" = PSPad editor
"Quartz Studio Free" = Quartz Studio Free
"QuicktimeAlt_is1" = QuickTime Alternative 3.2.2
"Radio_Fr" = Radio Fr Solo 2.1
"RealAlt_is1" = Real Alternative 2.0.2
"Recuva" = Recuva
"Secunia PSI" = Secunia PSI
"SequoiaView" = SequoiaView
"Snap Express_is1" = Snap Express v.5.4
"SpamBayes_is1" = SpamBayes 1.1a3
"Speccy" = Speccy
"SpeedFan" = SpeedFan (remove only)
"SplitFilePropertyPage" = Split File Shell Extension v3.1b
"Spread" = Spread
"ST6UNST #1" = Gestion des clients et prospects
"SUPER ©" = SUPER © Version 2009.bld.36 (June 10, 2009)
"TeamViewer 5" = TeamViewer 5
"TeraCopy_is1" = TeraCopy 2.12
"TerraExplorer" = TerraExplorer
"Text2Web Pro_is1" = Text2Web Pro v2.3.1
"TOWeb-SetupID-0003_is1" = Lauyan TOWeb V3
"Tweak UI 2.10" = Tweak UI
"txt2kml" = txt2kml 2.5
"Universal Viewer" = Universal Viewer
"Unlocker" = Unlocker 1.9.0
"Virtual Magnifying Glass" = Virtual Magnifying Glass
"Visual Studio 6.0 Édition Entreprise (fra)" = Microsoft Visual Studio 6.0 Édition Entreprise (Français)
"Visual Studio Tools for the Office system 3.0 Runtime" = Visual Studio Tools for the Office system 3.0 Runtime
"Visual Studio Tools for the Office system 3.0 Runtime Language Pack - FRA" = Module linguistique Visual Studio Tools pour Office System 3.0 Runtime - FRA
"VisualWebDeveloper" = Microsoft Visual Studio Web Authoring Component
"VLC media player" = VLC media player 1.1.1
"VMware_Player" = VMware Player
"V-Tools (Access 2003)" = V-Tools (Access 2003)
"wdgps_is1" = WDGPS (desinstallation)
"WebFormDesigner" = WebFormDesigner
"WebPost" = Assistant Publication de sites Web Microsoft 1.53
"WellPhone" = WellPhone
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Lecteur Windows Media 11
"WinGimp-2.0_is1" = GIMP 2.6.10
"WinHTTrack Website Copier_is1" = WinHTTrack Website Copier 3.43-9
"WinLiveSuite_Wave3" = Installation Windows Live
"WinMerge_is1" = WinMerge 2.12.4
"WinPatrol" = WinPatrol
"winscp3_is1" = WinSCP 4.2.8
"wn_is1" = WhizNote
"XnView_is1" = XnView 1.97.5
"XP SysPad V7.9.6 by xtort.net ©_is1" = XP SysPad V7.9.6 by xtort.net ©
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"YouTube Video Downloader_is1" = YouTube Video Downloader 2.4.8

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-854245398-583907252-682003330-1287\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Cargol 2010 4.8.2" = Cargol 2010 4.8.2
"Google Translator" = Google Translator
"LastPass" = LastPass (désinstallation seulement)
"pdfsam" = pdfsam
"PhotoFiltre" = PhotoFiltre
"WinDirStat" = WinDirStat 1.1.2
"XBMC" = XBMC

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 04/08/2010 10:25:40 | Computer Name = DEV_4 | Source = Userenv | ID = 1030
Description = Windows ne peut pas effectuer de requête sur la liste d'objets de
Stratégie de groupe. Un message d'erreur fournissant les raisons de ce problème
a déjà été enregistré par ce moteur de police.

Error - 04/08/2010 11:58:01 | Computer Name = DEV_4 | Source = HotFixInstaller | ID = 5000
Description = EventType visualstudio8setup, P1 microsoft .net framework 3.0-kb977354,
P2 1036, P3 1605, P4 msi, P5 f, P6 9.0.40302.0, P7 install, P8 x86, P9 xp, P10
0.

Error - 04/08/2010 12:00:21 | Computer Name = DEV_4 | Source = FolderSize | ID = 0
Description =

Error - 04/08/2010 12:00:21 | Computer Name = DEV_4 | Source = FolderSize | ID = 0
Description =

Error - 05/08/2010 01:32:06 | Computer Name = DEV_4 | Source = Userenv | ID = 1030
Description = Windows ne peut pas effectuer de requête sur la liste d'objets de
Stratégie de groupe. Un message d'erreur fournissant les raisons de ce problème
a déjà été enregistré par ce moteur de police.

Error - 05/08/2010 01:33:30 | Computer Name = DEV_4 | Source = FolderSize | ID = 0
Description =

Error - 05/08/2010 03:16:08 | Computer Name = DEV_4 | Source = Userenv | ID = 1030
Description = Windows ne peut pas effectuer de requête sur la liste d'objets de
Stratégie de groupe. Un message d'erreur fournissant les raisons de ce problème
a déjà été enregistré par ce moteur de police.

Error - 05/08/2010 04:51:17 | Computer Name = DEV_4 | Source = Userenv | ID = 1030
Description = Windows ne peut pas effectuer de requête sur la liste d'objets de
Stratégie de groupe. Un message d'erreur fournissant les raisons de ce problème
a déjà été enregistré par ce moteur de police.

Error - 05/08/2010 05:21:50 | Computer Name = DEV_4 | Source = FolderSize | ID = 0
Description =

Error - 05/08/2010 05:37:57 | Computer Name = DEV_4 | Source = FolderSize | ID = 0
Description =

[ System Events ]
Error - 03/08/2010 05:05:25 | Computer Name = DEV_4 | Source = EventLog | ID = 6004
Description = Un paquet non valide d'un pilote a été reçu depuis le sous-système
d'E/S. La donnée est le paquet.

Error - 03/08/2010 05:05:20 | Computer Name = DEV_4 | Source = EventLog | ID = 6004
Description = Un paquet non valide d'un pilote a été reçu depuis le sous-système
d'E/S. La donnée est le paquet.

Error - 03/08/2010 05:05:19 | Computer Name = DEV_4 | Source = EventLog | ID = 6004
Description = Un paquet non valide d'un pilote a été reçu depuis le sous-système
d'E/S. La donnée est le paquet.

Error - 03/08/2010 05:30:28 | Computer Name = DEV_4 | Source = EventLog | ID = 6004
Description = Un paquet non valide d'un pilote a été reçu depuis le sous-système
d'E/S. La donnée est le paquet.

Error - 03/08/2010 05:29:01 | Computer Name = DEV_4 | Source = EventLog | ID = 6004
Description = Un paquet non valide d'un pilote a été reçu depuis le sous-système
d'E/S. La donnée est le paquet.

Error - 03/08/2010 05:28:57 | Computer Name = DEV_4 | Source = EventLog | ID = 6004
Description = Un paquet non valide d'un pilote a été reçu depuis le sous-système
d'E/S. La donnée est le paquet.

Error - 03/08/2010 05:28:50 | Computer Name = DEV_4 | Source = EventLog | ID = 6004
Description = Un paquet non valide d'un pilote a été reçu depuis le sous-système
d'E/S. La donnée est le paquet.

Error - 03/08/2010 05:28:34 | Computer Name = DEV_4 | Source = EventLog | ID = 6004
Description = Un paquet non valide d'un pilote a été reçu depuis le sous-système
d'E/S. La donnée est le paquet.

Error - 03/08/2010 05:28:32 | Computer Name = DEV_4 | Source = EventLog | ID = 6004
Description = Un paquet non valide d'un pilote a été reçu depuis le sous-système
d'E/S. La donnée est le paquet.

Error - 03/08/2010 05:18:59 | Computer Name = DEV_4 | Source = EventLog | ID = 6004
Description = Un paquet non valide d'un pilote a été reçu depuis le sous-système
d'E/S. La donnée est le paquet.


<End>
<End>
Mamboo74
 
Messages: 3
Inscription: 05 Aoû 2010, 11:02

Messagede nickW » 07 Aoû 2010, 01:06

Bonsoir,

Pas constatation particulière à ce jour

En effet, mis à part l'espiogiciel/logiciel publicitaire RelevantKnowledge (peut-être installé en cadeau gratuit avec SUMo), pas d'infection visible.


Nettoyage:
*- Voir dans Ajout/Suppression de programmes si RelevantKnowledge apparaît et le supprimer
*- Relancer dans MBAM une analyse rapide et après affichage des résultats de recherche, utiliser l'option "Supprimer la sélection".

Salut,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France


Retourner vers Sécurité (Contamination - Décontamination)

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 22 invités

cron