bouton "REPONSE"

Sécurité et insécurité. Virus, Trojans, Spywares, Failles etc. …

Modérateur: Modérateurs et Modératrices

Règles du forum
Assiste.com a suspendu l'assistance à la décontamination après presque 15 ans sur l'ancien forum puis celui-ci. Voir :

Procédure de décontamination 1 - Anti-malware
Décontamination anti-malwares

Procédure de décontamination 2 - Anti-malware et antivirus (La Manip)
La Manip - Procédure standard de décontamination

Entretien périodique d'un PC sous Windows
Entretien périodique d'un PC sous Windows

Protection des navigateurs, de la navigation et de la vie privée
Protéger le navigateur, la navigation et la vie privée

Re: bouton "REPONSE"

Messagede huggie » 13 Avr 2011, 10:58

Bonjour,

Quoi que tu en en penses je n'ai pas écris les fichiers OTL à l'encre invisible.
Je pensais que scinder les rapport en 3 posts était suffisant et qu'une réponse était possible.
Mais je vois que procédure, procédure tu nous perdras.

Je vais donc utiliser la méthode bovine, reformatage du disque dur et réinstallation de XP.

Ceci clos ce fil de discussion.

Encore merci pour ton aide, salut.
huggie
 
Messages: 23
Inscription: 24 Déc 2005, 19:18

Re: bouton "REPONSE"

Messagede evangelyne » 13 Jan 2012, 07:47

pour Vista et 7: %SystemDrive%\Users\<profil>\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs [13/01/2012 à 10h38]
OTL Extras logfile created on: 13/01/2012 10:08:04 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\giannieve\Downloads
Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1,94 Gb Total Physical Memory | 0,90 Gb Available Physical Memory | 46,56% Memory free
4,11 Gb Paging File | 2,85 Gb Available in Paging File | 69,34% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 147,46 Gb Total Space | 54,35 Gb Free Space | 36,86% Space Free | Partition Type: NTFS
Drive D: | 150,62 Gb Total Space | 91,76 Gb Free Space | 60,92% Space Free | Partition Type: NTFS
Drive E: | 621,17 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: PC-DE-GIANNIEVE | User Name: giannieve | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2129587958-3967708758-947222675-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-2129587958-3967708758-947222675-1000]
"EnableNotificationsRef" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{05F4C279-68D7-4342-B59A-5306E6D7435C}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{07C5F246-2390-45DC-BF99-1DD41A0804C0}" = rport=445 | protocol=6 | dir=out | app=system |
"{125AF0F3-CF92-4B51-AE29-D6AD76E9B04A}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{290583C7-0A65-4BDA-8556-3DB4E949706E}" = rport=138 | protocol=17 | dir=out | app=system |
"{2BD8D7F0-05A4-4211-A493-1C0C5FF3B2AA}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{3511B942-BC6B-4CB8-B67A-BB2B2E2B5C63}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{352A7636-E5DB-4758-A1F4-F0FE919BB8AA}" = lport=2869 | protocol=6 | dir=in | app=system |
"{47CF6EEF-11DD-445B-895B-677F23A36616}" = lport=139 | protocol=6 | dir=in | app=system |
"{5DAABC3F-D709-4E71-A29D-65C15598FFDF}" = lport=48113 | protocol=17 | dir=in | name=maconfig_udp |
"{6A6F899B-F732-4841-A4C8-A0BE884B8020}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{71D6DB6B-3981-4D74-B26D-26D3B07DB3A3}" = lport=445 | protocol=6 | dir=in | app=system |
"{824D69C5-6408-4732-B90B-6CF67E3B48B3}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{84FDE129-F0C0-4947-9203-6E17726241B4}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8617A41E-B7E2-42FD-B767-DF85B5677BA7}" = rport=139 | protocol=6 | dir=out | app=system |
"{8A057B76-D9CB-4E89-B888-3C4979F0354E}" = lport=48113 | protocol=6 | dir=in | name=maconfig_tcp |
"{8B7F5333-170F-4A5A-8DA9-6CFF5C0960EF}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{8B99EBE5-2357-49E7-96B9-B6F29C2A7289}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{8E6BC89F-B8D6-4698-B96C-FD913F46BC1F}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{CCC4269C-BFDD-4DE2-ACC7-52BB13572643}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{CF6D687E-75EA-4CCA-8B12-2F0626D1F91A}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{D6CEBEAB-E629-437A-9A3F-617EF19B75CC}" = lport=137 | protocol=17 | dir=in | app=system |
"{D8C48325-0BEE-4F66-A913-1ABFBB3C2DC6}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{DBCC554B-0113-43E9-8152-67324E23AF5D}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{E4804A80-890C-4BE5-9D10-C36D29E29B87}" = lport=2869 | protocol=6 | dir=in | app=system |
"{E6AC70DB-7DB7-4768-B6AA-9967884E72FC}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{F9F1A684-666E-411B-A3F4-B5574CC356B3}" = lport=138 | protocol=17 | dir=in | app=system |
"{FA63FFF8-358D-42F3-93FE-2BA4EC2432A6}" = rport=137 | protocol=17 | dir=out | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0022AEB3-0A4A-4C87-9267-AF0337DBAB95}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{0B6C2B02-0036-4B32-92C7-68D7ED0359BD}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{24762286-7F41-4087-9EC0-661580C15A3D}" = protocol=6 | dir=in | app=c:\program files\pinnacle\videospin\programs\rm.exe |
"{47624D79-EE0F-4A37-BCE1-1C9FB84D91EF}" = dir=in | app=c:\program files\windows live\mesh\moe.exe |
"{48252EF6-9C72-49E0-86CC-52335EDE4131}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{501A02C1-AC5B-4570-B0BD-921639CA7CD7}" = protocol=6 | dir=in | app=c:\program files\windows searchqu toolbar\toolbar\dtuser.exe |
"{50E9ECDE-D0C6-41C6-BDBB-F14585BA1988}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{537D2A6C-4FA1-46C5-9C5A-557329FB5FC6}" = protocol=17 | dir=in | app=c:\program files\bearshare applications\bearshare\bearshare.exe |
"{543D5899-779D-4430-88BB-E7E316BEF2FE}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{57EC763D-7309-497B-867A-AC2BC2A1E31A}" = protocol=17 | dir=in | app=c:\program files\windows searchqu toolbar\toolbar\dtuser.exe |
"{5DBD3FD7-503B-4E29-AFB7-BE18B824A7E8}" = protocol=6 | dir=in | app=c:\program files\pinnacle\videospin\programs\videospin.exe |
"{84BA02B1-DAA4-4CF5-893B-C4D90305010A}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{8C65D160-D66D-4007-B48F-CCCEF30C8EA2}" = protocol=6 | dir=in | app=c:\program files\bearshare applications\mediabar\datamngr\toolbar\dtuser.exe |
"{8CF9956E-5DC7-42FB-A60F-F0106C5D6BA5}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{98BB5166-0259-47D5-B02B-B4FE8782D20F}" = protocol=17 | dir=in | app=c:\program files\bearshare applications\bearshare\bearshare.exe |
"{9A1CCB77-684A-466B-986B-C2D12E1374BF}" = protocol=17 | dir=in | app=c:\program files\bearshare applications\mediabar\datamngr\toolbar\dtuser.exe |
"{9C01D40B-3EE5-491F-954F-58D90B6F386D}" = dir=in | app=c:\program files\windows live\messenger\livecall.exe |
"{C2E13207-2854-4C66-9F55-F208E1D8055E}" = protocol=17 | dir=in | app=c:\program files\pinnacle\videospin\programs\rm.exe |
"{C650C4EC-C4B9-40CA-9557-42EED2F34C53}" = protocol=17 | dir=in | app=c:\program files\pinnacle\videospin\programs\videospin.exe |
"{C661695C-F4BC-4351-86C4-30B4D532DD59}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{C921402C-81F2-4407-A7C5-DD3840BD2BA5}" = protocol=6 | dir=in | app=c:\program files\pinnacle\videospin\programs\umi.exe |
"{C9A5506E-2BBE-49E4-8006-9CB45CAD36B3}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{D4C2004F-D72B-4605-99DC-792133E9055C}" = protocol=6 | dir=in | app=c:\program files\bearshare applications\bearshare\bearshare.exe |
"{DBBCB0C3-EDD0-48FF-94DD-B2DE9A197488}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{DCBE10EF-0946-443A-B8D1-837C765D1E70}" = dir=in | app=c:\users\giannieve\appdata\local\facebook\video\skype\facebookvideocalling.exe |
"{E3D85BF9-A625-4A60-ABAB-651839D78FC8}" = protocol=17 | dir=in | app=c:\program files\pinnacle\videospin\programs\umi.exe |
"{E3E50C1C-55C6-44D5-B3CF-50A7AD056179}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{E4477FEE-0D93-45CF-A15F-13432363EC1B}" = protocol=6 | dir=in | app=c:\program files\ma-config.com\maconfservice.exe |
"{E581FB0D-9B86-4C7C-A3B6-7B707CC9AA78}" = protocol=17 | dir=in | app=c:\program files\ma-config.com\maconfservice.exe |
"{F6B0D72E-AFB8-4BE7-9C59-BD98EBCAC975}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{FD43CDE3-1DE8-441A-866A-FCC1DF0CB787}" = protocol=6 | dir=in | app=c:\program files\bearshare applications\bearshare\bearshare.exe |
"TCP Query User{7B546A2C-5B4B-4F0E-962D-42E1DFF1C7B6}C:\program files\bearshare applications\bearshare\bearshare.exe" = protocol=6 | dir=in | app=c:\program files\bearshare applications\bearshare\bearshare.exe |
"TCP Query User{AC75691E-5E80-4869-93A0-C50C0FBF9955}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{AF46795A-D1CA-4B6B-9952-655DAA455ADF}C:\program files\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"TCP Query User{D4CC443C-27B8-4ECC-81A7-D3480205A78E}C:\program files\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"UDP Query User{2F532181-DFEB-4ECE-B4A2-7CBD7F2121A7}C:\program files\bearshare applications\bearshare\bearshare.exe" = protocol=17 | dir=in | app=c:\program files\bearshare applications\bearshare\bearshare.exe |
"UDP Query User{5371AB0C-74E5-4FCC-B700-C12256340E95}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{6EF6057F-3B66-436C-ACE5-338C70962F0C}C:\program files\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"UDP Query User{97EA1D31-6B4C-490E-A95D-BCA41DB3E38F}C:\program files\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{00E1E235-AB45-4695-A156-073118949ED4}" = HiYo
"{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware
"{05E379CC-F626-4E7D-8354-463865B303BF}" = Windows Live UX Platform Language Pack
"{0711500B-9912-4D60-9A49-C577B4503D42}" = Nero Recode Help
"{07FF7593-9DEA-40B5-9F87-F557E65BBF60}" = Nero Recode
"{08094E03-AFE4-4853-9D31-6D0743DF5328}" = QuickTime
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0bfe00eb-88a8-4fb6-9e63-849b81efcdb7}" = Nero 9
"{0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}" = Microsoft .NET Framework 4 Client Profile FRA Language Pack
"{101D5F4A-8E10-4B02-8AA5-7D008F735399}" = Anglais 6e
"{1122AAC4-AAAA-43BF-B2D4-3C8C12378952}" = Nero InfoTool
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series" = Canon MP250 series MP Drivers
"{11A84FCA-C3C7-4AFD-A797-111DB8569DBC}" = Nero BurningROM
"{12345674-DE9A-677A-CCEE-666356D89777}" = Nero BurnRights
"{18754BA4-4F0C-4E6E-888B-9496AFA05F43}" = Ma-Config.com
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{1B040683-C390-4711-ABC7-DA8D85E470E7}" = NeroBurningROM
"{1C415213-C4A7-4CB0-A982-AC236879B14A}" = FIXIO PC Cleaner
"{1D7CE340-70C3-4848-BCCF-215950328A4C}" = Facebook Video Calling 1.0.0.8953
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{21BCE515-D5A3-11D4-8E33-0010B53EC668}" = Ulead Photo Express 4.0 My Custom Edition
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 29
"{2D3455A8-3B15-41A8-99F8-0D4215746463}" = Nero StartSmart
"{3097B151-1F61-4211-A4CC-D70127B226AE}" = SoundTrax
"{30D1B542-44E0-44F0-8A31-2A101CB626B5}" = DVAPTray
"{32E9C1A5-0FDA-4483-987D-DBABF9CC1DD8}" = Microsoft Antimalware Service FR-FR Language Pack
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live
"{3B9A92DA-6374-4872-B646-253F18624D5F}" = Windows Live Writer
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra
"{3E8DE1A6-B365-4FF6-B917-2892A34990E8}" = LG USB Modem Drivers
"{3F30CC51-0788-487B-AA83-7214A239C0C0}" = Nero Disc Copy Gadget Help
"{3F692FA9-348B-4264-B4EA-DE6BFA45D8AE}" = Microsoft WorldWide Telescope
"{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D42353B-533F-4306-AD0B-7FEF292ADE04}" = Nero CoverDesigner Help
"{4E8C27C2-D727-4C00-A90E-C3F6376EEE70}" = Nero ControlCenter
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client FR-FR Language Pack
"{548F99E0-14CC-4D53-A7D6-4A62A5F2C748}" = Nero PhotoSnap
"{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}" = Microsoft Security Client
"{55A29068-F2CE-456C-9148-C869879E2357}" = TuneUp Utilities 2009
"{55D003F4-9599-44BF-BA9E-95D060730DD3}" = Contrôle ActiveX Windows Live Mesh pour connexions à distance
"{56BE5CC9-95E6-4128-ABEA-968414CA9C80}" = DolbyFiles
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5A62A775-A29A-4CE1-BBC2-4A9CD0B211EF}" = Nero Live Help
"{5AE12194-3EAA-40DF-B2BF-FE1D6B78BBF4}" = Nero Vision
"{5C2E8A0F-80E2-4C68-8CC0-D8D16E7196BF}" = Nero RescueAgent Help
"{5C42EAB8-54F9-423A-948C-1CBEF25F8DB4}" = Nero PhotoSnap Help
"{5C9BB0B3-E830-4814-BBA4-D93535E1C7B9}" = Nero Live
"{5D90E53A-BD7C-8F32-9B82-7733D0F0BC8E}" = Adobe Download Assistant
"{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
"{5F624839-947D-46EA-BD63-FD847C1AC6F1}" = BearShare
"{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources
"{6816248D-510A-45F8-AC79-24FF2C3A5D7F}" = LG Android Platform Drivers
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker
"{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}" = Complément Messenger
"{6F6D8BC6-CE36-493B-996F-04CD8CCC35A8}" = Bing Bar
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{75321954-2589-11DC-DDCC-E98356D81493}" = Nero DriveSpeed
"{753973C4-B961-43BF-B2D4-3C8C92F7216E}" = Nero DriveSpeed
"{76810709-A7D3-468D-9167-A1780C1E766C}" = Windows Live FolderShare
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78523651-D8B1-11DC-CCEE-741589645873}" = Nero DiscSpeed
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}" = Windows Live Mesh
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0015-040C-0000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2007
"{90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-040C-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2007
"{90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007
"{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{943CC0C0-2253-4FE0-9493-DD386F7857FD}" = Nero Express
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-007A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{961D53EA-40DC-4156-AD74-25684CE05F81}" = Nero Installer
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A62C42C-FDB3-4BCC-A41A-89FA813250E3}" = Entraîneur Cérébral 2
"{9A875B56-A35C-46BA-A3AA-DF8D03EE9F2F}" = Nero ControlCenter
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9F3523F8-DAD7-AE52-6DA7-45CDDDF33726}" = Advertising Center
"{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail
"{A260B422-70E1-41E2-957D-F76FA21266D5}" = Apple Software Update
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A73BEC3C-40A0-480E-87EF-EFCD33629088}" = NeroExpress
"{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}" = SweetIM Toolbar for Internet Explorer 4.2
"{A81A974F-8A22-43E6-9243-5198FF758DA1}" = SweetIM for Messenger 3.6
"{A8399F58-234A-48C6-BA55-30C15738BF3C}" = Nero CoverDesigner
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AAA12554-2589-11DC-92EF-E98356D81493}" = Nero InfoTool
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AABBCC54-D8B1-11DC-92EF-E98356D81493}" = Nero DiscSpeed
"{AB61A2E9-37D3-485D-9085-19FBDF8CEF4A}" = Windows Live Messenger
"{AB93C51F-71F9-4A28-8134-FE1B5B9373E9}" = Windows Live Remote Service Resources
"{AC76BA86-7AD7-1036-7B44-A95000000001}" = Adobe Reader 9.5.0 - Français
"{AC7EE5F1-0DE4-4256-8E43-92B73C8E6019}" = LG Bluetooth Drivers
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{b2042d5e-986d-44ec-aee3-afe4108ccc93}" = Python 3.2
"{B2C12C8D-65DC-40BD-B309-5ADB0C6C8D8F}" = Nero WaveEditor
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B6D9D06B-4B4D-4B41-B963-C056B627F704}_is1" = Streaming Audio Recorder V2.4.3
"{B96C2601-52F5-4D5D-816A-63469EA311EF}" = "Nero SoundTrax Help
"{BCD82AB5-670D-4242-90FA-1F97103C16CD}" = Movie Templates - Starter Kit
"{BCF16F16-AC0E-4ABE-A9EF-412CF484BA51}" = Windows Live Family Safety
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{C861504E-2F57-4F95-AB0A-C7C7D8E46A4E}" = Windows Live Family Safety
"{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common
"{C99C89A3-119A-45E6-B26E-DD5643CAA0C5}" = Menu Templates - Starter Kit
"{CD1826A5-CFCC-4C6E-9F9D-E181876162EA}" = Nero Rescue Agent
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE3B8E96-B0AF-4871-9178-1519B58E3A93}" = USB PC Camera (Vimicro301 Neptune)
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D1725D54-279A-40C5-A70D-23C1785DB920}_is1" = AoA Audio Extractor
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D7C206B6-1A63-4389-A8B1-8F607D0BFF1F}" = Nero StartSmart Help
"{DD54CF66-090B-43E7-97C1-110EF526474D}" = ArcSoft Multimedia Email
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DFDBE1F9-04CE-4645-BB6C-4590EABC7A9C}" = Windows Live Remote Client Resources
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E26DEDC7-1A99-4F8C-9615-6DB112E6495B}_is1" = Texas Hold'em Poker 3D - Deluxe Edition 1.0
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Codeur Windows Media Série 9
"{E4A8DD87-A746-4443-BF25-CAF99CED6767}" = Nero Disc Copy Gadget
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E86156E5-9859-440D-8876-26CED1349802}" = Nero WaveEditor Help
"{EA9FFE54-D8B1-11DC-92EF-E98356D81493}" = Nero BurnRights
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F53F6769-AC46-49E3-ABE3-2C8AFD39D0DD}" = Nero Vision
"{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}" = Vista Codec Package
"{FA7E7B6F-A36B-4D1C-8C27-B3FCE2C5A061}" = TopSharewares
"{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR
"{FEB15887-0932-4D2D-BB85-6AC03FBF1AA8}" = Pinnacle VideoSpin
"7D6D030B3D73FCCA3D4E45319380F315DFBE7A54" = Package de pilotes Windows - Infineon Technologies (FlashUSB) USB (04/16/2009 1.0.0.6)
"A Girl in the City - Destination New York_is1" = A Girl in the City - Destination New York
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Aladin_is1" = Aladin
"BabylonToolbar" = Babylon toolbar on IE
"Balabolka" = Balabolka
"BearShare" = BearShare
"BearShare 2 MediaBar" = MediaBar
"BFG-A Girl in the City" = A Girl in the City
"BFGC" = Big Fish Games: Game Manager
"BFG-Mystery Valley" = Mystery Valley
"CamStudio" = CamStudio
"CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program
"CanonMyPrinter" = Canon Utilities My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"com.adobe.downloadassistant.AdobeDownloadAssistant" = Adobe Download Assistant
"Creative VF0090" = Creative WebCam Vista Plus Driver (1.00.05.0906)
"Creative WebCam Center" = Creative WebCam Center
"Dark Age of Camelot" = Dark Age of Camelot
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"Eazel-FR Toolbar" = Eazel-FR Toolbar
"Enregistrement utilisateur de Canon MP250 series" = Enregistrement utilisateur de Canon MP250 series
"ExpressBurn" = Express Burn
"ExpressRip" = Express Rip
"ffdshow_is1" = ffdshow v1.1.3425 [2010-05-08]
"Fiber Twig 2_is1" = Fiber Twig 2
"Get Yahoo! Messenger" = Installer Yahoo! Messenger
"Google Chrome" = Google Chrome
"HiYo" = HiYo
"Icy Tower 1.1" = Icy Tower 1.1
"Infineon USB driver_is1" = Infineon USB driver 1.0.0.6
"InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"Just sing_is1" = Just sing
"KaraFun Player_is1" = KaraFun Player
"LG Internet Kit" = LG Internet Kit
"LG PC Suite IV" = LG PC Suite IV
"MakeUp Guide_is1" = MakeUp Guide 1.2
"Manuel d'utilisation de Creative WebCam Vista Plus French" = Manuel d'utilisation de Creative WebCam Vista Plus (Français)
"Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile FRA Language Pack" = Module linguistique Microsoft .NET Framework 4 Client Profile FRA
"Microsoft Security Client" = Microsoft Security Essentials
"Mindscape" = Mindscape
"MixPad" = MixPad - Mixeur de fichiers audio
"Moxy" = Uninstall Moxy
"Mozilla Firefox 9.0.1 (x86 fr)" = Mozilla Firefox 9.0.1 (x86 fr)
"Mozilla Thunderbird (3.0)" = Mozilla Thunderbird (3.0)
"MP Navigator EX 3.0" = Canon MP Navigator EX 3.0
"NoSpam_is1" = NoSpam 0.5.32
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"PCTuto Maj_is1" = PCTuto Maj 1.0
"PcTuto_is1" = PcTuto 1.1
"PROPLUS" = Microsoft Office Professional Plus 2007
"PureCodec" = Pure Codec
"Searchqu 101 MediaBar" = Windows Searchqu Toolbar
"SimCity 3000" = SimCity 3000
"Strawberry Shortcake" = Charlotte aux Fraises - Voyage au pays des fraisi-rêves
"SuperTux_is1" = SuperTux 0.1.3
"Switch" = Switch - Convertisseur de fichiers audio
"Tuto Audacity_is1" = Tuto Audacity1.0.0.0
"UltSounds" = Modèles de sons Windows
"UltSounds2" = Ultimate Extras sounds from Microsoft® Tinker™
"VLC media player" = VLC media player 1.1.4
"WavePad" = WavePad - Logiciel d'édition audio
"Windows Media Encoder 9" = Codeur Windows Media Série 9
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinLiveSuite" = Windows Live
"WinRAR archiver" = Archiveur WinRAR
"Wormux" = Wormux
"Wormux 0.7" = Wormux 0.7
"Zumas Revenge! - Adventure_is1" = Zumas Revenge! - Adventure
"Zuma's Revenge!1.0" = Zuma's Revenge!

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-2129587958-3967708758-947222675-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater
"Facebook Plug-In" = Facebook Plug-In
"Hide and Secret Deluxe" = Hide and Secret Deluxe
"IadahToolbar" = Iadah Toolbar
"PhotoFiltre" = PhotoFiltre
"uTorrent" = µTorrent

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 11/01/2012 01:42:33 | Computer Name = PC-de-giannieve | Source = Application Hang | ID = 1002
Description = Le programme firefox.exe version 9.0.1.4371 a cessé d’interagir avec
Windows et a été fermé. Pour déterminer si des informations supplémentaires sont
disponibles, consultez l’historique du problème dans l’application Rapports et
solutions aux problèmes du Panneau de configuration. ID de processus : d0c Heure de
début : 01ccd0237cf737f3 Heure de fin : 21

Error - 11/01/2012 03:48:03 | Computer Name = PC-de-giannieve | Source = Application Hang | ID = 1002
Description = Le programme firefox.exe version 9.0.1.4371 a cessé d’interagir avec
Windows et a été fermé. Pour déterminer si des informations supplémentaires sont
disponibles, consultez l’historique du problème dans l’application Rapports et
solutions aux problèmes du Panneau de configuration. ID de processus : 16bc Heure
de début : 01ccd03300abd00e Heure de fin : 14

Error - 11/01/2012 03:55:09 | Computer Name = PC-de-giannieve | Source = Application Hang | ID = 1002
Description = Le programme firefox.exe version 9.0.1.4371 a cessé d’interagir avec
Windows et a été fermé. Pour déterminer si des informations supplémentaires sont
disponibles, consultez l’historique du problème dans l’application Rapports et
solutions aux problèmes du Panneau de configuration. ID de processus : 105c Heure
de début : 01ccd036182cfe03 Heure de fin : 10

Error - 11/01/2012 04:01:47 | Computer Name = PC-de-giannieve | Source = Application Hang | ID = 1002
Description = Le programme firefox.exe version 9.0.1.4371 a cessé d’interagir avec
Windows et a été fermé. Pour déterminer si des informations supplémentaires sont
disponibles, consultez l’historique du problème dans l’application Rapports et
solutions aux problèmes du Panneau de configuration. ID de processus : 14f8 Heure
de début : 01ccd0365898b932 Heure de fin : 10

Error - 11/01/2012 13:14:22 | Computer Name = PC-de-giannieve | Source = Application Hang | ID = 1002
Description = Le programme firefox.exe version 9.0.1.4371 a cessé d’interagir avec
Windows et a été fermé. Pour déterminer si des informations supplémentaires sont
disponibles, consultez l’historique du problème dans l’application Rapports et
solutions aux problèmes du Panneau de configuration. ID de processus : 1704 Heure
de début : 01ccd05e0db4d0c3 Heure de fin : 35

Error - 11/01/2012 19:03:54 | Computer Name = PC-de-giannieve | Source = LoadPerf | ID = 3002
Description =

Error - 11/01/2012 19:03:55 | Computer Name = PC-de-giannieve | Source = LoadPerf | ID = 3002
Description =

Error - 11/01/2012 19:05:32 | Computer Name = PC-de-giannieve | Source = LoadPerf | ID = 3002
Description =

Error - 12/01/2012 00:39:00 | Computer Name = PC-de-giannieve | Source = Application Hang | ID = 1002
Description = Le programme firefox.exe version 9.0.1.4371 a cessé d’interagir avec
Windows et a été fermé. Pour déterminer si des informations supplémentaires sont
disponibles, consultez l’historique du problème dans l’application Rapports et
solutions aux problèmes du Panneau de configuration. ID de processus : 1370 Heure
de début : 01ccd0cfd16656df Heure de fin : 57

Error - 12/01/2012 07:58:57 | Computer Name = PC-de-giannieve | Source = Application Error | ID = 1000
Description = Application défaillante plugin-container.exe, version 9.0.1.4371,
horodatage 0x4ef15e07, module défaillant NPSWF32.dll, version 11.1.102.55, horodatage
0x4eaf86ce, code d’exception 0xc0000005, décalage d’erreur 0x00198824, ID du processus
0x13bc, heure de début de l’application 0x01ccd0f1f09d46dd.

[ OSession Events ]
Error - 05/02/2011 02:08:50 | Computer Name = PC-de-giannieve | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3
seconds with 0 seconds of active time. This session ended with a crash.

Error - 22/05/2011 07:32:06 | Computer Name = PC-de-giannieve | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 5
seconds with 0 seconds of active time. This session ended with a crash.

Error - 27/05/2011 06:24:17 | Computer Name = PC-de-giannieve | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4
seconds with 0 seconds of active time. This session ended with a crash.

Error - 27/05/2011 09:14:13 | Computer Name = PC-de-giannieve | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 2
seconds with 0 seconds of active time. This session ended with a crash.

Error - 25/08/2011 00:44:24 | Computer Name = PC-de-giannieve | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 32
seconds with 0 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 12/01/2012 10:43:39 | Computer Name = PC-de-giannieve | Source = Service Control Manager | ID = 7000
Description =

Error - 12/01/2012 10:46:41 | Computer Name = PC-de-giannieve | Source = Application Popup | ID = 875
Description = Le chargement du pilote sfdrv01.sys a été bloqué.

Error - 12/01/2012 10:46:41 | Computer Name = PC-de-giannieve | Source = Application Popup | ID = 875
Description = Le chargement du pilote sfvfs02.sys a été bloqué.

Error - 12/01/2012 10:48:39 | Computer Name = PC-de-giannieve | Source = Service Control Manager | ID = 7026
Description =

Error - 12/01/2012 21:57:45 | Computer Name = PC-de-giannieve | Source = Application Popup | ID = 875
Description = Le chargement du pilote sfdrv01.sys a été bloqué.

Error - 12/01/2012 21:57:45 | Computer Name = PC-de-giannieve | Source = Application Popup | ID = 875
Description = Le chargement du pilote sfvfs02.sys a été bloqué.

Error - 12/01/2012 21:59:43 | Computer Name = PC-de-giannieve | Source = Service Control Manager | ID = 7026
Description =

Error - 13/01/2012 01:51:58 | Computer Name = PC-de-giannieve | Source = Application Popup | ID = 875
Description = Le chargement du pilote sfdrv01.sys a été bloqué.

Error - 13/01/2012 01:51:58 | Computer Name = PC-de-giannieve | Source = Application Popup | ID = 875
Description = Le chargement du pilote sfvfs02.sys a été bloqué.

Error - 13/01/2012 01:53:56 | Computer Name = PC-de-giannieve | Source = Service Control Manager | ID = 7026
Description =

[ TuneUp Events ]
Error - 01/01/2009 08:03:30 | Computer Name = PC-de-giannieve | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 17/06/2009 02:15:36 | Computer Name = PC-de-giannieve | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 17/06/2009 02:29:31 | Computer Name = PC-de-giannieve | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 17/06/2009 02:33:06 | Computer Name = PC-de-giannieve | Source = TuneUp Program Statistics | ID = 131840
Description =


< End of report >
evangelyne
 
Messages: 3
Inscription: 13 Jan 2012, 07:35

Re: bouton "REPONSE"

Messagede evangelyne » 13 Jan 2012, 07:49

OTL logfile created on: 13/01/2012 10:08:04 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\giannieve\Downloads
Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1,94 Gb Total Physical Memory | 0,90 Gb Available Physical Memory | 46,56% Memory free
4,11 Gb Paging File | 2,85 Gb Available in Paging File | 69,34% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 147,46 Gb Total Space | 54,35 Gb Free Space | 36,86% Space Free | Partition Type: NTFS
Drive D: | 150,62 Gb Total Space | 91,76 Gb Free Space | 60,92% Space Free | Partition Type: NTFS
Drive E: | 621,17 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: PC-DE-GIANNIEVE | User Name: giannieve | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/01/13 10:04:39 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\giannieve\Downloads\OTL.exe
PRC - [2012/01/04 14:30:24 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012/01/04 13:50:32 | 003,585,024 | ---- | M] () -- C:\Users\giannieve\AppData\Local\comnetwork\comnetwork.exe
PRC - [2012/01/04 12:15:06 | 003,015,168 | ---- | M] () -- C:\Users\giannieve\AppData\Local\MAJTuto\MAJTuto.exe
PRC - [2012/01/03 16:31:34 | 001,391,272 | ---- | M] (Ask) -- C:\Program Files\Ask.com\Updater\Updater.exe
PRC - [2011/08/01 14:35:42 | 000,114,992 | R--- | M] (SweetIM Technologies Ltd.) -- C:\Program Files\SweetIM\Messenger\SweetIM.exe
PRC - [2011/06/15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/04/27 15:39:26 | 000,208,944 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
PRC - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2011/03/15 15:56:18 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE
PRC - [2011/03/11 11:33:50 | 000,192,512 | ---- | M] (Chicony Electronics Co., Ltd.) -- C:\Windows\System32\DVAPTray.exe
PRC - [2011/03/02 18:15:13 | 001,115,536 | ---- | M] (Discordia, LTD) -- C:\Program Files\Windows Searchqu Toolbar\DataMngr\datamngrUI.exe
PRC - [2011/02/24 14:31:48 | 000,671,360 | ---- | M] (Agence-Exclusive) -- C:\Users\giannieve\AppData\Roaming\Agence-Exclusive\Agence-Exclusive\autoupdater.exe
PRC - [2011/02/24 14:17:32 | 001,035,904 | ---- | M] (PcTuto) -- C:\Program Files\Agence-Exclusive\pctuto.exe
PRC - [2010/06/28 12:20:08 | 002,373,992 | ---- | M] (Mobile Leader Co.,Ltd.) -- C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAir.exe
PRC - [2010/06/21 18:15:43 | 000,255,344 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files\HiYo\Bin\HiYo.exe
PRC - [2009/08/10 15:59:50 | 000,178,720 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
PRC - [2009/08/10 15:59:48 | 000,387,616 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
PRC - [2009/04/11 10:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/03/23 21:00:00 | 001,983,816 | ---- | M] (CANON INC.) -- C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
PRC - [2009/02/10 11:01:49 | 000,116,104 | ---- | M] () -- C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
PRC - [2008/09/24 17:32:48 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2006/11/12 14:48:46 | 000,157,592 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools\daemon.exe
PRC - [2004/07/30 11:04:22 | 000,245,760 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CamTray.exe


========== Modules (No Company Name) ==========

MOD - [2012/01/08 14:08:04 | 000,076,800 | ---- | M] () -- C:\Users\giannieve\AppData\Roaming\Mozilla\Firefox\Profiles\hg49jclz.default\extensions\{a8f9752d-e2b8-4e7a-86b5-499f4330e2fe}\components\RadioWMPCoreGecko9.dll
MOD - [2012/01/04 14:30:23 | 002,124,760 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012/01/04 13:50:32 | 003,585,024 | ---- | M] () -- C:\Users\giannieve\AppData\Local\comnetwork\comnetwork.exe
MOD - [2011/11/24 15:42:13 | 008,527,008 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
MOD - [2010/06/21 18:15:43 | 000,480,664 | ---- | M] () -- C:\Program Files\HiYo\Bin\AppServerCommunication.dll
MOD - [2006/07/14 09:34:00 | 000,007,680 | ---- | M] () -- C:\Program Files\DAEMON Tools\Plugins\Images\bw5mount.dll


========== Win32 Services (SafeList) ==========

SRV - [2012/01/04 12:15:06 | 003,015,168 | ---- | M] () [Auto | Running] -- C:\Users\giannieve\AppData\Local\MAJTuto\MAJTuto.exe -- (MAJTuto)
SRV - [2011/07/13 20:31:49 | 000,069,120 | ---- | M] (BOONTY) [On_Demand | Stopped] -- C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe -- (Boonty Games)
SRV - [2011/04/27 15:39:26 | 000,208,944 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)
SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2011/03/15 22:27:14 | 000,183,560 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/03/15 15:56:18 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE -- (SeaPort)
SRV - [2010/01/05 17:25:15 | 000,362,240 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\Windows\System32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009/12/17 19:00:28 | 000,243,056 | ---- | M] (CybelSoft) [On_Demand | Stopped] -- C:\Program Files\ma-config.com\maconfservice.exe -- (maconfservice)
SRV - [2009/08/10 15:59:50 | 000,178,720 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -- (nSvcIp)
SRV - [2009/08/10 15:59:48 | 000,387,616 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -- (ForceWare Intelligent Application Manager (IAM)) ForceWare Intelligent Application Manager (IAM)
SRV - [2009/02/10 11:01:49 | 000,116,104 | ---- | M] () [Auto | Running] -- C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE -- (IJPLMSVC)
SRV - [2008/09/24 17:32:48 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2008/01/21 06:21:41 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - [2012/01/13 09:52:20 | 000,029,904 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{027D2071-A1D3-4726-BE2C-DE13B7EBB588}\MpKsleed832c4.sys -- (MpKsleed832c4)
DRV - [2011/04/27 15:25:24 | 000,065,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2011/04/18 13:18:50 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2010/12/30 15:19:40 | 000,016,640 | ---- | M] (Wondershare) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys -- (Apowersoft_AudioDevice)
DRV - [2010/03/30 08:24:52 | 000,020,864 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lganddiag.sys -- (AndDiag)
DRV - [2010/03/30 08:24:52 | 000,019,968 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgandgps.sys -- (AndGps)
DRV - [2010/03/30 08:24:50 | 000,024,960 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgandmodem.sys -- (ANDModem)
DRV - [2010/03/30 08:24:48 | 000,014,336 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgandbus.sys -- (Andbus)
DRV - [2010/03/01 11:43:16 | 000,098,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039bus.sys -- (s1039bus) Sony Ericsson Device 1039 driver (WDM)
DRV - [2010/03/01 11:43:12 | 000,124,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039mdm.sys -- (s1039mdm)
DRV - [2010/03/01 11:43:12 | 000,014,960 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1039mdfl.sys -- (s1039mdfl)
DRV - [2010/01/21 00:59:58 | 000,020,864 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbdiag.sys -- (UsbDiag)
DRV - [2010/01/21 00:59:56 | 000,024,960 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbmodem.sys -- (USBModem)
DRV - [2010/01/21 00:59:56 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbbus.sys -- (usbbus)
DRV - [2009/12/18 10:23:14 | 000,014,336 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys -- (driverhardwarev2)
DRV - [2009/11/21 06:34:54 | 011,515,752 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009/09/29 07:11:22 | 000,012,160 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lgbtport.sys -- (LgBttPort)
DRV - [2009/09/29 07:11:20 | 000,012,928 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lgvmodem.sys -- (LGVMODEM)
DRV - [2009/09/29 07:11:20 | 000,010,496 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lgbtbus.sys -- (lgbusenum)
DRV - [2009/07/30 17:12:56 | 000,282,144 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmfdx32.sys -- (NVNET)
DRV - [2009/07/30 17:12:56 | 000,282,144 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvmfdx32.sys -- (NVENETFD)
DRV - [2009/06/29 00:36:36 | 000,017,920 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvsmu.sys -- (nvsmu)
DRV - [2009/05/12 14:53:04 | 000,016,896 | ---- | M] (Danish Wireless Design A/S) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\FlashUsb.sys -- (FlashUSB)
DRV - [2009/01/01 15:37:11 | 000,685,816 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2006/11/02 11:30:55 | 000,253,952 | ---- | M] (Marvell Semiconductor, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MRVW13B.sys -- (MRV6X32P)
DRV - [2005/11/03 18:40:07 | 000,063,488 | ---- | M] (Protection Technology) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2005/08/10 16:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005/05/16 17:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004/09/06 05:00:00 | 000,136,064 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\V0090Vid.sys -- (V0090VID)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
IE - HKLM\..\URLSearchHook: {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - C:\Program Files\Eazel-FR\prxtbEaz0.dll (Conduit Ltd.)


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2129587958-3967708758-947222675-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Live Search
IE - HKU\S-1-5-21-2129587958-3967708758-947222675-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKU\S-1-5-21-2129587958-3967708758-947222675-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
IE - HKU\S-1-5-21-2129587958-3967708758-947222675-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-2129587958-3967708758-947222675-1000\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKU\S-1-5-21-2129587958-3967708758-947222675-1000\..\URLSearchHook: {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - C:\Program Files\Eazel-FR\prxtbEaz0.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-2129587958-3967708758-947222675-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaultthis.engineName: "Eazel-FR Customized Web Search"
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Web Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.searchqu.com/"
FF - prefs.js..extensions.enabledItems: {1FD91A9C-410C-4090-BBCC-55D3450EF433}:2.0
FF - prefs.js..extensions.enabledItems: {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe}:3.3.3.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}:1.0
FF - prefs.js..extensions.enabledItems: {7FF99715-3016-4381-84CE-E4E4C9673020}:1.0
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.12.1.16460
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..keyword.URL: "http://www.searchqu.com/web?src=ffb&systemid=101&q="
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: "Ask.com"
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaulturl: "http://www.bing.com/search?FORM=WLETDF&PC=WLEM&q="
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: "Web Search"
FF - prefs.js..browser.startup.homepage: "http://www.searchqu.com/"

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@ma-config.com/HardwareDetection: C:\Program Files\ma-config.com\nphardwaredetection.dll (Cybelsoft)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.46: C:\Program Files\VistaCodecPack\rm\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.46: C:\Program Files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.1: C:\Users\giannieve\AppData\Roaming\Facebook\npfbplugin_1_0_1.dll ( )
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Users\giannieve\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( )
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\giannieve\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@stonetrip.com/ShiVaWebPlayer,version=1.8.1.0: C:\Users\giannieve\AppData\Roaming\..\LocalLow\StoneTrip\WebPlayer1.8.1\npShiVa3D_1.8.1.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}: C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}\ [2010/07/29 16:54:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/01/04 14:30:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/01/12 18:44:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.0\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2010/01/05 16:34:33 | 000,000,000 | ---D | M]

[2011/06/05 16:03:25 | 000,000,000 | ---D | M] (No name found) -- C:\Users\giannieve\AppData\Roaming\mozilla\Extensions
[2010/01/05 16:34:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\giannieve\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2012/01/08 21:56:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\giannieve\AppData\Roaming\mozilla\Firefox\Profiles\hg49jclz.default\extensions
[2010/11/03 08:39:13 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\giannieve\AppData\Roaming\mozilla\Firefox\Profiles\hg49jclz.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/06/05 16:03:08 | 000,000,000 | ---D | M] (Searchqu Toolbar) -- C:\Users\giannieve\AppData\Roaming\mozilla\Firefox\Profiles\hg49jclz.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
[2012/01/08 21:56:10 | 000,000,000 | ---D | M] (Eazel-FR Community Toolbar) -- C:\Users\giannieve\AppData\Roaming\mozilla\Firefox\Profiles\hg49jclz.default\extensions\{a8f9752d-e2b8-4e7a-86b5-499f4330e2fe}
[2011/09/11 09:57:42 | 000,000,000 | ---D | M] (MediaBar) -- C:\Users\giannieve\AppData\Roaming\mozilla\Firefox\Profiles\hg49jclz.default\extensions\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}
[2011/11/19 13:00:21 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Users\giannieve\AppData\Roaming\mozilla\Firefox\Profiles\hg49jclz.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
[2012/01/05 06:37:41 | 000,000,000 | ---D | M] (Babylon) -- C:\Users\giannieve\AppData\Roaming\mozilla\Firefox\Profiles\hg49jclz.default\extensions\ffxtlbr@babylon.com
[2012/01/04 14:30:27 | 000,000,000 | ---D | M] (My Web Search) -- C:\Users\giannieve\AppData\Roaming\mozilla\Firefox\Profiles\hg49jclz.default\extensions\m3ffxtbr@mywebsearch.com
[2012/01/10 23:00:22 | 000,000,000 | ---D | M] ("Ask Toolbar") -- C:\Users\giannieve\AppData\Roaming\mozilla\Firefox\Profiles\hg49jclz.default\extensions\toolbar@ask.com
[2012/01/13 08:54:51 | 000,002,400 | ---- | M] () -- C:\Users\giannieve\AppData\Roaming\Mozilla\Firefox\Profiles\hg49jclz.default\searchplugins\askcom.xml
[2011/05/10 11:04:08 | 000,001,832 | ---- | M] () -- C:\Users\giannieve\AppData\Roaming\Mozilla\Firefox\Profiles\hg49jclz.default\searchplugins\bing.xml
[2010/08/20 14:01:28 | 000,000,919 | ---- | M] () -- C:\Users\giannieve\AppData\Roaming\Mozilla\Firefox\Profiles\hg49jclz.default\searchplugins\conduit.xml
[2011/05/27 03:00:32 | 000,003,891 | ---- | M] () -- C:\Users\giannieve\AppData\Roaming\Mozilla\Firefox\Profiles\hg49jclz.default\searchplugins\iadah.xml
[2010/03/20 09:35:01 | 000,002,123 | ---- | M] () -- C:\Users\giannieve\AppData\Roaming\Mozilla\Firefox\Profiles\hg49jclz.default\searchplugins\MyStart Search.xml
[2010/09/02 12:09:41 | 000,005,529 | ---- | M] () -- C:\Users\giannieve\AppData\Roaming\Mozilla\Firefox\Profiles\hg49jclz.default\searchplugins\SearchquWebSearch.xml
[2011/09/11 09:57:32 | 000,002,505 | ---- | M] () -- C:\Users\giannieve\AppData\Roaming\Mozilla\Firefox\Profiles\hg49jclz.default\searchplugins\SearchResults.xml
[2011/11/19 13:00:11 | 000,003,915 | ---- | M] () -- C:\Users\giannieve\AppData\Roaming\Mozilla\Firefox\Profiles\hg49jclz.default\searchplugins\sweetim.xml
[2012/01/04 14:30:30 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
[2011/10/31 13:53:46 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\mozilla firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011/05/27 03:00:40 | 000,000,000 | ---D | M] (Toolbar Iadah) -- C:\Program Files\mozilla firefox\extensions\toolbar@iadah.com
() (No name found) -- C:\USERS\GIANNIEVE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\HG49JCLZ.DEFAULT\EXTENSIONS\{5B1FDAC4-A239-4933-9C52-B65A2A720B75}.XPI
[2012/01/04 14:30:24 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/10/03 05:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011/10/08 16:53:21 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2011/07/31 20:03:10 | 000,002,288 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2011/10/08 16:53:21 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011/10/08 16:53:21 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2011/10/08 16:53:21 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2010/09/02 12:09:41 | 000,005,529 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\SearchquWebSearch.xml
[2011/09/11 09:57:32 | 000,002,505 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\SearchResults.xml
[2009/12/09 13:52:24 | 000,000,832 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\WebSearch.xml
[2011/10/08 16:53:21 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2011/10/08 16:53:21 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

========== Chrome ==========

CHR - default_search_provider: SweetIM Search (Enabled)
CHR - default_search_provider: search_url = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={D96139AF-128C-11E1-896E-0024211DE49D}
CHR - default_search_provider: suggest_url =
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.63\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: QuickTime Plug-in 7.1.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.1.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.1.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.1.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.1.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.1.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.1.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: QuickTime Plug-in 6.5.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin8.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\VistaCodecPack\rm\browser\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Users\giannieve\AppData\Roaming\Mozilla\plugins\np-mswmp.dll
CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files\Microsoft\Office Live\npOLW.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.63\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.63\pdf.dll
CHR - plugin: Skype Toolbars (Enabled) = C:\Users\giannieve\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.5.0.8013_0\npSkypeChromePlugin.dll
CHR - plugin: CANON iMAGE GATEWAY Album Plugin Utility (Enabled) = C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Ma-Config.com plugin (Enabled) = C:\Program Files\ma-config.com\nphardwaredetection.dll
CHR - plugin: ShiVa3D Plugin 1.8.1 (Enabled) = C:\Users\giannieve\AppData\Roaming\..\LocalLow\StoneTrip\WebPlayer1.8.1\npShiVa3D_1.8.1.dll
CHR - plugin: Facebook Plugin (Enabled) = C:\Users\giannieve\AppData\Roaming\Facebook\npfbplugin_1_0_1.dll
CHR - plugin: Facebook Plugin (Enabled) = C:\Users\giannieve\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Users\giannieve\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.2_0\
CHR - Extension: Recherche Google = C:\Users\giannieve\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.16_0\
CHR - Extension: Skype Click to Call = C:\Users\giannieve\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\
CHR - Extension: Gmail = C:\Users\giannieve\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\6.1.4_0\

O1 HOSTS File: ([2006/09/19 01:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (HistoryTriggerBHO Class) - {21A88CB9-84D2-4020-A2D1-B25A21034884} - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll (LG Electronics)
O2 - BHO: (PCTBHO Class) - {293A63F7-C3B6-423a-9845-901AC0A7EE6E} - C:\Program Files\Agence-Exclusive\pctutoBHO.dll (PcTuto)
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.31.2\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\WI9130~1\ToolBar\searchqudtx.dll ()
O2 - BHO: (UrlHelper Class) - {A40DC6C5-79D0-4ca8-A185-8FF989AF1115} - C:\PROGRA~1\WI9130~1\DataMngr\IEBHO.dll (Discordia, LTD)
O2 - BHO: (Eazel-FR Toolbar) - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - C:\Program Files\Eazel-FR\prxtbEaz0.dll (Conduit Ltd.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (MediaBar) - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll ()
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (Iadah Toolbar) - {3EA8D036-C9E7-4721-BCDF-C13D00C4CC39} - C:\Program Files\DevNet\Toolbar\DevNet.dll (DevNet)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.31.2\BabylonToolbarTlbr.dll (Babylon Ltd.)
O3 - HKLM\..\Toolbar: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\WI9130~1\ToolBar\searchqudtx.dll ()
O3 - HKLM\..\Toolbar: (Eazel-FR Toolbar) - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - C:\Program Files\Eazel-FR\prxtbEaz0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (MediaBar) - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll ()
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKU\S-1-5-21-2129587958-3967708758-947222675-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKU\S-1-5-21-2129587958-3967708758-947222675-1000\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKU\S-1-5-21-2129587958-3967708758-947222675-1000\..\Toolbar\WebBrowser: (Eazel-FR Toolbar) - {A8F9752D-E2B8-4E7A-86B5-499F4330E2FE} - C:\Program Files\Eazel-FR\prxtbEaz0.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-2129587958-3967708758-947222675-1000\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [B2C_AGENT] C:\ProgramData\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe (LG Electronics)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [comnetwork] C:\Users\giannieve\AppData\Local\comnetwork\comnetwork.exe ()
O4 - HKLM..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CAMTRAY.EXE (Creative Technology Ltd)
O4 - HKLM..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.)
O4 - HKLM..\Run: [DataMngr] C:\PROGRA~1\WI9130~1\Datamngr\DATAMN~1.EXE (Discordia, LTD)
O4 - HKLM..\Run: [DVAPTray] C:\Windows\System32\DVAPTray.exe (Chicony Electronics Co., Ltd.)
O4 - HKLM..\Run: [Hiyo] C:\Program Files\HiYo\bin\HiYo.exe (IncrediMail, Ltd.)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [pctuto] C:\Program Files\Agence-Exclusive\pctuto.exe (PcTuto)
O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-2129587958-3967708758-947222675-1000..\Run: [Facebook Update] C:\Users\giannieve\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKU\S-1-5-21-2129587958-3967708758-947222675-1000..\Run: [LG LinkAir] C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAir.exe (Mobile Leader Co.,Ltd.)
O4 - HKLM..\RunOnce: [autoupdater] C:\Users\giannieve\AppData\Roaming\Agence-Exclusive\Agence-Exclusive\autoupdater.exe (Agence-Exclusive)
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: LG Air Sync (R-Click) - Save as Mobile Image - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll (Mobile Leader Co.,Ltd.)
O8 - Extra context menu item: LG Air Sync (R-Click) - Save as Mobile Memo - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll (Mobile Leader Co.,Ltd.)
O8 - Extra context menu item: LG Air Sync (R-Click) - Save as Mobile Text file - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll (Mobile Leader Co.,Ltd.)
O8 - Extra context menu item: LG Air Sync (R-Click) - Set as Mobile Wallpaper - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll (Mobile Leader Co.,Ltd.)
O8 - Extra context menu item: LG Air Sync Option - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll (Mobile Leader Co.,Ltd.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
O13 - gopher Prefix: missing
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/ms ... b56986.cab (Checkers Class)
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/Messenger ... E_UNO1.cab (UnoCtrl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/Me ... b56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 41.213.128.81 41.213.128.82
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7AEEB831-3DFC-47B7-8EB1-4B72EED56D1F}: DhcpNameServer = 41.213.128.81 41.213.128.82
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (c:\progra~1\wi9130~1\datamngr\datamngr.dll) -c:\progra~1\wi9130~1\datamngr\datamngr.dll (Discordia, LTD)
O20 - AppInit_DLLs: (c:\progra~1\wi9130~1\datamngr\iebho.dll) -c:\progra~1\wi9130~1\datamngr\iebho.dll (Discordia, LTD)
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O22 - SharedTaskScheduler: {E31004D1-A431-41B8-826F-E902F9D95C81} - Windows DreamScene - C:\Windows\System32\DreamScene.dll (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\giannieve\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O24 - Desktop BackupWallPaper: C:\Users\giannieve\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/19 01:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{3c5a806f-9aba-11df-b23f-0024211de49d}\Shell - "" = AutoRun
O33 - MountPoints2\{3c5a806f-9aba-11df-b23f-0024211de49d}\Shell\AutoRun\command - "" = G:\LGAutoRun.exe
O33 - MountPoints2\{76dcbd2d-1520-11df-9aa2-002185939b39}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL G:\DIeDioH.exe
O33 - MountPoints2\{c8d4510a-2c3b-11e1-9b61-0024211de49d}\Shell - "" = AutoRun
O33 - MountPoints2\{c8d4510a-2c3b-11e1-9b61-0024211de49d}\Shell\AutoRun\command - "" = H:\DVAP.exe
O33 - MountPoints2\{eebfa72f-9ed5-11e0-8245-0024211de49d}\Shell - "" = AutoRun
O33 - MountPoints2\{eebfa72f-9ed5-11e0-8245-0024211de49d}\Shell\AutoRun\command - "" = G:\Startme.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
evangelyne
 
Messages: 3
Inscription: 13 Jan 2012, 07:35

Re: bouton "REPONSE"

Messagede evangelyne » 13 Jan 2012, 07:50

========== Files/Folders - Created Within 30 Days ==========

[2012/01/13 07:48:09 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{2D986571-37CF-46C4-ADCA-C1FEE99ADC02}
[2012/01/13 07:47:58 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{4785308F-DC52-4A18-A877-A3B188018058}
[2012/01/12 19:47:31 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{E4E58ED3-B9A5-453A-ABF0-303DB548E1EA}
[2012/01/12 19:47:19 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{AB95016D-A50D-46BC-A943-A83C634C9F24}
[2012/01/12 07:46:51 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{7718FBD7-F61B-46DB-AD11-DB1DBCB67D7B}
[2012/01/12 07:46:39 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{87D8E205-6AFE-4162-B659-C17CC79113EF}
[2012/01/11 19:46:08 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{62116DF5-5EFA-4C3D-A367-9DE902332C91}
[2012/01/11 19:45:56 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{A8776EDA-0FEB-4426-9721-2A0DA2F446B2}
[2012/01/11 15:37:11 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciseq.dll
[2012/01/11 15:37:04 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll
[2012/01/11 15:37:03 | 000,376,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2012/01/11 15:32:09 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2012/01/11 15:32:09 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2012/01/11 07:45:30 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{14538AA4-3110-41A6-B408-E95BD6198B40}
[2012/01/10 19:45:01 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{BFD83A06-3016-464D-ACDB-DA26D623B5DE}
[2012/01/10 06:46:27 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{AF0D26ED-0E40-4376-B711-DC8C85251174}
[2012/01/10 06:46:16 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{80CBA961-F851-48A8-9898-9CAA746D9F85}
[2012/01/09 18:45:50 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{CF880285-8B85-49DA-8E5A-9F86E3D5FD65}
[2012/01/09 06:45:25 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{C3A06CA5-5F02-4CA9-A250-F60E365487EC}
[2012/01/09 06:45:14 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{3AB2D420-92F5-4F34-86E1-E762497BDC34}
[2012/01/08 21:46:52 | 000,016,640 | ---- | C] (Wondershare) -- C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys
[2012/01/08 21:46:52 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Roaming\Apowersoft
[2012/01/08 21:46:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft
[2012/01/08 21:46:41 | 000,000,000 | ---D | C] -- C:\Program Files\Apowersoft
[2012/01/08 18:44:47 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{708B7302-67C1-4E4C-9901-DAD24C433407}
[2012/01/08 13:29:56 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Roaming\MakeupGuide
[2012/01/08 13:20:02 | 000,000,000 | ---D | C] -- C:\Program Files\Two Pilots
[2012/01/08 13:20:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MakeUp Guide
[2012/01/08 13:20:01 | 000,000,000 | ---D | C] -- C:\Program Files\MakeUp Guide
[2012/01/08 13:14:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio
[2012/01/08 13:14:08 | 000,000,000 | ---D | C] -- C:\Program Files\CamStudio
[2012/01/08 06:44:15 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{99E3A474-FC19-44CD-AA78-26C4112296C6}
[2012/01/07 18:38:37 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{9F479790-D47B-4164-BD44-918AE67CE624}
[2012/01/07 06:38:04 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{C63B06D7-A92F-49CF-BDC9-DC7976BA58BE}
[2012/01/06 18:37:35 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{603E6716-1ACB-47FA-8EC3-7CFF7682E999}
[2012/01/06 16:26:15 | 000,000,000 | ---D | C] -- C:\ProgramData\FE
[2012/01/06 06:37:06 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{BBAB789F-E4A1-459B-BDB9-13E7787BC8BA}
[2012/01/06 06:36:54 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{51CEB2DE-02F4-4CF1-84D9-2B9BE580D66C}
[2012/01/05 18:36:27 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{17FA29AC-9955-47D8-80F2-69EEE6BED702}
[2012/01/05 18:36:14 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{3F3B1DBC-A9AF-482D-9297-045849861F19}
[2012/01/05 07:08:48 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\MAJTuto
[2012/01/05 07:08:48 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\eojet
[2012/01/05 07:08:48 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\comnetwork
[2012/01/05 06:35:50 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{435A02C3-AE80-4F8B-94E3-FCF3A2B4E417}
[2012/01/05 06:35:39 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{2E09D52D-F4F5-4C36-A731-AB0F933A72C8}
[2012/01/04 07:02:03 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{52CF82ED-0941-4635-A001-68D00B6D307D}
[2012/01/03 19:01:23 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{268F963F-5D91-47B5-AE5C-8AFB6C06895E}
[2012/01/03 07:00:51 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{38DEE1D1-9686-443F-9D7D-593A3FDC091C}
[2012/01/02 19:00:18 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{84B36AD7-C4F3-4165-8566-6E56D2EDC48B}
[2012/01/02 19:00:04 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{065D80F9-CD24-4A4A-8B83-0615411E15BF}
[2012/01/02 06:59:38 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{F2E63140-2171-4A79-B0E5-0A0F9BFD986D}
[2012/01/01 18:58:58 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{83B1AE60-B060-4A14-9DDA-DC5ECDF98824}
[2012/01/01 18:58:45 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{61F834C4-843B-4CC1-B8A4-B3B183B6EEA4}
[2012/01/01 17:19:21 | 000,516,096 | ---- | C] (Gabest) -- C:\Windows\System32\MP4Splitter.ax
[2012/01/01 17:19:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
[2012/01/01 17:19:20 | 000,192,512 | ---- | C] (Chicony Electronics Co., Ltd.) -- C:\Windows\System32\DVAPTray.exe
[2012/01/01 06:54:06 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{64CC30C3-747D-4186-A4C1-CA0F2F345051}
[2011/12/31 18:53:40 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{1153D0F0-221E-4F4F-B8F1-B1EF6C9D270C}
[2011/12/31 06:53:05 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{3C5BE9C8-AB09-43EB-8CD3-07FA96E85948}
[2011/12/31 06:52:50 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{45B42775-6B57-46C5-9AA6-3E8953E900D2}
[2011/12/30 17:18:40 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{74B5DDE5-B1A5-4C59-A1F7-C14BEDE5335F}
[2011/12/30 05:18:14 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{4CF17F72-E196-45E7-AE71-F4000C15A142}
[2011/12/30 05:18:02 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{3BB11DC5-76E9-419E-ABEC-C478C36F5C20}
[2011/12/29 06:59:47 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{7D844DE8-F110-465E-8AE2-76F35140EBA3}
[2011/12/29 06:59:33 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{A022B663-4BEE-4922-8597-69497E8CE78E}
[2011/12/28 18:58:55 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{98EC84AD-6E84-4064-97FD-C5EDC99184C3}
[2011/12/28 06:58:26 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{22721B84-E22E-436D-9B50-4E7641B1FADD}
[2011/12/27 18:57:46 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{EB3B6DDB-C44B-4472-9121-B2F067ED8C01}
[2011/12/27 06:57:12 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{DA93DAC8-6706-40A5-8484-EF04586512E3}
[2011/12/27 06:56:58 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{D36B77DF-F8B6-4C65-8611-3189211C14A6}
[2011/12/26 09:29:00 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{5D477053-724E-4F1E-91EE-8E48A9C962C3}
[2011/12/26 09:28:46 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{D3256CC5-6E61-4A1E-8A04-AA5DEFC7824B}
[2011/12/25 21:28:18 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{EFA4C371-D2B2-473A-8286-A2C7ED821DAD}
[2011/12/25 09:27:13 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{E964F925-4118-4792-A984-612C61B1D087}
[2011/12/24 16:46:58 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{97BBE977-D621-43AD-B157-11BAF8016CD8}
[2011/12/24 16:46:43 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{45B0717D-39A0-4EFD-A028-7DE83D3B0887}
[2011/12/24 04:46:16 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{D744A14A-F0FA-4614-B463-799D1DB880E4}
[2011/12/24 04:46:05 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{0273D512-FC89-4D3A-B267-A8A19A8D09A8}
[2011/12/23 08:07:40 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{8DFE585E-963B-4B7F-AB52-9C3CF862E360}
[2011/12/22 20:07:12 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{D597DFC3-5E89-4D8E-82D4-3F8CBDD8CDF3}
[2011/12/22 08:06:48 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{5174B801-4DC7-4241-BC6F-685B4EA720F6}
[2011/12/22 08:06:36 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{F1CE6D97-5E6E-4B07-AFF6-CC4BD25DC2F8}
[2011/12/21 20:06:09 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{AC8BB682-67E2-4953-A220-0538CD90E544}
[2011/12/21 08:05:44 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{486E0444-1D6A-498E-8289-AA64E1173E94}
[2011/12/20 20:05:14 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{79714200-4868-4A86-9544-29366184E885}
[2011/12/20 08:04:48 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{E6392293-71C4-4D57-A86D-D52ABD486F46}
[2011/12/20 08:04:37 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{4DDE6654-48C8-4956-8EFB-DC008F6F43D0}
[2011/12/19 18:13:45 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{333D44D3-93AE-4367-8AB9-6F4130D9F5BE}
[2011/12/19 06:13:21 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{B533BDAC-563B-440A-A4C1-A219E440667F}
[2011/12/19 06:13:10 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{19704327-8CFF-44B7-ABB0-6B1877566586}
[2011/12/18 18:12:45 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{D8E8C437-0C2D-4628-85F4-9BDF09D728A6}
[2011/12/18 06:12:15 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{32633FE5-877A-43A3-9536-1CE204ACF864}
[2011/12/17 18:11:44 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{D75D4779-C663-421E-8E1D-8D02FF57D3D3}
[2011/12/17 06:11:15 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{53A5D498-099E-4859-B327-119E11532BBB}
[2011/12/16 18:10:49 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{351BA887-9D38-480F-9B68-9A1139ED1F57}
[2011/12/16 06:10:22 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{094EFEB6-8C31-4EA4-AF77-73875AAD298A}
[2011/12/16 06:10:10 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{58995244-8C09-40BA-8FA0-C67814BC9EB7}
[2011/12/16 03:06:15 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011/12/16 03:06:13 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2011/12/16 03:06:13 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011/12/16 03:06:12 | 001,798,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2011/12/16 03:06:12 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011/12/16 03:06:09 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2011/12/15 18:09:43 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{86549E38-5224-43FE-A767-9804F5335863}
[2011/12/15 16:05:25 | 003,602,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2011/12/15 16:05:24 | 003,550,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2011/12/15 16:05:21 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2011/12/15 16:01:42 | 002,043,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011/12/15 15:55:10 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2011/12/15 15:53:54 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2011/12/15 06:09:18 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{575932F6-FADB-493B-97CC-75AFFD4C1D2A}
[2011/12/15 06:09:07 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{CABDA1F8-DB0A-4D4E-8FDA-B04B5806EE05}
[2011/12/14 18:08:40 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{E1EC771E-1514-44F3-A337-0CD8C9D51C5B}
[2011/12/14 18:08:28 | 000,000,000 | ---D | C] -- C:\Users\giannieve\AppData\Local\{55AD2E89-D98E-451D-A0FA-66C119EC4D48}
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/01/13 10:00:00 | 000,000,516 | ---- | M] () -- C:\Windows\tasks\Maintenance en 1 clic.job
[2012/01/13 09:52:35 | 000,001,058 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/01/13 09:52:20 | 000,003,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/01/13 09:52:20 | 000,003,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/01/13 09:52:14 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/01/13 09:52:11 | 2079,440,896 | -HS- | M] () -- C:\hiberfil.sys
[2012/01/13 09:43:04 | 000,000,944 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2129587958-3967708758-947222675-1000UA.job
[2012/01/13 09:21:00 | 000,001,062 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/01/12 18:44:11 | 000,001,887 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012/01/12 18:43:00 | 000,000,922 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2129587958-3967708758-947222675-1000Core.job
[2012/01/10 06:45:57 | 000,002,687 | ---- | M] () -- C:\Users\giannieve\Desktop\Microsoft Office Word 2007.lnk
[2012/01/08 21:18:17 | 000,011,018 | ---- | M] () -- C:\Users\giannieve\Documents\1325838740446.jpg
[2012/01/06 17:51:36 | 001,703,228 | ---- | M] () -- C:\Users\giannieve\Desktop\anges d'afrik- zekete zekete.mp3
[2012/01/06 17:21:54 | 014,119,122 | ---- | M] () -- C:\Users\giannieve\Desktop\zouk love 2008 dj madinina.mp3
[2012/01/06 17:00:51 | 000,000,179 | ---- | M] () -- C:\Users\giannieve\Desktop\Disque amovible (G) - Raccourci.lnk
[2012/01/02 11:12:17 | 000,002,305 | ---- | M] () -- C:\Users\giannieve\Application Data\Microsoft\Internet Explorer\Quick Launch\QuickTime Player.lnk
[2012/01/01 17:22:31 | 000,199,680 | ---- | M] () -- C:\Users\giannieve\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/01/01 17:21:30 | 000,000,038 | ---- | M] () -- C:\Users\giannieve\AppData\Roaming\DVAP.set
[2011/12/24 08:30:10 | 000,000,863 | ---- | M] () -- C:\Users\giannieve\Application Data\Microsoft\Internet Explorer\Quick Launch\pizap.com10.83740897150710231324398227780 - Raccourci.lnk
[2011/12/16 03:30:07 | 000,389,408 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/12/14 11:35:59 | 000,000,079 | ---- | M] () -- C:\Users\giannieve\Application Data\Microsoft\Internet Explorer\Quick Launch\httpwww.jukebo.frcommandpermalinkembedid569509.URL
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/01/12 18:44:11 | 000,001,887 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012/01/12 18:44:11 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
[2012/01/08 20:09:22 | 000,011,018 | ---- | C] () -- C:\Users\giannieve\Documents\1325838740446.jpg
[2012/01/06 18:07:20 | 001,703,228 | ---- | C] () -- C:\Users\giannieve\Desktop\anges d'afrik- zekete zekete.mp3
[2012/01/06 17:23:14 | 014,119,122 | ---- | C] () -- C:\Users\giannieve\Desktop\zouk love 2008 dj madinina.mp3
[2012/01/06 17:00:51 | 000,000,179 | ---- | C] () -- C:\Users\giannieve\Desktop\Disque amovible (G) - Raccourci.lnk
[2012/01/01 17:21:30 | 000,000,038 | ---- | C] () -- C:\Users\giannieve\AppData\Roaming\DVAP.set
[2012/01/01 17:19:21 | 007,135,232 | ---- | C] () -- C:\Windows\System32\DVAP_M.exe
[2012/01/01 17:19:21 | 000,000,061 | ---- | C] () -- C:\Windows\System32\DVAPTray.set
[2012/01/01 17:19:20 | 000,155,648 | ---- | C] () -- C:\Windows\System32\DVAPfg.exe
[2011/12/24 08:30:10 | 000,000,863 | ---- | C] () -- C:\Users\giannieve\Application Data\Microsoft\Internet Explorer\Quick Launch\pizap.com10.83740897150710231324398227780 - Raccourci.lnk
[2011/12/14 11:35:59 | 000,000,079 | ---- | C] () -- C:\Users\giannieve\Application Data\Microsoft\Internet Explorer\Quick Launch\httpwww.jukebo.frcommandpermalinkembedid569509.URL
[2011/12/14 06:47:13 | 000,000,089 | ---- | C] () -- C:\Windows\ulead32.ini
[2011/12/13 16:24:53 | 000,000,021 | ---- | C] () -- C:\Windows\ME_setup.ini
[2011/06/05 16:02:24 | 001,524,112 | ---- | C] () -- C:\Windows\System32\bandoolmx.dll
[2011/04/26 19:08:08 | 000,000,000 | ---- | C] () -- C:\Users\giannieve\AppData\Local\{4D16909F-6339-43D0-9986-3F50B63D5DF4}
[2010/10/28 18:50:26 | 000,207,104 | ---- | C] () -- C:\Windows\PI.EXE
[2010/07/29 16:59:05 | 000,053,248 | ---- | C] () -- C:\Windows\System32\CommonDL.dll
[2010/07/29 16:59:05 | 000,002,413 | ---- | C] () -- C:\Windows\System32\lgAxconfig.ini
[2010/06/15 05:29:18 | 000,005,632 | ---- | C] () -- C:\Windows\System32\StarOpen.sys
[2010/04/21 08:03:30 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2010/04/21 08:03:30 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2010/04/21 08:02:37 | 000,062,976 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2010/03/15 17:49:42 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/01/05 19:28:19 | 000,071,339 | ---- | C] () -- C:\ProgramData\nvModes.001
[2010/01/05 19:13:46 | 000,071,339 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2009/08/05 15:23:18 | 000,010,240 | ---- | C] () -- C:\Windows\System32\vidx16.dll
[2009/08/05 15:23:14 | 000,000,293 | ---- | C] () -- C:\Windows\ChangesUserData.ini
[2009/08/03 00:21:54 | 000,197,912 | ---- | C] () -- C:\Windows\System32\physxcudart_20.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2009/06/14 15:30:11 | 000,000,018 | ---- | C] () -- C:\Windows\cnc.ini
[2009/05/25 10:07:43 | 000,000,777 | ---- | C] () -- C:\Windows\mInstall.ini
[2009/02/22 14:25:21 | 000,053,248 | ---- | C] () -- C:\Windows\System32\ArmAccess.dll
[2009/02/22 14:25:21 | 000,029,656 | ---- | C] () -- C:\Windows\System32\Lanceur2.exe
[2009/01/23 10:22:47 | 000,024,620 | ---- | C] () -- C:\Users\giannieve\AppData\Roaming\UserTile.png
[2009/01/01 15:58:59 | 000,009,728 | ---- | C] () -- C:\Windows\System32\BASSMOD.dll
[2009/01/01 01:04:44 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2008/12/31 18:48:18 | 000,003,636 | R--- | C] () -- C:\Windows\System32\drivers\nvphy.bin
[2008/12/31 18:43:11 | 000,000,680 | ---- | C] () -- C:\Users\giannieve\AppData\Local\d3d9caps.dat
[2008/12/31 17:40:49 | 000,004,767 | ---- | C] () -- C:\Windows\Irremote.ini
[2008/12/31 16:21:09 | 000,199,680 | ---- | C] () -- C:\Users\giannieve\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/03/29 03:41:32 | 000,108,032 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2008/01/21 12:04:19 | 000,340,236 | ---- | C] () -- C:\Windows\System32\perfi00C.dat
[2008/01/21 12:04:19 | 000,123,350 | ---- | C] () -- C:\Windows\System32\perfc00C.dat
[2008/01/21 12:04:19 | 000,037,390 | ---- | C] () -- C:\Windows\System32\perfd00C.dat
[2008/01/21 12:04:19 | 000,000,000 | ---- | C] () -- C:\Windows\System32\perfh00C.dat
[2008/01/21 06:23:41 | 000,081,158 | ---- | C] () -- C:\Windows\System32\manage-bde.ini.en
[2008/01/12 21:09:50 | 000,607,232 | ---- | C] () -- C:\Windows\System32\x264vfw.dll
[2008/01/10 22:16:20 | 000,159,839 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2008/01/10 22:15:30 | 000,755,027 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2008/01/05 01:58:50 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2007/02/06 04:05:26 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
[2007/01/26 01:04:12 | 000,138,752 | ---- | C] () -- C:\Windows\System32\mase32.dll
[2007/01/26 01:04:12 | 000,027,648 | ---- | C] () -- C:\Windows\System32\ma32.dll
[2006/11/02 16:55:52 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 16:46:27 | 000,389,408 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 16:34:20 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 14:33:01 | 000,620,298 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 14:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 14:33:01 | 000,107,688 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 14:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 14:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 12:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 12:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 11:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 11:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2003/08/21 05:08:18 | 000,155,136 | ---- | C] () -- C:\Windows\System32\UNRAR.DLL
[2002/05/15 08:58:38 | 000,122,880 | ---- | C] () -- C:\Windows\System32\v2k2_dec.dll

========== LOP Check ==========

[2011/07/31 19:48:34 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\Agence-Exclusive
[2011/07/26 14:28:12 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\Anuman Interactive
[2012/01/08 21:46:52 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\Apowersoft
[2011/07/31 20:03:07 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\Babylon
[2011/11/19 12:58:16 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\Balabolka
[2010/02/07 17:09:16 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\Canon
[2011/07/07 11:50:24 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2009/01/01 16:00:01 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\DAEMON Tools Pro
[2010/06/26 13:04:22 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\Facebook
[2010/08/25 19:07:37 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\FIXIO PC Utilities
[2011/07/08 21:55:44 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\gtk-2.0
[2011/07/26 14:30:18 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\HdO Adventure
[2010/01/13 19:52:16 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\HiYo
[2012/01/08 13:29:56 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\MakeupGuide
[2011/09/11 09:57:29 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\MusicNet
[2011/07/31 20:02:59 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\NCH Swift Sound
[2011/08/27 18:18:46 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\PeerNetworking
[2010/03/22 21:19:23 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\PhotoFiltre
[2010/09/05 09:21:40 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\StoneTrip
[2010/01/05 16:34:37 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\Thunderbird
[2008/12/31 18:15:44 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\TuneUp Software
[2011/06/16 03:41:34 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\uTorrent
[2010/07/13 11:57:22 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\Wormux
[2010/03/19 11:30:09 | 000,000,000 | ---D | M] -- C:\Users\giannieve\AppData\Roaming\Zylom
[2010/12/06 19:15:30 | 000,000,000 | ---D | M] -- C:\Users\Invité\AppData\Roaming\HiYo
[2012/01/12 18:43:00 | 000,000,922 | ---- | M] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2129587958-3967708758-947222675-1000Core.job
[2012/01/13 09:43:04 | 000,000,944 | ---- | M] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2129587958-3967708758-947222675-1000UA.job
[2012/01/13 10:00:00 | 000,000,516 | ---- | M] () -- C:\Windows\Tasks\Maintenance en 1 clic.job
[2012/01/13 09:51:11 | 000,032,492 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 20 bytes -> C:\Users\giannieve\Documents\Evelyne BENARD.docx:Mac_Metadata
@Alternate Data Stream - 20 bytes -> C:\Users\giannieve\Documents\Devis client:Mac_Metadata
@Alternate Data Stream - 169 bytes -> C:\ProgramData\TEMP:0A73A758
@Alternate Data Stream - 148 bytes -> C:\ProgramData\TEMP:C0893153
@Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:8CE646EE
@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:E83EE313
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:ECC979BD
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:ADF211B1
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:A1D3FEF0
< End of report >
evangelyne
 
Messages: 3
Inscription: 13 Jan 2012, 07:35

Re: bouton "REPONSE"

Messagede nickW » 13 Jan 2012, 13:17

Bonjour,

Pierre, l'administrateur du forum, a écrit:Bonsoir,

.....

On jette un journal à la figure des bénévoles ?

C'est un peu comme une gifle ! Ils vont très mal le prendre et ils auront raison.

Qu'y a-t-il, là ?

C'est un journal dont vous êtes fier et que vous nous suggérez d'encadrer et accrocher au mur ?
Ca manque de sel ?
C'est mal décongelé ?
Y'a un truc qui truc le truc ?

Que nous demandez-vous de faire de ces lignes ? De les regarder ? Oui, sans doute ! Mais... Pourquoi ? Vous ne croyez pas que parler un peu de votre attente orienterait et guiderait un tant soit peu la personne qui pourrait vous aider ?

La boule de cristal est cassée et pour le marc de café, c'est trop tard, j'ai lavé les tasses.

Je vous recommande d'éditer votre premier message Je vous conseille de créer un nouveau sujet et de l'étoffer de toutes ces choses qui font que l'on n'a pas l'impression d'être pris pour des robots analyseurs de logs.

@+


A LIRE IMPÉRATIVEMENT avant de créer un sujet

Suivre les instructions de ce sujet et envoyer les trois rapports demandés.


Salut,

PS:
Mon premier diagnostic: cliquite aigüe, invasion de logiciels publicitaires et autres espiogiciels.
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Précédente

Retourner vers Sécurité (Contamination - Décontamination)

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 27 invités