demandes d'étude de rapports d'analyse

Sécurité et insécurité. Virus, Trojans, Spywares, Failles etc. …

Modérateur: Modérateurs et Modératrices

Règles du forum
Assiste.com a suspendu l'assistance à la décontamination après presque 15 ans sur l'ancien forum puis celui-ci. Voir :

Procédure de décontamination 1 - Anti-malware
Décontamination anti-malwares

Procédure de décontamination 2 - Anti-malware et antivirus (La Manip)
La Manip - Procédure standard de décontamination

Entretien périodique d'un PC sous Windows
Entretien périodique d'un PC sous Windows

Protection des navigateurs, de la navigation et de la vie privée
Protéger le navigateur, la navigation et la vie privée

Re: demandes d'étude de rapports d'analyse

Messagede Marie Noel Ginet » 06 Oct 2011, 15:10

Bonjour,
après utilisation de la machine cet aprem, je constate une amélioration pour l'ouverture de dossier, par contre il me semble que la machine mouline encore bcp, ce qui l'a ralenti par moment,
c'est ce que j'ai constaté pour le moment,

en tout les cas merci, il y a du progrès, :)
Marie Noel Ginet
 
Messages: 36
Inscription: 02 Oct 2011, 14:17

Re: demandes d'étude de rapports d'analyse

Messagede Marie Noel Ginet » 08 Oct 2011, 10:12

bonjour,

cette procédure est-elle adaptée pour mon PC ? : Accélérer Windows : http://assiste.com.free.fr/p/comment/co ... ndows.html
Marie Noel Ginet
 
Messages: 36
Inscription: 02 Oct 2011, 14:17

Re: demandes d'étude de rapports d'analyse

Messagede nickW » 08 Oct 2011, 12:07

Bonjour,

Le site d'Assiste n'a pas été mis à jour depuis 4 ans!


Avant de faire quoi que ce soit, ceci est impératif:


ImageUn conseil important:
Il faut créer un nouveau point de restauration système.
Après nettoyage du PC, il faut vider les fichiers stockés dans les dossiers de la Restauration système, puis créer un nouveau point de restauration qui sera utilisable en cas de problème.
Méthode:
Désactiver la restauration système, réactiver la restauration système, puis créer un nouveau point de restauration.
Explications détaillées:
http://assiste.com.free.fr/p/comment/co ... ation.html


ImageUn conseil très important:

Il faut mettre à jour Windows XP.
Depuis le 13/07/2010, Microsoft ne fournit plus aucun support pour Windows XP sans SP3.
http://windows.microsoft.com/fr-FR/wind ... nd-support
http://windows.microsoft.com/fr-FR/wind ... pport-mean

Avant l'installation, lire attentivement ceci: http://support.microsoft.com/kb/950717/fr


ImageUn conseil important:

Java de Oracle
Installer la dernière version de Java de Oracle.

Version actuelle: Java SE Runtime Environment (JRE) 7 - JRE 7

Ouvrir la page: http://www.oracle.com/technetwork/java/ ... index.html
Note: Javascript doit être autorisé.

Dans le paragraphe "Java Platform, Standard Edition", dans la colonne JRE cliquer sur le bouton Image (Download).

Sur la page suivante, cocher le bouton radio placé devant "Accept License Agreement" et choisir le téléchargement Windows x86 Offline

Télécharger le fichier jre-7-windows-i586.exe, 19,26 MB

Fermer tous les navigateurs (Internet Explorer, Firefox, etc), puis faire un double clic sur jre-6u25-windows-i586.exe pour lancer l'installation.

Après l'installation de la nouvelle version, il est impératif de désinstaller toutes les versions obsolètes dont les failles sont utilisées par les "malveillants".
Pour ce faire:

JavaRa (de Fred de Vries et Paul McLain)
Aller sur le site http://thewebatom.net/software/javara/javara-download/
A droite de Windows Binary (.zip), cliquer sur le bouton bleu Download
Créer un nouveau dossier nommé JavaRa et y décompresser la totalité de l'archive (clic droit, puis Extraire tout).
Ouvrir le dossier JavaRa puis faire un double clic sur JavaRa.exe pour lancer l'outil.

Sous "Select the language of your choice below" choisir (via la liste déroulante) Français et cliquer sur le bouton Select.

Cliquer sur le bouton Effacer les anciennes versions et valider ce choix en cliquant sur Oui ("Êtes-vous sûr de vouloir poursuivre?").

Cliquer deux fois sur OK.
Un rapport va s'afficher dans le Bloc-notes. Fermer le Bloc-notes.
Fermer JavaRa.


ImageUn conseil très important:
Il faut mettre à jour Internet Explorer.
http://windows.microsoft.com/fr-FR/inte ... ts/ie/home


ImageUn conseil très important:
Il faut mettre à jour avast!.
La version 6 est sortie il y a plus de 7 mois.
http://www.avast.com/fr-fr/index


Quand tu auras fait tout ceci, tu pourras refaire une "Analyse rapide" avec OTL et envoyer le rapport sur le forum.

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Re: demandes d'étude de rapports d'analyse

Messagede Marie Noel Ginet » 09 Oct 2011, 15:32

je suis en train de faire les mises à jour microsoft et et on me demande wordret.Msi j'ai mis le cd d'installation work suite et il ne le trouve pas non plus que dois-je faire ?
Marie Noel Ginet
 
Messages: 36
Inscription: 02 Oct 2011, 14:17

Re: demandes d'étude de rapports d'analyse

Messagede Marie Noel Ginet » 09 Oct 2011, 19:37

j'ai redémarré l'ordinateur, il a téléchargé les mises à jour, mais au nouveau redémarrage il se rallume mais ne fait plus rien après que l'icone Avast désactivé, se met dans la barre, je n'ai pas les icones de connexion internet . Je ne peu rien faire, meme pas aller dans le menu démarré. grrr y'a plus rien qui marche a priori...je ne sais pas quoi faire...
Marie Noel Ginet
 
Messages: 36
Inscription: 02 Oct 2011, 14:17

Re: demandes d'étude de rapports d'analyse

Messagede Marie Noel Ginet » 09 Oct 2011, 21:45

bon finalement j'ai éteint et rallumé l'ordinateur, il a redémarré, et est en cours d'installation des mises à jour de windows "WORDRET.MSI, j'ai inséré le CD DE WORK SUITE . A présent il est a nouveau bloqué car il me demande en fait dvd-rom de works suite mais ça je n'ai pas, je ne sais pas où trouver WORDRET.MSI.
Marie Noel Ginet
 
Messages: 36
Inscription: 02 Oct 2011, 14:17

Re: demandes d'étude de rapports d'analyse

Messagede Marie Noel Ginet » 10 Oct 2011, 20:27

Bonjour,

j'ai désinstallé, word 2002, et j'ai enfin pu téléchargé les mises à jour de windows xp pack 3.
java de Oracle ok
javara ok
I.E. ok
Avast ok, mais il ne s'active pas, j'ai beau essayer, il démarre un court instant et se désactive très vite.

Voici le rapport OTL :

OTL logfile created on: 10/10/2011 21:04:55 - Run 4
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Documents and Settings\Bernie Pochon\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

479,48 Mb Total Physical Memory | 179,43 Mb Available Physical Memory | 37,42% Memory free
1,10 Gb Paging File | 0,70 Gb Available in Paging File | 63,85% Paging File free
Paging file location(s): C:\pagefile.sys 720 1440 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 72,87 Gb Total Space | 36,90 Gb Free Space | 50,63% Space Free | Partition Type: NTFS
Drive D: | 73,23 Gb Total Space | 70,49 Gb Free Space | 96,26% Space Free | Partition Type: FAT32
Drive E: | 311,29 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: THÉAPOCH | User Name: Bernie Pochon | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/10/10 16:36:18 | 000,161,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2011/10/09 13:26:58 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Bernie Pochon\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
PRC - [2011/10/02 19:33:29 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bernie Pochon\Bureau\OTL.exe
PRC - [2011/09/06 22:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011/03/21 20:56:16 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011/02/18 17:37:16 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/12/06 10:46:45 | 000,274,608 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2010/07/27 02:00:06 | 000,247,808 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe
PRC - [2010/06/23 04:48:08 | 000,322,608 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\hsswd.exe
PRC - [2010/06/23 04:48:00 | 000,348,208 | ---- | M] (AnchorFree Inc.) -- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
PRC - [2009/03/12 10:44:32 | 000,184,968 | ---- | M] (SPAMfighter ApS) -- C:\Program Files\SPAMfighter\sfus.exe
PRC - [2008/04/14 04:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004/12/20 15:39:46 | 001,462,272 | ---- | M] (Inventel) -- C:\Program Files\Inventel\Gateway\WLANCFG.EXE
PRC - [2003/07/23 10:43:10 | 000,024,651 | ---- | M] (Microsoft® Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe


========== Modules (No Company Name) ==========

MOD - [2011/09/05 19:04:58 | 000,301,056 | ---- | M] () -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA
MOD - [2011/06/24 22:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 22:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\libxml2.dll
MOD - [2011/05/25 10:17:35 | 002,019,976 | ---- | M] () -- C:\Program Files\SPAMfighter\sfse.dll
MOD - [2011/03/21 20:57:34 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011/03/21 20:56:16 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2010/07/27 02:00:06 | 000,247,808 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe
MOD - [2010/06/23 04:48:08 | 000,322,608 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\hsswd.exe
MOD - [2009/03/30 04:34:30 | 000,280,143 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\libidn-11.dll
MOD - [2009/03/27 22:02:24 | 000,332,254 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\libssl32.dll
MOD - [2009/03/27 22:02:22 | 001,554,920 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\libeay32.dll
MOD - [2009/03/12 10:38:02 | 000,539,072 | ---- | M] () -- C:\Program Files\SPAMfighter\sfsg.dll
MOD - [2008/04/14 04:33:31 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2006/09/14 00:20:24 | 000,126,464 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2004/08/05 05:00:00 | 000,015,360 | ---- | M] () -- C:\WINDOWS\system32\tsd32.dll
MOD - [2002/09/26 06:06:56 | 000,139,264 | ---- | M] () -- C:\Program Files\Fichiers communs\Adobe\Shell\psicon.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (WinSvc)
SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011/10/10 16:36:18 | 000,161,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2011/09/06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011/02/18 17:37:16 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/07/27 02:00:06 | 000,247,808 | ---- | M] () [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe -- (HotspotShieldService)
SRV - [2010/07/27 00:41:20 | 000,057,640 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Hotspot Shield\bin\HssTrayService.exe -- (HssTrayService)
SRV - [2010/06/23 04:48:08 | 000,322,608 | ---- | M] () [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\hsswd.exe -- (HssWd)
SRV - [2010/06/23 04:48:00 | 000,348,208 | ---- | M] (AnchorFree Inc.) [Auto | Running] -- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe -- (HssSrv)
SRV - [2009/03/12 10:44:32 | 000,184,968 | ---- | M] (SPAMfighter ApS) [Auto | Running] -- C:\Program Files\SPAMfighter\sfus.exe -- (SPAMfighter Update Service)
SRV - [2008/09/21 22:22:40 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2005/04/04 00:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004/12/20 15:39:46 | 001,462,272 | ---- | M] (Inventel) [Auto | Running] -- C:\Program Files\Inventel\Gateway\wlancfg.exe -- (Wlancfg)


========== Driver Services (SafeList) ==========

DRV - [2011/09/06 22:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/09/06 22:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/09/06 22:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/09/06 22:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/09/06 22:36:23 | 000,110,552 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011/09/06 22:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011/09/06 22:33:11 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011/05/10 08:06:14 | 000,018,432 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\netaapl.sys -- (Netaapl)
DRV - [2010/06/23 04:48:00 | 000,037,376 | ---- | M] (AnchorFree Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HssDrv.sys -- (HssDrv)
DRV - [2010/06/23 04:47:58 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\taphss.sys -- (taphss)
DRV - [2006/11/23 19:20:06 | 000,018,432 | ---- | M] (SIA Syncrosoft) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\synasUSB.sys -- (SynasUSB)
DRV - [2006/07/24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2005/12/22 12:24:52 | 000,137,884 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2005/12/22 12:24:52 | 000,010,864 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2005/12/22 12:24:50 | 000,080,272 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
DRV - [2005/09/14 15:25:26 | 000,017,134 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.sys -- (PCANDIS5)
DRV - [2005/05/11 13:12:17 | 000,079,248 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600mgmt.sys -- (k600mgmt)
DRV - [2005/05/11 13:12:17 | 000,077,072 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600obex.sys -- (k600obex)
DRV - [2005/05/11 13:12:14 | 000,087,456 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600mdm.sys -- (k600mdm)
DRV - [2005/05/11 13:12:14 | 000,006,096 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600mdfl.sys -- (k600mdfl)
DRV - [2005/05/11 13:12:11 | 000,052,384 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600bus.sys -- (k600bus) Sony Ericsson 600i driver (WDM)
DRV - [2005/04/15 18:05:42 | 002,564,032 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2005/01/12 21:30:22 | 000,915,968 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2004/12/15 21:16:08 | 000,076,544 | ---- | M] (ULi Electronics Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\m5287.sys -- (m5287)
DRV - [2004/12/02 16:36:08 | 000,070,912 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys -- (RTL8023xp)
DRV - [2004/09/16 13:26:40 | 000,012,634 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AdfuUd.sys -- (AdfuUd) USB 2.0 (FS)
DRV - [2004/08/13 18:15:00 | 000,379,456 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WlanUIG.sys -- (WlanUIG)
DRV - [2004/08/12 17:45:52 | 000,113,664 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)
DRV - [2004/07/22 19:36:26 | 000,015,781 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\mdc8021x.sys -- (MDC8021X) AEGIS Protocol (IEEE 802.1x)
DRV - [2004/06/29 09:07:18 | 001,268,204 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2004/03/30 19:29:48 | 000,374,816 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PRISMA02.sys -- (PRISM_A02)
DRV - [2004/03/08 13:55:50 | 000,013,567 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
DRV - [2002/11/28 03:13:52 | 000,022,652 | R--- | M] (Pixela) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pixmc10v.sys -- (PIXMC10V)
DRV - [2002/10/04 01:14:28 | 000,028,060 | R--- | M] (Pixela) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pixmc10a.sys -- (PIXMC10A)
DRV - [2002/09/27 21:42:40 | 000,031,232 | R--- | M] (Pixela) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pixmc10c.sys -- (PIXMC10)
DRV - [2000/03/29 18:11:20 | 000,008,096 | ---- | M] (MicroStaff Co.,Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\MASPINT.SYS -- (MASPINT)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 5C FD 9F 0B 7E 86 CC 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.defaulturl: "http://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p="
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://fr.google.mozilla.com/firefox&client=firefox-a&rls=com.google:fr:official"
FF - prefs.js..keyword.URL: "http://redirecterror.sfr.fr/?q="

FF - user.js..keyword.URL: "http://redirecterror.sfr.fr/?q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0: C:\Program Files\DivX\DivX Content Uploader\npUpload.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa2,version=2.0.0: C:\Program Files\Picasa2\npPicasa2.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Picasa2\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.1: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.2: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.3: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0: C:\Program Files\Virtual Earth 3D\ [2009/05/10 14:19:50 | 000,000,000 | ---D | M]
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.609: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.609: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.609: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.609: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\PROGRA~1\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Documents and Settings\Bernie Pochon\Application Data\Facebook\npfbplugin_1_0_3.dll ( )

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}: C:\Documents and Settings\All Users\Application Data\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c} [2008/11/11 13:26:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/12/06 10:47:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2011/09/17 15:15:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/10/09 02:21:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/10/10 16:37:17 | 000,000,000 | ---D | M]

[2008/11/11 14:04:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Extensions
[2011/05/20 15:29:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\extensions
[2010/11/03 03:09:23 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}(2)
[2010/03/21 20:58:21 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}(2)
[2011/10/09 13:26:57 | 000,002,650 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\bing.xml
[2011/10/10 16:37:19 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2006/10/14 10:53:09 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2011/10/10 16:37:19 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}
[2011/09/17 15:15:33 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST5\WEBREP\FF
[2011/10/10 15:24:21 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011/10/09 02:21:13 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/10/10 16:36:19 | 000,611,224 | ---- | M] (Oracle Corporation) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009/05/17 22:39:50 | 000,283,952 | ---- | M] (Musicnotes, Inc.) -- C:\Program Files\mozilla firefox\plugins\npmusicn.dll
[2007/04/24 13:11:12 | 001,800,704 | ---- | M] (Myriad Software.) -- C:\Program Files\mozilla firefox\plugins\NPMyrMus.dll
[2011/10/09 02:21:07 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2011/10/09 02:21:07 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011/10/09 02:21:07 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2011/10/09 02:21:07 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2009/08/27 21:43:33 | 000,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDICO-fr.xml
[2011/10/09 02:21:07 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2011/10/09 02:21:07 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

========== Chrome ==========

CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - Extension: No name found = C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1125_0\
CHR - Extension: No name found = C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\
CHR - Extension: No name found = C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.3_0\

O1 HOSTS File: ([2004/08/05 05:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Objet d'aide à la navigation SFR) - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\SFR\Kit\SFRNavErrorHelper.dll (SFR)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\HssIE\HssIE.dll (AnchorFree Inc.)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (NVRIEbar.IEbar) - {BCBF738C-4891-4B9A-959A-C6BF7F608C3A} - C:\Program Files\Naturalsoft\NaturalReader\NVRIEBar.dll File not found
O3 - HKLM\..\Toolbar: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\program files\real\realplayer\update\realsched.exe (RealNetworks, Inc.)
O4 - Startup: C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE ()
O4 - Startup: C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\Notification de cadeaux MSN.lnk = C:\Documents and Settings\Bernie Pochon\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\WKCALREM.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe (Microsoft® Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\Program Files\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.)
O9 - Extra Button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Common\yhexbmesfr.dll (Yahoo! Inc.)
O9 - Extra 'Tools' menuitem : Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Common\yhexbmesfr.dll (Yahoo! Inc.)
O9 - Extra Button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\Program Files\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.)
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe File not found
O9 - Extra 'Tools' menuitem : &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 8161339468 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/get/fl ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} http://a532.g.akamai.net/f/532/6712/5m/ ... taller.exe (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{23AD6826-6E6B-47C3-B038-3CA0B1536A59}: DhcpNameServer = 10.74.96.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C4B7CF6B-3C2F-4F35-A782-7D62340AD890}: DhcpNameServer = 192.168.1.1 0.0.0.0
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DE38147A-942E-4DE0-AE13-8B107AADCEA9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{ED332109-DC7F-4DFF-A437-63D5E4CA7F80}: DhcpNameServer = 192.168.1.1 0.0.0.0
O18 - Protocol\Handler\copernicagent {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O18 - Protocol\Handler\copernicagentcache {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/03/21 09:56:54 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2002/06/26 12:59:12 | 000,000,065 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{6131e650-e8f6-11dc-bfe9-0060b3b6898d}\Shell - "" = AutoRun
O33 - MountPoints2\{6131e650-e8f6-11dc-bfe9-0060b3b6898d}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\{98ece2fe-fb9f-11df-85b5-0060b3b6898d}\Shell\AutoRun\command - "" = F:\APPInst.exe
O33 - MountPoints2\{dc71d34a-dfe4-11d9-8834-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{dc71d34a-dfe4-11d9-8834-806d6172696f}\Shell\AutoRun\command - "" = E:\Autorun.exe HowToUse\HowToUse.htm
O33 - MountPoints2\{e7ec3380-293e-11dc-be77-0060b3b6898d}\Shell - "" = AutoRun
O33 - MountPoints2\{e7ec3380-293e-11dc-be77-0060b3b6898d}\Shell\AutoRun\command - "" = J:\LaunchU3.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/10/10 20:06:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\javara
[2011/10/10 16:48:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2011/10/10 13:33:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011/10/10 13:11:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2011/10/10 13:11:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fr
[2011/10/10 13:11:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2011/10/10 13:03:40 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2011/10/10 13:03:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2011/10/10 12:13:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Performance
[2011/10/10 12:13:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Microsoft Corporation
[2011/10/10 12:11:41 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Windows 7 Upgrade Advisor
[2011/10/10 08:50:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2011/10/10 08:50:31 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2011/10/10 08:50:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2011/10/10 08:50:18 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2011/10/10 08:45:19 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 6.0
[2011/10/09 18:25:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2011/10/09 14:28:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2011/10/09 13:42:29 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Bernie Pochon\IECompatCache
[2011/10/09 13:40:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Bernie Pochon\PrivacIE
[2011/10/09 13:36:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Bernie Pochon\IETldCache
[2011/10/09 13:31:56 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2011/10/09 13:26:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\Services Windows Live
[2011/10/05 12:11:38 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/10/02 21:40:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ERUNT
[2011/10/02 21:40:08 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2011/10/02 19:51:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011/10/02 19:42:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Application Data\Malwarebytes
[2011/10/02 19:41:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware
[2011/10/02 19:41:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011/10/02 19:41:50 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/10/02 19:41:49 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/10/02 19:33:40 | 000,582,656 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Bernie Pochon\Bureau\OTL.exe
[2011/10/02 14:47:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis
[2011/10/02 14:47:05 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2011/09/28 20:35:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\2011-09-28
[2011/09/22 13:42:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\arzal
[2011/09/21 21:57:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\maison bleue
[2011/09/20 13:59:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\2011-09-20
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/10/10 21:12:03 | 000,001,000 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2011/10/10 20:56:57 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/10/10 20:30:30 | 000,001,070 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/10/10 20:19:35 | 000,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/10/10 19:27:51 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/10/10 19:27:44 | 502,845,440 | -HS- | M] () -- C:\hiberfil.sys
[2011/10/10 18:48:58 | 000,001,066 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/10/10 18:48:58 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-3978581669-3650736504-2941554700-1005.job
[2011/10/10 16:14:47 | 000,502,450 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2011/10/10 16:14:47 | 000,433,834 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/10/10 16:14:47 | 000,081,618 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2011/10/10 16:14:46 | 000,068,120 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/10/10 16:11:06 | 001,613,920 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/10/10 16:06:10 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/10/10 15:10:49 | 000,000,448 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{88F9DD9A-80A1-4A6E-9888-8881665864AB}.job
[2011/10/10 14:16:13 | 000,001,704 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\avast! Free Antivirus.lnk
[2011/10/10 13:07:02 | 000,252,240 | RHS- | M] () -- C:\ntldr
[2011/10/10 12:27:08 | 000,086,188 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Mes documents\rapport conseil mise a niveau.mht
[2011/10/10 12:11:44 | 000,001,866 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Conseiller de mise à niveau vers Windows 7.lnk
[2011/10/09 14:04:23 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-3978581669-3650736504-2941554700-1005.job
[2011/10/09 13:36:31 | 000,000,819 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Microsoft\Internet Explorer\Quick Launch\Démarrer Internet Explorer.lnk
[2011/10/09 13:27:00 | 000,001,380 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\Aller sur MSN.fr.lnk
[2011/10/09 13:26:59 | 000,001,092 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\Notification de cadeaux MSN.lnk
[2011/10/09 13:26:57 | 000,000,715 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\Internet Explorer.lnk
[2011/10/08 00:15:29 | 000,087,986 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\roman bretagne 3.odt
[2011/10/07 15:25:27 | 000,753,046 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\_réservation
[2011/10/07 00:46:31 | 000,001,817 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Google Chrome.lnk
[2011/10/04 15:43:15 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/10/04 12:58:08 | 000,003,217 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\no woman débutant.gp5
[2011/10/03 23:03:13 | 000,084,132 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\_roman.odt
[2011/10/02 22:46:14 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011/10/02 21:41:10 | 000,000,771 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk
[2011/10/02 21:40:09 | 000,000,615 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\NTREGOPT.lnk
[2011/10/02 21:40:09 | 000,000,596 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\ERUNT.lnk
[2011/10/02 19:42:00 | 000,000,788 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2011/10/02 19:33:29 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bernie Pochon\Bureau\OTL.exe
[2011/10/02 14:47:08 | 000,001,738 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\HijackThis.lnk
[2011/10/01 22:07:59 | 000,261,340 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\census.cache
[2011/10/01 22:07:57 | 000,211,768 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\ars.cache
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/10/10 12:27:08 | 000,086,188 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Mes documents\rapport conseil mise a niveau.mht
[2011/10/10 12:11:44 | 000,001,866 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Conseiller de mise à niveau vers Windows 7.lnk
[2011/10/10 12:11:43 | 000,001,872 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Conseiller de mise à niveau vers Windows 7.lnk
[2011/10/09 13:42:28 | 000,000,448 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{88F9DD9A-80A1-4A6E-9888-8881665864AB}.job
[2011/10/09 13:36:31 | 000,000,807 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Internet Explorer.lnk
[2011/10/09 13:27:00 | 000,001,380 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\Aller sur MSN.fr.lnk
[2011/10/09 13:26:59 | 000,001,092 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\Notification de cadeaux MSN.lnk
[2011/10/09 13:26:57 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\Internet Explorer.lnk
[2011/10/07 15:26:09 | 000,753,046 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\_réservation
[2011/10/04 12:58:08 | 000,003,217 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\no woman débutant.gp5
[2011/10/03 23:03:28 | 000,087,986 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\roman bretagne 3.odt
[2011/10/03 23:03:18 | 000,084,132 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\_roman.odt
[2011/10/02 22:46:14 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011/10/02 21:41:10 | 000,000,771 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk
[2011/10/02 21:40:09 | 000,000,615 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\NTREGOPT.lnk
[2011/10/02 21:40:09 | 000,000,596 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\ERUNT.lnk
[2011/10/02 19:42:00 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2011/10/02 14:47:08 | 000,001,738 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\HijackThis.lnk
[2011/07/31 19:03:20 | 000,000,017 | ---- | C] () -- C:\WINDOWS\Missing.ini
[2011/07/31 19:03:04 | 000,000,032 | ---- | C] () -- C:\WINDOWS\CD_Start.INI
[2011/07/14 18:11:38 | 000,261,340 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\census.cache
[2011/07/14 18:11:16 | 000,211,768 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\ars.cache
[2011/03/15 00:28:13 | 002,776,064 | ---- | C] () -- C:\Program Files\Winmode.exe
[2010/10/31 20:18:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\cd.dat
[2010/06/09 14:55:52 | 000,062,316 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010/01/18 18:48:06 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\housecall.guid.cache
[2009/12/13 00:05:59 | 000,000,085 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
[2009/11/14 02:56:17 | 000,060,358 | ---- | C] () -- C:\WINDOWS\System32\ZoomH4Unin.exe
[2008/08/22 16:09:01 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008/08/22 13:42:59 | 000,090,996 | ---- | C] () -- C:\WINDOWS\System32\Autorun.ini
[2008/06/23 10:39:02 | 000,000,412 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
[2008/04/23 14:54:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2008/04/20 17:33:08 | 000,000,068 | ---- | C] () -- C:\WINDOWS\pp-oneclick-repertoire.ini
[2008/04/14 18:59:39 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt
[2008/04/14 18:56:49 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2008/02/25 03:16:02 | 000,109,967 | ---- | C] () -- C:\WINDOWS\CopernicAgentUninstall.exe
[2008/01/07 14:34:54 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat
[2007/09/21 13:18:27 | 000,006,195 | R--- | C] () -- C:\WINDOWS\MediaManager.ini
[2007/07/27 18:24:24 | 000,008,350 | R--- | C] () -- C:\WINDOWS\Disktool.INI
[2007/07/27 18:24:24 | 000,007,876 | R--- | C] () -- C:\WINDOWS\fwupgrade.ini
[2007/07/27 18:24:24 | 000,004,096 | R--- | C] () -- C:\WINDOWS\SoundCon.INI
[2007/07/26 04:53:34 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007/06/25 17:59:51 | 000,000,724 | ---- | C] () -- C:\WINDOWS\wacam.ini
[2007/06/25 17:59:50 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\MMPlugHostCtrl.dll
[2007/03/08 19:30:39 | 000,000,066 | ---- | C] () -- C:\WINDOWS\BBW_INFO.INI
[2007/02/25 20:37:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2006/12/16 14:30:57 | 000,000,042 | ---- | C] () -- C:\WINDOWS\iltwain.ini
[2006/10/14 10:52:42 | 000,005,716 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2006/06/08 06:01:31 | 000,000,332 | ---- | C] () -- C:\WINDOWS\EcouteSol.ini
[2006/06/08 06:01:31 | 000,000,310 | ---- | C] () -- C:\WINDOWS\EcouteFa.ini
[2006/06/08 03:02:26 | 000,286,208 | ---- | C] () -- C:\WINDOWS\System32\cncs232.dll
[2006/06/08 03:02:26 | 000,001,117 | ---- | C] () -- C:\WINDOWS\Sol.ini
[2006/06/08 03:02:26 | 000,000,982 | ---- | C] () -- C:\WINDOWS\Fa.ini
[2006/03/01 14:42:05 | 000,037,027 | ---- | C] () -- C:\WINDOWS\atmoUn.exe
[2006/02/21 12:25:49 | 000,651,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2006/02/21 12:25:49 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2006/02/21 12:25:49 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\WLANUTL.dll
[2006/01/18 17:36:42 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2005/12/20 21:33:25 | 000,000,604 | ---- | C] () -- C:\WINDOWS\Sof2.INI
[2005/12/08 22:10:47 | 000,030,208 | ---- | C] () -- C:\WINDOWS\System32\WNASPI32.DLL
[2005/12/08 22:10:46 | 000,000,291 | ---- | C] () -- C:\WINDOWS\msfsetup.ini
[2005/12/08 15:40:44 | 000,010,926 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Application Data\wklnhst.dat
[2005/12/06 21:39:59 | 000,000,600 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/10/31 21:08:02 | 000,072,704 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/10/29 18:58:42 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
[2005/10/28 00:39:09 | 000,001,366 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2005/10/04 16:42:26 | 000,000,044 | ---- | C] () -- C:\WINDOWS\liveup.ini
[2005/09/16 12:23:30 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2005/09/16 11:47:57 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS6f.DLL
[2005/09/16 01:47:44 | 000,050,446 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2005/09/15 21:11:06 | 000,210,944 | ---- | C] () -- C:\WINDOWS\System32\MSVCRT10.DLL
[2005/09/15 18:48:44 | 000,071,749 | ---- | C] () -- C:\WINDOWS\hcextoutput.dll
[2005/09/15 18:48:44 | 000,000,823 | ---- | C] () -- C:\WINDOWS\tsc.ini
[2005/09/15 18:48:24 | 000,000,170 | ---- | C] () -- C:\WINDOWS\GetServer.ini
[2005/09/15 15:54:33 | 000,000,192 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2005/09/14 15:27:23 | 000,278,528 | ---- | C] () -- C:\Program Files\Fichiers communs\FDEUnInstaller.exe
[2005/06/18 21:47:46 | 000,000,085 | ---- | C] () -- C:\WINDOWS\Alaunch.INI
[2005/06/18 12:39:03 | 000,000,148 | ---- | C] () -- C:\WINDOWS\System32\eRLog.ini
[2005/05/02 21:20:31 | 000,070,018 | ---- | C] () -- C:\WINDOWS\System32\akrip32.dll
[2005/03/21 18:38:33 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2005/03/21 10:04:31 | 000,000,347 | ---- | C] () -- C:\WINDOWS\System32\CreMan.ini
[2005/03/21 10:03:54 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\ntiembed.dll
[2005/03/21 10:03:40 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIMPEG2.dll
[2005/03/21 10:03:40 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTICDMK32.dll
[2005/03/21 10:02:02 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2005/03/21 10:02:02 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2005/03/21 10:00:14 | 000,077,267 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2005/03/21 10:00:11 | 000,008,073 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2005/03/21 10:00:10 | 000,032,768 | ---- | C] () -- C:\WINDOWS\AMOVE.EXE
[2005/03/21 09:59:00 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2005/03/21 09:55:44 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2005/03/21 09:55:14 | 000,003,712 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2005/03/21 09:53:38 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005/03/21 09:53:04 | 001,613,920 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2004/09/16 13:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\System32\drivers\AdfuUd.sys
[2004/09/16 13:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\ADFUUD.SYS
[2004/02/28 06:30:12 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\TrustSupport.dll
[2001/12/26 16:12:30 | 000,065,536 | R--- | C] () -- C:\WINDOWS\System32\multiplex_vcd.dll
[2001/09/03 23:46:38 | 000,110,592 | R--- | C] () -- C:\WINDOWS\System32\Hmpg12.dll
[2001/07/30 16:33:56 | 000,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC.dll
[2001/07/23 22:04:36 | 000,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC_MMX.dll
[1999/07/23 14:46:48 | 000,000,116 | ---- | C] () -- C:\WINDOWS\AuHCcup1.ini
[1999/07/23 11:53:20 | 000,129,536 | ---- | C] () -- C:\WINDOWS\AuHCcup1.dll
[1980/01/01 00:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[1980/01/01 00:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[1980/01/01 00:00:00 | 000,502,450 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat
[1980/01/01 00:00:00 | 000,433,834 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[1980/01/01 00:00:00 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat
[1980/01/01 00:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[1980/01/01 00:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[1980/01/01 00:00:00 | 000,081,618 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat
[1980/01/01 00:00:00 | 000,068,120 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[1980/01/01 00:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[1980/01/01 00:00:00 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat
[1980/01/01 00:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[1980/01/01 00:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[1980/01/01 00:00:00 | 000,004,524 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[1980/01/01 00:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[1980/01/01 00:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

========== LOP Check ==========

[2011/01/30 19:19:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2008/07/24 21:46:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Arovax
[2008/11/02 14:43:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BOONTY
[2008/06/23 09:55:15 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2009/12/13 00:08:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Elaborate Bytes
[2007/11/06 00:40:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Musicnotes
[2009/09/15 21:30:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2005/09/15 23:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Prism
[2008/06/23 10:38:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
[2009/11/14 02:37:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Syncrosoft
[2008/08/13 23:07:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2010/04/29 00:02:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/01/30 21:02:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2007/06/10 14:59:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Ableton
[2007/06/25 18:01:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\ACAMPREF
[2010/06/07 20:42:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\AdSigner
[2008/04/24 12:14:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\APLI
[2010/05/10 10:21:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Canon
[2008/02/25 03:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Copernic
[2010/06/14 15:35:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Facebook
[2008/10/27 14:37:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\FileZilla
[2009/12/21 16:46:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\HouseCall 6.6
[2010/04/29 12:02:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Icones
[2008/04/01 16:02:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\ItsLabel
[2011/09/27 22:13:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\LimeWire
[2011/03/14 23:32:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\LolClient
[2009/09/15 21:30:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\NCH Swift Sound
[2006/05/30 13:51:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\NetMedia Providers
[2005/12/30 20:07:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\OLYMPUS
[2010/02/01 00:40:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\OpenOffice.org
[2006/05/30 13:51:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Publish Providers
[2010/01/31 22:12:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Samsung
[2008/06/23 10:38:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\ScanSoft
[2008/03/20 09:41:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\SPAMfighter
[2005/09/15 17:09:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Template
[2008/09/14 20:43:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Todae
[2008/08/13 23:07:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Viewpoint
[2011/10/10 15:10:49 | 000,000,448 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{88F9DD9A-80A1-4A6E-9888-8881665864AB}.job

========== Purity Check ==========



< End of report >

A suivre...
Marie Noel Ginet
 
Messages: 36
Inscription: 02 Oct 2011, 14:17

Re: demandes d'étude de rapports d'analyse

Messagede nickW » 11 Oct 2011, 00:25

Bonsoir,

D'après la dernière analyse OTL, c'est toujours la version 5 de avast! qui est présente.


Il faudrait:

*- Télécharger la version 6 d'avast! depuis http://www.avast.com/fr-fr/free-antivirus-download
*- Télécharger l'Utilitaire de désinstallation d'avast! depuis http://www.avast.com/fr-fr/uninstall-utility
Remarque: ne pas lancer la procédure, mais la noter en détail
*- Déconnecter le PC d'Internet
*- Désinstaller complètement avast! version 5 (via Ajout/Suppression de programmes et l'utilitaire de désinstallation d'avast! en Mode sans échec)
Remarque: le dossier d'installation est C:\Program Files\Alwil Software\Avast5
*- Installer avast! version 6 (téléchargé précédemment)
*- Relancer la connexion internet

Détails:
http://support.avast.com/index.php?_m=k ... =865&nav=0

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Re: demandes d'étude de rapports d'analyse

Messagede Marie Noel Ginet » 11 Oct 2011, 20:34

Bonjour,

voilà, j'ai désinstallé et réinstallé Avast. Je n'ai pas exactement suivi votre procédure, (je l'ai reçue après avoir pris l'initiative de la désinstallation), mais j'étais très inquiète de savoir l'ordinateur sans anti-virus. Je suis allée dans supprimmer/ajouter des programme / modifier / désinstallation...puis j'ai réinstaller Avast. J'espère que ça ne n'a pas trop de conséquence.
Je constate que l'ordinateur est bcp plus rapide. Avast fonctionne bien.

voici le rapport OTL :

je vois dans le rapport que SPAMfighter est toujours là, pourtant je l'ai supprimé il y a un moment il me semble (???)
Je me demande s'il n'y a pas encore des éléments que je pourrais supprimer, comme des trucs
complètement inutiles qui se mettent en route pour les pubs et qui ralentiraient aussi la machine ou bien comme real player qui installe un "cadeau" (que j'ai supprimé)sur mon bureau. Désolée, je n'ai pas le vocabulaire...
En tout les cas je vous remercie de l'aide précieuse que vous m' apportez. :yes: :D


OTL logfile created on: 11/10/2011 20:45:26 - Run 5
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Documents and Settings\Bernie Pochon\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

479,48 Mb Total Physical Memory | 154,09 Mb Available Physical Memory | 32,14% Memory free
1,10 Gb Paging File | 0,74 Gb Available in Paging File | 68,02% Paging File free
Paging file location(s): C:\pagefile.sys 720 1440 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 72,87 Gb Total Space | 37,44 Gb Free Space | 51,39% Space Free | Partition Type: NTFS
Drive D: | 73,23 Gb Total Space | 70,49 Gb Free Space | 96,26% Space Free | Partition Type: FAT32
Drive E: | 311,29 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: THÉAPOCH | User Name: Bernie Pochon | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/10/10 16:36:18 | 000,161,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2011/10/09 13:26:58 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Bernie Pochon\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
PRC - [2011/10/02 19:33:29 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bernie Pochon\Bureau\OTL.exe
PRC - [2011/09/06 22:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011/09/06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011/05/04 13:59:46 | 000,252,136 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
PRC - [2011/03/21 20:56:16 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011/02/18 17:37:16 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/12/06 10:46:45 | 000,274,608 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2010/07/27 02:00:06 | 000,247,808 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe
PRC - [2010/07/27 00:41:12 | 000,107,568 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpntray.exe
PRC - [2010/06/23 04:48:08 | 000,322,608 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\hsswd.exe
PRC - [2010/06/23 04:48:00 | 000,348,208 | ---- | M] (AnchorFree Inc.) -- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
PRC - [2009/03/12 10:44:32 | 000,184,968 | ---- | M] (SPAMfighter ApS) -- C:\Program Files\SPAMfighter\sfus.exe
PRC - [2008/04/14 04:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004/12/20 15:39:46 | 001,462,272 | ---- | M] (Inventel) -- C:\Program Files\Inventel\Gateway\WLANCFG.EXE
PRC - [2003/07/23 10:43:10 | 000,024,651 | ---- | M] (Microsoft® Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe


========== Modules (No Company Name) ==========

MOD - [2011/10/11 15:36:37 | 001,596,416 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\11101101\algo.dll
MOD - [2011/10/11 10:44:05 | 001,596,416 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\11101100\algo.dll
MOD - [2011/10/10 18:49:53 | 000,272,416 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\11101101\aswRep.dll
MOD - [2011/10/10 18:49:53 | 000,272,416 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\11101100\aswRep.dll
MOD - [2011/10/10 17:07:21 | 001,595,904 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\11101001\algo.dll
MOD - [2011/10/06 11:55:24 | 000,212,640 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\11101001\aswRep.dll
MOD - [2011/09/05 19:04:58 | 000,301,056 | ---- | M] () -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA
MOD - [2011/06/24 22:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 22:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\libxml2.dll
MOD - [2011/05/25 10:17:35 | 002,019,976 | ---- | M] () -- C:\Program Files\SPAMfighter\sfse.dll
MOD - [2011/03/21 20:57:34 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011/03/21 20:56:16 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2010/07/27 02:00:06 | 000,247,808 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe
MOD - [2010/07/27 00:41:12 | 000,107,568 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpntray.exe
MOD - [2010/07/27 00:40:40 | 000,003,072 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\lang\gui-fre.dll
MOD - [2010/06/23 04:48:08 | 000,322,608 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\hsswd.exe
MOD - [2009/03/30 04:34:30 | 000,280,143 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\libidn-11.dll
MOD - [2009/03/27 22:02:24 | 000,332,254 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\libssl32.dll
MOD - [2009/03/27 22:02:22 | 001,554,920 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\libeay32.dll
MOD - [2009/03/12 10:38:02 | 000,539,072 | ---- | M] () -- C:\Program Files\SPAMfighter\sfsg.dll
MOD - [2008/04/14 04:33:31 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2006/09/14 00:20:24 | 000,126,464 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (WinSvc)
SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011/10/10 16:36:18 | 000,161,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2011/09/06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011/02/18 17:37:16 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/07/27 02:00:06 | 000,247,808 | ---- | M] () [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe -- (HotspotShieldService)
SRV - [2010/07/27 00:41:20 | 000,057,640 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Hotspot Shield\bin\HssTrayService.exe -- (HssTrayService)
SRV - [2010/06/23 04:48:08 | 000,322,608 | ---- | M] () [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\hsswd.exe -- (HssWd)
SRV - [2010/06/23 04:48:00 | 000,348,208 | ---- | M] (AnchorFree Inc.) [Auto | Running] -- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe -- (HssSrv)
SRV - [2009/03/12 10:44:32 | 000,184,968 | ---- | M] (SPAMfighter ApS) [Auto | Running] -- C:\Program Files\SPAMfighter\sfus.exe -- (SPAMfighter Update Service)
SRV - [2008/09/21 22:22:40 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2005/04/04 00:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004/12/20 15:39:46 | 001,462,272 | ---- | M] (Inventel) [Auto | Running] -- C:\Program Files\Inventel\Gateway\wlancfg.exe -- (Wlancfg)


========== Driver Services (SafeList) ==========

DRV - [2011/09/06 22:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/09/06 22:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/09/06 22:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/09/06 22:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/09/06 22:36:23 | 000,110,552 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011/09/06 22:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011/09/06 22:33:11 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011/05/10 08:06:14 | 000,018,432 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\netaapl.sys -- (Netaapl)
DRV - [2010/06/23 04:48:00 | 000,037,376 | ---- | M] (AnchorFree Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HssDrv.sys -- (HssDrv)
DRV - [2010/06/23 04:47:58 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\taphss.sys -- (taphss)
DRV - [2006/11/23 19:20:06 | 000,018,432 | ---- | M] (SIA Syncrosoft) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\synasUSB.sys -- (SynasUSB)
DRV - [2006/07/24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2005/12/22 12:24:52 | 000,137,884 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2005/12/22 12:24:52 | 000,010,864 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2005/12/22 12:24:50 | 000,080,272 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
DRV - [2005/09/14 15:25:26 | 000,017,134 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.sys -- (PCANDIS5)
DRV - [2005/05/11 13:12:17 | 000,079,248 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600mgmt.sys -- (k600mgmt)
DRV - [2005/05/11 13:12:17 | 000,077,072 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600obex.sys -- (k600obex)
DRV - [2005/05/11 13:12:14 | 000,087,456 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600mdm.sys -- (k600mdm)
DRV - [2005/05/11 13:12:14 | 000,006,096 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600mdfl.sys -- (k600mdfl)
DRV - [2005/05/11 13:12:11 | 000,052,384 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k600bus.sys -- (k600bus) Sony Ericsson 600i driver (WDM)
DRV - [2005/04/15 18:05:42 | 002,564,032 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2005/01/12 21:30:22 | 000,915,968 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2004/12/15 21:16:08 | 000,076,544 | ---- | M] (ULi Electronics Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\m5287.sys -- (m5287)
DRV - [2004/12/02 16:36:08 | 000,070,912 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys -- (RTL8023xp)
DRV - [2004/09/16 13:26:40 | 000,012,634 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AdfuUd.sys -- (AdfuUd) USB 2.0 (FS)
DRV - [2004/08/13 18:15:00 | 000,379,456 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WlanUIG.sys -- (WlanUIG)
DRV - [2004/08/12 17:45:52 | 000,113,664 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)
DRV - [2004/07/22 19:36:26 | 000,015,781 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\mdc8021x.sys -- (MDC8021X) AEGIS Protocol (IEEE 802.1x)
DRV - [2004/06/29 09:07:18 | 001,268,204 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2004/03/30 19:29:48 | 000,374,816 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PRISMA02.sys -- (PRISM_A02)
DRV - [2004/03/08 13:55:50 | 000,013,567 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
DRV - [2002/11/28 03:13:52 | 000,022,652 | R--- | M] (Pixela) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pixmc10v.sys -- (PIXMC10V)
DRV - [2002/10/04 01:14:28 | 000,028,060 | R--- | M] (Pixela) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pixmc10a.sys -- (PIXMC10A)
DRV - [2002/09/27 21:42:40 | 000,031,232 | R--- | M] (Pixela) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pixmc10c.sys -- (PIXMC10)
DRV - [2000/03/29 18:11:20 | 000,008,096 | ---- | M] (MicroStaff Co.,Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\MASPINT.SYS -- (MASPINT)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 5C FD 9F 0B 7E 86 CC 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.defaulturl: "http://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p="
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://fr.google.mozilla.com/firefox&client=firefox-a&rls=com.google:fr:official"
FF - prefs.js..keyword.URL: "http://redirecterror.sfr.fr/?q="

FF - user.js..keyword.URL: "http://redirecterror.sfr.fr/?q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0: C:\Program Files\DivX\DivX Content Uploader\npUpload.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa2,version=2.0.0: C:\Program Files\Picasa2\npPicasa2.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Picasa2\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.1: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.2: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.3: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0: C:\Program Files\Virtual Earth 3D\ [2009/05/10 14:19:50 | 000,000,000 | ---D | M]
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.609: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.609: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.609: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.609: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\PROGRA~1\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Documents and Settings\Bernie Pochon\Application Data\Facebook\npfbplugin_1_0_3.dll ( )

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}: C:\Documents and Settings\All Users\Application Data\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c} [2008/11/11 13:26:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/12/06 10:47:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011/10/10 22:15:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/10/09 02:21:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/10/10 16:37:17 | 000,000,000 | ---D | M]

[2008/11/11 14:04:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Extensions
[2011/05/20 15:29:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\extensions
[2010/11/03 03:09:23 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}(2)
[2010/03/21 20:58:21 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}(2)
[2011/10/09 13:26:57 | 000,002,650 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Mozilla\Firefox\Profiles\9cmytd75.default\searchplugins\bing.xml
[2011/10/10 16:37:19 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2006/10/14 10:53:09 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2011/10/10 16:37:19 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}
[2011/10/10 22:15:24 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
[2011/10/10 15:24:21 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011/10/09 02:21:13 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/10/10 16:36:19 | 000,611,224 | ---- | M] (Oracle Corporation) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009/05/17 22:39:50 | 000,283,952 | ---- | M] (Musicnotes, Inc.) -- C:\Program Files\mozilla firefox\plugins\npmusicn.dll
[2007/04/24 13:11:12 | 001,800,704 | ---- | M] (Myriad Software.) -- C:\Program Files\mozilla firefox\plugins\NPMyrMus.dll
[2011/10/09 02:21:07 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2011/10/09 02:21:07 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011/10/09 02:21:07 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2011/10/09 02:21:07 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2009/08/27 21:43:33 | 000,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDICO-fr.xml
[2011/10/09 02:21:07 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2011/10/09 02:21:07 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

========== Chrome ==========

CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - Extension: No name found = C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1125_0\
CHR - Extension: No name found = C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1203_0\
CHR - Extension: No name found = C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.3_0\

O1 HOSTS File: ([2004/08/05 05:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Objet d'aide à la navigation SFR) - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\SFR\Kit\SFRNavErrorHelper.dll (SFR)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\HssIE\HssIE.dll (AnchorFree Inc.)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (NVRIEbar.IEbar) - {BCBF738C-4891-4B9A-959A-C6BF7F608C3A} - C:\Program Files\Naturalsoft\NaturalReader\NVRIEBar.dll File not found
O3 - HKLM\..\Toolbar: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\program files\real\realplayer\update\realsched.exe (RealNetworks, Inc.)
O4 - Startup: C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE ()
O4 - Startup: C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\Notification de cadeaux MSN.lnk = C:\Documents and Settings\Bernie Pochon\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\WKCALREM.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe (Microsoft® Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\Program Files\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.)
O9 - Extra Button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Common\yhexbmesfr.dll (Yahoo! Inc.)
O9 - Extra 'Tools' menuitem : Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Common\yhexbmesfr.dll (Yahoo! Inc.)
O9 - Extra Button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\Program Files\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.)
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe File not found
O9 - Extra 'Tools' menuitem : &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 8161339468 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/get/fl ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} http://a532.g.akamai.net/f/532/6712/5m/ ... taller.exe (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{23AD6826-6E6B-47C3-B038-3CA0B1536A59}: DhcpNameServer = 10.74.96.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C4B7CF6B-3C2F-4F35-A782-7D62340AD890}: DhcpNameServer = 192.168.1.1 0.0.0.0
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DE38147A-942E-4DE0-AE13-8B107AADCEA9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{ED332109-DC7F-4DFF-A437-63D5E4CA7F80}: DhcpNameServer = 192.168.1.1 0.0.0.0
O18 - Protocol\Handler\copernicagent {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O18 - Protocol\Handler\copernicagentcache {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/03/21 09:56:54 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2002/06/26 12:59:12 | 000,000,065 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{6131e650-e8f6-11dc-bfe9-0060b3b6898d}\Shell - "" = AutoRun
O33 - MountPoints2\{6131e650-e8f6-11dc-bfe9-0060b3b6898d}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\{884a0462-2504-11da-9d81-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{884a0462-2504-11da-9d81-806d6172696f}\Shell\AutoRun\command - "" = E:\MSWORKS\Autorun.exe -- [2002/07/26 14:16:38 | 000,040,960 | R--- | M] (Microsoft Corporation)
O33 - MountPoints2\{98ece2fe-fb9f-11df-85b5-0060b3b6898d}\Shell\AutoRun\command - "" = F:\APPInst.exe
O33 - MountPoints2\{dc71d34a-dfe4-11d9-8834-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{dc71d34a-dfe4-11d9-8834-806d6172696f}\Shell\AutoRun\command - "" = E:\Autorun.exe HowToUse\HowToUse.htm
O33 - MountPoints2\{e7ec3380-293e-11dc-be77-0060b3b6898d}\Shell - "" = AutoRun
O33 - MountPoints2\{e7ec3380-293e-11dc-be77-0060b3b6898d}\Shell\AutoRun\command - "" = J:\LaunchU3.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/10/10 22:17:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Sun
[2011/10/10 22:15:57 | 000,320,856 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/10/10 22:15:57 | 000,020,568 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/10/10 22:15:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\avast! Free Antivirus
[2011/10/10 22:15:55 | 000,442,200 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011/10/10 22:15:55 | 000,052,568 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/10/10 22:15:55 | 000,034,392 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/10/10 22:15:54 | 000,110,552 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/10/10 22:15:54 | 000,104,536 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/10/10 22:15:54 | 000,030,808 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/10/10 22:15:22 | 000,041,184 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/10/10 22:15:21 | 000,199,304 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/10/10 22:15:04 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011/10/10 22:15:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2011/10/10 20:06:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\javara
[2011/10/10 16:48:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2011/10/10 13:33:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011/10/10 13:11:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2011/10/10 13:11:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fr
[2011/10/10 13:11:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2011/10/10 13:03:40 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2011/10/10 13:03:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2011/10/10 12:13:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Performance
[2011/10/10 12:13:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\Microsoft Corporation
[2011/10/10 12:11:41 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Windows 7 Upgrade Advisor
[2011/10/10 08:50:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2011/10/10 08:50:31 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2011/10/10 08:50:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2011/10/10 08:50:18 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2011/10/10 08:45:19 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 6.0
[2011/10/09 18:25:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2011/10/09 14:28:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2011/10/09 13:42:29 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Bernie Pochon\IECompatCache
[2011/10/09 13:40:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Bernie Pochon\PrivacIE
[2011/10/09 13:36:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Bernie Pochon\IETldCache
[2011/10/09 13:31:56 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2011/10/09 13:26:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Bernie Pochon\Bureau\Services Windows Live
[2011/10/05 12:11:38 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/10/02 21:40:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ERUNT
[2011/10/02 21:40:08 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2011/10/02 19:51:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011/10/02 19:42:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernie Pochon\Application Data\Malwarebytes
[2011/10/02 19:41:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware
[2011/10/02 19:41:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011/10/02 19:41:50 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/10/02 19:41:49 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/10/02 19:33:40 | 000,582,656 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Bernie Pochon\Bureau\OTL.exe
[2011/10/02 14:47:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis
[2011/10/02 14:47:05 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/10/11 20:52:02 | 000,001,000 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2011/10/11 20:46:38 | 000,000,448 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{88F9DD9A-80A1-4A6E-9888-8881665864AB}.job
[2011/10/11 20:30:00 | 000,001,070 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/10/11 19:59:42 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-3978581669-3650736504-2941554700-1005.job
[2011/10/11 19:59:42 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-3978581669-3650736504-2941554700-1005.job
[2011/10/11 15:43:16 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/10/11 09:05:58 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/10/11 09:04:33 | 000,001,066 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/10/11 09:03:20 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/10/11 09:03:14 | 502,845,440 | -HS- | M] () -- C:\hiberfil.sys
[2011/10/10 22:15:57 | 000,001,693 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\avast! Free Antivirus.lnk
[2011/10/10 22:15:55 | 000,003,120 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/10/10 22:04:29 | 059,854,800 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\setup_av_free.exe
[2011/10/10 16:14:47 | 000,502,450 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2011/10/10 16:14:47 | 000,433,834 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/10/10 16:14:47 | 000,081,618 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2011/10/10 16:14:46 | 000,068,120 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/10/10 16:11:06 | 001,613,920 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/10/10 16:06:10 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/10/10 13:07:02 | 000,252,240 | RHS- | M] () -- C:\ntldr
[2011/10/10 12:27:08 | 000,086,188 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Mes documents\rapport conseil mise a niveau.mht
[2011/10/10 12:11:44 | 000,001,866 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Conseiller de mise à niveau vers Windows 7.lnk
[2011/10/09 13:36:31 | 000,000,819 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Application Data\Microsoft\Internet Explorer\Quick Launch\Démarrer Internet Explorer.lnk
[2011/10/09 13:27:00 | 000,001,380 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\Aller sur MSN.fr.lnk
[2011/10/09 13:26:59 | 000,001,092 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\Notification de cadeaux MSN.lnk
[2011/10/09 13:26:57 | 000,000,715 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\Internet Explorer.lnk
[2011/10/08 00:15:29 | 000,087,986 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\roman bretagne 3.odt
[2011/10/03 23:03:13 | 000,084,132 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\_roman.odt
[2011/10/02 22:46:14 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011/10/02 21:41:10 | 000,000,771 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk
[2011/10/02 21:40:09 | 000,000,615 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\NTREGOPT.lnk
[2011/10/02 21:40:09 | 000,000,596 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\ERUNT.lnk
[2011/10/02 19:42:00 | 000,000,788 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2011/10/02 19:33:29 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bernie Pochon\Bureau\OTL.exe
[2011/10/02 14:47:08 | 000,001,738 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Bureau\HijackThis.lnk
[2011/10/01 22:07:59 | 000,261,340 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\census.cache
[2011/10/01 22:07:57 | 000,211,768 | ---- | M] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\ars.cache
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
Marie Noel Ginet
 
Messages: 36
Inscription: 02 Oct 2011, 14:17

Re: demandes d'étude de rapports d'analyse

Messagede Marie Noel Ginet » 11 Oct 2011, 20:35

========== Files Created - No Company Name ==========

[2011/10/10 22:15:57 | 000,001,693 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\avast! Free Antivirus.lnk
[2011/10/10 22:04:30 | 059,854,800 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\setup_av_free.exe
[2011/10/10 12:27:08 | 000,086,188 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Mes documents\rapport conseil mise a niveau.mht
[2011/10/10 12:11:44 | 000,001,866 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Conseiller de mise à niveau vers Windows 7.lnk
[2011/10/10 12:11:43 | 000,001,872 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Conseiller de mise à niveau vers Windows 7.lnk
[2011/10/09 13:42:28 | 000,000,448 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{88F9DD9A-80A1-4A6E-9888-8881665864AB}.job
[2011/10/09 13:36:31 | 000,000,807 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Internet Explorer.lnk
[2011/10/09 13:27:00 | 000,001,380 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\Aller sur MSN.fr.lnk
[2011/10/09 13:26:59 | 000,001,092 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\Notification de cadeaux MSN.lnk
[2011/10/09 13:26:57 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\Internet Explorer.lnk
[2011/10/03 23:03:28 | 000,087,986 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\roman bretagne 3.odt
[2011/10/03 23:03:18 | 000,084,132 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\_roman.odt
[2011/10/02 22:46:14 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011/10/02 21:41:10 | 000,000,771 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk
[2011/10/02 21:40:09 | 000,000,615 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\NTREGOPT.lnk
[2011/10/02 21:40:09 | 000,000,596 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\ERUNT.lnk
[2011/10/02 19:42:00 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2011/10/02 14:47:08 | 000,001,738 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Bureau\HijackThis.lnk
[2011/07/31 19:03:20 | 000,000,017 | ---- | C] () -- C:\WINDOWS\Missing.ini
[2011/07/31 19:03:04 | 000,000,032 | ---- | C] () -- C:\WINDOWS\CD_Start.INI
[2011/07/14 18:11:38 | 000,261,340 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\census.cache
[2011/07/14 18:11:16 | 000,211,768 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\ars.cache
[2011/03/15 00:28:13 | 002,776,064 | ---- | C] () -- C:\Program Files\Winmode.exe
[2010/10/31 20:18:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\cd.dat
[2010/06/09 14:55:52 | 000,062,316 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010/01/18 18:48:06 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\housecall.guid.cache
[2009/12/13 00:05:59 | 000,000,085 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
[2009/11/14 02:56:17 | 000,060,358 | ---- | C] () -- C:\WINDOWS\System32\ZoomH4Unin.exe
[2008/08/22 16:09:01 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008/08/22 13:42:59 | 000,090,996 | ---- | C] () -- C:\WINDOWS\System32\Autorun.ini
[2008/06/23 10:39:02 | 000,000,412 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
[2008/04/23 14:54:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2008/04/20 17:33:08 | 000,000,068 | ---- | C] () -- C:\WINDOWS\pp-oneclick-repertoire.ini
[2008/04/14 18:59:39 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt
[2008/04/14 18:56:49 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2008/02/25 03:16:02 | 000,109,967 | ---- | C] () -- C:\WINDOWS\CopernicAgentUninstall.exe
[2008/01/07 14:34:54 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat
[2007/09/21 13:18:27 | 000,006,195 | R--- | C] () -- C:\WINDOWS\MediaManager.ini
[2007/07/27 18:24:24 | 000,008,350 | R--- | C] () -- C:\WINDOWS\Disktool.INI
[2007/07/27 18:24:24 | 000,007,876 | R--- | C] () -- C:\WINDOWS\fwupgrade.ini
[2007/07/27 18:24:24 | 000,004,096 | R--- | C] () -- C:\WINDOWS\SoundCon.INI
[2007/07/26 04:53:34 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007/06/25 17:59:51 | 000,000,724 | ---- | C] () -- C:\WINDOWS\wacam.ini
[2007/06/25 17:59:50 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\MMPlugHostCtrl.dll
[2007/03/08 19:30:39 | 000,000,066 | ---- | C] () -- C:\WINDOWS\BBW_INFO.INI
[2007/02/25 20:37:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2006/12/16 14:30:57 | 000,000,042 | ---- | C] () -- C:\WINDOWS\iltwain.ini
[2006/10/14 10:52:42 | 000,005,716 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2006/06/08 06:01:31 | 000,000,332 | ---- | C] () -- C:\WINDOWS\EcouteSol.ini
[2006/06/08 06:01:31 | 000,000,310 | ---- | C] () -- C:\WINDOWS\EcouteFa.ini
[2006/06/08 03:02:26 | 000,286,208 | ---- | C] () -- C:\WINDOWS\System32\cncs232.dll
[2006/06/08 03:02:26 | 000,001,117 | ---- | C] () -- C:\WINDOWS\Sol.ini
[2006/06/08 03:02:26 | 000,000,982 | ---- | C] () -- C:\WINDOWS\Fa.ini
[2006/03/01 14:42:05 | 000,037,027 | ---- | C] () -- C:\WINDOWS\atmoUn.exe
[2006/02/21 12:25:49 | 000,651,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2006/02/21 12:25:49 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2006/02/21 12:25:49 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\WLANUTL.dll
[2006/01/18 17:36:42 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2005/12/20 21:33:25 | 000,000,604 | ---- | C] () -- C:\WINDOWS\Sof2.INI
[2005/12/08 22:10:47 | 000,030,208 | ---- | C] () -- C:\WINDOWS\System32\WNASPI32.DLL
[2005/12/08 22:10:46 | 000,000,291 | ---- | C] () -- C:\WINDOWS\msfsetup.ini
[2005/12/08 15:40:44 | 000,010,926 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Application Data\wklnhst.dat
[2005/12/06 21:39:59 | 000,000,600 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/10/31 21:08:02 | 000,072,704 | ---- | C] () -- C:\Documents and Settings\Bernie Pochon\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/10/29 18:58:42 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
[2005/10/28 00:39:09 | 000,001,366 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2005/10/04 16:42:26 | 000,000,044 | ---- | C] () -- C:\WINDOWS\liveup.ini
[2005/09/16 12:23:30 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2005/09/16 11:47:57 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS6f.DLL
[2005/09/16 01:47:44 | 000,050,446 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2005/09/15 21:11:06 | 000,210,944 | ---- | C] () -- C:\WINDOWS\System32\MSVCRT10.DLL
[2005/09/15 18:48:44 | 000,071,749 | ---- | C] () -- C:\WINDOWS\hcextoutput.dll
[2005/09/15 18:48:44 | 000,000,823 | ---- | C] () -- C:\WINDOWS\tsc.ini
[2005/09/15 18:48:24 | 000,000,170 | ---- | C] () -- C:\WINDOWS\GetServer.ini
[2005/09/15 15:54:33 | 000,000,192 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2005/09/14 15:27:23 | 000,278,528 | ---- | C] () -- C:\Program Files\Fichiers communs\FDEUnInstaller.exe
[2005/06/18 21:47:46 | 000,000,085 | ---- | C] () -- C:\WINDOWS\Alaunch.INI
[2005/06/18 12:39:03 | 000,000,148 | ---- | C] () -- C:\WINDOWS\System32\eRLog.ini
[2005/05/02 21:20:31 | 000,070,018 | ---- | C] () -- C:\WINDOWS\System32\akrip32.dll
[2005/03/21 18:38:33 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2005/03/21 10:04:31 | 000,000,347 | ---- | C] () -- C:\WINDOWS\System32\CreMan.ini
[2005/03/21 10:03:54 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\ntiembed.dll
[2005/03/21 10:03:40 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIMPEG2.dll
[2005/03/21 10:03:40 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTICDMK32.dll
[2005/03/21 10:02:02 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2005/03/21 10:02:02 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2005/03/21 10:00:14 | 000,077,267 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2005/03/21 10:00:11 | 000,008,073 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2005/03/21 10:00:10 | 000,032,768 | ---- | C] () -- C:\WINDOWS\AMOVE.EXE
[2005/03/21 09:59:00 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2005/03/21 09:55:44 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2005/03/21 09:55:14 | 000,003,712 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2005/03/21 09:53:38 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005/03/21 09:53:04 | 001,613,920 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2004/09/16 13:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\System32\drivers\AdfuUd.sys
[2004/09/16 13:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\ADFUUD.SYS
[2004/02/28 06:30:12 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\TrustSupport.dll
[2001/12/26 16:12:30 | 000,065,536 | R--- | C] () -- C:\WINDOWS\System32\multiplex_vcd.dll
[2001/09/03 23:46:38 | 000,110,592 | R--- | C] () -- C:\WINDOWS\System32\Hmpg12.dll
[2001/07/30 16:33:56 | 000,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC.dll
[2001/07/23 22:04:36 | 000,118,784 | R--- | C] () -- C:\WINDOWS\System32\HMPV2_ENC_MMX.dll
[1999/07/23 14:46:48 | 000,000,116 | ---- | C] () -- C:\WINDOWS\AuHCcup1.ini
[1999/07/23 11:53:20 | 000,129,536 | ---- | C] () -- C:\WINDOWS\AuHCcup1.dll
[1980/01/01 00:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[1980/01/01 00:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[1980/01/01 00:00:00 | 000,502,450 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat
[1980/01/01 00:00:00 | 000,433,834 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[1980/01/01 00:00:00 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat
[1980/01/01 00:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[1980/01/01 00:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[1980/01/01 00:00:00 | 000,081,618 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat
[1980/01/01 00:00:00 | 000,068,120 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[1980/01/01 00:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[1980/01/01 00:00:00 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat
[1980/01/01 00:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[1980/01/01 00:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[1980/01/01 00:00:00 | 000,004,524 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[1980/01/01 00:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[1980/01/01 00:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

========== LOP Check ==========

[2011/01/30 19:19:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2008/07/24 21:46:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Arovax
[2011/10/10 22:15:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2008/11/02 14:43:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BOONTY
[2008/06/23 09:55:15 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2009/12/13 00:08:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Elaborate Bytes
[2007/11/06 00:40:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Musicnotes
[2009/09/15 21:30:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2005/09/15 23:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Prism
[2008/06/23 10:38:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
[2009/11/14 02:37:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Syncrosoft
[2008/08/13 23:07:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2010/04/29 00:02:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/01/30 21:02:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2007/06/10 14:59:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Ableton
[2007/06/25 18:01:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\ACAMPREF
[2010/06/07 20:42:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\AdSigner
[2008/04/24 12:14:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\APLI
[2010/05/10 10:21:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Canon
[2008/02/25 03:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Copernic
[2010/06/14 15:35:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Facebook
[2008/10/27 14:37:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\FileZilla
[2009/12/21 16:46:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\HouseCall 6.6
[2010/04/29 12:02:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Icones
[2008/04/01 16:02:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\ItsLabel
[2011/09/27 22:13:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\LimeWire
[2011/03/14 23:32:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\LolClient
[2009/09/15 21:30:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\NCH Swift Sound
[2006/05/30 13:51:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\NetMedia Providers
[2005/12/30 20:07:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\OLYMPUS
[2010/02/01 00:40:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\OpenOffice.org
[2006/05/30 13:51:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Publish Providers
[2010/01/31 22:12:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Samsung
[2008/06/23 10:38:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\ScanSoft
[2008/03/20 09:41:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\SPAMfighter
[2005/09/15 17:09:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Template
[2008/09/14 20:43:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Todae
[2008/08/13 23:07:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernie Pochon\Application Data\Viewpoint
[2011/10/11 20:46:38 | 000,000,448 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{88F9DD9A-80A1-4A6E-9888-8881665864AB}.job

========== Purity Check ==========



< End of report >
Marie Noel Ginet
 
Messages: 36
Inscription: 02 Oct 2011, 14:17

PrécédenteSuivante

Retourner vers Sécurité (Contamination - Décontamination)

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 24 invités

cron