cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 01/02/2013 18:36:38 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\lise\Mes documents\Mes images\photo cindy
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

447,48 Mb Total Physical Memory | 70,06 Mb Available Physical Memory | 15,66% Memory free
1,05 Gb Paging File | 0,31 Gb Available in Paging File | 29,61% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,52 Gb Total Space | 49,42 Gb Free Space | 66,32% Space Free | Partition Type: NTFS

Computer Name: LISE | User Name: lise | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - C:\Documents and Settings\lise\Mes documents\Mes images\photo cindy\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\AVG Secure Search\vprot.exe ()
PRC - C:\Program Files\Fichiers communs\AVG Secure Search\vToolbarUpdater\14.0.1\ToolbarUpdater.exe ()
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2013\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Documents and Settings\lise\Application Data\Orange\OrangeInside\one\OrangeInside.exe (Orange)
PRC - C:\Program Files\TUTO4PC\tuto4pc_fr_5.exe ()
PRC - C:\Program Files\Orange\MailNotifier\MailNotifier.exe (Orange)
PRC - C:\Program Files\Canon\Quick Menu\CNQMSWCS.EXE (CANON INC.)
PRC - C:\Program Files\Canon\Quick Menu\CNQMUPDT.EXE (CANON INC.)
PRC - C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE (CANON INC.)
PRC - C:\Program Files\Canon\IJPLM\ijplmsvc.exe ()
PRC - C:\Program Files\Orange\Assistance Livebox\dist\ST2.exe ()
PRC - C:\Program Files\Mp3Tube Toolbar\Mp3TubeSvc.exe (Mp3Tube)
PRC - C:\Program Files\Mp3Tube Toolbar\Mp3TubeVideoToMp3.exe (Mp3Tube)
PRC - C:\Program Files\Fichiers communs\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
PRC - C:\WINDOWS\system32\PAStiSvc.exe ()
PRC - C:\WINDOWS\system32\VTTimer.exe (S3 Graphics, Inc.)
PRC - C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
PRC - C:\WINDOWS\system32\slserv.exe ( )


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - C:\Program Files\Fichiers communs\AVG Secure Search\SiteSafetyInstaller\14.0.1\SiteSafety.dll ()
MOD - C:\Program Files\AVG Secure Search\vprot.exe ()
MOD - C:\Program Files\Fichiers communs\AVG Secure Search\vToolbarUpdater\14.0.1\ToolbarUpdater.exe ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\569d22d5591f3d2d35bc64437011e919\System.Runtime.Remoting.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xaml\7256e28382f57416b828a0cc143b67b3\System.Xaml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\25884c52a01d74137ffacdb51d8f2d04\PresentationFramework.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\65e520f98f7674d462d26671c1ce97a7\PresentationFramework.Luna.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\3d6d9da56c9f607615b55d6742d8427d\System.Xml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\197761bb3230bf9d4f540305dcf6717c\System.Configuration.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\12f94ec43a0160ab9ddd755b0e1be881\System.Windows.Forms.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\8ba0620535aa28d509b9397500b7d530\System.Drawing.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationCore\3ca69d589c23a0be94f3858f72e7a595\PresentationCore.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WindowsBase\6133e360071a2fa7ba7deb483816e585\WindowsBase.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\a0db56351a1589e44868456609b01737\System.Core.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\c182d7a0bd88caf2cddccb7491a5fa6e\System.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\3f95a6d480ed1ebe45cf27b770ba94ed\mscorlib.ni.dll ()
MOD - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA ()
MOD - C:\Program Files\Mozilla Firefox\mozjs.dll ()
MOD - C:\Program Files\TUTO4PC\tuto4pc_fr_5.exe ()
MOD - C:\Program Files\Orange\MailNotifier\QtXml4.dll ()
MOD - C:\Program Files\Orange\MailNotifier\QtNetwork4.dll ()
MOD - C:\Program Files\Orange\MailNotifier\QtGui4.dll ()
MOD - C:\Program Files\Orange\MailNotifier\QtCore4.dll ()
MOD - C:\Program Files\Orange\MailNotifier\ProxyDetection.dll ()
MOD - C:\Program Files\Orange\MailNotifier\phonon_backend\phonon_ds94.dll ()
MOD - C:\Program Files\Orange\MailNotifier\phonon4.dll ()
MOD - C:\Program Files\Orange\MailNotifier\imageformats\qgif4.dll ()
MOD - C:\Program Files\Canon\IJPLM\ijplmsvc.exe ()
MOD - C:\Program Files\Orange\Assistance Livebox\dist\ST2.exe ()
MOD - C:\Program Files\Orange\Assistance Livebox\dist\NetworkAPI.dll ()
MOD - C:\Program Files\Orange\Assistance Livebox\dist\Tools.dll ()
MOD - C:\Program Files\Orange\Assistance Livebox\dist\rt\bin\java.dll ()
MOD - C:\Program Files\Orange\Assistance Livebox\dist\rt\bin\jetvm\jvm.dll ()
MOD - C:\Program Files\Orange\Assistance Livebox\dist\rt\jetrt\baseline720.dll ()
MOD - C:\Program Files\Orange\Assistance Livebox\dist\rt\bin\zip.dll ()
MOD - C:\WINDOWS\system32\msdmo.dll ()
MOD - C:\WINDOWS\system32\PAStiSvc.exe ()


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - (F-Secure BlackLight Sensor) -- C:\WINDOWS\TEMP\F-Secure\Anti-Virus\fsblsrv.exe File not found
SRV - (AppMgmt) -- %SystemRoot%\System32\appmgmts.dll File not found
SRV - (vToolbarUpdater14.0.1) -- C:\Program Files\Fichiers communs\AVG Secure Search\vToolbarUpdater\14.0.1\ToolbarUpdater.exe ()
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (AVGIDSAgent) -- C:\Program Files\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.)
SRV - (avgwd) -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (Orange update Core Service) -- C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe (France Telecom SA)
SRV - (IJPLMSVC) -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe ()
SRV - (Mp3Tube Toolbar Service) -- C:\Program Files\Mp3Tube Toolbar\Mp3TubeSvc.exe (Mp3Tube)
SRV - (STI Simulator) -- C:\WINDOWS\system32\PAStiSvc.exe ()
SRV - (IDriverT) -- C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\HPZipm12.exe (HP)
SRV - (ose) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (SLService) -- C:\WINDOWS\System32\slserv.exe ( )


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - (WDICA) -- File not found
DRV - (rt2870) -- system32\DRIVERS\rt2870.sys File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (lbrtfdc) -- File not found
DRV - (CrystalSysInfo) -- C:\Program Files\MediaCoder PSP Edition\SysInfo.sys File not found
DRV - (Changer) -- File not found
DRV - (catchme) -- C:\DOCUME~1\lise\LOCALS~1\Temp\catchme.sys File not found
DRV - (avgtp) -- C:\WINDOWS\system32\drivers\avgtpx86.sys (AVG Technologies)
DRV - (Avgmfx86) -- C:\WINDOWS\system32\drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AVGIDSDriver) -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys (AVG Technologies CZ, s.r.o. )
DRV - (AVGIDSHX) -- C:\WINDOWS\system32\drivers\avgidshx.sys (AVG Technologies CZ, s.r.o. )
DRV - (Avgldx86) -- C:\WINDOWS\system32\drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgtdix) -- C:\WINDOWS\system32\drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avglogx) -- C:\WINDOWS\system32\drivers\avglogx.sys (AVG Technologies CZ, s.r.o.)
DRV - (AVGIDSShim) -- C:\WINDOWS\system32\drivers\avgidsshimx.sys (AVG Technologies CZ, s.r.o. )
DRV - (Avgrkx86) -- C:\WINDOWS\system32\drivers\avgrkx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (npf) -- C:\WINDOWS\system32\drivers\npf.sys (CACE Technologies, Inc.)
DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation)
DRV - (fssfltr) -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys (Microsoft Corporation)
DRV - (USBModem) -- C:\WINDOWS\system32\drivers\lgusbmodem.sys (LG Electronics Inc.)
DRV - (UsbDiag) -- C:\WINDOWS\system32\drivers\lgusbdiag.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\WINDOWS\system32\drivers\lgusbbus.sys (LG Electronics Inc.)
DRV - (NwlnkIpx) -- C:\WINDOWS\system32\drivers\nwlnkipx.sys (Microsoft Corporation)
DRV - (nm) -- C:\WINDOWS\system32\drivers\nmnt.sys (Microsoft Corporation)
DRV - (maz610u) -- C:\WINDOWS\system32\drivers\maz610u.sys (Mobile Action Technology Inc.)
DRV - (MaVctrl) -- C:\WINDOWS\system32\drivers\MaVc2K.sys (Mobile Action Technology Inc.)
DRV - (w300mdm) -- C:\WINDOWS\system32\drivers\w300mdm.sys (MCCI)
DRV - (w300mdfl) -- C:\WINDOWS\system32\drivers\w300mdfl.sys (MCCI)
DRV - (w300bus) -- C:\WINDOWS\system32\drivers\w300bus.sys (MCCI)
DRV - (PAC7311) -- C:\WINDOWS\system32\drivers\PA707UCM.SYS (PixArt Imaging Inc.)
DRV - (maz610m) -- C:\WINDOWS\system32\drivers\maz610m.sys (Mobile Action Technology Inc.)
DRV - (maz610c) -- C:\WINDOWS\system32\drivers\maz610c.sys (Mobile Action Technology Inc.)
DRV - (NwlnkNb) -- C:\WINDOWS\system32\drivers\nwlnknb.sys (Microsoft Corporation)
DRV - (NwlnkSpx) -- C:\WINDOWS\system32\drivers\nwlnkspx.sys (Microsoft Corporation)
DRV - (RecAgent) -- C:\WINDOWS\system32\drivers\RecAgent.sys (Smart Link)
DRV - (ALCXWDM) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)
DRV - (ALCXSENS) -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS (Sensaura)
DRV - (Mtlstrm) -- C:\WINDOWS\system32\drivers\mtlstrm.sys ( )
DRV - (SlNtHal) -- C:\WINDOWS\system32\drivers\slnthal.sys ( )
DRV - (Slntamr) -- C:\WINDOWS\system32\drivers\slntamr.sys ( )
DRV - (Mtlmnt5) -- C:\WINDOWS\system32\drivers\mtlmnt5.sys ( )
DRV - (NtMtlFax) -- C:\WINDOWS\system32\drivers\ntmtlfax.sys ( )
DRV - (SlWdmSup) -- C:\WINDOWS\system32\drivers\slwdmsup.sys (Vireo Software)
DRV - (viaagp1) -- C:\WINDOWS\system32\drivers\VIAAGP1.SYS (VIA Technologies, Inc.)


[color=#E56717]========== Standard Registry (All) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=702&systemid=2&sr=0&q={searchTerms}
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&gct=ds&appid=390&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=8004720103544503&q={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS02
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://r.orange.fr/r/Ohome_portail?ref=O_OI_defaultPage_IE
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 5E 6B F2 83 6E 30 CA 01 [binary data]
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=115284&tt=4312_6&babsrc=SP_ss&mntrId=30324f50000000000000001109a0f0c6
IE - HKCU\..\SearchScopes\{33524C00-63FB-43DB-A6BF-0A4E14B24649}: "URL" = http://www.basicscan.com/?prt=BscscnPB&keywords={searchTerms}
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADBF_fr
IE - HKCU\..\SearchScopes\{7C533709-60D4-40A2-BE3C-80D6FBFBA649}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKCU\..\SearchScopes\{814C76CB-2623-43F4-AAD0-58A0E5190A20}: "URL" = http://r.orange.fr/r?ref=O_OI_hook_openSearchIE&url=http%3A//rws.search.ke.voila.fr/RW/S/opensearch_orange?rdata={searchTerms}
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={9E38CA8E-4064-4534-86FB-D6F1A8950355}&mid=d33c5be65c1d47d0af18d1584f441935-af53fd6741e4bd2d09bff34488169f08405e9fcf&lang=fr&ds=AVG&pr=fr&d=2013-01-29 12:34:28&v=14.0.2.14&pid=avg&sg=&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=702&systemid=2&sr=0&q={searchTerms}
IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&gct=ds&appid=390&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=8004720103544503&q={searchTerms}
IE - HKCU\..\SearchScopes\{9D5BD211-422C-4164-9298-BB4186A30F31}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&mkt=fr-FR&FORM=MIMWA5
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3128284
IE - HKCU\..\SearchScopes\{BCF92BD4-EECA-44FB-88BC-E9205769F246}: "URL" = http://mp3tubetoolbar.com/?tmp=toolbar_sb_results&prt=pinballtbfour01ie&Keywords={searchTerms}&clid=6a6ccc9d3fa34a189d1c2762b8e34e60
IE - HKCU\..\SearchScopes\{DF083827-3103-498E-AA8C-A8E7A6F4322B}: "URL" = http://websearch.ask.com/custom/java/redirect?client=ie&tb=ORJ&o=100000026&src=crm&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search..defaultengine: "Yahoo-Mp3Tube"
FF - prefs.js..browser.search..defaultenginename: "Yahoo-Mp3Tube"
FF - prefs.js..browser.search..order.1: "Yahoo-Mp3Tube"
FF - prefs.js..browser.search..selectedEngine: "Yahoo-Mp3Tube"
FF - prefs.js..browser.search..selectedEngineURL: "http://mp3tubetoolbar.com/?&prt=pinballtbfour01ff&clid=6a6ccc9d3fa34a189d1c2762b8e34e60&subid=&keywords={searchTerms}"
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.defaultthis.engineName: "01NET.com Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT3128284&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://isearch.avg.com/?cid={9E38CA8E-4064-4534-86FB-D6F1A8950355}&mid=d33c5be65c1d47d0af18d1584f441935-af53fd6741e4bd2d09bff34488169f08405e9fcf&lang=fr&ds=AVG&pr=fr&d=2013-01-29 12:34:28&v=14.0.2.14&pid=avg&sg=&sap=hp"
FF - prefs.js..extensions.enabledAddons: %7B195A3098-0BD5-4e90-AE22-BA1C540AFD1E%7D:4.0.4
FF - prefs.js..extensions.enabledAddons: %7BC9B68337-E93A-44EA-94DC-CB300EC06444%7D:4.51.0
FF - prefs.js..extensions.enabledAddons: %7B6AA54174-C9E8-4B07-95A0-0FBC19CBE64C%7D:1.0
FF - prefs.js..extensions.enabledAddons: %7BCAFEEFAC-0016-0000-0033-ABCDEFFEDCBA%7D:6.0.33
FF - prefs.js..extensions.enabledAddons: %7B8e5025c2-8ea3-430d-80b8-a14151068a6d%7D:3.16.0.100
FF - prefs.js..extensions.enabledAddons: %7B4D9AE42B-F4C0-40e6-AEDB-4EC6E42B77AF%7D:1.2.5.0
FF - prefs.js..extensions.enabledAddons: avg%40toolbar:14.0.2.14
FF - prefs.js..extensions.enabledAddons: menu_contextuel_orange%40orange.fr:1.1
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.2.1
FF - prefs.js..extensions.enabledItems: web@veoh.com:1.4
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.3.20100310105313
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.19
FF - prefs.js..keyword.URL: "http://isearch.avg.com/search?pid=avg&sg=&cid=%7B31786db0-0d82-4385-8aca-80289940d71b%7D&mid=d33c5be65c1d47d0af18d1584f441935-af53fd6741e4bd2d09bff34488169f08405e9fcf&ds=AVG&v=14.0.2.14&lang=fr&pr=fr&d=2013-01-29%2012%3A34%3A28&sap=ku&q="


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Fichiers communs\AVG Secure Search\SiteSafetyInstaller\14.0.1\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37: C:\WINDOWS\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files\Fichiers communs\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF - HKLM\Software\MozillaPlugins\@veoh.com/VeohTVPlugin: C:\Program Files\Veoh Networks\VeohWebPlayer\NPVeohTVPlugin.dll (Veoh Networks )
FF - HKLM\Software\MozillaPlugins\@veoh.com/VeohWebPlayer: C:\Program Files\Veoh Networks\VeohWebPlayer\npWebPlayerVideoPluginATL.dll (Veoh)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/09/02 14:34:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2012/07/19 21:46:46 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\webbooster@iminent.com: C:\Program Files\Iminent\webbooster@iminent.com
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\avg@toolbar: C:\Documents and Settings\All Users\Application Data\AVG Secure Search\FireFoxExt\14.0.2.14 [2013/01/30 12:31:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/12/17 10:59:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/01/28 17:09:31 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\web@veoh.com: C:\Program Files\Veoh Networks\VeohWebPlayer\FFVideoFinder [2009/05/10 00:47:01 | 000,000,000 | ---D | M]

[2012/10/24 20:22:13 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\lise\Application Data\Mozilla\Extensions
[2009/12/09 11:22:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\lise\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/04/29 18:44:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\lise\Application Data\Mozilla\Extensions\mozswing@mozswing.org
[2013/01/31 23:04:24 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\extensions
[2012/12/02 10:01:06 | 000,000,000 | ---D | M] (Garmin Communicator) -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
[2010/04/28 22:23:25 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2013/01/09 22:20:45 | 000,000,000 | ---D | M] (Plugin Orange Installeur) -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\extensions\{4D9AE42B-F4C0-40e6-AEDB-4EC6E42B77AF}
[2013/01/01 19:38:14 | 000,000,000 | ---D | M] (01NET.com Community Toolbar) -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\extensions\{8e5025c2-8ea3-430d-80b8-a14151068a6d}
[2012/10/23 21:01:46 | 000,000,000 | ---D | M] (IMinent Toolbar) -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}
[2013/02/01 16:47:35 | 000,000,000 | ---D | M] (Menu Contextuel Orange) -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\extensions\menu_contextuel_orange@orange.fr
[2013/01/09 22:20:17 | 000,000,000 | ---D | M] (barre d'outils Orange) -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\extensions\toolbar@Orange.fr
[2013/01/31 23:04:24 | 000,817,973 | ---- | M] () (No name found) -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012/07/22 21:47:25 | 000,002,396 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\searchplugins\askcom.xml
[2012/09/30 17:04:53 | 000,002,306 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\searchplugins\askcomsearch.xml
[2012/08/21 15:54:46 | 000,000,921 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\searchplugins\conduit.xml
[2013/01/29 09:51:08 | 000,001,211 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\searchplugins\Mp3Tube.xml
[2013/01/30 13:47:08 | 000,001,122 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\searchplugins\orange.xml
[2012/10/21 16:38:01 | 000,002,687 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\searchplugins\Search_Results.xml
[2012/12/17 10:58:36 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/12/17 10:58:36 | 000,000,000 | ---D | M] (BasicScan) -- C:\Program Files\Mozilla Firefox\extensions\{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C}
[2012/12/17 10:59:41 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2012/12/17 10:58:36 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2012/12/17 10:58:36 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
[2012/12/17 10:58:37 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
[2012/12/17 10:58:36 | 000,000,000 | ---D | M] (MP3Tube Toolbar) -- C:\Program Files\Mozilla Firefox\extensions\mp3tubetoolbar@mp3tubetoolbar.com
[2013/01/30 12:31:09 | 000,000,000 | ---D | M] (AVG Security Toolbar) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\AVG SECURE SEARCH\FIREFOXEXT\14.0.2.14
[2012/12/17 10:59:39 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2007/03/22 19:23:30 | 000,017,248 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL
[2012/12/18 15:28:14 | 000,186,584 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2012/12/17 10:59:29 | 000,001,729 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2013/01/30 12:20:31 | 000,003,591 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
[2012/10/23 22:08:03 | 000,002,349 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012/08/29 22:25:09 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/12/17 10:59:29 | 000,002,035 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2012/12/17 10:59:29 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2012/08/29 22:25:09 | 000,003,581 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2013/02/01 16:45:30 | 000,001,211 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\Mp3Tube.xml
[2012/10/21 16:38:01 | 000,002,687 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\Search_Results.xml
[2012/12/17 10:59:29 | 000,001,639 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2012/12/17 10:59:29 | 000,001,169 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

[color=#E56717]========== Chrome ==========[/color]

CHR - Extension: No name found = C:\Documents and Settings\lise\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: No name found = C:\Documents and Settings\lise\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: No name found = C:\Documents and Settings\lise\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dffhljlmcohcioeilbnpmbchdcbhifdh\10.13.1.89_0\
CHR - Extension: No name found = C:\Documents and Settings\lise\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ifjamchknccokmaecnbknhbfhaicfafd\10.11.21.5_0\
CHR - Extension: No name found = C:\Documents and Settings\lise\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\licjnkifamhpbaefhdpacpmihicfbomb\2.1.293.0_0\
CHR - Extension: No name found = C:\Documents and Settings\lise\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2004/08/05 13:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (ToolbarOrange.InitToolbarBHO) - {1d970ed5-3eda-438d-bffd-715931e2775b} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (TBSB01620 Class) - {58124A0B-DC32-4180-9BFF-E0E21AE34026} - C:\Program Files\IMinent Toolbar\tbcore3.dll ()
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\14.0.2.14\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Veoh Web Player Video Finder) - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll (Veoh Networks Inc)
O3 - HKLM\..\Toolbar: (Mp3Tube Toolbar) - {46897C77-E7A6-4c33-BFFB-E9C2E2718942} - C:\Program Files\Mp3Tube Toolbar\mp3tubetb.dll (Mp3Tube Toolbar)
O3 - HKLM\..\Toolbar: (Veoh Video Compass) - {52836EB0-631A-47B1-94A6-61F9D9112DAE} - C:\Program Files\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dll (Veoh Networks)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\14.0.2.14\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - C:\Program Files\IMinent Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (no name) - {9E131A93-EED7-4BEB-B015-A0ADB30B5646} - No CLSID value found.
O3 - HKLM\..\Toolbar: (barre d'outils Orange) - {c9a6357b-25cc-4bcf-96c1-78736985d412} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (&Adresse) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Liens) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Mp3Tube Toolbar) - {46897C77-E7A6-4C33-BFFB-E9C2E2718942} - C:\Program Files\Mp3Tube Toolbar\mp3tubetb.dll (Mp3Tube Toolbar)
O3 - HKCU\..\Toolbar\WebBrowser: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - C:\Program Files\IMinent Toolbar\tbcore3.dll ()
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [CanonQuickMenu] C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE (CANON INC.)
O4 - HKLM..\Run: [HP Component Manager] C:\Program Files\HP\hpcoretech\hpcmpmgr.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [RIMBBLaunchAgent.exe] C:\Program Files\Fichiers communs\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [Synchronization Manager] C:\WINDOWS\System32\mobsync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Tutorials] C:\Program Files\TUTO4PC\tuto4pc_fr_5.exe ()
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKLM..\Run: [VTTimer] C:\WINDOWS\System32\VTTimer.exe (S3 Graphics, Inc.)
O4 - HKCU..\Run: [ccleaner] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKCU..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
O4 - HKCU..\Run: [fsm] File not found
O4 - HKCU..\Run: [ISUSPM] C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
O4 - HKCU..\Run: [MailNotifier] C:\Program Files\Orange\MailNotifier\MailNotifier.exe (Orange)
O4 - HKCU..\Run: [orangeinside] C:\Documents and Settings\lise\Application Data\Orange\OrangeInside\one\OrangeInside.exe (Orange)
O4 - HKCU..\Run: [RIMDeviceManager] C:\Program Files\Fichiers communs\Research In Motion\RIMDeviceManager\RIMDeviceManager.exe (Research In Motion Limited)
O4 - Startup: C:\Documents and Settings\lise\Menu Démarrer\Programmes\Démarrage\Assistance Livebox.lnk = C:\Program Files\Orange\Assistance Livebox\AssistanceLivebox.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: DirectX For Microsoft® Windows = C:\WINDOWS\system32\fservice.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\SOFTWARE\Microsoft\Active Setup\Installed Components\{5Y99AE78-58TT-11dW-BE53-Y67078979Y}: StubPath = C:\WINDOWS\system\sservice.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Envoyer à OneNote - res://C:\PROGRA~1\MI1933~1\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: ajouter cette page à vos favoris Orange - C:\Documents and Settings\lise\Application Data\Orange\OrangeInside\src\AddFavorites_html\AddFavorites.html ()
O8 - Extra context menu item: E&xporter vers Microsoft Excel - C:\Program Files\Microsoft Office\office11\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: envoyer le texte sélectionné par sms - C:\Documents and Settings\lise\Application Data\Orange\OrangeInside\src\sendsmsselectedtext_html\sendsmsselectedtext.html ()
O8 - Extra context menu item: envoyer par sms - C:\Documents and Settings\lise\Application Data\Orange\OrangeInside\src\sendsms_html\sendsms.html ()
O8 - Extra context menu item: envoyer un mail - C:\Documents and Settings\lise\Application Data\Orange\OrangeInside\src\sendmail_html\sendmail.html ()
O8 - Extra context menu item: orange.fr - C:\Documents and Settings\lise\Application Data\Orange\OrangeInside\src\orange_html\orange.html ()
O8 - Extra context menu item: rechercher le texte sélectionné - C:\Documents and Settings\lise\Application Data\Orange\OrangeInside\src\selectedsearch_html\selectedsearch.html ()
O8 - Extra context menu item: traduire la page - C:\Documents and Settings\lise\Application Data\Orange\OrangeInside\src\translate_html\translate.html ()
O8 - Extra context menu item: traduire le texte sélectionné - C:\Documents and Settings\lise\Application Data\Orange\OrangeInside\src\translateSelectedText_html\translateSelectedText.html ()
O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\office11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O15 - HKCU\..Trusted Domains: orange.fr ([logicielsgratuits] http in Sites de confiance)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab (UnoCtrl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.4.2/jinstall-1_4_2_05-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab (Minesweeper Flags Class)
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} http://secure.gopetslive.com/dev/GoPetsWeb.cab (GoPetsWeb Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{926500B4-9689-4CB3-86EB-7212154FB44E}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Fichiers communs\AVG Secure Search\ViProtocolInstaller\14.0.1\ViProtocol.dll ()
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (c:\docume~1\alluse~1\applic~1\pcperf~1\23811~1.154\{61d8b~1\pcpmngr.dll) - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (C:\WINDOWS\system32\fservice.exe) - File not found
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - (%SystemRoot%\System32\dimsntfy.dll) - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Pré-chargeur Browseui - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Démon de cache des catégories de composant - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\lise\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\lise\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{31e33440-3d5d-11de-883c-001109a0f0c6}\Shell\Auto\command - "" = J:\AdobeR.exe e
O33 - MountPoints2\{31e33440-3d5d-11de-883c-001109a0f0c6}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e
O33 - MountPoints2\{dc47069c-fa2a-11de-88ac-001109a0f0c6}\Shell - "" = AutoRun
O33 - MountPoints2\{dc47069c-fa2a-11de-88ac-001109a0f0c6}\Shell\AutoRun\command - "" = J:\USBAutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2013\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2013/02/01 16:48:13 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\lise\Recent
[2013/02/01 10:30:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\AVG
[2013/01/30 12:27:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cache
[2013/01/29 12:40:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\lise\Application Data\AVG2013
[2013/01/29 12:35:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\lise\Application Data\TuneUp Software
[2013/01/29 12:35:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\lise\Local Settings\Application Data\AVG Secure Search
[2013/01/29 12:34:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG Secure Search
[2013/01/29 12:34:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\lise\Application Data\AVG Secure Search
[2013/01/29 12:34:24 | 000,031,576 | ---- | C] (AVG Technologies) -- C:\WINDOWS\System32\drivers\avgtpx86.sys
[2013/01/29 12:34:18 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\AVG Secure Search
[2013/01/29 12:34:12 | 000,000,000 | ---D | C] -- C:\Program Files\AVG Secure Search
[2013/01/29 12:30:47 | 000,000,000 | -H-D | C] -- C:\$AVG
[2013/01/29 12:30:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG2013
[2013/01/29 12:27:47 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2013/01/29 12:25:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2013/01/29 12:24:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\lise\Local Settings\Application Data\MFAData
[2013/01/29 12:24:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2013/01/29 12:24:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\lise\Local Settings\Application Data\Avg2013
[2013/01/26 23:51:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Gestion Personnelle
[2013/01/26 23:48:21 | 000,028,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll
[2013/01/26 23:37:32 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\DESIGNER
[2013/01/26 23:33:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2013/01/26 23:03:28 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2013/01/26 21:38:55 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJEGV
[2013/01/26 21:38:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\lise\Application Data\Canon
[2013/01/26 21:38:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Enregistrement utilisateur de Canon MP230 series
[2013/01/26 21:38:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\lise\Application Data\Canon Easy-WebPrint EX
[2013/01/26 21:37:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Canon Utilities
[2013/01/26 21:37:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Canon MP230 series Manual
[2013/01/26 21:37:20 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\CanonIJ Uninstaller Information
[2013/01/26 21:37:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Canon MP230 series
[2013/01/16 20:03:07 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJQuickMenu
[2013/01/16 20:01:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJPLM
[2013/01/16 19:59:49 | 000,103,424 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNC_B5U.dll
[2013/01/16 19:58:07 | 000,320,000 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNC_B5L.dll
[2013/01/16 19:58:07 | 000,266,752 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNC_B5C.dll
[2013/01/16 19:58:07 | 000,096,768 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNC_B5I.dll
[2013/01/16 19:58:07 | 000,015,872 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNHMCA.dll
[2013/01/16 19:55:51 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\CANON
[2013/01/16 19:55:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJWSpt
[2013/01/16 19:44:49 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2013/01/16 19:42:32 | 000,314,880 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNMLMB5.DLL
[2013/01/16 19:39:58 | 000,000,000 | -H-D | C] -- C:\Program Files\CanonBJ
[2013/01/16 19:34:45 | 000,000,000 | ---D | C] -- C:\Program Files\Canon
[2013/01/10 21:01:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Orange
[2013/01/10 20:42:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\lise\Local Settings\Application Data\Orange
[2013/01/09 22:49:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\F-Secure
[2013/01/09 22:41:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\fssg
[2013/01/09 22:40:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\f-secure
[2013/01/09 22:24:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\lise\Menu Démarrer\Programmes\Orange
[2013/01/09 22:23:05 | 000,000,000 | ---D | C] -- C:\Program Files\WinPcap
[2013/01/09 22:22:06 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Adobe AIR
[2013/01/09 22:21:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Orange
[2013/01/09 22:20:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Orange
[2013/01/09 22:20:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\lise\Menu Démarrer\Programmes\My Application
[2013/01/09 22:19:57 | 000,000,000 | ---D | C] -- C:\Program Files\Orange
[2013/01/09 22:19:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\lise\Application Data\Orange
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2013/02/01 18:09:20 | 000,001,002 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013/02/01 17:58:16 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013/02/01 16:45:40 | 000,000,342 | ---- | M] () -- C:\WINDOWS\tasks\ROC_JAN2013_TB_rmv.job
[2013/02/01 16:45:01 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/02/01 11:37:48 | 000,000,835 | ---- | M] () -- C:\Documents and Settings\lise\Menu Démarrer\Programmes\Démarrage\Assistance Livebox.lnk
[2013/02/01 10:30:26 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\AVG 2013.lnk
[2013/01/31 10:09:47 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/01/30 12:18:33 | 000,031,576 | ---- | M] (AVG Technologies) -- C:\WINDOWS\System32\drivers\avgtpx86.sys
[2013/01/28 19:15:08 | 000,017,408 | ---- | M] () -- C:\Documents and Settings\lise\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/01/27 11:54:37 | 000,586,752 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2013/01/27 11:54:37 | 000,108,942 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2013/01/27 11:54:36 | 000,493,028 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013/01/27 11:54:36 | 000,084,806 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013/01/26 23:56:41 | 000,380,832 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/01/26 23:52:07 | 000,001,486 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Microsoft Office 2003 Essai 60 jours gratuit.lnk
[2013/01/26 23:50:18 | 000,000,385 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2013/01/16 19:55:27 | 000,001,665 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Canon Quick Menu.lnk
[2013/01/16 19:46:17 | 000,001,968 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Canon MP230 series Manuel en ligne.lnk
[2013/01/11 00:12:14 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013/01/11 00:12:13 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013/01/09 22:24:12 | 000,000,971 | ---- | M] () -- C:\Documents and Settings\lise\Bureau\Assistance Livebox.lnk
[2013/01/09 22:19:31 | 000,000,127 | ---- | M] () -- C:\Documents and Settings\lise\Bureau\Contrôle parental.url
[2013/01/06 06:34:34 | 006,009,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2013/02/01 17:58:16 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013/01/30 12:29:32 | 000,000,342 | ---- | C] () -- C:\WINDOWS\tasks\ROC_JAN2013_TB_rmv.job
[2013/01/29 12:35:07 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\AVG 2013.lnk
[2013/01/26 23:52:06 | 000,001,486 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Microsoft Office 2003 Essai 60 jours gratuit.lnk
[2013/01/26 23:50:16 | 000,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2013/01/16 20:06:10 | 002,022,398 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1209634652-3849746411-2779602713-1006-0.dat
[2013/01/16 19:58:07 | 000,073,984 | ---- | C] () -- C:\WINDOWS\System32\CNC175FD.TBL
[2013/01/16 19:55:27 | 000,001,665 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Canon Quick Menu.lnk
[2013/01/16 19:46:17 | 000,001,968 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Canon MP230 series Manuel en ligne.lnk
[2013/01/15 23:00:56 | 000,203,416 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2013/01/11 20:10:46 | 000,002,347 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Adobe Reader X.lnk
[2013/01/09 22:24:12 | 000,000,971 | ---- | C] () -- C:\Documents and Settings\lise\Bureau\Assistance Livebox.lnk
[2013/01/09 22:24:12 | 000,000,835 | ---- | C] () -- C:\Documents and Settings\lise\Menu Démarrer\Programmes\Démarrage\Assistance Livebox.lnk
[2013/01/09 22:19:31 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\lise\Bureau\Contrôle parental.url
[2012/10/23 22:41:15 | 000,406,254 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2012/10/03 20:06:15 | 020,480,000 | ---- | C] () -- C:\Documents and Settings\lise\Local Settings\Application Data\store-pp.jbs
[2012/03/20 18:10:24 | 000,104,745 | ---- | C] () -- C:\WINDOWS\hpoins04.dat
[2012/03/20 18:10:23 | 000,017,176 | ---- | C] () -- C:\WINDOWS\hpomdl04.dat
[2012/02/16 19:22:41 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012/01/17 11:53:53 | 000,103,812 | ---- | C] () -- C:\WINDOWS\hpoins04.dat.temp
[2012/01/17 11:53:52 | 000,017,176 | ---- | C] () -- C:\WINDOWS\hpomdl04.dat.temp
[2012/01/05 20:42:34 | 000,000,256 | ---- | C] () -- C:\WINDOWS\System32\pool.bin
[2011/12/12 14:38:16 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\53aeafcfc21e06acca0759b4ffe4af1b_c
[2011/12/04 18:13:37 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\PAStiSvc.exe
[2011/11/25 18:26:08 | 000,000,896 | ---- | C] () -- C:\Documents and Settings\lise\.recently-used.xbel
[2011/02/11 22:23:34 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2009/05/11 15:23:09 | 000,000,005 | ---- | C] () -- C:\Documents and Settings\lise\RavMonLog
[2009/05/10 01:31:57 | 000,017,408 | ---- | C] () -- C:\Documents and Settings\lise\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/04/29 17:22:54 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\lise\Local Settings\Application Data\fusioncache.dat

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2009/04/28 10:46:16 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2009/03/03 00:10:26 | 001,499,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 11:53:55 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/14 03:33:48 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]

[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[5 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
Invalid Environment Variable: alluserprofile
Invalid Environment Variable: alluserprofile

[color=#A23BEC]< %appdata%\*. >[/color]
[2010/12/13 14:47:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Adobe
[2013/01/29 12:34:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\AVG Secure Search
[2013/01/29 12:40:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\AVG2013
[2009/05/10 10:28:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\AVS4YOU
[2012/09/30 17:34:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Babylon
[2012/09/04 21:12:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Blackberry Desktop
[2010/09/16 17:39:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Broad Intelligence
[2013/01/26 21:40:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Canon
[2013/01/26 21:38:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Canon Easy-WebPrint EX
[2011/04/11 15:17:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\DMCache
[2012/10/21 16:52:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\dvdcss
[2012/07/19 22:49:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Garmin
[2012/03/15 18:05:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\GetRightToGo
[2009/04/29 22:23:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Google
[2011/11/25 18:26:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\gtk-2.0
[2012/01/13 14:54:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Help
[2004/08/16 17:19:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Identities
[2011/04/11 17:28:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\IDM
[2012/01/05 20:38:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\InstallShield
[2012/07/16 10:39:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\LibreOffice
[2010/11/15 19:36:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\LimeWire
[2009/04/28 17:10:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Macromedia
[2009/07/27 23:17:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Malwarebytes
[2012/01/11 02:20:00 | 000,000,000 | --SD | M] -- C:\Documents and Settings\lise\Application Data\Microsoft
[2009/12/09 11:22:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Mozilla
[2012/04/23 08:04:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Mp3Tube Toolbar
[2009/06/11 19:35:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\MSNInstaller
[2012/10/26 09:03:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\OfferBox
[2013/01/29 11:24:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Orange
[2012/10/23 21:45:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\PerformerSoft
[2012/09/04 19:46:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Research In Motion
[2012/10/19 13:07:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Software Informer
[2009/04/28 10:51:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Sun
[2012/01/10 20:41:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Systweak
[2012/10/23 21:02:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Toolbar4
[2013/01/29 12:35:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\TuneUp Software
[2009/04/29 18:40:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\vlc
[2012/10/03 20:06:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\wincorebsband
[2009/06/10 22:44:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Windows Desktop Search
[2009/06/10 22:44:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\Windows Search
[2009/05/10 00:22:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\lise\Application Data\WinRAR

[color=#A23BEC]< %appdata%\*.exe /s >[/color]
[2009/04/29 18:44:45 | 000,163,840 | ---- | M] (Mozilla Foundation) -- C:\Documents and Settings\lise\Application Data\LimeWire\browser\xulrunner\crashreporter.exe
[2009/04/29 18:44:46 | 000,196,608 | ---- | M] (Mozilla Foundation) -- C:\Documents and Settings\lise\Application Data\LimeWire\browser\xulrunner\updater.exe
[2009/04/29 18:44:46 | 000,014,848 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\LimeWire\browser\xulrunner\xpcshell.exe
[2009/04/29 18:44:46 | 000,077,824 | ---- | M] (Mozilla Foundation) -- C:\Documents and Settings\lise\Application Data\LimeWire\browser\xulrunner\xpicleanup.exe
[2009/04/29 18:44:46 | 000,266,240 | ---- | M] (Mozilla Foundation) -- C:\Documents and Settings\lise\Application Data\LimeWire\browser\xulrunner\xpidl.exe
[2009/04/29 18:44:46 | 000,018,432 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\LimeWire\browser\xulrunner\xpt_dump.exe
[2009/04/29 18:44:46 | 000,014,336 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\LimeWire\browser\xulrunner\xpt_link.exe
[2009/04/29 18:44:46 | 000,073,728 | ---- | M] (Mozilla Foundation) -- C:\Documents and Settings\lise\Application Data\LimeWire\browser\xulrunner\xulrunner-stub.exe
[2009/04/29 18:44:46 | 000,102,400 | ---- | M] (Mozilla Foundation) -- C:\Documents and Settings\lise\Application Data\LimeWire\browser\xulrunner\xulrunner.exe
[2013/01/10 20:44:43 | 000,055,424 | ---- | M] (Adobe Systems Inc.) -- C:\Documents and Settings\lise\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2012/06/14 16:30:11 | 009,821,896 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\lise\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\fpupdatepl\fpupdatepl.exe
[2009/06/05 09:29:59 | 000,045,056 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\lise\Application Data\Microsoft\Installer\{457791C5-D702-4143-A7B2-2744BE9573F2}\NewShortcut1_5B69D3033CA54B39B5ECE7D051297E77.exe
[2009/07/28 22:14:05 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\lise\Application Data\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2009/06/11 19:53:32 | 000,000,000 | R--- | M] () -- C:\Documents and Settings\lise\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
[2009/06/11 19:53:35 | 000,086,576 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\lise\Application Data\Microsoft\Services Windows Live\Raccourci Galerie de Photos Windows Live.exe
[2009/06/11 19:53:35 | 000,132,672 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\lise\Application Data\Microsoft\Services Windows Live\Raccourci Windows Live Messenger.exe
[2010/03/05 16:49:50 | 000,197,632 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}\chrome\content\id_imbooster4web_v6\TbHelper2.exe
[2010/03/12 17:45:00 | 000,042,496 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}\chrome\content\id_imbooster4web_v6\uninstall.exe
[2010/03/12 17:45:00 | 000,056,832 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}\chrome\content\id_imbooster4web_v6\update.exe
[2010/03/19 12:04:44 | 000,152,664 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Mozilla\Firefox\Profiles\3wbqeucj.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}\components\setup_widget_serv.exe
[2009/06/11 19:35:19 | 000,826,856 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\lise\Application Data\MSNInstaller\msnauins.exe
[2013/01/09 22:38:41 | 000,162,473 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Orange\OrangeInside\uninstall.exe
[2011/05/12 16:36:34 | 000,152,576 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Orange\OrangeInside\install\Launch.exe
[2012/03/30 14:08:52 | 000,247,296 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Orange\OrangeInside\install\Uninstall.exe
[2012/09/06 09:56:40 | 001,511,424 | ---- | M] (Orange) -- C:\Documents and Settings\lise\Application Data\Orange\OrangeInside\one\OrangeInside.exe
[2011/06/07 08:31:10 | 002,959,376 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\lise\Application Data\Research In Motion\BlackBerry\Updates\17D8D57A-37A5-402b-9C23-F462981DBD06\dotnetfx35setup.exe
[2012/01/05 21:26:11 | 117,454,168 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Research In Motion\BlackBerry\Updates\17D8D57A-37A5-402b-9C23-F462981DBD06\Extractor.exe
[2011/06/07 08:31:10 | 000,128,472 | ---- | M] (Macrovision Corporation) -- C:\Documents and Settings\lise\Application Data\Research In Motion\BlackBerry\Updates\17D8D57A-37A5-402b-9C23-F462981DBD06\Helper.exe
[2011/06/07 08:31:10 | 001,821,192 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\lise\Application Data\Research In Motion\BlackBerry\Updates\17D8D57A-37A5-402b-9C23-F462981DBD06\vcredist_x86.exe
[2011/06/07 08:31:08 | 000,419,672 | ---- | M] (Research In Motion Limited) -- C:\Documents and Settings\lise\Application Data\Research In Motion\BlackBerry\Updates\17D8D57A-37A5-402b-9C23-F462981DBD06\InstallerUtils\InstallerUtils.exe
[2011/06/07 08:31:10 | 000,081,240 | ---- | M] (Research In Motion Limited) -- C:\Documents and Settings\lise\Application Data\Research In Motion\BlackBerry\Updates\17D8D57A-37A5-402b-9C23-F462981DBD06\InstallerUtils\Setup.exe
[2010/07/02 08:54:58 | 000,201,472 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Toolbar4\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\TbHelper2.exe
[2010/07/02 08:54:58 | 000,046,336 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Toolbar4\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\uninstall.exe
[2010/07/02 08:54:58 | 000,060,672 | ---- | M] () -- C:\Documents and Settings\lise\Application Data\Toolbar4\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}\update.exe

[color=#A23BEC]< %systemdrive%\*. >[/color]
[2013/01/29 12:30:47 | 000,000,000 | -H-D | M] -- C:\$AVG
[2009/04/28 18:02:47 | 000,000,000 | ---D | M] -- C:\5601f81c6a9dc488eea38f2f77ed16
[2010/07/17 15:00:31 | 000,000,000 | ---D | M] -- C:\5b3e50340ae26b0867c08da1
[2009/04/30 15:06:54 | 000,000,000 | ---D | M] -- C:\9f0d8f59890dff6050b9609972d480ab
[2013/01/26 22:47:03 | 000,000,000 | ---D | M] -- C:\APPS
[2009/04/28 10:51:32 | 000,000,000 | RHSD | M] -- C:\cmdcons
[2013/02/01 10:50:11 | 000,000,000 | -H-D | M] -- C:\Config.Msi
[2009/05/10 10:17:03 | 000,000,000 | ---D | M] -- C:\ConverterOutput
[2009/04/28 10:26:28 | 000,000,000 | -H-D | M] -- C:\DIVTOOLS
[2009/11/29 13:44:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings
[2012/03/02 10:49:00 | 000,000,000 | ---D | M] -- C:\Données EuroSoft Software Development
[2010/07/17 15:00:30 | 000,000,000 | ---D | M] -- C:\Downloads
[2013/01/27 12:44:22 | 000,000,000 | -HSD | M] -- C:\DRIVERS
[2013/01/26 23:03:28 | 000,000,000 | RH-D | M] -- C:\MSOCache
[2010/11/08 18:55:01 | 000,000,000 | ---D | M] -- C:\Nathan
[2009/04/28 10:31:52 | 000,000,000 | -H-D | M] -- C:\PNP
[2013/01/29 12:34:12 | 000,000,000 | R--D | M] -- C:\Program Files
[2010/02/10 13:53:01 | 000,000,000 | ---D | M] -- C:\ProgramData
[2009/04/28 10:52:16 | 000,000,000 | -HSD | M] -- C:\Recycled
[2013/01/29 11:07:22 | 000,000,000 | -HSD | M] -- C:\RECYCLER
[2009/07/28 00:03:50 | 000,000,000 | ---D | M] -- C:\SDFix
[2013/02/01 17:58:24 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2012/06/07 18:56:44 | 000,000,000 | ---D | M] -- C:\Temps
[2013/02/01 16:48:50 | 000,000,000 | ---D | M] -- C:\WINDOWS

[color=#A23BEC]< %systemdrive%\*.exe >[/color]
[2007/11/07 08:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe

[color=#A23BEC]< %programfiles%\*. >[/color]
[2013/01/27 12:25:16 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2009/06/25 15:54:00 | 000,000,000 | ---D | M] -- C:\Program Files\Alwil Software
[2013/01/29 12:27:47 | 000,000,000 | ---D | M] -- C:\Program Files\AVG
[2013/01/30 12:29:07 | 000,000,000 | ---D | M] -- C:\Program Files\AVG Secure Search
[2009/12/25 17:32:32 | 000,000,000 | ---D | M] -- C:\Program Files\AVS4YOU
[2013/01/10 23:20:47 | 000,000,000 | ---D | M] -- C:\Program Files\BasicScan
[2012/10/04 07:44:05 | 000,000,000 | ---D | M] -- C:\Program Files\BearShare Applications
[2013/01/26 21:38:38 | 000,000,000 | ---D | M] -- C:\Program Files\Canon
[2013/01/16 19:39:58 | 000,000,000 | -H-D | M] -- C:\Program Files\CanonBJ
[2010/01/06 12:32:44 | 000,000,000 | ---D | M] -- C:\Program Files\CCleaner
[2009/05/10 14:08:58 | 000,000,000 | ---D | M] -- C:\Program Files\Chec
[2004/08/16 17:05:16 | 000,000,000 | ---D | M] -- C:\Program Files\ComPlus Applications
[2012/03/15 18:06:03 | 000,000,000 | ---D | M] -- C:\Program Files\Conduit
[2009/05/10 10:15:27 | 000,000,000 | ---D | M] -- C:\Program Files\Cucusoft
[2010/08/31 10:16:19 | 000,000,000 | ---D | M] -- C:\Program Files\Disc2Phone
[2010/04/12 19:34:59 | 000,000,000 | ---D | M] -- C:\Program Files\EA GAMES
[2010/03/03 15:12:43 | 000,000,000 | ---D | M] -- C:\Program Files\Electronic Arts
[2013/01/29 12:34:18 | 000,000,000 | ---D | M] -- C:\Program Files\Fichiers communs
[2012/10/26 19:47:34 | 000,000,000 | ---D | M] -- C:\Program Files\Google
[2012/03/20 18:46:01 | 000,000,000 | ---D | M] -- C:\Program Files\Hewlett-Packard
[2012/03/20 18:45:54 | 000,000,000 | ---D | M] -- C:\Program Files\HP
[2012/10/23 21:02:25 | 000,000,000 | ---D | M] -- C:\Program Files\IMinent Toolbar
[2010/05/13 18:17:03 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2011/04/11 17:28:29 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Download Manager
[2013/01/30 22:56:16 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2012/10/21 10:05:36 | 000,000,000 | ---D | M] -- C:\Program Files\Java
[2010/01/10 13:45:28 | 000,000,000 | ---D | M] -- C:\Program Files\LG Electronics
[2009/04/29 17:25:16 | 000,000,000 | ---D | M] -- C:\Program Files\Messenger
[2012/11/11 22:46:05 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft
[2009/06/05 14:44:16 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2004/08/16 17:11:16 | 000,000,000 | ---D | M] -- C:\Program Files\microsoft frontpage
[2013/01/26 23:36:50 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2009/11/24 13:20:57 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office Outlook Connector
[2009/06/11 20:01:36 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2009/06/11 20:02:23 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Sync Framework
[2009/07/28 22:14:03 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft WSE
[2013/01/26 23:33:22 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2010/08/16 00:31:35 | 000,000,000 | ---D | M] -- C:\Program Files\Movie Maker
[2013/02/01 12:00:47 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2012/12/22 20:30:22 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Maintenance Service
[2011/12/12 14:36:30 | 000,000,000 | ---D | M] -- C:\Program Files\Mp3Tube Toolbar
[2009/04/30 15:07:22 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2012/03/15 18:06:32 | 000,000,000 | ---D | M] -- C:\Program Files\MSECache
[2009/04/28 18:49:06 | 000,000,000 | ---D | M] -- C:\Program Files\MSN
[2004/08/16 17:03:38 | 000,000,000 | ---D | M] -- C:\Program Files\MSN Gaming Zone
[2009/06/05 14:44:12 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 4.0
[2009/04/29 17:08:01 | 000,000,000 | ---D | M] -- C:\Program Files\NetMeeting
[2012/11/11 22:51:07 | 000,000,000 | ---D | M] -- C:\Program Files\OfferBox
[2004/08/16 17:03:54 | 000,000,000 | ---D | M] -- C:\Program Files\Online Services
[2013/01/09 22:43:28 | 000,000,000 | ---D | M] -- C:\Program Files\Orange
[2010/12/15 21:20:19 | 000,000,000 | ---D | M] -- C:\Program Files\Outlook Express
[2012/12/02 22:21:20 | 000,000,000 | ---D | M] -- C:\Program Files\Pando Networks
[2012/03/03 15:39:49 | 000,000,000 | ---D | M] -- C:\Program Files\Panicware
[2009/04/30 15:07:09 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2012/01/05 21:42:15 | 000,000,000 | ---D | M] -- C:\Program Files\Research In Motion
[2009/09/07 13:59:21 | 000,000,000 | ---D | M] -- C:\Program Files\rkfree
[2009/04/28 10:50:24 | 000,000,000 | ---D | M] -- C:\Program Files\S3Inc
[2004/08/16 17:07:34 | 000,000,000 | ---D | M] -- C:\Program Files\Services en ligne
[2012/10/03 20:49:02 | 000,000,000 | ---D | M] -- C:\Program Files\Software
[2009/09/17 10:12:30 | 000,000,000 | ---D | M] -- C:\Program Files\Software Informer
[2012/10/24 20:20:46 | 000,000,000 | ---D | M] -- C:\Program Files\TUTO4PC
[2004/08/16 17:19:06 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2009/05/10 00:47:22 | 000,000,000 | ---D | M] -- C:\Program Files\Veoh Networks
[2010/09/16 17:50:37 | 000,000,000 | ---D | M] -- C:\Program Files\VideoLAN
[2009/06/11 13:37:44 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Desktop Search
[2012/01/23 12:00:44 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live
[2009/06/02 20:25:17 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Connect 2
[2013/01/29 14:17:51 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2009/04/29 17:07:57 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2004/08/16 17:07:42 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsUpdate
[2013/01/09 22:23:05 | 000,000,000 | ---D | M] -- C:\Program Files\WinPcap
[2010/09/17 11:16:06 | 000,000,000 | ---D | M] -- C:\Program Files\WinRAR
[2004/08/16 17:11:16 | 000,000,000 | ---D | M] -- C:\Program Files\xerox

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2004/08/05 13:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=21E83876A6287F15538EF187D286FE11 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
[2008/04/14 03:33:24 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/14 03:33:24 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll

[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2004/08/05 13:00:00 | 001,036,288 | ---- | M] (Microsoft Corporation) MD5=4C33E5B9A6197B6ED215F6CFBA0A2DAA -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\explorer.exe
[2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe

[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2008/04/14 03:33:34 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/14 03:33:34 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll
[2004/08/05 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=FAF07FDCDE76000621A28D19F8E2E8EB -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll

[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2004/08/05 13:00:00 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=D6D65EA32B190401B57EDB6706F29669 -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
[2008/04/14 03:34:26 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008/04/14 03:34:26 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\system32\userinit.exe

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2004/08/05 13:00:00 | 000,506,368 | ---- | M] (Microsoft Corporation) MD5=D2DE785AEAB0BB8CA4C14A8A199DBE4E -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008/04/14 03:34:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008/04/14 03:34:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\winlogon.exe

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\lise\Mes documents\04UB40TheWayYouDoTheThingsY:SummaryInformation
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2

< End of report >

Publicité


Signaler le contenu de ce document

Publicité