Votre question
Fermé

[Résolu] quelque chose bloque ma connection au demarrage

Tags :
  • Demarrage
  • Sécurité
Dernière réponse : dans Sécurité et virus
30 Mai 2012 11:20:51

bonjour

je mets un temps fou pour me connecter pourriez vous m'aider merci

Autres pages sur : resolu chose bloque connection demarrage

a b 8 Sécurité
30 Mai 2012 12:27:42

Bonjour,

Pour démarrer le pc ? le net ?
Contenus similaires
a b 8 Sécurité
30 Mai 2012 16:10:43

Mouai je pense pas à un virus.
Quel est ton OS ? Tu utilises quel navigateur ?
30 Mai 2012 17:14:46

xp pro google chrome
a b 8 Sécurité
30 Mai 2012 20:09:09

Je ne pense pas à une infection mais bon.

  • Télécharge OTL (de Old Timer) sur ton Bureau.
  • Ferme toutes tes fenêtres, puis double clique sur OTL.exe pour le lancer.
    (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")
  • Coche Avec liste blanche sous Registre: approfondi.
  • Fais de même pour celle devant Tous les utilisateurs.

  • Sous Personnalisation, copie-colle l'ensemble du texte ci-dessous, laisse les autres options par défaut :
    netsvcs
    msconfig
    drivers32
    activex
    /md5start
    explorer.exe
    wininit.exe
    winlogon.exe
    userinit.exe
    /md5stop
    %SYSTEMDRIVE%\*.exe
    %ALLUSERSPROFILE%\Application Data\*.
    %ALLUSERSPROFILE%\Application Data\*.exe /s
    %APPDATA%\*.
    %APPDATA%\*.exe /s
    %systemroot%\*. /mp /s
    %systemroot%\system32\*.dll /lockedfiles
    %systemroot%\syswow64\*.dll /lockedfiles
    %systemroot%\Tasks\*.job /lockedfiles
    %systemroot%\system32\drivers\*.sys /lockedfiles
    %systemroot%\syswow64\drivers\*.sys /lockedfiles
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems /s
    hklm\software\clients\startmenuinternet|command /rs
    hklm\software\clients\startmenuinternet|command /64 /rs
    CREATERESTOREPOINT

  • Clique sur le bouton Analyse en haut à gauche puis patiente quelques instants.
  • A la fin du scan, deux rapports s'ouvriront OTL.Txt et Extras.Txt.

  • Rq : Pour les rapports, merci d'utiliser ce service de rapport en ligne : dépose le fichier via "parcourir" et poste simplement le lien obtenu dans ta réponse. En ças de problème, voir cette aide à l'utilisation ici.
    4 Juin 2012 15:46:59

    OTL logfile created on: 04/06/2012 15:12:01 - Run 8
    OTL by OldTimer - Version 3.2.43.1 Folder = D:\
    Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

    3,25 Gb Total Physical Memory | 2,52 Gb Available Physical Memory | 77,44% Memory free
    5,09 Gb Paging File | 4,54 Gb Available in Paging File | 89,22% Paging File free
    Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 97,65 Gb Total Space | 3,23 Gb Free Space | 3,31% Space Free | Partition Type: NTFS
    Drive D: | 368,10 Gb Total Space | 110,64 Gb Free Space | 30,06% Space Free | Partition Type: NTFS
    Drive L: | 2,96 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

    Computer Name: MIMEME-EEC47B12 | User Name: mizot | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: All users
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    ========== Processes (SafeList) ==========

    PRC - C:\Program Files\Boxore\BoxoreClient\boxore.exe (Boxore OU)
    PRC - D:\OTL.exe (OldTimer Tools)
    PRC - C:\Documents and Settings\mizot\Local Settings\Application Data\Akamai\netsession_win.exe (Akamai Technologies, Inc)
    PRC - C:\Documents and Settings\mizot\Local Settings\Application Data\MediaGet2\mediaget.exe (MediaGet LLC)
    PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
    PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
    PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
    PRC - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
    PRC - C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
    PRC - C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
    PRC - C:\Program Files\BrowserCompanion\BCHelper.exe (Blabbers Communications LTD)
    PRC - C:\Program Files\eType Toolbar\ToolbarUpdaterService.exe ()
    PRC - C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
    PRC - C:\Program Files\Fichiers communs\Logishrd\LVMVFM\UMVPFSrv.exe (Logitech Inc.)
    PRC - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
    PRC - C:\WINDOWS\system32\FsUsbExService.Exe (Teruten)
    PRC - C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)
    PRC - C:\Program Files\CDBurnerXP\NMSAccessU.exe ()
    PRC - C:\Program Files\Fichiers communs\MAGIX Services\Database\bin\FABS.exe (MAGIX AG)
    PRC - C:\Program Files\Fichiers communs\Native Instruments\Hardware\NIHardwareService.exe (Native Instruments GmbH)
    PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    PRC - C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\Monitor.exe (Ulead Systems, Inc.)
    PRC - C:\WINDOWS\system32\Dsp24Set.exe (Hoontech Co.,LTD.)


    ========== Modules (No Company Name) ==========

    MOD - C:\Program Files\Alwil Software\Avast5\defs\12060400\algo.dll ()
    MOD - C:\Documents and Settings\mizot\Local Settings\Application Data\MediaGet2\QtWebKit4.dll ()
    MOD - C:\Documents and Settings\mizot\Local Settings\Application Data\MediaGet2\libvlccore.dll ()
    MOD - C:\Documents and Settings\mizot\Local Settings\Application Data\MediaGet2\libvlc.dll ()
    MOD - C:\Documents and Settings\mizot\Local Settings\Application Data\MediaGet2\QtNetwork4.dll ()
    MOD - C:\Documents and Settings\mizot\Local Settings\Application Data\MediaGet2\QtXml4.dll ()
    MOD - C:\Documents and Settings\mizot\Local Settings\Application Data\MediaGet2\QtGui4.dll ()
    MOD - C:\Documents and Settings\mizot\Local Settings\Application Data\MediaGet2\QtCore4.dll ()
    MOD - C:\Documents and Settings\mizot\Local Settings\Application Data\MediaGet2\imageformats\qmng4.dll ()
    MOD - C:\Documents and Settings\mizot\Local Settings\Application Data\MediaGet2\imageformats\qjpeg4.dll ()
    MOD - C:\Documents and Settings\mizot\Local Settings\Application Data\MediaGet2\imageformats\qgif4.dll ()
    MOD - C:\Program Files\eType Toolbar\ToolbarUpdaterService.exe ()
    MOD - C:\Program Files\Yuna Software\Messenger Plus!\Detour32.dll ()
    MOD - C:\Program Files\BrowserCompanion\sqlite3.dll ()
    MOD - C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll ()
    MOD - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
    MOD - C:\WINDOWS\system32\ezGOSvc.dll ()
    MOD - C:\WINDOWS\system32\custmon32.dll ()
    MOD - C:\Program Files\CDBurnerXP\NMSAccessU.exe ()
    MOD - C:\WINDOWS\system32\msdmo.dll ()
    MOD - C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\DetMethod.dll ()
    MOD - C:\WINDOWS\system32\ELSW.DLL ()


    ========== Win32 Services (SafeList) ==========

    SRV - (supdate) Software Update Service (supdate) -- C:\Program Files\Software\Update\SoftwareUpdate.exe (Boxore OU.)
    SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
    SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
    SRV - (avast! Firewall) -- C:\Program Files\Alwil Software\Avast5\afwServ.exe (AVAST Software)
    SRV - (Updater Service for eType Toolbar) -- C:\Program Files\eType Toolbar\ToolbarUpdaterService.exe ()
    SRV - (UMVPFSrv) -- C:\Program Files\Fichiers communs\Logishrd\LVMVFM\UMVPFSrv.exe (Logitech Inc.)
    SRV - (maconfservice) -- C:\Program Files\ma-config.com\maconfservice.exe (CybelSoft)
    SRV - (npggsvc) -- C:\WINDOWS\system32\GameMon.des (INCA Internet Co., Ltd.)
    SRV - (ezGOSvc) -- C:\WINDOWS\system32\ezGOSvc.dll ()
    SRV - (Boonty Games) -- C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (BOONTY)
    SRV - (FsUsbExService) -- C:\WINDOWS\system32\FsUsbExService.Exe (Teruten)
    SRV - (LVPrcSrv) -- C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)
    SRV - (NMSAccess) -- C:\Program Files\CDBurnerXP\NMSAccessU.exe ()
    SRV - (Fabs) -- C:\Program Files\Fichiers communs\MAGIX Services\Database\bin\FABS.exe (MAGIX AG)
    SRV - (NIHardwareService) -- C:\Program Files\Fichiers communs\Native Instruments\Hardware\NIHardwareService.exe (Native Instruments GmbH)
    SRV - (FirebirdServerMAGIXInstance) -- C:\Program Files\Fichiers communs\MAGIX Services\Database\bin\fbserver.exe (MAGIX®)


    ========== Driver Services (SafeList) ==========

    DRV - (ZMGHPAudioSrv) -- system32\drivers\zmghpau.sys File not found
    DRV - (XDva361) -- C:\WINDOWS\system32\XDva361.sys File not found
    DRV - (XDva359) -- C:\WINDOWS\system32\XDva359.sys File not found
    DRV - (XDva358) -- C:\WINDOWS\system32\XDva358.sys File not found
    DRV - (WDICA) -- File not found
    DRV - (PDRFRAME) -- File not found
    DRV - (PDRELI) -- File not found
    DRV - (PDFRAME) -- File not found
    DRV - (PDCOMP) -- File not found
    DRV - (PCIDump) -- File not found
    DRV - (oreans32) -- C:\WINDOWS\system32\drivers\oreans32.sys File not found
    DRV - (lbrtfdc) -- File not found
    DRV - (i2omgmt) -- File not found
    DRV - (EagleNT) -- C:\WINDOWS\system32\drivers\EagleNT.sys File not found
    DRV - (cpuz132) -- C:\DOCUME~1\mizot\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys File not found
    DRV - (Changer) -- File not found
    DRV - (dtsoftbus01) -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys (DT Soft Ltd)
    DRV - (MBAMProtector) -- C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes Corporation)
    DRV - (aswSnx) -- C:\WINDOWS\System32\drivers\aswSnx.sys (AVAST Software)
    DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software)
    DRV - (aswKbd) -- C:\WINDOWS\System32\drivers\aswKbd.sys (AVAST Software)
    DRV - (aswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software)
    DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software)
    DRV - (aswMon2) -- C:\WINDOWS\System32\drivers\aswmon2.sys (AVAST Software)
    DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software)
    DRV - (Aavmker4) -- C:\WINDOWS\System32\drivers\aavmker4.sys (AVAST Software)
    DRV - (LVUVC) Logitech Webcam C160(UVC) -- C:\WINDOWS\system32\drivers\lvuvc.sys (Logitech Inc.)
    DRV - (LVRS) -- C:\WINDOWS\system32\drivers\lvrs.sys (Logitech Inc.)
    DRV - (driverhardwarev2) -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys (CybelSoft)
    DRV - (ssadmdm) -- C:\WINDOWS\system32\drivers\ssadmdm.sys (MCCI Corporation)
    DRV - (ssadbus) SAMSUNG Android USB Composite Device driver (WDM) -- C:\WINDOWS\system32\drivers\ssadbus.sys (MCCI Corporation)
    DRV - (ssadmdfl) SAMSUNG Android USB Modem (Filter) -- C:\WINDOWS\system32\drivers\ssadmdfl.sys (MCCI Corporation)
    DRV - (dgderdrv) -- C:\WINDOWS\system32\drivers\dgderdrv.sys (Devguru Co., Ltd)
    DRV - (FsUsbExDisk) -- C:\WINDOWS\system32\FsUsbExDisk.Sys ()
    DRV - (FilterService) -- C:\WINDOWS\system32\drivers\lvuvcflt.sys (Logitech Inc.)
    DRV - (lvpopflt) -- C:\WINDOWS\system32\drivers\lvpopflt.sys (Logitech Inc.)
    DRV - (LVPr2Mon) -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys ()
    DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
    DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys ()
    DRV - (RTL8023xp) -- C:\WINDOWS\system32\drivers\Rtnicxp.sys (Realtek Semiconductor Corporation )
    DRV - (RTLE8023xp) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys (Realtek Semiconductor Corporation )
    DRV - (LUsbFilt) -- C:\WINDOWS\system32\drivers\LUsbFilt.sys (Logitech, Inc.)
    DRV - (LMouFilt) -- C:\WINDOWS\system32\drivers\LMouFilt.Sys (Logitech, Inc.)
    DRV - (LHidFilt) -- C:\WINDOWS\system32\drivers\LHidFilt.Sys (Logitech, Inc.)
    DRV - (LBeepKE) -- C:\WINDOWS\system32\drivers\LBeepKE.sys (Logitech, Inc.)
    DRV - (ggsemc) -- C:\WINDOWS\system32\drivers\ggsemc.sys (Sony Ericsson Mobile Communications)
    DRV - (ggflt) -- C:\WINDOWS\system32\drivers\ggflt.sys (Sony Ericsson Mobile Communications)
    DRV - (mv61xx) -- C:\WINDOWS\system32\drivers\mv61xx.sys (Marvell Semiconductor, Inc.)
    DRV - (ISODrive) -- C:\Program Files\UltraISO\drivers\ISODrive.sys (EZB Systems, Inc.)
    DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation)
    DRV - (rtl8139) Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C) -- C:\WINDOWS\system32\drivers\RTL8139.sys (Realtek Semiconductor Corporation)
    DRV - (RT73) -- C:\WINDOWS\system32\drivers\rt73.sys (Ralink Technology, Corp.)
    DRV - (MMRTKRNL) -- C:\WINDOWS\system32\drivers\mmrtkrnl.sys (AlcaTech)
    DRV - (AmdLLD) -- C:\WINDOWS\system32\drivers\AmdLLD.sys (AMD, Inc.)
    DRV - (SNP2STD) USB2.0 PC Camera (SNP2STD) -- C:\WINDOWS\system32\drivers\snp2sxp.sys ()
    DRV - (sfvfs02) StarForce Protection VFS Driver (version 2.x) -- C:\WINDOWS\system32\drivers\sfvfs02.sys (Protection Technology)
    DRV - (sfdrv01) StarForce Protection Environment Driver (version 1.x) -- C:\WINDOWS\system32\drivers\sfdrv01.sys (Protection Technology)
    DRV - (sfhlp02) StarForce Protection Helper Driver (version 2.x) -- C:\WINDOWS\system32\drivers\sfhlp02.sys (Protection Technology)
    DRV - (ICM2_01) Service for DSP24 Audio Driver (EWDM) -- C:\WINDOWS\system32\drivers\D24Wdm.sys ()
    DRV - (DSP24_VL) Service for DSP24 Value Driver (EWDM) -- C:\WINDOWS\system32\drivers\d24.sys ()
    DRV - (mapledxp) -- C:\WINDOWS\system32\drivers\mapledxp.sys (Jeff Hurchalla and Marble Sound)
    DRV - (CEUSBAUD) -- C:\WINDOWS\system32\drivers\ceusbaud.sys (CEntrance, Inc.)
    DRV - (Asapi) -- C:\WINDOWS\System32\drivers\asapi.sys (VOB Computersysteme GmbH)
    DRV - (RVIEGVST) -- C:\Program Files\Roland\Virtual Sound Canvas VST\RVIEg01VST.sys (Roland)
    DRV - (RVIEG01) -- C:\Program Files\Roland\Virtual Sound Canvas DXi\RVIEg01.sys (Roland)
    DRV - (Nsynas32) -- C:\WINDOWS\System32\drivers\NSynas32.sys (Syncrosoft Hard- und Software GmbH)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=bfus&s={searchTerms}&f=4
    IE - HKLM\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5}
    IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus
    IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
    IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}


    IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?babsrc=HP_Prot
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://isearch.babylon.com/?babsrc=HP_ss&affID=18474&mn...
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\..\SearchScopes\${searchCLSID}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=bfus&s={searchTerms}&f=4
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\..\SearchScopes\{0EA0449E-6396-468F-841B-91357BFD6D75}: "URL" = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch&babsrc=SP_ss&affID=18474&mntrId=ecf4b0500000000000000019dbf30578
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms}
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\..\SearchScopes\{D1075363-D441-4C82-BD4E-0E3B5046B924}: "URL" = http://fl.iamwired.net/websearch.php?src=tops&search={SearchTerms}
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\..\SearchScopes\{FD5CD67F-DA82-6C3B-A049-4E82BBB6B6E2}: "URL" = http://www.etypestart.com/s/?q={searchTerms}&src=defsearch&provider=&provider_name=yahoo&provider_code=&partner_id=697&product_id=730&affiliate_id=&channel=&toolbar_id=205&toolbar_version=2.4.0&install_country=FR&install_date=20111216&user_guid=610ACAA36E764585ADC80970DF20AFA5&machine_id=3f7d4266cc25cde5d7dfa4c87e872379&browser=IE&os=win&os_version=5.1-x86-SP3&iesrc={referrer:source}
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;<local>


    ========== FireFox ==========

    FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
    FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
    FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
    FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@ma-config.com/HardwareDetection: C:\Program Files\ma-config.com\nphardwaredetection.dll (Cybelsoft)
    FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\npNxGameeu.dll (Nexon)
    FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
    FF - HKLM\Software\MozillaPlugins\@www.dlmanager.net/omaha/tools//Software Update;version=8: C:\Program Files\Software\Update\1.2.195.0\npSoftwareOneClick8.dll (Boxore OU.)
    FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
    FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
    FF - HKCU\Software\MozillaPlugins\boxore.com/BoxorePlugin: C:\Program Files\Boxore\BoxoreClient\BoxorePlugin\1.0.0.1\npBoxorePlugin.dll (Boxore OU)
    FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012/03/20 10:11:02 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/02/16 17:34:01 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{9CD2384C-143B-4790-A075-E7FEFE2A554B}: C:\Program Files\Boxore\BoxoreClient\BoxoreExtension\MozillaFirefox\

    [2012/04/19 21:08:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\mizot\Application Data\Mozilla\Firefox\Profiles\extensions
    [2012/04/19 20:22:09 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\mizot\Application Data\Mozilla\Firefox\Profiles\0\extensions
    [2011/06/09 16:43:02 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
    [2011/04/28 14:34:40 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
    [2011/04/28 14:34:28 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
    [2009/04/08 04:06:28 | 000,122,880 | ---- | M] (AB) -- C:\Program Files\mozilla firefox\plugins\NPOP7PlugIn.dll
    [2009/10/23 15:01:34 | 000,102,400 | ---- | M] (Zylom) -- C:\Program Files\mozilla firefox\plugins\npzylomgamesplayer.dll
    [2011/10/08 19:35:57 | 000,002,047 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrch.xml

    ========== Chrome ==========

    CHR - default_search_provider: Google (Enabled)
    CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:o riginalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
    CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
    CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
    CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\Application\19.0.1084.52\ppGoogleNaClPluginChrome.dll
    CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\Application\19.0.1084.52\pdf.dll
    CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\Application\19.0.1084.52\gcswf32.dll
    CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
    CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
    CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
    CHR - plugin: Java Deployment Toolkit 6.0.220.4 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
    CHR - plugin: Java(TM) Platform SE 6 U22 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
    CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
    CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
    CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
    CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
    CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
    CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
    CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
    CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
    CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
    CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
    CHR - plugin: Nexon Game Controller (Enabled) = C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\npNxGameeu.dll
    CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll
    CHR - plugin: Boxore Plugin (Enabled) = C:\Program Files\Boxore\BoxoreClient\BoxorePlugin\1.0.0.1\npBoxorePlugin.dll
    CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
    CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
    CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
    CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
    CHR - plugin: Software Update (Enabled) = C:\Program Files\Software\Update\1.2.195.0\npSoftwareOneClick8.dll
    CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
    CHR - plugin: Ma-Config.com plugin (Enabled) = C:\Program Files\ma-config.com\nphardwaredetection.dll
    CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
    CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
    CHR - Extension: YouTube = C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
    CHR - Extension: Recherche Google = C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
    CHR - Extension: avast! WebRep = C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1426_0\
    CHR - Extension: LukasHudec = C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ifdgcflnbjihdfafceknjpidanddhnjb\3_0\
    CHR - Extension: Smart Display = C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jeaihkehdlhkocphopopahkfjcfcphef\1.1_0\
    CHR - Extension: Browser Companion Helper = C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\kolgnaidildmdbfgdnoapjdianbpajne\1.0.5_0\
    CHR - Extension: \u003Cvideo\u003E HTML5 DivX Plus Web Player = C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\

    O1 HOSTS File: ([2008/04/14 14:00:00 | 000,000,790 | -HS- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
    O1 - Hosts: 127.0.0.1 localhost
    O2 - BHO: (Browser Companion Helper) - {00cbb66b-1d3b-46d3-9577-323a336acb50} - C:\Program Files\BrowserCompanion\jsloader.dll ( )
    O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
    O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\bh\BabylonToolbar.dll (Babylon BHO)
    O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
    O2 - BHO: (eType Toolbar Helper) - {7D9463CD-BBD8-42f4-AB72-D7B1191D9F3D} - C:\Program Files\eType Toolbar\Toolbar32.dll ()
    O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
    O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
    O2 - BHO: (Browser Companion Helper Verifier) - {963B125B-8B21-49A2-A3A8-E37092276531} - C:\Program Files\BrowserCompanion\updatebhoWin32.dll ( )
    O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
    O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
    O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarTlbr.dll (Babylon Ltd.)
    O3 - HKLM\..\Toolbar: (eType Toolbar) - {BDE58274-7A2A-4682-8C47-A379DD9E36CB} - C:\Program Files\eType Toolbar\Toolbar32.dll ()
    O3 - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
    O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
    O4 - HKLM..\Run: [Boxore Client] C:\Program Files\Boxore\BoxoreClient\boxore.exe (Boxore OU)
    O4 - HKLM..\Run: [Browser companion helper] C:\Program Files\BrowserCompanion\BCHelper.exe (Blabbers Communications LTD)
    O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
    O4 - HKLM..\Run: [DSP24] C:\WINDOWS\System32\Dsp24Set.exe (Hoontech Co.,LTD.)
    O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
    O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
    O4 - HKLM..\Run: [PlusService] C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
    O4 - HKLM..\Run: [Ulead AutoDetector v2] C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\Monitor.exe (Ulead Systems, Inc.)
    O4 - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003..\Run: [Akamai NetSession Interface] C:\Documents and Settings\mizot\Local Settings\Application Data\Akamai\netsession_win.exe (Akamai Technologies, Inc)
    O4 - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
    O4 - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003..\Run: [MediaGet2] C:\Documents and Settings\mizot\Local Settings\Application Data\MediaGet2\mediaget.exe (MediaGet LLC)
    O4 - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0
    O7 - HKU\S-1-5-21-1960408961-1788223648-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMBalloonTip = 0
    O8 - Extra context menu item: Open with Scansoft PDF Converter 3.0 - C:\Program Files\ScanSoft\PDF Converter 3.0\IEShellExt.dll (ScanSoft, Inc.)
    O8 - Extra context menu item: Rechercher sur le Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
    O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} http://fichiers.touslesdrivers.com/maconfig/MaConfig_3_... ("Ma-Config.com control)
    O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-wind... (Java Plug-in 1.6.0_22)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-wind... (Java Plug-in 1.6.0_22)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol... (Windows Live Hotmail Photo Upload Tool)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F91A770E-85E8-4CD3-8CD5-69A2FFFBAE5C}: DhcpNameServer = 89.2.0.1 89.2.0.2
    O18 - Protocol\Handler\base64 {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files\BrowserCompanion\tdataprotocol.dll (Blabbers Communications Ltd)
    O18 - Protocol\Handler\chrome {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files\BrowserCompanion\tdataprotocol.dll (Blabbers Communications Ltd)
    O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\prox {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files\BrowserCompanion\tdataprotocol.dll (Blabbers Communications Ltd)
    O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
    O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
    O24 - Desktop Components:0 () - http://www.fond-ecran.net/fonds/pussycatsdolls_003.jpg
    O24 - Desktop Components:1 (Ma page d'accueil) - About:Home
    O24 - Desktop WallPaper: C:\Documents and Settings\mizot\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O24 - Desktop BackupWallPaper: C:\Documents and Settings\mizot\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O32 - Unable to read "AutoRun" value or value not present!
    O32 - AutoRun File - [2009/09/22 19:20:49 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
    O34 - HKLM BootExecute: (autocheck autochk *)
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*
    O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
    O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

    NetSvcs: 6to4 - File not found
    NetSvcs: Ias - File not found
    NetSvcs: Iprip - File not found
    NetSvcs: Irmon - File not found
    NetSvcs: NWCWorkstation - File not found
    NetSvcs: Nwsapagent - File not found
    NetSvcs: WmdmPmSp - File not found
    NetSvcs: SSHNAS - File not found
    NetSvcs: ezGOSvc - C:\WINDOWS\system32\ezGOSvc.dll ()
    NetSvcs: leclick.net/", [ "http://adx.g.doubleclick.net/", 0.1797770725557592, "http://cdn.adnxs.com/", 0.15696953350017787, "http://et3.eulerian.net/", 0.15696953350017787, "http://ib.adnxs.com/", 0.22539215066692198, "http://impfr.tradedoubler.com/", 0.9474549345812202, "http://s0.2mdn.net/", 0.14882351332577795 ] ], [ "http://ad.adserverplus.com/", [ "http://ad.adserverplus.com/", 0.4743194525542142, "http://ad.yieldmanager.com/", 0.45279 - File not found

    MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Ralink Wireless Utility.lnk - C:\Program Files\RALINK\Common\RaUI.exe - (Ralink Technology, Corp.)
    MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^SetPointII.lnk - C:\Program Files\Logitech\SetPoint II\SetPointII.exe - (Logitech Inc.)
    MsConfig - StartUpFolder: C:^Documents and Settings^mizot^Menu Démarrer^Programmes^Démarrage^Dropbox.lnk - C:\Documents and Settings\mizot\Application Data\Dropbox\bin\Dropbox.exe - (Dropbox, Inc.)
    MsConfig - StartUpFolder: C:^Documents and Settings^mizot^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 3.3.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe - ()
    MsConfig - StartUpReg: Adobe Reader Speed Launcher - hkey= - key= - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
    MsConfig - StartUpReg: amd_dc_opt - hkey= - key= - C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD)
    MsConfig - StartUpReg: AutoStartNPSAgent - hkey= - key= - C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
    MsConfig - StartUpReg: BrMfcWnd - hkey= - key= - C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.)
    MsConfig - StartUpReg: Browser companion helper - hkey= - key= - C:\Program Files\BrowserCompanion\BCHelper.exe (Blabbers Communications LTD)
    MsConfig - StartUpReg: ControlCenter3 - hkey= - key= - C:\Program Files\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.)
    MsConfig - StartUpReg: CTFMON.EXE - hkey= - key= - File not found
    MsConfig - StartUpReg: DAEMON Tools Lite - hkey= - key= - C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
    MsConfig - StartUpReg: H/PC Connection Agent - hkey= - key= - C:\Program Files\Microsoft ActiveSync\Wcescomm.exe (Microsoft Corporation)
    MsConfig - StartUpReg: H2O - hkey= - key= - File not found
    MsConfig - StartUpReg: IndexSearch - hkey= - key= - C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe (Nuance Communications, Inc.)
    MsConfig - StartUpReg: Kernel and Hardware Abstraction Layer - hkey= - key= - C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
    MsConfig - StartUpReg: Logitech Vid - hkey= - key= - File not found
    MsConfig - StartUpReg: Logitech Vid HD - hkey= - key= - File not found
    MsConfig - StartUpReg: LWS - hkey= - key= - C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
    MsConfig - StartUpReg: Malwarebytes Anti-Malware (reboot) - hkey= - key= - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
    MsConfig - StartUpReg: Malwarebytes' Anti-Malware - hkey= - key= - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
    MsConfig - StartUpReg: PaperPort PTD - hkey= - key= - C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe (Nuance Communications, Inc.)
    MsConfig - StartUpReg: PDF3 Registry Controller - hkey= - key= - C:\Program Files\ScanSoft\PDF Converter 3.0\RegistryController.exe (ScanSoft, Inc.)
    MsConfig - StartUpReg: PlusService - hkey= - key= - C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
    MsConfig - StartUpReg: PPort11reminder - hkey= - key= - C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe (Nuance Communications, Inc.)
    MsConfig - StartUpReg: QuickTime Task - hkey= - key= - C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
    MsConfig - StartUpReg: Realtime Audio Engine - hkey= - key= - File not found
    MsConfig - StartUpReg: snp2std - hkey= - key= - C:\WINDOWS\vsnp2std.exe (Sonix)
    MsConfig - StartUpReg: SSBkgdUpdate - hkey= - key= - C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Nuance Communications, Inc.)
    MsConfig - StartUpReg: StartCCC - hkey= - key= - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
    MsConfig - StartUpReg: Steam - hkey= - key= - C:\Program Files\Steam\Steam.exe (Valve Corporation)
    MsConfig - StartUpReg: SunJavaUpdateSched - hkey= - key= - C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
    MsConfig - StartUpReg: SweetIM - hkey= - key= - File not found
    MsConfig - StartUpReg: tsnp2std - hkey= - key= - C:\WINDOWS\tsnp2std.exe (SONIX)
    MsConfig - StartUpReg: UCam_Menu - hkey= - key= - C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
    MsConfig - StartUpReg: Ulead AutoDetector v2 - hkey= - key= - C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\Monitor.exe (Ulead Systems, Inc.)
    MsConfig - StartUpReg: uTorrent - hkey= - key= - C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
    MsConfig - StartUpReg: YouCam Mirror Tray icon - hkey= - key= - C:\Program Files\CyberLink\YouCam\YouCamTray.exe (CyberLink Corp.)

    Drivers32: midi2 - C:\WINDOWS\System32\mapledxp.dll (Jeff Hurchalla and Marble Sound)
    Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
    Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
    Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
    Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
    Drivers32: MSVideo - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
    Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
    Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
    Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
    Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
    Drivers32: VIDC.I420 - C:\WINDOWS\System32\lvcodec2.dll (Logitech Inc.)
    Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
    Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
    Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
    Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
    Drivers32: VIDC.SCLS - C:\WINDOWS\System32\SCLS.DLL ()
    Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
    Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)

    ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
    ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering)
    ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
    ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
    ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
    ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
    ActiveX: {359920C0-C58A-0C31-DB71-4E603D6ECEA8} - Personnalisation du navigateur
    ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java
    ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
    ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
    ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée
    ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:o E /CALLER:WINNT /user /install
    ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
    ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
    ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
    ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
    ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation
    ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7
    ActiveX: {5056b317-8d4c-43ee-8543-b9d1e234b8f4} - Mise à jour de sécurité pour Windows XP (KB923789)
    ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
    ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
    ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
    ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
    ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
    ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
    ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
    ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
    ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
    ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
    ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install
    ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
    ActiveX: {ACC563BC-4266-43f0-B6ED-9D38C4202C7E} -
    ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
    ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
    ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches
    ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
    ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Macromedia Shockwave Flash
    ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
    ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
    ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
    ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
    ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig
    ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
    ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
    ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

    CREATERESTOREPOINT
    Restore point Set: OTL Restore Point

    ========== Files/Folders - Created Within 30 Days ==========

    [2012/06/04 15:11:03 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\mizot\Recent
    [2012/06/04 15:05:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
    [2012/05/20 18:19:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Addictive Drums
    [2012/05/18 11:31:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mizot\Application Data\Aeria Games & Entertainment
    [2012/05/17 14:01:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mizot\Mes documents\Toontrack
    [2012/05/16 17:24:23 | 003,889,424 | ---- | C] (INCA Internet Co., Ltd.) -- C:\WINDOWS\System32\GameMon.des
    [2012/05/16 17:13:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mizot\Local Settings\Application Data\Aeria Games
    [2012/05/16 17:12:23 | 000,000,000 | ---D | C] -- C:\ProgramData
    [2012/05/16 17:09:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mizot\Menu Démarrer\Programmes\AeriaGames
    [2012/05/16 17:08:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\System32\AI_RecycleBin
    [2012/05/16 16:54:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mizot\Local Settings\Application Data\Akamai
    [2012/05/16 16:54:00 | 000,000,000 | ---D | C] -- C:\AeriaGames
    [2012/05/11 11:02:34 | 000,000,000 | ---D | C] -- C:\Timeworks
    [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

    ========== Files - Modified Within 30 Days ==========

    [2012/06/04 15:17:22 | 000,000,432 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{C66ADDF1-8CA1-4FD7-A1B1-C09211277702}.job
    [2012/06/04 15:17:12 | 000,001,072 | ---- | M] () -- C:\WINDOWS\tasks\SoftwareUpdateTaskMachineUA.job
    [2012/06/04 15:00:25 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
    [2012/06/04 15:00:24 | 000,001,068 | ---- | M] () -- C:\WINDOWS\tasks\SoftwareUpdateTaskMachineCore.job
    [2012/06/04 14:58:42 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2012/06/03 07:31:00 | 000,001,148 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-1788223648-1801674531-1003UA.job
    4 Juin 2012 15:48:44

    WS\tasks\Registry Winner Schedule.job
    [2012/06/02 16:06:35 | 000,000,474 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for mizot.job
    [2012/06/02 10:31:00 | 000,001,096 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-1788223648-1801674531-1003Core.job
    [2012/06/02 01:38:20 | 000,001,236 | ---- | M] () -- C:\WINDOWS\System32\$LastSetting$.ns$
    [2012/05/30 12:26:00 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [2012/05/24 17:20:22 | 000,000,032 | ---- | M] () -- C:\WINDOWS\System32\w3data.vss
    [2012/05/24 17:20:22 | 000,000,032 | ---- | M] () -- C:\WINDOWS\System32\msvcsv60.dll
    [2012/05/24 17:20:22 | 000,000,032 | ---- | M] () -- C:\WINDOWS\msocreg32.dat
    [2012/05/24 14:57:44 | 000,017,920 | ---- | M] () -- C:\Documents and Settings\mizot\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2012/05/19 10:56:19 | 001,079,742 | R--- | M] () -- C:\Documents and Settings\mizot\Mes documents\Resources.xpak
    [2012/05/18 13:19:00 | 000,000,066 | ---- | M] () -- C:\WINDOWS\BBW_INFO.INI
    [2012/05/16 14:35:16 | 001,079,742 | R--- | M] () -- C:\Documents and Settings\mizot\Mes documents\Resources2.xpak
    [2012/05/10 13:07:31 | 000,050,041 | ---- | M] () -- C:\Documents and Settings\mizot\Bureau\gondolier.MID
    [2012/05/10 10:00:11 | 003,914,328 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2012/05/10 00:18:28 | 000,501,336 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
    [2012/05/10 00:18:28 | 000,432,928 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
    [2012/05/10 00:18:28 | 000,081,184 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
    [2012/05/10 00:18:28 | 000,067,884 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
    [2012/05/09 15:11:28 | 000,108,443 | ---- | M] () -- C:\Documents and Settings\mizot\Mes documents\carte visite nou'zotes 2012.pdf
    [2012/05/09 14:48:36 | 000,014,530 | ---- | M] () -- C:\Documents and Settings\mizot\Mes documents\cc_20120509_144827.reg
    [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

    ========== Files Created - No Company Name ==========

    [2012/05/17 02:23:49 | 000,460,544 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
    [2012/05/16 14:35:16 | 001,079,742 | R--- | C] () -- C:\Documents and Settings\mizot\Mes documents\Resources2.xpak
    [2012/05/10 13:07:31 | 000,050,041 | ---- | C] () -- C:\Documents and Settings\mizot\Bureau\gondolier.MID
    [2012/05/09 15:11:27 | 000,108,443 | ---- | C] () -- C:\Documents and Settings\mizot\Mes documents\carte visite nou'zotes 2012.pdf
    [2012/05/09 14:48:33 | 000,014,530 | ---- | C] () -- C:\Documents and Settings\mizot\Mes documents\cc_20120509_144827.reg
    [2012/03/07 18:00:41 | 000,002,408 | ---- | C] () -- C:\WINDOWS\System32\ASOROSet.bin
    [2012/02/15 05:28:05 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
    [2011/11/22 19:31:06 | 000,000,030 | ---- | C] () -- C:\WINDOWS\Iedit_.INI
    [2011/11/19 15:41:44 | 000,017,920 | ---- | C] () -- C:\Documents and Settings\mizot\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2011/10/07 19:18:41 | 000,003,272 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\MAudioEffects.mps
    [2011/10/07 19:18:41 | 000,001,225 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\MAudioStreams.mps
    [2011/10/07 19:18:41 | 000,000,142 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\MAudioPluginsConfiguration.cfg
    [2011/10/07 19:18:11 | 000,001,129 | ---- | C] () -- C:\Documents and Settings\mizot\Application Data\mbasestyleconfigurationpresets.xml
    [2011/09/15 15:59:28 | 001,743,360 | ---- | C] () -- C:\WINDOWS\System32\libsndfile-1.dll
    [2011/06/09 19:19:50 | 000,073,600 | ---- | C] () -- C:\WINDOWS\System32\ezGOSvc.dll
    [2011/05/31 20:47:38 | 000,002,892 | ---- | C] () -- C:\WINDOWS\System32\audcon.sys
    [2011/05/31 20:45:31 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\SYNSOPOS.exe.cfg
    [2011/05/14 20:46:58 | 000,000,005 | ---- | C] () -- C:\WINDOWS\fphpmilk.ini
    [2011/05/14 20:46:58 | 000,000,005 | ---- | C] () -- C:\WINDOWS\fphpmief.ini
    [2011/05/14 13:45:26 | 000,000,005 | ---- | C] () -- C:\WINDOWS\fphpmifg.ini
    [2011/05/14 13:44:41 | 000,000,005 | ---- | C] () -- C:\WINDOWS\fphpmian.ini
    [2011/04/04 16:30:34 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
    [2011/04/04 16:30:34 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
    [2011/03/09 12:24:29 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\custmon32.dll
    [2011/03/02 23:57:44 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe
    [2011/03/02 23:57:40 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll
    [2011/03/02 23:57:40 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll
    [2011/03/02 23:57:40 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll
    [2011/03/02 23:57:40 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll
    [2010/09/14 09:05:06 | 000,027,986 | ---- | C] () -- C:\Documents and Settings\mizot\Application Data\OFMissionEditorConfig.xml
    [2010/07/28 17:06:22 | 000,000,056 | ---- | C] () -- C:\WINDOWS\Sod.ini
    [2010/07/26 16:46:42 | 003,661,824 | ---- | C] () -- C:\WINDOWS\System32\mkl_wavearts.dll
    [2010/07/09 11:31:14 | 000,015,840 | ---- | C] () -- C:\WINDOWS\System32\machnm1.exe

    ========== Custom Scans ==========

    < >

    < >

    < >

    < >

    < MD5 for: EXPLORER.EXE >
    [2008/04/14 14:00:00 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\explorer.exe
    [2008/04/14 14:00:00 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\system32\dllcache\explorer.exe

    < MD5 for: USERINIT.EXE >
    [2008/04/14 14:00:00 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\system32\dllcache\userinit.exe
    [2008/04/14 14:00:00 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\system32\userinit.exe

    < MD5 for: WINLOGON.EXE >
    [2012/04/04 15:56:38 | 000,199,240 | ---- | M] () MD5=097D0E812D7A9A3101CE46CB2BE0474D -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
    [2008/04/14 14:00:00 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\dllcache\winlogon.exe
    [2008/04/14 14:00:00 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\winlogon.exe

    < >

    < %SYSTEMDRIVE%\*.exe >

    < >

    < %ALLUSERSPROFILE%\Application Data\*. >
    [2011/05/31 13:50:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Adobe
    [2010/11/17 14:07:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AlcaTech
    [2010/04/20 14:27:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
    [2010/05/26 22:09:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple
    [2011/04/15 14:11:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
    [2012/01/12 16:01:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ArtsAcoustic
    [2011/02/25 15:27:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ATI
    [2010/11/16 16:39:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVS4YOU
    [2009/10/23 18:14:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus
    [2011/10/27 17:58:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Babylon
    [2011/07/26 12:42:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Big Fish Games
    [2011/07/26 12:43:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BigFishGamesCache
    [2010/09/27 21:00:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BOONTY
    [2009/11/16 14:26:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Brother
    [2010/09/06 11:56:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
    [2010/04/29 18:52:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited
    [2010/01/12 20:57:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Celemony Software GmbH
    [2010/01/04 18:58:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CyberLink
    [2010/01/14 16:14:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
    [2012/02/16 17:34:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DivX
    [2011/01/31 11:01:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations
    [2011/03/19 16:22:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Driver Mender
    [2011/03/19 16:12:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DriverBoost
    [2009/09/23 11:22:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DriverCure
    [2009/12/09 22:34:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DriverScanner
    [2010/03/26 11:45:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DVD Shrink
    [2011/09/18 14:12:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Easybits GO
    [2009/10/24 10:57:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EDIROL
    [2011/10/03 09:08:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\eLicenser
    [2010/06/01 17:29:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\F4
    [2010/10/08 19:44:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FLEXnet
    [2010/09/27 21:00:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Friends Games
    [2010/01/27 11:24:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Google
    [2011/10/08 19:36:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InstallMate
    [2009/11/16 14:31:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InstallShield
    [2011/11/25 13:25:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InterVideo
    [2010/10/02 10:23:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\KORG
    [2009/09/23 10:20:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LogiShrd
    [2011/09/08 17:25:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Logitech
    [2011/10/27 13:02:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ma-config.com
    [2011/12/02 17:44:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MAGIX
    [2010/05/21 18:36:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
    [2011/11/02 21:34:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Media Get LLC
    [2010/04/08 12:32:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MeldaProduction
    [2012/05/28 11:30:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
    [2012/04/26 21:29:07 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft
    [2010/09/30 18:29:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Native Instruments
    [2012/04/16 16:19:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nero
    [2010/01/30 10:40:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NexonEU
    [2010/10/04 16:15:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Norton
    [2010/07/01 22:09:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NortonInstaller
    [2009/09/28 18:04:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NOS
    [2011/09/15 16:03:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PACE Anti-Piracy
    [2009/09/23 11:18:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ParetoLogic
    [2009/12/02 14:58:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters
    [2011/12/08 00:23:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Pinnacle
    [2011/11/30 12:03:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Pinnacle Studio Ultimate
    [2011/12/07 13:51:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Pinnacle Studio Ultimate Collection
    [2011/11/30 11:42:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PMB Files
    [2011/10/08 19:35:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Premium
    [2009/10/22 12:59:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Propellerhead Software
    [2010/09/13 19:42:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\QuickMediaConverter
    [2010/10/07 11:43:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
    [2011/11/29 20:40:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Samsung
    [2010/09/21 13:48:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
    [2012/05/20 11:44:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Skype
    [2011/02/01 14:04:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Steinberg
    [2011/12/07 13:46:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Studio 14
    [2011/11/30 11:50:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Studio 15
    [2010/03/16 14:34:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sun
    [2010/07/01 22:09:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Symantec
    [2011/05/31 20:47:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Syncrosoft
    [2012/03/07 17:56:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
    [2009/10/16 09:08:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems
    [2011/02/01 14:38:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\VST3 Presets
    [2009/09/23 17:48:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Wave Arts
    [2012/04/20 12:20:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Waves Audio
    [2009/09/23 10:26:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
    [2010/01/04 22:49:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WLInstaller
    [2010/06/15 19:05:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Zylom
    [2010/01/19 19:23:36 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{0CC51CB2-911C-40BB-BC1B-BD3CAC590222}
    [2011/09/14 20:53:32 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{13A9B825-42CB-4973-913D-2194B5A4CF94}
    [2010/09/30 18:29:15 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{24E3A4D8-9E57-4B19-9715-6E61513095D7}
    [2010/09/30 18:30:17 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{3689B77C-90FA-4663-91AB-5AB34383CD81}
    [2009/12/09 22:33:18 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{66E2F539-12B6-4870-A500-7689CDE75C5E}
    [2011/05/23 17:33:48 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{A97DA822-7B29-4F18-A64A-BF94FFFE77FB}
    [2010/01/19 19:22:45 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{AC46DC4F-66BD-4733-A8B4-0B69418C12D0}
    [2011/07/11 11:46:47 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{C5EE6DA0-A057-4009-BADC-FB7523A5715F}
    [2010/01/19 19:24:27 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{D69A48BF-7653-4AA8-94BC-5847522A4573}
    [2010/01/19 19:22:13 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{D7CFB71A-972A-44FF-AE44-8780EB53ABB2}
    [2011/05/03 10:52:10 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{E2B9164D-2E80-4C7D-8C03-CFD60FA556BC}
    [2011/07/11 11:33:15 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{E4C0D7CD-5F11-4494-A394-5CCFDB3B153A}
    [2010/01/19 19:22:18 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{EC98E512-708C-4C3B-9F07-B58768C1DD8A}
    [2010/07/01 12:01:42 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{EF512186-94AE-4521-BD36-FB3F173F754D}

    < >

    < %ALLUSERSPROFILE%\Application Data\*.exe /s >
    [2009/07/17 16:24:10 | 002,921,432 | ---- | M] (Native Instruments ) -- C:\Documents and Settings\All Users\Application Data\{0CC51CB2-911C-40BB-BC1B-BD3CAC590222}\Controller Editor Setup.exe
    [2008/10/24 16:19:55 | 002,666,776 | ---- | M] (Native Instruments ) -- C:\Documents and Settings\All Users\Application Data\{24E3A4D8-9E57-4B19-9715-6E61513095D7}\Audio 8 DJ Driver Setup.exe
    [2008/10/29 17:26:48 | 003,005,536 | ---- | M] (Native Instruments ) -- C:\Documents and Settings\All Users\Application Data\{3689B77C-90FA-4663-91AB-5AB34383CD81}\Traktor Setup.exe
    [2008/10/09 07:51:17 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\All Users\Application Data\{66E2F539-12B6-4870-A500-7689CDE75C5E}\driverscanner\3E39C89\2FB6E586\DriverScannerApi.exe
    [2008/11/14 15:32:18 | 000,212,992 | ---- | M] (Uniblue Systems) -- C:\Documents and Settings\All Users\Application Data\{66E2F539-12B6-4870-A500-7689CDE75C5E}\driverscanner\5C40AA7E\8F9F9DCD\DriverScanner.exe
    [2008/08/27 14:45:58 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\All Users\Application Data\{66E2F539-12B6-4870-A500-7689CDE75C5E}\driverscanner\CD77AC88\3DFD6AB6\DriverScannerApi.exe
    [2010/01/06 18:25:57 | 003,068,984 | ---- | M] (Lexicon ) -- C:\Documents and Settings\All Users\Application Data\{A97DA822-7B29-4F18-A64A-BF94FFFE77FB}\Setup_PCM_Native_VST.exe
    [2008/12/09 10:57:06 | 002,675,880 | ---- | M] (Native Instruments ) -- C:\Documents and Settings\All Users\Application Data\{AC46DC4F-66BD-4733-A8B4-0B69418C12D0}\Session IO Driver Setup.exe
    [2010/12/14 00:38:13 | 002,994,594 | ---- | M] (DigiTech ) -- C:\Documents and Settings\All Users\Application Data\{C5EE6DA0-A057-4009-BADC-FB7523A5715F}\X-Edit.exe
    [2010/12/14 00:33:04 | 001,072,640 | ---- | M] (DigiTech) -- C:\Documents and Settings\All Users\Application Data\{C5EE6DA0-A057-4009-BADC-FB7523A5715F}\OFFLINE\3A6575FD\CBBF0042\X-Edit.exe
    [2009/08/11 18:33:53 | 003,764,552 | ---- | M] (Native Instruments ) -- C:\Documents and Settings\All Users\Application Data\{D69A48BF-7653-4AA8-94BC-5847522A4573}\Guitar Rig 4 Setup PC.exe
    [2009/07/27 12:24:49 | 002,933,600 | ---- | M] (Native Instruments ) -- C:\Documents and Settings\All Users\Application Data\{D7CFB71A-972A-44FF-AE44-8780EB53ABB2}\Service Center Setup.exe
    [2009/11/20 04:17:47 | 003,067,816 | ---- | M] (Lexicon ) -- C:\Documents and Settings\All Users\Application Data\{E2B9164D-2E80-4C7D-8C03-CFD60FA556BC}\PCM Native RTAS Installer.exe
    [2009/09/04 22:41:51 | 002,890,695 | ---- | M] (DigiTech ) -- C:\Documents and Settings\All Users\Application Data\{E4C0D7CD-5F11-4494-A394-5CCFDB3B153A}\rp155driverinstaller.exe
    [2008/12/09 10:55:00 | 002,676,064 | ---- | M] (Native Instruments ) -- C:\Documents and Settings\All Users\Application Data\{EC98E512-708C-4C3B-9F07-B58768C1DD8A}\Rig Kontrol 3 Driver Setup.exe
    [2009/09/04 22:34:01 | 002,894,455 | ---- | M] (DigiTech ) -- C:\Documents and Settings\All Users\Application Data\{EF512186-94AE-4521-BD36-FB3F173F754D}\rp150driverinstaller.exe
    [2011/05/12 01:22:04 | 005,039,192 | ---- | M] (Big Fish Games) -- C:\Documents and Settings\All Users\Application Data\BigFishGamesCache\Upgrade\clientinstaller\bfgsetup_s5_l4.exe
    [2011/05/12 01:22:10 | 000,143,336 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\BigFishGamesCache\Upgrade\stub\tresors-de-lile-mysterieuse-vaisseau-fantome_s5_l4_gF6203T1L4_d1398126572.exe
    [2011/07/26 12:42:17 | 005,097,304 | ---- | M] (Big Fish Games) -- C:\Documents and Settings\All Users\Application Data\BigFishGamesCache\Upgrade\Unpack\bfgsetup_s5_l4.exe
    [2012/02/16 17:32:05 | 000,056,969 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Application Data\DivX\ASPEncoder\Uninstaller.exe
    [2012/02/16 17:32:15 | 000,065,783 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Application Data\DivX\ControlPanel\Uninstaller.exe
    [2012/02/16 17:32:29 | 000,054,128 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Application Data\DivX\Converter\Uninstaller.exe
    [2012/02/16 17:32:39 | 000,063,144 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Application Data\DivX\DesktopService\Uninstaller.exe
    [2012/02/16 17:32:33 | 000,062,857 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Application Data\DivX\DFXPlugin\Uninstaller.exe
    [2012/02/16 17:32:34 | 000,056,458 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Application Data\DivX\DivXDecoderShortcut\Uninstaller.exe
    [2012/02/16 17:34:08 | 000,064,957 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Application Data\DivX\DivXPlusShortcuts\Uninstaller.exe
    [2012/02/16 17:32:33 | 000,062,879 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Application Data\DivX\DSAACDecoder\Uninstaller.exe
    [2012/02/16 17:32:34 | 000,057,275 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Application Data\DivX\DSASPDecoder\Uninstaller.exe
    [2012/02/16 17:32:38 | 000,054,166 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Application Data\DivX\DSAVCDecoder\Uninstaller.exe
    [2012/02/16 17:32:39 | 000,057,037 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Application Data\DivX\DSDesktopComponents\Uninstaller.exe
    [2012/02/16 17:32:16 | 000,054,101 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Application Data\DivX\MPEG2Plugin\Uninstaller.exe
    [2012/02/16 17:32:01 | 000,061,667 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Application Data\DivX\MSVC80CRTRedist\Uninstaller.exe
    [2012/02/16 17:32:02 | 000,063,228 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Application Data\DivX\OVSHelper\Uninstaller.exe
    [2012/02/16 17:34:00 | 000,065,896 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Application Data\DivX\Player\Uninstaller.exe
    [2012/02/16 17:32:12 | 000,054,073 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Application Data\DivX\Qt4.5\Uninstaller.exe
    [2012/02/16 17:30:30 | 000,927,072 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Application Data\DivX\Setup\DivXSetup.exe
    [2012/02/16 17:32:27 | 000,054,644 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Application Data\DivX\TranscodeEngine\Uninstaller.exe
    [2012/02/16 17:32:44 | 000,092,231 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Application Data\DivX\TransferWizard\Uninstaller.exe
    [2012/02/16 17:34:00 | 000,061,792 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Application Data\DivX\Update\Uninstaller.exe
    [2012/02/16 17:34:06 | 000,066,441 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Application Data\DivX\WebPlayer\Uninstaller.exe
    [2011/05/30 09:08:59 | 000,423,296 | ---- | M] (EasyBits Software AS) -- C:\Documents and Settings\All Users\Application Data\Easybits GO\EasyBitsGO.exe
    [2011/05/30 09:08:59 | 000,014,208 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\Easybits GO\ezShell64Run.exe
    [2011/05/30 09:08:59 | 000,718,208 | ---- | M] (EasyBits Media) -- C:\Documents and Settings\All Users\Application Data\Easybits GO\Svc\GOUpdate.exe
    [2009/10/12 15:14:32 | 000,196,256 | ---- | M] (F4) -- C:\Documents and Settings\All Users\Application Data\F4\ExalightLauncher.exe
    [2009/08/10 11:01:06 | 000,021,712 | ---- | M] (F4) -- C:\Documents and Settings\All Users\Application Data\F4\IHelper.exe
    [2011/10/07 09:13:24 | 000,015,496 | R-S- | M] (Tarma Software Research Pty Ltd) -- C:\Documents and Settings\All Users\Application Data\InstallMate\{2CF41D09-79A5-E639-6DC6-91E3388C10F7}\Setup.exe
    [2010/05/12 22:42:06 | 000,046,904 | ---- | M] (Logitech, Inc.) -- C:\Documents and Settings\All Users\Application Data\Logitech\LWS\PrivacyShades\LWS_PrivacyShade_Uninstall.exe
    [2012/04/10 15:20:28 | 010,063,000 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe
    [2011/05/30 15:00:46 | 001,074,176 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\MeldaProduction\MDrummer 3 Small\setup.exe
    [2010/01/29 22:18:56 | 000,155,648 | ---- | M] (Nexon) -- C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe
    [2009/09/23 10:43:04 | 001,962,544 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\All Users\Application Data\NOS\Adobe_Downloads\install_flash_player_ax.exe
    [2011/09/09 15:51:53 | 000,036,864 | ---- | M] ( ) -- C:\Documents and Settings\All Users\Application Data\TEMP\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\PostBuild.exe

    < >

    < %APPDATA%\*. >
    [2011/05/31 13:51:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Adobe
    [2012/05/18 11:31:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Aeria Games & Entertainment
    [2010/11/17 14:07:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\AlcaTech
    [2011/07/20 15:05:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Antares
    [2010/05/28 09:37:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Apple Computer
    [2010/10/19 19:28:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Applied Acoustics Systems
    [2009/09/23 18:04:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\ATI
    [2010/11/16 16:39:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\AVS4YOU
    [2011/09/22 09:39:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Azureus
    [2011/10/27 17:58:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Babylon
    [2011/11/25 13:27:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\BabylonToolbar
    [2010/09/19 13:44:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Big Tick
    [2010/02/06 16:43:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Blue Cat Audio
    [2011/10/03 09:19:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Brass 2
    [2009/11/13 13:50:26 | 000,000,000 | R--D | M] -- C:\Documents and Settings\mizot\Application Data\Brother
    [2010/04/29 18:52:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Canneverbe Limited
    [2010/09/13 19:40:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\CocoonSoftware
    [2010/01/04 18:58:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\CyberLink
    [2010/04/01 13:46:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Cycling '74
    [2012/06/04 15:11:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\DAEMON Tools Lite
    [2012/02/16 17:35:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\DDMSettings
    [2009/09/23 12:33:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\DeepBurner Pro
    [2012/02/21 20:44:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\DivX
    [2009/09/23 11:18:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\DriverCure
    [2012/01/06 09:28:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Dropbox
    [2011/06/30 15:46:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\dvdcss
    [2011/11/19 15:35:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\DVDVideoSoft
    [2011/12/16 16:08:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\eType
    [2012/05/04 11:24:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\FileHunter
    [2010/09/12 13:36:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Free Audio Editor
    [2010/10/08 09:35:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\FreeAudioPack
    [2010/05/27 22:59:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\FreeFLVConverter
    [2011/11/24 14:35:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\GetRightToGo
    [2011/09/18 11:42:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\go
    [2009/12/03 11:13:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Google
    [2010/01/07 20:24:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Help
    [2011/08/06 10:48:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Icones
    [2009/09/22 19:45:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Identities
    [2009/09/22 20:16:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\InstallShield
    [2012/04/19 12:47:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\IObit
    [2009/10/21 12:26:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\iZotope
    [2010/10/02 10:23:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\KORG
    [2011/09/08 17:27:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Leadertech
    [2011/05/23 17:25:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Lexicon PCM Native
    [2009/09/23 10:00:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Macromedia
    [2011/12/02 17:09:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\MAGIX
    [2010/05/21 18:36:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Malwarebytes
    [2011/11/02 21:34:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Media Get LLC
    [2011/10/06 11:08:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\MeldaProduction
    [2011/11/18 12:33:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\MeldaProduction MDrummer L
    [2010/04/08 19:31:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\MeldaProduction MDrummer S
    [2010/10/04 21:02:58 | 000,000,000 | --SD | M] -- C:\Documents and Settings\mizot\Application Data\Microsoft
    [2011/04/04 17:24:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\ML
    [2009/09/23 11:05:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\mojosoft
    [2010/09/30 09:09:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\moovida-1
    [2011/06/22 15:45:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Mount&Blade With Fire and Sword
    [2012/04/19 20:22:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Mozilla
    [2010/01/04 23:01:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\MSNInstaller
    [2010/04/08 12:34:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\MSPS
    [2011/10/07 19:18:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\MSPSLicenceManager
    [2012/04/16 16:18:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Nero
    [2009/10/24 12:21:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\NoteTab Light
    [2011/04/29 19:40:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Noxum GmbH
    [2011/09/17 18:07:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\OfferBox
    [2011/09/21 10:42:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\OpenCandy
    [2009/10/01 19:40:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\OpenOffice.org
    [2010/01/16 10:47:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Overloud
    [2011/09/15 16:03:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\PACE Anti-Piracy
    [2011/10/26 16:25:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\PhotoFiltre
    [2012/03/08 21:37:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Plugin Alliance
    [2010/01/14 16:27:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Propellerhead Software
    [2009/11/16 14:26:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Reallusion
    [2012/03/07 17:17:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\RegistryKeys
    [2011/11/29 20:40:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Samsung
    [2009/11/16 15:13:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\ScanSoft
    [2010/05/15 18:48:42 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\mizot\Application Data\SecuROM
    [2011/05/31 13:43:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Shareaza
    [2011/09/18 14:12:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Skype
    [2011/05/30 08:01:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\skypePM
    [2012/04/25 11:44:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Smart PC Solutions
    [2011/03/09 12:05:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Smart PDF Creator Pro
    [2009/11/14 16:56:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Soldat
    [2010/09/06 10:21:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Sony
    [2011/09/15 17:16:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Steinberg
    [2009/10/01 19:39:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Sun
    [2012/03/08 17:45:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Systweak
    [2010/04/01 11:10:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Thinstall
    [2011/07/26 12:51:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\TOMI3
    [2011/03/09 12:20:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\UDC Profiles
    [2009/10/16 09:08:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Ulead Systems
    [2012/04/17 10:46:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Uniblue
    [2011/06/21 19:37:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Unity
    [2012/06/04 15:24:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\uTorrent
    [2012/04/16 11:22:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\UVIWorkstation
    [2012/05/30 02:36:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\vlc
    [2010/04/07 14:08:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Vso
    [2012/03/08 21:26:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\VST3 Presets
    [2012/04/19 20:34:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Waves
    [2012/01/10 10:26:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Waves Audio
    [2012/04/19 20:35:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Waves Preferences
    [2009/09/23 14:50:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\Windows Live Writer
    [2009/09/23 14:54:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mizot\Application Data\WinRAR

    < >

    < %APPDATA%\*.exe /s >
    [2010/01/14 19:59:40 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\mizot\Application Data\10710_598e2880ae4ad23799e73557e0e575f9.exe
    [2010/04/07 14:08:36 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\mizot\Application Data\inst.exe
    [2009/11/06 07:04:40 | 010,377,728 | ---- | M] () -- C:\Documents and Settings\mizot\Application Data\CocoonSoftware\QMC\ffmpeg.exe
    [2008/04/02 12:35:18 | 007,945,216 | ---- | M] () -- C:\Documents and Settings\mizot\Application Data\CocoonSoftware\QMC\ffmpegHD.exe
    [2011/12/05 21:17:44 | 024,242,056 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\mizot\Application Data\Dropbox\bin\Dropbox.exe
    [2011/12/05 21:18:12 | 000,174,752 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\mizot\Application Data\Dropbox\bin\Uninstall.exe
    [2011/12/11 10:43:00 | 000,281,960 | ---- | M] (DSNR Labs) -- C:\Documents and Settings\mizot\Application Data\eType\eTypeUninstall.exe
    [2011/11/29 14:27:39 | 000,032,483 | ---- | M] () -- C:\Documents and Settings\mizot\Application Data\FileHunter\uninstall.exe
    [2011/05/13 16:34:16 | 000,003,128 | R--- | M] () -- C:\Documents and Settings\mizot\Application Data\Microsoft\Installer\{147567F0-8575-4BE0-B5B3-62706C67FA5A}\ARPPRODUCTICON.exe
    [2011/05/13 16:46:28 | 000,003,128 | R--- | M] () -- C:\Documents and Settings\mizot\Application Data\Microsoft\Installer\{2CC4BC82-41CF-43D3-B533-7283AA8BB86F}\ARPPRODUCTICON.exe
    [2011/09/08 17:27:05 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\mizot\Application Data\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
    [2012/05/17 13:21:22 | 000,003,128 | R--- | M] () -- C:\Documents and Settings\mizot\Application Data\Microsoft\Installer\{43E8D9E7-AFC9-4BA3-8106-B95E02B87AB7}\ARPPRODUCTICON.exe
    [2011/04/02 14:53:15 | 000,021,462 | R--- | M] () -- C:\Documents and Settings\mizot\Application Data\Microsoft\Installer\{72C1BFA0-E9F1-4513-A09B-BBFB01A5C422}\_124305e.exe
    [2011/04/02 14:53:15 | 000,021,462 | R--- | M] () -- C:\Documents and Settings\mizot\Application Data\Microsoft\Installer\{72C1BFA0-E9F1-4513-A09B-BBFB01A5C422}\_440d491c.exe
    [2011/04/02 14:53:15 | 000,021,462 | R--- | M] () -- C:\Documents and Settings\mizot\Application Data\Microsoft\Installer\{72C1BFA0-E9F1-4513-A09B-BBFB01A5C422}\_4d064db7.exe
    [2011/06/24 22:59:11 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\mizot\Application Data\Microsoft\Installer\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}\ARPPRODUCTICON.exe
    [2011/01/31 11:01:49 | 000,047,328 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\mizot\Application Data\Microsoft\Installer\{D416E000-D999-470A-BCAC-98E717CC1AFC}\ARPPRODUCTICON.exe
    [2011/01/31 11:01:49 | 000,334,048 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\mizot\Application Data\Microsoft\Installer\{D416E000-D999-470A-BCAC-98E717CC1AFC}\NewShortcut2_439CCEF89767436AB00754ACFDCFF417.exe
    [2011/05/13 16:40:43 | 000,003,128 | R--- | M] () -- C:\Documents and Settings\mizot\Application Data\Microsoft\Installer\{DB1299AF-9EE0-422B-959E-F4171B2AE0F7}\ARPPRODUCTICON.exe
    [2011/04/29 19:40:21 | 015,091,712 | ---- | M] (Rebeat Digital) -- C:\Documents and Settings\mizot\Application Data\Noxum GmbH\UpdateClient\1.0.0.0\RebeatV1.exe
    [2011/04/29 19:40:25 | 000,377,344 | ---- | M] (Rebeat Digital) -- C:\Documents and Settings\mizot\Application Data\Noxum GmbH\UpdateClient\1.0.0.0\RebeatV1.ServerCheck.exe
    [2011/04/29 19:40:26 | 000,542,720 | ---- | M] (Rebeat Digital) -- C:\Documents and Settings\mizot\Application Data\Noxum GmbH\UpdateClient\1.0.0.0\RebeatV1.UploadProcess.exe
    [2008/12/10 16:32:20 | 003,538,944 | ---- | M] (Rebeat Digital) -- C:\Documents and Settings\mizot\Application Data\Noxum GmbH\UpdateClient\1.0.0.0\backup\RebeatV1.exe
    [2008/12/10 16:32:08 | 000,040,960 | ---- | M] (Rebeat Digital) -- C:\Documents and Settings\mizot\Application Data\Noxum GmbH\UpdateClient\1.0.0.0\backup\RebeatV1.ServerCheck.exe
    [2008/12/10 16:32:12 | 000,110,592 | ---- | M] (Noxum GmbH) -- C:\Documents and Settings\mizot\Application Data\Noxum GmbH\UpdateClient\1.0.0.0\backup\RebeatV1.UploadProcess.exe
    [2011/04/29 19:38:50 | 000,695,578 | ---- | M] () -- C:\Documents and Settings\mizot\Application Data\Noxum GmbH\UpdateClient\1.0.0.0\backup\unins000.exe
    [2008/12/10 16:32:10 | 000,090,112 | ---- | M] (Noxum GmbH) -- C:\Documents and Settings\mizot\Application Data\Noxum GmbH\UpdateClient\1.0.0.0\backup\UpdateClient.exe
    [2011/06/13 20:55:52 | 005,845,440 | ---- | M] (Uniblue Systems Ltd ) -- C:\Documents and Settings\mizot\Application Data\OpenCandy\OpenCandy_D8AB066E549A48DAAE3D9485D6549CDE\driverscanner (20).exe
    [2011/09/21 10:42:51 | 000,416,160 | ---- | M] () -- C:\Documents and Settings\mizot\Application Data\OpenCandy\OpenCandy_D8AB066E549A48DAAE3D9485D6549CDE\LatestDLMgr.exe
    [2010/09/21 13:08:26 | 000,583,168 | ---- | M] () -- C:\Documents and Settings\mizot\Application Data\OpenOffice.org\3\user\uno_packages\cache\uno_packages\25.tmp_\sun-pdfimport.oxt\xpdfimport.exe

    < >

    < %systemroot%\*. /mp /s >

    < >

    < %systemroot%\system32\*.dll /lockedfiles >

    < >

    < %systemroot%\syswow64\*.dll /lockedfiles >

    < >

    < %systemroot%\Tasks\*.job /lockedfiles >

    < >

    < %systemroot%\system32\drivers\*.sys /lockedfiles >

    < >

    < %systemroot%\syswow64\drivers\*.sys /lockedfiles >

    < >

    < HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems /s >
    "Debug" =
    "Kmode" = %SystemRoot%\system32\win32k.sys -- [2012/04/11 15:51:40 | 001,862,400 | ---- | M] (Microsoft Corporation)
    "Optional" = Posix [binary data]
    "Posix" = %SystemRoot%\system32\psxss.exe
    "Required" = DebugWindows [binary data]
    "Windows" = %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems\CSRSS]
    "CsrSrvSharedSectionBase" = 2137980928

    < >

    < hklm\software\clients\startmenuinternet|command /rs >
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\chrome.exe\shell\open\command\\: "C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2012/05/23 03:56:51 | 001,240,088 | ---- | M] (Google Inc.)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --show-icons [2012/05/23 03:56:51 | 001,240,088 | ---- | M] (Google Inc.)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --hide-icons [2012/05/23 03:56:51 | 001,240,088 | ---- | M] (Google Inc.)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --make-default-browser [2012/05/23 03:56:51 | 001,240,088 | ---- | M] (Google Inc.)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2012/05/23 03:56:51 | 001,240,088 | ---- | M] (Google Inc.)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2012/02/29 14:17:40 | 000,174,080 | ---- | M] (Microsoft Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2012/02/29 14:17:40 | 000,174,080 | ---- | M] (Microsoft Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2012/02/29 14:17:40 | 000,174,080 | ---- | M] (Microsoft Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2009/03/08 14:09:26 | 000,638,816 | -HS- | M] (Microsoft Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2009/03/08 14:09:26 | 000,638,816 | -HS- | M] (Microsoft Corporation)

    < >

    < hklm\software\clients\startmenuinternet|command /64 /rs >
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\chrome.exe\shell\open\command\\: "C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2012/05/23 03:56:51 | 001,240,088 | ---- | M] (Google Inc.)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --show-icons [2012/05/23 03:56:51 | 001,240,088 | ---- | M] (Google Inc.)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --hide-icons [2012/05/23 03:56:51 | 001,240,088 | ---- | M] (Google Inc.)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --make-default-browser [2012/05/23 03:56:51 | 001,240,088 | ---- | M] (Google Inc.)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2012/05/23 03:56:51 | 001,240,088 | ---- | M] (Google Inc.)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2012/02/29 14:17:40 | 000,174,080 | ---- | M] (Microsoft Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2012/02/29 14:17:40 | 000,174,080 | ---- | M] (Microsoft Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2012/02/29 14:17:40 | 000,174,080 | ---- | M] (Microsoft Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2009/03/08 14:09:26 | 000,638,816 | -HS- | M] (Microsoft Corporation)
    HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2009/03/08 14:09:26 | 000,638,816 | -HS- | M] (Microsoft Corporation)

    < >

    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 99 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:24051EFF
    @Alternate Data Stream - 985 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:KUbI9KEwacOIenGArKEQj3ms0
    @Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F3176E45
    @Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:961B84C5
    @Alternate Data Stream - 1177 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:2Q9t9tKydUOSwzMkapI3Xx
    @Alternate Data Stream - 1126 bytes -> C:\Documents and Settings\mizot\Local Settings\Application Data\1jBxfqBzS:yMmOKnamTSTII9oZt8RJszAx8rGq
    @Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D 1B5B4F1
    @Alternate Data Stream - 1114 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:GNCzYPlDpwj2M5F9u
    @Alternate Data Stream - 1102 bytes -> C:\Documents and Settings\mizot\Local Settings\Application Data\eTOPtiR8vi:3QX9nHagBBx2DuLJmB0p8wcj
    @Alternate Data Stream - 1078 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:s1pq7lb5DGgtbYZ8AqXw5Q
    @Alternate Data Stream - 1074 bytes -> C:\Program Files\Outlook Express:Gex7hUVuuGOCK8vLvtwf
    @Alternate Data Stream - 1052 bytes -> C:\Program Files\Fichiers communs\System:wKHEYeqpFiHJ3jjKMRMwB

    < End of report >
    4 Juin 2012 15:49:19

    OTL Extras logfile created on: 04/06/2012 15:12:01 - Run 8
    OTL by OldTimer - Version 3.2.43.1 Folder = D:\
    Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

    3,25 Gb Total Physical Memory | 2,52 Gb Available Physical Memory | 77,44% Memory free
    5,09 Gb Paging File | 4,54 Gb Available in Paging File | 89,22% Paging File free
    Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 97,65 Gb Total Space | 3,23 Gb Free Space | 3,31% Space Free | Partition Type: NTFS
    Drive D: | 368,10 Gb Total Space | 110,64 Gb Free Space | 30,06% Space Free | Partition Type: NTFS
    Drive L: | 2,96 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

    Computer Name: MIMEME-EEC47B12 | User Name: mizot | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: All users
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    ========== Extra Registry (SafeList) ==========


    ========== File Associations ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    .html [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found

    [HKEY_USERS\S-1-5-21-1960408961-1788223648-1801674531-1003\SOFTWARE\Classes\<extension>]
    .html [@ = ChromeHTML] -- Reg Error: Key error. File not found

    ========== Shell Spawning ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    exefile [open] -- "%1" %*
    htmlfile [edit] -- Reg Error: Key error.
    http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1"
    https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1"
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
    Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
    Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

    ========== Security Center Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "FirstRunDisabled" = 1
    "AntiVirusDisableNotify" = 0
    "FirewallDisableNotify" = 0
    "UpdatesDisableNotify" = 0
    "AntiVirusOverride" = 0
    "FirewallOverride" = 0

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

    ========== System Restore Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
    "DisableSR" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
    "Start" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
    "Start" = 2

    ========== Firewall Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
    "EnableFirewall" = 1

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
    "26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
    "58191:TCP" = 58191:TCP:*:Enabled:p ando Media Booster
    "58191:UDP" = 58191:UDP:*:Enabled:p ando Media Booster

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    "EnableFirewall" = 1
    "DoNotAllowExceptions" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
    "48113:TCP" = 48113:TCP:LocalSubNet:Enabled:maconfig_tcp
    "48113:UDP" = 48113:UDP:LocalSubNet:Enabled:maconfig_udp
    "9571:TCP" = 9571:TCP:*:Enabled:BitComet 9571 TCP
    "9571:UDP" = 9571:UDP:*:Enabled:BitComet 9571 UDP
    "26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
    "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
    "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
    "58191:TCP" = 58191:TCP:*:Enabled:p ando Media Booster
    "58191:UDP" = 58191:UDP:*:Enabled:p ando Media Booster
    "1139:TCP" = 1139:TCP:*:Enabled:Akamai NetSession Interface
    "5000:UDP" = 5000:UDP:*:Enabled:Akamai NetSession Interface

    ========== Authorized Applications List ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
    "C:\Nexon\Combat Arms EU\CombatArms.exe" = C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe
    "C:\Nexon\Combat Arms EU\Engine.exe" = C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe
    "C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:p ando Media Booster -- ()

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
    "C:\Program Files\BitComet\BitComet.exe" = C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client
    "C:\Program Files\Vuze\Azureus.exe" = C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus
    "C:\Program Files\Skype\Plugin Manager\skypePM.exe" = C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager
    "C:\Program Files\Steinberg\Cubase SX 3\Cubasesx3.exe" = C:\Program Files\Steinberg\Cubase SX 3\Cubasesx3.exe:*:Enabled:Cubase SX
    "C:\Soldat\Soldat.exe" = C:\Soldat\Soldat.exe:*:Enabled:http://soldat.pl
    "C:\Program Files\Wolfenstein - Enemy Territory\ET.exe" = C:\Program Files\Wolfenstein - Enemy Territory\ET.exe:*:Enabled:ET
    "C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe" = C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine -- ()
    "C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe" = C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager -- (Nexon)
    "C:\Nexon\Combat Arms EU\CombatArms.exe" = C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe
    "C:\Nexon\Combat Arms EU\Engine.exe" = C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe
    "C:\Nexon\Combat Arms EU\NMService.exe" = C:\Nexon\Combat Arms EU\NMService.exe:*:Enabled:Nexon Messenger Core
    "C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
    "C:\Documents and Settings\mizot\Mes documents\Téléchargements\IM56245.JPG-www.myspace.com.exe" = C:\WINDOWS\infocard.exe:*:Enabled:Firewall Administrating
    "C:\Program Files\eMule\emule.exe" = C:\Program Files\eMule\emule.exe:*:D isabled:eMule
    "C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour
    "C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server -- (PeeringPortal)
    "C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server -- (PeeringPortal)
    "D:\the witcher\The Witcher 2\bin\witcher2.exe" = D:\the witcher\The Witcher 2\bin\witcher2.exe:*:Enabled:The Witcher 2: Assasins of Kings
    "C:\Documents and Settings\mizot\Local Settings\Temporary Internet Files\Content.IE5\W5C8H84H\SweetImSetup[1].exe" = C:\Documents and Settings\mizot\Local Settings\Temporary Internet Files\Content.IE5\W5C8H84H\SweetImSetup[1].exe:*:Enabled:SweetIM Installer
    "C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
    "C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
    "C:\WINDOWS\system32\muzapp.exe" = C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player -- (Musiccity Co.Ltd.)
    "C:\Program Files\ma-config.com\maconfservice.exe" = C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice -- (CybelSoft)
    "C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:p ando Media Booster -- ()
    "C:\Program Files\Pinnacle\Studio 15\Programs\RM.exe" = C:\Program Files\Pinnacle\Studio 15\Programs\RM.exe:*:Enabled:Render Manager
    "C:\Program Files\Pinnacle\Studio 15\Programs\Studio.exe" = C:\Program Files\Pinnacle\Studio 15\Programs\Studio.exe:*:Enabled:Studio
    "C:\Program Files\Pinnacle\Studio 15\Programs\umi.exe" = C:\Program Files\Pinnacle\Studio 15\Programs\umi.exe:*:Enabled:umi
    "C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe" = C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe:*:Enabled:Render Manager
    "C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe" = C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe:*:Enabled:umi
    "C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe" = C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe:*:Enabled:p innacle VideoSpin
    "C:\Documents and Settings\mizot\Application Data\Dropbox\bin\Dropbox.exe" = C:\Documents and Settings\mizot\Application Data\Dropbox\bin\Dropbox.exe:*:Enabled:D ropbox -- (Dropbox, Inc.)
    "C:\Program Files\Pinnacle\Studio 14\Programs\RM.exe" = C:\Program Files\Pinnacle\Studio 14\Programs\RM.exe:*:Enabled:Render Manager
    "C:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe" = C:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe:*:Enabled:Studio
    "C:\Program Files\Pinnacle\Studio 14\Programs\umi.exe" = C:\Program Files\Pinnacle\Studio 14\Programs\umi.exe:*:Enabled:umi
    "C:\Documents and Settings\mizot\Local Settings\Application Data\Akamai\netsession_win.exe" = C:\Documents and Settings\mizot\Local Settings\Application Data\Akamai\netsession_win.exe:*:Enabled:Akamai NetSession Client -- (Akamai Technologies, Inc)


    ========== HKEY_LOCAL_MACHINE Uninstall List ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
    "{006E6A46-8D55-4F10-BBA8-2C9653B4278B}" = Software Update Helper
    "{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}" = Microsoft Games for Windows - LIVE Redistributable
    "{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
    "{02DC3C69-02AF-47C2-9B68-AA2A69631CF8}" = DigiTech X-Edit 2.4.1
    "{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
    "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
    "{05653DE1-6567-40C6-B930-39D399B64369}" = OpenOffice.org 3.3
    "{08610298-29AE-445B-B37D-EFBE05802967}" = LWS Pictures And Video
    "{0886900B-B2F3-452C-B580-60F1253F7F80}" = Native Instruments Controller Editor
    "{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
    "{0B8565BA-BAD5-4732-B122-5FD78EFC50A9}" = Native Instruments Service Center
    "{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
    "{1099EEAB-C4BC-4F66-980F-2269856A71CD}" = Native Instruments Traktor
    "{133742BA-6F46-4D3E-85AF-78631D9AD8B8}" = Installation Windows Live
    "{138A4072-9E64-46BD-B5F9-DB2BB395391F}" = LWS VideoEffects
    "{147567F0-8575-4BE0-B5B3-62706C67FA5A}" = EZXCocktail
    "{15634701-BACE-4449-8B25-1567DA8C9FD3}" = CameraHelperMsi
    "{15803703-25FA-4C01-A062-3F4A59937E87}" = PhotoImpact X3
    "{1651216E-E7AD-4250-92A1-FB8ED61391C9}" = LWS Help_main
    "{174A3B31-4C43-43DD-866F-73C9DB887B48}" = LWS Twitter
    "{18CABAC3-554E-4C04-B9F7-A7261C87968C}" = S-YXG50 Trial
    "{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
    "{1D76557F-04F5-4CF9-AB20-6A621B0D52D7}" = MyPDFConverter
    "{1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}" = Galerie de photos Windows Live
    "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live
    "{21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}" = LWS YouTube Plugin
    "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
    "{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 22
    "{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1" = ConvertHelper 2.2
    "{2CC4BC82-41CF-43D3-B533-7283AA8BB86F}" = EZXPercussion
    "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
    "{332CC6BF-E6C7-48EE-BA3D-435E576AD67F}" = PaperPort Image Printer
    "{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}" = Firebird SQL Server - MAGIX Edition
    "{3509A07E-54CE-8431-01C4-0562EDE4DAF0}" = CCC Help Greek
    "{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
    "{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT
    "{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
    "{4015B4EC-4959-1834-DB2F-0E6956F865EC}" = Catalyst Control Center Graphics Previews Common
    "{43E8D9E7-AFC9-4BA3-8106-B95E02B87AB7}" = EZdrummer
    "{445B183D-F4F1-45C8-B9DB-F11355CA657B}" = Windows Live Messenger
    "{470BB39A-7231-4077-AD3D-86067AD04604}" = Native Instruments Audio 8 DJ Driver
    "{47107F5F-FDEC-4A01-896C-E76245743F1A}" = X-Edit
    "{490BF87E-1F75-4453-BF55-9F540543A3CA}" = Steinberg Drum Loop Expansion 01
    "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
    "{4A19D6AC-ADE0-4A07-80FF-9C9812C45557}" = Steinberg Cubase 5
    "{4D454CF8-12FD-464D-B57B-B46FE27B78BB}" = Steinberg LoopMash Content
    "{4ECCF06A-1207-4831-984F-DDB4DDE51869}" = Lounge Lizard 2.0 Demo
    "{4FA02B36-1200-D439-EB9E-3797A347B097}" = Catalyst Control Center Localization All
    "{532B917B-8235-4FA5-BE36-643A8BB053A5}" = Steinberg REVerence Content 01
    "{54BD6001-A78E-7BF7-47A4-EAB4F2148212}" = CCC Help German
    "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
    "{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
    "{5A06BC95-C59E-438D-AA8D-A97690AD628C}" = Encore 5
    "{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail
    "{5F41349B-3B01-5EB1-1A74-0AC8DAE032E8}" = CCC Help French
    "{5FD89EA1-99C2-40EE-BBF5-20F8991ED756}" = Catalyst Control Center - Branding
    "{602A205F-8D02-48EE-8782-262B2103B984}" = ScanSoft PDF Converter 3.0
    "{60E6EF39-7286-68D3-204A-C81D0578685E}" = CCC Help Polish
    "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
    "{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
    "{64762C4F-6415-7376-6C8D-4D78A4F0F119}" = CCC Help Spanish
    "{6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}" = LWS Gallery
    "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
    "{71E66D3F-A009-44AB-8784-75E2819BA4BA}" = LWS Motion Detection
    "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
    "{72C1BFA0-E9F1-4513-A09B-BBFB01A5C422}" = MultiMix
    "{745877DC-8FFE-4E4C-ABBC-589B887A47D1}" = Virtual Sound Canvas DXi
    "{75438C0E-9925-412E-AD85-D0E71C6CE2ED}" = Pro cam 2.0
    "{76810709-A7D3-468D-9167-A1780C1E766C}" = Windows Live FolderShare
    "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
    "{7930FB47-6452-4476-BF16-D77F748646DB}" = Native Instruments Session IO Driver
    "{7C66849D-789A-BD10-BC49-A3C70CDB79BC}" = ccc-utility
    "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
    "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
    "{83C8FA3C-F4EA-46C4-8392-D3CE353738D6}" = LWS Launcher
    "{865D9ED1-EAC2-436D-AFA7-0B750EB5AAAB}" = Steinberg HALionOne Studio Drum Set
    "{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    "{8937D274-C281-42E4-8CDB-A0B2DF979189}" = LWS Webcam Software
    "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
    "{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
    "{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
    "{8F161264-A992-623B-5746-5AD0EF1EA516}" = ATI Catalyst Install Manager
    "{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
    "{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
    "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
    "{97C82B44-D408-4F14-9252-47FC1636D23E}_is1" = IZArc 4.1.2
    "{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
    "{99052DB7-9592-4522-A558-5417BBAD48EE}" = Microsoft ActiveSync
    "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    "{9D10CB57-B085-44c3-B435-2D193BA153F0}" = Conseiller de mise à niveau vers Windows 7
    "{9DAEA76B-E50F-4272-A595-0124E826553D}" = LWS WLM Plugin
    "{9FD6F1A8-5550-46AF-8509-271DF0E768B5}" = Dual-Core Optimizer
    "{A1C962E2-2426-49C6-A38B-9A07E40D607C}" = Microsoft Games for Windows - LIVE
    "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
    "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
    "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
    "{A3FEC306-FBFF-4B0D-95B9-F9C67C65079E}" = Brother MFL-Pro Suite
    "{A4EF9D8B-E19B-45ED-BFAF-CB4364574FFF}" = Ma-Config.com
    "{A5D4928E-6B88-40B2-A9BF-E0DD652B43B4}" = Boxore Client
    "{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
    "{AC76BA86-7AD7-1036-7B44-A91000000001}" = Adobe Reader 9.1.3 - Français
    "{AC997F93-0757-4ED4-A701-F40C2D654D09}" = Steinberg HALionOne GM Drum Set
    "{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}" = REALTEK GbE & FE Ethernet PCI NIC Driver
    "{AE95FB22-E586-3B26-B89F-EB92A3B10E04}" = CCC Help Portuguese
    "{B2BB5AAF-D836-4E91-8399-7D6A44D4C5F2}" = Antares Tube 1.02 RTAS PC
    "{B3B487E7-6171-4376-9074-B28082CEB504}" = Windows Live Call
    "{B4691C58-2A6A-4AFA-960E-AEB767639E44}" = PCM Native Reverb VST Plug-in
    "{B6C89654-A6A2-477C-873B-724EC1C56407}" = ScanSoft PaperPort 11
    "{B7CEDF9F-A1EE-119F-0922-BC647F84ABD7}" = CCC Help English
    "{B962AD08-335F-46f7-A182-257D37672E5C}" = Native Instruments Rig Kontrol 3 Driver
    "{BD86F1AC-B594-46E4-85DC-1258AC9E2232}" = Steinberg Groove Agent ONE Content
    "{C096BEBE-5593-35F6-1B83-249D620ED562}" = ccc-core-static
    "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
    "{C427E746-4EC9-4E3C-AACB-C6BB1F714D7F}" = Uniblue DriverScanner 2009
    "{C7FAFC98-5ECC-40FC-B440-A5D5FE3A6A6E}" = Native Instruments Guitar Rig 4
    "{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
    "{CC1DB186-550F-3CFE-A2A9-EBA5E5A34BC1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
    "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
    "{CF1D7323-8A0A-49C7-83B0-088DB90721E2}" = AmpegSVX
    "{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
    "{D0E565B0-03A0-40D9-A514-000634AA58C6}" = KORG Legacy Collection - DIGITAL EDITION
    "{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
    "{D216AE2E-1CA3-C77E-6841-8019A27C158F}" = CCC Help Italian
    "{D23CBFDA-C46B-4920-BA70-FC7878A3F05A}" = Steinberg HALionOne Studio Set
    "{D3120436-1358-4253-9EB2-257FFE8CE1D9}" = Logitech SetPoint 5.20
    "{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software
    "{D416E000-D999-470A-BCAC-98E717CC1AFC}" = VirginMega.Fr Premium
    "{D82CDA0D-C182-42C8-8FF2-5649C98D6003}" = Steinberg HALionOne Pro Set
    "{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
    "{DA22A6BB-10B5-4595-BD59-1AD4023C8536}" = Virtual Sound Canvas VST
    "{DB1299AF-9EE0-422B-959E-F4171B2AE0F7}" = EZXDfh
    "{DBF4BC99-53F1-4C97-84C3-7557D103E182}" = Steinberg Groove Agent ONE Vintage Beatboxes
    "{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live
    "{DD4E18F4-7880-4002-A123-F3820644BA82}" = PCM Native Reverb RTAS Plug-in
    "{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = French App Name
    "{DE45B96D-9D98-F091-2478-E93A153AC9AC}" = ATI AVIVO Codecs
    "{E22AD5D3-EB60-4A8F-835C-6C10E369DCE2}" = Steinberg HALionOne Expression Set
    "{E70E7159-93B1-470D-9FBD-D8E9EF34B538}" = Steinberg HALionOne
    "{E91E8912-769D-42F0-8408-0E329443BABC}" = OvisLink Wireless LAN
    "{E9DFFDE0-9F35-5F8A-9576-02280C8C17F9}" = Catalyst Control Center InstallProxy
    "{EA2D9BC0-75E9-4975-9A0A-DD82198DDC53}" = MSXML 6.0 Parser
    "{EBA39769-95AA-42DA-A3FA-50CCD7D9F7A3}" = DigiTech Preset Converter 3.0
    "{EC9A0711-9823-4DD2-83C4-039886A3ECF6}" = Melodyne 3.2 Demo
    "{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
    "{EED027B7-0DB6-404B-8F45-6DFEE34A0441}" = LWS Video Mask Maker
    "{F057965A-D974-4C64-ADB1-4381CD4B8956}" = Steinberg HALionOne GM Set
    "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
    "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
    "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
    "{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
    "{F3AFD063-8BAD-485E-B641-E7F5A2C5AE71}" = Steinberg HALionOne Additional Content Set 01
    "{F8C20D3C-2FC4-7AB5-B15D-E24B4B7D2F8D}" = CCC Help Hungarian
    "{FA4BACCF-0FAE-42F7-902A-FCBA1E716337}" = DigiTech RP150 Drivers
    "{FE4222BB-74BE-48EC-8314-9CAC9A24F02F}" = DigiTech RP155 Drivers
    "{FF167195-9EE4-46C0-8CD7-FBA3457E88AB}" = LWS Facebook
    "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
    "Adobe AIR" = Adobe AIR
    "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
    "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
    "Adobe Shockwave Player" = Adobe Shockwave Player 11.6
    "Alcatech BPM Studio Professional v4.9.1" = Alcatech BPM Studio Professional v4.9.1
    "AnalogX Vocal Remover" = AnalogX Vocal Remover
    "Antares Autotune Evo VST RTAS_is1" = Antares Autotune Evo VST RTAS v6.0.9
    "Antares Autotune VST_is1" = Antares Autotune VST v5.09
    "Antares Avox 1.06" = Antares Avox 1.06
    "Antares Filter VST DX v1.01" = Antares Filter VST DX v1.01
    "Antares Harmony Engine VST RTAS_is1" = Antares Harmony Engine VST RTAS v1.0
    "Antares Tube 1.02 DirectX" = Antares Tube 1.02 DirectX
    "Applied Accoustics UltraAnalog VA-1 v1.01" = Applied Accoustics UltraAnalog VA-1 v1.01
    "ArtsAcoustic Reverb" = ArtsAcoustic Reverb 1.5.0.5
    "Arturia Arp2600 V v1.0" = Arturia Arp2600 V v1.0
    "Arturia Moog Modular V2 v1.0" = Arturia Moog Modular V2 v1.0
    "ASAPI Update" = ASAPI Update
    "ASIO4ALL" = ASIO4ALL
    "ATI Display Driver" = ATI Display Driver
    "Atmosphere_is1" = Atmosphere
    "avast" = avast! Internet Security
    "AVS Screen Capture_is1" = AVS Screen Capture version 1.1.2
    "AVS Update Manager_is1" = AVS Update Manager 1.0
    "AVS Video Editor_is1" = AVS Video Editor 5
    "AVS Video Recorder_is1" = AVS Video Recorder 2.4
    "AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
    "BabylonToolbar" = Babylon toolbar on IE
    "BB_is1" = Band-in-a-Box 2009 (Build 279)
    "BFGC" = Big Fish Games: Game Manager
    "Brainworx BX Digital VST_is1" = Brainworx BX Digital VST v1.09
    "broomstickbass-1.0.0" = Broomstick Bass 1.0.0
    "BrowserCompanion" = BrowserCompanion
    "BusinessCardsMX3_is1" = BusinessCardsMX 3.99
    "CCleaner" = CCleaner
    "chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
    "Clean Virus MSN_is1" = Clean Virus MSN
    "com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = French App Name
    "DAEMON Tools Lite" = DAEMON Tools Lite
    "DAEMON Tools Toolbar" = DAEMON Tools Toolbar
    "DigiTech RP150 Drivers" = DigiTech RP150 Drivers
    "DigiTech RP155 Drivers" = DigiTech RP155 Drivers
    "DivX Setup" = Configuration DivX
    "Edirol Hyper Canvas" = Edirol Hyper Canvas
    "Edirol Hyper Canvas VSTi DXi_is1" = Edirol Hyper Canvas VSTi DXi 1.6.0
    "Edirol Super Quartet" = Edirol Super Quartet
    "eLicenser Control" = eLicenser Control
    "eType Toolbar" = eType Toolbar
    "Evonsoft Computer Repair_is1" = Evonsoft Computer Repair 1.0
    "ffdshow_is1" = ffdshow [rev 2527] [2008-12-19]
    "FLVTube Player" = FLVTube Player
    "Free 3GP Video Converter_is1" = Free 3GP Video Converter version 4.0.4.920
    "Free PDF to Word Converter_is1" = Free PDF to Word Converter 1.5
    "FXpansion DR-008 v1.21" = FXpansion DR-008 v1.21
    "ie8" = Windows Internet Explorer 8
    "InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
    "InstallShield_{15803703-25FA-4C01-A062-3F4A59937E87}" = PhotoImpact X3
    "InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
    "iZotope Ozone 4_is1" = iZotope Ozone 4
    "MAGIX Video deluxe 2008 e-version F" = MAGIX Video deluxe 2008 e-version 7.0.3.0 (F)
    "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.61.0.1400
    "Maple Virtual Midi Cable_is1" = Hurchalla Maple VMidi Cable v3.56
    "Mastering Edition 1.5" = Mastering Edition 1.5
    "MeldaProduction MDrummer 2 Large" = MeldaProduction MDrummer 3 Large
    "Messenger Plus!" = Messenger Plus! 5
    "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
    "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
    "MSNFix 1.735_is1" = MSNFix 1.735
    "MU Technologies MU Voice VST RTAS_is1" = MU Technologies MU Voice VST RTAS v1.1.1
    "mv61xxDriver" = marvell 61xx
    "N.I Pro-53 v3.0-OxYGeN" = N.I Pro-53 v3.0-OxYGeN
    "Native Instruments Absynth 4" = Native Instruments Absynth 4
    "Native Instruments Audio 8 DJ Driver" = Native Instruments Audio 8 DJ Driver
    "Native Instruments B4 II" = Native Instruments B4 II
    "Native Instruments Controller Editor" = Native Instruments Controller Editor
    "Native Instruments FM8" = Native Instruments FM8
    "Native Instruments Guitar Rig 4" = Native Instruments Guitar Rig 4
    "Native Instruments Massive v1.0.1.008 VSTi DXi RTAS" = Native Instruments Massive v1.0.1.008 VSTi DXi RTAS
    "Native Instruments Rig Kontrol 3 Driver" = Native Instruments Rig Kontrol 3 Driver
    "Native Instruments Service Center" = Native Instruments Service Center
    "Native Instruments Session IO Driver" = Native Instruments Session IO Driver
    "Native Instruments Traktor" = Native Instruments Traktor
    "PCM Native Reverb RTAS Plug-in" = PCM Native Reverb RTAS Plug-in
    "PCM Native Reverb VST Plug-in" = PCM Native Reverb VST Plug-in
    "PG Music DirectX Plugins_is1" = PG Music DirectX Plugins 2.0.0.0
    "PitchWorks DX" = PitchWorks remove
    "RBC Audio Voice Tweaker Lite" = RBC Audio Voice Tweaker Lite V3.02
    "ReFX JunoX2 VSTi v1.51" = ReFX JunoX2 VSTi v1.51
    "reFX Nexus_is1" = reFX Nexus VSTi RTAS v2.2.0
    "SCLS" = MSU Screen Capture Lossless Codec v1.2 (Remove Only)
    "SIA SmaartLive v5.4.0.0" = SIA SmaartLive v5.4.0.0
    "Synth1" = Synth1
    "UltraISO_is1" = UltraISO Premium V9.35
    "uTorrent" = µTorrent
    "UVI Workstation_is1" = UVI Workstation 1.1.7
    "VLC media player" = VLC media player 1.0.2
    "Wave Arts Master Restoration" = Wave Arts Master Restoration
    "Wave Arts Master Restoration 64" = Wave Arts Master Restoration 64
    "WaveLabPro" = WaveLab 6
    "Waves GTR 3" = Waves GTR 3
    "Waves Mercury Bundle" = Waves Mercury Bundle
    "Waves SSL Collection v1.2" = Waves SSL Collection v1.2
    "Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
    "Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
    "Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
    "Windows Media Format Runtime" = Windows Media Format 11 runtime
    "Windows Media Player" = Lecteur Windows Media 11
    "WinLiveSuite_Wave3" = Installation Windows Live
    "WinRAR archiver" = Logiciel d'archivage WinRAR
    "WMFDist11" = Windows Media Format 11 runtime
    "wmp11" = Windows Media Player 11
    "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
    "X-Edit" = X-Edit
    "Xvid_is1" = Xvid 1.2.2 final uninstall

    ========== HKEY_USERS Uninstall List ==========

    [HKEY_USERS\S-1-5-21-1960408961-1788223648-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "Akamai" = Akamai NetSession Interface
    "Dropbox" = Dropbox
    "FileHunter" = FileHunter
    "Game Organizer" = EasyBits GO
    "Google Chrome" = Google Chrome
    "MediaGet" = MediaGet
    "MyFreeCodec" = MyFreeCodec

    ========== Last 10 Event Log Errors ==========

    [ Application Events ]
    Error - 03/04/2012 05:13:01 | Computer Name = MIMEME-EEC47B12 | Source = Application Error | ID = 1000
    Description = Application défaillante cubase5.exe, version 5.1.1.120, module défaillant
    cubase plug-in set.vst3, version 2.0.3.250, adresse de défaillance 0x001d4226.

    Error - 03/04/2012 05:18:47 | Computer Name = MIMEME-EEC47B12 | Source = Application Error | ID = 1000
    Description = Application défaillante cubase5.exe, version 5.1.1.120, module défaillant
    cubase plug-in set.vst3, version 2.0.3.250, adresse de défaillance 0x001d4226.

    Error - 04/04/2012 03:17:28 | Computer Name = MIMEME-EEC47B12 | Source = PerfNet | ID = 2005
    Description = Impossible de lire les données de performance du Service serveur. Aucune
    donnée de performance du serveur ne sera renvoyée pour cet extrait. Le code d'erreur
    renvoyé est la donnée DWORD 0, IOSB.Status est DWORD 1 et IOSB.Information est DWORD
    2.

    Error - 04/04/2012 03:17:28 | Computer Name = MIMEME-EEC47B12 | Source = PerfNet | ID = 2006
    Description = Impossible de lire les données de performance de la file d'attente
    serveur du Service serveur. Aucune donnée de performance de la file d'attente serveur
    ne
    sera renvoyée pour cet extrait. Le code d'erreur renvoyé est la donnée DWORD 0,
    IOSB.Status est DWORD 1 et IOSB.Information est DWORD 2.

    Error - 13/04/2012 07:26:37 | Computer Name = MIMEME-EEC47B12 | Source = Application Error | ID = 1000
    Description = Application défaillante wmpenc.exe, version 11.0.5721.5145, module
    défaillant me spectrograph wl.dll, version 1.5.0.6, adresse de défaillance 0x0000a019.

    Error - 17/04/2012 07:29:56 | Computer Name = MIMEME-EEC47B12 | Source = Application Error | ID = 1000
    Description = Application défaillante cubase5.exe, version 5.1.1.120, module défaillant
    cubase5.exe, version 5.1.1.120, adresse de défaillance 0x00c25aba.

    Error - 17/04/2012 07:44:31 | Computer Name = MIMEME-EEC47B12 | Source = Application Error | ID = 1000
    Description = Application défaillante cubase5.exe, version 5.1.1.120, module défaillant
    cubase5.exe, version 5.1.1.120, adresse de défaillance 0x00c25aba.

    Error - 17/04/2012 10:57:19 | Computer Name = MIMEME-EEC47B12 | Source = Application Error | ID = 1000
    Description = Application défaillante cubase5.exe, version 5.1.1.120, module défaillant
    unknown, version 0.0.0.0, adresse de défaillance 0x0c014f14.

    Error - 17/04/2012 11:00:39 | Computer Name = MIMEME-EEC47B12 | Source = Application Error | ID = 1000
    Description = Application défaillante cubase5.exe, version 5.1.1.120, module défaillant
    unknown, version 0.0.0.0, adresse de défaillance 0x0c014f14.

    Error - 17/04/2012 11:24:00 | Computer Name = MIMEME-EEC47B12 | Source = MsiInstaller | ID = 11334
    Description = Produit : Steinberg Cubase 5 -- Erreur 1334. Le fichier 'VST3PR_Gate_424'
    ne peut pas être installé car le fichier est introuvable dans le fichier CAB 'InstallFiles.cab'.
    Il s'agit peut-être d'une erreur réseau, d'une erreur de lecture du CD-ROM ou d'un
    problème lié au package.

    [ System Events ]
    Error - 01/06/2012 05:49:38 | Computer Name = MIMEME-EEC47B12 | Source = W32Time | ID = 39452701
    Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps
    à partir d'une ou plusieurs sources de temps, cependant aucune source n'est actuellement
    accessible. Aucune tentative pour en contacter une ne sera effectuée d'ici 14 minutes.
    NtpClient
    n'a pas de source de temps précis.

    Error - 01/06/2012 05:49:38 | Computer Name = MIMEME-EEC47B12 | Source = W32Time | ID = 39452689
    Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de
    la recherche DNS de l'homologue manuellement configuré 'time.windows.com,0x1'. NtpClient
    va essayer à nouveau la recherche DNS dans 15 minutes. L'erreur était : Une opération
    a été tentée sur un hôte impossible à atteindre. (0x80072751)

    Error - 01/06/2012 05:49:38 | Computer Name = MIMEME-EEC47B12 | Source = W32Time | ID = 39452701
    Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps
    à partir d'une ou plusieurs sources de temps, cependant aucune source n'est actuellement
    accessible. Aucune tentative pour en contacter une ne sera effectuée d'ici 15 minutes.
    NtpClient
    n'a pas de source de temps précis.

    Error - 01/06/2012 05:49:40 | Computer Name = MIMEME-EEC47B12 | Source = Service Control Manager | ID = 7026
    Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
    charger : oreans32

    Error - 02/06/2012 04:02:20 | Computer Name = MIMEME-EEC47B12 | Source = W32Time | ID = 39452689
    Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de
    la recherche DNS de l'homologue manuellement configuré 'time.windows.com,0x1'. NtpClient
    va essayer à nouveau la recherche DNS dans 15 minutes. L'erreur était : Une opération
    a été tentée sur un hôte impossible à atteindre. (0x80072751)

    Error - 02/06/2012 04:02:20 | Computer Name = MIMEME-EEC47B12 | Source = W32Time | ID = 39452701
    Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps
    à partir d'une ou plusieurs sources de temps, cependant aucune source n'est actuellement
    accessible. Aucune tentative pour en contacter une ne sera effectuée d'ici 14 minutes.
    NtpClient
    n'a pas de source de temps précis.

    Error - 02/06/2012 04:02:20 | Computer Name = MIMEME-EEC47B12 | Source = W32Time | ID = 39452689
    Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de
    la recherche DNS de l'homologue manuellement configuré 'time.windows.com,0x1'. NtpClient
    va essayer à nouveau la recherche DNS dans 15 minutes. L'erreur était : Une opération
    a été tentée sur un hôte impossible à atteindre. (0x80072751)

    Error - 02/06/2012 04:02:20 | Computer Name = MIMEME-EEC47B12 | Source = W32Time | ID = 39452701
    Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps
    à partir d'une ou plusieurs sources de temps, cependant aucune source n'est actuellement
    accessible. Aucune tentative pour en contacter une ne sera effectuée d'ici 15 minutes.
    NtpClient
    n'a pas de source de temps précis.

    Error - 02/06/2012 04:02:21 | Computer Name = MIMEME-EEC47B12 | Source = Service Control Manager | ID = 7026
    Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
    charger : oreans32

    Error - 04/06/2012 08:58:49 | Computer Name = MIMEME-EEC47B12 | Source = Service Control Manager | ID = 7026
    Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
    charger : oreans32


    < End of report >
    a b 8 Sécurité
    4 Juin 2012 17:26:48

    Re,

    Citation :
    Rq : Pour les rapports, merci d'utiliser ce service de rapport en ligne : dépose le fichier via "parcourir" et poste simplement le lien obtenu dans ta réponse. En ças de problème, voir cette aide à l'utilisation ici.
    15 Juin 2012 14:57:49

    desolé je n'arrive pas a utiliser le service ca ne veux pas fonctionner
    a b 8 Sécurité
    16 Juin 2012 13:46:49

    Tu peux essayer le site cjoint par exemple aussi
    17 Juin 2012 16:41:59

    ? ne voit rien desolé
    a b 8 Sécurité
    17 Juin 2012 17:34:31

    Tu vas sur le site cjoint.fr, tu héberges tes rapports puis tu me donnes les liens :) 
    a b 8 Sécurité
    20 Juin 2012 21:48:02

    Re,

    Tu as des adwares que tu as volontairement installé en installant tout et n'importe quoi : http://forum.security-x.fr/securite-generale/stop-la-pu...
    Si tu évitais les torrent, ton pc irait plus vite..

    • Sur cette page AdwCleaner (de Xplode) , clique sur l'image de téléchargement et enregistre le fichier sur ton Bureau.
    • Double-clique sur l'icône AdwCleaner0.exe pour lancer l'installation.
      /!\ Sous Vista et Windows 7, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur. Et sous IE9, le filtre SmartScreen déclenche une alerte, clique sur Actions puis sur Exécuter quand même /!\
    • Sur le menu principal, clique sur Suppression et patiente le temps de l'analyse
    • A la fin, un rapport AdwCleaner[S1].txt s'ouvre. Poste le rapport en pièce jointe dans ta prochaine réponse

  • Rq : le rapport se trouve sous C:\AdwCleaner[S1].txt
    21 Juin 2012 10:12:01

    # AdwCleaner v1.609 - Rapport créé le 21/06/2012 à 10:00:46
    # Mis à jour le 10/06/2012 par Xplode
    # Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
    # Nom d'utilisateur : mizot - MIMEME-EEC47B12
    # Exécuté depuis : D:\adwcleaner.exe
    # Option [Suppression]


    ***** [Services] *****

    Arrêté & Supprimé : supdate
    Arrêté & Supprimé : Updater Service for eType Toolbar

    ***** [Fichiers / Dossiers] *****

    Dossier Supprimé : C:\Documents and Settings\mizot\Local Settings\Application Data\Babylon
    Dossier Supprimé : C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jeaihkehdlhkocphopopahkfjcfcphef
    Dossier Supprimé : C:\Documents and Settings\mizot\Local Settings\Application Data\MessengerPlusLive_France_TB
    Dossier Supprimé : C:\Documents and Settings\mizot\Local Settings\Application Data\moovida air
    Dossier Supprimé : C:\Documents and Settings\mizot\Local Settings\Application Data\OpenCandy
    Dossier Supprimé : C:\Documents and Settings\mizot\AppData\LocalLow\bbrs_002.tb
    Dossier Supprimé : C:\Documents and Settings\mizot\Application Data\Babylon
    Dossier Supprimé : C:\Documents and Settings\mizot\Application Data\BabylonToolbar
    Dossier Supprimé : C:\Documents and Settings\mizot\Application Data\eType
    Dossier Supprimé : C:\Documents and Settings\mizot\Application Data\moovida-1
    Dossier Supprimé : C:\Documents and Settings\mizot\Application Data\OfferBox
    Dossier Supprimé : C:\Documents and Settings\mizot\Application Data\OpenCandy
    Dossier Supprimé : C:\Documents and Settings\All Users\Application Data\Babylon
    Dossier Supprimé : C:\Program Files\BabylonToolbar
    Dossier Supprimé : C:\Program Files\Boxore
    Dossier Supprimé : C:\Program Files\BrowserCompanion
    Dossier Supprimé : C:\Program Files\eType Toolbar
    Dossier Supprimé : C:\Program Files\Iminent
    Dossier Supprimé : C:\Program Files\MessengerPlusLive_France_TB
    Fichier Supprimé : C:\Program Files\Mozilla Firefox\searchplugins\fcmdSrch.xml

    ***** [Registre] *****

    Clé Supprimée : HKCU\Software\BabylonToolbar
    Clé Supprimée : HKCU\Software\BrowserCompanion
    Clé Supprimée : HKCU\Software\eType Toolbar
    Clé Supprimée : HKCU\Software\Headlight
    Clé Supprimée : HKCU\Software\Iminent
    Clé Supprimée : HKCU\Software\PCTuto
    Clé Supprimée : HKCU\Software\Softonic
    Clé Supprimée : HKCU\Software\SweetIm
    Clé Supprimée : HKCU\Software\Zugo
    Clé Supprimée : HKLM\SOFTWARE\Babylon
    Clé Supprimée : HKLM\SOFTWARE\BabylonToolbar
    Clé Supprimée : HKLM\SOFTWARE\Boxore
    Clé Supprimée : HKLM\SOFTWARE\BrowserCompanion
    Clé Supprimée : HKLM\SOFTWARE\eType Toolbar
    Clé Supprimée : HKLM\SOFTWARE\Iminent
    Clé Supprimée : HKLM\SOFTWARE\PCTuto
    Clé Supprimée : HKLM\SOFTWARE\Software
    Clé Supprimée : HKLM\SOFTWARE\SweetIM
    Clé Supprimée : HKLM\SOFTWARE\Classes\b
    Clé Supprimée : HKLM\SOFTWARE\Classes\Babylon.dskBnd
    Clé Supprimée : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
    Clé Supprimée : HKLM\SOFTWARE\Classes\bbylnApp.appCore
    Clé Supprimée : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
    Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
    Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
    Clé Supprimée : HKLM\SOFTWARE\Classes\LinkurySmartBar.DockingPanel
    Clé Supprimée : HKLM\SOFTWARE\Classes\LinkurySmartBar.LinkurySmartBar
    Clé Supprimée : HKLM\SOFTWARE\Classes\Software.OneClickCtrl.8
    Clé Supprimée : HKLM\SOFTWARE\Classes\SoftwareUpdate.CoreClass
    Clé Supprimée : HKLM\SOFTWARE\Classes\SoftwareUpdate.CoreClass.1
    Clé Supprimée : HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassMachine
    Clé Supprimée : HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassMachine.1.0
    Clé Supprimée : HKLM\SOFTWARE\Classes\tdataprotocol.CTData
    Clé Supprimée : HKLM\SOFTWARE\Classes\tdataprotocol.CTData.1
    Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.BandObject
    Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.BandObject.1
    Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.ToolbarHelperObject
    Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.ToolbarHelperObject.1
    Clé Supprimée : HKLM\SOFTWARE\Classes\updatebho.TimerBHO
    Clé Supprimée : HKLM\SOFTWARE\Classes\updatebho.TimerBHO.1
    Clé Supprimée : HKLM\SOFTWARE\Classes\wit4ie.WitBHO
    Clé Supprimée : HKLM\SOFTWARE\Classes\wit4ie.WitBHO.2
    Clé Supprimée : HKLM\SOFTWARE\Classes\ZGClnt.Mngr
    Clé Supprimée : HKLM\SOFTWARE\Classes\ZGClnt.Mngr.1
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\PCTutoBHO.DLL
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\tdataprotocol.DLL
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\Toolbar.DLL
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\ToolbarBroker.EXE
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\updatebho.DLL
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\wit4ie.DLL
    Clé Supprimée : HKLM\SOFTWARE\Classes\Installer\Features\64A6E60055D801F4BB8AC269354B72B8
    Clé Supprimée : HKLM\SOFTWARE\Classes\Installer\Products\64A6E60055D801F4BB8AC269354B72B8
    Clé Supprimée : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160
    Clé Supprimée : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\BA086F2D38A8E1A47912955A68B3AD24
    Clé Supprimée : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\base64
    Clé Supprimée : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\chrome
    Clé Supprimée : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\prox
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\BA086F2D38A8E1A47912955A68B3AD24
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43
    Clé Supprimée : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.software.oneclickctrl.8
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\pricegong
    Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\jeaihkehdlhkocphopopahkfjcfcphef
    Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Rechercher sur le Web
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{006E6A46-8D55-4F10-BBA8-2C9653B4278B}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BrowserCompanion
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\eType Toolbar
    Clé Supprimée : HKCU\Software\MozillaPlugins\boxore.com/BoxorePlugin
    Clé Supprimée : HKLM\SOFTWARE\MozillaPlugins\@www.dlmanager.net/omaha/tools//Software Update;version=8
    Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Boxore Client]
    Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Browser companion helper]
    Valeur Supprimée : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{9CD2384C-143B-4790-A075-E7FEFE2A554B}]

    ***** [Registre - GUID] *****

    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{32451DFC-C23B-4E12-866C-FC7982238504}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{759F1421-4D31-4C1F-8C51-E4956A037676}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{7E8A36EA-2501-4ED3-A3C8-CFA9143FB169}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{FAA8C612-F1B6-461B-8B60-B54D74D9642E}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{00CBB66B-1D3B-46D3-9577-323A336ACB50}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{092A2C6B-43EE-4F9F-8F8E-14ED5E11C14B}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{257A6158-1416-4B31-9BF8-29FF49F3814F}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{2CBD2A57-2FD5-4F1A-9FC8-90ED48FA4187}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{32451DFC-C23B-4E12-866C-FC7982238504}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{5ACE96C0-C70A-4A4D-AF14-2E7B869345E1}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{7555B87D-D711-48B2-B97D-04DF700652BA}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{7D9463CD-BBD8-42F4-AB72-D7B1191D9F3D}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{963B125B-8B21-49A2-A3A8-E37092276531}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{AC5C4189-A8A0-4C9D-8910-C9CEF8360077}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{BDE58274-7A2A-4682-8C47-A379DD9E36CB}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{1C888195-0160-4883-91B7-294C0CE2F277}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{736EF78E-5A04-46F9-893E-EDEC6EA5DF45}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{7A1BCE27-099C-4628-B63A-AEC00C6376B3}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{817923CB-4744-4216-B250-CF7EDA8F1767}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{99ACA0F7-D864-45CB-8C40-FD42A077E7CA}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9F0C17EB-EF2C-4278-9136-2D547656BC03}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{AF3AFF7C-B9E9-48DD-9002-212B6DEAAC02}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DBE82879-914A-422F-BAE9-2ECC80BE536F}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E12D7149-73EF-45E4-A1E9-99FD7DAE62D3}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E65F40C8-3CEB-47C2-9E01-BF73323DF4E7}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{F2B184F1-547C-4EE9-BFC4-AC489C7077D9}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{38BF9661-BDA0-4A74-BB3B-576EC7AE16DC}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{6857AC4A-95B4-4E2C-B2D2-8A235FCCEF4A}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{830B56CB-FD22-44AA-9887-7898F4F4158D}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{8830DDF0-3042-404D-A62C-384A85E34833}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{955B782E-CDC8-4CEE-B6F6-AD7D541A8D8A}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{E2E2DD38-D088-4134-82B7-F2BA38496583}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2CBD2A57-2FD5-4F1A-9FC8-90ED48FA4187}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7555B87D-D711-48B2-B97D-04DF700652BA}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
    Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
    Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0D7562AE-8EF6-416D-A838-AB665251703A}
    Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
    Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
    Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{FD5CD67F-DA82-6C3B-A049-4E82BBB6B6E2}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00CBB66B-1D3B-46D3-9577-323A336ACB50}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7D9463CD-BBD8-42F4-AB72-D7B1191D9F3D}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{963B125B-8B21-49A2-A3A8-E37092276531}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7555B87D-D711-48B2-B97D-04DF700652BA}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{64182481-4F71-486B-A045-B233BD0DA8FC}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7D9463CD-BBD8-42F4-AB72-D7B1191D9F3D}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BDE58274-7A2A-4682-8C47-A379DD9E36CB}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DB4E9724-F518-4DFD-9C7C-78B52103CAB9}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201F27D4-3704-41D6-89C1-AA35E39143ED}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64182481-4F71-486B-A045-B233BD0DA8FC}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E15D3C4-C6FC-4F02-B130-77CC5B1F09DB}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7D9463CD-BBD8-42F4-AB72-D7B1191D9F3D}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{963B125B-8B21-49A2-A3A8-E37092276531}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B9E20919-FA55-471F-989B-B107BF8DE785}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BDE58274-7A2A-4682-8C47-A379DD9E36CB}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DB4E9724-F518-4DFD-9C7C-78B52103CAB9}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E2E2DD38-D088-4134-82B7-F2BA38496583}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35D-6118-11DC-9C72-001320C79847}
    Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
    Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
    Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{BDE58274-7A2A-4682-8C47-A379DD9E36CB}]
    Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]

    ***** [Navigateurs] *****

    -\\ Internet Explorer v8.0.6001.18702

    Remplacé : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.babylon.com/?babsrc=HP_Prot --> hxxp://www.google.com
    Remplacé : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page Restore] = hxxp://isearch.babylon.com/?babsrc=HP_ss&affID=18474&mntrId=ecf4b0500000000000000019dbf30578 --> hxxp://www.google.com
    Remplacé : [HKCU\Software\Microsoft\Internet Explorer\Search - Default_Search_URL] = hxxp://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus --> hxxp://www.google.com
    Remplacé : [HKCU\Software\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus --> hxxp://www.google.com
    Remplacé : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://start.facemoods.com/?a=bfus&s={searchTerms}&f=4 --> hxxp://www.google.com

    -\\ Google Chrome v19.0.1084.56

    Fichier : C:\Documents and Settings\mizot\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

    Supprimée : "homepage": "hxxp://www.etypestart.com/?src=startpage&provider=&provider_na...[...]
    Supprimée : "urls_to_restore_on_startup": [ "hxxp://www.etypestart.com/?src=startpage&provider=&provide[...]
    Supprimée : "homepage": "hxxp://www.etypestart.com/?src=startpage&provider=&provider_na...[...]
    Supprimée : "urls_to_restore_on_startup": [ "hxxp://www.etypestart.com/?src=startpage&provider=&provider_n[...]

    *************************

    AdwCleaner[R1].txt - [21451 octets] - [21/06/2012 09:41:01]
    AdwCleaner[S1].txt - [21717 octets] - [21/06/2012 10:00:46]

    ########## EOF - C:\AdwCleaner[S1].txt - [21846 octets] ##########
    a b 8 Sécurité
    21 Juin 2012 11:44:12

    C'est gentil de me balancer uniquement des rapports mais on n'est pas des robots, on aimerait bien savoir comment ça se passe..
    21 Juin 2012 12:00:24

    desole lol ca a l'air d'aller beaucoup mieux y'a t'il autre chose a faire encore merci
    a b 8 Sécurité
    21 Juin 2012 12:02:03

    Refais une analyse OTL on va voir ce qu'il reste.
    a b 8 Sécurité
    21 Juin 2012 12:43:32

    Deux trois trucs inutiles.

    Désinstalle si possible : Media Booster/Pando Networks

    • Relance OTL.exe
    • Ferme toutes tes fenêtres, puis double clique sur OTL.exe pour le lancer.
      (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")
      /!\ Attention, utilisateur d'Avast!, ne lancez pas OTL en mode sandbox /!\
    • Copie-colle l'ensemble du texte ci-dessous dans le cadre Personnalisation d'OTL en bas à gauche :

      :OTL
      DRV - (ZMGHPAudioSrv) -- system32\drivers\zmghpau.sys File not found
      DRV - (XDva361) -- C:\WINDOWS\system32\XDva361.sys File not found
      DRV - (XDva359) -- C:\WINDOWS\system32\XDva359.sys File not found
      DRV - (XDva358) -- C:\WINDOWS\system32\XDva358.sys File not found
      DRV - (WDICA) -- File not found
      DRV - (PDRFRAME) -- File not found
      DRV - (PDRELI) -- File not found
      DRV - (PDFRAME) -- File not found
      DRV - (PDCOMP) -- File not found
      DRV - (PCIDump) -- File not found
      DRV - (oreans32) -- C:\WINDOWS\system32\drivers\oreans32.sys File not found
      DRV - (lbrtfdc) -- File not found
      DRV - (i2omgmt) -- File not found
      DRV - (EagleNT) -- C:\WINDOWS\system32\drivers\EagleNT.sys File not found
      DRV - (cpuz132) -- C:\DOCUME~1\mizot\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys File not found
      DRV - (Changer) -- File not found
      IE - HKCU\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms}
      FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
      O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
      O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMBalloonTip = 0

      :Files
      C:\Program Files\Pando Networks

      :Commands
      [emptytemp]

    • Puis clique sur le bouton Correction en haut à gauche.
    • Le pc va redémarrer (si ce n'est pas le cas, fais-le manuellement).
    • Poste le rapport de suppression s'il apparait.

  • Note : le rapport est enregistré sous format .log, il convient de changer cette extension en .txt si tu veux le déposer sur des sites en ligne. S'il n'apparait pas, il se trouve ici : C:\_OTL, sous la forme xxxxxxxx_xxxx.log où x sont la date et l'heure.
    /!\ Ce script est exclusivement réservé à l'utilisateur actuel du sujet, vous ne devez en aucun cas l'utiliser de votre propre chef sur un autre pc, sous risque d'endommager le système /!\

    &

    • Télécharge SX Check&Update (de igor 51) sur ton Bureau.
      /!\ Désactive ton anti-virus et ferme toutes applications en cours /!\
      (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")

    • Double-clique sur SXC&U.exe situé sur ton Bureau pour le lancer.
    • Au menu principal, clique sur le bouton Update Flash et installe la nouvelle version Flash Player pour tous les navigateurs.
    • Ensuite, clique sur le bouton Update Java et Adobe Reader pour installer la dernière version proposée.
      /!\ Lors des installations, pense à décocher les cases d'installation pour des toolbars et autres /!\
    • Au menu principal, choisis l'option Rapport.
    • Poste le rapport qui s'affiche à ton écran.


  • On va s'occuper de supprimer les logiciels de désinfection maintenant :
    • Sur cette page DelFix (de Xplode) , clique sur bouton de téléchargement et enregistre le fichier sur ton Bureau.
    • Lance le programme puis clique sur Suppression puis poste le rapport.

  • /!\ Pour ne plus avoir ce genre de problème, il est capital de respecter les règles du dossier Prévention & Protection /!\
    a b 8 Sécurité
    22 Juin 2012 11:01:50

    Tu peux faire des phrases où c'est trop te demander ?
    Surtout si c'est pour pas faire ce que je demande...
    22 Juin 2012 14:48:56

    bonjour
    je n'ai pas reussi a faire de correction le pc c'est bloqué je poste le rapport de SX Check&Update


    SX Check&Update
    Lien vers le tutoriel : http://forum.security-x.fr/tutoriels-317/tutoriel-sx-ch...
    ---
    Windows Version : Windows XP 32 bits
    Service Pack : 3
    UserName : mizot
    22/06/2012
    14:46:49
    version = v0.2.4
    ---
    Windows Update Information :
    AUOptions : 4
    Automatically, no notification
    ---
    Name : FlashPlayer ActiveX
    Version : 10.1.53.64
    Flash Player ActiveX n'est pas à jour! (11.3.300.257)

    Name : FlashPlayer Plugin
    Version : 10.1.53.64
    Flash Player Plugin n'est pas à jour! (11.3.300.257)

    Java Information :
    Nom : Java(TM) 6 Update 33
    Version : 6.0.330
    Java(TM) 6 Update 33 n'est pas à jour! (6.0.320)

    Name : Adobe Reader 9.2 - Français
    Version : 9.2.0
    Adobe Reader n'est pas à jour! (9.5.1)

    Name : Spelling Dictionaries Support For Adobe Reader 9
    Version : 9.0.0
    Adobe Reader n'est pas à jour! (9.5.1)

    Nom : Internet Explorer
    Version : 8.0.6001.18702
    22 Juin 2012 14:50:39

    ici le rapport de delfix cordialement


    # DelFix v8.8 - Rapport créé le 22/06/2012 à 14:49:32
    # Mis à jour le 12/02/12 par Xplode
    # Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
    # Nom d'utilisateur : mizot - MIMEME-EEC47B12 (Administrateur)
    # Exécuté depuis : C:\Documents and Settings\mizot\Mes documents\Downloads\delfix.exe
    # Option [Suppression]


    ~~~~~~ Dossiers(s) ~~~~~~

    Supprimé : C:\Program Files\Ad-Remover

    ~~~~~~ Fichier(s) ~~~~~~

    Supprimé : C:\Ad-Report-CLEAN[1].txt
    Supprimé : C:\Ad-Report-SCAN[1].txt
    Supprimé : C:\Ad-Report-SCAN[2].txt
    Supprimé : C:\Ad-Report-SCAN[3].txt
    Supprimé : C:\Ad-Report-SCAN[4].txt
    Supprimé : C:\AdwCleaner[R1].txt
    Supprimé : C:\AdwCleaner[S1].txt
    Supprimé : C:\AdwCleaner[S2].txt
    Supprimé : C:\TDSSKiller.2.5.22.0_19.09.2011_15.43.29_log.txt
    Supprimé : C:\TDSSKiller.2.5.22.0_19.09.2011_15.48.51_log.txt

    ~~~~~~ Registre ~~~~~~

    Clé Supprimée : HKCU\Software\Ad-Remover
    Clé Supprimée : HKLM\SOFTWARE\OldTimer Tools
    Clé Supprimée : HKLM\SOFTWARE\AdwCleaner

    ~~~~~~ Autres ~~~~~~

    -> Prefetch Vidé

    *************************

    DelFix[S1].txt - [1091 octets] - [22/06/2012 14:49:32]

    ########## EOF - C:\DelFix[S1].txt - [1215 octets] ##########
    a b 8 Sécurité
    22 Juin 2012 14:53:13

    Essaye de faire la manipulation en mode sans échec pour OTL.

    Citation :
    Name : FlashPlayer ActiveX
    Version : 10.1.53.64
    Flash Player ActiveX n'est pas à jour! (11.3.300.257)

    Name : FlashPlayer Plugin
    Version : 10.1.53.64
    Flash Player Plugin n'est pas à jour! (11.3.300.257)

    Java Information :
    Nom : Java(TM) 6 Update 33
    Version : 6.0.330
    Java(TM) 6 Update 33 n'est pas à jour! (6.0.320)

    Name : Adobe Reader 9.2 - Français
    Version : 9.2.0
    Adobe Reader n'est pas à jour! (9.5.1)

    Aucun à jour, je suppose que tu as bien suivi la procédure que je te donnais en cliquant sur Update ?
    22 Juin 2012 14:55:44

    oui j'ai fais toute les mises a jour avec succés dois je recommencer ?

    je refait le rapport otl et le post
    a b 8 Sécurité
    22 Juin 2012 15:00:04

    Bah il y en a aucune de faite. Quand tu lances le logiciels tu as des lignes avec OUT ?
    22 Juin 2012 15:03:13

    oui 4 maj out
    a b 8 Sécurité
    24 Juin 2012 17:23:28

    OTL ça peut attendre, tu as fait les maj ou pas ?
    24 Juin 2012 21:41:10

    oui mise a jour faite
    24 Juin 2012 21:41:56

    oui mise a jour faite
    a b 8 Sécurité
    24 Juin 2012 22:04:40

    Refais un scan avec SXC&U alors pour voir si c'est ok.
    25 Juin 2012 13:03:29

    bonjour

    apres le scan il me dit que je possede la version 6 de java qui expire en novembre 2012 et quand je fais un udapte il me dit que la version est a jour version 11.3.300.262 statut out

    a b 8 Sécurité
    25 Juin 2012 13:14:56

    Poste moi le rapport pour voir.
    25 Juin 2012 22:43:23

    voici le rapport sxc&u


    SX Check&Update
    Lien vers le tutoriel : http://forum.security-x.fr/tutoriels-317/tutoriel-sx-ch...
    ---
    Windows Version : Windows XP 32 bits
    Service Pack : 3
    UserName : mizot
    25/06/2012
    22:38:46
    version = v0.2.4
    ---
    Windows Update Information :
    AUOptions : 4
    Automatically, no notification
    ---
    Name : FlashPlayer ActiveX
    Version : 11.3.300.257
    Flash Player ActiveX n'est pas à jour! (11.3.300.262)

    Name : FlashPlayer Plugin
    Version : 11.3.300.262
    Flash Player Plugin est à jour

    Java Information :
    Nom : Java(TM) 6 Update 33
    Version : 6.0.330
    Java(TM) 6 Update 33 n'est pas à jour! (6.0.320)

    Name : Adobe Reader 9.2 - Français
    Version : 9.2.0
    Adobe Reader n'est pas à jour! (9.5.1)

    Name : Spelling Dictionaries Support For Adobe Reader 9
    Version : 9.0.0
    Adobe Reader n'est pas à jour! (9.5.1)

    Nom : Internet Explorer
    Version : 8.0.6001.18702
    26 Juin 2012 00:04:28

    j'ai bien tout reinstaller et voila le rapport


    SX Check&Update
    Lien vers le tutoriel : http://forum.security-x.fr/tutoriels-317/tutoriel-sx-ch...
    ---
    Windows Version : Windows XP 32 bits
    Service Pack : 3
    UserName : mizot
    26/06/2012
    00:04:03
    version = v0.2.4
    ---
    Windows Update Information :
    AUOptions : 4
    Automatically, no notification
    ---
    Name : FlashPlayer ActiveX
    Version : 11.3.300.257
    Flash Player ActiveX n'est pas à jour! (11.3.300.262)

    Name : FlashPlayer Plugin
    Version : 11.3.300.262
    Flash Player Plugin est à jour

    Java Information :
    Nom : Java(TM) 7 Update 5
    Version : 7.0.50
    Java(TM) 7 Update 5 est à jour

    Nom : Adobe Acrobat X Pro - English, Français, Deutsch
    Version : 10.0.0
    Adobe Reader n'est pas à jour! (10.1.3)

    Nom : Adobe Reader X (10.1.3) - Français
    Version : 10.1.3
    Adobe Reader est à jour

    Name : Spelling Dictionaries Support For Adobe Reader 9
    Version : 9.0.0
    Adobe Reader n'est pas à jour! (9.5.1)

    Nom : Internet Explorer
    Version : 8.0.6001.18702
    26 Juin 2012 18:58:30

    non il n'y a rien

    pourquoi dois je reinstaller ?
    a b 8 Sécurité
    26 Juin 2012 21:00:09

    C'est bizarre, tu peux retenter oui. On va terminer :) 

    On va s'occuper de supprimer les logiciels de désinfection maintenant :
    • Sur cette page DelFix (de Xplode) , clique sur bouton de téléchargement et enregistre le fichier sur ton Bureau.
    • Lance le programme puis clique sur Suppression puis poste le rapport.

  • /!\ Pour ne plus avoir ce genre de problème, il est capital de respecter les règles du dossier Prévention & Protection /!\
    26 Juin 2012 23:06:46

    re voici le rapport delfix


    # DelFix v8.8 - Rapport créé le 26/06/2012 à 23:06:24
    # Mis à jour le 12/02/12 par Xplode
    # Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
    # Nom d'utilisateur : mizot - MIMEME-EEC47B12 (Administrateur)
    # Exécuté depuis : C:\Documents and Settings\mizot\Mes documents\Downloads\delfix (1).exe
    # Option [Suppression]


    ~~~~~~ Dossiers(s) ~~~~~~


    ~~~~~~ Fichier(s) ~~~~~~


    ~~~~~~ Registre ~~~~~~

    Clé Supprimée : HKLM\SOFTWARE\OldTimer Tools

    ~~~~~~ Autres ~~~~~~

    -> Prefetch Vidé

    *************************

    DelFix[S1].txt - [1212 octets] - [22/06/2012 14:49:32]
    DelFix[S2].txt - [613 octets] - [26/06/2012 23:06:24]

    ########## EOF - C:\DelFix[S2].txt - [736 octets] ##########
    a b 8 Sécurité
    27 Juin 2012 13:59:04

    Des questions ?
    27 Juin 2012 19:46:27

    non pas de question super boulot et je pense que je vais me calmer avec internet car je travaille beaucoup avec cubase et il n'aimes pas du tout

    cordialement
    a b 8 Sécurité
    28 Juin 2012 00:46:38

    Il faut toujours faire attention :)  bonne continuation alors
    28 Juin 2012 15:56:02

    merci bonne journée
    Contenus similaires
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS