Votre question

[Résolu] Virus publicitaire

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
30 Mars 2011 08:32:11

:hello:  Bonjour

J'ai moi aussi depuis plusieurs jours un probleme de pages publicitaires qui s'ouvrent seules même quand Mon navigateur n'est pas ouvert.
Depuis ce matin, j'ai un programme dans la barre de lancement rapide ( EoRezDlg) dont je ne peux me debarrasser.
Ayant vu tes indications pour un autre internaute, je te joint les 2 fichiers texte obtenus par l'analyse que tu préconise/

Log.txt:

Logfile of random's system information tool 1.08 (written by random/random)
Run by Georges at 2011-03-30 08:11:24
Microsoft Windows 7 Édition Intégrale Service Pack 1
System drive C: has 62 GB (51%) free of 122 GB
Total RAM: 6134 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 08:11:31, on 30/03/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Users\Georges\AppData\Roaming\PCtuto\UpdatePCTuto\autoupdater.exe
D:\natso Backup\nb_workstation.exe
C:\Users\Georges\AppData\Roaming\Transcend\SJelite3\SJelite3Launch.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
D:\AnyDVD\AnyDVDtray.exe
C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files (x86)\Synology Data Replicator 3\Backup.exe
C:\Program Files (x86)\Translate Client\translateclient.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
D:\Roxio 2010\5.0\CPMonitor.exe
D:\Roxio 2010\Roxio Burn\RoxioBurnLauncher.exe
C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
D:\Samsung\Samsung Media Studio 5\SMSTray.exe
C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
E:\Acronis\TrueImageMonitor.exe
D:\Drive monitor\DriveMonitor\adm_tray.exe
C:\Program Files (x86)\EoRezo\eorezo.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Georges\Desktop\RSIT.exe
C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpSystemStatusCheck.exe
C:\Program Files (x86)\trend micro\Georges.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://hpp.orange.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homepage=h...
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: setuprog Toolbar - {f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} - C:\Program Files (x86)\Setuprog\tbSet1.dll
R3 - URLSearchHook: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll
R3 - URLSearchHook: mipony-plugin Toolbar - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files (x86)\mipony-plugin\tbmipo.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\ievkbd.dll
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: mipony-plugin Toolbar - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files (x86)\mipony-plugin\tbmipo.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: EOBHO - {C10DC1F4-CCDF-4224-A24D-B23AFC3573C8} - C:\Program Files (x86)\EoRezo\EoRezoBHO.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: setuprog Toolbar - {f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} - C:\Program Files (x86)\Setuprog\tbSet1.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O3 - Toolbar: setuprog Toolbar - {f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} - C:\Program Files (x86)\Setuprog\tbSet1.dll
O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll
O3 - Toolbar: mipony-plugin Toolbar - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files (x86)\mipony-plugin\tbmipo.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe"
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\12.0\SharedCOM\RoxWatchTray12.exe"
O4 - HKLM\..\Run: [CPMonitor] "D:\Roxio 2010\5.0\CPMonitor.exe"
O4 - HKLM\..\Run: [Desktop Disc Tool] "D:\Roxio 2010\Roxio Burn\RoxioBurnLauncher.exe"
O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
O4 - HKLM\..\Run: [FUFAXSTM] "C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe"
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [SMSTray] D:\Samsung\Samsung Media Studio 5\SMSTray.exe
O4 - HKLM\..\Run: [BambooCore] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
O4 - HKLM\..\Run: [MPlayerForWindows_UpdateReminder] "D:\MPlayer for Windows\AutoUpdate.exe" /L=1033 /TASK
O4 - HKLM\..\Run: [TrueImageMonitor.exe] "E:\Acronis\TrueImageMonitor.exe"
O4 - HKLM\..\Run: [adm_tray.exe] D:\Drive monitor\DriveMonitor\adm_tray.exe
O4 - HKLM\..\Run: [eorezo] "C:\Program Files (x86)\EoRezo\eorezo.exe"
O4 - HKLM\..\RunOnce: [autoupdater] C:\Users\Georges\AppData\Roaming\PCtuto\UpdatePCTuto\autoupdater.exe -runonce
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Start neobe natso Backup Workstation] "D:\natso Backup\nb_workstation.exe"
O4 - HKCU\..\Run: [SJelite3Launch] C:\Users\Georges\AppData\Roaming\Transcend\SJelite3\SJelite3Launch.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [AnyDVD] D:\AnyDVD\AnyDVDtray.exe
O4 - HKCU\..\Run: [EPSON PX820FWD Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGXE.EXE /FU "C:\Windows\TEMP\E_S39B5.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [Data Replicator 3] "C:\Program Files (x86)\Synology Data Replicator 3\Backup.exe" /MIN
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Global Startup: Translate Client.lnk = C:\Program Files (x86)\Translate Client\translateclient.exe
O8 - Extra context menu item: &Envoyer à OneNote - res://C:\Program Files (x86)\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Ajouter à un fichier PDF existant - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Barre RoboForm - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: Convertir au format Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\Program Files (x86)\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Enregistrer le formulaire - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Georges\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O8 - Extra context menu item: Personnaliser le menu - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Remplir le formulaire - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger avec Mipony - file://D:\MiPony\Browser\IEContext.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files (x86)\Internet Download Manager\IEGetVL.htm
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Remplir - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Remplir le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Enregistrer - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Enregistrer le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll
O9 - Extra button: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/static/securite/cert...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} ("Ma-Config.com control) - http://fichiers.touslesdrivers.com/maconfig/MaConfig_4_...
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100
O17 - HKLM\System\CCS\Services\Tcpip\..\{31D68B7D-5421-434D-AA74-177E9B18D578}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{31D68B7D-5421-434D-AA74-177E9B18D578}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS2\Services\Tcpip\..\{31D68B7D-5421-434D-AA74-177E9B18D578}: NameServer = 8.8.8.8,8.8.4.4
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\ProgramData\AVP9\mzvkbd3.dll
O23 - Service: Service Scheduler2 Acronis (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service Acronis Nonstop Backup (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Sentinel HASP License Manager (hasplms) - Unknown owner - C:\Windows\system32\hasplms.exe (file missing)
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files (x86)\ma-config.com\maconfservice.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\SysWOW64\IoctlSvc.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: RoxMediaDB12 - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\12.0\SharedCOM\RoxMediaDB12.exe
O23 - Service: Roxio Hard Drive Watcher 12 (RoxWatch12) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\12.0\SharedCOM\RoxWatch12.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: SynoDrService - Unknown owner - C:\Program Files (x86)\Synology Data Replicator 3\SynoDrServicex64.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: TabletServicePen - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_Tablet.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Wacom Consumer Touch Service (TouchServicePen) - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_TouchService.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\uxtuneup.dll,-4096 (UxTuneUp) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 35180 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1161286960-112545918-3117619400-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1161286960-112545918-3117619400-1000UA.job
C:\Windows\tasks\Synology Data Replicator 3-Georges-PC-Georges.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2010-09-29 197984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-01-30 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-03-21 381656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\ievkbd.dll [2009-10-20 68112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll [2010-05-19 7615280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
DVDVideoSoftTB Toolbar - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll [2010-04-27 2393184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{90d46c30-9f25-4104-aea9-35c3f84477ff}]
mipony-plugin Toolbar - C:\Program Files (x86)\mipony-plugin\tbmipo.dll [2010-12-09 3911776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-03-16 279664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-09-22 349640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll [2010-09-17 842296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files (x86)\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}]
EOBHO Class - C:\Program Files (x86)\EoRezo\EoRezoBHO.dll [2010-04-16 221184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll [2009-10-20 268816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-09-22 349640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5}]
setuprog Toolbar - C:\Program Files (x86)\Setuprog\tbSet1.dll [2010-06-30 2515552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-09-22 349640]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll [2010-05-19 7615280]
{f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} - setuprog Toolbar - C:\Program Files (x86)\Setuprog\tbSet1.dll [2010-06-30 2515552]
{872b5b88-9db5-4310-bdd0-ac189557e5f5} - DVDVideoSoftTB Toolbar - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll [2010-04-27 2393184]
{90d46c30-9f25-4104-aea9-35c3f84477ff} - mipony-plugin Toolbar - C:\Program Files (x86)\mipony-plugin\tbmipo.dll [2010-12-09 3911776]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-03-16 279664]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-03 284696]
"AVP"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe [2010-08-18 340520]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-07-22 402432]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
""= []
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2010-09-22 640440]
"RoxWatchTray"=C:\Program Files (x86)\Common Files\Roxio Shared\12.0\SharedCOM\RoxWatchTray12.exe [2009-07-24 240112]
"CPMonitor"=D:\Roxio 2010\5.0\CPMonitor.exe [2009-07-21 84464]
"Desktop Disc Tool"=D:\Roxio 2010\Roxio Burn\RoxioBurnLauncher.exe [2009-06-23 494064]
"Microsoft Default Manager"=C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [2010-05-10 439568]
"FUFAXSTM"=C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [2009-12-03 847872]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2009-12-03 976320]
"SMSTray"=D:\Samsung\Samsung Media Studio 5\SMSTray.exe [2007-12-14 132624]
"BambooCore"=C:\Program Files (x86)\Bamboo Dock\BambooCore.exe [2009-11-03 606296]
"MPlayerForWindows_UpdateReminder"=D:\MPlayer for Windows\AutoUpdate.exe [2010-10-17 235005]
"TrueImageMonitor.exe"=E:\Acronis\TrueImageMonitor.exe [2010-11-23 5578240]
"adm_tray.exe"=D:\Drive monitor\DriveMonitor\adm_tray.exe [2010-08-26 535432]
"eorezo"=C:\Program Files (x86)\EoRezo\eorezo.exe [2010-12-01 675840]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"autoupdater"=C:\Users\Georges\AppData\Roaming\PCtuto\UpdatePCTuto\autoupdater.exe [2010-08-17 659456]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Start neobe natso Backup Workstation"=D:\natso Backup\nb_workstation.exe [2009-10-12 960512]
"SJelite3Launch"=C:\Users\Georges\AppData\Roaming\Transcend\SJelite3\SJelite3Launch.exe [2009-12-02 184320]
"swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-05-28 39408]
"AnyDVD"=D:\AnyDVD\AnyDVDtray.exe [2011-03-07 4886136]
"EPSON PX820FWD Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGXE.EXE [2010-01-12 224768]
"RoboForm"=C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [2010-05-19 16184]
"IDMan"=C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2010-12-26 3249504]
"Data Replicator 3"=C:\Program Files (x86)\Synology Data Replicator 3\Backup.exe [2010-09-15 11587584]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Translate Client.lnk - C:\Program Files (x86)\Translate Client\translateclient.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\ProgramData\AVP9\mzvkbd3.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS5\Dreamweaver.exe","%1"

======List of files/folders created in the last 1 months======

2011-03-30 08:11:24 ----D---- C:\rsit
2011-03-29 07:50:08 ----D---- C:\Users\Georges\AppData\Roaming\A4DeskPro
2011-03-29 07:49:55 ----D---- C:\A4DeskPro
2011-03-25 09:31:18 ----D---- C:\Program Files (x86)\EoRezo
2011-03-24 12:18:49 ----D---- C:\Program Files (x86)\Safari
2011-03-23 14:02:55 ----D---- C:\Users\Georges\AppData\Roaming\Mp3tag
2011-03-21 20:09:13 ----A---- C:\Windows\SysWOW64\uxtuneup.dll
2011-03-21 20:09:12 ----A---- C:\Windows\SysWOW64\authuitu.dll
2011-03-21 18:21:25 ----D---- C:\Program Files (x86)\Common Files\xing shared
2011-03-21 18:20:58 ----A---- C:\Windows\SysWOW64\rmoc3260.dll
2011-03-21 18:20:32 ----A---- C:\Windows\SysWOW64\pndx5032.dll
2011-03-21 18:20:31 ----A---- C:\Windows\SysWOW64\pndx5016.dll
2011-03-21 18:20:16 ----D---- C:\Program Files (x86)\Real
2011-03-21 18:20:14 ----D---- C:\ProgramData\Real
2011-03-21 18:20:10 ----D---- C:\Users\Georges\AppData\Roaming\Real
2011-03-20 15:47:22 ----D---- C:\Windows\Minidump
2011-03-16 08:29:18 ----A---- C:\Windows\SysWOW64\urlmon.dll
2011-03-16 08:29:18 ----A---- C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2011-03-16 08:29:18 ----A---- C:\Windows\SysWOW64\msls31.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\wininet.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\wextract.exe
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\webcheck.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\vbscript.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\url.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\SetIEInstalledDate.exe
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\pngfilt.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\occache.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\msrating.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\mshtmler.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\mshtmled.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\mshtml.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\mshta.exe
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\msfeedssync.exe
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\msfeedsbs.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\msfeeds.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\licmgr10.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\jscript9.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\jscript.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\inseng.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\imgutil.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\iexpress.exe
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\ieUnatt.exe
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\ieui.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\iesysprep.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\iesetup.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\iertutil.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\iernonce.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\iepeers.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\ieframe.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\iedkcs32.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\ieapfltr.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\ieakui.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\ieaksie.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\ieakeng.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\IEAdvpack.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\ie4uinit.exe
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\icardie.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\dxtrans.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\dxtmsft.dll
2011-03-16 08:29:17 ----A---- C:\Windows\SysWOW64\admparse.dll
2011-03-14 12:03:03 ----A---- C:\Windows\SysWOW64\javaws.exe
2011-03-14 12:03:03 ----A---- C:\Windows\SysWOW64\javaw.exe
2011-03-14 12:03:03 ----A---- C:\Windows\SysWOW64\java.exe
2011-03-10 12:25:30 ----A---- C:\Windows\IsUn040c.exe
2011-03-10 10:12:20 ----D---- C:\Program Files (x86)\iTunes
2011-03-09 15:15:16 ----A---- C:\Windows\SysWOW64\DWrite.dll
2011-03-09 15:15:16 ----A---- C:\Windows\SysWOW64\d2d1.dll
2011-03-09 15:15:14 ----A---- C:\Windows\SysWOW64\EncDec.dll
2011-03-09 15:15:14 ----A---- C:\Windows\SysWOW64\CPFilters.dll
2011-03-09 15:15:13 ----A---- C:\Windows\SysWOW64\sbe.dll
2011-03-07 12:19:44 ----A---- C:\Windows\GraphicsDesk.INI
2011-03-07 09:44:59 ----D---- C:\Users\Georges\AppData\Roaming\Hemera
2011-03-07 04:08:13 ----A---- C:\Windows\SysWOW64\ElbyCDIO.dll
2011-03-04 12:18:15 ----D---- C:\Windows\Downloaded Installations
2011-03-03 10:46:21 ----D---- C:\Program Files (x86)\ConduitEngine
2011-03-03 09:13:11 ----D---- C:\Program Files (x86)\Bonjour
2011-03-02 11:52:07 ----D---- C:\omniformat
2011-03-01 16:10:48 ----A---- C:\Windows\SysWOW64\dfshim.dll
2011-03-01 16:10:40 ----A---- C:\Windows\SysWOW64\mstscax.dll
2011-03-01 16:10:38 ----A---- C:\Windows\SysWOW64\mfc40u.dll
2011-03-01 16:10:38 ----A---- C:\Windows\SysWOW64\mfc40.dll
2011-03-01 16:10:38 ----A---- C:\Windows\SysWOW64\d3d10warp.dll
2011-03-01 16:10:36 ----A---- C:\Windows\SysWOW64\pmcsnap.dll
2011-03-01 16:10:32 ----A---- C:\Windows\SysWOW64\shell32.dll
2011-03-01 16:10:32 ----A---- C:\Windows\SysWOW64\secproc_isv.dll
2011-03-01 16:10:31 ----A---- C:\Windows\SysWOW64\secproc.dll
2011-03-01 16:10:31 ----A---- C:\Windows\SysWOW64\RMActivate_isv.exe
2011-03-01 16:10:30 ----A---- C:\Windows\SysWOW64\RMActivate.exe
2011-03-01 16:10:30 ----A---- C:\Windows\SysWOW64\PushPrinterConnections.exe
2011-03-01 16:10:30 ----A---- C:\Windows\SysWOW64\ppcsnap.dll
2011-03-01 16:10:29 ----A---- C:\Windows\SysWOW64\mscoree.dll
2011-03-01 16:10:28 ----A---- C:\Windows\SysWOW64\ntkrnlpa.exe
2011-03-01 16:10:28 ----A---- C:\Windows\SysWOW64\mf.dll
2011-03-01 16:10:24 ----A---- C:\Windows\SysWOW64\mssrch.dll
2011-03-01 16:10:24 ----A---- C:\Windows\SysWOW64\CertEnroll.dll
2011-03-01 16:10:24 ----A---- C:\Windows\explorer.exe
2011-03-01 16:10:23 ----A---- C:\Windows\SysWOW64\wmp.dll
2011-03-01 16:10:23 ----A---- C:\Windows\SysWOW64\PresentationHostProxy.dll
2011-03-01 16:10:23 ----A---- C:\Windows\SysWOW64\PresentationHost.exe
2011-03-01 16:10:23 ----A---- C:\Windows\SysWOW64\esent.dll
2011-03-01 16:10:22 ----A---- C:\Windows\SysWOW64\tquery.dll
2011-03-01 16:10:22 ----A---- C:\Windows\SysWOW64\ntoskrnl.exe
2011-03-01 16:10:16 ----A---- C:\Windows\SysWOW64\RacEngn.dll
2011-03-01 16:10:16 ----A---- C:\Windows\SysWOW64\AuthFWSnapin.dll
2011-03-01 16:10:14 ----A---- C:\Windows\SysWOW64\rdvgumd32.dll
2011-03-01 16:10:12 ----A---- C:\Windows\SysWOW64\ole32.dll
2011-03-01 16:10:12 ----A---- C:\Windows\SysWOW64\ExplorerFrame.dll
2011-03-01 16:10:10 ----A---- C:\Windows\SysWOW64\vssapi.dll
2011-03-01 16:10:09 ----A---- C:\Windows\SysWOW64\SearchFolder.dll
2011-03-01 16:10:08 ----A---- C:\Windows\SysWOW64\taskschd.dll
2011-03-01 16:10:08 ----A---- C:\Windows\SysWOW64\explorer.exe
2011-03-01 16:10:08 ----A---- C:\Windows\SysWOW64\d3d9.dll
2011-03-01 16:10:08 ----A---- C:\Windows\SysWOW64\crypt32.dll
2011-03-01 16:10:04 ----A---- C:\Windows\SysWOW64\wer.dll
2011-03-01 16:10:04 ----A---- C:\Windows\SysWOW64\ntdll.dll
2011-03-01 16:10:04 ----A---- C:\Windows\SysWOW64\msxml6.dll
2011-03-01 16:10:04 ----A---- C:\Windows\SysWOW64\mstsc.exe
2011-03-01 16:10:04 ----A---- C:\Windows\SysWOW64\dwmcore.dll
2011-03-01 16:10:04 ----A---- C:\Windows\SysWOW64\certcli.dll
2011-03-01 16:10:03 ----A---- C:\Windows\SysWOW64\odbc32.dll
2011-03-01 16:10:02 ----A---- C:\Windows\SysWOW64\TSWorkspace.dll
2011-03-01 16:10:02 ----A---- C:\Windows\SysWOW64\tcpmonui.dll
2011-03-01 16:10:02 ----A---- C:\Windows\SysWOW64\quartz.dll
2011-03-01 16:10:01 ----A---- C:\Windows\SysWOW64\winhttp.dll
2011-03-01 16:10:01 ----A---- C:\Windows\SysWOW64\tsmf.dll
2011-03-01 16:10:01 ----A---- C:\Windows\SysWOW64\dot3api.dll
2011-03-01 16:10:00 ----A---- C:\Windows\SysWOW64\setupapi.dll
2011-03-01 16:10:00 ----A---- C:\Windows\SysWOW64\apphelp.dll
2011-03-01 16:09:58 ----A---- C:\Windows\SysWOW64\WMVDECOD.DLL
2011-03-01 16:09:58 ----A---- C:\Windows\SysWOW64\WindowsCodecs.dll
2011-03-01 16:09:58 ----A---- C:\Windows\SysWOW64\webio.dll
2011-03-01 16:09:58 ----A---- C:\Windows\SysWOW64\Query.dll
2011-03-01 16:09:58 ----A---- C:\Windows\SysWOW64\netlogon.dll
2011-03-01 16:09:58 ----A---- C:\Windows\SysWOW64\netcfgx.dll
2011-03-01 16:09:58 ----A---- C:\Windows\SysWOW64\MSVidCtl.dll
2011-03-01 16:09:58 ----A---- C:\Windows\SysWOW64\gpprefcl.dll
2011-03-01 16:09:58 ----A---- C:\Windows\SysWOW64\dbgeng.dll
2011-03-01 16:09:58 ----A---- C:\Windows\SysWOW64\d3d11.dll
2011-03-01 16:09:57 ----A---- C:\Windows\SysWOW64\WsmSvc.dll
2011-03-01 16:09:57 ----A---- C:\Windows\SysWOW64\advapi32.dll
2011-03-01 16:09:56 ----A---- C:\Windows\SysWOW64\usp10.dll
2011-03-01 16:09:56 ----A---- C:\Windows\SysWOW64\upnp.dll
2011-03-01 16:09:56 ----A---- C:\Windows\SysWOW64\shlwapi.dll
2011-03-01 16:09:56 ----A---- C:\Windows\SysWOW64\SessEnv.dll
2011-03-01 16:09:56 ----A---- C:\Windows\SysWOW64\schannel.dll
2011-03-01 16:09:56 ----A---- C:\Windows\SysWOW64\PortableDeviceApi.dll
2011-03-01 16:09:56 ----A---- C:\Windows\SysWOW64\netfxperf.dll
2011-03-01 16:09:56 ----A---- C:\Windows\SysWOW64\msv1_0.dll
2011-03-01 16:09:56 ----A---- C:\Windows\SysWOW64\msdrm.dll
2011-03-01 16:09:56 ----A---- C:\Windows\SysWOW64\mmcndmgr.dll
2011-03-01 16:09:56 ----A---- C:\Windows\SysWOW64\imapi2fs.dll
2011-03-01 16:09:56 ----A---- C:\Windows\SysWOW64\DShowRdpFilter.dll
2011-03-01 16:09:56 ----A---- C:\Windows\SysWOW64\authui.dll
2011-03-01 16:09:55 ----A---- C:\Windows\SysWOW64\mcbuilder.exe
2011-03-01 16:09:54 ----A---- C:\Windows\SysWOW64\xpsservices.dll
2011-03-01 16:09:54 ----A---- C:\Windows\SysWOW64\WebClnt.dll
2011-03-01 16:09:54 ----A---- C:\Windows\SysWOW64\userenv.dll
2011-03-01 16:09:54 ----A---- C:\Windows\SysWOW64\kernel32.dll
2011-03-01 16:09:54 ----A---- C:\Windows\SysWOW64\d3d10_1core.dll
2011-03-01 16:09:54 ----A---- C:\Windows\SysWOW64\certmgr.dll
2011-03-01 16:09:52 ----A---- C:\Windows\SysWOW64\win32spl.dll
2011-03-01 16:09:52 ----A---- C:\Windows\SysWOW64\framedynos.dll
2011-03-01 16:09:52 ----A---- C:\Windows\SysWOW64\dnsapi.dll
2011-03-01 16:09:52 ----A---- C:\Windows\SysWOW64\comdlg32.dll
2011-03-01 16:09:52 ----A---- C:\Windows\SysWOW64\cmd.exe
2011-03-01 16:09:51 ----A---- C:\Windows\SysWOW64\Wldap32.dll
2011-03-01 16:09:51 ----A---- C:\Windows\SysWOW64\user32.dll
2011-03-01 16:09:51 ----A---- C:\Windows\SysWOW64\rdpendp.dll
2011-03-01 16:09:51 ----A---- C:\Windows\SysWOW64\propsys.dll
2011-03-01 16:09:51 ----A---- C:\Windows\SysWOW64\mfds.dll
2011-03-01 16:09:48 ----A---- C:\Windows\SysWOW64\themeui.dll
2011-03-01 16:09:48 ----A---- C:\Windows\SysWOW64\taskeng.exe
2011-03-01 16:09:48 ----A---- C:\Windows\SysWOW64\spp.dll
2011-03-01 16:09:48 ----A---- C:\Windows\SysWOW64\ncsi.dll
2011-03-01 16:09:48 ----A---- C:\Windows\SysWOW64\mswsock.dll
2011-03-01 16:09:48 ----A---- C:\Windows\SysWOW64\dhcpcore.dll
2011-03-01 16:09:48 ----A---- C:\Windows\SysWOW64\credui.dll
2011-03-01 16:09:48 ----A---- C:\Windows\SysWOW64\azroles.dll
2011-03-01 16:09:48 ----A---- C:\Windows\SysWOW64\appmgr.dll
2011-03-01 16:09:48 ----A---- C:\Windows\splwow64.exe
2011-03-01 16:09:47 ----A---- C:\Windows\SysWOW64\inetcomm.dll
2011-03-01 16:09:46 ----A---- C:\Windows\SysWOW64\wintrust.dll
2011-03-01 16:09:46 ----A---- C:\Windows\SysWOW64\taskcomp.dll
2011-03-01 16:09:46 ----A---- C:\Windows\SysWOW64\NaturalLanguage6.dll
2011-03-01 16:09:46 ----A---- C:\Windows\SysWOW64\msxml3.dll
2011-03-01 16:09:46 ----A---- C:\Windows\SysWOW64\mfreadwrite.dll
2011-03-01 16:09:46 ----A---- C:\Windows\SysWOW64\evr.dll
2011-03-01 16:09:46 ----A---- C:\Windows\SysWOW64\dxgi.dll
2011-03-01 16:09:46 ----A---- C:\Windows\SysWOW64\dbghelp.dll
2011-03-01 16:09:46 ----A---- C:\Windows\SysWOW64\basecsp.dll
2011-03-01 16:09:45 ----A---- C:\Windows\SysWOW64\WinSATAPI.dll
2011-03-01 16:09:45 ----A---- C:\Windows\SysWOW64\sqlsrv32.dll
2011-03-01 16:09:45 ----A---- C:\Windows\SysWOW64\calc.exe
2011-03-01 16:09:42 ----A---- C:\Windows\SysWOW64\UIRibbon.dll
2011-03-01 16:09:42 ----A---- C:\Windows\SysWOW64\cryptsvc.dll
2011-03-01 16:09:41 ----A---- C:\Windows\SysWOW64\sxs.dll
2011-03-01 16:09:38 ----A---- C:\Windows\SysWOW64\ws2_32.dll
2011-03-01 16:09:38 ----A---- C:\Windows\SysWOW64\stobject.dll
2011-03-01 16:09:38 ----A---- C:\Windows\SysWOW64\netshell.dll
2011-03-01 16:09:38 ----A---- C:\Windows\SysWOW64\gdi32.dll
2011-03-01 16:09:37 ----A---- C:\Windows\SysWOW64\prncache.dll
2011-03-01 16:09:37 ----A---- C:\Windows\SysWOW64\printui.dll
2011-03-01 16:09:37 ----A---- C:\Windows\SysWOW64\comctl32.dll
2011-03-01 16:09:36 ----A---- C:\Windows\SysWOW64\wmpeffects.dll
2011-03-01 16:09:36 ----A---- C:\Windows\SysWOW64\msi.dll
2011-03-01 16:09:35 ----A---- C:\Windows\SysWOW64\WSDApi.dll
2011-03-01 16:09:35 ----A---- C:\Windows\SysWOW64\rpchttp.dll
2011-03-01 16:09:35 ----A---- C:\Windows\SysWOW64\net1.exe
2011-03-01 16:09:34 ----A---- C:\Windows\SysWOW64\scansetting.dll
2011-03-01 16:09:34 ----A---- C:\Windows\SysWOW64\mfc42u.dll
2011-03-01 16:09:32 ----A---- C:\Windows\SysWOW64\wpdshext.dll
2011-03-01 16:09:32 ----A---- C:\Windows\SysWOW64\WMVCORE.DLL
2011-03-01 16:09:32 ----A---- C:\Windows\SysWOW64\wlangpui.dll
2011-03-01 16:09:32 ----A---- C:\Windows\SysWOW64\webservices.dll
2011-03-01 16:09:32 ----A---- C:\Windows\SysWOW64\t2embed.dll
2011-03-01 16:09:32 ----A---- C:\Windows\SysWOW64\scrptadm.dll
2011-03-01 16:09:32 ----A---- C:\Windows\SysWOW64\QSHVHOST.DLL
2011-03-01 16:09:32 ----A---- C:\Windows\SysWOW64\pnidui.dll
2011-03-01 16:09:32 ----A---- C:\Windows\SysWOW64\MMDevAPI.dll
2011-03-01 16:09:32 ----A---- C:\Windows\SysWOW64\davclnt.dll
2011-03-01 16:09:32 ----A---- C:\Windows\SysWOW64\aaclient.dll
2011-03-01 16:09:31 ----A---- C:\Windows\SysWOW64\wuapi.dll
2011-03-01 16:09:31 ----A---- C:\Windows\SysWOW64\wscapi.dll
2011-03-01 16:09:31 ----A---- C:\Windows\SysWOW64\SyncCenter.dll
2011-03-01 16:09:31 ----A---- C:\Windows\SysWOW64\netdiagfx.dll
2011-03-01 16:09:31 ----A---- C:\Windows\SysWOW64\fde.dll
2011-03-01 16:09:30 ----A---- C:\Windows\SysWOW64\WinSCard.dll
2011-03-01 16:09:30 ----A---- C:\Windows\SysWOW64\pla.dll
2011-03-01 16:09:30 ----A---- C:\Windows\SysWOW64\msasn1.dll
2011-03-01 16:09:30 ----A---- C:\Windows\SysWOW64\cscobj.dll
2011-03-01 16:09:28 ----A---- C:\Windows\SysWOW64\winsta.dll
2011-03-01 16:09:28 ----A---- C:\Windows\SysWOW64\rdpcore.dll
2011-03-01 16:09:28 ----A---- C:\Windows\SysWOW64\ntshrui.dll
2011-03-01 16:09:28 ----A---- C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2011-03-01 16:09:28 ----A---- C:\Windows\SysWOW64\imapi2.dll
2011-03-01 16:09:28 ----A---- C:\Windows\SysWOW64\gameux.dll
2011-03-01 16:09:28 ----A---- C:\Windows\SysWOW64\DXPTaskRingtone.dll
2011-03-01 16:09:27 ----A---- C:\Windows\SysWOW64\WMPEncEn.dll
2011-03-01 16:09:27 ----A---- C:\Windows\SysWOW64\winmm.dll
2011-03-01 16:09:27 ----A---- C:\Windows\SysWOW64\shsvcs.dll
2011-03-01 16:09:27 ----A---- C:\Windows\SysWOW64\samcli.dll
2011-03-01 16:09:27 ----A---- C:\Windows\SysWOW64\proquota.exe
2011-03-01 16:09:27 ----A---- C:\Windows\SysWOW64\onex.dll
2011-03-01 16:09:27 ----A---- C:\Windows\SysWOW64\netiohlp.dll
2011-03-01 16:09:27 ----A---- C:\Windows\SysWOW64\mssvp.dll
2011-03-01 16:09:27 ----A---- C:\Windows\SysWOW64\IPHLPAPI.DLL
2011-03-01 16:09:27 ----A---- C:\Windows\SysWOW64\hbaapi.dll
2011-03-01 16:09:27 ----A---- C:\Windows\SysWOW64\autofmt.exe
2011-03-01 16:09:27 ----A---- C:\Windows\SysWOW64\autochk.exe
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\wcncsvc.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\thumbcache.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\tcpipcfg.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\srchadmin.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\schtasks.exe
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\regapi.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\QAGENT.DLL
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\powercpl.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\netid.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\msutb.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\msinfo32.exe
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\msihnd.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\mscorier.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\mimefilt.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\ipsmsnap.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\framedyn.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\eapphost.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\AuxiliaryDisplayCpl.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\autoconv.exe
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\AudioSes.dll
2011-03-01 16:09:26 ----A---- C:\Windows\SysWOW64\actxprxy.dll
2011-03-01 16:09:25 ----A---- C:\Windows\SysWOW64\wlanpref.dll
2011-03-01 16:09:25 ----A---- C:\Windows\SysWOW64\wdc.dll
2011-03-01 16:09:25 ----A---- C:\Windows\SysWOW64\Vault.dll
2011-03-01 16:09:25 ----A---- C:\Windows\SysWOW64\untfs.dll
2011-03-01 16:09:25 ----A---- C:\Windows\SysWOW64\StructuredQuery.dll
2011-03-01 16:09:25 ----A---- C:\Windows\SysWOW64\scesrv.dll
2011-03-01 16:09:25 ----A---- C:\Windows\SysWOW64\rastls.dll
2011-03-01 16:09:25 ----A---- C:\Windows\SysWOW64\oleaut32.dll
2011-03-01 16:09:25 ----A---- C:\Windows\SysWOW64\nci.dll
2011-03-01 16:09:24 ----A---- C:\Windows\SysWOW64\WMNetMgr.dll
2011-03-01 16:09:24 ----A---- C:\Windows\SysWOW64\RpcRtRemote.dll
2011-03-01 16:09:24 ----A---- C:\Windows\SysWOW64\Robocopy.exe
2011-03-01 16:09:23 ----A---- C:\Windows\SysWOW64\DxpTaskSync.dll
2011-03-01 16:09:22 ----A---- C:\Windows\SysWOW64\XpsRasterService.dll
2011-03-01 16:09:22 ----A---- C:\Windows\SysWOW64\userinit.exe
2011-03-01 16:09:22 ----A---- C:\Windows\SysWOW64\termmgr.dll
2011-03-01 16:09:22 ----A---- C:\Windows\SysWOW64\taskmgr.exe
2011-03-01 16:09:22 ----A---- C:\Windows\SysWOW64\puiobj.dll
2011-03-01 16:09:22 ----A---- C:\Windows\SysWOW64\mtxclu.dll
2011-03-01 16:09:22 ----A---- C:\Windows\SysWOW64\mssphtb.dll
2011-03-01 16:09:22 ----A---- C:\Windows\SysWOW64\eudcedit.exe
2011-03-01 16:09:22 ----A---- C:\Windows\SysWOW64\Display.dll
2011-03-01 16:09:21 ----A---- C:\Windows\SysWOW64\wiadefui.dll
2011-03-01 16:09:21 ----A---- C:\Windows\SysWOW64\sppcomapi.dll
2011-03-01 16:09:21 ----A---- C:\Windows\SysWOW64\shsetup.dll
2011-03-01 16:09:21 ----A---- C:\Windows\SysWOW64\rasppp.dll
2011-03-01 16:09:21 ----A---- C:\Windows\SysWOW64\logoncli.dll
2011-03-01 16:09:21 ----A---- C:\Windows\SysWOW64\FirewallControlPanel.dll
2011-03-01 16:09:21 ----A---- C:\Windows\SysWOW64\cabview.dll
2011-03-01 16:09:20 ----A---- C:\Windows\SysWOW64\themecpl.dll
2011-03-01 16:09:20 ----A---- C:\Windows\SysWOW64\SensorsCpl.dll
2011-03-01 16:09:20 --

Autres pages sur : resolu virus publicitaire

30 Mars 2011 11:19:10

voila

======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 01/03/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 11:16:56 le 30/03/2011, Mode normal

Microsoft Windows 7 Édition Intégrale Service Pack 1 (X64)
Georges@GEORGES-PC (System manufacturer System Product Name)

============== RECHERCHE ==============


Dossier trouvé: C:\Users\Georges\AppData\Roaming\PCtuto
Dossier trouvé: C:\Users\Georges\AppData\Roaming\Mozilla\FireFox\Profiles\3w1ep62h.default\conduit
Dossier trouvé: C:\Users\Georges\AppData\Roaming\Mozilla\FireFox\Profiles\3w1ep62h.default\ConduitEngine
Dossier trouvé: C:\Users\Georges\AppData\Roaming\Mozilla\FireFox\Profiles\3w1ep62h.default\extensions\engine@conduit.com
Dossier trouvé: C:\Users\Georges\AppData\LocalLow\Conduit
Dossier trouvé: C:\Program Files (x86)\Conduit
Dossier trouvé: C:\Users\Georges\AppData\LocalLow\ConduitEngine
Dossier trouvé: C:\Program Files (x86)\ConduitEngine
Dossier trouvé: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShopperReports
Dossier trouvé: C:\Users\Georges\AppData\Roaming\ShopperReports3
Dossier trouvé: C:\Users\Georges\AppData\LocalLow\ShopperReports3
Dossier trouvé: C:\Program Files (x86)\ShopperReports3
Dossier trouvé: C:\Users\Georges\AppData\Local\EoRezo
Dossier trouvé: C:\Program Files (x86)\EoRezo

-- Fichier ouvert: C:\Users\Georges\AppData\Roaming\Mozilla\FireFox\Profiles\3w1ep62h.default\Prefs.js --
Ligne trouvée: user_pref("CT2465030.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER...
Ligne trouvée: user_pref("CT2465030.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT246...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/FR", "\"0\"")...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "63...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/20...
Ligne trouvée: user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Ligne trouvée: user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Ligne trouvée: user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Ligne trouvée: user_pref("CommunityToolbar.IsEngineShown", true);
Ligne trouvée: user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Ligne trouvée: user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Ligne trouvée: user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Ligne trouvée: user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Ligne trouvée: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr...
Ligne trouvée: user_pref("CommunityToolbar.ToolbarsList", "CT2465030,ConduitEngine");
Ligne trouvée: user_pref("CommunityToolbar.ToolbarsList2", "CT2465030");
Ligne trouvée: user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Wed Mar 23 2011 14:35:29 GMT+01...
Ligne trouvée: user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Ligne trouvée: user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Fri Mar 25 2011 08:43:36 GMT+0100");
Ligne trouvée: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Ligne trouvée: user_pref("CommunityToolbar.alert.locale", "en");
Ligne trouvée: user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Ligne trouvée: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Mon Mar 28 2011 11:59:30 GMT+0200");
Ligne trouvée: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1291048634");
Ligne trouvée: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Ligne trouvée: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Ligne trouvée: user_pref("CommunityToolbar.alert.showTrayIcon", false);
Ligne trouvée: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Ligne trouvée: user_pref("CommunityToolbar.alert.userId", "de0306ed-6d7d-4386-992e-6046c2a674e0");
Ligne trouvée: user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Ligne trouvée: user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Ligne trouvée: user_pref("ConduitEngine.AppTrackingLastCheckTime", "Thu Mar 24 2011 08:19:23 GMT+0100");
Ligne trouvée: user_pref("ConduitEngine.CTID", "ConduitEngine");
Ligne trouvée: user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Sun Mar 27 2011 09:16:16 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.FirstServerDate", "03/23/2011 16");
Ligne trouvée: user_pref("ConduitEngine.FirstTime", true);
Ligne trouvée: user_pref("ConduitEngine.FirstTimeFF3", true);
Ligne trouvée: user_pref("ConduitEngine.HasUserGlobalKeys", true);
Ligne trouvée: user_pref("ConduitEngine.Initialize", true);
Ligne trouvée: user_pref("ConduitEngine.InitializeCommonPrefs", true);
Ligne trouvée: user_pref("ConduitEngine.InstalledDate", "Wed Mar 23 2011 14:38:22 GMT+0100");
Ligne trouvée: user_pref("ConduitEngine.IsMulticommunity", false);
Ligne trouvée: user_pref("ConduitEngine.IsOpenThankYouPage", false);
Ligne trouvée: user_pref("ConduitEngine.IsOpenUninstallPage", true);
Ligne trouvée: user_pref("ConduitEngine.LanguagePackLastCheckTime", "Mon Mar 28 2011 11:59:30 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.LastLogin_3.3.3.2", "Mon Mar 28 2011 11:59:30 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Ligne trouvée: user_pref("ConduitEngine.SettingsLastCheckTime", "Mon Mar 28 2011 11:59:30 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.UserID", "UN34036536116729743");
Ligne trouvée: user_pref("ConduitEngine.componentAlertEnabled", true);
Ligne trouvée: user_pref("ConduitEngine.engineLocale", "fr");
Ligne trouvée: user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Mon Mar 28 2011 11:59:36 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Mon Mar 28 2011 11:59:30 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.initDone", true);
Ligne trouvée: user_pref("ConduitEngine.isAppTrackingManagerOn", true);
-- Fichier Fermé --


Clé trouvée: HKLM\Software\Classes\CLSID\{154C3C5B-A85F-42BC-8963-C1C5457C54FF}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{154C3C5B-A85F-42BC-8963-C1C5457C54FF}
Clé trouvée: HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKLM\Software\Classes\CLSID\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}
Clé trouvée: HKLM\Software\Classes\CLSID\{CC7BD6F1-565C-47ce-A5BB-9C935E77B59D}
Clé trouvée: HKLM\Software\Classes\CLSID\{CFC16189-8A92-4a29-A940-60248385F426}
Clé trouvée: HKLM\Software\Classes\Interface\{17BF1E05-C0E8-413C-BD1F-A481EEA3B8E9}
Clé trouvée: HKLM\Software\Classes\Interface\{21BA420E-161C-413A-B21E-4E42AE1F4226}
Clé trouvée: HKLM\Software\Classes\Interface\{453DB0C5-F41C-4D97-8DD6-CC72ECD5F699}
Clé trouvée: HKLM\Software\Classes\Interface\{4AFC07D0-59BB-46B8-B097-1A46E88EEF71}
Clé trouvée: HKLM\Software\Classes\Interface\{6511CE4C-4722-40D0-AD3D-4AFA2F50978A}
Clé trouvée: HKLM\Software\Classes\Interface\{83B2FE06-BA20-4F7D-96C6-6FC3A4E877D3}
Clé trouvée: HKLM\Software\Classes\Interface\{8AD9AD05-36BE-4E40-BA62-5422EB0D02FB}
Clé trouvée: HKLM\Software\Classes\Interface\{9BEC9B38-BF39-4899-806E-A1C5DFEB60A2}
Clé trouvée: HKLM\Software\Classes\Interface\{AEBF09E2-0C15-43C8-99BF-928C645D98A0}
Clé trouvée: HKLM\Software\Classes\Interface\{B32966A2-F7C2-4362-A6CF-399EC8B44110}
Clé trouvée: HKLM\Software\Classes\Interface\{B86D82BF-D39F-439A-A07C-43EDDC6F6EA6}
Clé trouvée: HKLM\Software\Classes\Interface\{DA6305B9-0869-4235-8C1D-533A65E639E5}
Clé trouvée: HKLM\Software\Classes\Interface\{DF76E9B7-35EC-46FC-AF56-5B79DED9D64F}
Clé trouvée: HKLM\Software\Classes\Interface\{E6961C59-CFCE-4CCD-B794-BC78DB98413A}
Clé trouvée: HKLM\Software\Classes\Interface\{F8B4EC8A-2407-4BE0-AEE2-0F430D65A90D}
Clé trouvée: HKLM\Software\Classes\TypeLib\{02AED140-2B62-4B49-8B3B-179020CC39B9}
Clé trouvée: HKLM\Software\Classes\TypeLib\{18AF7201-4F14-4BCF-93FE-45617CF259FF}
Clé trouvée: HKLM\Software\Classes\Conduit.Engine
Clé trouvée: HKLM\Software\Classes\EoEngineBHO.EOBHO
Clé trouvée: HKLM\Software\Classes\EoEngineBHO.EOBHO.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.AsyncReporter
Clé trouvée: HKLM\Software\Classes\ShopperReports.AsyncReporter.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.CntntDic
Clé trouvée: HKLM\Software\Classes\ShopperReports.CntntDic.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.CntntDisp
Clé trouvée: HKLM\Software\Classes\ShopperReports.CntntDisp.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.Dwnldr
Clé trouvée: HKLM\Software\Classes\ShopperReports.Dwnldr.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.HbAx
Clé trouvée: HKLM\Software\Classes\ShopperReports.HbAx.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.HbGuru
Clé trouvée: HKLM\Software\Classes\ShopperReports.HbGuru.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.HbInfoBand
Clé trouvée: HKLM\Software\Classes\ShopperReports.HbInfoBand.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.IEButton
Clé trouvée: HKLM\Software\Classes\ShopperReports.IEButton.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.IEButtonA
Clé trouvée: HKLM\Software\Classes\ShopperReports.IEButtonA.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.KOPFF
Clé trouvée: HKLM\Software\Classes\ShopperReports.KOPFF.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.MozillaNvgtnTrpr
Clé trouvée: HKLM\Software\Classes\ShopperReports.MozillaNvgtnTrpr.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.MozillaPSExecuter
Clé trouvée: HKLM\Software\Classes\ShopperReports.MozillaPSExecuter.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.ReportData
Clé trouvée: HKLM\Software\Classes\ShopperReports.ReportData.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.Reporter
Clé trouvée: HKLM\Software\Classes\ShopperReports.Reporter.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.RprtCtrl
Clé trouvée: HKLM\Software\Classes\ShopperReports.RprtCtrl.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.Scopes
Clé trouvée: HKLM\Software\Classes\ShopperReports.Scopes.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.Stock
Clé trouvée: HKLM\Software\Classes\ShopperReports.Stock.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.TriggerImmidiate
Clé trouvée: HKLM\Software\Classes\ShopperReports.TriggerImmidiate.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.TriggerImmidiateOrRandomTS
Clé trouvée: HKLM\Software\Classes\ShopperReports.TriggerImmidiateOrRandomTS.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.TriggerOnceInDay
Clé trouvée: HKLM\Software\Classes\ShopperReports.TriggerOnceInDay.1
Clé trouvée: HKLM\Software\Classes\Toolbar.CT2269050
Clé trouvée: HKLM\Software\Classes\Toolbar.CT2465030
Clé trouvée: HKLM\Software\Classes\Toolbar.CT2552113
Clé trouvée: HKLM\Software\Classes\AppID\EoEngineBHO.DLL
Clé trouvée: HKLM\Software\Classes\AppID\{AFBB7970-789A-4264-BA70-E8127DECE400}
Clé trouvée: HKLM\Software\Classes\AppID\BRNstIE.DLL
Clé trouvée: HKLM\Software\Classes\AppID\{8258B35C-05B8-4c0e-9525-9BCCC70F8F2D}
Clé trouvée: HKLM\Software\Classes\AppID\CmndFF.DLL
Clé trouvée: HKLM\Software\Classes\AppID\{A89256AD-EC17-4a83-BEF5-4B8BC4F39306}
Clé trouvée: HKLM\Software\Classes\AppID\mozillaps.dll
Clé trouvée: HKLM\Software\Classes\AppID\{7025E484-D4B0-441a-9F0B-69063BD679CE}
Clé trouvée: HKLM\Software\Classes\AppID\Pltfrm.DLL
Clé trouvée: HKLM\Software\Classes\AppID\{0D82ACD6-A652-4496-A298-2BDE705F4227}
Clé trouvée: HKLM\Software\EoRezo
Clé trouvée: HKLM\Software\Conduit
Clé trouvée: HKLM\Software\conduitEngine
Clé trouvée: HKLM\Software\Freeze.com
Clé trouvée: HKLM\Software\ShopperReports3
Clé trouvée: HKCU\Software\EoRezo
Clé trouvée: HKCU\Software\ShopperReports3
Clé trouvée: HKCU\Software\AppDataLow\Toolbar
Clé trouvée: HKCU\Software\AppDataLow\Software\Conduit
Clé trouvée: HKCU\Software\AppDataLow\Software\conduitEngine
Clé trouvée: HKCU\Software\AppDataLow\Software\ShopperReports3
Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A028BDC0-6A14-4B83-BB27-359CC82414D0}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\EoRezo_is1
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ShopperReportsSA
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{89F88394-3828-4D03-A0CF-8203604C3DA6}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D4233F04-1789-483C-A137-731E8F113DD5}

Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|ShopperReports 3.0.491.0
Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|SRS_IT_E8790575BD765A5731A095
Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Eorezo
Valeur trouvée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{30F9B915-B755-4826-820B-08FBA6BD249D}
Valeur trouvée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{30F9B915-B755-4826-820B-08FBA6BD249D}


============== SCAN ADDITIONNEL ==============

**** Mozilla Firefox Version [4.0 (fr)] ****

HKLM_MozillaPlugins\@nvidia.com/3DVision (x)
HKLM_MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.5 (x)
Searchplugins\bing.xml ( hxxp://www.bing.com/search)
Components\browsercomps.dll (Mozilla Foundation)
HKCU_Extensions|mozilla_cc@internetdownloadmanager.com - C:\Users\Georges\AppData\Roaming\IDM\idmmzcc3

-- C:\Users\Georges\AppData\Roaming\Mozilla\FireFox\Profiles\3w1ep62h.default --
Extensions\cache@status.org (Cache Status)
Extensions\engine@conduit.com (Conduit Engine )
Extensions\firegestures@xuldev.org (FireGestures)
Extensions\ietab@ip.cn (IE Tab Plus)
Extensions\{29c4afe1-db19-4298-8785-fcc94d1d6c1d} (Split Browser)
Extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} (iMacros for Firefox)
Extensions\{90d46c30-9f25-4104-aea9-35c3f84477ff} (mipony-plugin Community Toolbar)
Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12} (Web Developer)
Prefs.js - browser.startup.homepage_override.buildID, 20110318052756
Prefs.js - browser.startup.homepage_override.mstone, rv:2.0

========================================

**** Google Chrome Version [10.0.648.204] ****

Extension\jfmjfhklogoienhpfnppmbcbjfjnkonk (C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx) (?)

-- C:\Users\Georges\AppData\Local\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Google" (Activé: true) (?)
Preferences - homepage: hxxp://www.cherche.us/
Preferences - homepage_is_newtabpage: false
Plugin - NVIDIA 3D Vision (Activé: true) (C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll)
Plugin - "NVIDIA 3D Vision" (Activé: true)
Plugin - " Wacom Dynamic Link Library" (Activé: true)

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|SearchMigratedDefaultURL - hxxp://www.cherche.us/Result.php?cx=partner-pub-04206471363191......
HKCU_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKCU_Main|Start Page - hxxp://hpp.orange.fr/
HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=56626&homepage=hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKCU_URLSearchHooks|{f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} - "setuprog Toolbar" (C:\Program Files (x86)\Setuprog\tbSet1.dll)
HKCU_URLSearchHooks|{872b5b88-9db5-4310-bdd0-ac189557e5f5} - "DVDVideoSoftTB Toolbar" (C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll)
HKCU_URLSearchHooks|{90d46c30-9f25-4104-aea9-35c3f84477ff} - "mipony-plugin Toolbar" (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKLM_URLSearchHooks|{f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} - "setuprog Toolbar" (C:\Program Files (x86)\Setuprog\tbSet1.dll)
HKLM_URLSearchHooks|{872b5b88-9db5-4310-bdd0-ac189557e5f5} - "DVDVideoSoftTB Toolbar" (C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll)
HKLM_URLSearchHooks|{90d46c30-9f25-4104-aea9-35c3f84477ff} - "mipony-plugin Toolbar" (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKCU_SearchScopes\{557C21FE-7274-410D-853E-9ED4471BF193} - "cherche.us" (hxxp://www.cherche.us/Result.php?cx=partner-pub-04206471363191......)
HKCU_SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} - "mipony-plugin Customized Web Search" (hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT...)
HKLM_SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} - "mipony-plugin Customized Web Search" (hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT...)
HKCU_Toolbar\WebBrowser|{47833539-D0C5-4125-9FA8-0819E2EAAC93} (C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll)
HKCU_Toolbar\WebBrowser|{724D43A0-0D85-11D4-9908-00400523E39A} (C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll)
HKCU_Toolbar\WebBrowser|{F4EF4468-9BBB-45A1-A2CE-F0C430A9A7E5} (C:\Program Files (x86)\Setuprog\tbSet1.dll)
HKCU_Toolbar\WebBrowser|{872B5B88-9DB5-4310-BDD0-AC189557E5F5} (C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll)
HKCU_Toolbar\WebBrowser|{90D46C30-9F25-4104-AEA9-35C3F84477FF} (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKCU_Toolbar\WebBrowser|{30F9B915-B755-4826-820B-08FBA6BD249D} (C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll)
HKLM_Toolbar|{47833539-D0C5-4125-9FA8-0819E2EAAC93} (C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll)
HKLM_Toolbar|{724d43a0-0d85-11d4-9908-00400523e39a} (C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll)
HKLM_Toolbar|{f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} (C:\Program Files (x86)\Setuprog\tbSet1.dll)
HKLM_Toolbar|{872b5b88-9db5-4310-bdd0-ac189557e5f5} (C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll)
HKLM_Toolbar|{90d46c30-9f25-4104-aea9-35c3f84477ff} (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKLM_Toolbar|{30F9B915-B755-4826-820B-08FBA6BD249D} (C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll)
HKCU_ElevationPolicy\{1902485B-CE75-42C1-BA2D-57E660793D9A} - C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (Tonec Inc.)
HKCU_ElevationPolicy\{30E4B230-AC56-4D52-B19E-36E2C3A2804D} - C:\Users\Georges\AppData\Local\Hook Network\Raccourcis Internet Explorer 9\2.0.0.1\IE9PinnedSitesHelper.exe (Hook Network)
HKCU_ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4} - C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
HKLM_ElevationPolicy\0ed34164-ef23-4b24-a81d-89ba195a11d0 - C:\Program Files (x86)\Setuprog\SetuprogToolbarHelper.exe (?)
HKLM_ElevationPolicy\2ef3b5ca-f1e5-4bea-9e7c-bedd51d317ff - C:\Program Files (x86)\mipony-plugin\mipony-pluginToolbarHelper.exe (?)
HKLM_ElevationPolicy\8c4ee3b9-79cb-4d09-a892-2dd6c4ce3ab0 - C:\Program Files (x86)\DVDVideoSoftTB\DVDVideoSoftTBToolbarHelper.exe (?)
HKLM_ElevationPolicy\97ee38fe-7a08-400b-ae9c-fb8b0af4fd03 - C:\Program Files (x86)\Setuprog\SetuprogToolbarHelper.exe (?)
HKLM_ElevationPolicy\Identities.exe - C:\Program Files (x86)\Siber Systems\AI RoboForm\{724d43a9-0d85-1202-9988-00400523e39a} (x)
HKLM_ElevationPolicy\Passcards.exe - C:\Program Files (x86)\Siber Systems\AI RoboForm\{724d43a9-0d85-1205-9988-00400523e39a} (x)
HKLM_ElevationPolicy\PasswordGenerator.exe - C:\Program Files (x86)\Siber Systems\AI RoboForm\{724d43a9-0d85-1203-9988-00400523e39a} (x)
HKLM_ElevationPolicy\RoboFormEditor.exe - C:\Program Files (x86)\Siber Systems\AI RoboForm\?????????????????? (x)
HKLM_ElevationPolicy\RoboTaskBarIcon.exe - C:\Program Files (x86)\Siber Systems\AI RoboForm\{724d43a9-0d85-1200-9988-00400523e39a} (x)
HKLM_ElevationPolicy\Safenotes.exe - C:\Program Files (x86)\Siber Systems\AI RoboForm\{724d43a9-0d85-1201-9988-00400523e39a} (x)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{09E9B8FC-3D94-4A9B-AD2E-A64255121895} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbws.exe (Kaspersky Lab)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{0ac0aaad-8193-4552-b112-a018bfedf93d} - C:\Windows\Downloaded Program Files\LMIBroker.exe (LogMeIn, Inc.)
HKLM_ElevationPolicy\{4671F4B7-89F5-4701-B641-570278D5C856} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\x64\klwtblfs.exe (Kaspersky Lab)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{8EF171D1-EA30-444B-AEC9-4BF0640A6682} - C:\Program Files (x86)\mipony-plugin\mipony-pluginToolbarHelper.exe (?)
HKLM_ElevationPolicy\{A028BDC0-6A14-4B83-BB27-359CC82414D0} - C:\Program Files (x86)\ConduitEngine\ConduitEngineHelper.exe (?)
HKLM_ElevationPolicy\{b3f1cac4-7277-4330-966a-6186dc8243f8} - C:\Windows\Downloaded Program Files\LMIProxyHelper.exe (?)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
HKLM_ElevationPolicy\{C9BDBBC1-2B4F-4669-BB5A-51C8D1770C1A} - C:\Windows\Downloaded Program Files\LMIGuardian.exe (LogMeIn, Inc.)
HKLM_ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4} - C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
HKLM_ElevationPolicy\????? - C:\Program Files (x86)\Siber Systems\AI RoboForm\??????? (x)
HKLM_Extensions\{320AF880-6646-11D3-ABEE-C5DBF3571F46} - "Remplir" (C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll,880)
HKLM_Extensions\{320AF880-6646-11D3-ABEE-C5DBF3571F49} - "Enregistrer" (C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll,873)
HKLM_Extensions\{724d43aa-0d85-11d4-9908-00400523e39a} - "Barre RoboForm" (C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll,201)
BHO\{0055C089-8582-441B-A0BF-17B458C2A3A8} - "IDMIEHlprObj Class" (C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll)
BHO\{30F9B915-B755-4826-820B-08FBA6BD249D} - "Conduit Engine" (C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll)
BHO\{724d43a9-0d85-11d4-9908-00400523e39a} - "?" (C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll)
BHO\{872b5b88-9db5-4310-bdd0-ac189557e5f5} - "DVDVideoSoftTB Toolbar" (C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll)
BHO\{90d46c30-9f25-4104-aea9-35c3f84477ff} - "mipony-plugin Toolbar" (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
BHO\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8} - "EOBHO Class" (C:\Program Files (x86)\EoRezo\EoRezoBHO.dll)
BHO\{f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} - "setuprog Toolbar" (C:\Program Files (x86)\Setuprog\tbSet1.dll)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files (x86)\Ad-Remover\Backup: 1 Fichier(s)

C:\Ad-Report-SCAN[1].txt - 30/03/2011 11:17:05 (24695 Octet(s))

Fin à: 11:18:00, 30/03/2011

============== E.O.F ==============
Contenus similaires
a c 333 8 Sécurité
30 Mars 2011 11:23:40

Ok, fais l'option "Nettoyer" d'Ad-Remover maintenant et poste le rapport.
30 Mars 2011 11:35:23

voila

======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 01/03/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 11:26:48 le 30/03/2011, Mode normal

Microsoft Windows 7 Édition Intégrale Service Pack 1 (X64)
Georges@GEORGES-PC (System manufacturer System Product Name)

============== ACTION(S) ==============


Dossier supprimé: C:\Users\Georges\AppData\Roaming\PCtuto
Dossier supprimé: C:\Users\Georges\AppData\Roaming\Mozilla\FireFox\Profiles\3w1ep62h.default\conduit
Dossier supprimé: C:\Users\Georges\AppData\Roaming\Mozilla\FireFox\Profiles\3w1ep62h.default\ConduitEngine
Dossier supprimé: C:\Users\Georges\AppData\Roaming\Mozilla\FireFox\Profiles\3w1ep62h.default\extensions\engine@conduit.com
Dossier supprimé: C:\Users\Georges\AppData\LocalLow\Conduit
Dossier supprimé: C:\Program Files (x86)\Conduit
Dossier supprimé: C:\Users\Georges\AppData\LocalLow\ConduitEngine
Dossier supprimé: C:\Program Files (x86)\ConduitEngine
Dossier supprimé: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShopperReports
Dossier supprimé: C:\Users\Georges\AppData\Roaming\ShopperReports3
Dossier supprimé: C:\Users\Georges\AppData\LocalLow\ShopperReports3
Dossier supprimé: C:\Program Files (x86)\ShopperReports3
Dossier supprimé: C:\Users\Georges\AppData\Local\EoRezo
Dossier supprimé: C:\Program Files (x86)\EoRezo

(!) -- Fichiers temporaires supprimés.


-- Fichier ouvert: C:\Users\Georges\AppData\Roaming\Mozilla\FireFox\Profiles\3w1ep62h.default\Prefs.js --
Ligne supprimée: user_pref("CT2465030.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER...
Ligne supprimée: user_pref("CT2465030.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT246...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/FR", "\"0\"")...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "63...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/20...
Ligne supprimée: user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Ligne supprimée: user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Ligne supprimée: user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Ligne supprimée: user_pref("CommunityToolbar.IsEngineShown", true);
Ligne supprimée: user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Ligne supprimée: user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Ligne supprimée: user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Ligne supprimée: user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Ligne supprimée: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr...
Ligne supprimée: user_pref("CommunityToolbar.ToolbarsList", "CT2465030,ConduitEngine");
Ligne supprimée: user_pref("CommunityToolbar.ToolbarsList2", "CT2465030");
Ligne supprimée: user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Wed Mar 23 2011 14:35:29 GMT+01...
Ligne supprimée: user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Ligne supprimée: user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Fri Mar 25 2011 08:43:36 GMT+0100");
Ligne supprimée: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Ligne supprimée: user_pref("CommunityToolbar.alert.locale", "en");
Ligne supprimée: user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Ligne supprimée: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Mon Mar 28 2011 11:59:30 GMT+0200");
Ligne supprimée: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1291048634");
Ligne supprimée: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Ligne supprimée: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Ligne supprimée: user_pref("CommunityToolbar.alert.showTrayIcon", false);
Ligne supprimée: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Ligne supprimée: user_pref("CommunityToolbar.alert.userId", "de0306ed-6d7d-4386-992e-6046c2a674e0");
Ligne supprimée: user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Ligne supprimée: user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Ligne supprimée: user_pref("ConduitEngine.AppTrackingLastCheckTime", "Thu Mar 24 2011 08:19:23 GMT+0100");
Ligne supprimée: user_pref("ConduitEngine.CTID", "ConduitEngine");
Ligne supprimée: user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Sun Mar 27 2011 09:16:16 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.FirstServerDate", "03/23/2011 16");
Ligne supprimée: user_pref("ConduitEngine.FirstTime", true);
Ligne supprimée: user_pref("ConduitEngine.FirstTimeFF3", true);
Ligne supprimée: user_pref("ConduitEngine.HasUserGlobalKeys", true);
Ligne supprimée: user_pref("ConduitEngine.Initialize", true);
Ligne supprimée: user_pref("ConduitEngine.InitializeCommonPrefs", true);
Ligne supprimée: user_pref("ConduitEngine.InstalledDate", "Wed Mar 23 2011 14:38:22 GMT+0100");
Ligne supprimée: user_pref("ConduitEngine.IsMulticommunity", false);
Ligne supprimée: user_pref("ConduitEngine.IsOpenThankYouPage", false);
Ligne supprimée: user_pref("ConduitEngine.IsOpenUninstallPage", true);
Ligne supprimée: user_pref("ConduitEngine.LanguagePackLastCheckTime", "Mon Mar 28 2011 11:59:30 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.LastLogin_3.3.3.2", "Mon Mar 28 2011 11:59:30 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Ligne supprimée: user_pref("ConduitEngine.SettingsLastCheckTime", "Mon Mar 28 2011 11:59:30 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.UserID", "UN34036536116729743");
Ligne supprimée: user_pref("ConduitEngine.componentAlertEnabled", true);
Ligne supprimée: user_pref("ConduitEngine.engineLocale", "fr");
Ligne supprimée: user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Mon Mar 28 2011 11:59:36 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Mon Mar 28 2011 11:59:30 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.initDone", true);
Ligne supprimée: user_pref("ConduitEngine.isAppTrackingManagerOn", true);
-- Fichier Fermé --


Clé supprimée: HKLM\Software\Classes\CLSID\{154C3C5B-A85F-42BC-8963-C1C5457C54FF}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{154C3C5B-A85F-42BC-8963-C1C5457C54FF}
Clé supprimée: HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKLM\Software\Classes\CLSID\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}
Clé supprimée: HKLM\Software\Classes\CLSID\{CC7BD6F1-565C-47ce-A5BB-9C935E77B59D}
Clé supprimée: HKLM\Software\Classes\CLSID\{CFC16189-8A92-4a29-A940-60248385F426}
Clé supprimée: HKLM\Software\Classes\Interface\{17BF1E05-C0E8-413C-BD1F-A481EEA3B8E9}
Clé supprimée: HKLM\Software\Classes\Interface\{21BA420E-161C-413A-B21E-4E42AE1F4226}
Clé supprimée: HKLM\Software\Classes\Interface\{453DB0C5-F41C-4D97-8DD6-CC72ECD5F699}
Clé supprimée: HKLM\Software\Classes\Interface\{4AFC07D0-59BB-46B8-B097-1A46E88EEF71}
Clé supprimée: HKLM\Software\Classes\Interface\{6511CE4C-4722-40D0-AD3D-4AFA2F50978A}
Clé supprimée: HKLM\Software\Classes\Interface\{83B2FE06-BA20-4F7D-96C6-6FC3A4E877D3}
Clé supprimée: HKLM\Software\Classes\Interface\{8AD9AD05-36BE-4E40-BA62-5422EB0D02FB}
Clé supprimée: HKLM\Software\Classes\Interface\{9BEC9B38-BF39-4899-806E-A1C5DFEB60A2}
Clé supprimée: HKLM\Software\Classes\Interface\{AEBF09E2-0C15-43C8-99BF-928C645D98A0}
Clé supprimée: HKLM\Software\Classes\Interface\{B32966A2-F7C2-4362-A6CF-399EC8B44110}
Clé supprimée: HKLM\Software\Classes\Interface\{B86D82BF-D39F-439A-A07C-43EDDC6F6EA6}
Clé supprimée: HKLM\Software\Classes\Interface\{DA6305B9-0869-4235-8C1D-533A65E639E5}
Clé supprimée: HKLM\Software\Classes\Interface\{DF76E9B7-35EC-46FC-AF56-5B79DED9D64F}
Clé supprimée: HKLM\Software\Classes\Interface\{E6961C59-CFCE-4CCD-B794-BC78DB98413A}
Clé supprimée: HKLM\Software\Classes\Interface\{F8B4EC8A-2407-4BE0-AEE2-0F430D65A90D}
Clé supprimée: HKLM\Software\Classes\TypeLib\{02AED140-2B62-4B49-8B3B-179020CC39B9}
Clé supprimée: HKLM\Software\Classes\TypeLib\{18AF7201-4F14-4BCF-93FE-45617CF259FF}
Clé supprimée: HKLM\Software\Classes\Conduit.Engine
Clé supprimée: HKLM\Software\Classes\EoEngineBHO.EOBHO
Clé supprimée: HKLM\Software\Classes\EoEngineBHO.EOBHO.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.AsyncReporter
Clé supprimée: HKLM\Software\Classes\ShopperReports.AsyncReporter.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.CntntDic
Clé supprimée: HKLM\Software\Classes\ShopperReports.CntntDic.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.CntntDisp
Clé supprimée: HKLM\Software\Classes\ShopperReports.CntntDisp.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.Dwnldr
Clé supprimée: HKLM\Software\Classes\ShopperReports.Dwnldr.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.HbAx
Clé supprimée: HKLM\Software\Classes\ShopperReports.HbAx.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.HbGuru
Clé supprimée: HKLM\Software\Classes\ShopperReports.HbGuru.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.HbInfoBand
Clé supprimée: HKLM\Software\Classes\ShopperReports.HbInfoBand.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.IEButton
Clé supprimée: HKLM\Software\Classes\ShopperReports.IEButton.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.IEButtonA
Clé supprimée: HKLM\Software\Classes\ShopperReports.IEButtonA.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.KOPFF
Clé supprimée: HKLM\Software\Classes\ShopperReports.KOPFF.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.MozillaNvgtnTrpr
Clé supprimée: HKLM\Software\Classes\ShopperReports.MozillaNvgtnTrpr.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.MozillaPSExecuter
Clé supprimée: HKLM\Software\Classes\ShopperReports.MozillaPSExecuter.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.ReportData
Clé supprimée: HKLM\Software\Classes\ShopperReports.ReportData.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.Reporter
Clé supprimée: HKLM\Software\Classes\ShopperReports.Reporter.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.RprtCtrl
Clé supprimée: HKLM\Software\Classes\ShopperReports.RprtCtrl.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.Scopes
Clé supprimée: HKLM\Software\Classes\ShopperReports.Scopes.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.Stock
Clé supprimée: HKLM\Software\Classes\ShopperReports.Stock.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.TriggerImmidiate
Clé supprimée: HKLM\Software\Classes\ShopperReports.TriggerImmidiate.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.TriggerImmidiateOrRandomTS
Clé supprimée: HKLM\Software\Classes\ShopperReports.TriggerImmidiateOrRandomTS.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.TriggerOnceInDay
Clé supprimée: HKLM\Software\Classes\ShopperReports.TriggerOnceInDay.1
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2269050
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2465030
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2552113
Clé supprimée: HKLM\Software\Classes\AppID\EoEngineBHO.DLL
Clé supprimée: HKLM\Software\Classes\AppID\{AFBB7970-789A-4264-BA70-E8127DECE400}
Clé supprimée: HKLM\Software\Classes\AppID\BRNstIE.DLL
Clé supprimée: HKLM\Software\Classes\AppID\{8258B35C-05B8-4c0e-9525-9BCCC70F8F2D}
Clé supprimée: HKLM\Software\Classes\AppID\CmndFF.DLL
Clé supprimée: HKLM\Software\Classes\AppID\{A89256AD-EC17-4a83-BEF5-4B8BC4F39306}
Clé supprimée: HKLM\Software\Classes\AppID\mozillaps.dll
Clé supprimée: HKLM\Software\Classes\AppID\{7025E484-D4B0-441a-9F0B-69063BD679CE}
Clé supprimée: HKLM\Software\Classes\AppID\Pltfrm.DLL
Clé supprimée: HKLM\Software\Classes\AppID\{0D82ACD6-A652-4496-A298-2BDE705F4227}
Clé supprimée: HKLM\Software\EoRezo
Clé supprimée: HKLM\Software\Conduit
Clé supprimée: HKLM\Software\conduitEngine
Clé supprimée: HKLM\Software\Freeze.com
Clé supprimée: HKLM\Software\ShopperReports3
Clé supprimée: HKCU\Software\EoRezo
Clé supprimée: HKCU\Software\ShopperReports3
Clé supprimée: HKCU\Software\AppDataLow\Toolbar
Clé supprimée: HKCU\Software\AppDataLow\Software\Conduit
Clé supprimée: HKCU\Software\AppDataLow\Software\conduitEngine
Clé supprimée: HKCU\Software\AppDataLow\Software\ShopperReports3
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A028BDC0-6A14-4B83-BB27-359CC82414D0}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\EoRezo_is1
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ShopperReportsSA
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{89F88394-3828-4D03-A0CF-8203604C3DA6}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D4233F04-1789-483C-A137-731E8F113DD5}

Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|ShopperReports 3.0.491.0
Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|SRS_IT_E8790575BD765A5731A095
Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Eorezo
Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{30F9B915-B755-4826-820B-08FBA6BD249D}
Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{30F9B915-B755-4826-820B-08FBA6BD249D}


============== SCAN ADDITIONNEL ==============

**** Mozilla Firefox Version [4.0 (fr)] ****

HKLM_MozillaPlugins\@nvidia.com/3DVision (x)
HKLM_MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.5 (x)
Searchplugins\bing.xml ( hxxp://www.bing.com/search)
Components\browsercomps.dll (Mozilla Foundation)
HKCU_Extensions|mozilla_cc@internetdownloadmanager.com - C:\Users\Georges\AppData\Roaming\IDM\idmmzcc3

-- C:\Users\Georges\AppData\Roaming\Mozilla\FireFox\Profiles\3w1ep62h.default --
Extensions\cache@status.org (Cache Status)
Extensions\firegestures@xuldev.org (FireGestures)
Extensions\ietab@ip.cn (IE Tab Plus)
Extensions\{29c4afe1-db19-4298-8785-fcc94d1d6c1d} (Split Browser)
Extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} (iMacros for Firefox)
Extensions\{90d46c30-9f25-4104-aea9-35c3f84477ff} (mipony-plugin Community Toolbar)
Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12} (Web Developer)
Prefs.js - browser.startup.homepage_override.buildID, 20110318052756
Prefs.js - browser.startup.homepage_override.mstone, rv:2.0

========================================

**** Google Chrome Version [10.0.648.204] ****

Extension\jfmjfhklogoienhpfnppmbcbjfjnkonk (C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx) (?)

-- C:\Users\Georges\AppData\Local\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Google" (Activé: true) (?)
Preferences - homepage: hxxp://www.cherche.us/
Preferences - homepage_is_newtabpage: false
Plugin - NVIDIA 3D Vision (Activé: true) (C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll)
Plugin - "NVIDIA 3D Vision" (Activé: true)
Plugin - " Wacom Dynamic Link Library" (Activé: true)

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_URLSearchHooks|{f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} - "setuprog Toolbar" (C:\Program Files (x86)\Setuprog\tbSet1.dll)
HKCU_URLSearchHooks|{872b5b88-9db5-4310-bdd0-ac189557e5f5} - "DVDVideoSoftTB Toolbar" (C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll)
HKCU_URLSearchHooks|{90d46c30-9f25-4104-aea9-35c3f84477ff} - "mipony-plugin Toolbar" (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKLM_URLSearchHooks|{f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} - "setuprog Toolbar" (C:\Program Files (x86)\Setuprog\tbSet1.dll)
HKLM_URLSearchHooks|{872b5b88-9db5-4310-bdd0-ac189557e5f5} - "DVDVideoSoftTB Toolbar" (C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll)
HKLM_URLSearchHooks|{90d46c30-9f25-4104-aea9-35c3f84477ff} - "mipony-plugin Toolbar" (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKCU_SearchScopes\{557C21FE-7274-410D-853E-9ED4471BF193} - "cherche.us" (hxxp://www.cherche.us/Result.php?cx=partner-pub-04206471363191......)
HKCU_Toolbar\WebBrowser|{47833539-D0C5-4125-9FA8-0819E2EAAC93} (C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll)
HKCU_Toolbar\WebBrowser|{724D43A0-0D85-11D4-9908-00400523E39A} (C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll)
HKCU_Toolbar\WebBrowser|{F4EF4468-9BBB-45A1-A2CE-F0C430A9A7E5} (C:\Program Files (x86)\Setuprog\tbSet1.dll)
HKCU_Toolbar\WebBrowser|{872B5B88-9DB5-4310-BDD0-AC189557E5F5} (C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll)
HKCU_Toolbar\WebBrowser|{90D46C30-9F25-4104-AEA9-35C3F84477FF} (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKLM_Toolbar|{47833539-D0C5-4125-9FA8-0819E2EAAC93} (C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll)
HKLM_Toolbar|{724d43a0-0d85-11d4-9908-00400523e39a} (C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll)
HKLM_Toolbar|{f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} (C:\Program Files (x86)\Setuprog\tbSet1.dll)
HKLM_Toolbar|{872b5b88-9db5-4310-bdd0-ac189557e5f5} (C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll)
HKLM_Toolbar|{90d46c30-9f25-4104-aea9-35c3f84477ff} (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKCU_ElevationPolicy\{1902485B-CE75-42C1-BA2D-57E660793D9A} - C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (Tonec Inc.)
HKCU_ElevationPolicy\{30E4B230-AC56-4D52-B19E-36E2C3A2804D} - C:\Users\Georges\AppData\Local\Hook Network\Raccourcis Internet Explorer 9\2.0.0.1\IE9PinnedSitesHelper.exe (Hook Network)
HKCU_ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4} - C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
HKLM_ElevationPolicy\0ed34164-ef23-4b24-a81d-89ba195a11d0 - C:\Program Files (x86)\Setuprog\SetuprogToolbarHelper.exe (?)
HKLM_ElevationPolicy\2ef3b5ca-f1e5-4bea-9e7c-bedd51d317ff - C:\Program Files (x86)\mipony-plugin\mipony-pluginToolbarHelper.exe (?)
HKLM_ElevationPolicy\8c4ee3b9-79cb-4d09-a892-2dd6c4ce3ab0 - C:\Program Files (x86)\DVDVideoSoftTB\DVDVideoSoftTBToolbarHelper.exe (?)
HKLM_ElevationPolicy\97ee38fe-7a08-400b-ae9c-fb8b0af4fd03 - C:\Program Files (x86)\Setuprog\SetuprogToolbarHelper.exe (?)
HKLM_ElevationPolicy\Identities.exe - C:\Program Files (x86)\Siber Systems\AI RoboForm\{724d43a9-0d85-1202-9988-00400523e39a} (x)
HKLM_ElevationPolicy\Passcards.exe - C:\Program Files (x86)\Siber Systems\AI RoboForm\{724d43a9-0d85-1205-9988-00400523e39a} (x)
HKLM_ElevationPolicy\PasswordGenerator.exe - C:\Program Files (x86)\Siber Systems\AI RoboForm\{724d43a9-0d85-1203-9988-00400523e39a} (x)
HKLM_ElevationPolicy\RoboFormEditor.exe - C:\Program Files (x86)\Siber Systems\AI RoboForm\?????????????????? (x)
HKLM_ElevationPolicy\RoboTaskBarIcon.exe - C:\Program Files (x86)\Siber Systems\AI RoboForm\{724d43a9-0d85-1200-9988-00400523e39a} (x)
HKLM_ElevationPolicy\Safenotes.exe - C:\Program Files (x86)\Siber Systems\AI RoboForm\{724d43a9-0d85-1201-9988-00400523e39a} (x)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{09E9B8FC-3D94-4A9B-AD2E-A64255121895} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbws.exe (Kaspersky Lab)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{0ac0aaad-8193-4552-b112-a018bfedf93d} - C:\Windows\Downloaded Program Files\LMIBroker.exe (LogMeIn, Inc.)
HKLM_ElevationPolicy\{4671F4B7-89F5-4701-B641-570278D5C856} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\x64\klwtblfs.exe (Kaspersky Lab)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{8EF171D1-EA30-444B-AEC9-4BF0640A6682} - C:\Program Files (x86)\mipony-plugin\mipony-pluginToolbarHelper.exe (?)
HKLM_ElevationPolicy\{b3f1cac4-7277-4330-966a-6186dc8243f8} - C:\Windows\Downloaded Program Files\LMIProxyHelper.exe (?)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
HKLM_ElevationPolicy\{C9BDBBC1-2B4F-4669-BB5A-51C8D1770C1A} - C:\Windows\Downloaded Program Files\LMIGuardian.exe (LogMeIn, Inc.)
HKLM_ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4} - C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
HKLM_ElevationPolicy\????? - C:\Program Files (x86)\Siber Systems\AI RoboForm\??????? (x)
HKLM_Extensions\{320AF880-6646-11D3-ABEE-C5DBF3571F46} - "Remplir" (C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll,880)
HKLM_Extensions\{320AF880-6646-11D3-ABEE-C5DBF3571F49} - "Enregistrer" (C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll,873)
HKLM_Extensions\{724d43aa-0d85-11d4-9908-00400523e39a} - "Barre RoboForm" (C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll,201)
BHO\{0055C089-8582-441B-A0BF-17B458C2A3A8} - "IDMIEHlprObj Class" (C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll)
BHO\{724d43a9-0d85-11d4-9908-00400523e39a} - "?" (C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll)
BHO\{872b5b88-9db5-4310-bdd0-ac189557e5f5} - "DVDVideoSoftTB Toolbar" (C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll)
BHO\{90d46c30-9f25-4104-aea9-35c3f84477ff} - "mipony-plugin Toolbar" (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
BHO\{f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} - "setuprog Toolbar" (C:\Program Files (x86)\Setuprog\tbSet1.dll)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 163 Fichier(s)
C:\Program Files (x86)\Ad-Remover\Backup: 16 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 30/03/2011 11:26:53 (24276 Octet(s))
C:\Ad-Report-SCAN[1].txt - 30/03/2011 11:17:05 (24834 Octet(s))

Fin à: 11:27:53, 30/03/2011

============== E.O.F ==============
30 Mars 2011 11:52:33

non merci tout a l'air d'aller bien

voila
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 6211

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

30/03/2011 11:51:09
mbam-log-2011-03-30 (11-51-01).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 200360
Temps écoulé: 6 minute(s), 48 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchURL\SearchAssistant (Hijack.SearchPage) -> Bad: (http://www.cherche.us) Good: (http://www.google.com/) -> No action taken.

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
c:\Users\Georges\AppData\Roaming\addons.dat (Bifrose.Trace) -> No action taken.
30 Mars 2011 13:11:15

oui c'est fait; je te remercie pour ton aide

cordialement
a c 333 8 Sécurité
30 Mars 2011 13:34:28

Pour finir :


1/

  • Télécharge et installe CCleaner.
  • Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
  • Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.


    2/

  • Il est nécessaire de supprimer les points de restauration.


    ==Prévention==

    Voici un dossier complet (A lire avec Adobe Reader ou Foxit Reader) : Lien


    ==Problème résolu ?==

    --> Si tu estimes que ton problème est résolu, ajoute [Résolu] au titre. Pour cela :
  • Clique, dans ton premier message, sur le bouton Editer .
  • Ajoute la mention [Résolu] devant le titre.
  • Clique ensuite sur Valider votre message.


    ;) 
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS