Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business

|-  SECURITE


|||-  

fenetres pub intempestives

 

franzip74 et 13 utilisateurs inconnus
Ajouter une réponse
 

 
Page photos
 
 Mot :  Pseudo :  
Vider la liste des messages à citer
 
 Page :
1
Auteur
 Sujet :

fenetres pub intempestives

Prévenir les modérateurs en cas d'abus 
alain-st-martin13
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 16/01/2011 à 16:27:16  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonjour,
 Depuis quelques mois, comme beaucoup d'autres membres j'ai de nombreuses fenetres de pub intempestives qui s'ouvrent  meme quand je ne suis pas connecté à internet. il me semble que ces fenetres s'ouvrent surtout quand je clique sur "entrée" pour valider une action.
 J'ai windows vista et j'ai avast comme anti virus, avec adaware entre autre.
 J'ai fait plusieurs restaurations de système sans succés, je pense que je n'ai pas pu remonter assez loin dans le temps.
 Je suis disposé à essayer toutes les manipulations possibles mais je ne suis pas spécialiste en informatique.
 merci pour votre aide...Alain.

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 16/01/2011 à 16:49:41  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello:

 Télécharge RSIT (de random/random) sur le bureau :

 - Sur le bureau, double clique sur RSIT.exe ;
 - Clique sur Continue (Disclaimer) dans la fenêtre ;

 Si la dernière version de HijackThis n'est pas détectée sur ton PC, RSIT le téléchargera et te demandera d'accepter la licence.

 Lorsque l’ analyse sera achevée, 2 fichiers texte s’ ouvriront (avec le bloc-notes).

 Poste le contenu de log.txt (celui qui apparaît à l’ écran) ainsi que info.txt (que tu verras dans la Barre des tâches).

 Tutoriel ->  ici

(Publicité)
Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 16/01/2011 à 16:50:35  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut Alain, bienvenu sur 01net


 Grilled   :pt1cable:


 @++    :)

  :hello:   kmisol

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 16/01/2011 à 18:04:53  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
...

 :hello: dédétraqué  :hello:

alain-st-martin13
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 16/01/2011 à 19:04:00  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonsoir,
 Voici le premier fichier issu de l'analyse :

 Logfile of random's system information tool 1.08 (written by random/random)
 Run by Alain at 2011-01-16 17:47:45
 Microsoft® Windows Vista™ Édition Familiale Premium  Service Pack 2
 System drive C: has 28 GB (9%) free of 293 GB
 Total RAM: 3070 MB (62% free)

 Logfile of Trend Micro HijackThis v2.0.4
 Scan saved at 17:48:04, on 16/01/2011
 Platform: Windows Vista SP2 (WinNT 6.00.1906)
 MSIE: Internet Explorer v8.00 (8.00.6001.18999)
 Boot mode: Normal

 Running processes:
 C:\Windows\system32\Dwm.exe
 C:\Windows\Explorer.EXE
 C:\Windows\system32\taskeng.ex​e
 C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComS​er.exe
 C:\Users\Alain\AppData\Roaming​\eoRezo\SoftwareUpdate\Softwar​eUpdateHP.exe
 C:\Program Files\Windows Defender\MSASCui.exe
 C:\Windows\RtHDVCpl.exe
 C:\Windows\System32\rundll32.e​xe
 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
 C:\Program Files\Common Files\logishrd\LComMgr\Communi​cations_Helper.exe
 C:\Program Files\Logitech\QuickCam\Quickc​am.exe
 C:\Program Files\EoRezo\eorezo.exe
 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
 C:\Program Files\DivX\DivX Update\DivXUpdate.exe
 C:\Program Files\iTunes\iTunesHelper.exe
 C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
 C:\Program Files\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe
 C:\Windows\ehome\ehtray.exe
 C:\Program Files\Windows Media Player\wmpnscfg.exe
 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
 C:\Windows\ehome\ehmsas.exe
 C:\Program Files\Common Files\Logishrd\LQCVFX\COCIMana​ger.exe
 C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
 C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
 C:\Program Files\Lavasoft\Ad-Aware\AAWTra​y.exe
 C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
 C:\Program Files\iTunes\iTunes.exe
 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelpe​r.exe
 C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Windows\system32\Macromed\F​lash\FlashUtil10l_ActiveX.exe
 C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
 C:\Users\Alain\Desktop\RSIT.ex​e
 C:\Program Files\trend micro\Alain.exe

 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://y.lo.st
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Search_U​RL = http://go.microsoft.com/fwlink/?LinkId=54896
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://www.ustart.org
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,SearchAssistan​t =
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,CustomizeSearc​h =
 R1 - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings,ProxyOverride = *.local
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me =
 O1 - Hosts: ::1 localhost
 O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-76883​4316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.d​ll
 O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7​D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\Ac​roIEHelper.dll
 O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C​59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A​5SRCHAS.DLL
 O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B​5AD205D} - C:\Program Files\Google\GoogleToolbarNoti​fier\5.6.5612.1312\swg.dll
 O2 - BHO: EOBHO - {C10DC1F4-CCDF-4224-A24D-B23AF​C3573C8} - C:\Program Files\EoRezo\EoRezoBHO.dll
 O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02​E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B​7C5AC242193BB3E.dll
 O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3​DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dl​l
 O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C5​4984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBA​R.DLL
 O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E​116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
 O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-00902​71D4F88} - C:\Program Files\Yahoo!\Companion\Install​s\cpn\yt.dll
 O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C5​4984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBA​R.DLL
 O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
 O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
 O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,​NvStartup
 O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.d​ll,NvTaskbarInit
 O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
 O4 - HKLM\..\Run: [toolbar_eula_launcher] C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.​exe
 O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
 O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communi​cations_Helper.exe"
 O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickc​am.exe" /hide
 O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
 O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
 O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.​exe
 O4 - HKLM\..\Run: [Skytel] Skytel.exe
 O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
 O4 - HKLM\..\Run: [eorezo] "C:\Program Files\EoRezo\eorezo.exe"
 O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
 O4 - HKLM\..\Run: [TrayServer] C:\Program Files\MAGIX\Films_sur_DVD_8\Tr​ayServer.exe
 O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
 O4 - HKLM\..\RunOnce: [SoftwareHelper] C:\Users\Alain\AppData\Roaming​\eoRezo\SoftwareUpdate\Softwar​eUpdateHP.exe -runonce
 O4 - HKCU\..\Run: [SmpcSys] C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
 O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe​"
 O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
 O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
 O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
 O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
 O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C5​71A8263} - C:\PROGRA~1\MICROS~3\Office12\​REFIEBAR.DLL
 O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1​AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
 O17 - HKLM\System\CCS\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS1\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS2\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS3\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS4\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS5\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS6\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS7\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS8\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS9\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS10\Services\Tcpi​p\..\{05341615-9D20-4255-94B7-​7BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C​7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKY​PE4~1.DLL
 O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~4\GO​EC62~1.DLL
 O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-30783​02C2030} - C:\Windows\system32\browseui.d​ll
 O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent​.exe
 O23 - Service: @%SystemRoot%\system32\aelupsv​c.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\Alg.exe​,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
 O23 - Service: @%systemroot%\system32\appinfo​.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceServi​ce.exe
 O23 - Service: @%SystemRoot%\system32\audiosr​v.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\audiosr​v.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
 O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
 O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
 O23 - Service: @%SystemRoot%\system32\bfe.dll​,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\qmgr.dl​l,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.ex​e
 O23 - Service: @%systemroot%\system32\browser​.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\certpro​p.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\cryptsv​c.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe
 O23 - Service: @%SystemRoot%\system32\dhcpcsv​c.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\dnsapi.​dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\dot3svc​.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\dps.dll​,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\eapsvc.​dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\ehome\ehrecvr.ex​e,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
 O23 - Service: @%SystemRoot%\ehome\ehsched.ex​e,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
 O23 - Service: @%SystemRoot%\ehome\ehstart.dl​l,-101 (ehstart) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\emdmgmt​.dll,-1000 (EMDMgmt) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\wevtsvc​.dll,-200 (Eventlog) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\fdPHost​.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\fdrespu​b.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\MAGIX\Common\Database\bi​n\fbserver.exe
 O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.​exe
 O23 - Service: @%systemroot%\system32\FntCach​e.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - C:\Program Files\Packard bell\SAXO27\HIDSERVICE.EXE
 O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-1​11108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
 O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: Google Update Service (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpda​te.exe
 O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe
 O23 - Service: @%SystemRoot%\System32\hidserv​.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\kmsvc.d​ll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: hpqcxs08 - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: Service HP CUE DeviceDiscovery (hpqddsvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: HP Network Devices Support (HPSLPSVC) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\ikeext.​dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\IPBusEn​um.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\iphlpsv​c.dll,-200 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe
 O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\srvsvc.​dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\wkssvc.​dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWSer​vice.exe
 O23 - Service: @%SystemRoot%\system32\lltdres​.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\lmhsvc.​dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComS​er.exe
 O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv​.exe
 O23 - Service: @%systemroot%\system32\mmcss.d​ll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\Firewal​lAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
 O23 - Service: @%SystemRoot%\system32\iscsids​c.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\msimsg.​dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.ex​e
 O23 - Service: @%SystemRoot%\system32\qagentr​t.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
 O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\netlogo​n.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe
 O23 - Service: @%SystemRoot%\system32\netman.​dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\netprof​.dll,-246 (netprofm) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\nlasvc.​dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Nero\Lib\NMIndexingServi​ce.exe (file missing)
 O23 - Service: @%SystemRoot%\system32\nsisvc.​dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
 O23 - Service: @%SystemRoot%\system32\p2psvc.​dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\p2psvc.​dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\pcasvc.​dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\pla.dll​,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.e​xe
 O23 - Service: @%SystemRoot%\system32\umpnpmg​r.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\p2psvc.​dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\p2psvc.​dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\polstor​e.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\profsvc​.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\psbase.​dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe
 O23 - Service: @%SystemRoot%\system32\qwave.d​ll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%Systemroot%\system32\rasauto​.dll,-200 (RasAuto) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%Systemroot%\system32\rasmans​.dll,-200 (RasMan) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\Locator​.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.ex​e
 O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\samsrv.​dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe
 O23 - Service: @%SystemRoot%\System32\SCardSv​r.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\schedsv​c.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\certpro​p.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\sdrsvc.​dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\seclogo​n.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\Sens.dl​l,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
 O23 - Service: @%SystemRoot%\System32\SessEnv​.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\ipnathl​p.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\shsvcs.​dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\SLsvc.e​xe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe
 O23 - Service: @%SystemRoot%\system32\SLUINot​ify.dll,-103 (SLUINotify) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\snmptra​p.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.e​xe
 O23 - Service: @%systemroot%\system32\spoolsv​.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.ex​e
 O23 - Service: @%systemroot%\system32\ssdpsrv​.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\sstpsvc​.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\wiaserv​c.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\swprv.d​ll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\sysmain​.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\TabSvc.​dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\tapisrv​.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\tbssvc.​dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\termsrv​.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\shsvcs.​dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\mmcss.d​ll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\trkwks.​dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\servicing\Truste​dInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedIn​staller.exe
 O23 - Service: @%SystemRoot%\system32\ui0dete​ct.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.​exe
 O23 - Service: @%systemroot%\system32\upnphos​t.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: UPnPService - Magix AG - C:\Program Files\Common Files\MAGIX Shared\UPnPService\UPnPService​.exe
 O23 - Service: @%SystemRoot%\system32\dwm.exe​,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\vds.exe​,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
 O23 - Service: @%systemroot%\system32\vssvc.e​xe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
 O23 - Service: @%SystemRoot%\system32\w32time​.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\wcncsvc​.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\WcsPlug​InService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\wdi.dll​,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\wdi.dll​,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\webclnt​.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\wecsvc.​dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\wercpls​upport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\wersvc.​dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\winhttp​.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%Systemroot%\system32\wbem\wm​isvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%Systemroot%\system32\wsmsvc.​dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\wlansvc​.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%Systemroot%\system32\wbem\wm​iapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiAp​Srv.exe
 O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
 O23 - Service: @%SystemRoot%\system32\wpcsvc.​dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\wpdbuse​num.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @C:\Windows\Microsoft.NET\Fram​ework\v4.0.30319\WPF\WPFFontCa​che_v0400.exe,-100 (WPFFontCache_v0400) - Unknown owner - C:\Windows\Microsoft.NET\Frame​work\v4.0.30319\WPF\WPFFontCac​he_v0400.exe
 O23 - Service: @%SystemRoot%\System32\wscsvc.​dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\SearchI​ndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchInde​xer.exe
 O23 - Service: @%systemroot%\system32\wuaueng​.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\wudfsvc​.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.ex​e

 --
 End of file - 26498 bytes

 ======Scheduled tasks folder======

 C:\Windows\tasks\Ad-Aware Update (Weekly).job
 C:\Windows\tasks\Extension de garantie-Alain.job
 C:\Windows\tasks\GoogleUpdateT​askMachineCore.job
 C:\Windows\tasks\GoogleUpdateT​askMachineUA.job
 C:\Windows\tasks\NeroLiveEpgUp​date-PC-de-Alain_Alain.job

 ======Registry dump======

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
 HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.d​ll [2009-10-22 328248]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
 Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\Ac​roIEHelper.dll [2006-10-22 62080]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{9CB65201-89C4-402c-BA80-02D8C59F9B1D}]
 Ask Search Assistant BHO - C:\Program Files\AskTBar\SrchAstt\1.bin\A​5SRCHAS.DLL [2009-10-18 57344]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
 Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-08-27 256112]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
 Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNoti​fier\5.6.5612.1312\swg.dll [2010-09-19 842296]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}]
 EOBHO Class - C:\Program Files\EoRezo\EoRezoBHO.dll [2009-11-11 221184]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
 Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B​7C5AC242193BB3E.dll [2009-08-27 458736]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{CA6319C0-31B7-401E-A518-A07C3DB8F777}]
 CBrowserHelperObject Object - C:\Program Files\Google\Google_BAE\BAE.dl​l [2006-11-09 98304]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{FE063DB1-4EC0-403e-8DD8-394C54984B2C}]
 Ask Toolbar BHO - C:\Program Files\AskTBar\bar\1.bin\ASKTBA​R.DLL [2009-10-18 245760]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
 HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\Toolbar]
 {EF99BD32-C1FB-11D2-892F-00902​71D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Install​s\cpn\yt.dll [2005-08-04 343112]
 {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-08-27 256112]
 {FE063DB9-4EC0-403e-8DD8-394C5​4984B2C} - Ask Toolbar - C:\Program Files\AskTBar\bar\1.bin\ASKTBA​R.DLL [2009-10-18 245760]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Run]
 "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
 "RtHDVCpl"=C:\Windows\RtHDVCpl​.exe [2008-06-13 6183456]
 "NvCplDaemon"=C:\Windows\syste​m32\NvCpl.dll [2008-03-24 13531680]
 "NvMediaCenter"=C:\Windows\sys​tem32\NvMcTray.dll [2008-03-24 92704]
 "Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-06-29 30192]
 "toolbar_eula_launcher"=C:\Pro​gram Files\Packard Bell\GOOGLE_EULA\EULALauncher.​exe [2007-02-20 28672]
 "HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2008-03-25 49152]
 "LogitechCommunicationsManager​"=C:\Program Files\Common Files\LogiShrd\LComMgr\Communi​cations_Helper.exe [2008-08-14 565008]
 "LogitechQuickCamRibbon"=C:\Pr​ogram Files\Logitech\QuickCam\Quickc​am.exe [2008-08-14 2407184]
 "AppleSyncNotifier"=C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [2010-09-21 47904]
 "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
 "EoEngine"= []
 "NeroFilterCheck"=C:\Windows\s​ystem32\NeroCheck.exe [2001-07-09 155648]
 "Skytel"=C:\Windows\Skytel.exe [2007-11-20 1826816]
 "hpqSRMon"=C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [2008-08-20 150016]
 "eorezo"=C:\Program Files\EoRezo\eorezo.exe [2010-11-08 671744]
 "avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2010-09-07 2838912]
 "TrayServer"=C:\Program Files\MAGIX\Films_sur_DVD_8\Tr​ayServer.exe [2008-09-01 90112]
 "NPSStartup"= []
 "DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-09-16 1164584]
 "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-11-29 421888]
 "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2010-12-13 421160]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\RunOnce]
 "SoftwareHelper"=C:\Users\Alai​n\AppData\Roaming\eoRezo\Softw​areUpdate\SoftwareUpdateHP.exe [2008-12-09 368224]

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​Run]
 "SmpcSys"=C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe [2008-02-04 1038136]
 "swg"=C:\Program Files\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe [2009-02-21 39408]
 "ehTray.exe"=C:\Windows\ehome\​ehTray.exe [2008-01-21 125952]
 "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe /background []
 "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]

 C:\ProgramData\Microsoft\Windo​ws\Start Menu\Programs\Startup
 HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows NT\CurrentVersion\Windows]
 "AppInit_DLLs"="C:\PROGRA~1\Go​ogle\GOOGLE~4\GOEC62~1.DLL"

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\Lavasoft Ad-Aware Service]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Lavasoft Ad-Aware Service]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\WudfPf]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\WudfRd]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\WudfSvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\WudfUsbccidDriver]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\System]
 "dontdisplaylastusername"=0
 "legalnoticecaption"=
 "legalnoticetext"=
 "shutdownwithoutlogon"=1
 "undockwithoutlogon"=1
 "EnableUIADesktopToggle"=0

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​Policies\explorer]
 "NoDriveAutorun"=0

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\explorer]
 "BindDirectlyToPropertySetStor​age"=0

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\standardprofile\authorizedap​plications\list]

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\domainprofile\authorizedappl​ications\list]

 ======File associations======

 .js - edit - C:\Windows\System32\Notepad.ex​e %1
 .js - open - C:\Windows\System32\WScript.ex​e "%1" %*

 ======List of files/folders created in the last 1 months======

 2011-01-16 17:47:45 ----D---- C:\rsit
 2011-01-16 17:47:45 ----D---- C:\Program Files\trend micro
 2011-01-13 18:54:41 ----A---- C:\Windows\system32\sdclt.exe
 2011-01-13 18:53:41 ----A---- C:\Windows\system32\odbc32.dll
 2011-01-03 19:01:54 ----A---- C:\Windows\system32\win32k.sys
 2011-01-03 19:01:53 ----A---- C:\Windows\system32\schedsvc.d​ll
 2011-01-03 19:01:52 ----A---- C:\Windows\system32\wmicmiplug​in.dll
 2011-01-03 19:01:52 ----A---- C:\Windows\system32\taskschd.d​ll
 2011-01-03 19:01:52 ----A---- C:\Windows\system32\taskeng.ex​e
 2011-01-03 19:01:52 ----A---- C:\Windows\system32\taskcomp.d​ll
 2011-01-03 19:01:50 ----A---- C:\Windows\system32\consent.ex​e
 2011-01-03 19:01:49 ----A---- C:\Windows\system32\fontsub.dl​l
 2011-01-03 19:01:49 ----A---- C:\Windows\system32\atmlib.dll
 2011-01-03 19:01:49 ----A---- C:\Windows\system32\atmfd.dll
 2011-01-03 19:01:44 ----A---- C:\Windows\system32\iertutil.d​ll
 2011-01-03 19:01:43 ----A---- C:\Windows\system32\mstime.dll
 2011-01-03 19:01:43 ----A---- C:\Windows\system32\mshtml.dll
 2011-01-03 19:01:43 ----A---- C:\Windows\system32\ieframe.dl​l
 2011-01-03 19:01:40 ----A---- C:\Windows\system32\ie4uinit.e​xe
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\wininet.dl​l
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\urlmon.dll
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\occache.dl​l
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\mshtmled.d​ll
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\msfeedssyn​c.exe
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\msfeedsbs.​dll
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\msfeeds.dl​l
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\licmgr10.d​ll
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\jsproxy.dl​l
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\ieUnatt.ex​e
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\ieui.dll
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\iesysprep.​dll
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\iesetup.dl​l
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\iernonce.d​ll
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\iepeers.dl​l
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\iedkcs32.d​ll
 2011-01-03 19:01:31 ----A---- C:\Windows\system32\tzres.dll
 2010-12-26 07:10:16 ----D---- C:\Program Files\cspep
 2010-12-19 10:31:29 ----D---- C:\Program Files\iPod
 2010-12-19 10:27:49 ----D---- C:\Program Files\Bonjour

 ======List of files/folders modified in the last 1 months======

 2011-01-16 17:47:57 ----D---- C:\Windows\prefetch
 2011-01-16 17:47:52 ----D---- C:\Windows\Temp
 2011-01-16 17:47:45 ----RD---- C:\Program Files
 2011-01-16 09:53:51 ----SHD---- C:\System Volume Information
 2011-01-16 08:52:40 ----D---- C:\Windows\inf
 2011-01-16 08:52:40 ----AD---- C:\Windows\System32
 2011-01-16 08:52:40 ----A---- C:\Windows\system32\PerfString​Backup.INI
 2011-01-16 08:50:24 ----D---- C:\Windows\Tasks
 2011-01-14 22:24:08 ----D---- C:\Windows\winsxs
 2011-01-13 21:26:41 ----SHD---- C:\Windows\Installer
 2011-01-13 18:53:41 ----A---- C:\Windows\system32\mrt.exe
 2011-01-13 18:53:32 ----D---- C:\ProgramData\Microsoft Help
 2011-01-13 18:51:13 ----D---- C:\Windows\system32\catroot
 2011-01-13 18:51:12 ----D---- C:\Windows\system32\catroot2
 2011-01-13 18:49:56 ----D---- C:\Windows\system32\Tasks
 2011-01-11 23:24:48 ----D---- C:\Windows\system32\Msdtc
 2011-01-11 23:24:45 ----D---- C:\Windows\system32\wbem
 2011-01-11 23:24:45 ----D---- C:\Windows
 2011-01-11 23:24:09 ----D---- C:\Windows\system32\config
 2011-01-11 23:24:01 ----D---- C:\Windows\system32\spool
 2011-01-11 23:24:01 ----D---- C:\Windows\system32\drivers\et​c
 2011-01-11 23:24:01 ----D---- C:\Windows\system32\CodeIntegr​ity
 2011-01-11 23:24:01 ----D---- C:\Windows\registration
 2011-01-04 14:32:23 ----D---- C:\Windows\system32\migration
 2011-01-04 14:32:23 ----D---- C:\Program Files\Windows Mail
 2011-01-04 14:32:23 ----D---- C:\Program Files\Internet Explorer
 2011-01-04 14:26:19 ----D---- C:\Windows\rescache
 2011-01-04 14:15:45 ----D---- C:\Windows\system32\fr-FR
 2011-01-03 18:43:43 ----D---- C:\Windows\system32\drivers\UM​DF
 2011-01-03 18:43:43 ----AD---- C:\Windows\system32\drivers
 2011-01-03 18:43:41 ----D---- C:\ProgramData\FLEXnet
 2010-12-25 13:43:26 ----D---- C:\Windows\Minidump
 2010-12-19 10:32:01 ----D---- C:\Program Files\iTunes
 2010-12-19 10:31:29 ----D---- C:\Program Files\Common Files\Apple
 2010-12-19 10:29:38 ----D---- C:\Program Files\QuickTime
 2010-12-19 09:55:23 ----D---- C:\Program Files\iPod(23)
 2010-12-19 09:54:08 ----SD---- C:\Windows\Downloaded Program Files
 2010-12-19 09:54:08 ----RSD---- C:\Windows\Media
 2010-12-19 09:54:08 ----D---- C:\Program Files\Common Files\Services
 2010-12-19 09:53:57 ----D---- C:\Program Files\EoRezo

 ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 R0 Lbd;Lbd; C:\Windows\system32\DRIVERS\Lb​d.sys [2010-08-12 64288]
 R0 nvstor32;nvstor32; C:\Windows\system32\drivers\nv​stor32.sys [2007-10-31 115744]
 R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\Px​Help20.sys [2010-07-12 45648]
 R1 aswRdr;aswRdr; C:\Windows\system32\drivers\as​wRdr.sys [2010-09-07 23376]
 R1 aswSP;aswSP; C:\Windows\system32\drivers\as​wSP.sys [2010-09-07 165584]
 R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\as​wTdi.sys [2010-09-07 46672]
 R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\as​wFsBlk.sys [2010-09-07 17744]
 R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\driver​s\aswMonFlt.sys [2010-09-07 50768]
 R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GE​ARAspiWDM.sys [2009-05-18 26600]
 R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RT​KVHDA.sys [2008-06-13 2152344]
 R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\Windows\system32\DRIVERS\LV​Pr2Mon.sys [2008-07-26 25624]
 R3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LV​USBSta.sys [2008-07-26 41752]
 R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nv​mfdx32.sys [2007-11-17 1040544]
 R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nv​lddmkm.sys [2008-03-24 7438848]
 R3 pfc;Padus ASPI Shell; C:\Windows\system32\drivers\pf​c.sys [2004-04-01 10368]
 R3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\Windows\system32\DRIVERS\LV​302V32.SYS [2008-07-26 2570520]
 R3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\us​baapl.sys [2010-09-28 41984]
 R3 usbaudio;Pilote USB audio (WDM); C:\Windows\system32\drivers\us​baudio.sys [2009-04-11 73216]
 R3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wp​dusb.sys [2009-10-01 40448]
 R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WU​DFRd.sys [2008-01-21 83328]
 S3 BELKIN;Belkin Wireless G USB Network Adapter; C:\Windows\system32\DRIVERS\BL​KWGU.sys [2007-06-01 252416]
 S3 Dot4;Pilote MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Do​t4.sys [2008-01-21 131584]
 S3 Dot4Print;Pilote de classe Imprimante pour IEEE-1284.4; C:\Windows\system32\DRIVERS\Do​t4Prt.sys [2008-01-21 16384]
 S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\do​t4usb.sys [2008-01-21 36864]
 S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\dr​mkaud.sys [2008-01-21 5632]
 S3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbE​xDisk.SYS [2010-06-14 36608]
 S3 Lavasoft Kernexplorer;Lavasoft helper driver; \??\C:\Program Files\Lavasoft\Ad-Aware\KernEx​plorer.sys [2010-08-12 15008]
 S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MS​KSSRV.sys [2008-01-21 8192]
 S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MS​PCLOCK.sys [2008-01-21 5888]
 S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MS​PQM.sys [2008-01-21 5504]
 S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MS​TEE.sys [2008-01-21 6016]
 S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pc​csmcfd.sys [2007-09-17 21632]
 S3 USB28xxBGA;USB 2861 Device; C:\Windows\system32\DRIVERS\em​BDA.sys [2009-09-01 579840]
 S3 USB28xxOEM;USB 28xx OEM Filter; C:\Windows\system32\DRIVERS\em​OEM.sys [2009-09-02 551424]
 S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\us​bscan.sys [2008-01-21 35328]
 S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\er​rdev.sys [2008-01-21 6656]
 S4 MegaSR;MegaSR; C:\Windows\system32\drivers\me​gasr.sys [2008-01-21 386616]
 S4 nvrd32;NVIDIA nForce RAID Driver; C:\Windows\system32\drivers\nv​rd32.sys [2007-10-31 124960]
 S4 nvsmu;nvsmu; C:\Windows\system32\drivers\nv​smu.sys [2007-10-12 13312]

 ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 R2 AdobeActiveFileMonitor6.0;Adob​e Active File Monitor V6; C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent​.exe [2007-09-10 124832]
 R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceServi​ce.exe [2010-10-16 37664]
 R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
 R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.ex​e [2010-10-07 345376]
 R2 GenericHidService;Generic Service for HID Keyboard Input Collections; C:\Program Files\Packard bell\SAXO27\HIDSERVICE.EXE [2008-05-29 83264]
 R2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\Windows\system32\svchost.ex​e [2008-01-21 21504]
 R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.ex​e [2008-01-21 21504]
 R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWSer​vice.exe [2010-09-12 1352832]
 R2 LVCOMSer;LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComS​er.exe [2008-07-26 186904]
 R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv​.exe [2008-07-26 150040]
 R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-30 935208]
 R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-03-24 118784]
 R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.e​xe [2006-12-19 81920]
 R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
 R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
 R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.ex​e [2008-01-21 21504]
 R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2010-12-13 820008]
 S2 clr_optimization_v4.0.30319_32​;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Frame​work\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
 S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpda​te.exe [2009-08-09 133104]
 S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.ex​e [2008-01-21 21504]
 S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.ex​e [2008-01-21 21504]
 S3 FirebirdServerMAGIXInstance;Fi​rebird Server - MAGIX Instance; C:\Program Files\MAGIX\Common\Database\bi​n\fbserver.exe [2005-11-17 1527900]
 S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.​exe [2008-08-21 654848]
 S3 FontCache;@%systemroot%\system​32\FntCache.dll,-100; C:\Windows\system32\svchost.ex​e [2008-01-21 21504]
 S3 GoogleDesktopManager-051210-11​1108;Google Desktop Manager 5.9.1005.12335; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-06-29 30192]
 S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe [2009-04-28 182768]
 S3 NMIndexingService;NMIndexingSe​rvice; C:\Program Files\Common Files\Nero\Lib\NMIndexingServi​ce.exe []
 S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
 S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
 S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
 S3 UPnPService;UPnPService; C:\Program Files\Common Files\MAGIX Shared\UPnPService\UPnPService​.exe [2006-12-14 544768]
 S3 WPFFontCache_v0400;@C:\Windows​\Microsoft.NET\Framework\v4.0.​30319\WPF\WPFFontCache_v0400.e​xe,-100; C:\Windows\Microsoft.NET\Frame​work\v4.0.30319\WPF\WPFFontCac​he_v0400.exe [2010-03-18 753504]

 -----------------EOF----------​-------

(Publicité)
alain-st-martin13
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 16/01/2011 à 19:06:33  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
et voici le deuxième fichier :

 info.txt logfile of random's system information tool 1.08 2011-01-16 17:48:07

 ======Uninstall list======

 -->C:\Program Files\DivX\DivXCodecUninstall.​exe /CODEC
 -->C:\ProgramData\DivX\DivX7\D​ivX Converter\DivXConverterUninsta​ll.exe /CONVERTER
 32 Bit HP CIO Components Installer-->MsiExec.exe /I{2614F54E-A828-49FA-93BA-45A​3F756BFAA}
 Ad-Aware-->"C:\ProgramData\{EC​C164E0-3133-4C70-A831-F08DB294​0F70}\Ad-AwareInstall.exe" REMOVE=TRUE MODIFY=FALSE
 Ad-Aware-->C:\ProgramData\{ECC​164E0-3133-4C70-A831-F08DB2940​F70}\Ad-AwareInstall.exe
 Adobe AIR-->c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Ado​be AIR Updater.exe -arp:uninstall
 Adobe AIR-->MsiExec.exe /I{B194272D-1F92-46DF-99EB-8D5​CE91CB4EC}
 Adobe Flash Player 10 ActiveX-->C:\Windows\system32\​Macromed\Flash\FlashUtil10l_Ac​tiveX.exe -maintain activex
 Adobe Flash Player 9 Plugin-->MsiExec.exe /X{61E8B062-51F9-4BBB-B1FC-E2A​4A40944F5}
 Adobe Photoshop Elements 6.0-->msiexec /I {F54AC413-D2C6-4A24-B324-370C2​23C6250}
 Adobe Photoshop Elements 6-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *AdobePE6*
 Adobe Reader 8.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81​300000003}
 Adobe Reader 8-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *AdobeReader*
 Adobe Shockwave Player-->C:\Windows\System32\M​acromed\SHOCKW~1\UNWISE.EXE C:\Windows\System32\Macromed\S​HOCKW~1\Install.log
 Apple Application Support-->MsiExec.exe /I{EE6097DD-05F4-4178-9719-D31​70BF098E8}
 Apple Mobile Device Support-->MsiExec.exe /I{308B6AEA-DE50-4666-996D-0FA​461719D6B}
 Apple Software Update-->MsiExec.exe /I{C41300B9-185D-475E-BFEC-39E​F732F19B1}
 Ask Toolbar-->rundll32 C:\PROGRA~1\AskTBar\bar\1.bin\​AskTBar.dll,O
 avast! Free Antivirus-->C:\Program Files\Alwil Software\Avast5\aswRunDll.exe "C:\Program Files\Alwil Software\Avast5\Setup\setiface​.dll" RunSetup
 Belkin Wireless Driver-->C:\Program Files\InstallShield Installation Information\{D593C72C-435B-417​1-8106-9CA8AA34D716}\SETUP.EXE -v"ISSCRIPTCMDLINE=\"-d -zREMOVE\"" -l0x040c -removeonly
 Bonjour-->MsiExec.exe /X{2A981294-F14C-4F0F-9627-D79​3270922F8}
 Browser Address Error Redirector-->regsvr32 /u /s "C:\Program Files\Google\Google_BAE\BAE.dl​l"
 Configuration DivX-->C:\ProgramData\DivX\Set​up\DivXSetup.exe /uninstall /bundleGroupId divx.com
 DivX Converter-->C:\ProgramData\Div​X\DivX7\DivX Converter\DivXConverterUninsta​ll.exe /CONVERTER
 DivX Plus DirectShow Filters-->C:\ProgramData\DivX\​DivX7\DivX Plus DirectShow Filters\DivXDSFiltersUninstall​.exe /DSFILTERS
 eMule-->"C:\Program Files\eMule\Uninstall.exe"
 EoRezo 10.3-->"C:\Program Files\EoRezo\unins000.exe"
 Firebird SQL Server - MAGIX Edition-->C:\Program Files\MAGIX\Common\Database\un​wise.exe
 Google BAE-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *GoogleBAE*
 Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall
 Google Earth-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *GOOGLE_EARTH*
 Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolba​rManager_E582EA556D8DE101.exe" /uninstall
 Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34​B2F06600C}
 Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC4​4E68B55E2}
 Google Earth-->MsiExec.exe /X{4286E640-B5FB-11DF-AC4B-005​056C00008}
 GoogleDesktop-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *GoogleDesktop_XX*
 GoogleToolbar-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *GoogleToolbar*
 HDReg France-->MsiExec.exe /I{0ED40D2A-7131-4FE7-941E-5C3​29336F712}
 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system​32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DC​F5C5BD9} /uninstall  /qb+ REBOOTPROMPT=""
 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system​32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DC​F5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A​786E658} /qb+ REBOOTPROMPT=""
 HP Customer Participation Program 11.0-->C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr​01.exe -datfile hpqhsc01.dat
 HP Imaging Device Functions 11.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzsc​r01.exe -datfile hpqbud01.dat
 HP Photosmart C4500 All-In-One Driver Software 11.0 Rel .4-->C:\Program Files\HP\Digital Imaging\{BED1705F-7558-40f7-9F​52-6C6FBD58EA2E}\setup\hpzscr0​1.exe -datfile hposcr30.dat -onestop
 HP Photosmart Essential 3.5-->C:\Program Files\HP\Digital Imaging\PhotosmartEssential\hp​zscr01.exe -datfile hpqbud13.dat
 HP Smart Web Printing 4.60-->C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpzscr01.exe -datfile hpqbud15.dat
 HP Solution Center 13.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat -forcereboot
 HP Update-->MsiExec.exe /X{818ABC3C-635C-4651-8183-D0E​9640B7DD1}
 Infocentre Rev. 2.0-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *Infocentre*
 iPhone Video Converter-->C:\Program Files\MP4Converter\iPhone Video Converter 3\Uninstall.exe
 iTunes-->MsiExec.exe /I{881F5DE8-9367-4B81-A325-E91​BBC6472F9}
 Logitech QuickCam-->MsiExec.exe /X{3AF8FCCD-F51A-4014-9002-F19​5E1CBC876}
 Logitech Updater-->MsiExec.exe /I{53735ECE-E461-4FD0-B742-23A​352436D3A}
 MAGIX Films sur DVD 8 8.0.3.0 (F)-->C:\Program Files\MAGIX\Films_sur_DVD_8\un​wise.exe
 MAGIX Photo Manager 2008-->C:\Program Files\MAGIX\Photo_Manager_2008​\unwise.exe
 MAGIX Screenshare-->C:\Program Files\MAGIX\PCVisit\unwise.exe
 MAGIX Speed burnR-->C:\Program Files\MAGIX\Speed2_burnR_mxcdr​\unwise.exe
 MAGIX USB-Videowandler 2-->"C:\Program Files\InstallShield Installation Information\{91065458-A5CF-474​C-9160-B44B974B3C25}\setup.exe​" -runfromtemp -l0x040c -removeonly
 MAGIX USB-Videowandler 2-->MsiExec.exe /I{91065458-A5CF-474C-9160-B44​B974B3C25}
 MAGIXUSB-Videowandler 2 Device Driver-->C:\Windows\emunist.ex​e
 Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65​FC413EA31}
 Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET​\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
 Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4​DCF5C5BD9}
 Microsoft .NET Framework 4 Client Profile FRA Language Pack-->MsiExec.exe /X{0F5B4A82-9DAF-3D13-8CB8-AEB​25E4A614E}
 Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft​.NET\Framework\v4.0.30319\Setu​pCache\Client\Setup.exe /repair /x86 /parameterfolder Client
 Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B0​93A5070A6}
 Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A​230AD5B}
 Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-040C-0000-00000​00FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A5​77CB24C}
 Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-00000​00FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A5​77CB24C}
 Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-00000​00FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A5​77CB24C}
 Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-040C-0000-00000​00FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A5​77CB24C}
 Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-040C-0000-00000​00FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A5​77CB24C}
 Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-00000​00FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A5​77CB24C}
 Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0044-040C-0000-00000​00FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A5​77CB24C}
 Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-00000​00FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87​C4264C0}
 Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-000​0000FF1CE}
 Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-000​0000FF1CE}
 Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-000​0000FF1CE}
 Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-000​0000FF1CE}
 Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-000​0000FF1CE}
 Microsoft Office PowerPoint Viewer 2007 (French)-->MsiExec.exe /X{95120000-00AF-040C-0000-000​0000FF1CE}
 Microsoft Office Professional Plus 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
 Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-000​0000FF1CE}
 Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-000​0000FF1CE}
 Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-000​0000FF1CE}
 Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-000​0000FF1CE}
 Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-000​0000FF1CE}
 Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-000​0000FF1CE}
 Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-000​0000FF1CE}
 Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-000​0000FF1CE}
 Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-00000​00FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8F​AA964C5}
 Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-00000​00FF1CE} /uninstall {A0516415-ED61-419A-981D-93596​DA74165}
 Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-00000​00FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B​7B5C045}
 Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-00000​00FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76​BB86787}
 Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-00000​00FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F​6B30EBB}
 Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-00000​00FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D2903​83A10D9}
 Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-000​0000FF1CE}
 Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-000​0000FF1CE}
 Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-000​0000FF1CE}
 Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C8​3EC895118}
 Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0​f04e2912c}
 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725​134ADF989}
 Mise à jour Microsoft Office Excel 2007 Help  (KB963678)-->msiexec /package {90120000-0016-040C-0000-00000​00FF1CE} /uninstall {B761869A-B85C-40E2-994C-A1CE7​8AC8F2C}
 Mise à jour Microsoft Office Outlook 2007 Help  (KB963677)-->msiexec /package {90120000-001A-040C-0000-00000​00FF1CE} /uninstall {51EFB347-1F3D-4BAC-8B79-F056B​904FE21}
 Mise à jour Microsoft Office Powerpoint 2007 Help  (KB963669)-->msiexec /package {90120000-0018-040C-0000-00000​00FF1CE} /uninstall {C3DCA38E-005E-41BA-A52A-7C342​9F351C3}
 Mise à jour Microsoft Office Word 2007 Help  (KB963665)-->msiexec /package {90120000-001B-040C-0000-00000​00FF1CE} /uninstall {81536A04-DBFB-4DB3-978F-0F284​590C223}
 Module de compatibilité pour Microsoft Office System 2007-->MsiExec.exe /X{90120000-0020-040C-0000-000​0000FF1CE}
 Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\Windows\Microsoft.NET​\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
 Module linguistique Microsoft .NET Framework 4 Client Profile FRA-->C:\Windows\Microsoft.NET​\Framework\v4.0.30319\SetupCac​he\ClientLP\Setup.exe /repair /x86 /lcid 1036 /parameterfolder ClientLP
 Mozilla Firefox (3.6.10)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
 MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5​DCDC52A71}
 MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C1​1F044BDEC}
 Mufin MusicFinder Base 1.5.3.249 (F)-->C:\Program Files\MAGIX\Mufin MusicFinder\unwise.exe
 Nero 9-->C:\Program Files\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe  REMOVESERIALNUMBER="9M03-01A1-​PCX7-K31A-8A94-98PT-KT2E-522A"
 neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-975​4A3E60F9B}
 NewBlue VideoFX MSPP-->C:\Program Files\NewBlue\VideoFX MSPP\Uninstal.exe
 NVIDIA Drivers-->C:\Windows\system32\​nvuninst.exe UninstallGUI
 OCR Software by I.R.I.S. 11.0-->C:\Program Files\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat
 Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A0​93F35A238}
 Package de pilotes Windows - Nokia pccsmcfd  (10/12/2007 6.85.4.0)-->C:\PROGRA~1\DIFX\2​70581355A767BF1\dpinst.exe /u C:\Windows\system32\DRVSTORE\p​ccsmcfd_4A1E30386F4D0DEC8F5DF2​62CFBD8845EEBAB175\pccsmcfd.in​f
 Packard Bell ImageWriter-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *ImageWriter*
 Packard Bell LCD Test-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *LCDTest*
 Packard Bell Updator-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *Updator*
 PC Connectivity Solution-->MsiExec.exe /I{AC599724-5755-48C1-ABE7-ABB​857652930}
 PeaZip 2.4.1-->"C:\Program Files\PeaZip\unins000.exe"
 Picasa 2-->"C:\Program Files\Picasa2\Uninstall.exe"
 Picasa2-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *Picasa_2*
 QuickTime-->MsiExec.exe /I{57752979-A1C9-4C02-856B-FBB​27AC4E02C}
 Realtek HD Audio V6.0.1.5643-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *AUDIO_REALTEK*
 Realtek High Definition Audio Driver-->RtlUpd.exe -r -m -nrg2709
 Safari-->MsiExec.exe /I{6B9B0C6F-E5FA-4633-A640-AB9​8A272ECCA}
 SeaTools for Windows-->MsiExec.exe /I{98613C99-1399-416C-A07C-1EE​1C585D872}
 Security Update for 2007 Microsoft Office System (KB2288621)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {5C497F0B-2061-4CC9-A61C-6B45B​867354D}
 Security Update for 2007 Microsoft Office System (KB2288931)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {CD769337-C8AC-46DB-A7DC-643E5​0089263}
 Security Update for 2007 Microsoft Office System (KB2289158)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {210B16C0-CEBD-4DE9-B474-04A7E​8735E16}
 Security Update for 2007 Microsoft Office System (KB2344875)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {6FC5C4C1-D7AE-44C3-94B7-6424F​C3E752F}
 Security Update for 2007 Microsoft Office System (KB2345043)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {536FB502-775F-4494-BACE-C02CC​90B7A5B}
 Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DE​AF3DD08}
 Security Update for 2007 Microsoft Office System (KB976321)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {7F207DCA-3399-40CB-A968-6E599​1B1421A}
 Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)-->C:\Windows\syste​m32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DC​F5C5BD9} /uninstall {A8894F19-59C8-38D2-8A75-36C0C​CE56A5B} /qb+ REBOOTPROMPT=""
 Security Update for Microsoft Office Access 2007 (KB979440)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {1142CCEC-ACA9-484B-BA90-C3A5C​A1988C5}
 Security Update for Microsoft Office Access 2007 (KB979440)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {5A4E43D5-858F-49BD-BA72-8F30E​1793060}
 Security Update for Microsoft Office Excel 2007 (KB2345035)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {B23002DD-34EC-4988-B810-A5E2A​0BF04F1}
 Security Update for Microsoft Office InfoPath 2007 (KB979441)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {1109D0B3-EFA3-4553-AAED-4C3E9​AD130E8}
 Security Update for Microsoft Office InfoPath 2007 (KB979441)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {8CCB781A-CF6B-4FCB-B6D8-59C64​DF5C6DB}
 Security Update for Microsoft Office PowerPoint 2007 (KB982158)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {F5B70033-E79C-4569-90BF-BC9B4​E4F3F46}
 Security Update for Microsoft Office PowerPoint Viewer (KB2413381)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {3DED0A62-44C8-4E00-A785-5212F​297A9D9}
 Security Update for Microsoft Office Publisher 2007 (KB2284697)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {3A4CDE54-2403-483D-8D9A-15E32​64410DF}
 Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B7​03B84FF}
 Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F​21FEDDC}
 Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8C​AC8224D}
 Security Update for Microsoft Office Word 2007 (KB2344993)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {7A5B74FA-7A92-4FC9-821A-2DD5D​4E73E48}
 SetUp My PC-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *SETUPMYPC_FR*
 Shop for HP Supplies-->C:\Program Files\HP\Digital Imaging\HPSSupply\hpzscr01.exe -datfile hpqbud16.dat
 Skype 3.6.2.248-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *SKYPE*
 Skype™ 4.0-->MsiExec.exe /X{24D753CA-6AE9-4E30-8F5F-EFC​93E08BF3D}
 SoftwareUpdate 1.0-->"C:\Users\Alain\AppData\​Roaming\eoRezo\SoftwareUpdate\​unins000.exe"
 Spelling Dictionaries Support For Adobe Reader 8-->MsiExec.exe /I{AC76BA86-7AD7-5464-3428-800​000000003}
 TVAnts 1.0-->C:\PROGRA~1\TVAnts\UNWIS​E.EXE C:\PROGRA~1\TVAnts\INSTALL.LOG
 Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAA​A68E92D}
 Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system​32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DC​F5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275​C4F3607} /qb+ REBOOTPROMPT=""
 Update for Microsoft Office Outlook 2007 (KB2412171)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {752A0B7C-BD24-4362-AC86-AB63F​EE6F46F}
 Update for Outlook 2007 Junk Email Filter (KB2483110)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {592B47F5-D305-431A-9781-ED6CB​B44FA8B}
 Utilitaire de configuration iPhone-->MsiExec.exe /I{FA54AFB1-5745-4389-B8C1-9F7​509672ED1}
 VC80CRTRedist - 8.0.50727.4053-->MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F​432EC0421}
 VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71​814CF3027}
 Vegas Movie Studio Platinum 9.0-->MsiExec.exe /X{DA507A38-4B2A-40C0-90AC-E30​AAA0B757C}
 Video NVIDIA v174.74-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *VIDEO_NVIDIA*
 Visual C++ 2008 x86 Runtime - (v9.0.30729)-->MsiExec.exe /X{F333A33D-125C-32A2-8DCE-5C5​D14231E27}
 Visual C++ 2008 x86 Runtime - v9.0.30729.01-->C:\Windows\sys​tem32\msiexec.exe /x {F333A33D-125C-32A2-8DCE-5C5D1​4231E27} /qb+ REBOOTPROMPT=""
 Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\C​ommon\unyt.exe

 ======Security center information======

 AS: Windows Defender

 ======System event log======

 Computer Name: PC-de-Alain
 Event Code: 2004
 Message: Windows Defender a rencontré une erreur lors de la tentative de chargement des signatures et va essayer de revenir à un jeu de signatures correct.
  Signatures essayées : Actuelle
  Code de l’erreur : 0x8050a001
  Description de l’erreur : Le programme ne trouve pas les fichiers de définition qui permettent de détecter les logiciels non désirés. Recherchez des mises à jour de fichiers de définition, puis recommencez. Pour plus d’informations sur l’installation des mises à jour, voir Aide et support.
  Signatures chargées : Sauvegarde
  Version chargée des signatures : 1.85.532.0
  Version chargée du moteur : 1.1.5802.0
 Record Number: 200102
 Source Name: Microsoft-Windows-Windows Defender
 Time Written: 20100627075105.000000-000
 Event Type: Erreur
 User:

 Computer Name: PC-de-Alain
 Event Code: 3004
 Message: L’agent de protection en temps réel Windows Defender a détecté des modifications. Microsoft vous recommande d’analyser les logiciels responsables de ces modifications, à la recherche de risques potentiels. Vous pouvez vous servir des informations relatives au fonctionnement de ces programmes pour autoriser ou non leur exécution, ou pour les supprimer de l’ordinateur. N’autorisez les modifications que si vous faites confiance au programme ou à l’éditeur de logiciel. Windows Defender ne peut pas annuler les modifications que vous autorisez.
 Pour plus d’informations, consultez les données suivantes :
 Non applicable
  ID d’analyse : {F6B98B89-F8E2-49E5-95C9-D3B32​A6E074F}
   Utilisateur : PC-de-Alain\Alain
  Nom : Unknown
  ID :
  ID de gravité :
  ID de catégorie :
  Chemin d’accès trouvé : regkey:HKCU@S-1-5-21-324342903​0-3411314019-3380577577-1000\S​oftware\Microsoft\Windows\Curr​entVersion\Run\\AROReminder;ru​nkey:HKCU@S-1-5-21-3243429030-​3411314019-3380577577-1000\Sof​tware\Microsoft\Windows\Curren​tVersion\Run\\AROReminder;file​:C:\Program Files\Advanced Registry Optimizer\ARO.exe
  Type d’alerte : Logiciel non classifié
  Type de détection :
 Record Number: 200057
 Source Name: Microsoft-Windows-Windows Defender
 Time Written: 20100627073436.000000-000
 Event Type: Avertissement
 User:

 Computer Name: PC-de-Alain
 Event Code: 7022
 Message: Le service Service HP CUE DeviceDiscovery est en attente de démarrage.
 Record Number: 200033
 Source Name: Service Control Manager
 Time Written: 20100627073341.000000-000
 Event Type: Erreur
 User:

 Computer Name: PC-de-Alain
 Event Code: 3004
 Message: L’agent de protection en temps réel Windows Defender a détecté des modifications. Microsoft vous recommande d’analyser les logiciels responsables de ces modifications, à la recherche de risques potentiels. Vous pouvez vous servir des informations relatives au fonctionnement de ces programmes pour autoriser ou non leur exécution, ou pour les supprimer de l’ordinateur. N’autorisez les modifications que si vous faites confiance au programme ou à l’éditeur de logiciel. Windows Defender ne peut pas annuler les modifications que vous autorisez.
 Pour plus d’informations, consultez les données suivantes :
 Non applicable
  ID d’analyse : {C4CB369A-9043-4C11-A5BB-D28CB​6D46D85}
   Utilisateur : PC-de-Alain\Alain
  Nom : Unknown
  ID :
  ID de gravité :
  ID de catégorie :
  Chemin d’accès trouvé : regkey:HKCU@S-1-5-21-324342903​0-3411314019-3380577577-1000\S​oftware\Microsoft\Windows\Curr​entVersion\Run\\AROReminder;ru​nkey:HKCU@S-1-5-21-3243429030-​3411314019-3380577577-1000\Sof​tware\Microsoft\Windows\Curren​tVersion\Run\\AROReminder;file​:C:\Program Files\Advanced Registry Optimizer\aro.exe
  Type d’alerte : Logiciel non classifié
  Type de détection :
 Record Number: 199927
 Source Name: Microsoft-Windows-Windows Defender
 Time Written: 20100627071815.000000-000
 Event Type: Avertissement
 User:

 Computer Name: PC-de-Alain
 Event Code: 7022
 Message: Le service Service HP CUE DeviceDiscovery est en attente de démarrage.
 Record Number: 199886
 Source Name: Service Control Manager
 Time Written: 20100627070219.000000-000
 Event Type: Erreur
 User:

 =====Application event log=====

 Computer Name: PC-de-Alain
 Event Code: 10
 Message: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.
 Record Number: 9172
 Source Name: Microsoft-Windows-WMI
 Time Written: 20090512151752.000000-000
 Event Type: Erreur
 User:

 Computer Name: PC-de-Alain
 Event Code: 1000
 Message: Application défaillante HpqSRmon.exe, version 11.0.0.142, horodatage 0x47d78822, module défaillant HpqSRmon.exe, version 11.0.0.142, horodatage 0x47d78822, code d’exception 0xc0000005, décalage d’erreur 0x000033c5, ID du processus 0xa08, heure de début de l’application 0x01c9d3149974fc6b.
 Record Number: 9163
 Source Name: Application Error
 Time Written: 20090512151625.000000-000
 Event Type: Erreur
 User:

 Computer Name: PC-de-Alain
 Event Code: 1000
 Message: Application défaillante iexplore.exe, version 7.0.6001.18226, horodatage 0x49ac95d6, module défaillant ntdll.dll, version 6.0.6001.18000, horodatage 0x4791a7a6, code d’exception 0xc0000005, décalage d’erreur 0x00047dd2, ID du processus 0x11c, heure de début de l’application 0x01c9d3115dee0856.
 Record Number: 9142
 Source Name: Application Error
 Time Written: 20090512145551.000000-000
 Event Type: Erreur
 User:

 Computer Name: PC-de-Alain
 Event Code: 10
 Message: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.
 Record Number: 9141
 Source Name: Microsoft-Windows-WMI
 Time Written: 20090512145433.000000-000
 Event Type: Erreur
 User:

 Computer Name: PC-de-Alain
 Event Code: 1000
 Message: Application défaillante HpqSRmon.exe, version 11.0.0.142, horodatage 0x47d78822, module défaillant HpqSRmon.exe, version 11.0.0.142, horodatage 0x47d78822, code d’exception 0xc0000005, décalage d’erreur 0x000033c5, ID du processus 0x8e4, heure de début de l’application 0x01c9d31156f54db6.
 Record Number: 9131
 Source Name: Application Error
 Time Written: 20090512145304.000000-000
 Event Type: Erreur
 User:

 =====Security event log=====

 Computer Name: PC-de-Alain
 Event Code: 4624
 Message: L’ouverture de session d’un compte s’est correctement déroulée.

 Sujet :
  ID de sécurité :  S-1-5-18
  Nom du compte :  PC-DE-ALAIN$
  Domaine du compte :  WORKGROUP
  ID d’ouverture de session :  0x3e7

 Type d’ouverture de session :   5

 Nouvelle ouverture de session :
  ID de sécurité :  S-1-5-18
  Nom du compte :  SYSTEM
  Domaine du compte :  AUTORITE NT
  ID d’ouverture de session :  0x3e7
  GUID d’ouverture de session :  {00000000-0000-0000-0000-00000​0000000}

 Informations sur le processus :
  ID du processus :  0x25c
  Nom du processus :  C:\Windows\System32\services.e​xe

 Informations sur le réseau :
  Nom de la station de travail :  
  Adresse du réseau source : -
  Port source :  -

 Informations détaillées sur l’authentification :
  Processus d’ouverture de session :  Advapi  
  Package d’authentification : Negotiate
  Services en transit : -
  Nom du package (NTLM uniquement) : -
  Longueur de la clé :  0

 Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

 Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

 Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

 Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

 Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

 Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
  - Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
  - Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
  - Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
  - La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
 Record Number: 37183
 Source Name: Microsoft-Windows-Security-Aud​iting
 Time Written: 20100503170201.981337-000
 Event Type: Succès de l'audit
 User:

 Computer Name: PC-de-Alain
 Event Code: 4648
 Message: Tentative d’ouverture de session en utilisant des informations d’identification explicites.

 Sujet :
  ID de sécurité :  S-1-5-18
  Nom du compte :  PC-DE-ALAIN$
  Domaine du compte :  WORKGROUP
  ID d’ouverture de session :  0x3e7
  GUID d’ouverture de session :  {00000000-0000-0000-0000-00000​0000000}

 Compte dont les informations d’identification ont été utilisées :
  Nom du compte :  SYSTEM
  Domaine du compte :  AUTORITE NT
  GUID d’ouverture de session :  {00000000-0000-0000-0000-00000​0000000}

 Serveur cible :
  Nom du serveur cible : localhost
  Informations supplémentaires : localhost

 Informations sur le processus :
  ID du processus :  0x25c
  Nom du processus :  C:\Windows\System32\services.e​xe

 Informations sur le réseau :
  Adresse du réseau : -
  Port :   -

 Cet événement est généré lorsqu’un processus tente d’ouvrir une session pour un compte en spécifiant explicitement les informations d’identification de ce compte. Ceci se produit le plus souvent dans les configurations par lot comme les tâches planifiées, ou avec l’utilisation de la commande RUNAS.
 Record Number: 37182
 Source Name: Microsoft-Windows-Security-Aud​iting
 Time Written: 20100503170201.981337-000
 Event Type: Succès de l'audit
 User:

 Computer Name: PC-de-Alain
 Event Code: 4672
 Message: Privilèges spéciaux attribués à la nouvelle ouverture de session.

 Sujet :
  ID de sécurité :  S-1-5-18
  Nom du compte :  SYSTEM
  Domaine du compte :  AUTORITE NT
  ID d’ouverture de session :  0x3e7

 Privilèges :  SeAssignPrimaryTokenPrivilege
    SeTcbPrivilege
    SeSecurityPrivilege
    SeTakeOwnershipPrivilege
    SeLoadDriverPrivilege
    SeBackupPrivilege
    SeRestorePrivilege
    SeDebugPrivilege
    SeAuditPrivilege
    SeSystemEnvironmentPrivilege
    SeImpersonatePrivilege
 Record Number: 37181
 Source Name: Microsoft-Windows-Security-Aud​iting
 Time Written: 20100503170201.965737-000
 Event Type: Succès de l'audit
 User:

 Computer Name: PC-de-Alain
 Event Code: 4624
 Message: L’ouverture de session d’un compte s’est correctement déroulée.

 Sujet :
  ID de sécurité :  S-1-5-18
  Nom du compte :  PC-DE-ALAIN$
  Domaine du compte :  WORKGROUP
  ID d’ouverture de session :  0x3e7

 Type d’ouverture de session :   5

 Nouvelle ouverture de session :
  ID de sécurité :  S-1-5-18
  Nom du compte :  SYSTEM
  Domaine du compte :  AUTORITE NT
  ID d’ouverture de session :  0x3e7
  GUID d’ouverture de session :  {00000000-0000-0000-0000-00000​0000000}

 Informations sur le processus :
  ID du processus :  0x25c
  Nom du processus :  C:\Windows\System32\services.e​xe

 Informations sur le réseau :
  Nom de la station de travail :  
  Adresse du réseau source : -
  Port source :  -

 Informations détaillées sur l’authentification :
  Processus d’ouverture de session :  Advapi  
  Package d’authentification : Negotiate
  Services en transit : -
  Nom du package (NTLM uniquement) : -
  Longueur de la clé :  0

 Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

 Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

 Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

 Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

 Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

 Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
  - Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
  - Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
  - Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
  - La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
 Record Number: 37180
 Source Name: Microsoft-Windows-Security-Aud​iting
 Time Written: 20100503170201.965737-000
 Event Type: Succès de l'audit
 User:

 Computer Name: PC-de-Alain
 Event Code: 4648
 Message: Tentative d’ouverture de session en utilisant des informations d’identification explicites.

 Sujet :
  ID de sécurité :  S-1-5-18
  Nom du compte :  PC-DE-ALAIN$
  Domaine du compte :  WORKGROUP
  ID d’ouverture de session :  0x3e7
  GUID d’ouverture de session :  {00000000-0000-0000-0000-00000​0000000}

 Compte dont les informations d’identification ont été utilisées :
  Nom du compte :  SYSTEM
  Domaine du compte :  AUTORITE NT
  GUID d’ouverture de session :  {00000000-0000-0000-0000-00000​0000000}

 Serveur cible :
  Nom du serveur cible : localhost
  Informations supplémentaires : localhost

 Informations sur le processus :
  ID du processus :  0x25c
  Nom du processus :  C:\Windows\System32\services.e​xe

 Informations sur le réseau :
  Adresse du réseau : -
  Port :   -

 Cet événement est généré lorsqu’un processus tente d’ouvrir une session pour un compte en spécifiant explicitement les informations d’identification de ce compte. Ceci se produit le plus souvent dans les configurations par lot comme les tâches planifiées, ou avec l’utilisation de la commande RUNAS.
 Record Number: 37179
 Source Name: Microsoft-Windows-Security-Aud​iting
 Time Written: 20100503170201.965737-000
 Event Type: Succès de l'audit
 User:

 ======Environment variables======

 "ComSpec"=%SystemRoot%\system3​2\cmd.exe
 "FP_NO_HOST_CHECK"=NO
 "OS"=Windows_NT
 "Path"=C:\Program Files\PC Connectivity Solution\;%SystemRoot%\system3​2;%SystemRoot%;%SystemRoot%\Sy​stem32\Wbem;C:\Program Files\Common Files\DivX Shared\;C:\Program Files\QuickTime\QTSystem\
 "PATHEXT"=.COM;.EXE;.BAT;.CMD;​.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.​MSC
 "PROCESSOR_ARCHITECTURE"=x86
 "TEMP"=%SystemRoot%\TEMP
 "TMP"=%SystemRoot%\TEMP
 "USERNAME"=SYSTEM
 "windir"=%SystemRoot%
 "PROCESSOR_LEVEL"=6
 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 7, GenuineIntel
 "PROCESSOR_REVISION"=1707
 "NUMBER_OF_PROCESSORS"=4
 "TRACE_FORMAT_SEARCH_PATH"=\\N​TREL202.ntdev.corp.microsoft.c​om\4F18C3A5-CA09-4DBD-B6FC-219​FDD4C6BE0\TraceFormat
 "DFSTRACINGON"=FALSE
 "asl.log"=Destination=file;OnF​irstLog=command,environment
 "CLASSPATH"=.;C:\Program Files\QuickTime\QTSystem\QTJav​a.zip
 "QTJAVA"=C:\Program Files\QuickTime\QTSystem\QTJav​a.zip

 -----------------EOF----------​-------

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 17/01/2011 à 01:01:56  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
...

 Toolbar indésirable : Ask toolbar + régie de pubs : Eorezo.

 ----------
 Télécharge AD-R (de Cyrildu17 / C_XX) sur ton Bureau.

 !! Déconnecte-toi du net et ferme toutes applications en cours !!

 1. Double-clique sur le programme d'installation ; laisse-le
 s’ installer par défaut (C:\Program files).

 2. Clique droit sur l'icône AD-Remover située sur ton Bureau et choisis "Exécuter en tant qu'administrateur".

 3. Au menu principal, choisis l'option « Nettoyer ».
 L’ outil débute le nettoyage … Laisse-le travailler !

 Le scan achevé, une fenêtre va s’ afficher.
 4. Poste (copie-colle) le rapport qui apparaît à la fin.

 (Tu trouveras aussi le rapport sous C:\Ad-report(date).log)

 Note : "Process.exe", une composante de l'outil peut être
 détecté par certains antivirus comme une infection ; donc, ne pas en tenir compte : il s'agit d'un faux positif.

alain-st-martin13
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 17/01/2011 à 22:30:03  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonsoir,
 Voici le rapport :

 ======= RAPPORT D'AD-REMOVER 2.0.0.2,D | UNIQUEMENT XP/VISTA/7 =======

 Mis à jour par TeamXscript le 16/01/11 à 02:00
 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
 Site web: http://www.teamxscript.org

 C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 21:16:32 le 17/01/2011, Mode normal

 Microsoft® Windows Vista™ Édition Familiale Premium  Service Pack 2 (X86)
 Alain@PC-DE-ALAIN (Packard Bell BV PACKARD BELL IMAX X9200)
 
 ============== ACTION(S) ==============


 Dossier supprimé: C:\Users\Alain\AppData\Roaming​\Mozilla\FireFox\Profiles\7zdx​56ex.default\extensions\toolba​r@ask.com
 Fichier supprimé: C:\Users\Alain\AppData\Roaming​\Mozilla\FireFox\Profiles\7zdx​56ex.default\searchplugins\ask​com.xml
 Dossier supprimé: C:\Program Files\Ask.com
 Dossier supprimé: C:\Program Files\AskTBar
 Dossier supprimé: C:\Users\Alain\AppData\LocalLo​w\AskToolbar
 Dossier supprimé: C:\Users\Alain\AppData\Roaming​\EoRezo
 Dossier supprimé: C:\Users\Alain\AppData\Local\E​oRezo
 Dossier supprimé: C:\Program Files\EoRezo

 (!) -- Fichiers temporaires supprimés.


 -- Fichier ouvert: C:\Users\Alain\AppData\Roaming​\Mozilla\FireFox\Profiles\7zdx​56ex.default\Prefs.js --
 Ligne supprimée: user_pref("browser.startup.hom​epage", "hxxp://y.lo.st" );
 -- Fichier Fermé --
 

 Clé supprimée: HKLM\Software\Classes\CLSID\{9​CB65201-89C4-402c-BA80-02D8C59​F9B1D}
 Clé supprimée: HKLM\Software\Microsoft\Window​s\CurrentVersion\Explorer\Brow​ser Helper Objects\{9CB65201-89C4-402c-BA​80-02D8C59F9B1D}
 Clé supprimée: HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Settings\​{9CB65201-89C4-402c-BA80-02D8C​59F9B1D}
 Clé supprimée: HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Stats\{9C​B65201-89C4-402c-BA80-02D8C59F​9B1D}
 Clé supprimée: HKLM\Software\Classes\CLSID\{C​10DC1F4-CCDF-4224-A24D-B23AFC3​573C8}
 Clé supprimée: HKLM\Software\Microsoft\Window​s\CurrentVersion\Explorer\Brow​ser Helper Objects\{C10DC1F4-CCDF-4224-A2​4D-B23AFC3573C8}
 Clé supprimée: HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Settings\​{C10DC1F4-CCDF-4224-A24D-B23AF​C3573C8}
 Clé supprimée: HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Stats\{C1​0DC1F4-CCDF-4224-A24D-B23AFC35​73C8}
 Clé supprimée: HKLM\Software\Classes\CLSID\{F​E063DB1-4EC0-403e-8DD8-394C549​84B2C}
 Clé supprimée: HKLM\Software\Microsoft\Window​s\CurrentVersion\Explorer\Brow​ser Helper Objects\{FE063DB1-4EC0-403e-8D​D8-394C54984B2C}
 Clé supprimée: HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Settings\​{FE063DB1-4EC0-403e-8DD8-394C5​4984B2C}
 Clé supprimée: HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Stats\{FE​063DB1-4EC0-403e-8DD8-394C5498​4B2C}
 Clé supprimée: HKLM\Software\Classes\CLSID\{F​E063DB9-4EC0-403e-8DD8-394C549​84B2C}
 Clé supprimée: HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Settings\​{FE063DB9-4EC0-403e-8DD8-394C5​4984B2C}
 Clé supprimée: HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Stats\{FE​063DB9-4EC0-403e-8DD8-394C5498​4B2C}
 Clé supprimée: HKLM\Software\Classes\CLSID\{F​E063DBB-4EC0-403e-8DD8-394C549​84B2C}
 Clé supprimée: HKLM\Software\Microsoft\Window​s\CurrentVersion\Ext\PreApprov​ed\{FE063DBB-4EC0-403e-8DD8-39​4C54984B2C}
 Clé supprimée: HKLM\Software\Classes\Interfac​e\{DF76E9B7-35EC-46FC-AF56-5B7​9DED9D64F}
 Clé supprimée: HKLM\Software\Classes\TypeLib\​{18AF7201-4F14-4BCF-93FE-45617​CF259FF}
 Clé supprimée: HKLM\Software\Classes\EoEngine​BHO.EOBHO
 Clé supprimée: HKLM\Software\Classes\EoEngine​BHO.EOBHO.1
 Clé supprimée: HKLM\Software\Classes\AppID\Eo​EngineBHO.DLL
 Clé supprimée: HKLM\Software\Classes\AppID\{A​FBB7970-789A-4264-BA70-E8127DE​CE400}
 Clé supprimée: HKLM\Software\EoRezo
 Clé supprimée: HKCU\Software\EoRezo
 Clé supprimée: HKLM\Software\Microsoft\Window​s\CurrentVersion\Uninstall\EoR​ezo_is1
 Clé supprimée: HKLM\Software\Microsoft\Window​s\CurrentVersion\Uninstall\Sof​twareUpdate_is1
 Clé supprimée: HKLM\Software\Classes\CLSID\{1​47a976f-eee1-4377-8ea7-4716e4c​dd239}

 Valeur supprimée: HKLM\Software\Microsoft\Window​s\CurrentVersion\Run|Eoengine
 Valeur supprimée: HKLM\Software\Microsoft\Window​s\CurrentVersion\Run|Eorezo
 Valeur supprimée: HKLM\Software\Microsoft\Intern​et Explorer\Toolbar|{FE063DB9-4EC​0-403E-8DD8-394C54984B2C}
 Valeur supprimée: HKCU\Software\Microsoft\Intern​et Explorer\Toolbar\WebBrowser|{F​E063DB9-4EC0-403E-8DD8-394C549​84B2C}


 ============== SCAN ADDITIONNEL ==============

 ** Mozilla Firefox Version [3.6.10 (fr)] **

 -- C:\Users\Alain\AppData\Roaming​\Mozilla\FireFox\Profiles\7zdx​56ex.default\Prefs.js --
 browser.startup.homepage_overr​ide.mstone, rv:1.9.2.10

 ==============================​==========

 ** Internet Explorer Version [8.0.6001.18999] **

 [HKCU\Software\Microsoft\Intern​et Explorer\Main]
 AutoHide: yes
 Default_Page_URL: hxxp://www.microsoft.com/isapi​/redir.dll?prd=ie&pver=6&ar=ms​nhome
 Default_Search_URL: hxxp://www.microsoft.com/isapi​/redir.dll?prd=ie&ar=iesearch
 Do404Search: 0x01000000
 Enable Browser Extensions: yes
 Local Page: C:\Windows\system32\blank.htm
 Search bar: hxxp://go.microsoft.com/fwlink​/?linkid=54896
 Show_ToolBar: yes
 Start Page: hxxp://fr.msn.com/
 Use Search Asst: no

 [HKLM\Software\Microsoft\Intern​et Explorer\Main]
 AutoHide: yes
 Default_Page_URL: hxxp://go.microsoft.com/fwlink​/?LinkId=54896
 Default_Search_URL: hxxp://www.microsoft.com/isapi​/redir.dll?prd=ie&ar=iesearch
 Delete_Temp_Files_On_Exit: yes
 Local Page: C:\Windows\System32\blank.htm
 Search bar: hxxp://search.msn.com/spbasic.​htm
 Search Page: hxxp://www.microsoft.com/isapi​/redir.dll?prd=ie&ar=iesearch
 Start Page: hxxp://fr.msn.com/

 [HKLM\Software\Microsoft\Intern​et Explorer\ABOUTURLS]
 Tabs: res://ieframe.dll/tabswelcome.​htm
 Blank: res://mshtml.dll/blank.htm

 ==============================​==========

 C:\Program Files\Ad-Remover\Quarantine: 98 Fichier(s)
 C:\Program Files\Ad-Remover\Backup: 15 Fichier(s)

 C:\Ad-Report-CLEAN[1].txt - 17/01/2011 (5814 Octet(s))

 Fin à: 21:17:57, 17/01/2011
 
 ============== E.O.F ==============

(Publicité)
Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 18/01/2011 à 09:22:35  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello:

 :super: ...

 Télécharge, installe et mets à jour Malwarebytes Anti-malware ; puis, fais un scan complet et poste le rapport.

 Si MalwareByte's a détecté des infections, clique sur Afficher les résultats, puis sur Supprimer la sélection.



alain-st-martin13
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 18/01/2011 à 21:35:08  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonsoir,
 Voici le rapport.

 <?xml version="1.0" encoding="UTF-8" ?>
 - <AROScanLog>
 <AROVersion>6.0.793.824</AROVe​rsion>
 <ScanningDate>Tue. January 18, 2011. 08:22 PM</ScanningDate>
 <TotalErrorsFound>1547</TotalE​rrorsFound>
 - <Scanning Section="ActiveX and COM">
 <Description>ActiveX and COM objects that are based on libraries no longer on your system.</Description>
 <ErrorsInThisSection>311 Errors</ErrorsInThisSection>
 - <EntryDetails>
 <Entry />
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{657C7​A59-4FEC-4C06-A354-607B1EB184F​B}\TypeLib for this object point to the missing type library {8F41223A-948A-4F63-99E1-284C6​36BB3FD}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry />
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{4AD55​97A-2B0F-4479-97B6-C514DEC41EA​1}\TypeLib for this object point to the missing type library {7B29C130-826A-4070-BA18-EC01E​703D244}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>Abale Zip ActiveX v5.0</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{993​96B3B-57DC-41BB-9957-6917CC198​0B0}\5.0\HELPDIR for this type library points to the missing folder d:\Program Files\Abale\Zip\Help. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>Acrobat Search</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{2CE4D​4CF-B278-4126-AD1E-B622DA2E833​9}\TypeLib for this object point to the missing type library {47A7A4B0-2723-41BA-865E-EBBB7​081A602}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>AcrobatAccess Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{C523F​39F-9C83-11D3-9094-00104BD0D53​5} points to the missing ApplicationID {8A523F4F-AB44-4477-BAB0-151E5​936D144}.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ActiveMovieControl Object</Entry>
 <Details>The ToolboxBitmap32 key HKEY_CLASSES_ROOT\CLSID\{05589​FA1-C356-11CE-BF01-00AA0055595​A}\ToolboxBitmap32 for this object contains no data. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>Adobe Photoshop Elements 6.0 Media Client 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{6D5​93B71-DC75-4EF7-91E4-79D03A98A​E8E}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>Apollo Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{0780D​BDF-FB21-4C7B-A4E3-99548EEC5C4​A}\TypeLib for this object point to the missing type library {15991B32-B49B-48E5-91CA-4AC84​832E4C0}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>Bar Button Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{BD04D​AE2-8C1B-4cc5-9E06-22DE05C2EDA​0}\InprocServer32 points to the missing InprocServer32 C:\Program Files\AskTBar\bar\1.bin\A5POPS​WT.DLL. The associated CLSID can be deleted.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>Bluetooth FD Provider</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{1C522​1CB-C1F6-4999-8936-501C2023E4C​D} points to the missing ApplicationID {1C5221CB-C1F6-4999-8936-501C2​023E4CD}.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>Bluetooth FD Provider Proxy</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{C5599​E1B-FC7B-4883-9FF4-581BBAEF8DB​A} points to the missing ApplicationID {1C5221CB-C1F6-4999-8936-501C2​023E4CD}.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>BurnProgressWindow Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{a861a​366-0c7a-484b-9116-f366bf0fa23​f}\TypeLib for this object point to the missing type library {b3267063-8ab4-464d-a13c-1517b​d6dc6f4}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>BurnSettings Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{ec39b​f14-ca12-46cd-8ea2-b48d5a44350​a}\TypeLib for this object point to the missing type library {b3267063-8ab4-464d-a13c-1517b​d6dc6f4}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>BurnSettingsDlg Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{e6028​af3-ee0a-4e49-a043-c44437680ad​8}\TypeLib for this object point to the missing type library {b3267063-8ab4-464d-a13c-1517b​d6dc6f4}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>BurnSettingsDlgParam Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{0b151​1cd-37ee-4f0a-9647-cb2785b68a2​9}\TypeLib for this object point to the missing type library {b3267063-8ab4-464d-a13c-1517b​d6dc6f4}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CFDictionaryPropertyBag​</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{dd653​964-4d37-4fb2-9cb6-6a9a9771933​2}\InprocServer32 points to the missing InprocServer32 C:\Program Files\Safari\WebKit.dll. The associated CLSID can be deleted.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ChooseRecorderDlg Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{0edcd​b7d-cd9e-44e6-9e9a-adbaa85540e​8}\TypeLib for this object point to the missing type library {b3267063-8ab4-464d-a13c-1517b​d6dc6f4}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ChooseSessionDlg Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{e5b27​09a-0e6b-45d3-83c8-ef90c2ed534​0}\TypeLib for this object point to the missing type library {b3267063-8ab4-464d-a13c-1517b​d6dc6f4}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ClipBook 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{1FC​4BB67-DA0F-4827-9C24-AE7A631EE​1AC}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ClipBook 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{1FC​4BB67-DA0F-4827-9C24-AE7A631EE​1AC}\1.0\0\win32 for this type library points to the missing file ClipBook.dll. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ClipBookAndToolbar Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{CB7A7​BFD-C16B-4FA1-8583-0A9FA9B8CF8​8}\TypeLib for this object point to the missing type library {62FFF5B8-A860-4a8e-A8DC-72D9C​159C5E1}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ClipBookDBComponent 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{6F7​4ECDF-A67B-430D-B2E3-E7CD25FD9​4DD}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ClipBookDbExe 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{ACF​D594D-1F95-4b20-9F66-333761143​7C6}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IHTTPMailTranspor​t</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D22-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IIMAPTransport</E​ntry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D21-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IMimeAllocator</E​ntry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D13-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IMimeBody</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D11-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IMimeHeaderTable<​/Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D16-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IMimeInternationa​l</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D10-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IMimeMessage</Ent​ry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D1A-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IMimeMessageParts​</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D12-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IMimeMessageTree<​/Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D19-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IMimeObjResolver<​/Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D1B-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IMimePropertySche​ma</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D18-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IMimePropertySet<​/Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D17-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IMimeSecurity</En​try>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D14-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_INNTPTransport</E​ntry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D1E-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IPOP3Transport</E​ntry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D1D-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IPropFindRequest<​/Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D23-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IPropPatchRequest​</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D24-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IRangeList</Entry​>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D20-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IRASTransport</En​try>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D1F-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_ISMTPTransport</E​ntry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D1C-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CLSID_IVirtualStream</E​ntry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9EADB​D15-447B-4240-A9DD-73FE7C53A98​1}\TypeLib for this object point to the missing type library {9EADBD25-447B-4240-A9DD-73FE7​C53A981}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>CNeroRunner Object</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{05619​9FE-0310-443E-923D-6EF61C73C8A​9}\TypeLib for this object point to the missing type library {F79461D3-DCE3-42E0-A6BA-9C168​66036AC}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ColorSettings Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{22C03​B0C-3222-4fac-8650-8A4D50EBFE5​4} points to the missing ApplicationID {22C03B0C-3222-4fac-8650-8A4D5​0EBFE54}.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ColorSettings Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{22C03​B0C-3222-4fac-8650-8A4D50EBFE5​4}\TypeLib for this object point to the missing type library {4E5FDDC2-3E70-4153-A926-CA45B​11F1B57}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>COM_SRS_MobileHD 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{785​DCDE4-F5BE-4264-BC16-31EF48229​B64}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>Com_SRS_TruSurroundHD 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{6F7​4E663-6237-46E5-A403-1FDED57A3​845}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>DirectAccess Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{632AF​209-7969-4f28-84A4-8174498C5A6​F}\TypeLib for this object point to the missing type library {4E5FDDC2-3E70-4153-A926-CA45B​11F1B57}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>DiscInfoDlg Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{f1f2e​ce6-0289-4992-a536-f82dfc6f6d6​e}\TypeLib for this object point to the missing type library {b3267063-8ab4-464d-a13c-1517b​d6dc6f4}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>Disk Management Snap-In Object Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{AEB​84C80-95DC-11D0-B7FC-B61140119​C4A}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>DisplaySettings Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{8008C​CE8-6616-4562-A69C-29CA9D42DD9​8} points to the missing ApplicationID {8008CCE8-6616-4562-A69C-29CA9​D42DD98}.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>DisplaySettings Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{8008C​CE8-6616-4562-A69C-29CA9D42DD9​8}\TypeLib for this object point to the missing type library {4E5FDDC2-3E70-4153-A926-CA45B​11F1B57}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>DivX Browser Plugin 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{B5A​A9C9D-FFB8-4296-9CAD-57EAF1357​354}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>DivX Demux</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{85516​702-9C45-4A9C-861B-BC4492D355D​C}\InprocServer32 points to the missing InprocServer32 C:\Program Files\DivX\DivX Codec\DivXMedia.ax. The associated CLSID can be deleted.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>DivX Settings Manager typeLib</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{957​BF83F-EE5A-42EB-8CE5-6267011F0​EF9}\1.0\0\win32 for this type library points to the missing file C:\Program Files\DivX\DivX Codec\divxsm.tlb. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>DivX Subtitle Decoder</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{BA11F​969-397A-4146-AC96-236C3D76711​D}\InprocServer32 points to the missing InprocServer32 C:\Program Files\DivX\DivX Codec\DivXMedia.ax. The associated CLSID can be deleted.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>DivXPlayerCOM 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{413​B064E-B85D-4A72-A004-624663BF5​F5F}\1.0\0\win32 for this type library points to the missing file C:\Program Files\DivX\DivX Player\DivX Player.exe. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>DivXPlayerCOM 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{413​B064E-B85D-4A72-A004-624663BF5​F5F}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>DmsApi Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{B4928​187-D2E3-4CFA-A2C2-A9C97B4956E​A}\TypeLib for this object point to the missing type library {}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>DocProcEngine2 Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{3712A​712-4105-4312-8371-692B7FD5855​1}\TypeLib for this object point to the missing type library {3712A711-4105-4312-8371-692B7​FD58551}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>DownloadAndActivationTr​iggers Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{CA417​8C0-7606-4C37-8675-998C0FDC184​6}\TypeLib for this object point to the missing type library {6F125F84-8F3E-45eb-B537-5D605​2E48910}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>EditClips 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{ED1​5218C-FDFE-4723-AF0B-2251477F2​64C}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>EraseDiscDlg Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{7b971​7b1-2d9b-4d14-b2da-d4bf5a28c6a​f}\TypeLib for this object point to the missing type library {b3267063-8ab4-464d-a13c-1517b​d6dc6f4}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>EraseSettingsDlg Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{1c613​f47-70c5-4551-a264-f7254139854​c}\TypeLib for this object point to the missing type library {b3267063-8ab4-464d-a13c-1517b​d6dc6f4}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>GEPlugin Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{F91​52AEC-3462-4632-8087-EEE3C3CDD​A35}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>Google Dictionary Compression sdch Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{CCD​973EF-4D88-48B2-ABF4-13EAF25BA​E3B}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>Google Update Process Launcher Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{ABC01​078-F197-4B0B-ADBC-CFE684B39C8​2}\TypeLib for this object point to the missing type library {7E6CD20B-8688-4960-96D9-B9794​71577B8}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>Google Updater Service 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{592​4C60B-6D7F-4AD6-8084-24A59431C​967}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>GoogleDesktopSmallStora​geManager Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{F9EC0​695-290D-4420-9522-870AC77A085​B}\TypeLib for this object point to the missing type library {E4E2BB6D-424A-4AD6-AECF-A8FB5​017BACB}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>GoogleUpdate.OnDemandCO​MClass</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{6F8BD​55B-E83D-4A47-85BE-81FFA8057A6​9}\TypeLib for this object point to the missing type library {7E6CD20B-8688-4960-96D9-B9794​71577B8}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>GPBaseService 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{E86​67771-87D5-42D8-A7FC-3F3F39219​F66}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>GPBaseService Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{09A78​C99-CCA3-40F0-9962-755F08CC68E​4} points to the missing ApplicationID {92E04433-4D08-4EAC-8B36-A1D92​46B9025}.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>GPRBEventsHandler 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{504​8412E-2630-412C-A31D-43F4C56B6​51B}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>HDReg 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{485​80E99-5FF7-4086-8223-1DA45BE81​F00}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>Hewlett-Packard CUE Destination Objects 1.0</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{E9B​7B442-5F59-11D5-B6B3-0060B0A22​ADE}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>HP Smart Web Printing</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{555D4​D79-4BD2-4094-A395-CFC534424A0​5}\TypeLib for this object point to the missing type library {62FFF5B8-A860-4a8e-A8DC-72D9C​159C5E1}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>HPAiODevParms Class (CUE)</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{697F5​202-0494-11D6-A2B0-0060B0FBD87​2}\TypeLib for this object point to the missing type library {84BE2760-E1CF-11D2-BD9D-0060B​067A8F5}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>hpswp_Operation 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{CE1​2EC2B-285D-4925-B97C-F83C21E47​AC2}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>IAdvertisingSession2</E​ntry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{3​5F1B1AE-E0F4-4FA7-A69C-BB00F57​0E0BD}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>IAudibleLogin</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{6​577A3D2-AC29-4F64-8777-4730D5A​DE29E}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>IAudioDocFilter</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{D​38275AF-210A-46D5-8FD4-FD44BA4​F0DE5}\TypeLib for this interface points to the missing type library {1F25D46F-7715-4542-A3D0-AA353​2DB3921}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ICompanyData</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{0​202B6E5-EEC0-4C05-AA67-B93ABF9​16905}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ICPRMLicenseKey</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{3​6F2EEE8-D38F-4D2F-917A-EAF1BC6​F576D}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>IEncoderWizard</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{3​4FF0553-F5B6-4D98-8460-2D68098​89F00}\TypeLib for this interface points to the missing type library {A0000005-E965-440D-9C3E-E0470​4629F99}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>IEnumNCPidInfo</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{C​912F878-780E-4FDF-99BD-95AA8B1​C87EF}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>IFeatureActivation</Ent​ry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{C​6CE60F6-C9E8-43DE-8A44-CF34002​E1BF1}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>IGenericDlgTrigger</Ent​ry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{B​38255BD-1FD8-48D5-B214-FC8D319​B2164}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ILicenseDependentSectio​n</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{9​CDA4C43-A979-4129-97F3-901A12F​146CF}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ImageInfoDlg Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{940f7​9d9-2062-41b7-a22f-9e99ffdd1b8​5}\TypeLib for this object point to the missing type library {b3267063-8ab4-464d-a13c-1517b​d6dc6f4}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ImageInfoDlgParam Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{712a2​867-02b2-402b-8f8d-74437494dcf​b}\TypeLib for this object point to the missing type library {b3267063-8ab4-464d-a13c-1517b​d6dc6f4}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>IMenuTemplateEnumerator​</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{0​EC213C4-DFE6-4152-823F-4632946​4C6F9}\TypeLib for this interface points to the missing type library {BF84BFD8-B411-4948-9BDA-3A6C0​2CE7BD4}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INBClientListener</Entr​y>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{7​A9AEE1C-C567-4C20-99CE-5B8FCC5​7D478}\TypeLib for this interface points to the missing type library {400F4FCF-6B7B-45B1-BAE0-87B13​572AAB6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INBClientListenerEvents​</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{2​0ABB8A6-F9C0-4624-A189-697FED8​A3116}\TypeLib for this interface points to the missing type library {400F4FCF-6B7B-45B1-BAE0-87B13​572AAB6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCAudioDevice</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{9​DF67D6E-B4BD-4570-860A-6B92E61​A5D8A}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCAudioPidInfo</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{1​CC4C75E-1B29-45A0-A696-5D401CF​DCA72}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCCaptureApiSetup</Ent​ry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{5​C496ABE-F7A0-42B2-81FB-E8D0D7F​F69D6}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCCaptureApiToolkit</E​ntry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{B​BB0B3B1-661D-4640-A4C4-F634419​AD29C}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCCaptureDevice</Entry​>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{C​8FDA558-3DBA-4D73-9F4F-CE15D89​E52BF}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCChannel</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{E​B6C52FB-D9FF-4017-8426-4C4CDC0​623D6}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCChannelEx</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{3​83BBE14-42A7-4041-A191-C685809​9F972}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCDeviceChangeCallback​</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{D​52B571E-DFCC-4374-BD35-43673DC​A4190}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCDeviceChangeControl<​/Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{5​ACACBDA-ADB3-4551-98AE-0F6FF0B​576DE}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCDeviceExtraInfo</Ent​ry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{C​2D4BE82-27F5-4785-8E91-D3BC1E5​6D952}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCDeviceLockChangeCall​back</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{4​FE0EF21-51F2-411B-9023-5BF33ED​0F51D}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCDeviceLockChangeCont​rol</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{B​B023E7D-B243-4CC6-8F77-CE774B2​D7EA8}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCDvbsSatelliteInfo</E​ntry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{0​D4C1A7F-82C3-4C56-AD88-976B9B4​443F2}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCEpgCallback</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{9​E3D74F2-FD1B-4175-8329-870BFC9​86713}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCEpgEvent</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{D​B17C727-E9E5-46A8-9752-E1AF53A​D053B}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCEpgEvents</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{D​7C495D0-6811-498A-B099-A618BBD​8E695}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCEpgManager</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{0​8C50C7B-20EF-4F14-A835-0081FB9​43C4A}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCGraphManager</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{1​908484A-2255-4A34-9A0A-71E249F​55DA2}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCGraphManagerAudioInp​utControl</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{B​77B2225-5B9A-4700-89FC-B232B30​FAC4E}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCGraphManagerCamcorde​rControl</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{9​18F1618-1D41-47C1-AB2A-A6EEFEB​A5A69}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCGraphManagerCaptureC​ontrol</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{A​E85DEE1-2883-4D87-B3A0-90B5FB2​9A0C2}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCGraphManagerChannelC​ontrol</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{4​000E955-641D-494E-BD8A-0B89FC9​C464C}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCGraphManagerExtraInf​o</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{9​D8BA4C0-D74B-443C-987E-B9F4008​40783}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCGraphManagerFormatCo​ntrol</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{6​17EB43E-0676-4E95-941E-28C31F7​38682}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCGraphManagerInputCon​trol</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{9​A287B04-4DD9-423D-A11B-CC09007​1116A}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCGraphManagerMacrovis​ionControl</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{F​8BB4659-8552-4455-8418-9EE5F14​CDDC9}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCGraphManagerOutputSe​tup</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{A​6CC5B72-5D14-4216-9FAD-7ACD1EC​E4462}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCGraphManagerSetup</E​ntry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{C​73B96A4-0FCC-43A0-832A-D1F57DB​456AD}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCGraphManagerSetup2</​Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{D​D0F6B27-4751-4E17-9DFD-CF66CEF​04B48}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCGraphManagerSignalCo​ntrol</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{C​4E03B09-4592-4E33-802C-49B510E​63CDF}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCLnb</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{1​507BD14-179B-4FCE-8C7A-B2FBD2C​0EB19}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCLnbControl</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{6​F86640A-501A-4A5A-A70E-7056654​EF0D7}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCLnbSetup</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{3​6AD7365-D2FE-4367-98A4-7643A1C​89DCB}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCPidInfo</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{D​E905F49-47A1-4DE6-970D-28B05FF​C9755}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCPmtPidInfo</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{B​76077CC-5897-44F0-825B-35AAC78​7DECE}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCSignalChangeCallback​</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{E​0A5AFA5-0C3A-44ED-A958-F31A98B​200B9}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCStreamInfo</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{F​DFF617C-8E2C-446C-BBCE-02016F0​32E08}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCSystemConfiguration<​/Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{E​1F7A2F4-F96D-4525-BAEC-B744268​BE78D}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCSystemConfigurationM​ultituner</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{A​9A63BF6-0CDD-4BF8-9990-B83C8F7​DB304}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCTeletextPidInfo</Ent​ry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{E​CAE4265-0C22-4601-A0C2-303F741​E4891}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCTransportStreamCallb​ack</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{1​A61A65F-A282-4346-8483-A593A0E​A1304}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCTransportStreamCallb​ackOld</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{D​259C12C-1547-42FC-9AC3-EBC2B09​2AACA}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCTuner</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{6​C04FA69-98B0-4494-B1F3-4C47244​AEF8F}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCTunerCallback</Entry​>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{C​3B2F5C4-DBB9-4302-8F0B-581217D​93ED1}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCTunerSetupAtsc</Entr​y>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{E​2C07486-A7B9-4A3B-9B61-92FFACC​7B92F}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCTunerSetupDvbc</Entr​y>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{3​67C1BC6-A803-4B49-B0A5-FF26CDC​81AB0}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCTunerSetupDvbs</Entr​y>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{2​0B9FF0E-FDB8-4506-8D86-717936E​1C34B}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCTunerSetupDvbt</Entr​y>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{E​A23282A-CFAC-4CEF-BC90-078C8DD​17FEB}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INCVideoFormat</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{F​B5870C7-9B95-4395-892C-2CB0B7A​C30E6}\ProxyStubClsid32 for this interface points to the missing CLSID {2368AF01-856F-4120-BBA2-D9F16​C6EC022}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INeroApplication</Entry​>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{4​BF31B81-8A46-40C9-B959-DFE163F​5E2EC}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INeroInFDiscCopyEvents<​/Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{D​CCDBE80-BB27-4F3E-AB5B-B5D7DCD​C0DF8}\TypeLib for this interface points to the missing type library {46D86969-BA9A-4527-99D7-33463​A0B38CF}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>InitSettings Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{9871f​8af-152a-4651-834c-cdc5fe61c14​c}\TypeLib for this object point to the missing type library {b3267063-8ab4-464d-a13c-1517b​d6dc6f4}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMiTunesIntegrationSer​vice</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{2​BA16880-8EFC-4C72-A5BD-485C2EC​1027B}\ProxyStubClsid32 for this interface points to the missing CLSID {5518046E-713A-4FD4-B819-87DAC​C84E4AB}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVConstPidList</Entr​y>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{C​FDAE656-D5C4-424D-A29A-611D610​2AAB5}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionCreateRecord​ingHandle</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{5​B8772DA-E1E6-4AAB-BF81-847334B​3FE1C}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionCreateRecord​ingHandleOnFile</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{E​998545B-5F49-4434-AE60-3A4DAC4​15C5B}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionCreateStream​ForChannel</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{B​D76C86D-9C03-4301-BB83-BC84582​3A934}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionCreateStream​OnObject</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{C​296C952-EA88-42FC-A909-042D0A3​585AC}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionGetChannel</​Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{7​FDE2128-0B47-42DE-B015-8715C96​8148D}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionGetCurrentPi​ds</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{B​9B6DB6A-18AA-44FE-A852-076EEAA​3370D}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionGetCurrentRe​cordingHandles</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{F​F2D8026-A1E6-4B0A-8C26-07E1674​22F13}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionGetSignalStr​ength</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{6​35F4757-367A-4B15-866B-90A58F8​EA666}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionRecordingSpe​edLimit</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{E​0474148-95B6-4FF3-84BA-55F1F7B​2C764}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionRecordingTim​eLimit</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{2​D1EA554-5648-4978-82A2-6F0ED67​94147}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptions</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{A​8F7C935-2DBD-484B-9CE2-D584B54​4916E}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionSetChannel</​Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{6​85904EC-7E46-46B8-B4B8-E8C6749​2CF73}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionTimeShift</E​ntry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{1​2E41153-E975-422F-A4BE-D33BE5A​A026E}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionTrickPlay</E​ntry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{0​EE08C94-0B68-4561-B1A4-ABF7277​4FC17}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionTVServicesCr​eateStreamForLogicalChannel</E​ntry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{D​3096859-F34E-44F5-83C8-1C1A562​3BF11}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionTVServicesCr​eateStreamForPhysicalChannel</​Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{3​B6D39B7-0934-4B78-9CFD-747D82A​4B9CC}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionTVServicesGe​tLogicalChannel</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{D​95F6355-DCAD-4BB0-8F0A-E335CF6​DA712}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionTVServicesGe​tPhysicalChannel</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{E​FA7A3C8-8260-47E4-AB01-704D6B2​20F5A}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionTVServicesSe​tLogicalChannel</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{3​0573137-B36E-4CB2-B83F-A991E92​61468}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVOptionTVServicesSe​tPhysicalChannel</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{6​F6331B1-89CF-4A03-A645-2909D41​807BD}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVRecordingHandle</E​ntry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{1​278E162-1E89-4F95-8028-D1ECBDF​9468A}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVRecordingHandleLis​t</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{3​2E1D336-0F60-4467-93F4-EA896BC​ACFC7}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVServer</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{7​71D463C-44D7-434A-9EA4-ACFCFFB​788CD}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INMTVTimeShiftBufferHan​dle</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{7​B66381E-1A66-4477-BBC6-FF65A9C​9CCCD}\ProxyStubClsid32 for this interface points to the missing CLSID {A42D5816-2C1B-4C00-BB0A-B4A0E​9E322B6}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>INPSOneWaySyncEngine</E​ntry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{1​DC7E5FA-0106-4211-AE14-46957C5​CF6CC}\TypeLib for this interface points to the missing type library {F16A8E42-53D4-4E90-9FAD-4F789​208BC2B}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>IPatentActivation</Entr​y>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{0​7321840-B19C-4B80-BEF3-754AC9A​16527}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>IProfilePage</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{0​7241EF7-83F3-4EB2-8F8D-A819C10​A6C55}\TypeLib for this interface points to the missing type library {A0000005-E965-440D-9C3E-E0470​4629F99}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>IProfilePageSony</Entry​>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{1​109866A-DA4D-482E-A315-AA9FF02​65655}\TypeLib for this interface points to the missing type library {A0000005-E965-440D-9C3E-E0470​4629F99}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>IPXWizardLUAPageEvent</​Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{7​77BA812-2498-4875-933A-3067DE8​83070}\ProxyStubClsid32 for this interface points to the missing CLSID {777BA81B-2498-4875-933A-3067D​E883070}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ISearch</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{2​CE4D4CF-B278-4126-AD1E-B622DA2​E8339}\TypeLib for this interface points to the missing type library {47A7A4B0-2723-41BA-865E-EBBB7​081A602}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ISerial</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{3​7EEBD1D-5B49-4FB0-97B3-129FE7F​C0FB4}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ISerial2</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{1​940388D-D658-4BBB-94DF-494CA0D​B2C4F}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ISerialNumber</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{0​ABC1BEB-1E9B-46B0-BB34-60FD276​591AC}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ISpecialOffer</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{C​17A606A-B611-47AA-A026-D5B0B68​DB552}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>ISpecialOffer2</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{8​7BA83C5-5108-4E66-A279-3338227​33D30}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>IStatusEvents</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{4​6B89F5A-769D-4792-AD9A-E375591​5CBC3}\TypeLib for this interface points to the missing type library {47A7A4B0-2723-41BA-865E-EBBB7​081A602}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>IWebLink</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{5​B3F31BE-4319-47E1-A402-09F5A44​C7420}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>IWebLink2</Entry>
 <Details>The key HKEY_CLASSES_ROOT\Interface\{3​396995E-8407-4EF2-94D3-B9E2CF3​232B3}\ProxyStubClsid32 for this interface points to the missing CLSID {47015210-F47F-474D-B727-ECB30​D65F934}. This subkey can be deleted for this interface.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>LexRefBilingualService Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{75C11​604-5C51-48B2-B786-DF5E51D10EC​6}\TypeLib for this object point to the missing type library {893CD020-4354-4B33-A78D-909EE​58BAFAF}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>LexRefBilingualServiceA​ttribute Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{ABF65​1A1-0F07-48DF-9FF6-8B1B557669C​A}\TypeLib for this object point to the missing type library {893CD020-4354-4B33-A78D-909EE​58BAFAF}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>LexRefBilingualTextCont​ext Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{75C11​604-5C51-48B2-B786-DF5E51D10EC​9}\TypeLib for this object point to the missing type library {893CD020-4354-4B33-A78D-909EE​58BAFAF}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>LexRefEnglishStemmer Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{75C11​604-5C51-48B2-B786-DF5E51D10EC​8}\TypeLib for this object point to the missing type library {893CD020-4354-4B33-A78D-909EE​58BAFAF}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>LexRefServiceContainer Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{75C11​604-5C51-48B2-B786-DF5E51D10EC​7}\TypeLib for this object point to the missing type library {893CD020-4354-4B33-A78D-909EE​58BAFAF}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>LexRefServiceManager Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{688B0​D3D-AF8F-483C-A712-8F4E9868B8D​A}\TypeLib for this object point to the missing type library {893CD020-4354-4B33-A78D-909EE​58BAFAF}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>LexRefTfFunctionProvide​r Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{55913​79C-B467-4BCA-B647-A438712504B​0}\TypeLib for this object point to the missing type library {893CD020-4354-4B33-A78D-909EE​58BAFAF}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>LexRefXml2RTFObject Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{F28D5​171-0577-11D4-8F60-00C04F9CF4A​C}\TypeLib for this object point to the missing type library {11A3B755-0562-11D4-8F60-00C04​F9CF4AC}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>Main 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{48C​1451C-3D2E-46DD-B09E-99FDDEFDE​F86}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>MetAction Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{3CC38​5AC-95CC-4A75-BF35-AB36AE645BC​F}\TypeLib for this object point to the missing type library {D7339B18-0926-46E0-A690-4A538​FC1C8F8}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>MetRecog Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{32D85​DA2-070B-49A0-9261-E7854457A6D​6}\TypeLib for this object point to the missing type library {D7339B18-0926-46E0-A690-4A538​FC1C8F8}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>mmctrl Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{71A7C​632-FD25-4235-8812-F5690BFF6F4​2}\TypeLib for this object point to the missing type library {B4373EA7-9FB7-4AF1-BDF2-76530​33FAF1C}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>MobileMeServices 1.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{B88​0BF6E-1646-47D0-96EB-E963AADA3​740}\1.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>MSDMineErrorLookup</Ent​ry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{72B08​2C6-97D5-11D3-8BEC-00C04F68DDC​2}\TypeLib for this object point to the missing type library {72B082B9-97D5-11D3-8BEC-00C04​F68DDC2}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>MSOLAP90ErrorLookup</En​try>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{07AD8​473-5D37-4076-AF40-44FE70B07CD​9}\TypeLib for this object point to the missing type library {07AD8473-5D37-4076-AF40-44FE7​0B07CD9}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>NBService 4.0 Type Library</Entry>
 <Details>The key HKEY_CLASSES_ROOT\TypeLib\{F51​4CE29-986D-46E2-AACD-CFCA4D351​362}\4.0\HELPDIR for this type library serves to indicate a help directory, but contains no data. This subkey can be deleted for this type library.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>Nero Class</Entry>
 <Details>The key HKEY_CLASSES_ROOT\CLSID\{F3FBC​8E5-93A3-11D4-8217-A8545900000​0}\TypeLib for this object point to the missing type library {C6E033E3-925F-11D4-8214-420BF​9000000}. This subkey can be deleted for this object.</Details>
 </EntryDetails>
 - <EntryDetails>
 <Entry>NeroApplication Class</Entry>
 <Details>The key

alain-st-martin13
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 18/01/2011 à 23:26:17  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 

 Re-bonsoir,

 désolé mais je me suis trompé dans l'analyse et l'envoi du dernier rapport suite à un téléchargement autre que celui que " Malwarebytes Anti-malware ", voici donc le bon rapport :

 Malwarebytes' Anti-Malware 1.50.1.1100
 www.malwarebytes.org

 Version de la base de données: 5549

 Windows 6.0.6002 Service Pack 2
 Internet Explorer 8.0.6001.18999

 18/01/2011 22:15:54
 mbam-log-2011-01-18 (22-15-18).txt

 Type d'examen: Examen complet (C:\|E:\|F:\|G:\|H:\|I:\|)
 Elément(s) analysé(s): 322364
 Temps écoulé: 51 minute(s), 12 seconde(s)

 Processus mémoire infecté(s): 0
 Module(s) mémoire infecté(s): 0
 Clé(s) du Registre infectée(s): 0
 Valeur(s) du Registre infectée(s): 0
 Elément(s) de données du Registre infecté(s): 0
 Dossier(s) infecté(s): 0
 Fichier(s) infecté(s): 6

 Processus mémoire infecté(s):
 (Aucun élément nuisible détecté)

 Module(s) mémoire infecté(s):
 (Aucun élément nuisible détecté)

 Clé(s) du Registre infectée(s):
 (Aucun élément nuisible détecté)

 Valeur(s) du Registre infectée(s):
 (Aucun élément nuisible détecté)

 Elément(s) de données du Registre infecté(s):
 (Aucun élément nuisible détecté)

 Dossier(s) infecté(s):
 (Aucun élément nuisible détecté)

 Fichier(s) infecté(s):
 c:\program files\ad-remover\quarantine\C\​program files\EoRezo\eorezo.exe.vir (Rogue.Eorezo) -> No action taken.
 c:\program files\ad-remover\quarantine\C\​program files\EoRezo\eorezobho.dll.vir (Rogue.Eorezo) -> No action taken.
 c:\program files\ad-remover\quarantine\C\​Users\Alain\AppData\Roaming\Eo​Rezo\softwareupdate\softwareup​date.exe.vir (Rogue.Eorezo) -> No action taken.
 c:\program files\ad-remover\quarantine\C\​Users\Alain\AppData\Roaming\Eo​Rezo\softwareupdate\softwareup​datehp.exe.vir (Rogue.Eorezo) -> No action taken.
 c:\Users\Alain\logiciels\néro 8.1.1.4\nero_8[1].x_ultra_edition_keygen.exe (RiskWare.Tool.CK) -> No action taken.
 c:\Users\Alain\local settings\temporary internet files\pse_350_fra.exe (Trojan.Agent) -> No action taken.

(Publicité)
Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 19/01/2011 à 00:54:00  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
...

 J'espère que tu as supprimé la sélection !

 PS : pour supprimer le rapport Malwarebytes posté le 18 janvier 2011 à 20h35, replaces-toi sur le message en question et clique sur le bouton "éditer". Une fois dans le message, va au bas et coche Supprimer ce message ; puis, clique sur > Envoyer.

 -------------
 Ensuite, relance un scan RSIT et poste uniquement le rapport log.txt.
 

alain-st-martin13
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 20/01/2011 à 20:03:36  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonsoir,

 Oui j'avais bien supprimer la sélection et je viens de supprimerle message envoyé par erreur.
 Voici le rapport demandé :

 Logfile of random's system information tool 1.08 (written by random/random)
 Run by Alain at 2011-01-20 18:56:24
 Microsoft® Windows Vista™ Édition Familiale Premium  Service Pack 2
 System drive C: has 28 GB (9%) free of 293 GB
 Total RAM: 3070 MB (53% free)

 Logfile of Trend Micro HijackThis v2.0.4
 Scan saved at 18:56:28, on 20/01/2011
 Platform: Windows Vista SP2 (WinNT 6.00.1906)
 MSIE: Internet Explorer v8.00 (8.00.6001.18999)
 Boot mode: Normal

 Running processes:
 C:\Windows\system32\Dwm.exe
 C:\Windows\Explorer.EXE
 C:\Windows\system32\taskeng.ex​e
 C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComS​er.exe
 C:\Program Files\Windows Defender\MSASCui.exe
 C:\Windows\RtHDVCpl.exe
 C:\Windows\System32\rundll32.e​xe
 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
 C:\Program Files\Common Files\logishrd\LComMgr\Communi​cations_Helper.exe
 C:\Program Files\Logitech\QuickCam\Quickc​am.exe
 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
 C:\Program Files\DivX\DivX Update\DivXUpdate.exe
 C:\Program Files\iTunes\iTunesHelper.exe
 C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
 C:\Program Files\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe
 C:\Windows\ehome\ehtray.exe
 C:\Program Files\Windows Media Player\wmpnscfg.exe
 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
 C:\Windows\ehome\ehmsas.exe
 C:\Program Files\Common Files\Logishrd\LQCVFX\COCIMana​ger.exe
 C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
 C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
 C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
 C:\Program Files\Lavasoft\Ad-Aware\AAWTra​y.exe
 C:\Windows\system32\SearchProt​ocolHost.exe
 C:\Windows\system32\SearchFilt​erHost.exe
 C:\Users\Alain\Desktop\RSIT.ex​e
 C:\Program Files\trend micro\Alain.exe

 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://fr.msn.com/
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54896
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://fr.msn.com/
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,SearchAssistan​t =
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,CustomizeSearc​h =
 R1 - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings,ProxyOverride = *.local
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me =
 O1 - Hosts: ::1 localhost
 O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-76883​4316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.d​ll
 O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7​D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\Ac​roIEHelper.dll
 O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B​5AD205D} - C:\Program Files\Google\GoogleToolbarNoti​fier\5.6.5612.1312\swg.dll
 O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02​E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B​7C5AC242193BB3E.dll
 O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3​DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dl​l
 O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D​8127440} - C:\Program Files\Ask.com\GenericAskToolba​r.dll
 O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E​116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
 O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-00902​71D4F88} - C:\Program Files\Yahoo!\Companion\Install​s\cpn\yt.dll
 O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O3 - Toolbar: Sammsoft Toolbar - {D4027C7F-154A-4066-A1AD-4243D​8127440} - C:\Program Files\Ask.com\GenericAskToolba​r.dll
 O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
 O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
 O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,​NvStartup
 O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.d​ll,NvTaskbarInit
 O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
 O4 - HKLM\..\Run: [toolbar_eula_launcher] C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.​exe
 O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
 O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communi​cations_Helper.exe"
 O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickc​am.exe" /hide
 O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
 O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
 O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.​exe
 O4 - HKLM\..\Run: [Skytel] Skytel.exe
 O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
 O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
 O4 - HKLM\..\Run: [TrayServer] C:\Program Files\MAGIX\Films_sur_DVD_8\Tr​ayServer.exe
 O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
 O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
 O4 - HKCU\..\Run: [SmpcSys] C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
 O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe​"
 O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
 O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
 O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
 O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
 O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C5​71A8263} - C:\PROGRA~1\MICROS~3\Office12\​REFIEBAR.DLL
 O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1​AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
 O17 - HKLM\System\CCS\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS1\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS2\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS3\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS4\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS5\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS6\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS7\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS8\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS9\Services\Tcpip​\..\{05341615-9D20-4255-94B7-7​BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O17 - HKLM\System\CS10\Services\Tcpi​p\..\{05341615-9D20-4255-94B7-​7BB9F3BC8A28}: NameServer = 212.27.53.252,212.27.54.252
 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C​7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKY​PE4~1.DLL
 O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-30783​02C2030} - C:\Windows\system32\browseui.d​ll
 O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent​.exe
 O23 - Service: @%SystemRoot%\system32\aelupsv​c.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\Alg.exe​,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
 O23 - Service: @%systemroot%\system32\appinfo​.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceServi​ce.exe
 O23 - Service: @%SystemRoot%\system32\audiosr​v.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\audiosr​v.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
 O23 - Service: @%SystemRoot%\system32\bfe.dll​,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\qmgr.dl​l,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.ex​e
 O23 - Service: @%systemroot%\system32\browser​.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\certpro​p.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\cryptsv​c.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe
 O23 - Service: @%SystemRoot%\system32\dhcpcsv​c.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\dnsapi.​dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\dot3svc​.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\dps.dll​,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\eapsvc.​dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\ehome\ehrecvr.ex​e,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
 O23 - Service: @%SystemRoot%\ehome\ehsched.ex​e,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
 O23 - Service: @%SystemRoot%\ehome\ehstart.dl​l,-101 (ehstart) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\emdmgmt​.dll,-1000 (EMDMgmt) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\wevtsvc​.dll,-200 (Eventlog) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\fdPHost​.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\fdrespu​b.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\MAGIX\Common\Database\bi​n\fbserver.exe
 O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.​exe
 O23 - Service: @%systemroot%\system32\FntCach​e.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - C:\Program Files\Packard bell\SAXO27\HIDSERVICE.EXE
 O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-1​11108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
 O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: Google Update Service (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpda​te.exe
 O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe
 O23 - Service: @%SystemRoot%\System32\hidserv​.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\kmsvc.d​ll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: hpqcxs08 - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: Service HP CUE DeviceDiscovery (hpqddsvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: HP Network Devices Support (HPSLPSVC) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\ikeext.​dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\IPBusEn​um.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\iphlpsv​c.dll,-200 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe
 O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\srvsvc.​dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\wkssvc.​dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWSer​vice.exe
 O23 - Service: @%SystemRoot%\system32\lltdres​.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\lmhsvc.​dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComS​er.exe
 O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv​.exe
 O23 - Service: @%systemroot%\system32\mmcss.d​ll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\Firewal​lAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
 O23 - Service: @%SystemRoot%\system32\iscsids​c.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\msimsg.​dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.ex​e
 O23 - Service: @%SystemRoot%\system32\qagentr​t.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
 O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\netlogo​n.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe
 O23 - Service: @%SystemRoot%\system32\netman.​dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\netprof​.dll,-246 (netprofm) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\nlasvc.​dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Nero\Lib\NMIndexingServi​ce.exe (file missing)
 O23 - Service: @%SystemRoot%\system32\nsisvc.​dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
 O23 - Service: @%SystemRoot%\system32\p2psvc.​dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\p2psvc.​dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\pcasvc.​dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\pla.dll​,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.e​xe
 O23 - Service: @%SystemRoot%\system32\umpnpmg​r.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\p2psvc.​dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\p2psvc.​dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\polstor​e.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\profsvc​.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\psbase.​dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe
 O23 - Service: @%SystemRoot%\system32\qwave.d​ll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%Systemroot%\system32\rasauto​.dll,-200 (RasAuto) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%Systemroot%\system32\rasmans​.dll,-200 (RasMan) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\Locator​.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.ex​e
 O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\samsrv.​dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe
 O23 - Service: @%SystemRoot%\System32\SCardSv​r.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\schedsv​c.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\certpro​p.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\sdrsvc.​dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\seclogo​n.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\Sens.dl​l,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
 O23 - Service: @%SystemRoot%\System32\SessEnv​.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\ipnathl​p.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\shsvcs.​dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\SLsvc.e​xe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe
 O23 - Service: @%SystemRoot%\system32\SLUINot​ify.dll,-103 (SLUINotify) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\snmptra​p.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.e​xe
 O23 - Service: @%systemroot%\system32\spoolsv​.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.ex​e
 O23 - Service: @%systemroot%\system32\ssdpsrv​.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\sstpsvc​.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\wiaserv​c.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\swprv.d​ll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\sysmain​.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\TabSvc.​dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\tapisrv​.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\tbssvc.​dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\termsrv​.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\shsvcs.​dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\mmcss.d​ll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\trkwks.​dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\servicing\Truste​dInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedIn​staller.exe
 O23 - Service: @%SystemRoot%\system32\ui0dete​ct.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.​exe
 O23 - Service: @%systemroot%\system32\upnphos​t.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: UPnPService - Magix AG - C:\Program Files\Common Files\MAGIX Shared\UPnPService\UPnPService​.exe
 O23 - Service: @%SystemRoot%\system32\dwm.exe​,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\vds.exe​,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
 O23 - Service: @%systemroot%\system32\vssvc.e​xe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
 O23 - Service: @%SystemRoot%\system32\w32time​.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\wcncsvc​.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\WcsPlug​InService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\wdi.dll​,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\wdi.dll​,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\webclnt​.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\wecsvc.​dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\wercpls​upport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\wersvc.​dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\winhttp​.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%Systemroot%\system32\wbem\wm​isvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%Systemroot%\system32\wsmsvc.​dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%SystemRoot%\System32\wlansvc​.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%Systemroot%\system32\wbem\wm​iapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiAp​Srv.exe
 O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
 O23 - Service: @%SystemRoot%\system32\wpcsvc.​dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\wpdbuse​num.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @C:\Windows\Microsoft.NET\Fram​ework\v4.0.30319\WPF\WPFFontCa​che_v0400.exe,-100 (WPFFontCache_v0400) - Unknown owner - C:\Windows\Microsoft.NET\Frame​work\v4.0.30319\WPF\WPFFontCac​he_v0400.exe
 O23 - Service: @%SystemRoot%\System32\wscsvc.​dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.ex​e
 O23 - Service: @%systemroot%\system32\SearchI​ndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchInde​xer.exe
 O23 - Service: @%systemroot%\system32\wuaueng​.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.ex​e
 O23 - Service: @%SystemRoot%\system32\wudfsvc​.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.ex​e

 --
 End of file - 25381 bytes

 ======Scheduled tasks folder======

 C:\Windows\tasks\Extension de garantie-Alain.job
 C:\Windows\tasks\GoogleUpdateT​askMachineCore.job
 C:\Windows\tasks\GoogleUpdateT​askMachineUA.job
 C:\Windows\tasks\NeroLiveEpgUp​date-PC-de-Alain_Alain.job

 ======Registry dump======

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
 HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.d​ll [2009-10-22 328248]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
 Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\Ac​roIEHelper.dll [2006-10-22 62080]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
 Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-08-27 256112]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
 Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNoti​fier\5.6.5612.1312\swg.dll [2010-09-19 842296]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
 Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B​7C5AC242193BB3E.dll [2009-08-27 458736]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{CA6319C0-31B7-401E-A518-A07C3DB8F777}]
 CBrowserHelperObject Object - C:\Program Files\Google\Google_BAE\BAE.dl​l [2006-11-09 98304]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
 Sammsoft Toolbar - C:\Program Files\Ask.com\GenericAskToolba​r.dll [2010-09-28 1400712]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
 HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\Toolbar]
 {EF99BD32-C1FB-11D2-892F-00902​71D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Install​s\cpn\yt.dll [2005-08-04 343112]
 {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-08-27 256112]
 {D4027C7F-154A-4066-A1AD-4243D​8127440} - Sammsoft Toolbar - C:\Program Files\Ask.com\GenericAskToolba​r.dll [2010-09-28 1400712]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Run]
 "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
 "RtHDVCpl"=C:\Windows\RtHDVCpl​.exe [2008-06-13 6183456]
 "NvCplDaemon"=C:\Windows\syste​m32\NvCpl.dll [2008-03-24 13531680]
 "NvMediaCenter"=C:\Windows\sys​tem32\NvMcTray.dll [2008-03-24 92704]
 "Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-06-29 30192]
 "toolbar_eula_launcher"=C:\Pro​gram Files\Packard Bell\GOOGLE_EULA\EULALauncher.​exe [2007-02-20 28672]
 "HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2008-03-25 49152]
 "LogitechCommunicationsManager​"=C:\Program Files\Common Files\LogiShrd\LComMgr\Communi​cations_Helper.exe [2008-08-14 565008]
 "LogitechQuickCamRibbon"=C:\Pr​ogram Files\Logitech\QuickCam\Quickc​am.exe [2008-08-14 2407184]
 "AppleSyncNotifier"=C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [2010-09-21 47904]
 "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
 "NeroFilterCheck"=C:\Windows\s​ystem32\NeroCheck.exe [2001-07-09 155648]
 "Skytel"=C:\Windows\Skytel.exe [2007-11-20 1826816]
 "hpqSRMon"=C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [2008-08-20 150016]
 "avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-01-13 3396624]
 "TrayServer"=C:\Program Files\MAGIX\Films_sur_DVD_8\Tr​ayServer.exe [2008-09-01 90112]
 "NPSStartup"= []
 "DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-09-16 1164584]
 "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-11-29 421888]
 "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2010-12-13 421160]
 "Malwarebytes' Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2010-12-20 963976]

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​Run]
 "SmpcSys"=C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe [2008-02-04 1038136]
 "swg"=C:\Program Files\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe [2009-02-21 39408]
 "ehTray.exe"=C:\Windows\ehome\​ehTray.exe [2008-01-21 125952]
 "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe /background []
 "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]

 C:\ProgramData\Microsoft\Windo​ws\Start Menu\Programs\Startup
 HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\Lavasoft Ad-Aware Service]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Lavasoft Ad-Aware Service]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\WudfPf]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\WudfRd]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\WudfSvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\WudfUsbccidDriver]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\System]
 "dontdisplaylastusername"=0
 "legalnoticecaption"=
 "legalnoticetext"=
 "shutdownwithoutlogon"=1
 "undockwithoutlogon"=1
 "EnableUIADesktopToggle"=0

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​Policies\explorer]
 "NoDriveAutorun"=0

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\explorer]
 "BindDirectlyToPropertySetStor​age"=0

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\standardprofile\authorizedap​plications\list]

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\domainprofile\authorizedappl​ications\list]

 ======File associations======

 .js - edit - C:\Windows\System32\Notepad.ex​e %1
 .js - open - C:\Windows\System32\WScript.ex​e "%1" %*

 ======List of files/folders created in the last 1 months======

 2011-01-18 21:01:34 ----D---- C:\Users\Alain\AppData\Roaming​\Malwarebytes
 2011-01-18 21:01:30 ----A---- C:\Windows\system32\drivers\mb​amswissarmy.sys
 2011-01-18 21:01:29 ----D---- C:\ProgramData\Malwarebytes
 2011-01-18 21:01:26 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
 2011-01-18 21:01:26 ----A---- C:\Windows\system32\drivers\mb​am.sys
 2011-01-18 20:20:37 ----D---- C:\Program Files\Ask.com
 2011-01-17 21:16:47 ----A---- C:\Ad-Report-CLEAN[1].txt
 2011-01-17 21:15:35 ----D---- C:\Program Files\Ad-Remover
 2011-01-16 17:47:45 ----D---- C:\rsit
 2011-01-16 17:47:45 ----D---- C:\Program Files\trend micro
 2011-01-13 18:54:41 ----A---- C:\Windows\system32\sdclt.exe
 2011-01-13 18:53:41 ----A---- C:\Windows\system32\odbc32.dll
 2011-01-03 19:01:54 ----A---- C:\Windows\system32\win32k.sys
 2011-01-03 19:01:53 ----A---- C:\Windows\system32\schedsvc.d​ll
 2011-01-03 19:01:52 ----A---- C:\Windows\system32\wmicmiplug​in.dll
 2011-01-03 19:01:52 ----A---- C:\Windows\system32\taskschd.d​ll
 2011-01-03 19:01:52 ----A---- C:\Windows\system32\taskeng.ex​e
 2011-01-03 19:01:52 ----A---- C:\Windows\system32\taskcomp.d​ll
 2011-01-03 19:01:50 ----A---- C:\Windows\system32\consent.ex​e
 2011-01-03 19:01:49 ----A---- C:\Windows\system32\fontsub.dl​l
 2011-01-03 19:01:49 ----A---- C:\Windows\system32\atmlib.dll
 2011-01-03 19:01:49 ----A---- C:\Windows\system32\atmfd.dll
 2011-01-03 19:01:44 ----A---- C:\Windows\system32\iertutil.d​ll
 2011-01-03 19:01:43 ----A---- C:\Windows\system32\mstime.dll
 2011-01-03 19:01:43 ----A---- C:\Windows\system32\mshtml.dll
 2011-01-03 19:01:43 ----A---- C:\Windows\system32\ieframe.dl​l
 2011-01-03 19:01:40 ----A---- C:\Windows\system32\ie4uinit.e​xe
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\wininet.dl​l
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\urlmon.dll
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\occache.dl​l
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\mshtmled.d​ll
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\msfeedssyn​c.exe
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\msfeedsbs.​dll
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\msfeeds.dl​l
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\licmgr10.d​ll
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\jsproxy.dl​l
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\ieUnatt.ex​e
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\ieui.dll
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\iesysprep.​dll
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\iesetup.dl​l
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\iernonce.d​ll
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\iepeers.dl​l
 2011-01-03 19:01:39 ----A---- C:\Windows\system32\iedkcs32.d​ll
 2011-01-03 19:01:31 ----A---- C:\Windows\system32\tzres.dll
 2010-12-26 07:10:16 ----D---- C:\Program Files\cspep

 ======List of files/folders modified in the last 1 months======

 2011-01-20 18:56:28 ----D---- C:\Windows\prefetch
 2011-01-20 18:56:27 ----D---- C:\Windows\Temp
 2011-01-20 18:03:32 ----SHD---- C:\System Volume Information
 2011-01-20 16:32:05 ----AD---- C:\Windows\System32
 2011-01-20 16:32:05 ----A---- C:\Windows\system32\PerfString​Backup.INI
 2011-01-20 16:32:04 ----D---- C:\Windows\inf
 2011-01-20 16:30:15 ----D---- C:\Windows\system32\Tasks
 2011-01-19 13:17:39 ----D---- C:\Windows\Tasks
 2011-01-18 22:32:51 ----D---- C:\Windows
 2011-01-18 22:29:07 ----D---- C:\Windows\Minidump
 2011-01-18 22:29:06 ----AD---- C:\Windows\system32\drivers
 2011-01-18 21:11:57 ----RD---- C:\Program Files
 2011-01-18 21:01:29 ----HD---- C:\ProgramData
 2011-01-18 20:20:45 ----SHD---- C:\Windows\Installer
 2011-01-14 22:24:08 ----D---- C:\Windows\winsxs
 2011-01-13 18:53:41 ----A---- C:\Windows\system32\mrt.exe
 2011-01-13 18:53:32 ----D---- C:\ProgramData\Microsoft Help
 2011-01-13 18:51:13 ----D---- C:\Windows\system32\catroot
 2011-01-13 18:51:12 ----D---- C:\Windows\system32\catroot2
 2011-01-13 09:47:32 ----A---- C:\Windows\system32\aswBoot.ex​e
 2011-01-11 23:24:48 ----D---- C:\Windows\system32\Msdtc
 2011-01-11 23:24:45 ----D---- C:\Windows\system32\wbem
 2011-01-11 23:24:09 ----D---- C:\Windows\system32\config
 2011-01-11 23:24:01 ----D---- C:\Windows\system32\spool
 2011-01-11 23:24:01 ----D---- C:\Windows\system32\drivers\et​c
 2011-01-11 23:24:01 ----D---- C:\Windows\system32\CodeIntegr​ity
 2011-01-11 23:24:01 ----D---- C:\Windows\registration
 2011-01-04 14:32:23 ----D---- C:\Windows\system32\migration
 2011-01-04 14:32:23 ----D---- C:\Program Files\Windows Mail
 2011-01-04 14:32:23 ----D---- C:\Program Files\Internet Explorer
 2011-01-04 14:26:19 ----D---- C:\Windows\rescache
 2011-01-04 14:15:45 ----D---- C:\Windows\system32\fr-FR
 2011-01-03 18:43:43 ----D---- C:\Windows\system32\drivers\UM​DF
 2011-01-03 18:43:41 ----D---- C:\ProgramData\FLEXnet

 ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 R0 Lbd;Lbd; C:\Windows\system32\DRIVERS\Lb​d.sys [2010-08-12 64288]
 R0 nvstor32;nvstor32; C:\Windows\system32\drivers\nv​stor32.sys [2007-10-31 115744]
 R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\Px​Help20.sys [2010-07-12 45648]
 R1 aswRdr;aswRdr; C:\Windows\system32\drivers\as​wRdr.sys [2011-01-13 23632]
 R1 aswSP;aswSP; C:\Windows\system32\drivers\as​wSP.sys [2011-01-13 294608]
 R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\as​wTdi.sys [2011-01-13 47440]
 R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\as​wFsBlk.sys [2011-01-13 17744]
 R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\driver​s\aswMonFlt.sys [2011-01-13 51280]
 R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GE​ARAspiWDM.sys [2009-05-18 26600]
 R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RT​KVHDA.sys [2008-06-13 2152344]
 R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\Windows\system32\DRIVERS\LV​Pr2Mon.sys [2008-07-26 25624]
 R3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LV​USBSta.sys [2008-07-26 41752]
 R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nv​mfdx32.sys [2007-11-17 1040544]
 R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nv​lddmkm.sys [2008-03-24 7438848]
 R3 pfc;Padus ASPI Shell; C:\Windows\system32\drivers\pf​c.sys [2004-04-01 10368]
 R3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\Windows\system32\DRIVERS\LV​302V32.SYS [2008-07-26 2570520]
 R3 usbaudio;Pilote USB audio (WDM); C:\Windows\system32\drivers\us​baudio.sys [2009-04-11 73216]
 R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WU​DFRd.sys [2008-01-21 83328]
 S3 BELKIN;Belkin Wireless G USB Network Adapter; C:\Windows\system32\DRIVERS\BL​KWGU.sys [2007-06-01 252416]
 S3 Dot4;Pilote MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Do​t4.sys [2008-01-21 131584]
 S3 Dot4Print;Pilote de classe Imprimante pour IEEE-1284.4; C:\Windows\system32\DRIVERS\Do​t4Prt.sys [2008-01-21 16384]
 S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\do​t4usb.sys [2008-01-21 36864]
 S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\dr​mkaud.sys [2008-01-21 5632]
 S3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbE​xDisk.SYS [2010-06-14 36608]
 S3 Lavasoft Kernexplorer;Lavasoft helper driver; \??\C:\Program Files\Lavasoft\Ad-Aware\KernEx​plorer.sys [2010-08-12 15008]
 S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MS​KSSRV.sys [2008-01-21 8192]
 S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MS​PCLOCK.sys [2008-01-21 5888]
 S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MS​PQM.sys [2008-01-21 5504]
 S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MS​TEE.sys [2008-01-21 6016]
 S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pc​csmcfd.sys [2007-09-17 21632]
 S3 USB28xxBGA;USB 2861 Device; C:\Windows\system32\DRIVERS\em​BDA.sys [2009-09-01 579840]
 S3 USB28xxOEM;USB 28xx OEM Filter; C:\Windows\system32\DRIVERS\em​OEM.sys [2009-09-02 551424]
 S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\us​baapl.sys [2010-09-28 41984]
 S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\us​bscan.sys [2008-01-21 35328]
 S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wp​dusb.sys [2009-10-01 40448]
 S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\er​rdev.sys [2008-01-21 6656]
 S4 MegaSR;MegaSR; C:\Windows\system32\drivers\me​gasr.sys [2008-01-21 386616]
 S4 nvrd32;NVIDIA nForce RAID Driver; C:\Windows\system32\drivers\nv​rd32.sys [2007-10-31 124960]
 S4 nvsmu;nvsmu; C:\Windows\system32\drivers\nv​smu.sys [2007-10-12 13312]

 ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 R2 AdobeActiveFileMonitor6.0;Adob​e Active File Monitor V6; C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent​.exe [2007-09-10 124832]
 R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceServi​ce.exe [2010-10-16 37664]
 R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
 R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.ex​e [2010-10-07 345376]
 R2 GenericHidService;Generic Service for HID Keyboard Input Collections; C:\Program Files\Packard bell\SAXO27\HIDSERVICE.EXE [2008-05-29 83264]
 R2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\Windows\system32\svchost.ex​e [2008-01-21 21504]
 R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.ex​e [2008-01-21 21504]
 R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWSer​vice.exe [2010-09-12 1352832]
 R2 LVCOMSer;LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComS​er.exe [2008-07-26 186904]
 R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv​.exe [2008-07-26 150040]
 R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-30 935208]
 R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.ex​e [2008-01-21 21504]
 R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-03-24 118784]
 R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.e​xe [2006-12-19 81920]
 R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.ex​e [2008-01-21 21504]
 R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.ex​e [2008-01-21 21504]
 R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2010-12-13 820008]
 S2 clr_optimization_v4.0.30319_32​;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Frame​work\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
 S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpda​te.exe [2009-08-09 133104]
 S3 FirebirdServerMAGIXInstance;Fi​rebird Server - MAGIX Instance; C:\Program Files\MAGIX\Common\Database\bi​n\fbserver.exe [2005-11-17 1527900]
 S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.​exe [2008-08-21 654848]
 S3 FontCache;@%systemroot%\system​32\FntCache.dll,-100; C:\Windows\system32\svchost.ex​e [2008-01-21 21504]
 S3 GoogleDesktopManager-051210-11​1108;Google Desktop Manager 5.9.1005.12335; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-06-29 30192]
 S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe [2009-04-28 182768]
 S3 NMIndexingService;NMIndexingSe​rvice; C:\Program Files\Common Files\Nero\Lib\NMIndexingServi​ce.exe []
 S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
 S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
 S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
 S3 UPnPService;UPnPService; C:\Program Files\Common Files\MAGIX Shared\UPnPService\UPnPService​.exe [2006-12-14 544768]
 S3 WPFFontCache_v0400;@C:\Windows​\Microsoft.NET\Framework\v4.0.​30319\WPF\WPFFontCache_v0400.e​xe,-100; C:\Windows\Microsoft.NET\Frame​work\v4.0.30319\WPF\WPFFontCac​he_v0400.exe [2010-03-18 753504]

 -----------------EOF----------​-------

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 20/01/2011 à 20:20:03  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello:

 Télécharge CCleaner  …
 ("Download Latest Version", sur la droite) et laisse-toi guider.
 A un moment, il te sera, peut-être, demandé de cocher :
 "Ajouter la barre d' outils Yahoo". Refuse et …
 Laisse-le s’ installer tel que …

 Ferme toutes les fenêtres et applications.
 Relance HijackThis et clique sur > Do a system scan only puis, coche les cases devant les lignes qui suivent (et uniquement ces lignes), si tjrs présentes :

 O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D​8127440} - C:\Program Files\Ask.com\GenericAskToolba​r.dll
 O3 - Toolbar: Sammsoft Toolbar - {D4027C7F-154A-4066-A1AD-4243D​8127440} - C:\Program Files\Ask.com\GenericAskToolba​r.dll
 O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
 O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
 O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
 O4 - HKLM\..\Run: [TrayServer] C:\Program Files\MAGIX\Films_sur_DVD_8\Tr​ayServer.exe
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime  
 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

 Ensuite, clique sur > Fix checked et valide par "Yes". Referme HijackThis.

 Lance CCleaner ...
 Clique sur > Analyser > Nettoyer, puis sur OK dans la fenêtre qui s' affiche.  Relance le nettoyage[/i] et (re)confirme par OK.

 Enfin, ...

 Lance un scan Nod32 (il faut utiliser Internet Explorer)

 Coche toutes les cases à chaque fois ; une fois le scan achevé,
 colle le rapport :

 -> C:\Program Files\EsetOnlineScanner\log.txt <-- le rapport

 PS : désactive la protection résidente d' Avast le temps du scan ...

 Clique droit sur l'icône à côté de l'horloge -> Choisis : Arrêter la protection résidente

 http://f.imagehost.org/t/0137/​Desactiver_Avast.jpg

(Publicité)
alain-st-martin13
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 20/01/2011 à 21:23:55  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
je suis désolé mais je ne sais pas où se trouve HijackThis. j'ai télécharger ccleaner.

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 20/01/2011 à 22:11:52  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
...

 Autant pour moi, j'aurais dû préciser :

 



 
 Ferme toutes les fenêtres et applications.
 
 Double-clique sur l'îcone "HijackThis" qui doit, normalement, se trouver sur le bureau (sinon, va jusqu'au fichier en gras, ci-dessous :
 C:\Program Files\trend micro\Alain.exe <- )

 et clique sur > Do a system scan only puis, coche les cases devant les lignes qui suivent (et uniquement ces lignes), si tjrs présentes :
 




 

alain-st-martin13
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 21/01/2011 à 00:27:34  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
voici le rapport

 ESETSmartInstaller@High as CAB hook log:
 OnlineScanner.ocx - registred OK

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 21/01/2011 à 01:03:53  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
...

 OK.

 Relance un scan RSIT et poste uniquement le rapport log.txt.

 Comme le rapport est long, tu vas le poster via ce site : http://cjoint.com/

 Le rapport sera enregistré dans le dossier RSIT qui est à la base du disque dur (C:\) ; soit :

 C:\rsit\log.txt <-

 Donc, rends-toi sur ce site : http://cjoint.com/ puis, clique sur "Parcourir" et sélectionne ce fichier ; un lien va être créé.

 Copie/colle ce lien dans ta prochaine réponse.

 -> Aide en images

alain-st-martin13
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 21/01/2011 à 18:58:29  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonsoir,
 voici le lien.

 http://cjoint.com/?0bvr7OHotK

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 21/01/2011 à 20:08:03  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello:

 Redémarre le PC en  mode sans échec  …
 -> méthode F8 (ou F5/F11 sur certains PC) de préférence
 
 ------------------------------​--------------
 Tu n' auras pas accès à Internet pendant le "mode sans échec".
 Aussi, copie/colle la procédure dans un fichier texte (word) et mets-la
 sur le "bureau" pour l' avoir à ta disposition.
 ------------------------------​--------------

 Lance HijackThis et clique sur > Do a system scan only puis, coche les cases devant les lignes qui suivent (et uniquement ces lignes), si tjrs présentes :

 O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D​8127440} - C:\Program Files\Ask.com\GenericAskToolba​r.dll  
 Neutral Nasty (2.65 / 5.00)
 O3 - Toolbar: Sammsoft Toolbar - {D4027C7F-154A-4066-A1AD-4243D​8127440} - C:\Program Files\Ask.com\GenericAskToolba​r.dll

 Ensuite, clique sur > Fix checked et valide par "Yes". Referme HijackThis.

 Lance CCleaner pour un nettoyage ...

 Redémarre le PC en mode normal ...

 Ensuite, ...

 Relance un scan RSIT et poste uniquement le log.txt (via -> cijoint).

alain-st-martin13
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 21/01/2011 à 21:13:28  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
voilà le lien aprés avoir exécuté toutes les instructions.

 http://cjoint.com/?0bvumaIFjpq

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 22/01/2011 à 01:33:39  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
...

 :super:

 Télécharge ToolsCleaner (par A.Rothstein et dj QUIOU) sur ton bureau.

 1. Clique sur Recherche et laisse le scan agir ...
 2. Clique sur Suppression pour finaliser.
 -> Tu peux, si tu le souhaites, te servir des Options facultatives.
 3. Clique sur Quitter pour obtenir le rapport.
 4. Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).

 ******
 Quelques conseils ...
 http://www.malekal.com/securiser_ordinateur.html
 et aussi ...
 http://www.malekal.com/securis [...] lorer.html
 Idées reçues en matière de sécurité
 http://www.libellules.ch/idees_recues_securite.php

 Maintenir les programmes/logiciels à jour (important) :
 http://forum.malekal.com/logic [...] 15960.html

alain-st-martin13
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 22/01/2011 à 10:53:57  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 

 Bonjour,

 j'ai passé toolscleaner comme demandé mais le rapport reste vierge, il y a eu quelques fichiers supprimés malgré tout, je les ai copié avant de fermer, les voici :
 [ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ]

 --> Recherche:

 C:\Rsit: trouvé !
 C:\Program Files\Ad-remover: trouvé !
 C:\Program Files\Ad-Remover\Backup\Ad-R.e​xe: trouvé !
 C:\Program Files\trend micro\HijackThis.exe: trouvé !
 C:\Program Files\trend micro\hijackthis.log: trouvé !
 C:\Users\Alain\AppData\Local\V​irtualStore\Program Files\trend micro\hijackthis.log: trouvé !
 C:\Users\Alain\Desktop\Rsit.ex​e: trouvé !

 ------------------------------​---
 --> Suppression:

 C:\Program Files\Ad-Remover\Backup\Ad-R.e​xe: supprimé !
 C:\Program Files\trend micro\HijackThis.exe: ERREUR DE SUPPRESSION !!
 C:\Program Files\trend micro\hijackthis.log: supprimé !
 C:\Users\Alain\Desktop\Rsit.ex​e: supprimé !
 C:\Rsit: supprimé !
 C:\Program Files\Ad-remover: ERREUR DE SUPPRESSION !!

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 22/01/2011 à 13:52:18  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello:

 Supprime "manuellement" si tjrs présents :

 C:\Program Files\trend micro <--
 C:\Program Files\Ad-remover <--

alain-st-martin13
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 22/01/2011 à 22:42:48  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 

 voilà c'est fait !

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 22/01/2011 à 23:02:02  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
...

 Alors, problème résolu  ;)

alain-st-martin13
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 23/01/2011 à 11:17:28  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
et bien je te remercie beaucoup pour ton aide particulièrement efficace, effectivement plus aucune fenètre intempestives. Si ce témoignage peut être utile à d'autre, n'hésitez surtout pas à vous en servir.

 Vraiment merci encore et à bientôt peut être sans nouveau problème j'espère.

 Alain.

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 23/01/2011 à 20:26:14  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello:

 [:wildbof:9] ...

 Bon surf  ;)

 Page :
1

Aller à :
 

Sujets relatifs
fenêtres de pub intenpestives [resolu] apparition de fenêtres "étrangères"
Fenetres intempestives, systemdoctor, drivecleaner.... fenetres intempestives...
besoin d'aide pr elimination fenetres intempestives  
Plus de sujets relatifs à : fenetres pub intempestives

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
demande installation logiciel payant 5
PCLECHAL.INI: c' est qui? commment s' en débarsser? 1
mon pc rame 13
A propos de HijackThis 4
SOS PC infecté 50