Trojan brievs

J'ai déjà fait un scan avec le logiciel conseillé par NORTON qui me dit que le virus n'a pas été trouvé

Bonjour,

Quel est l'emplacement de l'infection ?

Et j'ai de nouveau pseudo qui apparaissent pour les forums sur lesquels je suis inscrit.

impossible!!!

Tu as essayé de le supprimer en mode sans échec ?

ok j'ai supprimé le fichier en mode sans echec
par contre j'ai toujours un nouveau compte inconnu. Du coup je lui supprime tous les accès de tous mes dossiers, ai-je bien fait?

Ben je sais pas justement il n'existait pas avant. Lorsque je vais dans un dossier, que je fais propriétés et que je vais dans sécurité, là où je peux modifier les autoriser ou refuser pour lecture etc... eh ben là j'ai vu qu'il y avait un nouveau compte inconnu. Il n'a pas de nom mais s'appelle S-1-5-21-1552323045-1633183337-1478508513-1005

J'ai fait une analyse complète avec NORTON et je n'ai plus de problème de virus trojan.
Peut-être que c'est mon compte mais le mien "administrateur" y est aussi. Et avant le compte inconnu n'y était pas.
Sinon je n'ai pas de problème particulier.

Bon...
Donc si NORTON ne me trouve plus de virus c'est que tout est rentré dans l'ordre?
En tous cas je te remercie pour ton aide. Votre site est bien fait en plus vous êtes sérieux.

Voilà le contenu de log-bloc note


Logfile of random's system information tool 1.05 (written by random/random)
Run by Yann at 2009-02-22 20:17:25
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 89 GB (38%) free of 234 GB
Total RAM: 2047 MB (31% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:17:28, on 22/02/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Program Files\Search Settings\SearchSettings.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Windows\System32\wpcumi.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
D:\Notification Mail\MailNotifier\MailNotifier.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Vuze\Azureus.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exe
C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10a.exe
C:\Users\Yann\Desktop\RSIT.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Yann\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Yann.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/y [...] .yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - D:\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Afficher Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [TrayServer] C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\TrayServer.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [MailNotifierSessionManager] D:\Notification Mail\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [WPCUMI] C:\Windows\system32\WpcUmi.exe
O4 - HKLM\..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [aogsi] "c:\users\yann\appdata\local\aogsi.exe" aogsi
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: PCM Media Sharing.lnk = C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O8 - Extra context menu item: Compare Prices with &Dealio - C:\Users\Yann\AppData\LocalLow\Dealio\kb127\res\DealioSearch.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Sélection intelligente HP - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O13 - Gopher Prefix:
O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/ [...] rtdgi1.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/n [...] .0.1.1.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://jeuxenligne.orange.fr/GameS [...] der_v6.cab
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASKService - Unknown owner - C:\Program Files\AskBarDis\bar\bin\AskService.exe
O23 - Service: ASKUpgrade - Unknown owner - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: ccEvtMgr - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: ccSetMgr - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: Google Update Service (gupdate1c978c7239ec310) (gupdate1c978c7239ec310) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

--
End of file - 13225 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Google Software Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachine.job
C:\Windows\tasks\User_Feed_Synchronization-{A4B5C151-DD36-414C-B9B1-29583600F871}.job
C:\Windows\tasks\User_Feed_Synchronization-{DEDBA087-04B2-42AE-BEF6-CEC1C7898953}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-11-29 436288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1E8A6170-7264-4D0F-BEAE-D42A53123C75}]
C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll [2007-02-19 97960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-12-09 333192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}]
EoBho Class - D:\EoRezo\EoAdv\EoRezoBHO.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll [2008-02-22 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-01-06 251504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll [2009-01-06 657904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll [2009-01-06 522224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
SearchSettings Class - C:\Program Files\Search Settings\kb127\SearchSettings.dll [2008-06-12 1111904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2008-06-27 505136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - Acer eDataSecurity Management - C:\Windows\system32\eDStoolbar.dll [2007-02-06 151552]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar avec bloqueur de fenêtres pop-up - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-11-29 436288]
{90222687-F593-4738-B738-FBEE9C7B26DF} - Afficher Norton Toolbar - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll [2007-02-19 609424]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-01-06 251504]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-12-09 333192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-03-01 4390912]
"SearchSettings"=C:\Program Files\Search Settings\SearchSettings.exe [2008-06-12 991584]
"TrayServer"=C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\TrayServer.exe []
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe [2008-02-22 144784]
"MailNotifierSessionManager"=D:\Notification Mail\SessionManager\SessionManager.exe [2008-11-03 131824]
"WPCUMI"=C:\Windows\system32\WpcUmi.exe [2006-11-02 176128]
"ccApp"=C:\Program Files\Common Files\Symantec Shared\ccApp.exe [2007-01-09 115816]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-19 1233920]
"Acer Tour Reminder"= []
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2007-10-18 5724184]
"EleFunAnimatedWallpaper"= []
"aogsi"=c:\users\yann\appdata\local\aogsi.exe [2009-02-19 332288]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
PCM Media Sharing.lnk - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe

C:\Users\Yann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OneNote 2007 - Capture d'écran et lancement.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
OpenOffice.org 2.3.lnk - C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Acer\Empowering Technology\eDataSecurity\eDSfsu.exe"="C:\Acer\Empowering Technology\eDataSecurity\eDSfsu.exe:*:Enabled:eDSfsu"
"C:\Acer\Empowering Technology\eDataSecurity\encryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\encryption.exe:*:Enabled:encryption"
"C:\Acer\Empowering Technology\eDataSecurity\decryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\decryption.exe:*:Enabledecryption"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{418428ff-cb52-11dc-aa02-001d92016f7e}]
shell\AutoRun\command - F:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{42996a0d-c0f3-11dc-acb9-001d92016f7e}]
shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe MS32DLL.dll.vbs

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f8449b99-752b-11dd-a4c1-001d92016f7e}]
shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL copy.exe


======List of files/folders created in the last 1 months======

2009-02-22 20:14:45 ----D---- C:\rsit
2009-02-21 17:19:51 ----D---- C:\Users\Yann\AppData\Roaming\Mozilla
2009-02-21 17:19:51 ----D---- C:\Program Files\Mozilla Firefox
2009-02-21 17:19:51 ----D---- C:\Program Files\AskBarDis
2009-02-21 17:19:42 ----D---- C:\ProgramData\Azureus
2009-02-21 17:19:37 ----D---- C:\Users\Yann\AppData\Roaming\Azureus
2009-02-21 17:19:02 ----D---- C:\Program Files\Vuze
2009-02-18 15:51:38 ----D---- C:\Program Files\Trend Micro
2009-02-17 08:59:36 ----A---- C:\FtpCmd.txt
2009-02-16 07:57:47 ----A---- C:\Windows\system32\infocardapi.dll
2009-02-16 07:57:46 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-02-16 07:57:45 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2009-02-16 07:57:45 ----A---- C:\Windows\system32\icardres.dll
2009-02-16 07:57:45 ----A---- C:\Windows\system32\icardagt.exe
2009-02-16 07:57:43 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2009-02-16 07:57:41 ----A---- C:\Windows\system32\PresentationHost.exe
2009-02-16 07:49:55 ----A---- C:\Windows\system32\dfshim.dll
2009-02-16 07:49:50 ----A---- C:\Windows\system32\mscoree.dll
2009-02-16 07:49:47 ----A---- C:\Windows\system32\netfxperf.dll
2009-02-16 07:49:32 ----A---- C:\Windows\system32\mscorier.dll
2009-02-16 07:49:26 ----A---- C:\Windows\system32\mscories.dll
2009-02-11 08:37:48 ----A---- C:\Windows\system32\mshtml.dll
2009-02-11 08:37:47 ----A---- C:\Windows\system32\ieframe.dll
2009-02-11 08:37:46 ----A---- C:\Windows\system32\urlmon.dll
2009-02-11 08:37:45 ----A---- C:\Windows\system32\msfeeds.dll
2009-02-11 08:37:44 ----A---- C:\Windows\system32\wininet.dll
2009-02-11 08:37:44 ----A---- C:\Windows\system32\mstime.dll
2009-02-11 08:37:44 ----A---- C:\Windows\system32\iertutil.dll
2009-02-11 08:37:43 ----A---- C:\Windows\system32\jsproxy.dll
2009-02-02 15:27:45 ----D---- C:\Windows\system32\Adobe
2009-02-02 11:02:59 ----D---- C:\ProgramData\WindowsSearch
2009-01-31 09:09:33 ----D---- C:\Program Files\Prolific
2009-01-31 08:10:44 ----D---- C:\Temp

======List of files/folders modified in the last 1 months======

2009-02-22 20:17:27 ----D---- C:\Windows\Temp
2009-02-22 17:13:53 ----D---- C:\Windows\tracing
2009-02-22 13:48:48 ----D---- C:\Windows\Tasks
2009-02-22 13:25:30 ----D---- C:\Windows
2009-02-22 11:58:27 ----D---- C:\Users\Yann\AppData\Roaming\LimeWire
2009-02-22 11:31:22 ----D---- C:\Windows\System32
2009-02-22 11:31:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-02-22 11:31:21 ----D---- C:\Windows\inf
2009-02-22 07:39:35 ----SHD---- C:\System Volume Information
2009-02-22 07:36:13 ----D---- C:\Users\Yann\AppData\Roaming\OpenOffice.org2
2009-02-21 21:54:26 ----D---- C:\ProgramData\Google Updater
2009-02-21 19:04:40 ----D---- C:\Windows\Prefetch
2009-02-21 17:19:51 ----RD---- C:\Program Files
2009-02-21 17:19:42 ----HD---- C:\ProgramData
2009-02-21 08:37:04 ----D---- C:\Windows\system32\catroot2
2009-02-20 19:52:24 ----D---- C:\Windows\system32\Tasks
2009-02-17 13:40:34 ----SHD---- C:\Windows\Installer
2009-02-17 13:40:34 ----RSD---- C:\Windows\assembly
2009-02-17 13:40:34 ----HD---- C:\Config.Msi
2009-02-17 12:07:51 ----D---- C:\ProgramData\Symantec
2009-02-16 15:45:54 ----D---- C:\Windows\Microsoft.NET
2009-02-16 15:09:33 ----D---- C:\Windows\rescache
2009-02-16 14:47:24 ----D---- C:\Windows\system32\fr-FR
2009-02-16 08:25:02 ----D---- C:\Windows\winsxs
2009-02-16 08:24:54 ----D---- C:\Windows\system32\catroot
2009-02-16 08:15:54 ----D---- C:\Windows\system32\XPSViewer
2009-02-16 08:15:53 ----D---- C:\Windows\system32\wbem
2009-02-16 08:15:53 ----D---- C:\Windows\system32\en-US
2009-02-13 08:14:24 ----D---- C:\Windows\Debug
2009-02-11 11:04:42 ----D---- C:\Program Files\Windows Mail
2009-02-09 21:14:55 ----D---- C:\Program Files\Google
2009-02-04 15:53:51 ----D---- C:\Users\Yann\AppData\Roaming\dvdcss
2009-02-04 00:21:12 ----A---- C:\Windows\system32\mrt.exe
2009-01-31 09:32:24 ----D---- C:\Windows\system32\drivers
2009-01-31 09:09:32 ----HD---- C:\Program Files\InstallShield Installation Information

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2008-09-02 371248]
R1 IDSvix86;Symantec Intrusion Prevention Driver; \??\C:\PROGRA~2\Symantec\DEFINI~1\SymcData\idsdefs\20090217.002\IDSvix86.sys [2008-09-12 270384]
R1 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [2007-04-14 418104]
R1 SRTSPX;SRTSPX; C:\Windows\System32\Drivers\SRTSPX.SYS [2007-11-30 43696]
R1 SYMTDI;SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [2007-01-09 191544]
R2 int15;int15; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys [2006-12-07 76584]
R3 athrusb;Atheros Wireless LAN USB device driver; C:\Windows\system32\DRIVERS\athrusb.sys [2006-12-22 449536]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-07-28 2929664]
R3 Dot4;Pilote MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
R3 Dot4Print;Pilote de classe Imprimante pour IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
R3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2008-09-02 99376]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2008-04-17 15464]
R3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-03-01 1744928]
R3 NAVENG;NAVENG; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20090222.003\NAVENG.SYS [2009-02-20 89104]
R3 NAVEX15;NAVEX15; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20090222.003\NAVEX15.SYS [2009-02-20 876144]
R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2007-04-24 6144]
R3 SRTSP;SRTSP; C:\Windows\System32\Drivers\SRTSP.SYS [2007-11-30 279088]
R3 SYMDNS;SYMDNS; C:\Windows\System32\Drivers\SYMDNS.SYS [2007-01-09 12984]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2009-01-06 124464]
R3 SYMFW;SYMFW; C:\Windows\System32\Drivers\SYMFW.SYS [2007-01-09 145976]
R3 SYMIDS;SYMIDS; C:\Windows\System32\Drivers\SYMIDS.SYS [2007-01-09 40120]
R3 SYMNDISV;SYMNDISV; C:\Windows\System32\Drivers\SYMNDISV.SYS [2007-01-09 38200]
R3 SYMREDRV;SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [2007-01-09 27576]
R3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2007-12-06 298496]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-07-28 2929664]
S3 Ser2pl;Prolific Serial port driver; C:\Windows\system32\DRIVERS\ser2pl.sys [2007-02-12 75776]
S3 SRTSPL;SRTSPL; C:\Windows\System32\Drivers\SRTSPL.SYS [2007-11-30 317616]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Acer HomeMedia Connect Service;Acer HomeMedia Connect Service; C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe [2007-04-04 266343]
R2 AcerMemUsageCheckService;ePerformance Service; C:\Acer\Empowering Technology\ePerformance\MemCheck.exe [2006-12-29 28672]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-02-18 110592]
R2 ASKService;ASKService; C:\Program Files\AskBarDis\bar\bin\AskService.exe [2008-12-09 464264]
R2 ASKUpgrade;ASKUpgrade; C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe [2008-12-09 234888]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-07-28 610304]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376]
R2 ccEvtMgr;ccEvtMgr; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-09 108648]
R2 ccSetMgr;ccSetMgr; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-09 108648]
R2 CLTNetCnService;Symantec Lic NetConnect service; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-09 108648]
R2 eDataSecurity Service;eDSService.exe; C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe [2007-02-06 457512]
R2 eRecoveryService;eRecovery Service; C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe [2007-01-31 53248]
R2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-12-14 61440]
R2 LiveUpdate Notice Ex;LiveUpdate Notice Service Ex; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-09 108648]
R2 Planificateur LiveUpdate automatique;Planificateur LiveUpdate automatique; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe [2007-09-26 554352]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2007-04-09 143360]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R3 Symantec Core LC;Symantec Core LC; C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [2008-01-24 1251720]
R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S2 gupdate1c978c7239ec310;Google Update Service (gupdate1c978c7239ec310); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-01-17 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-02-20 182768]
S2 LiveUpdate Notice Service;LiveUpdate Notice Service; C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe [2008-01-29 583048]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
S3 Boonty Games;Boonty Games; C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe [2008-02-10 69120]
S3 comHost;COM Host; C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe [2007-01-12 49248]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe [2005-11-17 1527900]
S3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-03-30 504104]
S3 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE [2007-09-26 2999664]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 usprserv;User Privilege Service; C:\Windows\System32\svchost.exe [2008-01-19 21504]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]

-----------------EOF-----------------
Et voilà le contenu info-bloc-notes
info.txt logfile of random's system information tool 1.05 2009-02-22 20:15:05

======Uninstall list======

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-00A1-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
32 Bit HP CIO Components Installer-->MsiExec.exe /I{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}
Acer Arcade Live Main Page-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37}\SETUP.EXE" -uninstall
Acer DV Magician-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F6EFFB76-4A07-11DA-9D78-000129760D75}\SETUP.EXE" -uninstall
Acer DVDivine-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B145EC69-66F5-11D8-9D75-000129760D75}\SETUP.EXE" -uninstall
Acer eDataSecurity Management-->C:\Acer\Empowering Technology\eDataSecurity\eDSnstHelper.exe -Operation UNINSTALL
Acer Empowering Technology-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AB6097D9-D722-4987-BD9E-A076E2848EE2}\setup.exe" -l0x40c -removeonly
Acer ePerformance Management-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D462BF9E-0C35-4705-BF9B-3DF9F3816643}\setup.exe" -l0x40c -removeonly
Acer HomeMedia Connect-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{132888AE-EF67-41C5-BCA2-7D5D2488AB63}\SETUP.EXE" -uninstall
Acer HomeMedia-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AA4BF92B-2AAF-11DA-9D78-000129760D75}\SETUP.EXE" -uninstall
Acer ScreenSaver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}\setup.exe" -l0x9 -removeonly
Acer SlideShow DVD-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{41581EF5-45A7-11DA-9D78-000129760D75}\SETUP.EXE" -uninstall
Acer Tour-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{94389919-B0AA-4882-9BE8-9F0B004ECA35}\setup.exe" -l0x40c -removeonly
Acer VideoMagician-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F79A208D-D929-11D9-9D77-000129760D75}\SETUP.EXE" -uninstall
Activation Assistant for the 2007 Microsoft Office suites-->"C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}\Microsoft Office Activation Assistant.exe" REMOVE=TRUE MODIFY=FALSE
Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81300000003}
Adobe Shockwave Player 11-->C:\Windows\system32\adobe\SHOCKW~1\UNWISE.EXE C:\Windows\system32\Adobe\SHOCKW~1\Install.log
Adrift Screensaver v2-->"C:\Program Files\Seraline\Adrift Screensaver v2\unins000.exe"
AppCore-->MsiExec.exe /I{EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B}
Apple Mobile Device Support-->MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543}
Apple Software Update-->MsiExec.exe /I{02DFF6B1-1654-411C-8D7B-FD6052EF016F}
Assistant de connexion Windows Live-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
AV-->MsiExec.exe /I{F4DB525F-A986-4249-B98B-42A8066251CA}
Bonjour-->MsiExec.exe /I{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}
ccCommon-->MsiExec.exe /I{3CCAD2EF-CFF2-4637-82AA-AABF370282D3}
CCleaner (remove only)-->"D:\CCleaner\uninst.exe"
Dev-C++ 5 beta 9 release (4.9.9.2)-->"C:\Dev-Cpp\uninstall.exe"
Entraîneur Cérébral 2-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A62C42C-FDB3-4BCC-A41A-89FA813250E3}\setup.exe" -l0x40c -removeonly
Firebird SQL Server - MAGIX Edition-->C:\Program Files\MAGIX\Common\Database\unwise.exe
GearDrvs-->MsiExec.exe /I{228F6876-A313-40A3-91C0-C3CBE6997D09}
GearDrvs-->MsiExec.exe /I{CB84F0F2-927B-458D-9DC5-87832E3DC653}
Gold Miner: Vegas-->C:\Program Files\AOL Games\Gold Miner Vegas\Uninstall.exe
Google Earth Plugin-->MsiExec.exe /I{F43C7DE1-CB20-11DD-8D77-005056806466}
Google Earth-->MsiExec.exe /I{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_0531C63A913CC9D1.exe" /uninstall
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
HP Customer Participation Program 9.0-->C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Imaging Device Functions 9.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
HP OCR Software 9.0-->C:\Program Files\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat
HP Photosmart All-In-One Software 9.0-->C:\Program Files\HP\Digital Imaging\{B46AC30C-22D2-4610-B041-1DA7BB29EB57}\setup\hpzscr01.exe -datfile hposcr21.dat
HP Photosmart Essential 2.01-->C:\Program Files\HP\Digital Imaging\PhotoSmartEssential\hpzscr01.exe -datfile hpqbud13.dat
HP Smart Web Printing-->msiexec /i{A9DC9256-709F-4BEA-B39D-4F11D90585AA}
HP Solution Center 9.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{8C6027FD-53DC-446D-BB75-CACD7028A134}
HPSSupply-->MsiExec.exe /X{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}
iTunes-->MsiExec.exe /I{585776BC-4BD6-4BD2-A19A-1D6CB44A403B}
Japanese Prints Screensaver-->C:\Program Files\Fine Art Screensavers\Japanese Prints\Uninstall.exe
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Les Sims 2-->C:\Program Files\EA GAMES\Les Sims 2\EAUninstall.exe
LimeWire 4.18.8-->"D:\LimeWire\uninstall.exe"
Livebox-->C:\Program Files\InstallShield Installation Information\{FC7DDAAE-7F2B-4270-9BFD-5A130B667E9E}\Setup.exe -runfromtemp -l0x040c -removeonly
LiveUpdate 3.2 (Symantec Corporation)-->"C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE" /U
LiveUpdate Notice (Symantec Corporation)-->MsiExec.exe /X{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}
Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
Microsoft .NET Framework 3.5 SP1-->C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL
Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}
Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB}
Microsoft Office OneNote MUI (French) 2007-->MsiExec.exe /X{90120000-00A1-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Works-->MsiExec.exe /I{6B1CB38D-E2E4-4A30-933D-EFDEBA76AD9C}
Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
MSN Connection Center-->C:\Program Files\MSN\MSNIA\CC\MSNCC\ccrestore.exe /Uninstall
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Norton 360 (Symantec Corporation)-->"C:\Program Files\Common Files\Symantec Shared\SymSetup\{2D617065-1C52-4240-B5BC-C0AE12157777}_1_0_0_184\{2D617065-1C52-4240-B5BC-C0AE12157777}.exe" /X
Norton 360 Help-->MsiExec.exe /I{1CA941F1-5006-487E-9FD4-09F812A7D6B8}
Norton 360-->MsiExec.exe /I{21829177-4DED-4209-AD08-490B3AC9C01A}
Norton 360-->MsiExec.exe /I{2D617065-1C52-4240-B5BC-C0AE12157777}
Norton 360-->MsiExec.exe /I{40DA9A54-48CA-4A2C-AEAF-F67715BB046E}
Norton 360-->MsiExec.exe /I{63A6E9A9-A190-46D4-9430-2DB28654AFD8}
Norton Confidential Browser Component-->MsiExec.exe /I{4843B611-8FCB-4428-8C23-31D0A5EAE164}
Norton Confidential Web Authentification Component-->MsiExec.exe /I{3074EB89-1BCA-4AEF-AFF4-EFB4634C1923}
Norton Confidential Web Protection Component-->MsiExec.exe /I{D353CC51-430D-4C6F-9B7E-52003DA1E05A}
Norton Security Scan-->MsiExec.exe /I{1A8A214F-6BAC-4E01-A27D-25C19A484908}
Notification Mail-->MsiExec.exe /I{B311B6E0-480B-4628-A77E-92D73CE71F3D}
NTI Backup NOW! 4.7-->"C:\Program Files\InstallShield Installation Information\{67ADE9AF-5CD9-4089-8825-55DE4B366799}\setup.exe" -removeonly
NTI CD & DVD-Maker-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2} /l1036 CDM7
OpenOffice.org 2.3-->MsiExec.exe /I{B087B0C3-F595-485A-B86B-73326BA8693A}
Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
PHOTOCITE Collection-->"C:\Program Files\PHOTOCITE Collection\unins000.exe"
Picasa 2-->"C:\Program Files\Picasa2\Uninstall.exe"
PL-2303 Vista Driver Installer-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EEC010D0-1252-4E1D-BAD9-F1B8F414535C}\setup.exe" -l0x9 -removeonly
QuickTime-->MsiExec.exe /I{1838C5A2-AB32-4145-85C1-BB9B8DFA24CD}
Realtek High Definition Audio Driver-->RtlUpd.exe -r -m
Search Settings 1.2-->MsiExec.exe /X{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}
Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85}
Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
Security Update for 2007 Microsoft Office System (KB958439)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {6491B8AA-D11C-4648-A461-6234B31EB7E2}
Security Update for Microsoft Office Excel 2007 (KB958437)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {648FC016-2D6B-4A16-8D87-404533642F4B}
Security Update for Microsoft Office OneNote 2007 (KB950130)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {F1B2401C-B610-4BF2-AA1C-52C55827A8F4}
Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}
Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC}
Security Update for Microsoft Office Word 2007 (KB956358)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2E64517C}
Security Update for Visio 2007 (KB947590)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {6BAD036C-261F-4BEF-96CF-C20678D07A41}
SPBBC 32bit-->MsiExec.exe /I{77772678-817F-4401-9301-ED1D01A8DA56}
SuppSoft-->MsiExec.exe /I{022DA2C3-81C7-4003-A6BC-1BB147B20097}
Symantec Technical Support Controls-->MsiExec.exe /I{92B1B3CC-EC78-45B8-96D0-8B3F11495864}
SymNet-->MsiExec.exe /I{2DA85B02-13C0-4E6D-9A76-22E6B3DD0CB2}
Update for Microsoft Office Excel 2007 Help (KB957242)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {49E314EE-81FA-4007-8F1A-8D39BDBB4498}
Update for Office 2007 (KB946691)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278}
VideoLAN VLC media player 0.8.6i-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Vuze Toolbar-->"C:\Program Files\AskBarDis\unins000.exe"
Vuze-->C:\Program Files\Vuze\uninstall.exe
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Yahoo! Toolbar avec bloqueur de fenêtres pop-up-->C:\PROGRA~1\Yahoo!\common\unyt.exe

======Security center information======

AV: Norton 360
FW: Norton 360
AS: Windows Defender
AS: Norton 360

System event log

Computer Name: PC-de-YannMarie
Event Code: 7036
Message: Le service LiveUpdate est entré dans l'état : arrêté.
Record Number: 175959
Source Name: Service Control Manager
Time Written: 20090222190157.000000-000
Event Type: Information
User:

Computer Name: PC-de-YannMarie
Event Code: 7036
Message: Le service LiveUpdate est entré dans l'état : en cours d'exécution.
Record Number: 175960
Source Name: Service Control Manager
Time Written: 20090222190914.000000-000
Event Type: Information
User:

Computer Name: PC-de-YannMarie
Event Code: 7036
Message: Le service LiveUpdate est entré dans l'état : arrêté.
Record Number: 175961
Source Name: Service Control Manager
Time Written: 20090222191056.000000-000
Event Type: Information
User:

Computer Name: PC-de-YannMarie
Event Code: 10029
Message: DCOM a démarré le service wcncsvc avec les arguments «  » de façon à exécuter le serveur :
{375FF000-DD27-11D9-8F9C-0002B3988E81}
Record Number: 175962
Source Name: Microsoft-Windows-DistributedCOM
Time Written: 20090222191309.000000-000
Event Type: Information
User:

Computer Name: PC-de-YannMarie
Event Code: 7036
Message: Le service Windows Connect Now - Registre de configuration est entré dans l'état : en cours d'exécution.
Record Number: 175963
Source Name: Service Control Manager
Time Written: 20090222191310.000000-000
Event Type: Information
User:

Application event log

Computer Name: PC-de-YannMarie
Event Code: 0
Message: Le service s'est arrêté avec succès.
Record Number: 76769
Source Name: idsvc
Time Written: 20090222184021.000000-000
Event Type: Information
User:

Computer Name: PC-de-YannMarie
Event Code: 101
Message: Niveau d'information : success

Le Planificateur a lancé LiveUpdate automatique.
Record Number: 76770
Source Name: Automatic LiveUpdate Scheduler
Time Written: 20090222190914.000000-000
Event Type: Information
User: AUTORITE NT\SYSTEM

Computer Name: PC-de-YannMarie
Event Code: 101
Message: Niveau d'information : success

LiveUpdate automatique a terminé.
Record Number: 76771
Source Name: Automatic LiveUpdate Scheduler
Time Written: 20090222191050.000000-000
Event Type: Information
User: AUTORITE NT\SYSTEM

Computer Name: PC-de-YannMarie
Event Code: 101
Message: Niveau d'information : success

L'exécution suivante a été planifiée pour intervenir approximativement à 9:07 PM.
Record Number: 76772
Source Name: Automatic LiveUpdate Scheduler
Time Written: 20090222191050.000000-000
Event Type: Information
User: AUTORITE NT\SYSTEM

Computer Name: PC-de-YannMarie
Event Code: 5
Message: Unsupported service control request (see data below)
Record Number: 76773
Source Name: LightScribeService
Time Written: 20090222191503.000000-000
Event Type: Information
User:

Security event log

Computer Name: PC-de-YannMarie
Event Code: 4648
Message: Tentative d’ouverture de session en utilisant des informations d’identification explicites.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-DE-YANNMARIE$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Compte dont les informations d’identification ont été utilisées :
Nom du compte : SYSTEM
Domaine du compte : AUTORITE NT
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Serveur cible :
Nom du serveur cible : localhost
Informations supplémentaires : localhost

Informations sur le processus :
ID du processus : 0x274
Nom du processus : C:\Windows\System32\services.exe

Informations sur le réseau :
Adresse du réseau : -
Port : -

Cet événement est généré lorsqu’un processus tente d’ouvrir une session pour un compte en spécifiant explicitement les informations d’identification de ce compte. Ceci se produit le plus souvent dans les configurations par lot comme les tâches planifiées, ou avec l’utilisation de la commande RUNAS.
Record Number: 168953
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20081106203341.114388-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-YannMarie
Event Code: 4624
Message: L’ouverture de session d’un compte s’est correctement déroulée.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-DE-YANNMARIE$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Type d’ouverture de session : 5

Nouvelle ouverture de session :
ID de sécurité : S-1-5-18
Nom du compte : SYSTEM
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Informations sur le processus :
ID du processus : 0x274
Nom du processus : C:\Windows\System32\services.exe

Informations sur le réseau :
Nom de la station de travail :
Adresse du réseau source : -
Port source : -

Informations détaillées sur l’authentification :
Processus d’ouverture de session : Advapi
Package d’authentification : Negotiate
Services en transit : -
Nom du package (NTLM uniquement) : -
Longueur de la clé : 0

Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
- Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
- Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
- Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
- La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
Record Number: 168954
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20081106203341.114388-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-YannMarie
Event Code: 4672
Message: Privilèges spéciaux attribués à la nouvelle ouverture de session.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : SYSTEM
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7

Privilèges : SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 168955
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20081106203341.114388-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-YannMarie
Event Code: 4648
Message: Tentative d’ouverture de session en utilisant des informations d’identification explicites.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-DE-YANNMARIE$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Compte dont les informations d’identification ont été utilisées :
Nom du compte : SYSTEM
Domaine du compte : AUTORITE NT
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Serveur cible :
Nom du serveur cible : localhost
Informations supplémentaires : localhost

Informations sur le processus :
ID du processus : 0x274
Nom du processus : C:\Windows\System32\services.exe

Informations sur le réseau :
Adresse du réseau : -
Port : -

Cet événement est généré lorsqu’un processus tente d’ouvrir une session pour un compte en spécifiant explicitement les informations d’identification de ce compte. Ceci se produit le plus souvent dans les configurations par lot comme les tâches planifiées, ou avec l’utilisation de la commande RUNAS.
Record Number: 168956
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20081106203341.148388-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-YannMarie
Event Code: 4624
Message: L’ouverture de session d’un compte s’est correctement déroulée.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-DE-YANNMARIE$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Type d’ouverture de session : 5

Nouvelle ouverture de session :
ID de sécurité : S-1-5-18
Nom du compte : SYSTEM
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Informations sur le processus :
ID du processus : 0x274
Nom du processus : C:\Windows\System32\services.exe

Informations sur le réseau :
Nom de la station de travail :
Adresse du réseau source : -
Port source : -

Informations détaillées sur l’authentification :
Processus d’ouverture de session : Advapi
Package d’authentification : Negotiate
Services en transit : -
Nom du package (NTLM uniquement) : -
Longueur de la clé : 0

Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
- Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
- Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
- Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
- La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
Record Number: 168957
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20081106203341.148388-000
Event Type: Succès de l'audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\QuickTime\QTSystem\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 11, GenuineIntel
"PROCESSOR_REVISION"=0f0b
"NUMBER_OF_PROCESSORS"=4
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip

-----------------EOF-----------------



Merci

Search Navipromo version 3.7.4 commencé le 22/02/2009 à 21:04:53,27

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 16.02.2009 à 18h00 par IL-MAFIOSO

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : Yann ( Not Administrator ! )
BOOT : Normal boot

Antivirus : Norton 360 2007 (Activated)
Firewall : Norton 360 2007 (Activated)

C:\ (Local Disk) - NTFS - Total:228 Go (Free:87 Go)
D:\ (Local Disk) - NTFS - Total:227 Go (Free:227 Go)
E:\ (CD or DVD)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)
L:\ (USB)


Recherche executé en mode normal

*** Recherche Programmes installés ***


*** Recherche dossiers dans "C:\Windows" ***


*** Recherche dossiers dans "C:\Program Files" ***


*** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1\programs" ***


*** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1" ***


*** Recherche dossiers dans "C:\ProgramData" ***


*** Recherche dossiers dans "c:\users\yann\appdata\roaming\micros~1\windows\startm~1\programs" ***


*** Recherche dossiers dans "C:\Users\Yann\AppData\Local\virtualstore\Program Files" ***


*** Recherche dossiers dans "C:\Users\LA4770~1\AppData\Local\virtualstore\Program Files" ***


*** Recherche dossiers dans "C:\Users\Nell\AppData\Local\virtualstore\Program Files" ***


*** Recherche dossiers dans "C:\Users\OCANE~1\AppData\Local\virtualstore\Program Files" ***



*** Recherche dossiers dans "C:\Users\Yann\AppData\Local" ***



*** Recherche dossiers dans "C:\Users\LA4770~1\AppData\Local" ***



*** Recherche dossiers dans "C:\Users\Nell\AppData\Local" ***



*** Recherche dossiers dans "C:\Users\OCANE~1\AppData\Local" ***




*** Recherche dossiers dans "C:\Users\Yann\AppData\Roaming" ***


*** Recherche dossiers dans "C:\Users\LA4770~1\appdata\roaming" ***


*** Recherche dossiers dans "C:\Users\Nell\appdata\roaming" ***


*** Recherche dossiers dans "C:\Users\OCANE~1\appdata\roaming" ***


*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans "C:\Windows\system32" *

* Recherche dans "C:\Users\Yann\AppData\Local\Microsoft" *

* Recherche dans "C:\Users\Yann\AppData\Local\virtualstore\windows\system32" *

* Recherche dans "C:\Users\Yann\AppData\Local" *

* Recherche dans "C:\Users\LA4770~1\AppData\Local" *

* Recherche dans "C:\Users\Nell\AppData\Local" *

* Recherche dans "C:\Users\OCANE~1\AppData\Local" *



*** Recherche fichiers ***


C:\Windows\system32\nvs2.inf trouvé !

*** Recherche clés spécifiques dans le Registre ***
!! Les clés trouvées ne sont pas forcément infectées !!


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"aogsi"="\"c:\\users\\yann\\appdata\\local\\aogsi.exe\" aogsi"


*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :


2)Recherche Heuristique :

* Dans "C:\Windows\system32" :


* Dans "C:\Users\Yann\AppData\Local\Microsoft" :


* Dans "C:\Users\Yann\AppData\Local\virtualstore\windows\system32" :


* Dans "C:\Users\Yann\AppData\Local" :

aogsi.exe trouvé !
aogsi.dat trouvé !
aogsi_nav.dat trouvé !
aogsi_navps.dat trouvé !
misaeeu_navtmp.dat trouvé !
ooamy_navtmp.dat trouvé !

* Dans "C:\Users\LA4770~1\AppData\Local" :


* Dans "C:\Users\Nell\AppData\Local" :


* Dans "C:\Users\OCANE~1\AppData\Local" :


3)Recherche Certificats :

Certificat Egroup trouvé !
Certificat Electronic-Group trouvé !
Certificat Montorgueil absent !
Certificat OOO-Favorit trouvé !
Certificat Sunny-Day-Design-Ltd absent !

4)Recherche autres dossiers et fichiers connus :



*** Analyse terminée le 22/02/2009 à 21:06:12,96 ***

J'ai de plus en plus de bugs...
Publicités intempestives meme avec internet fermé, l'écran devient noir puis se remet, souris qui bouge dans tous les sens...

Salut,
J'ai bien suivi tes explications et je n'ai rien trouvé qui corresponde à "VIP" dans les certificats internet. Donc je n'ai rien exporté et rien supprimé. C'est bien ça?
Je te post le rapport cleannavi et Hijackthis

Clean Navipromo version 3.7.4 commencé le 23/02/2009 à 16:33:57,64

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 16.02.2009 à 18h00 par IL-MAFIOSO

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : Yann ( Not Administrator ! )
BOOT : Normal boot

Antivirus : Norton 360 2007 (Activated)
Firewall : Norton 360 2007 (Activated)

C:\ (Local Disk) - NTFS - Total:228 Go (Free:84 Go)
D:\ (Local Disk) - NTFS - Total:227 Go (Free:227 Go)
E:\ (CD or DVD)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)
L:\ (USB)


Mode suppression automatique
avec prise en charge résultats Catchme et GNS


Nettoyage exécuté au redémarrage de l'ordinateur


*** fsbl1.txt non trouvé ***
(Assurez-vous que Catchme n'avait rien trouvé lors de la recherche)


*** Suppression avec sauvegardes résultats GenericNaviSearch ***

* Suppression dans "C:\Windows\System32" *


* Suppression dans "C:\Users\Yann\AppData\Local\Microsoft" *


* Suppression dans "C:\Users\Yann\AppData\Local\virtualstore\windows\system32" *


* Suppression dans "C:\Users\Yann\AppData\Local" *


* Suppression dans "C:\Users\LA4770~1\AppData\Local" *


* Suppression dans "C:\Users\Nell\AppData\Local" *


* Suppression dans "C:\Users\OCANE~1\AppData\Local" *



*** Suppression dossiers dans "C:\Windows" ***


*** Suppression dossiers dans "C:\Program Files" ***


*** Suppression dossiers dans "c:\progra~2\micros~1\windows\startm~1\programs" ***


*** Suppression dossiers dans "c:\progra~2\micros~1\windows\startm~1" ***


*** Suppression dossiers dans "C:\ProgramData" ***


*** Suppression dossiers dans c:\users\yann\appdata\roaming\micros~1\windows\startm~1\programs ***


*** Suppression dossiers dans "C:\Users\LA4770~1\appdata\roaming\micros~1\windows\startm~1\programs" ***


*** Suppression dossiers dans "C:\Users\Nell\appdata\roaming\micros~1\windows\startm~1\programs" ***


*** Suppression dossiers dans "C:\Users\OCANE~1\appdata\roaming\micros~1\windows\startm~1\programs" ***


*** Suppression dossiers dans "C:\Users\Yann\AppData\Local\virtualstore\Program Files" ***


*** Suppression dossiers dans "C:\Users\LA4770~1\AppData\Local\virtualstore\Program Files" ***


*** Suppression dossiers dans "C:\Users\Nell\AppData\Local\virtualstore\Program Files" ***


*** Suppression dossiers dans "C:\Users\OCANE~1\AppData\Local\virtualstore\Program Files" ***


*** Suppression dossiers dans "C:\Users\Yann\AppData\Local" ***


*** Suppression dossiers dans "C:\Users\LA4770~1\AppData\Local" ***


*** Suppression dossiers dans "C:\Users\Nell\AppData\Local" ***


*** Suppression dossiers dans "C:\Users\OCANE~1\AppData\Local" ***


*** Suppression dossiers dans "C:\Users\Yann\AppData\Roaming" ***


*** Suppression dossiers dans "C:\Users\LA4770~1\appdata\roaming" ***


*** Suppression dossiers dans "C:\Users\Nell\appdata\roaming" ***


*** Suppression dossiers dans "C:\Users\OCANE~1\appdata\roaming" ***



*** Suppression fichiers ***

C:\Windows\system32\nvs2.inf supprimé !

*** Suppression fichiers temporaires ***

Nettoyage contenu C:\Windows\Temp effectué !
Nettoyage contenu C:\Users\Yann\AppData\Local\Temp effectué !

*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Suppression avec sauvegardes nouveaux fichiers Instant Access :

2)Recherche, création sauvegardes et suppression Heuristique :


* Dans "C:\Windows\system32" *



* Dans "C:\Users\Yann\AppData\Local\Microsoft" *



* Dans "C:\Users\Yann\AppData\Local\virtualstore\windows\system32" *



* Dans "C:\Users\Yann\AppData\Local" *


aogsi.exe trouvé !
Copie aogsi.exe réalisée avec succès !
aogsi.exe supprimé !

aogsi.dat trouvé !
Copie aogsi.dat réalisée avec succès !
aogsi.dat supprimé !

aogsi_nav.dat trouvé !
Copie aogsi_nav.dat réalisée avec succès !
aogsi_nav.dat supprimé !

aogsi_navps.dat trouvé !
Copie aogsi_navps.dat réalisée avec succès !
aogsi_navps.dat supprimé !

misaeeu_navtmp.dat trouvé !
Copie misaeeu_navtmp.dat réalisée avec succès !
misaeeu_navtmp.dat supprimé !

ooamy_navtmp.dat trouvé !
Copie ooamy_navtmp.dat réalisée avec succès !
ooamy_navtmp.dat supprimé !


* Dans "C:\Users\LA4770~1\AppData\Local" *



* Dans "C:\Users\Nell\AppData\Local" *



* Dans "C:\Users\OCANE~1\AppData\Local" *



*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok


*** Certificats ***

Certificat Egroup supprimé !
Certificat Electronic-Group supprimé !
Certificat Montorgueil absent !
Certificat OOO-Favorit supprimé !
Certificat Sunny-Day-Design-Ltdt absent !


*** Recherche autres dossiers et fichiers connus ***



*** Nettoyage terminé le 23/02/2009 à 16:39:26,13 ***

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:52:49, on 23/02/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\conime.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Search Settings\SearchSettings.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Windows\System32\wpcumi.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Windows\system32\wuauclt.exe
D:\Notification Mail\MailNotifier\MailNotifier.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/y [...] .yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - D:\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Afficher Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [TrayServer] C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\TrayServer.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [MailNotifierSessionManager] D:\Notification Mail\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [WPCUMI] C:\Windows\system32\WpcUmi.exe
O4 - HKLM\..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: PCM Media Sharing.lnk = C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O8 - Extra context menu item: Compare Prices with &Dealio - C:\Users\Yann\AppData\LocalLow\Dealio\kb127\res\DealioSearch.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Sélection intelligente HP - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O13 - Gopher Prefix:
O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/ [...] rtdgi1.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/n [...] .0.1.1.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://jeuxenligne.orange.fr/GameS [...] der_v6.cab
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASKService - Unknown owner - C:\Program Files\AskBarDis\bar\bin\AskService.exe
O23 - Service: ASKUpgrade - Unknown owner - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: ccEvtMgr - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: ccSetMgr - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: Google Update Service (gupdate1c978c7239ec310) (gupdate1c978c7239ec310) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

--
End of file - 12887 bytes


Lorsque je fais les manip demandées avec Navilog ça me met sans arret "gnc.exe a cessé de fonctionner"
Je te donne les infos comme je les trouve. Je me dis que peut-être chaque petit détail est important.
Merci pour ta patience

Bonjour


Je t'envoie le rapport MBAM-log

Malwarebytes' Anti-Malware 1.34
Version de la base de données: 1797
Windows 6.0.6001 Service Pack 1

23/02/2009 22:51:51
mbam-log-2009-02-23 (22-51-51).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 216550
Temps écoulé: 1 hour(s), 47 minute(s), 7 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 36
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 8
Fichier(s) infecté(s): 7

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
C:\Program Files\Windows Live\Messenger\msimg32.dll (Adware.MyWebSearch) -> Delete on reboot.

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\popcaploader.popcaploaderctrl2 (Adware.PopCap) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\popcaploader.popcaploaderctrl2.1 (Adware.PopCap) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{2e9937fc-cf2f-4f56-af54-5a6a3dd375cc} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{741de825-a6f0-4497-9aa6-8023cf9b0fff} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{cf54be1c-9359-4395-8533-1657cf209cfe} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{e4e3e0f8-cd30-4380-8ce9-b96904bdefca} (Adware.PopCap) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{fe8a736f-4124-4d9c-b4b1-3b12381efabe} (Adware.PopCap) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{df780f87-ff2b-4df8-92d0-73db16a1543a} (Adware.PopCap) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a4730ebe-43a6-443e-9776-36915d323ad3} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{c9c5deaf-0a1f-4660-8279-9edfad6fefe1} (Adware.PopCap) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{d518921a-4a03-425e-9873-b9a71756821e} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{df780f87-ff2b-4df8-92d0-73db16a1543a} (Adware.PopCap) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07b18ea1-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07b18eab-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{df780f87-ff2b-4df8-92d0-73db16a1543a} (Adware.PopCap) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59c7fc09-1c83-4648-b3e6-003d2bbc7481} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68af847f-6e91-45dd-9b68-d6a12c30e5d7} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170b96c-28d4-4626-8358-27e6caeef907} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d1a71fa0-ff48-48dd-9b6d-7a13a3e42127} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ddb1968e-ead6-40fd-8dae-ff14757f60c7} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f138d901-86f0-4383-99b6-9cdd406036da} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWay) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\FocusInteractive (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Program Files\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\History (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Settings (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\ScreenSaver (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\ScreenSaver\Images (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware-Secure (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Program Files\Windows Live\Messenger\msimg32.dll (Adware.MyWebSearch) -> Delete on reboot.
C:\Program Files\Windows Live\Messenger\riched20.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Settings\s_pid.dat (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware-Secure\Spyware-Secure trial.lnk (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware-Secure\Spyware-Secure.lnk (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware-Secure\Uninstall.lnk (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware-Secure\Website.lnk (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.




J'ai aussi un rapport que j'ai eu avec le premier téléchargement (MajorGeeks)mais c'était tout en anglais et je sais pas si j'ai pas fait de mauvaises manip. Je te l'envoie quand même.

Scan results
--------------------------------------------------------------------------------
Scanning date: Tue, February 24, 2009 - 06:40 AM
Total problems found: 361

--------------------------------------------------------------------------------

--------------------------------------------------------------------------------

Scanning section: Activex, OLE, COM sections
Entries found: 159
Entries:
Entry: HKEY_CLASSES_ROOT\CLSID\{0724F708-270F-4E80-85A6-F4472D5126CC}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\hhwavsource.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\hhwavsource.ax in the HKEY_CLASSES_ROOT\CLSID\{0724F708-270F-4E80-85A6-F4472D5126CC} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{0750F139-0FE7-4F8F-AA7C-9F7C35D471D1}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{0750F139-0FE7-4F8F-AA7C-9F7C35D471D1}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{07AD8473-5D37-4076-AF40-44FE70B07CD9}\TypeLib
Valuename:
Value: {07AD8473-5D37-4076-AF40-44FE70B07CD9}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{07AD8473-5D37-4076-AF40-44FE70B07CD9}\TypeLib key points to the missing Type Library {07AD8473-5D37-4076-AF40-44FE70B07CD9} )


Entry: HKEY_CLASSES_ROOT\CLSID\{07E5EC16-E7FF-44E5-A0C2-D8C443C19A69}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{07E5EC16-E7FF-44E5-A0C2-D8C443C19A69}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{0805A49F-1AB8-4E4F-BF87-896182BE09E3}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{0805A49F-1AB8-4E4F-BF87-896182BE09E3}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{0E654C56-D988-472B-9D03-BA6CCC9E7EAF}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\dvpatcher.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\dvpatcher.ax in the HKEY_CLASSES_ROOT\CLSID\{0E654C56-D988-472B-9D03-BA6CCC9E7EAF} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{14AF36A0-23BD-48E4-8B37-517C24B09FC9}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\hhmultirend.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\hhmultirend.ax in the HKEY_CLASSES_ROOT\CLSID\{14AF36A0-23BD-48E4-8B37-517C24B09FC9} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{1B11B545-5565-401B-A974-C585767F8BEA}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{1B11B545-5565-401B-A974-C585767F8BEA}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{1B4EE5FC-7FF0-4D4F-987E-FBCA5B6F338A}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{1B4EE5FC-7FF0-4D4F-987E-FBCA5B6F338A}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{1E8A6170-7264-4D0F-BEAE-D42A53123C75}\TypeLib
Valuename:
Value: {954138ED-7951-433C-BAF9-AF1DAD0F4261}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{1E8A6170-7264-4D0F-BEAE-D42A53123C75}\TypeLib key points to the missing Type Library {954138ED-7951-433C-BAF9-AF1DAD0F4261} )


Entry: HKEY_CLASSES_ROOT\CLSID\{230290FB-40BA-465E-B912-44381C81FFE9}\InprocServer32
Valuename:
Value:
Reason: ( The key InprocServer32 under HKEY_CLASSES_ROOT\CLSID\{230290FB-40BA-465E-B912-44381C81FFE9} is empty )


Entry: HKEY_CLASSES_ROOT\CLSID\{24cdf6ea-0b88-4d7a-aaf0-2048f90c2e1c}\TypeLib
Valuename:
Value: {3ba4407d-a51f-4cfb-9768-511b51bc2f5b}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{24cdf6ea-0b88-4d7a-aaf0-2048f90c2e1c}\TypeLib key points to the missing Type Library {3ba4407d-a51f-4cfb-9768-511b51bc2f5b} )


Entry: HKEY_CLASSES_ROOT\CLSID\{2A513EB3-0BA3-4ED7-AB0C-B29020E895AC}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{2A513EB3-0BA3-4ED7-AB0C-B29020E895AC}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{2c079982-25c8-4edf-9840-21d863a4716c}\TypeLib
Valuename:
Value: {3ba4407d-a51f-4cfb-9768-511b51bc2f5b}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{2c079982-25c8-4edf-9840-21d863a4716c}\TypeLib key points to the missing Type Library {3ba4407d-a51f-4cfb-9768-511b51bc2f5b} )


Entry: HKEY_CLASSES_ROOT\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}\TypeLib
Valuename:
Value: {47A7A4B0-2723-41BA-865E-EBBB7081A602}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}\TypeLib key points to the missing Type Library {47A7A4B0-2723-41BA-865E-EBBB7081A602} )


Entry: HKEY_CLASSES_ROOT\CLSID\{31AC3F11-E5EA-4A85-8A3D-8E095A39C27B}\InprocServer32
Valuename:
Value: C:\Program Files\Google\Update\1.2.131.27\goopdate.dll
Reason: ( The InprocServer32 points to the missing program C:\Program Files\Google\Update\1.2.131.27\goopdate.dll in the HKEY_CLASSES_ROOT\CLSID\{31AC3F11-E5EA-4A85-8A3D-8E095A39C27B} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{32D85DA2-070B-49A0-9261-E7854457A6D6}\TypeLib
Valuename:
Value: {D7339B18-0926-46E0-A690-4A538FC1C8F8}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{32D85DA2-070B-49A0-9261-E7854457A6D6}\TypeLib key points to the missing Type Library {D7339B18-0926-46E0-A690-4A538FC1C8F8} )


Entry: HKEY_CLASSES_ROOT\CLSID\{3712A712-4105-4312-8371-692B7FD58551}\TypeLib
Valuename:
Value: {3712A711-4105-4312-8371-692B7FD58551}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{3712A712-4105-4312-8371-692B7FD58551}\TypeLib key points to the missing Type Library {3712A711-4105-4312-8371-692B7FD58551} )


Entry: HKEY_CLASSES_ROOT\CLSID\{3CC385AC-95CC-4A75-BF35-AB36AE645BCF}\TypeLib
Valuename:
Value: {D7339B18-0926-46E0-A690-4A538FC1C8F8}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{3CC385AC-95CC-4A75-BF35-AB36AE645BCF}\TypeLib key points to the missing Type Library {D7339B18-0926-46E0-A690-4A538FC1C8F8} )


Entry: HKEY_CLASSES_ROOT\CLSID\{3EA8468C-119B-449E-B41B-3A89E4F54B60}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{3EA8468C-119B-449E-B41B-3A89E4F54B60}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{3F1A7B06-E041-4FB2-BD46-2DBCD3612EFF}\TypeLib
Valuename:
Value: {F52C8302A-7C25-45C7-86AB-2167411E1897}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{3F1A7B06-E041-4FB2-BD46-2DBCD3612EFF}\TypeLib key points to the missing Type Library {F52C8302A-7C25-45C7-86AB-2167411E1897} )


Entry: HKEY_CLASSES_ROOT\CLSID\{3FE7B073-6A5E-4084-A400-A78099E885D4}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{3FE7B073-6A5E-4084-A400-A78099E885D4}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{44270ABA-D71B-11DA-8750-001185653D78}\LocalServer32
Valuename:
Value: "c:\program files\google\googletoolbar1user.exe"
Reason: ( The LocalServer32 points to the missing program "c:\program files\google\googletoolbar1user.exe" in the HKEY_CLASSES_ROOT\CLSID\{44270ABA-D71B-11DA-8750-001185653D78} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{4439EA2B-9E84-40ba-B4A0-3D79D5A5F054}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\mxwmsync.dll
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\mxwmsync.dll in the HKEY_CLASSES_ROOT\CLSID\{4439EA2B-9E84-40ba-B4A0-3D79D5A5F054} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{46E1171A-BD28-4C68-A03E-10B12E779C8A}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\mxscreencapture.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\mxscreencapture.ax in the HKEY_CLASSES_ROOT\CLSID\{46E1171A-BD28-4C68-A03E-10B12E779C8A} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{4732AB0D-5292-433B-9CBF-16D82B5C609E}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{4732AB0D-5292-433B-9CBF-16D82B5C609E}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{4DE4AEB3-C008-4C9A-BD47-118B16E9377B}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{4DE4AEB3-C008-4C9A-BD47-118B16E9377B}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{52D897E9-7490-4AD9-AE64-9B0FB896E837}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\hhvideosource.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\hhvideosource.ax in the HKEY_CLASSES_ROOT\CLSID\{52D897E9-7490-4AD9-AE64-9B0FB896E837} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{53E887FE-A54A-4E24-87A7-CF628C03941E}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{53E887FE-A54A-4E24-87A7-CF628C03941E}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{5591379C-B467-4BCA-B647-A438712504B0}\TypeLib
Valuename:
Value: {893CD020-4354-4B33-A78D-909EE58BAFAF}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{5591379C-B467-4BCA-B647-A438712504B0}\TypeLib key points to the missing Type Library {893CD020-4354-4B33-A78D-909EE58BAFAF} )


Entry: HKEY_CLASSES_ROOT\CLSID\{56d398df-f37d-4d6d-94cc-8b3ea36c3a39}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\MXMPEG2.dll
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\MXMPEG2.dll in the HKEY_CLASSES_ROOT\CLSID\{56d398df-f37d-4d6d-94cc-8b3ea36c3a39} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{571597A6-6A42-45D3-B41D-5DAEA547CA0F}\TypeLib
Valuename:
Value: {}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{571597A6-6A42-45D3-B41D-5DAEA547CA0F}\TypeLib key points to the missing Type Library {} )


Entry: HKEY_CLASSES_ROOT\CLSID\{57C9CD14-7FF9-420D-8010-669DFBCF04DC}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{57C9CD14-7FF9-420D-8010-669DFBCF04DC}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{5bdb98cc-b3f5-4d33-9a91-cbc986bea087}\TypeLib
Valuename:
Value: {3ba4407d-a51f-4cfb-9768-511b51bc2f5b}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{5bdb98cc-b3f5-4d33-9a91-cbc986bea087}\TypeLib key points to the missing Type Library {3ba4407d-a51f-4cfb-9768-511b51bc2f5b} )


Entry: HKEY_CLASSES_ROOT\CLSID\{5c051655-fcd5-4969-9182-770ea5aa5565}\TypeLib
Valuename:
Value: {{c4630c01-779d-4697-a918-20481a12ae9a}}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{5c051655-fcd5-4969-9182-770ea5aa5565}\TypeLib key points to the missing Type Library {{c4630c01-779d-4697-a918-20481a12ae9a}} )


Entry: HKEY_CLASSES_ROOT\CLSID\{5E2121EE-0300-11D4-8D3B-444553540000}\TypeLib
Valuename:
Value: {5E2121EE-0300-11D4-8D3B-444553540000}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{5E2121EE-0300-11D4-8D3B-444553540000}\TypeLib key points to the missing Type Library {5E2121EE-0300-11D4-8D3B-444553540000} )


Entry: HKEY_CLASSES_ROOT\CLSID\{60BD49A6-240E-48ef-8D73-AC8244BE1D85}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\mxavireader.dll
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\mxavireader.dll in the HKEY_CLASSES_ROOT\CLSID\{60BD49A6-240E-48ef-8D73-AC8244BE1D85} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{630ED07B-04A5-4AB9-A73B-FD94F34D5F09}\TypeLib
Valuename:
Value: {72DA7049-1F4A-49CD-9FD4-CC13D128C4CF}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{630ED07B-04A5-4AB9-A73B-FD94F34D5F09}\TypeLib key points to the missing Type Library {72DA7049-1F4A-49CD-9FD4-CC13D128C4CF} )


Entry: HKEY_CLASSES_ROOT\CLSID\{63338267-37c4-44cf-8e46-756fbe9c8fdc}\TypeLib
Valuename:
Value: {3ba4407d-a51f-4cfb-9768-511b51bc2f5b}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{63338267-37c4-44cf-8e46-756fbe9c8fdc}\TypeLib key points to the missing Type Library {3ba4407d-a51f-4cfb-9768-511b51bc2f5b} )


Entry: HKEY_CLASSES_ROOT\CLSID\{64F56FC1-1272-44CD-BA6E-39723696E350}\InprocServer32
Valuename:
Value: D:\EoRezo\EoAdv\EoRezoBHO.dll
Reason: ( The InprocServer32 points to the missing program D:\EoRezo\EoAdv\EoRezoBHO.dll in the HKEY_CLASSES_ROOT\CLSID\{64F56FC1-1272-44CD-BA6E-39723696E350} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{67DABFBF-D0AB-41fa-9C46-CC0F21721616}\InprocServer32
Valuename:
Value: C:\Program Files\DivX\DivX Web Player\npdivx32.dll
Reason: ( The InprocServer32 points to the missing program C:\Program Files\DivX\DivX Web Player\npdivx32.dll in the HKEY_CLASSES_ROOT\CLSID\{67DABFBF-D0AB-41fa-9C46-CC0F21721616} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{688B0D3D-AF8F-483C-A712-8F4E9868B8DA}\TypeLib
Valuename:
Value: {893CD020-4354-4B33-A78D-909EE58BAFAF}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{688B0D3D-AF8F-483C-A712-8F4E9868B8DA}\TypeLib key points to the missing Type Library {893CD020-4354-4B33-A78D-909EE58BAFAF} )


Entry: HKEY_CLASSES_ROOT\CLSID\{697F5202-0494-11D6-A2B0-0060B0FBD872}\TypeLib
Valuename:
Value: {84BE2760-E1CF-11D2-BD9D-0060B067A8F5}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{697F5202-0494-11D6-A2B0-0060B0FBD872}\TypeLib key points to the missing Type Library {84BE2760-E1CF-11D2-BD9D-0060B067A8F5} )


Entry: HKEY_CLASSES_ROOT\CLSID\{6E2200B4-7C9E-44C6-96A3-F904A7AB8880}\TypeLib
Valuename:
Value: {72DA7049-1F4A-49CD-9FD4-CC13D128C4CF}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{6E2200B4-7C9E-44C6-96A3-F904A7AB8880}\TypeLib key points to the missing Type Library {72DA7049-1F4A-49CD-9FD4-CC13D128C4CF} )


Entry: HKEY_CLASSES_ROOT\CLSID\{6F8BD55B-E83D-4A47-85BE-81FFA8057A69}\TypeLib
Valuename:
Value: {7E6CD20B-8688-4960-96D9-B979471577B8}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{6F8BD55B-E83D-4A47-85BE-81FFA8057A69}\TypeLib key points to the missing Type Library {7E6CD20B-8688-4960-96D9-B979471577B8} )


Entry: HKEY_CLASSES_ROOT\CLSID\{70FE4565-71B1-408F-8414-1A68DFAD651B}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{70FE4565-71B1-408F-8414-1A68DFAD651B}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{7312c0a0-a397-4a19-b432-9ac90c4466af}\TypeLib
Valuename:
Value: {3ba4407d-a51f-4cfb-9768-511b51bc2f5b}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{7312c0a0-a397-4a19-b432-9ac90c4466af}\TypeLib key points to the missing Type Library {3ba4407d-a51f-4cfb-9768-511b51bc2f5b} )


Entry: HKEY_CLASSES_ROOT\CLSID\{75C11604-5C51-48B2-B786-DF5E51D10EC6}\TypeLib
Valuename:
Value: {893CD020-4354-4B33-A78D-909EE58BAFAF}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{75C11604-5C51-48B2-B786-DF5E51D10EC6}\TypeLib key points to the missing Type Library {893CD020-4354-4B33-A78D-909EE58BAFAF} )


Entry: HKEY_CLASSES_ROOT\CLSID\{75C11604-5C51-48B2-B786-DF5E51D10EC7}\TypeLib
Valuename:
Value: {893CD020-4354-4B33-A78D-909EE58BAFAF}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{75C11604-5C51-48B2-B786-DF5E51D10EC7}\TypeLib key points to the missing Type Library {893CD020-4354-4B33-A78D-909EE58BAFAF} )


Entry: HKEY_CLASSES_ROOT\CLSID\{75C11604-5C51-48B2-B786-DF5E51D10EC8}\TypeLib
Valuename:
Value: {893CD020-4354-4B33-A78D-909EE58BAFAF}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{75C11604-5C51-48B2-B786-DF5E51D10EC8}\TypeLib key points to the missing Type Library {893CD020-4354-4B33-A78D-909EE58BAFAF} )


Entry: HKEY_CLASSES_ROOT\CLSID\{75C11604-5C51-48B2-B786-DF5E51D10EC9}\TypeLib
Valuename:
Value: {893CD020-4354-4B33-A78D-909EE58BAFAF}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{75C11604-5C51-48B2-B786-DF5E51D10EC9}\TypeLib key points to the missing Type Library {893CD020-4354-4B33-A78D-909EE58BAFAF} )


Entry: HKEY_CLASSES_ROOT\CLSID\{762EC429-1A5D-4AB8-844A-9A552E1241DA}\TypeLib
Valuename:
Value: {E2A43895-F29A-4FEE-8207-18A29100AAFB}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{762EC429-1A5D-4AB8-844A-9A552E1241DA}\TypeLib key points to the missing Type Library {E2A43895-F29A-4FEE-8207-18A29100AAFB} )


Entry: HKEY_CLASSES_ROOT\CLSID\{7A30585A-9B91-4828-A641-54E8818C0C03}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{7A30585A-9B91-4828-A641-54E8818C0C03}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{7FFF5B4E-C6B8-4EBC-B0ED-95F918D33208}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\dvpatcher.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\dvpatcher.ax in the HKEY_CLASSES_ROOT\CLSID\{7FFF5B4E-C6B8-4EBC-B0ED-95F918D33208} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{80EE9910-D470-4AED-AC5D-987046FDB574}\TypeLib
Valuename:
Value: {19D52A9A-379C-4720-BA00-3D396ECD24D7}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{80EE9910-D470-4AED-AC5D-987046FDB574}\TypeLib key points to the missing Type Library {19D52A9A-379C-4720-BA00-3D396ECD24D7} )


Entry: HKEY_CLASSES_ROOT\CLSID\{81C63250-607F-4e79-9FCB-F756C16C5AB9}\TypeLib
Valuename:
Value: {72DA7049-1F4A-49CD-9FD4-CC13D128C4CF}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{81C63250-607F-4e79-9FCB-F756C16C5AB9}\TypeLib key points to the missing Type Library {72DA7049-1F4A-49CD-9FD4-CC13D128C4CF} )


Entry: HKEY_CLASSES_ROOT\CLSID\{86AB8D55-0717-4E95-90BB-CC32AFE79DB8}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{86AB8D55-0717-4E95-90BB-CC32AFE79DB8}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{876AE1D5-ADED-4BF5-B2F1-618F04878FC5}\TypeLib
Valuename:
Value: {0933B593-144E-46FB-BDAB-3AD64142DD33}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{876AE1D5-ADED-4BF5-B2F1-618F04878FC5}\TypeLib key points to the missing Type Library {0933B593-144E-46FB-BDAB-3AD64142DD33} )


Entry: HKEY_CLASSES_ROOT\CLSID\{8AB3F8C7-4AEB-4F2F-94E6-10A986B6F522}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\framegrab.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\framegrab.ax in the HKEY_CLASSES_ROOT\CLSID\{8AB3F8C7-4AEB-4F2F-94E6-10A986B6F522} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{8bb882d5-de37-4630-84e9-cc4bd7c44cb1}\TypeLib
Valuename:
Value: {3ba4407d-a51f-4cfb-9768-511b51bc2f5b}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{8bb882d5-de37-4630-84e9-cc4bd7c44cb1}\TypeLib key points to the missing Type Library {3ba4407d-a51f-4cfb-9768-511b51bc2f5b} )


Entry: HKEY_CLASSES_ROOT\CLSID\{8C1D49CC-8B45-4F50-8E34-A986E3A6F48D}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{8C1D49CC-8B45-4F50-8E34-A986E3A6F48D}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{91ADC906-6722-4B05-A12B-471ADDCCE132}\TypeLib
Valuename:
Value: {CED735EE-2A19-4EB5-AA0C-8BFA8F775144}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{91ADC906-6722-4B05-A12B-471ADDCCE132}\TypeLib key points to the missing Type Library {CED735EE-2A19-4EB5-AA0C-8BFA8F775144} )


Entry: HKEY_CLASSES_ROOT\CLSID\{9388ED87-DD9F-4FE2-8B47-ABB0880EAFB2}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{9388ED87-DD9F-4FE2-8B47-ABB0880EAFB2}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{96236A85-9DBC-11DA-9E3F-0011114AE311}\TypeLib
Valuename:
Value: {96236A84-9DBC-11DA-9E3F-0011114AE311}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{96236A85-9DBC-11DA-9E3F-0011114AE311}\TypeLib key points to the missing Type Library {96236A84-9DBC-11DA-9E3F-0011114AE311} )


Entry: HKEY_CLASSES_ROOT\CLSID\{96236A8F-9DBC-11DA-9E3F-0011114AE311}\TypeLib
Valuename:
Value: {96236A84-9DBC-11DA-9E3F-0011114AE311}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{96236A8F-9DBC-11DA-9E3F-0011114AE311}\TypeLib key points to the missing Type Library {96236A84-9DBC-11DA-9E3F-0011114AE311} )


Entry: HKEY_CLASSES_ROOT\CLSID\{96236A90-9DBC-11DA-9E3F-0011114AE311}\TypeLib
Valuename:
Value: {96236A84-9DBC-11DA-9E3F-0011114AE311}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{96236A90-9DBC-11DA-9E3F-0011114AE311}\TypeLib key points to the missing Type Library {96236A84-9DBC-11DA-9E3F-0011114AE311} )


Entry: HKEY_CLASSES_ROOT\CLSID\{96236A91-9DBC-11DA-9E3F-0011114AE311}\TypeLib
Valuename:
Value: {96236A84-9DBC-11DA-9E3F-0011114AE311}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{96236A91-9DBC-11DA-9E3F-0011114AE311}\TypeLib key points to the missing Type Library {96236A84-9DBC-11DA-9E3F-0011114AE311} )


Entry: HKEY_CLASSES_ROOT\CLSID\{9DB6C03C-C511-11D2-A9AE-00C04F72DAEB}\TypeLib
Valuename:
Value: {A26CA515-C2B6-11D2-A9AC-00C04F72DAEB}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{9DB6C03C-C511-11D2-A9AE-00C04F72DAEB}\TypeLib key points to the missing Type Library {A26CA515-C2B6-11D2-A9AC-00C04F72DAEB} )


Entry: HKEY_CLASSES_ROOT\CLSID\{A0717E52-8AC8-4dd9-8682-0B76775125E6}\LocalServer32
Valuename:
Value: C:\Windows\System32\divxsm.exe
Reason: ( The LocalServer32 points to the missing program C:\Windows\System32\divxsm.exe in the HKEY_CLASSES_ROOT\CLSID\{A0717E52-8AC8-4dd9-8682-0B76775125E6} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{A0A7B13C-C9EE-4FFA-A271-E4E6931784BE}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{A0A7B13C-C9EE-4FFA-A271-E4E6931784BE}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{A60D652C-BFBD-431E-BCFC-E72653D1F436}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\flexrend.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\flexrend.ax in the HKEY_CLASSES_ROOT\CLSID\{A60D652C-BFBD-431E-BCFC-E72653D1F436} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{A74D16A5-42DA-44A2-AE8B-2CAA0C2C299E}\TypeLib
Valuename:
Value: {52C8302A-7C25-45C7-86AB-2167411E1897}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{A74D16A5-42DA-44A2-AE8B-2CAA0C2C299E}\TypeLib key points to the missing Type Library {52C8302A-7C25-45C7-86AB-2167411E1897} )


Entry: HKEY_CLASSES_ROOT\CLSID\{aa9c1a1e-b91a-424e-9e27-3f1967b707f1}\TypeLib
Valuename:
Value: {3ba4407d-a51f-4cfb-9768-511b51bc2f5b}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{aa9c1a1e-b91a-424e-9e27-3f1967b707f1}\TypeLib key points to the missing Type Library {3ba4407d-a51f-4cfb-9768-511b51bc2f5b} )


Entry: HKEY_CLASSES_ROOT\CLSID\{ABC01078-F197-4B0B-ADBC-CFE684B39C82}\TypeLib
Valuename:
Value: {7E6CD20B-8688-4960-96D9-B979471577B8}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{ABC01078-F197-4B0B-ADBC-CFE684B39C82}\TypeLib key points to the missing Type Library {7E6CD20B-8688-4960-96D9-B979471577B8} )


Entry: HKEY_CLASSES_ROOT\CLSID\{ABF651A1-0F07-48DF-9FF6-8B1B557669CA}\TypeLib
Valuename:
Value: {893CD020-4354-4B33-A78D-909EE58BAFAF}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{ABF651A1-0F07-48DF-9FF6-8B1B557669CA}\TypeLib key points to the missing Type Library {893CD020-4354-4B33-A78D-909EE58BAFAF} )


Entry: HKEY_CLASSES_ROOT\CLSID\{ADCFF970-B4D7-44FD-9B6B-9E49F47B5FDB}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{ADCFF970-B4D7-44FD-9B6B-9E49F47B5FDB}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{aef7e664-dc9b-48b2-8b35-5422d3f08c77}\TypeLib
Valuename:
Value: {3ba4407d-a51f-4cfb-9768-511b51bc2f5b}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{aef7e664-dc9b-48b2-8b35-5422d3f08c77}\TypeLib key points to the missing Type Library {3ba4407d-a51f-4cfb-9768-511b51bc2f5b} )


Entry: HKEY_CLASSES_ROOT\CLSID\{b4774192-c038-4350-986d-1bd91c20379a}\TypeLib
Valuename:
Value: {3ba4407d-a51f-4cfb-9768-511b51bc2f5b}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{b4774192-c038-4350-986d-1bd91c20379a}\TypeLib key points to the missing Type Library {3ba4407d-a51f-4cfb-9768-511b51bc2f5b} )


Entry: HKEY_CLASSES_ROOT\CLSID\{B6E33EB2-8C6D-49E6-BBA9-9CF33759D35F}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\hhmultee.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\hhmultee.ax in the HKEY_CLASSES_ROOT\CLSID\{B6E33EB2-8C6D-49E6-BBA9-9CF33759D35F} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{b9c7da5c-0ade-459a-87fb-61438a8f6726}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\mxavireader.dll
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\mxavireader.dll in the HKEY_CLASSES_ROOT\CLSID\{b9c7da5c-0ade-459a-87fb-61438a8f6726} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{BD415A76-F3E8-45C7-8A2A-9705D9FBF529}\TypeLib
Valuename:
Value: {4A0FD8D9-3FFC-42C8-853D-86F665F14920}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{BD415A76-F3E8-45C7-8A2A-9705D9FBF529}\TypeLib key points to the missing Type Library {4A0FD8D9-3FFC-42C8-853D-86F665F14920} )


Entry: HKEY_CLASSES_ROOT\CLSID\{C2AC89E2-DC8C-4EF9-ADFF-6B455B26787A}\LocalServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\creationsDVD-Films.exe
Reason: ( The LocalServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\creationsDVD-Films.exe in the HKEY_CLASSES_ROOT\CLSID\{C2AC89E2-DC8C-4EF9-ADFF-6B455B26787A} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{c3f79a2b-b9b4-4a66-b012-3ee46475b072}\TypeLib
Valuename:
Value: {{5b46d43f-152e-4d1c-842b-cede0df5c9f7}}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{c3f79a2b-b9b4-4a66-b012-3ee46475b072}\TypeLib key points to the missing Type Library {{5b46d43f-152e-4d1c-842b-cede0df5c9f7}} )


Entry: HKEY_CLASSES_ROOT\CLSID\{CA96B3CB-BADB-4FA2-B690-E24BE5865C3F}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\vmr9conn.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\vmr9conn.ax in the HKEY_CLASSES_ROOT\CLSID\{CA96B3CB-BADB-4FA2-B690-E24BE5865C3F} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{CB7A7BFD-C16B-4FA1-8583-0A9FA9B8CF88}\TypeLib
Valuename:
Value: {62FFF5B8-A860-4a8e-A8DC-72D9C159C5E1}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{CB7A7BFD-C16B-4FA1-8583-0A9FA9B8CF88}\TypeLib key points to the missing Type Library {62FFF5B8-A860-4a8e-A8DC-72D9C159C5E1} )


Entry: HKEY_CLASSES_ROOT\CLSID\{D050D736-2D21-4723-AD58-5B541FFB6C11}\InprocServer32
Valuename:
Value: C:\Program Files\DivX\DivX Content Uploader\npUpload.dll
Reason: ( The InprocServer32 points to the missing program C:\Program Files\DivX\DivX Content Uploader\npUpload.dll in the HKEY_CLASSES_ROOT\CLSID\{D050D736-2D21-4723-AD58-5B541FFB6C11} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{D050D736-2D21-4723-AD58-5B541FFB6C11}\TypeLib
Valuename:
Value: {9861031C-B946-4870-8FC5-F61D69656AF5}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{D050D736-2D21-4723-AD58-5B541FFB6C11}\TypeLib key points to the missing Type Library {9861031C-B946-4870-8FC5-F61D69656AF5} )


Entry: HKEY_CLASSES_ROOT\CLSID\{D21E601A-3017-4D61-9315-F2880EBD196F}\TypeLib
Valuename:
Value: {7E6CD20B-8688-4960-96D9-B979471577B8}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{D21E601A-3017-4D61-9315-F2880EBD196F}\TypeLib key points to the missing Type Library {7E6CD20B-8688-4960-96D9-B979471577B8} )


Entry: HKEY_CLASSES_ROOT\CLSID\{D3B06B05-3667-4175-B2D2-D54DCED5E9F1}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\dscapture.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\dscapture.ax in the HKEY_CLASSES_ROOT\CLSID\{D3B06B05-3667-4175-B2D2-D54DCED5E9F1} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{D3B06B06-3667-4175-B2D2-D54DCED5E9F1}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\StreamWriter.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\StreamWriter.ax in the HKEY_CLASSES_ROOT\CLSID\{D3B06B06-3667-4175-B2D2-D54DCED5E9F1} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{D3B06B07-3667-4175-B2D2-D54DCED5E9F1}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\MuxWriter.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\MuxWriter.ax in the HKEY_CLASSES_ROOT\CLSID\{D3B06B07-3667-4175-B2D2-D54DCED5E9F1} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2}\LocalServer32
Valuename:
Value: C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe
Reason: ( The LocalServer32 points to the missing program C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe in the HKEY_CLASSES_ROOT\CLSID\{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{d4704c9e-adbf-411a-9ef2-87feb99ccf69}\TypeLib
Valuename:
Value: {3ba4407d-a51f-4cfb-9768-511b51bc2f5b}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{d4704c9e-adbf-411a-9ef2-87feb99ccf69}\TypeLib key points to the missing Type Library {3ba4407d-a51f-4cfb-9768-511b51bc2f5b} )


Entry: HKEY_CLASSES_ROOT\CLSID\{D9F158C3-6AA1-4455-B356-A2CD3B27AA60}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{D9F158C3-6AA1-4455-B356-A2CD3B27AA60}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{E1A0664B-02E8-4570-853A-7E200912FF99}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{E1A0664B-02E8-4570-853A-7E200912FF99}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{E50C953D-311A-481B-8F8D-C55E65AF7417}\TypeLib
Valuename:
Value: {03FF4A36-9509-4BA1-B6FF-328718F74BA1}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{E50C953D-311A-481B-8F8D-C55E65AF7417}\TypeLib key points to the missing Type Library {03FF4A36-9509-4BA1-B6FF-328718F74BA1} )


Entry: HKEY_CLASSES_ROOT\CLSID\{e73e119c-be36-4693-8a47-88c16829008c}\TypeLib
Valuename:
Value: {3ba4407d-a51f-4cfb-9768-511b51bc2f5b}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{e73e119c-be36-4693-8a47-88c16829008c}\TypeLib key points to the missing Type Library {3ba4407d-a51f-4cfb-9768-511b51bc2f5b} )


Entry: HKEY_CLASSES_ROOT\CLSID\{E769AC40-7735-11D2-8B7B-9D5958F45120}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\wavdest.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\wavdest.ax in the HKEY_CLASSES_ROOT\CLSID\{E769AC40-7735-11D2-8B7B-9D5958F45120} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{E7D6090F-DAD0-41F9-8D6F-14D2B805F95B}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{E7D6090F-DAD0-41F9-8D6F-14D2B805F95B}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\CLSID\{EAC2F030-5937-414c-9B7A-6B57F7C072E8}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\mxavireader.dll
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\mxavireader.dll in the HKEY_CLASSES_ROOT\CLSID\{EAC2F030-5937-414c-9B7A-6B57F7C072E8} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{EBB5845F-CA80-11CF-BD3C-008029E89281}\InprocServer32
Valuename:
Value:
Reason: ( The key InprocServer32 under HKEY_CLASSES_ROOT\CLSID\{EBB5845F-CA80-11CF-BD3C-008029E89281} is empty )


Entry: HKEY_CLASSES_ROOT\CLSID\{ED200182-D84D-4A82-B370-362F1B30F847}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\mixmux.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\mixmux.ax in the HKEY_CLASSES_ROOT\CLSID\{ED200182-D84D-4A82-B370-362F1B30F847} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{EF3E6931-4274-11D2-9124-00A0C90CFFB8}\TypeLib
Valuename:
Value: {8493DA3D-4408-11D2-9125-00A0C90CFFB8}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{EF3E6931-4274-11D2-9124-00A0C90CFFB8}\TypeLib key points to the missing Type Library {8493DA3D-4408-11D2-9125-00A0C90CFFB8} )


Entry: HKEY_CLASSES_ROOT\CLSID\{F28D5171-0577-11D4-8F60-00C04F9CF4AC}\TypeLib
Valuename:
Value: {11A3B755-0562-11D4-8F60-00C04F9CF4AC}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{F28D5171-0577-11D4-8F60-00C04F9CF4AC}\TypeLib key points to the missing Type Library {11A3B755-0562-11D4-8F60-00C04F9CF4AC} )


Entry: HKEY_CLASSES_ROOT\CLSID\{F2CD0A95-EB9B-42FF-BDE0-D75D885F4EB0}\LocalServer32
Valuename:
Value: "C:\Users\Yann_2\AppData\Local\Temp\KITE205.tmp\Installation\Core\MSIInstaller.exe"
Reason: ( The LocalServer32 points to the missing program "C:\Users\Yann_2\AppData\Local\Temp\KITE205.tmp\Installation\Core\MSIInstaller.exe" in the HKEY_CLASSES_ROOT\CLSID\{F2CD0A95-EB9B-42FF-BDE0-D75D885F4EB0} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{F410A20A-DEB8-49B8-9DB4-41A6B9EFC3B4}\InprocServer32
Valuename:
Value: C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\hhmultisource.ax
Reason: ( The InprocServer32 points to the missing program C:\Program Files\MAGIX\Films_sur_DVD_7_Version_a_telecharger\RegModule\hhmultisource.ax in the HKEY_CLASSES_ROOT\CLSID\{F410A20A-DEB8-49B8-9DB4-41A6B9EFC3B4} key )


Entry: HKEY_CLASSES_ROOT\CLSID\{FFFCFF27-3A0E-427E-8934-E6DD0AB6CE3C}\TypeLib
Valuename:
Value: {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481}
Reason: ( The HKEY_CLASSES_ROOT\CLSID\{FFFCFF27-3A0E-427E-8934-E6DD0AB6CE3C}\TypeLib key points to the missing Type Library {3C87E3D2-5933-48DE-84FA-D0BBAE5B6481} )


Entry: HKEY_CLASSES_ROOT\TypeLib\{04F33289-C1B6-4FF9-97D5-E74FB157E7C8}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{04F33289-C1B6-4FF9-97D5-E74FB157E7C8}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{0AF768AC-4FBD-4914-B847-F4E13C984926}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{0AF768AC-4FBD-4914-B847-F4E13C984926}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{166B1BC7-3F9C-11CF-8075-444553540000}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{166B1BC7-3F9C-11CF-8075-444553540000}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{1FC4BB67-DA0F-4827-9C24-AE7A631EE1AC}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{1FC4BB67-DA0F-4827-9C24-AE7A631EE1AC}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{22CAB591-EFB2-4490-B9B2-D626D50829B3}\2.0\0\win32
Valuename:
Value: C:\Users\Yann\AppData\Local\Temp\Word8.0\MSForms.exd
Reason: ( The key win32 under HKEY_CLASSES_ROOT\TypeLib\{22CAB591-EFB2-4490-B9B2-D626D50829B3}\2.0\0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{248DD890-BB45-11CF-9ABC-0080C7E7B78D}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{248DD890-BB45-11CF-9ABC-0080C7E7B78D}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{2F93D606-28F9-4B2D-A024-2DDEE124B542}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{2F93D606-28F9-4B2D-A024-2DDEE124B542}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{347D20CF-2DD9-4789-AB9B-489066C3DF94}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{347D20CF-2DD9-4789-AB9B-489066C3DF94}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{46270ABA-D71B-11DA-8750-001185653D78}\1.0\0\win32
Valuename:
Value: c:\program files\google\googletoolbar1.dll
Reason: ( The key win32 under HKEY_CLASSES_ROOT\TypeLib\{46270ABA-D71B-11DA-8750-001185653D78}\1.0\0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{48E59290-9880-11CF-9754-00AA00C00908}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{48E59290-9880-11CF-9754-00AA00C00908}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{4DDE3DB4-8A87-44E1-ABD6-1D58096BDF4F}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{4DDE3DB4-8A87-44E1-ABD6-1D58096BDF4F}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{4EE59839-18C0-458C-B02E-6CC414EAAB7A}\2.0\0\win32
Valuename:
Value: C:\Users\Yann\AppData\Local\Temp\Word8.0\MSForms.exd
Reason: ( The key win32 under HKEY_CLASSES_ROOT\TypeLib\{4EE59839-18C0-458C-B02E-6CC414EAAB7A}\2.0\0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{515B6811-886A-429D-AED0-021276744259}\1.0\0\win32
Valuename:
Value: C:\Users\Yann_2\AppData\Local\Temp\KITE205.tmp\Installation\Core\MSIInstaller.exe
Reason: ( The key win32 under HKEY_CLASSES_ROOT\TypeLib\{515B6811-886A-429D-AED0-021276744259}\1.0\0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{5794A447-AF22-43E4-BB49-78FF0F4C7C02}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{5794A447-AF22-43E4-BB49-78FF0F4C7C02}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{5924C60B-6D7F-4AD6-8084-24A59431C967}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{5924C60B-6D7F-4AD6-8084-24A59431C967}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{6332B05C-79A6-4A1F-BAE7-509E1D1D7FF4}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{6332B05C-79A6-4A1F-BAE7-509E1D1D7FF4}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{6A527A41-C5A4-4936-9719-71B1BE2C1103}\2.0\0\win32
Valuename:
Value: C:\Users\Yann\AppData\Local\Temp\Word8.0\MSForms.exd
Reason: ( The key win32 under HKEY_CLASSES_ROOT\TypeLib\{6A527A41-C5A4-4936-9719-71B1BE2C1103}\2.0\0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{6F74ECDF-A67B-430D-B2E3-E7CD25FD94DD}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{6F74ECDF-A67B-430D-B2E3-E7CD25FD94DD}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{7C1E4FCC-B47E-44AE-8EA7-FA66EBC8BAC4}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{7C1E4FCC-B47E-44AE-8EA7-FA66EBC8BAC4}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{86CF1D34-0C5F-11D2-A9FC-0000F8754DA1}\2.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{86CF1D34-0C5F-11D2-A9FC-0000F8754DA1}\2.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{905C57F5-A9C4-4FDA-922B-0E148236AC29}\1.0\0\win32
Valuename:
Value: C:\Users\Yann\AppData\Local\Temp\Excel8.0\ShockwaveFlashObjects.exd
Reason: ( The key win32 under HKEY_CLASSES_ROOT\TypeLib\{905C57F5-A9C4-4FDA-922B-0E148236AC29}\1.0\0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{9C44434E-E7D0-4261-AE67-0ED83365981A}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{9C44434E-E7D0-4261-AE67-0ED83365981A}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{9E93C96F-CF0D-43F6-8BA8-B807A3370712}\1.a\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{9E93C96F-CF0D-43F6-8BA8-B807A3370712}\1.a is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{AAAF0528-2124-4DBD-9C63-C91E8C938A01}\2.0\0\win32
Valuename:
Value: C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
Reason: ( The key win32 under HKEY_CLASSES_ROOT\TypeLib\{AAAF0528-2124-4DBD-9C63-C91E8C938A01}\2.0\0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{ACA5034E-0239-4B98-B3BC-71126C537A5A}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{ACA5034E-0239-4B98-B3BC-71126C537A5A}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{AEB84C80-95DC-11D0-B7FC-B61140119C4A}\1.0\HELPDIR
Valuename:
Value: %SystemRoot%\System32\dmview.ocx
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{AEB84C80-95DC-11D0-B7FC-B61140119C4A}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{B0A1F53A-DD98-42A8-ADBD-8D9CE5434DF4}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{B0A1F53A-DD98-42A8-ADBD-8D9CE5434DF4}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}\1.0\0\win32
Valuename:
Value: D:\EoRezo\EoAdv\EoRezoBHO.dll
Reason: ( The key win32 under HKEY_CLASSES_ROOT\TypeLib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}\1.0\0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{B5AA9C9D-FFB8-4296-9CAD-57EAF1357354}\1.0\0\win32
Valuename:
Value: C:\Program Files\DivX\DivX Web Player\npdivx32.tlb
Reason: ( The key win32 under HKEY_CLASSES_ROOT\TypeLib\{B5AA9C9D-FFB8-4296-9CAD-57EAF1357354}\1.0\0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{B5AA9C9D-FFB8-4296-9CAD-57EAF1357354}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{B5AA9C9D-FFB8-4296-9CAD-57EAF1357354}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{C1D8C091-AC66-4159-B738-E70A12B983A4}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{C1D8C091-AC66-4159-B738-E70A12B983A4}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{C7CB459A-7261-4AE6-A87A-17041EE98A40}\3.0\0\win32
Valuename:
Value: C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\swg.dll
Reason: ( The key win32 under HKEY_CLASSES_ROOT\TypeLib\{C7CB459A-7261-4AE6-A87A-17041EE98A40}\3.0\0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{C7CB459A-7261-4AE6-A87A-17041EE98A40}\7.0\0\win32
Valuename:
Value: C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
Reason: ( The key win32 under HKEY_CLASSES_ROOT\TypeLib\{C7CB459A-7261-4AE6-A87A-17041EE98A40}\7.0\0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{CB98E483-E31E-46DF-9837-EF06705136AA}\2.0\0\win32
Valuename:
Value: C:\Users\Yann\AppData\Local\Temp\Word8.0\MSForms.exd
Reason: ( The key win32 under HKEY_CLASSES_ROOT\TypeLib\{CB98E483-E31E-46DF-9837-EF06705136AA}\2.0\0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{CCD973EF-4D88-48B2-ABF4-13EAF25BAE3B}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{CCD973EF-4D88-48B2-ABF4-13EAF25BAE3B}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{CE12EC2B-285D-4925-B97C-F83C21E47AC2}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{CE12EC2B-285D-4925-B97C-F83C21E47AC2}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{D6995525-B33A-4980-A106-9DF58570CC66}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{D6995525-B33A-4980-A106-9DF58570CC66}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{DE54081F-08ED-44AE-AE80-13DEAA19A44A}\0.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{DE54081F-08ED-44AE-AE80-13DEAA19A44A}\0.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{DFD23F68-007E-4506-A9D9-1A830597971F}\2.0\0\win32
Valuename:
Value: C:\Users\Yann\AppData\Local\Temp\Word8.0\MSForms.exd
Reason: ( The key win32 under HKEY_CLASSES_ROOT\TypeLib\{DFD23F68-007E-4506-A9D9-1A830597971F}\2.0\0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{E9B7B442-5F59-11D5-B6B3-0060B0A22ADE}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{E9B7B442-5F59-11D5-B6B3-0060B0A22ADE}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{ED15218C-FDFE-4723-AF0B-2251477F264C}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{ED15218C-FDFE-4723-AF0B-2251477F264C}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{F9043C88-F6F2-101A-A3C9-08002B2F49FB}\1.2\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{F9043C88-F6F2-101A-A3C9-08002B2F49FB}\1.2 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{F9152AEC-3462-4632-8087-EEE3C3CDDA35}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{F9152AEC-3462-4632-8087-EEE3C3CDDA35}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\TypeLib\{FF93E02F-0AC1-4F7E-A9AF-D929CDF5C230}\1.0\HELPDIR
Valuename:
Value:
Reason: ( The key HELPDIR under HKEY_CLASSES_ROOT\TypeLib\{FF93E02F-0AC1-4F7E-A9AF-D929CDF5C230}\1.0 is empty )


Entry: HKEY_CLASSES_ROOT\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}\TypeLib
Valuename:
Value: {47A7A4B0-2723-41BA-865E-EBBB7081A602}
Reason: ( The HKEY_CLASSES_ROOT\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}\TypeLib key points to the missing CLSID {47A7A4B0-2723-41BA-865E-EBBB7081A602} )


Entry: HKEY_CLASSES_ROOT\Interface\{46B89F5A-769D-4792-AD9A-E3755915CBC3}\TypeLib
Valuename:
Value: {47A7A4B0-2723-41BA-865E-EBBB7081A602}
Reason: ( The HKEY_CLASSES_ROOT\Interface\{46B89F5A-769D-4792-AD9A-E3755915CBC3}\TypeLib key points to the missing CLSID {47A7A4B0-2723-41BA-865E-EBBB7081A602} )


Entry: HKEY_CLASSES_ROOT\Interface\{4D0F7ECA-CDC8-407F-9111-E713A3694D48}\TypeLib
Valuename:
Value: {954138ED-7951-433C-BAF9-AF1DAD0F4261}
Reason: ( The HKEY_CLASSES_ROOT\Interface\{4D0F7ECA-CDC8-407F-9111-E713A3694D48}\TypeLib key points to the missing CLSID {954138ED-7951-433C-BAF9-AF1DAD0F4261} )


Entry: HKEY_CLASSES_ROOT\Interface\{777BA812-2498-4875-933A-3067DE883070}\ProxyStubClsid32
Valuename:
Value: {777BA81B-2498-4875-933A-3067DE883070}
Reason: ( The HKEY_CLASSES_ROOT\Interface\{777BA812-2498-4875-933A-3067DE883070}\ProxyStubClsid32 key points to the missing CLSID {777BA81B-2498-4875-933A-3067DE883070} )


Entry: HKEY_CLASSES_ROOT\Interface\{877883EB-56B2-4736-815E-1BA97B44D3E5}\TypeLib
Valuename:
Value: {28E6CB8E-3AD7-4727-99FC-F8A63EF1ECE0}
Reason: ( The HKEY_CLASSES_ROOT\Interface\{877883EB-56B2-4736-815E-1BA97B44D3E5}\TypeLib key points to the missing CLSID {28E6CB8E-3AD7-4727-99FC-F8A63EF1ECE0} )


Entry: HKEY_CLASSES_ROOT\Interface\{8C822816-06E7-4b2d-967B-7611B2AC9CC7}\TypeLib
Valuename:
Value: {9E12DEA1-BCD6-4919-AD53-D3B0B9531B42}
Reason: ( The HKEY_CLASSES_ROOT\Interface\{8C822816-06E7-4b2d-967B-7611B2AC9CC7}\TypeLib key points to the missing CLSID {9E12DEA1-BCD6-4919-AD53-D3B0B9531B42} )


Entry: HKEY_CLASSES_ROOT\Interface\{915DA835-02FE-4953-92FA-624BDF5D85AB}\TypeLib
Valuename:
Value: {19D52A9A-379C-4720-BA00-3D396ECD24D7}
Reason: ( The HKEY_CLASSES_ROOT\Interface\{915DA835-02FE-4953-92FA-624BDF5D85AB}\TypeLib key points to the missing CLSID {19D52A9A-379C-4720-BA00-3D396ECD24D7} )


Entry: HKEY_CLASSES_ROOT\Interface\{D775A119-EAC2-4F28-B06E-8AC16F2695DA}\TypeLib
Valuename:
Value: {19D52A9A-379C-4720-BA00-3D396ECD24D7}
Reason: ( The HKEY_CLASSES_ROOT\Interface\{D775A119-EAC2-4F28-B06E-8AC16F2695DA}\TypeLib key points to the missing CLSID {19D52A9A-379C-4720-BA00-3D396ECD24D7} )



--------------------------------------------------------------------------------

--------------------------------------------------------------------------------

Scanning section: Invalid file associations
Entries found: 23
Entries:
Entry: HKEY_CLASSES_ROOT\.chesstitanssave-ms
Valuename:
Value: MicrosoftChessTitansSaveFile
Reason: ( The Filetype .chesstitanssave-ms under HKEY_CLASSES_ROOT is associated to non-existent MicrosoftChessTitansSaveFile )


Entry: HKEY_CLASSES_ROOT\.freecellsave-ms
Valuename:
Value: MicrosoftFreeCellSaveFile
Reason: ( The Filetype .freecellsave-ms under HKEY_CLASSES_ROOT is associated to non-existent MicrosoftFreeCellSaveFile )


Entry: HKEY_CLASSES_ROOT\.heartssave-ms
Valuename:
Value: MicrosoftHeartsSaveFile
Reason: ( The Filetype .heartssave-ms under HKEY_CLASSES_ROOT is associated to non-existent MicrosoftHeartsSaveFile )


Entry: HKEY_CLASSES_ROOT\.m4a
Valuename:
Value: m4a_auto_file
Reason: ( The Filetype .m4a under HKEY_CLASSES_ROOT is associated to non-existent m4a_auto_file )


Entry: HKEY_CLASSES_ROOT\.mahjongtitanssave-ms
Valuename:
Value: MicrosoftMahjongTitansSaveFile
Reason: ( The Filetype .mahjongtitanssave-ms under HKEY_CLASSES_ROOT is associated to non-existent MicrosoftMahjongTitansSaveFile )


Entry: HKEY_CLASSES_ROOT\.minesweepersave-ms
Valuename:
Value: MicrosoftMinesweeperSaveFile
Reason: ( The Filetype .minesweepersave-ms under HKEY_CLASSES_ROOT is associated to non-existent MicrosoftMinesweeperSaveFile )


Entry: HKEY_CLASSES_ROOT\.purblepairssave-ms
Valuename:
Value: MicrosoftPurblePairsSaveFile
Reason: ( The Filetype .purblepairssave-ms under HKEY_CLASSES_ROOT is associated to non-existent MicrosoftPurblePairsSaveFile )


Entry: HKEY_CLASSES_ROOT\.purbleshopsave-ms
Valuename:
Value: MicrosoftPurbleShopSaveFile
Reason: ( The Filetype .purbleshopsave-ms under HKEY_CLASSES_ROOT is associated to non-existent MicrosoftPurbleShopSaveFile )


Entry: HKEY_CLASSES_ROOT\.solitairesave-ms
Valuename:
Value: MicrosoftSolitaireSaveFile
Reason: ( The Filetype .solitairesave-ms under HKEY_CLASSES_ROOT is associated to non-existent MicrosoftSolitaireSaveFile )


Entry: HKEY_CLASSES_ROOT\.spidersolitairesave-ms
Valuename:
Value: MicrosoftSpiderSolitaireSaveFile
Reason: ( The Filetype .spidersolitairesave-ms under HKEY_CLASSES_ROOT is associated to non-existent MicrosoftSpiderSolitaireSaveFile )


Entry: HKEY_CLASSES_ROOT\boontybox\shell\open
Valuename:
Value: "C:\Program Files\Boonty\BoontyBox\BoontyBox.exe" %1
Reason: ( The open points to the missing program "C:\Program Files\Boonty\BoontyBox\BoontyBox.exe" %1 in the HKEY_CLASSES_ROOT\boontybox\shell key )


Entry: HKEY_CLASSES_ROOT\devcpp.devpackage\shell\Open
Valuename:
Value: C:\Dev-Cpp\PackMan.exe "%1"
Reason: ( The Open points to the missing program C:\Dev-Cpp\PackMan.exe "%1" in the HKEY_CLASSES_ROOT\devcpp.devpackage\shell key )


Entry: HKEY_CLASSES_ROOT\devcpp.devpak\shell\Open
Valuename:
Value: C:\Dev-Cpp\PackMan.exe "%1"
Reason: ( The Open points to the missing program C:\Dev-Cpp\PackMan.exe "%1" in the HKEY_CLASSES_ROOT\devcpp.devpak\shell key )


Entry: HKEY_CLASSES_ROOT\ed2k\shell\open
Valuename:
Value: "C:\Program Files\eMule1\eMule.exe" "%1"
Reason: ( The open points to the missing program "C:\Program Files\eMule1\eMule.exe" "%1" in the HKEY_CLASSES_ROOT\ed2k\shell key )


Entry: HKEY_CLASSES_ROOT\filetype\{00020821-0000-0000-C000-000000000046}
Valuename:
Value:
Reason: ( The key {00020821-0000-0000-C000-000000000046} under HKEY_CLASSES_ROOT\filetype is empty )


Entry: HKEY_CLASSES_ROOT\oisbmpfile
Valuename:
Value:
Reason: ( The key oisbmpfile under HKEY_CLASSES_ROOT is empty )


Entry: HKEY_CLASSES_ROOT\oisemffile
Valuename:
Value:
Reason: ( The key oisemffile under HKEY_CLASSES_ROOT is empty )


Entry: HKEY_CLASSES_ROOT\oisgiffile
Valuename:
Value:
Reason: ( The key oisgiffile under HKEY_CLASSES_ROOT is empty )


Entry: HKEY_CLASSES_ROOT\oisjpegfile
Valuename:
Value:
Reason: ( The key oisjpegfile under HKEY_CLASSES_ROOT is empty )


Entry: HKEY_CLASSES_ROOT\oispngfile
Valuename:
Value:
Reason: ( The key oispngfile under HKEY_CLASSES_ROOT is empty )


Entry: HKEY_CLASSES_ROOT\oistiffile
Valuename:
Value:
Reason: ( The key oistiffile under HKEY_CLASSES_ROOT is empty )


Entry: HKEY_CLASSES_ROOT\oiswmffile
Valuename:
Value:
Reason: ( The key oiswmffile

Reposte un rapport Hijackthis.

Re,

Relance Hijackthis (clique droit -> lancer en tant qu'adminstrateur sous Vista), do a system scan only, coche ces lignes (si toujours présentes) :

Ferme toutes les applications en cours (particulièrement ton navigateur Internet).
Puis Fix Checked !

&

Télécharge OTMoveIt3 (de OldTimer). Sauvegarde-le sur ton Bureau.
Copie (Ctrl+C) le texte se situant dans le cadre ci-dessous :

Double clique sur OTMoveIt3.exe afin de le lancer.
Colle (ou Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.

Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log

Reposte un rapport Hijackthis.

Re,

Relance Hijackthis (clique droit -> lancer en tant qu'adminstrateur sous Vista), do a system scan only, coche ces lignes (si toujours présentes) :

Ferme toutes les applications en cours (particulièrement ton navigateur Internet).
Puis Fix Checked !

Supprime ce dossier :
C:\Program Files\Search Settings

Parce que du coup j'ai refait un HijackThis mais il n'y a plus les lignes
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (file missing)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - D:\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (file missing)
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe

Re...
C'est bon c'est bon? Ca veut dire que mon ordi est propre?
Qu'est-ce que je peux garder des logiciels que tu m'as proposé?
Est(ce que je peux faire des scan et effacer des fichiers corrompus que MBAM me trouve?
Et j'ai toujours internet dont le mode proptégé est "désactivé"
Si tu as encore un peu de temps je veux bien que tu m'expliques un peu ce que tu as fait et ce que j'ai fait de pas bien et les erreurs à ne pas renouveler? Si ça peut aussi servir à d'autres...
Merci

Salut,
Encore une question tu m'avais fait désactiver l'UAC à un moment est-ce qu'il faut que je réactive?

Je sais pas trop si ça se fait mais je tenais vraiment à te remercier pour le travail que tu as fait et le temps que tu as consacré à un gars un peu paumé avec son ordi. J'imagine que tu m'as fait gagner pas mal de temps et d'argent et j'aurais voulu te remercier comme il se doit...
Je sais pas dans quel cadre tu aide sur ce forum, si c'est juste un passe temps ou une passion ou un exercice pour toi mais en tous cas bravo à toi et à toute l'équipe.
Bonne continuation et peut-être à une autre fois si j'ai besoin d'aide je sais à qui m'adresser et crois moi je fais une pub d'enfer à tout le monde.
Ciao
Yann