Partage

[Virus] Fenêtre du navigateur qui s'ouvre sans arrêt

Le 16 juin 2012 à 12:57:01

Bonjour,


Quand j'utilise Chrome, j'ai des fenêtres chrome qui s'ouvre sans arrêt avec Speed Dial.

Quand j'utilise Opera, j'ai des onglets qui s'ouvre avec cette page:

http://www.google.be/search?client=opera&rls=fr&q=%25E2%2580%259C%25E2%2582%25AC0G7%25C3%25B1@l%7C.B%25C2%25AE%25C3%25B1+%25C3%25A3%25C3%2593%25E2%2580%259C5%7B+%5D%5C%25C3%25BC%25C3%2596%25C3%25AF%25C3%25AB@%26%25C2%25B7%25C3%2583%25C3%25B7=-(%5D%25C2%25BB%25C2%25B6+U%25C3%2584GL%25C2%25AB~%25C2%25B0%25C3%259B%25C3%25B1i&sourceid=opera&ie=utf-8&oe=utf-8&channel=suggest#client=opera&rls=fr&q=%25E2%2580%259C%25E2%2582%25AC0G7%25C3%25B1%40l%7C.B%25C2%25AE%25C3%25B1+%25C3%25A3%25C3%2593%25E2%2580%259C5%7B+%5D%5C%25C3%25BC%25C3%2596%25C3%25AF%25C3%25AB%40%26%25C2%25B7%25C3%2583%25C3%25B7%3D-(%5D%25C2%25BB%25C2%25B6+U%25C3%2584GL%25C2%25AB~%25C2%25B0%25C3%259B%25C3%25B1i&sourceid=opera&ie=utf-8&oe=utf-8&channel=suggest


Quand j'utilise internet explorer, j'ai des fenêtres avec des messages d'erreurs qui s'affichent.

Quand j'utilise Safari, ça fonctionne plutôt bien. J'ai juste eu un petit message d'erreur webkit2process.exe ne répond plus (fermez l'application, etc...).

Quand j'utilise firefox, j'ai des fenêtres qui s'ouvrent avec toujours les mêmes onglets (Des liens incompréhensibles que je ne peux copier dans ce message.).


  • Quand et comment avez vous été infecté (approximatif) : Ca a commencé hier soir. J'ai eu fini de bosser sur un travail pour l'école, j'utilisais mon navigateur, ensuite, j'ai été remettre mon travail, je suis rentré, et voilà, j'avais des soucis.
  • Les symptômes : Fenêtre qui s'ouvrent sans arrêt.
  • Fichier détecté par votre antivirus (nom du virus + chemin d'accès) : J'ai utilisé Malwarebytes, j'avais 2 trojan que j'ai supprimé.
  • Un rapport OTL :


    OTL logfile created on: 16/06/2012 11:25:59 - Run 1
    OTL by OldTimer - Version 3.2.49.0 Folder = C:\Users\Soft\Desktop
    Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
    Internet Explorer (Version = 7.0.6001.18000)
    Locale: 0000080C | Country: Belgique | Language: FRB | Date Format: d/MM/yyyy

    2,84 Gb Total Physical Memory | 1,67 Gb Available Physical Memory | 58,71% Memory free
    5,88 Gb Paging File | 4,75 Gb Available in Paging File | 80,85% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
    Drive C: | 92,21 Gb Total Space | 3,48 Gb Free Space | 3,78% Space Free | Partition Type: NTFS
    Drive D: | 48,05 Gb Total Space | 28,71 Gb Free Space | 59,75% Space Free | Partition Type: NTFS

    Computer Name: PC-PORTABLE | User Name: Soft | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    [color=#E56717]========== Processes (SafeList) ==========[/color]

    PRC - C:\Users\Soft\Desktop\OTL.exe (OldTimer Tools)
    PRC - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
    PRC - C:\Program Files\Tablet\Pen\Pen_Tablet.exe (Wacom Technology, Corp.)
    PRC - C:\Program Files\Tablet\Pen\Pen_TouchUser.exe (Wacom Technology, Corp.)
    PRC - C:\Program Files\Tablet\Pen\Pen_TabletUser.exe (Wacom Technology, Corp.)
    PRC - C:\Program Files\Tablet\Pen\Pen_TouchService.exe (Wacom Technology, Corp.)
    PRC - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)
    PRC - C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe (MAGIX AG)
    PRC - C:\Program Files\A\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe ()
    PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
    PRC - C:\Program Files\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryReminder.exe (Fujitsu Siemens Computers GmbH)
    PRC - C:\Program Files\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryCleanUp.exe (Fujitsu Siemens Computers GmbH)
    PRC - C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe (Fujitsu Siemens Computers)
    PRC - C:\Windows\System32\userinit.exe (Microsoft Corporation)
    PRC - C:\Windows\explorer.exe (Microsoft Corporation)
    PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
    PRC - C:\Windows\System32\PSIService.exe ()


    [color=#E56717]========== Modules (No Company Name) ==========[/color]

    MOD - C:\Program Files\A\FileZilla FTP Client\fzshellext.dll ()
    MOD - C:\Program Files\Tablet\Pen\libxml2.dll ()
    MOD - C:\Program Files\A\RocketDock\RocketDock.exe ()


    [color=#E56717]========== Win32 Services (SafeList) ==========[/color]

    SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
    SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
    SRV - (MBAMService) -- C:\Program Files\A\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
    SRV - (AdobeARMservice) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
    SRV - (wampmysqld) -- C:\wamp\bin\mysql\mysql5.5.20\bin\mysqld.exe ()
    SRV - (wampapache) -- C:\wamp\bin\apache\Apache2.2.21\bin\httpd.exe (Apache Software Foundation)
    SRV - (TabletServicePen) -- C:\Program Files\Tablet\Pen\Pen_Tablet.exe (Wacom Technology, Corp.)
    SRV - (TouchServicePen) -- C:\Program Files\Tablet\Pen\Pen_TouchService.exe (Wacom Technology, Corp.)
    SRV - (PSI_SVC_2) -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)
    SRV - (SwitchBoard) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
    SRV - (Fabs) -- C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe (MAGIX AG)
    SRV - (mi-raysat_3dsmax2010_32) -- C:\Program Files\A\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe ()
    SRV - (FirebirdServerMAGIXInstance) -- C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe (MAGIX®)
    SRV - (TestHandler) -- C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe (Fujitsu Siemens Computers)
    SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
    SRV - (ProtexisLicensing) -- C:\Windows\System32\PSIService.exe ()


    [color=#E56717]========== Driver Services (SafeList) ==========[/color]

    DRV - (NwlnkFwd) -- system32\DRIVERS\nwlnkfwd.sys File not found
    DRV - (NwlnkFlt) -- system32\DRIVERS\nwlnkflt.sys File not found
    DRV - (IpInIp) -- system32\DRIVERS\ipinip.sys File not found
    DRV - (MBAMSwissArmy) -- C:\Windows\System32\drivers\mbamswissarmy.sys (Malwarebytes Corporation)
    DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
    DRV - (wacmoumonitor) -- C:\Windows\System32\drivers\wacmoumonitor.sys (Wacom Technology)
    DRV - (wacommousefilter) -- C:\Windows\System32\drivers\wacommousefilter.sys (Wacom Technology)
    DRV - (wacomvhid) -- C:\Windows\System32\drivers\wacomvhid.sys (Wacom Technology)
    DRV - (mcdbus) -- C:\Windows\System32\drivers\mcdbus.sys (MagicISO, Inc.)
    DRV - (RTL8187B) -- C:\Windows\System32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation )
    DRV - (ahcix86s) -- C:\Windows\System32\drivers\ahcix86s.sys (AMD Technologies Inc.)
    DRV - (RTL8169) -- C:\Windows\System32\drivers\Rtlh86.sys (Realtek Corporation )
    DRV - (JRAID) -- C:\Windows\System32\drivers\jraid.sys (JMicron Technology Corp.)


    [color=#E56717]========== Standard Registry (SafeList) ==========[/color]


    [color=#E56717]========== Internet Explorer ==========[/color]

    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
    IE - HKLM\..\SearchScopes,DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64}
    IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
    IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7FUJC

    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.duckduckgo.com/
    IE - HKCU\..\SearchScopes,DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64}
    IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
    IE - HKCU\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7FUJC
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    [color=#E56717]========== FireFox ==========[/color]

    FF - user.js - File not found

    FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
    FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_32: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.5: C:\Program Files\TabletPlugins\npwacom.dll (Wacom, Inc.)
    FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
    FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Soft\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
    FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Soft\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)

    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}: C:\Program Files\A\Adobe\CS5\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2012/04/21 19:43:51 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\A\Mozilla Firefox\components [2012/04/26 10:46:40 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\A\Mozilla Firefox\plugins
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 12.0.1\extensions\\Components: C:\Program Files\A\Mozilla Thunderbird\components [2012/04/26 10:43:44 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 12.0.1\extensions\\Plugins: C:\Program Files\A\Mozilla Thunderbird\plugins

    [2012/04/26 12:18:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Soft\AppData\Roaming\Mozilla\Extensions
    [2012/05/18 08:22:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Soft\AppData\Roaming\Mozilla\Firefox\Profiles\4kgy3gin.default\extensions

    [color=#E56717]========== Chrome ==========[/color]

    CHR - default_search_provider: Google (Enabled)
    CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
    CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms},
    CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
    CHR - plugin: Native Client (Enabled) = C:\Users\Soft\AppData\Local\Google\Chrome\Application\19.0.1084.56\ppGoogleNaClPluginChrome.dll
    CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Soft\AppData\Local\Google\Chrome\Application\19.0.1084.56\pdf.dll
    CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Soft\AppData\Local\Google\Chrome\Application\19.0.1084.56\gcswf32.dll
    CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Soft\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
    CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll
    CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
    CHR - plugin: Java(TM) Platform SE 6 U32 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
    CHR - plugin: Java Deployment Toolkit 6.0.320.5 (Enabled) = C:\Windows\system32\npdeployJava1.dll
    CHR - plugin: Google Update (Enabled) = C:\Users\Soft\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
    CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
    CHR - Extension: Turn Off the Lights = C:\Users\Soft\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn\2.0.0.98_0\
    CHR - Extension: YouTube = C:\Users\Soft\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
    CHR - Extension: Adblock Plus (Beta) = C:\Users\Soft\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.2_0\
    CHR - Extension: Recherche Google = C:\Users\Soft\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
    CHR - Extension: Speed Dial = C:\Users\Soft\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgpdioedihjhncjafcpgbbjdpbbkikmi\2.1_0\
    CHR - Extension: AdBlock = C:\Users\Soft\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.35_0\
    CHR - Extension: Sinuous = C:\Users\Soft\AppData\Local\Google\Chrome\User Data\Default\Extensions\omlmnomieeknagejjojcpdomnbnbchdl\1.0.4_0\
    CHR - Extension: Gmail = C:\Users\Soft\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

    O1 HOSTS File: ([2012/04/25 14:10:30 | 000,001,978 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
    O1 - Hosts: 127.0.0.1 localhost
    O1 - Hosts: ::1 localhost
    O1 - Hosts: 127.0.0.1 activate.adobe.com
    O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
    O1 - Hosts: 127.0.0.1 adobeereg.com
    O1 - Hosts: 127.0.0.1 practivate.adobe.com
    O1 - Hosts: 127.0.0.1 ereg.adobe.com
    O1 - Hosts: 127.0.0.1 www.adobeereg.com
    O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
    O1 - Hosts: 127.0.0.1 wip3.adobe.com
    O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
    O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
    O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
    O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
    O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
    O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
    O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
    O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
    O1 - Hosts: 127.0.0.1 192.150.18.108
    O1 - Hosts: 127.0.0.1 adobe.activate.com127.0.0.1 practivate.adobe.com
    O1 - Hosts: 127.0.0.1 ereg.adobe.com
    O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
    O1 - Hosts: 127.0.0.1 wip3.adobe.com
    O1 - Hosts: 11 more lines...
    O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\A\Adobe\CS5\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
    O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll File not found
    O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
    O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\A\Adobe\CS5\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
    O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll File not found
    O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
    O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
    O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
    O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
    O4 - HKLM..\Run: [FSCRecovery] c:\Program Files\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryReminder.exe (Fujitsu Siemens Computers GmbH)
    O4 - HKLM..\Run: [FSCRecoveryCleanUp] c:\Program Files\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryCleanUp.exe (Fujitsu Siemens Computers GmbH)
    O4 - HKLM..\Run: [Google EULA Launcher] c:\Program Files\Google\Google EULA\GoogleEULALauncher.exe IE PA File not found
    O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\A\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
    O4 - HKLM..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" File not found
    O4 - HKLM..\Run: [NPCTray] C:\Program Files\Norman\npc\bin\npc_tray.exe /LOAD File not found
    O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
    O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
    O4 - HKLM..\Run: [TrayServer] C:\Program Files\A\MAGIX\VideoDeluxe17Premium\TrayServer_fr.exe (Magix)
    O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
    O4 - HKCU..\Run: [AdobeBridge] File not found
    O4 - HKCU..\Run: [RocketDock] C:\Program Files\A\RocketDock\RocketDock.exe ()
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\A\MICROS~1\Office12\EXCEL.EXE/3000 File not found
    O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\A\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
    O13 - gopher Prefix: missing
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinst [...] dows-i586.cab (Java Plug-in 1.6.0_32)
    O16 - DPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinst [...] dows-i586.cab (Java Plug-in 1.6.0_32)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinst [...] dows-i586.cab (Java Plug-in 1.6.0_32)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 109.88.203.3 212.68.193.196
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E6AA8429-10E9-409A-905C-C4EFC07FEB64}: DhcpNameServer = 109.88.203.3 212.68.193.196
    O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
    O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
    O24 - Desktop WallPaper: C:\Users\Soft\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
    O24 - Desktop BackupWallPaper: C:\Users\Soft\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2006/09/18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
    O33 - MountPoints2\{86fa6fb3-8b41-11e1-b07d-806e6f6e6963}\Shell - "" = AutoRun
    O33 - MountPoints2\{86fa6fb3-8b41-11e1-b07d-806e6f6e6963}\Shell\AutoRun\command - "" = E:\install.exe
    O34 - HKLM BootExecute: (autocheck autochk *)
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*
    O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
    O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

    [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

    [2012/06/16 00:01:12 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\Soft\Desktop\OTL.exe
    [2012/06/15 23:41:17 | 000,040,776 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
    [2012/06/15 20:22:03 | 000,000,000 | ---D | C] -- C:\Users\Soft\AppData\Roaming\Malwarebytes
    [2012/06/15 20:21:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
    [2012/06/15 20:21:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
    [2012/06/15 20:21:51 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
    [2012/06/13 17:50:14 | 000,000,000 | ---D | C] -- C:\Users\Soft\AppData\Roaming\InstallShield
    [2012/06/13 17:10:08 | 000,000,000 | ---D | C] -- C:\Users\Soft\Documents\Painter 12 Recovered Files
    [2012/06/13 17:08:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Corel
    [2012/06/13 17:08:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Protexis
    [2012/06/13 17:08:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Corel
    [2012/06/13 16:53:51 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
    [2012/06/13 16:53:51 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
    [2012/06/13 16:53:51 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
    [2012/06/13 13:08:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Corel Painter 12.1 Update
    [2012/06/12 02:59:44 | 000,000,000 | ---D | C] -- C:\Users\Soft\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
    [2012/06/12 02:59:44 | 000,000,000 | ---D | C] -- C:\Users\Soft\AppData\Roaming\Adobe Mini Bridge CS5
    [2012/06/11 22:10:11 | 000,000,000 | ---D | C] -- C:\Users\Soft\Documents\Mudbox
    [2012/06/11 22:09:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
    [2012/06/09 20:31:46 | 000,000,000 | R--D | C] -- C:\Program Files\Programs\Programs\Base\Windows\Startup
    [2012/06/09 20:31:38 | 000,000,000 | ---D | C] -- C:\Program Files\Dropbox
    [2012/06/09 20:30:06 | 000,000,000 | ---D | C] -- C:\Users\Soft\AppData\Roaming\Dropbox
    [2012/06/07 04:06:00 | 000,000,000 | ---D | C] -- C:\ProgramData\AppData
    [2012/06/07 04:04:40 | 000,000,000 | ---D | C] -- C:\Users\Soft\AppData\Roaming\WTablet
    [2012/06/07 04:04:39 | 000,642,928 | ---- | C] (Wacom Technology, Corp.) -- C:\Windows\System32\Pen_Touch_Tablet.dll
    [2012/06/07 04:04:33 | 000,000,000 | ---D | C] -- C:\Program Files\TabletPlugins
    [2012/06/07 04:03:46 | 000,016,240 | ---- | C] (Wacom Technology) -- C:\Windows\System32\drivers\wacmoumonitor.sys
    [2012/06/07 04:03:37 | 000,011,312 | ---- | C] (Wacom Technology) -- C:\Windows\System32\drivers\wacommousefilter.sys
    [2012/06/07 04:03:18 | 000,014,120 | ---- | C] (Wacom Technology) -- C:\Windows\System32\drivers\wacomvhid.sys
    [2012/06/07 04:03:15 | 000,506,736 | ---- | C] (Wacom Technology, Corp.) -- C:\Windows\System32\Wintab32.dll
    [2012/06/07 04:03:14 | 000,650,096 | ---- | C] (Wacom Technology, Corp.) -- C:\Windows\System32\Pen_Tablet.dll
    [2012/06/07 04:03:02 | 000,000,000 | ---D | C] -- C:\Program Files\Tablet
    [2012/06/04 22:58:13 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
    [2012/06/04 22:57:55 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
    [2012/06/04 22:57:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
    [2012/06/04 22:57:38 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
    [2012/06/04 22:57:38 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
    [2012/06/04 22:54:30 | 000,000,000 | RH-D | C] -- C:\MSOCache

    [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

    [2012/06/16 11:25:34 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
    [2012/06/16 11:25:34 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
    [2012/06/16 11:25:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
    [2012/06/16 11:25:24 | 3049,902,080 | -HS- | M] () -- C:\hiberfil.sys
    [2012/06/16 00:22:59 | 000,002,373 | ---- | M] () -- C:\Users\Soft\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
    [2012/06/16 00:01:12 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Soft\Desktop\OTL.exe
    [2012/06/15 23:57:16 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
    [2012/06/15 23:41:17 | 000,040,776 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
    [2012/06/15 23:40:11 | 000,001,110 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2853791318-2649048559-1868908777-1000UA.job
    [2012/06/15 23:11:39 | 000,681,238 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
    [2012/06/15 23:11:39 | 000,598,338 | ---- | M] () -- C:\Windows\System32\perfh009.dat
    [2012/06/15 23:11:39 | 000,129,200 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
    [2012/06/15 23:11:39 | 000,106,622 | ---- | M] () -- C:\Windows\System32\perfc009.dat
    [2012/06/15 18:40:00 | 000,001,058 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2853791318-2649048559-1868908777-1000Core.job
    [2012/06/15 17:11:41 | 000,126,464 | ---- | M] () -- C:\Users\Soft\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2012/06/15 16:31:04 | 000,000,132 | ---- | M] () -- C:\Users\Soft\AppData\Roaming\Adobe PNG Format CS5 Prefs
    [2012/06/15 16:28:21 | 000,001,456 | ---- | M] () -- C:\Users\Soft\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs
    [2012/06/13 20:55:34 | 000,000,952 | -HS- | M] () -- C:\Windows\System32\KGyGaAvL.sys
    [2012/06/13 20:55:31 | 000,000,088 | RHS- | M] () -- C:\Windows\System32\60F24DABEA.sys
    [2012/06/13 19:37:34 | 000,122,616 | ---- | M] () -- C:\Users\Soft\Documents\Nouveaux raccourcis.HTM
    [2012/06/11 22:09:26 | 000,001,469 | ---- | M] () -- C:\Users\Soft\Application Data\Microsoft\Internet Explorer\Quick Launch\Autodesk Mudbox 2011 32-bit.lnk
    [2012/06/11 16:10:48 | 252,144,091 | ---- | M] () -- C:\Windows\MEMORY.DMP
    [2012/06/09 20:31:46 | 000,001,043 | ---- | M] () -- C:\Program Files\Programs\Programs\Base\Windows\Startup\Dropbox.lnk
    [2012/06/09 19:06:50 | 000,189,228 | -H-- | M] () -- C:\Windows\System32\mlfcache.dat
    [2012/06/05 03:54:30 | 003,802,560 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT

    [color=#E56717]========== Files Created - No Company Name ==========[/color]

    [2012/06/13 19:37:34 | 000,122,616 | ---- | C] () -- C:\Users\Soft\Documents\Nouveaux raccourcis.HTM
    [2012/06/13 17:53:34 | 000,000,952 | -HS- | C] () -- C:\Windows\System32\KGyGaAvL.sys
    [2012/06/13 17:53:34 | 000,000,088 | RHS- | C] () -- C:\Windows\System32\60F24DABEA.sys
    [2012/06/11 22:09:26 | 000,001,469 | ---- | C] () -- C:\Users\Soft\Application Data\Microsoft\Internet Explorer\Quick Launch\Autodesk Mudbox 2011 32-bit.lnk
    [2012/06/09 20:31:46 | 000,001,043 | ---- | C] () -- C:\Program Files\Programs\Programs\Base\Windows\Startup\Dropbox.lnk
    [2012/06/07 04:03:32 | 000,001,738 | -H-- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Journal.lnk
    [2012/06/07 04:03:32 | 000,001,638 | -H-- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sticky Notes.lnk
    [2012/06/07 04:03:07 | 000,000,488 | ---- | C] () -- C:\Windows\System32\PenTouchTabletUserDefaults.xml
    [2012/06/07 04:03:07 | 000,000,488 | ---- | C] () -- C:\Windows\System32\PenTabletUserDefaults.xml
    [2012/05/14 23:21:32 | 000,189,228 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
    [2012/05/02 01:18:00 | 000,000,132 | ---- | C] () -- C:\Users\Soft\AppData\Roaming\Adobe PNG Format CS5 Prefs
    [2012/04/21 23:54:41 | 000,001,456 | ---- | C] () -- C:\Users\Soft\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs
    [2012/04/20 17:45:09 | 000,126,464 | ---- | C] () -- C:\Users\Soft\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2012/04/20 17:14:40 | 000,000,000 | ---- | C] () -- C:\Windows\Irremote.ini
    [2011/12/07 07:53:24 | 004,770,816 | ---- | C] () -- C:\Windows\System32\x264vfw.dll
    [2011/07/12 15:56:50 | 000,074,752 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
    [2011/01/04 13:28:18 | 000,175,616 | ---- | C] () -- C:\Windows\System32\unrar.dll

    [color=#E56717]========== LOP Check ==========[/color]

    [2012/06/11 22:16:07 | 000,000,000 | ---D | M] -- C:\Users\Soft\AppData\Roaming\Autodesk
    [2012/06/10 05:59:15 | 000,000,000 | ---D | M] -- C:\Users\Soft\AppData\Roaming\Azureus
    [2012/04/20 22:45:51 | 000,000,000 | ---D | M] -- C:\Users\Soft\AppData\Roaming\Babylon
    [2012/04/21 12:00:51 | 000,000,000 | ---D | M] -- C:\Users\Soft\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
    [2012/06/16 11:27:05 | 000,000,000 | ---D | M] -- C:\Users\Soft\AppData\Roaming\Dropbox
    [2012/06/14 01:27:43 | 000,000,000 | ---D | M] -- C:\Users\Soft\AppData\Roaming\FileZilla
    [2012/04/21 23:41:30 | 000,000,000 | ---D | M] -- C:\Users\Soft\AppData\Roaming\iView
    [2012/04/20 22:04:40 | 000,000,000 | ---D | M] -- C:\Users\Soft\AppData\Roaming\MAGIX
    [2012/04/25 14:37:21 | 000,000,000 | ---D | M] -- C:\Users\Soft\AppData\Roaming\Notepad++
    [2012/04/27 09:19:50 | 000,000,000 | ---D | M] -- C:\Users\Soft\AppData\Roaming\OpenOffice.org
    [2012/04/22 23:44:53 | 000,000,000 | ---D | M] -- C:\Users\Soft\AppData\Roaming\Opera
    [2012/06/12 02:59:44 | 000,000,000 | ---D | M] -- C:\Users\Soft\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
    [2012/04/26 12:17:58 | 000,000,000 | ---D | M] -- C:\Users\Soft\AppData\Roaming\Thunderbird
    [2012/04/21 22:20:18 | 000,000,000 | ---D | M] -- C:\Users\Soft\AppData\Roaming\VistaCodecs
    [2012/06/16 00:26:01 | 000,032,572 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

    [color=#E56717]========== Purity Check ==========[/color]



    < End of report >



    OTL Extras logfile created on: 16/06/2012 11:25:59 - Run 1
    OTL by OldTimer - Version 3.2.49.0 Folder = C:\Users\Soft\Desktop
    Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
    Internet Explorer (Version = 7.0.6001.18000)
    Locale: 0000080C | Country: Belgique | Language: FRB | Date Format: d/MM/yyyy

    2,84 Gb Total Physical Memory | 1,67 Gb Available Physical Memory | 58,71% Memory free
    5,88 Gb Paging File | 4,75 Gb Available in Paging File | 80,85% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
    Drive C: | 92,21 Gb Total Space | 3,48 Gb Free Space | 3,78% Space Free | Partition Type: NTFS
    Drive D: | 48,05 Gb Total Space | 28,71 Gb Free Space | 59,75% Space Free | Partition Type: NTFS

    Computer Name: PC-PORTABLE | User Name: Soft | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    [color=#E56717]========== Extra Registry (SafeList) ==========[/color]


    [color=#E56717]========== File Associations ==========[/color]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
    .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
    .html [@ = Opera.HTML] -- C:\Program Files\A\Opera\Opera.exe (Opera Software)
    .url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

    [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
    .html [@ = ChromeHTML] -- Reg Error: Key error. File not found

    [color=#E56717]========== Shell Spawning ==========[/color]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
    exefile [open] -- "%1" %*
    helpfile [open] -- Reg Error: Key error.
    hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
    htmlfile [edit] -- Reg Error: Key error.
    http [open] -- "C:\Program Files\A\Opera\Opera.exe" "%1" (Opera Software)
    https [open] -- "C:\Program Files\A\Opera\Opera.exe" "%1" (Opera Software)
    inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
    InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [Bridge] -- C:\Program Files\A\Adobe\CS5\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
    Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
    Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

    [color=#E56717]========== Security Center Settings ==========[/color]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "cval" = 1

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
    "AntiVirusOverride" = 0
    "AntiSpywareOverride" = 0
    "FirewallOverride" = 0
    "VistaSp1" = Reg Error: Unknown registry data type -- File not found

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

    [color=#E56717]========== Firewall Settings ==========[/color]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
    "EnableFirewall" = 1
    "DisableNotifications" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    "EnableFirewall" = 1
    "DisableNotifications" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
    "EnableFirewall" = 1
    "DisableNotifications" = 0

    [color=#E56717]========== Authorized Applications List ==========[/color]


    [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
    "{5B53329C-0853-46B1-81BE-4590CD92A2B4}" = lport=48113 | protocol=17 | dir=in | name=maconfig_udp |
    "{7F3B0F7B-0F6E-45B8-8D6A-26C7A96B70A3}" = lport=5353 | protocol=6 | dir=in | name=adobe csi cs4 |
    "{EFBFD049-13E1-480D-87E8-88C34764DAEC}" = lport=48113 | protocol=6 | dir=in | name=maconfig_tcp |

    [color=#E56717]========== Vista Active Application Exception List ==========[/color]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
    "{091CE7AA-5D13-4644-9675-739118ACD15F}" = protocol=6 | dir=in | app=c:\program files\a\autodesk\backburner\monitor.exe |
    "{0C1C5141-2936-4F85-BCC2-FF635DAF4BA4}" = protocol=6 | dir=in | app=c:\users\Soft\desktop\xforce_keygen_32bits_version_downloader_423b.exe |
    "{10D07A4C-74DA-471A-90B2-5B6FCC08252C}" = protocol=17 | dir=in | app=c:\program files\a\autodesk\3ds max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe |
    "{13B68C84-16D6-46F0-B480-DB55A079A0E5}" = protocol=17 | dir=in | app=c:\program files\a\autodesk\3ds max 2010\3dsmax.exe |
    "{14C3539F-B782-4A16-8101-5F1A5C700EE6}" = protocol=6 | dir=in | app=c:\program files\expressfiles\expressdl.exe |
    "{238CB8CD-85BB-4FA9-B9BC-EA39724CA202}" = protocol=6 | dir=in | app=c:\program files\a\pluginwrapper\opera_plugin_wrapper.exe |
    "{2B330EDE-D00E-469D-A395-2A7E74529266}" = protocol=6 | dir=in | app=c:\program files\opera next\opera.exe |
    "{2B5A7259-2D60-4BE5-B059-0706E88EA1F8}" = protocol=17 | dir=in | app=c:\program files\opera next\opera.exe |
    "{2E7B0094-6E91-4C9A-9BFA-52A8EC192ABE}" = protocol=6 | dir=in | app=c:\program files\hp\hp deskjet 2050 j510 series\bin\usbsetup.exe |
    "{2F2958F0-094A-444A-8FBA-EEF2D7152268}" = protocol=6 | dir=in | app=c:\program files\a\autodesk\3ds max 2010\3dsmax.exe |
    "{30F23213-7F1B-46F3-A741-13BAD3CE4C98}" = protocol=17 | dir=in | app=c:\program files\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
    "{3315EDF7-60B2-4F38-B0E2-0FB9A93C06F9}" = protocol=6 | dir=in | app=c:\program files\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
    "{368293A3-DFE0-4B49-AE8E-72A6680D6384}" = protocol=17 | dir=in | app=c:\program files\a\pluginwrapper\opera_plugin_wrapper.exe |
    "{396B9B00-58F7-49DF-9E39-98D607A78AA7}" = protocol=17 | dir=in | app=c:\program files\hp\hp deskjet 2050 j510 series\bin\usbsetup.exe |
    "{39D15B0C-5C3A-4F0A-B7D5-807A0FCC33B8}" = protocol=6 | dir=in | app=c:\program files\a\autodesk\3ds max 2010\mentalray\satellite\raysat_3dsmax2010_32.exe |
    "{451B43CC-DDFE-458F-B981-3E3C51984111}" = protocol=17 | dir=in | app=c:\program files\a\opera\opera.exe |
    "{47A19CB5-8207-47D4-AC65-1172C6B7B757}" = protocol=17 | dir=in | app=c:\program files\a\opera.exe |
    "{4CD0ECA7-9F75-4E80-A245-34A93D47A49A}" = protocol=6 | dir=in | app=c:\program files\a\autodesk\3ds max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe |
    "{4D7BC8A9-58C9-47E5-A34C-F314B7D2A4DF}" = protocol=17 | dir=in | app=c:\users\Soft\appdata\roaming\dropbox\bin\dropbox.exe |
    "{50144B54-CAF3-4214-887C-7A3AD502A8BB}" = protocol=6 | dir=in | app=c:\program files\ma-config.com\maconfservice.exe |
    "{5B915F44-81AC-4381-AC82-1AD6A3965A82}" = protocol=17 | dir=in | app=c:\program files\a\autodesk\backburner\server.exe |
    "{6480F25A-0BAF-4D7B-AA79-2D5A91FB838D}" = protocol=6 | dir=in | app=c:\program files\a\opera\operanext\opera.exe |
    "{6957AA47-49C9-4D38-8542-232D391FD44C}" = protocol=17 | dir=in | app=c:\program files\a\autodesk\backburner\monitor.exe |
    "{7062ABF7-5198-4235-ACC1-6B41F969A9ED}" = protocol=17 | dir=in | app=c:\program files\a\opera\operanext\pluginwrapper\opera_plugin_wrapper.exe |
    "{77FA4C63-24FD-47ED-BAAD-54855097AA65}" = protocol=17 | dir=in | app=c:\program files\expressfiles\expressfiles.exe |
    "{79BED6F3-F458-4736-A5CC-DD1E24032938}" = protocol=17 | dir=in | app=c:\program files\a\vuze\azureus.exe |
    "{7A67E4D2-3C45-488D-BB5A-83DE49A467CD}" = protocol=17 | dir=in | app=c:\program files\opera next\pluginwrapper\opera_plugin_wrapper.exe |
    "{81C30045-5DDE-4208-AFF7-BBC01C5C5534}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
    "{86458241-6ADF-437D-A4F3-68135DF22FD3}" = protocol=6 | dir=in | app=c:\program files\opera next\pluginwrapper\opera_plugin_wrapper.exe |
    "{89EA67BD-5F10-4928-9A3D-0A81A4986B40}" = protocol=17 | dir=in | app=c:\program files\ma-config.com\maconfservice.exe |
    "{8DC6A6B9-9AF9-4D66-A369-F4D928DA1F50}" = protocol=6 | dir=in | app=c:\program files\a\autodesk\backburner\server.exe |
    "{9491BF03-D859-4AC2-8E54-092D9A2997E5}" = protocol=17 | dir=in | app=c:\users\Soft\desktop\xforce_keygen_32bits_version_downloader_423b.exe |
    "{9E4C1F7A-FF33-43B5-915F-32BEAE6BE121}" = protocol=6 | dir=in | app=c:\program files\expressfiles\expressfiles.exe |
    "{A3E029B3-C861-464D-A5DE-A8386572F00E}" = protocol=17 | dir=in | app=c:\program files\expressfiles\expressdl.exe |
    "{A6B1B9F0-43A6-4CBD-B86F-E26C69F64714}" = protocol=17 | dir=in | app=c:\program files\a\autodesk\3ds max 2010\mentalray\satellite\raysat_3dsmax2010_32.exe |
    "{ABA7E672-86B0-46F9-BDBD-F8D24FD9285E}" = protocol=6 | dir=in | app=c:\program files\a\opera\opera.exe |
    "{BADE214B-0B3A-4D28-8040-BA2F40FA0BDB}" = protocol=6 | dir=in | app=c:\program files\a\opera.exe |
    "{BC33E35F-15DB-41D4-A37C-A895797968D5}" = protocol=17 | dir=in | app=c:\program files\a\opera\pluginwrapper\opera_plugin_wrapper.exe |
    "{BDFC95E4-FBFF-4AA8-861A-6ACBD8B27DEF}" = protocol=6 | dir=in | app=c:\program files\a\opera\pluginwrapper\opera_plugin_wrapper.exe |
    "{BF4052D9-2E95-4E64-8EBB-C9BDC1AEDF85}" = protocol=17 | dir=in | app=c:\program files\a\opera\operanext\opera.exe |
    "{C6DE144F-2B42-4D2B-9B3F-79FA586E1246}" = protocol=6 | dir=in | app=c:\program files\a\autodesk\backburner\manager.exe |
    "{DDF201C8-A4D9-4DFE-96BA-FF8FC52CB8D4}" = protocol=6 | dir=in | app=c:\program files\a\vuze\azureus.exe |
    "{E8889DE4-44AD-4757-9918-8EF5EF0D5226}" = protocol=17 | dir=in | app=c:\program files\a\autodesk\backburner\manager.exe |
    "{EB9A1F9C-D4D2-4921-8F9C-B5B04E14249D}" = protocol=6 | dir=in | app=c:\program files\a\opera\operanext\pluginwrapper\opera_plugin_wrapper.exe |
    "{F1EA46FD-7D44-42E2-BE63-DFDCCF482E3D}" = protocol=6 | dir=in | app=c:\users\Soft\appdata\roaming\dropbox\bin\dropbox.exe |

    [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "_{1E964D62-3397-45B7-A9D2-F27C22D9D4BA}" = Corel Painter 12
    "{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
    "{024521CF-C07E-4F8E-8481-0D75695E03AF}" = PxMergeModule
    "{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
    "{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
    "{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
    "{05653DE1-6567-40C6-B930-39D399B64369}" = OpenOffice.org 3.3
    "{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
    "{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
    "{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
    "{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
    "{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
    "{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
    "{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
    "{1AED4ABF-0852-4B3F-9F87-00CF88F25CE0}" = IconHandler 32 bit
    "{1BBD8D70-721A-41AD-AC8F-7308A0C8FA92}" = Adobe Creative Suite 5 Master Collection
    "{1E964D62-3397-45B7-A9D2-F27C22D9D4BA}" = Painter 12 - Setup Files
    "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    "{2333E82C-E577-4982-B60F-80C74BA69A07}" = Corel Painter 12 - IPM
    "{26A24AE4-039D-4CA4-87B4-2F83216032FF}" = Java(TM) 6 Update 32
    "{2F926AE7-9FB7-4B34-906F-9C29A6D146A7}" = SystemDiagnostics
    "{317AC0C7-FEBF-0409-87A3-4FC70D0ED900}" = Autodesk 3ds Max 2010 32-bit
    "{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}" = Firebird SQL Server - MAGIX Edition
    "{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
    "{3677B336-9F6D-45DF-9543-C049E35EE590}" = MAGIX Screenshare
    "{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
    "{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
    "{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
    "{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
    "{3D347E6D-5A03-4342-B5BA-6A771885F379}" = Autodesk Backburner 2008.1
    "{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
    "{411F3ABA-2AB5-4799-AA19-6ADF0A8F7424}" = Adobe Setup
    "{43509E18-076E-40FE-AF38-CA5ED400A5A9}" = Pixel Bender Toolkit
    "{44E240EC-2224-4078-A88B-2CEE0D3016EF}" = Adobe After Effects CS4 Presets
    "{44FDF3F0-9DEF-46A6-A552-404BBF55451B}" = Painter 12 - Core
    "{45EC816C-0771-4C14-AE6D-72D1B578F4C8}" = Adobe After Effects CS4
    "{4764EF5C-7111-4BDF-8706-C045DB9DE01A}" = Autodesk Mudbox 2011 32-bit
    "{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
    "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
    "{52232EF4-CC12-4C21-ABCF-ADB79618302D}" = Adobe Soundbooth CS4 Codecs
    "{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
    "{561968FD-56A1-49FD-9ED0-F55482C7C5BC}" = Adobe Media Encoder CS4 Exporter
    "{566BB41D-F006-4956-A5D3-94D8DFFA7F51}" = Adobe Setup
    "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
    "{60A08432-00DD-0409-AC2C-143C75460878}" = Autodesk 3ds Max 2010 32-bit Components
    "{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}" = Adobe Dynamiclink Support
    "{61D6891E-E822-4448-9F9A-0AAAAEB6AF6C}" = Adobe Creative Suite 4 Master Collection
    "{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
    "{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
    "{655513BD-A11F-4937-BCD4-A21E316E66AC}" = MAGIX Vidéo deluxe 17 Premium Version à télécharger
    "{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}" = Adobe After Effects CS4 Third Party Content
    "{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
    "{6D172D0A-B9F1-4046-AFAB-8599288545BF}" = Safari
    "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
    "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
    "{7A3DF2E2-CF13-44FB-A93E-F71D5381DB3F}" = HP Deskjet 2050 J510 series Aide
    "{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
    "{80A17ED7-059E-40FF-B5D6-F37C737CA693}" = Adobe Photoshop Lightroom 4
    "{8186FF34-D389-4B7E-9A2F-C197585BCFBD}" = Adobe Media Encoder CS4 Importer
    "{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
    "{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
    "{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
    "{87532CAB-7932-4F84-8937-823337622807}" = Adobe Illustrator CS4
    "{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
    "{90120000-0015-040C-0000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2007
    "{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
    "{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
    "{90120000-0019-040C-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2007
    "{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007
    "{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
    "{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
    "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
    "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
    "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
    "{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
    "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
    "{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
    "{90120000-0044-040C-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007
    "{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
    "{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
    "{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
    "{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
    "{97C82B44-D408-4F14-9252-47FC1636D23E}_is1" = IZArc 4.1.6
    "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
    "{A5CB0BC7-9553-420D-A3CD-D3C59FB99872}" = Painter 12 - EN
    "{A72DAA6B-A81F-4EE5-B1B2-C7620888776B}" = MAGIX Speed burnR (MSI)
    "{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
    "{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support
    "{AC76BA86-7AD7-1036-7B44-AA1000000001}" = Adobe Reader X (10.1.3) - Français
    "{AFC454ED-A26F-4816-826B-C35129D82E1F}" = Fujitsu Siemens Computers Recovery
    "{B05DE7B7-0B40-4411-BD4B-222CAE2D8F15}" = Adobe MotionPicture Color Files CS4
    "{B15381DD-FF97-4FCD-A881-ED4DB0975500}" = Adobe Color Video Profiles AE CS4
    "{B169BC97-B8AA-4ACA-9CF2-9D0FF5BABDF7}" = Adobe Premiere Pro CS4 Functional Content
    "{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
    "{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
    "{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
    "{BE9CEAAA-F069-4331-BF2F-8D350F6504F4}" = Adobe Media Encoder CS4 Additional Exporter
    "{C0E8FE43-C35B-451D-B35F-D4BD056D70E7}" = Camtasia Studio 7
    "{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
    "{C938BE91-3BB5-4B84-9EF6-88F0505D0038}" = Adobe Premiere Pro CS4 Third Party Content
    "{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
    "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
    "{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
    "{D499F8DE-3F31-4900-9157-61061613704B}" = Adobe Premiere Pro CS4
    "{D7716C7E-75F1-4C51-A2D5-C6A1E8311D53}" = Logiciel de base du périphérique HP Deskjet 2050 J510 series
    "{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
    "{DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}" = Adobe Media Encoder CS4
    "{E551D82D-4D56-4AF7-A2C9-8897D7A0CB00}" = Autodesk 3ds Max 2010 Tutorials Files
    "{E8EE9410-8AC4-4F43-A626-DDECA75C79F3}" = Adobe Setup
    "{EE353798-E875-42E0-B58D-7E6696182EA8}" = Adobe Media Encoder CS4 Dolby
    "{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
    "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
    "{F2776738-1A97-45F2-BE5A-DBBC66ACB9D4}" = Painter 12 - Painter
    "{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
    "{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
    "{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}" = Vista Codec Package
    "{FB2A5FCC-B81B-48C2-A009-7804694D83E9}" = Adobe Encore CS4 Codecs
    "{FBAAC4C8-D5ED-4308-9FC6-84E44E392395}" = Painter 12 - Content
    "{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
    "8461-7759-5462-8226" = Vuze
    "Adobe AIR" = Adobe AIR
    "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
    "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
    "Adobe_26b63376f4efc354dae41af6b5e3343" = Adobe Premiere Pro CS4
    "Adobe_5e69aa4cf0b5637673267fce2404c56" = Adobe After Effects CS4
    "Adobe_b2d6abde968e6f277ddbfd501383e02" = Adobe Creative Suite 4 Master Collection
    "Adobe_f730c8d73b28b26c300e2b7e2d76f5f" = Adobe Premiere Pro CS4
    "Autodesk FBX Plugin 2009.4 - 3ds Max 2010" = Autodesk FBX Plugin 2009.4 - 3ds Max 2010
    "chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
    "com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
    "FileZilla Client" = FileZilla Client 3.5.3
    "HDMI" = Intel(R) Graphics Media Accelerator Driver
    "iView MediaPro3" = iView MediaPro3
    "La boite a couleurs_is1" = La boite a couleurs version 1.6.14
    "MagicDisc 2.7.106" = MagicDisc 2.7.106
    "MAGIX_MSI_Videodeluxe17_premium" = MAGIX Vidéo deluxe 17 Premium Version à télécharger
    "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.61.0.1400
    "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
    "Mozilla Firefox 12.0 (x86 fr)" = Mozilla Firefox 12.0 (x86 fr)
    "Mozilla Thunderbird 12.0.1 (x86 fr)" = Mozilla Thunderbird 12.0.1 (x86 fr)
    "Notepad++" = Notepad++
    "Opera 12.00.1387" = Opera Next 12.00 beta build 1387
    "Opera 12.00.1467" = Opera 12.00
    "Pen Tablet Driver" = Bamboo
    "PROPLUS" = Microsoft Office Professional Plus 2007
    "RocketDock_is1" = RocketDock 1.3.5
    "Wacom WebTabletPlugin for IE" = WebTablet IE Plugin
    "Wacom WebTabletPlugin for Netscape" = WebTablet Netscape Plugin
    "WampServer 2_is1" = WampServer 2.2

    [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "Dropbox" = Dropbox
    "Google Chrome" = Google Chrome

    [color=#E56717]========== Last 20 Event Log Errors ==========[/color]

    [ Application Events ]
    Error - 13/06/2012 6:10:51 | Computer Name = PC-Portable | Source = System Restore | ID = 8210
    Description =

    Error - 13/06/2012 10:53:51 | Computer Name = PC-Portable | Source = SPP | ID = 16387
    Description =

    Error - 13/06/2012 10:53:51 | Computer Name = PC-Portable | Source = System Restore | ID = 8193
    Description =

    Error - 13/06/2012 10:53:54 | Computer Name = PC-Portable | Source = SPP | ID = 16387
    Description =

    Error - 13/06/2012 10:53:54 | Computer Name = PC-Portable | Source = System Restore | ID = 8193
    Description =

    Error - 13/06/2012 10:57:05 | Computer Name = PC-Portable | Source = WinMgmt | ID = 10
    Description =

    Error - 13/06/2012 11:06:57 | Computer Name = PC-Portable | Source = MsiInstaller | ID = 11704
    Description =

    Error - 13/06/2012 11:07:27 | Computer Name = PC-Portable | Source = .NET Runtime Optimization Service | ID = 1111
    Description =

    Error - 13/06/2012 11:10:03 | Computer Name = PC-Portable | Source = Application Error | ID = 1000
    Description = Application défaillante Painter 12.exe, version 12.1.0.1213, horodatage
    0x4ee6e30c, module défaillant kernel32.dll, version 6.0.6001.18000, horodatage
    0x4791a76d, code d’exception 0xe0434f4d, décalage d’erreur 0x000442eb, ID du processus
    0x@ƒ ø‚ , heure de début de l’application 0xø‚ @ƒ .

    Error - 13/06/2012 11:10:11 | Computer Name = PC-Portable | Source = Application Error | ID = 1000
    Error - 13/06/2012 11:10:33 | Computer Name = PC-Portable | Source = Application
    Error | ID = 1000

    [ System Events ]
    Error - 14/05/2012 7:48:31 | Computer Name = PC-Portable | Source = HTTP | ID = 15016
    Description =

    Error - 14/05/2012 7:48:43 | Computer Name = PC-Portable | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
    Description =

    Error - 14/05/2012 13:21:56 | Computer Name = PC-Portable | Source = EventLog | ID = 6008
    Description = L'arrêt système précédant à 19:20:22 le 14/05/2012 n'était pas prévu.

    Error - 14/05/2012 13:22:01 | Computer Name = PC-Portable | Source = HTTP | ID = 15016
    Description =

    Error - 14/05/2012 13:22:15 | Computer Name = PC-Portable | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
    Description =

    Error - 14/05/2012 14:00:23 | Computer Name = PC-Portable | Source = EventLog | ID = 6008
    Description = L'arrêt système précédant à 19:58:48 le 14/05/2012 n'était pas prévu.

    Error - 14/05/2012 14:00:29 | Computer Name = PC-Portable | Source = HTTP | ID = 15016
    Description =

    Error - 14/05/2012 14:00:42 | Computer Name = PC-Portable | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
    Description =

    Error - 15/05/2012 0:46:19 | Computer Name = PC-Portable | Source = HTTP | ID = 15016
    Description =

    Error - 15/05/2012 0:46:30 | Computer Name = PC-Portable | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
    Description =


    < End of report >




Merci d'avance! :)
Publicité
Le 16 juin 2012 à 12:57:01
Le 17 juin 2012 à 12:00:45

salut,
tien essaye ca, ca devrai resoudre ton probleme : http://www.commentcamarche.net/faq/307 [...] r-roguekiller

[Virus] Fenêtre du navigateur qui s'ouvre sans arrêt

× Après avoir cliqué sur "Répondre" vous serez invité à vous connecter pour que votre message soit publié.
  • Editeur
  • Markdown