Rapport de ZHPDiag v1.27.1862 par Nicolas Coolman, Update du 03/04/2011 Run by Alain at 05/04/2011 10:37:17 Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html ---\\ Web Browser MSIE: Internet Explorer v8.0.6001.18702 MFIE: Mozilla Firefox v3.6.16 (fr) (Defaut) ---\\ System Information Windows XP Home Edition Service Pack 3 (Build 2600) Processor: x86 Family 6 Model 23 Stepping 10, GenuineIntel Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 2047 MB (63% free) System Restore: Activé (Enable) System drive C: has 11 GB (22%) free of 49 GB ---\\ Logged in mode Computer Name: SA-F4367DFF25B8 User Name: Alain All Users Names: SUPPORT_388945a0, Manon, HelpAssistant, Emmanuelle, ASPNET, Alain, Administrateur, Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables %AppData%=%APPDATA% %LocalAppData%=C:\Documents and Settings\Alain\Local Settings\Application Data %StartMenu%=C:\Documents and Settings\Alain\Menu Démarrer ---\\ DOS/Devices A:\ Floppy drive, Flash card reader, USB Key (Not Inserted) C:\ Hard drive, Flash drive, Thumb drive (Free 11 Go of 49 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 94 Go of 146 Go) E:\ Hard drive, Flash drive, Thumb drive (Free 56 Go of 103 Go) F:\ CD-ROM drive (Not Inserted) G:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK ---\\ Recherche particulière de fichiers génériques [MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824] [MD5.AF4EAA3B35A2D206E1902D7CA61B958A] - (.Microsoft Corporation - Internet Extensions for Win32.) (.21/12/2010 00:53:04.) -- C:\WINDOWS\system32\wininet.dll [916480] [MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000] [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 19:40:30.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512] [MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 20:15:53.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574976] ---\\ Processus lancés [MD5.25FB74EABCE5EC7836BA3CFB3C58449A] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384] [MD5.866346F3D82F0CA2C7D80AFF41A6E1D3] - (.Creative Technology Ltd - CtHelper Application.) -- C:\WINDOWS\CTHELPER.EXE [17920] [MD5.7B878518590E826F1F3A5B1D61D405F8] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe [3396624] [MD5.B60DDDD2D63CE41CB8C487FCFBB6419E] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [638816] [MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53472] [MD5.0F3FA9FDB976C567EC0491685CF4FDF7] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [912344] [MD5.3AFF6B10C34CB8EAA6D6D5AA55193571] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856] [MD5.2A8AEFDE5BED57D232ECF9482336E139] - (.Microsoft Corporation - Microsoft Office Outlook.) -- C:\PROGRA~1\MICROS~2\Office12\OUTLOOK.EXE [12995952] [MD5.C2271BD91106CEEC631265842CAD09DC] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [642048] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) M3 - MFPP: Plugins - [Alain] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [Alain] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [Alain] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [Alain] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [Alain] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [Alain] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml M3 - MFPP: Plugins - [Alain] -- C:\Program Files\Mozilla FireFox\searchplugins\Yahoo.xml P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.0.0.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX Web Player version 2.0.3.4.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_21 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60129.0.) -- C:\Program Files\Microsoft Silverlight\4.0.60129.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com R0 - HKUS\S-1-5-21-1715567821-412668190-839522115-1005\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.19019 (longhorn_ie8_gdr.101217-1700)) -- C:\WINDOWS\system32\ieframe.dll R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 1 ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} . (.SFR - Aide à la navigation SFR.) -- C:\Program Files\SFR\Kit\SFRNavErrorHelper.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} . (.Microsoft Corporation - Family Safety Browser Helper Object Library.) -- C:\Program Files\Windows Live\Family Safety\fssbho.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- D:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} . (.SEIKO EPSON CORPORATION - EPSON Web-To-Page.) -- C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O2 - BHO: (no name) - {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} Clé orpheline ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} . (.SEIKO EPSON CORPORATION - EPSON Web-To-Page.) -- C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O3 - Toolbar: (no name) - {1E796980-9CC5-11D1-A83F-00C04FC99D61} . (.Pas de propriétaire - Pas de description.) -- (.not file.) ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [CTHelper] . (.Creative Technology Ltd - CtHelper Application.) -- C:\WINDOWS\CTHELPER.exe O4 - HKLM\..\Run: [CTxfiHlp] . (.Creative Technology Ltd - CTXfiHlp MFC Application.) -- C:\Windows\System32\CTXFIHLP.exe O4 - HKLM\..\Run: [EPSON Stylus DX4200 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAEE.exe O4 - HKLM\..\Run: [fssui] . (.Microsoft Corporation - Windows Live Family Safety Filter.) -- C:\Program Files\Windows Live\Family Safety\fsui.exe O4 - HKLM\..\Run: [NeroFilterCheck] . (.Ahead Software Gmbh - NeroCheck.) -- C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe O4 - HKLM\..\Run: [DivXUpdate] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe O4 - HKLM\..\Run: [NvMediaCenter] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\WINDOWS\system32\NvMcTray.dll O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\NvCpl.dll O4 - HKLM\..\Run: [nwiz] . (...) -- C:\Program Files\NVIDIA Corporation\nView\nwiz.exe O4 - HKLM\..\Run: [Ulead AutoDetector v2] . (.Ulead Systems, Inc. - AutoDetector.) -- C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- D:\Program Files\QuickTime\qttask.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe O4 - HKLM\..\Run: [Acrobat Assistant 8.0] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe (.not file.) O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O4 - HKCU\..\Run: [TomTomHOME.exe] . (.TomTom - System Tray application for TomTom HOME.) -- C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe O4 - HKCU\..\Run: [OrangePlayer] . (.Orange - Media Player.) -- c:\program files\orange\media player\Media Player.exe O4 - HKCU\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\SFR\Kit\9props.exe O4 - HKCU\..\Run: [PCSpeedUp] C:\Program Files\Accelerer PC\PCSpeedUp.exe (.not file.) O4 - HKCU\..\Run: [KiesTrayAgent] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- D:\SAMSUNGFABRICE\Kies\KiesTrayAgent.exe O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-18\..\Run: [OrangePlayer] . (.Orange - Media Player.) -- c:\program files\orange\media player\Media Player.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-18\..\Run: [OrangePlayer] . (.Orange - Media Player.) -- c:\program files\orange\media player\Media Player.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-19\..\Run: [OrangePlayer] . (.Orange - Media Player.) -- c:\program files\orange\media player\Media Player.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-20\..\Run: [OrangePlayer] . (.Orange - Media Player.) -- c:\program files\orange\media player\Media Player.exe O4 - HKUS\S-1-5-21-1715567821-412668190-839522115-1005\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-1715567821-412668190-839522115-1005\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe (.not file.) O4 - HKUS\S-1-5-21-1715567821-412668190-839522115-1005\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O4 - HKUS\S-1-5-21-1715567821-412668190-839522115-1005\..\Run: [TomTomHOME.exe] . (.TomTom - System Tray application for TomTom HOME.) -- C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe O4 - HKUS\S-1-5-21-1715567821-412668190-839522115-1005\..\Run: [OrangePlayer] . (.Orange - Media Player.) -- c:\program files\orange\media player\Media Player.exe O4 - HKUS\S-1-5-21-1715567821-412668190-839522115-1005\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\SFR\Kit\9props.exe O4 - HKUS\S-1-5-21-1715567821-412668190-839522115-1005\..\Run: [PCSpeedUp] C:\Program Files\Accelerer PC\PCSpeedUp.exe (.not file.) O4 - HKUS\S-1-5-21-1715567821-412668190-839522115-1005\..\Run: [KiesTrayAgent] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- D:\SAMSUNGFABRICE\Kies\KiesTrayAgent.exe O4 - HKUS\S-1-5-21-1715567821-412668190-839522115-1005\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Adobe Gamma Loader.exe.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Adobe Gamma Loader.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\WinZip Quick Pick.lnk . (.WinZip Computing, S.L..) -- C:\Program Files\WinZip\WZQKPICK.EXE O4 - Global Startup: C:\Documents And Settings\Alain\Menu Démarrer\Programmes\Démarrage\Lanceur.lnk . (.Micro Application.) -- C:\Program Files\Micro Application\LauncherMA.exe ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Acrobat Distiller X.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-1033-F400-7760-000000000005}\_SC_Distiller.ico O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Acrobat X Pro.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-1033-F400-7760-000000000005}\_SC_Acrobat.ico O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Illustrator 10.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Adobe\Illustrator 10 Evaluation\Support Files\Contents\Windows\Illustrator.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe ImageReady 7.0.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Photoshop 7.0\ImageReady.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop 7.0.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Photoshop 7.0\Photoshop.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 9.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A94000000001}\SC_Reader.ico O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\AppleSoftwareUpdateIco.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft FrontPage.lnk . (...) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\misc.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe O4 - Global Startup: C:\Documents And Settings\Alain\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe O4 - Global Startup: C:\Documents And Settings\Alain\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O8 - Extra context menu item: Ajouter à un fichier PDF existant . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O8 - Extra context menu item: Convertir au format Adobe PDF . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\Office12\EXCEL.exe O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO O9 - Extra button: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll ---\\ Site dans la Zone de confiance d'Internet Explorer (O15) O15 - Trusted Zone: [HKCU\...\Domains] http.localhost O15 - Trusted Zone: [HKCU\...\Domains\www] http.localhost ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://ushousecall02.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} () - http://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} () - http://www.ma-config.com/plugins/MaConfig_4_6_0_1.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://a532.g.akamai.net/f/532/6712/5m/virtools.download.akamai.com/6712/player/install3.5/installer.exe O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) - http://webcammeteorombas.dyndns.info/activex/AMC.cab ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{78A57D55-016D-4AFA-BB44-E336EFAF3A63}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{E2CFB4C6-C64F-4AE2-A3BA-8CD6F4390BBD}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{E924D03D-4BAD-4F6A-8C07-862B08E6012E}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{EB9C8E87-7158-4FBF-995B-B9EA47AD9665}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{78A57D55-016D-4AFA-BB44-E336EFAF3A63}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{E2CFB4C6-C64F-4AE2-A3BA-8CD6F4390BBD}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{E924D03D-4BAD-4F6A-8C07-862B08E6012E}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{EB9C8E87-7158-4FBF-995B-B9EA47AD9665}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS3\Services\Tcpip\..\{78A57D55-016D-4AFA-BB44-E336EFAF3A63}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS3\Services\Tcpip\..\{E2CFB4C6-C64F-4AE2-A3BA-8CD6F4390BBD}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS3\Services\Tcpip\..\{E924D03D-4BAD-4F6A-8C07-862B08E6012E}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS3\Services\Tcpip\..\{EB9C8E87-7158-4FBF-995B-B9EA47AD9665}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll O20 - Winlogon Notify: gmecoss . (.Pas de propriétaire - Pas de description.) -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\gmecoss.dll O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: (dgdersvc) . (.Devguru Co., Ltd. - Device Error Recovery SDK(x86).) - C:\WINDOWS\system32\dgdersvc.exe O23 - Service: (dmadmin) . (.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - C:\WINDOWS\System32\dmadmin.exe O23 - Service: (FsUsbExService) . (.Teruten - FsUsbDevice.) - C:\WINDOWS\system32\FsUsbExService.exe O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 260.9.) - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: (TomTomHOMEService) . (.TomTom - Windows Service for TomTom HOME.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\User_Feed_Synchronization-{B073E463-D0B6-4239-9966-0BE993D6EB71}.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\User_Feed_Synchronization-{DB01C6F8-A3A2-4055-9765-FCAF425863ED}.job ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (...) -- C:\WINDOWS\system32\ie4uinit.exe.mui O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} . (...) -- C:\WINDOWS\system32\ie4uinit.exe.mui O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (...) -- C:\WINDOWS\system32\ie4uinit.exe.mui O40 - ASIC: Dynamic HTML Data Binding - {9381D8F2-0288-11D0-9501-00AA00B911A5} . (...) -- C:\WINDOWS\system32\ie4uinit.exe.mui O40 - ASIC: .NET Framework - {9A394342-4A68-4EBA-85A6-55B559F4E700} . (...) -- C:\WINDOWS\system32\ie4uinit.exe.mui O40 - ASIC: .NET Framework - {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} . (...) -- C:\WINDOWS\system32\ie4uinit.exe.mui O40 - ASIC: Internet Explorer Core Fonts - {C9E9A340-D1F1-11D0-821E-444553540600} . (...) -- C:\WINDOWS\system32\ie4uinit.exe.mui O40 - ASIC: .NET Framework - {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} . (...) -- C:\WINDOWS\system32\ie4uinit.exe.mui O40 - ASIC: Planificateur de tâches - {CC2A9BA0-3BDD-11D0-821E-444553540000} . (...) -- C:\WINDOWS\system32\ie4uinit.exe.mui O40 - ASIC: (no name) - {CDD7975E-60F8-41d5-8149-19E51D6F71D0} . (...) -- C:\WINDOWS\system32\ie4uinit.exe.mui O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (...) -- C:\WINDOWS\system32\ie4uinit.exe.mui O40 - ASIC: HTML Help - {de5aed00-a4bf-11d1-9948-00c04f98bbc9} . (...) -- C:\WINDOWS\system32\ie4uinit.exe.mui O40 - ASIC: Active Directory Service Interface - {E92B03AB-B707-11d2-9CBD-0000F87A369E} . (...) -- C:\WINDOWS\system32\ie4uinit.exe.mui ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys ---\\ Logiciels installés (O42) O42 - Logiciel: AKVIS Chameleon - (.AKVIS Software Inc.) [HKLM] -- {8466123B-2CBE-4809-8FAF-94D1F76BC4FE} O42 - Logiciel: AXIS Media Control Embedded - (.Pas de propriétaire.) [HKLM] -- AXIS Media Control Embedded O42 - Logiciel: Adobe Acrobat X Pro - English, Français, Deutsch - (.Adobe Systems.) [HKLM] -- {AC76BA86-1033-F400-7760-000000000005} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Illustrator 10 Evaluation - (.Adobe Systems, Inc..) [HKLM] -- {662498D7-B5E8-4FED-87B8-764CD2C640A2} O42 - Logiciel: Adobe Photoshop 7.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Photoshop 7.0 O42 - Logiciel: Adobe Photoshop Elements - (.Adobe Systems, Inc..) [HKLM] -- Adobe Photoshop Elements 1.0 O42 - Logiciel: Adobe Reader 9.4.2 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001} O42 - Logiciel: Adobe SVG Viewer - (.Adobe Systems, Inc..) [HKLM] -- Adobe SVG Viewer O42 - Logiciel: Akamai NetSession Interface - (.Pas de propriétaire.) [HKLM] -- Akamai O42 - Logiciel: Amara - Menu Builder - (.Pas de propriétaire.) [HKLM] -- Amara - Menu Builder O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {DAEAFD68-BB4A-4507-A241-C8804D2EA66D} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033} O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7} O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: Configuration DivX - (.DivX, Inc. .) [HKLM] -- DivX Setup.divx.com O42 - Logiciel: Creative Audio Console - (.Pas de propriétaire.) [HKLM] -- AudioConSole O42 - Logiciel: EPSON Copy Utility 3 - (.Pas de propriétaire.) [HKLM] -- {67EDD823-135A-4D59-87BD-950616D6E857} O42 - Logiciel: EPSON Logiciel imprimante - (.Pas de propriétaire.) [HKLM] -- EPSON Printer and Utilities O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM] -- EPSON Scanner O42 - Logiciel: EPSON Smart Panel - (.Pas de propriétaire.) [HKLM] -- {6C11D561-620B-47DA-A693-4C597F3CDF40} O42 - Logiciel: EPSON Web-To-Page - (.Pas de propriétaire.) [HKLM] -- {7F14F68C-17FA-4F88-B3FD-7F449C1EBF32} O42 - Logiciel: EVEREST Home Edition v2.20 - (.Lavalys Inc.) [HKLM] -- EVEREST Home Edition_is1 O42 - Logiciel: FTP Expert 3 - (.Pas de propriétaire.) [HKLM] -- FTP Expert 3 O42 - Logiciel: Final Media Player 2010 - (.Bitberry Software.) [HKLM] -- FinalMediaPlayer_is1 O42 - Logiciel: GIMP 2.6.7 - (.Pas de propriétaire.) [HKLM] -- WinGimp-2.0_is1 O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {4286E640-B5FB-11DF-AC4B-005056C00008} O42 - Logiciel: High Definition Audio Driver Package - KB835221 - (.Microsoft Corporation.) [HKLM] -- KB835221WXP O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595 O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484 O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399 O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5 O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8} O42 - Logiciel: IziSpot 4 - (.IziSoftware.) [HKLM] -- {9BC9D542-3EAE-4310-8BDC-68A325596446} O42 - Logiciel: Jalbum - (.Jalbum AB.) [HKLM] -- {867D5CED-67D6-4966-B460-41037545AEDE} O42 - Logiciel: Java 2 Runtime Environment, SE v1.4.2_05 - (.Sun Microsystems, Inc..) [HKLM] -- {7148F0A8-6813-11D6-A77B-00B0D0142050} O42 - Logiciel: Java(TM) 6 Update 21 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216013FF} O42 - Logiciel: LauncherMA - (.Micro Application.) [HKLM] -- {C06EFB22-B5DB-46C5-9215-BCB5C19C0858} O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver O42 - Logiciel: MSN - (.Pas de propriétaire.) [HKLM] -- MSNINST O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Media Player - (.Orange.) [HKLM] -- Media Player O42 - Logiciel: Media Player Codec Pack 3.9.5 - (.Media Player Codec Pack.) [HKLM] -- Media Player - Codec Pack O42 - Logiciel: Messenger Plus! 3 - (.Pas de propriétaire.) [HKLM] -- MsgPlus! Plugin O42 - Logiciel: Messenger Plus! Live - (.Yuna Software.) [HKLM] -- Messenger Plus! Live O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033) O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700} O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447 O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906 O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1 O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570} O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1 O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 - (.Microsoft Corporation.) [HKLM] -- Wdf01007 O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping O42 - Logiciel: Microsoft Office 2007 Primary Interop Assemblies - (.Microsoft Corporation.) [HKLM] -- {50120000-1105-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office XP Professional avec FrontPage - (.Microsoft Corporation.) [HKLM] -- {9028040C-6000-11D3-8CFE-0050048383C9} O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000 O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c} O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - (.Microsoft Corporation.) [HKLM] -- Microsoft Visual Studio 2010 Tools for Office Runtime (x86) O42 - Logiciel: Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - (.Microsoft Corporation.) [HKLM] -- {96D33319-C14C-3070-A464-CE8416E46487} O42 - Logiciel: Mozilla Firefox (3.6.16) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.16) O42 - Logiciel: Mozilla Thunderbird (3.0.6) - (.Mozilla.) [HKLM] -- Mozilla Thunderbird (3.0.6) O42 - Logiciel: MyPhoneExplorer - (.F.J. Wechselberger.) [HKLM] -- MPE O42 - Logiciel: NVIDIA Logiciel système PhysX 9.10.0514 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {B9DB4C76-01A4-46D5-8910-F7AA6376DBAF} O42 - Logiciel: NVIDIA Pilote graphique 260.99 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver O42 - Logiciel: NVIDIA nView 135.36 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView O42 - Logiciel: NVIDIA nView Desktop Manager - (.NVIDIA Corporation.) [HKLM] -- NVIDIA nView Desktop Manager O42 - Logiciel: Nero BurnRights - (.Pas de propriétaire.) [HKLM] -- Nero BurnRights!UninstallKey O42 - Logiciel: Nero Suite - (.Pas de propriétaire.) [HKLM] -- NeroMultiInstaller!UninstallKey O42 - Logiciel: NetAssistant - (.Freeze.com.) [HKLM] -- {1266764D-FC4F-4FA7-B63B-884D53B1680F} O42 - Logiciel: NetAssistant for Firefox - (.Freeze.com.) [HKCU] -- NetAssistant O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238} O42 - Logiciel: OutlookAddInNet3Setup - (.Samsung.) [HKLM] -- {5B4383F2-37EE-4E97-AD81-F5FF76F286DA} O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} O42 - Logiciel: PhotoFiltre - (.Pas de propriétaire.) [HKLM] -- PhotoFiltre O42 - Logiciel: PoiEdit - (.Pas de propriétaire.) [HKLM] -- PoiEdit O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {E7004147-2CCA-431C-AA05-2AB166B9785D} O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} O42 - Logiciel: SFR - Kit de connexion - (.SFR.) [HKLM] -- SFR_Kit O42 - Logiciel: SFR - Media Center - (.SFR.) [HKLM] -- SFR_Media Center O42 - Logiciel: ScanToWeb - (.Pas de propriétaire.) [HKLM] -- {EBAE381B-60A6-4863-AA9F-FCAB755BC9E5} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5C497F0B-2061-4CC9-A61C-6B45B867354D} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD769337-C8AC-46DB-A7DC-643E50089263} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2289158) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{210B16C0-CEBD-4DE9-B474-04A7E8735E16} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2344875) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6FC5C4C1-D7AE-44C3-94B7-6424FC3E752F} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{536FB502-775F-4494-BACE-C02CC90B7A5B} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473 O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5A4E43D5-858F-49BD-BA72-8F30E1793060} O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2345035) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{B23002DD-34EC-4988-B810-A5E2A0BF04F1} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46} O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer (KB2413381) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3DED0A62-44C8-4E00-A785-5212F297A9D9} O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3A4CDE54-2403-483D-8D9A-15E3264410DF} O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7} O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 O42 - Logiciel: System Requirements Lab - (.Pas de propriétaire.) [HKLM] -- SystemRequirementsLab O42 - Logiciel: TomTom HOME 2.7.6.2056 - (.TomTom.) [HKLM] -- TomTom HOME O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533} O42 - Logiciel: Tomtomax Maxi-Box V2.0.19 - (.Tomtomax et KoakDesign.) [HKLM] -- {A10F672B-01C4-498F-ADBD-3E5B144284B7}_is1 O42 - Logiciel: Ulead PhotoImpact 12 - (.Ulead System.) [HKLM] -- {11AFE21E-B193-430D-B57A-DFF7815BB962} O42 - Logiciel: Update Service - (.Sony Ericsson Mobile Communications AB.) [HKLM] -- Update Service O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707 O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2412171) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{752A0B7C-BD24-4362-AC86-AB63FEE6F46F} O42 - Logiciel: Update for Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (KB982305) - (.Microsoft Corporation.) [HKLM] -- {96D33319-C14C-3070-A464-CE8416E46487}.KB982305 O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2508979) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D2137BBA-250B-4548-BC1C-19E5009893D7} O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM] -- {5EE7D259-D137-4438-9A5F-42F432EC0421} O42 - Logiciel: VLC media player 1.0.1 - (.VideoLAN Team.) [HKLM] -- VLC media player O42 - Logiciel: WinZip 12.1 - (.WinZip Computing, S.L. .) [HKLM] -- {CD95F661-A5C4-44F5-A6AA-ECDD91C240B8} O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130 O42 - Logiciel: Windows Internet Explorer 7 - (.Microsoft Corporation.) [HKLM] -- ie7 O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1} O42 - Logiciel: Windows Live Contrôle parental - (.Microsoft Corporation.) [HKLM] -- {9FF9FDF7-F84A-4F99-B4BB-066B6F95F33D} O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {76810709-A7D3-468D-9167-A1780C1E766C} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B} O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11 O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11 O42 - Logiciel: Windows PowerShell(TM) 1.0 - (.Microsoft Corporation.) [HKLM] -- KB926139-v2 O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service O42 - Logiciel: Xvid 1.2.1 final uninstall - (.Xvid team (Koepi).) [HKLM] -- Xvid_is1 O42 - Logiciel: avast! Free Antivirus - (.Alwil Software.) [HKLM] -- avast5 O42 - Logiciel: ffdshow - (.Pas de propriétaire.) [HKLM] -- ffdshow_is1 ---\\ HKCU & HKLM Software Keys [HKCU\Software\AC3Filter] [HKCU\Software\ALWIL Software] [HKCU\Software\Ad-Remover] [HKCU\Software\Adobe] [HKCU\Software\Ahead] [HKCU\Software\AppDataLow\Software\Axis Communications] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Axis Communications] [HKCU\Software\BITSoft] [HKCU\Software\Bitberry] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CoreAAC] [HKCU\Software\Creative Tech] [HKCU\Software\DATA BECKER] [HKCU\Software\DSP-worx] [HKCU\Software\DivXNetworks] [HKCU\Software\DivX] [HKCU\Software\Dnote Software] [HKCU\Software\EPSON] [HKCU\Software\FIXIO PC Utilities] [HKCU\Software\FRANCE TELECOM] [HKCU\Software\GNU] [HKCU\Software\Google] [HKCU\Software\HookNetwork] [HKCU\Software\IM Providers] [HKCU\Software\Intel] [HKCU\Software\InterVideo] [HKCU\Software\JavaSoft] [HKCU\Software\Lavalys] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\Macromedia] [HKCU\Software\Magnet] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\Media Player - Codec Pack] [HKCU\Software\Micro Application] [HKCU\Software\Monitored] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\MyPhoneExplorer] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\Neuf] [HKCU\Software\Nico Mak Computing] [HKCU\Software\ODBC] [HKCU\Software\Opendisc] [HKCU\Software\Orange] [HKCU\Software\PDFCreator] [HKCU\Software\ParetoLogic] [HKCU\Software\Patchou] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Safer Networking Limited] [HKCU\Software\Samsung] [HKCU\Software\SecuROM] [HKCU\Software\Skype] [HKCU\Software\Smart Panel] [HKCU\Software\Softonic] [HKCU\Software\Sony Ericsson] [HKCU\Software\TomTom] [HKCU\Software\Trolltech] [HKCU\Software\Ulead Systems] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\WinZip Computing] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\keyhole.com] [HKCU\Software\settings] [HKCU\Software\~] [HKLM\Software\8ec] [HKLM\Software\AGEIA Technologies] [HKLM\Software\AKVIS] [HKLM\Software\ALWIL Software] [HKLM\Software\ASIO] [HKLM\Software\Adobe] [HKLM\Software\Ahead] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\BrowserChoice] [HKLM\Software\C07ft5Y] [HKLM\Software\Caphyon] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CrazyLoader] [HKLM\Software\Creative Tech] [HKLM\Software\DATA BECKER] [HKLM\Software\DivXNetworks] [HKLM\Software\DivX] [HKLM\Software\EPSON] [HKLM\Software\FRANCE TELECOM] [HKLM\Software\GNU] [HKLM\Software\Gemplus] [HKLM\Software\Google] [HKLM\Software\IziSoftware] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Khronos] [HKLM\Software\Kodak] [HKLM\Software\Licenses] [HKLM\Software\MAXSOFT-OCRON] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\MarkAny] [HKLM\Software\Monolith Productions] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NOS] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\Neuf] [HKLM\Software\NewSoft] [HKLM\Software\Nico Mak Computing] [HKLM\Software\ODBC] [HKLM\Software\On2 Technologies] [HKLM\Software\OrangePlayerTemp] [HKLM\Software\Orange] [HKLM\Software\PDFCreator] [HKLM\Software\Paretologic] [HKLM\Software\Patchou] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\Preview Systems] [HKLM\Software\Program Groups] [HKLM\Software\RegisteredApplications] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Samsung] [HKLM\Software\Schlumberger] [HKLM\Software\Secure] [HKLM\Software\Smart Panel] [HKLM\Software\Thomson] [HKLM\Software\TomTom] [HKLM\Software\TrendMicro] [HKLM\Software\Trolltech] [HKLM\Software\Ulead Systems] [HKLM\Software\VideoLAN] [HKLM\Software\Virtools] [HKLM\Software\Visicom Media] [HKLM\Software\W3i] [HKLM\Software\WinRAR] [HKLM\Software\Windows 3.1 Migration Status] [HKLM\Software\Windows] [HKLM\Software\Yahoo] [HKLM\Software\mozilla.org] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 06/11/2010 - 09:33:14 - [3005944] ----D- C:\Program Files\Accelerer PC O43 - CFD: 05/04/2011 - 07:44:48 - [72859432] ----D- C:\Program Files\Ad-Remover O43 - CFD: 02/02/2011 - 02:20:48 - [1983963367] ----D- C:\Program Files\Adobe O43 - CFD: 26/08/2010 - 07:44:46 - [212875751] ----D- C:\Program Files\Ahead O43 - CFD: 16/04/2010 - 00:12:56 - [19144579] ----D- C:\Program Files\AKVIS O43 - CFD: 17/06/2010 - 22:15:26 - [147966819] ----D- C:\Program Files\Alwil Software O43 - CFD: 22/11/2009 - 12:30:30 - [3614108] ----D- C:\Program Files\Amara - Menu Builder O43 - CFD: 28/04/2010 - 03:17:24 - [2221118] ----D- C:\Program Files\Apple Software Update O43 - CFD: 04/04/2010 - 13:26:50 - [2088977] ----D- C:\Program Files\Axis Communications O43 - CFD: 31/03/2011 - 09:00:18 - [3674144] ----D- C:\Program Files\CCleaner O43 - CFD: 15/01/2011 - 17:45:12 - [49570581] ----D- C:\Program Files\Common Files O43 - CFD: 20/03/2009 - 13:00:02 - [0] ----D- C:\Program Files\ComPlus Applications O43 - CFD: 15/12/2010 - 14:47:52 - [0] ----D- C:\Program Files\CrazyLoader O43 - CFD: 20/03/2009 - 16:18:20 - [1083352] ----D- C:\Program Files\Creative O43 - CFD: 19/11/2010 - 18:18:28 - [93237931] ----D- C:\Program Files\DivX O43 - CFD: 26/10/2009 - 10:59:04 - [4966937] ----D- C:\Program Files\Dnote Software O43 - CFD: 21/03/2009 - 10:20:40 - [74141434] ----D- C:\Program Files\epson O43 - CFD: 10/01/2011 - 17:02:34 - [17005355] ----D- C:\Program Files\ffdshow O43 - CFD: 02/02/2011 - 01:11:06 - [1375920332] ----D- C:\Program Files\Fichiers communs O43 - CFD: 10/05/2010 - 18:39:08 - [13066963] ----D- C:\Program Files\FinalMediaPlayer O43 - CFD: 31/10/2009 - 03:37:54 - [87124726] ----D- C:\Program Files\GIMP-2.0 O43 - CFD: 13/01/2011 - 17:26:48 - [92234231] ----D- C:\Program Files\Google O43 - CFD: 19/11/2010 - 21:09:32 - [28688811] --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD: 27/02/2011 - 10:26:02 - [6122722] ----D- C:\Program Files\Internet Explorer O43 - CFD: 15/04/2010 - 23:53:00 - [14949472] ----D- C:\Program Files\Jalbum O43 - CFD: 29/08/2010 - 11:58:42 - [125749786] ----D- C:\Program Files\Java O43 - CFD: 15/12/2010 - 14:45:42 - [3828736] ----D- C:\Program Files\K-Lite Codec Pack O43 - CFD: 20/03/2009 - 16:10:32 - [6819295] ----D- C:\Program Files\Lavalys O43 - CFD: 15/12/2010 - 14:47:52 - [8] ----D- C:\Program Files\LimeWire O43 - CFD: 15/01/2011 - 17:44:34 - [2530872] ----D- C:\Program Files\MarkAny O43 - CFD: 11/03/2010 - 00:26:46 - [15624412] ----D- C:\Program Files\Maïdo Production O43 - CFD: 20/03/2009 - 18:32:04 - [2152579] ----D- C:\Program Files\Messenger O43 - CFD: 16/06/2010 - 12:29:10 - [13107960] ----D- C:\Program Files\Messenger Plus! Live O43 - CFD: 23/03/2009 - 09:50:38 - [8359560] ----D- C:\Program Files\MessengerPlus! 3 O43 - CFD: 02/01/2011 - 12:55:06 - [485376] ----D- C:\Program Files\Micro Application O43 - CFD: 26/10/2009 - 00:32:58 - [226432] ----D- C:\Program Files\Microsoft O43 - CFD: 20/03/2009 - 13:04:12 - [0] ----D- C:\Program Files\microsoft frontpage O43 - CFD: 22/03/2009 - 13:00:18 - [607534684] ----D- C:\Program Files\Microsoft Office O43 - CFD: 17/03/2011 - 08:45:10 - [38371963] ----D- C:\Program Files\Microsoft Silverlight O43 - CFD: 26/10/2009 - 00:33:30 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD: 21/03/2009 - 23:42:56 - [14904] ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD: 11/10/2009 - 11:09:22 - [3726168] ----D- C:\Program Files\Microsoft Works O43 - CFD: 21/03/2009 - 23:42:30 - [8152064] ----D- C:\Program Files\Microsoft.NET O43 - CFD: 12/08/2010 - 15:29:30 - [10374874] ----D- C:\Program Files\Movie Maker O43 - CFD: 24/03/2011 - 09:58:14 - [30204528] ----D- C:\Program Files\Mozilla Firefox O43 - CFD: 18/02/2011 - 19:26:46 - [35007047] ----D- C:\Program Files\Mozilla Thunderbird O43 - CFD: 12/10/2010 - 14:01:46 - [26521] ----D- C:\Program Files\MSBuild O43 - CFD: 23/03/2009 - 08:53:26 - [2193062] ----D- C:\Program Files\MSN O43 - CFD: 20/03/2009 - 12:59:32 - [0] ----D- C:\Program Files\MSN Gaming Zone O43 - CFD: 16/04/2010 - 20:07:16 - [10095945] ----D- C:\Program Files\MyPhoneExplorer O43 - CFD: 20/03/2009 - 18:21:54 - [3285523] ----D- C:\Program Files\NetMeeting O43 - CFD: 19/04/2009 - 09:41:28 - [0] ----D- C:\Program Files\NOS O43 - CFD: 03/11/2010 - 10:08:52 - [291668839] ----D- C:\Program Files\NVIDIA Corporation O43 - CFD: 20/01/2010 - 22:38:38 - [34867714] ----D- C:\Program Files\Orange O43 - CFD: 15/12/2010 - 20:31:56 - [4379321] ----D- C:\Program Files\Outlook Express O43 - CFD: 15/01/2011 - 17:49:06 - [31060] ----D- C:\Program Files\PC Connectivity Solution O43 - CFD: 03/09/2009 - 19:55:58 - [3553735] ----D- C:\Program Files\PhotoFiltre O43 - CFD: 12/10/2010 - 14:01:40 - [36400897] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 15/01/2011 - 17:51:36 - [2721496] ----D- C:\Program Files\Samsung O43 - CFD: 20/03/2009 - 15:09:42 - [38412056] ----D- C:\Program Files\Securitoo O43 - CFD: 20/03/2009 - 13:01:24 - [1025] ----D- C:\Program Files\Services en ligne O43 - CFD: 27/09/2010 - 11:34:38 - [21799790] ----D- C:\Program Files\SFR O43 - CFD: 21/03/2009 - 10:07:02 - [134335486] ----D- C:\Program Files\Smart Panel O43 - CFD: 29/10/2009 - 01:42:58 - [768113] ----D- C:\Program Files\SystemRequirementsLab O43 - CFD: 03/10/2009 - 11:51:44 - [50448426] ----D- C:\Program Files\TomTom HOME 2 O43 - CFD: 03/10/2009 - 11:51:50 - [22486] ----D- C:\Program Files\TomTom International B.V O43 - CFD: 26/10/2009 - 13:47:52 - [2002985] ----D- C:\Program Files\Tomtomax Maxi-Box O43 - CFD: 20/03/2009 - 13:07:14 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 20/10/2010 - 21:16:30 - [74466874] ----D- C:\Program Files\VideoLAN O43 - CFD: 16/06/2009 - 13:21:14 - [266240] ----D- C:\Program Files\Virtools Web Player 3.5 O43 - CFD: 14/11/2009 - 01:25:48 - [12567802] ----D- C:\Program Files\Visicom Media O43 - CFD: 15/03/2011 - 01:29:56 - [86804510] ----D- C:\Program Files\Windows Live O43 - CFD: 25/03/2009 - 11:12:26 - [245112] ----D- C:\Program Files\Windows Live SkyDrive O43 - CFD: 20/03/2009 - 17:17:22 - [147] ----D- C:\Program Files\Windows Live Toolbar O43 - CFD: 16/06/2009 - 23:06:54 - [3581070] ----D- C:\Program Files\Windows Media Connect 2 O43 - CFD: 17/06/2009 - 05:07:34 - [8573658] ----D- C:\Program Files\Windows Media Player O43 - CFD: 15/12/2010 - 19:08:08 - [0] ----D- C:\Program Files\Windows NT O43 - CFD: 20/03/2009 - 13:01:26 - [0] --H-D- C:\Program Files\WindowsUpdate O43 - CFD: 01/07/2010 - 07:37:04 - [3886217] ----D- C:\Program Files\WinRAR O43 - CFD: 01/10/2009 - 13:20:38 - [16484443] ----D- C:\Program Files\WinZip O43 - CFD: 20/03/2009 - 13:04:12 - [0] ----D- C:\Program Files\xerox O43 - CFD: 11/10/2010 - 20:50:38 - [771007] ----D- C:\Program Files\Xvid O43 - CFD: 05/04/2011 - 10:37:28 - [3679079] ----D- C:\Program Files\ZHPDiag O43 - CFD: 15/01/2011 - 17:45:12 - [49570581] ----D- C:\Program Files\Common Files\Samsung O43 - CFD: 02/02/2011 - 02:29:20 - [7889451] ----D- C:\Documents and Settings\Alain\Application Data\Adobe O43 - CFD: 18/04/2010 - 14:55:42 - [61053] ----D- C:\Documents and Settings\Alain\Application Data\Ahead O43 - CFD: 28/04/2010 - 03:22:58 - [0] ----D- C:\Documents and Settings\Alain\Application Data\Apple Computer O43 - CFD: 14/03/2011 - 19:14:34 - [2560] ----D- C:\Documents and Settings\Alain\Application Data\Classes de site O43 - CFD: 17/10/2010 - 00:34:16 - [11455] ----D- C:\Documents and Settings\Alain\Application Data\CrazyLoader O43 - CFD: 20/03/2009 - 16:17:28 - [0] ----D- C:\Documents and Settings\Alain\Application Data\Creative O43 - CFD: 15/12/2010 - 13:01:48 - [224256] ----D- C:\Documents and Settings\Alain\Application Data\DivX O43 - CFD: 14/11/2009 - 01:27:40 - [109199] ----D- C:\Documents and Settings\Alain\Application Data\Dynamique O43 - CFD: 03/11/2010 - 12:01:30 - [318195] ----D- C:\Documents and Settings\Alain\Application Data\ElevatedDiagnostics O43 - CFD: 21/03/2009 - 10:31:34 - [1073986] ----D- C:\Documents and Settings\Alain\Application Data\EPSON O43 - CFD: 10/05/2010 - 18:39:08 - [0] ----D- C:\Documents and Settings\Alain\Application Data\FinalMediaPlayer O43 - CFD: 18/04/2009 - 19:18:38 - [98797] ----D- C:\Documents and Settings\Alain\Application Data\Google O43 - CFD: 31/10/2009 - 03:39:38 - [169] ----D- C:\Documents and Settings\Alain\Application Data\gtk-2.0 O43 - CFD: 28/09/2009 - 20:44:16 - [352] ----D- C:\Documents and Settings\Alain\Application Data\HouseCall 6.6 O43 - CFD: 30/09/2009 - 12:27:52 - [15086] ----D- C:\Documents and Settings\Alain\Application Data\Icones O43 - CFD: 20/03/2009 - 13:07:14 - [0] ----D- C:\Documents and Settings\Alain\Application Data\Identities O43 - CFD: 02/01/2011 - 11:15:20 - [1946] ----D- C:\Documents and Settings\Alain\Application Data\LiveCAD3 O43 - CFD: 20/03/2009 - 15:18:50 - [6198] ----D- C:\Documents and Settings\Alain\Application Data\Macromedia O43 - CFD: 13/01/2011 - 10:24:16 - [24827] ----D- C:\Documents and Settings\Alain\Application Data\Malwarebytes O43 - CFD: 05/04/2011 - 06:40:34 - [874695] ----D- C:\Documents and Settings\Alain\Application Data\Media Player O43 - CFD: 18/07/2010 - 14:45:04 - [4351033] -S--D- C:\Documents and Settings\Alain\Application Data\Microsoft O43 - CFD: 05/04/2011 - 09:52:26 - [789943] ----D- C:\Documents and Settings\Alain\Application Data\Mozilla O43 - CFD: 23/03/2009 - 08:53:48 - [853608] ----D- C:\Documents and Settings\Alain\Application Data\MSNInstaller O43 - CFD: 16/04/2010 - 20:07:16 - [3948] ----D- C:\Documents and Settings\Alain\Application Data\MyPhoneExplorer O43 - CFD: 10/01/2011 - 17:02:18 - [27881] ----D- C:\Documents and Settings\Alain\Application Data\NetAssistant O43 - CFD: 03/11/2010 - 11:19:04 - [111788] ----D- C:\Documents and Settings\Alain\Application Data\PCFix O43 - CFD: 15/01/2011 - 17:44:36 - [4384663] ----D- C:\Documents and Settings\Alain\Application Data\Samsung O43 - CFD: 14/03/2011 - 19:14:34 - [316928] ----D- C:\Documents and Settings\Alain\Application Data\Sites O43 - CFD: 15/12/2010 - 13:01:40 - [111952] ----D- C:\Documents and Settings\Alain\Application Data\Skype O43 - CFD: 16/07/2009 - 10:16:06 - [450267] ----D- C:\Documents and Settings\Alain\Application Data\Smart Panel O43 - CFD: 20/03/2009 - 13:04:02 - [13338009] ----D- C:\Documents and Settings\Alain\Application Data\Sun O43 - CFD: 10/02/2010 - 10:10:36 - [3845480836] ----D- C:\Documents and Settings\Alain\Application Data\Thunderbird O43 - CFD: 03/10/2009 - 11:52:10 - [75690873] ----D- C:\Documents and Settings\Alain\Application Data\TomTom O43 - CFD: 24/03/2011 - 07:10:38 - [110592] ----D- C:\Documents and Settings\Alain\Application Data\U3 O43 - CFD: 12/03/2011 - 21:13:40 - [475360] ----D- C:\Documents and Settings\Alain\Application Data\vlc O43 - CFD: 16/02/2010 - 12:22:04 - [12] ----D- C:\Documents and Settings\Alain\Application Data\WinRAR O43 - CFD: 07/12/2010 - 02:29:10 - [65482650] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\Adobe O43 - CFD: 10/05/2009 - 17:57:24 - [1950597] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\Ahead O43 - CFD: 22/11/2009 - 12:30:28 - [697392] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\Amara O43 - CFD: 28/04/2010 - 03:17:32 - [0] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\Apple O43 - CFD: 28/04/2010 - 03:17:06 - [9407] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\Apple Computer O43 - CFD: 29/01/2010 - 15:16:12 - [20630] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\ApplicationHistory O43 - CFD: 20/01/2010 - 22:39:02 - [769944] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\assembly O43 - CFD: 05/12/2010 - 14:51:28 - [463768] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\crazyloader Air O43 - CFD: 20/02/2011 - 13:06:34 - [0] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\Deployment O43 - CFD: 13/01/2011 - 17:26:48 - [268619161] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\Google O43 - CFD: 20/03/2009 - 16:52:44 - [2413277612] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\Identities O43 - CFD: 25/02/2011 - 23:52:50 - [805229840] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\Microsoft O43 - CFD: 21/03/2009 - 23:40:16 - [0] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\Microsoft Help O43 - CFD: 16/12/2010 - 11:03:16 - [119312624] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\Mozilla O43 - CFD: 27/09/2010 - 11:38:10 - [9149] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\Neuf O43 - CFD: 26/10/2009 - 12:41:38 - [788333] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\PoiEdit O43 - CFD: 15/03/2011 - 12:49:04 - [6883933] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\Temp O43 - CFD: 10/02/2010 - 10:14:40 - [4606123] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\Thunderbird O43 - CFD: 03/10/2009 - 11:52:10 - [2399742] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\TomTom O43 - CFD: 16/04/2010 - 20:06:12 - [0] ----D- C:\Documents and Settings\Alain\Local Settings\Application Data\WMTools Downloaded Files ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.64EF1300F915817C00FCFD7F38F01300] - 05/04/2011 - 08:59:16 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1150842] O44 - LFC:[MD5.DDBF49494359A0D2A60162DB63D17E95] - 05/04/2011 - 08:08:03 ---A- . (...) -- C:\Ad-Report-CLEAN[2].txt [3829] O44 - LFC:[MD5.88A5FC2BBDAE87CF79EBEF7BB765B48E] - 05/04/2011 - 08:05:03 ---A- . (...) -- C:\Ad-Report-SCAN[2].txt [3766] O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 05/04/2011 - 06:50:11 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048] O44 - LFC:[MD5.84AE62FF64519F6487224B835D0CA0E0] - 05/04/2011 - 06:49:01 ---A- . (...) -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000005-00000000-00000000-00001102-00000004-10031102}.rfx [30120] O44 - LFC:[MD5.84AE62FF64519F6487224B835D0CA0E0] - 05/04/2011 - 06:49:01 ---A- . (...) -- C:\WINDOWS\System32\BMXCtrlState-{00000005-00000000-00000000-00001102-00000004-10031102}.rfx [30120] O44 - LFC:[MD5.62CDB29426EC7ABF50D08DD9289A29A5] - 05/04/2011 - 06:49:01 ---A- . (...) -- C:\WINDOWS\System32\BMXState-{00000005-00000000-00000000-00001102-00000004-10031102}.rfx [30912] O44 - LFC:[MD5.62CDB29426EC7ABF50D08DD9289A29A5] - 05/04/2011 - 06:49:01 ---A- . (...) -- C:\WINDOWS\System32\BMXStateBkp-{00000005-00000000-00000000-00001102-00000004-10031102}.rfx [30912] O44 - LFC:[MD5.097E76002907B2B81E300EE6CAFCFC3A] - 05/04/2011 - 06:49:01 ---A- . (...) -- C:\WINDOWS\System32\DVCState-{00000005-00000000-00000000-00001102-00000004-10031102}.rfx [11564] O44 - LFC:[MD5.D0762CE2F97D48A67B6448A1DD61C278] - 05/04/2011 - 06:49:01 ---A- . (...) -- C:\WINDOWS\System32\settings.sfm [1080] O44 - LFC:[MD5.D0762CE2F97D48A67B6448A1DD61C278] - 05/04/2011 - 06:49:01 ---A- . (...) -- C:\WINDOWS\System32\settingsbkup.sfm [1080] O44 - LFC:[MD5.9DA9F1BEA3CC7E3826D8B275D9083ED1] - 05/04/2011 - 06:47:58 ---A- . (...) -- C:\Ad-Report-CLEAN[1].txt [6499] O44 - LFC:[MD5.CFF181856047394A2F38D56BF8211D8F] - 05/04/2011 - 06:45:41 ---A- . (...) -- C:\Ad-Report-SCAN[1].txt [6803] O44 - LFC:[MD5.5866F5AC5FA90002CC1275789B715A60] - 05/04/2011 - 06:33:58 ---A- . (...) -- C:\WINDOWS\NeroDigital.ini [116] O44 - LFC:[MD5.64EF1300F915817C00FCFD7F38F01300] - 04/04/2011 - 23:05:21 ---A- . (...) -- C:\WINDOWS\{00000005-00000000-00000000-00001102-00000004-10031102}.CDF [4958588] O44 - LFC:[MD5.90941BB6121B79E1C2E47F4D5B4DD72C] - 04/04/2011 - 20:48:34 ---A- . (...) -- C:\WINDOWS\System32\d3d9caps.dat [664] O44 - LFC:[MD5.9501CE82389A3B51720E7B8A4B614216] - 30/03/2011 - 08:12:42 ---A- . (...) -- C:\WINDOWS\System32\CONFIG.NT [3121] O44 - LFC:[MD5.03D701AEDBEC0387296ACE295851514D] - 30/03/2011 - 08:07:57 ---A- . (...) -- C:\WINDOWS\System32\wpa.dbl [2422] ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ---\\ MountPoints2 Shell Key (O51) O51 - MPSK:{1a9a91c5-aff8-11de-a8e6-000b6b988c2c}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- K:\InstallTomTomHOME.exe (.not file.) O51 - MPSK:{1f921d12-ae6d-11de-a8e4-000b6b988c2c}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- H:\InstallTomTomHOME.exe (.not file.) ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(TM) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.vp60"="vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\WINDOWS\System32\vp6vfw.dll O52 - TDSD: \Drivers32\"vidc.vp61"="vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\WINDOWS\System32\vp6vfw.dll O52 - TDSD: \Drivers32\"vidc.vp62"="vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\WINDOWS\System32\vp6vfw.dll O52 - TDSD: \Drivers32\"msacm.ac3filter"="ac3filter.acm" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ac3filter.acm O52 - TDSD: \Drivers32\"msacm.divxa32"="DivXa32.acm" . (.Packed With Joy ! - DivX;-) Audio Codec.) -- C:\WINDOWS\System32\DivXa32.acm O52 - TDSD: \Drivers32\"VIDC.FFDS"="ff_vfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ff_vfw.dll O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \drivers.desc\"vp6vfw.dll"="On2 VP6 6.4.2 Video Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"ac3filter.acm"="AC3Filter ACM codec" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ac3filter.acm O52 - TDSD: \drivers.desc\"DivXa32.acm"="DivX Audio Codec" . (.Packed With Joy ! - DivX;-) Audio Codec.) -- C:\WINDOWS\System32\DivXa32.acm O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow video encoder" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ff_vfw.dll ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"= O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.479C9835B91147BE1A92CB76FAD9C6DE] - 13/01/2011 - 09:37:11 ---A- . (.AVAST Software - avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP.) -- C:\WINDOWS\system32\drivers\aavmker4.sys [29392] O58 - SDL:[MD5.CBA53C5E29AE0A0CE76F9A2BE3A40D9E] - 13/01/2011 - 09:37:09 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys [17744] O58 - SDL:[MD5.701D741F60983B0319560523294E5D5B] - 13/01/2011 - 09:39:50 ---A- . (.AVAST Software - avast! File System Filter Driver for Windows NT/2000.) -- C:\WINDOWS\system32\drivers\aswmon.sys [94544] O58 - SDL:[MD5.A1C52B822B7B8A5C2162D38F579F97B7] - 13/01/2011 - 09:40:04 ---A- . (.AVAST Software - avast! File System Filter Driver for Windows XP.) -- C:\WINDOWS\system32\drivers\aswmon2.sys [100176] O58 - SDL:[MD5.B6E8C5874377A42756C282FAC2E20836] - 13/01/2011 - 09:37:30 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\WINDOWS\system32\drivers\aswRdr.sys [23632] O58 - SDL:[MD5.B93A553C9B0F14263C8F016A44C3258C] - 13/01/2011 - 09:41:16 ---A- . (.AVAST Software - avast! self protection module.) -- C:\WINDOWS\system32\drivers\aswSP.sys [294608] O58 - SDL:[MD5.1408421505257846EB336FEEEF33352D] - 13/01/2011 - 09:40:16 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\WINDOWS\system32\drivers\aswTdi.sys [47440] O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 05/08/2004 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528] O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 05/08/2004 - 13:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776] O58 - SDL:[MD5.7AF9204CEF5FBCB278CD6D3D623A2AE5] - 08/06/2005 - 13:08:34 ---A- . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\WINDOWS\system32\drivers\CT0531FL.SYS [1359744] O58 - SDL:[MD5.FB06BB39860340C6FA84867F0288D1DD] - 11/08/2006 - 14:45:14 ---A- . (.Creative Technology Ltd - Creative AC3 SW Decoder Device Driver (WDM).) -- C:\WINDOWS\system32\drivers\ctac32k.sys [502272] O58 - SDL:[MD5.B810FA12CF726B200E057834EAEBB1AC] - 11/08/2006 - 14:45:38 ---A- . (.Creative Technology Ltd - Creative WDM Audio Device Driver.) -- C:\WINDOWS\system32\drivers\ctaud2k.sys [499584] O58 - SDL:[MD5.C4333325D325EFA668888D0D3177C6FF] - 10/11/2005 - 17:06:04 ---A- . (.Creative Technology Ltd - Creative DVD-Audio Device Driver (WDM).) -- C:\WINDOWS\system32\drivers\ctdvda2k.sys [340704] O58 - SDL:[MD5.BFC40092329CF4AB838CC4A6F2FAD659] - 30/12/2002 - 10:53:36 ---A- . (.Creative Technology Ltd. - Creative Game Port Enumerator.) -- C:\WINDOWS\system32\drivers\CTGAME.SYS [12160] O58 - SDL:[MD5.C3DDB8BAE53A63D54A93DF7A371AC808] - 06/09/2005 - 14:02:20 ---A- . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\WINDOWS\system32\drivers\CTMMFILT.SYS [1365888] O58 - SDL:[MD5.01E1AB8249F9DDE5978C6B4AF18EDA7C] - 11/08/2006 - 14:45:24 ---A- . (.Creative Technology Ltd. - Creative OS Services Driver (WDM).) -- C:\WINDOWS\system32\drivers\ctoss2k.sys [116224] O58 - SDL:[MD5.1FA95C8CF34B9911E352A07EA7A200FC] - 11/08/2006 - 14:45:40 ---A- . (.Creative Technology Ltd - Creative Proxy Device Driver (WDM).) -- C:\WINDOWS\system32\drivers\ctprxy2k.sys [7168] O58 - SDL:[MD5.400CB754B91F73BEE2655686A57269D2] - 11/08/2006 - 14:45:18 ---A- . (.Creative Technology Ltd - SoundFont(R) Manager (WDM).) -- C:\WINDOWS\system32\drivers\ctsfm2k.sys [143872] O58 - SDL:[MD5.3BE1651C63954067940E7F473498AD70] - 09/09/2010 - 08:44:50 ---A- . (.Devguru Co., Ltd - Device Error Recovery SDK(x86).) -- C:\WINDOWS\system32\drivers\dgderdrv.sys [18120] O58 - SDL:[MD5.7BB488EC082D40645936D9E583F560DC] - 11/08/2006 - 14:45:18 ---A- . (.Creative Technology Ltd - E-mu Plug-in Architecture Driver (WDM).) -- C:\WINDOWS\system32\drivers\emupia2k.sys [78336] O58 - SDL:[MD5.007AEA2E06E7CEF7372E40C277163959] - 16/02/2010 - 11:54:18 ---A- . (.Sony Ericsson Mobile Communications - SEMC USB Flash Driver Filter.) -- C:\WINDOWS\system32\drivers\ggflt.sys [13224] O58 - SDL:[MD5.C73DE35960CA75C5AB4AE636B127C64E] - 16/02/2010 - 11:54:18 ---A- . (.Sony Ericsson Mobile Communications - SEMC USB Flash Driver.) -- C:\WINDOWS\system32\drivers\ggsemc.sys [25512] O58 - SDL:[MD5.9BB84B1DFF8BCE7FDDDEA746F6819FCF] - 11/08/2006 - 14:45:26 ---A- . (.Creative Technology Ltd - Creative EMU10KX HAL (WDM).) -- C:\WINDOWS\system32\drivers\ha10kx2k.sys [766976] O58 - SDL:[MD5.AD036BCA0BF59E00DF7249AE0B7DDA45] - 11/08/2006 - 14:45:32 ---A- . (.Creative Technology Ltd - Creative 20X HAL (WDM).) -- C:\WINDOWS\system32\drivers\ha20x2k.sys [1110016] O58 - SDL:[MD5.1418833169B29780FBDAB127623B8767] - 11/08/2006 - 14:45:26 ---A- . (.Creative Technology Ltd - Creative EMU10KX-P16v HAL (WDM).) -- C:\WINDOWS\system32\drivers\haP16v2k.sys [154112] O58 - SDL:[MD5.8B3148391DC121D96D513785D588E75B] - 11/08/2006 - 14:45:28 ---A- . (.Creative Technology Ltd - Creative EMU10KX-P17v HAL (WDM).) -- C:\WINDOWS\system32\drivers\haP17v2k.sys [180224] O58 - SDL:[MD5.93E64BAB9DEE162CA0CA5258D132A047] - 25/06/2008 - 17:47:00 R--A- . (.Atheros Communications, Inc. - Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller ndis min.) -- C:\WINDOWS\system32\drivers\l1e51x86.sys [36864] O58 - SDL:[MD5.836E0E09CA9869BE7EB39EF2CF3602C7] - 20/12/2010 - 18:08:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys [20952] O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 18:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys [38224] O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 05/08/2004 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032] O58 - SDL:[MD5.B9B1BB146EB9A83DCF0F5635B09D3D43] - 22/10/2010 - 07:23:22 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Driver, Version 260.99.) -- C:\WINDOWS\system32\drivers\nv4_mini.sys [9623680] O58 - SDL:[MD5.07C02C892E8E1A72D6BF35004F0E9C5E] - 19/11/2005 - 02:13:18 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\WINDOWS\system32\drivers\PCASp50.sys [20096] O58 - SDL:[MD5.FDA352035C58A5C0CA6DE13E66C0BF80] - 11/08/2006 - 14:56:36 ---A- . (.Creative Technology Ltd. - PCI/ISA Device Info. Service.) -- C:\WINDOWS\system32\drivers\pfmodnt.sys [8192] O58 - SDL:[MD5.586A0F9139D14729217DFFF1259FFDBD] - 01/02/2005 - 13:27:00 ---A- . (.Conexant Systems, Inc. - PRISM Wireless NDIS 5.1 Driver.) -- C:\WINDOWS\system32\drivers\PRISMA02.sys [348640] O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 05/08/2004 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792] O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 05/08/2004 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032] O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 05/08/2004 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/04/2008 - 17:39:15 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.E5B56569A9F79B70314FEDE6C953641E] - 16/02/2010 - 11:54:19 ---A- . (.Sony Ericsson Mobile Communications - seehcri Driver.) -- C:\WINDOWS\system32\drivers\seehcri.sys [27632] O58 - SDL:[MD5.3F0164FBC0BD1ADBD02DF9759181451A] - 27/04/2010 - 03:25:16 ---A- . (.MCCI - SAMSUNG USB Mobile Device.) -- C:\WINDOWS\system32\drivers\ss_bbus.sys [98432] O58 - SDL:[MD5.2DD4E8844F8F094659DD695A80FED36E] - 27/04/2010 - 03:25:16 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\ss_bcm.sys [12416] O58 - SDL:[MD5.2DD4E8844F8F094659DD695A80FED36E] - 27/04/2010 - 03:25:16 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\ss_bcmnt.sys [12416] O58 - SDL:[MD5.B89D62206034E5FE573C80A24DD55675] - 27/04/2010 - 03:25:16 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Modem Filter.) -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys [14848] O58 - SDL:[MD5.1ED0FCEA586FE2A416EE15196E5631DD] - 27/04/2010 - 03:25:16 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Modem.) -- C:\WINDOWS\system32\drivers\ss_bmdm.sys [123648] O58 - SDL:[MD5.994D2E5378CC337EC7DD73C1E04FCAA4] - 27/04/2010 - 03:25:16 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Logging Device Driver.) -- C:\WINDOWS\system32\drivers\ss_bserd.sys [100224] O58 - SDL:[MD5.F9F4BC8A7EC80F39DE8323D0D1BC85FE] - 27/04/2010 - 03:25:16 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\WINDOWS\system32\drivers\ss_bwh.sys [12288] O58 - SDL:[MD5.F9F4BC8A7EC80F39DE8323D0D1BC85FE] - 27/04/2010 - 03:25:16 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\WINDOWS\system32\drivers\ss_bwhnt.sys [12288] O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 05/08/2004 - 13:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376] O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 05/08/2004 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112] O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097] O58 - SDL:[MD5.B07663A810E861EEBFD0EAC7E82CA62D] - 09/09/2010 - 08:43:20 ---A- . (...) -- C:\WINDOWS\system32\FsUsbExDisk.Sys [36640] O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4912] O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537] O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27916] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146] O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [34000] O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560] O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648] O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424] O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM] -- Ad-Remover O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\AAVMKER4.sys - (.not file.) - avast! Asynchronous Virus Monitor (Aavmker4) .(...) - LEGACY_AAVMKER4 O64 - Services: CurCS - (.not file.) - AMService (AMService) .(...) - LEGACY_AMSERVICE O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWFSBLK.sys - (.not file.) - aswFsBlk (aswFsBlk) .(...) - LEGACY_ASWFSBLK O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWMON2.sys - (.not file.) - avast! Standard Shield Support (aswMon2) .(...) - LEGACY_ASWMON2 O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWRDR.sys - (.not file.) - aswRdr (aswRdr) .(...) - LEGACY_ASWRDR O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWSP.sys - (.not file.) - avast! Self Protection (aswSP) .(...) - LEGACY_ASWSP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWTDI.sys - (.not file.) - avast! Network Shield Support (aswTdi) .(...) - LEGACY_ASWTDI O64 - Services: CurCS - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe - avast! Antivirus (avast! Antivirus) .(.AVAST Software - avast! Service.) - LEGACY_AVAST!_ANTIVIRUS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\BEEP.sys - Beep (Beep) .(...) - LEGACY_BEEP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\CDFS.sys - cdfs (cdfs) .(...) - LEGACY_CDFS O64 - Services: CurCS - (.not file.) - (.not file.) - Application système COM+ (COMSysApp) .(...) - LEGACY_COMSYSAPP O64 - Services: CurCS - C:\Windows\System32\drivers\ctac32k.sys - Creative AC3 Software Decoder (ctac32k) .(.Creative Technology Ltd - Creative AC3 SW Decoder Device Driver (WDM).) - LEGACY_CTAC32K O64 - Services: CurCS - C:\Windows\System32\drivers\ctprxy2k.sys - Creative Proxy Driver (ctprxy2k) .(.Creative Technology Ltd - Creative Proxy Device Driver (WDM).) - LEGACY_CTPRXY2K O64 - Services: CurCS - C:\Windows\System32\drivers\ctsfm2k.sys - Creative SoundFont Management Device Driver (ctsfm2k) .(.Creative Technology Ltd - SoundFont(R) Manager (WDM).) - LEGACY_CTSFM2K O64 - Services: CurCS - (.not file.) - (.not file.) - Lanceur de processus serveur DCOM (DcomLaunch) .(...) - LEGACY_DCOMLAUNCH O64 - Services: CurCS - C:\Windows\System32\drivers\dgderdrv.sys - dgderdrv (dgderdrv) .(.Devguru Co., Ltd - Device Error Recovery SDK(x86).) - LEGACY_DGDERDRV O64 - Services: CurCS - C:\WINDOWS\system32\dgdersvc.exe - Device Error Recovery Service (dgdersvc) .(.Devguru Co., Ltd. - Device Error Recovery SDK(x86).) - LEGACY_DGDERSVC O64 - Services: CurCS - C:\Windows\System32\drivers\dmboot.sys - dmboot (dmboot) .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT O64 - Services: CurCS - C:\Windows\System32\drivers\dmload.sys - dmload (dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD O64 - Services: CurCS - C:\Windows\System32\drivers\emupia2k.sys - E-mu Plug-in Architecture Driver (emupia) .(.Creative Technology Ltd - E-mu Plug-in Architecture Driver (WDM).) - LEGACY_EMUPIA O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FASTFAT.sys - fastfat (fastfat) .(...) - LEGACY_FASTFAT O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FIPS.sys - Fips (Fips) .(...) - LEGACY_FIPS O64 - Services: CurCS - C:\WINDOWS\system32\FsUsbExDisk.sys - FsUsbExDisk (FsUsbExDisk) .(...) - LEGACY_FSUSBEXDISK O64 - Services: CurCS - C:\WINDOWS\system32\FsUsbExService.exe - FsUsbExService (FsUsbExService) .(.Teruten - FsUsbDevice.) - LEGACY_FSUSBEXSERVICE O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC O64 - Services: CurCS - C:\Program Files\Google\Update\GoogleUpdate.exe - Service Google Update (gupdate) (gupdate) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE O64 - Services: CurCS - C:\Windows\System32\drivers\ha10kx2k.sys - Creative Hardware Abstract Layer Driver (ha10kx2k) .(.Creative Technology Ltd - Creative EMU10KX HAL (WDM).) - LEGACY_HA10KX2K O64 - Services: CurCS - C:\Windows\System32\drivers\hap16v2k.sys - Creative P16V HAL Driver (hap16v2k) .(.Creative Technology Ltd - Creative EMU10KX-P16v HAL (WDM).) - LEGACY_HAP16V2K O64 - Services: CurCS - C:\Program Files\Java\jre6\bin\jqs.exe - Java Quick Starter (JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\KSECDD.sys - ksecdd (ksecdd) .(...) - LEGACY_KSECDD O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MNMDD.sys - mnmdd (mnmdd) .(...) - LEGACY_MNMDD O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MOUNTMGR.sys - (.not file.) - mountmgr (mountmgr) .(...) - LEGACY_MOUNTMGR O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MUP.sys - (.not file.) - Mup (Mup) .(...) - LEGACY_MUP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDIS.sys - (.not file.) - Pilote système NDIS (NDIS) .(...) - LEGACY_NDIS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NTFS.sys - ntfs (ntfs) .(...) - LEGACY_NTFS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL O64 - Services: CurCS - C:\WINDOWS\system32\nvsvc32.exe - NVIDIA Display Driver Service (NVSvc) .(.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 260.9.) - LEGACY_NVSVC O64 - Services: CurCS - C:\Windows\System32\drivers\ctoss2k.sys - Creative OS Services Driver (ossrv) .(.Creative Technology Ltd. - Creative OS Services Driver (WDM).) - LEGACY_OSSRV O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARPORT.sys - Parport (Parport) .(...) - LEGACY_PARPORT O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARTMGR.sys - (.not file.) - PartMgr (PartMgr) .(...) - LEGACY_PARTMGR O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARVDM.sys - ParVdm (ParVdm) .(...) - LEGACY_PARVDM O64 - Services: CurCS - C:\WINDOWS\system32\PCANDIS5.sys - PCANDIS5 NDIS Protocol Driver (PCANDIS5) .(.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) - LEGACY_PCANDIS5 O64 - Services: CurCS - (.not file.) - PsSdk31 (PsSdk31) .(...) - LEGACY_PSSDK31 O64 - Services: CurCS - (.not file.) - PsSdkLBF (PsSdkLBF) .(...) - LEGACY_PSSDKLBF O64 - Services: CurCS - (.not file.) - RDPNP (RDPNP) .(...) - LEGACY_RDPNP O64 - Services: CurCS - (.not file.) - (.not file.) - Appel de procédure distante (RPC) (RpcSs) .(...) - LEGACY_RPCSS O64 - Services: CurCS - (.not file.) - (.not file.) - Services Terminal Server (TermService) .(...) - LEGACY_TERMSERVICE O64 - Services: CurCS - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe - TomTomHOMEService (TomTomHOMEService) .(.TomTom - Windows Service for TomTom HOME.) - LEGACY_TOMTOMHOMESERVICE O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\UDFS.sys - Udfs (Udfs) .(...) - LEGACY_UDFS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VGA.sys - vga (vga) .(...) - LEGACY_VGA O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VOLSNAP.sys - VolSnap (VolSnap) .(...) - LEGACY_VOLSNAP ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> [HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> [HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe (.not file.) ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - http://search.live.com O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKCU] {3fcb93ff-8426-49f4-8da6-d0c0000cbb95} - (Searcheo) - http://www.searcheo.fr O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKCU] {6F4A3C0A-1EA0-4D2B-95F0-C9800048DC8C} - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKCU] {943D7FE4-E149-426D-809B-1B18D5C11D66} [DefaultScope] - (Bing) - http://www.bing.com ---\\ Scan Additionnel (O88) Database Version : 3356 - (03/04/2011) [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Adware.AskSBar [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}] =>Adware.AskTBar [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Adware.AskSBar [HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zonemap\Domains\getmirar.com] =>Adware.Mirar [HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zonemap\Domains\mirarsearch.com] =>Adware.Mirar [HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\net-nucleus.com] =>Adware.Mirar C:\Program Files\Crazyloader =>Adware.SPointer ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 13/01/2011 40384 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe SS - | Auto 09/09/2010 95568 | (dgdersvc) . (.Devguru Co., Ltd..) - C:\WINDOWS\system32\dgdersvc.exe SS - | Demand 14/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe SS - | Auto 09/09/2010 217088 | (FsUsbExService) . (.Teruten.) - C:\WINDOWS\system32\FsUsbExService.exe SS - | Auto 04/02/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Auto 17/07/2010 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe SS - | Auto 16/10/2010 156776 | (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe SS - | Auto 24/08/2010 92008 | (TomTomHOMEService) . (.TomTom.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net Run by Alain at 05/04/2011 10:38:06 device: opened successfully user: MBR read successfully Disk trace: called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x8A68E439]<< 1 ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Harddisk0\DR0[0x8A6A8AB8] 3 CLASSPNP[0xB8108FD7] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\00000079[0x8A75B2F8] 5 ACPI[0xB7F7E620] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> [0x8A6DDD98] \Driver\atapi[0x8A6DA930] -> IRP_MJ_CREATE -> 0x8A68E439 kernel: MBR read successfully detected disk devices: \Device\Ide\IdeDeviceP2T0L0-19 -> \??\IDE#DiskMAXTOR_STM3320613AS_____________________MX15____#5&2ea7e938&0&0.0.0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} device not found detected hooks: \Driver\atapi DriverStartIo -> 0x8A68E27F user & kernel MBR OK Warning: possible TDL3 rootkit infection ! ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Alain at 05/04/2011 10:38:09 Use the desktop link 'MBRCheck' to have full report Dump file Name : C:\PhysicalDisk0_MBR.bin End of the scan (1178 lines in 00mn 51s)(0)