Sasuka

Membres

Afficher le profil Afficher son activité

Compteur de contenus
124
Inscription
le 15 avril 2008
Dernière visite
le 17 septembre 2016
Jours gagnés
1

Type de contenu

Toute l’activité

Profils

Forums

Blogs

Tout ce qui a été posté par Sasuka

[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Voilà j'ai rajouter le petit [Résolu] si sa peut aider d'autre personne.
- le 6 octobre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Pas de soucis depuis merci tomtom ^^ Résolu
- le 3 octobre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Recherche: # DelFix v8.4 - Rapport créé le 24/09/2011 à 18:08 # Mis à jour le 16/09/11 à 21h par Xplode # Système d'exploitation : Windows 7 Home Premium (64 bits) [version 6.1.7600] # Nom d'utilisateur : Sasuka - SASUKA-MSI (Administrateur) # Exécuté depuis : C:\Users\Sasuka\Desktop\delfix.exe # Option [Recherche] ~~~~~~ Dossier(s) ~~~~~~ Présent : C:\ZHP Présent : C:\Program Files (x86)\ZHPDiag Présent : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP ~~~~~~ Fichier(s) ~~~~~~ Présent : C:\PhysicalDisk0_MBR.bin Présent : C:\Users\Sasuka\Desktop\ZHPDiag.txt Présent : C:\Users\Sasuka\Desktop\ZHPFixReport.txt Présent : C:\Users\Public\Desktop\MBRCheck.lnk Présent : C:\Users\Public\Desktop\ZHPDiag.lnk Présent : C:\Users\Public\Desktop\ZHPFix.lnk Présent : C:\Users\Public\Desktop\MBRCheck.lnk Présent : C:\Users\Public\Desktop\ZHPDiag.lnk Présent : C:\Users\Public\Desktop\ZHPFix.lnk Présent : C:\Users\Sasuka\Downloads\ZHPDiag2.exe ~~~~~~ Registre ~~~~~~ Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1 ~~~~~~ Autre ~~~~~~ ########## EOF - "C:\DelFixSearch.txt" - [1221 octets] ########## Suppression: # DelFix v8.4 - Rapport créé le 24/09/2011 à 18:09 # Mis à jour le 16/09/11 à 21h par Xplode # Système d'exploitation : Windows 7 Home Premium (64 bits) [version 6.1.7600] # Nom d'utilisateur : Sasuka - SASUKA-MSI (Administrateur) # Exécuté depuis : C:\Users\Sasuka\Desktop\delfix.exe # Option [suppression] ~~~~~~ Dossier(s) ~~~~~~ Supprimé : C:\ZHP Supprimé : C:\Program Files (x86)\ZHPDiag Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP ~~~~~~ Fichier(s) ~~~~~~ Supprimé : C:\PhysicalDisk0_MBR.bin Supprimé : C:\Users\Sasuka\Desktop\ZHPDiag.txt Supprimé : C:\Users\Sasuka\Desktop\ZHPFixReport.txt Supprimé : C:\Users\Public\Desktop\MBRCheck.lnk Supprimé : C:\Users\Public\Desktop\ZHPDiag.lnk Supprimé : C:\Users\Public\Desktop\ZHPFix.lnk Supprimé : C:\Users\Sasuka\Downloads\ZHPDiag2.exe ~~~~~~ Registre ~~~~~~ Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1 ~~~~~~ Autre ~~~~~~ -> Prefetch vidé ########## EOF - "C:\DelFixSuppr.txt" - [1111 octets] ########## Voilà ensuite pour l'opération des anciennes sauvegarde c'est déjà fait tkt pas pour sa j'y avais pensez ^^ CCC : host a cesser de fonctionner je n'ai aucune précision la dessus désolé :s Pour les mise à jour c'est fait aussi ^^. Cordialement
- le 24 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Une fenêtre est apparue au démarrage qui ma dit sa j'ai essayer Deboguer sa a rien changer j'ai donc fermer le programme je voulais juste savoir si sa avait une importance ou non.
- le 24 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Rapport de ZHPFix 1.12.3361 par Nicolas Coolman, Update du 06/09/2011 Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-24-09-2011-12-05-00.txt Run by Sasuka at 24/09/2011 12:05:00 Windows 7 Home Premium Edition, 64-bit (Build 7600) Web site : ZHPFix Fix de rapport ========== Logiciel(s) ========== ABSENT Software Key: Softonic_France Toolbar ========== Clé(s) du Registre ========== ABSENT Key: CLSID BHO: {4daac69c-cba7-45e2-9bc8-1044483d3352} ABSENT Key: CLSID BHO: {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} SUPPRIME Key: HKCU\Software\AppDataLow\Software\Softonic_France SUPPRIME Key: HKCU\Software\Norton SUPPRIME Key: HKCU\Software\Spointer ABSENT Key: HKLM\Software\Norton ABSENT Key: HKLM\Software\Softonic_France SUPPRIME Key**: HKLM\Software\Symantec ABSENT Key: HKLM\Software\mcafeeupdater SUPPRIME CLSID MPSK: {cc930afb-48fb-11df-9709-806e6f6e6963} SUPPRIME Key: HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2C8574B5-6935-4FCE-860E-F4E8602378FF} SUPPRIME Key: HKLM\Software\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{37F4A335-D085-423e-A425-0370799166FB} SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4daac69c-cba7-45e2-9bc8-1044483d3352} SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4daac69c-cba7-45e2-9bc8-1044483d3352} SUPPRIME Key: HKLM\Software\WOW6432Node\Classes\CLSID\{4daac69c-cba7-45e2-9bc8-1044483d3352} SUPPRIME Key: HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4daac69c-cba7-45e2-9bc8-1044483d3352} SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} SUPPRIME Key: HKLM\Software\WOW6432Node\Classes\CLSID\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} SUPPRIME Key: HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} SUPPRIME Key: HKLM\Software\WOW6432Node\Softonic_France ========== Valeur(s) du Registre ========== SUPPRIME URLSearchHook: {4daac69c-cba7-45e2-9bc8-1044483d3352} ABSENT Valeur Standard Profile: FirewallRaz : ABSENT Valeur Domain Profile: FirewallRaz : SUPPRIME FirewallRaz (Domain) : NetPres-In-TCP-NoScope SUPPRIME FirewallRaz (Domain) : NetPres-Out-TCP-NoScope SUPPRIME FirewallRaz (None) : NetPres-WSD-In-UDP SUPPRIME FirewallRaz (None) : NetPres-WSD-Out-UDP SUPPRIME FirewallRaz (Public) : NetPres-In-TCP SUPPRIME FirewallRaz (Public) : NetPres-Out-TCP SUPPRIME FirewallRaz (None) : {41147AEE-224F-4D12-A295-3DF452643A66} ========== Elément(s) de donnée du Registre ========== REMPLACE Value NoActiveDesktopChanges : Good (0) - Bad (1) SUPPRIME R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL ========== Dossier(s) ========== SUPPRIME Folder: C:\Users\Sasuka\AppData\Roaming\Mozilla\Firefox\Profiles\y4axo284.default\extensions\{364d4e0c-543f-4b85-abe3-19551139da4f} SUPPRIME Folder: C:\ProgramData\Norton SUPPRIME Folder: C:\ProgramData\NortonInstaller SUPPRIME Folder: C:\Users\Sasuka\AppData\Roaming\moovida-1 SUPPRIME Folder: C:\Users\Sasuka\AppData\Local\FSP SUPPRIME Folder: C:\Users\Sasuka\AppData\Local\moovida Air SUPPRIME Folder: C:\Program Files (x86)\Fluendo SUPPRIME Folder: C:\Program Files (x86)\OfferBox SUPPRIME Folder: C:\Program Files (x86)\Softonic_France SUPPRIME Temporaires Windows: : 79 SUPPRIME Flash Cookies: 306 ========== Fichier(s) ========== SUPPRIME File: c:\program files (x86)\softonic_france\tbsoft.dll ABSENT File: c:\program files (x86)\softonic_france\tbsoft.dll SUPPRIME File: c:\users\sasuka\desktop\gotoassiststarter - raccourci.lnk ABSENT File: c:\users\sasuka\downloads\gotoassiststarter.exe SUPPRIME Temporaires Windows: : 37 SUPPRIME Flash Cookies: 150 ========== Récapitulatif ========== 21 : Clé(s) du Registre 10 : Valeur(s) du Registre 2 : Elément(s) de donnée du Registre 11 : Dossier(s) 6 : Fichier(s) 1 : Logiciel(s) End of clean in 00mn 10s ========== Chemin de fichier rapport ========== C:\ZHP\ZHPFix[R1].txt - 24/09/2011 12:05:00 [4192] Par catalyst control center: host a cesser de fonctionner c'est un soucis ?
- le 24 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Je fait sa et je te link tous sa a plus tard
- le 24 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Rapport de ZHPDiag v1.28.1350 par Nicolas Coolman, Update du 20/09/2011 Run by Sasuka at 9/24/2011 12:00:24 AM Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v8.0.7600.16385 MFIE: Mozilla Firefox v3.6.12 (fr) (Defaut) ---\\ Windows Product Information Windows 7 Home Premium Edition, 64-bit (Build 7600) Windows Server License Manager Script : OK ~ Windows® 7, OEM_SLP channel System Locked Preinstallation (OEM_SLP) : OK Windows ID Activation : OK ~ Windows Partial Key : M8X2Q Windows License : OK ~ Windows Remaining Initializations Number : 1 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ System Information ~ Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 3885.5 MB (52% free) System Restore: Activé (Enable) System drive C: has 168 GB (61%) free of 273 GB ---\\ Logged in mode ~ Computer Name: SASUKA-MSI ~ User Name: Sasuka ~ All Users Names: Sasuka, HomeGroupUser$, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Environnement Variables ~ System Unit : C:\ ~ %AppData% : C:\Users\Sasuka\AppData\Roaming\ ~ %Desktop% : C:\Users\Sasuka\Desktop\ ~ %Favorites% : C:\Users\Sasuka\Favorites\ ~ %LocalAppData% : C:\Users\Sasuka\AppData\Local\ ~ %StartMenu% : C:\Users\Sasuka\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\windows\ ~ %System% : C:\windows\system32\ ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 168 Go of 273 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 41 Go of 180 Go) E:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK ~ Scan Security Center in 00mn AMs ---\\ Recherche particulière de fichiers génériques [MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - (.Microsoft Corporation - Explorateur Windows.) (.8/4/2010 - 7:34:59 AM.) -- C:\windows\Explorer.exe [2870272] [MD5.DD81D91FF3B0763C392422865C9AC12E] - (....) (.7/14/2009 - 2:39:31 AM.) -- C:\windows\system32\rundll32.exe [45568] [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.7/14/2009 - 2:39:52 AM.) -- C:\windows\system32\Wininit.exe [129024] [MD5.09E42C1CE2199E0442E3531A599983A8] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.10/14/2010 - 6:36:17 AM.) -- C:\windows\system32\wininet.dll [1192960] [MD5.DA3E2A6FA9660CC75B471530CE88453A] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.8/4/2010 - 7:24:40 AM.) -- C:\windows\system32\Winlogon.exe [389632] [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.7/14/2009 - 2:52:21 AM.) -- C:\windows\system32\drivers\atapi.sys [24128] [MD5.356698A13C4630D5B31C37378D469196] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.7/14/2009 - 2:48:27 AM.) -- C:\windows\system32\drivers\ntfs.sys [1659984] [MD5.75341574F21E766748732BDF530C74BD] - (.Microsoft Corporation - Bibliothèque de licences.) (.7/14/2009 - 2:41:54 AM.) -- C:\windows\system32\sppcomapi.dll [231936] [MD5.F2521C3173E6027B3FBD5E44272BDF6C] - (....) (.3/16/2010 - 7:09:54 PM.) -- C:\windows\system32\fr-FR\user32.dll.mui [19968] ~ Scan Generic Processes in 00mn AMs ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 3/23 ~ Mes musiques (My Musics) : 10/37 ~ Mes Videos (My Videos) : 2/11 ~ Mes Favoris (My Favorites) : 2/18 ~ Mes Documents (My Documents) : 6/435 ~ Mon Bureau (My Desktop) : 5/334 ~ Menu demarrer (Programs) : 6/27 ~ Scan Hidden Files in 01mn AMs ---\\ Processus lancés [MD5.D1930CA970D4250D891F432419E3D6C9] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904] [PID.3868] [MD5.569E547273C25B019054A12A40400ECE] - (.OpenOffice.org - OpenOffice.org 3.2.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [11318784] [PID.3296] [MD5.4B723F33D7331F20E06F3A2FD76EC1D5] - (.OpenOffice.org - OpenOffice.org 3.2.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [11312128] [PID.3308] [MD5.A3A9163E10B5EF0B9D8573FF25EBBACB] - (.Micro-Star International Co., Ltd. - Pas de description.) -- C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe [2396160] [PID.1552] [MD5.A7810B302294793DE88542AAE177D1B1] - (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424] [PID.1444] [MD5.F400694D7D2785F60133C20F7F2F4F7A] - (.ArcSoft Inc. - ArcSoft Connect Notifier.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac [309824] [PID.3260] [MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [209153] [PID.1312] [MD5.407811B64B588FE80FA2E27E783B41EA] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421160] [PID.1240] [MD5.93DB1FF92B03D24738A71E6E4992DFD3] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248552] [PID.1456] [MD5.E1AB298BAFC8ECCA8C322A29C5FDC68C] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [912344] [PID.5036] [MD5.6F7ECB12B6782A2122DEBE9EC9DF2C5D] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [16856] [PID.2336] [MD5.DB1A23EE7DD2E5E04E7DE071A6BEF699] - (.Sun Microsystems, Inc. - Java Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [501480] [PID.4292] [MD5.DB72AE822202CDF746DB91ECC7AE0AB1] - (...) -- C:\Users\Sasuka\Downloads\LeagueofLegends.exe [2307072] [PID.4932] [MD5.C7144387E236687F8FB3F26FC845A822] - (.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3077528] [PID.5956] [MD5.B26A2F3CD6459548DB6891D138080876] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [2121216] [PID.7128] [MD5.9015BC03F62940527EC92D45EE89E46F] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [108289] [PID.] [MD5.ADC420616C501B45D26C0FD3EF1E54E4] - (.ArcSoft Inc. - ArcSoft Connect Service.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152] [PID.] [MD5.B8720A787C1223492E6F319465E996CE] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [185089] [PID.] [MD5.70D7BE78061126DD0C3ACCDB7E129017] - (.Apple Inc. - Apple Mobile Device Service.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [144672] [PID.] [MD5.673CF4F6BB1FBE09331B526802FBB892] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe [345376] [PID.] [MD5.7485FBCEF9136F530953575E2977859D] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [268824] [PID.] [MD5.71C6748EE8DE938532057EF10B4B7E44] - (.Micro-Star International Co., Ltd. - MSI SCM Service.) -- C:\Program Files (x86)\System Control Manager\MSIService.exe [160768] [PID.] [MD5.660BF3255A1EB18ED803FD2FBA6AE400] - (.Intel Corporation - RAID Monitor.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [354840] [PID.] [MD5.765F2DD351BA064F657751D8D75E58C0] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2320920] [PID.] ~ Scan Processes Running in 01mn AMs ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) M2 - MFEP: prefs.js [sasuka - y4axo284.default\{364d4e0c-543f-4b85-abe3-19551139da4f}] [] Softonic_France Toolbar v2.7.1.3 (.Conduit Ltd..) M2 - MFEP: prefs.js [sasuka - y4axo284.default\{7a88e876-d715-4503-a7bf-a8eba13ca3f9}] [] SocialPlus v2.7.1.3 (.SocialPlus.) P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npnul32.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin6.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin7.dll P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\x86\nphardwaredetection.dll P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll ~ Scan Firefox Browser in 00mn AMs ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search Microsoft.com R0 - HKUS\S-1-5-21-1140207308-3924336767-164626575-1000\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Msi | MSN R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKUS\S-1-5-21-1140207308-3924336767-164626575-1000\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll R3 - URLSearchHook: Softonic_France Toolbar [64Bits] - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Conduit Ltd. - Conduit Toolbar.) (5, 7, 2, 2) -- C:\Program Files (x86)\Softonic_France\tbSoft.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 ~ Scan IE Browser in 00mn AMs ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Scan Proxy management in 00mn AMs ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: VMApplet=C:\windows\system32\SystemPropertiesPerformance.exe ~ Scan Keys in 00mn AMs ---\\ Redirection du fichier Hosts (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Scan Hosts File in 00mn AMs ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Softonic_France Toolbar [64Bits] - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\Softonic_France\tbSoft.dll O2 - BHO: Search Helper [64Bits] - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\ O2 - BHO: Bing Bar BHO [64Bits] - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (.Microsoft Corporation - Bing Bar.) -- C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll O2 - BHO: Java Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: OfferBox [64Bits] - {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} . (...) -- C:\Program Files (x86)\OfferBox\OfferBoxBHO.dll (.not file.) ~ Scan BHO in 00mn AMs ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe O4 - HKLM\..\Run: [bTMTrayAgent] . (.Motorola, Inc. - Bluetooth Shell Extension.) -- C:\Program Files\Motorola\Bluetooth\btmshell.dll O4 - HKLM\..\Run: [fspuip] . (.Sentelic Corporation - Finger-sensing Pad User Interactive Program.) -- C:\Program Files\FSP\fspuip.exe O4 - HKLM\..\Run: [sMSERIAL] . (.Motorola Inc. - SM56 Modem Helper.) -- C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe O4 - HKLM\..\Run: [iAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [igfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\windows\system32\igfxpers.exe O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O4 - HKCU\..\Run: [Pando Media Booster] . (.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe O4 - HKLM\..\Wow6432Node\Run: [MGSysCtrl] . (.Micro-Star International Co., Ltd. - Pas de description.) -- C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe O4 - HKLM\..\Wow6432Node\Run: [ArcSoft Connection Service] . (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\Wow6432Node\Run: [startCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-21-1140207308-3924336767-164626575-1000\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O4 - HKUS\S-1-5-21-1140207308-3924336767-164626575-1000\..\Run: [Pando Media Booster] . (.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ~ Scan Application in 00mn AMs ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\Sasuka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Sasuka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Sasuka\Desktop\GoToAssistStarter - Raccourci.lnk . (...) -- C:\Users\Sasuka\Downloads\GoToAssistStarter.exe (.not file.) O4 - Global Startup: C:\Users\Sasuka\Desktop\Teamspeak 2 RC2.lnk . (.Dominating Bytes Design.) -- C:\Program Files (x86)\Teamspeak2_RC2\TeamSpeak.exe O4 - Global Startup: C:\Users\Sasuka\Desktop\TeamSpeak 3 Client.lnk . (.TeamSpeak Systems GmbH.) -- C:\Users\Sasuka\AppData\Local\TeamSpeak 3 Client\ts3client_win32.exe O4 - Global Startup: C:\Users\Sasuka\Desktop\thousand_foot_krutch_-_phenomenon(2-59) - Raccourci.lnk . (...) -- C:\Users\Sasuka\Downloads\thousand_foot_krutch_-_phenomenon(2-59).mp3 O4 - Global Startup: C:\Users\Sasuka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Sasuka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ~ Scan Global Startup in 00mn AMs ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: E&xport to Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~1\Office12\EXCEL.exe ~ Scan IE Menu Contextuel in 00mn AMs ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\windows\system32\mswsock.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\windows\system32\winrnr.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\windows\system32\napinsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\windows\system32\wshbth.dll O10 - WLSP:\000000000008\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL O10 - WLSP:\000000000010\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL ~ Scan Winsock in 00mn AMs ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{15A16F2E-0F64-4A70-B88E-D0E646664B5A}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{54716EBA-429D-433D-A7BB-F005439613D5}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{15A16F2E-0F64-4A70-B88E-D0E646664B5A}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{54716EBA-429D-433D-A7BB-F005439613D5}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{15A16F2E-0F64-4A70-B88E-D0E646664B5A}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{54716EBA-429D-433D-A7BB-F005439613D5}: DhcpNameServer = 192.168.1.1 ~ Scan Domain in 00mn AMs ---\\ Protocole additionnel (O18) O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\windows\System32\itss.dll O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\windows\system32\inetcomm.dll O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\windows\System32\itss.dll O18 - Handler: ms-itss [64Bits] - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\windows\system32\mscoree.dll O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\windows\system32\mscoree.dll O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\windows\system32\mscoree.dll O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL ~ Scan Protocole Additionnel in 00mn AMs ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\windows\system32\igfxdev.dll ~ Scan Winlogon in 00mn AMs ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ Scan SSODL in 00mn AMs ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) . (.LSI Corporation - LSI Soft Modem Call Progress Service.) - C:\Program Files\LSI SoftModem\agr64svc.exe O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\windows\system32\atiesrxx.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - Apple Mobile Device Service.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bluetooth OBEX Service (Bluetooth OBEX Service) . (.Motorola, Inc. - Bluetooth OBEX Service.) - C:\Program Files\Motorola\Bluetooth\obexsrv.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) . (.Intel® Corporation - Intel® PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: Intel® Management and Security Application Local Management Service (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: Micro Star SCM (Micro Star SCM) . (.Micro-Star International Co., Ltd. - MSI SCM Service.) - C:\Program Files (x86)\System Control Manager\MSIService.exe O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) . (.Intel® Corporation - Intel® PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: Intel® Management & Security Application User Notification Service (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe ~ Scan Services in 00mn AMs ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Scan Desktop Component in 00mn AMs ---\\ Tâches planifiées en automatique (O39) [MD5.187E0D2AB859AD03393DDD731076BE81] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe ~ Scan Scheduled Task in 04mn AMs ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: C:\windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\windows\system32\drivers\afd.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\windows\system32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\windows\system32\DRIVERS\cdrom.sys O41 - Driver: C:\windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\windows\system32\Drivers\dfsc.sys O41 - Driver: C:\windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\windows\system32\drivers\discache.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\windows\system32\DRIVERS\mssmbios.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\windows\system32\DRIVERS\netbios.sys O41 - Driver: C:\windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\windows\system32\DRIVERS\netbt.sys O41 - Driver: C:\windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\windows\system32\drivers\nsiproxy.sys O41 - Driver: C:\windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\windows\system32\DRIVERS\pacer.sys O41 - Driver: C:\windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\windows\system32\DRIVERS\rdbss.sys O41 - Driver: C:\windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\windows\system32\DRIVERS\RDPCDD.sys O41 - Driver: C:\windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\windows\system32\drivers\rdpencdd.sys O41 - Driver: C:\windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\windows\system32\drivers\rdprefmp.sys O41 - Driver: C:\windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\windows\system32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\windows\system32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\windows\system32\drivers\vga.sys O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\windows\system32\DRIVERS\vwififlt.sys O41 - Driver: C:\windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\windows\system32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\windows\system32\DRIVERS\wfplwf.sys ~ Scan Drivers in 00mn AMs ---\\ Logiciels installés (O42) O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM] -- {AC1579AA-243A-1CB6-78A8-2796BF5FF8C5} O42 - Logiciel: Actualização do Microsoft Office Excel 2007 Help (KB963678) - (.Microsoft.) [HKLM] -- {90120000-0016-0816-0000-0000000FF1CE}_HOMESTUDENTR_{CCDE3C71-5F35-477F-BA90-1A399C91C10C} O42 - Logiciel: Actualização do Microsoft Office Powerpoint 2007 Help (KB963669) - (.Microsoft.) [HKLM] -- {90120000-0018-0816-0000-0000000FF1CE}_HOMESTUDENTR_{CF0BC77F-1B63-44BF-BCFE-3A8CBB9077D1} O42 - Logiciel: Actualização do Microsoft Office Word 2007 Help (KB963665) - (.Microsoft.) [HKLM] -- {90120000-001B-0816-0000-0000000FF1CE}_HOMESTUDENTR_{A1A8C49E-BB40-4852-853E-B5A1F6BB2A3C} O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: ArcSoft Magic-i Visual Effects 2 - (.ArcSoft.) [HKLM] -- {8E90189A-A5D4-4C0E-A908-06C4236F98EE} O42 - Logiciel: ArcSoft Print Creations - (.ArcSoft.) [HKLM] -- {C5D7039E-0803-4FE8-976D-156DE1147E4F} O42 - Logiciel: ArcSoft Print Creations - Album Page - (.ArcSoft.) [HKLM] -- {E6B4117F-AC59-4B13-9274-EB136E8897EE} O42 - Logiciel: ArcSoft Print Creations - Brochures & Flyers - (.ArcSoft.) [HKLM] -- {01A1A019-E1D8-482A-BE17-5E118D17C0A0} O42 - Logiciel: ArcSoft Print Creations - Funhouse - (.ArcSoft.) [HKLM] -- {9591C049-5CAE-4E89-A8D9-191F1899628B} O42 - Logiciel: ArcSoft Print Creations - Funhouse II - (.ArcSoft.) [HKLM] -- {3CE47E6B-AE27-4E40-AC54-329EED96B933} O42 - Logiciel: ArcSoft Print Creations - Greeting Card - (.ArcSoft.) [HKLM] -- {F04F9557-81A9-4293-BC49-2C216FA325A7} O42 - Logiciel: ArcSoft Print Creations - Photo Book - (.ArcSoft.) [HKLM] -- {56589DFE-0C29-4DFE-8E42-887B771ECD23} O42 - Logiciel: ArcSoft Print Creations - Photo Calendar - (.ArcSoft.) [HKLM] -- {CA9ED5E4-1548-485B-A293-417840060158} O42 - Logiciel: ArcSoft Print Creations - Photo Prints - (.ArcSoft.) [HKLM] -- {95F875CC-1B85-43E6-B3E0-13EA04F3D995} O42 - Logiciel: ArcSoft Print Creations - Poster Creator - (.ArcSoft.) [HKLM] -- {5D1C82E7-7EC0-4404-A8AD-36C3B444BC34} O42 - Logiciel: ArcSoft Print Creations - Scrapbook - (.ArcSoft.) [HKLM] -- {B0D83FCD-9D42-43ED-8315-250326AADA02} O42 - Logiciel: ArcSoft Print Creations - Slimline Card - (.ArcSoft.) [HKLM] -- {007B37D9-0C45-4202-834B-DD5FAAE99D63} O42 - Logiciel: ArcSoft WebCam Companion 3 - (.ArcSoft.) [HKLM] -- {25478065-4CB1-448C-80E4-8C4529017EE3} O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop O42 - Logiciel: Barre d'outils Bing - (.Microsoft Corporation.) [HKLM] -- {08234a0d-cf39-4dca-99f0-0c5cb496da81} O42 - Logiciel: Diablo II - (.Blizzard Entertainment.) [HKLM] -- Diablo II O42 - Logiciel: ENE CIR Receiver Driver - (.ENE.) [HKLM] -- 5F4DD0919B4763856B77AD385DEEEFCDF01784A8 O42 - Logiciel: FINAL FANTASY XIV Beta Version - (.SQUARE ENIX CO., LTD..) [HKLM] -- {9C1BB613-F398-49B7-B346-5DEBA8ABBF38} O42 - Logiciel: Finger Sensing Pad Driver - (.Sentelic.) [HKLM] -- {E86906FF-C63D-4EAF-ACE7-5F8D55FBEA9A} O42 - Logiciel: Intel PROSet Wireless - (.Pas de propriétaire.) [HKLM] -- ProInst O42 - Logiciel: Intel® Management Engine Components - (.Intel Corporation.) [HKLM] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} O42 - Logiciel: Intel® Turbo Boost Technology Driver - (.Intel Corporation.) [HKLM] -- {D6C630BF-8DBB-4042-8562-DC9A52CB6E7E} O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E} O42 - Logiciel: LSI HDA Modem - (.LSI Corporation.) [HKLM] -- LSI Soft Modem O42 - Logiciel: Logiciel Intel® PROSet/Wireless WiFi - (.Intel Corporation.) [HKLM] -- {B90E5EBE-DF18-44D5-9D18-689ADEE9DA6C} O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-0410-0000-0000000FF1CE}_HOMESTUDENTR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-0816-0000-0000000FF1CE}_HOMESTUDENTR_{C2EC91A8-CC39-45F7-9E46-62B85ADF9DF5} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-0410-0000-0000000FF1CE}_HOMESTUDENTR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-0816-0000-0000000FF1CE}_HOMESTUDENTR_{C2EC91A8-CC39-45F7-9E46-62B85ADF9DF5} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-0410-0000-0000000FF1CE}_HOMESTUDENTR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-0816-0000-0000000FF1CE}_HOMESTUDENTR_{C2EC91A8-CC39-45F7-9E46-62B85ADF9DF5} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{E64BA721-2310-4B55-BE5A-2925F9706192} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-002A-040C-1000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-002A-0410-1000-0000000FF1CE}_HOMESTUDENTR_{0A75DA12-55CB-4DE5-8B6A-74D97847204E} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-002A-0816-1000-0000000FF1CE}_HOMESTUDENTR_{A8523DA4-5563-4F0E-BD9D-4E4CC3CF7239} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-002A-0C0A-1000-0000000FF1CE}_HOMESTUDENTR_{6113C11D-BACA-4D8E-8002-03C8D06FD5E6} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-0410-0000-0000000FF1CE}_HOMESTUDENTR_{0A75DA12-55CB-4DE5-8B6A-74D97847204E} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-0816-0000-0000000FF1CE}_HOMESTUDENTR_{A8523DA4-5563-4F0E-BD9D-4E4CC3CF7239} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{6113C11D-BACA-4D8E-8002-03C8D06FD5E6} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-0410-0000-0000000FF1CE}_HOMESTUDENTR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-0816-0000-0000000FF1CE}_HOMESTUDENTR_{C2EC91A8-CC39-45F7-9E46-62B85ADF9DF5} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{91A7F72A-3273-4C1E-8BE0-BC9DD0D9345C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} O42 - Logiciel: Microsoft Office Excel 2007 Help - Aggiornamento (KB963678) - (.Microsoft.) [HKLM] -- {90120000-0016-0410-0000-0000000FF1CE}_HOMESTUDENTR_{9F57BDED-B51B-4D2F-B360-5B4EFAAF0F1A} O42 - Logiciel: Microsoft Office Excel 2007 Help Actualización (KB963678) - (.Microsoft.) [HKLM] -- {90120000-0016-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{59E09C3D-4878-47D9-87DB-6D0018026889} O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- HOMESTUDENTR O42 - Logiciel: Microsoft Office Powerpoint 2007 Help - Aggiornamento (KB963669) - (.Microsoft.) [HKLM] -- {90120000-0018-0410-0000-0000000FF1CE}_HOMESTUDENTR_{C76C02F1-B07F-4974-876A-A18DEC9887C8} O42 - Logiciel: Microsoft Office Powerpoint 2007 Help Actualización (KB963669) - (.Microsoft.) [HKLM] -- {90120000-0018-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{F318245D-05AE-4681-A749-A036CE44AF29} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{14809F99-C601-4D4A-9391-F1E8FAA964C5} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0403-0000-0000000FF1CE}_HOMESTUDENTR_{4B47C31E-46B0-462B-BEE4-DC383B6A1F2A} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0410-0000-0000000FF1CE}_HOMESTUDENTR_{322296D4-1EAE-4030-9FBC-D2787EB25FA2} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0416-0000-0000000FF1CE}_HOMESTUDENTR_{75EBE365-7FC5-4720-A7D3-804BF550D1BC} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0816-0000-0000000FF1CE}_HOMESTUDENTR_{C312E1CD-EC19-4270-A072-F36F634DFF79} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9} O42 - Logiciel: Microsoft Office Word 2007 Help - Aggiornamento (KB963665) - (.Microsoft.) [HKLM] -- {90120000-001B-0410-0000-0000000FF1CE}_HOMESTUDENTR_{E5B82DB3-DD7D-4C45-BC5E-09864B26F9BC} O42 - Logiciel: Microsoft Office Word 2007 Help Actualización (KB963665) - (.Microsoft.) [HKLM] -- {90120000-001B-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{377BA42A-1C84-45D6-94B8-6D00887D172D} O42 - Logiciel: Motorola Bluetooth - (.Motorola, Inc..) [HKLM] -- Motorola Bluetooth_is1 O42 - Logiciel: Motorola SM56 Data Fax Modem - (.Motorola Inc.) [HKLM] -- SMSERIAL O42 - Logiciel: Mozilla Firefox (3.6.12) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.12) O42 - Logiciel: Mumble and Murmur - (.Mumble.) [HKLM] -- Mumble O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} O42 - Logiciel: Realtek HDMI Audio Driver for ATI - (.Realtek Semiconductor Corp..) [HKLM] -- {5449FB4F-1802-4D5B-A6D8-087DB1142147} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM] -- {96AE7E41-E34E-47D0-AC07-1091A8127911} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5C497F0B-2061-4CC9-A61C-6B45B867354D} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2289158) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{210B16C0-CEBD-4DE9-B474-04A7E8735E16} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2344875) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FC5C4C1-D7AE-44C3-94B7-6424FC3E752F} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{536FB502-775F-4494-BACE-C02CC90B7A5B} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2345035) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{B23002DD-34EC-4988-B810-A5E2A0BF04F1} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46} O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer (KB2413381) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3DED0A62-44C8-4E00-A785-5212F297A9D9} O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Softonic_France Toolbar - (.Softonic_France.) [HKLM] -- Softonic_France Toolbar O42 - Logiciel: StarCraft II - (.Blizzard Entertainment.) [HKLM] -- StarCraft II O42 - Logiciel: System Control Manager - (.Micro-Star International Co., Ltd..) [HKLM] -- {ED9C5D25-55DF-48D8-9328-2AC0D75DE5D8} O42 - Logiciel: TeamSpeak 2 RC2 - (.Dominating Bytes Design.) [HKLM] -- Teamspeak 2 RC2_is1 O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKCU] -- TeamSpeak 3 Client O42 - Logiciel: Update for 2007 Microsoft Office System (KB2284654) - (.Microsoft.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{FB166E7C-8AA6-48C8-B726-1F25BEE7825A} O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for Microsoft Office 2007 Help for Common Features (KB963673) - (.Microsoft.) [HKLM] -- {90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42} O42 - Logiciel: Update for Microsoft Office Excel 2007 Help (KB963678) - (.Microsoft.) [HKLM] -- {90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9} O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{329050A9-EF80-40F9-B633-74508F54C1FF} O42 - Logiciel: Update for Microsoft Office OneNote 2007 Help (KB963670) - (.Microsoft.) [HKLM] -- {90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245} O42 - Logiciel: Update for Microsoft Office Powerpoint 2007 Help (KB963669) - (.Microsoft.) [HKLM] -- {90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876} O42 - Logiciel: Update for Microsoft Office Script Editor Help (KB963671) - (.Microsoft.) [HKLM] -- {90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C} O42 - Logiciel: Update for Microsoft Office Word 2007 Help (KB963665) - (.Microsoft.) [HKLM] -- {90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726} O42 - Logiciel: VLC media player 1.1.4 - (.VideoLAN.) [HKLM] -- VLC media player O42 - Logiciel: WinRAR archiver - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite O42 - Logiciel: World of Warcraft - (.Blizzard Entertainment.) [HKLM] -- World of Warcraft ---\\ HKCU & HKLM Software Keys [HKCU\Software\AMD] [HKCU\Software\ATI] [HKCU\Software\AVC] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software\Monitored] [HKCU\Software\AppDataLow\Software\Softonic_France] [HKCU\Software\AppDataLow\Software\settings] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\ArcSoft] [HKCU\Software\Avira] [HKCU\Software\Battle.net] [HKCU\Software\Blizzard Entertainment] [HKCU\Software\Bugsplat] [HKCU\Software\Citrix] [HKCU\Software\ClassesB] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Google] [HKCU\Software\Hewlett-Packard] [HKCU\Software\IM Providers] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\Motorola] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mumble] [HKCU\Software\Netscape] [HKCU\Software\Norton] [HKCU\Software\ODBC] [HKCU\Software\OpenOffice.org] [HKCU\Software\Pando Networks] [HKCU\Software\Policies] [HKCU\Software\Razer] [HKCU\Software\Realtek] [HKCU\Software\Softonic] [HKCU\Software\Spointer] [HKCU\Software\Trolltech] [HKCU\Software\WinRAR] [HKCU\Software\Wow6432Node] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\cybelsoft] [HKLM\Software\AMD] [HKLM\Software\ATI Technologies] [HKLM\Software\ATI] [HKLM\Software\AVC] [HKLM\Software\Adobe] [HKLM\Software\Agere] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\ArcSoft] [HKLM\Software\Avira] [HKLM\Software\Blizzard Entertainment] [HKLM\Software\Citrix] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Digital River] [HKLM\Software\GEAR Software] [HKLM\Software\Google] [HKLM\Software\InstallShield] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\LSI] [HKLM\Software\MSI] [HKLM\Software\Macromedia] [HKLM\Software\Macrovision] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\Micro-Star International Co., Ltd.] [HKLM\Software\Motorola] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\Norton] [HKLM\Software\ODBC] [HKLM\Software\OpenOffice.org] [HKLM\Software\Pando Networks] [HKLM\Software\Policies] [HKLM\Software\RTLSetup] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SRS Labs] [HKLM\Software\Softonic_France] [HKLM\Software\Sonic] [HKLM\Software\SquareEnix] [HKLM\Software\Sun Microsystems] [HKLM\Software\Symantec] [HKLM\Software\TeamSpeak 3 Client] [HKLM\Software\VideoLAN] [HKLM\Software\Windows] [HKLM\Software\Wow6432Node] [HKLM\Software\X-AVCSD] [HKLM\Software\cybelsoft] [HKLM\Software\mcafeeupdater] [HKLM\Software\mozilla.org] ~ Scan Softwares in 00mn AMs ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 3/16/2010 - 9:28:36 PM - [23328965] ----D- C:\Program Files\ATI O43 - CFD: 8/22/2010 - 4:12:32 PM - [28] ----D- C:\Program Files\ATI Technologies O43 - CFD: 9/17/2010 - 2:15:42 PM - [195930] ----D- C:\Program Files\Bonjour O43 - CFD: 9/17/2010 - 2:15:56 PM - [103477012] ----D- C:\Program Files\Common Files O43 - CFD: 3/16/2010 - 9:39:08 PM - [925184] ----D- C:\Program Files\DIFX O43 - CFD: 8/8/2010 - 1:16:56 AM - [90257428] ----D- C:\Program Files\DVD Maker O43 - CFD: 4/16/2010 - 4:00:28 AM - [84118964] ----D- C:\Program Files\FSP O43 - CFD: 8/3/2010 - 9:49:02 PM - [93689388] ----D- C:\Program Files\Intel O43 - CFD: 10/15/2010 - 12:32:34 PM - [5180489] ----D- C:\Program Files\Internet Explorer O43 - CFD: 10/1/2010 - 7:28:48 PM - [1938027] ----D- C:\Program Files\iPod O43 - CFD: 10/1/2010 - 7:29:18 PM - [2345960] ----D- C:\Program Files\iTunes O43 - CFD: 3/16/2010 - 9:35:44 PM - [58708] ----D- C:\Program Files\LSI SoftModem O43 - CFD: 8/22/2010 - 3:48:48 PM - [8220677] ----D- C:\Program Files\ma-config.com O43 - CFD: 3/16/2010 - 8:03:06 PM - [149236786] ----D- C:\Program Files\Microsoft Games O43 - CFD: 3/16/2010 - 9:43:00 PM - [1142198] ----D- C:\Program Files\Microsoft Office O43 - CFD: 3/16/2010 - 10:32:48 PM - [150846972] ----D- C:\Program Files\Motorola O43 - CFD: 7/14/2009 - 7:32:40 AM - [25757] ----D- C:\Program Files\MSBuild O43 - CFD: 3/16/2010 - 9:31:40 PM - [14584896] ----D- C:\Program Files\Realtek O43 - CFD: 7/14/2009 - 7:32:40 AM - [36253865] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 3/16/2010 - 9:52:58 PM - [2107717] ----D- C:\Program Files\SRS Labs O43 - CFD: 7/14/2009 - 7:09:28 AM - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 8/8/2010 - 1:19:24 AM - [4039168] ----D- C:\Program Files\Windows Defender O43 - CFD: 8/8/2010 - 1:19:24 AM - [9224824] ----D- C:\Program Files\Windows Journal O43 - CFD: 10/24/2010 - 2:16:12 PM - [43896] ----D- C:\Program Files\Windows Live O43 - CFD: 8/8/2010 - 1:19:26 AM - [6667776] ----D- C:\Program Files\Windows Mail O43 - CFD: 10/15/2010 - 12:32:32 PM - [7687085] ----D- C:\Program Files\Windows Media Player O43 - CFD: 7/14/2009 - 7:32:40 AM - [12627124] ----D- C:\Program Files\Windows NT O43 - CFD: 8/8/2010 - 1:19:24 AM - [5516568] ----D- C:\Program Files\Windows Photo Viewer O43 - CFD: 7/14/2009 - 7:32:40 AM - [235008] ----D- C:\Program Files\Windows Portable Devices O43 - CFD: 8/8/2010 - 1:19:26 AM - [7726600] ----D- C:\Program Files\Windows Sidebar O43 - CFD: 9/17/2010 - 2:15:56 PM - [5105831] ----D- C:\Program Files\Common Files\Apple O43 - CFD: 8/22/2010 - 4:04:08 PM - [5269768] ----D- C:\Program Files\Common Files\ATI Technologies O43 - CFD: 8/3/2010 - 9:49:04 PM - [13076032] ----D- C:\Program Files\Common Files\Intel O43 - CFD: 3/16/2010 - 9:36:40 PM - [1028326] ----D- C:\Program Files\Common Files\Macrovision Shared O43 - CFD: 10/24/2010 - 2:16:06 PM - [66375614] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 7/14/2009 - 5:20:10 AM - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 7/14/2009 - 5:20:10 AM - [608768] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 8/8/2010 - 1:19:24 AM - [12009971] ----D- C:\Program Files\Common Files\System O43 - CFD: 8/3/2010 - 3:52:32 PM - [769] ----D- C:\ProgramData\Adobe O43 - CFD: 9/17/2010 - 2:16:26 PM - [29183704] ----D- C:\ProgramData\Apple O43 - CFD: 9/17/2010 - 2:18:00 PM - [65004597] ----D- C:\ProgramData\Apple Computer O43 - CFD: 7/14/2009 - 7:08:58 AM - [0] -SH-D- C:\ProgramData\Application Data O43 - CFD: 11/15/2010 - 4:03:08 PM - [1834668] --H-D- C:\ProgramData\ArcSoft O43 - CFD: 8/22/2010 - 4:13:02 PM - [188] ----D- C:\ProgramData\ATI O43 - CFD: 8/3/2010 - 5:55:18 PM - [51783034] ----D- C:\ProgramData\Avira O43 - CFD: 8/3/2010 - 7:55:06 PM - [993] ----D- C:\ProgramData\Blizzard O43 - CFD: 9/3/2010 - 4:27:24 PM - [295256373] ----D- C:\ProgramData\Blizzard Entertainment O43 - CFD: 7/14/2009 - 7:08:58 AM - [0] -SH-D- C:\ProgramData\Desktop O43 - CFD: 7/14/2009 - 7:08:58 AM - [0] -SH-D- C:\ProgramData\Documents O43 - CFD: 7/14/2009 - 7:08:58 AM - [0] -SH-D- C:\ProgramData\Favorites O43 - CFD: 3/16/2010 - 9:37:06 PM - [6413] ----D- C:\ProgramData\FLEXnet O43 - CFD: 8/3/2010 - 9:49:02 PM - [1189] ----D- C:\ProgramData\Intel O43 - CFD: 8/22/2010 - 3:48:44 PM - [1140555] ----D- C:\ProgramData\ma-config.com O43 - CFD: 8/17/2010 - 7:55:16 PM - [5457877] ----D- C:\ProgramData\Malwarebytes O43 - CFD: 10/24/2010 - 2:16:26 PM - [181708008] -S--D- C:\ProgramData\Microsoft O43 - CFD: 11/11/2010 - 12:48:00 PM - [141038] ----D- C:\ProgramData\Microsoft Help O43 - CFD: 10/20/2010 - 7:22:18 PM - [276] ----D- C:\ProgramData\Norton O43 - CFD: 3/16/2010 - 9:53:56 PM - [16510705] ----D- C:\ProgramData\NortonInstaller O43 - CFD: 9/23/2011 - 11:32:00 PM - [436] ----D- C:\ProgramData\PMB Files O43 - CFD: 7/14/2009 - 7:08:58 AM - [0] -SH-D- C:\ProgramData\Start Menu O43 - CFD: 10/8/2010 - 3:45:14 PM - [189] ----D- C:\ProgramData\Sun O43 - CFD: 7/14/2009 - 7:08:58 AM - [0] -SH-D- C:\ProgramData\Templates O43 - CFD: 9/17/2010 - 2:18:32 PM - [893135] ----D- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001} O43 - CFD: 9/23/2010 - 2:17:56 PM - [1164619] ----D- C:\Users\Sasuka\AppData\Roaming\Adobe O43 - CFD: 9/17/2010 - 2:30:14 PM - [393646923] ----D- C:\Users\Sasuka\AppData\Roaming\Apple Computer O43 - CFD: 11/15/2010 - 4:03:12 PM - [25136638] ----D- C:\Users\Sasuka\AppData\Roaming\ArcSoft O43 - CFD: 8/3/2010 - 4:03:26 PM - [0] ----D- C:\Users\Sasuka\AppData\Roaming\ATI O43 - CFD: 8/3/2010 - 4:02:56 PM - [0] ----D- C:\Users\Sasuka\AppData\Roaming\Identities O43 - CFD: 8/3/2010 - 4:01:24 PM - [0] ----D- C:\Users\Sasuka\AppData\Roaming\InstallShield O43 - CFD: 8/3/2010 - 9:50:04 PM - [1253] ----D- C:\Users\Sasuka\AppData\Roaming\Intel O43 - CFD: 8/3/2010 - 5:34:22 PM - [64263] ----D- C:\Users\Sasuka\AppData\Roaming\Macromedia O43 - CFD: 8/17/2010 - 7:55:26 PM - [1032] ----D- C:\Users\Sasuka\AppData\Roaming\Malwarebytes O43 - CFD: 3/16/2010 - 8:03:06 PM - [0] ----D- C:\Users\Sasuka\AppData\Roaming\Media Center Programs O43 - CFD: 10/8/2010 - 3:09:16 PM - [4909874] -S--D- C:\Users\Sasuka\AppData\Roaming\Microsoft O43 - CFD: 9/7/2010 - 6:04:42 PM - [605072] ----D- C:\Users\Sasuka\AppData\Roaming\moovida-1 O43 - CFD: 8/3/2010 - 6:17:18 PM - [19003731] ----D- C:\Users\Sasuka\AppData\Roaming\Mozilla O43 - CFD: 9/20/2010 - 1:43:10 AM - [161098] ----D- C:\Users\Sasuka\AppData\Roaming\Mumble O43 - CFD: 10/8/2010 - 3:48:20 PM - [2222693] ----D- C:\Users\Sasuka\AppData\Roaming\OpenOffice.org O43 - CFD: 8/3/2010 - 5:58:30 PM - [13000] ----D- C:\Users\Sasuka\AppData\Roaming\teamspeak2 O43 - CFD: 8/12/2010 - 11:39:28 AM - [13824] ----D- C:\Users\Sasuka\AppData\Roaming\Template O43 - CFD: 9/12/2010 - 12:36:40 AM - [9692275] ----D- C:\Users\Sasuka\AppData\Roaming\TS3Client O43 - CFD: 10/10/2010 - 9:44:32 PM - [1285848] ----D- C:\Users\Sasuka\AppData\Roaming\vlc O43 - CFD: 9/17/2010 - 11:09:40 AM - [47603568] ----D- C:\Users\Sasuka\AppData\Local\Adobe O43 - CFD: 9/17/2010 - 2:16:34 PM - [0] ----D- C:\Users\Sasuka\AppData\Local\Apple O43 - CFD: 9/17/2010 - 2:19:20 PM - [25071136] ----D- C:\Users\Sasuka\AppData\Local\Apple Computer O43 - CFD: 8/3/2010 - 3:47:08 PM - [0] -SH-D- C:\Users\Sasuka\AppData\Local\Application Data O43 - CFD: 8/3/2010 - 4:03:28 PM - [647] ----D- C:\Users\Sasuka\AppData\Local\ArcSoft O43 - CFD: 8/3/2010 - 4:03:26 PM - [69737] ----D- C:\Users\Sasuka\AppData\Local\ATI O43 - CFD: 8/4/2010 - 3:03:38 PM - [1509584] ----D- C:\Users\Sasuka\AppData\Local\Citrix O43 - CFD: 10/19/2010 - 2:16:30 PM - [3675335] ----D- C:\Users\Sasuka\AppData\Local\Diagnostics O43 - CFD: 10/19/2010 - 2:18:58 PM - [712206] ----D- C:\Users\Sasuka\AppData\Local\ElevatedDiagnostics O43 - CFD: 8/3/2010 - 4:03:20 PM - [0] ----D- C:\Users\Sasuka\AppData\Local\FSP O43 - CFD: 8/3/2010 - 3:47:08 PM - [0] -SH-D- C:\Users\Sasuka\AppData\Local\Historique O43 - CFD: 10/24/2010 - 10:09:50 PM - [380033046] ----D- C:\Users\Sasuka\AppData\Local\Microsoft O43 - CFD: 9/14/2010 - 1:06:34 PM - [1240817] ----D- C:\Users\Sasuka\AppData\Local\Microsoft Games O43 - CFD: 9/21/2010 - 3:02:46 PM - [177936] ----D- C:\Users\Sasuka\AppData\Local\MigWiz O43 - CFD: 9/7/2010 - 6:04:42 PM - [129577] ----D- C:\Users\Sasuka\AppData\Local\moovida Air O43 - CFD: 8/3/2010 - 6:16:44 PM - [77162200] ----D- C:\Users\Sasuka\AppData\Local\Mozilla O43 - CFD: 9/24/2011 - 12:00:58 AM - [207827] ----D- C:\Users\Sasuka\AppData\Local\PMB Files O43 - CFD: 11/9/2010 - 12:42:14 AM - [30119371] ----D- C:\Users\Sasuka\AppData\Local\TeamSpeak 3 Client O43 - CFD: 9/23/2011 - 11:57:48 PM - [610040] ----D- C:\Users\Sasuka\AppData\Local\Temp O43 - CFD: 8/3/2010 - 3:47:08 PM - [0] -SH-D- C:\Users\Sasuka\AppData\Local\Temporary Internet Files O43 - CFD: 8/20/2010 - 10:38:14 AM - [3262] ----D- C:\Users\Sasuka\AppData\Local\VirtualStore O43 - CFD: 9/23/2011 - 11:10:24 PM - [215337606] ----D- C:\Users\Sasuka\AppData\Local\Windows Live O43 - CFD: 8/3/2010 - 3:52:16 PM - [238303657] ----D- C:\Program Files (x86)\Adobe O43 - CFD: 9/17/2010 - 2:16:32 PM - [2306366] ----D- C:\Program Files (x86)\Apple Software Update O43 - CFD: 3/16/2010 - 9:58:34 PM - [190064361] ----D- C:\Program Files (x86)\ArcSoft O43 - CFD: 8/22/2010 - 4:12:48 PM - [98671714] ----D- C:\Program Files (x86)\ATI Technologies O43 - CFD: 8/3/2010 - 5:55:18 PM - [117705805] ----D- C:\Program Files (x86)\Avira O43 - CFD: 10/24/2010 - 2:15:58 PM - [999006] ----D- C:\Program Files (x86)\Bing Bar Installer O43 - CFD: 9/17/2010 - 2:15:42 PM - [617154] ----D- C:\Program Files (x86)\Bonjour O43 - CFD: 8/3/2010 - 9:49:08 PM - [6668624] ----D- C:\Program Files (x86)\Cisco O43 - CFD: 8/4/2010 - 3:04:28 PM - [0] ----D- C:\Program Files (x86)\Citrix O43 - CFD: 10/11/2010 - 2:13:00 PM - [944061143] ----D- C:\Program Files (x86)\Common Files O43 - CFD: 11/19/2010 - 12:39:14 PM - [2150208734] ----D- C:\Program Files (x86)\Diablo II O43 - CFD: 9/7/2010 - 6:05:12 PM - [0] ----D- C:\Program Files (x86)\Fluendo O43 - CFD: 11/15/2010 - 3:04:12 PM - [58477055] --H-D- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 8/3/2010 - 4:01:38 PM - [78618593] ----D- C:\Program Files (x86)\Intel O43 - CFD: 10/15/2010 - 12:32:34 PM - [5605041] ----D- C:\Program Files (x86)\Internet Explorer O43 - CFD: 10/1/2010 - 7:29:18 PM - [122979411] ----D- C:\Program Files (x86)\iTunes O43 - CFD: 11/9/2010 - 2:32:12 PM - [90682436] ----D- C:\Program Files (x86)\Java O43 - CFD: 10/8/2010 - 3:46:22 PM - [16295712] ----D- C:\Program Files (x86)\JRE O43 - CFD: 8/17/2010 - 7:55:22 PM - [3977865] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware O43 - CFD: 8/3/2010 - 3:54:28 PM - [2664525] ----D- C:\Program Files (x86)\Microsoft O43 - CFD: 3/16/2010 - 9:47:10 PM - [754781089] ----D- C:\Program Files (x86)\Microsoft Office O43 - CFD: 3/16/2010 - 9:48:40 PM - [7791803] ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant O43 - CFD: 9/30/2010 - 12:54:56 AM - [38360699] ----D- C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 8/3/2010 - 3:55:06 PM - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 8/12/2010 - 10:04:54 PM - [145441054] ----D- C:\Program Files (x86)\Microsoft Works O43 - CFD: 9/21/2010 - 3:20:38 PM - [8152064] ----D- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 10/31/2010 - 12:56:38 PM - [31404331] ----D- C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 7/14/2009 - 7:32:40 AM - [25757] ----D- C:\Program Files (x86)\MSBuild O43 - CFD: 3/16/2010 - 10:01:02 PM - [37578628] ----D- C:\Program Files (x86)\msi O43 - CFD: 10/24/2010 - 2:15:42 PM - [6834838] ----D- C:\Program Files (x86)\MSN Toolbar O43 - CFD: 9/20/2010 - 12:51:08 AM - [37736965] ----D- C:\Program Files (x86)\Mumble O43 - CFD: 10/20/2010 - 7:22:28 PM - [99545] ----D- C:\Program Files (x86)\NortonInstaller O43 - CFD: 9/23/2011 - 11:02:10 PM - [129118] ----D- C:\Program Files (x86)\OfferBox O43 - CFD: 10/8/2010 - 3:46:18 PM - [388118358] ----D- C:\Program Files (x86)\OpenOffice.org 3 O43 - CFD: 9/23/2011 - 11:30:20 PM - [7466286] ----D- C:\Program Files (x86)\Pando Networks O43 - CFD: 9/24/2010 - 10:28:14 AM - [76337719] ----D- C:\Program Files (x86)\QuickTime O43 - CFD: 3/16/2010 - 9:36:04 PM - [14753288] ----D- C:\Program Files (x86)\Realtek O43 - CFD: 7/14/2009 - 7:32:40 AM - [38597377] ----D- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 9/7/2010 - 7:09:02 PM - [2942922] ----D- C:\Program Files (x86)\Softonic_France O43 - CFD: 8/22/2010 - 1:50:50 PM - [6862151793] ----D- C:\Program Files (x86)\SquareEnix O43 - CFD: 11/10/2010 - 4:52:34 PM - [9337307418] ----D- C:\Program Files (x86)\StarCraft II O43 - CFD: 3/16/2010 - 9:50:06 PM - [5683008] ----D- C:\Program Files (x86)\System Control Manager O43 - CFD: 9/7/2010 - 7:07:18 PM - [7792929] ----D- C:\Program Files (x86)\Teamspeak2_RC2 O43 - CFD: 3/16/2010 - 9:33:06 PM - [0] --H-D- C:\Program Files (x86)\Temp O43 - CFD: 7/14/2009 - 6:57:08 AM - [0] --H-D- C:\Program Files (x86)\Uninstall Information O43 - CFD: 9/20/2010 - 10:00:46 PM - [78884139] ----D- C:\Program Files (x86)\VideoLAN O43 - CFD: 8/8/2010 - 1:19:26 AM - [524800] ----D- C:\Program Files (x86)\Windows Defender O43 - CFD: 10/24/2010 - 2:17:00 PM - [146613792] ----D- C:\Program Files (x86)\Windows Live O43 - CFD: 8/8/2010 - 1:19:26 AM - [6180864] ----D- C:\Program Files (x86)\Windows Mail O43 - CFD: 10/15/2010 - 12:32:32 PM - [5024017] ----D- C:\Program Files (x86)\Windows Media Player O43 - CFD: 7/14/2009 - 7:32:40 AM - [12197556] ----D- C:\Program Files (x86)\Windows NT O43 - CFD: 8/8/2010 - 1:19:26 AM - [4417800] ----D- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 7/14/2009 - 7:32:42 AM - [189440] ----D- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 8/8/2010 - 1:19:26 AM - [5994114] ----D- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 3/16/2010 - 9:55:48 PM - [3412780] ----D- C:\Program Files (x86)\WinRAR 3.61 Multi O43 - CFD: 9/24/2011 - 12:00:38 AM - [5468181] ----D- C:\Program Files (x86)\ZHPDiag O43 - CFD: 8/3/2010 - 3:52:20 PM - [4600350] ----D- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 10/1/2010 - 7:28:46 PM - [75521726] ----D- C:\Program Files (x86)\Common Files\Apple O43 - CFD: 3/16/2010 - 9:58:44 PM - [13181302] ----D- C:\Program Files (x86)\Common Files\ArcSoft O43 - CFD: 8/22/2010 - 4:12:48 PM - [97032] ----D- C:\Program Files (x86)\Common Files\ATI Technologies O43 - CFD: 11/4/2010 - 12:20:28 PM - [4227676] ----D- C:\Program Files (x86)\Common Files\Blizzard Entertainment O43 - CFD: 3/16/2010 - 9:47:10 PM - [92976] ----D- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 3/16/2010 - 9:39:28 PM - [3261625] ----D- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 10/11/2010 - 2:13:00 PM - [1243079] ----D- C:\Program Files (x86)\Common Files\Java O43 - CFD: 3/16/2010 - 9:36:40 PM - [647910] ----D- C:\Program Files (x86)\Common Files\Macrovision Shared O43 - CFD: 10/24/2010 - 2:16:06 PM - [368890746] ----D- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 3/16/2010 - 9:27:54 PM - [166332] ----D- C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 7/14/2009 - 5:20:10 AM - [2702] ----D- C:\Program Files (x86)\Common Files\Services O43 - CFD: 7/14/2009 - 5:20:10 AM - [41103783] ----D- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 8/8/2010 - 1:19:26 AM - [46303231] ----D- C:\Program Files (x86)\Common Files\System O43 - CFD: 8/3/2010 - 3:52:50 PM - [384720673] ----D- C:\Program Files (x86)\Common Files\Windows Live ~ Scan Program Folder in 44mn AMs ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.4EFB4E26C4D8EF5F4E79BB3AE38D1689] - 9/23/2011 - 10:08:04 PM ---A- . (...) -- C:\windows\setupact.log [48964] O44 - LFC:[MD5.7546DC210A462A4072E3BB5A7F942F60] - 9/23/2011 - 10:14:02 PM ---A- . (...) -- C:\windows\SysNative\PerfStringBackup.INI [1537316] O44 - LFC:[MD5.24DE916434A44E6469ACA6816C427C13] - 9/23/2011 - 10:14:02 PM ---A- . (...) -- C:\windows\SysNative\perfc009.dat [105512] O44 - LFC:[MD5.FE9F263C8D1D54E6E219FA96240304DB] - 9/23/2011 - 10:14:02 PM ---A- . (...) -- C:\windows\SysNative\perfc00C.dat [129764] O44 - LFC:[MD5.F29F9B8F8DD6E50B2F446393FF9DC94D] - 9/23/2011 - 10:14:02 PM ---A- . (...) -- C:\windows\SysNative\perfh009.dat [611332] O44 - LFC:[MD5.CB2E2A6D01AEB90FF801FA8C0DF6D15B] - 9/23/2011 - 10:14:02 PM ---A- . (...) -- C:\windows\SysNative\perfh00C.dat [699376] O44 - LFC:[MD5.7546DC210A462A4072E3BB5A7F942F60] - 9/23/2011 - 10:14:02 PM RSHAD . (...) -- C:\windows\system32\PerfStringBackup.INI [1537316] O44 - LFC:[MD5.24DE916434A44E6469ACA6816C427C13] - 9/23/2011 - 10:14:02 PM RSHAD . (...) -- C:\windows\system32\perfc009.dat [105512] O44 - LFC:[MD5.FE9F263C8D1D54E6E219FA96240304DB] - 9/23/2011 - 10:14:02 PM RSHAD . (...) -- C:\windows\system32\perfc00C.dat [129764] O44 - LFC:[MD5.F29F9B8F8DD6E50B2F446393FF9DC94D] - 9/23/2011 - 10:14:02 PM RSHAD . (...) -- C:\windows\system32\perfh009.dat [611332] O44 - LFC:[MD5.CB2E2A6D01AEB90FF801FA8C0DF6D15B] - 9/23/2011 - 10:14:02 PM RSHAD . (...) -- C:\windows\system32\perfh00C.dat [699376] O44 - LFC:[MD5.B6D890264B7A33EB02E0C24EB9B20207] - 9/23/2011 - 10:47:56 PM -S-A- . (...) -- C:\windows\bootstat.dat [67584] O44 - LFC:[MD5.B46A77E5F7AE21B16974F1AEA50481AE] - 9/23/2011 - 10:48:24 PM ---A- . (...) -- C:\windows\WindowsUpdate.log [1262103] ~ Scan Files in 38mn AMs ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.DA35D71FB22778BFE7A59B386623B10D] - 10/1/2010 - 10:48:01 PM ---A- - C:\windows\Prefetch\LOGONUI.EXE-F639BD7E.pf O45 - LFCP:[MD5.5EB045E7CBFB0306753733196367C0F7] - 10/16/2010 - 10:19:48 PM ---A- - C:\windows\Prefetch\VSSVC.EXE-6C8F0C66.pf O45 - LFCP:[MD5.FEA3C89F66EB11901EF77123B20DF72B] - 10/16/2010 - 10:19:52 PM ---A- - C:\windows\Prefetch\SVCHOST.EXE-7C9048C0.pf O45 - LFCP:[MD5.BF172F9795512947D3335EE49B28A06C] - 10/16/2010 - 10:59:59 PM ---A- - C:\windows\Prefetch\CONSENT.EXE-40419367.pf O45 - LFCP:[MD5.FAB6817232604649CA5F6861CDD90F09] - 10/16/2010 - 11:00:04 PM ---A- - C:\windows\Prefetch\DLLHOST.EXE-F99091EF.pf O45 - LFCP:[MD5.247D6A347CED353CA40120590AA586AE] - 10/17/2010 - 10:24:36 PM ---A- - C:\windows\Prefetch\TASKENG.EXE-35FA9C06.pf O45 - LFCP:[MD5.45FAAA1763D469B5097C12381AA7B10D] - 10/17/2010 - 10:26:33 PM ---A- - C:\windows\Prefetch\WUAUCLT.EXE-5D573F0E.pf O45 - LFCP:[MD5.7BA9AD5A70C466F45240C58D5E79D4B5] - 10/2/2010 - 10:10:35 PM ---A- - C:\windows\Prefetch\MSCORSVW.EXE-596EFD11.pf O45 - LFCP:[MD5.65FF21A87B8C8E2554AB75F28E18A2A5] - 11/1/2010 - 11:00:43 PM ---A- - C:\windows\Prefetch\AVWSC.EXE-FC348DC0.pf O45 - LFCP:[MD5.CCFF131E78D946AEB1DAD5B7B73EB539] - 11/17/2010 - 10:09:31 PM ---A- - C:\windows\Prefetch\ACSTBMHE.EXE-37E5E0CD.pf O45 - LFCP:[MD5.1DEBEC5CC95BE36535C46AF5039D58B9] - 11/17/2010 - 10:09:45 PM ---A- - C:\windows\Prefetch\IPODSERVICE.EXE-716E0AD1.pf O45 - LFCP:[MD5.6DCF1637732CFE7A98AEE85B2A2D2CA3] - 11/17/2010 - 10:10:00 PM ---A- - C:\windows\Prefetch\SEARCHINDEXER.EXE-1CF42BC6.pf O45 - LFCP:[MD5.97E37358B525D420E01B7DAFFCE78A5A] - 11/17/2010 - 10:10:09 PM ---A- - C:\windows\Prefetch\SVCHOST.EXE-E52A3372.pf O45 - LFCP:[MD5.E3C53C9484691FE27BFB8EC141CE7167] - 11/17/2010 - 10:10:17 PM ---A- - C:\windows\Prefetch\SVCHOST.EXE-1B0E9471.pf O45 - LFCP:[MD5.160CC68B284ED635A6807812702FE873] - 11/17/2010 - 10:10:31 PM ---A- - C:\windows\Prefetch\CCC.EXE-6C5FA59C.pf O45 - LFCP:[MD5.F537BEB1E1D6259C0DCC4F1A7A20B5EA] - 11/17/2010 - 10:10:36 PM ---A- - C:\windows\Prefetch\MSCORSVW.EXE-E33FEBB3.pf O45 - LFCP:[MD5.001AF310F8C8F0AEE70F6D08BE61A02B] - 11/17/2010 - 10:14:37 PM ---A- - C:\windows\Prefetch\SVCHOST.EXE-51CBA457.pf O45 - LFCP:[MD5.CCAE1E513652A473FD6603425649E6E4] - 11/17/2010 - 10:22:38 PM ---A- - C:\windows\Prefetch\RUNDLL32.EXE-8CB5CF15.pf O45 - LFCP:[MD5.65AAC3059F6B4F36C94A58638B845603] - 11/17/2010 - 10:24:31 PM ---A- - C:\windows\Prefetch\DLLHOST.EXE-6AA475E1.pf O45 - LFCP:[MD5.DEA379DE5438F2464B3977611D686FFD] - 11/17/2010 - 10:53:03 PM ---A- - C:\windows\Prefetch\SDCLT.EXE-94EAE077.pf O45 - LFCP:[MD5.BFB4241CFF245A0751CD4028C41B4392] - 11/17/2010 - 11:00:36 PM ---A- - C:\windows\Prefetch\WMIPRVSE.EXE-39F97B2D.pf O45 - LFCP:[MD5.6AF29613336D20415E97BF88A0168250] - 11/17/2010 - 11:01:49 PM ---A- - C:\windows\Prefetch\MPCMDRUN.EXE-2C9109F9.pf O45 - LFCP:[MD5.19DEA1354B35A433CCFE9D2318284DB7] - 11/17/2010 - 5:51:08 PM ---A- - C:\windows\Prefetch\RUNONCE.EXE-BD8A4C8F.pf O45 - LFCP:[MD5.191853C8E255B2CFDB23AD3EB5CD38AB] - 11/17/2010 - 5:51:08 PM ---A- - C:\windows\Prefetch\WERFAULT.EXE-155C56CF.pf O45 - LFCP:[MD5.16DC5EB6E4EC666C3DD4442E77E4988E] - 11/17/2010 - 5:51:18 PM ---A- - C:\windows\Prefetch\IGFXTRAY.EXE-F30110F3.pf O45 - LFCP:[MD5.664801CF7A30DA630BE27D2FCAC40F42] - 11/17/2010 - 5:51:24 PM ---A- - C:\windows\Prefetch\SM56HLPR.EXE-6DEBD065.pf O45 - LFCP:[MD5.4AE32006F0677F67938AD4DE1582B87E] - 11/17/2010 - 5:51:27 PM ---A- - C:\windows\Prefetch\IGFXPERS.EXE-540AA77D.pf O45 - LFCP:[MD5.D719102DE3C0CDC79F94466D48AFD755] - 11/17/2010 - 5:51:30 PM ---A- - C:\windows\Prefetch\FSPUIP.EXE-CDA54F6B.pf O45 - LFCP:[MD5.F73E02B52C37C921B51021A01505AC32] - 11/17/2010 - 5:51:30 PM ---A- - C:\windows\Prefetch\HKCMD.EXE-61FD4888.pf O45 - LFCP:[MD5.6CB7589AECFF0E70F019642E953EC7DE] - 11/17/2010 - 5:51:30 PM ---A- - C:\windows\Prefetch\RUNDLL32.EXE-6DBE83D7.pf O45 - LFCP:[MD5.C0FF9C25C7556EF36A712B55B4E852D5] - 11/17/2010 - 5:51:31 PM ---A- - C:\windows\Prefetch\RUNONCE.EXE-FB4EF753.pf O45 - LFCP:[MD5.BE17E52413A5F907EF2980256B16FE30] - 11/17/2010 - 5:51:39 PM ---A- - C:\windows\Prefetch\IAANOTIF.EXE-349C2DDA.pf O45 - LFCP:[MD5.E5CB37709C59F14EE37EEE622D5BDE66] - 11/17/2010 - 5:51:58 PM ---A- - C:\windows\Prefetch\RAVCPL64.EXE-4BB80510.pf O45 - LFCP:[MD5.CFFDE3C46C6E8EB95D54E1F39DFC49A2] - 11/17/2010 - 7:40:43 AM ---A- - C:\windows\Prefetch\UPDATE.EXE-5CF8B53B.pf O45 - LFCP:[MD5.4E1818A10110338A4A3D91C3BB2197C6] - 11/17/2010 - 7:41:21 AM ---A- - C:\windows\Prefetch\WMPNETWK.EXE-F6E20E14.pf O45 - LFCP:[MD5.E0ED5D8DC4C988AB96D61C5D39D8B4F3] - 11/18/2010 - 10:09:41 PM ---A- - C:\windows\Prefetch\UNSECAPP.EXE-72B9DDB3.pf O45 - LFCP:[MD5.D2380CD459FF9750AAB4433AD8B46959] - 11/18/2010 - 10:10:08 PM ---A- - C:\windows\Prefetch\SVCHOST.EXE-6D6FB3A1.pf O45 - LFCP:[MD5.EDF5617046B10AF0C29AAF73C80B7415] - 11/18/2010 - 10:22:54 PM ---A- - C:\windows\Prefetch\WINRAR.EXE-D2728F23.pf O45 - LFCP:[MD5.259B42945D502C7089F3D828652AC9E9] - 11/18/2010 - 10:23:56 PM ---A- - C:\windows\Prefetch\DLLHOST.EXE-D2559B8C.pf O45 - LFCP:[MD5.E3602EC2DAD21B0839041B5D97BCE4BD] - 11/18/2010 - 10:47:39 PM ---A- - C:\windows\Prefetch\RUNDLL32.EXE-38FE020E.pf O45 - LFCP:[MD5.8732942DC5994A0E0AEEAE9B5D2C00E3] - 11/18/2010 - 10:57:25 PM ---A- - C:\windows\Prefetch\EXPLORER.EXE-D5E97654.pf O45 - LFCP:[MD5.14850708191357265D69D6E70F0D7B36] - 11/18/2010 - 10:57:30 PM ---A- - C:\windows\Prefetch\RAREXTLOADER.EXE-04169B25.pf O45 - LFCP:[MD5.1EF07486DA73FB4A1D4AAE0175A7AFF3] - 11/18/2010 - 5:51:42 PM ---A- - C:\windows\Prefetch\MGSYSCTRL.EXE-ABC416A3.pf O45 - LFCP:[MD5.B285FBF8B73A8788EF352BE39B1E3B81] - 11/18/2010 - 5:51:59 PM ---A- - C:\windows\Prefetch\SOFFICE.EXE-05AADC00.pf O45 - LFCP:[MD5.7717B6B0F61754EB2B00F4699EEA0378] - 11/18/2010 - 5:52:12 PM ---A- - C:\windows\Prefetch\SOFFICE.BIN-F938F4DB.pf O45 - LFCP:[MD5.4F18653BDD4DC5F3AD05B55C2DEC3752] - 11/19/2010 - 10:09:40 PM ---A- - C:\windows\Prefetch\JUSCHED.EXE-D6111BFB.pf O45 - LFCP:[MD5.348B12B4AAEE006B600DE4E6B0ADDF17] - 11/19/2010 - 10:09:41 PM ---A- - C:\windows\Prefetch\ITUNESHELPER.EXE-399B4696.pf O45 - LFCP:[MD5.BB84BB04D5139797A4EEB32BA0137473] - 11/19/2010 - 10:09:41 PM ---A- - C:\windows\Prefetch\MOM.EXE-F911D5BC.pf O45 - LFCP:[MD5.F050D708109D1CFFA2C47228F07A4F6C] - 11/21/2010 - 10:09:29 PM ---A- - C:\windows\Prefetch\QTTASK.EXE-64CB3CDA.pf O45 - LFCP:[MD5.A10793680247F724BB59D99A80F57F69] - 11/21/2010 - 10:09:39 PM ---A- - C:\windows\Prefetch\FLASHUTIL10K_PLUGIN.EXE-CAE7D2C5.pf O45 - LFCP:[MD5.703C1B7C7D5AABA9EC36B792750C5A82] - 11/21/2010 - 10:14:56 PM ---A- - C:\windows\Prefetch\JAUCHECK.EXE-42B49A13.pf O45 - LFCP:[MD5.7CBAF4D8DEB544C4F94A22B329D0801B] - 11/21/2010 - 10:15:07 PM ---A- - C:\windows\Prefetch\JAVAW.EXE-CE5F3A8D.pf O45 - LFCP:[MD5.94076A053BEB0F5C6E28D36283DAD1BE] - 11/21/2010 - 10:15:07 PM ---A- - C:\windows\Prefetch\JAVAWS.EXE-B96890A4.pf O45 - LFCP:[MD5.259ADB22452139FBF4C35D8EBD372AC5] - 11/21/2010 - 5:51:42 PM ---A- - C:\windows\Prefetch\CLISTART.EXE-091A18CD.pf O45 - LFCP:[MD5.F9F2FFDA51ED5502942E98767EA6204E] - 11/21/2010 - 5:51:55 PM ---A- - C:\windows\Prefetch\AVGNT.EXE-39B0C714.pf O45 - LFCP:[MD5.5F63589DD59BAB8184840AD50839D287] - 4/16/2010 - 10:07:28 PM ---A- - C:\windows\Prefetch\PfSvPerfStats.bin O45 - LFCP:[MD5.8848E86CDE90A41AA9ABB269691347AC] - 4/16/2010 - 10:59:09 PM ---A- - C:\windows\Prefetch\AgGlFaultHistory.db O45 - LFCP:[MD5.F4C319341D4E3614000FA14357C2BC46] - 4/16/2010 - 10:59:09 PM ---A- - C:\windows\Prefetch\AgGlGlobalHistory.db O45 - LFCP:[MD5.F1F631575404C8D9F9339F8F1BF343BD] - 4/16/2010 - 10:59:09 PM ---A- - C:\windows\Prefetch\AgRobust.db O45 - LFCP:[MD5.8874FC6765691C9B1A05DCFD8EE8D86B] - 4/16/2010 - 10:59:10 PM ---A- - C:\windows\Prefetch\AgGlFgAppHistory.db O45 - LFCP:[MD5.1FBDB38241C43288184C5404C654BA78] - 4/16/2010 - 11:00:31 PM ---A- - C:\windows\Prefetch\CONHOST.EXE-0C6456FB.pf O45 - LFCP:[MD5.032018CFD0F0C3B215BAE30D44402E4B] - 4/16/2010 - 7:40:12 AM ---A- - C:\windows\Prefetch\NTOSBOOT-B00DFAAD.pf O45 - LFCP:[MD5.D2E323C86F7DAB3EB36942FEFBA0FCB6] - 8/10/2010 - 10:11:52 PM ---A- - C:\windows\Prefetch\PLUGIN-CONTAINER.EXE-6B605020.pf O45 - LFCP:[MD5.B273A428464F78D2EEB3BCB3612A24C7] - 8/11/2010 - 10:11:48 PM ---A- - C:\windows\Prefetch\FIREFOX.EXE-359C61A4.pf O45 - LFCP:[MD5.E5862626E08B20389D65BF2B3550D12E] - 8/17/2010 - 10:57:21 PM ---A- - C:\windows\Prefetch\DLLHOST.EXE-E173F32A.pf O45 - LFCP:[MD5.53373512E4B2BFB9D39245C92A46A0D4] - 8/3/2010 - 10:10:38 PM ---A- - C:\windows\Prefetch\UNS.EXE-40FB88B6.pf O45 - LFCP:[MD5.428E4963D12FE71E1E32918EA0DF69F0] - 8/3/2010 - 10:10:39 PM ---A- - C:\windows\Prefetch\SVCHOST.EXE-8CDC24C8.pf O45 - LFCP:[MD5.9CAB304C6F802E8D35A37652FF6E8FAD] - 8/3/2010 - 10:12:22 PM ---A- - C:\windows\Prefetch\WMIADAP.EXE-BB21CD77.pf O45 - LFCP:[MD5.367E54688347C418A934785F03A66DE9] - 8/3/2010 - 10:17:11 PM ---A- - C:\windows\Prefetch\TASKHOST.EXE-A0F5E092.pf O45 - LFCP:[MD5.74354AC683BA4432FA2C5EECA12447C2] - 8/3/2010 - 10:22:26 PM ---A- - C:\windows\Prefetch\WERMGR.EXE-F439C551.pf O45 - LFCP:[MD5.6906FED9D22A9CDB8358804E24051810] - 8/3/2010 - 10:47:59 PM ---A- - C:\windows\Prefetch\WMPNSCFG.EXE-18FC9E64.pf O45 - LFCP:[MD5.F39E478A288D6DD1AC3840BA73C86DDF] - 8/3/2010 - 10:48:03 PM ---A- - C:\windows\Prefetch\AgCx_SC1.db.trx O45 - LFCP:[MD5.CBF6086969BB0D1D6A9BAB8C18AE5317] - 8/3/2010 - 10:49:04 PM ---A- - C:\windows\Prefetch\AgCx_SC1.db O45 - LFCP:[MD5.455E5C61E249426834AA28F482127A1B] - 8/3/2010 - 11:00:36 PM ---A- - C:\windows\Prefetch\SPPSVC.EXE-96070FE0.pf O45 - LFCP:[MD5.90703C40DBF2A686BF836FC52DD86CD3] - 8/3/2010 - 9:21:51 PM ---A- - C:\windows\Prefetch\AgCx_SC2.db O45 - LFCP:[MD5.2746885884D7599DDECB14A550475BC3] - 8/3/2010 - 9:24:04 PM ---A- - C:\windows\Prefetch\AgGlUAD_P_S-1-5-21-1140207308-3924336767-164626575-1000.db O45 - LFCP:[MD5.B696F93E5F087EB8738B34177542ADB3] - 8/3/2010 - 9:24:04 PM ---A- - C:\windows\Prefetch\AgGlUAD_S-1-5-21-1140207308-3924336767-164626575-1000.db O45 - LFCP:[MD5.2F99565B353F54D0FF47E8D850628D61] - 8/8/2010 - 10:10:33 PM ---A- - C:\windows\Prefetch\AgCx_SC4.db O45 - LFCP:[MD5.A774AEED6C21E2E19E3212D7CF65B226] - 9/10/2010 - 10:57:37 PM ---A- - C:\windows\Prefetch\AUDIODG.EXE-AB22E9A6.pf O45 - LFCP:[MD5.A0D59AA4E50F5308ABB87A932C481299] - 9/10/2010 - 9:34:04 PM ---A- - C:\windows\Prefetch\OFFERBOX.EXE-97842474.pf O45 - LFCP:[MD5.B295E6E70030CF2047B679ECA429EE76] - 9/12/2010 - 7:14:16 PM ---A- - C:\windows\Prefetch\TRUSTEDINSTALLER.EXE-766EFF52.pf O45 - LFCP:[MD5.2289C2B10E9A55B8E9F798BE2B775C47] - 9/15/2010 - 10:30:28 PM ---A- - C:\windows\Prefetch\WMIPRVSE.EXE-E8B8DD29.pf O45 - LFCP:[MD5.7E468D63B5B74CD93081EE5E893109DC] - 9/15/2010 - 11:01:36 PM ---A- - C:\windows\Prefetch\SEARCHFILTERHOST.EXE-44162447.pf O45 - LFCP:[MD5.2B6C7E3B10CB5B15B32F4FC7E22C5D64] - 9/15/2010 - 11:01:36 PM ---A- - C:\windows\Prefetch\SEARCHPROTOCOLHOST.EXE-69C456C3.pf O45 - LFCP:[MD5.550E1419424D609263C4480BAE5B955F] - 9/23/2011 - 10:14:54 PM ---A- - C:\windows\Prefetch\JAVA.EXE-2AB52D6A.pf O45 - LFCP:[MD5.70ADC8670F6F089F96BF775FBE676783] - 9/23/2011 - 10:34:03 PM ---A- - C:\windows\Prefetch\TASKMGR.EXE-4C8500BA.pf O45 - LFCP:[MD5.F926810C8D7D3A2D61CCFC1438A7DFA8] - 9/23/2011 - 5:51:55 PM ---A- - C:\windows\Prefetch\CHECKUPDATE.AC-963CEF19.pf O45 - LFCP:[MD5.A9146F7B8E237A430B6B487D0578ADCA] - 9/23/2011 - 9:20:31 PM ---A- - C:\windows\Prefetch\VDSLDR.EXE-50179B50.pf O45 - LFCP:[MD5.69ABD17EA9A0021FC0441F78F59F66A6] - 9/23/2011 - 9:20:34 PM ---A- - C:\windows\Prefetch\WBENGINE.EXE-57BA6C00.pf O45 - LFCP:[MD5.244C804EEA77D5AFD04FE490E0BAA326] - 9/23/2011 - 9:20:35 PM ---A- - C:\windows\Prefetch\VDS.EXE-2FCA9D16.pf O45 - LFCP:[MD5.C04147517104DC835CFEDBE18CC6D078] - 9/23/2011 - 9:22:57 PM ---A- - C:\windows\Prefetch\XWIZARD.EXE-9DACBBDA.pf O45 - LFCP:[MD5.4C58DF1330C53814286E4E307E61992F] - 9/23/2011 - 9:22:58 PM ---A- - C:\windows\Prefetch\RUNDLL32.EXE-D240FCFE.pf O45 - LFCP:[MD5.929CD9BAE04D9363054E02F7E89CEFB6] - 9/23/2011 - 9:28:25 PM ---A- - C:\windows\Prefetch\IPCONFIG.EXE-BFEC2AD0.pf O45 - LFCP:[MD5.52B8D29D83832E072ADBB986F29A3B3F] - 9/23/2011 - 9:28:26 PM ---A- - C:\windows\Prefetch\MAKECAB.EXE-FC3CBE21.pf O45 - LFCP:[MD5.72080683FB5F25FE2C5032C2CBE5A6EE] - 9/23/2011 - 9:28:26 PM ---A- - C:\windows\Prefetch\MSDT.EXE-D579957D.pf O45 - LFCP:[MD5.DA32B47E85ED5BD8CBEB05488A3244D6] - 9/23/2011 - 9:28:26 PM ---A- - C:\windows\Prefetch\ROUTE.EXE-121C5018.pf O45 - LFCP:[MD5.AEB72546BBE84B796FB22207D2391C3C] - 9/23/2011 - 9:28:26 PM ---A- - C:\windows\Prefetch\RUNDLL32.EXE-6277AF7E.pf O45 - LFCP:[MD5.89A0ABA38F14A236525ACD480FB5F8DD] - 9/23/2011 - 9:28:32 PM ---A- - C:\windows\Prefetch\IWRAP.EXE-5A01F8F6.pf O45 - LFCP:[MD5.06322A00C591B97DBE6606617446C5C9] - 9/23/2011 - 9:28:37 PM ---A- - C:\windows\Prefetch\WLANEXT.EXE-BFF495D4.pf O45 - LFCP:[MD5.6A8272958CF4474A47D486EBD2270E61] - 9/23/2011 - 9:30:33 PM ---A- - C:\windows\Prefetch\HELPPANE.EXE-2CB7BD18.pf O45 - LFCP:[MD5.F0F5AC0132B9A4308D9C1A9A793FCB19] - 9/23/2011 - 9:30:48 PM ---A- - C:\windows\Prefetch\SDIAGNHOST.EXE-B3171AA1.pf O45 - LFCP:[MD5.31A982821FF993D9C892B280A09E04AF] - 9/23/2011 - 9:33:49 PM ---A- - C:\windows\Prefetch\WATADMINSVC.EXE-E43424E2.pf O45 - LFCP:[MD5.E52BAB2A549D6C8A193855F524206BDE] - 9/23/2011 - 9:34:05 PM ---A- - C:\windows\Prefetch\SLUI.EXE-3E441AEE.pf O45 - LFCP:[MD5.F6BFC07703B0C1769C018D6BC2D4F71E] - 9/23/2011 - 9:41:24 PM ---A- - C:\windows\Prefetch\DLLHOST.EXE-6FE41093.pf O45 - LFCP:[MD5.4AD3DDB1FFF548911B69D96D7A7C8A09] - 9/23/2011 - 9:43:37 PM ---A- - C:\windows\Prefetch\DLLHOST.EXE-8439A233.pf ~ Scan Prefetcher in 01mn AMs ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\windows\system32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\windows\system32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\windows\system32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\windows\system32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\windows\system32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\windows\system32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\windows\system32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\windows\system32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\windows\system32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\windows\system32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\windows\system32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\windows\system32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\windows\system32\Drivers\volmgrx.sys ~ Scan CSB in 00mn AMs ---\\ MountPoints2 Shell Key (O51) O51 - MPSK:{cc930afb-48fb-11df-9709-806e6f6e6963}\AutoRun\command. (...) -- E:\CDSetup.exe (.not file.) ~ Scan Keys in 00mn AMs ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ~ Scan Keys in 00mn AMs ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\windows\system32\credssp.dll ~ Scan Keys in 00mn AMs ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ~ Scan Keys in 00mn AMs ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 ~ Scan Keys in 00mn AMs ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 6/10/2009 - 2:52:21 AM ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\windows\system32\drivers\adp94xx.sys [491088] O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 7/13/2009 - 2:52:21 AM RSHAD . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\windows\system32\drivers\adpahci.sys [339536] O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 7/13/2009 - 2:52:21 AM RSHAD . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\windows\system32\drivers\adpu320.sys [182864] O58 - SDL:[MD5.D2914E53E8F299654D400F96EB466054] - 3/16/2010 - 9:25:49 AM RSHAD . (.LSI Corporation - SoftModem Device Driver.) -- C:\windows\system32\drivers\agrsm64.sys [1208320] O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 7/14/2009 - 2:52:21 AM RSHAD . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\windows\system32\drivers\aliide.sys [15440] O58 - SDL:[MD5.7A4B413614C055935567CF88A9734D38] - 6/10/2009 - 2:52:21 AM RSHAD . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\windows\system32\drivers\amdsata.sys [106576] O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 6/10/2009 - 2:52:20 AM RSHAD . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\windows\system32\drivers\amdsbs.sys [194128] O58 - SDL:[MD5.B4AD0CACBAB298671DD6F6EF7E20679D] - 7/13/2009 - 2:52:21 AM RSHAD . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\windows\system32\drivers\amdxata.sys [28752] O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 7/13/2009 - 2:52:21 AM RSHAD . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\windows\system32\drivers\arc.sys [87632] O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 7/13/2009 - 2:52:21 AM RSHAD . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\windows\system32\drivers\arcsas.sys [97856] O58 - SDL:[MD5.C130BC4A51B1382B2BE8E44579EC4C0A] - 3/16/2010 - 10:32:04 PM RSHAD . (.ArcSoft, Inc. - For X64.) -- C:\windows\system32\drivers\ArcSoftKsUFilter.sys [19968] O58 - SDL:[MD5.0ACC06FCF46F64ED4F11E57EE461C1F4] - 3/16/2010 - 2:34:00 AM RSHAD . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\windows\system32\drivers\athrx.sys [1542656] O58 - SDL:[MD5.6ABDEACF12A74374CAC307BC045D4662] - 3/16/2010 - 10:52:59 AM RSHAD . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\windows\system32\drivers\atikmdag.sys [6177792] O58 - SDL:[MD5.12C40BAD88C56909CC875151DC2275CD] - 3/16/2010 - 9:25:14 AM RSHAD . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\windows\system32\drivers\atikmpag.sys [156160] O58 - SDL:[MD5.6ABDEACF12A74374CAC307BC045D4662] - 3/16/2010 - 10:52:59 AM RSHAD . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\windows\system32\drivers\atipmdag.sys [6177792] O58 - SDL:[MD5.C30B5FC0ADCDFBA7668E99BAF0CBF58E] - 8/3/2010 - 11:19:02 AM RSHAD . (.Avira GmbH - Avira Minifilter Driver.) -- C:\windows\system32\drivers\avgntflt.sys [74880] O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 6/10/2009 - 9:34:23 PM RSHAD . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\windows\system32\drivers\b57nd60a.sys [270848] O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 7/14/2009 - 9:41:06 PM RSHAD . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\windows\system32\drivers\BrFiltLo.sys [18432] O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 7/14/2009 - 9:41:06 PM RSHAD . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\windows\system32\drivers\BrFiltUp.sys [8704] O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 7/14/2009 - 2:19:07 AM RSHAD . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\windows\system32\drivers\BrSerId.sys [286720] O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 7/14/2009 - 9:41:10 PM RSHAD . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\windows\system32\drivers\BrSerWdm.sys [47104] O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 7/14/2009 - 9:41:10 PM RSHAD . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\windows\system32\drivers\BrUsbMdm.sys [14976] O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 7/14/2009 - 9:41:10 PM RSHAD . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\windows\system32\drivers\BrUsbSer.sys [14720] O58 - SDL:[MD5.BB95F4F2C1ADA589E97C8598E14E1C74] - 3/16/2010 - 8:08:00 PM RSHAD . (.Motorola, Inc. - Bluetooth Serial Port Driver.) -- C:\windows\system32\drivers\btmcom.sys [51200] O58 - SDL:[MD5.A505E3D17B12113D947A85BAA3070691] - 3/16/2010 - 12:44:58 AM RSHAD . (.Motorola, Inc. - Bluetooth HID Driver.) -- C:\windows\system32\drivers\btmhid.sys [34048] O58 - SDL:[MD5.09B5A74916FA3417186C8F494AE6C9FE] - 3/16/2010 - 12:53:48 AM RSHAD . (.Motorola, Inc. - Bluetooth Radio Driver.) -- C:\windows\system32\drivers\btmusb.sys [461312] O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 6/10/2009 - 9:34:28 PM RSHAD . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\windows\system32\drivers\bxvbda.sys [468480] O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 7/14/2009 - 2:52:31 AM RSHAD . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\windows\system32\drivers\cmdide.sys [17488] O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 6/10/2009 - 2:47:48 AM RSHAD . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\windows\system32\drivers\elxstor.sys [530496] O58 - SDL:[MD5.A9EC08727C64D985678F5B64C03823F0] - 3/16/2010 - 7:09:00 AM RSHAD . (.ENE TECHNOLOGY INC. - ENE CIR Driver for eHome(64).) -- C:\windows\system32\drivers\enecir.sys [70656] O58 - SDL:[MD5.E17EB95358F396E27D573A1B20F891F8] - 3/16/2010 - 2:59:54 PM RSHAD . (.ENE TECHNOLOGY INC. - ENE CIR HID Driver(64).) -- C:\windows\system32\drivers\enecirhid.sys [14848] O58 - SDL:[MD5.8492D808C79BD6FE439F77BE84956CDF] - 3/16/2010 - 11:16:00 AM RSHAD . (.ENE TECHNOLOGY INC. - ENE CIR HID Mapper Driver(64).) -- C:\windows\system32\drivers\enecirhidma.sys [6656] O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 6/10/2009 - 9:34:33 PM RSHAD . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\windows\system32\drivers\evbda.sys [3286016] O58 - SDL:[MD5.768FAE6C348E5538B370FA62AB1B43B1] - 3/16/2010 - 2:32:41 AM RSHAD . (.Sentelic Corporation - Finger-sensing Pad Driver.) -- C:\windows\system32\drivers\fspad_wlh64.sys [53248] O58 - SDL:[MD5.768FAE6C348E5538B370FA62AB1B43B1] - 3/16/2010 - 2:32:41 AM RSHAD . (.Sentelic Corporation - Finger-sensing Pad Driver.) -- C:\windows\system32\drivers\fspad_xp64.sys [53248] O58 - SDL:[MD5.E403AACF8C7BB11375122D2464560311] - 9/17/2010 - 12:17:08 PM RSHAD . (.GEAR Software Inc. - CD DVD Filter.) -- C:\windows\system32\drivers\GEARAspiWDM.sys [34152] O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 7/14/2009 - 9:31:59 PM RSHAD . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\windows\system32\drivers\hcw85cir.sys [31232] O58 - SDL:[MD5.B6AC71AAA2B10848F57FC49D55A651AF] - 3/16/2010 - 6:55:36 AM RSHAD . (.Intel Corporation - Intel® Management Engine Interface.) -- C:\windows\system32\drivers\HECIx64.sys [56344] O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 7/13/2009 - 2:47:48 AM RSHAD . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\windows\system32\drivers\HpSAMD.sys [77888] O58 - SDL:[MD5.BE7D72FCF442C26975942007E0831241] - 8/3/2010 - 10:16:40 AM RSHAD . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\windows\system32\drivers\iaStor.sys [409624] O58 - SDL:[MD5.D83EFB6FD45DF9D55E9A1AFC63640D50] - 6/10/2009 - 2:48:04 AM RSHAD . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\windows\system32\drivers\iaStorV.sys [410688] O58 - SDL:[MD5.B36E6868CF289040795C1FA0D0FEB399] - 3/16/2010 - 9:10:22 AM RSHAD . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\windows\system32\drivers\igdkmd64.sys [7773856] O58 - SDL:[MD5.B36E6868CF289040795C1FA0D0FEB399] - 3/16/2010 - 9:10:22 AM RSHAD . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\windows\system32\drivers\igdpmd64.sys [7773856] O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 7/13/2009 - 2:48:04 AM RSHAD . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\windows\system32\drivers\iirsp.sys [44112] O58 - SDL:[MD5.4B6363CD4610BB848531BB260B15DFCC] - 3/16/2010 - 8:01:58 AM RSHAD . (.Intel Corporation - Intel® Turbo Boost Technology Driver.) -- C:\windows\system32\drivers\Impcd.sys [158720] O58 - SDL:[MD5.DA24C1F66EE1B5A92E045376D7A44B58] - 3/16/2010 - 8:51:38 PM RSHAD . (.Intel® Corporation - Intel® Display Audio Driver.) -- C:\windows\system32\drivers\IntcDAud.sys [271872] O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 7/13/2009 - 2:48:04 AM RSHAD . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\windows\system32\drivers\lsi_fc.sys [114752] O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 7/13/2009 - 2:48:04 AM RSHAD . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\windows\system32\drivers\lsi_sas.sys [106560] O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 7/13/2009 - 2:48:04 AM RSHAD . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\windows\system32\drivers\lsi_sas2.sys [65600] O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 7/13/2009 - 2:48:04 AM RSHAD . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\windows\system32\drivers\lsi_scsi.sys [115776] O58 - SDL:[MD5.E330051CCE41EB4522E5DCEBC15ADCEA] - 8/17/2010 - 2:39:28 PM RSHAD . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\windows\system32\drivers\mbam.sys [24664] O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 6/10/2009 - 2:48:04 AM RSHAD . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\windows\system32\drivers\megasas.sys [35392] O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 7/13/2009 - 2:48:04 AM RSHAD . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\windows\system32\drivers\MegaSR.sys [284736] O58 - SDL:[MD5.39EDE676D17F37AF4573C2B33EC28ACA] - 3/16/2010 - 1:37:18 AM RSHAD . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\windows\system32\drivers\NETw5s64.sys [7675392] O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 7/13/2009 - 2:48:26 AM RSHAD . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\windows\system32\drivers\nfrd960.sys [51264] O58 - SDL:[MD5.3E38712941E9BB4DDBEE00AFFE3FED3D] - 7/13/2009 - 2:48:27 AM RSHAD . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\windows\system32\drivers\nvraid.sys [149056] O58 - SDL:[MD5.477DC4D6DEB99BE37084C9AC6D013DA1] - 6/10/2009 - 2:45:45 AM RSHAD . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\windows\system32\drivers\nvstor.sys [167488] O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 6/10/2009 - 2:45:46 AM RSHAD . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\windows\system32\drivers\ql2300.sys [1524816] O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 7/13/2009 - 2:45:45 AM RSHAD . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\windows\system32\drivers\ql40xx.sys [128592] O58 - SDL:[MD5.4B42BC58294E83A6A92EC8B88C14C4A3] - 6/23/2010 - 8:10:56 AM RSHAD . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\windows\system32\drivers\Rt64win7.sys [344680] O58 - SDL:[MD5.4E821C740A675F6D040BE41D59A62B1D] - 3/16/2010 - 3:12:25 AM RSHAD . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\windows\system32\drivers\RtHDMIVX.sys [213280] O58 - SDL:[MD5.E9BEFD8C6A1DB3B544B61647DDA35F62] - 3/16/2010 - 11:24:56 AM RSHAD . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\windows\system32\drivers\RTKVHD64.sys [2267552] O58 - SDL:[MD5.DB30AA4DAA0D492FA5D7717D8181FFA1] - 3/16/2010 - 2:58:08 AM ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\windows\system32\drivers\RtsUStor.sys [225280] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 7/14/2009 - 9:37:19 PM RSHAD . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\windows\system32\drivers\secdrv.sys [23040] O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 6/10/2009 - 2:45:45 AM RSHAD . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\windows\system32\drivers\sisraid2.sys [43584] O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 7/13/2009 - 2:45:46 AM RSHAD . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\windows\system32\drivers\sisraid4.sys [80464] O58 - SDL:[MD5.AA59BA9348EBDEB455027C455538A08E] - 3/16/2010 - 9:20:34 AM RSHAD . (.Motorola Inc. - Motorola SM56 Modem WDM Driver.) -- C:\windows\system32\drivers\smserial.sys [1202688] O58 - SDL:[MD5.7AE8BCA90539ECBDE87AC45BA1436BE3] - 6/10/2009 - 10:01:14 PM RSHAD . (.Motorola Inc. - Motorola SM56 Modem WDM Driver.) -- C:\windows\system32\drivers\SmSerl64.sys [1227776] O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 7/13/2009 - 2:45:55 AM RSHAD . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\windows\system32\drivers\stexstor.sys [24656] O58 - SDL:[MD5.C45A3E051C65106A28982CAED125F855] - 3/16/2010 - 10:17:34 PM RSHAD . (...) -- C:\windows\system32\drivers\TurboB.sys [13784] O58 - SDL:[MD5.CD03479F2DA26500B203ED075C146A7A] - 9/17/2010 - 7:47:42 PM RSHAD . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\windows\system32\drivers\usbaapl64.sys [50688] O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 7/14/2009 - 2:45:55 AM RSHAD . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\windows\system32\drivers\viaide.sys [17488] O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 6/10/2009 - 2:45:55 AM RSHAD . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\windows\system32\drivers\vsmraid.sys [161872] O58 - SDL:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 8/17/2010 - 2:39:38 PM ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\windows\SysWOW64\drivers\mbamswissarmy.sys [38224] O58 - SDL:[MD5.DB30AA4DAA0D492FA5D7717D8181FFA1] - 3/16/2010 - 2:58:08 AM ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\windows\SysWOW64\drivers\RtsUStor.sys [225280] O58 - SDL:[MD5.3AD0362CF68DE3AC500E981700242CCA] - 8/3/2010 - 9:11:52 AM ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\windows\SysWOW64\drivers\ssmdrv.sys [28520] ~ Scan Drivers in 02mn AMs ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC:Last File Created 10/24/2010 - 10:09:32 PM ----- C:\Users\Sasuka\AppData\Local\Windows Live\uxcore_msnmsgr_00.etl [4096] O61 - LFC:Last File Created 10/28/2010 - 10:07:20 PM --HA- C:\Users\Sasuka\AppData\Local\IconCache.db [3033972] O61 - LFC:Last File Created 3/16/2010 - 10:08:25 PM --HA- C:\Users\All Users\FLEXnet\OMCD_002d6e00_tsf.data [6413] O61 - LFC:Last File Created 8/3/2010 - 10:10:21 PM ---A- C:\Users\Sasuka\AppData\Local\ATI\ACE\Manifest.Bin [32089] O61 - LFC:Last File Created 8/3/2010 - 10:10:21 PM ---A- C:\Users\Sasuka\AppData\Local\ATI\ACE\Manifest.xml [23698] O61 - LFC:Last File Created 8/3/2010 - 10:48:20 PM ---A- C:\Users\Sasuka\AppData\Local\ATI\ACE\Profiles.xml [13950] O61 - LFC:Last File Created 8/3/2010 - 10:59:38 PM ---A- C:\Users\Sasuka\AppData\Roaming\ArcSoft\Global Deploy\ArcUpdateService.inf [524] O61 - LFC:Last File Created 8/3/2010 - 5:51:05 PM -SHA- C:\Users\Sasuka\AppData\Roaming\Microsoft\Protect\S-1-5-21-1140207308-3924336767-164626575-1000\Preferred [24] O61 - LFC:Last File Created 8/3/2010 - 9:36:13 PM ---A- C:\Users\Sasuka\AppData\Local\ArcSoft\Connection Service\InfoCenterFile.txt [192] O61 - LFC:Last File Created 8/3/2010 - 9:36:13 PM ---A- C:\Users\Sasuka\AppData\Local\ArcSoft\Connection Service\index.txt [73] O61 - LFC:Last File Created 9/23/2011 - 10:07:23 PM ---A- C:\Users\Sasuka\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt03.sqm [388] O61 - LFC:Last File Created 9/23/2011 - 10:08:19 PM --HA- C:\Users\All Users\ArcSoft\Connection Service\_actdata.arg [0] O61 - LFC:Last File Created 9/23/2011 - 10:09:40 PM ---A- C:\Users\Sasuka\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog [0] O61 - LFC:Last File Created 9/23/2011 - 10:10:13 PM ---A- C:\Users\Sasuka\AppData\Roaming\OpenOffice.org\3\.lock [142] O61 - LFC:Last File Created 9/23/2011 - 10:10:13 PM ---A- C:\Users\Sasuka\AppData\Roaming\OpenOffice.org\3\user\registry\data\org\openoffice\Office\Common.xcu [853] O61 - LFC:Last File Created 9/23/2011 - 10:11:49 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\QWWdBGfUeh4jKY0BbNY1KNDBnG8= [435242] O61 - LFC:Last File Created 9/23/2011 - 10:11:55 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\84b3w6_1qYhmSK06pQSq+oq2+9k= [101853] O61 - LFC:Last File Created 9/23/2011 - 10:12:03 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\p1IaKxpIe1JrnfoTlrAh28eOO3w= [4011921] O61 - LFC:Last File Created 9/23/2011 - 10:12:07 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\+HarhwugbzVVaTtcrXWLeIxz+jg= [1105590] O61 - LFC:Last File Created 9/23/2011 - 10:12:19 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\E9IM5EP9uNZN3cdZ0HDbAhZaZQQ= [9441467] O61 - LFC:Last File Created 9/23/2011 - 10:12:32 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\Gc6K1i6ofhNNduSjytkDfQyeXVc= [4405957] O61 - LFC:Last File Created 9/23/2011 - 10:12:33 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\HNHNnWZ434A63OGPT8qj4nHSy6M= [77783] O61 - LFC:Last File Created 9/23/2011 - 10:12:34 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\gcL5vMMIH8PxcaeI6S3aq_ozK0E= [23363] O61 - LFC:Last File Created 9/23/2011 - 10:12:45 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\ULvj51Hu1lXF4gQ4FYjrtFcVONw= [7718681] O61 - LFC:Last File Created 9/23/2011 - 10:12:54 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\Bs9pKzqLDAnoruv4auxAjsBMG6U= [2916431] O61 - LFC:Last File Created 9/23/2011 - 10:12:57 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\SsSr1RO1MTlbI544YsXQz82uUBo= [1537333] O61 - LFC:Last File Created 9/23/2011 - 10:12:59 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\6bQonDpbQTsnONh+12FANswh4fA= [622883] O61 - LFC:Last File Created 9/23/2011 - 10:13:01 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\fO4eRZ8p73jsfVYYLUSAIxRZDxw= [32203] O61 - LFC:Last File Created 9/23/2011 - 10:13:04 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\xWMCFzpu+cjbBCcmDqISB+vtV4w= [2317293] O61 - LFC:Last File Created 9/23/2011 - 10:13:07 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\Ku2Exzv2PQCnoq3UwKhSEBAiug4= [706145] O61 - LFC:Last File Created 9/23/2011 - 10:13:08 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\5fgWS_6X_jsZJVo8ZAGodCtz4ro= [80347] O61 - LFC:Last File Created 9/23/2011 - 10:13:09 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\m_G5FuCoYp7Yxz2C3eRn6Xlqrss= [34060] O61 - LFC:Last File Created 9/23/2011 - 10:13:27 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\SeW3rZFpWrq4Ii7+KQIMTdDtzAk= [13860077] O61 - LFC:Last File Created 9/23/2011 - 10:13:50 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\EQCEpMs+gNeqxbK0zxj8ziuXwjE= [5755312] O61 - LFC:Last File Created 9/23/2011 - 10:14:55 PM ---A- C:\Users\Sasuka\AppData\Local\Temp\jupdate_d6763162 [7805] O61 - LFC:Last File Created 9/23/2011 - 10:14:56 PM ---A- C:\Users\Sasuka\AppData\Local\Temp\AUCHECK_CORE.txt [302] O61 - LFC:Last File Created 9/23/2011 - 10:14:56 PM ---A- C:\Users\Sasuka\AppData\Local\Temp\AUCHECK_PARSER.txt [74] O61 - LFC:Last File Created 9/23/2011 - 10:22:43 PM ---A- C:\Users\Sasuka\Downloads\[MFT] Naruto Chapitre 556.zip [7227465] O61 - LFC:Last File Created 9/23/2011 - 10:26:09 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\KPgejxpZEQDcCgJlMxtvUI4ixTc= [8831024] O61 - LFC:Last File Created 9/23/2011 - 10:28:10 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\YCEit15cyqB3diJW9O9Vnx3+TkM= [8321959] O61 - LFC:Last File Created 9/23/2011 - 10:28:17 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\l4okPXUodfDUAz47GCY3ajkopEA= [2940900] O61 - LFC:Last File Created 9/23/2011 - 10:28:22 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\QG2RcGw6Sr+lmBK8QMtJZSOYe7E= [5660451] O61 - LFC:Last File Created 9/23/2011 - 10:28:24 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\rD4_FG6WOhPhkiiNhp1aGFSL0_8= [656407] O61 - LFC:Last File Created 9/23/2011 - 10:28:32 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\1mUZ60L2S8E0f7gyd6Tv5wBBZAc= [4390333] O61 - LFC:Last File Created 9/23/2011 - 10:28:37 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\7O1BhnINXX_Tt9bn3IUv1EEiFLU= [8340404] O61 - LFC:Last File Created 9/23/2011 - 10:28:43 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\O5NU+7QYoNOh+2gw1IIs5AiYCYU= [3295836] O61 - LFC:Last File Created 9/23/2011 - 10:28:45 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\0fg51tnTBUWohSmbeZxnzTzv4tY= [1083592] O61 - LFC:Last File Created 9/23/2011 - 10:28:47 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\8kzACxvlsbzKHqcgW+w85DwHCYY= [462021] O61 - LFC:Last File Created 9/23/2011 - 10:28:53 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\3d0ddz8k4FgVTsjElvkJul04Ig4= [6492137] O61 - LFC:Last File Created 9/23/2011 - 10:28:54 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\0MM2GgWTHsa4Cy9sfnZHBBdCTN0= [507222] O61 - LFC:Last File Created 9/23/2011 - 10:29:16 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\4DGmXg2hqltIio1MFRq8JVYtHTU= [22658906] O61 - LFC:Last File Created 9/23/2011 - 10:29:32 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\95B8fHtgYIvErIb7CNZYmDwzRgE= [6712358] O61 - LFC:Last File Created 9/23/2011 - 10:29:38 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\z7VKl5LKFtj7jDVRMBWr1a6ZbqA= [3563871] O61 - LFC:Last File Created 9/23/2011 - 10:29:41 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\zxJD1M2olcums1H3iQAjw3GXzn4= [1149312] O61 - LFC:Last File Created 9/23/2011 - 10:29:57 PM ---A- C:\Users\Sasuka\Downloads\LeagueofLegends.exe [2307072] O61 - LFC:Last File Created 9/23/2011 - 10:30:04 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\cs9wfFOcNLPewEbuifXkHKMggxM= [34207837] O61 - LFC:Last File Created 9/23/2011 - 10:30:08 PM ---A- C:\Users\Sasuka\AppData\Local\Temp\swt-win32-3349.dll [139672] O61 - LFC:Last File Created 9/23/2011 - 10:30:11 PM ---A- C:\Users\Sasuka\AppData\Local\Temp\6991739284f991f5dcff8cd0c0f1d06d.lock [0] O61 - LFC:Last File Created 9/23/2011 - 10:30:44 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\OhxBULbVpNBC5YrqEzkUqHm7yOc= [14532464] O61 - LFC:Last File Created 9/23/2011 - 10:30:47 PM ---A- C:\Users\Sasuka\AppData\Local\PMB Files\cert\secmod.db [16384] O61 - LFC:Last File Created 9/23/2011 - 10:30:48 PM ---A- C:\Users\Sasuka\AppData\Local\PMB Files\cert\cert8.db [65536] O61 - LFC:Last File Created 9/23/2011 - 10:30:48 PM ---A- C:\Users\Sasuka\AppData\Local\PMB Files\cert\key3.db [16384] O61 - LFC:Last File Created 9/23/2011 - 10:30:51 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\TYXe7qSaZDZ83IrndxIkPAXPpV4= [4300769] O61 - LFC:Last File Created 9/23/2011 - 10:30:55 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\01kDwDmNovJeqX1TZhHx132CYsM= [2135838] O61 - LFC:Last File Created 9/23/2011 - 10:31:05 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\RfAG2_cAw_U_tIKJO8EK3EiQJuU= [3048607] O61 - LFC:Last File Created 9/23/2011 - 10:31:13 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\xOpZveMQlk_lIv+7nqeBmDH1QsY= [11855627] O61 - LFC:Last File Created 9/23/2011 - 10:31:22 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\JHeE8CnHdMCFQuGRHhjSUZrjBuQ= [3713134] O61 - LFC:Last File Created 9/23/2011 - 10:31:24 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\d8CKNgfEk8bcQ+tgKrn6CcvQBy8= [175087] O61 - LFC:Last File Created 9/23/2011 - 10:31:25 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\ekhav7mHBEGkYpVBI_BOey8CuKk= [55790] O61 - LFC:Last File Created 9/23/2011 - 10:31:27 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\Avm_HLrylPDoPes3zquDX+9r28I= [781435] O61 - LFC:Last File Created 9/23/2011 - 10:31:28 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\xiCSt7s3DbIRMF5W4V3MIeMMPYw= [198898] O61 - LFC:Last File Created 9/23/2011 - 10:31:30 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\vQ3xm+UWG2FjjanqrqNLSTOhB6o= [35783] O61 - LFC:Last File Created 9/23/2011 - 10:31:31 PM ---A- C:\Users\Sasuka\AppData\Local\Windows Live\.cache\cBziK5nxNjWA_QtCfEBNAkx+tWs= [16991] O61 - LFC:Last File Created 9/23/2011 - 10:31:59 PM ---A- C:\Users\Sasuka\AppData\Local\Temp\~DFDDB5D33E91C217B6.TMP [16384] O61 - LFC:Last File Created 9/23/2011 - 10:32:00 PM ---A- C:\Users\Sasuka\AppData\Local\PMB Files\lqn5iddw8auyg43pzpjvofe167ipoyc0.pando [43853] O61 - LFC:Last File Created 9/23/2011 - 10:47:26 PM ---A- C:\Users\Sasuka\AppData\Local\PMB Files\53\64\5364DCE523408EF3E1565B768D2C57E1F9270B6A.dat [266] O61 - LFC:Last File Created 9/23/2011 - 10:48:06 PM ---A- C:\Users\Sasuka\AppData\Local\Temp\~DF23907337EB04A63D.TMP [16384] O61 - LFC:Last File Created 9/23/2011 - 10:56:57 PM ---A- C:\Users\Sasuka\Downloads\ZHPDiag2.exe [2559314] O61 - LFC:Last File Created 9/23/2011 - 5:51:05 PM -SHA- C:\Users\Sasuka\AppData\Roaming\Microsoft\Protect\S-1-5-21-1140207308-3924336767-164626575-1000\adfdd8e9-7a92-4fde-b922-0b1b2cccbfb0 [468] O61 - LFC:Last File Created 9/23/2011 - 5:51:51 PM ---A- C:\Users\Sasuka\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt02.sqm [320] O61 - LFC:Last File Created 9/23/2011 - 5:52:03 PM ---A- C:\Users\Sasuka\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog.bak [0] O61 - LFC:Last File Created 9/23/2011 - 9:28:24 PM ---A- C:\Users\Sasuka\AppData\Local\Diagnostics\460911090\2011092320.000\8D929B2A-1681-4BA0-89AD-601D7BF0400E.Diagnose.0.etl [196608] O61 - LFC:Last File Created 9/23/2011 - 9:28:26 PM ---A- C:\Users\Sasuka\AppData\Local\Diagnostics\460911090\2011092320.000\NetworkConfiguration.cab [1104] O61 - LFC:Last File Created 9/23/2011 - 9:28:30 PM ---A- C:\Users\Sasuka\AppData\Local\Diagnostics\460911090\2011092320.000\8D929B2A-1681-4BA0-89AD-601D7BF0400E.Repair.1.etl [131072] O61 - LFC:Last File Created 9/23/2011 - 9:28:46 PM ---A- C:\Users\Sasuka\AppData\Local\Diagnostics\460911090\2011092320.000\8D929B2A-1681-4BA0-89AD-601D7BF0400E.Verify.2.etl [196608] O61 - LFC:Last File Created 9/23/2011 - 9:28:47 PM ---A- C:\Users\Sasuka\AppData\Local\Diagnostics\460911090\2011092320.000\1A567EAD-931F-4540-888E-BA7BB4ECEC5A.Diagnose.3.etl [196608] O61 - LFC:Last File Created 9/23/2011 - 9:29:20 PM ---A- C:\Users\Sasuka\AppData\Local\Diagnostics\460911090\2011092320.000\1A567EAD-931F-4540-888E-BA7BB4ECEC5A.Repair.4.etl [196608] O61 - LFC:Last File Created 9/23/2011 - 9:29:36 PM ---A- C:\Users\Sasuka\AppData\Local\Diagnostics\460911090\2011092320.000\1144F65B-6300-491F-ACB5-6D80CCDD7D24.Diagnose.6.etl [196608] O61 - LFC:Last File Created 9/23/2011 - 9:29:36 PM ---A- C:\Users\Sasuka\AppData\Local\Diagnostics\460911090\2011092320.000\1A567EAD-931F-4540-888E-BA7BB4ECEC5A.Verify.5.etl [196608] O61 - LFC:Last File Created 9/23/2011 - 9:30:37 PM ---A- C:\Users\Sasuka\AppData\Local\Diagnostics\460911090\2011092320.000\NetworkDiagnostics.0.debugreport.xml [82286] O61 - LFC:Last File Created 9/23/2011 - 9:30:37 PM ---A- C:\Users\Sasuka\AppData\Local\Diagnostics\460911090\2011092320.000\results.xsl [49097] O61 - LFC:Last File Created 9/23/2011 - 9:31:04 PM ---A- C:\Users\Sasuka\AppData\Local\Diagnostics\460911090\2011092320.000\NetworkDiagnostics.1.debugreport.xml [68714] O61 - LFC:Last File Created 9/23/2011 - 9:31:04 PM ---A- C:\Users\Sasuka\AppData\Local\Diagnostics\460911090\2011092320.000\ResultReport.xml [50561] O61 - LFC:Last File Created 9/23/2011 - 9:31:04 PM ---A- C:\Users\Sasuka\AppData\Local\Diagnostics\460911090\2011092320.000\results.xml [256] O61 - LFC:Last File Created 9/23/2011 - 9:31:04 PM ---A- C:\Users\Sasuka\AppData\Local\Diagnostics\460911090\latest.cab [50284] O61 - LFC:Last File Created 9/23/2011 - 9:46:21 PM ---A- C:\Users\Sasuka\AppData\Local\ArcSoft\Connection Service\ADSystem\ADDesc.xml [167] O61 - LFC:Last File Created 9/23/2011 - 9:46:21 PM ---A- C:\Users\Sasuka\AppData\Local\ArcSoft\Connection Service\ADSystem\ADPresentFile.xml [92] O61 - LFC:Last File Created 9/24/2011 - 11:03:31 PM ---A- C:\Users\Sasuka\AppData\Local\PMB Files\53\64\5364DCE523408EF3E1565B768D2C57E1F9270B6A.ct2 [0] O61 - LFC:Last File Created 9/24/2011 - 11:03:32 PM ---A- C:\Users\Sasuka\AppData\Local\PMB Files\pando.save [10423] O61 - LFC:Last File Created 9/24/2011 - 11:03:33 PM ---A- C:\Users\Sasuka\AppData\Local\PMB Files\53\64\5364DCE523408EF3E1565B768D2C57E1F9270B6A.ct1 [0] ~ Scan Files in 00mn AMs ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ~ Scan ADS in 00mn AMs ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - 12/17/2009 - C:\windows\system32\DRIVERS\atipmdag.sys - No object(No service) .(.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG O64 - Services: CurCS - 11/25/2009 - C:\windows\system32\DRIVERS\avgntflt.sys - No object(No service) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT O64 - Services: CurCS - 5/1/2010 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys - No object(No service) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64 O64 - Services: CurCS - 12/17/2009 - C:\windows\system32\DRIVERS\igdpmd64.sys - No object(No service) .(.Intel Corporation - Intel Graphics Kernel Mode Driver.) - LEGACY_INTELKMD O64 - Services: CurCS - 8/6/2009 - C:\windows\system32\DRIVERS\TurboB.sys - No object (No service) .(...) - LEGACY_TURBOB ~ Scan Services in 01mn AMs ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\windows\regedit.exe O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\windows\regedit.exe ~ Scan Keys in 00mn AMs ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ~ Scan Keys in 00mn AMs ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.1D70BE6C8303EB57079B005BA6B399AD] [sPRF][9/23/2011] (.Eclipse Foundation - SWT for Windows native library.) -- C:\Users\Sasuka\AppData\Local\Temp\swt-win32-3349.dll [139672] [MD5.2E4F7DE86F5D98E5D29838F5635ADAE3] [sPRF][8/3/2010] (...) -- C:\Users\Sasuka\Desktop\avira_antivir_personal_free.exe [30991592] ~ Scan Files in 00mn AMs ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "TCP Query User{555EB5E2-B97F-4497-8E8E-9A5BE0A9BD0A}C:\users\public\games\world of warcraft\launcher.exe" | In - Public - P6 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcraft\launcher.exe O87 - FAEL: "UDP Query User{E58E9F53-011D-44EE-B5C0-069B261DC777}C:\users\public\games\world of warcraft\launcher.exe" | In - Public - P17 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcraft\launcher.exe O87 - FAEL: "{4A4D7E99-209A-4175-B048-8CB05CEE0ABA}" | In - Public - P6 - TRUE | .(.Blizzard Entertainment - Blizzard Downloader.) -- C:\Users\Public\Games\World of Warcraft\WoW-3.2.0-frFR-downloader.exe O87 - FAEL: "{6A80EF48-B26B-4E35-B29D-791D561EE1D4}" | In - Public - P17 - TRUE | .(.Blizzard Entertainment - Blizzard Downloader.) -- C:\Users\Public\Games\World of Warcraft\WoW-3.2.0-frFR-downloader.exe O87 - FAEL: "{9898B3F1-1FF1-4DD8-8CC7-25032334A107}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment, Inc. - Blizzard Repair Utility.) -- C:\Users\Public\Games\World of Warcraft\Repair.exe O87 - FAEL: "{714AAA6A-0FA8-4C58-B8B5-75598DC7CA4D}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment, Inc. - Blizzard Repair Utility.) -- C:\Users\Public\Games\World of Warcraft\Repair.exe O87 - FAEL: "{6D971B96-50B7-42B0-88F9-EB3D13E814BD}" | In - Domain - P6 - FALSE | .(.Blizzard Entertainment, Inc. - Blizzard Repair Utility.) -- C:\Users\Public\Games\World of Warcraft\Repair.exe O87 - FAEL: "{28509A15-1745-41DC-9631-552EEA4A9162}" | In - Domain - P17 - FALSE | .(.Blizzard Entertainment, Inc. - Blizzard Repair Utility.) -- C:\Users\Public\Games\World of Warcraft\Repair.exe O87 - FAEL: "{53D8534B-BB0E-4792-BC79-418B4DA54603}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Common Files\Blizzard Entertainment\World of Warcraft\Uninstall.exe O87 - FAEL: "{C8B06C68-098E-4EB2-BEA5-76DFA9DE90CA}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Common Files\Blizzard Entertainment\World of Warcraft\Uninstall.exe O87 - FAEL: "{EF33EEA5-15E4-4C6B-88C9-BC06E750DE42}" | In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Common Files\Blizzard Entertainment\World of Warcraft\Uninstall.exe O87 - FAEL: "{EA587F31-D5D7-42B9-8238-DCFCB97650D1}" | In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Common Files\Blizzard Entertainment\World of Warcraft\Uninstall.exe O87 - FAEL: "TCP Query User{B6D681C0-570C-4E78-954D-FEFD511DEE3B}C:\users\public\games\world of warcraft\wow-3.2.0.10192-to-3.3.0.10958-frfr-downloader.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcra O87 - FAEL: "UDP Query User{14C4F7E7-2266-425A-A558-76D1000B26F0}C:\users\public\games\world of warcraft\wow-3.2.0.10192-to-3.3.0.10958-frfr-downloader.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcr O87 - FAEL: "TCP Query User{A3CEEB50-4B97-4044-A1EC-86F990B8F074}C:\users\public\games\world of warcraft\wow-3.3.0.10958-to-3.3.0.11159-frfr-downloader.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcra O87 - FAEL: "UDP Query User{CA0B28C5-164B-46E3-902F-023F26C22D76}C:\users\public\games\world of warcraft\wow-3.3.0.10958-to-3.3.0.11159-frfr-downloader.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcr O87 - FAEL: "TCP Query User{883EEE2C-EF57-4CAB-A8F5-C6B8226C0E49}C:\users\public\games\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-frfr-downloader.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcra O87 - FAEL: "UDP Query User{FF372EAE-15CA-4677-8D85-A182A35BCDAC}C:\users\public\games\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-frfr-downloader.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcr O87 - FAEL: "TCP Query User{0E72FC7E-3A9E-4E96-84AA-0CED285626FB}C:\users\public\games\world of warcraft\wow-3.3.2.11403-to-3.3.3.11685-frfr-downloader.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcra O87 - FAEL: "UDP Query User{FECA3AC4-ACED-4C3B-9AD7-2DCE52538B87}C:\users\public\games\world of warcraft\wow-3.3.2.11403-to-3.3.3.11685-frfr-downloader.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcr O87 - FAEL: "TCP Query User{2E32F925-3197-4EC6-BEAD-51415F239D54}C:\users\public\games\world of warcraft\wow-3.3.3.11685-to-3.3.3.11723-frfr-downloader.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcra O87 - FAEL: "UDP Query User{AD6F3DE5-8E7D-4C31-AF85-20EC1C312DA8}C:\users\public\games\world of warcraft\wow-3.3.3.11685-to-3.3.3.11723-frfr-downloader.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcr O87 - FAEL: "TCP Query User{BD3EFE3D-0A0E-4DC4-8647-00D7D3C09A09}C:\users\public\games\world of warcraft\wow-3.3.3.11723-to-3.3.5.12213-frfr-downloader.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcra O87 - FAEL: "UDP Query User{CEF3C82B-8E5A-4CC5-A2A7-B0613AD52B58}C:\users\public\games\world of warcraft\wow-3.3.3.11723-to-3.3.5.12213-frfr-downloader.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcr O87 - FAEL: "TCP Query User{0A20B190-040C-40FD-AF8C-4AF3EAE914B6}C:\users\public\games\world of warcraft\wow-3.3.5.12213-to-3.3.5.12340-frfr-downloader.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcra O87 - FAEL: "UDP Query User{D49C7A36-D19A-45EB-9C09-E2B7B596CA1B}C:\users\public\games\world of warcraft\wow-3.3.5.12213-to-3.3.5.12340-frfr-downloader.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment.) -- C:\users\public\games\world of warcr O87 - FAEL: "{3575415F-89FA-4FD3-BF59-4F8320117016}" | In - Private - P6 - TRUE | .(.SQUARE ENIX CO., LTD. - FINAL FANTASY XIV Beta Version.) -- C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV Beta Version\ffxivboot.exe O87 - FAEL: "{54456029-1386-4A2F-B982-10080AC3F0DC}" | In - Private - P17 - TRUE | .(.SQUARE ENIX CO., LTD. - FINAL FANTASY XIV Beta Version.) -- C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV Beta Version\ffxivboot.exe O87 - FAEL: "{CE280169-BA6A-4492-8159-8E4D0B9ED4B9}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe O87 - FAEL: "{99E35213-00F3-417E-A1C4-E8A048852D94}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe O87 - FAEL: "TCP Query User{E4113ED7-F0FE-45DF-84EB-AB2689393AEA}C:\users\sasuka\downloads\starcraft_2_eu_fr-fr.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - Blizzard Downloader.) -- C:\users\sasuka\downloads\starcraft_2_eu_fr-fr.exe O87 - FAEL: "UDP Query User{44E03CCB-57BA-4579-86E8-C451C250C8E0}C:\users\sasuka\downloads\starcraft_2_eu_fr-fr.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment.) -- C:\users\sasuka\downloads\starcraft_2_eu_fr-fr.exe O87 - FAEL: "{E1817918-9031-4F3F-924C-FE744C693C5D}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - Blizzard Launcher.) -- C:\Program Files (x86)\StarCraft II\StarCraft II.exe O87 - FAEL: "{11343C76-8D0E-436A-8A8F-67F0A4504F31}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - Blizzard Launcher.) -- C:\Program Files (x86)\StarCraft II\StarCraft II.exe O87 - FAEL: "TCP Query User{FBE1EADB-E1EA-4AD0-A73A-A4880925E26C}C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base15405\sc2. O87 - FAEL: "UDP Query User{A5ADA4C5-D75A-4DCA-8398-97A2411E7747}C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base15405\sc2 O87 - FAEL: "{92C09AFD-6A8F-4C3A-BAE2-8F7879E5337E}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{905734DE-B602-4F1F-8F47-907B29F92E8C}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "TCP Query User{ABDDC9FF-1B57-4553-A0D6-364FAE9C0D73}C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment.) -- C:\program files (x86)\starcraft ii\support\blizzarddownloade O87 - FAEL: "UDP Query User{828930BD-F9E9-4A74-97F8-AE3E9DE6DBF0}C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment.) -- C:\program files (x86)\starcraft ii\support\blizzarddownload O87 - FAEL: "TCP Query User{E05E5052-E011-4732-B573-371BDB2B43F4}C:\program files (x86)\starcraft ii\versions\base16561\sc2.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base16561\sc2. O87 - FAEL: "UDP Query User{FAE6CC0E-D6EF-46CB-942D-BFA50A87F361}C:\program files (x86)\starcraft ii\versions\base16561\sc2.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base16561\sc2 O87 - FAEL: "TCP Query User{2B38E925-64A3-40B9-A843-0C99B5CBCFCC}C:\program files (x86)\starcraft ii\versions\base16605\sc2.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base16605\sc2. O87 - FAEL: "UDP Query User{5404C18C-7F25-40D6-BD8C-DF84C6FDB790}C:\program files (x86)\starcraft ii\versions\base16605\sc2.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base16605\sc2 O87 - FAEL: "{0C7E84F7-5656-42CC-A4F0-2AEEE63DCC85}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe O87 - FAEL: "TCP Query User{9E8ABCBE-CB9B-4D58-8F52-9F42419620D0}C:\program files (x86)\starcraft ii\versions\base16755\sc2.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base16755\sc2. O87 - FAEL: "UDP Query User{D0FB6619-E423-40A0-8476-2C7D7A61510B}C:\program files (x86)\starcraft ii\versions\base16755\sc2.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base16755\sc2 O87 - FAEL: "{2F31AF31-DEC5-4613-803F-F39E0333E486}" | In - Public - P17 - TRUE | .(.Blizzard Entertainment, Inc. - StarCraft II.) -- C:\program files (x86)\starcraft ii\versions\base16755\sc2.exe O87 - FAEL: "{F0539D43-A556-4496-9F86-0409B4847F6D}" | In - Public - P6 - TRUE | .(.Blizzard Entertainment, Inc. - StarCraft II.) -- C:\program files (x86)\starcraft ii\versions\base16755\sc2.exe O87 - FAEL: "TCP Query User{B74075B1-EC98-4A94-962B-838CE70B1C1A}C:\users\sasuka\downloads\downloader_diablo2_lord_of_destruction_frfr.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment.) -- C:\users\sasuka\downloads\downloader_diablo2_lord_of_d O87 - FAEL: "UDP Query User{9643C506-2447-4AF8-BB6D-418952CC8277}C:\users\sasuka\downloads\downloader_diablo2_lord_of_destruction_frfr.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment.) -- C:\users\sasuka\downloads\downloader_diablo2_lord_of_ O87 - FAEL: "TCP Query User{90151E63-86D1-497D-AED3-036C14CED9F8}C:\users\sasuka\downloads\downloader_diablo2_frfr.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment.) -- C:\users\sasuka\downloads\downloader_diablo2_frfr.exe O87 - FAEL: "UDP Query User{DFB82168-D22A-4966-88BB-AB7524E96770}C:\users\sasuka\downloads\downloader_diablo2_frfr.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment.) -- C:\users\sasuka\downloads\downloader_diablo2_frfr.exe O87 - FAEL: "TCP Query User{D1D21574-82E0-46E3-8B60-BB400E91F74A}C:\program files (x86)\starcraft ii\versions\base16939\sc2.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base16939\sc2. O87 - FAEL: "UDP Query User{D31A9485-710A-4225-8DA5-0C4A40FD410C}C:\program files (x86)\starcraft ii\versions\base16939\sc2.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base16939\sc2 O87 - FAEL: "{8E6DD538-7A1D-481E-92EC-7BDBA5B7F6A2}" | In - Domain - P6 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe O87 - FAEL: "{476B3B7A-6603-42C4-99B5-826E8EDFA8D7}" | In - Domain - P17 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe O87 - FAEL: "{F96147E9-9615-4E76-BD73-B269CF3CB5F9}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe O87 - FAEL: "{1E99A644-6251-42A9-B472-BDC2982F64BE}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe O87 - FAEL: "{87A1890A-1976-48A4-AECF-283DEC180D0A}" | In - None - P17 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe ~ Scan Firewall in 01mn AMs ---\\ Scan Additionnel (O88) Database Version : 8634 - (20/09/2011) Clés trouvées (Keys found) : 13 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 6 Fichiers trouvés (Files found) : 0 [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2C8574B5-6935-4FCE-860E-F4E8602378FF}] =>PUP.OfferBox [HKLM\Software\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{37F4A335-D085-423e-A425-0370799166FB}] =>Toolbar.AskTBar [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit [HKLM\Software\WOW6432Node\Classes\CLSID\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] =>Hijacker.Agent [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] =>Hijacker.Agent [HKLM\Software\WOW6432Node\Classes\CLSID\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] =>Hijacker.Agent [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] =>Hijacker.Agent [HKCU\Software\AppDataLow\Software\Softonic_France] =>Toolbar.Conduit [HKLM\Software\WOW6432Node\Softonic_France] =>Toolbar.Conduit [HKCU\Software\Spointer] =>Adware.SPointer C:\Users\Sasuka\AppData\Roaming\teamspeak2 =>Toolbar.Conduit C:\Users\Sasuka\AppData\Local\moovida air =>Adware.SPointer C:\Users\Sasuka\AppData\LocalLow\Softonic_France =>Toolbar.Conduit C:\Program Files (x86)\OfferBox =>PUP.OfferBox C:\Program Files (x86)\Softonic_France =>Toolbar.Conduit ~ Scan Additionnel in 05mn AMs ---\\ Recherche détournement de DNS routeur (O89) Serveur : livebox.home Address: 192.168.1.1 Nom : www.l.google.com Addresses: 209.85.148.105 209.85.148.147 209.85.148.99 209.85.148.103 209.85.148.104 209.85.148.106 Aliases: www.google.fr www.google.com ~ Scan DNS in 03mn AMs ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 9/16/2010 113152 | (ACDaemon) . (.ArcSoft Inc..) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe SR - | Auto 3/16/2010 16896 | (AgereModemAudio) . (.LSI Corporation.) - C:\Program Files\LSI SoftModem\agr64svc.exe SR - | Auto 3/16/2010 202752 | (AMD External Events Utility) . (.AMD.) - C:\windows\system32\atiesrxx.exe SR - | Auto 8/3/2010 108289 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe SR - | Auto 8/3/2010 185089 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe SR - | Auto 9/17/2010 144672 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Demand 3/16/2010 4154120 | (Bluetooth Device Manager) . (.Motorola, Inc..) - C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe SR - | Demand 3/16/2010 1029896 | (Bluetooth Media Service) . (.Motorola, Inc..) - C:\Program Files\Motorola\Bluetooth\audiosrv.exe SR - | Auto 3/16/2010 637192 | (Bluetooth OBEX Service) . (.Motorola, Inc..) - C:\Program Files\Motorola\Bluetooth\obexsrv.exe SR - | Auto 9/17/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe SR - | Auto 8/3/2010 1420560 | (EvtEng) . (.Intel® Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe SS - | Demand 3/16/2010 647680 | (FLEXnet Licensing Service) . (.Macrovision Europe Ltd..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe SR - | Demand 3/16/2010 1028096 | (FLEXnet Licensing Service 64) . (.Macrovision Europe Ltd..) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe SR - | Auto 8/3/2010 354840 | (IAANTMON) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe SR - | Demand 10/1/2010 932640 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SR - | Auto 3/16/2010 268824 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe SS - | Demand 8/22/2010 342016 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe SR - | Auto 3/16/2010 160768 | (Micro Star SCM) . (.Micro-Star International Co., Ltd..) - C:\Program Files (x86)\System Control Manager\MSIService.exe SR - | Auto 8/3/2010 831760 | (RegSrvc) . (.Intel® Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe SS - | Demand 3/16/2010 118672 | (TurboBoost) . (.Intel® Corporation.) - C:\Program Files\Intel\TurboBoost\TurboBoost.exe SR - | Auto 3/16/2010 2320920 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe SR - | Auto 7/14/2009 27136 | C:\windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\windows\system32\svchost.exe ~ Scan Services in 04mn AMs ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by Sasuka at 9/24/2011 12:10:19 AM device: opened successfully user: error reading MBR Disk trace: error: Read Descripteur non valide kernel: error reading MBR ~ Scan MBR in 07mn AMs ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Sasuka at 9/24/2011 12:10:21 AM ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ Scan MBR in 09mn AMs End of the scan (1395 lines in 56mn AMs)(0)
- le 23 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Après redémarrage niquel les icônes de la barre des tâches sont réapparue et je peut cliquer dessus sens les perdes, par contre une question pourquoi mon pc a t-il mis si longtemps pour revenir a une sauvegarde antérieure? c'est à dire de mercredi soir a vendredi matin pour finir ?
- le 23 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Résulat Etape 1: # AdwCleaner v1.307 - Rapport créé le 23/09/2011 à 22:59:46 # Mis à jour le 19/09/11 à 09h par Xplode # Système d'exploitation : Windows 7 Home Premium (64 bits) # Nom d'utilisateur : Sasuka - SASUKA-MSI (Administrateur) # Exécuté depuis : C:\Users\Sasuka\Desktop\adwcleaner0.exe # Option [Recherche] ***** [Processus] ***** Présent : [PID:4104] offerbox.exe ***** [services] ***** ***** [Fichiers / Dossiers] ***** Dossier Présent : C:\Users\Sasuka\AppData\Roaming\OfferBox Dossier Présent : C:\Users\Sasuka\AppData\LocalLow\Conduit Dossier Présent : C:\Users\Sasuka\AppData\LocalLow\PriceGong Dossier Présent : C:\Program Files (x86)\Conduit Dossier Présent : C:\Program Files (x86)\OfferBox Fichier Présent : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur OfferBox.lnk ***** [Registre] ***** Clé Présente : HKCU\Software\Offerbox Clé Présente : HKCU\Software\AppDataLow\Toolbar Clé Présente : HKCU\Software\AppDataLow\Software\Conduit Clé Présente : HKCU\Software\AppDataLow\Software\PriceGong Clé Présente : HKLM\SOFTWARE\Conduit Clé Présente : HKLM\SOFTWARE\Offerbox Clé Présente : HKLM\SOFTWARE\Classes\OfferBox.OfferBoxServer Clé Présente : HKLM\SOFTWARE\Classes\OfferBox.OfferBoxServer.1 Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{A7E8C343-7860-4A95-9AA8-AAF30D0F6D1E} Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{6612AFDD-34AD-4B89-A236-7E6D07C3FDCD} Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{ED85AEBE-F834-4088-B5D3-97EB2478A6CD} Clé Présente : HKLM\SOFTWARE\Google\Chrome\Extensions\bjeikeheijdjdfjbmknpefojickbkmom Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} Valeur Présente : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [offerboxffx@offerbox.com] ***** [Registre (64 bits)] ***** [x64] Clé Présente : HKCU64\Software\Offerbox [x64] Clé Présente : HKCU64\Software\AppDataLow\Toolbar [x64] Clé Présente : HKCU64\Software\AppDataLow\Software\Conduit [x64] Clé Présente : HKCU64\Software\AppDataLow\Software\PriceGong [x64] Clé Présente : HKLM64\SOFTWARE\Classes\OfferBox.OfferBoxServer [x64] Clé Présente : HKLM64\SOFTWARE\Classes\OfferBox.OfferBoxServer.1 [x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{6612AFDD-34AD-4B89-A236-7E6D07C3FDCD} [x64] Clé Présente : HKLM64\SOFTWARE\Classes\TypeLib\{ED85AEBE-F834-4088-B5D3-97EB2478A6CD} [x64] Clé Présente : HKCU64\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} [x64] Clé Présente : HKCU64\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} ***** [Navigateurs] ***** -\\ Internet Explorer v8.0.7600.16385 [HKCU\..\Main - Start Page] = hxxp://search.conduit.com?SearchSource=10&ctid=CT2542115 -\\ Mozilla Firefox v3.6.12 (fr) Profil : y4axo284.default Fichier : C:\Users\Sasuka\AppData\Roaming\Mozilla\Firefox\Profiles\y4axo284.default\prefs.js [OK] Le fichier ne contient aucune entrée illégitime. ************************* AdwCleaner[R1].txt - [3349 octets] - [23/09/2011 22:59:46] ########## EOF - C:\AdwCleaner[R1].txt - [3477 octets] ########## Résultat Etape 2: # AdwCleaner v1.307 - Rapport créé le 23/09/2011 à 23:01:43 # Mis à jour le 19/09/11 à 09h par Xplode # Système d'exploitation : Windows 7 Home Premium (64 bits) # Nom d'utilisateur : Sasuka - SASUKA-MSI (Administrateur) # Exécuté depuis : C:\Users\Sasuka\Desktop\adwcleaner0.exe # Option [suppression] ***** [Processus] ***** Tué : [PID:4104] offerbox.exe ***** [services] ***** ***** [Fichiers / Dossiers] ***** Dossier Supprimé : C:\Users\Sasuka\AppData\Roaming\OfferBox Dossier Supprimé : C:\Users\Sasuka\AppData\LocalLow\Conduit Dossier Supprimé : C:\Users\Sasuka\AppData\LocalLow\PriceGong Dossier Supprimé : C:\Program Files (x86)\Conduit Fichier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur OfferBox.lnk ***** [Registre] ***** Clé Supprimée : HKCU\Software\Offerbox Clé Supprimée : HKCU\Software\AppDataLow\Toolbar Clé Supprimée : HKCU\Software\AppDataLow\Software\Conduit Clé Supprimée : HKCU\Software\AppDataLow\Software\PriceGong Clé Supprimée : HKLM\SOFTWARE\Conduit Clé Supprimée : HKLM\SOFTWARE\Offerbox Clé Supprimée : HKLM\SOFTWARE\Classes\OfferBox.OfferBoxServer Clé Supprimée : HKLM\SOFTWARE\Classes\OfferBox.OfferBoxServer.1 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{A7E8C343-7860-4A95-9AA8-AAF30D0F6D1E} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{6612AFDD-34AD-4B89-A236-7E6D07C3FDCD} Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{ED85AEBE-F834-4088-B5D3-97EB2478A6CD} Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\bjeikeheijdjdfjbmknpefojickbkmom Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} Valeur Supprimée : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [offerboxffx@offerbox.com] ***** [Registre (64 bits)] ***** [x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{6612AFDD-34AD-4B89-A236-7E6D07C3FDCD} ***** [Navigateurs] ***** -\\ Internet Explorer v8.0.7600.16385 Remplacé : [HKCU\..\Main - Start Page] = hxxp://search.conduit.com?SearchSource=10&ctid=CT2542115 --> hxxp://www.google.fr -\\ Mozilla Firefox v3.6.12 (fr) Profil : y4axo284.default Fichier : C:\Users\Sasuka\AppData\Roaming\Mozilla\Firefox\Profiles\y4axo284.default\prefs.js [OK] Le fichier ne contient aucune entrée illégitime. ************************* AdwCleaner[R1].txt - [3478 octets] - [23/09/2011 22:59:46] AdwCleaner[s1].txt - [2595 octets] - [23/09/2011 23:01:43] ************************* Dossier Temporaire : 159 dossier(s) et 529 fichier(s) supprimé(s) ########## EOF - C:\AdwCleaner[s1].txt - [2821 octets] ##########
- le 23 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Bonsoir, désolé j'ai lancé le pc mercredi soir mais étant très occupée depuis j'ai pas trop regarder par contre je suis rentrée se soir le pc était éteint je l'ai donc rallumer et surprise il a démarrer sens problème et j'ai donc constatez que tout fonctionner le DD et revenu a 3-4 mois après que j'ai obtenue le pc il a donc quelque programme/jeu se qui va m'éviter de tout réinstaller ^^. Par contre j'ai remarquer que dans la barre des tâches il a des icône invisible et quand je veux cliquer dessus rien ne se passe :S je voulais donc savoir pourquoi j'ai essayer de regarder dans la gestion de la barre mais rien n'a changer.? Merci pour ton aide en tous cas.
- le 23 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Finalement non xD sa a réinstaller un windows par dessus l'autre et donc le dd est plein une solution pour delete l'ancienne "session" sens pour autant réinstaller avec un cd pour cette fois supprimer les sessions existante ?
- le 20 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Ok, pas de soucis par contre pour faire la réinstallation je vais dans F8 réparation de l'ordinateur et réinstallation de windows ou c'est autre chose ? Cordialement
- le 20 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Ensuite ?
- le 19 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Oui, Réparation de l'ordinateur je doit valider la langue du clavier et ensuite écrire choisir mon identifiant + mot de passe après sa j'arrive a une fenêtre avec plusieurs choix invite de commande et teste la ram Startup Repair et encore d'autres y compris réinstaller windows. En faite je crois que si c'est galére a réparer je vais revenir a la solution du réinstallation usine étant donner que je reprendre les cours demain et qu'il me le faut absolument enfin je sais pas
- le 18 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

EN gros des le démarrage la marque de l'ordi s'affiche avec f11 del et f3 je crois, juste après sa il y a le démarrage de windows qui apparait pendant 1 seconde et après windows charge des fichiers et j'arrive directement sur le Startup Repair qui me demande de choisir la langue du clavier je crois
- le 18 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

MSI E7003 Intel Core I5-430M VGA ATI Radeon HD5730 with 1GB DDR3 VRAM MEMORY DDR3 2GB*2 Eh non, aucun CD Recovery, étant donné que je l'ai acheté entièrement et que les CD ne sont pas fournis.
- le 18 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Je sais mais je suis sur un autre ordinateur étant donner que l'autre reviens sur Startup Repair en boucle et que je ne peut rien faire
- le 18 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Je ne parviens pas a atteindre le menu démarrer Cordialement
- le 18 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a répondu à un(e) sujet de Sasuka dans Windows 7

Voilà j'ai tout essayez mais rien ne fonctionne et je n'ai pas le cd de windows 7 étant donner que l'ordi portable na pas éait livrer avec comme tous les pc monter je pense ? Cordialement
- le 18 septembre 2011
- 40 réponses
[Résolu] Problème de démarrage

Sasuka a posté un sujet dans Windows 7

Bonsoir, hier soir j'ai lancer avira pour un scan entier a peine lancer le pc a redémarrer et depuis il boot en boucle sur Startup repair il recherche sont affaire éteint l'ordinateur et quand je rallume rebelotte et sa depuis plus d'une heure j'ai essayer de redemarrer en mode sens échec mais pareil sa lance le Startup repair. Aidez-moi s'il vous plait. Cordialement Sasuka
- le 17 septembre 2011
- 40 réponses
[Résolu] Réaction à un problème dû à ATI Graphics Driver

Sasuka a répondu à un(e) sujet de Sasuka dans Software

Ok sa a l'air d'être ok merci pour ton aide Cordialement Sasuka
- le 28 juin 2011
- 13 réponses
[Résolu] Réaction à un problème dû à ATI Graphics Driver

Sasuka a répondu à un(e) sujet de Sasuka dans Software

J'avais déjà tester plusieurs redémarrage avant de poster voir si c'était le cas d'un soucis de démarrage et rien n'a changer la souris ne bouger toujours pas, par contre en remplacent la souris (la nouvelle) fonctionne :s
- le 28 juin 2011
- 13 réponses
[Résolu] Réaction à un problème dû à ATI Graphics Driver

Sasuka a répondu à un(e) sujet de Sasuka dans Software

Que veut tu dire par redémarrage supplémentaires ?
- le 28 juin 2011
- 13 réponses
[Résolu] Réaction à un problème dû à ATI Graphics Driver

Sasuka a répondu à un(e) sujet de Sasuka dans Software

--------[ EVEREST Home Edition © 2003-2005 Lavalys, Inc. ]------------------------------------------------------------ Version EVEREST v2.20.405/fr Site web Computer Diagnostics & Network Audits Software | Lavalys.com Type de rapport Générateur de rapports Ordinateur SASUKA-MSI Générateur Sasuka Système d'exploitation Windows 7 Home Premium Home Edition 6.1.7600 Date 2011-06-28 Heure 13:25 --------[ Résumé ]------------------------------------------------------------------------------------------------------ Ordinateur: Système d'exploitation Windows 7 Home Premium Home Edition Service Pack du système - DirectX 4.09.00.0904 (DirectX 9.0c) Nom du système SASUKA-MSI Nom de l'utilisateur Sasuka Carte mère: Type de processeur 2x , 2266 MHz Nom de la carte mère Inconnu Chipset de la carte mère Inconnu Mémoire système 3885 Mo Type de BIOS Inconnu Moniteur: Carte vidéo ATI Mobility Radeon HD 5730 Carte vidéo ATI Mobility Radeon HD 5730 Carte vidéo Intel® Graphics Media Accelerator HD (1760010 Ko) Carte vidéo Intel® Graphics Media Accelerator HD (1760010 Ko) Moniteur Moniteur Plug-and-Play générique [NoDB] Multimédia: Carte audio Speakers (Realtek High Definiti Stockage: Contrôleur IDE Intel® PCHM SATA AHCI Controller 4 Port Disque dur WDC WD5000BEVT-22A0RT0 (465 Go, IDE) Lecteur optique DTSoftBusCd00 Lecteur optique HL-DT-ST DVDRAM GT30N État des disques durs SMART OK Partitions: C: (NTFS) 279958 Mo (60538 Mo libre) D: (NTFS) 184590 Mo (37702 Mo libre) Taille totale 453.7 Go (95.9 Go libre) Entrée: Clavier Clavier standard PS/2 Souris Finger Sensing Pad Souris Souris HID Réseau: Carte réseau Intel® WiFi Link 1000 BGN (192.168.1.12) Carte réseau Realtek PCIe GBE Family Controller (192.168.1.11) Modem LSI HDA Modem Périphériques: Imprimante Fax Imprimante hp psc 1310 series Imprimante Microsoft XPS Document Writer Contrôleur USB2 Intel® 5 Series/3400 Series Chipset Family USB Enhanced Host Controller - 3B34 [NoDB] Contrôleur USB2 Intel® 5 Series/3400 Series Chipset Family USB Enhanced Host Controller - 3B3C [NoDB] Périphérique USB Generic USB Hub Périphérique USB Generic USB Hub Périphérique USB Périphérique d’entrée USB Batterie Adaptateur secteur Microsoft Batterie Batterie à méthode de contrôle compatible ACPI Microsoft Batterie Batterie composite Microsoft
- le 28 juin 2011
- 13 réponses
[Résolu] Réaction à un problème dû à ATI Graphics Driver

Sasuka a répondu à un(e) sujet de Sasuka dans Software

Je dl Everest et je te dit sa
- le 28 juin 2011
- 13 réponses

Connexion

Sasuka

Compteur de contenus

Inscription

Dernière visite

Jours gagnés

Type de contenu

Profils

Forums

Blogs

Tout ce qui a été posté par Sasuka

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Problème de démarrage

[Résolu] Réaction à un problème dû à ATI Graphics Driver

[Résolu] Réaction à un problème dû à ATI Graphics Driver

[Résolu] Réaction à un problème dû à ATI Graphics Driver

[Résolu] Réaction à un problème dû à ATI Graphics Driver

[Résolu] Réaction à un problème dû à ATI Graphics Driver

Zebulon

Outils en ligne

Naviguer