dager

Bonsoir, ok ajouter une réponse , dsl, que dois je faire?

l'option exécution automatique n'existe pas dans le lancement il n'y a que "ouvrir"

j'ai inséré le CD rien ne se passe, je vais dans le poste de travail pour l'ouvrir il y a un dossier TOOLS dedans : GB_PROG et GOBACK 2 icônes carrés avec une bande bleu au dessus ... "l'application tool/gb/prog exe ne peut etre exécuté en mode win 32 " GOBACK ne s'ouvre pas...

j'utilise quel (s ) CD ? peux tu me donner la marche à suivre ,

OK reçu pour la restauration , j'ai : un CD de chez compaq : " recovery CD ; et 5 CD de compaq surement des sauvegardes en cas de réinstallation.

Après redémarrage PLUS DE SON !!! retour dans gestionnaire périph. - matériel - propriétés de realtek - général - utilisation périph. - désactiver - refermer - ré ouvrir manœuvre inverse - icône barre de tache - appliquer etc .. à chaque redémarrage ...

Salut Tonton , cmd exécuté , toujours le bouclier de redémarrage et les dénominations des fichiers absentes , pour le reste il à l'air plus réactif. Pret pour de nouvelles manips.... merci.

et les doc/ tex /jpg ou autres qui n'ont plus de dénominations, ça c'est peut etre moins gênant ?

Effectivement j'ai demandé de l'aide sur malekal ; je ne savais pas que çela pouvait interférer , ceci dit on m'a laissé sans réponse très vite contrairement à vous , le son est revenu !! je n'ai pas de signal jaune dans la gestion des périphériques mais toujours le bouclier de redémarrage qui se pointe toue les 10 mm. voila le rapport AD REMOVER : ======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 01/03/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: TeamXscript : AD-Remover - FindyKill - UsbFix - SEAF C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 14:48:35 le 12/03/2011, Mode normal Microsoft Windows XP Édition familiale Service Pack 3 (X86) Propriétaire@NOM-OGL2XDJJQAE ( ) ============== RECHERCHE ============== Service: "sdmBackupIP" Présent Dossier trouvé: C:\Program Files\Installer Dossier trouvé: C:\WINDOWS\BackupIP Dossier trouvé: C:\Documents and Settings\Propriétaire\Application Data\Mozilla\FireFIl Vicolettoox\Profiles\z8sr0rwr.default\conduit Dossier trouvé: C:\Documents and Settings\Propriétaire\Application Data\OpenCandy Dossier trouvé: C:\Documents and Settings\Propriétaire\Local Settings\Application Data\OpenCandy -- Fichier ouvert: C:\Documents and Settings\Propriétaire\Application Data\Mozilla\FireFox\Profiles\z8sr0rwr.default\Prefs.js -- Ligne trouvée: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://www.wibeez.com/annuaire?search&q=... Ligne trouvée: user_pref("CommunityToolbar.ToolbarsList", "CT2095689"); Ligne trouvée: user_pref("CommunityToolbar.ToolbarsList2", "CT2095689"); Ligne trouvée: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com"); Ligne trouvée: user_pref("CommunityToolbar.alert.locale", "en"); Ligne trouvée: user_pref("CommunityToolbar.alert.loginIntervalMin", 1440); Ligne trouvée: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sat Nov 13 2010 21:02:29 GMT+0100"); Ligne trouvée: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1283688156"); Ligne trouvée: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20); Ligne trouvée: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com"); Ligne trouvée: user_pref("CommunityToolbar.alert.showTrayIcon", false); Ligne trouvée: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300); Ligne trouvée: user_pref("CommunityToolbar.alert.userId", "{966f7f66-7a9a-41d1-a6be-e6d0419dcab8}"); Ligne trouvée: user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2095689"); Ligne trouvée: user_pref("CommunityToolbar.twitter.user_16409683.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_16727535.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_18863815.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_19058681.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_19248106.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_19554706.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_19757371.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_428333.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100")... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_807095.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100")... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_813286.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100")... -- Fichier Fermé -- Clé trouvée: HKLM\Software\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D648710} Clé trouvée: HKLM\Software\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7F} Clé trouvée: HKLM\Software\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB} Clé trouvée: HKLM\Software\Install Pedia Limited Clé trouvée: HKLM\Software\Messenger Plus!\OpenCandy Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{24D8DA26-F0F0-409A-8F6D-DA4A8ECCB6D3} ============== SCAN ADDITIONNEL ============== **** Mozilla Firefox Version [3.6.15 (fr)] **** Plugins\npDivxPlayerPlugin.dll (DivX, Inc) HKLM_MozillaPlugins\@canalplus.fr/Assistants VOD,version=1.0.0.0 (x) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\FireFox\Profiles\z8sr0rwr.default -- Extensions\{655D219E-64ED-11DE-97C7-BB4856D89593}chrome (?) Extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7} (Adobe DLM (powered by getPlus®)) Searchplugins\Wibeez.xml (<SearchPlugin xmlns=hxxp://www.mozilla.org/2006/browser/search/<ShortNameWibeez</ShortName <DescriptionMéta-annuaire Wi...) Prefs.js - browser.download.dir, C:\\Documents and Settings\\Propriétaire\\Bureau Prefs.js - browser.search.defaultenginename, Lphant Web Search Prefs.js - browser.search.selectedEngine, Google Prefs.js - browser.startup.homepage, hxxp://www.google.fr/firefox?client=firefox-a&rls=org.mozilla:fr-FR:official Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.15 Prefs.js - keyword.URL, hxxp://www.wibeez.com/annuaire?search&q= -- C:\Documents and Settings\Invité\Application Data\Mozilla\FireFox\Profiles\kzrt3byn.default -- Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.1.6 ======================================== **** Internet Explorer Version [8.0.6001.18702] **** HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Start Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157 HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Search bar - hxxp://srch-qfr10.hpwis.com/ HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=69157 HKCU_SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - "?" (?) HKCU_Toolbar\ShellBrowser|{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} (x) HKCU_Toolbar\WebBrowser|{C55BBCD6-41AD-48AD-9953-3609C48EACC7} (x) HKLM_Toolbar|{8E718888-423F-11D2-876E-00A0C9082467} (C:\WINDOWS\system32\msdxm.ocx) HKLM_Toolbar|{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} (x) HKCU_ElevationPolicy\{3E8944DC-79B5-4650-9C2E-83885548A119} - C:\Documents and Settings\Propriétaire\Application Data\Juniper Networks\Setup Client\JuniperSetupClient.exe (Juniper Networks) HKLM_ElevationPolicy\f66353f4-ff02-4590-96cd-aacb55427145 - C:\Program Files\Download_Energy\Download_EnergyToolbarHelper.exe (x) HKLM_ElevationPolicy\{1CC6F2D4-61C2-41d9-AF15-1D886DF98B2B} - C:\Program Files\Lphant Applications\Lphant\Lphant.exe (x) HKLM_ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2} - C:\Program Files\Orbitdownloader\orbitdm.exe (x) HKLM_ElevationPolicy\{D802E3EF-2513-4661-972E-BAD737EFBA88} - C:\Program Files\DivX\DivX OVS Helper\OVSHelperBroker.exe (x) HKLM_Extensions\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - "?" (?) HKLM_Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} - "@shdoclc.dll,-866" (,4) HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?) BHO\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - "Adobe PDF Reader Link Helper" (C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll) BHO\{326E768D-4182-46FD-9C16-1449A49795F4} - "?" () (x) BHO\{593DDEC6-7468-4cdd-90E1-42DADAA222E9} - "DivX HiQ" () (x) BHO\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (?) BHO\{8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - "ZoneAlarm Toolbar Registrar" (C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll) BHO\{BDF3E430-B101-42AD-A544-FADC6B084872} (?) ======================================== C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s) C:\Program Files\Ad-Remover\Backup: 1 Fichier(s) C:\Ad-Report-SCAN[1].txt - 12/03/2011 14:48:50 (4584 Octet(s)) Fin à: 14:49:40, 12/03/2011 ============== E.O.F ==============

pour les MAJ : j'étais apparemment à jour, voila les posts : Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Version de la base de données: 6034 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 12/03/2011 15:44:39 mbam-log-2011-03-12 (15-44-39).txt Type d'examen: Examen complet (A:\|C:\|D:\|E:\|F:\|G:\|H:\|I:\|) Elément(s) analysé(s): 222809 Temps écoulé: 50 minute(s), 23 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté) ******************************************************* Rapport de ZHPFix 1.12.3260 par Nicolas Coolman, Update du 11/03/2011 Fichier d'export Registre : Run by Propriétaire at 12/03/2011 14:44:29 Windows XP Home Edition Service Pack 3 (Build 2600) Web site : ZHPFix Fix de rapport Contact : nicolascoolman@yahoo.fr ========== Clé(s) du Registre ========== O23 - Service: (ccEvtMgr) - Clé orpheline => Clé supprimée avec succès O23 - Service: (ccPwdSvc) - Clé orpheline => Clé supprimée avec succès O23 - Service: (ccSetMgr) - Clé orpheline => Clé supprimée avec succès O23 - Service: (navapsvc) - Clé orpheline => Clé supprimée avec succès O23 - Service: (NMSAccessU) - Clé orpheline => Clé supprimée avec succès O23 - Service: (SAVScan) - Clé orpheline => Clé supprimée avec succès O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (Live Search) - http://search.conduit.com => Clé supprimée avec succès O69 - SBI: SearchScopes [HKCU] {B320F28C-6347-46e4-98FF-5261CA66FEDA} - (Web Search) - http://search.conduit.com => Clé supprimée avec succès HKCU\Software\Conduit => Clé supprimée avec succès HKLM\Software\Conduit => Clé supprimée avec succès ========== Valeur(s) du Registre ========== O52 - TDSD: \drivers.desc\"xvidvfw.dll"="Xvid MPEG-4 Video Codec 1.3.0" . (.Pas de propriétaire - Pas de description.) -- (.not file.) => Valeur supprimée avec succès ========== Préférences navigateur ========== O69 - SBI: prefs.js [Propriétaire - z8sr0rwr.default] user_pref("CT2095689.SearchEngine", "Recherche||http://search.conduit.com/Results.aspx? => Valeur supprimée avec succès O69 - SBI: prefs.js [Propriétaire - z8sr0rwr.default] user_pref("CT2095689.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2095689 => Valeur supprimée avec succès O69 - SBI: prefs.js [Propriétaire - z8sr0rwr.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2095689&SearchSource= => Valeur supprimée avec succès ========== Dossier(s) ========== C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\z8sr0rwr.default\extensions\{a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} => Supprimé et mis en quarantaine ========== Fichier(s) ========== c:\documents and settings\propriétaire\application data\mozilla\firefox\profiles\z8sr0rwr.default\searchplugins\conduit.xml => Supprimé et mis en quarantaine ========== Récapitulatif ========== 10 : Clé(s) du Registre 1 : Valeur(s) du Registre 1 : Dossier(s) 1 : Fichier(s) 3 : Préférences navigateur End of the scan *********************************************** ======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 01/03/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: TeamXscript : AD-Remover - FindyKill - UsbFix - SEAF C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 14:48:35 le 12/03/2011, Mode normal Microsoft Windows XP Édition familiale Service Pack 3 (X86) Propriétaire@NOM-OGL2XDJJQAE ( ) ============== RECHERCHE ============== Service: "sdmBackupIP" Présent Dossier trouvé: C:\Program Files\Installer Dossier trouvé: C:\WINDOWS\BackupIP Dossier trouvé: C:\Documents and Settings\Propriétaire\Application Data\Mozilla\FireFox\Profiles\z8sr0rwr.default\conduit Dossier trouvé: C:\Documents and Settings\Propriétaire\Application Data\OpenCandy Dossier trouvé: C:\Documents and Settings\Propriétaire\Local Settings\Application Data\OpenCandy -- Fichier ouvert: C:\Documents and Settings\Propriétaire\Application Data\Mozilla\FireFox\Profiles\z8sr0rwr.default\Prefs.js -- Ligne trouvée: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://www.wibeez.com/annuaire?search&q=... Ligne trouvée: user_pref("CommunityToolbar.ToolbarsList", "CT2095689"); Ligne trouvée: user_pref("CommunityToolbar.ToolbarsList2", "CT2095689"); Ligne trouvée: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com"); Ligne trouvée: user_pref("CommunityToolbar.alert.locale", "en"); Ligne trouvée: user_pref("CommunityToolbar.alert.loginIntervalMin", 1440); Ligne trouvée: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sat Nov 13 2010 21:02:29 GMT+0100"); Ligne trouvée: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1283688156"); Ligne trouvée: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20); Ligne trouvée: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com"); Ligne trouvée: user_pref("CommunityToolbar.alert.showTrayIcon", false); Ligne trouvée: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300); Ligne trouvée: user_pref("CommunityToolbar.alert.userId", "{966f7f66-7a9a-41d1-a6be-e6d0419dcab8}"); Ligne trouvée: user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2095689"); Ligne trouvée: user_pref("CommunityToolbar.twitter.user_16409683.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_16727535.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_18863815.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_19058681.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_19248106.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_19554706.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_19757371.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_428333.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100")... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_807095.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100")... Ligne trouvée: user_pref("CommunityToolbar.twitter.user_813286.LastCheckTime", "Sat Nov 13 2010 13:26:31 GMT+0100")... -- Fichier Fermé -- Clé trouvée: HKLM\Software\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D648710} Clé trouvée: HKLM\Software\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7F} Clé trouvée: HKLM\Software\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB} Clé trouvée: HKLM\Software\Install Pedia Limited Clé trouvée: HKLM\Software\Messenger Plus!\OpenCandy Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{24D8DA26-F0F0-409A-8F6D-DA4A8ECCB6D3} ============== SCAN ADDITIONNEL ============== **** Mozilla Firefox Version [3.6.15 (fr)] **** Plugins\npDivxPlayerPlugin.dll (DivX, Inc) HKLM_MozillaPlugins\@canalplus.fr/Assistants VOD,version=1.0.0.0 (x) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\FireFox\Profiles\z8sr0rwr.default -- Extensions\{655D219E-64ED-11DE-97C7-BB4856D89593}chrome (?) Extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7} (Adobe DLM (powered by getPlus®)) Searchplugins\Wibeez.xml (<SearchPlugin xmlns=hxxp://www.mozilla.org/2006/browser/search/<ShortNameWibeez</ShortName <DescriptionMéta-annuaire Wi...) Prefs.js - browser.download.dir, C:\\Documents and Settings\\Propriétaire\\Bureau Prefs.js - browser.search.defaultenginename, Lphant Web Search Prefs.js - browser.search.selectedEngine, Google Prefs.js - browser.startup.homepage, hxxp://www.google.fr/firefox?client=firefox-a&rls=org.mozilla:fr-FR:official Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.15 Prefs.js - keyword.URL, hxxp://www.wibeez.com/annuaire?search&q= -- C:\Documents and Settings\Invité\Application Data\Mozilla\FireFox\Profiles\kzrt3byn.default -- Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.1.6 ======================================== **** Internet Explorer Version [8.0.6001.18702] **** HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Start Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157 HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Search bar - hxxp://srch-qfr10.hpwis.com/ HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=69157 HKCU_SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - "?" (?) HKCU_Toolbar\ShellBrowser|{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} (x) HKCU_Toolbar\WebBrowser|{C55BBCD6-41AD-48AD-9953-3609C48EACC7} (x) HKLM_Toolbar|{8E718888-423F-11D2-876E-00A0C9082467} (C:\WINDOWS\system32\msdxm.ocx) HKLM_Toolbar|{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} (x) HKCU_ElevationPolicy\{3E8944DC-79B5-4650-9C2E-83885548A119} - C:\Documents and Settings\Propriétaire\Application Data\Juniper Networks\Setup Client\JuniperSetupClient.exe (Juniper Networks) HKLM_ElevationPolicy\f66353f4-ff02-4590-96cd-aacb55427145 - C:\Program Files\Download_Energy\Download_EnergyToolbarHelper.exe (x) HKLM_ElevationPolicy\{1CC6F2D4-61C2-41d9-AF15-1D886DF98B2B} - C:\Program Files\Lphant Applications\Lphant\Lphant.exe (x) HKLM_ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2} - C:\Program Files\Orbitdownloader\orbitdm.exe (x) HKLM_ElevationPolicy\{D802E3EF-2513-4661-972E-BAD737EFBA88} - C:\Program Files\DivX\DivX OVS Helper\OVSHelperBroker.exe (x) HKLM_Extensions\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - "?" (?) HKLM_Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} - "@shdoclc.dll,-866" (,4) HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?) BHO\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - "Adobe PDF Reader Link Helper" (C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll) BHO\{326E768D-4182-46FD-9C16-1449A49795F4} - "?" () (x) BHO\{593DDEC6-7468-4cdd-90E1-42DADAA222E9} - "DivX HiQ" () (x) BHO\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (?) BHO\{8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - "ZoneAlarm Toolbar Registrar" (C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll) BHO\{BDF3E430-B101-42AD-A544-FADC6B084872} (?) ======================================== C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s) C:\Program Files\Ad-Remover\Backup: 1 Fichier(s) C:\Ad-Report-SCAN[1].txt - 12/03/2011 14:48:50 (4584 Octet(s)) Fin à: 14:49:40, 12/03/2011 ============== E.O.F ==============

c'est une fusion volontaire ( à l'insu de mon plein gré) --> je fais de la bécane ....

SUR LA FACTURE : COMPAQ S7290 P4 2.8 256 / 120 - série S0000 /80000 est ce suffisant ?

voila Tonton merci pour l'aide.. Rapport de ZHPDiag v1.27.1634 par Nicolas Coolman, Update du 11/03/2011 Run by Propriétaire at 11/03/2011 20:52:06 Web site : ZHPDiag Outil de diagnostic Contact : nicolascoolman@yahoo.fr ---\\ Web Browser MSIE: Internet Explorer v8.0.6001.18702 (Defaut) MFIE: Mozilla Firefox v2.0.0.20 (fr) MFIE: Mozilla Firefox v2.0.0.20 (fr) GCIE: Google Chrome ---\\ System Information Windows XP Home Edition Service Pack 3 (Build 2600) Processor: x86 Family 15 Model 2 Stepping 9, GenuineIntel Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 511 MB (37% free) System Restore: Activé (Enable) System drive C: has 91 GB (83%) free of 108 GB ---\\ Logged in mode Computer Name: NOM-OGL2XDJJQAE User Name: Propriétaire All Users Names: SUPPORT_fddfa904, SUPPORT_388945a0, Propriétaire, HelpAssistant, ASPNET, Administrateur, Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Documents and Settings\Propriétaire\Application Data %LocalAppData%=C:\Documents and Settings\Propriétaire\Local Settings\Application Data %StartMenu%=C:\Documents and Settings\Propriétaire\Menu Démarrer ---\\ DOS/Devices A:\ Floppy drive, Flash card reader, USB Key (Not Inserted) C:\ Hard drive, Flash drive, Thumb drive (Free 91 Go of 108 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 4 Go) E:\ CD-ROM drive (Not Inserted) F:\ CD-ROM drive (Not Inserted) I:\ Floppy drive, Flash card reader, USB Key (Free 0 Go of 2 Go) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: Modified [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK ---\\ Recherche particulière de fichiers génériques [MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.13/04/2008 18:34:04.) -- C:\Windows\Explorer.exe [1037824] [MD5.AF4EAA3B35A2D206E1902D7CA61B958A] - (.Microsoft Corporation - Internet Extensions for Win32.) (.21/12/2010 00:53:04.) -- C:\Windows\System32\wininet.dll [916480] [MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.13/04/2008 18:34:30.) -- C:\Windows\System32\Winlogon.exe [512000] [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 10:40:32.) -- C:\Windows\System32\drivers\atapi.sys [96512] [MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 11:15:54.) -- C:\Windows\System32\drivers\ntfs.sys [574976] ---\\ Processus lancés [MD5.FA08FEAFCD5688A7FE0B6A57337BC3EB] - (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2384240] [MD5.879A0211BD911FC4B411B1D14559A791] - (.Check Point Software Technologies - ZoneAlarm ForceField.) -- C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe [476528] [MD5.7207DB389CEAD101251883511A676F91] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [135336] [MD5.79BED8EF8B113BEF852B99A7574367B6] - (.Check Point Software Technologies - ZoneAlarm ForceField.) -- C:\Program Files\CheckPoint\ZAForceField\ForceField.exe [730480] [MD5.AC5D343FCF038C851F9DDB893B60FA97] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [267944] [MD5.A6B41F3044B2C099BBB5531CAA0551D5] - (.Canal+ Active - CanalPlus.VOD.Service.) -- C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe [188416] [MD5.5E06A9D23727DAF96FAA796F1135FDCD] - (.Sun Microsystems, Inc. - Java Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376] [MD5.87C1F4C72DE6F1B8265EAC8DAFFF3AC3] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 53.05.) -- C:\WINDOWS\System32\nvsvc32.exe [77824] [MD5.CDE000884FD7BAF0C1FDFE029B0891DE] - (.Avira GmbH - AntiVir shadow copy service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76968] [MD5.06A1ECB63DF139EC639E084D4AB3C9D7] - (.Hewlett-Packard Company - hpsysdrv.) -- C:\windows\system\hpsysdrv.exe [52736] [MD5.2B820A0401F34ACF33A7CDAB06FA13AB] - (.Hewlett-Packard - HPHmon05.) -- C:\WINDOWS\System32\hphmon05.exe [483328] [MD5.4A95F15B706B8FD9EC8715B6401EAB7B] - (.Hewlett-Packard Company - KBD EXE.) -- C:\HP\KBD\KBD.EXE [61440] [MD5.DFB17D35A1AE85624D5E05B6D05EC049] - (.Check Point Software Technologies LTD - ZoneAlarm Client.) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [1037192] [MD5.93AD0B78C7357A05F50E594EC7C22300] - (...) -- C:\WINDOWS\system32\rundll32.exe [33792] [MD5.2E5212A0BFB98FE0167C92C76C87AFE3] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [249064] [MD5.9D5E8B45BD348DF0882C69EED0E83111] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [281768] [MD5.DA6B945E561B1D1DA67663BB45B4B868] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor (CUE).) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [237568] [MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53472] [MD5.2F881390B9BBD912D790A4875CB33A34] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [912344] [MD5.0AF80338BAD26049974531322857A42E] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856] [MD5.51B97CE23037A45C26D106DECDD71A10] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [632832] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) M3 - MFPP: Plugins - [Propriétaire] -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\z8sr0rwr.default\searchplugins\conduit.xml M3 - MFPP: Plugins - [Propriétaire] -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\z8sr0rwr.default\searchplugins\live-search.xml M3 - MFPP: Plugins - [Propriétaire] -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\z8sr0rwr.default\searchplugins\Wibeez.xml M3 - MFPP: Plugins - [Propriétaire] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [Propriétaire] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [Propriétaire] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [Propriétaire] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [Propriétaire] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [Propriétaire] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll P2 - FPN:Firefox Plugin Navigator . (.DivX, Inc - npdivxplayerplugin.) -- C:\Program Files\Mozilla Firefox\Plugins\npDivxPlayerPlugin.dll P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.0.1.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@canalplus.fr/Assistants VOD,version=1.0.0.0] - (.Canal+ Active - npCpVod.) -- C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\npcpvod.dll P2 - FPN: [HKLM] [@divx.com/DivX Content Upload Plugin,version=1.0.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\DivX\DivX Content Uploader\npUpload.dll (.not file.) P2 - FPN: [HKLM] [@divx.com/DivX OVS Helper,version=1.0.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (.not file.) P2 - FPN: [HKLM] [@divx.com/DivX Player Plugin,version=1.0.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (.not file.) P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_24 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60129.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60129.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll M0 - MFSP: prefs.js [Propriétaire - z8sr0rwr.default] Page de démarrage Mozilla Firefox M2 - MFEP: prefs.js [Propriétaire - z8sr0rwr.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.) M2 - MFEP: prefs.js [Propriétaire - z8sr0rwr.default\{73a6fe31-595d-460b-a920-fcc0f8843232}] [noscript] NoScript v2.0.9.8 (.Giorgio Maone.) M2 - MFEP: prefs.js [Propriétaire - z8sr0rwr.default\{a8f9752d-e2b8-4e7a-86b5-499f4330e2fe}] [] Eazel-FR Toolbar v2.7.2.0 (.Conduit Ltd..) M2 - MFEP: prefs.js [Propriétaire - z8sr0rwr.default\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}] [] Adobe DLM (powered by getPlus®) v1.6.2.97 (.NOS Microsystems Ltd..) ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Microsoft Corporation R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search Microsoft.com R0 - HKUS\S-1-5-21-533771474-349537974-584987377-1003\Software\Microsoft\Internet Explorer\Main,Start Page = Microsoft Corporation R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Bing R1 - HKUS\S-1-5-21-533771474-349537974-584987377-1003\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.19019 (longhorn_ie8_gdr.101217-1700)) -- C:\WINDOWS\system32\ieframe.dll R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2 ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} Clé orpheline O2 - BHO: DivX HiQ - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} Clé orpheline O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Clé orpheline O2 - BHO: ZoneAlarm Toolbar Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} . (.Check Point Software Technologies - ZoneAlarm ForceField.) -- C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} Clé orpheline O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: ZoneAlarm Toolbar - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} . (.Check Point Software Technologies - ZoneAlarm ForceField.) -- C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll O3 - Toolbar: Radio - {8E718888-423F-11D2-876E-00A0C9082467} . (.Microsoft Corporation - Contrôle ActiveX du Lecteur Windows Media.) -- C:\WINDOWS\system32\msdxm.ocx O3 - Toolbar: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} . (.Pas de propriétaire - Pas de description.) -- (.not file.) ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [hpsysdrv] . (.Hewlett-Packard Company - hpsysdrv.) -- c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [HPHUPD05] . (.Hewlett-Packard - HPHupd05.) -- c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe O4 - HKLM\..\Run: [HPHmon05] . (.Hewlett-Packard - HPHmon05.) -- C:\WINDOWS\System32\hphmon05.exe O4 - HKLM\..\Run: [KBD] . (.Hewlett-Packard Company - KBD EXE.) -- C:\HP\KBD\KBD.exe O4 - HKLM\..\Run: [updateManager] . (.Sonic Solutions - Sonic Update Manager.) -- C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe O4 - HKLM\..\Run: [Recguard] . (.Pas de propriétaire - Recguard MFC Application.) -- C:\WINDOWS\SMINST\RECGUARD.exe O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\System32\NvCpl.dll O4 - HKLM\..\Run: [nwiz] . (.NVIDIA Corporation - NVIDIA nView Wizard, Version 53.05.) -- C:\Windows\System32\nwiz.exe O4 - HKLM\..\Run: [regcmdcons] . (.Hewlett-Packard Co. - Cloaker.) -- c:\hp\bin\cloaker.exe O4 - HKLM\..\Run: [ZoneAlarm Client] . (.Check Point Software Technologies LTD - ZoneAlarm Client.) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKLM\..\Run: [iSW] . (.Check Point Software Technologies - ZoneAlarm ForceField.) -- C:\Program Files\CheckPoint\ZAForceField\ForceField.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\Run: [AlcxMonitor] . (.Realtek Semiconductor Corp. - Realtek Audio - Event Monitor.) -- C:\Windows\ALCXMNTR.exe O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-533771474-349537974-584987377-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\HP Digital Imaging Monitor.lnk . (.Hewlett-Packard Co..) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader X.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1033-7B44-AA0000000001}\SC_Reader.ico O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\AppleSoftwareUpdateIco.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Enregistrement OCR I.R.I.S..lnk . (.I.R.I.S. SA.) -- C:\Program Files\HP\Digital Imaging\DocProc\regipe.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation.) -- C:\Program Files\Microsoft Works\msworks.exe O4 - Global Startup: C:\Documents And Settings\Propriétaire\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe O4 - Global Startup: C:\Documents And Settings\Propriétaire\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Documents And Settings\Propriétaire\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe O4 - Global Startup: C:\Documents And Settings\Propriétaire\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} . (.not file.) - (.not file.) O9 - Extra 'Tools' menuitem: @shdoclc.dll,-864 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} . (.not file.) - O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - (.not file.) O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll ---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14) O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome ---\\ Site dans la Zone de confiance d'Internet Explorer (O15) O15 - Trusted Zone: [HKCU\...\Domains] *.canalplay.com O15 - Trusted Zone: [HKCU\...\Domains\www] *.canalplay.com O15 - Trusted Zone: [HKCU\...\Domains] *.canalplusactive.com O15 - Trusted Zone: [HKCU\...\Domains\www] *.canalplusactive.com O15 - Trusted Zone: [HKLM\...\Domains] *.canalplay.com O15 - Trusted Zone: [HKLM\...\Domains\www] *.canalplay.com O15 - Trusted Zone: [HKLM\...\Domains] *.canalplusactive.com O15 - Trusted Zone: [HKLM\...\Domains\www] *.canalplusactive.com ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} (JuniperSetupClientControl Class) - https://juniper.net/dana-cached/sc/JuniperSetupClient.cab ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{9E3898A7-B2C3-4EB0-BE17-F4F4553A3F52}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{9E3898A7-B2C3-4EB0-BE17-F4F4553A3F52}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS3\Services\Tcpip\..\{9E3898A7-B2C3-4EB0-BE17-F4F4553A3F52}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\System32\igfxsrvc.dll O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\System32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: CanalPlus.VOD (CanalPlus.VOD) . (.Canal+ Active - CanalPlus.VOD.Service.) - C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe O23 - Service: (ccEvtMgr) - Clé orpheline O23 - Service: (ccPwdSvc) - Clé orpheline O23 - Service: (ccSetMgr) - Clé orpheline O23 - Service: (dmadmin) . (.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - C:\WINDOWS\System32\dmadmin.exe O23 - Service: (IswSvc) . (.Check Point Software Technologies - ZoneAlarm ForceField.) - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: (maconfservice) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: (navapsvc) - Clé orpheline O23 - Service: (NMSAccessU) - Clé orpheline O23 - Service: (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 53.05.) - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: (SAVScan) - Clé orpheline O23 - Service: (sdmBackupIP) . (.Pas de propriétaire - service.) - C:\WINDOWS\BackupIP\service.exe O23 - Service: (Service CANALPLAY) . (.Canal+ Distribution - CanalPlayService.exe.) - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe O23 - Service: (vsmon) . (.Check Point Software Technologies LTD - TrueVector Service.) - C:\WINDOWS\system32\ZoneLabs\vsmon.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\Windows\System32\DRIVERS\avipbb.sys O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: (Processor) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\processr.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: (SiSkp) . (.Silicon Integrated Systems Corporation - SiS VGA Driver Manager.) - C:\Windows\System32\DRIVERS\srvkp.sys O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\System32\DRIVERS\ssmdrv.sys O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys O41 - Driver: (vsdatant) . (.Check Point Software Technologies LTD - TrueVector Device Driver.) - C:\Windows\System32\vsdatant.sys ---\\ Logiciels installés (O42) O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723} O42 - Logiciel: Adobe Download Manager - (.NOS Microsystems Ltd..) [HKLM] -- {E2883E8F-472F-4fb0-9522-AC9BF37916A7} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Reader 6.0 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-000000000001} O42 - Logiciel: Adobe Reader X (10.0.1) - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1033-7B44-AA0000000001} O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033} O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7} O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop O42 - Logiciel: AxCrypt 1.7.2126.0 - (.Axantum Software AB.) [HKLM] -- {E4C1DBF1-67D9-4973-9DEC-677E695E7CE0} O42 - Logiciel: Azureus - (.Pas de propriétaire.) [HKLM] -- Azureus O42 - Logiciel: CANAL+ CANALSAT A LA DEMANDE - (.CanalPlus.) [HKLM] -- {04DA096D-6236-4A5D-8FB6-3081E67009BA} O42 - Logiciel: CC_ccStart - (.Symantec Corporation.) [HKLM] -- {D6414CC7-F215-467F-88B1-546ED863F35B} O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: CDBurnerXP - (.Canneverbe Limited.) [HKLM] -- {5932A5C4-BB44-4CFB-AD66-1B826F4D788B} O42 - Logiciel: Clié Favorites - (.Pas de propriétaire.) [HKLM] -- {2A5B009A-4072-46A8-9BF9-3AD10C22962F} O42 - Logiciel: Connexion Facile à Internet - (.Hewlett-Packard.) [HKLM] -- InstallShield_{0613467F-A45E-4CB1-9ECE-1F3DD79FB927} O42 - Logiciel: EVEREST Ultimate Edition v5.50 - (.Lavalys, Inc..) [HKLM] -- EVEREST Ultimate Edition_is1 O42 - Logiciel: FrostWire 4.21.3 - (.FrostWire Team.) [HKLM] -- FrostWire O42 - Logiciel: HP Deskjet Preloaded Printer Drivers - (.Hewlett-Packard Company.) [HKLM] -- {F419D20A-7719-4639-8E30-C073A040D878} O42 - Logiciel: HP Image Zone 3.5 - (.HP.) [HKLM] -- HP Photo & Imaging O42 - Logiciel: HP PSC & OfficeJet 3.0 - (.HP.) [HKLM] -- {F38FA38A-7E5A-4209-88ED-4DE21CD20EEF} O42 - Logiciel: HP Software Update - (.Hewlett-Packard.) [HKLM] -- {34957B51-9676-41CE-9E52-44AE91B73F1C} O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595 O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484 O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5 O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {46ABBC54-1872-4AA3-95E2-F2C063A63F31} O42 - Logiciel: Internet Explorer Q832894 - (.Pas de propriétaire.) [HKLM] -- ieupdate O42 - Logiciel: Java 2 Runtime Environment, SE v1.4.2_03 - (.Sun Microsystems, Inc..) [HKLM] -- {7148F0A8-6813-11D6-A77B-00B0D0142030} O42 - Logiciel: Java 6 Update 24 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216023FF} O42 - Logiciel: Java 6 Update 7 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160070} O42 - Logiciel: Juniper Networks Host Checker - (.Juniper Networks.) [HKCU] -- Neoteris_Host_Checker O42 - Logiciel: Juniper Networks Setup Client - (.Juniper Networks.) [HKCU] -- Juniper_Setup_Client O42 - Logiciel: Juniper Networks Setup Client Activex Control - (.Juniper Networks.) [HKLM] -- Juniper_Setup_Client Activex Control O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5} O42 - Logiciel: K-Lite Codec Pack 6.6.6 (Full) - (.Pas de propriétaire.) [HKLM] -- KLiteCodecPack_is1 O42 - Logiciel: KBD - (.Pas de propriétaire.) [HKLM] -- KBD O42 - Logiciel: Lecteur CANALPLAY 2.4 - (.Canal+ Distribution.) [HKLM] -- {E9E37358-E3E1-47BA-9E21-375EF3616BC9} O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player O42 - Logiciel: LiveReg (Symantec Corporation) - (.Symantec Corporation.) [HKLM] -- LiveReg O42 - Logiciel: LiveUpdate 1.80 (Symantec Corporation) - (.Symantec Corporation.) [HKLM] -- LiveUpdate O42 - Logiciel: MSRedist - (.Symantec Corp.) [HKLM] -- {FC37ABD0-2108-4beb-B010-1254E0662B5A} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {0810B8B7-7539-41D3-983E-6127FCF1CC9E} O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Memories Disc Creator 2.0 - (.Memories Disc Creator 2.0.) [HKLM] -- {2E132061-C78A-48D4-A899-1D13B9D189FA} O42 - Logiciel: Messenger Plus! Live - (.Yuna Software.) [HKLM] -- Messenger Plus! Live O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033) O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700} O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447 O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906 O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1 O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c} O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Works 7.0 - (.Microsoft Corporation.) [HKLM] -- {64D114CE-4234-45C2-B60A-2B07D5A48F72} O42 - Logiciel: Mozilla Firefox (2.0.0.20) - (.Mozilla.) [HKLM] -- Mozilla Firefox (2.0.0.20) O42 - Logiciel: Mozilla Firefox (3.6.15) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.15) O42 - Logiciel: NVIDIA Display Driver - (.Pas de propriétaire.) [HKLM] -- NVIDIA Display Driver O42 - Logiciel: NVIDIA GART Driver - (.Pas de propriétaire.) [HKLM] -- NVIDIA GART Driver O42 - Logiciel: Norton AntiVirus 2004 - (.Symantec Corporation.) [HKLM] -- {C6F5B6CF-609C-428E-876F-CA83176C021B} O42 - Logiciel: Norton AntiVirus Parent MSI - (.Symantec Corp..) [HKLM] -- {E5EE9939-259F-4DE2-8023-5C49E16A4F43} O42 - Logiciel: OpenOffice.org 3.0 - (.OpenOffice.org.) [HKLM] -- {6860B340-530D-46B3-91F8-1AE1F70F7C33} O42 - Logiciel: OpenOffice.org 3.1 - (.OpenOffice.org.) [HKLM] -- {0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6} O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238} O42 - Logiciel: Outlook Express Update Q330994 - (.Pas de propriétaire.) [HKLM] -- oeupdate O42 - Logiciel: Palm Desktop pour CLIÉ - (.Palm, Inc..) [HKLM] -- {C5EC81D0-3DED-435D-A46E-E3F60F7DC8AD} O42 - Logiciel: Photo et imagerie HP 3.5 - HP Devices - (.HP.) [HKLM] -- {15B9DC72-73F9-4d99-9E28-848D66DA8D99} O42 - Logiciel: Photosmart 140,240,7200,7600,7700,7900 Series - (.Hewlett-Packard.) [HKLM] -- {45B6180B-DCAB-4093-8EE8-6164457517F0} O42 - Logiciel: Piratrax désinstallation - (.Pas de propriétaire.) [HKCU] -- Piratrax O42 - Logiciel: Python 2.2 combined Win32 extensions - (.Pas de propriétaire.) [HKLM] -- Python 2.2 combined Win32 extensions O42 - Logiciel: Python 2.2.1 - (.PythonLabs at Zope Corporation.) [HKLM] -- Python 2.2.1 O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C} O42 - Logiciel: Realtek AC'97 Audio - (.Pas de propriétaire.) [HKLM] -- {FB08F381-6533-4108-B7DD-039E11FBC27E} O42 - Logiciel: RecordNow! - (.Hewlett-Packard.) [HKLM] -- {9541FED0-327F-4DF0-8B96-EF57EF622F19} O42 - Logiciel: Revo Uninstaller 1.91 - (.VS Revo Group.) [HKLM] -- Revo Uninstaller O42 - Logiciel: SAMSUNG CDMA Modem Driver Set - (.Pas de propriétaire.) [HKLM] -- SAMSUNG CDMA Modem O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem 1.0 O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem O42 - Logiciel: SFR - Media Center - (.SFR.) [HKLM] -- SFR_Media Center O42 - Logiciel: Samsung PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM] -- {C4A4722E-79F9-417C-BD72-8D359A090C97} O42 - Logiciel: Samsung PC Studio 3 USB Driver Installer - (.Samsung Electronics Co., Ltd..) [HKLM] -- {EBA29752-DDD2-4B62-B2E3-9841F92A3E3A} O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473 O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7} O42 - Logiciel: Sonic Update Manager - (.Sonic Solutions.) [HKLM] -- {09DA4F91-2A09-4232-AB8C-6BC740096DE3} O42 - Logiciel: SymNet - (.Symantec Corp.) [HKLM] -- {E47EE8FB-ACC0-4608-859C-4E2851B18A6A} O42 - Logiciel: Unlocker 1.9.0 - (.Cedrick Collomb.) [HKLM] -- Unlocker O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707 O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM] -- {5EE7D259-D137-4438-9A5F-42F432EC0421} O42 - Logiciel: VLC media player 1.1.5 - (.VideoLAN.) [HKLM] -- VLC media player O42 - Logiciel: VirginMega.Fr Premium - (.VirginMega.Fr.) [HKLM] -- {D416E000-D999-470A-BCAC-98E717CC1AFC} O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130 O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {ED00D08A-3C5F-488D-93A0-A04F21F23956} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {770F1BEC-2871-4E70-B837-FB8525FFA3B1} O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} O42 - Logiciel: ZoneAlarm - (.Check Point, Inc.) [HKLM] -- ZoneAlarm O42 - Logiciel: ZoneAlarm Toolbar - (.Check Point Software Technologies.) [HKLM] -- ZoneAlarm Toolbar O42 - Logiciel: ccCommon - (.Symantec.) [HKLM] -- {DC367608-64A7-4BF7-92F4-8BAA25BA02DB} ---\\ HKCU & HKLM Software Keys [HKCU\Software\?? ?? ???? ????? ??? ?? ????] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\ISWVolatile] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Avira] [HKCU\Software\Axantum] [HKCU\Software\Azureus] [HKCU\Software\Canal+ Active] [HKCU\Software\Canneverbe Limited] [HKCU\Software\CheckPoint] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Conduit] [HKCU\Software\DScaler5] [HKCU\Software\DivXNetworks] [HKCU\Software\DivX] [HKCU\Software\FileHippo.com] [HKCU\Software\GNU] [HKCU\Software\Gabest] [HKCU\Software\Google] [HKCU\Software\HP] [HKCU\Software\Haali] [HKCU\Software\Heidi Computers Ltd] [HKCU\Software\Hewlett-Packard] [HKCU\Software\HookNetwork] [HKCU\Software\IM Providers] [HKCU\Software\Informer Technologies, Inc.] [HKCU\Software\InstallShield] [HKCU\Software\Intel] [HKCU\Software\InterVideo] [HKCU\Software\JEDI-VCL] [HKCU\Software\JavaSoft] [HKCU\Software\Juniper Networks] [HKCU\Software\LG Electronics Inc] [HKCU\Software\LG Media Player] [HKCU\Software\Lavalys] [HKCU\Software\LeaderTech] [HKCU\Software\MONOGRAM] [HKCU\Software\Macromedia] [HKCU\Software\Magnet] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MatrixSoftware] [HKCU\Software\MediaInfo] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\Neuf] [HKCU\Software\ODBC] [HKCU\Software\OpenOffice.org] [HKCU\Software\Opera Software] [HKCU\Software\Patchou] [HKCU\Software\Pense-bete] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\RealNetworks] [HKCU\Software\SONIC] [HKCU\Software\SampleView] [HKCU\Software\Samsung PC Studio] [HKCU\Software\Samsung] [HKCU\Software\Softonic] [HKCU\Software\Sony Corporation] [HKCU\Software\Symantec] [HKCU\Software\Sysinternals] [HKCU\Software\Trolltech] [HKCU\Software\TuneUp] [HKCU\Software\U.S. Robotics] [HKCU\Software\Usbfix] [HKCU\Software\VSRevoGroup] [HKCU\Software\VirginMega] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\Zone Labs] [HKCU\Software\cybelsoft] [HKCU\Software\ej-technologies] [HKCU\Software\madFlac] [HKLM\Software\Adobe] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Avance] [HKLM\Software\Avira] [HKLM\Software\Awsdata] [HKLM\Software\Axantum] [HKLM\Software\C07ft5Y] [HKLM\Software\CDDB] [HKLM\Software\Canal+ Active] [HKLM\Software\Caphyon] [HKLM\Software\CheckPoint] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Codec Tweak Tool] [HKLM\Software\Conduit] [HKLM\Software\DivXNetworks] [HKLM\Software\DivX] [HKLM\Software\GNU] [HKLM\Software\Gemplus] [HKLM\Software\Genesys Logic] [HKLM\Software\Google] [HKLM\Software\HP] [HKLM\Software\HaaliMkx] [HKLM\Software\Hewlett-Packard] [HKLM\Software\ICE] [HKLM\Software\Install Pedia Limited] [HKLM\Software\InstallShield] [HKLM\Software\Intel] [HKLM\Software\InterVideo] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\KLCodecPack] [HKLM\Software\LEAD Technologies, Inc.] [HKLM\Software\Licenses] [HKLM\Software\LimeWire Music] [HKLM\Software\MCCI] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\Messenger Plus!] [HKLM\Software\MicroQuill] [HKLM\Software\MicroVision] [HKLM\Software\MimarSinan] [HKLM\Software\Motive] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NOS] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\Netscape] [HKLM\Software\Neuf] [HKLM\Software\ODBC] [HKLM\Software\Oak Technology] [HKLM\Software\OldTimer Tools] [HKLM\Software\OpenOffice.org] [HKLM\Software\PCTools] [HKLM\Software\Patchou] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\Program Groups] [HKLM\Software\Python] [HKLM\Software\RealNetworks] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\S3R521] [HKLM\Software\S3] [HKLM\Software\Samsung Electronics Co., Ltd.] [HKLM\Software\Samsung] [HKLM\Software\Schlumberger] [HKLM\Software\Secure] [HKLM\Software\SiS] [HKLM\Software\Sonic] [HKLM\Software\Sun Microsystems] [HKLM\Software\Swearware] [HKLM\Software\Symantec] [HKLM\Software\TrendMicro] [HKLM\Software\TuneUp] [HKLM\Software\VideoLAN] [HKLM\Software\VirginMega] [HKLM\Software\Wilson WindowWare] [HKLM\Software\Windows 3.1 Migration Status] [HKLM\Software\X-AVCSD] [HKLM\Software\Xing Technology Corp.] [HKLM\Software\Zone Labs] [HKLM\Software\cybelsoft] [HKLM\Software\ej-technologies] [HKLM\Software\magnet] [HKLM\Software\mozilla.org] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 24/01/2011 - 22:27:28 - [111511132] ----D- C:\Program Files\Adobe O43 - CFD: 30/06/2009 - 19:20:16 - [2221118] ----D- C:\Program Files\Apple Software Update O43 - CFD: 08/03/2011 - 19:25:22 - [110833023] ----D- C:\Program Files\Avira O43 - CFD: 08/03/2011 - 17:04:48 - [2392759] ----D- C:\Program Files\Axantum O43 - CFD: 05/11/2009 - 20:26:48 - [7360] ----D- C:\Program Files\Axon Data O43 - CFD: 23/10/2009 - 20:37:28 - [17690245] ----D- C:\Program Files\Azureus O43 - CFD: 30/05/2009 - 10:39:52 - [3825371] ----D- C:\Program Files\Canal+ O43 - CFD: 08/03/2011 - 17:08:48 - [3653664] ----D- C:\Program Files\CCleaner O43 - CFD: 19/12/2010 - 16:05:42 - [26017490] ----D- C:\Program Files\CheckPoint O43 - CFD: 01/01/2004 - 11:02:24 - [0] ----D- C:\Program Files\Common Files O43 - CFD: 01/01/2004 - 08:52:44 - [0] ----D- C:\Program Files\ComPlus Applications O43 - CFD: 31/05/2009 - 20:08:18 - [6454471] ----D- C:\Program Files\Easy Internet signup O43 - CFD: 12/11/2010 - 17:27:02 - [324] ----D- C:\Program Files\eMule O43 - CFD: 09/03/2011 - 17:55:40 - [335255483] ----D- C:\Program Files\Fichiers communs O43 - CFD: 20/02/2011 - 10:27:20 - [40503991] ----D- C:\Program Files\FrostWire O43 - CFD: 10/05/2010 - 16:58:08 - [13581450] ----D- C:\Program Files\Google O43 - CFD: 01/01/2004 - 10:49:20 - [364156704] ----D- C:\Program Files\HP O43 - CFD: 24/01/2011 - 23:18:12 - [0] ----D- C:\Program Files\Installer O43 - CFD: 11/03/2011 - 20:34:38 - [10893818] --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD: 10/02/2011 - 14:35:02 - [9383252] ----D- C:\Program Files\Internet Explorer O43 - CFD: 24/12/2010 - 23:03:36 - [6952917] ----D- C:\Program Files\InterVideo O43 - CFD: 28/02/2011 - 09:01:08 - [81843768] ----D- C:\Program Files\Java O43 - CFD: 13/05/2009 - 14:29:14 - [16283032] ----D- C:\Program Files\JRE O43 - CFD: 27/12/2010 - 15:11:56 - [33281860] ----D- C:\Program Files\K-Lite Codec Pack O43 - CFD: 11/03/2011 - 20:42:16 - [16714354] ----D- C:\Program Files\Lavalys O43 - CFD: 31/05/2009 - 08:53:28 - [10434849] ----D- C:\Program Files\Lecteur CANALPLAY O43 - CFD: 11/03/2011 - 20:22:28 - [5657562] ----D- C:\Program Files\ma-config.com O43 - CFD: 31/12/2010 - 10:22:18 - [5001332] ----D- C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD: 13/02/2010 - 18:07:40 - [747758] ----D- C:\Program Files\MatrixSoftware O43 - CFD: 03/05/2009 - 05:33:10 - [2223207] ----D- C:\Program Files\Messenger O43 - CFD: 04/11/2010 - 16:33:16 - [13155342] ----D- C:\Program Files\Messenger Plus! Live O43 - CFD: 10/10/2009 - 07:52:52 - [226432] ----D- C:\Program Files\Microsoft O43 - CFD: 08/03/2011 - 23:01:16 - [0] ----D- C:\Program Files\microsoft frontpage O43 - CFD: 22/02/2011 - 14:18:14 - [38371963] ----D- C:\Program Files\Microsoft Silverlight O43 - CFD: 08/03/2011 - 22:45:26 - [110239853] ----D- C:\Program Files\Microsoft Works O43 - CFD: 24/12/2010 - 23:05:12 - [17074802] ----D- C:\Program Files\Movie Maker O43 - CFD: 05/03/2011 - 09:45:10 - [33989882] ----D- C:\Program Files\Mozilla Firefox O43 - CFD: 07/08/2009 - 09:05:58 - [25757] ----D- C:\Program Files\MSBuild O43 - CFD: 25/10/2009 - 21:06:42 - [41082734] ----D- C:\Program Files\MSN O43 - CFD: 01/01/2004 - 08:51:50 - [8745735] ----D- C:\Program Files\MSN Gaming Zone O43 - CFD: 03/05/2009 - 05:25:24 - [0] ----D- C:\Program Files\MSXML 4.0 O43 - CFD: 02/05/2009 - 06:35:28 - [3285523] ----D- C:\Program Files\NetMeeting O43 - CFD: 24/01/2011 - 21:32:14 - [502672] ----D- C:\Program Files\NOS O43 - CFD: 13/05/2009 - 14:29:12 - [376219990] ----D- C:\Program Files\OpenOffice.org 3 O43 - CFD: 16/12/2010 - 08:03:48 - [4379321] ----D- C:\Program Files\Outlook Express O43 - CFD: 18/02/2011 - 20:46:00 - [6679867] ----D- C:\Program Files\Piratrax O43 - CFD: 01/01/2004 - 11:43:52 - [6578778] ----D- C:\Program Files\Presario PC Help O43 - CFD: 08/03/2011 - 19:59:20 - [75900667] ----D- C:\Program Files\QuickTime O43 - CFD: 24/12/2010 - 23:35:30 - [0] ----D- C:\Program Files\Real O43 - CFD: 01/01/2004 - 11:14:14 - [17719600] ----D- C:\Program Files\RecordNow! O43 - CFD: 07/08/2009 - 09:05:40 - [36400897] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 05/05/2009 - 11:16:34 - [237241292] ----D- C:\Program Files\Samsung O43 - CFD: 01/01/2004 - 11:49:14 - [63103633] ----D- C:\Program Files\Services en ligne O43 - CFD: 12/05/2009 - 15:01:10 - [6925769] ----D- C:\Program Files\SFR O43 - CFD: 01/01/2004 - 11:14:12 - [3456126] ----D- C:\Program Files\Sonic O43 - CFD: 28/03/2010 - 17:43:42 - [29125256] ----D- C:\Program Files\Sony Handheld O43 - CFD: 01/05/2009 - 21:23:30 - [4950475] ----D- C:\Program Files\Symantec O43 - CFD: 17/12/2010 - 17:38:42 - [404139] ----D- C:\Program Files\Trend Micro O43 - CFD: 01/01/2004 - 11:02:26 - [13291331] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 11/01/2011 - 22:48:46 - [229253] ----D- C:\Program Files\Unlocker O43 - CFD: 01/05/2009 - 20:40:50 - [80869718] ----D- C:\Program Files\VideoLAN O43 - CFD: 10/05/2010 - 15:39:58 - [1098077] ----D- C:\Program Files\VirginMega O43 - CFD: 02/05/2009 - 11:12:30 - [6770777] ----D- C:\Program Files\VS Revo Group O43 - CFD: 01/07/2009 - 19:34:48 - [82030847] ----D- C:\Program Files\Windows Live O43 - CFD: 09/05/2009 - 19:27:06 - [245112] ----D- C:\Program Files\Windows Live SkyDrive O43 - CFD: 01/05/2009 - 22:42:10 - [3581070] ----D- C:\Program Files\Windows Media Connect 2 O43 - CFD: 08/02/2010 - 12:00:40 - [11864777] ----D- C:\Program Files\Windows Media Player O43 - CFD: 02/05/2009 - 06:35:12 - [3942655] ----D- C:\Program Files\Windows NT O43 - CFD: 11/03/2011 - 18:19:44 - [0] --H-D- C:\Program Files\WindowsUpdate O43 - CFD: 18/05/2009 - 17:27:18 - [3525705] ----D- C:\Program Files\WinRAR O43 - CFD: 01/01/2004 - 08:56:02 - [0] ----D- C:\Program Files\xerox O43 - CFD: 11/03/2011 - 20:52:16 - [3456401] ----D- C:\Program Files\ZHPDiag O43 - CFD: 19/12/2010 - 16:05:30 - [18744584] ----D- C:\Program Files\Zone Labs O43 - CFD: 01/05/2009 - 20:01:16 - [0] ----D- C:\Program Files\Common Files\System O43 - CFD: 28/12/2010 - 20:41:32 - [5568535] ----D- C:\Documents and Settings\Propriétaire\Application Data\Adobe O43 - CFD: 02/05/2009 - 17:29:28 - [0] ----D- C:\Documents and Settings\Propriétaire\Application Data\AdobeUM O43 - CFD: 25/12/2010 - 22:13:00 - [0] ----D- C:\Documents and Settings\Propriétaire\Application Data\Apple Computer O43 - CFD: 08/03/2011 - 19:31:40 - [0] ----D- C:\Documents and Settings\Propriétaire\Application Data\Avira O43 - CFD: 20/12/2010 - 19:24:36 - [23325222] ----D- C:\Documents and Settings\Propriétaire\Application Data\Azureus O43 - CFD: 21/11/2010 - 15:21:52 - [0] ----D- C:\Documents and Settings\Propriétaire\Application Data\Canneverbe Limited O43 - CFD: 04/11/2010 - 20:44:46 - [18303] ----D- C:\Documents and Settings\Propriétaire\Application Data\CheckPoint O43 - CFD: 29/08/2010 - 07:50:40 - [349175] ----D- C:\Documents and Settings\Propriétaire\Application Data\Common Files O43 - CFD: 02/06/2010 - 19:24:18 - [147512] ----D- C:\Documents and Settings\Propriétaire\Application Data\DivX O43 - CFD: 03/08/2010 - 13:29:38 - [199] ----D- C:\Documents and Settings\Propriétaire\Application Data\dvdcss O43 - CFD: 20/02/2011 - 11:23:20 - [24259758] ----D- C:\Documents and Settings\Propriétaire\Application Data\FrostWire O43 - CFD: 21/03/2010 - 09:50:30 - [30438] ----D- C:\Documents and Settings\Propriétaire\Application Data\Google O43 - CFD: 28/09/2009 - 14:35:58 - [0] ----D- C:\Documents and Settings\Propriétaire\Application Data\GrabPro O43 - CFD: 23/02/2010 - 13:58:34 - [0] ----D- C:\Documents and Settings\Propriétaire\Application Data\Help O43 - CFD: 29/08/2010 - 07:50:20 - [150000] ----D- C:\Documents and Settings\Propriétaire\Application Data\HP O43 - CFD: 17/12/2010 - 23:45:26 - [0] ----D- C:\Documents and Settings\Propriétaire\Application Data\Icones O43 - CFD: 01/01/2004 - 08:55:56 - [0] ----D- C:\Documents and Settings\Propriétaire\Application Data\Identities O43 - CFD: 15/04/2010 - 19:36:18 - [1428] ----D- C:\Documents and Settings\Propriétaire\Application Data\InterVideo O43 - CFD: 11/03/2011 - 10:45:30 - [18260732] ----D- C:\Documents and Settings\Propriétaire\Application Data\Juniper Networks O43 - CFD: 07/02/2010 - 13:54:28 - [368] ----D- C:\Documents and Settings\Propriétaire\Application Data\Leadertech O43 - CFD: 01/05/2009 - 20:49:28 - [496] ----D- C:\Documents and Settings\Propriétaire\Application Data\Macromedia O43 - CFD: 15/05/2009 - 19:24:10 - [26743] ----D- C:\Documents and Settings\Propriétaire\Application Data\Malwarebytes O43 - CFD: 28/12/2010 - 20:41:32 - [5424009] -S--D- C:\Documents and Settings\Propriétaire\Application Data\Microsoft O43 - CFD: 10/05/2009 - 15:46:26 - [0] ----D- C:\Documents and Settings\Propriétaire\Application Data\Microsoft Web Folders O43 - CFD: 12/11/2010 - 17:09:28 - [7867227] ----D- C:\Documents and Settings\Propriétaire\Application Data\Mozilla O43 - CFD: 01/05/2009 - 20:14:38 - [145443] ----D- C:\Documents and Settings\Propriétaire\Application Data\MSN6 O43 - CFD: 04/11/2010 - 16:33:08 - [331304] ----D- C:\Documents and Settings\Propriétaire\Application Data\OpenCandy O43 - CFD: 13/05/2009 - 14:34:24 - [233626337] ----D- C:\Documents and Settings\Propriétaire\Application Data\OpenOffice.org O43 - CFD: 25/02/2010 - 13:10:22 - [16102] ----D- C:\Documents and Settings\Propriétaire\Application Data\Orbit O43 - CFD: 15/12/2010 - 22:01:58 - [110486] ----D- C:\Documents and Settings\Propriétaire\Application Data\PCFix O43 - CFD: 02/05/2009 - 12:08:42 - [6628] ----D- C:\Documents and Settings\Propriétaire\Application Data\Pense-bete O43 - CFD: 24/12/2010 - 23:35:30 - [974085] ----D- C:\Documents and Settings\Propriétaire\Application Data\Real O43 - CFD: 01/01/2004 - 11:52:46 - [0] ----D- C:\Documents and Settings\Propriétaire\Application Data\SampleView O43 - CFD: 05/05/2009 - 11:20:44 - [2715316] ----D- C:\Documents and Settings\Propriétaire\Application Data\SAMSUNG O43 - CFD: 07/02/2010 - 13:55:16 - [8198] ----D- C:\Documents and Settings\Propriétaire\Application Data\Sonic O43 - CFD: 07/05/2010 - 20:27:26 - [44641757] ----D- C:\Documents and Settings\Propriétaire\Application Data\Sun O43 - CFD: 01/01/2004 - 08:08:58 - [432] ----D- C:\Documents and Settings\Propriétaire\Application Data\Symantec O43 - CFD: 08/03/2011 - 22:56:48 - [8704] ----D- C:\Documents and Settings\Propriétaire\Application Data\Template O43 - CFD: 04/11/2010 - 17:06:30 - [145904] ----D- C:\Documents and Settings\Propriétaire\Application Data\TuneUp Software O43 - CFD: 25/12/2010 - 00:33:22 - [638865] ----D- C:\Documents and Settings\Propriétaire\Application Data\vlc O43 - CFD: 18/05/2009 - 17:27:36 - [0] ----D- C:\Documents and Settings\Propriétaire\Application Data\WinRAR O43 - CFD: 25/12/2010 - 23:05:24 - [464432] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Adobe O43 - CFD: 30/06/2009 - 19:20:24 - [0] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Apple O43 - CFD: 25/12/2010 - 23:08:08 - [10007] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Apple Computer O43 - CFD: 11/03/2011 - 14:17:12 - [23187] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\ApplicationHistory O43 - CFD: 30/05/2009 - 10:39:16 - [3680256] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Downloaded Installations O43 - CFD: 10/05/2010 - 16:04:44 - [26072731] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Google O43 - CFD: 23/02/2010 - 13:58:34 - [0] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Help O43 - CFD: 07/09/2009 - 14:49:12 - [797141] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\HP O43 - CFD: 01/05/2009 - 22:20:36 - [452898] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Identities O43 - CFD: 07/09/2009 - 14:49:14 - [2522] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\IsolatedStorage O43 - CFD: 10/03/2011 - 19:47:30 - [300394836] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Microsoft O43 - CFD: 01/05/2009 - 20:11:50 - [3544504] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Mozilla O43 - CFD: 12/05/2009 - 15:01:58 - [8399] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Neuf O43 - CFD: 04/11/2010 - 16:33:42 - [0] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\OpenCandy O43 - CFD: 12/11/2010 - 17:07:48 - [0] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\PackageAware O43 - CFD: 16/08/2010 - 06:41:02 - [0] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\PCHealth O43 - CFD: 08/03/2011 - 18:55:28 - [7250] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\piratrax O43 - CFD: 24/12/2010 - 23:35:30 - [0] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Real O43 - CFD: 28/12/2010 - 20:41:32 - [0] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Temp O43 - CFD: 25/12/2010 - 00:10:02 - [0] ----D- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\WMTools Downloaded Files ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.E8EC1200F915817C00FCFD7FBCED1200] - 11/03/2011 - 20:50:32 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1052712] O44 - LFC:[MD5.E5F5D787F2BCA49DB6951B644C088788] - 11/03/2011 - 20:38:25 ---A- . (...) -- C:\WINDOWS\setupapi.log [5398] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 11/03/2011 - 20:38:21 ---A- . (...) -- C:\WINDOWS\0.log [0] O44 - LFC:[MD5.E8EC1200F915817C00FCFD7FBCED1200] - 11/03/2011 - 20:37:54 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159] O44 - LFC:[MD5.E8EC1200F915817C00FCFD7FBCED1200] - 11/03/2011 - 20:37:53 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50] O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 11/03/2011 - 20:37:34 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048] O44 - LFC:[MD5.E8EC1200F915817C00FCFD7FBCED1200] - 11/03/2011 - 20:36:43 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [32528] O44 - LFC:[MD5.7D6B174A093553750CA288E7D2877FEE] - 11/03/2011 - 18:19:40 ---A- . (...) -- C:\WINDOWS\bitssetup.log [2590] O44 - LFC:[MD5.C9DD76D0EF94637C77FF8CA5E0FB0684] - 09/03/2011 - 17:59:02 ---A- . (...) -- C:\WINDOWS\system.ini [227] O44 - LFC:[MD5.FDCD620B790C998358CD22BEAFE492ED] - 09/03/2011 - 08:31:55 ---A- . (...) -- C:\WINDOWS\System32\FNTCACHE.DAT [172280] O44 - LFC:[MD5.DA39805E2BAD99D37FCE9477DD94E7F2] - 08/03/2011 - 20:35:34 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\WINDOWS\System32\drivers\avipbb.sys [135096] O44 - LFC:[MD5.47B879406246FFDCED59E18D331A0E7D] - 08/03/2011 - 20:35:34 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\System32\drivers\avgntflt.sys [61960] O44 - LFC:[MD5.A36EE93698802CD899F98BFD553D8185] - 08/03/2011 - 19:25:23 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\System32\drivers\ssmdrv.sys [28520] O44 - LFC:[MD5.87451AA7CC6B6A590EBCEA05E755075A] - 08/03/2011 - 19:25:22 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\System32\drivers\avgntmgr.sys [22360] O44 - LFC:[MD5.5B44C214F9CD9F590BE9125347610380] - 08/03/2011 - 19:25:22 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\System32\drivers\avgntdd.sys [45416] O44 - LFC:[MD5.74570A6F6A138075379C2CA355531581] - 08/03/2011 - 18:28:27 ---A- . (...) -- C:\WINDOWS\System32\perfc009.dat [71732] O44 - LFC:[MD5.FA2E0B662DB45AC4E5899B0BA37BCDBF] - 08/03/2011 - 18:28:27 ---A- . (...) -- C:\WINDOWS\System32\perfc040.dat [85396] O44 - LFC:[MD5.410B27B9531F8F8E65B28D47762B6FB8] - 08/03/2011 - 18:28:27 ---A- . (...) -- C:\WINDOWS\System32\perfh009.dat [442466] O44 - LFC:[MD5.BB68228216D5FBE3997394F6D115B03E] - 08/03/2011 - 18:28:27 ---A- . (...) -- C:\WINDOWS\System32\perfh040.dat [511874] O44 - LFC:[MD5.4CC2AE7592A9EF5A99C2D53EBCB45AC9] - 08/03/2011 - 17:28:11 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [376480] O44 - LFC:[MD5.2D5AE495824D1552CCC6943C15A2ECA7] - 08/03/2011 - 17:13:00 ---A- . (...) -- C:\WINDOWS\System32\perfc00C.dat [85544] O44 - LFC:[MD5.6A6162A1EA70374CE5D721AED3F587F9] - 08/03/2011 - 17:13:00 ---A- . (...) -- C:\WINDOWS\System32\perfh00C.dat [512252] O44 - LFC:[MD5.68288DA42BC798992A42CD59061B199D] - 28/02/2011 - 09:01:22 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\WINDOWS\System32\java.exe [145184] O44 - LFC:[MD5.5BF8BA1B854D7DFCE1F47E58852B3D8F] - 28/02/2011 - 09:01:22 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\WINDOWS\System32\javaw.exe [145184] O44 - LFC:[MD5.58DC5CBDC930AF070B177843810F2C85] - 28/02/2011 - 09:01:22 ---A- . (.Sun Microsystems, Inc. - Java Web Start Launcher.) -- C:\WINDOWS\System32\javaws.exe [157472] O44 - LFC:[MD5.FB4080124F35176910134417D3F5C7CB] - 28/02/2011 - 09:01:07 ---A- . (...) -- C:\WINDOWS\System32\jupdate-1.6.0_24-b07.log [3228] O44 - LFC:[MD5.CBBEB231FBC369732574A6CB6C7830C2] - 17/02/2011 - 18:00:28 ---A- . (...) -- C:\WINDOWS\System32\d3d9caps.dat [1324] O44 - LFC:[MD5.35F23C743BB482ECA462017D35162A8D] - 14/02/2011 - 18:31:45 ---A- . (...) -- C:\WINDOWS\System32\wpa.dbl [1158] ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe O47 - AAKE:Key Export SP - "C:\Program Files\SFR\Media Center\httpd\httpd.exe" [Enabled] Clé orpheline O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\Java\jre6\bin\javaw.exe" [Enabled] .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\javaw.exe O47 - AAKE:Key Export SP - "C:\Program Files\FrostWire\FrostWire.exe" [Enabled] .(.FrostWire Group - FrostWire.) -- C:\Program Files\FrostWire\FrostWire.exe O47 - AAKE:Key Export SP - "C:\Program Files\ma-config.com\maconfservice.exe" [Enabled] .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\WINDOWS\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\System32\msv1_0.dll ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\System32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.LEAD"="LCODCCMP.DLL" . (.LEAD Technologies, Inc. - LEAD MCMP/MJPEG Codec.) -- C:\WINDOWS\System32\LCODCCMP.DLL O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll O52 - TDSD: \Drivers32\"VIDC.XVID"="xvidvfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\xvidvfw.dll O52 - TDSD: \Drivers32\"VIDC.YV12"="yv12vfw.dll" . (.www.helixcommunity.org - Helix YV12 YUV Codec.) -- C:\WINDOWS\System32\yv12vfw.dll O52 - TDSD: \Drivers32\"msacm.ac3acm"="ac3acm.acm" . (.fccHandler - AC-3 ACM Codec.) -- C:\WINDOWS\System32\ac3acm.acm O52 - TDSD: \Drivers32\"msacm.lameacm"="lameACM.acm" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\WINDOWS\System32\lameACM.acm O52 - TDSD: \Drivers32\"VIDC.FFDS"="ff_vfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ff_vfw.dll O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"LCODCCMP.DLL"="LEAD MCMP/MJPEG Codec (VFW)" . (.LEAD Technologies, Inc. - LEAD MCMP/MJPEG Codec.) -- C:\WINDOWS\System32\LCODCCMP.DLL O52 - TDSD: \drivers.desc\"iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\System32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"tssoft32.acm"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm O52 - TDSD: \drivers.desc\"iccvid.dll"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll O52 - TDSD: \drivers.desc\"ir32_32.dll"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \drivers.desc\"ir41_32.ax"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \drivers.desc\"xvidvfw.dll"="Xvid MPEG-4 Video Codec 1.3.0" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"lameACM.acm"="Lame ACM MP3 CODEC v3.98.2" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"ac3acm.acm"="AC-3 ACM Codec" . (.fccHandler - AC-3 ACM Codec.) -- C:\WINDOWS\System32\ac3acm.acm O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow video encoder" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ff_vfw.dll O52 - TDSD: \drivers.desc\"yv12vfw.dll"="yv12vfw.dll" . (.www.helixcommunity.org - Helix YV12 YUV Codec.) -- C:\WINDOWS\System32\yv12vfw.dll ---\\ ShareTools MSconfig StartupReg (O53) O53 - SMSR:HKLM\...\startupreg\CANAL+ CANALSAT A LA DEMANDE [Key] . (.Canal+ - Lancer CANAL+ CANALSAT A LA DEMANDE.) -- C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\Launcher.exe O53 - SMSR:HKLM\...\startupreg\CanalPlayer [Key] . (.Canal+ Distribution - CanalPlayer.exe.) -- C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0 O55 - MWPS:[HKCU\...\Policies\System] - "disableregistrytools"=0 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=323 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=67108863 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoCDBurning"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=67108863 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=323 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.B00D3932E078944C5BB625C8DC6673BD] - 20/11/2003 - 16:25:24 ---A- . (.Intel Corporation - Silicon Image 164 Minidriver.) -- C:\WINDOWS\system32\drivers\a302.sys [11831] O58 - SDL:[MD5.650C11616517739436E66D2E6947FAE1] - 20/11/2003 - 16:25:28 ---A- . (.Intel Corporation - Chrontel 7007 Minidriver.) -- C:\WINDOWS\system32\drivers\a303.sys [29751] O58 - SDL:[MD5.9E6D05F0B49CA15448F7343B71495985] - 20/11/2003 - 16:25:34 ---A- . (.Intel Corporation - Focus 450 Minidriver.) -- C:\WINDOWS\system32\drivers\a304.sys [46647] O58 - SDL:[MD5.75B6A9224D54CD6AC1C8C94AA987FD67] - 20/11/2003 - 16:25:38 ---A- . (.Intel Corporation - National Semiconductor DS90C389R Minidriver.) -- C:\WINDOWS\system32\drivers\a305.sys [12855] O58 - SDL:[MD5.63056FDA3B3BDD0F8A0086726139D618] - 20/11/2003 - 16:25:42 ---A- . (.Intel Corporation - National Semiconductor DS90C2501 Minidriver.) -- C:\WINDOWS\system32\drivers\a306.sys [16951] O58 - SDL:[MD5.49FE6E1C3726F7925AD8C1DF321883C4] - 20/11/2003 - 16:25:46 ---A- . (.Intel Corporation - MBI TvPro Minidriver.) -- C:\WINDOWS\system32\drivers\a307.sys [21559] O58 - SDL:[MD5.28EA7AF174E48820987256BFF27DB039] - 20/11/2003 - 16:25:50 ---A- . (.Intel Corporation - THine 164 DVI Encoder.) -- C:\WINDOWS\system32\drivers\a308.sys [11319] O58 - SDL:[MD5.5B1A5DFC5B2D72C5E160D0A0D6B6FF7C] - 20/11/2003 - 16:25:54 ---A- . (.Intel Corporation - Philips SAA7104 TV Encoder.) -- C:\WINDOWS\system32\drivers\a309.sys [26167] O58 - SDL:[MD5.628CD2517A8A5A7C6124B56436CBDEC0] - 20/11/2003 - 16:25:58 ---A- . (.Intel Corporation - Ch7017 Minidriver.) -- C:\WINDOWS\system32\drivers\a310.sys [33335] O58 - SDL:[MD5.CA6C18D0BE09CC3808346A3A7B84FFE9] - 20/11/2003 - 16:26:02 ---A- . (.Intel Corporation - Ch7017 Minidriver.) -- C:\WINDOWS\system32\drivers\a311.sys [33335] O58 - SDL:[MD5.38A13A14D6D38691E05070DFC2C6CA21] - 20/11/2003 - 16:26:26 ---A- . (.Intel Corporation - Chrontel 7015 Minidriver.) -- C:\WINDOWS\system32\drivers\a313.sys [37431] O58 - SDL:[MD5.27DA64CB9EF4069B204759715CF6F92C] - 20/11/2003 - 16:26:30 ---A- . (.Intel Corporation - Texas Instruments TFP410.) -- C:\WINDOWS\system32\drivers\a314.sys [11319] O58 - SDL:[MD5.C719341A1CF6AFD4FA0808AE3D23D6A3] - 01/01/2004 - 10:43:27 ---A- . (.Oak Technology Inc. - Audio File System.) -- C:\WINDOWS\system32\drivers\AFS2K.SYS [43488] O58 - SDL:[MD5.FBBCB95F677CBAA924140B6EA2D9A97B] - 12/12/2003 - 06:54:14 ---A- . (.Sensaura Ltd - Sensaura WDM 3D Audio Driver.) -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS [391424] O58 - SDL:[MD5.8D6C30E515717248E0E52B85FD7AC466] - 01/10/2004 - 10:24:00 ---A- . (.Realtek Semiconductor Corp. - Realtek AC'97 Audio Driver (WDM).) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2279424] O58 - SDL:[MD5.5B44C214F9CD9F590BE9125347610380] - 17/06/2010 - 15:28:03 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\drivers\avgntdd.sys [45416] O58 - SDL:[MD5.47B879406246FFDCED59E18D331A0E7D] - 08/03/2011 - 20:35:34 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys [61960] O58 - SDL:[MD5.87451AA7CC6B6A590EBCEA05E755075A] - 17/06/2010 - 15:28:03 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\drivers\avgntmgr.sys [22360] O58 - SDL:[MD5.DA39805E2BAD99D37FCE9477DD94E7F2] - 08/03/2011 - 20:35:34 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\WINDOWS\system32\drivers\avipbb.sys [135096] O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 23/09/2003 - 19:12:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528] O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 23/09/2003 - 19:12:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776] O58 - SDL:[MD5.6E883BF518296A40959131C2304AF714] - 18/08/2001 - 03:11:06 ---A- . (.3Com Corporation - 3Com EtherLink PCI Driver.) -- C:\WINDOWS\system32\drivers\el90xbc5.sys [66591] O58 - SDL:[MD5.6E53BD96B0EBAD721CDD6320DBFC3F5F] - 20/11/2003 - 16:26:12 ---A- . (.Intel Corporation - Intel Graphics Chipset (KCH) Driver for Windows 2000® & Windo.) -- C:\WINDOWS\system32\drivers\ialmkchw.sys [99002] O58 - SDL:[MD5.537EFE2F9ADCD01073F59E9D3D24164E] - 20/11/2003 - 16:25:14 ---A- . (.Intel Corporation - Controller Hub for Intel Graphics Driver.) -- C:\WINDOWS\system32\drivers\ialmnt5.sys [95579] O58 - SDL:[MD5.E6C22D34BAEF5196E1B23A4492C275B7] - 20/11/2003 - 16:26:20 ---A- . (.Intel Corporation - Intel Graphics Platform (SoftBIOS) Driver for Windows 2000® &.) -- C:\WINDOWS\system32\drivers\ialmsbw.sys [122110] O58 - SDL:[MD5.836E0E09CA9869BE7EB39EF2CF3602C7] - 20/12/2010 - 18:08:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys [20952] O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 18:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys [38224] O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 23/09/2003 - 19:12:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032] O58 - SDL:[MD5.694DE491FBF0573625FFE6A8A474B7B5] - 05/12/2003 - 19:50:00 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Driver, Version 53.05.) -- C:\WINDOWS\system32\drivers\nv4_mini.sys [1619243] O58 - SDL:[MD5.01621905AE34BC24AAA2FDDB93977299] - 02/09/2003 - 23:51:00 ---A- . (.NVIDIA Corporation - NVIDIA nForce AGP Filter.) -- C:\WINDOWS\system32\drivers\nv_agp.SYS [21120] O58 - SDL:[MD5.9B793A1FFD480155FE9EE5261153F21B] - 29/07/2002 - 21:43:50 ---A- . (.Hewlett-Packard Company - PS2 SYS.) -- C:\WINDOWS\system32\drivers\PS2.sys [23808] O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 20/09/2003 - 18:10:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792] O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 23/09/2003 - 19:12:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032] O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 23/09/2003 - 19:12:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/04/2008 - 08:39:16 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.61CA562DEF09A782D26B3E7EDEC5369A] - 18/07/2003 - 16:58:20 ---A- . (.Silicon Integrated Systems Corporation - SiS AGPv3.5 Filter.) -- C:\WINDOWS\system32\drivers\SISAGPX.SYS [36992] O58 - SDL:[MD5.7A363269D1B57526410FA23FC92CDFA1] - 06/12/2003 - 02:13:42 ---A- . (.Silicon Integrated Systems Corporation - SiS Compatible Super VGA Driver.) -- C:\WINDOWS\system32\drivers\sisgrp.sys [429440] O58 - SDL:[MD5.5529B51AACFF16FBDDE4B34FF0AF2B76] - 11/07/2003 - 22:28:56 ---A- . (.SiS Corporation - SiS PCI Fast Ethernet Adapter Driver.) -- C:\WINDOWS\system32\drivers\sisnic.sys [32768] O58 - SDL:[MD5.7EF8E5C266133638E7E06BE03FCBEFF3] - 05/12/2003 - 16:25:54 ---A- . (.Silicon Integrated Systems Corporation - SiS VGA Driver Manager.) -- C:\WINDOWS\system32\drivers\srvkp.sys [11392] O58 - SDL:[MD5.2D4027C46B4C6E45875E3C4BA3F67492] - 22/12/2005 - 11:24:50 ---A- . (.MCCI - SAMSUNG USB Composite Device Driver.) -- C:\WINDOWS\system32\drivers\sscdbus.sys [80272] O58 - SDL:[MD5.369B29797C1EB7D9B000CCBB026C515F] - 22/12/2005 - 11:24:52 ---A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\sscdcm.sys [11877] O58 - SDL:[MD5.369B29797C1EB7D9B000CCBB026C515F] - 22/12/2005 - 11:24:52 ---A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\sscdcmnt.sys [11877] O58 - SDL:[MD5.F548F1EBA107BC19E91189E6A460BD0E] - 22/12/2005 - 11:24:52 ---A- . (.MCCI - SAMSUNG CDMA Modem Filter Driver.) -- C:\WINDOWS\system32\drivers\sscdmdfl.sys [10864] O58 - SDL:[MD5.71D348D53597379DFE1DE255D70AF13C] - 22/12/2005 - 11:24:52 ---A- . (.MCCI - SAMSUNG CDMA Modem WDM.) -- C:\WINDOWS\system32\drivers\sscdmdm.sys [137884] O58 - SDL:[MD5.7F5CAC8B445D1789275C4E8999C59B44] - 22/12/2005 - 11:24:54 ---A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\sscdwh.sys [11188] O58 - SDL:[MD5.7F5CAC8B445D1789275C4E8999C59B44] - 22/12/2005 - 11:24:54 ---A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\sscdwhnt.sys [11188] O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 17/06/2010 - 15:28:02 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\drivers\ssmdrv.sys [28520] O58 - SDL:[MD5.306521935042FC0A6988D528643619B3] - 24/06/2009 - 09:42:08 ---A- . (...) -- C:\WINDOWS\system32\drivers\StarOpen.sys [5632] O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 23/09/2003 - 19:12:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376] O58 - SDL:[MD5.B3AA7A6E97B70CDA9C3734BADBCE78C4] - 20/11/2003 - 16:26:06 ---A- . (.Intel Corporation - Intel® Video Controller Hub (VCH) Minidriver.) -- C:\WINDOWS\system32\drivers\vch.sys [21045] O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 23/09/2003 - 19:12:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112] O58 - SDL:[MD5.4B039BBD037B01F5DB5A144C837F283A] - 02/07/2003 - 11:42:00 ---A- . (.VIA Technologies, Inc. - VIA NT AGP Filter.) -- C:\WINDOWS\system32\drivers\VIAAGP1.SYS [27904] O58 - SDL:[MD5.29D6A65FDC694CB1EF2CC6BBE5F79B3B] - 16/10/2003 - 22:19:40 ---A- . (.Copyright © VIA/S3 Graphics, Inc. - VIA/S3G Miniport Driver.) -- C:\WINDOWS\system32\drivers\vtmini.sys [117760] O58 - SDL:[MD5.1DBBC637A0B33FBD708C8DAC7A78912C] - 20/11/2003 - 16:25:20 ---A- . (.Intel Corporation - Ch7009 Minidriver.) -- C:\WINDOWS\system32\drivers\wa301a.sys [33847] O58 - SDL:[MD5.1DBBC637A0B33FBD708C8DAC7A78912C] - 20/11/2003 - 16:25:20 ---A- . (.Intel Corporation - Ch7009 Minidriver.) -- C:\WINDOWS\system32\drivers\wa301b.sys [33847] O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 23/09/2003 - 11:46:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037] O58 - SDL:[MD5.ACD6A71D2C3D1D89F8422D35F03DA233] - 01/01/2004 - 11:26:56 ---A- . (...) -- C:\WINDOWS\system32\CHODDI.SYS [26324] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 21/09/2003 - 02:50:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097] O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 20/09/2003 - 19:38:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4912] O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 20/09/2003 - 18:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 20/09/2003 - 18:11:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537] O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 23/09/2003 - 12:01:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27916] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 23/09/2003 - 12:01:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 23/09/2003 - 12:01:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 23/09/2003 - 12:01:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 23/09/2003 - 12:01:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146] O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 03/08/2004 - 21:45:26 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [34000] O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 03/08/2004 - 21:45:16 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560] O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 03/08/2004 - 21:45:12 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648] O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 03/08/2004 - 21:45:16 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424] O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 03/08/2004 - 21:45:14 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560] O58 - SDL:[MD5.E57B778208C783D8DEBAB320C16A1B82] - 12/11/2009 - 13:48:58 ---A- . (...) -- C:\WINDOWS\system32\StarOpen.sys [5504] O58 - SDL:[MD5.765D208D688075D2B01D5A2E9EAA6DDC] - 22/11/2009 - 15:42:54 ---A- . (.Check Point Software Technologies LTD - TrueVector Device Driver.) -- C:\WINDOWS\system32\vsdatant.sys [486280] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis O63 - Logiciel: UsbFix By El Desaparecido & C_XX - (.El Desaparecido & C_XX.) [HKLM] -- Usbfix O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - C:\WINDOWS\system32\drivers\afd.sys - Environnement de prise en charge de réseau AFD (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD O64 - Services: CurCS - C:\Windows\System32\DRIVERS\agp440.sys - Filtre de bus AGP Intel (agp440) .(.Microsoft Corporation - 440 NT AGP Filter.) - LEGACY_AGP440 O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Avertissement (Alerter) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_ALERTER O64 - Services: CurCS - C:\WINDOWS\System32\alg.exe - Service de la passerelle de la couche Application (ALG) .(.Microsoft Corporation - Application Layer Gateway Service.) - LEGACY_ALG O64 - Services: CurCS - C:\Program Files\Avira\AntiVir Desktop\sched.exe - Avira AntiVir Planificateur (AntiVirSchedulerService) .(.Avira GmbH - Antivirus Scheduler.) - LEGACY_ANTIVIRSCHEDULERSERVICE O64 - Services: CurCS - C:\Program Files\Avira\AntiVir Desktop\avguard.exe - Avira AntiVir Guard (AntiVirService) .(.Avira GmbH - Antivirus On-Access Service.) - LEGACY_ANTIVIRSERVICE O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Gestion d'applications (AppMgmt) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_APPMGMT O64 - Services: CurCS - C:\Windows\System32\DRIVERS\arp1394.sys - Protocole client ARP 1394 (Arp1394) .(.Microsoft Corporation - IP/1394 Arp Client.) - LEGACY_ARP1394 O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Audio Windows (AudioSrv) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_AUDIOSRV O64 - Services: CurCS - C:\Program Files\Avira\AntiVir Desktop\avgio.sys - avgio (avgio) .(.Avira GmbH - Avira AntiVir Support for Minifilter.) - LEGACY_AVGIO O64 - Services: CurCS - C:\Windows\System32\DRIVERS\avgntflt.sys - avgntflt (avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT O64 - Services: CurCS - C:\Windows\System32\DRIVERS\avipbb.sys - avipbb (avipbb) .(.Avira GmbH - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\BEEP.sys - Beep (Beep) .(...) - LEGACY_BEEP O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Service de transfert intelligent en arrière-plan (BITS) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_BITS O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Explorateur d'ordinateur (Browser) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_BROWSER O64 - Services: CurCS - C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe - CanalPlus.VOD (CanalPlus.VOD) .(.Canal+ Active - CanalPlus.VOD.Service.) - LEGACY_CANALPLUS.VOD O64 - Services: CurCS - C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\catchme.sys (.not file.) - catchme (catchme) .(...) - LEGACY_CATCHME O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\CDFS.sys - cdfs (cdfs) .(...) - LEGACY_CDFS O64 - Services: CurCS - c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe - .NET Runtime Optimization Service v2.0.50727_X86 (clr_optimization_v2.0.50727_32) .(.Microsoft Corporation - .NET Runtime Optimization Service.) - LEGACY_CLR_OPTIMIZATI O64 - Services: CurCS - (.not file.) - (.not file.) - Application système COM+ (COMSysApp) .(...) - LEGACY_COMSYSAPP O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Services de cryptographie (CryptSvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_CRYPTSVC O64 - Services: CurCS - (.not file.) - (.not file.) - Lanceur de processus serveur DCOM (DcomLaunch) .(...) - LEGACY_DCOMLAUNCH O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Client DHCP (Dhcp) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_DHCP O64 - Services: CurCS - C:\WINDOWS\System32\dmadmin.exe - Service d'administration du Gestionnaire de disque logique (dmadmin) .(.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - LEGACY_DMADMIN O64 - Services: CurCS - C:\Windows\System32\drivers\dmboot.sys - dmboot (dmboot) .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT O64 - Services: CurCS - C:\Windows\System32\drivers\dmload.sys - dmload (dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Gestionnaire de disque logique (dmserver) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_DMSERVER O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Client DNS (Dnscache) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_DNSCACHE O64 - Services: CurCS - C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys - driverhardwarev2 (driverhardwarev2) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2 O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Service de rapport d'erreurs (ERSvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_ERSVC O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Système d'événements de COM+ (EventSystem) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_EVENTSYSTEM O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FASTFAT.sys - fastfat (fastfat) .(...) - LEGACY_FASTFAT O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Compatibilité avec le Changement rapide d'utilisateur (FastUserSwitchingCompatibility) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_FASTUSERSWITCHINGCOMPATIBILITY O64 - Services: CurCS - C:\WINDOWS\system32\fxssvc.exe - Fax (Fax) .(.Microsoft Corporation - Service de télécopie.) - LEGACY_FAX O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FIPS.sys - Fips (Fips) .(...) - LEGACY_FIPS O64 - Services: CurCS - C:\Windows\System32\drivers\fltmgr.sys - FltMgr (FltMgr) .(.Microsoft Corporation - Microsoft Filesystem Filter Manager.) - LEGACY_FLTMGR O64 - Services: CurCS - c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe - Windows Presentation Foundation Font Cache 3.0.0.0 (FontCache3.0.0.0) .(.Microsoft Corporation - PresentationFontCache.exe.) - LEGACY_FONTCACHE3.0.0.0 O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC O64 - Services: CurCS - C:\Windows\System32\DRIVERS\msgpc.sys - Classificateur de paquets générique (Gpc) .(.Microsoft Corporation - MS General Packet Classifier.) - LEGACY_GPC O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Aide et support (helpsvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_HELPSVC O64 - Services: CurCS - C:\Windows\System32\Drivers\HTTP.sys - HTTP (HTTP) .(.Microsoft Corporation - HTTP Protocol Stack.) - LEGACY_HTTP O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - HTTP SSL (HTTPFilter) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_HTTPFILTER O64 - Services: CurCS - c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe - Windows CardSpace (idsvc) .(.Microsoft Corporation - Windows CardSpace.) - LEGACY_IDSVC O64 - Services: CurCS - C:\WINDOWS\system32\imapi.exe - Service COM de gravage de CD IMAPI (ImapiService) .(.Microsoft Corporation - API Image Mastering.) - LEGACY_IMAPISERVICE O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ipnat.sys - Traducteur d'adresses réseau IP (IpNat) .(.Microsoft Corporation - IP Network Address Translator.) - LEGACY_IPNAT O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ipsec.sys - Pilote IPSEC (IPSec) .(.Microsoft Corporation - IPSec Driver.) - LEGACY_IPSEC O64 - Services: CurCS - C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys - ZoneAlarm Toolbar ISWKL (ISWKL) .(.Check Point Software Technologies - ZoneAlarm ForceField.) - LEGACY_ISWKL O64 - Services: CurCS - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe - ZoneAlarm Toolbar IswSvc (IswSvc) .(.Check Point Software Technologies - ZoneAlarm ForceField.) - LEGACY_ISWSVC O64 - Services: CurCS - C:\Program Files\Java\jre6\bin\jqs.exe - Java Quick Starter (JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE O64 - Services: CurCS - (.not file.) - KLIF (KLIF) .(...) - LEGACY_KLIF O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\KSECDD.sys - ksecdd (ksecdd) .(...) - LEGACY_KSECDD O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Serveur (lanmanserver) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_LANMANSERVER O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Station de travail (LanmanWorkstation) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_LANMANWORKSTATION O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Assistance TCP/IP NetBIOS (LmHosts) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_LMHOSTS O64 - Services: CurCS - C:\Program Files\ma-config.com\maconfservice.exe - Ma-Config Service (maconfservice) .(.CybelSoft - Service de détection matériel.) - LEGACY_MACONFSERVICE O64 - Services: CurCS - (.not file.) - mbr (mbr) .(...) - LEGACY_MBR O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Affichage des messages (Messenger) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_MESSENGER O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MNMDD.sys - mnmdd (mnmdd) .(...) - LEGACY_MNMDD O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MOUNTMGR.sys - (.not file.) - mountmgr (mountmgr) .(...) - LEGACY_MOUNTMGR O64 - Services: CurCS - C:\Windows\System32\DRIVERS\mrxdav.sys - Redirecteur client WebDav (MRxDAV) .(.Microsoft Corporation - Windows NT WebDav Minirdr.) - LEGACY_MRXDAV O64 - Services: CurCS - C:\Windows\System32\DRIVERS\mrxsmb.sys - MRXSMB (MRxSmb) .(.Microsoft Corporation - Windows NT SMB Minirdr.) - LEGACY_MRXSMB O64 - Services: CurCS - C:\WINDOWS\System32\msdtc.exe - Distributed Transaction Coordinator (MSDTC) .(.Microsoft Corporation - MS DTC console program.) - LEGACY_MSDTC O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS O64 - Services: CurCS - C:\WINDOWS\system32\msiexec.exe - Windows Installer (MSIServer) .(.Microsoft Corporation - Windows® installer.) - LEGACY_MSISERVER O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MUP.sys - (.not file.) - Mup (Mup) .(...) - LEGACY_MUP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDIS.sys - (.not file.) - Pilote système NDIS (NDIS) .(...) - LEGACY_NDIS O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ndistapi.sys - Pilote TAPI NDIS d'accès distant (NdisTapi) .(.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) - LEGACY_NDISTAPI O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ndisuio.sys - NDIS mode utilisateur E/S Protocole (Ndisuio) .(.Microsoft Corporation - NDIS User mode I/O Driver.) - LEGACY_NDISUIO O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY O64 - Services: CurCS - C:\Windows\System32\DRIVERS\netbios.sys - Interface NetBIOS (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS O64 - Services: CurCS - C:\Windows\System32\DRIVERS\netbt.sys - NetBIOS sur TCP/IP (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Connexions réseau (Netman) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_NETMAN O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - NLA (Network Location Awareness) (Nla) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_NLA O64 - Services: CurCS - C:\Program Files\CDBurnerXP\NMSAccessU.exe (.not file.) - NMSAccessU (NMSAccessU) .(...) - LEGACY_NMSACCESSU O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - getPlus® Helper 3004 (nosGetPlusHelper) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_NOSGETPLUSHELPER O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NTFS.sys - ntfs (ntfs) .(...) - LEGACY_NTFS O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Stockage amovible (NtmsSvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_NTMSSVC O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL O64 - Services: CurCS - C:\WINDOWS\System32\nvsvc32.exe - NVIDIA Display Driver Service (NVSvc) .(.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 53.05.) - LEGACY_NVSVC O64 - Services: CurCS - C:\Windows\System32\DRIVERS\nv_agp.sys - NVIDIA nForce AGP Bus Filter (nv_agp) .(.NVIDIA Corporation - NVIDIA nForce AGP Filter.) - LEGACY_NV_AGP O64 - Services: CurCS - (.not file.) - PAGEDFRG (PAGEDFRG) .(...) - LEGACY_PAGEDFRG O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARTMGR.sys - (.not file.) - PartMgr (PartMgr) .(...) - LEGACY_PARTMGR O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARVDM.sys - ParVdm (ParVdm) .(...) - LEGACY_PARVDM O64 - Services: CurCS - C:\WINDOWS\system32\lsass.exe - Services IPSEC (PolicyAgent) .(.Microsoft Corporation - LSA Shell (Export Version).) - LEGACY_POLICYAGENT O64 - Services: CurCS - (.not file.) - PROCEXP113 (PROCEXP113) .(...) - LEGACY_PROCEXP113 O64 - Services: CurCS - C:\WINDOWS\system32\lsass.exe - Emplacement protégé (ProtectedStorage) .(.Microsoft Corporation - LSA Shell (Export Version).) - LEGACY_PROTECTEDSTORAGE O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rasacd.sys - Pilote de connexion automatique d'accès distant (RasAcd) .(.Microsoft Corporation - RAS Automatic Connection Driver.) - LEGACY_RASACD O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Gestionnaire de connexions d'accès distant (RasMan) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_RASMAN O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rdbss.sys - Rdbss (Rdbss) .(.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - LEGACY_RDBSS O64 - Services: CurCS - C:\Windows\System32\DRIVERS\RDPCDD.sys - RDPCDD (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD O64 - Services: CurCS - (.not file.) - RDPNP (RDPNP) .(...) - LEGACY_RDPNP O64 - Services: CurCS - (.not file.) - (.not file.) - Appel de procédure distante (RPC) (RpcSs) .(...) - LEGACY_RPCSS O64 - Services: CurCS - C:\WINDOWS\System32\rsvp.exe - QoS RSVP (RSVP) .(.Microsoft Corporation - Microsoft RSVP.) - LEGACY_RSVP O64 - Services: CurCS - C:\WINDOWS\system32\lsass.exe - Gestionnaire de comptes de sécurité (SamSs) .(.Microsoft Corporation - LSA Shell (Export Version).) - LEGACY_SAMSS O64 - Services: CurCS - c:\Program Files\Norton AntiVirus\SAVRTPEL.sys (.not file.) - SAVRTPEL (SAVRTPEL) .(...) - LEGACY_SAVRTPEL O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Planificateur de tâches (Schedule) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SCHEDULE O64 - Services: CurCS - C:\WINDOWS\BackupIP\service.exe - Backup IP Network (sdmBackupIP) .(.Pas de propriétaire - service.) - LEGACY_SDMBACKUPIP O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Connexion secondaire (seclogon) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SECLOGON O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Notification d'événement système (SENS) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SENS O64 - Services: CurCS - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe - Service CANALPLAY (Service CANALPLAY) .(.Canal+ Distribution - CanalPlayService.exe.) - LEGACY_SERVICE_CANALPLAY O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Pare-feu Windows / Partage de connexion Internet (SharedAccess) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SHAREDACCESS O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Détection matériel noyau (ShellHWDetection) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SHELLHWDETECTION O64 - Services: CurCS - C:\WINDOWS\system32\spoolsv.exe - Spouleur d'impression (Spooler) .(.Microsoft Corporation - Spooler SubSystem App.) - LEGACY_SPOOLER O64 - Services: CurCS - C:\Windows\System32\DRIVERS\sr.sys - Pilote de filtre de restauration système (sr) .(.Microsoft Corporation - Pilote de filtre de système de fichiers pou.) - LEGACY_SR O64 - Services: CurCS - (.not file.) - srescan (srescan) .(...) - LEGACY_SRESCAN O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Service de restauration système (srservice) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SRSERVICE O64 - Services: CurCS - C:\Windows\System32\DRIVERS\srv.sys - Srv (Srv) .(.Microsoft Corporation - Server driver.) - LEGACY_SRV O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Service de découvertes SSDP (SSDPSRV) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SSDPSRV O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ssmdrv.sys - ssmdrv (ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\STAROPEN.sys - StarOpen (StarOpen) .(...) - LEGACY_STAROPEN O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Acquisition d'image Windows (WIA) (stisvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_STISVC O64 - Services: CurCS - (.not file.) - (.not file.) - MS Software Shadow Copy Provider (SwPrv) .(...) - LEGACY_SWPRV O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\SYMREDRV.sys (.not file.) - SYMREDRV (SYMREDRV) .(...) - LEGACY_SYMREDRV O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\SYMTDI.sys (.not file.) - SYMTDI (SYMTDI) .(...) - LEGACY_SYMTDI O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Téléphonie (TapiSrv) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_TAPISRV O64 - Services: CurCS - C:\Windows\System32\DRIVERS\tcpip.sys - Pilote du protocole TCP/IP (Tcpip) .(.Microsoft Corporation - TCP/IP Protocol Driver.) - LEGACY_TCPIP O64 - Services: CurCS - (.not file.) - (.not file.) - Services Terminal Server (TermService) .(...) - LEGACY_TERMSERVICE O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Thèmes (Themes) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_THEMES O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Client de suivi de lien distribué (TrkWks) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_TRKWKS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\UDFS.sys - Udfs (Udfs) .(...) - LEGACY_UDFS O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Gestionnaire de téléchargement (uploadmgr) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_UPLOADMGR O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Hôte de périphérique universel Plug-and-Play (upnphost) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_UPNPHOST O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VGA.sys - vga (vga) .(...) - LEGACY_VGA O64 - Services: CurCS - C:\WINDOWS\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE O64 - Services: CurCS - C:\Windows\System32\DRIVERS\viaagp1.sys - VIA AGP Filter (viaagp1) .(.VIA Technologies, Inc. - VIA NT AGP Filter.) - LEGACY_VIAAGP1 O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VOLSNAP.sys - VolSnap (VolSnap) .(...) - LEGACY_VOLSNAP O64 - Services: CurCS - C:\Windows\System32\vsdatant.sys - vsdatant (vsdatant) .(.Check Point Software Technologies LTD - TrueVector Device Driver.) - LEGACY_VSDATANT O64 - Services: CurCS - C:\WINDOWS\system32\ZoneLabs\vsmon.exe - TrueVector Internet Monitor (vsmon) .(.Check Point Software Technologies LTD - TrueVector Service.) - LEGACY_VSMON O64 - Services: CurCS - C:\WINDOWS\System32\vssvc.exe - Cliché instantané de volume (VSS) .(.Microsoft Corporation - Service de cliché instantané de volumes Mic.) - LEGACY_VSS O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Horloge Windows (W32Time) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_W32TIME O64 - Services: CurCS - C:\Windows\System32\DRIVERS\wanarp.sys - Pilote ARP IP d'accès distant (Wanarp) .(.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - LEGACY_WANARP O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - WebClient (WebClient) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WEBCLIENT O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Infrastructure de gestion Windows (winmgmt) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WINMGMT O64 - Services: CurCS - (.not file.) - Numéro de série du média portable (WmdmPmSp) .(...) - LEGACY_WMDMPMSP O64 - Services: CurCS - C:\WINDOWS\System32\wbem\wmiapsrv.exe - Carte de performance WMI (WmiApSrv) .(.Microsoft Corporation - Service de la carte de performance WMI.) - LEGACY_WMIAPSRV O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Centre de sécurité (wscsvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WSCSVC O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Mises à jour automatiques (wuauserv) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WUAUSERV O64 - Services: CurCS - C:\Windows\System32\DRIVERS\WudfPf.sys - Windows Driver Foundation - User-mode Driver Framework Platform Driver (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Windows Driver Foundation - User-mode Driver Framework (WudfSvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WUDFSVC O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Configuration automatique sans fil (WZCSVC) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WZCSVC ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.html> <Opera.HTML>[HKCU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <Opera.HTML>[HKCR\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O68 - StartMenuInternet: <MSN Explorer> <>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - msn.) -- C:\Program Files\MSN\MSNCoreFiles\MSN6.exe ---\\ Search Browser Infection (O69) O69 - SBI: C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\z8sr0rwr.default\searchplugins\conduit.xml O69 - SBI: prefs.js [Propriétaire - z8sr0rwr.default] user_pref("CT2095689.SearchEngine", "Recherche||http://search.conduit.com/Results.aspx? O69 - SBI: prefs.js [Propriétaire - z8sr0rwr.default] user_pref("CT2095689.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2095689 O69 - SBI: prefs.js [Propriétaire - z8sr0rwr.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2095689&SearchSource= O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {9D5BD211-422C-4164-9298-BB4186A30F31} - (Live Search) - Bing O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (Live Search) - http://search.conduit.com O69 - SBI: SearchScopes [HKCU] {B320F28C-6347-46e4-98FF-5261CA66FEDA} - (Web Search) - http://search.conduit.com ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 17/08/2010 135336 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe SR - | Auto 08/03/2011 267944 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe SR - | Auto 06/07/2010 188416 | CanalPlus.VOD (CanalPlus.VOD) . (.Canal+ Active.) - C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe SS - | Auto 06/07/2010 0 | (ccEvtMgr) . (...) - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe SS - | Demand 06/07/2010 0 | (ccPwdSvc) . (...) - c:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe SS - | Auto 06/07/2010 0 | (ccSetMgr) . (...) - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe SS - | Demand 13/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe SR - | Auto 14/10/2009 476528 | (IswSvc) . (.Check Point Software Technologies.) - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe SR - | Auto 02/02/2011 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe SS - | Demand 10/03/2011 311744 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe SS - | Auto 10/03/2011 0 | (navapsvc) . (...) - c:\Program Files\Norton AntiVirus\navapsvc.exe SS - | Auto 10/03/2011 0 | (NMSAccessU) . (...) - C:\Program Files\CDBurnerXP\NMSAccessU.exe SR - | Auto 05/12/2003 77824 | (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\nvsvc32.exe SS - | Demand 05/12/2003 0 | (SAVScan) . (...) - c:\Program Files\Norton AntiVirus\SAVScan.exe SS - | Auto 16/12/2010 8192 | (sdmBackupIP) . (...) - C:\WINDOWS\BackupIP\service.exe SS - | Demand 20/06/2008 436096 | (Service CANALPLAY) . (.Canal+ Distribution.) - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe SR - | Auto 22/11/2009 2384240 | (vsmon) . (.Check Point Software Technologies LTD.) - C:\WINDOWS\system32\ZoneLabs\vsmon.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, GMER - Rootkit Detector and Remover Run by Propriétaire at 11/03/2011 20:54:18 device: opened successfully user: MBR read successfully Disk trace: called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS 1 nt!IofCallDriver[0x804E37D5] -> \Device\Harddisk0\DR0[0x823CBAB8] 3 CLASSPNP[0xF8575FD7] -> nt!IofCallDriver[0x804E37D5] -> \Device\0000005c[0x823D6F18] 5 ACPI[0xF84EB620] -> nt!IofCallDriver[0x804E37D5] -> \Device\Ide\IdeDeviceP0T0L0-3[0x823D4940] kernel: MBR read successfully user & kernel MBR OK malicious code @ sector 0xdf8f900 size 0x1aa ! copy of MBR has been found in sector 62 ! ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Propriétaire at 11/03/2011 20:54:20 Use the desktop link 'MBRCheck' to have full report Dump file Name : C:\PhysicalDisk0_MBR.bin End of the scan (1195 lines in 02mn 13s)(0)

c est un compaq j ai les cd originaux

ok , je ne connais pas la procédure réinstaller mais je suis prêt à apprendre. merci.

le problème est que la restauration était désactivée !! et qu'il y a cette demande de Windows de redémarrer qui revient en boucle, j'ai un rapport combo fix éventuellement si ça peut t'aider, sinon est ce que le formatage me redonnerait une base de regitre "propre " , d'origine ? Car le problème vient de cette fusion , tout allait bien avant.... merci. Windows XP SP 3 mozilla