Aller au contenu

speck41

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    370

  • Inscription

  • Dernière visite

Tout ce qui a été posté par speck41

  1. speck41
    Bonjour Pear, la première chose que j'ai essayé est la réparation du démarrage. J'ai fais ensuite une restauration à une date antérieure. Ça s'est très bien passé et je n'ai vus aucun changement. Merci, Speck41
  2. speck41
    Bonjour Pear, je suis un peu découragé. J'ai fais ce que tu m'as recommandé et même fais une restauration à une date du mois de juin et ce n'est pas mieux. J'ai aussi désinstallé skype que ma fille ne se servait plus et tout ça ne change rien. Présentement, le meeter est à 92% d'utilisation du processeur. Si tu as d'autres suggestions je suis preneur. Merci, Speck41
  3. speck41
    Merci pour cette réponse rapide, je regarderai ça ce soir, pour le moment je dois aller travailler. Merci, Speck41
  4. speck41
    Bonjour Pear, on dirait que j'ai reçu ton précédent message par télépathie..... j'étais justement dans le gestionnaire avant de lire ta réponse et le processus gourmand est: ''system nt kernel & system'' Voici un lien ci-joint avec un print screen du Gestionnaire des Taches : Cijoint.fr - Service gratuit de dépôt de fichiers J'espère que le lien fonctionnera car, ici, il me redirige vers un dossier (D/program files) sur le portable de ma fille. Merci, Speck41
  5. speck41
    Bonjour Pear et merci de prendre encore un de mes problèmes de famille en considération. Je vous met en suite le rapport demandé: Rapport de ZHPFix 1.12.3288 par Nicolas Coolman, Update du 29/05/2011 Fichier d'export Registre : Run by Maude at 30/08/2011 17:42:48 Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601) Web site : ZHPFix Fix de rapport ========== Clé(s) du Registre ========== O69 - SBI: SearchScopes [HKCU] {EEE6C360-6118-11DC-9C72-001320C79847} - (SweetIM Search) - Server Error => Clé absente HKCR\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E} => Clé absente HKLM\Software\Classes\Wow6432Node\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E} => Clé absente HKLM\Software\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E} => Clé absente O53 - SMSR:HKLM\...\startupreg\Setwallpaper [Key] . (...) -- c:\programdata\SetWallpaper.cmd (.not file.) => Clé non supprimée HKCU\Software\SweetIM => Clé supprimée avec succès HKLM\Software\SweetIM => Clé absente HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847} => Clé absente HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847} => Clé absente HKLM\Software\Wow6432Node\SweetIM => Clé supprimée avec succès ========== Valeur(s) du Registre ========== R3 - URLSearchHook: (no name) - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} Clé orpheline => Valeur absente ========== Dossier(s) ========== C:\ProgramData\Partner => Dossier absent ========== Fichier(s) ========== c:\programdata\setwallpaper.cmd => Fichier absent c:\users\maude\appdata\local\temp\memcrash20110824085316.bin => Fichier absent ========== Récapitulatif ========== 10 : Clé(s) du Registre 1 : Valeur(s) du Registre 1 : Dossier(s) 2 : Fichier(s) End of the scan ----------------------------------------------------------------------------------------- Voila, merci. Speck41 N B : le processeur est encore utilisé à plus de 50%
  6. speck41
    Bonjour chers spécialistes. Il y a quelques jours j'ai eu l'aide de Pear pour le portable de ma femme. Maintenant ça va mieux et je le remercis encore. J'ai formaté pour enlever ma version de windows 7 exotique et remis vista qui venait avec la machine. Maintenant je dois m'occuper de celui de ma fille. Un portable ASUS d'un an. Je vous donne un lien qui donne les specifications de l'ordinateur. (le site ne semble pas bien fonctionner) : Cijoint.fr - Service gratuit de dépôt de fichiers Le problème avec cet ordinateur est que l'UC est utilisé constemment entre 30% et 50% sans qu'elle ne fasse rien. Tout fonctionne au ralenti, lorsqu'on clique sur quelque chose ou on essai d'ouvrir un programme, ça prends une éternité. Elle utilise cet ordinateur à l'école et j'aimerais qu'il fonctionne parfaitement. L'utilisation à la maison se résume aux résaux sociaux (facebook...) quelques jeux sur le web et chat video avec ses amis et petit copain. Je vous joins un scan ZHPDiag. Malwarebytes est présent sur cet ordinateur et est utilisé environ aux deux semaines. Merci à l'avance pour l'aide. Speck41 ---------------------------------------------------------------------------------------------------------- Rapport de ZHPDiag v1.27.216 par Nicolas Coolman, Update du 29/05/2011 Run by Maude at 30/08/2011 08:39:01 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v9.0.8112.16421 OPIE: Opera v11.50 MFIE: Mozilla Firefox 6.0 v6.0 (Defaut) ---\\ System Information Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601) Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 4061 MB (64% free) System Restore: Activé (Enable) System drive C: has 58 GB (49%) free of 116 GB ---\\ Logged in mode Computer Name: MAUDE-PC User Name: Maude All Users Names: Maude, HomeGroupUser$, Administrateur, Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Users\Maude\AppData\Roaming %LocalAppData%=C:\Users\Maude\AppData\Local %StartMenu%=C:\Users\Maude\AppData\Roaming\Microsoft\Windows\Start Menu ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 58 Go of 116 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 208 Go of 333 Go) E:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK ---\\ Recherche particulière de fichiers génériques [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 01:19:30.) -- C:\Windows\Explorer.exe [2871808] [MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.13/07/2009 20:14:45.) -- C:\Windows\system32\Wininit.exe [96256] [MD5.2C7332C222D1FE1FC57D622699A8C001] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.21/07/2011 21:48:26.) -- C:\Windows\system32\wininet.dll [1126912] ---\\ Processus lancés [MD5.BDD790326FABC31FB635130810245062] - (.Pas de propriétaire - Wireless Console 3.) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1597440] [MD5.F4DCD4912B185C3AAEB92A7040832AD1] - (.Pas de propriétaire - ALU.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768] [MD5.852EE4F61139A1B3F44EDAA0D5B3FC14] - (...) -- C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe [53888] [MD5.868E3486E7EC522330344152A5535783] - (.ASUS - SmartLogon Application.) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305720] [MD5.5AEBF6FA9805C9101220AA4FB4FA17E7] - (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [105016] [MD5.32F43BE36AAC4E10C88EC24B34770C0D] - (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [6859392] [MD5.5666955DC9FD455A003D86A21E0483A9] - (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [170624] [MD5.73BFDC88C6EF9715CDF57134A438837A] - (.Cisco Systems, Inc. - Pure Networks Platform Assistant.) -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe [647216] [MD5.F46F1EBC3F9DC2559B24AEEFC3D8206C] - (.Cisco Systems, Inc. - Network Magic Application.) -- D:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe [472112] [MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696] [MD5.37DEB76A2CF005841C4E45DE2B94D84F] - (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe [3058304] [MD5.57B4D34232852BFE4453BE571DF90D21] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720] [MD5.1BE8F8E2758C352280990A170DDD696D] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\opera.exe [947056] [MD5.E5CA22F495988A55E58C527F25FB21EE] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe [1047656] [MD5.FB0B663965712CE1D392B9528A57D3F8] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [657408] ---\\ Opera, Plugins,Démarrage,Recherche (P1,B0,B1) B0 - SPO: operaprefs.ini [Maude] Home URL=http://www.google.ca/ P1 - OPN:Opera Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Opera\Program\Plugins\NPOFF12.DLL P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin.dll P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin2.dll P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin3.dll P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin4.dll P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin5.dll P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin6.dll P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin7.dll ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) M3 - MFPP: Plugins - [Maude] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazondotcom.xml M3 - MFPP: Plugins - [Maude] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml M3 - MFPP: Plugins - [Maude] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay.xml M3 - MFPP: Plugins - [Maude] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [Maude] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia.xml M3 - MFPP: Plugins - [Maude] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo.xml P2 - FPN: [HKCU] [@talk.google.com/GoogleTalkPlugin] - (.Google - Version 2.2.2.0.) -- C:\Users\Maude\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll P2 - FPN: [HKCU] [@talk.google.com/O3DPlugin] - (.Pas de propriétaire - Google Talk Plugin Video Accelerator version:0.1.44.9.) -- C:\Users\Maude\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\Maude\AppData\Local\Google\Update\1.3.21.68\npGoogleUpdate3.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\Maude\AppData\Local\Google\Update\1.3.21.68\npGoogleUpdate3.dll ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) G1 - GCS: Preference [user Data\Default] None G0 - GCSP: Preference [user Data\Default][HomePage] Server Error G2 - GCE: Preference [user Data\Default] [dnageijokooklkmihdpodkclmcekjkij] Horizontal Stripes v.1.0 (Activé) ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search Microsoft.com R0 - HKUS\S-1-5-21-2586724927-2274417868-1058133089-1001\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Microsoft Corporation R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKUS\S-1-5-21-2586724927-2274417868-1058133089-1001\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R3 - URLSearchHook: (no name) [64Bits] - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} Clé orpheline R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Windows Live Family Safety Browser Helper [64Bits] - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} . (.Microsoft Corporation - Family Safety Browser Helper Object Library.) -- C:\Program Files\Windows Live\Family Safety\fssbho.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\ O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) [64Bits] - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline O2 - BHO: Search Helper [64Bits] - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corp. - Microsoft Search Helper Extention.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll O2 - BHO: Java Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper [64Bits] - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [ETDWare] . (.ELAN Microelectronic Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe O4 - HKLM\..\Run: [ASUS WebStorage] . (...) -- C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe O4 - HKLM\..\Run: [AmIcoSinglun64] . (.AlcorMicro Co., Ltd. - Single LUN Icon Utility for VID 058F PID 63.) -- C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe O4 - HKLM\..\Run: [ufSeAgnt.exe] . (.Trend Micro Inc. - Trend Micro Server Agent.) -- C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe (.not file.) O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe (.not file.) O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe (.not file.) O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O4 - HKCU\..\Run: [FPL] . (.freephoneline.ca - Freephoneline 3.0.3 © freephoneline.ca, Inc.) -- C:\Program Files (x86)\Freephoneline\FreePhoneLine.exe O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Maude\AppData\Local\Google\Update\GoogleUpdate.exe O4 - HKCU\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe O4 - HKLM\..\Wow6432Node\Run: [updateLBPShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe O4 - HKLM\..\Wow6432Node\Run: [updateP2GoShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe O4 - HKLM\..\Wow6432Node\Run: [HDAudDeck] . (.VIA - VIA HD Audio CPL.) -- C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe O4 - HKLM\..\Wow6432Node\Run: [HControlUser] . (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe O4 - HKLM\..\Wow6432Node\Run: [ATKOSD2] . (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe O4 - HKLM\..\Wow6432Node\Run: [ATKMEDIA] . (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe O4 - HKLM\..\Wow6432Node\Run: [nmctxth] . (.Cisco Systems, Inc. - Pure Networks Platform Assistant.) -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe O4 - HKLM\..\Wow6432Node\Run: [nmapp] . (.Cisco Systems, Inc. - Network Magic Application.) -- D:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-21-2586724927-2274417868-1058133089-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O4 - HKUS\S-1-5-21-2586724927-2274417868-1058133089-1001\..\Run: [FPL] . (.freephoneline.ca - Freephoneline 3.0.3 © freephoneline.ca, Inc.) -- C:\Program Files (x86)\Freephoneline\FreePhoneLine.exe O4 - HKUS\S-1-5-21-2586724927-2274417868-1058133089-1001\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Maude\AppData\Local\Google\Update\GoogleUpdate.exe O4 - HKUS\S-1-5-21-2586724927-2274417868-1058133089-1001\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.) O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.) ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\Maude\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Maude\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Maude\Desktop\LifeFrame.lnk . (.ASUS.) -- C:\Program Files (x86)\ASUS\ASUS LifeFrame3\LifeFrame.exe O4 - Global Startup: C:\Users\Maude\Desktop\Microsoft Office Word 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe O4 - Global Startup: C:\Users\Maude\Desktop\Multipass - Raccourci.lnk . (.GBSoft.) -- C:\Users\Maude\Desktop\Raccoucis du Bureau\Multipass\Multipass.exe O4 - Global Startup: C:\Users\Maude\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Maude\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero Home.lnk . (.Nero AG.) -- C:\Program Files (x86)\Nero\Nero 7\Nero Home\NeroHome.exe O4 - Global Startup: C:\Users\Maude\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk . (.Nero AG.) -- C:\Program Files (x86)\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~1\Office12\EXCEL.exe ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{1C008B65-3462-44BD-9DD5-3927CDEEFD28}: DhcpNameServer = 64.18.160.73 64.18.160.74 O17 - HKLM\System\CCS\Services\Tcpip\..\{FE420894-4B43-454C-B0B3-1BA5B7E59431}: DhcpNameServer = 64.18.160.73 64.18.160.74 O17 - HKLM\System\CS1\Services\Tcpip\..\{1C008B65-3462-44BD-9DD5-3927CDEEFD28}: DhcpNameServer = 64.18.160.73 64.18.160.74 O17 - HKLM\System\CS1\Services\Tcpip\..\{FE420894-4B43-454C-B0B3-1BA5B7E59431}: DhcpNameServer = 64.18.160.73 64.18.160.74 O17 - HKLM\System\CS2\Services\Tcpip\..\{1C008B65-3462-44BD-9DD5-3927CDEEFD28}: DhcpNameServer = 64.18.160.73 64.18.160.74 O17 - HKLM\System\CS2\Services\Tcpip\..\{FE420894-4B43-454C-B0B3-1BA5B7E59431}: DhcpNameServer = 64.18.160.73 64.18.160.74 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 64.18.160.73 64.18.160.74 ---\\ Protocole additionnel et piratage de protocole (O18) O18 - Handler: pure-go [64Bits] - {4746C79A-2042-4332-8650-48966E44ABA8} . (.Cisco Systems, Inc. - Pure Service Provider DLL (64-bit).) -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\puresp4.dll ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: igfxcui . (.Pas de propriétaire - Pas de description.) -- igfxdev.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: (ADSMService) . (.ASUSTek Computer Inc. - ADSMSrv.) - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe O23 - Service: (AFBAgent) . (.ASUSTeK Computer Inc. - ASUS FastBoot.) - C:\Windows\system32\FBAgent.exe O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: (ASLDRService) . (.ASUS - ASLDR Service.) - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe O23 - Service: (ATKGFNEXSrv) . (.Pas de propriétaire - GFNEXSrv.) - C:\Program Files\ATKGFNEX\GFNEXSrv.exe O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: (iPod Service) . (.Apple Inc. - iPodService Module (64-bit).) - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: (NMIndexingService) . (.Nero AG - Nero Home.) - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: (NMSAccess) . (...) - C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe O23 - Service: (nmservice) . (.Cisco Systems, Inc. - Pure Networks Platform Service.) - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe O23 - Service: (SeaPort) . (.Microsoft Corp. - Microsoft SeaPort Search Enhancement Broker.) - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe O23 - Service: (Secunia PSI Agent) . (.Secunia - Secunia PSI Agent.) - C:\Program Files (x86)\Secunia\PSI\PSIA.exe O23 - Service: (Secunia Update Agent) . (.Secunia - Secunia Update Agent.) - C:\Program Files (x86)\Secunia\PSI\sua.exe O23 - Service: (SfCtlCom) . (.Trend Micro Inc. - Manages all components of Trend Micro Inter.) - C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe O23 - Service: (TMBMServer) . (.Trend Micro Inc. - Manages the Trend Micro unauthorized change.) - C:\Program Files\Trend Micro\BM\TMBMSRV.exe O23 - Service: (TmPfw) . (.Trend Micro Inc. - Trend Micro Personal Firewall Service.) - C:\Program Files\Trend Micro\Internet Security\TmPfw.exe O23 - Service: (TmProxy) . (.Trend Micro Inc. - Trend Micro Proxy Service.) - C:\Program Files\Trend Micro\Internet Security\TmProxy.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2586724927-2274417868-1058133089-1001Core.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2586724927-2274417868-1058133089-1001UA.job [MD5.A6C20CBD1B10FEF25DAA4F1CF9FBC4FF] [APT] [ACMON] (.ATK.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [MD5.F30AA962D602D1A0377DFB99031E7B5C] [APT] [ASPG] (.ASUS.) -- C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe [MD5.F4DCD4912B185C3AAEB92A7040832AD1] [APT] [ASUS Live Update] (.Pas de propriétaire.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [MD5.6ACAB6D198B1B804719D662FE03BCA8D] [APT] [ASUS P4G] (.ATK.) -- C:\Program Files\P4G\BatteryLife.exe [MD5.868E3486E7EC522330344152A5535783] [APT] [ASUS SmartLogon Console Sensor] (.ASUS.) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [MD5.852EE4F61139A1B3F44EDAA0D5B3FC14] [APT] [ASUSControlDeck] (.Pas de propriétaire.) -- C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-2586724927-2274417868-1058133089-1001Core] (.Google Inc..) -- C:\Users\Maude\AppData\Local\Google\Update\GoogleUpdate.exe [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-2586724927-2274417868-1058133089-1001UA] (.Google Inc..) -- C:\Users\Maude\AppData\Local\Google\Update\GoogleUpdate.exe [MD5.BDD790326FABC31FB635130810245062] [APT] [WC3] (.Pas de propriétaire.) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [MD5.3283EA4F7E1F6B1FF85F385872F8B520] [APT] [{2A33CCD2-FA45-4544-AFD6-33869A5CD2A1}] (.Cisco Systems, Inc..) -- D:\Install\Network Magic Pro 5.1.8354.0-Res\nmsetup.exe [MD5.0769C0926F7C75F48C33BBE51015AAAC] [APT] [{39CC2AAE-9E96-489B-BC38-A04EB72834D5}] (.MCCI Corporation.) -- C:\Windows\SysWOW64\Samsung_USB_Drivers\5\SSSDUninstall.exe [MD5.AB875B402869CDF8204D1E9880BFAD43] [APT] [{47FC36A5-F425-4483-8E5F-0C713E29F5C2}] (.Skype Technologies S.A..) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [MD5.BB737A47A991FFA00CF3558D2CCD71B4] [APT] [{4E561CBD-A625-4D40-8DF3-68942FCFE570}] (.MCCI Corporation.) -- C:\Windows\SysWOW64\Samsung_USB_Drivers\2\SSM_Uninstall.exe [MD5.70A1F7FD11D4C06BD26DFD348387A1E4] [APT] [{BE27ED6F-6ABA-47F8-97B2-9E6D780B4419}] (.MCCI Corporation.) -- C:\Windows\SysWOW64\Samsung_USB_Drivers\1\SS_Uninstall.exe [MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys O41 - Driver: Trend Micro NDIS 6.0 Filter Driver (tmlwf) . (.Trend Micro Inc. - Trend Micro NDIS 6.0 Filter Driver (amd64-f.) - C:\Windows\System32\DRIVERS\tmlwf.sys O41 - Driver: (tmtdi) . (.Trend Micro Inc. - Trend Micro TDI Driver (amd64-fre).) - C:\Windows\System32\DRIVERS\tmtdi.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys ---\\ Logiciels installés (O42) O42 - Logiciel: Update for Microsoft Office 2007 (KB2508958) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438} O42 - Logiciel: ALTools Update - (.ESTsoft Corp..) [HKLM][64Bits] -- ALUpdate_is1 O42 - Logiciel: ALZip - (.ESTsoft Corp..) [HKLM][64Bits] -- ALZip_is1 O42 - Logiciel: ASUS AI Recovery - (.ASUS.) [HKLM][64Bits] -- {06585B02-F20D-4AB2-9A64-86EF2AE0F8F0} O42 - Logiciel: ASUS AP Bank - (.ASUSTEK.) [HKLM][64Bits] -- ASUS AP Bank_is1 O42 - Logiciel: ASUS CopyProtect - (.ASUS.) [HKLM][64Bits] -- {6B77A7F6-DD63-4F13-A6FF-83137A5AC354} O42 - Logiciel: ASUS Data Security Manager - (.ASUS.) [HKLM][64Bits] -- {FA2092C5-7979-412D-A962-6485274AE1EE} O42 - Logiciel: ASUS FancyStart - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {2B81872B-A054-48DA-BE3B-FA5C164C303A} O42 - Logiciel: ASUS LifeFrame3 - (.ASUS.) [HKLM][64Bits] -- {1DBD1F12-ED93-49C0-A7CC-56CBDE488158} O42 - Logiciel: ASUS Live Update - (.ASUS.) [HKLM][64Bits] -- {E657B243-9AD4-4ECC-BE81-4CCF8D667FD0} O42 - Logiciel: ASUS MultiFrame - (.ASUS.) [HKLM][64Bits] -- {9D48531D-2135-49FC-BC29-ACCDA5396A76} O42 - Logiciel: ASUS Power4Gear Hybrid - (.ASUS.) [HKLM] -- {91EFE3A1-585E-4F66-B5F6-F118F56C4C47} O42 - Logiciel: ASUS SmartLogon - (.ASUS.) [HKLM][64Bits] -- {64452561-169F-4A36-A2FF-B5E118EC65F5} O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM][64Bits] -- {0969AF05-4FF6-4C00-9406-43599238DE0D} O42 - Logiciel: ASUS Virtual Camera - (.asus.) [HKLM][64Bits] -- {EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1} O42 - Logiciel: ASUS WebStorage - (.eCareme Technologies, Inc..) [HKLM] -- ASUS WebStorage O42 - Logiciel: ASUS_Screensaver - (.Pas de propriétaire.) [HKLM][64Bits] -- ASUS_Screensaver O42 - Logiciel: ATK Generic Function Service - (.ATK.) [HKLM][64Bits] -- {D3D54F3E-C5C3-443D-978F-87A72E5616E8} O42 - Logiciel: ATK Hotkey - (.ASUS.) [HKLM][64Bits] -- {7C05592D-424B-46CB-B505-E0013E8E75C9} O42 - Logiciel: ATK Media - (.ASUS.) [HKLM][64Bits] -- {D1E5870E-E3E5-4475-98A6-ADD614524ADF} O42 - Logiciel: ATKOSD2 - (.ASUS.) [HKLM][64Bits] -- {3B05F2FB-745B-4012-ADF2-439F36B2E70B} O42 - Logiciel: Acapela Synthèse de la Parole pour le WordQ 2 Fr (Noyau) - (.Bloorview Kids Rehab.) [HKLM][64Bits] -- {F8653A81-1A97-4A2A-8ECE-D2B895B4D796} O42 - Logiciel: Acapela Synthèse de la Parole pour le WordQ 2 Fr (français canadien) - (.Bloorview Kids Rehab.) [HKLM][64Bits] -- {9C3576AC-61CA-4A61-8D39-9502AF46F8B6} O42 - Logiciel: Acapela Text to Speech for WordQ (Core) - (.Bloorview Kids Rehab.) [HKLM][64Bits] -- {A9DC7B38-D63A-4F93-89DA-4F60871ED7B2} O42 - Logiciel: Acapela Text to Speech for WordQ (North America) - (.Bloorview Kids Rehab.) [HKLM][64Bits] -- {BB38BAC1-06E8-43E6-9E0F-4F9CFC388206} O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40} O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FDB3B167-F4FA-461D-976F-286304A57B2A} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Reader 9.4.4 MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001} O42 - Logiciel: Alcor Micro USB Card Reader - (.Alcor Micro Corp..) [HKLM][64Bits] -- InstallShield_{F4BF5F6B-F695-4762-AEB2-D095A4C34D89} O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {2DC94AFD-A6E2-4AB4-9132-4A3F8E07B386} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {8F473675-D702-45F9-8EBC-342B40C17BF5} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} O42 - Logiciel: Assistant de connexion Windows Live ID - (.Microsoft Corporation.) [HKLM] -- {9B48B0AC-C813-4174-9042-476A887592C7} O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {E4F5E48E-7155-4CF9-88CD-7F377EC9AC54} O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1 O42 - Logiciel: Canon iP3300 - (.Pas de propriétaire.) [HKLM] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP3300 O42 - Logiciel: Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E} O42 - Logiciel: ControlDeck - (.ASUS.) [HKLM][64Bits] -- {5B65EF64-1DFA-414A-8C94-7BB726158E21} O42 - Logiciel: CopyTrans Suite Remove Only - (.WindSolutions.) [HKCU] -- CopyTrans Suite O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658} O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658} O42 - Logiciel: ETDWare PS/2-x64 7.0.5.9_WHQL - (.Pas de propriétaire.) [HKLM] -- Elantech O42 - Logiciel: Fast Boot - (.ASUS.) [HKLM] -- {13F4A7F3-EABC-4261-AF6B-1317777F0755} O42 - Logiciel: Freephoneline - (.freephoneline.ca.) [HKLM][64Bits] -- {FDAED10B-2C73-41FF-99E0-C18C786B73BA} O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {43563ACB-371B-4C58-8979-B192B390424C} O42 - Logiciel: Game Park Console - (.Oberon Media, Inc..) [HKLM][64Bits] -- {C9991C9B-0783-452E-8954-AB93E2AB3B80}_is1 O42 - Logiciel: Google Talk Plugin - (.Google.) [HKLM][64Bits] -- {A89DEBCA-F743-3412-97F6-B2E489194551} O42 - Logiciel: Guitar Pro 5.2 - (.Arobas Music.) [HKLM][64Bits] -- Guitar Pro 5_is1 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite_Wave3 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {3CCB732A-E472-4CF9-B1EE-F18365341FE0} O42 - Logiciel: Intel® Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421} O42 - Logiciel: Intel® Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} O42 - Logiciel: Java 6 Update 26 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216021FF} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {4AB8B41B-3AF1-46BE-99B0-0ACD3B300C0A} O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM][64Bits] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44} O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.1.1800 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0000-1000-0000000FF1CE}_PROPLUS_{E64BA721-2310-4B55-BE5A-2925F9706192} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-040C-1000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0015-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-2005-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0044-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Live Add-in 1.5 - (.Microsoft Corporation.) [HKLM][64Bits] -- {F40BBEC7-C2A4-4A00-9B24-7A055A2C5262} O42 - Logiciel: Microsoft Office Office 64-bit Components 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook Connector - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-0120-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- PROPLUS O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {299CF645-48C7-4FA1-8BCD-5CE200CF180D} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5} O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB} O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM][64Bits] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F} O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack O42 - Logiciel: Mozilla Firefox 6.0 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 6.0 (x86 en-US) O42 - Logiciel: Nero 7 Premium - (.Nero AG.) [HKLM][64Bits] -- {CF097717-F174-4144-954A-FBC4BF301033} O42 - Logiciel: Network Magic - (.Cisco Systems, Inc..) [HKLM][64Bits] -- Network MagicUninstall O42 - Logiciel: Opera 11.50 - (.Opera Software ASA.) [HKLM][64Bits] -- Opera 11.50.1074 O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {205C6BDD-7B73-42DE-8505-9A093F35A238} O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C} O42 - Logiciel: SAMSUNG Mobile Modem Driver Set - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile Modem O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem 1.0 O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem O42 - Logiciel: SRS Premium Sound Control Panel - (.SRS Labs, Inc..) [HKLM] -- {E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049} O42 - Logiciel: Samsung Mobile phone USB driver Drive Software - (.Pas de propriétaire.) [HKLM] -- Samsung Mobile phone USB driver Drive O42 - Logiciel: Secunia PSI (2.0.0.3003) - (.Pas de propriétaire.) [HKLM][64Bits] -- Secunia PSI O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5C497F0B-2061-4CC9-A61C-6B45B867354D} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD769337-C8AC-46DB-A7DC-643E50089263} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{536FB502-775F-4494-BACE-C02CC90B7A5B} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2509488) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{AD0DE453-0804-4495-9C91-33D0F9AA5463} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2478663 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2518870 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2539636 O42 - Logiciel: Security Update for Microsoft Office 2007 System (KB2541012) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD907315-705A-4475-A1A0-2A1245803E4D} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5A4E43D5-858F-49BD-BA72-8F30E1793060} O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2541007) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{A0173254-F442-4D04-9154-43FA157B83D0} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB2510061) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5D930261-AA5B-48D1-931F-425C9D767490} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1} O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062} O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3A4CDE54-2403-483D-8D9A-15E3264410DF} O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM][64Bits] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2478663 O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM][64Bits] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2518870 O42 - Logiciel: Skype™ 5.3 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {5335DADB-34BA-4AE8-A519-648D78498846} O42 - Logiciel: The Sims™ 2 Double Deluxe - (.Electronic Arts.) [HKLM][64Bits] -- {2D37F6AE-D201-4580-B91A-6BF9BB93ED2D} O42 - Logiciel: Trend Micro Internet Security - (.Trend Micro Inc..) [HKLM] -- {718D791F-F4E8-4aa7-98A6-15FDED17BDD0} O42 - Logiciel: Trend Micro Internet Security - (.Trend Micro Inc..) [HKLM] -- {9D2B0322-44AE-460E-9283-4D2D7A9205AE} O42 - Logiciel: USB 2.0 1.3M UVC WebCam - (.Pas de propriétaire.) [HKLM] -- USB 2.0 1.3M UVC WebCam O42 - Logiciel: Update for 2007 Microsoft Office System (KB2284654) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0000-1000-0000000FF1CE}_PROPLUS_{FB166E7C-8AA6-48C8-B726-1F25BEE7825A} O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for Microsoft Office 2007 System (KB2539530) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4} O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2509470) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1365864D-4C58-489D-9982-844D75691CCC} O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2586924) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3B65DCBC-61EC-4578-9DF2-40D3B3829CD8} O42 - Logiciel: VIA Platform Device Manager - (.VIA Technologies, Inc..) [HKLM][64Bits] -- InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169} O42 - Logiciel: WinFlash - (.ASUS.) [HKLM][64Bits] -- {8F21291E-0444-4B1D-B9F9-4370A73E346D} O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {B3B487E7-6171-4376-9074-B28082CEB504} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1} O42 - Logiciel: Windows Live Contrôle parental - (.Microsoft Corporation.) [HKLM] -- {CE50C1E2-10AF-400F-A53A-4A3E0AD486B2} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {63DC2DA0-2A6C-4C38-9249-B75395458657} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B} O42 - Logiciel: Windows Live Sync - (.Microsoft Corporation.) [HKLM][64Bits] -- {67D0313C-4F15-437D-9A2D-C1564088A26A} O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM][64Bits] -- {915809D6-1F93-45F2-9699-5F1DA64DC24B} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {2231CE39-B963-4B9D-823A-F412ECA637B1} O42 - Logiciel: Windows Movie Maker 2.6 - (.Microsoft Corporation.) [HKLM][64Bits] -- {B3DAF54F-DB25-4586-9EF1-96D24BB14088} O42 - Logiciel: Wireless Console 3 - (.ASUS.) [HKLM][64Bits] -- {20FDF948-C8ED-4543-A539-F7F4AEF5AFA2} O42 - Logiciel: WordQ 2 - (.Bloorview Kids Rehab.) [HKLM][64Bits] -- {0D2908C8-C538-4F06-ACDE-7ED4D3408CAF} O42 - Logiciel: WordQ 2 Fr - (.Bloorview Kids Rehab.) [HKLM][64Bits] -- {DC2314C9-5CF6-487F-9A90-A091AC2BE595} O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {B24A47E5-F196-461E-A7A4-AADB72CB19DD} O42 - Logiciel: mIRC - (.Pas de propriétaire.) [HKLM][64Bits] -- mIRC O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B} ---\\ HKCU & HKLM Software Keys [HKCU\Software\ASUS] [HKCU\Software\ATK0100] [HKCU\Software\Ad-Remover] [HKCU\Software\Adobe] [HKCU\Software\Ahead] [HKCU\Software\AppDataLow\Software\Google] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Audacity] [HKCU\Software\Canneverbe Limited] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CyberLink] [HKCU\Software\Druide informatique inc.] [HKCU\Software\ECAREME] [HKCU\Software\ESTsoft] [HKCU\Software\Elantech] [HKCU\Software\Google] [HKCU\Software\IM Providers] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MimarSinan] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\Opera Software] [HKCU\Software\Policies] [HKCU\Software\Pure Networks] [HKCU\Software\Samsung] [HKCU\Software\SecuROM] [HKCU\Software\Secunia] [HKCU\Software\Skype] [HKCU\Software\Softonic] [HKCU\Software\SweetIM] [HKCU\Software\Trolltech] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\WordQ] [HKCU\Software\Wow6432Node] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\mIRC] [HKLM\Software\ASPG] [HKLM\Software\ASUS] [HKLM\Software\ATI Technologies] [HKLM\Software\ATK0100] [HKLM\Software\ATK] [HKLM\Software\Adobe] [HKLM\Software\Ahead] [HKLM\Software\AppDataLow] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Arobas Music] [HKLM\Software\AsLdr] [HKLM\Software\Audible] [HKLM\Software\BKR] [HKLM\Software\C07ft5Y] [HKLM\Software\Canon] [HKLM\Software\Caphyon] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CoreSecurity] [HKLM\Software\CyberLink] [HKLM\Software\EA GAMES] [HKLM\Software\ECAREME] [HKLM\Software\ESTsoft] [HKLM\Software\Electronic Arts] [HKLM\Software\GEAR Software] [HKLM\Software\Google] [HKLM\Software\InstallShield] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\MCCI] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\MarkAny] [HKLM\Software\Maxis] [HKLM\Software\MimarSinan] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\Nero] [HKLM\Software\Netscape] [HKLM\Software\Novell] [HKLM\Software\ODBC] [HKLM\Software\Oberon Media] [HKLM\Software\OldTimer Tools] [HKLM\Software\Opera Software] [HKLM\Software\Policies] [HKLM\Software\Pure Networks] [HKLM\Software\QSound Labs, Inc.] [HKLM\Software\RegisteredApplications] [HKLM\Software\SONIX] [HKLM\Software\SRS Labs] [HKLM\Software\Samsung] [HKLM\Software\Secunia] [HKLM\Software\Skype] [HKLM\Software\Sonic] [HKLM\Software\SweetIM] [HKLM\Software\Symantec] [HKLM\Software\TrendMicro] [HKLM\Software\VIA Technologies, Inc] [HKLM\Software\WinRAR] [HKLM\Software\Windows] [HKLM\Software\WordQFrTTS] [HKLM\Software\WordQTTS] [HKLM\Software\Wow6432Node] [HKLM\Software\mozilla.org] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 04/05/2010 - 22:53:26 - [1518195] ----D- C:\Program Files\ASUS O43 - CFD: 04/05/2010 - 22:45:56 - [464496] ----D- C:\Program Files\ATKGFNEX O43 - CFD: 22/11/2010 - 23:09:04 - [195922] ----D- C:\Program Files\Bonjour O43 - CFD: 19/09/2010 - 10:31:38 - [7873427] --H-D- C:\Program Files\CanonBJ O43 - CFD: 25/07/2010 - 00:11:00 - [102618893] ----D- C:\Program Files\Common Files O43 - CFD: 30/05/2011 - 09:21:56 - [90256916] ----D- C:\Program Files\DVD Maker O43 - CFD: 04/05/2010 - 21:44:24 - [7127936] ----D- C:\Program Files\Elantech O43 - CFD: 31/10/2010 - 21:20:30 - [0] ----D- C:\Program Files\Google O43 - CFD: 12/08/2011 - 03:28:04 - [6204007] ----D- C:\Program Files\Internet Explorer O43 - CFD: 06/03/2011 - 17:33:28 - [1939563] ----D- C:\Program Files\iPod O43 - CFD: 06/03/2011 - 17:34:10 - [2345448] ----D- C:\Program Files\iTunes O43 - CFD: 14/07/2009 - 03:45:56 - [149237810] ----D- C:\Program Files\Microsoft Games O43 - CFD: 23/07/2010 - 10:40:28 - [1141526] ----D- C:\Program Files\Microsoft Office O43 - CFD: 14/07/2009 - 01:32:40 - [25757] ----D- C:\Program Files\MSBuild O43 - CFD: 04/05/2010 - 22:53:40 - [12522726] ----D- C:\Program Files\P4G O43 - CFD: 14/07/2009 - 01:32:40 - [36813993] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 04/05/2010 - 22:44:52 - [2086352] ----D- C:\Program Files\SRS Labs O43 - CFD: 20/01/2011 - 11:28:22 - [923843000] ----D- C:\Program Files\Trend Micro O43 - CFD: 14/07/2009 - 01:09:28 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 30/05/2011 - 09:21:54 - [4039680] ----D- C:\Program Files\Windows Defender O43 - CFD: 30/05/2011 - 09:21:56 - [9224824] ----D- C:\Program Files\Windows Journal O43 - CFD: 17/07/2010 - 10:00:02 - [194510] ----D- C:\Program Files\Windows Live O43 - CFD: 30/05/2011 - 09:21:56 - [6667776] ----D- C:\Program Files\Windows Mail O43 - CFD: 30/05/2011 - 09:21:56 - [7687085] ----D- C:\Program Files\Windows Media Player O43 - CFD: 14/07/2009 - 01:32:40 - [12627636] ----D- C:\Program Files\Windows NT O43 - CFD: 30/05/2011 - 09:21:56 - [5516056] ----D- C:\Program Files\Windows Photo Viewer O43 - CFD: 30/05/2011 - 09:21:56 - [244736] ----D- C:\Program Files\Windows Portable Devices O43 - CFD: 30/05/2011 - 09:21:56 - [11374579] ----D- C:\Program Files\Windows Sidebar O43 - CFD: 17/07/2010 - 17:06:00 - [4524560] ----D- C:\Program Files\WinRAR O43 - CFD: 25/07/2010 - 00:11:00 - [6246981] ----D- C:\Program Files\Common Files\Apple O43 - CFD: 04/05/2010 - 22:39:02 - [18392064] ----D- C:\Program Files\Common Files\Intel O43 - CFD: 09/10/2010 - 18:58:00 - [65174087] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 13/07/2009 - 23:20:10 - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 13/07/2009 - 23:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 17/07/2010 - 23:00:04 - [12194291] ----D- C:\Program Files\Common Files\System O43 - CFD: 24/09/2010 - 13:00:08 - [19830527] ----D- C:\ProgramData\Adobe O43 - CFD: 26/02/2011 - 17:19:34 - [662] ----D- C:\ProgramData\Ahead O43 - CFD: 04/05/2010 - 22:41:48 - [495] ----D- C:\ProgramData\AmUStor O43 - CFD: 25/07/2010 - 00:11:22 - [102090036] ----D- C:\ProgramData\Apple O43 - CFD: 25/07/2010 - 00:12:56 - [66634881] ----D- C:\ProgramData\Apple Computer O43 - CFD: 14/07/2009 - 01:08:58 - [0] -SH-D- C:\ProgramData\Application Data O43 - CFD: 18/07/2010 - 15:44:58 - [43398] ----D- C:\ProgramData\ASUS O43 - CFD: 17/07/2010 - 18:02:14 - [1015808] ----D- C:\ProgramData\Avira O43 - CFD: 02/09/2010 - 10:02:48 - [248] ----D- C:\ProgramData\BKR O43 - CFD: 26/02/2011 - 17:05:06 - [0] ----D- C:\ProgramData\Canneverbe Limited O43 - CFD: 19/09/2010 - 10:32:06 - [16979604] --H-D- C:\ProgramData\CanonBJ O43 - CFD: 04/05/2010 - 22:03:26 - [34445] ----D- C:\ProgramData\CyberLink O43 - CFD: 14/07/2009 - 01:08:58 - [0] -SH-D- C:\ProgramData\Desktop O43 - CFD: 14/07/2009 - 01:08:58 - [0] -SH-D- C:\ProgramData\Documents O43 - CFD: 09/10/2010 - 17:50:12 - [0] ----D- C:\ProgramData\Estsoft O43 - CFD: 14/07/2009 - 01:08:58 - [0] -SH-D- C:\ProgramData\Favorites O43 - CFD: 19/09/2010 - 12:24:52 - [16763338] ----D- C:\ProgramData\Malwarebytes O43 - CFD: 20/01/2011 - 11:24:10 - [814135691] -S--D- C:\ProgramData\Microsoft O43 - CFD: 12/08/2011 - 03:11:58 - [254102] ----D- C:\ProgramData\Microsoft Help O43 - CFD: 26/02/2011 - 19:23:18 - [4943927] ----D- C:\ProgramData\Nero O43 - CFD: 20/05/2011 - 09:19:02 - [155] ----D- C:\ProgramData\Norton O43 - CFD: 19/05/2011 - 18:23:34 - [177720] ----D- C:\ProgramData\NortonInstaller O43 - CFD: 04/05/2010 - 22:28:26 - [17536868] ----D- C:\ProgramData\OberonGameConsole O43 - CFD: 09/04/2011 - 13:41:24 - [2045] ----D- C:\ProgramData\P4G O43 - CFD: 24/09/2010 - 12:59:06 - [1339] ----D- C:\ProgramData\Partner O43 - CFD: 17/07/2010 - 20:40:30 - [149180616] ----D- C:\ProgramData\Pure Networks O43 - CFD: 04/05/2011 - 20:19:36 - [48500047] ----D- C:\ProgramData\Skype O43 - CFD: 08/05/2011 - 00:05:24 - [8160427] ----D- C:\ProgramData\Skype Extras O43 - CFD: 14/07/2009 - 01:08:58 - [0] -SH-D- C:\ProgramData\Start Menu O43 - CFD: 17/07/2010 - 17:05:56 - [225] ----D- C:\ProgramData\Sun O43 - CFD: 19/05/2011 - 18:23:36 - [155] ----D- C:\ProgramData\Symantec O43 - CFD: 04/05/2010 - 22:02:36 - [143502] ----D- C:\ProgramData\Temp O43 - CFD: 14/07/2009 - 01:08:58 - [0] -SH-D- C:\ProgramData\Templates O43 - CFD: 20/01/2011 - 11:31:56 - [220925] ----D- C:\ProgramData\Trend Micro O43 - CFD: 25/07/2010 - 00:00:40 - [190563] ----D- C:\ProgramData\WindSolutions O43 - CFD: 31/08/2010 - 10:19:16 - [2616] ----D- C:\Users\Maude\AppData\Roaming\Acapela Group O43 - CFD: 29/05/2011 - 17:15:40 - [6391372] ----D- C:\Users\Maude\AppData\Roaming\Adobe O43 - CFD: 26/02/2011 - 17:30:52 - [43163] ----D- C:\Users\Maude\AppData\Roaming\Ahead O43 - CFD: 11/12/2010 - 13:31:30 - [2911386440] ----D- C:\Users\Maude\AppData\Roaming\Apple Computer O43 - CFD: 17/07/2010 - 16:55:36 - [40960] ----D- C:\Users\Maude\AppData\Roaming\Asus WebStorage O43 - CFD: 16/11/2010 - 18:36:28 - [1281] ----D- C:\Users\Maude\AppData\Roaming\Audacity O43 - CFD: 17/07/2010 - 17:07:20 - [1395] ----D- C:\Users\Maude\AppData\Roaming\Canneverbe Limited O43 - CFD: 07/04/2011 - 15:54:50 - [2439] ----D- C:\Users\Maude\AppData\Roaming\CyberLink O43 - CFD: 15/10/2010 - 22:11:38 - [2134] ----D- C:\Users\Maude\AppData\Roaming\Druide O43 - CFD: 09/10/2010 - 17:50:12 - [10710518] ----D- C:\Users\Maude\AppData\Roaming\ESTsoft O43 - CFD: 31/10/2010 - 10:35:38 - [0] ----D- C:\Users\Maude\AppData\Roaming\Google O43 - CFD: 17/07/2010 - 10:03:00 - [0] ----D- C:\Users\Maude\AppData\Roaming\Identities O43 - CFD: 17/07/2010 - 18:04:10 - [100312] ----D- C:\Users\Maude\AppData\Roaming\Macromedia O43 - CFD: 19/09/2010 - 12:25:14 - [1079] ----D- C:\Users\Maude\AppData\Roaming\Malwarebytes O43 - CFD: 14/07/2009 - 03:44:40 - [0] ----D- C:\Users\Maude\AppData\Roaming\Media Center Programs O43 - CFD: 12/04/2011 - 17:02:26 - [4093353] -S--D- C:\Users\Maude\AppData\Roaming\Microsoft O43 - CFD: 26/07/2010 - 14:38:06 - [187514] ----D- C:\Users\Maude\AppData\Roaming\mIRC O43 - CFD: 22/08/2011 - 21:36:32 - [21891712] ----D- C:\Users\Maude\AppData\Roaming\Mozilla O43 - CFD: 17/07/2010 - 20:55:08 - [2297352] ----D- C:\Users\Maude\AppData\Roaming\Opera O43 - CFD: 03/08/2010 - 13:18:06 - [0] ----D- C:\Users\Maude\AppData\Roaming\Samsung O43 - CFD: 17/07/2011 - 22:11:16 - [7350912] ----D- C:\Users\Maude\AppData\Roaming\Skype O43 - CFD: 12/05/2011 - 16:15:22 - [52672] ----D- C:\Users\Maude\AppData\Roaming\skypePM O43 - CFD: 30/10/2010 - 17:13:04 - [3604480] ----D- C:\Users\Maude\AppData\Roaming\U3 O43 - CFD: 27/07/2010 - 11:44:02 - [494] ----D- C:\Users\Maude\AppData\Roaming\Vivox O43 - CFD: 10/10/2010 - 22:27:14 - [22] ----D- C:\Users\Maude\AppData\Roaming\WebcamMax O43 - CFD: 25/07/2010 - 00:00:42 - [32443841] ----D- C:\Users\Maude\AppData\Roaming\WindSolutions O43 - CFD: 18/07/2010 - 09:34:52 - [12] ----D- C:\Users\Maude\AppData\Roaming\WinRAR O43 - CFD: 29/05/2011 - 17:15:06 - [441723] ----D- C:\Users\Maude\Appdata\Local\Adobe O43 - CFD: 26/02/2011 - 17:30:00 - [5291868] ----D- C:\Users\Maude\Appdata\Local\Ahead O43 - CFD: 25/07/2010 - 00:11:30 - [26975536] ----D- C:\Users\Maude\Appdata\Local\Apple O43 - CFD: 27/04/2011 - 19:07:30 - [21380875] ----D- C:\Users\Maude\Appdata\Local\Apple Computer O43 - CFD: 17/07/2010 - 21:52:18 - [0] -SH-D- C:\Users\Maude\Appdata\Local\Application Data O43 - CFD: 18/07/2010 - 15:44:56 - [2099726] ----D- C:\Users\Maude\Appdata\Local\ASUS O43 - CFD: 19/07/2011 - 15:38:26 - [469839] ----D- C:\Users\Maude\Appdata\Local\Diagnostics O43 - CFD: 03/08/2010 - 13:18:06 - [78668288] ----D- C:\Users\Maude\Appdata\Local\Downloaded Installations O43 - CFD: 31/07/2011 - 01:00:26 - [0] ----D- C:\Users\Maude\Appdata\Local\ElevatedDiagnostics O43 - CFD: 22/08/2011 - 21:36:32 - [39339991] ----D- C:\Users\Maude\Appdata\Local\Google O43 - CFD: 17/07/2010 - 21:52:18 - [0] -SH-D- C:\Users\Maude\Appdata\Local\Historique O43 - CFD: 29/06/2011 - 19:51:00 - [831029832] ----D- C:\Users\Maude\Appdata\Local\Microsoft O43 - CFD: 26/12/2010 - 14:53:56 - [1624467] ----D- C:\Users\Maude\Appdata\Local\Microsoft Games O43 - CFD: 23/07/2010 - 10:39:40 - [0] ----D- C:\Users\Maude\Appdata\Local\Microsoft Help O43 - CFD: 02/06/2011 - 17:56:52 - [86158505] ----D- C:\Users\Maude\Appdata\Local\Mozilla O43 - CFD: 17/07/2010 - 20:55:10 - [43846273] ----D- C:\Users\Maude\Appdata\Local\Opera O43 - CFD: 17/07/2010 - 21:52:40 - [40960] ----D- C:\Users\Maude\Appdata\Local\Power2Go O43 - CFD: 29/05/2011 - 17:10:56 - [0] ----D- C:\Users\Maude\Appdata\Local\Secunia PSI O43 - CFD: 17/07/2010 - 17:04:04 - [285696] ----D- C:\Users\Maude\Appdata\Local\Seven Zip O43 - CFD: 17/07/2010 - 10:04:56 - [7353] ----D- C:\Users\Maude\Appdata\Local\SRS Labs O43 - CFD: 30/08/2011 - 08:38:08 - [17920276] ----D- C:\Users\Maude\Appdata\Local\Temp O43 - CFD: 17/07/2010 - 21:52:18 - [0] -SH-D- C:\Users\Maude\Appdata\Local\Temporary Internet Files O43 - CFD: 30/10/2010 - 21:10:40 - [27331127] ----D- C:\Users\Maude\Appdata\Local\VirtualStore O43 - CFD: 18/05/2011 - 19:02:06 - [0] ----D- C:\Users\Maude\Appdata\Local\WMTools Downloaded Files O43 - CFD: 29/05/2011 - 12:16:48 - [94871222] ----D- C:\Program Files (x86)\Ad-Remover O43 - CFD: 29/05/2011 - 17:15:22 - [688423931] ----D- C:\Program Files (x86)\Adobe O43 - CFD: 04/05/2010 - 22:41:48 - [3036551] ----D- C:\Program Files (x86)\AmIcoSingLun O43 - CFD: 26/02/2011 - 21:13:24 - [390686] ----D- C:\Program Files (x86)\Anyplace Control 4 O43 - CFD: 31/07/2011 - 16:52:52 - [2428606] ----D- C:\Program Files (x86)\Apple Software Update O43 - CFD: 04/05/2010 - 22:54:48 - [142315620] ----D- C:\Program Files (x86)\ASUS O43 - CFD: 16/11/2010 - 18:34:52 - [12477952] ----D- C:\Program Files (x86)\Audacity 1.3 Beta (Unicode) O43 - CFD: 22/11/2010 - 23:09:04 - [617146] ----D- C:\Program Files (x86)\Bonjour O43 - CFD: 17/07/2010 - 17:07:16 - [17120951] ----D- C:\Program Files (x86)\CDBurnerXP O43 - CFD: 01/08/2011 - 10:00:38 - [933404191] ----D- C:\Program Files (x86)\Common Files O43 - CFD: 04/05/2010 - 22:03:20 - [266949787] ----D- C:\Program Files (x86)\CyberLink O43 - CFD: 31/10/2010 - 10:42:32 - [4650937234] ----D- C:\Program Files (x86)\EA GAMES O43 - CFD: 24/07/2010 - 09:30:00 - [431608] ----D- C:\Program Files (x86)\ESTsoft O43 - CFD: 21/08/2011 - 21:16:54 - [35372932] ----D- C:\Program Files (x86)\Freephoneline O43 - CFD: 29/05/2011 - 13:19:26 - [0] ----D- C:\Program Files (x86)\Google O43 - CFD: 30/10/2010 - 20:52:14 - [44252717] --H-D- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 04/05/2010 - 22:39:04 - [5703866] ----D- C:\Program Files (x86)\Intel O43 - CFD: 12/08/2011 - 03:28:06 - [6380468] ----D- C:\Program Files (x86)\Internet Explorer O43 - CFD: 06/03/2011 - 17:34:10 - [126542132] ----D- C:\Program Files (x86)\iTunes O43 - CFD: 31/07/2011 - 22:31:46 - [91719678] ----D- C:\Program Files (x86)\Java O43 - CFD: 03/08/2010 - 13:07:26 - [221184] ----D- C:\Program Files (x86)\MarkAny O43 - CFD: 31/10/2010 - 10:39:26 - [718818296] ----D- C:\Program Files (x86)\Maxis O43 - CFD: 09/10/2010 - 18:57:38 - [1358779] ----D- C:\Program Files (x86)\Microsoft O43 - CFD: 20/01/2011 - 11:24:18 - [0] ----D- C:\Program Files (x86)\Microsoft Antimalware O43 - CFD: 29/06/2011 - 20:00:46 - [578085934] ----D- C:\Program Files (x86)\Microsoft Office O43 - CFD: 17/07/2010 - 10:00:24 - [1562204] ----D- C:\Program Files (x86)\Microsoft Office Outlook Connector O43 - CFD: 10/10/2010 - 22:46:36 - [13489691] ----D- C:\Program Files (x86)\Microsoft Research Asia O43 - CFD: 15/06/2011 - 22:15:12 - [38411899] ----D- C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 17/07/2010 - 21:56:32 - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 17/07/2010 - 09:59:18 - [2188837] ----D- C:\Program Files (x86)\Microsoft Sync Framework O43 - CFD: 24/07/2010 - 09:12:02 - [14904] ----D- C:\Program Files (x86)\Microsoft Visual Studio O43 - CFD: 26/07/2010 - 11:37:18 - [3726168] ----D- C:\Program Files (x86)\Microsoft Works O43 - CFD: 03/11/2010 - 19:38:48 - [8167779] ----D- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 04/11/2010 - 18:07:42 - [9302986] ----D- C:\Program Files (x86)\Movie Maker 2.6 O43 - CFD: 21/08/2011 - 22:59:56 - [34728104] ----D- C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 14/07/2009 - 01:32:40 - [25757] ----D- C:\Program Files (x86)\MSBuild O43 - CFD: 04/05/2010 - 22:35:14 - [154033] ----D- C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 26/02/2011 - 19:23:18 - [305036311] ----D- C:\Program Files (x86)\Nero O43 - CFD: 28/06/2011 - 15:36:04 - [35168192] ----D- C:\Program Files (x86)\Opera O43 - CFD: 20/01/2011 - 13:26:52 - [76322555] ----D- C:\Program Files (x86)\QuickTime O43 - CFD: 14/07/2009 - 01:32:40 - [39159041] ----D- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 03/08/2010 - 12:47:58 - [0] ----D- C:\Program Files (x86)\Samsung O43 - CFD: 29/05/2011 - 17:10:16 - [23905707] ----D- C:\Program Files (x86)\Secunia O43 - CFD: 04/05/2011 - 20:19:38 - [19051381] R---D- C:\Program Files (x86)\Skype O43 - CFD: 14/07/2009 - 00:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information O43 - CFD: 04/05/2010 - 22:44:42 - [59208419] ----D- C:\Program Files (x86)\VIA O43 - CFD: 17/07/2010 - 23:00:10 - [524800] ----D- C:\Program Files (x86)\Windows Defender O43 - CFD: 17/07/2010 - 10:00:02 - [141602399] ----D- C:\Program Files (x86)\Windows Live O43 - CFD: 17/07/2010 - 21:55:22 - [245112] ----D- C:\Program Files (x86)\Windows Live SkyDrive O43 - CFD: 30/05/2011 - 09:21:58 - [6181376] ----D- C:\Program Files (x86)\Windows Mail O43 - CFD: 30/05/2011 - 09:21:58 - [5024017] ----D- C:\Program Files (x86)\Windows Media Player O43 - CFD: 14/07/2009 - 01:32:40 - [12197556] ----D- C:\Program Files (x86)\Windows NT O43 - CFD: 30/05/2011 - 09:21:56 - [4417800] ----D- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 30/05/2011 - 09:21:58 - [189952] ----D- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 30/05/2011 - 09:21:58 - [5994626] ----D- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 24/07/2010 - 23:59:08 - [6934200] ----D- C:\Program Files (x86)\WindSolutions O43 - CFD: 31/08/2010 - 10:19:12 - [333214330] ----D- C:\Program Files (x86)\WordQ2Fr O43 - CFD: 30/08/2011 - 08:39:46 - [3898784] ----D- C:\Program Files (x86)\ZHPDiag O43 - CFD: 24/09/2010 - 09:37:42 - [16602309] ----D- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 14/08/2011 - 22:51:22 - [31529878] ----D- C:\Program Files (x86)\Common Files\Adobe AIR O43 - CFD: 26/02/2011 - 19:24:30 - [106291572] ----D- C:\Program Files (x86)\Common Files\Ahead O43 - CFD: 06/03/2011 - 17:33:28 - [85736984] ----D- C:\Program Files (x86)\Common Files\Apple O43 - CFD: 04/05/2010 - 22:48:40 - [53563] ----D- C:\Program Files (x86)\Common Files\ControlDeck O43 - CFD: 24/07/2010 - 09:12:02 - [92976] ----D- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 04/05/2010 - 22:53:28 - [3076085] ----D- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 04/05/2010 - 22:39:02 - [14237696] ----D- C:\Program Files (x86)\Common Files\Intel O43 - CFD: 01/08/2011 - 10:00:38 - [1258951] ----D- C:\Program Files (x86)\Common Files\Java O43 - CFD: 15/06/2011 - 22:16:40 - [236332217] ----D- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 04/05/2010 - 22:27:00 - [354896] ----D- C:\Program Files (x86)\Common Files\Oberon Media O43 - CFD: 17/07/2010 - 20:32:26 - [41120458] ----D- C:\Program Files (x86)\Common Files\Pure Networks Shared O43 - CFD: 13/07/2009 - 23:20:10 - [2702] ----D- C:\Program Files (x86)\Common Files\Services O43 - CFD: 04/05/2011 - 20:19:38 - [2254216] ----D- C:\Program Files (x86)\Common Files\Skype O43 - CFD: 13/07/2009 - 23:20:10 - [41103783] ----D- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 17/07/2010 - 23:00:10 - [100931541] ----D- C:\Program Files (x86)\Common Files\System O43 - CFD: 17/07/2010 - 21:53:40 - [252074436] ----D- C:\Program Files (x86)\Common Files\Windows Live ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.0F000000000000000000000054EF1800] - 30/08/2011 - 07:29:19 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1812131] O44 - LFC:[MD5.984457EB696E2D05A0E3BAEAA9788E61] - 30/08/2011 - 07:28:58 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.0D000000000000000000000054EF1800] - 28/08/2011 - 16:21:12 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [9920] O44 - LFC:[MD5.0C000000000000000000000054EF1800] - 28/08/2011 - 16:21:12 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [9920] O44 - LFC:[MD5.1445926E1D432EA4A9D521B57AB25A9B] - 28/08/2011 - 16:11:26 ---A- . (...) -- C:\Windows\SysNative\AutoRunFilter.ini [2246] O44 - LFC:[MD5.0D75BF7CAE78F8A07B261ACC7611E437] - 28/08/2011 - 16:10:59 ---A- . (...) -- C:\Windows\setupact.log [64408] O44 - LFC:[MD5.2C9ED7ABC9A7A689D05664C191BF071F] - 24/08/2011 - 21:12:44 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1549700] O44 - LFC:[MD5.EB4118B7A12C1482F8DD386FC7966071] - 24/08/2011 - 21:12:44 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106388] O44 - LFC:[MD5.4CAEDFB64FA3184F018D9DD1F2432B2B] - 24/08/2011 - 21:12:44 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130754] O44 - LFC:[MD5.90017149ED19114F5A97FF92A672694F] - 24/08/2011 - 21:12:44 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [616008] O44 - LFC:[MD5.187C31171937E011B08A264BB4E3328A] - 24/08/2011 - 21:12:44 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704480] O44 - LFC:[MD5.6BCAF46E2B7FA9ACE92B4D39F3037C5C] - 21/08/2011 - 22:02:49 ---A- . (...) -- C:\Windows\SysNative\acovcnt.exe [45056] O44 - LFC:[MD5.7423F5EB80DA8C7AD936AF192B7F8AE8] - 21/08/2011 - 19:35:04 ---A- . (...) -- C:\Windows\TMFilter.log [1188] ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ---\\ ShareTools MSconfig StartupReg (O53) O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe O53 - SMSR:HKLM\...\startupreg\ADSMTray [Key] . (.ASUSTek Computer Inc. - ADSMTray.) -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe O53 - SMSR:HKLM\...\startupreg\AppleSyncNotifier [Key] . (...) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\ASUS Screen Saver Protector [Key] . (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe O53 - SMSR:HKLM\...\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} [Key] . (.Nero AG - Nero Home.) -- C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe O53 - SMSR:HKLM\...\startupreg\CLMLServer [Key] . (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe O53 - SMSR:HKLM\...\startupreg\Setwallpaper [Key] . (...) -- c:\programdata\SetWallpaper.cmd (.not file.) O53 - SMSR:HKLM\...\startupreg\WordQ carat flag [Key] . (...) -- D:\Program Files (x86)\WordQ2\WordQcrs.exe ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 13/07/2009 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088] O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 13/07/2009 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536] O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 13/07/2009 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864] O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 13/07/2009 - 20:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440] O58 - SDL:[MD5.D4121AE6D0C0E7E13AA221AA57EF2D49] - 11/03/2011 - 01:41:12 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [107904] O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 13/07/2009 - 20:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128] O58 - SDL:[MD5.540DAF1CEA6094886D72126FD7C33048] - 11/03/2011 - 01:41:12 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [27008] O58 - SDL:[MD5.9C7F164B49CADC658D1B3C575782F346] - 21/08/2009 - 01:48:17 ---A- . (.Alcor Micro, Corp. - Alocr Micro USB Mass Storage Driver.) -- C:\Windows\system32\drivers\AmUStor.sys [44032] O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 13/07/2009 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632] O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 13/07/2009 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856] O58 - SDL:[MD5.88FBC8BEBFD38566235EAA5E4DBC4E05] - 04/05/2010 - 21:47:28 ---A- . (.ASUSTek Computer Inc - Data Security Manager Driver.) -- C:\Windows\system32\drivers\AsDsm.sys [35384] O58 - SDL:[MD5.0ACC06FCF46F64ED4F11E57EE461C1F4] - 04/10/2009 - 20:33:59 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys [1542656] O58 - SDL:[MD5.032D35C996F21D19A205A7C8F0B76F3C] - 12/05/2009 - 20:07:19 ---A- . (.ASUS - ATK0100 ACPI Utility.) -- C:\Windows\system32\drivers\ATK64AMD.sys [15928] O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 15:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848] O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 15:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432] O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 15:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704] O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 13/07/2009 - 20:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720] O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 15:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104] O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 15:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976] O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 15:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720] O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 15:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480] O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 13/07/2009 - 20:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488] O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 13/07/2009 - 20:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496] O58 - SDL:[MD5.3C38648375B7F3988691F53A7AAE10A9] - 15/10/2009 - 04:23:19 ---A- . (.ELAN Microelectronic Corp. - ETD Control Center.) -- C:\Windows\system32\drivers\ETD.sys [117760] O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 15:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016] O58 - SDL:[MD5.E403AACF8C7BB11375122D2464560311] - 18/05/2009 - 12:17:08 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [34152] O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 15:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232] O58 - SDL:[MD5.39D2ABCD392F3D8A6DCE7B60AE7B8EFC] - 20/11/2010 - 08:33:35 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [78720] O58 - SDL:[MD5.BBB3B6DF1ABB0FE35802EDE85CC1C011] - 06/08/2009 - 16:24:13 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys [408600] O58 - SDL:[MD5.AAAF44DB3BD0B9D1FB6969B23ECC8366] - 11/03/2011 - 01:41:26 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410496] O58 - SDL:[MD5.C6238C6ABD6AC99F5D152DA4E9439A3D] - 11/02/2011 - 18:16:38 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd64.sys [10628640] O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 13/07/2009 - 20:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112] O58 - SDL:[MD5.E63EF8C3271D014F14E2469CE75FECB4] - 20/07/2009 - 04:29:39 ---A- . (.Pas de propriétaire - Keyboard Filter Driver.) -- C:\Windows\system32\drivers\kbfiltr.sys [15416] O58 - SDL:[MD5.B8E670D7EF61615FA03104552854FAC9] - 23/08/2009 - 00:08:07 ---A- . (.Atheros Communications, Inc. - Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20.) -- C:\Windows\system32\drivers\L1E62x64.sys [56320] O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 13/07/2009 - 20:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752] O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 13/07/2009 - 20:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560] O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 13/07/2009 - 20:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600] O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 13/07/2009 - 20:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776] O58 - SDL:[MD5.085435AE1A124361304044029B5CC644] - 18/06/2009 - 14:18:10 ---A- . (.Windows ® Win 7 DDK provider - ASUS CopyProtect driver.) -- C:\Windows\system32\drivers\lullaby.sys [15928] O58 - SDL:[MD5.9C4FB231B6E02F84580DE2F00F3C5293] - 06/07/2011 - 18:52:42 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [25912] O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 13/07/2009 - 20:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392] O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 13/07/2009 - 20:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736] O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 13/07/2009 - 20:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264] O58 - SDL:[MD5.0A92CB65770442ED0DC44834632F66AD] - 11/03/2011 - 01:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [148352] O58 - SDL:[MD5.DAB0E87525C10052BF65F06152F37E4A] - 11/03/2011 - 01:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [166272] O58 - SDL:[MD5.FB83B6C62DFF5ABE36304351D2BED581] - 07/07/2009 - 13:48:44 ---A- . (.Cisco Systems, Inc. - Address Resolution Protocol Driver.) -- C:\Windows\system32\drivers\pnarp.sys [33328] O58 - SDL:[MD5.FB46E9A827A8799EBD7BFA9128C91F37] - 01/09/2010 - 03:30:58 ---A- . (.Secunia - Secunia PSI Driver.) -- C:\Windows\system32\drivers\psi_mf.sys [17976] O58 - SDL:[MD5.1B3434642CE3C26E6F24D3A76D749C2A] - 07/07/2009 - 13:48:44 ---A- . (.Cisco Systems, Inc. - NDIS Relay Driver.) -- C:\Windows\system32\drivers\purendis.sys [35376] O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 13/07/2009 - 20:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816] O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 13/07/2009 - 20:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 15:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040] O58 - SDL:[MD5.1BC348CF6BAA90EC8E533EF6E6A69933] - 10/06/2009 - 15:35:57 ---A- . (.Silicon Integrated Systems Corp. - NDIS 6.0 Miniport Driver for SiS191/SiS190 Ethernet Device.) -- C:\Windows\system32\drivers\SiSG664.sys [56832] O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 13/07/2009 - 20:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584] O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 13/07/2009 - 20:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464] O58 - SDL:[MD5.19D8F6FF8344C47872BA351D04A190DD] - 05/06/2009 - 05:15:55 ---A- . (.Pas de propriétaire - USBCAMD for Sonix UVC.) -- C:\Windows\system32\drivers\sncduvc.sys [42176] O58 - SDL:[MD5.1D8474722CDFFBB8FCA5FA12C50A05A2] - 05/06/2009 - 05:15:55 ---A- . (.Pas de propriétaire - UVC Camera Streaming Driver.) -- C:\Windows\system32\drivers\snp2uvc.sys [1806400] O58 - SDL:[MD5.E57B778208C783D8DEBAB320C16A1B82] - 12/11/2009 - 13:48:56 ---A- . (...) -- C:\Windows\system32\drivers\StarOpen.sys [5504] O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 13/07/2009 - 20:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656] O58 - SDL:[MD5.7CCD346AF4AD6CA05D48A57395B7192E] - 20/01/2011 - 10:25:20 ---A- . (.Trend Micro Inc. - Trend Micro NDIS 6.0 Filter Driver (amd64-fre).) -- C:\Windows\system32\drivers\tmlwf.sys [201232] O58 - SDL:[MD5.803EE35DF92815EA5D41CEE7410C8CC1] - 30/07/2010 - 12:30:20 ---A- . (.Trend Micro Inc. - Pre-Filter For AMD64.) -- C:\Windows\system32\drivers\tmpreflt.sys [42576] O58 - SDL:[MD5.21CC12B7F8B44E91D03EAD5B17AAF0B2] - 20/01/2011 - 10:25:20 ---A- . (.Trend Micro Inc. - Trend Micro TDI Driver (amd64-fre).) -- C:\Windows\system32\drivers\tmtdi.sys [107536] O58 - SDL:[MD5.7E64526E21731DE9F7DC2BE0B7251561] - 20/01/2011 - 10:25:20 ---A- . (.Trend Micro Inc. - Trend Micro WFP callout Driver (amd64-fre).) -- C:\Windows\system32\drivers\tmwfp.sys [339984] O58 - SDL:[MD5.9BD32132A3470CEFB3CBEA5FA492BD6F] - 30/07/2010 - 12:30:26 ---A- . (.Trend Micro Inc. - Post Filter For AMD64.) -- C:\Windows\system32\drivers\tmxpflt.sys [309840] O58 - SDL:[MD5.54D4B48D443E7228BF64CF7CDC3118AC] - 18/02/2011 - 16:36:58 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl64.sys [51712] O58 - SDL:[MD5.FE595D1A1B781190BB483444B62CC607] - 09/07/2009 - 03:11:31 ---A- . (.VIA Technologies, Inc. - VIA High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\viahduaa.sys [1222144] O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 13/07/2009 - 20:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488] O58 - SDL:[MD5.B01CE1F5A44126892240D179A6DBD43F] - 30/07/2010 - 12:24:14 ---A- . (.Trend Micro Inc. - VsapiNT for AMD64.) -- C:\Windows\system32\drivers\vsapint.sys [1988176] O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 13/07/2009 - 20:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872] O58 - SDL:[MD5.B18225739ED9CAA83BA2DF966E9F43E8] - 06/07/2011 - 18:52:42 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [41272] O58 - SDL:[MD5.306521935042FC0A6988D528643619B3] - 25/10/2007 - 16:26:10 ---A- . (...) -- C:\Windows\SysWOW64\drivers\StarOpen.sys [5632] O58 - SDL:[MD5.CE4B6956E4E12492715A53076E58761F] - 02/01/2009 - 08:36:18 ---A- . (.Teruten Inc - File System Mini Filter Drvier.) -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys [16392] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM][64Bits] -- Ad-Remover O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPDiag_is1 ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - C:\Windows\system32\Drivers\ASDSM.sys - AsDsm (AsDsm) .(...) - LEGACY_ASDSM O64 - Services: CurCS - C:\Program Files\ATKGFNEX\ASMMAP64.sys - ASMMAP64 (ASMMAP64) .(...) - LEGACY_ASMMAP64 O64 - Services: CurCS - (.not file.) - avgntflt (avgntflt) .(...) - LEGACY_AVGNTFLT O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\lullaby.sys - lullaby(lullaby) .(.Windows ® Win 7 DDK provider - ASUS CopyProtect driver.) - LEGACY_LULLABY O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\pnarp.sys - Pure Networks Device Discovery Driver(pnarp) .(.Cisco Systems, Inc. - Address Resolution Protocol Driver.) - LEGACY_PNARP O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\psi_mf.sys - PSI(PSI) .(.Secunia - Secunia PSI Driver.) - LEGACY_PSI O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\purendis.sys - Pure Networks Wireless Driver(purendis) .(.Cisco Systems, Inc. - NDIS Relay Driver.) - LEGACY_PURENDIS O64 - Services: CurCS - (.not file.) - rcdio (rcdio) .(...) - LEGACY_RCDIO O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\tmlwf.sys - Trend Micro NDIS 6.0 Filter Driver(tmlwf) .(.Trend Micro Inc. - Trend Micro NDIS 6.0 Filter Driver (amd64-f.) - LEGACY_TMLWF O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\tmpreflt.sys - tmpreflt(tmpreflt) .(.Trend Micro Inc. - Pre-Filter For AMD64.) - LEGACY_TMPREFLT O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\tmtdi.sys - Trend Micro TDI Driver(tmtdi) .(.Trend Micro Inc. - Trend Micro TDI Driver (amd64-fre).) - LEGACY_TMTDI O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\tmwfp.sys - Trend Micro WFP Callout Driver(tmwfp) .(.Trend Micro Inc. - Trend Micro WFP callout Driver (amd64-fre).) - LEGACY_TMWFP O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\tmxpflt.sys - tmxpflt(tmxpflt) .(.Trend Micro Inc. - Post Filter For AMD64.) - LEGACY_TMXPFLT O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\vsapint.sys - vsapint(vsapint) .(.Trend Micro Inc. - VsapiNT for AMD64.) - LEGACY_VSAPINT ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <Opera.HTML>[HKLM\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Opera.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O68 - StartMenuInternet: <Opera> <Opera>[HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Opera.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {EEE6C360-6118-11DC-9C72-001320C79847} - (SweetIM Search) - Server Error ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.B7A2E972A60E6EB44ECD90404838C4AF] [sPRF] (.Electronic Arts Inc. - Electronic Arts AutoRun.) -- C:\Users\Maude\AppData\Local\Temp\AutoRun.exe [703552] [MD5.2D83E72A28DC47CFE44ADFC791876EFB] [sPRF] (.Electronic Arts Inc. - AutoRun GUI.) -- C:\Users\Maude\AppData\Local\Temp\AutoRunGUI.dll [670784] [MD5.E05F0BDB792656D6B7A98A3223D8057D] [sPRF] (.Sony DADC Austria AG - SecuROM dynamic-data module.) -- C:\Users\Maude\AppData\Local\Temp\drm_dyndata_7360010.dll [204800] [MD5.BDEAD2E5E870CDD974E6C3E01218FC67] [sPRF] (.Google Inc. - Google Update Setup.) -- C:\Users\Maude\AppData\Local\Temp\GoogleUpdateSetup.exea70b60c [601752] [MD5.D6F587C5E94976D89873A2DB158AE45E] [sPRF] (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Users\Maude\AppData\Local\Temp\jre-6u26-windows-i586-iftw-rv.exe [910624] [MD5.D41D8CD98F00B204E9800998ECF8427E] [sPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\Maude\AppData\Local\Temp\MemCrash20110824085316.bin [0] ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "RemoteSvcAdmin-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.) O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.) O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.) O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "TCP Query User{2DFE6A8B-B9A7-4D91-92F8-3E4CCB2C3745}C:\program files (x86)\freephoneline\freephoneline.exe" | In - Private - P6 - TRUE | .(.freephoneline.ca.) -- C:\program files (x86)\freephoneline\freephoneline.exe O87 - FAEL: "UDP Query User{D7AE0781-D2A2-4A97-85A1-10DE552F498E}C:\program files (x86)\freephoneline\freephoneline.exe" | In - Private - P17 - TRUE | .(.freephoneline.ca.) -- C:\program files (x86)\freephoneline\freephoneline.exe O87 - FAEL: "TCP Query User{EBFAB85C-D1F5-4BD9-BC2E-27E00BC82FD4}C:\program files (x86)\windows live\messenger\msnmsgr.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\windows live\messenger\msnmsgr.exe O87 - FAEL: "UDP Query User{E16F02E8-F88E-47CF-A1AB-48015819D066}C:\program files (x86)\windows live\messenger\msnmsgr.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\windows live\messenger\msnmsgr.exe O87 - FAEL: "TCP Query User{825D9A2F-0448-4261-8EE9-4F1DC8692BF8}C:\program files (x86)\opera\opera.exe" | In - Private - P6 - TRUE | .(.Opera Software - Opera Internet Browser.) -- C:\program files (x86)\opera\opera.exe O87 - FAEL: "UDP Query User{9FE3ABBF-C2C0-4A1A-B4AC-8A4494117A90}C:\program files (x86)\opera\opera.exe" | In - Private - P17 - TRUE | .(.Opera Software - Opera Internet Browser.) -- C:\program files (x86)\opera\opera.exe O87 - FAEL: "TCP Query User{1FBE3E35-D4CA-487C-AFD2-A54EACD12EA8}C:\program files (x86)\freephoneline\freephoneline.exe" | In - Public - P6 - TRUE | .(.freephoneline.ca.) -- C:\program files (x86)\freephoneline\freephoneline.exe O87 - FAEL: "UDP Query User{D49F8483-ECC9-4250-A3AF-EDE2C95484F1}C:\program files (x86)\freephoneline\freephoneline.exe" | In - Public - P17 - TRUE | .(.freephoneline.ca.) -- C:\program files (x86)\freephoneline\freephoneline.exe O87 - FAEL: "TCP Query User{1AA344BD-7E22-4D2F-8480-2C986CF6A626}C:\program files (x86)\opera\opera.exe" | In - Public - P6 - TRUE | .(.Opera Software - Opera Internet Browser.) -- C:\program files (x86)\opera\opera.exe O87 - FAEL: "UDP Query User{A24D1649-F022-488C-8FB1-1835DD721F85}C:\program files (x86)\opera\opera.exe" | In - Public - P17 - TRUE | .(.Opera Software - Opera Internet Browser.) -- C:\program files (x86)\opera\opera.exe O87 - FAEL: "{29742E37-68C2-4B73-9C08-0406FE09D689}" | In - Private - P6 - TRUE | .(.Cisco Systems, Inc. - Pure Networks Platform Service.) -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe O87 - FAEL: "{5C306CCE-9872-446F-A78E-D7BCDD75E32C}" | In - Private - P17 - TRUE | .(.Cisco Systems, Inc. - Pure Networks Platform Service.) -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe ---\\ Scan Additionnel (O88) Database Version : 8618 - (29/05/2011) Clés trouvées (Keys found) : 8 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 0 Fichiers trouvés (Files found) : 0 [HKCR\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}] =>Adware.Hotbar [HKLM\Software\Classes\Wow6432Node\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}] =>Adware.Hotbar [HKLM\Software\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}] =>Adware.Hotbar [HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM [HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM [HKCU\Software\SweetIM] =>Toolbar.SweetIM [HKLM\Software\SweetIM] =>Toolbar.SweetIM [HKLM\Software\Wow6432Node\SweetIM] =>Toolbar.SweetIM ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Demand 31/03/2008 225280 | (ADSMService) . (.ASUSTek Computer Inc..) - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe SR - | Auto 31/03/2008 0 | (AFBAgent) . (.ASUSTeK Computer Inc..) - C:\Windows\system32\FBAgent.exe SR - | Auto 18/02/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 15/06/2009 84536 | (ASLDRService) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe SR - | Auto 08/08/2007 94208 | (ATKGFNEXSrv) . (...) - C:\Program Files\ATKGFNEX\GFNEXSrv.exe SR - | Auto 07/10/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe SS - | Demand 01/03/2011 934176 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SS - | Demand 27/06/2007 279848 | (NMIndexingService) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe SR - | Auto 04/03/2010 71096 | (NMSAccess) . (...) - C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe SR - | Auto 07/07/2009 647216 | (nmservice) . (.Cisco Systems, Inc..) - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe SR - | Auto 19/04/2011 993848 | (Secunia PSI Agent) . (.Secunia.) - C:\Program Files (x86)\Secunia\PSI\PSIA.exe SR - | Auto 19/04/2011 399416 | (Secunia Update Agent) . (.Secunia.) - C:\Program Files (x86)\Secunia\PSI\sua.exe SR - | Auto 08/11/2010 836504 | (SfCtlCom) . (.Trend Micro Inc..) - C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe SR - | Demand 20/01/2011 570632 | (TMBMServer) . (.Trend Micro Inc..) - C:\Program Files\Trend Micro\BM\TMBMSRV.exe SR - | Demand 20/01/2011 595960 | (TmPfw) . (.Trend Micro Inc..) - C:\Program Files\Trend Micro\Internet Security\TmPfw.exe SR - | Demand 20/01/2011 917768 | (TmProxy) . (.Trend Micro Inc..) - C:\Program Files\Trend Micro\Internet Security\TmProxy.exe SR - | Auto 13/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Maude at 30/08/2011 08:51:22 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin End of the scan (1144 lines in 12mn 20s)(0) ------------------------------------------------------------------------------------------------------------------------------------
  7. speck41
    Merci, RÉSOLU par une réinstallation de Windows Vista Speck41
  8. speck41
    Ok, merci. Je vais tout sauvegarder ce que ma femme veut garder et ensuite réinstaller ce qui était installé à l'origine lors de l'achat de ce portable. Il avait windows vista et j'ai tous les cd originaux de DELL. Merci beaucoup pour ton aide. Maintenant, il faut que j'attaque celui de ma fille qui ramme au max (comme vous dites en Europe) ici on dit qu'il est vache, qu'il n'est pas vite (au Québec). Elle a un portable identique au mien, on avait acheté 2 portables Asus en même temps l'an dernier, il y avait un bon prix. Et ils sont légaux ceux là. Au plaisir, Speck41
  9. speck41
    Bonjour Pear, par exotique est-ce que ça veut dire illégale? Cet ordinateur, ma femme l'a eue de ma fille et son chum car elle s'en ai achetée un autre il y a quelques semaines. Que puis-je faire pour remédier a la situation? Je sais que lorsqu'il était neuf il y avait vista dessus. Est-ce que je serais mieux de le réinstaller? Voici quand même le résultat, je peux te dire que l'antivirus ne fonctionne toujours pas et que live mail non plus. --------------------------------------------------------------------------------------------------------------------------- Rapport de ZHPFix 1.12.3357 par Nicolas Coolman, Update du 23/08/2011 Fichier d'export Registre : Run by Sylvie at 2011-08-25 17:28:02 Windows 7 Ultimate Edition, 32-bit Service Pack 1 (Build 7601) Web site : http://www.premiumorange.com/zeb-help-process/zhpfix.html ========== Clé(s) du Registre ========== SUPPRIME Key: SearchScopes :{36377DD7-B3EB-42f5-986F-680BAF59BA9D} SUPPRIME Key: SearchScopes :{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} ABSENT Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} SUPPRIME O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\57220448.sys . (...) -- C:\Windows\system32\Drivers\57220448.sys (.not file.) SUPPRIME O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\57220448.sys . (...) -- C:\Windows\system32\Drivers\57220448.sys (.not file.) ========== Valeur(s) du Registre ========== SUPPRIME TCP Query User{5F8AA765-85C0-401C-9572-297B177AF72C}C:/users/sylvie/appdata/local/temp/rarsfx1/fact.exe SUPPRIME UDP Query User{9026D9F5-0C49-4932-BCF0-A53E38F3DE48}C:/users/sylvie/appdata/local/temp/rarsfx1/fact.exe SUPPRIME TCP Query User{124040EE-920D-4CDB-80A8-16D3CD4AC482}C:/users/sylvie/desktop/w7lxe.exe SUPPRIME UDP Query User{D954F35B-D5B2-4157-9070-10245C308889}C:/users/sylvie/desktop/w7lxe.exe ========== Dossier(s) ========== SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{0053E6CD-261C-4E23-84B2-B5F3C3ADE094} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{02CEF661-9FE4-4860-9FEA-FE41538F9E16} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{02F35894-1EAE-4756-8DD8-5704813DB146} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{05EC9A07-D37E-43CB-B982-5389965ECC9C} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{0681B6AF-DE51-49C6-99FF-CD42F0557BE1} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{06FB50D2-020B-4F77-A41F-A72ABCC4FD81} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{07BB78EF-52B6-4EB3-91E5-61FBDB649C04} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{081591BB-ACB4-4311-9C40-2964656D7FA8} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{0828EC0D-7A86-45B5-AC82-D17C142A5A79} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{08EDF6C1-6318-433E-93E0-905095C7217A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{09038F0E-1B75-4036-A82E-D7AAFC846085} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{094E311F-9BAF-4317-8299-3BDD33BE81E5} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{0A013D1A-8C5E-42D4-AB46-71D42D380830} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{0A0B4977-354A-4F6C-895A-07FBE81EA1F7} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{0B3057B0-F15E-4EAD-BD13-D5FD0D9DF134} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{0B39DBC7-D3D3-4261-9DFD-33CC77A6AA63} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{0B8A63D0-EB42-4EC4-9614-72D05930EE43} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{0BA7ED49-96EB-4A3E-9ACE-A1B21750BE75} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{0D3E5FBA-AA1C-4C0C-AFBF-B3BB82B5780B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{0D71755E-94B6-4AE4-BF7C-166C35745DA5} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{0D837762-DC0F-430A-830D-C762941634DC} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{0DD1ADB2-E435-42A3-828B-ADE8984755BE} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{0F2A3C46-56CA-4ED6-9ED5-EBC2E8C1DD6B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{10334532-B58B-451E-8606-F5CFF498FC23} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{103ECFF8-FFBC-45B0-87D5-F074D34A42A0} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{105587FD-823F-4438-9ED5-4A5FE0ECFD79} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{10733C0C-1FB0-4841-85BC-DA4398BEE8B7} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{1189D265-3559-45B8-B8D6-E1000036E8D3} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{1449D8FF-CF13-45DD-8CA7-FE7A67C692D5} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{14DE49FC-EB31-4A80-9BAD-FBDECE282398} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{154D9F3D-2864-495F-8CAA-6EF4CB114E43} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{159CB092-4C95-4AAA-97B3-ABAF116D2EA2} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{15B79B15-4C19-496E-82C5-B58C880E180F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{1618FCE9-724F-4E2F-9B40-987C4824433D} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{161ED155-7C61-450E-9D43-F06DAC168DE3} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{180B10C0-C8F3-4F87-9280-5D56FF11010E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{1A1B2B1F-9D80-47D4-BD4B-141D28339B25} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{1AA10AEA-6155-47E6-8E7E-4529FDCE4D03} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{1ABD8E5C-B6EB-44A4-95AA-248BD01A4A67} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{1BF545A8-E8DB-485B-B7BB-7CD568F7D9C5} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{1CE271F8-763D-4663-A08B-2D0B3B296C4D} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{1D2B312C-0AA0-4506-97CF-4E08CEFD4A0C} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{1D68CDA5-E76C-4388-8F8C-FDB13BA9D7C2} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{1E024696-8666-4CBF-B587-F42267B1C5FB} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{1E1D4DCC-E8B1-44F6-9387-F4D87518BE61} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{1ECD8540-B696-4706-B111-4A5D9E53641A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{1F1AEAB8-A054-4943-AE36-079F43A44823} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{2125263F-BAB6-4F75-9956-509409F78844} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{219477E4-8A6F-44AD-AA46-DB09E4023A2D} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{22B9D20D-C964-4971-B55D-F73B7DC480CD} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{22E8DAEF-5945-4195-879E-854FAB04475F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{243087F6-9728-420A-81C3-2892F877EED2} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{243CA384-4DD6-452B-A067-FAED4C678FB9} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{25549EC9-2B0D-4304-A564-E152C04EED5A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{257D86C5-8489-4B4F-A8BA-F935D764E8D6} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{25EA7F38-9F25-4F4C-A9CF-5B20C22DDC43} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{26299895-F160-4A27-86BE-93D4C4C55CF9} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{2648DC9F-6C00-4721-A943-A0DEABEC8270} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{279AF36F-C0EB-4F1D-AADF-DD297F9494E3} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{29A0DE09-3D5D-4EAD-A95C-128002FDF6FF} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{2A899937-49F2-439C-B88C-AEC20F7D16EB} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{2ABF70BF-B896-49B4-9474-53A974427C4D} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{2ADF89E3-CE4D-4128-A838-DE4912907EAD} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{2AF676E7-3227-4C7B-815F-86502AEE4B79} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{2B5EADDE-2318-424E-8145-FD613FA63C33} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{2BC64A3D-69A4-465E-9C89-A48B07F87246} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{2FBA3EB6-4CFE-44B3-BC3D-D2A8F234EB3A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{2FDD38F8-1964-4712-90C0-0BE53C84CE48} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{31443256-16D5-445C-80BE-B9C02172C19B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{316B4C55-BF3D-4E2F-A93F-413766C226BE} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{316EC4D5-F697-4298-BB71-E13D990D0FD1} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{31D0B83E-08FA-41CC-9861-C21DA415845A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{32DFA5FD-2BA5-47AA-8AFE-98193E50E01F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{3388740C-A4C0-42F0-BA59-14CFEF449387} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{3463B89C-283B-4561-B092-D71C83625B22} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{34BC8240-B63A-4136-A79A-798B836EC2EB} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{34EE710B-D757-4BC4-B988-37AD6EF6B103} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{35407CF3-A9DF-4767-B630-87DED9DFD040} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{35462B60-5719-448A-82E3-52FEB9125506} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{359B0A7F-610F-49BA-B492-EA7C2FCD3DA1} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{35FD64FD-327E-4185-AF1A-2B5755DAAA97} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{36416449-861C-4C47-B8F3-30EED2EB3AB1} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{37A48415-FC26-474A-A006-995999B82015} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{3925E5E4-67C0-4799-A30E-39C3C87EFB3C} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{392A306F-098E-4555-B1BB-DF4C00AB6E84} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{39463A40-4CEF-4885-B3A5-2D69DA4177BE} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{39D51CCD-520E-43B3-926E-2975E91A258F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{39D661E8-C4B4-424F-9F3C-E2D255E82C99} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{3A776C1A-1028-4FA0-BEBD-75C0C312A192} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{3B0FE354-3C6F-4DA4-9044-9C548F0A4338} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{3BFC6BB9-EF7C-4ABB-8727-05455DC16A7C} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{3CD1C188-278D-4A1A-B45B-AB5DDFA667F0} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{3DA0E37F-EC4C-45B1-B796-C498C7D7BEE2} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{3E41C2EF-51CD-4048-B142-9BBF0B2972D5} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{3EB9305A-3405-411C-BFCB-F120419C570E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{3EC226F2-D22C-41D4-A0CF-79F58B9D8954} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{3EEF9056-5285-4F8A-A1D5-C95AAF03EB6C} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{3EF55DE5-1B54-4742-ACCA-A02BBD2B6CD9} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{3F97BD03-0ED1-48CE-8329-7289C825749E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{40729574-853F-45C4-A7B1-B6A7C4076B1B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{40864A0C-4B4B-449C-BCA5-C36BDC0C863B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{43C900A9-320E-4FA2-987B-40EF7D1491DB} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{4613B05D-7866-4AAF-9874-B2E250235B0B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{46A34947-DE8A-4F30-88AC-30F8F40CB4F8} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{47080AF2-746B-4C70-AB08-496517E0A761} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{47233DEA-90D0-490C-B52F-316917A8F13A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{485E0E32-6D5B-4E80-8286-241F4C25775E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{49CF8AEE-C9A7-4602-9A62-DDD6F0B56D0E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{4A2EC4AC-35BB-4531-9FB7-B7695D330B6B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{4A977BF0-2109-4672-A14D-778DA3E85416} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{4AB19623-ABE7-4CB3-AF76-1288684C8C4D} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{4AB23487-1756-4918-A136-A17700D7ABB7} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{4BD058BC-8559-4D37-9E2A-E903333F6BA6} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{4BE3570C-4678-4FEB-9DCA-965A388576C4} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{4CD77ED2-136B-421B-81C8-1D968A4C8FED} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{4CFF7560-2CA8-4882-9AB4-EFDC2ED19F45} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{4D4486D9-7329-40BB-A64B-4D3A9AF9F464} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{4D58055E-D331-40A0-BECE-3EB699721BCE} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{4DC2AC16-7D1C-4094-9590-90105C164AB1} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{4E573D26-0E6D-40F1-A2A0-C2A813D1C613} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{4F128FCF-80C0-471F-81B5-769227D73381} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{50A8AB20-8FEB-4C9C-873F-8606868A209F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{51237704-1215-4283-8B7D-540F7882B72F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{512B8E20-96C4-436F-97E3-1868E8D71D0C} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{51E7BD68-91EA-4456-88E1-3C37D87EEF9F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{5215EE56-DCF1-4C7D-8C9D-D036783436E3} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{539D05E7-9522-4359-9B6B-785B6EF063CD} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{53B27016-9695-4D23-91B9-F32DF9E11A78} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{5418C2E8-6BB9-45AA-8D63-E7036B92CAC1} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{54E10A3D-859A-4EDE-9F70-D03A45E136EA} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{55586115-78D6-434D-91B0-A3937438736E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{585B0120-37E3-44E5-980F-0E8F7700A612} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{586E9FEF-A460-4F14-870A-F6D2EDEF664B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{58BFCF99-DB5F-43A3-8ED2-F21F66E5D4CC} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{59170EA8-7C8D-4195-B450-025AD8D55CEB} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{59DDE61D-7B26-44D3-A481-6AAE39AC8486} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{5A16347D-1EB0-4716-8C62-7EC1D3E42290} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{5A5F5DA1-3368-422B-9CC1-2AF28AA7F728} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{5B2E4F2B-0D19-47A2-9F7E-AE71997A7504} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{5C55A4D4-DFF2-43D6-ACF4-CC3F14F5B08E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{5CAC299A-C67E-47FA-AEFD-CC961A4CD8BB} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{5D73F25F-4B74-4EAB-8D0F-8619ED91F966} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{5D741A28-26E6-496F-9C8C-784E0E2B7DE0} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{5F4A16B4-7736-4CD2-9650-01D1182CA789} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{609649EB-0AC3-45A3-8F83-2D90897A764D} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{60C97D71-3A82-41AA-A522-B031EDB6FBDB} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{61E748AD-0C83-417B-B2E3-44936877659F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{62B53880-FAF3-481D-AC6F-CA40B1AE77A7} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{632DA050-6B0B-42EA-BBD4-AFFEA41E5240} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{639DB3DD-A14E-4DCD-BB5E-144CAA04F63A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{64A7BFC6-646F-40CC-BACE-75E2975DFEA5} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{668B81D8-8BA6-4003-9FC2-F904629BDFA7} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{66EC1F58-CD8E-44BB-B9A7-9BC72EF20533} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{693FEA98-6782-4417-BE9A-D0685A667811} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{69A82FB3-9579-4DC3-8F2F-6232069F6D94} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{6A4AB114-418C-4F8C-9FCE-CE8A258104EF} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{6A9D9975-4DF9-458D-ABD4-E4B0D0D50C09} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{6AE145F7-828B-4A58-8B5B-EE9FF9BA14BF} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{6B0D7197-46CF-4850-919F-58A9C1A66E1A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{6B5162C2-6F87-4EC2-8295-7CA5174E09A6} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{6BD6617C-EF46-452D-8409-2947C50E66F2} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{6C02416E-640B-44FB-AF49-A95B34474140} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{6C8AD9DD-D5EB-4825-AC14-35974795BCD3} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{6DEEA409-BE77-4169-9C2C-6E6DD55E81E7} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{6E103CBD-B617-4DEC-AA15-E8338CB24D7C} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{6F3C3F3C-5D80-448B-8ACF-E71218A1B70A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{6F7A2E8A-26D1-4E95-8996-21197E81C5E1} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{6FB47CC5-66E2-442F-B788-1338CFDAD0E1} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{700E22BC-1281-419A-9A9B-BF90A34978BA} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{70FAD63E-26C3-419B-A135-BB23C165B949} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{7199DFAC-AB55-47F9-B56F-F407402E984A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{71FAC5AF-9E71-43C0-8D98-7F3DDD3831CF} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{726B026E-7873-48BE-BEE9-F99895F53279} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{72DC31A4-15D1-4A3A-B520-42F25AE3B6FC} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{7348B288-37FF-451E-A08E-C1307072B97D} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{73C65BFB-F8D6-4640-AF98-E9CAE6D1080E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{73EDCBFE-7414-48D9-9B37-A5B350263492} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{74549FC6-421A-454D-984C-D1F1BCB48344} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{751BFFD0-E771-4675-95E4-6C7B3D81D4A3} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{754D8A77-F383-4CA8-8F84-0BB1BCE7B957} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{761D82A3-1F2E-42C6-A98C-7F2D6893A508} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{765A5049-3540-41F9-93E4-418CD2532860} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{77C48E6C-27F7-4E18-B712-5A7C1FF1E55F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{785B7D23-3D11-48B8-AEC5-1828418640FC} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{7966D3E7-62B7-4306-9A7B-1F062494DB27} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{7A1A5FE9-6B46-4DFF-BC2D-B175C8C9DEE0} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{7A42BBA3-9B7D-447C-871A-C9CC6A719CF4} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{7C308651-FE75-4C8E-9DFD-7B987A0CF912} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{7CE60C9A-D64A-4641-B521-53340C88DD81} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{7DC713BF-5635-4DAF-842E-9459D2AB7A29} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{7E8FDA5A-30CF-4B15-8AA3-FD4161BF987A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{7FAAE695-E0C2-4D44-9134-4F5C44E7AEF0} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{8100F627-4A50-495E-8879-008FEF6F20BC} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{81CADDA7-9F9D-4FB4-AA7B-A6B8F5CA4815} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{822186EC-D0B1-4936-8869-38C6EF70B37F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{82D92BC9-E548-4C27-8229-E299762A3E0D} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{8358DA56-39D4-48A2-9B0E-F4CE3C6A310C} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{83FB2AE9-BAFF-4E07-AF5F-234AC98AE07E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{84870EDA-0116-4523-ABCE-E05F23FA7EE7} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{85360AB0-B4F0-440C-90A8-98E2258DD41D} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{854C96E9-49A4-43AC-890B-47293A41D3F2} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{85564E23-34B0-493C-A879-C4AC773EDFF0} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{857F99BD-8A73-4D0F-97E7-5C6F24CCB2D3} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{85CE8B61-90C0-4542-B99E-81E2D2A67E3C} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{86B4B805-C02C-4F07-8BFA-2209BFB88A7C} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{87F6E4B6-9F4F-4F2F-BFD1-4F1A2867A27A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{87FFB2F5-828A-4D65-993A-33C32F6030E7} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{88DD4836-4ED1-4BA4-BC9E-4EAB9B0DC156} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{8A3E00A0-CAFD-4E15-862F-2D438244065A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{8AD87809-1F35-4A14-AE95-68DF78916EAD} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{8B0CB539-DDB4-45A9-A0D6-2A21B270B336} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{8C3DE5B7-C6F5-41F5-B0F4-6A5CD16D7434} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{8CA01070-D79A-4E86-B175-1B3263D4A1C5} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{8DBE2DA4-E5B7-4F35-BB2B-7538031B9C93} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{8DC01496-4FAC-4C05-8B3D-181C0FB77B8B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{8E71345B-8577-4F79-AB09-4730C1755DF5} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{90911DEF-9588-46B5-854E-88979C0815A2} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{950D732B-8E35-429A-909B-4F7E724697CF} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{96D1D569-8806-440C-AFC4-906F39253128} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{96E0C9A5-32C2-4886-86C0-E7AC78732341} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{976D649D-14BD-4ACA-AC23-3E53710A0D43} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{9854D8E2-4285-4A34-AAEE-5A0B8AE55E2F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{986658E8-2729-45AB-8CAE-50F0F3CE794D} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{9953DB01-A5C4-49FF-B58F-AAFD65BD1E43} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{99D4E04F-C42F-4169-831F-2CC3116B9C70} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{99F94623-7CE4-4B7E-A45F-264B65D759B5} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{9A3D1D3E-447D-43E7-B56C-8F49E01561BE} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{9BD3FFDC-39E1-45ED-B17A-FF253481AD8F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{9C2377B9-DA56-43F4-A283-AD49BEE9CA9F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{9C3BD0AD-9375-4291-8761-75A11A4F2AD5} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{9C94A199-DB7B-422A-B70E-CD80970DB5B4} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{9D936C64-56DA-401F-BBE9-867508E424D7} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{9DB1B317-35EA-4EF6-90C5-CD63ED0B00CB} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{9E3E02C3-EB0B-4DAC-A396-76C102BA8016} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{9E3EE497-44F1-4314-9E04-8930F93775B5} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A03B6E21-F15E-479B-BBDA-F3F6D6F7D798} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A1017018-822D-40C4-B1CF-5E335A18D553} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A13FBEAB-646B-4F7E-8CC3-C2FBEFA3A20B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A1CC6068-2CB1-41FD-A2F3-46DC27BFBDD9} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A2182211-A5F9-4051-8994-089511C34B49} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A22A3618-854D-4C0C-A50A-B695E2BDDA01} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A236B9A1-98E6-414D-91F1-A2E20FCF4F22} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A2F1E81C-3DBD-489A-9E13-C550769171C4} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A36B14AF-8917-41AF-9C69-E1E25AE2D0F9} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A4206A08-EB52-4FC4-87BD-18191C837380} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A4510CCA-3C7A-4313-AE91-68273875D9C5} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A5FA5888-73C8-47AF-BE25-A3BFFAE5BBD1} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A6B4FF77-F2A1-4E44-94AE-B99FF9EB4196} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A76A336B-91EF-4CEB-A4AB-B8CD2926019E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A7A7ADFC-2766-4175-85A5-7428DC7B7750} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A7DE29B7-BD74-4498-95F6-284C33041BDE} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A8A8BAE8-A27E-4EB0-B97A-EFC765DA7028} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A96D16B0-1308-4F06-910D-2935127E42E3} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{A971FF5B-F76E-4106-8FC4-974A78C12EAA} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{ABBA9C17-08A7-48E4-AA35-96BBC96086C8} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{AC6CB39E-1B32-44C0-A031-2A3436FF0016} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{AE94DBC1-6184-4F13-9917-6536D3E0A6C7} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{B0479327-262A-4570-9C25-965368457A48} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{B0794C7E-EEF4-4E22-95DA-7D682AD912AC} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{B0F0935A-E2EF-44B7-8D8F-8069D0C4B484} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{B138060E-E233-4959-97A7-470FCFEE7E31} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{B1876EED-7EDA-43EB-B258-6A39067A423F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{B252CCEC-2077-4798-AFAB-51112A6C46E5} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{B2A42BBD-8E81-411B-BDED-FD8548637FA5} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{B31A303C-98DA-45C9-B254-942F7F1BFC8E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{B6556836-DF65-4837-B416-0E4CCC3B867D} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{B72F244F-869B-44DC-A5D7-A1AC8D175CB2} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{B80B017C-8368-40E2-8DCA-A1598E89B2AD} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{B87BAECF-13A3-431D-A3C6-DD30B793ED8A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{B9CE2A50-AEA0-47B0-8042-3F86DA8E805D} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{BA82E5A7-5828-48BB-A328-62D4F7FAE063} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{BBA26233-4FCB-4BBA-9567-EC7ACFD85ACA} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{BBB48E43-3D9F-4F48-9B02-2FCCBDD3B092} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{BCB5E267-ED6C-4BDF-BD5E-7FE5F6AA2167} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{BD765E2E-DC4C-4A2B-A401-3091FB0F84DF} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{BD8C9732-BCED-4AE2-8A64-3613B9B48068} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{BDCF65D3-924B-410B-A8B6-E3EF50A05102} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{BDF2826E-AABF-4C4A-BB24-9C794215654F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{BE3D0D8E-C93E-4084-A730-422488949F0A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{BF69CAB0-BF66-4AC8-A275-82D2ED4D55BA} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{BFA54BEA-51C2-4C86-84E9-5CDA73E7A45E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{C05DD9CA-4F69-4E56-8A8F-0EC049B46569} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{C0891BA8-FA70-44F3-BCE2-B0A240CDA772} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{C1F35A81-2133-4D54-BC66-22E67F079C0E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{C205653A-3A21-4D8A-B6E8-1C7999ED79C4} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{C3C19A5B-51B0-4F8A-862C-2FDF4E7D1D60} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{C3D43ACF-867D-4A7C-9563-68ED968E8743} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{C4631335-942F-4309-A53F-EC12B4902F7F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{C49BA7F9-72A5-4CF4-8AC9-41D26555CA46} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{C5B009CC-DC17-4603-A025-EDB11E0FF344} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{C5B7A96A-551F-4A2D-9817-50E33E5115EC} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{C765BC44-A565-4743-BD8D-299F0B6F02D9} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{C79ADAC4-E604-49A1-A35C-998473F74DC7} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{C8830316-3C69-4F1A-B4DF-D688DD8A7C50} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{C9534850-2C4E-45D2-917B-7DACDD0363B8} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{C9ADD7B7-AE7D-416B-93C4-89075E9FCC43} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{CA8A217C-7B6A-4F4F-B817-79BF516B2559} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{CAAD815D-B9E3-4ADF-92B9-18D1F45611A7} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{CAEA11A2-2E57-4D96-AC7E-D23DB894196A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{CB713D08-FD4D-4200-94FC-9B8D2F8E2B14} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{CD5E7B91-F8B8-41AE-8766-DDC7C8A69B87} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{CD890ABA-FB9F-4CAC-87B2-FC9A0D14B7C1} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{CE1A1206-C12F-4BBB-96B1-6423C166939A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{CE3D432D-6D47-4F99-8956-7713E6DA1E3A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D01907D8-1F71-44A6-AF9D-4025C2F6F50A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D097F60D-1CA7-4031-B7DE-7CAE15469768} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D0ADBCC2-F33A-4754-8286-62C017E12BAE} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D168BCAD-BBF9-4755-AD7E-944B3666B19D} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D1967EEE-758F-4D5F-A50C-59AE48A82233} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D1C6C071-5D6A-4ED0-99F7-81CDC36C468B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D25BDB68-ECC6-4193-858D-75864FD0DC22} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D2A3E9A4-4B95-4FFB-BCD7-46BC2BA61F2B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D46801CA-C677-40E2-9004-D02A74AB5A5A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D46F7F08-E893-40F2-B87E-B371E70752E2} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D4C01002-82A5-4236-91DA-2BE80808A081} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D5E45CB1-413D-4252-A398-3FFA270EFC26} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D656039B-9302-4D18-AF0A-4E10DEB6D10E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D6723082-E894-46D7-9012-3271B46AF0AD} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D6B1684D-EE99-4E5C-9ECA-267D96D46BC0} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D72579A1-D838-4769-B7B3-14EBE901A8BB} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D7758978-C351-4548-99B0-A7BECD259D55} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D7A1BCE6-DEEB-47F4-A0AE-96C54E72CB63} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D7AA4E53-A996-4A37-945F-EC5DADB8AC72} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D7B0195C-7F7A-4D8F-BD62-AD55BB9B778B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{D9E98482-8E19-46E1-957B-E3CC5280CB53} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{DBA8CBEC-B132-42DC-B560-2FB00B528D78} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{DC4CC63B-65F0-45DC-9918-189392585CCD} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{DC8E3C30-6A56-47CD-BBA2-3AE6CF735076} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{DD0DF2D0-2470-4257-B2E4-9B6C2E89AA60} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{DD77C188-895D-4F1D-BACF-69752CEA9165} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{DD9ACFB1-18F3-4900-8052-2C3F9EB84C3F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{DDB86615-04E7-4C3A-997E-BA9E73532C05} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{DE679D4C-DD75-40C7-8729-EA57CF609FAD} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{DEC93003-AC96-4C50-8CE0-A42CA021229F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{E09C2317-DC3E-4F79-AD49-FD33F54E1558} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{E2221DDD-6F2F-4C32-AC94-3DBADD8DF69D} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{E228C736-3187-4B04-A5AE-46903026DCD8} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{E32AB3EF-7D29-4D1A-A8D6-6AAB8847B146} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{E4066775-4FF4-44BD-8F1E-231B3AFE2CAD} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{E5E2BF68-55FC-4427-8882-12A31AD48C2E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{E813950E-6A44-42AB-951F-9B11B8706C93} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{E85D3A0E-2B3A-475E-AB1E-27AFE9D855B3} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{EA478281-9F4A-4FA2-B9D9-275B608AF625} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{EA9763B0-024F-4701-9B97-681A0327FFFD} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{EAE84683-5174-48E4-AFD5-E5F2E1F22166} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{EB377A3F-3924-4F00-8422-192EC5ED7A78} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{EB5B9277-3631-4C12-B28A-327B963F0795} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{ED75B6A1-6FC8-4E63-99A2-4C7C83123D49} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{EF6159C6-ADD7-4F0F-8DB0-87A65B61EDDF} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{EFC1D005-CC9C-4891-811D-50E0CEDAD5CA} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{F0A20217-81FF-4243-B209-0C1CD610E57E} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{F0AEDF10-D52B-4318-8B9A-9F24E7AC3B74} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{F0B6B02A-683B-44DB-B560-6E265805EE2B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{F0F0DE32-AA1C-498A-8AB7-985793793777} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{F16F01DF-A28F-4D2A-9027-8580F4216533} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{F2582E4A-FF82-42E9-90CA-FC502542B52B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{F2AF5398-0337-4E3A-B794-B1CF09620EBC} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{F3EDC4EE-270D-4BA1-8374-C4A58E645251} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{F42DF673-CEFB-4340-9E39-367DD0D21AB9} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{F50CC88D-975F-4C6C-A5E5-4EDD59562639} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{F84398FD-C129-4975-9BF3-715F38BBB26F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{F9065725-3765-4F0D-87F1-91A87CC188E2} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{F97F0921-CFF8-4096-A97B-0A0ECDFF28EB} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{F9EEAD64-CE50-430A-A014-49CDE1CF27DC} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{FBFDFAD5-314C-4822-A498-1CA5BA13835A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{FCB98D22-05EE-4988-8285-1D79E8E5E24B} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{FD50114D-0209-4E04-98DE-E34C1CED0085} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{FDE3DFBF-CD21-454C-A1FA-67E7127A7B2C} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{FEC4D31B-3A82-410A-A802-4D94B63B942A} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{FF5FC9A3-F1BD-472B-ABC5-DD91030B0B42} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{FF89D42D-2290-4577-82D6-B7FD25D39955} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{FF8CF07F-9B1D-406D-B502-B7F9286D95FC} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{FF9E3420-0017-4101-ABAC-265754B7123F} SUPPRIME Folder: C:\Users\Sylvie\AppData\Local\{FFDD00EC-D15A-4363-9709-001BC54A55C6} ========== Fichier(s) ========== ABSENT File: c:\windows\system32\drivers\57220448.sys ========== Récapitulatif ========== 5 : Clé(s) du Registre 4 : Valeur(s) du Registre 374 : Dossier(s) 1 : Fichier(s) End of the scan in 01mn 08s ========== Chemin de fichier rapport ========== C:\ZHP\ZHPFix[R1].txt - 2011-08-25 17:28:02 [34176] -------------------------------------------------------------------------------------------------------------------------- Merci, Speck41
  10. speck41
    Voila mon ami: Rapport de ZHPDiag v1.28.1342 par Nicolas Coolman, Update du 23/08/2011 Run by Sylvie at 2011-08-25 09:38:37 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v9.0.8112.16421 OPIE: Opera v11.50 (Defaut) ---\\ Windows Product Information Windows 7 Ultimate Edition, 32-bit Service Pack 1 (Build 7601) Windows Server License Manager Script : Absent (Not found) Windows ID Activation : Inconnue (Unknown) Windows Licence : Inconnue (Unknown) Software Protection Service (Protection logicielle) : KO Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ System Information ~ Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel ~ Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 2038 MB (29% free) System Restore: Activé (Enable) System drive C: has 171 GB (77%) free of 221 GB ---\\ Logged in mode ~ Computer Name: SYLVIE-PORTABLE ~ User Name: Sylvie ~ All Users Names: Sylvie, HomeGroupUser$, Administrateur, ~ Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables ~ System Unit : C:\ ~ %AppData% : C:\Users\Sylvie\AppData\Roaming\ ~ %Desktop% : C:\Users\Sylvie\Desktop\ ~ %Favorites% : C:\Users\Sylvie\Favorites\ ~ %LocalAppData% : C:\Users\Sylvie\AppData\Local\ ~ %StartMenu% : C:\Users\Sylvie\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\system32\ ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 171 Go of 221 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 3 Go of 3 Go) E:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK ~ Scan Security Center in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.2011-08-24 - 00:30:54.) -- C:\Windows\Explorer.exe [2616320] [MD5.51138BEEA3E2C21EC44D0932C71762A8] - (....) (.2009-07-13 - 20:14:31.) -- C:\Windows\system32\rundll32.exe [44544] [MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.2009-07-13 - 20:14:45.) -- C:\Windows\system32\Wininit.exe [96256] [MD5.2C7332C222D1FE1FC57D622699A8C001] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.2011-08-11 - 21:48:26.) -- C:\Windows\system32\wininet.dll [1126912] [MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.2011-03-13 - 07:17:54.) -- C:\Windows\system32\Winlogon.exe [286720] [MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.2009-07-13 - 20:26:15.) -- C:\Windows\system32\drivers\atapi.sys [21584] [MD5.81189C3D7763838E55C397759D49007A] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.2011-08-24 - 00:39:00.) -- C:\Windows\system32\drivers\ntfs.sys [1211264] [MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) (.2011-03-13 - 07:21:24.) -- C:\Windows\system32\sppcomapi.dll [193536] [MD5.129F80D7868E30DF3E3DE33A1D3132B4] - (....) (.2011-03-13 - 07:08:50.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480] ~ Scan Generic Processes in 00mn 11s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes Favoris (My Favorites) : 2/37 ~ Mes Documents (My Documents) : 5/35 ~ Mon Bureau (My Desktop) : 170/6323 ~ Menu demarrer (Programs) : 7/23 ~ Scan Hidden Files in 01mn 57s ---\\ Processus lancés [MD5.68239842340DDFF8993DFD9127553EDA] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [141848] [PID.1852] [MD5.004763BDF8E48244DBB9FDFDE3065EBC] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [173592] [PID.1864] [MD5.CD1102E5D340216138C7F56FA8D26998] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [150552] [PID.1916] [MD5.D6633A7A634E6803CB13543808B4C935] - (.Cisco Systems, Inc. - Pure Networks Platform Assistant.) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe [642856] [PID.1948] [MD5.DEE36DE602B5870CB84B25848C57BB95] - (.Cisco Systems, Inc. - Network Magic Application.) -- C:\Program Files\Pure Networks\Network Magic\nmapp.exe [467240] [PID.1960] [MD5.FF5221C4CAEC1C517AB5D36457CB9DB4] - (.IDT, Inc. - Sigmatel Audio system tray application.) -- C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe [405504] [PID.1984] [MD5.9D5E8B45BD348DF0882C69EED0E83111] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [281768] [PID.1992] [MD5.D9C51528488EA0D98D3C4D02ABD16759] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\system32\igfxsrvc.exe [252952] [PID.2000] [MD5.F7E9D8DE72862C885465D7BB17AEE908] - (.Pelmorex Media Inc. - Pas de description.) -- C:\Users\Sylvie\AppData\Local\MétéoMédia\MétéoÉclair\WeatherEye.exe [309104] [PID.964] [MD5.75B06ACD9D8DC0FE3603294E1899F496] - (.Microsoft Corporation - Windows Update.) -- C:\Windows\system32\wuauclt.exe [47104] [PID.3612] [MD5.79814D20A899EAB8A8500C68A7898439] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [669696] [PID.1896] ~ Scan Processes Running in 00mn 11s ---\\ Opera, Plugins,Démarrage,Recherche (P1,B0,B1) B0 - SPO: operaprefs.ini [sylvie] Home URL=http://www.google.ca/ ~ Scan Opera Browser in 00mn 00s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.0.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll ~ Scan Firefox Browser in 00mn 01s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search Microsoft.com R0 - HKUS\S-1-5-21-3360175677-934904747-3070036870-1001\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKUS\S-1-5-21-3360175677-934904747-3070036870-1001\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = google R1 - HKUS\S-1-5-21-3360175677-934904747-3070036870-1001\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = Google R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 ~ Scan IE Browser in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Scan Proxy management in 00mn 00s ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe ~ Scan Keys in 00mn 00s ---\\ Redirection du fichier Hosts (O1) ~ Scan Hosts File in 00mn 00s ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files\Windows Live\Companion\companioncore.dll ~ Scan BHO in 00mn 01s ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [igfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [nmctxth] . (.Cisco Systems, Inc. - Pure Networks Platform Assistant.) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe O4 - HKLM\..\Run: [nmapp] . (.Cisco Systems, Inc. - Network Magic Application.) -- C:\Program Files\Pure Networks\Network Magic\nmapp.exe O4 - HKLM\..\Run: [sigmatelSysTrayApp] . (.IDT, Inc. - Sigmatel Audio system tray application.) -- C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O4 - HKCU\..\Run: [WeatherEye] . (.Pelmorex Media Inc. - Pas de description.) -- C:\Users\Sylvie\AppData\Local\MétéoMédia\MétéoÉclair\WeatherEye.exe O4 - HKCU\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-21-3360175677-934904747-3070036870-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O4 - HKUS\S-1-5-21-3360175677-934904747-3070036870-1001\..\Run: [WeatherEye] . (.Pelmorex Media Inc. - Pas de description.) -- C:\Users\Sylvie\AppData\Local\MétéoMédia\MétéoÉclair\WeatherEye.exe O4 - HKUS\S-1-5-21-3360175677-934904747-3070036870-1001\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ~ Scan Application in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\Sylvie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Sylvie\Desktop\Multipass - Raccourci.lnk . (.GBSoft.) -- C:\Program Files\Multipass\MultiPass-No-Install\Multipass\Multipass.exe O4 - Global Startup: C:\Users\Sylvie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Scan Global Startup in 00mn 01s ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~3\Office12\EXCEL.exe ~ Scan IE Menu Contextuel in 00mn 01s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} . (.Microsoft Corporation - Windows Live Messenger Companion core resources.) -- C:\Program Files\Windows Live\Companion\companion O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO ~ Scan IE Extra Buttons in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - Broken Internet access because of LSP provider (.not file.) -- mswsock.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll ~ Scan Winsock in 00mn 00s ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab ~ Scan Objets ActiveX in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{984F58F3-91DA-4C6B-9513-30A15A56AC63}: DhcpNameServer = 64.18.160.73 64.18.160.74 O17 - HKLM\System\CS1\Services\Tcpip\..\{984F58F3-91DA-4C6B-9513-30A15A56AC63}: DhcpNameServer = 64.18.160.73 64.18.160.74 O17 - HKLM\System\CS2\Services\Tcpip\..\{984F58F3-91DA-4C6B-9513-30A15A56AC63}: DhcpNameServer = 64.18.160.73 64.18.160.74 ~ Scan Domain in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll O18 - Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} . (.Cisco Systems, Inc. - Pure Service Provider DLL.) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\puresp4.dll O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL ~ Scan Protocole Additionnel in 00mn 02s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\system32\igfxdev.dll ~ Scan Winlogon in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ Scan SSODL in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe ~ Scan Services in 00mn 04s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Scan Desktop Component in 00mn 00s ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\Windows\system32\DRIVERS\avipbb.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\system32\drivers\csc.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\system32\DRIVERS\ssmdrv.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys ~ Scan Drivers in 00mn 06s ---\\ Logiciels installés (O42) O42 - Logiciel: Update for Microsoft Office 2007 (KB2508958) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438} O42 - Logiciel: ALTools Update - (.ESTsoft Corp..) [HKLM] -- ALUpdate_is1 O42 - Logiciel: ALZip - (.ESTsoft Corp..) [HKLM] -- ALZip_is1 O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop O42 - Logiciel: Bit Che - (.Convivea, Inc..) [HKLM] -- {D9DA5C41-964F-455F-B5E7-3664519440E8}_is1 O42 - Logiciel: Canon iP3300 - (.Pas de propriétaire.) [HKLM] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP3300 O42 - Logiciel: Intel® Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI O42 - Logiciel: Intel® TV Wizard - (.Intel Corporation.) [HKLM] -- TVWiz O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9} O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack O42 - Logiciel: MétéoÉclair - (.Pas de propriétaire.) [HKCU] -- MétéoÉclair O42 - Logiciel: Network Magic - (.Cisco Systems, Inc..) [HKLM] -- Network MagicUninstall O42 - Logiciel: Opera 11.50 - (.Opera Software ASA.) [HKLM] -- Opera 11.50.1074 O42 - Logiciel: RICOH Media Driver ver.2.07.01.04 - (.RICOH.) [HKLM] -- {2B818257-E6C7-4841-8C29-C5C9A982BCE5} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5C497F0B-2061-4CC9-A61C-6B45B867354D} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD769337-C8AC-46DB-A7DC-643E50089263} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{536FB502-775F-4494-BACE-C02CC90B7A5B} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2509488) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{AD0DE453-0804-4495-9C91-33D0F9AA5463} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478663 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2539636 O42 - Logiciel: Security Update for Microsoft Office 2007 System (KB2541012) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD907315-705A-4475-A1A0-2A1245803E4D} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5A4E43D5-858F-49BD-BA72-8F30E1793060} O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2541007) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{A0173254-F442-4D04-9154-43FA157B83D0} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB2510061) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5D930261-AA5B-48D1-931F-425C9D767490} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1} O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062} O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3A4CDE54-2403-483D-8D9A-15E3264410DF} O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2478663 O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2518870 O42 - Logiciel: SigmaTel Audio - (.SigmaTel.) [HKLM] -- {A462213D-EED4-42C2-9A60-7BDD4D4B0B17} O42 - Logiciel: Static Windows Mail Backup 2.9 - (.StaticBackup Inc..) [HKLM] -- Static Windows Mail Backup_is1 O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871 O42 - Logiciel: Update for Microsoft Office 2007 System (KB2539530) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4} O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2509470) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1365864D-4C58-489D-9982-844D75691CCC} O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2586924) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3B65DCBC-61EC-4578-9DF2-40D3B3829CD8} O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite O42 - Logiciel: µTorrent - (.Pas de propriétaire.) [HKLM] -- uTorrent ---\\ HKCU & HKLM Software Keys [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Avira] [HKCU\Software\BitTorrent] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\ESTsoft] [HKCU\Software\IM Providers] [HKCU\Software\Intel] [HKCU\Software\MMTWN] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\Opera Software] [HKCU\Software\Policies] [HKCU\Software\Pure Networks] [HKCU\Software\Softonic] [HKCU\Software\Static Windows Mail Backup 2.9f] [HKCU\Software\StaticBackup Inc] [HKCU\Software\WinRAR SFX] [HKLM\Software\ATI Technologies] [HKLM\Software\Adobe] [HKLM\Software\Avira] [HKLM\Software\CXT] [HKLM\Software\Canon] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\ESTsoft] [HKLM\Software\IDT] [HKLM\Software\Intel] [HKLM\Software\Licenses] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\MozillaPlugins] [HKLM\Software\Netscape] [HKLM\Software\ODBC] [HKLM\Software\Opera Software] [HKLM\Software\Policies] [HKLM\Software\Pure Networks] [HKLM\Software\RICOH] [HKLM\Software\RegisteredApplications] [HKLM\Software\SigmaTel] [HKLM\Software\Sonic] [HKLM\Software\WebEx] [HKLM\Software\X-AVCSD] ~ Scan Softwares in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 2011-06-17 - 19:39:46 - [164206100] ----D- C:\Program Files\Adobe O43 - CFD: 2011-08-16 - 17:55:02 - [135898074] ----D- C:\Program Files\Avira O43 - CFD: 2011-01-14 - 21:59:58 - [1084942] ----D- C:\Program Files\Bit Che O43 - CFD: 2011-01-14 - 21:09:00 - [7687130] --H-D- C:\Program Files\CanonBJ O43 - CFD: 2011-06-17 - 19:39:46 - [706315979] ----D- C:\Program Files\Common Files O43 - CFD: 2011-08-25 - 08:19:16 - [85153300] ----D- C:\Program Files\DVD Maker O43 - CFD: 2011-06-17 - 19:34:12 - [28799809] ----D- C:\Program Files\ESTsoft O43 - CFD: 2011-01-14 - 18:12:30 - [0] -SH-D- C:\Program Files\Fichiers communs O43 - CFD: 2011-02-11 - 11:30:38 - [8184515] --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD: 2011-01-14 - 18:20:36 - [12036242] ----D- C:\Program Files\Intel O43 - CFD: 2011-08-25 - 07:24:26 - [5565632] ----D- C:\Program Files\Internet Explorer O43 - CFD: 2011-08-23 - 10:22:22 - [6589999] ----D- C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD: 2009-07-14 - 05:01:22 - [162530354] ----D- C:\Program Files\Microsoft Games O43 - CFD: 2011-08-25 - 00:37:34 - [404911656] ----D- C:\Program Files\Microsoft Office O43 - CFD: 2011-06-16 - 22:55:50 - [38411899] ----D- C:\Program Files\Microsoft Silverlight O43 - CFD: 2011-01-14 - 21:57:48 - [14904] ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD: 2011-01-14 - 23:38:16 - [3726168] ----D- C:\Program Files\Microsoft Works O43 - CFD: 2011-01-14 - 23:21:06 - [8167779] ----D- C:\Program Files\Microsoft.NET O43 - CFD: 2009-07-14 - 00:52:32 - [25757] ----D- C:\Program Files\MSBuild O43 - CFD: 2011-06-17 - 19:41:30 - [8053895] ----D- C:\Program Files\Multipass O43 - CFD: 2011-06-29 - 06:28:34 - [34029234] ----D- C:\Program Files\Opera O43 - CFD: 2011-01-14 - 22:11:14 - [45969668] ----D- C:\Program Files\Pure Networks O43 - CFD: 2009-07-14 - 00:52:32 - [81160449] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 2011-02-11 - 11:30:38 - [39410157] ----D- C:\Program Files\SigmaTel O43 - CFD: 2011-01-14 - 19:57:34 - [9447764] ----D- C:\Program Files\Static Windows Mail Backup O43 - CFD: 2009-07-14 - 00:53:24 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 2011-01-14 - 21:59:14 - [395640] ----D- C:\Program Files\uTorrent O43 - CFD: 2011-08-25 - 08:19:14 - [5623808] ----D- C:\Program Files\Windows Defender O43 - CFD: 2011-08-25 - 08:19:14 - [10153592] ----D- C:\Program Files\Windows Journal O43 - CFD: 2011-08-23 - 09:55:10 - [102234408] ----D- C:\Program Files\Windows Live O43 - CFD: 2011-08-25 - 08:19:16 - [20236288] ----D- C:\Program Files\Windows Mail O43 - CFD: 2011-08-25 - 08:19:16 - [10195714] ----D- C:\Program Files\Windows Media Player O43 - CFD: 2011-01-14 - 18:12:30 - [16738996] ----D- C:\Program Files\Windows NT O43 - CFD: 2011-08-25 - 08:19:16 - [5901064] ----D- C:\Program Files\Windows Photo Viewer O43 - CFD: 2011-03-13 - 12:51:42 - [189952] ----D- C:\Program Files\Windows Portable Devices O43 - CFD: 2011-08-25 - 08:19:20 - [30953153] ----D- C:\Program Files\Windows Sidebar O43 - CFD: 2011-08-25 - 09:41:04 - [4023455] ----D- C:\Program Files\ZHPDiag O43 - CFD: 2011-06-17 - 19:39:52 - [3606170] ----D- C:\Program Files\Common Files\Adobe O43 - CFD: 2011-01-14 - 21:57:48 - [92976] ----D- C:\Program Files\Common Files\DESIGNER O43 - CFD: 2011-02-11 - 11:30:32 - [1905338] ----D- C:\Program Files\Common Files\InstallShield O43 - CFD: 2011-08-16 - 17:41:16 - [419680950] ----D- C:\Program Files\Common Files\microsoft shared O43 - CFD: 2011-01-14 - 22:10:02 - [36308174] ----D- C:\Program Files\Common Files\Pure Networks Shared O43 - CFD: 2009-07-13 - 22:37:06 - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 2009-07-13 - 22:37:06 - [41119143] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 2011-08-25 - 08:19:16 - [51815535] ----D- C:\Program Files\Common Files\System O43 - CFD: 2011-01-14 - 18:25:14 - [151784991] ----D- C:\Program Files\Common Files\Windows Live O43 - CFD: 2011-06-17 - 19:39:48 - [479] ----D- C:\ProgramData\Adobe O43 - CFD: 2009-07-14 - 00:53:56 - [0] -SH-D- C:\ProgramData\Application Data O43 - CFD: 2011-08-16 - 17:55:02 - [313055804] ----D- C:\ProgramData\Avira O43 - CFD: 2011-01-14 - 18:12:30 - [0] -SH-D- C:\ProgramData\Bureau O43 - CFD: 2011-01-14 - 21:09:42 - [17120540] --H-D- C:\ProgramData\CanonBJ O43 - CFD: 2009-07-14 - 00:53:56 - [0] -SH-D- C:\ProgramData\Desktop O43 - CFD: 2009-07-14 - 00:53:56 - [0] -SH-D- C:\ProgramData\Documents O43 - CFD: 2011-06-17 - 19:34:12 - [1754464] ----D- C:\ProgramData\ESTsoft O43 - CFD: 2011-01-14 - 18:12:30 - [0] -SH-D- C:\ProgramData\Favoris O43 - CFD: 2009-07-14 - 00:53:56 - [0] -SH-D- C:\ProgramData\Favorites O43 - CFD: 2011-01-14 - 21:07:00 - [14253684] ----D- C:\ProgramData\Malwarebytes O43 - CFD: 2011-01-14 - 18:12:30 - [0] -SH-D- C:\ProgramData\Menu Démarrer O43 - CFD: 2011-01-14 - 22:00:02 - [297640877] -S--D- C:\ProgramData\Microsoft O43 - CFD: 2011-08-11 - 07:36:20 - [59622] ----D- C:\ProgramData\Microsoft Help O43 - CFD: 2011-01-14 - 18:12:30 - [0] -SH-D- C:\ProgramData\Modèles O43 - CFD: 2011-01-14 - 22:10:02 - [169996607] ----D- C:\ProgramData\Pure Networks O43 - CFD: 2009-07-14 - 00:53:56 - [0] -SH-D- C:\ProgramData\Start Menu O43 - CFD: 2011-01-14 - 20:36:12 - [0] ---AD- C:\ProgramData\TEMP O43 - CFD: 2009-07-14 - 00:53:56 - [0] -SH-D- C:\ProgramData\Templates O43 - CFD: 2011-01-14 - 22:10:34 - [26483325] ----D- C:\ProgramData\webex O43 - CFD: 2011-01-25 - 17:54:44 - [2436493] ----D- C:\Users\Sylvie\AppData\Roaming\Adobe O43 - CFD: 2011-08-16 - 18:00:22 - [0] ----D- C:\Users\Sylvie\AppData\Roaming\Avira O43 - CFD: 2011-01-14 - 21:59:54 - [810727] ----D- C:\Users\Sylvie\AppData\Roaming\Convivea O43 - CFD: 2011-06-17 - 19:32:48 - [657780] ----D- C:\Users\Sylvie\AppData\Roaming\ESTsoft O43 - CFD: 2011-01-14 - 18:12:58 - [0] ----D- C:\Users\Sylvie\AppData\Roaming\Identities O43 - CFD: 2011-01-14 - 21:57:30 - [56098] ----D- C:\Users\Sylvie\AppData\Roaming\Macromedia O43 - CFD: 2011-01-14 - 21:07:36 - [500621] ----D- C:\Users\Sylvie\AppData\Roaming\Malwarebytes O43 - CFD: 2009-07-14 - 05:00:34 - [0] ----D- C:\Users\Sylvie\AppData\Roaming\Media Center Programs O43 - CFD: 2011-08-16 - 12:19:02 - [7734934] -S--D- C:\Users\Sylvie\AppData\Roaming\Microsoft O43 - CFD: 2011-01-14 - 18:29:24 - [831100] ----D- C:\Users\Sylvie\AppData\Roaming\Opera O43 - CFD: 2011-01-14 - 19:57:42 - [0] ----D- C:\Users\Sylvie\AppData\Roaming\Static Windows Mail Backup O43 - CFD: 2011-08-16 - 12:35:18 - [1538199] ----D- C:\Users\Sylvie\AppData\Roaming\uTorrent O43 - CFD: 2011-02-13 - 09:55:26 - [295] ----D- C:\Users\Sylvie\AppData\Roaming\Windows Live Writer O43 - CFD: 2011-01-25 - 17:54:44 - [15134275] ----D- C:\Users\Sylvie\AppData\Local\Adobe O43 - CFD: 2011-01-14 - 18:12:46 - [0] -SH-D- C:\Users\Sylvie\AppData\Local\Application Data O43 - CFD: 2011-02-20 - 03:39:10 - [0] ----D- C:\Users\Sylvie\AppData\Local\ElevatedDiagnostics O43 - CFD: 2011-01-14 - 18:12:46 - [0] -SH-D- C:\Users\Sylvie\AppData\Local\Historique O43 - CFD: 2011-02-11 - 15:03:28 - [861112071] ----D- C:\Users\Sylvie\AppData\Local\Microsoft O43 - CFD: 2011-01-14 - 20:54:20 - [0] ----D- C:\Users\Sylvie\AppData\Local\Microsoft Help O43 - CFD: 2011-01-14 - 22:21:50 - [2554051] ----D- C:\Users\Sylvie\AppData\Local\MétéoMédia O43 - CFD: 2011-01-14 - 18:29:24 - [74279943] ----D- C:\Users\Sylvie\AppData\Local\Opera O43 - CFD: 2011-08-25 - 09:38:20 - [162971489] ----D- C:\Users\Sylvie\AppData\Local\Temp O43 - CFD: 2011-01-14 - 18:12:46 - [0] -SH-D- C:\Users\Sylvie\AppData\Local\Temporary Internet Files O43 - CFD: 2011-08-24 - 19:12:18 - [33739] ----D- C:\Users\Sylvie\AppData\Local\VirtualStore O43 - CFD: 2011-08-25 - 03:57:48 - [65536] ----D- C:\Users\Sylvie\AppData\Local\Windows Live O43 - CFD: 2011-01-17 - 20:17:32 - [649119] ----D- C:\Users\Sylvie\AppData\Local\Windows Live Writer O43 - CFD: 2011-08-08 - 08:13:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{0053E6CD-261C-4E23-84B2-B5F3C3ADE094} O43 - CFD: 2011-04-10 - 20:11:38 - [0] ----D- C:\Users\Sylvie\AppData\Local\{02CEF661-9FE4-4860-9FEA-FE41538F9E16} O43 - CFD: 2011-05-17 - 07:36:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{02F35894-1EAE-4756-8DD8-5704813DB146} O43 - CFD: 2011-02-08 - 15:43:10 - [0] ----D- C:\Users\Sylvie\AppData\Local\{05EC9A07-D37E-43CB-B982-5389965ECC9C} O43 - CFD: 2011-05-18 - 09:47:08 - [0] ----D- C:\Users\Sylvie\AppData\Local\{0681B6AF-DE51-49C6-99FF-CD42F0557BE1} O43 - CFD: 2011-08-15 - 21:25:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{06FB50D2-020B-4F77-A41F-A72ABCC4FD81} O43 - CFD: 2011-05-11 - 10:03:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{07BB78EF-52B6-4EB3-91E5-61FBDB649C04} O43 - CFD: 2011-06-21 - 10:57:46 - [0] ----D- C:\Users\Sylvie\AppData\Local\{081591BB-ACB4-4311-9C40-2964656D7FA8} O43 - CFD: 2011-06-19 - 08:15:42 - [0] ----D- C:\Users\Sylvie\AppData\Local\{0828EC0D-7A86-45B5-AC82-D17C142A5A79} O43 - CFD: 2011-08-08 - 14:36:22 - [0] ----D- C:\Users\Sylvie\AppData\Local\{08EDF6C1-6318-433E-93E0-905095C7217A} O43 - CFD: 2011-03-17 - 20:24:08 - [0] ----D- C:\Users\Sylvie\AppData\Local\{09038F0E-1B75-4036-A82E-D7AAFC846085} O43 - CFD: 2011-05-01 - 08:54:16 - [0] ----D- C:\Users\Sylvie\AppData\Local\{094E311F-9BAF-4317-8299-3BDD33BE81E5} O43 - CFD: 2011-08-24 - 15:56:00 - [0] ----D- C:\Users\Sylvie\AppData\Local\{0A013D1A-8C5E-42D4-AB46-71D42D380830} O43 - CFD: 2011-07-25 - 20:59:20 - [0] ----D- C:\Users\Sylvie\AppData\Local\{0A0B4977-354A-4F6C-895A-07FBE81EA1F7} O43 - CFD: 2011-03-23 - 20:54:26 - [0] ----D- C:\Users\Sylvie\AppData\Local\{0B3057B0-F15E-4EAD-BD13-D5FD0D9DF134} O43 - CFD: 2011-07-14 - 21:26:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{0B39DBC7-D3D3-4261-9DFD-33CC77A6AA63} O43 - CFD: 2011-01-15 - 07:59:38 - [0] ----D- C:\Users\Sylvie\AppData\Local\{0B8A63D0-EB42-4EC4-9614-72D05930EE43} O43 - CFD: 2011-08-16 - 17:47:10 - [0] ----D- C:\Users\Sylvie\AppData\Local\{0BA7ED49-96EB-4A3E-9ACE-A1B21750BE75} O43 - CFD: 2011-08-16 - 12:42:22 - [0] ----D- C:\Users\Sylvie\AppData\Local\{0D3E5FBA-AA1C-4C0C-AFBF-B3BB82B5780B} O43 - CFD: 2011-07-17 - 21:41:38 - [0] ----D- C:\Users\Sylvie\AppData\Local\{0D71755E-94B6-4AE4-BF7C-166C35745DA5} O43 - CFD: 2011-08-17 - 00:59:18 - [0] ----D- C:\Users\Sylvie\AppData\Local\{0D837762-DC0F-430A-830D-C762941634DC} O43 - CFD: 2011-08-05 - 07:36:10 - [0] ----D- C:\Users\Sylvie\AppData\Local\{0DD1ADB2-E435-42A3-828B-ADE8984755BE} O43 - CFD: 2011-01-14 - 19:59:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{0F2A3C46-56CA-4ED6-9ED5-EBC2E8C1DD6B} O43 - CFD: 2011-08-14 - 13:08:32 - [0] ----D- C:\Users\Sylvie\AppData\Local\{10334532-B58B-451E-8606-F5CFF498FC23} O43 - CFD: 2011-06-14 - 12:48:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{103ECFF8-FFBC-45B0-87D5-F074D34A42A0} O43 - CFD: 2011-07-18 - 10:18:50 - [0] ----D- C:\Users\Sylvie\AppData\Local\{105587FD-823F-4438-9ED5-4A5FE0ECFD79} O43 - CFD: 2011-08-21 - 13:19:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{10733C0C-1FB0-4841-85BC-DA4398BEE8B7} O43 - CFD: 2011-04-14 - 21:13:24 - [0] ----D- C:\Users\Sylvie\AppData\Local\{1189D265-3559-45B8-B8D6-E1000036E8D3} O43 - CFD: 2011-06-22 - 10:58:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{1449D8FF-CF13-45DD-8CA7-FE7A67C692D5} O43 - CFD: 2011-02-19 - 18:18:12 - [0] ----D- C:\Users\Sylvie\AppData\Local\{14DE49FC-EB31-4A80-9BAD-FBDECE282398} O43 - CFD: 2011-05-08 - 21:46:14 - [0] ----D- C:\Users\Sylvie\AppData\Local\{154D9F3D-2864-495F-8CAA-6EF4CB114E43} O43 - CFD: 2011-02-03 - 15:00:00 - [0] ----D- C:\Users\Sylvie\AppData\Local\{159CB092-4C95-4AAA-97B3-ABAF116D2EA2} O43 - CFD: 2011-08-08 - 07:35:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{15B79B15-4C19-496E-82C5-B58C880E180F} O43 - CFD: 2011-08-16 - 12:42:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{1618FCE9-724F-4E2F-9B40-987C4824433D} O43 - CFD: 2011-08-16 - 12:24:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{161ED155-7C61-450E-9D43-F06DAC168DE3} O43 - CFD: 2011-08-16 - 12:30:18 - [0] ----D- C:\Users\Sylvie\AppData\Local\{180B10C0-C8F3-4F87-9280-5D56FF11010E} O43 - CFD: 2011-03-14 - 22:25:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{1A1B2B1F-9D80-47D4-BD4B-141D28339B25} O43 - CFD: 2011-08-12 - 13:37:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{1AA10AEA-6155-47E6-8E7E-4529FDCE4D03} O43 - CFD: 2011-05-16 - 18:59:06 - [0] ----D- C:\Users\Sylvie\AppData\Local\{1ABD8E5C-B6EB-44A4-95AA-248BD01A4A67} O43 - CFD: 2011-08-23 - 22:01:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{1BF545A8-E8DB-485B-B7BB-7CD568F7D9C5} O43 - CFD: 2011-07-02 - 23:37:28 - [0] ----D- C:\Users\Sylvie\AppData\Local\{1CE271F8-763D-4663-A08B-2D0B3B296C4D} O43 - CFD: 2011-05-17 - 21:23:38 - [0] ----D- C:\Users\Sylvie\AppData\Local\{1D2B312C-0AA0-4506-97CF-4E08CEFD4A0C} O43 - CFD: 2011-08-24 - 15:55:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{1D68CDA5-E76C-4388-8F8C-FDB13BA9D7C2} O43 - CFD: 2011-08-22 - 22:04:02 - [0] ----D- C:\Users\Sylvie\AppData\Local\{1E024696-8666-4CBF-B587-F42267B1C5FB} O43 - CFD: 2011-08-11 - 23:13:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{1E1D4DCC-E8B1-44F6-9387-F4D87518BE61} O43 - CFD: 2011-02-24 - 10:53:00 - [0] ----D- C:\Users\Sylvie\AppData\Local\{1ECD8540-B696-4706-B111-4A5D9E53641A} O43 - CFD: 2011-08-09 - 11:48:06 - [0] ----D- C:\Users\Sylvie\AppData\Local\{1F1AEAB8-A054-4943-AE36-079F43A44823} O43 - CFD: 2011-03-07 - 13:06:06 - [0] ----D- C:\Users\Sylvie\AppData\Local\{2125263F-BAB6-4F75-9956-509409F78844} O43 - CFD: 2011-06-09 - 20:05:50 - [0] ----D- C:\Users\Sylvie\AppData\Local\{219477E4-8A6F-44AD-AA46-DB09E4023A2D} O43 - CFD: 2011-04-25 - 08:17:18 - [0] ----D- C:\Users\Sylvie\AppData\Local\{22B9D20D-C964-4971-B55D-F73B7DC480CD} O43 - CFD: 2011-08-18 - 07:48:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{22E8DAEF-5945-4195-879E-854FAB04475F} O43 - CFD: 2011-08-07 - 12:59:14 - [0] ----D- C:\Users\Sylvie\AppData\Local\{243087F6-9728-420A-81C3-2892F877EED2} O43 - CFD: 2011-03-17 - 08:23:46 - [0] ----D- C:\Users\Sylvie\AppData\Local\{243CA384-4DD6-452B-A067-FAED4C678FB9} O43 - CFD: 2011-08-07 - 04:49:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{25549EC9-2B0D-4304-A564-E152C04EED5A} O43 - CFD: 2011-01-16 - 22:36:42 - [0] ----D- C:\Users\Sylvie\AppData\Local\{257D86C5-8489-4B4F-A8BA-F935D764E8D6} O43 - CFD: 2011-08-13 - 00:13:54 - [0] ----D- C:\Users\Sylvie\AppData\Local\{25EA7F38-9F25-4F4C-A9CF-5B20C22DDC43} O43 - CFD: 2011-06-11 - 21:17:10 - [0] ----D- C:\Users\Sylvie\AppData\Local\{26299895-F160-4A27-86BE-93D4C4C55CF9} O43 - CFD: 2011-03-06 - 09:52:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{2648DC9F-6C00-4721-A943-A0DEABEC8270} O43 - CFD: 2011-03-22 - 13:09:50 - [0] ----D- C:\Users\Sylvie\AppData\Local\{279AF36F-C0EB-4F1D-AADF-DD297F9494E3} O43 - CFD: 2011-01-19 - 11:17:10 - [0] ----D- C:\Users\Sylvie\AppData\Local\{29A0DE09-3D5D-4EAD-A95C-128002FDF6FF} O43 - CFD: 2011-08-07 - 11:36:42 - [0] ----D- C:\Users\Sylvie\AppData\Local\{2A899937-49F2-439C-B88C-AEC20F7D16EB} O43 - CFD: 2011-08-25 - 03:57:20 - [0] ----D- C:\Users\Sylvie\AppData\Local\{2ABF70BF-B896-49B4-9474-53A974427C4D} O43 - CFD: 2011-01-16 - 22:50:20 - [0] ----D- C:\Users\Sylvie\AppData\Local\{2ADF89E3-CE4D-4128-A838-DE4912907EAD} O43 - CFD: 2011-08-12 - 09:20:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{2AF676E7-3227-4C7B-815F-86502AEE4B79} O43 - CFD: 2011-07-30 - 00:02:50 - [0] ----D- C:\Users\Sylvie\AppData\Local\{2B5EADDE-2318-424E-8145-FD613FA63C33} O43 - CFD: 2011-03-29 - 10:22:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{2BC64A3D-69A4-465E-9C89-A48B07F87246} O43 - CFD: 2011-04-16 - 22:22:46 - [0] ----D- C:\Users\Sylvie\AppData\Local\{2FBA3EB6-4CFE-44B3-BC3D-D2A8F234EB3A} O43 - CFD: 2011-07-21 - 20:11:50 - [0] ----D- C:\Users\Sylvie\AppData\Local\{2FDD38F8-1964-4712-90C0-0BE53C84CE48} O43 - CFD: 2011-08-18 - 07:48:32 - [0] ----D- C:\Users\Sylvie\AppData\Local\{31443256-16D5-445C-80BE-B9C02172C19B} O43 - CFD: 2011-06-10 - 10:57:56 - [0] ----D- C:\Users\Sylvie\AppData\Local\{316B4C55-BF3D-4E2F-A93F-413766C226BE} O43 - CFD: 2011-08-02 - 10:34:52 - [0] ----D- C:\Users\Sylvie\AppData\Local\{316EC4D5-F697-4298-BB71-E13D990D0FD1} O43 - CFD: 2011-08-23 - 22:02:00 - [0] ----D- C:\Users\Sylvie\AppData\Local\{31D0B83E-08FA-41CC-9861-C21DA415845A} O43 - CFD: 2011-08-15 - 21:25:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{32DFA5FD-2BA5-47AA-8AFE-98193E50E01F} O43 - CFD: 2011-08-01 - 21:38:18 - [0] ----D- C:\Users\Sylvie\AppData\Local\{3388740C-A4C0-42F0-BA59-14CFEF449387} O43 - CFD: 2011-07-11 - 20:48:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{3463B89C-283B-4561-B092-D71C83625B22} O43 - CFD: 2011-02-13 - 09:53:54 - [0] ----D- C:\Users\Sylvie\AppData\Local\{34BC8240-B63A-4136-A79A-798B836EC2EB} O43 - CFD: 2011-05-20 - 11:37:02 - [0] ----D- C:\Users\Sylvie\AppData\Local\{34EE710B-D757-4BC4-B988-37AD6EF6B103} O43 - CFD: 2011-07-24 - 07:50:38 - [0] ----D- C:\Users\Sylvie\AppData\Local\{35407CF3-A9DF-4767-B630-87DED9DFD040} O43 - CFD: 2011-08-05 - 15:29:50 - [0] ----D- C:\Users\Sylvie\AppData\Local\{35462B60-5719-448A-82E3-52FEB9125506} O43 - CFD: 2011-08-08 - 14:36:00 - [0] ----D- C:\Users\Sylvie\AppData\Local\{359B0A7F-610F-49BA-B492-EA7C2FCD3DA1} O43 - CFD: 2011-05-03 - 23:18:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{35FD64FD-327E-4185-AF1A-2B5755DAAA97} O43 - CFD: 2011-04-08 - 11:22:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{36416449-861C-4C47-B8F3-30EED2EB3AB1} O43 - CFD: 2011-03-05 - 17:38:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{37A48415-FC26-474A-A006-995999B82015} O43 - CFD: 2011-01-27 - 07:47:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{3925E5E4-67C0-4799-A30E-39C3C87EFB3C} O43 - CFD: 2011-06-06 - 07:46:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{392A306F-098E-4555-B1BB-DF4C00AB6E84} O43 - CFD: 2011-05-22 - 09:37:16 - [0] ----D- C:\Users\Sylvie\AppData\Local\{39463A40-4CEF-4885-B3A5-2D69DA4177BE} O43 - CFD: 2011-08-02 - 15:16:56 - [0] ----D- C:\Users\Sylvie\AppData\Local\{39D51CCD-520E-43B3-926E-2975E91A258F} O43 - CFD: 2011-07-01 - 07:01:10 - [0] ----D- C:\Users\Sylvie\AppData\Local\{39D661E8-C4B4-424F-9F3C-E2D255E82C99} O43 - CFD: 2011-06-09 - 07:18:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{3A776C1A-1028-4FA0-BEBD-75C0C312A192} O43 - CFD: 2011-01-26 - 19:20:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{3B0FE354-3C6F-4DA4-9044-9C548F0A4338} O43 - CFD: 2011-08-16 - 12:30:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{3BFC6BB9-EF7C-4ABB-8727-05455DC16A7C} O43 - CFD: 2011-08-14 - 13:08:42 - [0] ----D- C:\Users\Sylvie\AppData\Local\{3CD1C188-278D-4A1A-B45B-AB5DDFA667F0} O43 - CFD: 2011-07-31 - 15:48:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{3DA0E37F-EC4C-45B1-B796-C498C7D7BEE2} O43 - CFD: 2011-04-25 - 20:17:54 - [0] ----D- C:\Users\Sylvie\AppData\Local\{3E41C2EF-51CD-4048-B142-9BBF0B2972D5} O43 - CFD: 2011-03-15 - 22:32:06 - [0] ----D- C:\Users\Sylvie\AppData\Local\{3EB9305A-3405-411C-BFCB-F120419C570E} O43 - CFD: 2011-04-06 - 21:19:16 - [0] ----D- C:\Users\Sylvie\AppData\Local\{3EC226F2-D22C-41D4-A0CF-79F58B9D8954} O43 - CFD: 2011-08-16 - 17:46:58 - [0] ----D- C:\Users\Sylvie\AppData\Local\{3EEF9056-5285-4F8A-A1D5-C95AAF03EB6C} O43 - CFD: 2011-07-22 - 08:12:24 - [0] ----D- C:\Users\Sylvie\AppData\Local\{3EF55DE5-1B54-4742-ACCA-A02BBD2B6CD9} O43 - CFD: 2011-02-25 - 23:06:20 - [0] ----D- C:\Users\Sylvie\AppData\Local\{3F97BD03-0ED1-48CE-8329-7289C825749E} O43 - CFD: 2011-01-27 - 20:25:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{40729574-853F-45C4-A7B1-B6A7C4076B1B} O43 - CFD: 2011-02-18 - 21:17:56 - [0] ----D- C:\Users\Sylvie\AppData\Local\{40864A0C-4B4B-449C-BCA5-C36BDC0C863B} O43 - CFD: 2011-02-16 - 10:58:32 - [0] ----D- C:\Users\Sylvie\AppData\Local\{43C900A9-320E-4FA2-987B-40EF7D1491DB} O43 - CFD: 2011-08-17 - 00:59:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{4613B05D-7866-4AAF-9874-B2E250235B0B} O43 - CFD: 2011-08-08 - 10:16:28 - [0] ----D- C:\Users\Sylvie\AppData\Local\{46A34947-DE8A-4F30-88AC-30F8F40CB4F8} O43 - CFD: 2011-08-16 - 09:10:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{47080AF2-746B-4C70-AB08-496517E0A761} O43 - CFD: 2011-08-23 - 10:00:58 - [0] ----D- C:\Users\Sylvie\AppData\Local\{47233DEA-90D0-490C-B52F-316917A8F13A} O43 - CFD: 2011-04-28 - 18:08:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{485E0E32-6D5B-4E80-8286-241F4C25775E} O43 - CFD: 2011-07-09 - 07:32:42 - [0] ----D- C:\Users\Sylvie\AppData\Local\{49CF8AEE-C9A7-4602-9A62-DDD6F0B56D0E} O43 - CFD: 2011-02-20 - 18:07:22 - [0] ----D- C:\Users\Sylvie\AppData\Local\{4A2EC4AC-35BB-4531-9FB7-B7695D330B6B} O43 - CFD: 2011-08-16 - 09:09:52 - [0] ----D- C:\Users\Sylvie\AppData\Local\{4A977BF0-2109-4672-A14D-778DA3E85416} O43 - CFD: 2011-03-26 - 20:43:18 - [0] ----D- C:\Users\Sylvie\AppData\Local\{4AB19623-ABE7-4CB3-AF76-1288684C8C4D} O43 - CFD: 2011-06-18 - 00:21:36 - [0] ----D- C:\Users\Sylvie\AppData\Local\{4AB23487-1756-4918-A136-A17700D7ABB7} O43 - CFD: 2011-04-26 - 08:18:16 - [0] ----D- C:\Users\Sylvie\AppData\Local\{4BD058BC-8559-4D37-9E2A-E903333F6BA6} O43 - CFD: 2011-08-07 - 12:59:16 - [0] ----D- C:\Users\Sylvie\AppData\Local\{4BE3570C-4678-4FEB-9DCA-965A388576C4} O43 - CFD: 2011-08-16 - 17:38:14 - [0] ----D- C:\Users\Sylvie\AppData\Local\{4CD77ED2-136B-421B-81C8-1D968A4C8FED} O43 - CFD: 2011-08-01 - 16:50:18 - [0] ----D- C:\Users\Sylvie\AppData\Local\{4CFF7560-2CA8-4882-9AB4-EFDC2ED19F45} O43 - CFD: 2011-02-17 - 09:31:50 - [0] ----D- C:\Users\Sylvie\AppData\Local\{4D4486D9-7329-40BB-A64B-4D3A9AF9F464} O43 - CFD: 2011-03-03 - 21:03:08 - [0] ----D- C:\Users\Sylvie\AppData\Local\{4D58055E-D331-40A0-BECE-3EB699721BCE} O43 - CFD: 2011-08-14 - 09:47:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{4DC2AC16-7D1C-4094-9590-90105C164AB1} O43 - CFD: 2011-08-04 - 07:59:26 - [0] ----D- C:\Users\Sylvie\AppData\Local\{4E573D26-0E6D-40F1-A2A0-C2A813D1C613} O43 - CFD: 2011-03-04 - 21:04:20 - [0] ----D- C:\Users\Sylvie\AppData\Local\{4F128FCF-80C0-471F-81B5-769227D73381} O43 - CFD: 2011-06-27 - 06:41:54 - [0] ----D- C:\Users\Sylvie\AppData\Local\{50A8AB20-8FEB-4C9C-873F-8606868A209F} O43 - CFD: 2011-07-16 - 12:28:20 - [0] ----D- C:\Users\Sylvie\AppData\Local\{51237704-1215-4283-8B7D-540F7882B72F} O43 - CFD: 2011-06-26 - 07:00:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{512B8E20-96C4-436F-97E3-1868E8D71D0C} O43 - CFD: 2011-08-02 - 15:16:46 - [0] ----D- C:\Users\Sylvie\AppData\Local\{51E7BD68-91EA-4456-88E1-3C37D87EEF9F} O43 - CFD: 2011-02-02 - 21:16:24 - [0] ----D- C:\Users\Sylvie\AppData\Local\{5215EE56-DCF1-4C7D-8C9D-D036783436E3} O43 - CFD: 2011-04-03 - 07:44:54 - [0] ----D- C:\Users\Sylvie\AppData\Local\{539D05E7-9522-4359-9B6B-785B6EF063CD} O43 - CFD: 2011-04-04 - 21:46:36 - [0] ----D- C:\Users\Sylvie\AppData\Local\{53B27016-9695-4D23-91B9-F32DF9E11A78} O43 - CFD: 2011-06-13 - 07:29:42 - [0] ----D- C:\Users\Sylvie\AppData\Local\{5418C2E8-6BB9-45AA-8D63-E7036B92CAC1} O43 - CFD: 2011-08-06 - 22:53:02 - [0] ----D- C:\Users\Sylvie\AppData\Local\{54E10A3D-859A-4EDE-9F70-D03A45E136EA} O43 - CFD: 2011-08-02 - 08:00:32 - [0] ----D- C:\Users\Sylvie\AppData\Local\{55586115-78D6-434D-91B0-A3937438736E} O43 - CFD: 2011-05-08 - 09:33:06 - [0] ----D- C:\Users\Sylvie\AppData\Local\{585B0120-37E3-44E5-980F-0E8F7700A612} O43 - CFD: 2011-05-14 - 23:56:26 - [0] ----D- C:\Users\Sylvie\AppData\Local\{586E9FEF-A460-4F14-870A-F6D2EDEF664B} O43 - CFD: 2011-01-19 - 23:17:46 - [0] ----D- C:\Users\Sylvie\AppData\Local\{58BFCF99-DB5F-43A3-8ED2-F21F66E5D4CC} O43 - CFD: 2011-07-17 - 07:42:32 - [0] ----D- C:\Users\Sylvie\AppData\Local\{59170EA8-7C8D-4195-B450-025AD8D55CEB} O43 - CFD: 2011-01-14 - 19:57:08 - [0] ----D- C:\Users\Sylvie\AppData\Local\{59DDE61D-7B26-44D3-A481-6AAE39AC8486} O43 - CFD: 2011-07-29 - 00:12:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{5A16347D-1EB0-4716-8C62-7EC1D3E42290} O43 - CFD: 2011-04-12 - 08:30:28 - [0] ----D- C:\Users\Sylvie\AppData\Local\{5A5F5DA1-3368-422B-9CC1-2AF28AA7F728} O43 - CFD: 2011-02-01 - 19:52:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{5B2E4F2B-0D19-47A2-9F7E-AE71997A7504} O43 - CFD: 2011-08-12 - 13:37:36 - [0] ----D- C:\Users\Sylvie\AppData\Local\{5C55A4D4-DFF2-43D6-ACF4-CC3F14F5B08E} O43 - CFD: 2011-04-23 - 06:49:54 - [0] ----D- C:\Users\Sylvie\AppData\Local\{5CAC299A-C67E-47FA-AEFD-CC961A4CD8BB} O43 - CFD: 2011-06-11 - 07:11:42 - [0] ----D- C:\Users\Sylvie\AppData\Local\{5D73F25F-4B74-4EAB-8D0F-8619ED91F966} O43 - CFD: 2011-01-25 - 11:20:00 - [0] ----D- C:\Users\Sylvie\AppData\Local\{5D741A28-26E6-496F-9C8C-784E0E2B7DE0} O43 - CFD: 2011-02-23 - 07:25:36 - [0] ----D- C:\Users\Sylvie\AppData\Local\{5F4A16B4-7736-4CD2-9650-01D1182CA789} O43 - CFD: 2011-08-05 - 17:02:22 - [0] ----D- C:\Users\Sylvie\AppData\Local\{609649EB-0AC3-45A3-8F83-2D90897A764D} O43 - CFD: 2011-04-04 - 08:47:56 - [0] ----D- C:\Users\Sylvie\AppData\Local\{60C97D71-3A82-41AA-A522-B031EDB6FBDB} O43 - CFD: 2011-03-28 - 21:19:56 - [0] ----D- C:\Users\Sylvie\AppData\Local\{61E748AD-0C83-417B-B2E3-44936877659F} O43 - CFD: 2011-08-05 - 07:35:58 - [0] ----D- C:\Users\Sylvie\AppData\Local\{62B53880-FAF3-481D-AC6F-CA40B1AE77A7} O43 - CFD: 2011-08-01 - 07:47:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{632DA050-6B0B-42EA-BBD4-AFFEA41E5240} O43 - CFD: 2011-07-20 - 06:54:22 - [0] ----D- C:\Users\Sylvie\AppData\Local\{639DB3DD-A14E-4DCD-BB5E-144CAA04F63A} O43 - CFD: 2011-01-23 - 23:18:50 - [0] ----D- C:\Users\Sylvie\AppData\Local\{64A7BFC6-646F-40CC-BACE-75E2975DFEA5} O43 - CFD: 2011-03-25 - 21:37:22 - [0] ----D- C:\Users\Sylvie\AppData\Local\{668B81D8-8BA6-4003-9FC2-F904629BDFA7} O43 - CFD: 2011-07-15 - 20:53:58 - [0] ----D- C:\Users\Sylvie\AppData\Local\{66EC1F58-CD8E-44BB-B9A7-9BC72EF20533} O43 - CFD: 2011-02-24 - 22:53:36 - [0] ----D- C:\Users\Sylvie\AppData\Local\{693FEA98-6782-4417-BE9A-D0685A667811} O43 - CFD: 2011-02-04 - 19:55:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{69A82FB3-9579-4DC3-8F2F-6232069F6D94} O43 - CFD: 2011-04-24 - 20:16:42 - [0] ----D- C:\Users\Sylvie\AppData\Local\{6A4AB114-418C-4F8C-9FCE-CE8A258104EF} O43 - CFD: 2011-02-07 - 14:59:32 - [0] ----D- C:\Users\Sylvie\AppData\Local\{6A9D9975-4DF9-458D-ABD4-E4B0D0D50C09} O43 - CFD: 2011-04-15 - 14:44:28 - [0] ----D- C:\Users\Sylvie\AppData\Local\{6AE145F7-828B-4A58-8B5B-EE9FF9BA14BF} O43 - CFD: 2011-08-15 - 12:29:54 - [0] ----D- C:\Users\Sylvie\AppData\Local\{6B0D7197-46CF-4850-919F-58A9C1A66E1A} O43 - CFD: 2011-08-08 - 07:35:22 - [0] ----D- C:\Users\Sylvie\AppData\Local\{6B5162C2-6F87-4EC2-8295-7CA5174E09A6} O43 - CFD: 2011-08-13 - 09:37:02 - [0] ----D- C:\Users\Sylvie\AppData\Local\{6BD6617C-EF46-452D-8409-2947C50E66F2} O43 - CFD: 2011-08-05 - 10:06:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{6C02416E-640B-44FB-AF49-A95B34474140} O43 - CFD: 2011-08-12 - 23:56:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{6C8AD9DD-D5EB-4825-AC14-35974795BCD3} O43 - CFD: 2011-04-26 - 20:18:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{6DEEA409-BE77-4169-9C2C-6E6DD55E81E7} O43 - CFD: 2011-06-02 - 06:45:22 - [0] ----D- C:\Users\Sylvie\AppData\Local\{6E103CBD-B617-4DEC-AA15-E8338CB24D7C} O43 - CFD: 2011-08-13 - 09:36:50 - [0] ----D- C:\Users\Sylvie\AppData\Local\{6F3C3F3C-5D80-448B-8ACF-E71218A1B70A} O43 - CFD: 2011-02-28 - 21:27:00 - [0] ----D- C:\Users\Sylvie\AppData\Local\{6F7A2E8A-26D1-4E95-8996-21197E81C5E1} O43 - CFD: 2011-03-04 - 09:03:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{6FB47CC5-66E2-442F-B788-1338CFDAD0E1} O43 - CFD: 2011-03-24 - 08:55:02 - [0] ----D- C:\Users\Sylvie\AppData\Local\{700E22BC-1281-419A-9A9B-BF90A34978BA} O43 - CFD: 2011-01-17 - 20:06:46 - [0] ----D- C:\Users\Sylvie\AppData\Local\{70FAD63E-26C3-419B-A135-BB23C165B949} O43 - CFD: 2011-06-07 - 20:20:00 - [0] ----D- C:\Users\Sylvie\AppData\Local\{7199DFAC-AB55-47F9-B56F-F407402E984A} O43 - CFD: 2011-07-30 - 07:05:28 - [0] ----D- C:\Users\Sylvie\AppData\Local\{71FAC5AF-9E71-43C0-8D98-7F3DDD3831CF} O43 - CFD: 2011-07-31 - 07:36:50 - [0] ----D- C:\Users\Sylvie\AppData\Local\{726B026E-7873-48BE-BEE9-F99895F53279} O43 - CFD: 2011-08-09 - 06:57:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{72DC31A4-15D1-4A3A-B520-42F25AE3B6FC} O43 - CFD: 2011-01-24 - 11:19:14 - [0] ----D- C:\Users\Sylvie\AppData\Local\{7348B288-37FF-451E-A08E-C1307072B97D} O43 - CFD: 2011-01-24 - 23:19:36 - [0] ----D- C:\Users\Sylvie\AppData\Local\{73C65BFB-F8D6-4640-AF98-E9CAE6D1080E} O43 - CFD: 2011-04-17 - 10:48:46 - [0] ----D- C:\Users\Sylvie\AppData\Local\{73EDCBFE-7414-48D9-9B37-A5B350263492} O43 - CFD: 2011-01-21 - 08:24:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{74549FC6-421A-454D-984C-D1F1BCB48344} O43 - CFD: 2011-05-20 - 08:23:36 - [0] ----D- C:\Users\Sylvie\AppData\Local\{751BFFD0-E771-4675-95E4-6C7B3D81D4A3} O43 - CFD: 2011-06-13 - 20:40:24 - [0] ----D- C:\Users\Sylvie\AppData\Local\{754D8A77-F383-4CA8-8F84-0BB1BCE7B957} O43 - CFD: 2011-08-06 - 22:52:50 - [0] ----D- C:\Users\Sylvie\AppData\Local\{761D82A3-1F2E-42C6-A98C-7F2D6893A508} O43 - CFD: 2011-02-02 - 09:15:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{765A5049-3540-41F9-93E4-418CD2532860} O43 - CFD: 2011-04-17 - 22:58:46 - [0] ----D- C:\Users\Sylvie\AppData\Local\{77C48E6C-27F7-4E18-B712-5A7C1FF1E55F} O43 - CFD: 2011-06-12 - 19:29:08 - [0] ----D- C:\Users\Sylvie\AppData\Local\{785B7D23-3D11-48B8-AEC5-1828418640FC} O43 - CFD: 2011-08-09 - 06:57:24 - [0] ----D- C:\Users\Sylvie\AppData\Local\{7966D3E7-62B7-4306-9A7B-1F062494DB27} O43 - CFD: 2011-07-12 - 12:14:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{7A1A5FE9-6B46-4DFF-BC2D-B175C8C9DEE0} O43 - CFD: 2011-02-20 - 09:47:08 - [0] ----D- C:\Users\Sylvie\AppData\Local\{7A42BBA3-9B7D-447C-871A-C9CC6A719CF4} O43 - CFD: 2011-08-13 - 13:35:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{7C308651-FE75-4C8E-9DFD-7B987A0CF912} O43 - CFD: 2011-08-11 - 17:59:18 - [0] ----D- C:\Users\Sylvie\AppData\Local\{7CE60C9A-D64A-4641-B521-53340C88DD81} O43 - CFD: 2011-03-28 - 07:59:36 - [0] ----D- C:\Users\Sylvie\AppData\Local\{7DC713BF-5635-4DAF-842E-9459D2AB7A29} O43 - CFD: 2011-04-05 - 23:03:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{7E8FDA5A-30CF-4B15-8AA3-FD4161BF987A} O43 - CFD: 2011-08-01 - 14:04:32 - [0] ----D- C:\Users\Sylvie\AppData\Local\{7FAAE695-E0C2-4D44-9134-4F5C44E7AEF0} O43 - CFD: 2011-05-19 - 17:12:56 - [0] ----D- C:\Users\Sylvie\AppData\Local\{8100F627-4A50-495E-8879-008FEF6F20BC} O43 - CFD: 2011-03-06 - 23:38:38 - [0] ----D- C:\Users\Sylvie\AppData\Local\{81CADDA7-9F9D-4FB4-AA7B-A6B8F5CA4815} O43 - CFD: 2011-07-30 - 07:05:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{822186EC-D0B1-4936-8869-38C6EF70B37F} O43 - CFD: 2011-05-16 - 06:58:32 - [0] ----D- C:\Users\Sylvie\AppData\Local\{82D92BC9-E548-4C27-8229-E299762A3E0D} O43 - CFD: 2011-07-29 - 21:39:06 - [0] ----D- C:\Users\Sylvie\AppData\Local\{8358DA56-39D4-48A2-9B0E-F4CE3C6A310C} O43 - CFD: 2011-02-23 - 22:52:36 - [0] ----D- C:\Users\Sylvie\AppData\Local\{83FB2AE9-BAFF-4E07-AF5F-234AC98AE07E} O43 - CFD: 2011-03-27 - 16:58:28 - [0] ----D- C:\Users\Sylvie\AppData\Local\{84870EDA-0116-4523-ABCE-E05F23FA7EE7} O43 - CFD: 2011-03-27 - 09:07:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{85360AB0-B4F0-440C-90A8-98E2258DD41D} O43 - CFD: 2011-07-03 - 16:22:42 - [0] ----D- C:\Users\Sylvie\AppData\Local\{854C96E9-49A4-43AC-890B-47293A41D3F2} O43 - CFD: 2011-08-04 - 10:41:18 - [0] ----D- C:\Users\Sylvie\AppData\Local\{85564E23-34B0-493C-A879-C4AC773EDFF0} O43 - CFD: 2011-03-03 - 09:02:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{857F99BD-8A73-4D0F-97E7-5C6F24CCB2D3} O43 - CFD: 2011-08-22 - 10:03:18 - [0] ----D- C:\Users\Sylvie\AppData\Local\{85CE8B61-90C0-4542-B99E-81E2D2A67E3C} O43 - CFD: 2011-08-05 - 22:59:22 - [0] ----D- C:\Users\Sylvie\AppData\Local\{86B4B805-C02C-4F07-8BFA-2209BFB88A7C} O43 - CFD: 2011-03-13 - 09:36:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{87F6E4B6-9F4F-4F2F-BFD1-4F1A2867A27A} O43 - CFD: 2011-08-01 - 16:50:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{87FFB2F5-828A-4D65-993A-33C32F6030E7} O43 - CFD: 2011-07-23 - 07:11:58 - [0] ----D- C:\Users\Sylvie\AppData\Local\{88DD4836-4ED1-4BA4-BC9E-4EAB9B0DC156} O43 - CFD: 2011-01-28 - 20:26:42 - [0] ----D- C:\Users\Sylvie\AppData\Local\{8A3E00A0-CAFD-4E15-862F-2D438244065A} O43 - CFD: 2011-08-15 - 07:54:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{8AD87809-1F35-4A14-AE95-68DF78916EAD} O43 - CFD: 2011-08-01 - 22:29:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{8B0CB539-DDB4-45A9-A0D6-2A21B270B336} O43 - CFD: 2011-07-31 - 07:36:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{8C3DE5B7-C6F5-41F5-B0F4-6A5CD16D7434} O43 - CFD: 2011-03-09 - 21:41:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{8CA01070-D79A-4E86-B175-1B3263D4A1C5} O43 - CFD: 2011-08-01 - 22:29:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{8DBE2DA4-E5B7-4F35-BB2B-7538031B9C93} O43 - CFD: 2011-08-08 - 08:13:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{8DC01496-4FAC-4C05-8B3D-181C0FB77B8B} O43 - CFD: 2011-08-09 - 01:40:54 - [0] ----D- C:\Users\Sylvie\AppData\Local\{8E71345B-8577-4F79-AB09-4730C1755DF5} O43 - CFD: 2011-08-11 - 17:59:00 - [0] ----D- C:\Users\Sylvie\AppData\Local\{90911DEF-9588-46B5-854E-88979C0815A2} O43 - CFD: 2011-04-20 - 07:12:36 - [0] ----D- C:\Users\Sylvie\AppData\Local\{950D732B-8E35-429A-909B-4F7E724697CF} O43 - CFD: 2011-05-14 - 11:55:52 - [0] ----D- C:\Users\Sylvie\AppData\Local\{96D1D569-8806-440C-AFC4-906F39253128} O43 - CFD: 2011-08-09 - 01:40:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{96E0C9A5-32C2-4886-86C0-E7AC78732341} O43 - CFD: 2011-05-13 - 23:55:28 - [0] ----D- C:\Users\Sylvie\AppData\Local\{976D649D-14BD-4ACA-AC23-3E53710A0D43} O43 - CFD: 2011-04-21 - 23:33:36 - [0] ----D- C:\Users\Sylvie\AppData\Local\{9854D8E2-4285-4A34-AAEE-5A0B8AE55E2F} O43 - CFD: 2011-08-01 - 21:38:08 - [0] ----D- C:\Users\Sylvie\AppData\Local\{986658E8-2729-45AB-8CAE-50F0F3CE794D} O43 - CFD: 2011-08-03 - 06:42:14 - [0] ----D- C:\Users\Sylvie\AppData\Local\{9953DB01-A5C4-49FF-B58F-AAFD65BD1E43} O43 - CFD: 2011-07-29 - 12:06:08 - [0] ----D- C:\Users\Sylvie\AppData\Local\{99D4E04F-C42F-4169-831F-2CC3116B9C70} O43 - CFD: 2011-07-31 - 22:31:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{99F94623-7CE4-4B7E-A45F-264B65D759B5} O43 - CFD: 2011-06-10 - 08:40:32 - [0] ----D- C:\Users\Sylvie\AppData\Local\{9A3D1D3E-447D-43E7-B56C-8F49E01561BE} O43 - CFD: 2011-05-18 - 21:47:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{9BD3FFDC-39E1-45ED-B17A-FF253481AD8F} O43 - CFD: 2011-03-13 - 22:24:50 - [0] ----D- C:\Users\Sylvie\AppData\Local\{9C2377B9-DA56-43F4-A283-AD49BEE9CA9F} O43 - CFD: 2011-07-29 - 21:38:54 - [0] ----D- C:\Users\Sylvie\AppData\Local\{9C3BD0AD-9375-4291-8761-75A11A4F2AD5} O43 - CFD: 2011-01-21 - 20:24:28 - [0] ----D- C:\Users\Sylvie\AppData\Local\{9C94A199-DB7B-422A-B70E-CD80970DB5B4} O43 - CFD: 2011-06-08 - 19:16:12 - [0] ----D- C:\Users\Sylvie\AppData\Local\{9D936C64-56DA-401F-BBE9-867508E424D7} O43 - CFD: 2011-08-25 - 03:57:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{9DB1B317-35EA-4EF6-90C5-CD63ED0B00CB} O43 - CFD: 2011-04-12 - 20:31:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{9E3E02C3-EB0B-4DAC-A396-76C102BA8016} O43 - CFD: 2011-01-15 - 20:00:14 - [0] ----D- C:\Users\Sylvie\AppData\Local\{9E3EE497-44F1-4314-9E04-8930F93775B5} O43 - CFD: 2011-03-16 - 20:23:10 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A03B6E21-F15E-479B-BBDA-F3F6D6F7D798} O43 - CFD: 2011-05-25 - 07:23:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A1017018-822D-40C4-B1CF-5E335A18D553} O43 - CFD: 2011-08-23 - 10:01:10 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A13FBEAB-646B-4F7E-8CC3-C2FBEFA3A20B} O43 - CFD: 2011-08-01 - 07:47:20 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A1CC6068-2CB1-41FD-A2F3-46DC27BFBDD9} O43 - CFD: 2011-04-11 - 20:12:38 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A2182211-A5F9-4051-8994-089511C34B49} O43 - CFD: 2011-04-07 - 22:43:06 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A22A3618-854D-4C0C-A50A-B695E2BDDA01} O43 - CFD: 2011-01-28 - 08:26:08 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A236B9A1-98E6-414D-91F1-A2E20FCF4F22} O43 - CFD: 2011-08-07 - 11:36:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A2F1E81C-3DBD-489A-9E13-C550769171C4} O43 - CFD: 2011-08-21 - 13:20:08 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A36B14AF-8917-41AF-9C69-E1E25AE2D0F9} O43 - CFD: 2011-08-17 - 16:16:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A4206A08-EB52-4FC4-87BD-18191C837380} O43 - CFD: 2011-08-12 - 09:20:22 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A4510CCA-3C7A-4313-AE91-68273875D9C5} O43 - CFD: 2011-08-07 - 04:49:32 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A5FA5888-73C8-47AF-BE25-A3BFFAE5BBD1} O43 - CFD: 2011-08-05 - 10:05:54 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A6B4FF77-F2A1-4E44-94AE-B99FF9EB4196} O43 - CFD: 2011-08-03 - 17:54:32 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A76A336B-91EF-4CEB-A4AB-B8CD2926019E} O43 - CFD: 2011-03-15 - 10:26:24 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A7A7ADFC-2766-4175-85A5-7428DC7B7750} O43 - CFD: 2011-08-05 - 22:59:10 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A7DE29B7-BD74-4498-95F6-284C33041BDE} O43 - CFD: 2011-05-31 - 06:16:10 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A8A8BAE8-A27E-4EB0-B97A-EFC765DA7028} O43 - CFD: 2011-01-20 - 12:11:26 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A96D16B0-1308-4F06-910D-2935127E42E3} O43 - CFD: 2011-04-27 - 23:00:12 - [0] ----D- C:\Users\Sylvie\AppData\Local\{A971FF5B-F76E-4106-8FC4-974A78C12EAA} O43 - CFD: 2011-08-09 - 11:47:56 - [0] ----D- C:\Users\Sylvie\AppData\Local\{ABBA9C17-08A7-48E4-AA35-96BBC96086C8} O43 - CFD: 2011-04-24 - 08:16:08 - [0] ----D- C:\Users\Sylvie\AppData\Local\{AC6CB39E-1B32-44C0-A031-2A3436FF0016} O43 - CFD: 2011-04-06 - 22:43:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{AE94DBC1-6184-4F13-9917-6536D3E0A6C7} O43 - CFD: 2011-05-02 - 21:45:24 - [0] ----D- C:\Users\Sylvie\AppData\Local\{B0479327-262A-4570-9C25-965368457A48} O43 - CFD: 2011-03-30 - 21:00:42 - [0] ----D- C:\Users\Sylvie\AppData\Local\{B0794C7E-EEF4-4E22-95DA-7D682AD912AC} O43 - CFD: 2011-08-01 - 09:10:52 - [0] ----D- C:\Users\Sylvie\AppData\Local\{B0F0935A-E2EF-44B7-8D8F-8069D0C4B484} O43 - CFD: 2011-02-21 - 17:39:54 - [0] ----D- C:\Users\Sylvie\AppData\Local\{B138060E-E233-4959-97A7-470FCFEE7E31} O43 - CFD: 2011-07-14 - 07:37:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{B1876EED-7EDA-43EB-B258-6A39067A423F} O43 - CFD: 2011-08-03 - 06:42:02 - [0] ----D- C:\Users\Sylvie\AppData\Local\{B252CCEC-2077-4798-AFAB-51112A6C46E5} O43 - CFD: 2011-04-05 - 11:03:12 - [0] ----D- C:\Users\Sylvie\AppData\Local\{B2A42BBD-8E81-411B-BDED-FD8548637FA5} O43 - CFD: 2011-05-05 - 20:40:56 - [0] ----D- C:\Users\Sylvie\AppData\Local\{B31A303C-98DA-45C9-B254-942F7F1BFC8E} O43 - CFD: 2011-08-03 - 17:54:20 - [0] ----D- C:\Users\Sylvie\AppData\Local\{B6556836-DF65-4837-B416-0E4CCC3B867D} O43 - CFD: 2011-04-29 - 06:09:06 - [0] ----D- C:\Users\Sylvie\AppData\Local\{B72F244F-869B-44DC-A5D7-A1AC8D175CB2} O43 - CFD: 2011-04-19 - 00:16:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{B80B017C-8368-40E2-8DCA-A1598E89B2AD} O43 - CFD: 2011-04-01 - 10:29:56 - [0] ----D- C:\Users\Sylvie\AppData\Local\{B87BAECF-13A3-431D-A3C6-DD30B793ED8A} O43 - CFD: 2011-07-27 - 07:34:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{B9CE2A50-AEA0-47B0-8042-3F86DA8E805D} O43 - CFD: 2011-02-25 - 10:53:58 - [0] ----D- C:\Users\Sylvie\AppData\Local\{BA82E5A7-5828-48BB-A328-62D4F7FAE063} O43 - CFD: 2011-08-13 - 13:34:52 - [0] ----D- C:\Users\Sylvie\AppData\Local\{BBA26233-4FCB-4BBA-9567-EC7ACFD85ACA} O43 - CFD: 2011-08-01 - 14:04:20 - [0] ----D- C:\Users\Sylvie\AppData\Local\{BBB48E43-3D9F-4F48-9B02-2FCCBDD3B092} O43 - CFD: 2011-01-16 - 10:36:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{BCB5E267-ED6C-4BDF-BD5E-7FE5F6AA2167} O43 - CFD: 2011-06-16 - 06:41:38 - [0] ----D- C:\Users\Sylvie\AppData\Local\{BD765E2E-DC4C-4A2B-A401-3091FB0F84DF} O43 - CFD: 2011-04-27 - 08:19:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{BD8C9732-BCED-4AE2-8A64-3613B9B48068} O43 - CFD: 2011-04-10 - 08:11:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{BDCF65D3-924B-410B-A8B6-E3EF50A05102} O43 - CFD: 2011-02-09 - 20:32:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{BDF2826E-AABF-4C4A-BB24-9C794215654F} O43 - CFD: 2011-08-04 - 07:59:24 - [0] ----D- C:\Users\Sylvie\AppData\Local\{BE3D0D8E-C93E-4084-A730-422488949F0A} O43 - CFD: 2011-02-04 - 07:54:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{BF69CAB0-BF66-4AC8-A275-82D2ED4D55BA} O43 - CFD: 2011-06-28 - 12:08:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{BFA54BEA-51C2-4C86-84E9-5CDA73E7A45E} O43 - CFD: 2011-03-01 - 23:18:06 - [0] ----D- C:\Users\Sylvie\AppData\Local\{C05DD9CA-4F69-4E56-8A8F-0EC049B46569} O43 - CFD: 2011-08-15 - 07:53:54 - [0] ----D- C:\Users\Sylvie\AppData\Local\{C0891BA8-FA70-44F3-BCE2-B0A240CDA772} O43 - CFD: 2011-06-17 - 08:26:00 - [0] ----D- C:\Users\Sylvie\AppData\Local\{C1F35A81-2133-4D54-BC66-22E67F079C0E} O43 - CFD: 2011-03-08 - 01:06:42 - [0] ----D- C:\Users\Sylvie\AppData\Local\{C205653A-3A21-4D8A-B6E8-1C7999ED79C4} O43 - CFD: 2011-07-31 - 22:31:56 - [0] ----D- C:\Users\Sylvie\AppData\Local\{C3C19A5B-51B0-4F8A-862C-2FDF4E7D1D60} O43 - CFD: 2011-08-16 - 17:38:02 - [0] ----D- C:\Users\Sylvie\AppData\Local\{C3D43ACF-867D-4A7C-9563-68ED968E8743} O43 - CFD: 2011-01-18 - 08:33:50 - [0] ----D- C:\Users\Sylvie\AppData\Local\{C4631335-942F-4309-A53F-EC12B4902F7F} O43 - CFD: 2011-08-02 - 08:00:20 - [0] ----D- C:\Users\Sylvie\AppData\Local\{C49BA7F9-72A5-4CF4-8AC9-41D26555CA46} O43 - CFD: 2011-05-03 - 10:58:02 - [0] ----D- C:\Users\Sylvie\AppData\Local\{C5B009CC-DC17-4603-A025-EDB11E0FF344} O43 - CFD: 2011-08-22 - 22:03:50 - [0] ----D- C:\Users\Sylvie\AppData\Local\{C5B7A96A-551F-4A2D-9817-50E33E5115EC} O43 - CFD: 2011-08-15 - 12:30:06 - [0] ----D- C:\Users\Sylvie\AppData\Local\{C765BC44-A565-4743-BD8D-299F0B6F02D9} O43 - CFD: 2011-05-07 - 07:31:50 - [0] ----D- C:\Users\Sylvie\AppData\Local\{C79ADAC4-E604-49A1-A35C-998473F74DC7} O43 - CFD: 2011-07-01 - 19:01:46 - [0] ----D- C:\Users\Sylvie\AppData\Local\{C8830316-3C69-4F1A-B4DF-D688DD8A7C50} O43 - CFD: 2011-03-01 - 11:02:18 - [0] ----D- C:\Users\Sylvie\AppData\Local\{C9534850-2C4E-45D2-917B-7DACDD0363B8} O43 - CFD: 2011-02-06 - 08:58:38 - [0] ----D- C:\Users\Sylvie\AppData\Local\{C9ADD7B7-AE7D-416B-93C4-89075E9FCC43} O43 - CFD: 2011-04-20 - 23:32:38 - [0] ----D- C:\Users\Sylvie\AppData\Local\{CA8A217C-7B6A-4F4F-B817-79BF516B2559} O43 - CFD: 2011-04-14 - 09:12:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{CAAD815D-B9E3-4ADF-92B9-18D1F45611A7} O43 - CFD: 2011-03-21 - 07:34:38 - [0] ----D- C:\Users\Sylvie\AppData\Local\{CAEA11A2-2E57-4D96-AC7E-D23DB894196A} O43 - CFD: 2011-08-17 - 16:16:46 - [0] ----D- C:\Users\Sylvie\AppData\Local\{CB713D08-FD4D-4200-94FC-9B8D2F8E2B14} O43 - CFD: 2011-02-14 - 10:10:28 - [0] ----D- C:\Users\Sylvie\AppData\Local\{CD5E7B91-F8B8-41AE-8766-DDC7C8A69B87} O43 - CFD: 2011-08-14 - 09:47:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{CD890ABA-FB9F-4CAC-87B2-FC9A0D14B7C1} O43 - CFD: 2011-08-11 - 23:13:12 - [0] ----D- C:\Users\Sylvie\AppData\Local\{CE1A1206-C12F-4BBB-96B1-6423C166939A} O43 - CFD: 2011-08-06 - 23:12:28 - [0] ----D- C:\Users\Sylvie\AppData\Local\{CE3D432D-6D47-4F99-8956-7713E6DA1E3A} O43 - CFD: 2011-07-28 - 07:35:58 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D01907D8-1F71-44A6-AF9D-4025C2F6F50A} O43 - CFD: 2011-07-19 - 13:18:38 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D097F60D-1CA7-4031-B7DE-7CAE15469768} O43 - CFD: 2011-07-26 - 15:32:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D0ADBCC2-F33A-4754-8286-62C017E12BAE} O43 - CFD: 2011-03-31 - 10:28:58 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D168BCAD-BBF9-4755-AD7E-944B3666B19D} O43 - CFD: 2011-05-26 - 07:58:36 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D1967EEE-758F-4D5F-A50C-59AE48A82233} O43 - CFD: 2011-07-02 - 07:02:08 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D1C6C071-5D6A-4ED0-99F7-81CDC36C468B} O43 - CFD: 2011-05-11 - 22:04:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D25BDB68-ECC6-4193-858D-75864FD0DC22} O43 - CFD: 2011-02-28 - 09:26:24 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D2A3E9A4-4B95-4FFB-BCD7-46BC2BA61F2B} O43 - CFD: 2011-08-09 - 00:34:26 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D46801CA-C677-40E2-9004-D02A74AB5A5A} O43 - CFD: 2011-08-12 - 23:57:06 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D46F7F08-E893-40F2-B87E-B371E70752E2} O43 - CFD: 2011-01-29 - 08:26:54 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D4C01002-82A5-4236-91DA-2BE80808A081} O43 - CFD: 2011-03-18 - 22:45:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D5E45CB1-413D-4252-A398-3FFA270EFC26} O43 - CFD: 2011-02-14 - 22:57:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D656039B-9302-4D18-AF0A-4E10DEB6D10E} O43 - CFD: 2011-07-27 - 19:35:24 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D6723082-E894-46D7-9012-3271B46AF0AD} O43 - CFD: 2011-01-22 - 08:49:06 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D6B1684D-EE99-4E5C-9ECA-267D96D46BC0} O43 - CFD: 2011-08-05 - 08:44:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D72579A1-D838-4769-B7B3-14EBE901A8BB} O43 - CFD: 2011-08-14 - 17:35:06 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D7758978-C351-4548-99B0-A7BECD259D55} O43 - CFD: 2011-04-30 - 06:31:12 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D7A1BCE6-DEEB-47F4-A0AE-96C54E72CB63} O43 - CFD: 2011-04-29 - 18:31:00 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D7AA4E53-A996-4A37-945F-EC5DADB8AC72} O43 - CFD: 2011-08-13 - 00:13:42 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D7B0195C-7F7A-4D8F-BD62-AD55BB9B778B} O43 - CFD: 2011-06-27 - 22:14:36 - [0] ----D- C:\Users\Sylvie\AppData\Local\{D9E98482-8E19-46E1-957B-E3CC5280CB53} O43 - CFD: 2011-07-30 - 00:02:38 - [0] ----D- C:\Users\Sylvie\AppData\Local\{DBA8CBEC-B132-42DC-B560-2FB00B528D78} O43 - CFD: 2011-08-12 - 23:56:56 - [0] ----D- C:\Users\Sylvie\AppData\Local\{DC4CC63B-65F0-45DC-9918-189392585CCD} O43 - CFD: 2011-06-07 - 06:49:02 - [0] ----D- C:\Users\Sylvie\AppData\Local\{DC8E3C30-6A56-47CD-BBA2-3AE6CF735076} O43 - CFD: 2011-08-05 - 08:44:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{DD0DF2D0-2470-4257-B2E4-9B6C2E89AA60} O43 - CFD: 2011-02-05 - 08:11:38 - [0] ----D- C:\Users\Sylvie\AppData\Local\{DD77C188-895D-4F1D-BACF-69752CEA9165} O43 - CFD: 2011-03-08 - 18:38:08 - [0] ----D- C:\Users\Sylvie\AppData\Local\{DD9ACFB1-18F3-4900-8052-2C3F9EB84C3F} O43 - CFD: 2011-07-25 - 06:39:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{DDB86615-04E7-4C3A-997E-BA9E73532C05} O43 - CFD: 2011-06-20 - 09:26:42 - [0] ----D- C:\Users\Sylvie\AppData\Local\{DE679D4C-DD75-40C7-8729-EA57CF609FAD} O43 - CFD: 2011-07-04 - 06:55:46 - [0] ----D- C:\Users\Sylvie\AppData\Local\{DEC93003-AC96-4C50-8CE0-A42CA021229F} O43 - CFD: 2011-01-31 - 19:27:52 - [0] ----D- C:\Users\Sylvie\AppData\Local\{E09C2317-DC3E-4F79-AD49-FD33F54E1558} O43 - CFD: 2011-08-12 - 23:56:44 - [0] ----D- C:\Users\Sylvie\AppData\Local\{E2221DDD-6F2F-4C32-AC94-3DBADD8DF69D} O43 - CFD: 2011-02-15 - 15:34:48 - [0] ----D- C:\Users\Sylvie\AppData\Local\{E228C736-3187-4B04-A5AE-46903026DCD8} O43 - CFD: 2011-08-06 - 23:12:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{E32AB3EF-7D29-4D1A-A8D6-6AAB8847B146} O43 - CFD: 2011-04-16 - 06:32:08 - [0] ----D- C:\Users\Sylvie\AppData\Local\{E4066775-4FF4-44BD-8F1E-231B3AFE2CAD} O43 - CFD: 2011-07-11 - 07:28:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{E5E2BF68-55FC-4427-8882-12A31AD48C2E} O43 - CFD: 2011-03-21 - 20:56:58 - [0] ----D- C:\Users\Sylvie\AppData\Local\{E813950E-6A44-42AB-951F-9B11B8706C93} O43 - CFD: 2011-07-10 - 08:00:34 - [0] ----D- C:\Users\Sylvie\AppData\Local\{E85D3A0E-2B3A-475E-AB1E-27AFE9D855B3} O43 - CFD: 2011-04-11 - 08:12:14 - [0] ----D- C:\Users\Sylvie\AppData\Local\{EA478281-9F4A-4FA2-B9D9-275B608AF625} O43 - CFD: 2011-04-22 - 13:30:20 - [0] ----D- C:\Users\Sylvie\AppData\Local\{EA9763B0-024F-4701-9B97-681A0327FFFD} O43 - CFD: 2011-04-03 - 20:27:46 - [0] ----D- C:\Users\Sylvie\AppData\Local\{EAE84683-5174-48E4-AFD5-E5F2E1F22166} O43 - CFD: 2011-08-02 - 10:35:02 - [0] ----D- C:\Users\Sylvie\AppData\Local\{EB377A3F-3924-4F00-8422-192EC5ED7A78} O43 - CFD: 2011-07-13 - 17:49:16 - [0] ----D- C:\Users\Sylvie\AppData\Local\{EB5B9277-3631-4C12-B28A-327B963F0795} O43 - CFD: 2011-04-19 - 06:43:28 - [0] ----D- C:\Users\Sylvie\AppData\Local\{ED75B6A1-6FC8-4E63-99A2-4C7C83123D49} O43 - CFD: 2011-06-20 - 21:28:18 - [0] ----D- C:\Users\Sylvie\AppData\Local\{EF6159C6-ADD7-4F0F-8DB0-87A65B61EDDF} O43 - CFD: 2011-07-05 - 08:20:14 - [0] ----D- C:\Users\Sylvie\AppData\Local\{EFC1D005-CC9C-4891-811D-50E0CEDAD5CA} O43 - CFD: 2011-02-12 - 00:40:56 - [0] ----D- C:\Users\Sylvie\AppData\Local\{F0A20217-81FF-4243-B209-0C1CD610E57E} O43 - CFD: 2011-02-22 - 10:28:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{F0AEDF10-D52B-4318-8B9A-9F24E7AC3B74} O43 - CFD: 2011-02-09 - 07:12:16 - [0] ----D- C:\Users\Sylvie\AppData\Local\{F0B6B02A-683B-44DB-B560-6E265805EE2B} O43 - CFD: 2011-04-18 - 00:07:18 - [0] ----D- C:\Users\Sylvie\AppData\Local\{F0F0DE32-AA1C-498A-8AB7-985793793777} O43 - CFD: 2011-02-11 - 09:12:40 - [0] ----D- C:\Users\Sylvie\AppData\Local\{F16F01DF-A28F-4D2A-9027-8580F4216533} O43 - CFD: 2011-04-02 - 00:24:56 - [0] ----D- C:\Users\Sylvie\AppData\Local\{F2582E4A-FF82-42E9-90CA-FC502542B52B} O43 - CFD: 2011-08-05 - 15:29:38 - [0] ----D- C:\Users\Sylvie\AppData\Local\{F2AF5398-0337-4E3A-B794-B1CF09620EBC} O43 - CFD: 2011-05-21 - 14:20:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{F3EDC4EE-270D-4BA1-8374-C4A58E645251} O43 - CFD: 2011-02-10 - 08:33:06 - [0] ----D- C:\Users\Sylvie\AppData\Local\{F42DF673-CEFB-4340-9E39-367DD0D21AB9} O43 - CFD: 2011-02-17 - 21:32:26 - [0] ----D- C:\Users\Sylvie\AppData\Local\{F50CC88D-975F-4C6C-A5E5-4EDD59562639} O43 - CFD: 2011-08-08 - 14:36:10 - [0] ----D- C:\Users\Sylvie\AppData\Local\{F84398FD-C129-4975-9BF3-715F38BBB26F} O43 - CFD: 2011-07-29 - 12:06:20 - [0] ----D- C:\Users\Sylvie\AppData\Local\{F9065725-3765-4F0D-87F1-91A87CC188E2} O43 - CFD: 2011-02-06 - 21:56:26 - [0] ----D- C:\Users\Sylvie\AppData\Local\{F97F0921-CFF8-4096-A97B-0A0ECDFF28EB} O43 - CFD: 2011-08-08 - 10:16:16 - [0] ----D- C:\Users\Sylvie\AppData\Local\{F9EEAD64-CE50-430A-A014-49CDE1CF27DC} O43 - CFD: 2011-05-02 - 07:31:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{FBFDFAD5-314C-4822-A498-1CA5BA13835A} O43 - CFD: 2011-04-02 - 12:25:32 - [0] ----D- C:\Users\Sylvie\AppData\Local\{FCB98D22-05EE-4988-8285-1D79E8E5E24B} O43 - CFD: 2011-06-15 - 10:24:16 - [0] ----D- C:\Users\Sylvie\AppData\Local\{FD50114D-0209-4E04-98DE-E34C1CED0085} O43 - CFD: 2011-08-09 - 00:34:14 - [0] ----D- C:\Users\Sylvie\AppData\Local\{FDE3DFBF-CD21-454C-A1FA-67E7127A7B2C} O43 - CFD: 2011-06-16 - 20:25:24 - [0] ----D- C:\Users\Sylvie\AppData\Local\{FEC4D31B-3A82-410A-A802-4D94B63B942A} O43 - CFD: 2011-03-30 - 07:33:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{FF5FC9A3-F1BD-472B-ABC5-DD91030B0B42} O43 - CFD: 2011-03-09 - 07:34:04 - [0] ----D- C:\Users\Sylvie\AppData\Local\{FF89D42D-2290-4577-82D6-B7FD25D39955} O43 - CFD: 2011-07-05 - 20:47:30 - [0] ----D- C:\Users\Sylvie\AppData\Local\{FF8CF07F-9B1D-406D-B502-B7F9286D95FC} O43 - CFD: 2011-08-04 - 10:41:06 - [0] ----D- C:\Users\Sylvie\AppData\Local\{FF9E3420-0017-4101-ABAC-265754B7123F} O43 - CFD: 2011-03-11 - 21:43:26 - [0] ----D- C:\Users\Sylvie\AppData\Local\{FFDD00EC-D15A-4363-9709-001BC54A55C6} ~ Scan Program Folder in 03mn 33s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.7A304370B439F3063956DEED51D43AB3] - 2009-08-02 - 08:59:51 ---A- . (...) -- C:\grldr.bak [171136] O44 - LFC:[MD5.7A304370B439F3063956DEED51D43AB3] - 2009-08-02 - 08:59:51 RSHA- . (...) -- C:\grldr [171136] O44 - LFC:[MD5.83EEB82E9ED7098EBC0C083C6BFD3116] - 2011-08-09 - 10:51:28 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\system32\FlashPlayerCPLApp.cpl [404640] O44 - LFC:[MD5.B3B94D14DFF5884542708A7B019D1040] - 2011-08-16 - 16:45:46 ---A- . (...) -- C:\Windows\PFRO.log [9250] O44 - LFC:[MD5.5FEDEF54757B34FB611B9EC8FB399364] - 2011-08-16 - 16:55:01 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\Windows\system32\drivers\avipbb.sys [137656] O44 - LFC:[MD5.47B879406246FFDCED59E18D331A0E7D] - 2011-08-16 - 16:55:01 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys [61960] O44 - LFC:[MD5.A36EE93698802CD899F98BFD553D8185] - 2011-08-16 - 16:55:03 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\system32\drivers\ssmdrv.sys [28520] O44 - LFC:[MD5.8A32846EA565AD91F8F58C530D9CAC6A] - 2011-08-23 - 08:36:31 RSH-- . (...) -- C:\XELD3 [171136] O44 - LFC:[MD5.DA60867E0327EE8993A0F685CCBB33D0] - 2011-08-23 - 08:36:31 RSH-- . (...) -- C:\XELD3.1st [9216] O44 - LFC:[MD5.15A4F358BFEA2C70CB050D0CF010EEB2] - 2011-08-23 - 08:36:31 RSH-- . (...) -- C:\bootxe3 [438840] O44 - LFC:[MD5.D320BF87125326F996D4904FE24300FC] - 2011-08-24 - 08:12:05 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [80256] O44 - LFC:[MD5.46387FB17B086D16DEA267D5BE23A2F2] - 2011-08-24 - 08:12:05 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [22400] O44 - LFC:[MD5.5CD5F9A5444E6CDCB0AC89BD62D8B76E] - 2011-08-24 - 08:12:05 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\system32\drivers\iaStorV.sys [332160] O44 - LFC:[MD5.B3E25EE28883877076E0E1FF877D02E0] - 2011-08-24 - 08:12:05 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [117120] O44 - LFC:[MD5.4380E59A170D88C4F1022EFF6719A8A4] - 2011-08-24 - 08:12:05 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [143744] O44 - LFC:[MD5.903D2A337EB5CC6546BFD5D46E86DBB0] - 2011-08-24 - 08:19:17 ---A- . (...) -- C:\Windows\system32\FNTCACHE.DAT [343648] O44 - LFC:[MD5.91EFB1E6AF9293598607B356C09D882B] - 2011-08-24 - 08:37:13 ---A- . (...) -- C:\Windows\MEMORY.DMP [246402950] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 2011-08-24 - 08:37:16 ---A- . (...) -- C:\Windows\1581444177 [0] O44 - LFC:[MD5.DD7E3F628EC1BA51B597962E9A2ADE8F] - 2011-08-24 - 18:10:57 ---A- . (...) -- C:\TDSSKiller.2.5.17.0_24.08.2011_19.04.52_log.txt [69112] O44 - LFC:[MD5.9D183B4FC060338200C61040D987C8C6] - 2011-08-24 - 18:12:03 ---A- . (...) -- C:\Windows\setupact.log [31694] O44 - LFC:[MD5.A0B267931CCDDFB0C9F3DD5D95CBA5D9] - 2011-08-24 - 18:17:45 --HA- . (...) -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [23824] O44 - LFC:[MD5.A0B267931CCDDFB0C9F3DD5D95CBA5D9] - 2011-08-24 - 18:17:45 --HA- . (...) -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [23824] O44 - LFC:[MD5.1BFC7EA3D23872141A8D5533B62EA8F0] - 2011-08-24 - 19:13:20 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.7C1205D94DD915BB2BAFC7F0AE64C8A5] - 2011-08-24 - 19:41:05 -SHA- . (...) -- C:\Windows\system32\c_73255.nl_ [43408] O44 - LFC:[MD5.8A21F91019257D277321AB14AA9632C3] - 2011-08-24 - 19:57:49 ---A- . (...) -- C:\Windows\system32\perfd01F.dat [37160] O44 - LFC:[MD5.3D8464F5516E2553A62B2262937B0711] - 2011-08-24 - 19:57:49 ---A- . (...) -- C:\Windows\system32\perfi01F.dat [285034] O44 - LFC:[MD5.3EEFE5864B1BC5D9A5C0B1299F8C107B] - 2011-08-24 - 20:41:34 ---A- . (...) -- C:\Windows\system32\prfd0416.dat [38536] O44 - LFC:[MD5.399F4D9A97795D47B0C0ECE16AB8AD4C] - 2011-08-24 - 20:41:34 ---A- . (...) -- C:\Windows\system32\prfi0416.dat [323154] O44 - LFC:[MD5.5A547E2DF89D05428B2F97DADE3B6E56] - 2011-08-24 - 21:06:42 ---A- . (...) -- C:\Windows\system32\perfd019.dat [39446] O44 - LFC:[MD5.46E0668B67D27ABAB17EBF44E36E973B] - 2011-08-24 - 21:06:42 ---A- . (...) -- C:\Windows\system32\perfi019.dat [336704] O44 - LFC:[MD5.D5400AB7C53CBDCDBA4C0A6458D96D99] - 2011-08-24 - 21:25:18 ---A- . (...) -- C:\Windows\system32\perfd015.dat [38710] O44 - LFC:[MD5.CD39429F924BDCB8C70298DFD481E8BA] - 2011-08-24 - 21:25:18 ---A- . (...) -- C:\Windows\system32\perfi015.dat [337158] O44 - LFC:[MD5.7AAA3E23CE4C7845B112F7A79B110E60] - 2011-08-24 - 21:49:11 ---A- . (...) -- C:\Windows\system32\prfd0404.dat [31548] O44 - LFC:[MD5.7EA6238ADEB79DF41A31283D7847FE5E] - 2011-08-24 - 21:49:11 ---A- . (...) -- C:\Windows\system32\prfi0404.dat [117840] O44 - LFC:[MD5.B781DCB559F2CA18F820C6968BC6817B] - 2011-08-24 - 22:18:45 ---A- . (...) -- C:\Windows\system32\perfd00A.dat [41390] O44 - LFC:[MD5.2729DEBBDC678DE0CBD778F823E3A27C] - 2011-08-24 - 22:18:45 ---A- . (...) -- C:\Windows\system32\perfi00A.dat [341432] O44 - LFC:[MD5.8D24C9271FF10A88CBDBB390615BA4B9] - 2011-08-24 - 22:42:48 ---A- . (...) -- C:\Windows\system32\perfd006.dat [39236] O44 - LFC:[MD5.06CDFDE8941EBEBB04222DEAA0597A7D] - 2011-08-24 - 22:42:48 ---A- . (...) -- C:\Windows\system32\perfi006.dat [306636] O44 - LFC:[MD5.E3CA25699D5FA7D4679C2ADBF54966F6] - 2011-08-24 - 23:06:39 ---A- . (...) -- C:\Windows\system32\prfd0816.dat [40548] O44 - LFC:[MD5.8776482629FF81F2FDB6610A66C97EE4] - 2011-08-24 - 23:06:39 ---A- . (...) -- C:\Windows\system32\prfi0816.dat [336656] O44 - LFC:[MD5.4EDCEB48F0D4808C155DEF613F75471F] - 2011-08-24 - 23:33:59 ---A- . (...) -- C:\Windows\system32\perfd001.dat [42056] O44 - LFC:[MD5.DEAE19B45437F21A971D25145E80E093] - 2011-08-24 - 23:33:59 ---A- . (...) -- C:\Windows\system32\perfi001.dat [289060] O44 - LFC:[MD5.450B1A03967FF8296D97E1D4DDD66F26] - 2011-08-24 - 23:58:03 ---A- . (...) -- C:\Windows\system32\perfd005.dat [36232] O44 - LFC:[MD5.F6298FE67F335770017B4F969E1EA8F6] - 2011-08-24 - 23:58:03 ---A- . (...) -- C:\Windows\system32\perfi005.dat [292004] O44 - LFC:[MD5.44869CF36F828490C320281AE16D6533] - 2011-08-25 - 00:29:43 ---A- . (...) -- C:\Windows\system32\perfd010.dat [37534] O44 - LFC:[MD5.BDF4F4DB2AEFC3AE41F481810D1F1549] - 2011-08-25 - 00:29:43 ---A- . (...) -- C:\Windows\system32\perfi010.dat [335478] O44 - LFC:[MD5.E59709F8FADF6E059EF169AA49D4B043] - 2011-08-25 - 01:16:29 ---A- . (...) -- C:\Windows\system32\perfd008.dat [45182] O44 - LFC:[MD5.7349DA6BFC838926F88BFF785F1BCD92] - 2011-08-25 - 01:16:29 ---A- . (...) -- C:\Windows\system32\perfi008.dat [369984] O44 - LFC:[MD5.5243507049F2BACC55F5AB80EF5DA949] - 2011-08-25 - 02:14:53 ---A- . (...) -- C:\Windows\system32\perfd014.dat [36156] O44 - LFC:[MD5.3B3EBA1AD31F12894AEC4AF01D445140] - 2011-08-25 - 02:14:53 ---A- . (...) -- C:\Windows\system32\perfi014.dat [298300] O44 - LFC:[MD5.2BCC97CF89164E6AB9C6F583B2A0C8E5] - 2011-08-25 - 02:44:08 ---A- . (...) -- C:\Windows\system32\perfd013.dat [43068] O44 - LFC:[MD5.099814DA329A976F8E2DBE5EC3F073D0] - 2011-08-25 - 02:44:08 ---A- . (...) -- C:\Windows\system32\perfi013.dat [341322] O44 - LFC:[MD5.B1F6278EC9E27F016DAFF4BADD4D5544] - 2011-08-25 - 03:21:02 ---A- . (...) -- C:\Windows\system32\perfd00D.dat [32166] O44 - LFC:[MD5.462519A6822AE0D531708E9424181AC5] - 2011-08-25 - 03:21:02 ---A- . (...) -- C:\Windows\system32\perfi00D.dat [229316] O44 - LFC:[MD5.78B6F0C1136D84A7B5303785BB8B6102] - 2011-08-25 - 03:58:08 ---A- . (...) -- C:\Windows\system32\perfd00B.dat [38258] O44 - LFC:[MD5.386AA73A31A7C12272FFBCEDF749A37B] - 2011-08-25 - 03:58:08 ---A- . (...) -- C:\Windows\system32\perfi00B.dat [279790] O44 - LFC:[MD5.67F4A690E34E6D62D0D8D7C0D81856D6] - 2011-08-25 - 04:05:47 ---A- . (...) -- C:\Windows\system32\PerfStringBackup.INI [13229400] O44 - LFC:[MD5.F045239384A8C3BDE366D8A500AD01DF] - 2011-08-25 - 05:21:31 ---A- . (...) -- C:\Windows\system32\perfd00E.dat [48094] O44 - LFC:[MD5.DAB2AC52EEED60C00C379C459EE844D1] - 2011-08-25 - 05:21:31 ---A- . (...) -- C:\Windows\system32\perfi00E.dat [287518] O44 - LFC:[MD5.7AAA3E23CE4C7845B112F7A79B110E60] - 2011-08-25 - 06:22:22 ---A- . (...) -- C:\Windows\system32\perfd011.dat [31548] O44 - LFC:[MD5.662686A55F1CCF3E9031CD70CDAABAA1] - 2011-08-25 - 06:22:22 ---A- . (...) -- C:\Windows\system32\perfi011.dat [141988] O44 - LFC:[MD5.FDCC2062FE19E065AC7D83162CB7231A] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc001.dat [78984] O44 - LFC:[MD5.D3CAF7C5A4B8A261E6C4311EAC4284D8] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc005.dat [121788] O44 - LFC:[MD5.093761F1C88B63500F14606BD474805A] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc006.dat [79804] O44 - LFC:[MD5.FADF460003F4D4FD3B44CF0ACA3E1458] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc007.dat [129540] O44 - LFC:[MD5.ED3ECD5517868AA36863C6AAF3AD96E2] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc008.dat [89436] O44 - LFC:[MD5.0C0645A47107D976186498ECF022F9C5] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc009.dat [106388] O44 - LFC:[MD5.E90C04F11172CD212675566C8114B171] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc00A.dat [137062] O44 - LFC:[MD5.A50B84277062DEE0DFF3A04DD4356940] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc00B.dat [82148] O44 - LFC:[MD5.17FB6FFD379DD5CE34892A6102983D8F] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc00C.dat [130754] O44 - LFC:[MD5.F3FECC7E6FA2D4CE094F66B5AB785A5F] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc00D.dat [69094] O44 - LFC:[MD5.953041B2762575C35382D9F9776D309A] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc00E.dat [148310] O44 - LFC:[MD5.B1656185335A255053C187C0D5290271] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc010.dat [127144] O44 - LFC:[MD5.31C0D01DEB7EAEDF12420C2740332CDB] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc013.dat [132940] O44 - LFC:[MD5.29FBEFF7B35B8F97379452E9535043F7] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc014.dat [77096] O44 - LFC:[MD5.338740EE62D700A1E3E1DBFF24214859] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc015.dat [134840] O44 - LFC:[MD5.C57DE086FBD09A0695E2A1FFE96E9B8C] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc019.dat [132516] O44 - LFC:[MD5.AB3A8296F99F58E2A147A37327B5174E] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfc01F.dat [121526] O44 - LFC:[MD5.5C2EDD125BAE0913D189FF8B082C77B1] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh001.dat [434486] O44 - LFC:[MD5.C1E2C4348163EDA9C800B147853F361C] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh005.dat [623144] O44 - LFC:[MD5.FEE5EA65BDFE2E7A01513E0224E148D7] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh006.dat [462172] O44 - LFC:[MD5.49C718AAE342E6574FFCEEFC128F736C] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh007.dat [643836] O44 - LFC:[MD5.C8D637A60D1DBC1398E8E7EB0B4F66C6] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh008.dat [551770] O44 - LFC:[MD5.2FAEDB2B34F99998BF36057848AEE5C8] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh009.dat [616008] O44 - LFC:[MD5.4ACCA40290A66C26D024A24E5B36CE30] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh00A.dat [693454] O44 - LFC:[MD5.2FD0CDE863C7FE2842506CC2A7EB0A0A] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh00B.dat [433388] O44 - LFC:[MD5.15DC4D8EC00F4C31DEC5B0429AD97BE9] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh00C.dat [704480] O44 - LFC:[MD5.87CB8A9F02DBDEB0DFE704F57052647D] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh00D.dat [353522] O44 - LFC:[MD5.5955DAE75B459117C57D1E3253D5E111] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh00E.dat [632180] O44 - LFC:[MD5.4E1D120727BD644371C033A28E99CC66] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh010.dat [689108] O44 - LFC:[MD5.BDD602EFA5BBBCE87598D60856667DB0] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh013.dat [691192] O44 - LFC:[MD5.0EBFB76E662841017F73C7CA8AC4B0C9] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh014.dat [448586] O44 - LFC:[MD5.B08581C99E6E3BC8FF4CC8B3046D5C3C] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh015.dat [689726] O44 - LFC:[MD5.8F838F053DE06AAEE9F0C2ADEE92247D] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh019.dat [675958] O44 - LFC:[MD5.FB180C9D3649D2A0A99271E6D681AABF] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\perfh01F.dat [610202] O44 - LFC:[MD5.5E5F56C68E7E93F543321AB33B8938AC] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\prfc0404.dat [99334] O44 - LFC:[MD5.799EA857798F260D709F41EA8FD7FC69] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\prfc0416.dat [128094] O44 - LFC:[MD5.BB52E5064AFB15EAC3D01CB9BDAF3A99] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\prfc0816.dat [133752] O44 - LFC:[MD5.6ED78BEEC42E14E64BC3642BDD1DD78C] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\prfh0404.dat [377870] O44 - LFC:[MD5.1D80F193DF593A78F4E76C03F5499F30] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\prfh0416.dat [663804] O44 - LFC:[MD5.FF9AD38E312EE94C1DE6352A98B6F508] - 2011-08-25 - 06:31:14 ---A- . (...) -- C:\Windows\system32\prfh0816.dat [679342] O44 - LFC:[MD5.EDCE6B67D46559542E9F3657E6B6B8DE] - 2011-08-25 - 06:31:16 ---A- . (...) -- C:\Windows\system32\perfc011.dat [106388] O44 - LFC:[MD5.34666D9F3845A38BE57A58ECF3984236] - 2011-08-25 - 06:31:16 ---A- . (...) -- C:\Windows\system32\perfh011.dat [388518] O44 - LFC:[MD5.8B918E3F0A8A9A2AE6AEDC3DE2635553] - 2011-08-25 - 08:07:19 ---A- . (...) -- C:\TDSSKiller.2.5.17.0_25.08.2011_08.56.00_log.txt [67490] O44 - LFC:[MD5.AF776D496D189175E4B8117471EF1346] - 2011-08-25 - 08:45:19 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1089816] ~ Scan Files in 01mn 41s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\57220448.sys . (...) -- C:\Windows\system32\Drivers\57220448.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\57220448.sys . (...) -- C:\Windows\system32\Drivers\57220448.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\system32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\system32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\system32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys ~ Scan CSB in 00mn 00s ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\system32\iccvid.dll O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ~ Scan Keys in 00mn 01s ---\\ ShareTools MSconfig StartupReg (O53) O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe O53 - SMSR:HKLM\...\startupreg\Malwarebytes' Anti-Malware (reboot) [Key] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe ~ Scan SMSR Keys in 00mn 00s ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ~ Scan Keys in 00mn 00s ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 2009-06-10 - 20:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [422976] O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 2009-07-13 - 20:26:17 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [297552] O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 2009-07-13 - 20:26:15 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [146512] O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 2009-07-13 - 20:26:15 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [14400] O58 - SDL:[MD5.D320BF87125326F996D4904FE24300FC] - 2011-08-24 - 00:38:37 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [80256] O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 2009-06-10 - 20:26:15 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\system32\drivers\amdsbs.sys [159312] O58 - SDL:[MD5.46387FB17B086D16DEA267D5BE23A2F2] - 2011-08-24 - 00:38:37 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [22400] O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 2009-07-13 - 20:26:15 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [76368] O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 2009-07-13 - 20:26:15 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [86608] O58 - SDL:[MD5.47B879406246FFDCED59E18D331A0E7D] - 2011-08-16 - 10:33:06 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys [61960] O58 - SDL:[MD5.5FEDEF54757B34FB611B9EC8FB399364] - 2011-08-16 - 10:33:06 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\Windows\system32\drivers\avipbb.sys [137656] O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 2009-07-13 - 17:02:49 ---A- . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gigabit Ethernet..) -- C:\Windows\system32\drivers\b57nd60x.sys [229888] O58 - SDL:[MD5.F9CE9B5E049EFC66B8E6C73C18EE8438] - 2009-07-08 - 00:45:32 ---A- . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless driver.) -- C:\Windows\system32\drivers\BCMWL6.SYS [2506232] O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 2009-07-13 - 17:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568] O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 2009-07-13 - 17:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248] O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 2009-07-13 - 19:57:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [272128] O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 2009-07-13 - 17:53:32 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336] O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 2009-07-13 - 17:53:33 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160] O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 2009-07-13 - 17:53:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904] O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 2009-06-10 - 17:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbdx.sys [430080] O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 2009-07-13 - 20:26:21 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [15952] O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 2009-06-10 - 20:20:28 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [70720] O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 2009-06-10 - 20:20:28 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [453712] O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 2009-06-10 - 17:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbdx.sys [3100160] O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 2009-07-13 - 17:54:14 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [26624] O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 2009-07-13 - 20:20:28 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [67152] O58 - SDL:[MD5.5CD5F9A5444E6CDCB0AC89BD62D8B76E] - 2011-08-24 - 00:38:51 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\system32\drivers\iaStorV.sys [332160] O58 - SDL:[MD5.9467514EA189475A6E7FDC5D7BDE9D3F] - 2009-09-23 - 19:18:14 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd32.sys [4808192] O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 2009-07-13 - 20:20:36 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41040] O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 2009-07-13 - 20:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [95824] O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 2009-07-13 - 20:20:37 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [89168] O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 2009-07-13 - 20:20:36 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [54864] O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 2009-07-13 - 20:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [96848] O58 - SDL:[MD5.67B48A903430C6D4FB58CBACA1866601] - 2011-01-14 - 14:39:26 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [20952] O58 - SDL:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 2011-08-23 - 14:39:38 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys [38224] O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 2009-06-10 - 20:20:36 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\Windows\system32\drivers\megasas.sys [30800] O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 2009-07-13 - 20:20:36 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [235584] O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 2009-07-13 - 20:20:44 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [44624] O58 - SDL:[MD5.B3E25EE28883877076E0E1FF877D02E0] - 2011-08-24 - 00:39:00 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [117120] O58 - SDL:[MD5.4380E59A170D88C4F1022EFF6719A8A4] - 2011-08-24 - 00:39:00 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [143744] O58 - SDL:[MD5.63200893C9D5934A7504D20F68276CC7] - 2011-01-14 - 18:05:18 ---A- . (.Cisco Systems, Inc. - Address Resolution Protocol Driver.) -- C:\Windows\system32\drivers\pnarp.sys [24880] O58 - SDL:[MD5.748BCAB4EFF5959ED347C05A1C1A0AF8] - 2011-01-14 - 18:05:18 ---A- . (.Cisco Systems, Inc. - NDIS Relay Driver.) -- C:\Windows\system32\drivers\purendis.sys [26416] O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 2009-06-10 - 20:19:04 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1383488] O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 2009-07-13 - 20:19:04 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106064] O58 - SDL:[MD5.DF672613FBBCD58C38BB0BC2694BCFB0] - 2011-01-14 - 16:58:10 ---A- . (.REDC - RICOH SD/MMC Driver.) -- C:\Windows\system32\drivers\rimmptsk.sys [48128] O58 - SDL:[MD5.9BFB54D3559F2FF7301271D29D383564] - 2011-01-14 - 16:10:48 ---A- . (.REDC - RICOH MS Driver.) -- C:\Windows\system32\drivers\rimsptsk.sys [44544] O58 - SDL:[MD5.DCB87DA83CC1010CBC9FC4DC9E395BBC] - 2011-01-14 - 16:25:58 ---A- . (.REDC - RICOH XD SM Driver.) -- C:\Windows\system32\drivers\rixdptsk.sys [38400] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 2009-07-13 - 15:50:20 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 2009-06-10 - 20:19:04 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [40016] O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 2009-07-13 - 20:19:04 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [77888] O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 2011-08-16 - 14:28:02 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\system32\drivers\ssmdrv.sys [28520] O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 2009-07-13 - 20:19:04 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [21072] O58 - SDL:[MD5.68A0D39E357DD7A234B1D4F1E844C615] - 2011-02-11 - 18:27:02 ---A- . (.IDT, Inc. - NDHF.) -- C:\Windows\system32\drivers\stwrt.sys [330752] O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 2009-07-13 - 20:19:10 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [16976] O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 2009-06-10 - 20:19:11 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [141904] O58 - SDL:[MD5.E00FDFAFF025E94F9821153750C35A6D] - 2009-07-13 - 17:13:45 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\VSTAZL3.SYS [207360] O58 - SDL:[MD5.BC0C7EA89194C299F051C24119000E17] - 2009-07-13 - 17:13:45 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\VSTCNXT3.SYS [661504] O58 - SDL:[MD5.CEB4E3B6890E1E42DCA6694D9E59E1A0] - 2009-07-13 - 17:13:46 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\VSTDPV3.SYS [980992] O58 - SDL:[MD5.30B73EB97218A16CBC6DE535782A1B35] - 2009-09-28 - 09:22:00 ---A- . (...) -- C:\Windows\system32\drivers\yk62x86.sys [315392] O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 2009-07-13 - 16:40:41 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 2009-07-13 - 16:40:44 ---A- . (...) -- C:\Windows\system32\country.sys [27097] O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 2009-07-13 - 16:40:40 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768] O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 2009-07-13 - 16:40:43 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 2009-07-13 - 16:40:43 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537] O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 2009-07-13 - 16:40:23 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 2009-07-13 - 16:40:31 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 2009-07-13 - 16:40:35 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 2009-07-13 - 16:40:39 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 2009-07-13 - 16:40:27 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146] O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 2009-07-13 - 16:40:11 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952] O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 2009-07-13 - 16:40:15 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672] O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 2009-07-13 - 16:40:17 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776] O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 2009-07-13 - 16:40:19 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536] O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 2009-07-13 - 16:40:13 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672] ~ Scan Drivers in 00mn 28s ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ~ Scan ADS in 00mn 00s ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - 2011-07-20 - C:\Windows\system32\DRIVERS\avgntflt.sys - No object(No service) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT O64 - Services: CurCS - 2011-07-20 - C:\Windows\system32\DRIVERS\avipbb.sys - No object(No service) .(.Avira GmbH - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB O64 - Services: CurCS - 2008-12-12 - C:\Windows\system32\DRIVERS\pnarp.sys - No object(No service) .(.Cisco Systems, Inc. - Address Resolution Protocol Driver.) - LEGACY_PNARP O64 - Services: CurCS - 2008-12-12 - C:\Windows\system32\DRIVERS\purendis.sys - No object(No service) .(.Cisco Systems, Inc. - NDIS Relay Driver.) - LEGACY_PURENDIS O64 - Services: CurCS - 2010-06-17 - C:\Windows\system32\DRIVERS\ssmdrv.sys - No object(No service) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV ~ Scan Services in 00mn 03s ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (. - .) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <Opera.HTML>[HKLM\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\Opera.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <Opera.HTML>[HKCR\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\Opera.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ~ Scan Keys in 00mn 01s ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O68 - StartMenuInternet: <Opera> <Opera>[HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\Opera.exe ~ Scan Keys in 00mn 00s ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {1A29B403-7F40-4B33-90CE-CBAE7BFF9F95} - (Google) - Google O69 - SBI: SearchScopes [HKCU] {36377DD7-B3EB-42f5-986F-680BAF59BA9D} - (Web Search) - I-play Web Search O69 - SBI: SearchScopes [HKCU] {5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} - (ALOT Search) - ALOT Search Powered by Google O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (ALOT Search) - Google O69 - SBI: SearchScopes [HKCU] {70D46D94-BF1E-45ED-B567-48701376298E} - (Google Desktop) - http://127.0.0.1:4664/search&s=duiM0aE4OXg-VJSdDpbZyIGizPc?q={searchTerms} ~ Scan Keys in 00mn 00s ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.F50B8A4C009AF0BC9ACD5FC358EA4221] [sPRF][2011-01-14] (...) -- C:\Users\Sylvie\AppData\Local\Temp\bassmod.dll [9728] [MD5.5A432A042DAE460ABE7199B758E8606C] [sPRF][2008-11-08] (.Microsoft Corporation - Office Source Engine.) -- C:\Users\Sylvie\AppData\Local\Temp\ose00000.exe [145184] [MD5.5A432A042DAE460ABE7199B758E8606C] [sPRF][2008-11-08] (.Microsoft Corporation - Office Source Engine.) -- C:\Users\Sylvie\AppData\Local\Temp\ose00001.exe [145184] [MD5.5E732E829E86B7E83D389F4A385E1896] [sPRF][2011-01-14] (.StaticBackup Inc. - Static Windows Mail Backup Setup.) -- C:\Users\Sylvie\AppData\Local\Temp\TomsDownloader5739.exe [3939020] [MD5.7D7B1F8578F2F946A61A015AA44ADCF5] [sPRF][2011-03-10] (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller 10.2 r153.) -- C:\Windows\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [2872992] ~ Scan Files in 00mn 02s ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "{FD766F9E-D640-488F-BFBB-9318F6B56A9C}" | In - Private - P6 - TRUE | .(.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\opera.exe O87 - FAEL: "{601496A3-DB4C-4745-8304-E1B84C30AC91}" | In - Private - P17 - TRUE | .(.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\opera.exe O87 - FAEL: "{FA9A371C-845C-46C8-B2BD-DF9BE51DBDF9}" | In - None - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe O87 - FAEL: "{2B430454-6AB9-4724-9387-7641CC9A1688}" | In - None - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe O87 - FAEL: "TCP Query User{7C435182-CE71-444E-A612-BCEBDA6A1787}C:\program files\avira\antivir desktop\avnotify.exe" | In - Private - P6 - TRUE | .(.Avira GmbH - Notification Tool.) -- C:\program files\avira\antivir desktop\avnotify.exe O87 - FAEL: "UDP Query User{F9ADD075-76DA-40D4-8FF5-5CF454A11DB0}C:\program files\avira\antivir desktop\avnotify.exe" | In - Private - P17 - TRUE | .(.Avira GmbH - Notification Tool.) -- C:\program files\avira\antivir desktop\avnotify.exe O87 - FAEL: "TCP Query User{18BA8C4C-A9E2-49B0-8483-FA88AF3E7D28}C:\users\sylvie\appdata\local\météomédia\météoéclair\weathereye.exe" | In - Private - P6 - TRUE | .(.Pelmorex Media Inc..) -- C:\users\sylvie\appdata\local\météomédia\météoéclair\weathereye O87 - FAEL: "UDP Query User{D767CA78-0632-4913-BCCF-BCBC3CB13508}C:\users\sylvie\appdata\local\météomédia\météoéclair\weathereye.exe" | In - Private - P17 - TRUE | .(.Pelmorex Media Inc..) -- C:\users\sylvie\appdata\local\météomédia\météoéclair\weatherey O87 - FAEL: "TCP Query User{EDC72983-7B1E-4258-A62D-7C097A3F2D2A}C:\windows\system32\macromed\flash\flashutil10t_plugin.exe" | In - Private - P6 - TRUE | .(.Adobe Systems, Inc..) -- C:\windows\system32\macromed\flash\flashutil10t_plugin.exe O87 - FAEL: "UDP Query User{24A551A5-C407-4FC4-A859-3B9B776309B2}C:\windows\system32\macromed\flash\flashutil10t_plugin.exe" | In - Private - P17 - TRUE | .(.Adobe Systems, Inc..) -- C:\windows\system32\macromed\flash\flashutil10t_plugin.exe O87 - FAEL: "TCP Query User{178917D2-DF45-4F70-8537-0EB8B3081EEB}C:\users\sylvie\appdata\local\météomédia\météoéclair\weathereye.exe" | In - Public - P6 - TRUE | .(.Pelmorex Media Inc..) -- C:\users\sylvie\appdata\local\météomédia\météoéclair\weathereye. O87 - FAEL: "UDP Query User{8150E299-225B-4B75-953F-9811B09AC83E}C:\users\sylvie\appdata\local\météomédia\météoéclair\weathereye.exe" | In - Public - P17 - TRUE | .(.Pelmorex Media Inc..) -- C:\users\sylvie\appdata\local\météomédia\météoéclair\weathereye O87 - FAEL: "TCP Query User{34E24775-B3A0-4E3C-9FDC-2054C98A042F}C:\program files\avira\antivir desktop\setup.exe" | In - Private - P6 - TRUE | .(.Avira GmbH - Pas de description.) -- C:\program files\avira\antivir desktop\setup.exe O87 - FAEL: "UDP Query User{F8B4CCCD-F402-454E-853B-2F4D70AEB332}C:\program files\avira\antivir desktop\setup.exe" | In - Private - P17 - TRUE | .(.Avira GmbH - Pas de description.) -- C:\program files\avira\antivir desktop\setup.exe O87 - FAEL: "{791140C7-8E4E-49A3-98D9-29DACA70F822}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe (.not file.) O87 - FAEL: "{93149199-2DE5-417F-A302-39A139E2C547}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe (.not file.) O87 - FAEL: "TCP Query User{5F8AA765-85C0-401C-9572-297B177AF72C}C:\users\sylvie\appdata\local\temp\rarsfx1\fact.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\sylvie\appdata\local\temp\rarsfx1\fact.exe (.not file.) O87 - FAEL: "UDP Query User{9026D9F5-0C49-4932-BCF0-A53E38F3DE48}C:\users\sylvie\appdata\local\temp\rarsfx1\fact.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\sylvie\appdata\local\temp\rarsfx1\fact.exe (.not file.) O87 - FAEL: "TCP Query User{41579A97-929E-411A-B0E1-1C5EEDFC1A7B}C:\program files\malwarebytes' anti-malware\mbam.exe" | In - Private - P6 - TRUE | .(.Malwarebytes Corporation.) -- C:\program files\malwarebytes' anti-malware\mbam.exe O87 - FAEL: "UDP Query User{BBEB605E-89B3-4255-A3B4-C98B93722BBB}C:\program files\malwarebytes' anti-malware\mbam.exe" | In - Private - P17 - TRUE | .(.Malwarebytes Corporation.) -- C:\program files\malwarebytes' anti-malware\mbam.exe O87 - FAEL: "TCP Query User{E94B053E-C630-4169-B9E5-D4BCEF6061D3}C:\program files\opera\opera.exe" | In - Public - P6 - TRUE | .(.Opera Software - Opera Internet Browser.) -- C:\program files\opera\opera.exe O87 - FAEL: "UDP Query User{EE1A3952-F3A7-4DFF-8494-1281BE5DCED5}C:\program files\opera\opera.exe" | In - Public - P17 - TRUE | .(.Opera Software - Opera Internet Browser.) -- C:\program files\opera\opera.exe O87 - FAEL: "TCP Query User{C7BD3654-2192-4D94-B615-2D816A946147}C:\program files\adobe\reader 10.0\reader\acrord32.exe" | In - Private - P6 - TRUE | .(.Adobe Systems Incorporated.) -- C:\program files\adobe\reader 10.0\reader\acrord32.exe O87 - FAEL: "UDP Query User{435231DE-6BEE-4FCE-815A-7F0DE49B5E06}C:\program files\adobe\reader 10.0\reader\acrord32.exe" | In - Private - P17 - TRUE | .(.Adobe Systems Incorporated.) -- C:\program files\adobe\reader 10.0\reader\acrord32.exe O87 - FAEL: "TCP Query User{124040EE-920D-4CDB-80A8-16D3CD4AC482}C:\users\sylvie\desktop\w7lxe.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\sylvie\desktop\w7lxe.exe (.not file.) O87 - FAEL: "UDP Query User{D954F35B-D5B2-4157-9070-10245C308889}C:\users\sylvie\desktop\w7lxe.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\sylvie\desktop\w7lxe.exe (.not file.) O87 - FAEL: "TCP Query User{2BF63BC7-8D6A-4F17-A765-57EB1102C84D}C:\program files\zhpdiag\zhpdiag.exe" | In - Private - P6 - TRUE | .(.Nicolas Coolman - Diagnostic Tool.) -- C:\program files\zhpdiag\zhpdiag.exe O87 - FAEL: "UDP Query User{36BDEE80-A941-44D4-ACC5-3ACD169B90B2}C:\program files\zhpdiag\zhpdiag.exe" | In - Private - P17 - TRUE | .(.Nicolas Coolman - Diagnostic Tool.) -- C:\program files\zhpdiag\zhpdiag.exe O87 - FAEL: "TCP Query User{F85F5A9B-A591-4CCD-8FAD-038850ADB42B}C:\users\sylvie\appdata\local\temp\rarsfx1\wget.exe" | In - Private - P6 - TRUE | .(...) -- C:\users\sylvie\appdata\local\temp\rarsfx1\wget.exe O87 - FAEL: "UDP Query User{E813DF7E-CD44-4777-AB5A-6D9E351F9E41}C:\users\sylvie\appdata\local\temp\rarsfx1\wget.exe" | In - Private - P17 - TRUE | .(...) -- C:\users\sylvie\appdata\local\temp\rarsfx1\wget.exe ~ Scan Firewall in 00mn 04s ---\\ Scan Additionnel (O88) Database Version : 8614 - (23/08/2011) Clés trouvées (Keys found) : 1 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 0 Fichiers trouvés (Files found) : 0 [HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}] =>Adware.CometSystems ~ Scan Additionnel in 00mn 10s ---\\ Recherche détournement de DNS routeur (O89) Serveur : resolvsvr01.oricom.ca Address: 64.18.160.73 Nom : www.l.google.com Addresses: 74.125.113.106 74.125.113.104 74.125.113.105 74.125.113.147 74.125.113.99 74.125.113.103 Aliases: www.google.fr www.google.com ~ Scan DNS in 00mn 02s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 0 | C:\Windows\1581444177:2920529313.exe (51ec425e) . (...) - C:\Windows\1581444177:2920529313.exe SS - | Auto 2011-06-17 64952 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe SR - | Auto 2011-08-16 136360 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe SS - | Auto 2011-08-16 269480 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe SS - | Demand 1343400 | C:\Windows\system32\Wat\WatUX.exe (WatAdminSvc) . (...) - C:\Windows\system32\Wat\WatAdminSvc.exe SR - | Auto 2009-07-13 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe ~ Scan Services in 00mn 16s ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover ~ Scan MBR in 00mn 19s ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Sylvie at 2011-08-25 09:48:33 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ Scan MBR in 00mn 21s End of the scan (1329 lines in 09mn 56s)(0) ------------------------------------------------------------------------------------ Au plaisir, Speck41
  11. speck41
    Bonjour et merci Pear, voici le rapport demandé: 2011/08/25 08:56:01.0018 3592 TDSS rootkit removing tool 2.5.17.0 Aug 22 2011 15:46:57 2011/08/25 08:56:01.0570 3592 ================================================================================ 2011/08/25 08:56:01.0570 3592 SystemInfo: 2011/08/25 08:56:01.0570 3592 2011/08/25 08:56:01.0570 3592 OS Version: 6.1.7601 ServicePack: 1.0 2011/08/25 08:56:01.0570 3592 Product type: Workstation 2011/08/25 08:56:01.0570 3592 ComputerName: SYLVIE-PORTABLE 2011/08/25 08:56:01.0573 3592 UserName: Sylvie 2011/08/25 08:56:01.0573 3592 Windows directory: C:\Windows 2011/08/25 08:56:01.0573 3592 System windows directory: C:\Windows 2011/08/25 08:56:01.0573 3592 Processor architecture: Intel x86 2011/08/25 08:56:01.0573 3592 Number of processors: 2 2011/08/25 08:56:01.0573 3592 Page size: 0x1000 2011/08/25 08:56:01.0573 3592 Boot type: Normal boot 2011/08/25 08:56:01.0573 3592 ================================================================================ 2011/08/25 08:56:09.0213 3592 Initialize success 2011/08/25 08:56:16.0945 1736 ================================================================================ 2011/08/25 08:56:16.0945 1736 Scan started 2011/08/25 08:56:16.0945 1736 Mode: Manual; 2011/08/25 08:56:16.0945 1736 ================================================================================ 2011/08/25 08:56:20.0591 1736 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys 2011/08/25 08:56:21.0083 1736 51ec425e (8f2bb1827cac01aee6a16e30a1260199) C:\Windows\1581444177:2920529313.exe 2011/08/25 08:56:21.0083 1736 Suspicious file (Hidden): C:\Windows\1581444177:2920529313.exe. md5: 8f2bb1827cac01aee6a16e30a1260199 2011/08/25 08:56:21.0098 1736 51ec425e - detected HiddenFile.Multi.Generic (1) 2011/08/25 08:56:21.0536 1736 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys 2011/08/25 08:56:22.0858 1736 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys 2011/08/25 08:56:23.0698 1736 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys 2011/08/25 08:56:24.0192 1736 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys 2011/08/25 08:56:24.0757 1736 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys 2011/08/25 08:56:25.0740 1736 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys 2011/08/25 08:56:26.0290 1736 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys 2011/08/25 08:56:26.0927 1736 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys 2011/08/25 08:56:27.0861 1736 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys 2011/08/25 08:56:28.0319 1736 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys 2011/08/25 08:56:29.0083 1736 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys 2011/08/25 08:56:29.0871 1736 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys 2011/08/25 08:56:30.0548 1736 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys 2011/08/25 08:56:31.0202 1736 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys 2011/08/25 08:56:31.0890 1736 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys 2011/08/25 08:56:32.0524 1736 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys 2011/08/25 08:56:33.0424 1736 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys 2011/08/25 08:56:33.0907 1736 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys 2011/08/25 08:56:34.0707 1736 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys 2011/08/25 08:56:35.0297 1736 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys 2011/08/25 08:56:35.0929 1736 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys 2011/08/25 08:56:36.0582 1736 avgntflt (47b879406246ffdced59e18d331a0e7d) C:\Windows\system32\DRIVERS\avgntflt.sys 2011/08/25 08:56:37.0329 1736 avipbb (5fedef54757b34fb611b9ec8fb399364) C:\Windows\system32\DRIVERS\avipbb.sys 2011/08/25 08:56:38.0116 1736 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys 2011/08/25 08:56:38.0950 1736 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys 2011/08/25 08:56:40.0560 1736 BCM43XX (f9ce9b5e049efc66b8e6c73c18ee8438) C:\Windows\system32\DRIVERS\bcmwl6.sys 2011/08/25 08:56:41.0164 1736 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys 2011/08/25 08:56:41.0812 1736 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys 2011/08/25 08:56:42.0496 1736 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys 2011/08/25 08:56:43.0101 1736 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys 2011/08/25 08:56:43.0735 1736 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys 2011/08/25 08:56:44.0370 1736 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys 2011/08/25 08:56:44.0784 1736 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys 2011/08/25 08:56:45.0406 1736 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys 2011/08/25 08:56:46.0128 1736 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys 2011/08/25 08:56:46.0881 1736 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys 2011/08/25 08:56:47.0693 1736 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys 2011/08/25 08:56:48.0596 1736 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys 2011/08/25 08:56:49.0521 1736 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys 2011/08/25 08:56:49.0858 1736 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys 2011/08/25 08:56:50.0797 1736 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys 2011/08/25 08:56:51.0392 1736 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys 2011/08/25 08:56:52.0272 1736 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys 2011/08/25 08:56:52.0989 1736 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys 2011/08/25 08:56:53.0789 1736 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys 2011/08/25 08:56:54.0494 1736 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys 2011/08/25 08:56:55.0271 1736 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys 2011/08/25 08:56:55.0923 1736 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys 2011/08/25 08:56:56.0488 1736 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys 2011/08/25 08:56:57.0392 1736 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys 2011/08/25 08:56:58.0407 1736 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys 2011/08/25 08:56:59.0180 1736 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys 2011/08/25 08:57:00.0459 1736 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys 2011/08/25 08:57:01.0286 1736 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys 2011/08/25 08:57:02.0001 1736 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys 2011/08/25 08:57:02.0698 1736 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys 2011/08/25 08:57:03.0378 1736 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys 2011/08/25 08:57:04.0017 1736 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys 2011/08/25 08:57:04.0680 1736 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys 2011/08/25 08:57:05.0302 1736 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys 2011/08/25 08:57:05.0769 1736 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys 2011/08/25 08:57:06.0396 1736 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys 2011/08/25 08:57:07.0003 1736 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys 2011/08/25 08:57:07.0751 1736 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys 2011/08/25 08:57:08.0423 1736 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys 2011/08/25 08:57:09.0323 1736 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys 2011/08/25 08:57:09.0934 1736 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys 2011/08/25 08:57:10.0507 1736 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys 2011/08/25 08:57:11.0207 1736 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys 2011/08/25 08:57:12.0056 1736 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys 2011/08/25 08:57:12.0566 1736 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys 2011/08/25 08:57:13.0328 1736 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys 2011/08/25 08:57:14.0012 1736 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys 2011/08/25 08:57:14.0504 1736 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys 2011/08/25 08:57:15.0244 1736 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys 2011/08/25 08:57:16.0016 1736 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys 2011/08/25 08:57:16.0746 1736 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys 2011/08/25 08:57:17.0220 1736 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys 2011/08/25 08:57:19.0117 1736 igfx (9467514ea189475a6e7fdc5d7bde9d3f) C:\Windows\system32\DRIVERS\igdkmd32.sys 2011/08/25 08:57:20.0174 1736 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys 2011/08/25 08:57:20.0671 1736 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys 2011/08/25 08:57:21.0358 1736 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys 2011/08/25 08:57:22.0008 1736 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys 2011/08/25 08:57:22.0730 1736 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys 2011/08/25 08:57:23.0333 1736 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys 2011/08/25 08:57:24.0222 1736 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys 2011/08/25 08:57:24.0952 1736 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys 2011/08/25 08:57:25.0657 1736 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys 2011/08/25 08:57:26.0487 1736 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys 2011/08/25 08:57:27.0204 1736 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys 2011/08/25 08:57:27.0917 1736 KSecDD (412cea1aa78cc02a447f5c9e62b32ff1) C:\Windows\system32\Drivers\ksecdd.sys 2011/08/25 08:57:28.0234 1736 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys 2011/08/25 08:57:28.0656 1736 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys 2011/08/25 08:57:29.0498 1736 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys 2011/08/25 08:57:30.0028 1736 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys 2011/08/25 08:57:30.0613 1736 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys 2011/08/25 08:57:31.0340 1736 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys 2011/08/25 08:57:31.0858 1736 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys 2011/08/25 08:57:32.0673 1736 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys 2011/08/25 08:57:33.0178 1736 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys 2011/08/25 08:57:33.0937 1736 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys 2011/08/25 08:57:34.0627 1736 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys 2011/08/25 08:57:35.0615 1736 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys 2011/08/25 08:57:36.0109 1736 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys 2011/08/25 08:57:36.0311 1736 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys 2011/08/25 08:57:36.0727 1736 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys 2011/08/25 08:57:36.0963 1736 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys 2011/08/25 08:57:37.0453 1736 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys 2011/08/25 08:57:38.0003 1736 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys 2011/08/25 08:57:38.0633 1736 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys 2011/08/25 08:57:39.0487 1736 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys 2011/08/25 08:57:40.0267 1736 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys 2011/08/25 08:57:40.0836 1736 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys 2011/08/25 08:57:41.0891 1736 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys 2011/08/25 08:57:42.0711 1736 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys 2011/08/25 08:57:43.0516 1736 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys 2011/08/25 08:57:44.0351 1736 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys 2011/08/25 08:57:45.0091 1736 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys 2011/08/25 08:57:45.0756 1736 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys 2011/08/25 08:57:46.0558 1736 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys 2011/08/25 08:57:47.0455 1736 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys 2011/08/25 08:57:48.0303 1736 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys 2011/08/25 08:57:49.0095 1736 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys 2011/08/25 08:57:50.0047 1736 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys 2011/08/25 08:57:51.0014 1736 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys 2011/08/25 08:57:52.0034 1736 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys 2011/08/25 08:57:52.0849 1736 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys 2011/08/25 08:57:53.0884 1736 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys 2011/08/25 08:57:54.0877 1736 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys 2011/08/25 08:57:55.0666 1736 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys 2011/08/25 08:57:56.0421 1736 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys 2011/08/25 08:57:57.0091 1736 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys 2011/08/25 08:57:58.0104 1736 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys 2011/08/25 08:57:58.0906 1736 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys 2011/08/25 08:57:59.0983 1736 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys 2011/08/25 08:58:00.0985 1736 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys 2011/08/25 08:58:02.0145 1736 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys 2011/08/25 08:58:03.0070 1736 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys 2011/08/25 08:58:03.0927 1736 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys 2011/08/25 08:58:04.0625 1736 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys 2011/08/25 08:58:05.0435 1736 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys 2011/08/25 08:58:06.0290 1736 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys 2011/08/25 08:58:07.0275 1736 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys 2011/08/25 08:58:08.0142 1736 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys 2011/08/25 08:58:09.0164 1736 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys 2011/08/25 08:58:10.0116 1736 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys 2011/08/25 08:58:10.0899 1736 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys 2011/08/25 08:58:11.0734 1736 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys 2011/08/25 08:58:12.0439 1736 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys 2011/08/25 08:58:13.0549 1736 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys 2011/08/25 08:58:14.0744 1736 pnarp (63200893c9d5934a7504d20f68276cc7) C:\Windows\system32\DRIVERS\pnarp.sys 2011/08/25 08:58:15.0666 1736 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys 2011/08/25 08:58:16.0221 1736 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys 2011/08/25 08:58:17.0033 1736 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys 2011/08/25 08:58:18.0021 1736 purendis (748bcab4eff5959ed347c05a1c1a0af8) C:\Windows\system32\DRIVERS\purendis.sys 2011/08/25 08:58:19.0371 1736 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys 2011/08/25 08:58:20.0073 1736 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys 2011/08/25 08:58:20.0843 1736 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys 2011/08/25 08:58:21.0670 1736 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys 2011/08/25 08:58:22.0345 1736 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys 2011/08/25 08:58:23.0225 1736 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys 2011/08/25 08:58:24.0218 1736 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys 2011/08/25 08:58:25.0008 1736 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys 2011/08/25 08:58:25.0883 1736 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys 2011/08/25 08:58:26.0681 1736 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys 2011/08/25 08:58:27.0473 1736 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys 2011/08/25 08:58:28.0301 1736 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys 2011/08/25 08:58:29.0173 1736 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys 2011/08/25 08:58:30.0148 1736 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys 2011/08/25 08:58:30.0938 1736 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys 2011/08/25 08:58:31.0753 1736 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys 2011/08/25 08:58:32.0636 1736 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys 2011/08/25 08:58:33.0231 1736 rimmptsk (df672613fbbcd58c38bb0bc2694bcfb0) C:\Windows\system32\DRIVERS\rimmptsk.sys 2011/08/25 08:58:34.0071 1736 rimsptsk (9bfb54d3559f2ff7301271d29d383564) C:\Windows\system32\DRIVERS\rimsptsk.sys 2011/08/25 08:58:34.0730 1736 rismxdp (dcb87da83cc1010cbc9fc4dc9e395bbc) C:\Windows\system32\DRIVERS\rixdptsk.sys 2011/08/25 08:58:35.0580 1736 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys 2011/08/25 08:58:36.0565 1736 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys 2011/08/25 08:58:37.0585 1736 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys 2011/08/25 08:58:38.0320 1736 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys 2011/08/25 08:58:39.0303 1736 sdbus (0328be1c7f1cba23848179f8762e391c) C:\Windows\system32\drivers\sdbus.sys 2011/08/25 08:58:40.0135 1736 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 2011/08/25 08:58:40.0986 1736 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys 2011/08/25 08:58:41.0824 1736 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys 2011/08/25 08:58:42.0631 1736 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys 2011/08/25 08:58:43.0448 1736 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys 2011/08/25 08:58:44.0268 1736 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys 2011/08/25 08:58:45.0018 1736 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\DRIVERS\sffp_sd.sys 2011/08/25 08:58:45.0881 1736 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys 2011/08/25 08:58:46.0880 1736 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys 2011/08/25 08:58:47.0573 1736 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys 2011/08/25 08:58:48.0300 1736 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys 2011/08/25 08:58:49.0057 1736 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys 2011/08/25 08:58:49.0782 1736 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys 2011/08/25 08:58:50.0717 1736 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys 2011/08/25 08:58:51.0656 1736 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys 2011/08/25 08:58:52.0621 1736 SrvHsfHDA (e00fdfaff025e94f9821153750c35a6d) C:\Windows\system32\DRIVERS\VSTAZL3.SYS 2011/08/25 08:58:53.0713 1736 SrvHsfV92 (ceb4e3b6890e1e42dca6694d9e59e1a0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS 2011/08/25 08:58:55.0020 1736 SrvHsfWinac (bc0c7ea89194c299f051c24119000e17) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS 2011/08/25 08:58:55.0981 1736 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys 2011/08/25 08:58:57.0133 1736 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys 2011/08/25 08:58:58.0046 1736 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys 2011/08/25 08:58:58.0908 1736 STHDA (68a0d39e357dd7a234b1d4f1e844c615) C:\Windows\system32\drivers\stwrt.sys 2011/08/25 08:58:59.0643 1736 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys 2011/08/25 08:59:00.0283 1736 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys 2011/08/25 08:59:00.0890 1736 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys 2011/08/25 08:59:02.0965 1736 Tcpip (04e4a7d53a7ace02e8c55b17a498f631) C:\Windows\system32\drivers\tcpip.sys 2011/08/25 08:59:04.0628 1736 TCPIP6 (04e4a7d53a7ace02e8c55b17a498f631) C:\Windows\system32\DRIVERS\tcpip.sys 2011/08/25 08:59:05.0480 1736 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys 2011/08/25 08:59:06.0307 1736 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys 2011/08/25 08:59:06.0975 1736 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys 2011/08/25 08:59:07.0867 1736 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys 2011/08/25 08:59:08.0685 1736 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys 2011/08/25 08:59:09.0617 1736 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys 2011/08/25 08:59:10.0457 1736 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys 2011/08/25 08:59:11.0879 1736 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys 2011/08/25 08:59:12.0689 1736 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys 2011/08/25 08:59:13.0631 1736 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys 2011/08/25 08:59:14.0459 1736 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys 2011/08/25 08:59:15.0356 1736 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys 2011/08/25 08:59:16.0273 1736 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys 2011/08/25 08:59:17.0213 1736 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\drivers\usbccgp.sys 2011/08/25 08:59:17.0998 1736 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys 2011/08/25 08:59:18.0740 1736 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys 2011/08/25 08:59:19.0650 1736 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys 2011/08/25 08:59:20.0445 1736 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys 2011/08/25 08:59:21.0343 1736 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys 2011/08/25 08:59:22.0318 1736 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\drivers\USBSTOR.SYS 2011/08/25 08:59:22.0917 1736 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys 2011/08/25 08:59:23.0495 1736 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys 2011/08/25 08:59:24.0455 1736 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys 2011/08/25 08:59:25.0230 1736 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys 2011/08/25 08:59:26.0765 1736 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys 2011/08/25 08:59:27.0578 1736 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys 2011/08/25 08:59:28.0180 1736 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys 2011/08/25 08:59:28.0785 1736 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys 2011/08/25 08:59:29.0255 1736 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys 2011/08/25 08:59:29.0938 1736 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys 2011/08/25 08:59:30.0735 1736 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys 2011/08/25 08:59:31.0570 1736 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys 2011/08/25 08:59:32.0462 1736 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys 2011/08/25 08:59:33.0190 1736 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys 2011/08/25 08:59:33.0950 1736 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys 2011/08/25 08:59:34.0670 1736 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys 2011/08/25 08:59:35.0262 1736 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys 2011/08/25 08:59:36.0042 1736 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 2011/08/25 08:59:36.0172 1736 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 2011/08/25 08:59:36.0852 1736 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys 2011/08/25 08:59:37.0666 1736 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys 2011/08/25 08:59:38.0556 1736 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys 2011/08/25 08:59:39.0366 1736 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys 2011/08/25 08:59:40.0546 1736 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys 2011/08/25 08:59:41.0423 1736 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys 2011/08/25 08:59:42.0163 1736 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys 2011/08/25 08:59:43.0050 1736 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys 2011/08/25 08:59:43.0863 1736 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys 2011/08/25 08:59:44.0878 1736 yukonw7 (30b73eb97218a16cbc6de535782a1b35) C:\Windows\system32\DRIVERS\yk62x86.sys 2011/08/25 08:59:45.0090 1736 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 2011/08/25 08:59:45.0412 1736 Boot (0x1200) (edd27b82ce16f8e7778a37456f086434) \Device\Harddisk0\DR0\Partition0 2011/08/25 08:59:45.0482 1736 Boot (0x1200) (122511aaca1c6a7683fd79b22cdec3e5) \Device\Harddisk0\DR0\Partition1 2011/08/25 08:59:45.0527 1736 ================================================================================ 2011/08/25 08:59:45.0527 1736 Scan finished 2011/08/25 08:59:45.0527 1736 ================================================================================ 2011/08/25 08:59:45.0552 3712 Detected object count: 1 2011/08/25 08:59:45.0552 3712 Actual detected object count: 1 2011/08/25 08:59:58.0092 3712 HiddenFile.Multi.Generic(51ec425e) - User select action: Skip ------------------------------------------------------------------------------------------------------------------------------------------------------------- En espérant que ce soit correct cette fois, Speck41
  12. speck41
    Bonjour Pear, merci de prendre cette infection en charge, c'est gentil. Ma femme m'a dit que l'ordinateur s'éteint tout seul après un certain temps d'innactivité, et pourtant il n'est pas configuré pour ça. Quand on le rallume, il dit qu'il s'est éteint de façon innapropirée et cherche une solution. Bon, voila le rapport demandé: 2011/08/24 19:04:52.0573 2728 TDSS rootkit removing tool 2.5.17.0 Aug 22 2011 15:46:57 2011/08/24 19:04:52.0903 2728 ================================================================================ 2011/08/24 19:04:52.0903 2728 SystemInfo: 2011/08/24 19:04:52.0903 2728 2011/08/24 19:04:52.0903 2728 OS Version: 6.1.7601 ServicePack: 1.0 2011/08/24 19:04:52.0903 2728 Product type: Workstation 2011/08/24 19:04:52.0903 2728 ComputerName: SYLVIE-PORTABLE 2011/08/24 19:04:52.0905 2728 UserName: Sylvie 2011/08/24 19:04:52.0905 2728 Windows directory: C:\Windows 2011/08/24 19:04:52.0905 2728 System windows directory: C:\Windows 2011/08/24 19:04:52.0905 2728 Processor architecture: Intel x86 2011/08/24 19:04:52.0905 2728 Number of processors: 2 2011/08/24 19:04:52.0905 2728 Page size: 0x1000 2011/08/24 19:04:52.0905 2728 Boot type: Normal boot 2011/08/24 19:04:52.0905 2728 ================================================================================ 2011/08/24 19:04:55.0047 2728 Initialize success 2011/08/24 19:04:58.0384 3396 ================================================================================ 2011/08/24 19:04:58.0384 3396 Scan started 2011/08/24 19:04:58.0384 3396 Mode: Manual; 2011/08/24 19:04:58.0384 3396 ================================================================================ 2011/08/24 19:05:00.0234 3396 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys 2011/08/24 19:05:00.0383 3396 51ec425e (8f2bb1827cac01aee6a16e30a1260199) C:\Windows\1581444177:2920529313.exe 2011/08/24 19:05:00.0383 3396 Suspicious file (Hidden): C:\Windows\1581444177:2920529313.exe. md5: 8f2bb1827cac01aee6a16e30a1260199 2011/08/24 19:05:00.0396 3396 51ec425e - detected HiddenFile.Multi.Generic (1) 2011/08/24 19:05:00.0581 3396 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys 2011/08/24 19:05:00.0768 3396 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys 2011/08/24 19:05:01.0113 3396 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys 2011/08/24 19:05:01.0560 3396 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys 2011/08/24 19:05:01.0990 3396 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys 2011/08/24 19:05:02.0483 3396 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys 2011/08/24 19:05:02.0767 3396 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys 2011/08/24 19:05:02.0915 3396 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys 2011/08/24 19:05:03.0249 3396 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys 2011/08/24 19:05:03.0285 3396 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys 2011/08/24 19:05:03.0494 3396 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys 2011/08/24 19:05:03.0658 3396 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys 2011/08/24 19:05:03.0783 3396 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys 2011/08/24 19:05:03.0980 3396 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys 2011/08/24 19:05:04.0123 3396 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys 2011/08/24 19:05:04.0268 3396 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys 2011/08/24 19:05:04.0578 3396 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys 2011/08/24 19:05:04.0928 3396 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys 2011/08/24 19:05:05.0008 3396 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys 2011/08/24 19:05:05.0075 3396 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys 2011/08/24 19:05:05.0272 3396 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys 2011/08/24 19:05:05.0615 3396 avgntflt (47b879406246ffdced59e18d331a0e7d) C:\Windows\system32\DRIVERS\avgntflt.sys 2011/08/24 19:05:05.0727 3396 avipbb (5fedef54757b34fb611b9ec8fb399364) C:\Windows\system32\DRIVERS\avipbb.sys 2011/08/24 19:05:05.0927 3396 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys 2011/08/24 19:05:06.0261 3396 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys 2011/08/24 19:05:06.0714 3396 BCM43XX (f9ce9b5e049efc66b8e6c73c18ee8438) C:\Windows\system32\DRIVERS\bcmwl6.sys 2011/08/24 19:05:07.0008 3396 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys 2011/08/24 19:05:07.0222 3396 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys 2011/08/24 19:05:07.0362 3396 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys 2011/08/24 19:05:07.0644 3396 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys 2011/08/24 19:05:07.0776 3396 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys 2011/08/24 19:05:07.0844 3396 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys 2011/08/24 19:05:08.0329 3396 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys 2011/08/24 19:05:08.0521 3396 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys 2011/08/24 19:05:08.0561 3396 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys 2011/08/24 19:05:08.0623 3396 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys 2011/08/24 19:05:08.0792 3396 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys 2011/08/24 19:05:09.0085 3396 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys 2011/08/24 19:05:09.0264 3396 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys 2011/08/24 19:05:09.0466 3396 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys 2011/08/24 19:05:09.0808 3396 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys 2011/08/24 19:05:09.0993 3396 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys 2011/08/24 19:05:10.0128 3396 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys 2011/08/24 19:05:10.0388 3396 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys 2011/08/24 19:05:10.0719 3396 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys 2011/08/24 19:05:10.0969 3396 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys 2011/08/24 19:05:11.0132 3396 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys 2011/08/24 19:05:11.0556 3396 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys 2011/08/24 19:05:11.0888 3396 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys 2011/08/24 19:05:11.0977 3396 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys 2011/08/24 19:05:12.0207 3396 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys 2011/08/24 19:05:12.0387 3396 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys 2011/08/24 19:05:12.0856 3396 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys 2011/08/24 19:05:13.0320 3396 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys 2011/08/24 19:05:13.0615 3396 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys 2011/08/24 19:05:13.0784 3396 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys 2011/08/24 19:05:14.0146 3396 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys 2011/08/24 19:05:14.0356 3396 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys 2011/08/24 19:05:14.0522 3396 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys 2011/08/24 19:05:14.0679 3396 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys 2011/08/24 19:05:14.0846 3396 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys 2011/08/24 19:05:15.0021 3396 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys 2011/08/24 19:05:15.0200 3396 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys 2011/08/24 19:05:15.0315 3396 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys 2011/08/24 19:05:15.0670 3396 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys 2011/08/24 19:05:15.0899 3396 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys 2011/08/24 19:05:16.0167 3396 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys 2011/08/24 19:05:16.0469 3396 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys 2011/08/24 19:05:16.0517 3396 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys 2011/08/24 19:05:16.0566 3396 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys 2011/08/24 19:05:16.0876 3396 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys 2011/08/24 19:05:17.0048 3396 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys 2011/08/24 19:05:17.0433 3396 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys 2011/08/24 19:05:17.0725 3396 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys 2011/08/24 19:05:18.0129 3396 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys 2011/08/24 19:05:18.0404 3396 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys 2011/08/24 19:05:18.0722 3396 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys 2011/08/24 19:05:18.0942 3396 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys 2011/08/24 19:05:20.0111 3396 igfx (9467514ea189475a6e7fdc5d7bde9d3f) C:\Windows\system32\DRIVERS\igdkmd32.sys 2011/08/24 19:05:20.0915 3396 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys 2011/08/24 19:05:21.0557 3396 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys 2011/08/24 19:05:22.0065 3396 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys 2011/08/24 19:05:22.0584 3396 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys 2011/08/24 19:05:23.0104 3396 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys 2011/08/24 19:05:23.0731 3396 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys 2011/08/24 19:05:24.0164 3396 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys 2011/08/24 19:05:24.0516 3396 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys 2011/08/24 19:05:24.0590 3396 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys 2011/08/24 19:05:24.0796 3396 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys 2011/08/24 19:05:24.0870 3396 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys 2011/08/24 19:05:24.0983 3396 KSecDD (412cea1aa78cc02a447f5c9e62b32ff1) C:\Windows\system32\Drivers\ksecdd.sys 2011/08/24 19:05:25.0153 3396 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys 2011/08/24 19:05:25.0278 3396 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys 2011/08/24 19:05:25.0507 3396 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys 2011/08/24 19:05:25.0629 3396 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys 2011/08/24 19:05:25.0789 3396 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys 2011/08/24 19:05:25.0884 3396 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys 2011/08/24 19:05:25.0934 3396 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys 2011/08/24 19:05:26.0206 3396 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys 2011/08/24 19:05:26.0331 3396 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys 2011/08/24 19:05:26.0536 3396 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys 2011/08/24 19:05:26.0693 3396 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys 2011/08/24 19:05:26.0903 3396 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys 2011/08/24 19:05:27.0095 3396 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys 2011/08/24 19:05:27.0243 3396 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys 2011/08/24 19:05:27.0357 3396 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys 2011/08/24 19:05:27.0572 3396 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys 2011/08/24 19:05:27.0709 3396 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys 2011/08/24 19:05:27.0922 3396 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys 2011/08/24 19:05:28.0059 3396 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys 2011/08/24 19:05:28.0251 3396 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys 2011/08/24 19:05:28.0331 3396 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys 2011/08/24 19:05:28.0556 3396 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys 2011/08/24 19:05:28.0688 3396 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys 2011/08/24 19:05:28.0853 3396 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys 2011/08/24 19:05:28.0925 3396 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys 2011/08/24 19:05:29.0148 3396 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys 2011/08/24 19:05:29.0268 3396 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys 2011/08/24 19:05:29.0355 3396 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys 2011/08/24 19:05:29.0400 3396 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys 2011/08/24 19:05:29.0610 3396 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys 2011/08/24 19:05:29.0735 3396 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys 2011/08/24 19:05:29.0982 3396 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys 2011/08/24 19:05:30.0054 3396 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys 2011/08/24 19:05:30.0341 3396 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys 2011/08/24 19:05:30.0526 3396 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys 2011/08/24 19:05:30.0848 3396 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys 2011/08/24 19:05:31.0127 3396 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys 2011/08/24 19:05:31.0475 3396 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys 2011/08/24 19:05:31.0655 3396 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys 2011/08/24 19:05:31.0807 3396 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys 2011/08/24 19:05:31.0957 3396 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys 2011/08/24 19:05:32.0072 3396 NetBT (b22be5af5eaa25a0b633877e8a64d04c) C:\Windows\system32\DRIVERS\netbt.sys 2011/08/24 19:05:32.0124 3396 Suspicious file (Forged): C:\Windows\system32\DRIVERS\netbt.sys. Real md5: b22be5af5eaa25a0b633877e8a64d04c, Fake md5: 280122ddcf04b378edd1ad54d71c1e54 2011/08/24 19:05:32.0153 3396 NetBT - detected Rootkit.Win32.ZAccess.f (0) 2011/08/24 19:05:32.0384 3396 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys 2011/08/24 19:05:32.0436 3396 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys 2011/08/24 19:05:32.0516 3396 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys 2011/08/24 19:05:32.0866 3396 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys 2011/08/24 19:05:33.0170 3396 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys 2011/08/24 19:05:33.0293 3396 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys 2011/08/24 19:05:33.0545 3396 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys 2011/08/24 19:05:33.0677 3396 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys 2011/08/24 19:05:33.0899 3396 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys 2011/08/24 19:05:34.0039 3396 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys 2011/08/24 19:05:34.0152 3396 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys 2011/08/24 19:05:34.0262 3396 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys 2011/08/24 19:05:34.0369 3396 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys 2011/08/24 19:05:34.0529 3396 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys 2011/08/24 19:05:34.0631 3396 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys 2011/08/24 19:05:34.0672 3396 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys 2011/08/24 19:05:34.0873 3396 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys 2011/08/24 19:05:35.0175 3396 pnarp (63200893c9d5934a7504d20f68276cc7) C:\Windows\system32\DRIVERS\pnarp.sys 2011/08/24 19:05:35.0387 3396 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys 2011/08/24 19:05:35.0552 3396 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys 2011/08/24 19:05:35.0697 3396 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys 2011/08/24 19:05:35.0984 3396 purendis (748bcab4eff5959ed347c05a1c1a0af8) C:\Windows\system32\DRIVERS\purendis.sys 2011/08/24 19:05:36.0162 3396 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys 2011/08/24 19:05:36.0404 3396 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys 2011/08/24 19:05:36.0509 3396 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys 2011/08/24 19:05:36.0614 3396 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys 2011/08/24 19:05:36.0754 3396 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys 2011/08/24 19:05:36.0924 3396 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys 2011/08/24 19:05:37.0172 3396 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys 2011/08/24 19:05:37.0361 3396 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys 2011/08/24 19:05:37.0568 3396 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys 2011/08/24 19:05:37.0678 3396 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys 2011/08/24 19:05:37.0793 3396 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys 2011/08/24 19:05:37.0881 3396 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys 2011/08/24 19:05:38.0050 3396 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys 2011/08/24 19:05:38.0145 3396 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys 2011/08/24 19:05:38.0402 3396 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys 2011/08/24 19:05:38.0565 3396 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys 2011/08/24 19:05:38.0712 3396 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys 2011/08/24 19:05:39.0007 3396 rimmptsk (df672613fbbcd58c38bb0bc2694bcfb0) C:\Windows\system32\DRIVERS\rimmptsk.sys 2011/08/24 19:05:39.0236 3396 rimsptsk (9bfb54d3559f2ff7301271d29d383564) C:\Windows\system32\DRIVERS\rimsptsk.sys 2011/08/24 19:05:39.0441 3396 rismxdp (dcb87da83cc1010cbc9fc4dc9e395bbc) C:\Windows\system32\DRIVERS\rixdptsk.sys 2011/08/24 19:05:39.0600 3396 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys 2011/08/24 19:05:39.0740 3396 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys 2011/08/24 19:05:39.0983 3396 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys 2011/08/24 19:05:40.0107 3396 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys 2011/08/24 19:05:40.0290 3396 sdbus (0328be1c7f1cba23848179f8762e391c) C:\Windows\system32\drivers\sdbus.sys 2011/08/24 19:05:40.0467 3396 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 2011/08/24 19:05:40.0706 3396 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys 2011/08/24 19:05:40.0776 3396 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys 2011/08/24 19:05:40.0873 3396 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys 2011/08/24 19:05:41.0155 3396 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys 2011/08/24 19:05:41.0322 3396 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys 2011/08/24 19:05:41.0682 3396 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\DRIVERS\sffp_sd.sys 2011/08/24 19:05:41.0912 3396 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys 2011/08/24 19:05:42.0012 3396 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys 2011/08/24 19:05:42.0237 3396 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys 2011/08/24 19:05:42.0344 3396 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys 2011/08/24 19:05:42.0566 3396 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys 2011/08/24 19:05:42.0658 3396 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys 2011/08/24 19:05:42.0826 3396 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys 2011/08/24 19:05:42.0965 3396 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys 2011/08/24 19:05:43.0285 3396 SrvHsfHDA (e00fdfaff025e94f9821153750c35a6d) C:\Windows\system32\DRIVERS\VSTAZL3.SYS 2011/08/24 19:05:43.0518 3396 SrvHsfV92 (ceb4e3b6890e1e42dca6694d9e59e1a0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS 2011/08/24 19:05:43.0750 3396 SrvHsfWinac (bc0c7ea89194c299f051c24119000e17) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS 2011/08/24 19:05:43.0967 3396 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys 2011/08/24 19:05:44.0207 3396 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys 2011/08/24 19:05:44.0299 3396 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys 2011/08/24 19:05:44.0587 3396 STHDA (68a0d39e357dd7a234b1d4f1e844c615) C:\Windows\system32\drivers\stwrt.sys 2011/08/24 19:05:44.0874 3396 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys 2011/08/24 19:05:45.0004 3396 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys 2011/08/24 19:05:45.0109 3396 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys 2011/08/24 19:05:45.0548 3396 Tcpip (04e4a7d53a7ace02e8c55b17a498f631) C:\Windows\system32\drivers\tcpip.sys 2011/08/24 19:05:45.0936 3396 TCPIP6 (04e4a7d53a7ace02e8c55b17a498f631) C:\Windows\system32\DRIVERS\tcpip.sys 2011/08/24 19:05:46.0156 3396 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys 2011/08/24 19:05:46.0315 3396 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys 2011/08/24 19:05:46.0495 3396 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys 2011/08/24 19:05:46.0631 3396 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys 2011/08/24 19:05:46.0750 3396 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys 2011/08/24 19:05:47.0037 3396 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys 2011/08/24 19:05:47.0181 3396 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys 2011/08/24 19:05:47.0535 3396 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys 2011/08/24 19:05:47.0753 3396 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys 2011/08/24 19:05:48.0058 3396 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys 2011/08/24 19:05:48.0370 3396 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys 2011/08/24 19:05:48.0555 3396 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys 2011/08/24 19:05:48.0682 3396 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys 2011/08/24 19:05:48.0854 3396 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\drivers\usbccgp.sys 2011/08/24 19:05:48.0964 3396 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys 2011/08/24 19:05:49.0271 3396 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys 2011/08/24 19:05:49.0468 3396 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys 2011/08/24 19:05:49.0643 3396 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys 2011/08/24 19:05:49.0752 3396 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys 2011/08/24 19:05:49.0817 3396 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\drivers\USBSTOR.SYS 2011/08/24 19:05:50.0049 3396 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys 2011/08/24 19:05:50.0284 3396 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys 2011/08/24 19:05:50.0511 3396 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys 2011/08/24 19:05:50.0693 3396 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys 2011/08/24 19:05:50.0870 3396 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys 2011/08/24 19:05:51.0230 3396 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys 2011/08/24 19:05:51.0412 3396 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys 2011/08/24 19:05:51.0627 3396 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys 2011/08/24 19:05:51.0724 3396 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys 2011/08/24 19:05:51.0791 3396 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys 2011/08/24 19:05:51.0921 3396 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys 2011/08/24 19:05:52.0016 3396 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys 2011/08/24 19:05:52.0228 3396 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys 2011/08/24 19:05:52.0450 3396 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys 2011/08/24 19:05:52.0612 3396 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys 2011/08/24 19:05:52.0792 3396 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys 2011/08/24 19:05:52.0904 3396 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys 2011/08/24 19:05:53.0129 3396 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 2011/08/24 19:05:53.0157 3396 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 2011/08/24 19:05:53.0416 3396 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys 2011/08/24 19:05:53.0505 3396 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys 2011/08/24 19:05:53.0845 3396 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys 2011/08/24 19:05:54.0109 3396 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys 2011/08/24 19:05:54.0399 3396 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys 2011/08/24 19:05:54.0554 3396 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys 2011/08/24 19:05:54.0784 3396 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys 2011/08/24 19:05:54.0958 3396 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys 2011/08/24 19:05:55.0193 3396 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys 2011/08/24 19:05:55.0498 3396 yukonw7 (30b73eb97218a16cbc6de535782a1b35) C:\Windows\system32\DRIVERS\yk62x86.sys 2011/08/24 19:05:55.0600 3396 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 2011/08/24 19:05:55.0645 3396 Boot (0x1200) (edd27b82ce16f8e7778a37456f086434) \Device\Harddisk0\DR0\Partition0 2011/08/24 19:05:55.0674 3396 Boot (0x1200) (122511aaca1c6a7683fd79b22cdec3e5) \Device\Harddisk0\DR0\Partition1 2011/08/24 19:05:55.0707 3396 ================================================================================ 2011/08/24 19:05:55.0707 3396 Scan finished 2011/08/24 19:05:55.0707 3396 ================================================================================ 2011/08/24 19:05:55.0745 3644 Detected object count: 2 2011/08/24 19:05:55.0745 3644 Actual detected object count: 2 -------------------------------------------------------------------------------------------------------------------- Merci, Speck41
  13. speck41
    Bonjour chers experts. Cette fois il s'agit du portable de ma femme qui est plutôt malade. Antivir s'est arrêté, la désinstallation et réinstallation a réglé le problème jusqu'à ce qu'il soit redémarré, ensuite il s'est encore arrêté. Windows live mail ne fonctionne plus, il donne un message d'erreur a l'ouverture. Sur cijoint, j'ai hébergé une capture d'écran avec le message d'erreur. Lien CJoint.com AHxxUm0DlwS J'ai essayé de le scanner avec Malwarebytes et il ne s'ouvre pas non plus, désinstaller et réinstaller ne donne rien. J'ai installé ZHPDiag et il plante a 88%. Je ne sais plus quoi faire, un petit meeter me dit que le processeur est constamment au travail, entre 20% et 30%. La mémoire vive est utilisée a 40% et il y a beaucoup de place sur le disque dur. Il s'agit d'un portable dell qui date de quelques années et qui a 2 go de mémoire, processeur pentium dual cpu T3200 2.0 GHZ Le système d'exploitation est Windows 7 32 bits. Merci a l'avance de votre aide. Speck41
  14. speck41
    Merci beaucoup Apollo, tu m'as encore aidé énormément. Super le site Apollo et Cie. Merci pour ces conseils, je m'occupes de ça ce soir et je gardes l'URL en note pour m'y référer. Au plaisir, Speck41
  15. speck41
    Salut Apollo, voici le rapport demandé: Cijoint.fr - Service gratuit de dépôt de fichiers Merci, Speck41
  16. speck41
    Salut Apollo, voici le rapport Malwarebytes: Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Version de la base de données: 6678 Windows 6.1.7601 Service Pack 1 Internet Explorer 9.0.8112.16421 2011-05-25 20:55:23 mbam-log-2011-05-25 (20-55-23).txt Type d'examen: Examen complet (C:\|D:\|F:\|G:\|) Elément(s) analysé(s): 414362 Temps écoulé: 1 heure(s), 21 minute(s), 43 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 3 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): g:\crack windows 7\removewat.exe (HackTool.Wpakill) -> Quarantined and deleted successfully. g:\crack windows 7\remove wat (for windows 7)\removewat\removewat.exe (HackTool.Wpakill) -> Quarantined and deleted successfully. g:\network magic\network magic pro 5.1.8354.0-res\Patch.exe (Patch.NetworkMagic) -> Quarantined and deleted successfully. --------------------------------------------------------------------------------------------------------------- Encore merci, en attente de tes instructions. Speck41
  17. speck41
    Bonjour Apollo, merci de ton aide. Je vois que Chrome est vulnérable et je ne m'en sers pas. Est-ce que je devrais le désinstaller? Voici le rapport demandé: Rapport de ZHPFix 1.12.3283 par Nicolas Coolman, Update du 14/05/2011 Fichier d'export Registre : Run by Daniel at 25/05/2011 16:22:18 Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601) Web site : ZHPFix Fix de rapport ========== Clé(s) du Registre ========== O53 - SMSR:HKLM\...\startupreg\ie9installer [Key] . (...) -- C:\Users\Daniel\AppData\Local\Temp\iesetup-win7-x64.exe (.not file.) => Clé non supprimée O53 - SMSR:HKLM\...\startupreg\Setwallpaper [Key] . (...) -- c:\programdata\SetWallpaper.cmd (.not file.) => Clé non supprimée HKCU\Software\Ask&Record => Clé supprimée avec succès ========== Valeur(s) du Registre ========== O4 - HKCU\..\Run: [Peii] rundll32 "C:\Users\Daniel\AppData\Roaming\KBDICR.dll (.not file.) => Valeur supprimée avec succès O4 - HKUS\S-1-5-21-279159176-2999597518-1161301331-1001\..\Run: [Peii] rundll32 "C:\Users\Daniel\AppData\Roaming\KBDICR.dll (.not file.) => Valeur absente {FD7778EC-0E6A-4C20-8A1A-EE3EE41D7E7B} => Valeur supprimée avec succès {B593314A-9F58-4662-B4B3-5E8A4FAAD6E1} => Valeur supprimée avec succès {D0EAEEC4-3054-420E-8EBA-1DA9A921B0A6} => Valeur supprimée avec succès {7A0E756C-0558-4141-A40A-41148A0F9660} => Valeur supprimée avec succès ========== Dossier(s) ========== C:\ProgramData\Partner => Supprimé et mis en quarantaine C:\ProgramData\regid.1986-12.com.adobe => Supprimé et mis en quarantaine Dossiers Flash Cookies supprimés : 37 Dossiers temporaires Windows supprimés: 104 ========== Fichier(s) ========== c:\users\daniel\appdata\roaming\kbdicr.dll => Supprimé et mis en quarantaine c:\users\daniel\appdata\local\temp\iesetup-win7-x64.exe => Fichier absent c:\programdata\setwallpaper.cmd => Fichier absent Fichiers Flash Cookies supprimés : 17 Fichiers temporaires Windows supprimés : 80 ========== Récapitulatif ========== 3 : Clé(s) du Registre 6 : Valeur(s) du Registre 4 : Dossier(s) 5 : Fichier(s) End of the scan --------------------------------------------------------------------------------------------------------------------------------------------------- Merci et j'attends de tes nouvelles, Speck41
  18. speck41
    Bonjour et merci Apollo de prendre mon cas encore une fois. Voici les rapports demandés: ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 12/04/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: http://www.teamxscript.org C:\Program Files (x86)\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 10:46:30 le 25/05/2011, Mode normal Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64) Daniel@PORTABLE-DANIEL (ASUSTeK Computer Inc. K50IJ) ============== RECHERCHE ============== Dossier trouvé: C:\Users\Daniel\AppData\LocalLow\PriceGong Clé trouvée: HKLM\Software\Classes\Conduit.Engine Clé trouvée: HKLM\Software\Classes\Toolbar.CT1060933 Clé trouvée: HKLM\Software\Conduit Clé trouvée: HKCU\Software\Ask.com Clé trouvée: HKCU\Software\Conduit Clé trouvée: HKCU\Software\AppDataLow\Software\AskToolbar Clé trouvée: HKCU\Software\AppDataLow\Software\PriceGong Clé trouvée: HKCU\Software\AppDataLow\Software\Toolbar Clé trouvée: HKLM\Software\DigitalVolcano\OpenCandy Clé trouvée: HKLM\Software\Wow6432Node\DigitalVolcano\OpenCandy ============== SCAN ADDITIONNEL ============== -- C:\Users\Daniel\AppData\Roaming\Mozilla\FireFox\Profiles\hdla3c4t.default -- Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.13 ======================================== **** Internet Explorer Version [9.0.8112.16421] **** HKCU_Main|Default_Page_URL - hxxp://asus.msn.com HKCU_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKCU_Main|Start Page - hxxp://www.google.ca/ HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157 HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=69157 HKCU_URLSearchHooks|{BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - "?" (D:\PROGRA~1\COPERN~1\COPERN~1.DLL) HKCU_URLSearchHooks|{1392b8d2-5c05-419f-a8f6-b9f15a596612} (x) HKCU_SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} - "?" (?) HKCU_Toolbar\WebBrowser|{1392B8D2-5C05-419F-A8F6-B9F15A596612} (x) HKLM_Toolbar|{F2E259E8-0FC8-438C-A6E0-342DD80FA53E} (D:\Program Files (X86)\Copernic Agent\CopernicAgentExt.dll) HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x) HKLM_ElevationPolicy\{09B74B5E-2912-48de-9167-D80158E2A379} - C:\Program Files (x86)\CA VMN Anti-Spyware\CA_VMN_antispyware.exe (x) HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x) HKLM_ElevationPolicy\{0C5365B7-358F-402d-A440-F1270AEF1175} - C:\ProgramData\EmailNotifier\EmailNotifier.exe (x) HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x) HKLM_ElevationPolicy\{a00068b1-1e4e-41c7-afa9-baeb9697e2b9} - C:\Program Files (x86)\Common Files\Research In Motion\AppLoader\Loader.exe (Research In Motion Limited) HKLM_ElevationPolicy\{A6E2003F-95C5-4591-BA9A-0093080FDB5C} - C:\Program Files (x86)\Common Files\Oberon Media\OberonBroker\1.0.0.63\OberonBroker.exe (?) HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x) HKLM_Extensions\{193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - "?" (?) HKLM_Extensions\{688DC797-DC11-46A7-9F1B-445F4F58CE6E} - "Copernic Agent" (D:\Program Files (X86)\Copernic Agent\Web\IEToolbarIcon.ico) BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll) BHO\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - "Google Dictionary Compression sdch" (C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll) ======================================== C:\Program Files (x86)\Ad-Remover\Quarantine: 0 Fichier(s) C:\Program Files (x86)\Ad-Remover\Backup: 1 Fichier(s) C:\Ad-Report-SCAN[1].txt - 25/05/2011 10:46:45 (3905 Octet(s)) Fin à: 10:48:05, 25/05/2011 ============== E.O.F ============== --------------------------------------------------------------------------------------------------------------------------------------------------- ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 12/04/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: http://www.teamxscript.org C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 10:50:42 le 25/05/2011, Mode normal Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64) Daniel@PORTABLE-DANIEL (ASUSTeK Computer Inc. K50IJ) ============== ACTION(S) ============== Dossier supprimé: C:\Users\Daniel\AppData\LocalLow\PriceGong (!) -- Fichiers temporaires supprimés. Clé supprimée: HKLM\Software\Classes\Conduit.Engine Clé supprimée: HKLM\Software\Classes\Toolbar.CT1060933 Clé supprimée: HKLM\Software\Conduit Clé supprimée: HKCU\Software\Ask.com Clé supprimée: HKCU\Software\Conduit Clé supprimée: HKCU\Software\AppDataLow\Software\AskToolbar Clé supprimée: HKCU\Software\AppDataLow\Software\PriceGong Clé supprimée: HKCU\Software\AppDataLow\Software\Toolbar Clé supprimée: HKLM\Software\DigitalVolcano\OpenCandy ============== SCAN ADDITIONNEL ============== -- C:\Users\Daniel\AppData\Roaming\Mozilla\FireFox\Profiles\hdla3c4t.default -- Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.13 ======================================== **** Internet Explorer Version [9.0.8112.16421] **** HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896 HKCU_Main|Start Page - hxxp://fr.msn.com/ HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Start Page - hxxp://fr.msn.com/ HKCU_URLSearchHooks|{BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - "?" (D:\PROGRA~1\COPERN~1\COPERN~1.DLL) HKCU_URLSearchHooks|{1392b8d2-5c05-419f-a8f6-b9f15a596612} (x) HKCU_SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} - "?" (?) HKCU_Toolbar\WebBrowser|{1392B8D2-5C05-419F-A8F6-B9F15A596612} (x) HKLM_Toolbar|{F2E259E8-0FC8-438C-A6E0-342DD80FA53E} (D:\Program Files (X86)\Copernic Agent\CopernicAgentExt.dll) HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x) HKLM_ElevationPolicy\{09B74B5E-2912-48de-9167-D80158E2A379} - C:\Program Files (x86)\CA VMN Anti-Spyware\CA_VMN_antispyware.exe (x) HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x) HKLM_ElevationPolicy\{0C5365B7-358F-402d-A440-F1270AEF1175} - C:\ProgramData\EmailNotifier\EmailNotifier.exe (x) HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x) HKLM_ElevationPolicy\{a00068b1-1e4e-41c7-afa9-baeb9697e2b9} - C:\Program Files (x86)\Common Files\Research In Motion\AppLoader\Loader.exe (Research In Motion Limited) HKLM_ElevationPolicy\{A6E2003F-95C5-4591-BA9A-0093080FDB5C} - C:\Program Files (x86)\Common Files\Oberon Media\OberonBroker\1.0.0.63\OberonBroker.exe (?) HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x) HKLM_Extensions\{193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - "?" (?) HKLM_Extensions\{688DC797-DC11-46A7-9F1B-445F4F58CE6E} - "Copernic Agent" (D:\Program Files (X86)\Copernic Agent\Web\IEToolbarIcon.ico) BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll) BHO\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - "Google Dictionary Compression sdch" (C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll) ======================================== C:\Program Files (x86)\Ad-Remover\Quarantine: 28 Fichier(s) C:\Program Files (x86)\Ad-Remover\Backup: 15 Fichier(s) C:\Ad-Report-CLEAN[1].txt - 25/05/2011 10:50:45 (4103 Octet(s)) C:\Ad-Report-SCAN[1].txt - 25/05/2011 10:46:45 (4043 Octet(s)) Fin à: 10:51:58, 25/05/2011 ============== E.O.F ============== --------------------------------------------------------------------------------------------------------------------- Rapport de ZHPDiag v1.27.207 par Nicolas Coolman, Update du 20/05/2011 Run by Daniel at 25/05/2011 10:58:15 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v9.0.8112.16421 OPIE: Opera v11.11 (Defaut) MFIE: Mozilla Firefox v3.6.13 (fr) GCIE: Google Chrome v11.0.696.68 ---\\ System Information Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601) Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 3037 MB (48% free) System Restore: Activé (Enable) System drive C: has 76 GB (65%) free of 116 GB ---\\ Logged in mode Computer Name: PORTABLE-DANIEL User Name: Daniel All Users Names: HomeGroupUser$, Daniel, Administrateur, Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Users\Daniel\AppData\Roaming %LocalAppData%=C:\Users\Daniel\AppData\Local %StartMenu%=C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 76 Go of 116 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 261 Go of 333 Go) E:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK ---\\ Recherche particulière de fichiers génériques [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 01:19:30.) -- C:\Windows\Explorer.exe [2871808] [MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.13/07/2009 20:14:45.) -- C:\Windows\system32\Wininit.exe [96256] [MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.30/03/2011 17:44:43.) -- C:\Windows\system32\wininet.dll [1126912] ---\\ Processus lancés [MD5.F4DCD4912B185C3AAEB92A7040832AD1] - (.Pas de propriétaire - ALU.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768] [MD5.868E3486E7EC522330344152A5535783] - (.ASUS - SmartLogon Application.) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305720] [MD5.BDD790326FABC31FB635130810245062] - (.Pas de propriétaire - Wireless Console 3.) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1597440] [MD5.852EE4F61139A1B3F44EDAA0D5B3FC14] - (...) -- C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe [53888] [MD5.6DA7C93AB37B4A204BFCAE9FA07FF48D] - (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [206112] [MD5.51138BEEA3E2C21EC44D0932C71762A8] - (...) -- C:\Windows\SysWOW64\rundll32.exe [44544] [MD5.3ECCDD3FE310DD8F82D085447089ADB0] - (.ASUSTek Computer Inc. - ADSMTray.) -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe [272952] [MD5.5AEBF6FA9805C9101220AA4FB4FA17E7] - (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [105016] [MD5.32F43BE36AAC4E10C88EC24B34770C0D] - (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [6859392] [MD5.5666955DC9FD455A003D86A21E0483A9] - (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [170624] [MD5.F46F1EBC3F9DC2559B24AEEFC3D8206C] - (.Cisco Systems, Inc. - Network Magic Application.) -- D:\Program Files (X86)\Pure Networks\Network Magic\nmapp.exe [472112] [MD5.2E5212A0BFB98FE0167C92C76C87AFE3] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [249064] [MD5.B114DB354D13A21C1AC2B1807EE2F500] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [273544] [MD5.55EEFBB5C722789C38639AD8429A397B] - (.Research In Motion Limited - RIM Auto Update.) -- C:\Program Files (x86)\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe [648536] [MD5.52D28AE9E168BA60F2DFA00EDD101B14] - (.Research In Motion Limited - Launch Agent Service.) -- C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [79192] [MD5.37DEB76A2CF005841C4E45DE2B94D84F] - (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe [3058304] [MD5.57B4D34232852BFE4453BE571DF90D21] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720] [MD5.5A42370A885E2629A7C46BF743CE9CC9] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\opera.exe [941936] [MD5.0D2E386BC6D282C9DA7B40271D31CCB7] - (.RealNetworks, Inc. - RealPlayer.) -- C:\Program Files (x86)\Real\RealPlayer\RealPlay.exe [490112] [MD5.E97EF15BBA0628281EFDF81B9A9C358B] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [656896] ---\\ Opera, Plugins,Démarrage,Recherche (P1,B0,B1) B0 - SPO: operaprefs.ini [Daniel] Home URL=http://www.google.ca/ B1 - OSP: search.ini [Daniel] URL=http://www.google.com/search?q=%s&sourceid=opera&num=%i&ie=utf-8&oe=utf-8&channel=suggest B1 - OSP: search.ini [Daniel] URL=http://www.google.ca P1 - OPN:Opera Plugin Navigator . (.RealNetworks, Inc. - RealPlayer LiveConnect-Enabled Plug-In.) -- C:\Program Files (x86)\Opera\Program\Plugins\nppl3260.dll P1 - OPN:Opera Plugin Navigator . (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files (x86)\Opera\Program\Plugins\nprjplug.dll P1 - OPN:Opera Plugin Navigator . (.RealNetworks, Inc. - 12.0.1.647.) -- C:\Program Files (x86)\Opera\Program\Plugins\nprpjplug.dll ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_23 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- D:\Program Files\ma-config.com\nphardwaredetection.dll P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.dll M2 - MFEP: prefs.js [Daniel - hdla3c4t.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.8.3 (.Michel Gutierrez.) ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search Microsoft.com R0 - HKUS\S-1-5-21-279159176-2999597518-1161301331-1001\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Microsoft Corporation R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) [64Bits] - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} . (.Copernic Technologies Inc. - Copernic Agent Extensions.) (6.1.2.0) -- D:\PROGRA~1\COPERN~1\COPERN~1.DLL R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll R3 - URLSearchHook: (no name) [64Bits] - {1392b8d2-5c05-419f-a8f6-b9f15a596612} Clé orpheline R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer [64Bits] - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealPlayer - RealPlayer Download and Record Plugin.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugi O2 - BHO: Search Helper [64Bits] - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Google Dictionary Compression sdch [64Bits] - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} . (.Google Inc. - Fast Search.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Google Toolbar [64Bits] - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [ufSeAgnt.exe] . (.Trend Micro Inc. - Trend Micro Server Agent.) -- C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe O4 - HKLM\..\Run: [Eraser] . (.The Eraser Project - Eraser.) -- D:\PROGRA~2\Eraser\Eraser.exe O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe (.not file.) O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe (.not file.) O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe (.not file.) O4 - HKCU\..\Run: [Peii] rundll32 "C:\Users\Daniel\AppData\Roaming\KBDICR.dll (.not file.) O4 - HKCU\..\Run: [iSUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe O4 - HKLM\..\Wow6432Node\Run: [HControlUser] . (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe O4 - HKLM\..\Wow6432Node\Run: [ATKOSD2] . (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe O4 - HKLM\..\Wow6432Node\Run: [ATKMEDIA] . (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe O4 - HKLM\..\Wow6432Node\Run: [switchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Wow6432Node\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Wow6432Node\Run: [nmapp] . (.Cisco Systems, Inc. - Network Magic Application.) -- D:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe O4 - HKLM\..\Wow6432Node\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe O4 - HKLM\..\Wow6432Node\Run: [blackBerryAutoUpdate] . (.Research In Motion Limited - RIM Auto Update.) -- C:\Program Files (x86)\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe O4 - HKLM\..\Wow6432Node\Run: [RoxWatchTray] . (.Sonic Solutions - RoxMMTrayApp Module.) -- C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe O4 - HKLM\..\Wow6432Node\Run: [RIMBBLaunchAgent.exe] . (.Research In Motion Limited - Launch Agent Service.) -- C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe O4 - HKLM\..\Wow6432Node\Run: [bCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-21-279159176-2999597518-1161301331-1001\..\Run: [Peii] rundll32 "C:\Users\Daniel\AppData\Roaming\KBDICR.dll (.not file.) O4 - HKUS\S-1-5-21-279159176-2999597518-1161301331-1001\..\Run: [iSUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.) O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.) ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Download Manager.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft Silverlight\sllauncher.exe O4 - Global Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Daniel\Desktop\Desktop Manager.lnk . (.Research In Motion Limited.) -- D:\Program Files (X86)\Research In Motion\BlackBerry\DesktopMgr.exe O4 - Global Startup: C:\Users\Daniel\Desktop\ZHPDiag.lnk . (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe O4 - Global Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Copernic Agent Basic.lnk . (.Copernic Technologies Inc..) -- D:\Program Files (X86)\Copernic Agent\CopernicAgent.exe O4 - Global Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE O4 - Global Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- D:\Program Files (X86)\Mozilla Firefox\firefox.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: &Envoyer à OneNote . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll O8 - Extra context menu item: Chercher avec Copernic Agent . (.Copernic Technologies Inc. - Copernic Agent Extensions.) -- D:\Program Files (X86)\Copernic Agent\CopernicAgentExt.rdl O8 - Extra context menu item: E&xport to Microsoft Excel - (.not file.) - C:\PROGRA~2\MICROS~1\Office12\EXCEL.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - (.not file.) - C:\PROGRA~1\MICROS~2\Office14\EXCEL.exe ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office14\ONBTTN~1.dll ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} (Windows Live OneCare safety scanner control) - http://cdn.scan.onecare.live.com/resource/download/scanner/en-us/wlscctrl2.cab ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{C8051B18-CFF9-4043-82C7-D079B980A82E}: NameServer = 64.18.160.73,64.18.160.74 O17 - HKLM\System\CS1\Services\Tcpip\..\{C8051B18-CFF9-4043-82C7-D079B980A82E}: NameServer = 64.18.160.73,64.18.160.74 O17 - HKLM\System\CS2\Services\Tcpip\..\{C8051B18-CFF9-4043-82C7-D079B980A82E}: NameServer = 64.18.160.73,64.18.160.74 ---\\ Protocole additionnel et piratage de protocole (O18) O18 - Handler: pure-go [64Bits] - {4746C79A-2042-4332-8650-48966E44ABA8} . (.Cisco Systems, Inc. - Pure Service Provider DLL (64-bit).) -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\puresp4.dll ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: igfxcui . (.Pas de propriétaire - Pas de description.) -- igfxdev.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: (ADSMService) . (.ASUSTek Computer Inc. - ADSMSrv.) - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe O23 - Service: (AFBAgent) . (.ASUSTeK Computer Inc. - ASUS FastBoot.) - C:\Windows\system32\FBAgent.exe O23 - Service: (ASLDRService) . (.ASUS - ASLDR Service.) - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe O23 - Service: (ATKGFNEXSrv) . (.Pas de propriétaire - GFNEXSrv.) - C:\Program Files\ATKGFNEX\GFNEXSrv.exe O23 - Service: (cbVSCService) . (.CobianSoft, Luis Cobian - Cobian Backup Boletus VSC service.) - D:\Program Files (x86)\Cobian Backup 10\cbVSCService.exe O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: (gupdatem) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: (maconfservice) . (.CybelSoft - Service de détection matériel.) - D:\Program Files\ma-config.com\x64\maconfservice.exe O23 - Service: (NBService) . (.Nero AG - Nero BackItUp.) - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: (NMIndexingService) . (.Nero AG - Nero Home.) - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: (nmservice) . (.Cisco Systems, Inc. - Pure Networks Platform Service.) - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe O23 - Service: (Roxio UPnP Renderer 9) . (.Sonic Solutions - Roxio LiveShare Service.) - C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe O23 - Service: (Roxio Upnp Server 9) . (.Sonic Solutions - RoxioUpnpService9 Module.) - C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUpnpService9.exe O23 - Service: (RoxLiveShare9) . (.Sonic Solutions - Roxio LiveShare Service.) - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe O23 - Service: (RoxMediaDB9) . (.Sonic Solutions - RoxMediaDB9 Module.) - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: (RoxWatch9) . (.Sonic Solutions - RoxSniffer9 Module.) - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: (SandraAgentSrv) . (.SiSoftware - SiSoftware Deployment Agent Service (NT)(Un.) - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011c\RpcAgentSrv.exe O23 - Service: (SfCtlCom) . (.Trend Micro Inc. - Manages all components of Trend Micro Inter.) - C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe O23 - Service: (SwitchBoard) . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: (TMBMServer) . (.Trend Micro Inc. - Manages the Trend Micro unauthorized change.) - C:\Program Files\Trend Micro\BM\TMBMSRV.exe O23 - Service: (TmPfw) . (.Trend Micro Inc. - Trend Micro Personal Firewall Service.) - C:\Program Files\Trend Micro\Internet Security\TmPfw.exe O23 - Service: (TmProxy) . (.Trend Micro Inc. - Trend Micro Proxy Service.) - C:\Program Files\Trend Micro\Internet Security\TmProxy.exe O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys O41 - Driver: Trend Micro NDIS 6.0 Filter Driver (tmlwf) . (.Trend Micro Inc. - Trend Micro NDIS 6.0 Filter Driver (amd64-f.) - C:\Windows\System32\DRIVERS\tmlwf.sys O41 - Driver: (tmtdi) . (.Trend Micro Inc. - Trend Micro TDI Driver (amd64-fre).) - C:\Windows\System32\DRIVERS\tmtdi.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys ---\\ Logiciels installés (O42) O42 - Logiciel: ALTools Update - (.ESTsoft Corp..) [HKLM][64Bits] -- ALUpdate_is1 O42 - Logiciel: ALZip - (.ESTsoft Corp..) [HKLM][64Bits] -- ALZip_is1 O42 - Logiciel: ASUS AI Recovery - (.ASUS.) [HKLM][64Bits] -- {06585B02-F20D-4AB2-9A64-86EF2AE0F8F0} O42 - Logiciel: ASUS AP Bank - (.ASUSTEK.) [HKLM][64Bits] -- ASUS AP Bank_is1 O42 - Logiciel: ASUS CopyProtect - (.ASUS.) [HKLM][64Bits] -- {6B77A7F6-DD63-4F13-A6FF-83137A5AC354} O42 - Logiciel: ASUS Data Security Manager - (.ASUS.) [HKLM][64Bits] -- {FA2092C5-7979-412D-A962-6485274AE1EE} O42 - Logiciel: ASUS FancyStart - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {2B81872B-A054-48DA-BE3B-FA5C164C303A} O42 - Logiciel: ASUS LifeFrame3 - (.ASUS.) [HKLM][64Bits] -- {1DBD1F12-ED93-49C0-A7CC-56CBDE488158} O42 - Logiciel: ASUS Live Update - (.ASUS.) [HKLM][64Bits] -- {E657B243-9AD4-4ECC-BE81-4CCF8D667FD0} O42 - Logiciel: ASUS MultiFrame - (.ASUS.) [HKLM][64Bits] -- {9D48531D-2135-49FC-BC29-ACCDA5396A76} O42 - Logiciel: ASUS Power4Gear Hybrid - (.ASUS.) [HKLM] -- {91EFE3A1-585E-4F66-B5F6-F118F56C4C47} O42 - Logiciel: ASUS SmartLogon - (.ASUS.) [HKLM][64Bits] -- {64452561-169F-4A36-A2FF-B5E118EC65F5} O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM][64Bits] -- {0969AF05-4FF6-4C00-9406-43599238DE0D} O42 - Logiciel: ASUS Virtual Camera - (.asus.) [HKLM][64Bits] -- {EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1} O42 - Logiciel: ASUS WebStorage - (.eCareme Technologies, Inc..) [HKLM] -- ASUS WebStorage O42 - Logiciel: ASUS_Screensaver - (.Pas de propriétaire.) [HKLM][64Bits] -- ASUS_Screensaver O42 - Logiciel: ATK Generic Function Service - (.ATK.) [HKLM][64Bits] -- {D3D54F3E-C5C3-443D-978F-87A72E5616E8} O42 - Logiciel: ATK Hotkey - (.ASUS.) [HKLM][64Bits] -- {7C05592D-424B-46CB-B505-E0013E8E75C9} O42 - Logiciel: ATK Media - (.ASUS.) [HKLM][64Bits] -- {D1E5870E-E3E5-4475-98A6-ADD614524ADF} O42 - Logiciel: ATKOSD2 - (.ASUS.) [HKLM][64Bits] -- {3B05F2FB-745B-4012-ADF2-439F36B2E70B} O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40} O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723} O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 10 ActiveX 64-bit - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX 64 O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Photoshop CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {15FEDA5F-141C-4127-8D7E-B962D1742728} O42 - Logiciel: Adobe Reader X (10.0.1) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA0000000001} O42 - Logiciel: Advanced SystemCare 3 - (.IObit.) [HKLM][64Bits] -- Advanced SystemCare 3_is1 O42 - Logiciel: Alcor Micro USB Card Reader - (.Alcor Micro Corp..) [HKLM][64Bits] -- InstallShield_{F4BF5F6B-F695-4762-AEB2-D095A4C34D89} O42 - Logiciel: Auslogics Disk Defrag - (.Auslogics Software Pty Ltd.) [HKLM][64Bits] -- {DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1 O42 - Logiciel: Barre pour les dys ( pour word 2007) - (.Pierrick Courilleau.) [HKCU] -- 422D56ACE77600CFB3380BE09A1D62EBCDC6AD8E O42 - Logiciel: Bit Che - (.Convivea, Inc..) [HKLM][64Bits] -- {D9DA5C41-964F-455F-B5E7-3664519440E8}_is1 O42 - Logiciel: BlackBerry Desktop Software 5.0.1 - (.Research In Motion Ltd..) [HKLM][64Bits] -- BlackBerry_{F11E0BBC-5CB9-4D64-A942-6B64043BED97} O42 - Logiciel: BlackBerry Desktop Software 5.0.1 - (.Research In Motion Ltd..) [HKLM][64Bits] -- {F11E0BBC-5CB9-4D64-A942-6B64043BED97} O42 - Logiciel: BlackBerry Device Software Updater - (.Research In Motion Ltd.) [HKLM][64Bits] -- {B0A92733-C870-415C-A494-DF72C2C58402} O42 - Logiciel: BlackBerry® Media Sync - (.Research In Motion.) [HKLM][64Bits] -- {40A594D0-1490-4979-9382-D2B764F949C6} O42 - Logiciel: Bullzip PDF Printer 7.1.0.1195 - (.Bullzip.) [HKLM] -- Bullzip PDF Printer_is1 O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: Canon Easy-PhotoPrint EX - (.Pas de propriétaire.) [HKLM][64Bits] -- Easy-PhotoPrint EX O42 - Logiciel: Canon iP3300 - (.Pas de propriétaire.) [HKLM] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP3300 O42 - Logiciel: Cobian Backup 10 - (.Pas de propriétaire.) [HKLM][64Bits] -- CobBackup10 O42 - Logiciel: Conseiller de mise à niveau vers Windows 7 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D10CB57-B085-44c3-B435-2D193BA153F0} O42 - Logiciel: ControlDeck - (.ASUS.) [HKLM][64Bits] -- {5B65EF64-1DFA-414A-8C94-7BB726158E21} O42 - Logiciel: ConvertXtoDVD 4.1.4.338 - (.Pas de propriétaire.) [HKLM][64Bits] -- {DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1 O42 - Logiciel: Copernic Agent Basic - (.Copernic.) [HKLM][64Bits] -- Copernic Agent Basic O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658} O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658} O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} O42 - Logiciel: Definition update for Microsoft Office 2010 (KB982726) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{2FD3FD50-4D6B-433B-9AB8-83F04675DA44} O42 - Logiciel: Download Manager - (.skatecanada.contentdirect.tv.) [HKCU] -- 3517368364.skatecanada.contentdirect.tv O42 - Logiciel: Duplicate Cleaner 2.0 - (.DigitalVolcano.) [HKLM][64Bits] -- Duplicate Cleaner O42 - Logiciel: ETDWare PS/2-x64 7.0.5.9_WHQL - (.Pas de propriétaire.) [HKLM] -- Elantech O42 - Logiciel: Eraser 6.0.7.1893 - (.The Eraser Project.) [HKLM] -- {8CBBBC4D-B0B6-49DB-A421-98C65080D8EE} O42 - Logiciel: FLV Player - (.Martijn de Visser Software.) [HKLM][64Bits] -- FLV Player2.0.25 O42 - Logiciel: FTP Expert 3 - (.Pas de propriétaire.) [HKLM][64Bits] -- FTP Expert 3 O42 - Logiciel: Fast Boot - (.ASUS.) [HKLM] -- {13F4A7F3-EABC-4261-AF6B-1317777F0755} O42 - Logiciel: Feedback Tool - (.Microsoft Corporation.) [HKLM][64Bits] -- {13A5E785-5197-4EAD-8EE3-D660271E49BC} O42 - Logiciel: Feedback Tool - (.Microsoft Corporation.) [HKLM][64Bits] -- {90024193-9F13-4877-89D5-A1CDF0CBBF28} O42 - Logiciel: Free Mp3 Wma Converter V 1.91 - (.Koyote Soft.) [HKLM][64Bits] -- Free Mp3 Wma Converter_is1 O42 - Logiciel: Free Video Converter V 2.9 - (.Koyote Soft.) [HKLM][64Bits] -- Free Video Converter_is1 O42 - Logiciel: GPL Ghostscript Lite 8.70 - (.Pas de propriétaire.) [HKLM][64Bits] -- GPL Ghostscript Lite_is1 O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {488F0347-C4A7-4374-91A7-30818BEDA710} O42 - Logiciel: Game Park Console - (.Oberon Media, Inc..) [HKLM][64Bits] -- {C9991C9B-0783-452E-8954-AB93E2AB3B80}_is1 O42 - Logiciel: Glary Utilities 2.31.0.1098 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities_is1 O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Guitar Pro 5.2 - (.Arobas Music.) [HKLM][64Bits] -- Guitar Pro 5_is1 O42 - Logiciel: ImpôtRapide 2010 - (.Intuit Canada.) [HKLM][64Bits] -- {4D6B46F2-A261-44CA-A7F5-1FEA4EFBEB59} O42 - Logiciel: Intel® Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421} O42 - Logiciel: Intel® Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} O42 - Logiciel: Java 6 Update 23 (64-bit) - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F86416023FF} O42 - Logiciel: Java 6 Update 24 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216024FF} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM][64Bits] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44} O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM] -- {CACF8330-7FDD-42BD-8D51-54EDB3DC86FC} O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643} O42 - Logiciel: Microsoft Office Access MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0015-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Groove MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00BA-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0044-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Office 64-bit Components 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002A-0000-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office OneNote MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00A1-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {91140000-0011-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professionnel Plus 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.PROPLUSR O42 - Logiciel: Microsoft Office Proof (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002A-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {CFF8B8E8-E086-4DE0-935F-FE22CAB54F80} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - KB2467175 - (.Microsoft Corporation.) [HKLM][64Bits] -- {a0fe116e-9a8a-466f-aee0-625cb7c207e3} O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM][64Bits] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 - (.Microsoft Corporation.) [HKLM][64Bits] -- {5DA8F6CD-C70E-39D8-8430-3D9808D6BD17} O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 - (.Microsoft Corporation.) [HKLM][64Bits] -- {196BB40D-1578-3D01-B289-BEFC77A11A1E} O42 - Logiciel: Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - (.Microsoft Corporation.) [HKLM] -- Microsoft Visual Studio 2010 Tools for Office Runtime (x64) O42 - Logiciel: Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - (.Microsoft Corporation.) [HKLM] -- {BD430C50-784F-32CD-87E7-A8C47EE6107F} O42 - Logiciel: Microsoft_VC80_ATL_x86 - (.Adobe.) [HKLM][64Bits] -- {0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25} O42 - Logiciel: Microsoft_VC80_ATL_x86_x64 - (.Adobe.) [HKLM] -- {925D058B-564A-443A-B4B2-7E90C6432E55} O42 - Logiciel: Microsoft_VC80_CRT_x86 - (.Adobe.) [HKLM][64Bits] -- {92D58719-BBC1-4CC3-A08B-56C9E884CC2C} O42 - Logiciel: Microsoft_VC80_CRT_x86_x64 - (.Adobe.) [HKLM] -- {4569AD91-47F4-4D9E-8FC9-717EC32D7AE1} O42 - Logiciel: Microsoft_VC80_MFCLOC_x86 - (.Adobe.) [HKLM][64Bits] -- {D92BBB52-82FF-42ED-8A3C-4E062F944AB7} O42 - Logiciel: Microsoft_VC80_MFCLOC_x86_x64 - (.Adobe.) [HKLM] -- {1E9FC118-651D-4934-97BE-E53CAE5C7D45} O42 - Logiciel: Microsoft_VC80_MFC_x86 - (.Adobe.) [HKLM][64Bits] -- {D1A19B02-817E-4296-A45B-07853FD74D57} O42 - Logiciel: Microsoft_VC80_MFC_x86_x64 - (.Adobe.) [HKLM] -- {C8C1BAD5-54E6-4146-AD07-3A8AD36569C3} O42 - Logiciel: Microsoft_VC90_ATL_x86 - (.Adobe.) [HKLM][64Bits] -- {033E378E-6AD3-4AD5-BDEB-CBD69B31046C} O42 - Logiciel: Microsoft_VC90_ATL_x86_x64 - (.Adobe.) [HKLM] -- {8557397C-A42D-486F-97B3-A2CBC2372593} O42 - Logiciel: Microsoft_VC90_CRT_x86 - (.Adobe.) [HKLM][64Bits] -- {08D2E121-7F6A-43EB-97FD-629B44903403} O42 - Logiciel: Microsoft_VC90_CRT_x86_x64 - (.Adobe.) [HKLM] -- {92A3CA0D-55CD-4C5D-BA95-5C2600C20F26} O42 - Logiciel: Microsoft_VC90_MFC_x86 - (.Adobe.) [HKLM][64Bits] -- {635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A} O42 - Logiciel: Microsoft_VC90_MFC_x86_x64 - (.Adobe.) [HKLM] -- {A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB} O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack O42 - Logiciel: Mozilla Firefox (3.6.13) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox (3.6.13) O42 - Logiciel: Médialexie - Barre d'outils Médialexie - (.Médialexie.) [HKLM][64Bits] -- Barre Médialexie_is1 O42 - Logiciel: Nero 7 Premium - (.Nero AG.) [HKLM][64Bits] -- {CF097717-F174-4144-954A-FBC4BF301033} O42 - Logiciel: Network Magic - (.Cisco Systems, Inc..) [HKLM][64Bits] -- Network MagicUninstall O42 - Logiciel: Opera 11.11 - (.Opera Software ASA.) [HKLM][64Bits] -- Opera 11.11.2109 O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392} O42 - Logiciel: RealNetworks - Microsoft Visual C++ 2008 Runtime - (.RealNetworks, Inc.) [HKLM][64Bits] -- {7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA} O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM][64Bits] -- RealPlayer 12.0 O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM][64Bits] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB} O42 - Logiciel: Replay Media Catcher 4 - (.Applian Technologies.) [HKLM] -- {CC1C287E-B0BB-421A-8F13-09F9A834F2A4} O42 - Logiciel: Revo Uninstaller 1.91 - (.VS Revo Group.) [HKLM][64Bits] -- Revo Uninstaller O42 - Logiciel: Roxio Media Manager - (.Roxio.) [HKLM][64Bits] -- {B98BE95C-E76F-4246-B8E6-BEB8EE791D06} O42 - Logiciel: SRS Premium Sound Control Panel - (.SRS Labs, Inc..) [HKLM] -- {E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049} O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB931906 O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708 O42 - Logiciel: Security Update for Microsoft Excel 2010 (KB2466146) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{4D3B2D30-46D3-4DC0-BA73-85306B10E0AE} O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289078) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{1D1A4F08-2F17-475B-BA72-476CE5992FEE} O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289161) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F134C2C6-30B3-4169-A325-58482B4CE6FC} O42 - Logiciel: Security Update for Microsoft PowerPoint 2010 (KB2519975) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{45D7C5CD-B967-44AF-9DAB-E5C8545558AD} O42 - Logiciel: Security Update for Microsoft Publisher 2010 (KB2409055) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{C3C277D5-36E3-4B1A-926A-175B2BC019CF} O42 - Logiciel: Security Update for Microsoft Word 2010 (KB2345000) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{A6D422EE-1196-45EE-B9AE-6B5B64975E8B} O42 - Logiciel: SiSoftware Sandra Lite 2011c - (.SiSoftware.) [HKLM] -- {C3113E55-7BCB-4de3-8EBF-60E6CE6B2296}_is1 O42 - Logiciel: System Requirements Lab for Intel - (.Husdawg, LLC.) [HKLM][64Bits] -- {F7FC9307-374E-4017-8E9D-DE1154780480} O42 - Logiciel: Trend Micro Internet Security - (.Trend Micro Inc..) [HKLM] -- {718D791F-F4E8-4aa7-98A6-15FDED17BDD0} O42 - Logiciel: Trend Micro Internet Security - (.Trend Micro Inc..) [HKLM] -- {9D2B0322-44AE-460E-9283-4D2D7A9205AE} O42 - Logiciel: USB 2.0 1.3M UVC WebCam - (.Pas de propriétaire.) [HKLM] -- USB 2.0 1.3M UVC WebCam O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2473228) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2473228 O42 - Logiciel: Update for Microsoft Office 2010 (KB2202188) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{86B7A074-265D-420C-9E1E-7A920EF0ECA7} O42 - Logiciel: Update for Microsoft Office 2010 (KB2413186) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{556146F7-74AE-4E0A-B64F-5B8B93469F61} O42 - Logiciel: Update for Microsoft Office 2010 (KB2413186) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B5516874-E926-4BFD-B412-D0E70112F244} O42 - Logiciel: Update for Microsoft Office 2010 (KB2413186) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{D6CE7280-6EE3-419A-8F47-DB111C040B1B} O42 - Logiciel: Update for Microsoft Office 2010 (KB2494150) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA} O42 - Logiciel: Update for Microsoft OneNote 2010 (KB2493983) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{309EEC22-83CE-4109-B019-BA9392FAA322} O42 - Logiciel: Update for Microsoft Outlook Social Connector (KB2441641) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{A10DC2B7-6FDA-4C17-9DF0-6A834CAC4306} O42 - Logiciel: Update for Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (KB982305) - (.Microsoft Corporation.) [HKLM][64Bits] -- {BD430C50-784F-32CD-87E7-A8C47EE6107F}.KB982305 O42 - Logiciel: VD64Inst - (.Roxio, Inc..) [HKLM] -- {22ABA92B-6C1B-46D8-AC2B-C48EEAE172A9} O42 - Logiciel: VIA Platform Device Manager - (.VIA Technologies, Inc..) [HKLM][64Bits] -- InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169} O42 - Logiciel: WinFlash - (.ASUS.) [HKLM][64Bits] -- {8F21291E-0444-4B1D-B9F9-4370A73E346D} O42 - Logiciel: Winamp (remove only) - (.Pas de propriétaire.) [HKLM][64Bits] -- Winamp O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066} O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {46A5FBE9-ADB3-4493-A1CC-B4CFFD24D26A} O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {FE4BE0BD-1EDB-4D24-9614-847B3C472887} O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {76810709-A7D3-468D-9167-A1780C1E766C} O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1B8ABA62-74F0-47ED-B18C-A43128E591B8} O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {0B0F231F-CE6A-483D-AA23-77B364F75917} O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0} O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D56775A-93F3-44A3-8092-840E3826DE30} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90} O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3} O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {92EA4134-10D1-418A-91E1-5A0453131A38} O42 - Logiciel: Windows Live OneCare safety scanner - (.Pas de propriétaire.) [HKLM] -- Windows Live OneCare safety scanner O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A} O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3} O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70} O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM][64Bits] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1} O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM][64Bits] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4} O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM][64Bits] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F} O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2} O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {09F56A49-A7B1-4AAB-95B9-D13094254AD1} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B9A92DA-6374-4872-B646-253F18624D5F} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {A726AE06-AAA3-43D1-87E3-70F510314F04} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF} O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM][64Bits] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194} O42 - Logiciel: Wireless Console 3 - (.ASUS.) [HKLM][64Bits] -- {20FDF948-C8ED-4543-A539-F7F4AEF5AFA2} O42 - Logiciel: mIRC - (.Pas de propriétaire.) [HKLM][64Bits] -- mIRC O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B} ---\\ HKCU & HKLM Software Keys [HKCU\Software\ASUS] [HKCU\Software\ATK0100] [HKCU\Software\Adobe] [HKCU\Software\Ahead] [HKCU\Software\Antanda] [HKCU\Software\AppDataLow\Software\Google] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\ApplianTechnologies] [HKCU\Software\Applian] [HKCU\Software\Ask&Record] [HKCU\Software\Auslogics] [HKCU\Software\Binary Noise] [HKCU\Software\Canon] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Copernic] [HKCU\Software\CyberLink] [HKCU\Software\DivXNetworks] [HKCU\Software\ECAREME] [HKCU\Software\ESET] [HKCU\Software\ESTsoft] [HKCU\Software\Elantech] [HKCU\Software\Eraser] [HKCU\Software\Foxit Software] [HKCU\Software\FreeCDRIP] [HKCU\Software\GlarySoft] [HKCU\Software\Google] [HKCU\Software\HookNetwork] [HKCU\Software\IM Providers] [HKCU\Software\InstallShield] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\MMTWN] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\Medialexie] [HKCU\Software\Médialexie] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\Opera Software] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Pure Networks] [HKCU\Software\RealNetworks] [HKCU\Software\Replay Media Catcher 4] [HKCU\Software\Research In Motion] [HKCU\Software\Roxio] [HKCU\Software\SiSoftware] [HKCU\Software\SoftVTU] [HKCU\Software\Softonic] [HKCU\Software\Sonic Solutions] [HKCU\Software\Sonic] [HKCU\Software\Syjrzybog] [HKCU\Software\Synapse Developpement] [HKCU\Software\System Requirements Lab] [HKCU\Software\Toshiba] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\VS Revo Group] [HKCU\Software\VSO] [HKCU\Software\VSRevoGroup] [HKCU\Software\Winamp] [HKCU\Software\Wintertree] [HKCU\Software\Wow6432Node] [HKCU\Software\cybelsoft] [HKCU\Software\mIRC] [HKLM\Software\ASPG] [HKLM\Software\ASUS] [HKLM\Software\ATI Technologies] [HKLM\Software\ATK0100] [HKLM\Software\Adobe] [HKLM\Software\Ahead] [HKLM\Software\Applian Technologies] [HKLM\Software\Arobas Music] [HKLM\Software\AsLdr] [HKLM\Software\BSProductManage] [HKLM\Software\Bullzip] [HKLM\Software\CDDB] [HKLM\Software\Canon] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CobianSoft] [HKLM\Software\Copernic] [HKLM\Software\CoreSecurity] [HKLM\Software\CyberLink] [HKLM\Software\Dantz] [HKLM\Software\Debug] [HKLM\Software\DigitalVolcano] [HKLM\Software\ECAREME] [HKLM\Software\ESET] [HKLM\Software\ESTsoft] [HKLM\Software\Foxit Software] [HKLM\Software\Google] [HKLM\Software\Hewlett-Packard] [HKLM\Software\IObit] [HKLM\Software\InstallShield] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\Medialexie] [HKLM\Software\MimarSinan] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\Médialexie] [HKLM\Software\Nero] [HKLM\Software\Netscape] [HKLM\Software\ODBC] [HKLM\Software\Oberon Media] [HKLM\Software\Opera Software] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\Pure Networks] [HKLM\Software\QSound Labs, Inc.] [HKLM\Software\RealNetworks] [HKLM\Software\RegisteredApplications] [HKLM\Software\Research In Motion] [HKLM\Software\Roxio] [HKLM\Software\SONIX] [HKLM\Software\SRS Labs] [HKLM\Software\SiSoftware] [HKLM\Software\Sonic] [HKLM\Software\TOSHIBA] [HKLM\Software\The Silicon Realms Toolworks] [HKLM\Software\Toshiba] [HKLM\Software\TrendMicro] [HKLM\Software\VIA Technologies, Inc] [HKLM\Software\VSO] [HKLM\Software\Visicom Media] [HKLM\Software\Volatile] [HKLM\Software\WidCommUpdate] [HKLM\Software\Wow6432Node] [HKLM\Software\Xing Technology Corp.] [HKLM\Software\cybelsoft] [HKLM\Software\mozilla.org] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 04/05/2010 - 22:52:48 - [1518195] ----D- C:\Program Files\ASUS O43 - CFD: 04/05/2010 - 22:45:16 - [464496] ----D- C:\Program Files\ATKGFNEX O43 - CFD: 07/04/2011 - 17:44:26 - [16248268] ----D- C:\Program Files\Bullzip O43 - CFD: 01/01/2011 - 17:20:12 - [7873427] --H-D- C:\Program Files\CanonBJ O43 - CFD: 11/05/2011 - 16:59:42 - [7278424] ----D- C:\Program Files\CCleaner O43 - CFD: 07/04/2011 - 17:44:32 - [180183618] ----D- C:\Program Files\Common Files O43 - CFD: 16/03/2011 - 17:29:46 - [90256916] ----D- C:\Program Files\DVD Maker O43 - CFD: 04/05/2010 - 21:51:26 - [7127936] ----D- C:\Program Files\Elantech O43 - CFD: 27/12/2010 - 20:32:22 - [2772564] ----D- C:\Program Files\EMC Corporation O43 - CFD: 04/05/2010 - 22:16:10 - [318960] ----D- C:\Program Files\Google O43 - CFD: 30/03/2011 - 18:49:34 - [6228017] ----D- C:\Program Files\Internet Explorer O43 - CFD: 06/02/2011 - 18:04:02 - [80890861] ----D- C:\Program Files\Java O43 - CFD: 14/07/2009 - 03:45:56 - [149237810] ----D- C:\Program Files\Microsoft Games O43 - CFD: 16/05/2011 - 19:53:38 - [7299127] ----D- C:\Program Files\Microsoft Office O43 - CFD: 24/12/2010 - 18:59:50 - [2327282] ----D- C:\Program Files\mIRC O43 - CFD: 04/05/2010 - 22:53:02 - [12522726] ----D- C:\Program Files\P4G O43 - CFD: 14/07/2009 - 01:32:40 - [36813993] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 01/05/2011 - 01:04:30 - [141048] ----D- C:\Program Files\Roxio O43 - CFD: 14/01/2011 - 23:21:04 - [106748545] ----D- C:\Program Files\SiSoftware O43 - CFD: 04/05/2010 - 22:44:12 - [2086352] ----D- C:\Program Files\SRS Labs O43 - CFD: 31/01/2011 - 17:19:40 - [1007790729] ----D- C:\Program Files\Trend Micro O43 - CFD: 14/07/2009 - 01:09:28 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 16/03/2011 - 17:29:46 - [4039680] ----D- C:\Program Files\Windows Defender O43 - CFD: 16/03/2011 - 17:29:46 - [9224824] ----D- C:\Program Files\Windows Journal O43 - CFD: 24/12/2010 - 09:32:38 - [275698] ----D- C:\Program Files\Windows Live O43 - CFD: 31/01/2011 - 16:48:34 - [1253492] ----D- C:\Program Files\Windows Live Safety Center O43 - CFD: 16/03/2011 - 17:29:46 - [6667776] ----D- C:\Program Files\Windows Mail O43 - CFD: 16/03/2011 - 17:29:46 - [7687085] ----D- C:\Program Files\Windows Media Player O43 - CFD: 14/07/2009 - 01:32:40 - [12627636] ----D- C:\Program Files\Windows NT O43 - CFD: 16/03/2011 - 17:29:46 - [5516056] ----D- C:\Program Files\Windows Photo Viewer O43 - CFD: 16/03/2011 - 17:29:46 - [244736] ----D- C:\Program Files\Windows Portable Devices O43 - CFD: 16/03/2011 - 17:29:46 - [11374579] ----D- C:\Program Files\Windows Sidebar O43 - CFD: 15/02/2011 - 21:06:02 - [51709920] ----D- C:\Program Files\Common Files\Adobe O43 - CFD: 07/04/2011 - 17:44:32 - [34672] ----D- C:\Program Files\Common Files\Bullzip O43 - CFD: 04/05/2010 - 22:38:12 - [18392064] ----D- C:\Program Files\Common Files\Intel O43 - CFD: 16/05/2011 - 19:54:48 - [97241201] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 13/07/2009 - 23:20:10 - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 13/07/2009 - 23:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 23/03/2011 - 19:00:20 - [12194291] ----D- C:\Program Files\Common Files\System O43 - CFD: 05/03/2011 - 17:12:36 - [152775678] ----D- C:\ProgramData\Adobe O43 - CFD: 23/05/2011 - 12:27:56 - [3704] ----D- C:\ProgramData\Ahead O43 - CFD: 04/05/2010 - 22:41:00 - [495] ----D- C:\ProgramData\AmUStor O43 - CFD: 14/07/2009 - 01:08:58 - [0] -SH-D- C:\ProgramData\Application Data O43 - CFD: 23/12/2010 - 20:28:42 - [3798] ----D- C:\ProgramData\ASUS O43 - CFD: 01/01/2011 - 17:20:48 - [16980805] --H-D- C:\ProgramData\CanonBJ O43 - CFD: 01/01/2011 - 17:43:08 - [0] --H-D- C:\ProgramData\CanonEPP O43 - CFD: 01/01/2011 - 17:43:08 - [0] --H-D- C:\ProgramData\CanonIJEPPEX2 O43 - CFD: 04/05/2010 - 22:09:54 - [34445] ----D- C:\ProgramData\CyberLink O43 - CFD: 14/07/2009 - 01:08:58 - [0] -SH-D- C:\ProgramData\Desktop O43 - CFD: 14/07/2009 - 01:08:58 - [0] -SH-D- C:\ProgramData\Documents O43 - CFD: 27/01/2011 - 18:19:02 - [1713229] ----D- C:\ProgramData\EmailNotifier O43 - CFD: 23/12/2010 - 22:03:24 - [8483] ----D- C:\ProgramData\ESET O43 - CFD: 23/12/2010 - 21:40:08 - [883232] ----D- C:\ProgramData\ESTsoft O43 - CFD: 14/07/2009 - 01:08:58 - [0] -SH-D- C:\ProgramData\Favorites O43 - CFD: 04/05/2010 - 22:16:12 - [12707] ----D- C:\ProgramData\Google O43 - CFD: 01/05/2011 - 01:04:24 - [2273] ----D- C:\ProgramData\InstallShield O43 - CFD: 08/02/2011 - 22:07:48 - [10564] ----D- C:\ProgramData\Intuit Canada O43 - CFD: 31/01/2011 - 10:53:48 - [44628] ----D- C:\ProgramData\ma-config.com O43 - CFD: 29/12/2010 - 10:13:28 - [6724904] ----D- C:\ProgramData\Malwarebytes O43 - CFD: 07/04/2011 - 21:27:32 - [8427] ----D- C:\ProgramData\Medialexie O43 - CFD: 16/05/2011 - 20:00:26 - [753799580] -S--D- C:\ProgramData\Microsoft O43 - CFD: 18/05/2011 - 10:20:54 - [205792] ----D- C:\ProgramData\Microsoft Help O43 - CFD: 24/12/2010 - 20:21:30 - [1354688] ----D- C:\ProgramData\Nero O43 - CFD: 04/05/2010 - 22:27:04 - [17536868] ----D- C:\ProgramData\OberonGameConsole O43 - CFD: 13/03/2011 - 14:01:00 - [2090] ----D- C:\ProgramData\P4G O43 - CFD: 19/01/2011 - 18:49:26 - [695] ----D- C:\ProgramData\Partner O43 - CFD: 23/12/2010 - 21:45:06 - [141494193] ----D- C:\ProgramData\Pure Networks O43 - CFD: 16/04/2011 - 22:55:00 - [1415993] ----D- C:\ProgramData\Real O43 - CFD: 13/02/2011 - 11:34:34 - [1709] ----D- C:\ProgramData\regid.1986-12.com.adobe O43 - CFD: 01/05/2011 - 00:59:14 - [956436] ----D- C:\ProgramData\Research In Motion O43 - CFD: 27/12/2010 - 20:59:32 - [807775] ----D- C:\ProgramData\RetroExp O43 - CFD: 28/12/2010 - 09:51:44 - [1966148] ----D- C:\ProgramData\Retrospect O43 - CFD: 02/05/2011 - 20:05:40 - [5422845] ----D- C:\ProgramData\Roxio O43 - CFD: 01/05/2011 - 01:04:16 - [1033] ----D- C:\ProgramData\Sonic O43 - CFD: 14/07/2009 - 01:08:58 - [0] -SH-D- C:\ProgramData\Start Menu O43 - CFD: 16/04/2011 - 22:52:46 - [119] ----D- C:\ProgramData\Sun O43 - CFD: 04/05/2010 - 22:09:08 - [143502] ----D- C:\ProgramData\Temp O43 - CFD: 14/07/2009 - 01:08:58 - [0] -SH-D- C:\ProgramData\Templates O43 - CFD: 30/01/2011 - 13:57:08 - [12487] ----D- C:\ProgramData\TOSHIBA O43 - CFD: 31/01/2011 - 17:21:42 - [129850] ----D- C:\ProgramData\Trend Micro O43 - CFD: 25/12/2010 - 18:22:20 - [47] ----D- C:\ProgramData\vsosdk O43 - CFD: 05/03/2011 - 17:11:52 - [5686468] ----D- C:\Users\Daniel\AppData\Roaming\Adobe O43 - CFD: 23/05/2011 - 12:43:50 - [149918] ----D- C:\Users\Daniel\AppData\Roaming\Ahead O43 - CFD: 15/02/2011 - 21:06:04 - [40960] ----D- C:\Users\Daniel\AppData\Roaming\Asus WebStorage O43 - CFD: 31/12/2010 - 00:30:42 - [305006] ----D- C:\Users\Daniel\AppData\Roaming\Auslogics O43 - CFD: 02/01/2011 - 13:47:10 - [0] ----D- C:\Users\Daniel\AppData\Roaming\Canon O43 - CFD: 26/01/2011 - 11:02:44 - [2560] ----D- C:\Users\Daniel\AppData\Roaming\Classes de site O43 - CFD: 23/12/2010 - 20:38:40 - [808329] ----D- C:\Users\Daniel\AppData\Roaming\Convivea O43 - CFD: 29/03/2011 - 20:12:20 - [784686] ----D- C:\Users\Daniel\AppData\Roaming\Copernic O43 - CFD: 26/01/2011 - 10:54:56 - [109199] ----D- C:\Users\Daniel\AppData\Roaming\Dynamique O43 - CFD: 23/12/2010 - 21:40:44 - [10285321] ----D- C:\Users\Daniel\AppData\Roaming\ESTsoft O43 - CFD: 04/02/2011 - 19:24:14 - [3276] ----D- C:\Users\Daniel\AppData\Roaming\Foxit Software O43 - CFD: 13/02/2011 - 00:50:32 - [292] ----D- C:\Users\Daniel\AppData\Roaming\FreeAudioPack O43 - CFD: 13/02/2011 - 00:51:44 - [435] ----D- C:\Users\Daniel\AppData\Roaming\FreeCDRipper O43 - CFD: 05/02/2011 - 23:31:54 - [838] ----D- C:\Users\Daniel\AppData\Roaming\FreeVideoConverter O43 - CFD: 16/02/2011 - 10:58:24 - [9270] ----D- C:\Users\Daniel\AppData\Roaming\GlarySoft O43 - CFD: 23/12/2010 - 20:18:50 - [0] ----D- C:\Users\Daniel\AppData\Roaming\Identities O43 - CFD: 01/05/2011 - 01:04:24 - [293] ----D- C:\Users\Daniel\AppData\Roaming\InstallShield O43 - CFD: 08/02/2011 - 22:09:32 - [52332] ----D- C:\Users\Daniel\AppData\Roaming\Intuit Canada O43 - CFD: 24/01/2011 - 19:40:28 - [2302107] ----D- C:\Users\Daniel\AppData\Roaming\IObit O43 - CFD: 23/12/2010 - 21:02:38 - [8318] ----D- C:\Users\Daniel\AppData\Roaming\Macromedia O43 - CFD: 29/12/2010 - 10:13:40 - [8017804] ----D- C:\Users\Daniel\AppData\Roaming\Malwarebytes O43 - CFD: 14/07/2009 - 03:44:40 - [0] ----D- C:\Users\Daniel\AppData\Roaming\Media Center Programs O43 - CFD: 16/05/2011 - 21:07:14 - [21016794] -S--D- C:\Users\Daniel\AppData\Roaming\Microsoft O43 - CFD: 24/02/2011 - 14:43:02 - [1590996] ----D- C:\Users\Daniel\AppData\Roaming\Mozilla O43 - CFD: 24/02/2011 - 14:23:08 - [960924] ----D- C:\Users\Daniel\AppData\Roaming\Opera O43 - CFD: 23/12/2010 - 21:12:12 - [2819] ----D- C:\Users\Daniel\AppData\Roaming\PFStaticIP O43 - CFD: 13/03/2011 - 14:01:02 - [502] ----D- C:\Users\Daniel\AppData\Roaming\PhotoFiltre O43 - CFD: 16/04/2011 - 22:55:00 - [1017789] ----D- C:\Users\Daniel\AppData\Roaming\Real O43 - CFD: 22/01/2011 - 13:25:24 - [1032192] ----D- C:\Users\Daniel\AppData\Roaming\Reasonable Software House Ltd O43 - CFD: 01/05/2011 - 01:13:28 - [36702844] ----D- C:\Users\Daniel\AppData\Roaming\Research In Motion O43 - CFD: 02/05/2011 - 20:02:00 - [1077330] ----D- C:\Users\Daniel\AppData\Roaming\Roxio O43 - CFD: 26/01/2011 - 11:01:30 - [1057280] ----D- C:\Users\Daniel\AppData\Roaming\Sites O43 - CFD: 23/05/2011 - 10:58:12 - [3782130] ----D- C:\Users\Daniel\AppData\Roaming\uTorrent O43 - CFD: 30/03/2011 - 17:26:48 - [1699146] ----D- C:\Users\Daniel\AppData\Roaming\vlc O43 - CFD: 23/05/2011 - 12:26:42 - [220297] ----D- C:\Users\Daniel\AppData\Roaming\Vso O43 - CFD: 24/12/2010 - 15:48:56 - [295] ----D- C:\Users\Daniel\AppData\Roaming\Windows Live Writer O43 - CFD: 25/02/2011 - 21:29:20 - [15390038] ----D- C:\Users\Daniel\Appdata\Local\Adobe O43 - CFD: 24/12/2010 - 20:31:12 - [2043726] ----D- C:\Users\Daniel\Appdata\Local\Ahead O43 - CFD: 23/12/2010 - 20:05:02 - [0] -SH-D- C:\Users\Daniel\Appdata\Local\Application Data O43 - CFD: 21/02/2011 - 19:14:38 - [225347] ----D- C:\Users\Daniel\Appdata\Local\Apps O43 - CFD: 21/02/2011 - 19:15:12 - [96574] ----D- C:\Users\Daniel\Appdata\Local\assembly O43 - CFD: 23/12/2010 - 20:28:42 - [1373754] ----D- C:\Users\Daniel\Appdata\Local\ASUS O43 - CFD: 11/03/2011 - 12:02:26 - [62404] ----D- C:\Users\Daniel\Appdata\Local\Canon Easy-PhotoPrint EX O43 - CFD: 23/05/2011 - 22:01:24 - [0] ----D- C:\Users\Daniel\Appdata\Local\Deployment O43 - CFD: 13/03/2011 - 11:03:20 - [9805169] ----D- C:\Users\Daniel\Appdata\Local\Diagnostics O43 - CFD: 13/03/2011 - 21:53:20 - [1105157] ----D- C:\Users\Daniel\Appdata\Local\ElevatedDiagnostics O43 - CFD: 29/01/2011 - 12:04:06 - [10897] ----D- C:\Users\Daniel\Appdata\Local\Eraser 6 O43 - CFD: 24/12/2010 - 20:19:04 - [483902] ----D- C:\Users\Daniel\Appdata\Local\ESET O43 - CFD: 24/02/2011 - 17:16:06 - [488622119] ----D- C:\Users\Daniel\Appdata\Local\FLVService O43 - CFD: 31/01/2011 - 12:47:04 - [61] ----D- C:\Users\Daniel\Appdata\Local\Google O43 - CFD: 23/12/2010 - 20:05:02 - [0] -SH-D- C:\Users\Daniel\Appdata\Local\Historique O43 - CFD: 24/02/2011 - 17:51:58 - [62844] ----D- C:\Users\Daniel\Appdata\Local\Jaksta_Pty_Ltd O43 - CFD: 24/02/2011 - 18:22:06 - [6259712] ----D- C:\Users\Daniel\Appdata\Local\mdnslib O43 - CFD: 16/05/2011 - 20:17:22 - [293102468] ----D- C:\Users\Daniel\Appdata\Local\Microsoft O43 - CFD: 08/01/2011 - 16:33:30 - [13238] ----D- C:\Users\Daniel\Appdata\Local\Microsoft Corporation O43 - CFD: 15/05/2011 - 18:34:30 - [237812] ----D- C:\Users\Daniel\Appdata\Local\Microsoft Games O43 - CFD: 23/03/2011 - 20:16:36 - [169664] ----D- C:\Users\Daniel\Appdata\Local\Microsoft Help O43 - CFD: 24/02/2011 - 14:42:48 - [25213548] ----D- C:\Users\Daniel\Appdata\Local\Mozilla O43 - CFD: 24/02/2011 - 14:23:08 - [24261291] ----D- C:\Users\Daniel\Appdata\Local\Opera O43 - CFD: 23/12/2010 - 20:05:22 - [40960] ----D- C:\Users\Daniel\Appdata\Local\Power2Go O43 - CFD: 22/01/2011 - 13:25:48 - [2911] ----D- C:\Users\Daniel\Appdata\Local\Reasonable_Software_House O43 - CFD: 28/12/2010 - 19:32:40 - [0] ----D- C:\Users\Daniel\Appdata\Local\Safe mirror O43 - CFD: 23/12/2010 - 20:20:48 - [7353] ----D- C:\Users\Daniel\Appdata\Local\SRS Labs O43 - CFD: 25/05/2011 - 10:57:26 - [10262118] ----D- C:\Users\Daniel\Appdata\Local\Temp O43 - CFD: 23/12/2010 - 20:05:02 - [0] -SH-D- C:\Users\Daniel\Appdata\Local\Temporary Internet Files O43 - CFD: 30/01/2011 - 13:57:08 - [2479] ----D- C:\Users\Daniel\Appdata\Local\Toshiba O43 - CFD: 31/01/2011 - 17:09:12 - [0] ----D- C:\Users\Daniel\Appdata\Local\Trend Micro O43 - CFD: 25/02/2011 - 19:09:58 - [9762977] ----D- C:\Users\Daniel\Appdata\Local\VirtualStore O43 - CFD: 31/01/2011 - 16:17:30 - [183115598] ----D- C:\Users\Daniel\Appdata\Local\VS Revo Group O43 - CFD: 25/05/2011 - 10:29:18 - [90112] ----D- C:\Users\Daniel\Appdata\Local\Windows Live O43 - CFD: 01/01/2011 - 18:25:56 - [374134] ----D- C:\Users\Daniel\Appdata\Local\Windows Live Writer O43 - CFD: 04/05/2010 - 22:07:50 - [12683094] ----D- C:\Program Files (x86)\Activation Assistant for the 2007 Microsoft Office suites O43 - CFD: 25/02/2011 - 21:30:52 - [124587398] ----D- C:\Program Files (x86)\Adobe O43 - CFD: 04/05/2010 - 22:41:02 - [3036551] ----D- C:\Program Files (x86)\AmIcoSingLun O43 - CFD: 04/05/2010 - 22:54:06 - [142315521] ----D- C:\Program Files (x86)\ASUS O43 - CFD: 01/01/2011 - 17:42:40 - [167649] ----D- C:\Program Files (x86)\Canon O43 - CFD: 16/05/2011 - 20:04:14 - [1208920771] ----D- C:\Program Files (x86)\Common Files O43 - CFD: 04/05/2010 - 22:09:50 - [266949787] ----D- C:\Program Files (x86)\CyberLink O43 - CFD: 23/12/2010 - 21:40:08 - [2452730] ----D- C:\Program Files (x86)\ESTsoft O43 - CFD: 02/02/2011 - 10:18:22 - [2420768] ----D- C:\Program Files (x86)\Feedback Tool O43 - CFD: 04/02/2011 - 19:24:12 - [209] ----D- C:\Program Files (x86)\Foxit Software O43 - CFD: 13/02/2011 - 01:09:06 - [23071778] ----D- C:\Program Files (x86)\Free Audio Pack O43 - CFD: 04/05/2010 - 22:16:22 - [481622869] ----D- C:\Program Files (x86)\Google O43 - CFD: 21/03/2011 - 10:18:02 - [88100698] ----D- C:\Program Files (x86)\ImpotRapide 2010 O43 - CFD: 04/05/2010 - 22:53:00 - [28950803] --H-D- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 04/05/2010 - 22:38:14 - [5703866] ----D- C:\Program Files (x86)\Intel O43 - CFD: 30/03/2011 - 18:49:34 - [5160994] ----D- C:\Program Files (x86)\Internet Explorer O43 - CFD: 16/04/2011 - 22:51:44 - [88362781] ----D- C:\Program Files (x86)\Java O43 - CFD: 16/02/2011 - 11:08:52 - [433755] ----D- C:\Program Files (x86)\jv16 PowerTools 2010 O43 - CFD: 07/04/2011 - 17:43:24 - [15051818] ----D- C:\Program Files (x86)\Medialexie O43 - CFD: 24/12/2010 - 10:43:12 - [2664525] ----D- C:\Program Files (x86)\Microsoft O43 - CFD: 16/05/2011 - 19:53:00 - [39848379] ----D- C:\Program Files (x86)\Microsoft Analysis Services O43 - CFD: 25/03/2011 - 10:20:14 - [800662] ----D- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2 O43 - CFD: 16/05/2011 - 20:03:54 - [884189584] ----D- C:\Program Files (x86)\Microsoft Office O43 - CFD: 21/04/2011 - 17:12:26 - [38388859] ----D- C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 16/05/2011 - 20:03:54 - [3635637] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 16/05/2011 - 20:04:14 - [326800] ----D- C:\Program Files (x86)\Microsoft Synchronization Services O43 - CFD: 24/12/2010 - 10:53:14 - [14904] ----D- C:\Program Files (x86)\Microsoft Visual Studio O43 - CFD: 08/01/2011 - 16:33:14 - [7377360] ----D- C:\Program Files (x86)\Microsoft Windows 7 Upgrade Advisor O43 - CFD: 16/05/2011 - 20:03:54 - [8167779] ----D- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 16/05/2011 - 19:59:24 - [25757] ----D- C:\Program Files (x86)\MSBuild O43 - CFD: 13/03/2011 - 15:31:14 - [0] ----D- C:\Program Files (x86)\MSECACHE O43 - CFD: 04/05/2010 - 22:33:54 - [154033] ----D- C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 24/12/2010 - 20:21:30 - [374086092] ----D- C:\Program Files (x86)\Nero O43 - CFD: 21/05/2011 - 09:02:50 - [30235071] ----D- C:\Program Files (x86)\Opera O43 - CFD: 08/03/2011 - 21:06:16 - [51] ----D- C:\Program Files (x86)\ProgicielCES O43 - CFD: 13/03/2011 - 15:59:12 - [1442864] ----D- C:\Program Files (x86)\Pure Networks O43 - CFD: 16/04/2011 - 22:54:36 - [91635235] ----D- C:\Program Files (x86)\Real O43 - CFD: 14/07/2009 - 01:32:40 - [39159041] ----D- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 01/05/2011 - 00:59:14 - [5979664] ----D- C:\Program Files (x86)\Research In Motion O43 - CFD: 27/12/2010 - 21:03:30 - [632] ----D- C:\Program Files (x86)\Retrospect O43 - CFD: 01/05/2011 - 01:03:00 - [134104359] ----D- C:\Program Files (x86)\Roxio O43 - CFD: 09/01/2011 - 22:36:50 - [718080] ----D- C:\Program Files (x86)\SystemRequirementsLab O43 - CFD: 30/01/2011 - 13:45:40 - [0] ----D- C:\Program Files (x86)\Toshiba O43 - CFD: 14/07/2009 - 00:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information O43 - CFD: 04/05/2010 - 22:44:02 - [77399999] ----D- C:\Program Files (x86)\VIA O43 - CFD: 13/03/2011 - 14:55:56 - [6766627] ----D- C:\Program Files (x86)\VS Revo Group O43 - CFD: 25/12/2010 - 17:15:28 - [3482172] ----D- C:\Program Files (x86)\VSO O43 - CFD: 26/12/2010 - 12:20:28 - [524800] ----D- C:\Program Files (x86)\Windows Defender O43 - CFD: 30/03/2011 - 10:08:30 - [157776556] ----D- C:\Program Files (x86)\Windows Live O43 - CFD: 16/03/2011 - 17:29:48 - [6181376] ----D- C:\Program Files (x86)\Windows Mail O43 - CFD: 16/03/2011 - 17:29:48 - [5024017] ----D- C:\Program Files (x86)\Windows Media Player O43 - CFD: 14/07/2009 - 01:32:40 - [12197556] ----D- C:\Program Files (x86)\Windows NT O43 - CFD: 16/03/2011 - 17:29:48 - [4417800] ----D- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 16/03/2011 - 17:29:48 - [189952] ----D- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 16/03/2011 - 17:29:48 - [5994626] ----D- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 25/05/2011 - 10:58:28 - [4890440] ----D- C:\Program Files (x86)\ZHPDiag O43 - CFD: 25/02/2011 - 21:31:02 - [159485896] ----D- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 13/02/2011 - 11:26:34 - [32159844] ----D- C:\Program Files (x86)\Common Files\Adobe AIR O43 - CFD: 24/12/2010 - 20:22:06 - [111900480] ----D- C:\Program Files (x86)\Common Files\Ahead O43 - CFD: 04/05/2010 - 22:48:00 - [53563] ----D- C:\Program Files (x86)\Common Files\ControlDeck O43 - CFD: 29/03/2011 - 20:12:20 - [961705] ----D- C:\Program Files (x86)\Common Files\Copernic O43 - CFD: 16/05/2011 - 20:04:14 - [99136] ----D- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 01/05/2011 - 01:02:48 - [11785649] ----D- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 04/05/2010 - 22:38:12 - [14237696] ----D- C:\Program Files (x86)\Common Files\Intel O43 - CFD: 03/03/2011 - 20:45:08 - [3245613] ----D- C:\Program Files (x86)\Common Files\Intuit O43 - CFD: 16/04/2011 - 22:52:42 - [1247175] ----D- C:\Program Files (x86)\Common Files\Java O43 - CFD: 16/05/2011 - 20:12:00 - [219039241] ----D- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 04/05/2010 - 22:25:42 - [354896] ----D- C:\Program Files (x86)\Common Files\Oberon Media O43 - CFD: 23/12/2010 - 21:43:38 - [41120458] ----D- C:\Program Files (x86)\Common Files\Pure Networks Shared O43 - CFD: 01/05/2011 - 01:03:08 - [2363296] ----D- C:\Program Files (x86)\Common Files\PX Storage Engine O43 - CFD: 01/05/2011 - 00:57:32 - [54268700] ----D- C:\Program Files (x86)\Common Files\Research In Motion O43 - CFD: 01/05/2011 - 01:03:08 - [104411580] ----D- C:\Program Files (x86)\Common Files\Roxio Shared O43 - CFD: 13/07/2009 - 23:20:10 - [2702] ----D- C:\Program Files (x86)\Common Files\Services O43 - CFD: 01/05/2011 - 01:03:08 - [4070251] ----D- C:\Program Files (x86)\Common Files\Sonic Shared O43 - CFD: 13/07/2009 - 23:20:10 - [41103783] ----D- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 16/05/2011 - 20:11:16 - [20425731] ----D- C:\Program Files (x86)\Common Files\System O43 - CFD: 23/12/2010 - 20:06:24 - [385881192] ----D- C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 16/04/2011 - 22:54:30 - [352256] ----D- C:\Program Files (x86)\Common Files\xing shared ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.14000000000000000000000064EF1800] - 25/05/2011 - 09:57:51 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1466649] O44 - LFC:[MD5.6BCAF46E2B7FA9ACE92B4D39F3037C5C] - 25/05/2011 - 09:53:55 ---A- . (...) -- C:\Windows\SysNative\acovcnt.exe [45056] O44 - LFC:[MD5.D970403841ACA24A69C168D521487F00] - 25/05/2011 - 09:53:42 ---A- . (...) -- C:\Windows\setupact.log [1176] O44 - LFC:[MD5.AEB74F8379B1AA1B45775C36521E3279] - 25/05/2011 - 09:53:41 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.3BB961B76468FAD8C42947566894083C] - 25/05/2011 - 09:39:08 ---A- . (...) -- C:\Windows\TMFilter.log [615] O44 - LFC:[MD5.88ECCA5F525F3AE656C43EB385CCC08B] - 21/05/2011 - 12:27:27 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512] O44 - LFC:[MD5.0BB3F18106F9F633449F64DB2EA4E6C5] - 20/05/2011 - 04:14:31 ---A- . (...) -- C:\rkill.log [312] O44 - LFC:[MD5.F9F9E8AF0B4297353BFDFD73E990D722] - 19/05/2011 - 17:47:53 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [109176] O44 - LFC:[MD5.7F6983ADDD8F79FFF6B220DDC1A8B816] - 19/05/2011 - 17:47:53 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [133712] O44 - LFC:[MD5.C4F6D089E5953E7500C32C650379A767] - 19/05/2011 - 17:47:53 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [623054] O44 - LFC:[MD5.227F148648E8FACFC2EE6AC186F795E1] - 19/05/2011 - 17:47:53 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [711608] O44 - LFC:[MD5.31D1CA73B5C1E95D7B15D50E12D3586B] - 19/05/2011 - 17:47:52 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1570168] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 18/05/2011 - 19:50:54 ---A- . (...) -- C:\Windows\setuperr.log [0] O44 - LFC:[MD5.31D1CA73B5C1E95D7B15D50E12D3586B] - 17/05/2011 - 15:52:33 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1590764] O44 - LFC:[MD5.433D7679E95A175004041F0AB193287C] - 16/05/2011 - 19:19:55 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [5088560] O44 - LFC:[MD5.E13F489F0B1E52319A86BDD996263F4B] - 16/05/2011 - 19:11:18 ---A- . (...) -- C:\Windows\win.ini [478] O44 - LFC:[MD5.CF0A06F9D165D938CC764BF672FA3F70] - 01/05/2011 - 00:10:03 ---A- . (...) -- C:\Windows\SysNative\ServiceFilter.ini [1372] O44 - LFC:[MD5.EA9E37EE7F0D60E67B6351218BB900AD] - 01/05/2011 - 00:09:27 ---A- . (...) -- C:\Windows\SysNative\AutoRunFilter.ini [2310] ---\\ MountPoints2 Shell Key (O51) O51 - MPSK:{0cb80835-176d-11e0-b5ea-485b3964ccff}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- F:\LaunchU3.exe (.not file.) ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ---\\ ShareTools MSconfig StartupReg (O53) O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe O53 - SMSR:HKLM\...\startupreg\ADSMTray [Key] . (.ASUSTek Computer Inc. - ADSMTray.) -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe O53 - SMSR:HKLM\...\startupreg\AmIcoSinglun64 [Key] . (.AlcorMicro Co., Ltd. - Single LUN Icon Utility for VID 058F PID 63.) -- C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe O53 - SMSR:HKLM\...\startupreg\ASUS Screen Saver Protector [Key] . (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe O53 - SMSR:HKLM\...\startupreg\ASUS WebStorage [Key] . (...) -- C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe O53 - SMSR:HKLM\...\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} [Key] . (.Nero AG - Nero Home.) -- C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe O53 - SMSR:HKLM\...\startupreg\CLMLServer [Key] . (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe O53 - SMSR:HKLM\...\startupreg\ETDWare [Key] . (.ELAN Microelectronic Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe O53 - SMSR:HKLM\...\startupreg\HDAudDeck [Key] . (.VIA - VIA HD Audio CPL.) -- C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe O53 - SMSR:HKLM\...\startupreg\HotKeysCmds [Key] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\ie9installer [Key] . (...) -- C:\Users\Daniel\AppData\Local\Temp\iesetup-win7-x64.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\IgfxTray [Key] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\Malwarebytes' Anti-Malware (reboot) [Key] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- D:\Program Files (X86)\Malwarebytes' Anti-Malware\mbam.exe O53 - SMSR:HKLM\...\startupreg\msnmsgr [Key] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O53 - SMSR:HKLM\...\startupreg\nmapp [Key] . (.Cisco Systems, Inc. - Network Magic Application.) -- D:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe O53 - SMSR:HKLM\...\startupreg\nmctxth [Key] . (.Cisco Systems, Inc. - Pure Networks Platform Assistant.) -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe O53 - SMSR:HKLM\...\startupreg\Persistence [Key] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\Setwallpaper [Key] . (...) -- c:\programdata\SetWallpaper.cmd (.not file.) O53 - SMSR:HKLM\...\startupreg\UfSeAgnt.exe [Key] . (...) -- D:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\UpdateLBPShortCut [Key] . (...) -- C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe2.5 (.not file.) O53 - SMSR:HKLM\...\startupreg\UpdateP2GoShortCut [Key] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe O53 - SMSR:HKLM\...\startupreg\WinampAgent [Key] . (...) -- D:\Program Files (x86)\Winamp\Winampa.exe ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 13/07/2009 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088] O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 13/07/2009 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536] O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 13/07/2009 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864] O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 13/07/2009 - 20:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440] O58 - SDL:[MD5.D4121AE6D0C0E7E13AA221AA57EF2D49] - 11/03/2011 - 01:41:12 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [107904] O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 13/07/2009 - 20:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128] O58 - SDL:[MD5.540DAF1CEA6094886D72126FD7C33048] - 11/03/2011 - 01:41:12 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [27008] O58 - SDL:[MD5.9C7F164B49CADC658D1B3C575782F346] - 21/08/2009 - 01:48:17 ---A- . (.Alcor Micro, Corp. - Alocr Micro USB Mass Storage Driver.) -- C:\Windows\system32\drivers\AmUStor.sys [44032] O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 13/07/2009 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632] O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 13/07/2009 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856] O58 - SDL:[MD5.88FBC8BEBFD38566235EAA5E4DBC4E05] - 04/05/2010 - 21:46:50 ---A- . (.ASUSTek Computer Inc - Data Security Manager Driver.) -- C:\Windows\system32\drivers\AsDsm.sys [35384] O58 - SDL:[MD5.0ACC06FCF46F64ED4F11E57EE461C1F4] - 04/10/2009 - 20:33:59 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys [1542656] O58 - SDL:[MD5.032D35C996F21D19A205A7C8F0B76F3C] - 12/05/2009 - 20:07:19 ---A- . (.ASUS - ATK0100 ACPI Utility.) -- C:\Windows\system32\drivers\ATK64AMD.sys [15928] O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 15:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848] O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 15:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432] O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 15:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704] O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 13/07/2009 - 20:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720] O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 15:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104] O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 15:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976] O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 15:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720] O58 - SDL:[MD5.8DBC710FB16A406CF85839407C0B7DFC] - 31/07/2008 - 20:45:44 ---A- . (.IVT Corporation. - Bluetooth HID BUS Driver.) -- C:\Windows\system32\drivers\BtHidBus.sys [24328] O58 - SDL:[MD5.40AAAB64465E42C72B6411AAEB3EEF0F] - 07/12/2008 - 12:44:56 ---A- . (...) -- C:\Windows\system32\drivers\btnetBus.sys [35848] O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 15:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480] O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 13/07/2009 - 20:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488] O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 13/07/2009 - 20:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496] O58 - SDL:[MD5.3C38648375B7F3988691F53A7AAE10A9] - 15/10/2009 - 04:23:19 ---A- . (.ELAN Microelectronic Corp. - ETD Control Center.) -- C:\Windows\system32\drivers\ETD.sys [117760] O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 15:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016] O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 15:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232] O58 - SDL:[MD5.39D2ABCD392F3D8A6DCE7B60AE7B8EFC] - 20/11/2010 - 08:33:35 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [78720] O58 - SDL:[MD5.BBB3B6DF1ABB0FE35802EDE85CC1C011] - 06/08/2009 - 16:24:13 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys [408600] O58 - SDL:[MD5.AAAF44DB3BD0B9D1FB6969B23ECC8366] - 11/03/2011 - 01:41:26 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410496] O58 - SDL:[MD5.C6238C6ABD6AC99F5D152DA4E9439A3D] - 11/02/2011 - 18:16:38 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd64.sys [10628640] O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 13/07/2009 - 20:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112] O58 - SDL:[MD5.1C6D68A0BF108A5B3D40B2E84AE3CCDA] - 02/07/2008 - 14:58:50 ---A- . (.IVT Corporation. - IVT Bluetooth Bus Device Driver.) -- C:\Windows\system32\drivers\IvtBtBus.sys [31624] O58 - SDL:[MD5.E63EF8C3271D014F14E2469CE75FECB4] - 20/07/2009 - 04:29:39 ---A- . (.Pas de propriétaire - Keyboard Filter Driver.) -- C:\Windows\system32\drivers\kbfiltr.sys [15416] O58 - SDL:[MD5.B8E670D7EF61615FA03104552854FAC9] - 23/08/2009 - 00:08:07 ---A- . (.Atheros Communications, Inc. - Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20.) -- C:\Windows\system32\drivers\L1E62x64.sys [56320] O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 13/07/2009 - 20:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752] O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 13/07/2009 - 20:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560] O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 13/07/2009 - 20:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600] O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 13/07/2009 - 20:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776] O58 - SDL:[MD5.085435AE1A124361304044029B5CC644] - 18/06/2009 - 14:18:10 ---A- . (.Windows ® Win 7 DDK provider - ASUS CopyProtect driver.) -- C:\Windows\system32\drivers\lullaby.sys [15928] O58 - SDL:[MD5.3D3C4B63F11F63F50253E734F0ACE9F2] - 20/12/2010 - 18:08:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [24152] O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 13/07/2009 - 20:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392] O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 13/07/2009 - 20:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736] O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 13/07/2009 - 20:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264] O58 - SDL:[MD5.0A92CB65770442ED0DC44834632F66AD] - 11/03/2011 - 01:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [148352] O58 - SDL:[MD5.DAB0E87525C10052BF65F06152F37E4A] - 11/03/2011 - 01:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [166272] O58 - SDL:[MD5.FB83B6C62DFF5ABE36304351D2BED581] - 07/07/2009 - 14:48:44 ---A- . (.Cisco Systems, Inc. - Address Resolution Protocol Driver.) -- C:\Windows\system32\drivers\pnarp.sys [33328] O58 - SDL:[MD5.1B3434642CE3C26E6F24D3A76D749C2A] - 07/07/2009 - 14:48:44 ---A- . (.Cisco Systems, Inc. - NDIS Relay Driver.) -- C:\Windows\system32\drivers\purendis.sys [35376] O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 13/07/2009 - 20:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816] O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 13/07/2009 - 20:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592] O58 - SDL:[MD5.C903D49655B4AAE46673F0AAA6BE0F58] - 09/01/2009 - 15:02:08 ---A- . (.Research in Motion Ltd - RIM Virtual Serial Driver.) -- C:\Windows\system32\drivers\RimSerial_AMD64.sys [31744] O58 - SDL:[MD5.71B48DDAF5E9C2B40E64DE5C405F5AAC] - 16/02/2011 - 17:23:46 ---A- . (.Research In Motion Limited - BlackBerry Device Driver.) -- C:\Windows\system32\drivers\RimUsb_AMD64.sys [74240] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 15:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040] O58 - SDL:[MD5.1BC348CF6BAA90EC8E533EF6E6A69933] - 10/06/2009 - 15:35:57 ---A- . (.Silicon Integrated Systems Corp. - NDIS 6.0 Miniport Driver for SiS191/SiS190 Ethernet Device.) -- C:\Windows\system32\drivers\SiSG664.sys [56832] O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 13/07/2009 - 20:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584] O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 13/07/2009 - 20:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464] O58 - SDL:[MD5.19D8F6FF8344C47872BA351D04A190DD] - 05/06/2009 - 05:15:55 ---A- . (.Pas de propriétaire - USBCAMD for Sonix UVC.) -- C:\Windows\system32\drivers\sncduvc.sys [42176] O58 - SDL:[MD5.1D8474722CDFFBB8FCA5FA12C50A05A2] - 05/06/2009 - 05:15:55 ---A- . (.Pas de propriétaire - UVC Camera Streaming Driver.) -- C:\Windows\system32\drivers\snp2uvc.sys [1806400] O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 13/07/2009 - 20:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656] O58 - SDL:[MD5.7CCD346AF4AD6CA05D48A57395B7192E] - 31/01/2011 - 16:14:49 ---A- . (.Trend Micro Inc. - Trend Micro NDIS 6.0 Filter Driver (amd64-fre).) -- C:\Windows\system32\drivers\tmlwf.sys [201232] O58 - SDL:[MD5.803EE35DF92815EA5D41CEE7410C8CC1] - 30/07/2010 - 12:30:20 ---A- . (.Trend Micro Inc. - Pre-Filter For AMD64.) -- C:\Windows\system32\drivers\tmpreflt.sys [42576] O58 - SDL:[MD5.21CC12B7F8B44E91D03EAD5B17AAF0B2] - 31/01/2011 - 16:14:50 ---A- . (.Trend Micro Inc. - Trend Micro TDI Driver (amd64-fre).) -- C:\Windows\system32\drivers\tmtdi.sys [107536] O58 - SDL:[MD5.7E64526E21731DE9F7DC2BE0B7251561] - 31/01/2011 - 16:14:50 ---A- . (.Trend Micro Inc. - Trend Micro WFP callout Driver (amd64-fre).) -- C:\Windows\system32\drivers\tmwfp.sys [339984] O58 - SDL:[MD5.9BD32132A3470CEFB3CBEA5FA492BD6F] - 30/07/2010 - 12:30:26 ---A- . (.Trend Micro Inc. - Post Filter For AMD64.) -- C:\Windows\system32\drivers\tmxpflt.sys [309840] O58 - SDL:[MD5.8021F63311797085949FA387F7C83583] - 17/06/2009 - 12:01:00 ---A- . (.TOSHIBA Corporation - TOSHIBA Bluetooth Port Emulation Driver.) -- C:\Windows\system32\drivers\tosporte.sys [54664] O58 - SDL:[MD5.9D33204858E26CF6858BB3602BE399D2] - 12/12/2010 - 00:09:08 ---A- . (.TOSHIBA CORPORATION - Bluetooth RF Bus Driver.) -- C:\Windows\system32\drivers\tosrfbd.sys [291760] O58 - SDL:[MD5.90F0B1745ABF13F44C2A6ED79F7CE9FB] - 11/11/2010 - 10:27:00 ---A- . (.TOSHIBA Corporation - Bluetooth RFBNEP Driver.) -- C:\Windows\system32\drivers\tosrfbnp.sys [50864] O58 - SDL:[MD5.9E4E65EA51E34647340BD6007467AC54] - 29/11/2010 - 11:47:00 ---A- . (.TOSHIBA Corporation - Bluetooth RFCOMM Driver.) -- C:\Windows\system32\drivers\tosrfcom.sys [82224] O58 - SDL:[MD5.7D2467D3EB9BAA4B69AE4A28C83DE57A] - 30/08/2010 - 10:48:00 ---A- . (.TOSHIBA Corporation. - Bluetooth HID Driver from TOSHIBA.) -- C:\Windows\system32\drivers\Tosrfhid.sys [94528] O58 - SDL:[MD5.B6FDC3C76FFE9C5171EEA9C37EA367C2] - 24/07/2009 - 11:33:00 ---A- . (.TOSHIBA Corporation. - Bluetooth BNEP Driver.) -- C:\Windows\system32\drivers\tosrfnds.sys [26472] O58 - SDL:[MD5.7052B10E54B48AF12BD5606596A8E039] - 26/04/2010 - 11:48:00 ---A- . (.TOSHIBA Corporation - Bluetooth Audio Driver (WDM).) -- C:\Windows\system32\drivers\TosRfSnd.sys [63488] O58 - SDL:[MD5.C0837ACD637A55CD789179E123212B94] - 02/12/2010 - 19:30:00 ---A- . (.TOSHIBA CORPORATION - Bluetooth USB Miniport Driver.) -- C:\Windows\system32\drivers\tosrfusb.sys [67384] O58 - SDL:[MD5.8F69C38A8BA725F891F26AAC8888696E] - 04/08/2010 - 21:17:14 ---A- . (.VIA Technologies, Inc. - VIA High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\viahduaa.sys [1342064] O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 13/07/2009 - 20:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488] O58 - SDL:[MD5.B01CE1F5A44126892240D179A6DBD43F] - 30/07/2010 - 12:24:14 ---A- . (.Trend Micro Inc. - VsapiNT for AMD64.) -- C:\Windows\system32\drivers\vsapint.sys [1988176] O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 13/07/2009 - 20:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872] O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 18:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [38224] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPDiag_is1 ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - C:\Windows\system32\Drivers\ASDSM.sys - AsDsm (AsDsm) .(...) - LEGACY_ASDSM O64 - Services: CurCS - C:\Program Files\ATKGFNEX\ASMMAP64.sys - ASMMAP64 (ASMMAP64) .(...) - LEGACY_ASMMAP64 O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP O64 - Services: CurCS - (.not file.) - cpuz134 (cpuz134) .(...) - LEGACY_CPUZ134 O64 - Services: CurCS - 30/08/2010 - D:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys - driverhardwarev2x64(driverhardwarev2x64) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64 O64 - Services: CurCS - (.not file.) - eamon (eamon) .(...) - LEGACY_EAMON O64 - Services: CurCS - (.not file.) - ehdrv (ehdrv) .(...) - LEGACY_EHDRV O64 - Services: CurCS - (.not file.) - epfwwfpr (epfwwfpr) .(...) - LEGACY_EPFWWFPR O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\iaStor.sys - Intel AHCI Controller(iaStor) .(.Intel Corporation - Intel Matrix Storage Manager driver - x64.) - LEGACY_IASTOR O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\lullaby.sys - lullaby(lullaby) .(.Windows ® Win 7 DDK provider - ASUS CopyProtect driver.) - LEGACY_LULLABY O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\pnarp.sys - Pure Networks Device Discovery Driver(pnarp) .(.Cisco Systems, Inc. - Address Resolution Protocol Driver.) - LEGACY_PNARP O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\purendis.sys - Pure Networks Wireless Driver(purendis) .(.Cisco Systems, Inc. - NDIS Relay Driver.) - LEGACY_PURENDIS O64 - Services: CurCS - 07/08/2009 - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011c\WNt500x64\Sandra.sys - SANDRA(SANDRA) .(.SiSoftware - Sandra Device Driver (x64)(Unicode).) - LEGACY_SANDRA O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\tmlwf.sys - Trend Micro NDIS 6.0 Filter Driver(tmlwf) .(.Trend Micro Inc. - Trend Micro NDIS 6.0 Filter Driver (amd64-f.) - LEGACY_TMLWF O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\tmpreflt.sys - tmpreflt(tmpreflt) .(.Trend Micro Inc. - Pre-Filter For AMD64.) - LEGACY_TMPREFLT O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\tmtdi.sys - Trend Micro TDI Driver(tmtdi) .(.Trend Micro Inc. - Trend Micro TDI Driver (amd64-fre).) - LEGACY_TMTDI O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\tmwfp.sys - Trend Micro WFP Callout Driver(tmwfp) .(.Trend Micro Inc. - Trend Micro WFP callout Driver (amd64-fre).) - LEGACY_TMWFP O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\tmxpflt.sys - tmxpflt(tmxpflt) .(.Trend Micro Inc. - Post Filter For AMD64.) - LEGACY_TMXPFLT O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\vsapint.sys - vsapint(vsapint) .(.Trend Micro Inc. - VsapiNT for AMD64.) - LEGACY_VSAPINT ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <Opera.HTML>[HKLM\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Opera.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <Opera.HTML>[HKCR\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Opera.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- D:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O68 - StartMenuInternet: <Opera.exe> <Opera>[HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Opera.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {8E02D41C-5924-4816-9490-33CCD28BEB72} - (Yahoo! Search) - Yahoo! Search - Web Search ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.4553627597CAD15DDC01FF6C2EB08CF2] [sPRF] (.Xftjtumru Vucauysdjzh - Direct3D Progressive Mesh DLL.) -- C:\Users\Daniel\AppData\Roaming\KBDICR.dll [105472] [MD5.DE9F921C91E59EB1ED4028D340F0DD4C] [sPRF] (.Opera Software - Opera Internet Browser.) -- C:\Users\Daniel\AppData\Roaming\spread.exe [944496] [MD5.ECA231E339A24B911C5D19B5ED2F34D9] [sPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\Daniel\AppData\Roaming\Sys2662.Config.Repository.bin [22] [MD5.17B0E09D658A1A47719E8A353BEDFBCF] [sPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\Daniel\AppData\Roaming\Sys6925.Config Collection.sys [22] ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.) O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.) O87 - FAEL: "RemoteSvcAdmin-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.) O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "{CB7C2277-323C-413B-86A5-87D0910343C5}" |In - Private - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "TCP Query User{3C0B4D9E-A319-4D44-AA78-AF1FEB77FE3D}D:\dossier du bureau\install\p2p\utorrent.exe" | In - Private - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- D:\dossier du bureau\install\p2p\utorrent.exe O87 - FAEL: "UDP Query User{EBC1A419-144A-434F-A5B6-9F76E2B38319}D:\dossier du bureau\install\p2p\utorrent.exe" | In - Private - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- D:\dossier du bureau\install\p2p\utorrent.exe O87 - FAEL: "{264F792B-9DCD-4C5F-B69C-450C4FAF6795}" | In - Private - P6 - TRUE | .(.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\opera.exe O87 - FAEL: "{9834753E-7D7D-4EAA-8F08-5F6545DFC62F}" | In - Private - P17 - TRUE | .(.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\opera.exe O87 - FAEL: "{ED7C6252-74C1-4DAF-BD95-042B0153A795}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O87 - FAEL: "TCP Query User{0A502F7F-2D41-42E8-8E9B-EC44D8D02121}C:\program files\mirc\mirc.exe" | In - Private - P6 - TRUE | .(.mIRC Co. Ltd. - mIRC.) -- C:\program files\mirc\mirc.exe O87 - FAEL: "UDP Query User{49E1F07B-01E1-4675-9D90-5892AFC08C71}C:\program files\mirc\mirc.exe" | In - Private - P17 - TRUE | .(.mIRC Co. Ltd. - mIRC.) -- C:\program files\mirc\mirc.exe O87 - FAEL: "{AFCE0DEB-1700-4F34-91C9-189520CA4F55}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- D:\Program Files\ma-config.com\x64\maconfservice.exe O87 - FAEL: "{9C6897A1-5E1F-4C17-A553-2CD42826D68C}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- D:\Program Files\ma-config.com\x64\maconfservice.exe O87 - FAEL: "{5B076028-3F70-4B78-AFC6-A26AAC3F1D6D}" | In - Domain - P6 - TRUE | .(.SiSoftware - SiSoftware Deployment Agent Service (NT)(Unicode).) -- C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011c\RpcAgentSrv.exe O87 - FAEL: "{2DC89590-2AF4-43BC-BDD1-D80AD3440EA5}" | In - Domain - P6 - TRUE | .(.SiSoftware - SiSoftware Sandra Agent Service (NT)(Unicode).) -- C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011c\WNt500x64\RpcSandraSrv.exe O87 - FAEL: "{FD7778EC-0E6A-4C20-8A1A-EE3EE41D7E7B}" |In - Public - P6 - TRUE | .(...) -- D:\Program Files (X86)\BlueSoleil\BlueSoleilCS.exe (.not file.) O87 - FAEL: "{B593314A-9F58-4662-B4B3-5E8A4FAAD6E1}" |In - Public - P17 - TRUE | .(...) -- D:\Program Files (X86)\BlueSoleil\BlueSoleilCS.exe (.not file.) O87 - FAEL: "{D0EAEEC4-3054-420E-8EBA-1DA9A921B0A6}" |In - Private - P6 - TRUE | .(...) -- D:\Program Files (X86)\BlueSoleil\BlueSoleilCS.exe (.not file.) O87 - FAEL: "{7A0E756C-0558-4141-A40A-41148A0F9660}" |In - Private - P17 - TRUE | .(...) -- D:\Program Files (X86)\BlueSoleil\BlueSoleilCS.exe (.not file.) O87 - FAEL: "TCP Query User{8092F9F4-9435-4272-B0E1-C5C419360AC5}D:\raccourcis du bureau\p2p\utorrent.exe" | In - Private - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- D:\raccourcis du bureau\p2p\utorrent.exe O87 - FAEL: "UDP Query User{9C24BAD2-C829-4687-AEA2-12B06A0471BC}D:\raccourcis du bureau\p2p\utorrent.exe" | In - Private - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- D:\raccourcis du bureau\p2p\utorrent.exe O87 - FAEL: "{BA98700F-D785-416F-9C44-D6D70A878975}" | In - Public - P6 - TRUE | .(.Cisco Systems, Inc. - Pure Networks Platform Service.) -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe O87 - FAEL: "{132D0F25-5AB1-4A10-ABFF-6A58782126FA}" | In - Public - P17 - TRUE | .(.Cisco Systems, Inc. - Pure Networks Platform Service.) -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe ---\\ Scan Additionnel (O88) Database Version : 7931 - (20/05/2011) Clés trouvées (Keys found) : 1 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 0 Fichiers trouvés (Files found) : 0 [HKCU\Software\Ask&Record] =>Toolbar.Agent ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Demand 31/03/2008 225280 | (ADSMService) . (.ASUSTek Computer Inc..) - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe SR - | Auto 31/03/2008 0 | (AFBAgent) . (.ASUSTeK Computer Inc..) - C:\Windows\system32\FBAgent.exe SR - | Auto 15/06/2009 84536 | (ASLDRService) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe SR - | Auto 08/08/2007 94208 | (ATKGFNEXSrv) . (...) - C:\Program Files\ATKGFNEX\GFNEXSrv.exe SS - | Disabled 23/09/2010 67584 | (cbVSCService) . (.CobianSoft, Luis Cobian.) - D:\Program Files (x86)\Cobian Backup 10\cbVSCService.exe SS - | Auto 04/05/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 04/05/2010 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Disabled 04/05/2010 182768 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe SS - | Demand 22/10/2004 73728 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe SS - | Disabled 09/01/2011 420864 | (maconfservice) . (.CybelSoft.) - D:\Program Files\ma-config.com\x64\maconfservice.exe SS - | Disabled 29/06/2007 800040 | (NBService) . (.Nero AG.) - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe SS - | Disabled 27/06/2007 279848 | (NMIndexingService) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe SR - | Auto 07/07/2009 647216 | (nmservice) . (.Cisco Systems, Inc..) - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe SS - | Demand 06/12/2007 88560 | (Roxio UPnP Renderer 9) . (.Sonic Solutions.) - C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe SS - | Auto 06/12/2007 362992 | (Roxio Upnp Server 9) . (.Sonic Solutions.) - C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUpnpService9.exe SS - | Auto 08/07/2009 313840 | (RoxLiveShare9) . (.Sonic Solutions.) - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe SS - | Demand 08/07/2009 1108464 | (RoxMediaDB9) . (.Sonic Solutions.) - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe SS - | Auto 08/07/2009 170480 | (RoxWatch9) . (.Sonic Solutions.) - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe SS - | Disabled 10/08/2009 93848 | (SandraAgentSrv) . (.SiSoftware.) - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011c\RpcAgentSrv.exe SR - | Auto 08/11/2010 836504 | (SfCtlCom) . (.Trend Micro Inc..) - C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe SS - | Demand 19/02/2010 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe SR - | Demand 31/01/2011 570632 | (TMBMServer) . (.Trend Micro Inc..) - C:\Program Files\Trend Micro\BM\TMBMSRV.exe SR - | Demand 31/01/2011 595960 | (TmPfw) . (.Trend Micro Inc..) - C:\Program Files\Trend Micro\Internet Security\TmPfw.exe SR - | Demand 31/01/2011 917768 | (TmProxy) . (.Trend Micro Inc..) - C:\Program Files\Trend Micro\Internet Security\TmProxy.exe SR - | Auto 13/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by Daniel at 25/05/2011 11:03:20 device: opened successfully user: error reading MBR Disk trace: error: Read Descripteur non valide kernel: error reading MBR ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Daniel at 25/05/2011 11:03:22 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin End of the scan (1277 lines in 05mn 07s)(0) ----------------------------------------------------------------------------------------------------------------- Merci et bonne journée, Speck41
  19. speck41
    Je me demandais si ça pouvais aider.... voici un log Hijackthis Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:14:46, on 2011-05-24 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe C:\Windows\SysWOW64\rundll32.exe C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe D:\Program Files (X86)\Pure Networks\Network Magic\nmapp.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe C:\Program Files (x86)\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe C:\Windows\AsScrPro.exe C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe C:\Program Files (x86)\Windows Live\Mail\wlmail.exe C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe C:\Program Files (x86)\Opera\opera.exe C:\Program Files (x86)\Real\RealPlayer\RealPlay.exe C:\Users\Daniel\Desktop\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Asus | MSN R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://D:\Program Files (X86)\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_BAND_SEARCHBAR_HTML R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - D:\PROGRA~1\COPERN~1\COPERN~1.DLL R3 - URLSearchHook: (no name) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - (no file) O1 - Hosts: 65.54.239.80 messenger.hotmail.com O1 - Hosts: 65.54.239.80 dp.msnmessenger.akadns.net O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - D:\Program Files (X86)\Copernic Agent\CopernicAgentExt.dll O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [nmapp] "D:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot O4 - HKLM\..\Run: [blackBerryAutoUpdate] C:\Program Files (x86)\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe /background O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe O4 - HKLM\..\Run: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKCU\..\Run: [Peii] rundll32 "C:\Users\Daniel\AppData\Roaming\KBDICR.dll",Phfh O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU') O8 - Extra context menu item: &Envoyer à OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Chercher avec Copernic Agent - res://D:\Program Files (X86)\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_MENU_SEARCHEXT O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - D:\PROGRA~1\COPERN~1\COPERN~1.EXE O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - D:\PROGRA~1\COPERN~1\COPERN~1.EXE O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - D:\PROGRA~1\COPERN~1\COPERN~1.EXE O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O17 - HKLM\System\CCS\Services\Tcpip\..\{C8051B18-CFF9-4043-82C7-D079B980A82E}: NameServer = 64.18.160.73,64.18.160.74 O18 - Protocol: intu-ir2010 - {A344EB2D-3A0F-48FA-A073-2E649BAEC9B3} - C:\Program Files (x86)\ImpotRapide 2010\ic2010pp.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing) O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Pure Networks Platform Service (nmservice) - Cisco Systems, Inc. - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUpnpService9.exe O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Composant de commande centrale Trend Micro (SfCtlCom) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Trend Micro Unauthorized Change Prevention Service (TMBMServer) - Trend Micro Inc. - C:\Program Files\Trend Micro\BM\TMBMSRV.exe O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\TmPfw.exe O23 - Service: Trend Micro Proxy Service (TmProxy) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\TmProxy.exe O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe -- End of file - 27025 bytes --------------------------------------------------------------------------------------------------------------------------------------- Voila, merci Speck41
  20. speck41
    Merci Bleuet, un nouveau post est créé dans la bonne section. Speck41
  21. speck41
    Bonjour cher spécialistes, j'ai des problèmes avec mon hotmail. Il y a déja 2 ou 3 semaines que des virus sont envoyés sur la forme de liens (url) à tous les destinataires de ma liste de contacts. J'ai essayé de fermer mon compte live messenger - Hotmail et ça ne fonctionne pas. J'ai envoyé un mail a Hotmail et je n'ai pas de réponse. J'ai essayé avec malwarebytes et il ne trouve rien. À l'aide svp car ceux qui ont pris le contrôle de mon hotmail en envoient encore. Merci, Speck41 P.S.: voici un lien du post précédent que j'avais débuté dans la section sécurisation prévention: http://forum.zebulon.fr/hotmail-live-messenger-a-laide-svp-t185494.html Aussi un lien ci-joint pour le rapport ZHPDiag: Cijoint.fr - Service gratuit de dépôt de fichiers
  22. speck41
    Merci Bleuet de prendre mon cas et de m'aider. Voici le lien ci-joint qui contient le fichier texte du rapport demandé. J'ai été obligé de désactiver mon anti-virus (trend micro internet securité) pour accéder à la page de ci-joint. Cijoint.fr - Service gratuit de dépôt de fichiers Merci, Speck41
  23. speck41
    Bonjour cher spécialistes, j'ai des problèmes avec mon hotmail. Il y a déja 2 ou 3 semaines que des virus sont envoyés sur la forme de liens (url) à tous les destinataires de ma liste de contacts. J'ai essayé de fermer mon compte live messenger - Hotmail et ça ne fonctionne pas. J'ai envoyé un mail a Hotmail et je n'ai pas de réponse. À l'aide svp car ceux qui ont pris le contrôle de mon hotmail en envoient encore. Merci, Speck41
  24. speck41

    Windows 7 vs: portable dell

    speck41 a répondu à un(e) sujet de speck41 dans Windows 7

    Bonjour, désolé pour le léger délais........... j'ai installé la version 32 bits et ça va très bien. Merci de vos conseils. Speck41
  25. speck41
    Ah, j'oubliais........ JOYEUX NOEL et BONNE ANNÉE 2011 Speck41
×
×
  • Créer...