Aller au contenu

brta77

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    7

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par brta77

  1. brta77
    Raport AD- REMOVER ======= RAPPORT D'AD-REMOVER 2.0.0.1,F | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par C_XX le 16/09/10 à 13:30 Contact: AdRemover.contact[AT]gmail.com Site web: TEAM X SCRIPT : UsbFix - AD-Remover - FindyKill C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 19:30:00 le 29/09/2010, Mode normal Microsoft Windows 7 Édition Familiale Premium (X86) Damien@PC-DAMIEN (Gigabyte Technology Co., Ltd. P31-DS3L) ============== ACTION(S) ============== Service: "Application Updater" Stoppé et supprimé 0,Dossier supprimé: C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE} 0,Fichier supprimé: C:\Users\Damien\AppData\Roaming\Mozilla\FireFox\Profiles\ajfkqxx9.default\searchplugins\cherche.xml 0,Fichier supprimé: C:\Users\Damien\scriptjava.html 0,Dossier supprimé: C:\Program Files\Application Updater 0,Dossier supprimé: C:\Program Files\VMNTOOLBAR 3,Fichier supprimé: C:\Windows\Installer\1c80535.msi 3,Fichier supprimé: C:\Windows\Installer\2072bb1.msi (!) -- Fichiers temporaires supprimés. 1,Clé supprimée: HKLM\Software\Classes\Interface\{115CCBAE-27B0-47C3-BA42-BAB708424393} 1,Clé supprimée: HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456} 1,Clé supprimée: HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92} 1,Clé supprimée: HKLM\Software\Classes\Interface\{D5A1EF9A-7948-435D-8B87-D6A598317288} 1,Clé supprimée: HKLM\Software\Classes\Interface\{FC2C9F12-26A2-11CF-A641-E996DF2C9318} 1,Clé supprimée: HKLM\Software\Classes\TypeLib\{937936AF-28CA-4973-B8AE-F250406149A2} 1,Clé supprimée: HKLM\Software\Classes\TypeLib\{C31103D1-E584-4880-B1D3-6B1DF6FBDE22} 1,Clé supprimée: HKLM\Software\Classes\TypeLib\{CD082CCA-086F-4FD8-8FD7-247A0DBBD1CC} 0,Clé supprimée: HKLM\Software\Application Updater 0,Clé supprimée: HKLM\Software\Search Settings 0,Clé supprimée: HKCU\Software\Ask.com 0,Clé supprimée: HKCU\Software\AppDataLow\AskBarDis 0,Clé supprimée: HKCU\Software\AppDataLow\Software\AskToolbar 3,Clé supprimée: HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF 3,Clé supprimée: HKLM\Software\Classes\Installer\Products\D82C50F59AED6DA47AA360145789E8BA 3,Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF 3,Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Products\D82C50F59AED6DA47AA360145789E8BA 3,Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} 3,Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} 0,Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE} 0,Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} ============== SCAN ADDITIONNEL ============== ** Mozilla Firefox Version [3.0.19 (fr)] ** -- C:\Users\Damien\AppData\Roaming\Mozilla\FireFox\Profiles\ajfkqxx9.default\Prefs.js -- browser.download.dir, C:\\Users\\Damien\\Desktop\\NOUVO DL browser.download.lastDir, C:\\Users\\Damien\\Desktop browser.search.defaultenginename, ICQ Search browser.search.selectedEngine, Bing browser.startup.homepage, hxxp://www.google.fr browser.startup.homepage_override.mstone, rv:1.9.0.19 keyword.URL, hxxp://www.bing.com/search?mkt=fr-FR&form=MIAWB1&q= ======================================== ** Internet Explorer Version [8.0.7600.16385] ** [HKCU\Software\Microsoft\Internet Explorer\Main] Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch Do404Search: 0x01000000 Enable Browser Extensions: yes Local Page: C:\Windows\system32\blank.htm Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896 Show_ToolBar: yes Start Page: hxxp://fr.msn.com/ [HKLM\Software\Microsoft\Internet Explorer\Main] AutoHide: yes Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896 Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch Delete_Temp_Files_On_Exit: yes Local Page: C:\Windows\system32\blank.htm Search bar: hxxp://search.msn.com/spbasic.htm Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch Start Page: hxxp://fr.msn.com/ [HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS] Tabs: res://ieframe.dll/tabswelcome.htm Blank: res://mshtml.dll/blank.htm ======================================== C:\Program Files\Ad-Remover\Quarantine: 9 Fichier(s) C:\Program Files\Ad-Remover\Backup: 15 Fichier(s) C:\Ad-Report-CLEAN[1].txt - 29/09/2010 (4743 Octet(s)) Fin à: 19:37:13, 29/09/2010 ============== E.O.F ============== TDSSKILLER rien trouver, Anti malwares pareil
  2. brta77
    En le renommant Combofix.exe quand je tape combofix /uninstall sa me trouve plus rien.
  3. brta77
    Desinstallation de combofix pas réussie ( brta.exe est sur le bureau et j'ai bien fait combofix /uninstall comme dit ci-dessus ) http://img213.imageshack.us/img213/8836/comboxfixuninstall.png Malwarebytes n'a rien trouvé Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Version de la base de données: 4691 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 2010-09-26 17:42:33 mbam-log-2010-09-26 (17-42-33).txt Type d'examen: Examen rapide Elément(s) analysé(s): 183496 Temps écoulé: 6 minute(s), 18 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté) ZHPDiag Rapport de ZHPDiag v1.26.67 par Nicolas Coolman, Update du 25/09/2010 Run by Damien at 2010-09-26 17:47:04 Web site : ZHPDiag Outil de diagnostic Contact : nicolascoolman@yahoo.fr ---\\ Web Browser MSIE: Internet Explorer v8.0.7600.16385 MFIE: Mozilla Firefox (3.0.19) ---\\ System Information Platform : Windows 7 Home Premium (6.1.7600) Processor: x86 Family 6 Model 15 Stepping 11, GenuineIntel Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 2046.5 MB (52% free) System drive C: has 16 GB (6%) free of 233 GB ---\\ Logged in mode Computer Name: PC-DAMIEN User Name: Damien All Users Names: Mcx1-PC-DAMIEN, HomeGroupUser$, Damien, ASPNET, Administrateur, Unselected Option: O1,O45,O61,O62,O65,O82,O84 Logged in as Administrator ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 16 Go of 233 Go) D:\ CD-ROM drive (Not Inserted) F:\ Hard drive, Flash drive, Thumb drive (Free 106 Go of 466 Go) H:\ Hard drive, Flash drive, Thumb drive (Free 45 Go of 466 Go) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK ---\\ Processus lancés [MD5.EE3D9986F75FB4239050F341348C2FF6] - (.Pas de propriétaire - razerhid MFC Application.) -- C:\Program Files\Razer\DeathAdder\razerhid.exe [159744] [MD5.6C1B31F5C16E03153F0037AC6C451FFD] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2838912] [MD5.CFDE710E4AD97EFD666E6042750F218F] - (.Pas de propriétaire - razertra MFC Application.) -- C:\Program Files\Razer\DeathAdder\razertra.exe [143360] [MD5.7A54E4A4116A8747EE148E1E82E595F6] - (.Razer Inc. - Razer OFA - On-the-Fly Sensitivity Adjustme.) -- C:\Program Files\Razer\DeathAdder\razerofa.exe [163840] [MD5.4E4D64765D183B3A0C5F7E6579F8AAC9] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe [3220912] [MD5.B80B49333FF247705691FE2C12DFD139] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [307672] [MD5.53C62FB3B0BAD66EC2026977D707A2A4] - (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe [116280] [MD5.4CADC1C815E97DA5A383FC5A011E969D] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\WinRAR\WinRAR.exe [932352] [MD5.D378BFFB70923139D6A4F546864AA61C] - (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\NOTEPAD.EXE [179712] [MD5.5BD890FB9EB505010EDD9796C6FA3AE3] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [556032] ---\\ Page de démarrage de Mozilla Firefox (M0) M0 - MFSP: prefs.js [Damien - ajfkqxx9.default] Google ---\\ Programmes d'extension pour Mozilla Firefox (M2) M2 - MFEP: prefs.js [Damien - ajfkqxx9.default\eafo3fflauncher@ea.com] [] FIFA Online Web Launcher 1.1 (.Electronic Arts Inc..) M2 - MFEP: prefs.js [Damien - ajfkqxx9.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant 1.1 (.Microsoft.) M2 - MFEP: prefs.js [Damien - ajfkqxx9.default\{5556F97E-11A5-46b0-9082-32AD74AAA920}] [] AutoFormer 0.4.1.5 (.Mykola Onyschuk.) M2 - MFEP: prefs.js [Damien - ajfkqxx9.default\{800b5000-a755-47e1-992b-48a1c1357f07}] [] ICQ Toolbar 0.4.1.5 (.Mykola Onyschuk.) ---\\ Plugins de navigateurs Opera/Firefox(P1/P2) P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll P2 - FPN: [HKLM] [@canon.com/MycameraPlugin] - (.CANON INC. - CANON iMAGE GATEWAY Mycamera Plugin.) -- C:\Program Files\Canon\ZoomBrowser EX\Program\NPCIG.dll P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX Web Player version 2.0.2.39.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll P2 - FPN: [HKLM] [@divx.com/DivX Content Upload Plugin,version=1.0.0] - (.DivX,Inc. - DivX® Content Upload Plugin.) -- C:\Program Files\DivX\DivX Content Uploader\npUpload.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.50826.0.) -- C:\Program Files\Microsoft Silverlight\4.0.50826.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.5] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8081.0709] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll P2 - FPN: [HKLM] [@nvidia.com/3DVision] - (.NVIDIA Corporation - NVIDIA 3D Vision plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll P2 - FPN: [HKLM] [@nvidia.com/3DVisionStreaming] - (.NVIDIA Corporation - NVIDIA 3D Vision Streaming plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.11.2321] - (.RealNetworks, Inc. - RealPlayer LiveConnect-Enabled Plug-In.) -- C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.1483] - (.RealNetworks, Inc. - 6.0.12.1483.) -- C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll P2 - FPN: [HKLM] [yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1] - (.Yahoo! Inc. - Yahoo! activeX Plug-in Bridge.) -- C:\Program Files\Yahoo!\Common\npyaxmpb.dll ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe ---\\ Pages de démarrage d'Internet Explorer (R0) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport ---\\ Pages de recherche d'Internet Explorer (R1) R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <local> R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:6092 ---\\ Internet Explorer URLSearchHook (R3) R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Tonec Inc. - IDM BHO Module.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [DeathAdder] . (.Pas de propriétaire - razerhid MFC Application.) -- C:\Program Files\Razer\DeathAdder\razerhid.exe O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe O4 - HKCU\..\Run: [MsnMsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\MsnMsgr.exe O4 - HKCU\..\Run: [iDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe O4 - HKCU\..\Run: [NVIDIA nTune] . (.NVIDIA - NVIDIA nTune Command.) -- C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe O4 - HKUS\S-1-5-21-3049684622-1547058301-2819581623-1003\..\Run: [MsnMsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\MsnMsgr.exe O4 - HKUS\S-1-5-21-3049684622-1547058301-2819581623-1003\..\Run: [iDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe O4 - HKUS\S-1-5-21-3049684622-1547058301-2819581623-1003\..\Run: [NVIDIA nTune] . (.NVIDIA - NVIDIA nTune Command.) -- C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe O4 - Global Startup: C:\Users\Damien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: Télécharger avec IDM . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Internet Download Manager\IEExt.htm O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Internet Download Manager\IEGetVL.htm O8 - Extra context menu item: Télécharger tous les liens avec IDM . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Internet Download Manager\IEGetAll.htm ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~4\Office12\REFBARH.ICO O9 - Extra 'Tools' menuitem: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} . (.not file.) - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {6678BE91-1E04-4A4A-9C32-63145EA79C2A} (EAFO3AXLauncher Control) - http://fifa-online.easports.com/fo3-theme/addons/EAFO3AXLauncher.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUplden-us.cab ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{FFA7DFC9-16EA-4BAA-87E8-0904FB317673}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{FFA7DFC9-16EA-4BAA-87E8-0904FB317673}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{FFA7DFC9-16EA-4BAA-87E8-0904FB317673}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\system32\webcheck.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (.not file.) O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: Performance Service (nTuneService) . (.NVIDIA - NVIDIA Performance Service.) - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 257.2.) - C:\Windows\system32\nvvsvc.exe O23 - Service: Sony Ericsson OMSI download service (OMSI download service) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe O23 - Service: PnkBstrA (PnkBstrA) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\PnkBstrA.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: Update Center Service (UpdateCenterService) . (.NVIDIA - NVIDIA Update Center Service.) - C:\Program Files\NVIDIA Corporation\System Update\UpdateCenterService.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Maintenance en 1 clic.job ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Personnalisation du navigateur - >{ED3DF1A7-E9AD-41C7-A62A-1CDA6E33F517} . (.Pas de propriétaire - Pas de description.) -- RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: NCPro (NCPro) . (.Samsung Electronics, Inc. - MagicTunePremium Driver.) - C:\Windows\system32\drivers\MTictwl.sys O41 - Driver: NVIDIA PORT IO Control Driver (nvport) . (.NVIDIA Corporation. - Port Driver.) - C:\Windows\system32\Drivers\nvport.sys O41 - Driver: WINIO (WINIO) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\IRAI\AUTOMGEN8\winio.sys ---\\ Logiciels installés (O42) O42 - Logiciel: 2007 Microsoft Office system - (.Microsoft Corporation.) [HKLM] -- PROHYBRIDR O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {859D40CF-8491-44AD-8FA8-7389CB418C64} O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D} O42 - Logiciel: AIDA32 v3.93 - (.Tamas Miklos.) [HKLM] -- AIDA32_is1 O42 - Logiciel: ASIO4ALL - (.Pas de propriétaire.) [HKLM] -- ASIO4ALL O42 - Logiciel: AUTOMGEN V8.016 ©IRAI - (.Pas de propriétaire.) [HKLM] -- AUTOMGEN8.016 O42 - Logiciel: AVerMedia A850 USB DMB-TH 1.0.0.28 - (.AVerMedia TECHNOLOGIES, Inc..) [HKLM] -- AVerMedia A850 USB DMB-TH O42 - Logiciel: AVerTV - (.AVerMedia Technologies, Inc..) [HKLM] -- InstallShield_{E28B1E6F-E0AA-4228-AB89-DB4A0C89D426} O42 - Logiciel: Activation Assistant for the 2007 Microsoft Office suites - (.Microsoft Corporation.) [HKLM] -- Activation Assistant for the 2007 Microsoft Office suites O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {B194272D-1F92-46DF-99EB-8D5CE91CB4EC} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Reader 9.3 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A93000000001} O42 - Logiciel: Advanced RAR Repair v1.2 - (.Pas de propriétaire.) [HKLM] -- Advanced RAR Repair v1.2 O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE} O42 - Logiciel: Assistant de connexion Windows Live ID - (.Microsoft Corporation.) [HKLM] -- {0840B4D6-7DD1-4187-8523-E6FC0007EFB7} O42 - Logiciel: Assistant de connexion Windows Live ID - (.Microsoft Corporation.) [HKLM] -- {10A44844-4465-456E-8C97-80BDD4F68845} O42 - Logiciel: Audacity 1.3.9 (Unicode) - (.Audacity Team.) [HKLM] -- Audacity 1.3 Beta (Unicode)_is1 O42 - Logiciel: Audio Record Wizard v3.8 - (.NowSmart Studio.) [HKLM] -- Audio Record Wizard_is1 O42 - Logiciel: AutoCAD 2008 - Français - (.Autodesk.) [HKLM] -- AutoCAD 2008 - Français O42 - Logiciel: Autodesk Design Review 2010 - (.Autodesk, Inc..) [HKLM] -- Autodesk Design Review 2010 O42 - Logiciel: Autodesk Inventor 2010 - (.Autodesk, Inc..) [HKLM] -- {7F4DD591-1400-0409-0000-7107D70F3DB4} O42 - Logiciel: Autodesk Inventor 2010 English (English) - (.Autodesk, Inc..) [HKLM] -- Autodesk Inventor 2010 O42 - Logiciel: Autodesk Inventor 2010 English Language Pack - (.Autodesk, Inc..) [HKLM] -- {52969324-463B-4643-BF36-854BE2BECB89} O42 - Logiciel: Autodesk Inventor Content Center Libraries 2010 (Desktop Content) - (.Autodesk, Inc..) [HKLM] -- {1FB138CC-5503-4B4A-BC42-81E9C1FF26EE} O42 - Logiciel: Avanquest update - (.Avanquest Software.) [HKLM] -- {76E41F43-59D2-4F30-BA42-9A762EE1E8DE} O42 - Logiciel: BLAZBLUE -CALAMITY TRIGGER- - (.ARC SYSTEM WORKS.) [HKLM] -- GFWL_{415807D5-45E8-4635-A5A9-C81000008400} O42 - Logiciel: BLAZBLUE -CALAMITY TRIGGER- - (.ARC SYSTEM WORKS.) [HKLM] -- {415807D5-45E8-4635-A5A9-C81000008400} O42 - Logiciel: BS.Player FREE - (.Webteh, d.o.o..) [HKLM] -- BSPlayerf O42 - Logiciel: BurnAware Free 2.2.1 - (.Burnaware Technologies.) [HKLM] -- BurnAware Free_is1 O42 - Logiciel: CANAL+ pour Windows Media Center - (.Microsoft Corporation.) [HKLM] -- {E2A6B1A0-C1E3-4311-BF86-EAF18841FD67} O42 - Logiciel: CANON iMAGE GATEWAY Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CANON iMAGE GATEWAY Task O42 - Logiciel: CB-StratBoard - (.TacticsBoard.com.) [HKLM] -- {17027A59-C876-497C-80CC-3D1AAF6330B3} O42 - Logiciel: CCleaner (remove only) - (.Pas de propriétaire.) [HKLM] -- CCleaner O42 - Logiciel: CPU Stress MT 1.0.4 - (.Foudge.) [HKLM] -- CPU Stress MT_is1 O42 - Logiciel: CPUID CPU-Z 1.55 - (.Pas de propriétaire.) [HKLM] -- CPUID CPU-Z_is1 O42 - Logiciel: Call of Duty® 4 - Modern Warfare - (.Activision.) [HKLM] -- InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217} O42 - Logiciel: Call of Duty® 4 - Modern Warfare 1.4 Patch - (.Pas de propriétaire.) [HKLM] -- InstallShield_{3BD633E0-4BF8-4499-9149-88F0767D449C} O42 - Logiciel: Call of Duty® 4 - Modern Warfare 1.5 Multiplayer Patch - (.Pas de propriétaire.) [HKLM] -- InstallShield_{8503C901-85D7-4262-88D2-8D8B2A7B08B8} O42 - Logiciel: Call of Duty® 4 - Modern Warfare 1.6 Patch - (.Pas de propriétaire.) [HKLM] -- InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE} O42 - Logiciel: Call of Duty® 4 - Modern Warfare 1.7 Patch - (.Pas de propriétaire.) [HKLM] -- InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498} O42 - Logiciel: Canon Internet Library for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- Canon Internet Library for ZoomBrowser EX O42 - Logiciel: Canon MOV Decoder - (.Canon Inc..) [HKLM] -- Canon MOV Decoder O42 - Logiciel: Canon MOV Encoder - (.Canon Inc..) [HKLM] -- Canon MOV Encoder O42 - Logiciel: Canon MovieEdit Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- MovieEditTask O42 - Logiciel: Canon Utilities CameraWindow - (.Canon Inc..) [HKLM] -- CameraWindowLauncher O42 - Logiciel: Canon Utilities CameraWindow DC - (.Canon Inc..) [HKLM] -- CameraWindowDC O42 - Logiciel: Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CameraWindowDVC6 O42 - Logiciel: Canon Utilities MyCamera - (.Canon Inc..) [HKLM] -- MyCamera O42 - Logiciel: Canon Utilities MyCamera DC - (.Canon Inc..) [HKLM] -- MyCameraDC O42 - Logiciel: Canon Utilities PhotoStitch - (.Canon Inc..) [HKLM] -- PhotoStitch O42 - Logiciel: Canon Utilities RemoteCapture Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- RemoteCaptureTask O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Canon Inc..) [HKLM] -- ZoomBrowser EX O42 - Logiciel: Canon ZoomBrowser EX Memory Card Utility - (.Canon Inc..) [HKLM] -- ZoomBrowser EX Memory Card Utility O42 - Logiciel: Collab - (.Image-Line bvba.) [HKLM] -- Collab O42 - Logiciel: Configuration DivX - (.DivX, Inc. .) [HKLM] -- DivX Setup.divx.com O42 - Logiciel: Counter-Strike: Source - (.Valve.) [HKLM] -- Steam App 240 O42 - Logiciel: Crazy Fun Game BNC - (.Pas de propriétaire.) [HKCU] -- Crazy Fun Game BNC O42 - Logiciel: DFU Tools - (.Pas de propriétaire.) [HKLM] -- {FBBE31CA-0367-4112-B58C-4C06B31F0C78} O42 - Logiciel: DFX for Winamp - (.Power Technology.) [HKLM] -- DFX for Winamp O42 - Logiciel: DLFreeTools 1.0 - (.Pas de propriétaire.) [HKLM] -- DLFreeTools O42 - Logiciel: DMW Pro Client - (.DMW International Ltd..) [HKLM] -- DMW Pro Client O42 - Logiciel: DMW Scanner 3 - (.DMW International Ltd.) [HKLM] -- DMW Scanner 3 O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM] -- DVD Shrink_is1 O42 - Logiciel: DWG TrueView 2010 - (.Autodesk.) [HKLM] -- DWG TrueView 2010 O42 - Logiciel: Dead Rising 2 - (.Capcom.) [HKLM] -- GFWL_{4343080E-91B7-4388-AB4D-FB1000008200} O42 - Logiciel: Dead Rising 2 - (.Capcom.) [HKLM] -- {4343080E-91B7-4388-AB4D-FB1000008200} O42 - Logiciel: Debugging Tools for Windows (x86) - (.Microsoft Corporation.) [HKLM] -- {1CD0C3C5-809D-4CFC-904A-1B67C6243637} O42 - Logiciel: Directory Classifier v2.3 - (.Adolix.) [HKLM] -- Directory Classifier v2.3_is1 O42 - Logiciel: DivX Content Uploader - (.DivX, Inc..) [HKLM] -- {D050D7362D214723AD585B541FFB6C11} O42 - Logiciel: Driver Sweeper 1.5.5 - (.Phyxion.net - Guru3D.com.) [HKLM] -- {0965D484-1777-4BA5-8C3A-095A6B0D2696}_is1 O42 - Logiciel: EA SPORTS FIFA Online - (.Electronic Arts.) [HKLM] -- {6FE3B0CE-37C1-4825-908A-5A84C9B4EC2F} O42 - Logiciel: EVEREST Home Edition v2.20 - (.Lavalys Inc.) [HKLM] -- EVEREST Home Edition_is1 O42 - Logiciel: EVEREST Ultimate Edition v5.02 - (.Lavalys, Inc..) [HKLM] -- EVEREST Ultimate Edition_is1 O42 - Logiciel: Emjysoft Programme TV 1.0 - (.Emjysoft.) [HKLM] -- Emjysoft Programme TV_is1 O42 - Logiciel: F1 2010 - (.Codemasters.) [HKLM] -- GFWL_{434D0831-3E0C-4D03-A5D4-5E1000008400} O42 - Logiciel: F1 2010 - (.Codemasters.) [HKLM] -- {434D0831-3E0C-4D03-A5D4-5E1000008400} O42 - Logiciel: FIFA 11 Demo - (.Electronic Arts.) [HKLM] -- {DC158DF7-6B36-4C6F-BC91-109014297994} O42 - Logiciel: FL Studio 8 - (.Image-Line bvba.) [HKLM] -- FL Studio 8 O42 - Logiciel: FTP Expert 3 - (.Pas de propriétaire.) [HKLM] -- FTP Expert 3 O42 - Logiciel: Fichiers de prise en charge de l'installation de Microsoft SQL Server (Français) - (.Microsoft Corporation.) [HKLM] -- {3380F354-C5F7-4E71-8F51-EEE6C3F06C62} O42 - Logiciel: File Recover 7.5 - (.PC Tools.) [HKLM] -- File Recover_is1 O42 - Logiciel: FileZilla Client 3.0.10 - (.Pas de propriétaire.) [HKLM] -- FileZilla Client O42 - Logiciel: Fraps (remove only) - (.Pas de propriétaire.) [HKLM] -- Fraps O42 - Logiciel: Free Easy Burner V 4.1 - (.Koyote soft.) [HKLM] -- Free Easy Burner_is1 O42 - Logiciel: Free Mp3 Wma Converter V 1.8.0 - (.Pas de propriétaire.) [HKLM] -- Free Mp3 Wma Converter_is1 O42 - Logiciel: Freez FLV to AVI/MPEG/WMV Converter - (.www.smallvideosoft.com.) [HKLM] -- Freez FLV to AVI/MPEG/WMV Converter 1.5_is1 O42 - Logiciel: Frets On Fire - (.Pas de propriétaire.) [HKLM] -- Frets on Fire O42 - Logiciel: Futuremark SystemInfo - (.Futuremark Corporation.) [HKLM] -- {BEE64C14-BEF1-4610-8A68-A16EAA47B882} O42 - Logiciel: GDR 4053 for SQL Server Database Services 2005 ENU (KB970892) - (.Microsoft Corporation.) [HKLM] -- KB970892_SQL9 O42 - Logiciel: GTactix - (.default.) [HKLM] -- {046ED2B7-14D5-4F2C-A275-09D54CEFE757} O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {B131E59D-202C-43C6-84C9-68F0C37541F1} O42 - Logiciel: Gestionnaire de contacts professionnels pour Outlook 2007 SP2 - (.Microsoft Corporation.) [HKLM] -- Business Contact Manager O42 - Logiciel: Gestionnaire de contacts professionnels pour Outlook 2007 SP2 - (.Microsoft Corporation.) [HKLM] -- {69ca8988-1c6c-4285-b8af-db780a6e42af} O42 - Logiciel: Glary Undelete 1.6.0.262 - (.GlarySoft.com.) [HKLM] -- Glary Undelete_is1 O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM] -- HPExtendedCapabilities O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM] -- HP Imaging Device Functions O42 - Logiciel: HP Photosmart C4400 All-In-One Driver Software 13.0 Rel. 3 - (.HP.) [HKLM] -- {8181C5B7-2FF5-4677-BA6A-8E2C3F5A7601} O42 - Logiciel: HP Photosmart Essential - (.HP.) [HKLM] -- {EB21A812-671B-4D08-B974-2A347F0D8F70} O42 - Logiciel: HP Photosmart Essential 3.5 - (.HP.) [HKLM] -- HP Photosmart Essential O42 - Logiciel: HP Photosmart.All-In-One Driver Software 8.0 .A - (.HP.) [HKLM] -- {282E5AB2-8E47-4571-B6FA-6B512555B557} O42 - Logiciel: HP Smart Web Printing 4.51 - (.HP.) [HKLM] -- HP Smart Web Printing O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {7059BDA7-E1DB-442C-B7A1-6144596720A4} O42 - Logiciel: Hamachi 1.0.2.5 - (.Pas de propriétaire.) [HKLM] -- Hamachi O42 - Logiciel: I-Doser v4 - (.Pas de propriétaire.) [HKCU] -- I-Doser v4 O42 - Logiciel: IL Download Manager - (.Image-Line bvba.) [HKLM] -- IL Download Manager O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {46ABBC54-1872-4AA3-95E2-F2C063A63F31} O42 - Logiciel: Internet Download Manager - (.Pas de propriétaire.) [HKLM] -- Internet Download Manager O42 - Logiciel: Java 6 Update 17 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216016FF} O42 - Logiciel: Java 6 Update 6 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160060} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5} O42 - Logiciel: K-Lite Mega Codec Pack 1.52 Beta - (.Pas de propriétaire.) [HKLM] -- KLiteCodecPack_is1 O42 - Logiciel: League of Legends - (.Pas de propriétaire.) [HKLM] -- League of Legends_is1 O42 - Logiciel: Logiciel QuickCam de Logitech - (.Logitech, Inc..) [HKLM] -- {C43048A9-742C-4DAD-90D2-E3B53C9DB825} O42 - Logiciel: MIKSOFT Mobile 3GP converter - (.MIKSOFT.) [HKLM] -- MIKSOFT Mobile 3GP converter_is1 O42 - Logiciel: MMTVConfig (désinstallation seulement) - (.Pas de propriétaire.) [HKLM] -- MMTVConfig O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF} O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- {C523D256-313D-4866-B36A-F3DE528246EF} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC} O42 - Logiciel: MagicTune Premium - (.Samsung Electronics Co. Ltd..) [HKLM] -- {D6044256-A309-43B5-9833-D3FAFE2AD24D} O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Max Payne 2 - (.Pas de propriétaire.) [HKLM] -- {EFE1AB94-5466-4B6E-BE31-FF4C115FD25D} O42 - Logiciel: MaxTV - (.MaxTV Technologies.) [HKLM] -- MaxTV O42 - Logiciel: Medal of Honor débarquement allié - (.Pas de propriétaire.) [HKLM] -- {0DEA94ED-915A-4834-A87E-388D012C8E02} O42 - Logiciel: Mega Manager - (.Megaupload Limited.) [HKLM] -- {3B6E3FC6-274C-4B6C-BC85-5C3B15DE18E2} O42 - Logiciel: Messenger Plus! Live - (.Patchou.) [HKLM] -- Messenger Plus! Live O42 - Logiciel: MessengerDiscovery 2.5.95 - (.Matt Holwood.) [HKLM] -- MessengerDiscovery_is1 O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033) O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB953297) - (.Pas de propriétaire.) [HKLM] -- M953297 O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E} O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570} O42 - Logiciel: Microsoft Games for Windows - LIVE - (.Microsoft Corporation.) [HKLM] -- {F97E3841-CA9D-4964-9D64-26066241D26F} O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM] -- {8FB1B528-E260-451E-9B55-E9152F94B80B} O42 - Logiciel: Microsoft Office 2003 Web Components - (.Microsoft Corporation.) [HKLM] -- {90A4040C-6000-11D3-8CFE-0150048383C9} O42 - Logiciel: Microsoft Office 2007 Primary Interop Assemblies - (.Microsoft Corporation.) [HKLM] -- {50120000-1105-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROHYBRIDR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- HOMESTUDENTR O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Live Add-in 1.5 - (.Microsoft Corporation.) [HKLM] -- {F40BBEC7-C2A4-4A00-9B24-7A055A2C5262} O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professional Hybrid 2007 - (.Microsoft Corporation.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_PROHYBRIDR_{14809F99-C601-4D4A-9391-F1E8FAA964C5} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_PROHYBRIDR_{A0516415-ED61-419A-981D-93596DA74165} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROHYBRIDR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROHYBRIDR_{F580DDD5-8D37-4998-968E-EBB76BB86787} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROHYBRIDR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROHYBRIDR_{187308AB-5FA7-4F14-9AB9-D290383A10D9} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Small Business Connectivity Components - (.Microsoft Corporation.) [HKLM] -- {A939D341-5A04-4E0A-BB55-3E65B386432D} O42 - Logiciel: Microsoft Office Visio 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{0FD405D3-CAF8-4CA6-8BFD-911D2F8A6585} O42 - Logiciel: Microsoft Office Visio 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0054-040C-0000-0000000FF1CE}_VISPRO_{7EC87B94-B9A7-4C72-9C55-21C1C9DEE3C5} O42 - Logiciel: Microsoft Office Visio MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0054-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Visio Professional 2007 - (.Microsoft Corporation.) [HKLM] -- VISPRO O42 - Logiciel: Microsoft Office Visio Professional 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft SQL Server 2005 - (.Microsoft Corporation.) [HKLM] -- Microsoft SQL Server 2005 O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} O42 - Logiciel: Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) - (.Microsoft Corporation.) [HKLM] -- {480DBB60-F0B6-45F2-B26F-1A2E11197791} O42 - Logiciel: Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR) - (.Microsoft Corporation.) [HKLM] -- {E09B48B5-E141-427A-AB0C-D3605127224A} O42 - Logiciel: Microsoft SQL Server Native Client - (.Microsoft Corporation.) [HKLM] -- {1F24E48F-7692-4E89-8784-68DD4D2712A0} O42 - Logiciel: Microsoft SQL Server VSS Writer - (.Microsoft Corporation.) [HKLM] -- {A30179B7-997A-4D47-AA43-57AE59A9C78B} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {A49F249F-0C91-497F-86DF-B2585E8E76B7} O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 - (.Microsoft Corporation.) [HKLM] -- {820B6609-4C97-3A2B-B644-573B06A0F0CC} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..) [HKLM] -- {E3E71D07-CD27-46CB-8448-16D4FB29AA13} O42 - Logiciel: Microsoft Xbox 360 Accessories 1.1 - (.Microsoft.) [HKLM] -- {9F5DF7FC-3AF2-4502-9084-F62FC00A5A3F} O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack O42 - Logiciel: Monkey Island 2 LeChucks Revenge Special Edition - (.Pas de propriétaire.) [HKLM] -- Monkey Island 2 LeChucks Revenge Special Edition_is1 O42 - Logiciel: Mozilla Firefox (3.0.19) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.0.19) O42 - Logiciel: Mumble and Murmur - (.Mumble.) [HKLM] -- Mumble O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Display Control Panel O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers O42 - Logiciel: NVIDIA Performance - (.NVIDIA Corporation.) [HKLM] -- InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF} O42 - Logiciel: NVIDIA Performance - (.NVIDIA Corporation.) [HKLM] -- {7C7F30F4-94E7-4AA8-8941-90C4A80C68BF} O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA} O42 - Logiciel: NVIDIA PureVideo Decoder - (.Pas de propriétaire.) [HKLM] -- {055FEF8E-4B86-400F-A5C6-8FAC0042DCD9} O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM] -- NVIDIAStereo O42 - Logiciel: NVIDIA System Monitor - (.NVIDIA Corporation.) [HKLM] -- InstallShield_{E9CFBE78-ED91-4FCF-9E6F-210E477E527D} O42 - Logiciel: NVIDIA System Monitor - (.NVIDIA Corporation.) [HKLM] -- {E9CFBE78-ED91-4FCF-9E6F-210E477E527D} O42 - Logiciel: NVIDIA System Update - (.NVIDIA Corporation.) [HKLM] -- InstallShield_{6F69C969-2942-4E7B-B594-75B37664B8BA} O42 - Logiciel: NVIDIA System Update - (.NVIDIA Corporation.) [HKLM] -- {6F69C969-2942-4E7B-B594-75B37664B8BA} O42 - Logiciel: Natural Color Pro - (.Pas de propriétaire.) [HKLM] -- {FC2C7405-BC58-4E11-8F51-29671BEAC06B} O42 - Logiciel: OCCT Perestroika 3.0.1 - (.Tetedeiench.) [HKLM] -- OCCT_is1 O42 - Logiciel: OCR Software by I.R.I.S. 13.0 - (.HP.) [HKLM] -- HPOCR O42 - Logiciel: OLYMPUS Master 2 - (.OLYMPUS IMAGING CORP..) [HKLM] -- {3A1AB8E6-748E-4B95-AA2D-FE9952EB3106} O42 - Logiciel: OneStopSoft Youtube Video File Downloader 1.0.0.7 - (.OneStopSoft.com.) [HKLM] -- OneStopSoft Youtube Video File Downloader Trial Version_is1 O42 - Logiciel: OpenAL - (.Pas de propriétaire.) [HKLM] -- OpenAL O42 - Logiciel: OpenMG Limited Patch 4.7-07-14-05-01 - (.Pas de propriétaire.) [HKLM] -- OpenMG HotFix4.7-07-13-22-01 O42 - Logiciel: OpenMG Secure Module 4.7.00 - (.Sony Corporation.) [HKLM] -- InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D} O42 - Logiciel: OpenOffice.org 3.1 - (.OpenOffice.org.) [HKLM] -- {0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6} O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238} O42 - Logiciel: PC Inspector File Recovery - (.Pas de propriétaire.) [HKLM] -- {0DD140D3-9563-481E-AA75-BA457CBDAEF2} O42 - Logiciel: PDF Editeur 2 - (.Pas de propriétaire.) [HKLM] -- PDF Editeur 2 O42 - Logiciel: PKR - (.PKR Ltd.) [HKLM] -- PKR O42 - Logiciel: Philips FunCam - (.Pas de propriétaire.) [HKLM] -- {8ED84666-3A2A-4E28-AB26-B6B65260CB86} O42 - Logiciel: PowerStrip 3 (remove only) - (.Pas de propriétaire.) [HKLM] -- PowerStrip 3 (remove only) O42 - Logiciel: ProtectDisc Driver, Version 11 - (.ProtectDisc Software GmbH.) [HKLM] -- ProtectDisc Driver 11 O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM] -- PunkBusterSvc O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {8DC42D05-680B-41B0-8878-6C14D24602DB} O42 - Logiciel: RapidShare Manager - (.RapidShare AG.) [HKCU] -- 5f48e2ab41c5d005 O42 - Logiciel: Rapture3D 2.4.4 Game - (.Blue Ripple Sound.) [HKLM] -- {D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1 O42 - Logiciel: Razer DeathAdder Mouse - (.Razer Inc..) [HKLM] -- {EB1B8449-CD8F-485B-ADB6-02FBCFE180D3} O42 - Logiciel: Realtek 8169 8168 8101E 8102E Ethernet Driver - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} O42 - Logiciel: Revo Uninstaller 1.83 - (.VS Revo Group.) [HKLM] -- Revo Uninstaller O42 - Logiciel: SMPlayer 0.6.0final - (.RVM.) [HKLM] -- SMPlayer_is1 O42 - Logiciel: SPEED-LINK DUAL SHOCK ADAPTER - (.GASIA.) [HKLM] -- {FEC7CD2E-2BB5-40C3-9592-078F64677E6C} O42 - Logiciel: STREET FIGHTER IV - (.CAPCOM U.S.A., INC..) [HKLM] -- {59ABBDF0-E1E5-48AF-85FB-F523A08C3490} O42 - Logiciel: Search Settings v1.2.3 - (.Spigot, Inc..) [HKLM] -- {5F05C28D-DEA9-4AD6-A73A-064175988EAB} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2277947) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5857EE21-03D0-482E-9620-5A30B314A2AE} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2277947) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{5857EE21-03D0-482E-9620-5A30B314A2AE} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{5C497F0B-2061-4CC9-A61C-6B45B867354D} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5C497F0B-2061-4CC9-A61C-6B45B867354D} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{5C497F0B-2061-4CC9-A61C-6B45B867354D} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982312) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{B0EC5722-241F-4CDA-83B4-AA5846B6F9F4} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982312) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{B0EC5722-241F-4CDA-83B4-AA5846B6F9F4} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982312) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{B0EC5722-241F-4CDA-83B4-AA5846B6F9F4} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982331) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E8766951-2B6C-4022-86E8-80D2D1762B76} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982331) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{E8766951-2B6C-4022-86E8-80D2D1762B76} O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906 O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{5A4E43D5-858F-49BD-BA72-8F30E1793060} O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB982308) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C3F9A0DC-A5D1-4BB6-870E-2953E5A2487B} O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB982308) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C3F9A0DC-A5D1-4BB6-870E-2953E5A2487B} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB} O42 - Logiciel: Security Update for Microsoft Office Outlook 2007 (KB2288953) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{8B772E1C-7C05-42D2-839D-3EC2D39EFF22} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46} O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB982124) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{289FA8BC-6A8E-4341-B194-EB26B49E9F5D} O42 - Logiciel: Security Update for Microsoft Office Visio 2007 (KB982127) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{AA3200A8-BD90-4763-B7D0-27DFBFB8DD71} O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D} O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2251419) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7E9103DA-253F-41FF-9E83-7C83806C77DA} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2251419) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{7E9103DA-253F-41FF-9E83-7C83806C77DA} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM] -- Shop for HP Supplies O42 - Logiciel: Skype™ 3.8 - (.Skype Technologies S.A..) [HKLM] -- {5C82DAE5-6EB0-4374-9254-BE3319BA4E82} O42 - Logiciel: SolidWorks 2004 SP03.1 - (.SolidWorks.) [HKLM] -- {2AB93590-0677-4AEF-A7FA-70BB48E10F7F} O42 - Logiciel: SolidWorks Explorer 2007 sp0 - (.SolidWorks Corporation.) [HKLM] -- {559FAB96-A0CD-4105-A02F-1C21DEBCEF89} O42 - Logiciel: SolidWorks Installation Manager - (.SolidWorks.) [HKLM] -- {26621E14-A45B-45CD-9ED9-7A0A9B585DB4} O42 - Logiciel: SonicStage 4.3 - (.Sony Corporation.) [HKLM] -- {A0EB195B-5876-48E6-879D-33D4B2102610} O42 - Logiciel: Sony Ericsson PC Suite 6.011.00 - (.Sony Ericsson.) [HKLM] -- {2FFE93F0-BB72-4E52-8761-354D1AAA9387} O42 - Logiciel: Sony Media Manager 2.0 - (.Sony.) [HKLM] -- {C34E19B2-F4D4-4C1F-A565-BA92627178D8} O42 - Logiciel: Sony Media Manager 2.2 - (.Sony.) [HKLM] -- {2B5A75F0-FD85-4094-AB00-94902398D192} O42 - Logiciel: Sony Vegas 6.0c - (.Sony.) [HKLM] -- {DC53BB56-FBB5-47BE-B342-E43CC83C0ECF} O42 - Logiciel: Sophos Anti-Rootkit 1.5.0 - (.Sophos Plc.) [HKLM] -- Sophos-AntiRootkit O42 - Logiciel: SoulSeek 157 NS 13 - (.Pas de propriétaire.) [HKLM] -- Soulseek2 O42 - Logiciel: Spelling Dictionaries Support For Adobe Reader 9 - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-5464-3428-900000000004} O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 O42 - Logiciel: StarCraft II - (.Blizzard Entertainment.) [HKLM] -- StarCraft II O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3} O42 - Logiciel: Stop-PC - (.Vbteam.) [HKLM] -- {72EFD9F9-ACA7-412B-9E66-187D1D54C8F8} O42 - Logiciel: Sumatra PDF reader - (.Pas de propriétaire.) [HKLM] -- SumatraPDF O42 - Logiciel: System Requirements Lab - (.Husdawg, LLC.) [HKLM] -- {9E1BAB75-EB78-440D-94C0-A3857BE2E733} O42 - Logiciel: System Requirements Lab - (.Pas de propriétaire.) [HKLM] -- SystemRequirementsLab O42 - Logiciel: TeamSpeak 2 RC2 - (.Dominating Bytes Design.) [HKLM] -- Teamspeak 2 RC2_is1 O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM] -- TeamSpeak 3 Client O42 - Logiciel: Thermal Analysis Tool - (.Intel Corporation.) [HKLM] -- {6B2C675E-8040-431B-99C4-137DF4FBF75A} O42 - Logiciel: TomTom HOME 2.7.3.1894 - (.TomTom.) [HKLM] -- TomTom HOME O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533} O42 - Logiciel: TuneUp Utilities 2008 - (.TuneUp Software.) [HKLM] -- {5888428E-699C-4E71-BF71-94EE06B497DA} O42 - Logiciel: UndeletePlus™ 3.0.0.602 - (.Copyright © 2009 Phoenix Technologies • All Rights Reserved.) [HKLM] -- UndeletePlus™_is1 O42 - Logiciel: Universal Anticheat 2 v2.44 - (.DExUS & Snipes.) [HKLM] -- {99BEB67F-B288-44F5-8B2A-23F5F522A1AE}_is1 O42 - Logiciel: Unlocker 1.9.0 - (.Cedrick Collomb.) [HKLM] -- Unlocker O42 - Logiciel: Update Service - (.Sony Ericsson Mobile Communications AB.) [HKLM] -- Update Service O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{329050A9-EF80-40F9-B633-74508F54C1FF} O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (kb2291599) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{768A5B4B-2FDF-4F3D-981E-33C53724BBC8} O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM] -- {5EE7D259-D137-4438-9A5F-42F432EC0421} O42 - Logiciel: VLC media player 0.9.8a - (.VideoLAN Team.) [HKLM] -- VLC media player O42 - Logiciel: Ventrilo - (.Flagship Industries, Inc..) [HKLM] -- {789289CA-F73A-4A16-A331-54D498CE069F} O42 - Logiciel: Video Converter - (.MZ.) [HKLM] -- Video Converter1.0 O42 - Logiciel: Virtual DJ - Atomix Productions - (.Pas de propriétaire.) [HKLM] -- Virtual DJ - Atomix Productions O42 - Logiciel: WhoCrashed 2.10 - (.Resplendence Software Projects Sp..) [HKLM] -- WhoCrashed_is1 O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM] -- Winamp O42 - Logiciel: Windows 7 Codec Pack 2.3.0 - (.Windows 7 Codec Pack.) [HKLM] -- Windows 7 - Codec Pack O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3B4E636E-9D65-4D67-BA61-189800823F52} O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {770F1BEC-2871-4E70-B837-FB8525FFA3B1} O42 - Logiciel: Windows Live OneCare safety scanner - (.Microsoft Corporation.) [HKLM] -- Windows Live OneCare safety scanner O42 - Logiciel: Windows Live OneCare safety scanner - (.Microsoft Corporation.) [HKLM] -- {FE0646A7-19D0-41B4-A2BB-2C35D644270D} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA} O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} O42 - Logiciel: Wolfenstein 1.1 Patch - (.Pas de propriétaire.) [HKLM] -- InstallShield_{E03B44A3-9237-4B55-B7A5-DB1DD46920D3} O42 - Logiciel: Xfire (remove only) - (.Pas de propriétaire.) [HKLM] -- Xfire O42 - Logiciel: Xilisoft HD Video Converter - (.Xilisoft.) [HKLM] -- Xilisoft HD Video Converter O42 - Logiciel: XnView 1.92 - (.Gougelet Pierre-e.) [HKLM] -- XnView_is1 O42 - Logiciel: Youtube Music Downloader V2.7 - (.Youtube Music Downloader.) [HKLM] -- Youtube Music Downloader_is1 O42 - Logiciel: avast! Pro Antivirus - (.Alwil Software.) [HKLM] -- avast5 O42 - Logiciel: eDrawings 2004 SP03 - (.SolidWorks.) [HKLM] -- {83F7144B-CE67-483B-BB16-AE66902439E4} O42 - Logiciel: eDrawings 2007 - (.SolidWorks.) [HKLM] -- {75FEB085-179F-4C85-B0E4-B517D2160750} O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {EA418519-2160-43A0-AABD-6608DDD8D87F} O42 - Logiciel: mIRC - (.mIRC Co. Ltd..) [HKLM] -- mIRC ---\\ HKCU & HKLM Software Keys [HKCU\Software\2015] [HKCU\Software\2K Sports] [HKCU\Software\AC3Filter] [HKCU\Software\ALWIL Software] [HKCU\Software\ARAR] [HKCU\Software\ASIO4ALL v2 by Wuschel] [HKCU\Software\ASUS] [HKCU\Software\AVS4YOU] [HKCU\Software\AVerMedia TECHNOLOGIES, Inc.] [HKCU\Software\AVerMedia TV Applications] [HKCU\Software\Adobe] [HKCU\Software\Adolix] [HKCU\Software\Alcohol Soft] [HKCU\Software\AppDataLow\AskBarDis] [HKCU\Software\AppDataLow\Software\AVG] [HKCU\Software\AppDataLow\Software\AskToolbar] [HKCU\Software\AppDataLow\Software\Autodesk] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software\Yahoo] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Ask.com] [HKCU\Software\Audacity] [HKCU\Software\Autodesk] [HKCU\Software\BST] [HKCU\Software\Blizzard Entertainment] [HKCU\Software\BlueRippleSound] [HKCU\Software\Bugsplat] [HKCU\Software\CD Projekt RED] [HKCU\Software\CDDB] [HKCU\Software\Canon] [HKCU\Software\Canon_Inc_IC] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Codemasters] [HKCU\Software\CoreVorbis] [HKCU\Software\CyboPat] [HKCU\Software\DFX] [HKCU\Software\DT Soft] [HKCU\Software\DVD Shrink] [HKCU\Software\Dec 16 Productions] [HKCU\Software\DirectShow] [HKCU\Software\DivXNetworks] [HKCU\Software\DivX] [HKCU\Software\DownloadManager] [HKCU\Software\EA Games] [HKCU\Software\EA Sports] [HKCU\Software\ESET] [HKCU\Software\EasySystems] [HKCU\Software\Electronic Arts] [HKCU\Software\EnTech] [HKCU\Software\Freeware] [HKCU\Software\Futuremark] [HKCU\Software\GNU] [HKCU\Software\GSC Game World] [HKCU\Software\GSpot Appliance Corp] [HKCU\Software\Gabest] [HKCU\Software\GameSpy] [HKCU\Software\GlarySoft] [HKCU\Software\HP] [HKCU\Software\Haali] [HKCU\Software\Hewlett-Packard] [HKCU\Software\HookNetwork] [HKCU\Software\IGA] [HKCU\Software\IM Providers] [HKCU\Software\INCAInternet] [HKCU\Software\IRAI] [HKCU\Software\ImTOO] [HKCU\Software\Image-Line] [HKCU\Software\Intel] [HKCU\Software\JEDI-VCL] [HKCU\Software\JavaSoft] [HKCU\Software\Lake] [HKCU\Software\Lavalys] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\Logitech] [HKCU\Software\MPR] [HKCU\Software\Macromedia] [HKCU\Software\Magic Tune] [HKCU\Software\MainConcept] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\ManyCam 2.4] [HKCU\Software\Matt Holwood] [HKCU\Software\Megaupload] [HKCU\Software\Mozilla] [HKCU\Software\Mumble] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Nadeo] [HKCU\Software\Natural Color Pro] [HKCU\Software\Netscape] [HKCU\Software\NowSmart Studio] [HKCU\Software\ODBC] [HKCU\Software\OLYMPUS] [HKCU\Software\OneStopSoft VideoDownloader] [HKCU\Software\OpenOffice.org] [HKCU\Software\PCTools] [HKCU\Software\Patchou] [HKCU\Software\PeopleCanFly] [HKCU\Software\Phoenix Technologies] [HKCU\Software\Policies] [HKCU\Software\Protect Software GmbH] [HKCU\Software\RapidSolution] [HKCU\Software\Razer] [HKCU\Software\RealNetworks] [HKCU\Software\RedRexx] [HKCU\Software\Remedy Entertainment] [HKCU\Software\Resplendence Sp] [HKCU\Software\SDTP] [HKCU\Software\Safer Networking Limited] [HKCU\Software\SecuROM] [HKCU\Software\Skidrow] [HKCU\Software\Skype] [HKCU\Software\SoftVoice] [HKCU\Software\SolidWorks] [HKCU\Software\Sony Corporation] [HKCU\Software\Sony Ericsson] [HKCU\Software\Sony Media Software] [HKCU\Software\SoulSeek] [HKCU\Software\Soulseek2] [HKCU\Software\Sysinternals] [HKCU\Software\System Requirements Lab] [HKCU\Software\THQ] [HKCU\Software\TNWA Limited] [HKCU\Software\TomTom] [HKCU\Software\Trolltech] [HKCU\Software\TuneUp] [HKCU\Software\UDP Soft] [HKCU\Software\Unlimited Possibilities] [HKCU\Software\Unwinder] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\VSRevoGroup] [HKCU\Software\Valve] [HKCU\Software\Ventrilo] [HKCU\Software\VirtualDJ] [HKCU\Software\Vision Thing] [HKCU\Software\Wget] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Winamp] [HKCU\Software\Windows 7 - Codec Pack] [HKCU\Software\Windows Live] [HKCU\Software\Wizou] [HKCU\Software\Xfire] [HKCU\Software\Xilisoft] [HKCU\Software\Xobni] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\Yahoo] [HKCU\Software\dmw] [HKCU\Software\eDrawings] [HKCU\Software\ej-technologies] [HKCU\Software\epsxe] [HKCU\Software\flv2avi] [HKCU\Software\mIRC] [HKCU\Software\mozilla.org] [HKCU\Software\wizgate] [HKLM\Software\3ivx] [HKLM\Software\781] [HKLM\Software\ACE Compression Software] [HKLM\Software\AGEIA Technologies] [HKLM\Software\ALWIL Software] [HKLM\Software\ARC SYSTEM WORKS] [HKLM\Software\ASIO] [HKLM\Software\ASProtect] [HKLM\Software\ASUS] [HKLM\Software\ATI Technologies] [HKLM\Software\AVG] [HKLM\Software\AVS4YOU] [HKLM\Software\AVerMedia TECHNOLOGIES, Inc.] [HKLM\Software\Activision] [HKLM\Software\Adobe] [HKLM\Software\Adolix] [HKLM\Software\Ahead] [HKLM\Software\Alcohol Soft] [HKLM\Software\America Online] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Application Updater] [HKLM\Software\Applied Networking] [HKLM\Software\Autodesk, Inc.] [HKLM\Software\Autodesk] [HKLM\Software\BVRP Software] [HKLM\Software\Blizzard Entertainment] [HKLM\Software\BlueRippleSound] [HKLM\Software\Bluebeam Software] [HKLM\Software\BrowserChoice] [HKLM\Software\C07ft5Y] [HKLM\Software\CAPCOM] [HKLM\Software\CDDB] [HKLM\Software\Canon] [HKLM\Software\Canon_Inc_IC] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Codemasters] [HKLM\Software\Convar Deutschland GmbH] [HKLM\Software\DFX] [HKLM\Software\DICE] [HKLM\Software\DT Soft] [HKLM\Software\Debug] [HKLM\Software\DivXNetworks] [HKLM\Software\DivX] [HKLM\Software\EA GAMES] [HKLM\Software\EA Sports] [HKLM\Software\ESET] [HKLM\Software\Electronic Arts] [HKLM\Software\EnTech] [HKLM\Software\Even Balance] [HKLM\Software\Fezcgsgn] [HKLM\Software\FileZilla 3] [HKLM\Software\Fraps2] [HKLM\Software\Futuremark Corporation] [HKLM\Software\Futuremark] [HKLM\Software\GASIA] [HKLM\Software\GNU] [HKLM\Software\GSC Game World] [HKLM\Software\Gabest] [HKLM\Software\Google] [HKLM\Software\HP] [HKLM\Software\HaaliMkx] [HKLM\Software\Hewlett-Packard] [HKLM\Software\HighCriteria] [HKLM\Software\ICE] [HKLM\Software\Image-Line] [HKLM\Software\InstallShield] [HKLM\Software\Intel Corporation] [HKLM\Software\Intel] [HKLM\Software\InterVideo] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\K!] [HKLM\Software\KLCodecPack] [HKLM\Software\Khronos] [HKLM\Software\Lake] [HKLM\Software\Licenses] [HKLM\Software\Logitech] [HKLM\Software\Macromedia] [HKLM\Software\Macrovision] [HKLM\Software\Magic Tune] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\ManyCam] [HKLM\Software\Matt Holwood] [HKLM\Software\Megaupload Limited] [HKLM\Software\Megaupload] [HKLM\Software\Meizu] [HKLM\Software\Metaboli] [HKLM\Software\MimarSinan] [HKLM\Software\Monolith Productions] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\Nadeo] [HKLM\Software\Nero] [HKLM\Software\Nullsoft] [HKLM\Software\ODBC] [HKLM\Software\OLYMPUS] [HKLM\Software\OldTimer Tools] [HKLM\Software\On2 Technologies] [HKLM\Software\OpenOffice.org] [HKLM\Software\Outsim] [HKLM\Software\PCTools] [HKLM\Software\Patchou] [HKLM\Software\PeopleCanFly] [HKLM\Software\Persits Software] [HKLM\Software\Philips] [HKLM\Software\Policies] [HKLM\Software\Pragmatic Solutions Inc.] [HKLM\Software\Preclick] [HKLM\Software\Propellerhead Software] [HKLM\Software\RTLSetup] [HKLM\Software\Radeon2.ru] [HKLM\Software\RapidSolution] [HKLM\Software\RealNetworks] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\Remedy Entertainment] [HKLM\Software\Riot Games] [HKLM\Software\Rockstar Games] [HKLM\Software\S3R521] [HKLM\Software\SEC] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Samsung Electronics Co. Ltd.] [HKLM\Software\Search Settings] [HKLM\Software\Skype] [HKLM\Software\SolidWorks Corporation] [HKLM\Software\SolidWorks] [HKLM\Software\Sonic] [HKLM\Software\Sony Corporation] [HKLM\Software\Sony Ericsson] [HKLM\Software\Sony Media Software] [HKLM\Software\Srac] [HKLM\Software\Sun Microsystems] [HKLM\Software\Swearware] [HKLM\Software\Symantec] [HKLM\Software\Techland] [HKLM\Software\TerraTec Electronic GmbH] [HKLM\Software\TheXSoft.com] [HKLM\Software\TomTom] [HKLM\Software\TrendMicro] [HKLM\Software\TuneUp] [HKLM\Software\Ubi Soft] [HKLM\Software\Unwinder] [HKLM\Software\VST] [HKLM\Software\Valve] [HKLM\Software\VideoLAN] [HKLM\Software\VirtualDJ] [HKLM\Software\Visicom Media] [HKLM\Software\Volatile] [HKLM\Software\Webteh] [HKLM\Software\Wow6432Node] [HKLM\Software\X-ray Anti-Cheat] [HKLM\Software\Yahoo] [HKLM\Software\eDrawings] [HKLM\Software\ej-technologies] [HKLM\Software\leagueoflegends] [HKLM\Software\magnet] [HKLM\Software\mozilla.org] ---\\ Contenu des dossiers ProgramFiles/ProgramData (O43) O43 - CFD:Common File Directory ----D- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites O43 - CFD:Common File Directory ----D- C:\Program Files\Activision O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe O43 - CFD:Common File Directory ----D- C:\Program Files\Adolix O43 - CFD:Common File Directory ----D- C:\Program Files\AGEIA Technologies O43 - CFD:Common File Directory ----D- C:\Program Files\AIDA32 - Personal System Information O43 - CFD:Common File Directory ----D- C:\Program Files\Alcohol Soft O43 - CFD:Common File Directory ----D- C:\Program Files\Alwil Software O43 - CFD:Common File Directory ----D- C:\Program Files\Application Updater O43 - CFD:Common File Directory ----D- C:\Program Files\ARAR O43 - CFD:Common File Directory ----D- C:\Program Files\ARC SYSTEM WORKS O43 - CFD:Common File Directory ----D- C:\Program Files\ARWizard3 O43 - CFD:Common File Directory ----D- C:\Program Files\ASIO4ALL v2 O43 - CFD:Common File Directory ----D- C:\Program Files\ASUS O43 - CFD:Common File Directory ----D- C:\Program Files\Audacity 1.3 Beta (Unicode) O43 - CFD:Common File Directory ----D- C:\Program Files\AutoCAD 2008 O43 - CFD:Common File Directory ----D- C:\Program Files\Autodesk O43 - CFD:Common File Directory ----D- C:\Program Files\Avanquest update O43 - CFD:Common File Directory ----D- C:\Program Files\AVerMedia O43 - CFD:Common File Directory ----D- C:\Program Files\AVS4YOU O43 - CFD:Common File Directory ----D- C:\Program Files\Azureus O43 - CFD:Common File Directory ----D- C:\Program Files\Bethesda Softworks O43 - CFD:Common File Directory ----D- C:\Program Files\Bluebeam Software O43 - CFD:Common File Directory ----D- C:\Program Files\BRS O43 - CFD:Common File Directory ----D- C:\Program Files\BS.Player ControlBar O43 - CFD:Common File Directory ----D- C:\Program Files\BurnAware Free O43 - CFD:Common File Directory ----D- C:\Program Files\Canon O43 - CFD:Common File Directory ----D- C:\Program Files\CAPCOM O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner O43 - CFD:Common File Directory ----D- C:\Program Files\Codemasters O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files O43 - CFD:Common File Directory ----D- C:\Program Files\CPU Stress MT O43 - CFD:Common File Directory ----D- C:\Program Files\CPUID O43 - CFD:Common File Directory ----D- C:\Program Files\Crazy Fun Game BNC O43 - CFD:Common File Directory ----D- C:\Program Files\DAEMON Tools Lite O43 - CFD:Common File Directory ----D- C:\Program Files\Debugging Tools for Windows (x86) O43 - CFD:Common File Directory ----D- C:\Program Files\DExUS O43 - CFD:Common File Directory ----D- C:\Program Files\DFX O43 - CFD:Common File Directory ----D- C:\Program Files\Disney Interactive Studios O43 - CFD:Common File Directory ----D- C:\Program Files\DivX O43 - CFD:Common File Directory ----D- C:\Program Files\DLFreeTools O43 - CFD:Common File Directory ----D- C:\Program Files\DMV O43 - CFD:Common File Directory ----D- C:\Program Files\DMW Pro Client O43 - CFD:Common File Directory ----D- C:\Program Files\DMW Scanner 3 O43 - CFD:Common File Directory ----D- C:\Program Files\DreamCatcher O43 - CFD:Common File Directory ----D- C:\Program Files\Driver Sweeper O43 - CFD:Common File Directory ----D- C:\Program Files\DVD Maker O43 - CFD:Common File Directory ----D- C:\Program Files\DVD Shrink O43 - CFD:Common File Directory ----D- C:\Program Files\DWG TrueView 2010 O43 - CFD:Common File Directory ----D- C:\Program Files\EA GAMES O43 - CFD:Common File Directory ----D- C:\Program Files\EA Sports O43 - CFD:Common File Directory ----D- C:\Program Files\Electronic Arts O43 - CFD:Common File Directory ----D- C:\Program Files\Emjysoft O43 - CFD:Common File Directory ----D- C:\Program Files\Empire Interactive O43 - CFD:Common File Directory ----D- C:\Program Files\ePSXe 1.6 O43 - CFD:Common File Directory ----D- C:\Program Files\ESET O43 - CFD:Common File Directory -SH-D- C:\Program Files\Fichiers communs O43 - CFD:Common File Directory ----D- C:\Program Files\File Recover O43 - CFD:Common File Directory ----D- C:\Program Files\FileZilla FTP Client O43 - CFD:Common File Directory ----D- C:\Program Files\Free Audio Pack O43 - CFD:Common File Directory ----D- C:\Program Files\Free Download Manager O43 - CFD:Common File Directory ----D- C:\Program Files\Free Easy Burner O43 - CFD:Common File Directory ----D- C:\Program Files\Frets on Fire O43 - CFD:Common File Directory ----D- C:\Program Files\Futuremark O43 - CFD:Common File Directory ----D- C:\Program Files\Glary Undelete O43 - CFD:Common File Directory ----D- C:\Program Files\GTactix O43 - CFD:Common File Directory ----D- C:\Program Files\Hamachi O43 - CFD:Common File Directory ----D- C:\Program Files\HP O43 - CFD:Common File Directory ----D- C:\Program Files\ICQToolbar O43 - CFD:Common File Directory ----D- C:\Program Files\IDoser v4 O43 - CFD:Common File Directory ----D- C:\Program Files\Image-Line O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD:Common File Directory ----D- C:\Program Files\Intel Corporation O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Download Manager O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer O43 - CFD:Common File Directory ----D- C:\Program Files\IRAI O43 - CFD:Common File Directory ----D- C:\Program Files\iTunes O43 - CFD:Common File Directory ----D- C:\Program Files\Java O43 - CFD:Common File Directory ----D- C:\Program Files\JRE O43 - CFD:Common File Directory ----D- C:\Program Files\K! O43 - CFD:Common File Directory ----D- C:\Program Files\K-Lite Codec Pack O43 - CFD:Common File Directory ----D- C:\Program Files\Lavalys O43 - CFD:Common File Directory ----D- C:\Program Files\Lavasoft O43 - CFD:Common File Directory ----D- C:\Program Files\League of Legends O43 - CFD:Common File Directory ----D- C:\Program Files\LittleFighter2 O43 - CFD:Common File Directory ----D- C:\Program Files\Logitech O43 - CFD:Common File Directory ----D- C:\Program Files\LucasArts O43 - CFD:Common File Directory ----D- C:\Program Files\MagicTune Premium O43 - CFD:Common File Directory ----D- C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD:Common File Directory ----D- C:\Program Files\MediaCoder O43 - CFD:Common File Directory ----D- C:\Program Files\Megaupload O43 - CFD:Common File Directory ----D- C:\Program Files\Meizu O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger Plus! Live O43 - CFD:Common File Directory ----D- C:\Program Files\MessengerDiscovery 2 O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2 O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Games O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Games for Windows - LIVE O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Silverlight O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Small Business O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft SQL Server O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Works O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft WSE O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Xbox 360 Accessories O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft.NET O43 - CFD:Common File Directory ----D- C:\Program Files\MIKSOFT O43 - CFD:Common File Directory ----D- C:\Program Files\mIRC O43 - CFD:Common File Directory ----D- C:\Program Files\MMTVConfig O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox(1) O43 - CFD:Common File Directory ----D- C:\Program Files\MP3Gain O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 4.0 O43 - CFD:Common File Directory ----D- C:\Program Files\Mumble O43 - CFD:Common File Directory ----D- C:\Program Files\My Company Name O43 - CFD:Common File Directory ----D- C:\Program Files\NVIDIA Corporation O43 - CFD:Common File Directory ----D- C:\Program Files\OCCT O43 - CFD:Common File Directory ----D- C:\Program Files\Office 2007 portable O43 - CFD:Common File Directory ----D- C:\Program Files\OLYMPUS O43 - CFD:Common File Directory ----D- C:\Program Files\OneStopSoft.com O43 - CFD:Common File Directory ----D- C:\Program Files\OpenAL O43 - CFD:Common File Directory ----D- C:\Program Files\OpenOffice.org 3 O43 - CFD:Common File Directory ----D- C:\Program Files\Outsim O43 - CFD:Common File Directory ----D- C:\Program Files\PC Inspector File Recovery O43 - CFD:Common File Directory ----D- C:\Program Files\PDF Editeur 2 O43 - CFD:Common File Directory ----D- C:\Program Files\Philips FunCam O43 - CFD:Common File Directory ----D- C:\Program Files\Phoenix Technologies O43 - CFD:Common File Directory ----D- C:\Program Files\Pic O43 - CFD:Common File Directory ----D- C:\Program Files\PKR O43 - CFD:Common File Directory ----D- C:\Program Files\Postal 2 Special Edition O43 - CFD:Common File Directory ----D- C:\Program Files\PowerStrip O43 - CFD:Common File Directory ----D- C:\Program Files\ProtectDisc Driver Installer O43 - CFD:Common File Directory ----D- C:\Program Files\PS3 Media Server O43 - CFD:Common File Directory ----D- C:\Program Files\RapidSolution O43 - CFD:Common File Directory ----D- C:\Program Files\Razer O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies O43 - CFD:Common File Directory ----D- C:\Program Files\RegCleaner O43 - CFD:Common File Directory ----D- C:\Program Files\RegCure O43 - CFD:Common File Directory ----D- C:\Program Files\RivaTuner v2.06 O43 - CFD:Common File Directory ----D- C:\Program Files\Rockstar Games O43 - CFD:Common File Directory ----D- C:\Program Files\Runaway A Twist of Fate O43 - CFD:Common File Directory ----D- C:\Program Files\SEC O43 - CFD:Common File Directory ----D- C:\Program Files\Skype O43 - CFD:Common File Directory ----D- C:\Program Files\Smallvideosoft O43 - CFD:Common File Directory ----D- C:\Program Files\SMPlayer O43 - CFD:Common File Directory ----D- C:\Program Files\SolidWorks O43 - CFD:Common File Directory ----D- C:\Program Files\Sony O43 - CFD:Common File Directory ----D- C:\Program Files\Sony Ericsson O43 - CFD:Common File Directory ----D- C:\Program Files\Sony Setup O43 - CFD:Common File Directory ----D- C:\Program Files\Sophos O43 - CFD:Common File Directory ----D- C:\Program Files\Soulseek-Test O43 - CFD:Common File Directory ----D- C:\Program Files\Spybot - Search & Destroy O43 - CFD:Common File Directory ----D- C:\Program Files\StarCraft II O43 - CFD:Common File Directory ----D- C:\Program Files\Steam O43 - CFD:Common File Directory ----D- C:\Program Files\SumatraPDF O43 - CFD:Common File Directory ----D- C:\Program Files\SystemRequirementsLab O43 - CFD:Common File Directory ----D- C:\Program Files\TB-StratBoard O43 - CFD:Common File Directory ----D- C:\Program Files\TeamSpeak 3 Client O43 - CFD:Common File Directory ----D- C:\Program Files\Teamspeak2_RC2 O43 - CFD:Common File Directory ----D- C:\Program Files\The All-Seeing Eye O43 - CFD:Common File Directory ----D- C:\Program Files\THQ O43 - CFD:Common File Directory ----D- C:\Program Files\TomTom DesktopSuite O43 - CFD:Common File Directory ----D- C:\Program Files\TomTom HOME 2 O43 - CFD:Common File Directory ----D- C:\Program Files\TomTom International B.V O43 - CFD:Common File Directory ----D- C:\Program Files\TrackMania United O43 - CFD:Common File Directory ----D- C:\Program Files\Trend Micro O43 - CFD:Common File Directory ----D- C:\Program Files\TuneUp Utilities 2008 O43 - CFD:Common File Directory ----D- C:\Program Files\Ubisoft O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information O43 - CFD:Common File Directory ----D- C:\Program Files\Unlocker O43 - CFD:Common File Directory ----D- C:\Program Files\Unreal Tournament 3 O43 - CFD:Common File Directory ----D- C:\Program Files\Vbteam O43 - CFD:Common File Directory ----D- C:\Program Files\Ventrilo O43 - CFD:Common File Directory ----D- C:\Program Files\Video Converter O43 - CFD:Common File Directory ----D- C:\Program Files\VideoLAN O43 - CFD:Common File Directory ----D- C:\Program Files\VID_0E8F&PID_0003 O43 - CFD:Common File Directory ----D- C:\Program Files\VirtualDJ O43 - CFD:Common File Directory ----D- C:\Program Files\Visicom Media O43 - CFD:Common File Directory ----D- C:\Program Files\vmntoolbar O43 - CFD:Common File Directory ----D- C:\Program Files\VS Revo Group O43 - CFD:Common File Directory ----D- C:\Program Files\Vstplugins O43 - CFD:Common File Directory ----D- C:\Program Files\Webteh O43 - CFD:Common File Directory ----D- C:\Program Files\WhoCrashed O43 - CFD:Common File Directory ----D- C:\Program Files\Winamp O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Calendar O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Collaboration O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Defender O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Journal O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live Safety Center O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live SkyDrive O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Mail O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Photo Gallery O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Photo Viewer O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Portable Devices O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Sidebar O43 - CFD:Common File Directory ----D- C:\Program Files\WinRAR O43 - CFD:Common File Directory R---D- C:\Program Files\WorldOfGoo O43 - CFD:Common File Directory ----D- C:\Program Files\wtf O43 - CFD:Common File Directory ----D- C:\Program Files\X-ray Anti-Cheat O43 - CFD:Common File Directory ----D- C:\Program Files\XBCD 360 O43 - CFD:Common File Directory ----D- C:\Program Files\Xfire O43 - CFD:Common File Directory ----D- C:\Program Files\Xilisoft O43 - CFD:Common File Directory ----D- C:\Program Files\XnView O43 - CFD:Common File Directory ----D- C:\Program Files\Yahoo! O43 - CFD:Common File Directory ----D- C:\Program Files\ZHPDiag O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe AIR O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Apple O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Autodesk Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\AVerMedia O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\AVSMedia O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\BioWare O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Blizzard Entertainment O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Bluebeam Software O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Canon O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\DESIGNER O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\DFX O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\DivX Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\eDrawings2007 O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Futuremark Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Hewlett-Packard O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\HP O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\INCA Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\InstallShield O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Java O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Macrovision Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\microsoft shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\PX Storage Engine O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Services O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Skype O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\sndm360 O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Solidworks Data O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SolidWorks Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Sony Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Steam O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Windows Live O43 - CFD:Common File Directory -SH-D- C:\Program Files\Common Files\WindowsLiveInstaller O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Wise Installation Wizard O43 - CFD:Common File Directory ----D- C:\ProgramData\2DBoy O43 - CFD:Common File Directory ----D- C:\ProgramData\AA3DeployClient O43 - CFD:Common File Directory ----D- C:\ProgramData\Adobe O43 - CFD:Common File Directory ----D- C:\ProgramData\Alwil Software O43 - CFD:Common File Directory ----D- C:\ProgramData\Apple O43 - CFD:Common File Directory ----D- C:\ProgramData\Apple Computer O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Application Data O43 - CFD:Common File Directory ----D- C:\ProgramData\ashampoo O43 - CFD:Common File Directory ----D- C:\ProgramData\ASign O43 - CFD:Common File Directory ----D- C:\ProgramData\Autodesk O43 - CFD:Common File Directory ----D- C:\ProgramData\AVerTV O43 - CFD:Common File Directory ----D- C:\ProgramData\Avg8 O43 - CFD:Common File Directory ----D- C:\ProgramData\AVS4YOU O43 - CFD:Common File Directory ----D- C:\ProgramData\Azureus O43 - CFD:Common File Directory ----D- C:\ProgramData\Blizzard O43 - CFD:Common File Directory ----D- C:\ProgramData\Blizzard Entertainment O43 - CFD:Common File Directory ----D- C:\ProgramData\Bluebeam Software O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Bureau O43 - CFD:Common File Directory ----D- C:\ProgramData\BVRP Software O43 - CFD:Common File Directory ----D- C:\ProgramData\Codemasters O43 - CFD:Common File Directory ----D- C:\ProgramData\DAEMON Tools Lite O43 - CFD:Common File Directory ----D- C:\ProgramData\DassaultSystemes O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Desktop O43 - CFD:Common File Directory ----D- C:\ProgramData\DFX O43 - CFD:Common File Directory ----D- C:\ProgramData\DivX O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Documents O43 - CFD:Common File Directory ----D- C:\ProgramData\DVD Shrink O43 - CFD:Common File Directory ----D- C:\ProgramData\Electronic Arts Inc O43 - CFD:Common File Directory ----D- C:\ProgramData\ESET O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Favoris O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Favorites O43 - CFD:Common File Directory ----D- C:\ProgramData\FLEXnet O43 - CFD:Common File Directory ----D- C:\ProgramData\Hewlett-Packard O43 - CFD:Common File Directory ----D- C:\ProgramData\HP O43 - CFD:Common File Directory ----D- C:\ProgramData\HP Product Assistant O43 - CFD:Common File Directory ----D- C:\ProgramData\huryvsfk O43 - CFD:Common File Directory ----D- C:\ProgramData\InstallShield O43 - CFD:Common File Directory ----D- C:\ProgramData\Lavasoft O43 - CFD:Common File Directory ----D- C:\ProgramData\Malwarebytes O43 - CFD:Common File Directory ----D- C:\ProgramData\Media Center Programs O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Menu Démarrer O43 - CFD:Common File Directory ----D- C:\ProgramData\Messenger Plus! O43 - CFD:Common File Directory ----D- C:\ProgramData\MessengerDiscovery 2 O43 - CFD:Common File Directory -S--D- C:\ProgramData\Microsoft O43 - CFD:Common File Directory ----D- C:\ProgramData\Microsoft Help O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Modèles O43 - CFD:Common File Directory ----D- C:\ProgramData\NVIDIA O43 - CFD:Common File Directory ----D- C:\ProgramData\NVIDIA Corporation O43 - CFD:Common File Directory ----D- C:\ProgramData\Pendulo Studios O43 - CFD:Common File Directory ----D- C:\ProgramData\RapidSolution O43 - CFD:Common File Directory ----D- C:\ProgramData\Real O43 - CFD:Common File Directory ----D- C:\ProgramData\Skype O43 - CFD:Common File Directory ----D- C:\ProgramData\SonicStage O43 - CFD:Common File Directory ----D- C:\ProgramData\Sony O43 - CFD:Common File Directory ----D- C:\ProgramData\Sony Corporation O43 - CFD:Common File Directory ----D- C:\ProgramData\Sony Ericsson O43 - CFD:Common File Directory ----D- C:\ProgramData\Soulseek O43 - CFD:Common File Directory ----D- C:\ProgramData\Spybot - Search & Destroy O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Start Menu O43 - CFD:Common File Directory ---AD- C:\ProgramData\TEMP O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Templates O43 - CFD:Common File Directory ----D- C:\ProgramData\TomTom O43 - CFD:Common File Directory ----D- C:\ProgramData\TuneUp Software O43 - CFD:Common File Directory ----D- C:\ProgramData\TVU Networks O43 - CFD:Common File Directory ----D- C:\ProgramData\WEBREG O43 - CFD:Common File Directory ----D- C:\ProgramData\WLInstaller O43 - CFD:Common File Directory ----D- C:\ProgramData\Xfire O43 - CFD:Common File Directory ----D- C:\ProgramData\Yahoo! Companion O43 - CFD:Common File Directory ----D- C:\ProgramData\ZoomBrowser O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe AIR O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Apple O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Autodesk Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\AVerMedia O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\AVSMedia O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\BioWare O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Blizzard Entertainment O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Bluebeam Software O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Canon O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\DESIGNER O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\DFX O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\DivX Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\eDrawings2007 O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Futuremark Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Hewlett-Packard O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\HP O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\INCA Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\InstallShield O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Java O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Macrovision Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\microsoft shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\PX Storage Engine O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Services O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Skype O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\sndm360 O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Solidworks Data O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SolidWorks Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Sony Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Steam O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Windows Live O43 - CFD:Common File Directory -SH-D- C:\Program Files\Common Files\WindowsLiveInstaller O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Wise Installation Wizard ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.D484B84727B221AF8022FD78729D6C0D] - 2010-09-01 - 17:18:06 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\mlfcache.dat [227228] O44 - LFC:[MD5.A0D86B8AC93EF95620420C7A24AC5344] - 2010-09-07 - 15:47:07 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\System32\drivers\aswFsBlk.sys [17744] O44 - LFC:[MD5.BD9119468C32B7ECD1E0544D3F286A73] - 2010-09-07 - 15:47:30 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [50768] O44 - LFC:[MD5.69823954BBD461A73D69774928C9737E] - 2010-09-07 - 15:47:46 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\System32\drivers\aswRdr.sys [23376] O44 - LFC:[MD5.7ECC2776638B04553F9A85BD684C3ABF] - 2010-09-07 - 15:52:03 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [165584] O44 - LFC:[MD5.095ED820A926AA8189180B305E1BCFC9] - 2010-09-07 - 15:52:25 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\System32\drivers\aswTdi.sys [46672] O44 - LFC:[MD5.81F10376AF5F0F466F03CB2C5321B7ED] - 2010-09-07 - 15:53:58 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys [340048] O44 - LFC:[MD5.C983EB22398295B00A5A10B681DABC6E] - 2010-09-07 - 16:11:54 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe [167592] O44 - LFC:[MD5.62C5E46076F52D394EA0B898FF7B8747] - 2010-09-07 - 16:12:17 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [38848] O44 - LFC:[MD5.81051BCC2CF1BEDF378224B0A93E2877] - 2010-09-11 - 22:58:05 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\jh5n1.log [2] O44 - LFC:[MD5.E493FD44B066465EA9E4EDBFA8EA17AD] - 2010-09-13 - 21:39:48 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\1BCD64AE-CEE7-4113-8900-B8E8240D97F1.txt [3830] O44 - LFC:[MD5.01C47C2ECED034EF6F8C1552A97CFF00] - 2010-09-13 - 21:49:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\config.nt [2577] O44 - LFC:[MD5.04C83EF9416618F1267409FA54750837] - 2010-09-15 - 19:55:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\MRT.INI [185] O44 - LFC:[MD5.AE72E8619CB31D84DA25E2435E55003C] - 2010-09-17 - 20:04:45 ---A- . (.NirSoft - NirCmd.) -- C:\Windows\NIRCMD.exe [31232] O44 - LFC:[MD5.C5EC72A20B4C98DB5314E6C46765B148] - 2010-09-17 - 20:04:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\MBR.exe [77312] O44 - LFC:[MD5.F1FBA6185A6A2BC6456970914875078E] - 2010-09-17 - 20:04:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\PEV.exe [256512] O44 - LFC:[MD5.9E05A9C264C8A908A8E79450FCBFF047] - 2010-09-17 - 20:04:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\grep.exe [80412] O44 - LFC:[MD5.2B657A67AEBB84AEA5632C53E61E23BF] - 2010-09-17 - 20:04:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\sed.exe [98816] O44 - LFC:[MD5.5E832F4FAF5F481F2EAF3B3A48F603B8] - 2010-09-17 - 20:04:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\zip.exe [68096] O44 - LFC:[MD5.01D95A1F8CF13D07CC564AABB36BCC0B] - 2010-09-17 - 20:04:45 ---A- . (.SteelWerX - Freeware implementation of REG.EXE.) -- C:\Windows\SWREG.exe [161792] O44 - LFC:[MD5.B7517DB073B28F5696A1E5528ABEB5D0] - 2010-09-17 - 20:04:45 ---A- . (.SteelWerX - Freeware implementation of SC.EXE.) -- C:\Windows\SWSC.exe [136704] O44 - LFC:[MD5.58ABDA95BCA4C92BD55D5BED022A8656] - 2010-09-18 - 21:54:12 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PnkBstrB.exe [233960] O44 - LFC:[MD5.58ABDA95BCA4C92BD55D5BED022A8656] - 2010-09-18 - 21:54:12 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PnkBstrB.xtr [233960] O44 - LFC:[MD5.85463D3DA32D92712BF025400D1AAAC2] - 2010-09-18 - 21:54:21 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\drivers\PnkBstrK.sys [138520] O44 - LFC:[MD5.59509AD6CBC28F2C73056268985B3E48] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 Driver.) -- C:\Windows\System32\drivers\s0016bus.sys [89256] O44 - LFC:[MD5.44D115C6BE5DF0F32338DA1032923644] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB Ethernet Emul.) -- C:\Windows\System32\drivers\s0016cr.sys [10792] O44 - LFC:[MD5.34EF7B5F611957B73E7219DD5A222AD1] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB Ethernet Emul.) -- C:\Windows\System32\drivers\s0016nd5.sys [25512] O44 - LFC:[MD5.927208754FB27FC3E7A659E77500C5D1] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB Ethernet Emul.) -- C:\Windows\System32\drivers\s0016unic.sys [115752] O44 - LFC:[MD5.7A78BBA97FEB5E6D24C49E93A3BF7287] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC Device Ma.) -- C:\Windows\System32\drivers\s0016mgmt.sys [114216] O44 - LFC:[MD5.B98C3A6F91F4FBA285AF9606A240C6B4] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC Modem Fil.) -- C:\Windows\System32\drivers\s0016mdfl.sys [15016] O44 - LFC:[MD5.8A83426F4FB7B5212825D9DE76368B1A] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC Modem WDM.) -- C:\Windows\System32\drivers\s0016mdm.sys [120744] O44 - LFC:[MD5.36792935847143E4A3CDA0DC87248487] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC OBEX Inte.) -- C:\Windows\System32\drivers\s0016obex.sys [110632] O44 - LFC:[MD5.8C4A9024CF84D61D4BC07F06DDF7B2D1] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\s0016cm.sys [12200] O44 - LFC:[MD5.8C4A9024CF84D61D4BC07F06DDF7B2D1] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\s0016cmnt.sys [12200] O44 - LFC:[MD5.DA9BB7BCBB5F3D4B4E9B1E767278259D] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\s0016wh.sys [12200] O44 - LFC:[MD5.DA9BB7BCBB5F3D4B4E9B1E767278259D] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\s0016whnt.sys [12200] O44 - LFC:[MD5.CDDDEC541BC3C96F91ECB48759673505] - 2010-09-23 - 08:12:18 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\drivers\sptd.sys [691696] O44 - LFC:[MD5.23E1442C2957204DE00CE0405BA0C76F] - 2010-09-23 - 08:34:39 ---A- . (.Creative Labs - OpenAL32.) -- C:\Windows\System32\wrap_oal.dll [445016] O44 - LFC:[MD5.628321A50ED9558513F8A5E37A5E1FBA] - 2010-09-23 - 08:34:39 ---A- . (.Portions © Creative Labs Inc. and NVIDIA - Standard OpenAL Implementation.) -- C:\Windows\System32\OpenAL32.dll [109144] O44 - LFC:[MD5.BA85D4951E3BAF18481E92F383C7C38C] - 2010-09-23 - 08:34:41 ---A- . (.Blue Ripple Sound Limited - Rapture3D OpenAL Renderer.) -- C:\Windows\System32\rapture3d_oal.dll [1380352] O44 - LFC:[MD5.E055CC6CF50C3070438C531DC5D6F4AC] - 2010-09-23 - 08:34:41 ---A- . (.Intel Corporation / Blue Ripple Sound Limit - Custom Math Kernel Library.) -- C:\Windows\System32\mkl_blueripple.dll [17686528] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 2010-09-25 - 13:19:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setuperr.log [0] O44 - LFC:[MD5.67B48A903430C6D4FB58CBACA1866601] - 2010-09-25 - 15:37:35 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [20952] O44 - LFC:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 2010-09-25 - 15:37:37 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\drivers\mbamswissarmy.sys [38224] O44 - LFC:[MD5.BAEC90B950B919FC406F5808FB270BCD] - 2010-09-25 - 18:10:27 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\ntbtlog.txt [155058] O44 - LFC:[MD5.B1A9CF0B6F80611D31987C247EC630B4] - 2010-09-25 - 21:39:14 ---A- . (.SteelWerX - Freeware implementation of XCACLS.) -- C:\Windows\SWXCACLS.exe [212480] O44 - LFC:[MD5.456747F2DE45D98E1AE8049D7CAD9EFF] - 2010-09-25 - 21:54:54 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\PFRO.log [3200] O44 - LFC:[MD5.3CF3D4A45CC2AF973DBC30EC8D33252B] - 2010-09-25 - 21:55:32 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system.ini [215] O44 - LFC:[MD5.41F108DF9B0B3A477AA2704231FC6931] - 2010-09-25 - 22:04:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\ComboFix.txt [23710] O44 - LFC:[MD5.7436AF3D2A454AF1BCEF8C1AA4E1AC91] - 2010-09-26 - 07:42:16 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.7127D1D1C1C32977650C388C3C3C0BEF] - 2010-09-26 - 07:42:20 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setupact.log [72208] O44 - LFC:[MD5.00000000000000000000000000000000] - 2010-09-26 - 07:46:02 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log [1322333] O44 - LFC:[MD5.694DA88C3C2B5DB47EA992DCAA4763DC] - 2010-09-26 - 07:48:39 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [9712] O44 - LFC:[MD5.694DA88C3C2B5DB47EA992DCAA4763DC] - 2010-09-26 - 07:48:39 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [9712] O44 - LFC:[MD5.EC387CC1700AA3428DD8BD46596994B3] - 2010-09-26 - 10:03:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PerfStringBackup.INI [1782510] O44 - LFC:[MD5.2224F2C682D3707B8DDF922CBF5322F0] - 2010-09-26 - 10:03:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfc009.dat [136266] O44 - LFC:[MD5.7A68CE508AF768DD42AC141D18308FF4] - 2010-09-26 - 10:03:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfc00C.dat [166814] O44 - LFC:[MD5.DCEE43496FEF3CD79A8F7AC6F07A852C] - 2010-09-26 - 10:03:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfh009.dat [692020] O44 - LFC:[MD5.FA6839ABDA0BD97BC377D9B4FBE7B95E] - 2010-09-26 - 10:03:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfh00C.dat [789166] ---\\ Déni du service (Local Security Authority) (LSA) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll ---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"VIDC.I420"="lvcodec2.dll" . (.Logitech Inc. - Video Codec.) -- C:\Windows\System32\lvcodec2.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll O52 - TDSD: \Drivers32\"msacm.ac3acm"="ac3acm.acm" . (.fccHandler - AC-3 ACM Codec.) -- C:\Windows\System32\ac3acm.acm O52 - TDSD: \Drivers32\"msacm.l3fhg"="mp3fhg.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Audio Layer-3 Codec for MSACM.) -- C:\Windows\System32\mp3fhg.acm O52 - TDSD: \Drivers32\"msacm.vorbis"="vorbis.acm" . (.HMS http://hp.vector.co.jp/authors/VA012897 - Ogg Vorbis CODEC for MSACM.) -- C:\Windows\System32\vorbis.acm O52 - TDSD: \Drivers32\"VIDC.3iv2"="3ivxVfWCodec.dll" . (.3ivx.com - 3ivx D4 4.5.1 Pro Video for Windows Codec.) -- C:\Windows\System32\3ivxVfWCodec.dll O52 - TDSD: \Drivers32\"VIDC.CFHD"="cfhd.dll" . (.CineForm Inc. - CineForm VFW CODEC.) -- C:\Windows\System32\cfhd.dll O52 - TDSD: \Drivers32\"VIDC.FFDS"="ff_vfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ff_vfw.dll O52 - TDSD: \Drivers32\"VIDC.FPS1"="frapsvid.dll" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsvid.dll O52 - TDSD: \Drivers32\"VIDC.VP31"="vp31vfw.dll" . (.On2.com - On2_VP3 Version 3.2.6.1 Decoder Tune.) -- C:\Windows\System32\vp31vfw.dll O52 - TDSD: \Drivers32\"VIDC.VP60"="vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp6vfw.dll O52 - TDSD: \Drivers32\"VIDC.VP61"="vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp6vfw.dll O52 - TDSD: \Drivers32\"VIDC.VP62"="vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp6vfw.dll O52 - TDSD: \Drivers32\"VIDC.VP70"="vp7vfw.dll" . (.On2.com - VP70 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp7vfw.dll O52 - TDSD: \Drivers32\"VIDC.X264"="x264vfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\x264vfw.dll O52 - TDSD: \Drivers32\"VIDC.XFR1"="xfcodec.dll" . (.Pas de propriétaire - Xfire Video Codec.) -- C:\Windows\System32\xfcodec.dll O52 - TDSD: \Drivers32\"VIDC.XVID"="xvidvfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\xvidvfw.dll O52 - TDSD: \Drivers32\"msacm.divxa32"="DivXa32.acm" . (.Packed With Joy ! - DivX;-) Audio Codec.) -- C:\Windows\System32\DivXa32.acm O52 - TDSD: \Drivers32\"msacm.lameacm"="LameACM.acm" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\Windows\System32\LameACM.acm O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\DivX.dll O52 - TDSD: \Drivers32\"vidc.yv12"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\DivX.dll O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"3ivxVfWCodec.dll"="3ivx D4 4.5.1 Pro" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"ac3acm.acm"="AC3 ACM Decompressor" . (.fccHandler - AC-3 ACM Codec.) -- C:\Windows\System32\ac3acm.acm O52 - TDSD: \drivers.desc\"asusasv2.dll"="ASUS ASV2 CODEC" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"cfhd.dll"="CineForm HD VFW Codec" . (.CineForm Inc. - CineForm VFW CODEC.) -- C:\Windows\System32\cfhd.dll O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow Video Codec" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ff_vfw.dll O52 - TDSD: \drivers.desc\"frapsvid.dll"="Fraps Video Decompressor" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsvid.dll O52 - TDSD: \drivers.desc\"mp3fhg.acm"="Fraunhofer IIS MPEG Layer-3 Codec (Professional) v3.3.2" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"vorbis.acm"="Ogg Vorbis Audio CODEC" . (.HMS http://hp.vector.co.jp/authors/VA012897 - Ogg Vorbis CODEC for MSACM.) -- C:\Windows\System32\vorbis.acm O52 - TDSD: \drivers.desc\"vp31vfw.dll"="On2 VP3" . (.On2.com - On2_VP3 Version 3.2.6.1 Decoder Tune.) -- C:\Windows\System32\vp31vfw.dll O52 - TDSD: \drivers.desc\"vp6vfw.dll"="On2 VP6 6.4.2 Video Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"vp7vfw.dll"="On2 VP7" . (.On2.com - VP70 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp7vfw.dll O52 - TDSD: \drivers.desc\"x264vfw.dll"="x264 H.264 Video Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"xfcodec.dll"="Xfire video codec [XFR1]" . (.Pas de propriétaire - Xfire Video Codec.) -- C:\Windows\System32\xfcodec.dll O52 - TDSD: \drivers.desc\"xvidvfw.dll"="XviD 1.2.1 Video Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"DivXa32.acm"="DivX Audio Codec" . (.Packed With Joy ! - DivX;-) Audio Codec.) -- C:\Windows\System32\DivXa32.acm O52 - TDSD: \drivers.desc\"LameACM.acm"="Lame ACM MP3 Codec" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\Windows\System32\LameACM.acm O52 - TDSD: \drivers.desc\"DivX.dll"="DivX 6.9.2 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.) ---\\ ShareTools MSconfig StartupReg (SMSR) (O53) O53 - SMSR:HKLM\...\startupreg\command . (.Pas de propriétaire - Pas de description.) -- C:\Users\Damien\AppData\Roaming\Adobe\Player.exe ---\\ Microsoft Control Security Providers (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll ---\\ Microsoft Windows Policies System (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0 ---\\ Microsoft Windows Policies Explorer (MWPE) (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoCDBurning"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=67108863 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=255 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0 ---\\ Liste des Drivers Système (SDL) (O58) O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 2009-07-14 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 2009-07-14 - 02:26:17 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 2009-07-14 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 2009-07-14 - 02:26:15 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys O58 - SDL:[MD5.2101A86C25C154F8314B24EF49D7FBC2] - 2009-07-14 - 02:26:15 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 2009-07-14 - 02:26:15 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\system32\drivers\amdsbs.sys O58 - SDL:[MD5.B81C2B5616F6420A9941EA093A92B150] - 2009-07-14 - 02:26:15 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 2009-07-14 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 2009-07-14 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys O58 - SDL:[MD5.94442E3029FF6C9F08140FE6718AF4FB] - 2007-01-29 - 17:12:52 ---A- . (.ASUSTeK COMPUTER INC. - AsusVRC.) -- C:\Windows\system32\drivers\AsusVRC.sys O58 - SDL:[MD5.A0D86B8AC93EF95620420C7A24AC5344] - 2010-09-07 - 15:47:07 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys O58 - SDL:[MD5.BD9119468C32B7ECD1E0544D3F286A73] - 2010-09-07 - 15:47:30 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys O58 - SDL:[MD5.69823954BBD461A73D69774928C9737E] - 2010-09-07 - 15:47:46 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys O58 - SDL:[MD5.81F10376AF5F0F466F03CB2C5321B7ED] - 2010-09-07 - 15:53:58 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\system32\drivers\aswSnx.sys O58 - SDL:[MD5.7ECC2776638B04553F9A85BD684C3ABF] - 2010-09-07 - 15:52:03 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys O58 - SDL:[MD5.095ED820A926AA8189180B305E1BCFC9] - 2010-09-07 - 15:52:25 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys O58 - SDL:[MD5.454A7AA0E071A54CE7E1310B34FD3402] - 2009-07-27 - 06:45:34 ---A- . (.AVerMedia TECHNOLOGIES, Inc. - AVerAF15DMBTH Driver.) -- C:\Windows\system32\drivers\AVerAF15DMBTH.sys O58 - SDL:[MD5.76C10D80E46CB79570479CB7CF205D39] - 2009-03-24 - 16:07:58 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 2009-07-14 - 23:02:49 ---A- . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gigabit Ethernet..) -- C:\Windows\system32\drivers\b57nd60x.sys O58 - SDL:[MD5.3E2A2B4D7F4E1CBA53BC0762CF85C422] - 2008-07-07 - 21:04:50 ---A- . (.BitDefender SRL - BitDefender Firewall NDIS Filter Driver.) -- C:\Windows\system32\drivers\bdfndisf.sys.avxpnd O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 2009-07-14 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 2009-07-14 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 2009-07-14 - 01:57:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 2009-07-14 - 23:53:32 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 2009-07-14 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 2009-07-14 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 2009-07-14 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbdx.sys O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 2009-07-14 - 02:26:21 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys O58 - SDL:[MD5.75FA19142531CBF490770C2988A7DB64] - 2010-07-09 - 12:18:54 ---A- . (.Windows ® Win 7 DDK provider - CPUID Driver.) -- C:\Windows\system32\drivers\cpuz134_x32.sys O58 - SDL:[MD5.5D7FA9B0591F0474A83A4E4A9BF7B9AF] - 2005-03-03 - 18:47:42 ---A- . (.Cypress Semiconductor - Cypress Generic USB Device Driver.) -- C:\Windows\system32\drivers\CYUSB.sys O58 - SDL:[MD5.57DF86B24BFEA7B2CCAD82118D33EC17] - 2007-04-12 - 05:46:50 ---A- . (.Razer (Asia-Pacific) Pte Ltd - Razer DeathAdd USB Optical Mouse Driver.) -- C:\Windows\system32\drivers\dadder.sys O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 2009-07-14 - 02:20:28 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 2009-07-14 - 02:20:28 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys O58 - SDL:[MD5.FD9FC82F134B1C91004FFC76A5AE494B] - 2004-10-25 - 20:02:58 ---A- . (.EnTech Taiwan - Pas de description.) -- C:\Windows\system32\drivers\Entech.sys O58 - SDL:[MD5.4FC3498AAB35E5B78993B2AAFBCCFB62] - 2004-06-22 - 15:44:50 ---A- . (.EnTech Taiwan - EnTech driver for Windows XP 64.) -- C:\Windows\system32\drivers\Entech64.sys O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 2009-07-14 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbdx.sys O58 - SDL:[MD5.AB8A6A87D9D7255C3884D5B9541A6E80] - 2008-04-17 - 12:12:54 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys O58 - SDL:[MD5.7929A161F9951D173CA9900FE7067391] - 2008-05-16 - 19:10:28 ---A- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\system32\drivers\hamachi.sys O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 2009-07-14 - 23:54:14 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 2009-07-14 - 02:20:28 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys O58 - SDL:[MD5.934AF4D7C5F457B9F0743F4299B77B67] - 2009-07-14 - 02:20:36 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\system32\drivers\iaStorV.sys O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 2009-07-14 - 02:20:36 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 2009-07-14 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 2009-07-14 - 02:20:37 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 2009-07-14 - 02:20:36 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 2009-07-14 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys O58 - SDL:[MD5.9A155D31B8E52F41B258282092CC93A7] - 2005-05-27 - 09:32:52 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\lvcm.sys O58 - SDL:[MD5.93418CD2C3B544847C3CDF7DB66F1921] - 2005-05-27 - 09:23:38 ---A- . (.Logitech Inc. - SmoothVision filter.) -- C:\Windows\system32\drivers\lvsvf2.sys O58 - SDL:[MD5.C5EFBD05A5195402121711A6EBBB271F] - 2005-05-27 - 09:31:28 ---A- . (.Logitech Inc. - USB Statistic Driver.) -- C:\Windows\system32\drivers\LVUSBSta.sys O58 - SDL:[MD5.67B48A903430C6D4FB58CBACA1866601] - 2010-04-29 - 14:39:26 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys O58 - SDL:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 2010-04-29 - 14:39:38 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 2009-07-14 - 02:20:36 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\Windows\system32\drivers\megasas.sys O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 2009-07-14 - 02:20:36 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys O58 - SDL:[MD5.66497E522B5591C160E980F7BFA4B5C5] - 2008-01-17 - 14:45:56 ---A- . (.Samsung Electronics, Inc. - MagicTunePremium Driver.) -- C:\Windows\system32\drivers\MTiCtwl.sys O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 2009-07-14 - 02:20:44 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys O58 - SDL:[MD5.01544D3E8B6C8C490F57317AD5E4E9FF] - 2010-06-08 - 00:57:00 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 257.21.) -- C:\Windows\system32\drivers\nvlddmkm.sys O58 - SDL:[MD5.ADD596F11D3A23E55D960D4CCE6E9B3A] - 2006-05-05 - 18:21:00 ---A- . (.NVIDIA Corporation. - Port Driver.) -- C:\Windows\system32\drivers\nvport.sys O58 - SDL:[MD5.3F3D04B1D08D43C16EA7963954EC768D] - 2009-07-14 - 02:20:44 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys O58 - SDL:[MD5.C99F251A5DE63C6F129CF71933ACED0F] - 2009-07-14 - 02:20:44 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys O58 - SDL:[MD5.D6829ACFA6315DB9A963D3EDE2BCBCFF] - 2001-11-19 - 19:05:18 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\PciBus.sys O58 - SDL:[MD5.DA86016F0672ADA925F589EDE715F185] - 2006-03-29 - 07:49:26 ---A- . (.Padus, Inc. - Padus® ASPI Shell.) -- C:\Windows\system32\drivers\pfc.sys O58 - SDL:[MD5.85463D3DA32D92712BF025400D1AAAC2] - 2010-09-18 - 21:54:21 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\PnkBstrK.sys O58 - SDL:[MD5.BCF8D075FAD718FEA8EF6E281331A56E] - 2007-07-15 - 02:37:04 ---A- . (.EnTech Taiwan - PowerStrip support NT kernel-mode driver.) -- C:\Windows\system32\drivers\pstrip.sys O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 2009-07-14 - 02:19:04 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 2009-07-14 - 02:19:04 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys O58 - SDL:[MD5.2CC77C65216A8BB4677E637120D5731D] - 2008-10-04 - 01:17:24 ---A- . (.Realtek Corporation - Realtek 8101E/8168/8169 NDIS6 32-bit Driver.) -- C:\Windows\system32\drivers\Rtlh86.sys O58 - SDL:[MD5.59509AD6CBC28F2C73056268985B3E48] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 Driver.) -- C:\Windows\system32\drivers\s0016bus.sys O58 - SDL:[MD5.8C4A9024CF84D61D4BC07F06DDF7B2D1] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s0016cm.sys O58 - SDL:[MD5.8C4A9024CF84D61D4BC07F06DDF7B2D1] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s0016cmnt.sys O58 - SDL:[MD5.44D115C6BE5DF0F32338DA1032923644] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB Ethernet Emulation (WDM class reg.) -- C:\Windows\system32\drivers\s0016cr.sys O58 - SDL:[MD5.B98C3A6F91F4FBA285AF9606A240C6B4] - 2008-05-16 - 10:33:14 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC Modem Filter Driver.) -- C:\Windows\system32\drivers\s0016mdfl.sys O58 - SDL:[MD5.8A83426F4FB7B5212825D9DE76368B1A] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC Modem WDM Driver.) -- C:\Windows\system32\drivers\s0016mdm.sys O58 - SDL:[MD5.7A78BBA97FEB5E6D24C49E93A3BF7287] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC Device Management Driver.) -- C:\Windows\system32\drivers\s0016mgmt.sys O58 - SDL:[MD5.34EF7B5F611957B73E7219DD5A222AD1] - 2008-05-16 - 10:33:14 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB Ethernet Emulation (NDIS 5 Minipo.) -- C:\Windows\system32\drivers\s0016nd5.sys O58 - SDL:[MD5.36792935847143E4A3CDA0DC87248487] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC OBEX Interface Device Driver.) -- C:\Windows\system32\drivers\s0016obex.sys O58 - SDL:[MD5.927208754FB27FC3E7A659E77500C5D1] - 2008-05-16 - 10:33:14 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB Ethernet Emulation.) -- C:\Windows\system32\drivers\s0016unic.sys O58 - SDL:[MD5.DA9BB7BCBB5F3D4B4E9B1E767278259D] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s0016wh.sys O58 - SDL:[MD5.DA9BB7BCBB5F3D4B4E9B1E767278259D] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s0016whnt.sys O58 - SDL:[MD5.815445F4676CC96BC9AEEC303C727E19] - 2007-04-03 - 12:57:42 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 Driver.) -- C:\Windows\system32\drivers\s116bus.sys O58 - SDL:[MD5.0C8F4ECE9684FE64ECD09CAD1797BB20] - 2007-04-03 - 12:57:44 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s116cm.sys O58 - SDL:[MD5.0C8F4ECE9684FE64ECD09CAD1797BB20] - 2007-04-03 - 12:57:44 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s116cmnt.sys O58 - SDL:[MD5.F6F34ECAFCB915177983797A2BBAC547] - 2007-04-03 - 12:57:46 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB Ethernet Emulation (WDM class regi.) -- C:\Windows\system32\drivers\s116cr.sys O58 - SDL:[MD5.333D1E0743E6DE1779C3C418AC601C3A] - 2007-04-03 - 12:57:48 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB WMC Modem Filter Driver.) -- C:\Windows\system32\drivers\s116mdfl.sys O58 - SDL:[MD5.50D6E5B021E9EC7553AB8A3553CC1B6B] - 2007-04-03 - 12:57:48 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB WMC Modem WDM Driver.) -- C:\Windows\system32\drivers\s116mdm.sys O58 - SDL:[MD5.1589AA53E43F8D193A7D4D580D3FFA95] - 2007-04-03 - 12:57:50 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB WMC Device Management Driver.) -- C:\Windows\system32\drivers\s116mgmt.sys O58 - SDL:[MD5.306F85733671FE507470F0273025E768] - 2007-04-03 - 12:57:52 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB Ethernet Emulation (NDIS 5 Minipor.) -- C:\Windows\system32\drivers\s116nd5.sys O58 - SDL:[MD5.EC32601F04A5A5DE89315D0F55E73D66] - 2007-04-03 - 12:57:52 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB WMC OBEX Interface Device Driver.) -- C:\Windows\system32\drivers\s116obex.sys O58 - SDL:[MD5.32E3ECB4B2B5887426EAF241A8149CDE] - 2007-04-03 - 12:57:54 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB Ethernet Emulation.) -- C:\Windows\system32\drivers\s116unic.sys O58 - SDL:[MD5.1EB2AD3D5220A5543F4E00F2CE681DCD] - 2007-04-03 - 12:57:54 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s116wh.sys O58 - SDL:[MD5.1EB2AD3D5220A5543F4E00F2CE681DCD] - 2007-04-03 - 12:57:54 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s116whnt.sys O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 2009-07-13 - 21:50:20 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 2009-07-14 - 02:19:04 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 2009-07-14 - 02:19:04 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys O58 - SDL:[MD5.A8B89638CF5CA8C3D1D4546733BCC65C] - 2003-12-08 - 19:35:16 ---A- . (.Pas de propriétaire - Camera Driver.) -- C:\Windows\system32\drivers\sndm360.sys O58 - SDL:[MD5.CDDDEC541BC3C96F91ECB48759673505] - 2010-09-23 - 08:12:18 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\system32\drivers\sptd.sys O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 2009-07-14 - 02:19:04 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys O58 - SDL:[MD5.1C768107AC5BD510686C8F0E4DA30C48] - 2005-12-21 - 11:23:26 ---A- . (.Motorola - UsbIsp.) -- C:\Windows\system32\drivers\USBICP.sys O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 2009-07-14 - 02:19:10 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 2009-07-14 - 02:19:11 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 2009-07-13 - 22:40:41 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\ANSI.SYS O58 - SDL:[MD5.59DCD600DBC998C4CCAEBAC1B98C7805] - 2005-04-29 - 03:08:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\AVerIO.sys O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 2009-07-13 - 22:40:44 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\country.sys O58 - SDL:[MD5.77EBF3E9386DAA51551AF429052D88D0] - 1996-04-03 - 20:33:26 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\giveio.sys O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 2009-07-13 - 22:40:40 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\HIMEM.SYS O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 2009-07-13 - 22:40:43 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\KEY01.SYS O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 2009-07-13 - 22:40:43 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\KEYBOARD.SYS O58 - SDL:[MD5.9131FE60ADFAB595C8DA53AD6A06AA31] - 2005-01-02 - 04:43:08 ---A- . (.INCA Internet Co., Ltd. - nProtect NPSC Kernel Mode Driver for NT.) -- C:\Windows\system32\npptNT2.sys O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 2009-07-13 - 22:40:23 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS.SYS O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 2009-07-13 - 22:40:31 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS404.SYS O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 2009-07-13 - 22:40:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS411.SYS O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 2009-07-13 - 22:40:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS412.SYS O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 2009-07-13 - 22:40:27 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS804.SYS O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 2009-07-13 - 22:40:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO.SYS O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 2009-07-13 - 22:40:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO404.SYS O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 2009-07-13 - 22:40:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO411.SYS O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 2009-07-13 - 22:40:19 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO412.SYS O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 2009-07-13 - 22:40:13 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO804.SYS O58 - SDL:[MD5.5D6401DB90EC81B71F8E2C5C8F0FEF23] - 2006-09-24 - 14:28:46 ---A- . (.Windows ® 2000 DDK provider - SpeedFan Device Driver.) -- C:\Windows\system32\speedfan.sys ---\\ Liste des outils de nettoyage (LATC) (O63) O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis O63 - Logiciel: ZHPDiag 1.26 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 O63 - Logiciel: OTL - (.OldTimer.) ---\\ Liste des services Legacy (LALS) (O64) O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD O64 - Services: CurCS - C:\Program Files\AIDA32 - Personal system Information\aida32.sys - AIDA32Driver (AIDA32Driver) .(.Pas de propriétaire - Pas de description.) - LEGACY_AIDA32DRIVER O64 - Services: CurCS - (.not file.) - aswFsBlk (aswFsBlk) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWFSBLK O64 - Services: CurCS - C:\Windows\system32\drivers\aswMonFlt.sys - aswMonFlt (aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT O64 - Services: CurCS - (.not file.) - aswRdr (aswRdr) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWRDR O64 - Services: CurCS - (.not file.) - aswSnx (aswSnx) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWSNX O64 - Services: CurCS - (.not file.) - avast! Self Protection (aswSP) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWSP O64 - Services: CurCS - (.not file.) - avast! Network Shield Support (aswTdi) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWTDI O64 - Services: CurCS - (.not file.) - Beep (Beep) .(.Pas de propriétaire - Pas de description.) - LEGACY_BEEP O64 - Services: CurCS - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER O64 - Services: CurCS - C:\Users\Damien\AppData\Local\Temp\catchme.sys (.not file.) - catchme (catchme) .(.Pas de propriétaire - Pas de description.) - LEGACY_CATCHME O64 - Services: CurCS - C:\Windows\system32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS O64 - Services: CurCS - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS O64 - Services: CurCS - C:\Windows\system32\Drivers\cng.sys - CNG (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG O64 - Services: CurCS - C:\Users\Damien\AppData\Local\Temp\cpuz130\cpuz_x32.sys (.not file.) - cpuz130 (cpuz130) .(.Pas de propriétaire - Pas de description.) - LEGACY_CPUZ130 O64 - Services: CurCS - C:\Windows\system32\drivers\cpuz134_x32.sys - cpuz134 (cpuz134) .(.Windows ® Win 7 DDK provider - CPUID Driver.) - LEGACY_CPUZ134 O64 - Services: CurCS - C:\Program Files\MediaCoder\sysInfo.sys (.not file.) - CrystalSysInfo (CrystalSysInfo) .(.Pas de propriétaire - Pas de description.) - LEGACY_CRYSTALSYSINFO O64 - Services: CurCS - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC O64 - Services: CurCS - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE O64 - Services: CurCS - C:\PROGRA~1\K!\K!TVXP~1\DSDrv4.sys (.not file.) - DSDrv4 (DSDrv4) .(.Pas de propriétaire - Pas de description.) - LEGACY_DSDRV4 O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL O64 - Services: CurCS - C:\Windows\system32\DRIVERS\ENTECH.sys - ENTECH (ENTECH) .(.EnTech Taiwan - Pas de description.) - LEGACY_ENTECH O64 - Services: CurCS - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(.Pas de propriétaire - Pas de description.) - LEGACY_FASTFAT O64 - Services: CurCS - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO O64 - Services: CurCS - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(.Pas de propriétaire - Pas de description.) - LEGACY_FS_REC O64 - Services: CurCS - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL O64 - Services: CurCS - C:\Windows\system32\drivers\hardlock.sys (.not file.) - Hardlock (Hardlock) .(.Pas de propriétaire - Pas de description.) - LEGACY_HARDLOCK O64 - Services: CurCS - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP O64 - Services: CurCS - C:\Users\Damien\AppData\Local\Temp\Rar$EX01.193\HWIONT.sys (.not file.) - HWIONT (HWIONT) .(.Pas de propriétaire - Pas de description.) - LEGACY_HWIONT O64 - Services: CurCS - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecpkg.sys - KSecPkg (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG O64 - Services: CurCS - (.not file.) - kxdcqpob (kxdcqpob) .(.Pas de propriétaire - Pas de description.) - LEGACY_KXDCQPOB O64 - Services: CurCS - C:\Windows\system32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV O64 - Services: CurCS - C:\Windows\system32\drivers\MTiCtwl.sys - MagicTune (MagicTune) .(.Samsung Electronics, Inc. - MagicTunePremium Driver.) - LEGACY_MAGICTUNE O64 - Services: CurCS - C:\Program Files\MagicTune Premium\MagicTuneEngine.exe - MagicTuneEngine (MagicTuneEngine) .(.Pas de propriétaire - Pas de description.) - LEGACY_MAGICTUNEENGINE O64 - Services: CurCS - C:\Users\Damien\AppData\Local\Temp\mbr.sys (.not file.) - mbr (mbr) .(.Pas de propriétaire - Pas de description.) - LEGACY_MBR O64 - Services: CurCS - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR O64 - Services: CurCS - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV O64 - Services: CurCS - C:\Windows\system32\webclnt.dll (MRxDAV) .(.Microsoft Corporation - Fichier DLL du service DAV pour le Web.) - LEGACY_MRXDAV O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10 O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20 O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSFS O64 - Services: CurCS - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP O64 - Services: CurCS - C:\Windows\system32\drivers\MTictwl.sys - NCPro (NCPro) .(.Samsung Electronics, Inc. - MagicTunePremium Driver.) - LEGACY_NCPRO O64 - Services: CurCS - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDPROXY O64 - Services: CurCS - C:\Windows\system32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS O64 - Services: CurCS - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NPFS O64 - Services: CurCS - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NTFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(.Pas de propriétaire - Pas de description.) - LEGACY_NULL O64 - Services: CurCS - C:\Windows\system32\Drivers\nvport.sys - NVIDIA PORT IO Control Driver (nvport) .(.NVIDIA Corporation. - Port Driver.) - LEGACY_NVPORT O64 - Services: CurCS - C:\Windows\nvoclock.sys - NVR0Dev (NVR0Dev) .(.NVidia Corp. - NVidia System Utility Driver.) - LEGACY_NVR0DEV O64 - Services: CurCS - C:\Windows\nvflash.sys - NVR0FLASHDev (NVR0FLASHDev) .(.NVidia Corp. - NVidia System Utility Driver.) - LEGACY_NVR0FLASHDEV O64 - Services: CurCS - C:\Windows\system32\DRIVERS\parvdm.sys - Parvdm (Parvdm) .(.Microsoft Corporation - Pilote parallèle VDM.) - LEGACY_PARVDM O64 - Services: CurCS - C:\Windows\system32\drivers\pcw.sys - Performance Counters for Windows Driver (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW O64 - Services: CurCS - C:\Windows\system32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH O64 - Services: CurCS - C:\Program Files\Intel Corporation\Thermal Analysis Tool\ProcAPI.sys - ProcAPI (ProcAPI) .(.Intel Corporation - Intel® Processor API Support Driver.) - LEGACY_PROCAPI O64 - Services: CurCS - (.not file.) - PROCEXP113 (PROCEXP113) .(.Pas de propriétaire - Pas de description.) - LEGACY_PROCEXP113 O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED O64 - Services: CurCS - C:\Windows\system32\drivers\pstrip.sys - PStrip (PStrip) .(.EnTech Taiwan - PowerStrip support NT kernel-mode driver.) - LEGACY_PSTRIP O64 - Services: CurCS - C:\Windows\system32\drivers\qwavedrv.sys (QWAVEdrv) .(.Microsoft Corporation - Pilote du support de Microsoft Quality Wind.) - LEGACY_QWAVEDRV O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS O64 - Services: CurCS - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD O64 - Services: CurCS - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD O64 - Services: CurCS - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP O64 - Services: CurCS - (.not file.) - RDP Winstation Driver (RDPWD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPWD O64 - Services: CurCS - C:\Program Files\RivaTuner v2.06\RivaTuner32.sys - RivaTuner32 (RivaTuner32) .(.Pas de propriétaire - Pas de description.) - LEGACY_RIVATUNER32 O64 - Services: CurCS - C:\Windows\system32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR O64 - Services: CurCS - (.not file.) - Security Driver (secdrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SECDRV O64 - Services: CurCS - (.not file.) - Security Processor Loader Driver (spldr) .(.Pas de propriétaire - Pas de description.) - LEGACY_SPLDR O64 - Services: CurCS - C:\Windows\system32\Drivers\sptd.sys - sptd (sptd) .(.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) - LEGACY_SPTD O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2 O64 - Services: CurCS - C:\Windows\system32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET O64 - Services: CurCS - C:\Program Files\Intel Corporation\Thermal Analysis Tool\tat.sys - tat (tat) .(.Intel Corporation - Thermal Analysis Tool support driver.) - LEGACY_TAT O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP O64 - Services: CurCS - C:\Windows\system32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG O64 - Services: CurCS - C:\Windows\system32\drivers\tdtcp.sys - TDTCP (TDTCP) .(.Microsoft Corporation - TCP Transport Driver.) - LEGACY_TDTCP O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX O64 - Services: CurCS - C:\Windows\system32\DRIVERS\tssecsrv.sys (tssecsrv) .(.Microsoft Corporation - TS Security Filter Driver.) - LEGACY_TSSECSRV O64 - Services: CurCS - C:\Windows\system32\DRIVERS\udfs.sys - udfs (udfs) .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE O64 - Services: CurCS - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX O64 - Services: CurCS - C:\Windows\system32\DRIVERS\volsnap.sys - Volumes de stockage (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP O64 - Services: CurCS - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6 O64 - Services: CurCS - C:\Windows\system32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000 O64 - Services: CurCS - C:\Windows\system32\DRIVERS\wfplwf.sys - WFP Lightweight Filter (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF O64 - Services: CurCS - C:\Program Files\IRAI\AUTOMGEN8\winio.sys - WINIO (WINIO) .(.Pas de propriétaire - Pas de description.) - LEGACY_WINIO O64 - Services: CurCS - C:\Windows\system32\drivers\WudfPf.sys - User Mode Driver Frameworks Platform Driver (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF ---\\ Observateur d'évènement d'application (OEA) (O66) O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O66 - EventLog: ID=1000 (Application Error) - (.Nullsoft - Winamp.) -- C:\Program Files\Winamp\winamp.exe O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Windows Live Messenger Virus Scanner.) -- C:\Program Files\Windows Live\Messenger\msvs.exe O66 - EventLog: ID=1000 (Application Error) - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\SumatraPDF\SumatraPDF.exe O66 - EventLog: ID=1000 (Application Error) - (.Pas de propriétaire - Pas de description.) -- C:\Users\Damien\Documents\Downloads\Programs\Phoenix.exe ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <ComFile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <ComFile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ---\\ Start Menu Internet (SMI) (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe ---\\ Search Browser Infection (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {3F6A79B6-1DEC-4A5A-8FC5-B2F798F86AD6} - (Rercherche d'articles 01net.com) - 01net informatique high-tech : actu, produits, téléchargement logiciels et jeux O69 - SBI: SearchScopes [HKCU] {7F2778B0-AC3B-4957-9EF4-462D3C17116B} - (Recherche produits informatique 01net.com) - 01net informatique high-tech : actu, produits, téléchargement logiciels et jeux O69 - SBI: SearchScopes [HKCU] {8146BA2B-0E14-4478-BE19-DCA416B281DD} - (Recherche 01net.com) - 01net informatique high-tech : actu, produits, téléchargement logiciels et jeux O69 - SBI: SearchScopes [HKCU] {87E9F187-E5C9-4D7D-B44D-EF0B57CF4333} - (Recherche de téléchargements 01net.com) - 01net informatique high-tech : actu, produits, téléchargement logiciels et jeux ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, GMER - Rootkit Detector and Remover Run by Damien at 2010-09-26 17:47:57 device: opened successfully user: MBR read successfully called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS intelide.sys PCIIDEX.SYS atapi.sys nvlddmkm.sys dxgkrnl.sys dxgmms1.sys USBPORT.SYS usbuhci.sys dadder.sys hidusb.sys HIDCLASS.SYS HIDPARSE.SYS mouhid.sys mouclass.sys usbhub.sys partmgr.sys volmgr.sys fvevol.sys volsnap.sys Ntfs.sys kernel: MBR read successfully user & kernel MBR OK ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) MBRCheck, version 1.2.3 by ad13, http://ad13.geekstog Run by Damien at 2010-09-26 17:47:59 Dump file Name : C:\Program Files\ZHPDiag\MBRDump_09-26-10_17-47-59_PhysicalDrive0.bin ---\\ Internet Feature Controls (IFC) (O81) O81 - IFC: Internet Feature Controls [HKUS\.DEFAULT] [FEATURE_BROWSER_EMULATION] -- svchost.exe O81 - IFC: Internet Feature Controls [HKUS\S-1-5-18] [FEATURE_BROWSER_EMULATION] -- svchost.exe ---\\ Recherche des services démarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [67584] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [67584] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168448] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [591360] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [667136] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [473088] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [90624] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [285184] O83 - Search Svchost Services: ntceoron (ntceoron) . (.Pas de propriétaire - Pas de description.) -- c:\windows\system32\dloed1e.dll [0] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\system32\sens.dll [49664] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [300544] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows.) -- C:\Windows\System32\tapisrv.dll [241664] O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll [543232] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\system32\wuaueng.dll [1912832] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\system32\qmgr.dll [589312] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [497152] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [21504] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [46592] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [114688] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\system32\mmcss.dll [49664] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [162816] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [743424] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [71168] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\system32\sessenv.dll [99328] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [168960] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102400] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [37376] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800] ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Disabled 2010-01-08 380928 | Application Updater (Application Updater) . (.Spigot, Inc..) - C:\Program Files\Application Updater\ApplicationUpdater.exe SS - | Auto 2010-01-08 0 | avast! iAVS4 Control Service (aswUpdSv) . (.Pas de propriétaire.) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe SS - | Demand 2010-05-16 85096 | Autodesk Licensing Service (Autodesk Licensing Service) . (.Autodesk.) - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe SR - | Auto 2010-09-07 40384 | avast! Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe SR - | Demand 2010-09-07 40384 | avast! Mail Scanner (avast! Mail Scanner) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe SR - | Demand 2010-09-07 40384 | avast! Web Scanner (avast! Web Scanner) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe SS - | Disabled 2009-04-08 344064 | AVerRemote (AVerRemote) . (.AVerMedia.) - C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe SS - | Disabled 2008-12-10 405504 | AVerScheduleService (AVerScheduleService) . (.Pas de propriétaire.) - C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe SS - | Demand 2010-06-13 651720 | FLEXnet Licensing Service (FLEXnet Licensing Service) . (.Macrovision Europe Ltd..) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe SS - | Demand 2005-11-14 69632 | InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe SS - | Demand 2005-11-14 0 | Service de l’iPod (iPod Service) . (.Pas de propriétaire.) - C:\Program Files\iPod\bin\iPodService.exe SS - | Disabled 2007-08-23 45056 | MagicTuneEngine (MagicTuneEngine) . (.Pas de propriétaire.) - C:\Program Files\MagicTune Premium\MagicTuneEngine.exe SS - | Demand 2007-08-23 0 | MEMSWEEP2 (MEMSWEEP2) . (.Pas de propriétaire.) - C:\Windows\system32\A505.tmp SS - | Disabled 2006-12-14 45056 | MSCSPTISRV (MSCSPTISRV) . (.Sony Corporation.) - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe SS - | Demand 2009-06-17 3173804 | nProtect GameGuard Service (npggsvc) . (.INCA Internet Co., Ltd..) - C:\Windows\system32\GameMon.des SR - | Auto 2008-08-18 155648 | Performance Service (nTuneService) . (.NVIDIA.) - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe SR - | Auto 2010-06-07 129640 | NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe SR - | Auto 2009-04-30 90112 | Sony Ericsson OMSI download service (OMSI download service) . (.Pas de propriétaire.) - C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe SS - | Disabled 2006-12-14 57344 | PACSPTISVR (PACSPTISVR) . (.Pas de propriétaire.) - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe SR - | Auto 2009-03-01 75064 | PnkBstrA (PnkBstrA) . (.Pas de propriétaire.) - C:\Windows\system32\PnkBstrA.exe SS - | Disabled 2007-02-05 112184 | SonicStage Back-End Service (SonicStage Back-End Service) . (.Sony Corporation.) - C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe SS - | Demand 2006-12-14 69632 | Sony SPTI Service (SPTISRV) . (.Sony Corporation.) - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe SS - | Demand 2007-02-05 75320 | SonicStage SCSI Service (SSScsiSV) . (.Sony Corporation.) - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe SS - | Demand 2009-07-16 316664 | Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files\Common Files\Steam\SteamService.exe SR - | Auto 2010-06-07 240232 | NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe SS - | Demand 2009-11-13 92008 | TomTomHOMEService (TomTomHOMEService) . (.TomTom.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe SS - | Demand 2008-09-25 306432 | TuneUp Drive Defrag Service (TuneUp.Defrag) . (.TuneUp Software GmbH.) - C:\Windows\System32\TuneUpDefragService.exe SR - | Auto 2008-08-01 114688 | Update Center Service (UpdateCenterService) . (.NVIDIA.) - C:\Program Files\NVIDIA Corporation\System Update\UpdateCenterService.exe ---\\ Infection BT - BHO/Toolbar (Possible) O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE} O42 - Logiciel: Search Settings v1.2.3 - (.Spigot, Inc..) [HKLM] -- {5F05C28D-DEA9-4AD6-A73A-064175988EAB} [HKCU\Software\AppDataLow\AskBarDis] [HKCU\Software\Ask.com] [HKLM\Software\Search Settings] End of the scan (1750 lines in 00mn 56s)(0)
  4. brta77
    Après avoir fait ta manipulation, je suis allez dans System32\driver voir si le fichier fwyhlgw.sys était toujours présent, il y était j'ai donc esséyé de le supprimer, et la MIRACLE il c'est supprimé moi qui a passer l'aprèm a vouloir le supprimer sans y parvenir... j'aurai su qu'une solution m'aurait été proposé si rapidement ici je l'aurait fait depuis bien longtemps 100000 merci et je te tiens au courant si j'ai de nouveau soucis Si tu voit des traces / ou des manipulation pour savoir si je suis plus infecté fait le moi savoir Encore merci
  5. brta77
    ComboFix 10-09-25.01 - Damien 2010-09-25 22:41:51.3.2 - x86 Microsoft Windows 7 Édition Familiale Premium 6.1.7600.0.1252.1.1036.18.2046.1077 [GMT 2:00] Lancé depuis: c:\users\Damien\Desktop\brta.exe Commutateurs utilisés :: c:\users\Damien\Desktop\CFScript.txt SP: Spybot - Search and Destroy *disabled* (Outdated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9} * Un nouveau point de restauration a été créé FILE :: "C:\STF283E.tmp" "C:\STF5C08.tmp" "C:\STFA105.tmp" "c:\windows\system32\A505.tmp" "c:\windows\system32\dloED1E.tmp" "c:\windows\system32\drivers\.sys" "c:\windows\system32\tmpBD36.tmp" "c:\windows\system32\tmpBD37.tmp" . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\STF283E.tmp C:\STF5C08.tmp C:\STFA105.tmp c:\windows\system32\dloED1E.tmp c:\windows\system32\tmpBD36.tmp c:\windows\system32\tmpBD37.tmp . ((((((((((((((((((((((((((((((((((((((( Pilotes/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_ACEDRV11 -------\Legacy_FWYHLGW -------\Service_fwyhlgw -------\Service_vigtphcs -------\Service_xwxfhrcf ((((((((((((((((((((((((((((( Fichiers créés du 2010-08-25 au 2010-09-25 )))))))))))))))))))))))))))))))))))) . 2010-09-25 20:53 . 2010-09-25 20:55 -------- d-----w- c:\users\Damien\AppData\Local\temp 2010-09-25 20:53 . 2010-09-25 20:53 -------- d-----w- c:\users\Public\AppData\Local\temp 2010-09-25 20:53 . 2010-09-25 20:53 -------- d-----w- c:\users\Mcx1-PC-DAMIEN\AppData\Local\temp 2010-09-25 20:53 . 2010-09-25 20:53 -------- d-----w- c:\users\HomeGroupUser$\AppData\Local\temp 2010-09-25 20:53 . 2010-09-25 20:53 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-09-25 20:53 . 2010-09-25 20:53 -------- d-----w- c:\users\ASPNET\AppData\Local\temp 2010-09-25 20:53 . 2010-09-25 20:53 -------- d-----w- c:\users\Administrateur\AppData\Local\temp 2010-09-25 18:43 . 2010-09-25 18:43 761152 ----a-w- c:\windows\msvcr100.dll 2010-09-25 14:37 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-09-25 14:37 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-09-25 13:18 . 2010-09-25 13:18 -------- d-----w- c:\users\Damien\AppData\Roaming\Malwarebytes 2010-09-25 13:18 . 2010-09-25 13:18 -------- d-----w- c:\programdata\Malwarebytes 2010-09-25 13:18 . 2010-09-25 14:37 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-09-25 12:32 . 2010-05-21 12:14 221568 ------w- c:\windows\system32\MpSigStub.exe 2010-09-25 12:17 . 2010-09-25 14:37 -------- d-----w- c:\users\Damien\Pavark 2010-09-25 12:08 . 2010-09-25 12:08 -------- d-----w- c:\program files\Sophos 2010-09-24 06:16 . 2010-09-24 06:16 -------- d-----w- c:\program files\Unlocker 2010-09-23 20:31 . 2010-09-23 20:31 -------- d-----w- c:\users\Damien\AppData\Roaming\fltk.org 2010-09-23 20:28 . 2010-09-23 20:28 -------- d-----w- c:\program files\ePSXe 1.6 2010-09-23 07:34 . 2010-09-23 07:34 -------- d-----w- c:\program files\BRS 2010-09-23 07:34 . 2010-07-28 17:10 1380352 ----a-w- c:\windows\system32\rapture3d_oal.dll 2010-09-23 07:34 . 2010-03-01 18:51 17686528 ----a-w- c:\windows\system32\mkl_blueripple.dll 2010-09-23 07:11 . 2010-09-23 07:12 -------- d-----w- c:\program files\DAEMON Tools Lite 2010-09-19 08:18 . 2010-09-19 08:18 -------- d-----w- c:\program files\Office 2007 portable 2010-09-18 22:53 . 2008-05-16 09:33 25512 ----a-w- c:\windows\system32\drivers\s0016nd5.sys 2010-09-18 22:53 . 2008-05-16 09:33 15016 ----a-w- c:\windows\system32\drivers\s0016mdfl.sys 2010-09-18 22:53 . 2008-05-16 09:33 115752 ----a-w- c:\windows\system32\drivers\s0016unic.sys 2010-09-18 22:53 . 2008-05-16 09:33 89256 ----a-w- c:\windows\system32\drivers\s0016bus.sys 2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016whnt.sys 2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016wh.sys 2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016cmnt.sys 2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016cm.sys 2010-09-18 22:53 . 2008-05-16 09:33 120744 ----a-w- c:\windows\system32\drivers\s0016mdm.sys 2010-09-18 22:53 . 2008-05-16 09:33 114216 ----a-w- c:\windows\system32\drivers\s0016mgmt.sys 2010-09-18 22:53 . 2008-05-16 09:33 110632 ----a-w- c:\windows\system32\drivers\s0016obex.sys 2010-09-18 22:53 . 2008-05-16 09:33 10792 ----a-w- c:\windows\system32\drivers\s0016cr.sys 2010-09-18 22:46 . 2010-09-18 22:46 -------- d-----w- c:\users\Damien\AppData\Roaming\Sony Setup 2010-09-18 22:33 . 2010-09-20 18:57 -------- d-----w- C:\hijack 2010-09-17 18:39 . 2010-09-17 18:40 -------- d-----w- c:\program files\WhoCrashed 2010-09-15 18:55 . 2010-09-16 05:27 -------- d-----w- c:\windows\system32\MpEngineStore 2010-09-15 16:04 . 2010-08-21 05:32 316928 ----a-w- c:\windows\system32\spoolsv.exe 2010-09-13 20:40 . 2010-09-07 14:47 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2010-09-13 20:40 . 2010-09-07 14:52 165584 ----a-w- c:\windows\system32\drivers\aswSP.sys 2010-09-13 20:40 . 2010-09-07 14:53 340048 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2010-09-13 20:40 . 2010-09-07 14:47 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2010-09-13 20:40 . 2010-09-07 14:52 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2010-09-13 20:40 . 2010-09-07 14:47 50768 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys 2010-09-13 20:39 . 2010-09-07 15:12 38848 ----a-w- c:\windows\avastSS.scr 2010-09-13 20:39 . 2010-09-07 15:11 167592 ----a-w- c:\windows\system32\aswBoot.exe 2010-09-13 20:39 . 2010-09-13 20:39 -------- d-----w- c:\programdata\Alwil Software 2010-09-11 21:47 . 2010-09-25 20:54 842752 ----a-w- c:\windows\system32\drivers\fwyhlgw.sys . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2010-09-25 20:55 . 2007-12-26 10:00 -------- d-----w- c:\programdata\NVIDIA 2010-09-25 18:47 . 2009-07-14 08:39 789166 ----a-w- c:\windows\system32\perfh00C.dat 2010-09-25 18:47 . 2009-07-14 08:39 166814 ----a-w- c:\windows\system32\perfc00C.dat 2010-09-25 18:11 . 2008-03-16 21:33 -------- d-----w- c:\users\Damien\AppData\Roaming\DMCache 2010-09-25 17:58 . 2010-06-19 15:47 -------- d-----w- c:\program files\CAPCOM 2010-09-25 15:52 . 2009-03-01 12:43 -------- d-----w- c:\program files\LittleFighter2 2010-09-25 15:49 . 2007-12-27 20:48 -------- d-----w- c:\program files\EA GAMES 2010-09-25 15:46 . 2010-06-21 21:50 -------- d-----w- c:\program files\Steam 2010-09-25 15:41 . 2007-12-27 14:42 -------- d--h--w- c:\program files\InstallShield Installation Information 2010-09-25 15:38 . 2010-01-24 11:44 -------- d-----w- c:\program files\Common Files\BioWare 2010-09-25 15:35 . 2008-12-04 17:25 -------- d-----w- c:\program files\Rockstar Games 2010-09-25 14:56 . 2008-09-10 11:53 -------- d-----w- c:\program files\Common Files\Apple 2010-09-25 14:39 . 2008-03-16 21:33 -------- d-----w- c:\users\Damien\AppData\Roaming\IDM 2010-09-23 20:03 . 2008-02-02 21:12 -------- d-----w- c:\program files\Free Easy Burner 2010-09-23 07:39 . 2008-07-05 10:52 -------- d-----w- c:\programdata\Codemasters 2010-09-23 07:34 . 2008-01-13 17:32 -------- d-----w- c:\program files\OpenAL 2010-09-23 07:34 . 2007-12-28 11:25 445016 ----a-w- c:\windows\system32\wrap_oal.dll 2010-09-23 07:34 . 2007-12-28 11:25 109144 ----a-w- c:\windows\system32\OpenAL32.dll 2010-09-23 07:18 . 2009-06-15 17:57 -------- d-----w- c:\program files\Codemasters 2010-09-23 07:12 . 2008-07-10 15:49 691696 ----a-w- c:\windows\system32\drivers\sptd.sys 2010-09-20 18:58 . 2008-08-18 21:58 -------- d-----w- c:\users\Damien\AppData\Roaming\Xfire 2010-09-19 19:52 . 2008-07-05 14:10 -------- d-----w- c:\users\Damien\AppData\Roaming\mIRC 2010-09-19 18:06 . 2008-07-23 19:01 -------- d-----w- c:\program files\mIRC 2010-09-19 14:55 . 2008-07-21 18:42 -------- d-----w- c:\programdata\Soulseek 2010-09-18 22:53 . 2008-06-06 12:16 -------- d-----w- c:\program files\Sony Ericsson 2010-09-18 22:48 . 2010-09-18 22:46 34452784 ----a-w- c:\users\Damien\AppData\Roaming\Sony Setup\A189E68E-2253-4C3B-86B7-D77E36F13C55\QuickTimeInstaller.exe 2010-09-18 22:45 . 2008-01-13 21:49 -------- d-----w- c:\program files\Sony Setup 2010-09-18 20:54 . 2007-12-27 15:32 138520 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys 2010-09-18 20:54 . 2007-12-27 15:32 233960 ----a-w- c:\windows\system32\PnkBstrB.exe 2010-09-18 13:59 . 2008-08-18 21:58 -------- d-----w- c:\programdata\Xfire 2010-09-17 20:10 . 2008-12-16 09:26 -------- d-----w- c:\users\Damien\AppData\Roaming\Mumble 2010-09-15 18:57 . 2007-04-04 07:58 -------- d-----w- c:\programdata\Microsoft Help 2010-09-15 18:16 . 2010-06-08 18:44 -------- d-----w- c:\program files\EA Sports 2010-09-13 20:39 . 2008-07-07 16:55 -------- d-----w- c:\program files\Alwil Software 2010-09-13 17:37 . 2010-04-28 16:30 133720 ----a-w- c:\windows\system32\drivers\ksecpkg.sys 2010-09-03 10:35 . 2010-07-14 13:53 -------- d-----w- c:\users\Damien\AppData\Roaming\MessengerDiscovery 2 2010-09-02 21:26 . 2010-08-28 10:09 46852 ----a-w- c:\programdata\Blizzard Entertainment\Battle.net\Cache\Download\Scan.dll 2010-09-02 21:18 . 2010-05-16 16:58 -------- d-----w- c:\users\Damien\AppData\Roaming\Autodesk 2010-09-02 21:18 . 2010-05-16 16:58 -------- d-----w- c:\programdata\Autodesk 2010-09-02 16:17 . 2009-05-15 19:16 -------- d-----w- c:\program files\Microsoft Silverlight 2010-09-01 16:18 . 2008-03-04 17:19 227228 ---ha-w- c:\windows\system32\mlfcache.dat 2010-08-31 10:13 . 2008-01-21 17:57 -------- d-----w- c:\users\Damien\AppData\Roaming\Image Zone Express 2010-08-26 20:58 . 2009-11-21 14:40 -------- d-----w- c:\users\Damien\AppData\Roaming\Winamp 2010-08-23 21:32 . 2009-12-06 22:39 179424 ----a-w- c:\users\Damien\AppData\Local\GDIPFONTCACHEV1.DAT 2010-08-18 13:20 . 2010-07-27 16:08 -------- d-----w- c:\program files\StarCraft II 2010-08-17 00:13 . 2010-07-14 15:39 -------- d-----w- c:\program files\League of Legends 2010-08-16 10:46 . 2009-10-05 19:46 1 ----a-w- c:\users\Damien\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys 2010-08-15 07:50 . 2010-08-15 07:50 -------- d-----w- c:\programdata\ASign 2010-08-15 07:39 . 2010-08-15 07:39 -------- d-----w- c:\program files\ARC SYSTEM WORKS 2010-08-14 11:42 . 2010-08-14 07:30 -------- d-----w- c:\programdata\Yahoo! Companion 2010-08-14 07:34 . 2010-08-14 07:21 181574 ----a-w- c:\windows\hpoins29.dat 2010-08-14 07:33 . 2007-12-28 20:00 -------- d-----w- c:\users\Damien\AppData\Roaming\HP 2010-08-14 07:33 . 2007-12-28 19:52 -------- d-----w- c:\programdata\HP 2010-08-14 07:33 . 2007-12-28 19:52 146380 ----a-w- c:\windows\hpoins18.dat 2010-08-14 07:30 . 2010-08-14 07:30 -------- d-----w- c:\users\Damien\AppData\Roaming\Yahoo! 2010-08-14 07:30 . 2008-09-13 13:16 -------- d-----w- c:\program files\Yahoo! 2010-08-14 07:28 . 2007-12-28 19:53 -------- d-----w- c:\program files\HP 2010-08-14 07:25 . 2010-08-14 07:25 -------- d-----w- c:\programdata\HP Product Assistant 2010-08-11 17:36 . 2010-08-11 17:36 -------- d-----w- c:\users\Damien\AppData\Roaming\NVIDIA 2010-08-11 17:17 . 2008-07-22 18:41 -------- d-----w- c:\program files\NVIDIA Corporation 2010-08-08 19:18 . 2010-07-18 14:43 -------- d-----w- c:\program files\Common Files\Blizzard Entertainment 2010-08-01 15:42 . 2008-06-29 21:48 -------- d-----w- c:\program files\wtf 2010-07-29 06:30 . 2010-08-12 16:09 197632 ----a-w- c:\windows\system32\ir32_32.dll 2010-07-29 06:30 . 2010-08-12 16:09 82944 ----a-w- c:\windows\system32\iccvid.dll 2010-07-25 14:35 . 2010-07-25 14:35 85504 ----a-w- c:\users\Damien\AppData\Roaming\SystemRequirementsLab\srlproxy_cyri_4.1.71.0A.dll 2010-07-14 15:53 . 2010-05-14 22:25 53632 ----a-w- c:\users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe 2010-07-09 19:04 . 2010-07-09 19:04 41872 ----a-w- c:\windows\system32\xfcodec.dll 2010-07-09 11:18 . 2010-07-25 12:47 20328 ----a-w- c:\windows\system32\drivers\cpuz134_x32.sys 2010-06-30 06:25 . 2010-08-12 16:09 978432 ----a-w- c:\windows\system32\wininet.dll 2010-01-11 19:28 . 2010-01-07 18:32 25894 ----a-w- c:\program files\SolidWorksswxJRNL.BAK 2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat 2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\snxPluginsShell] @="{F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}" [HKEY_CLASSES_ROOT\CLSID\{F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}] 2010-09-07 15:14 152160 ----a-w- c:\program files\Alwil Software\Avast5\snxPlugins.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2009-07-26 3883856] "IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2010-05-26 3220912] "NVIDIA nTune"="c:\program files\NVIDIA Corporation\nTune\nTuneCmd.exe" [2008-08-18 106496] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DeathAdder"="c:\program files\Razer\DeathAdder\razerhid.exe" [2007-09-07 159744] "avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2010-09-07 2838912] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux3"=wdmaud.drv [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R3 AIDA32Driver;AIDA32Driver;c:\program files\AIDA32 - Personal System Information\aida32.sys [2004-02-23 3584] R3 AVerAF15DMBTH;AVerMedia A850 USB;c:\windows\system32\Drivers\AVerAF15DMBTH.sys [2009-07-27 554368] R3 cpuz130;cpuz130;c:\users\Damien\AppData\Local\Temp\cpuz130\cpuz_x32.sys [x] R4 Application Updater;Application Updater;c:\program files\Application Updater\ApplicationUpdater.exe [2010-01-07 380928] R4 AVerRemote;AVerRemote;c:\program files\Common Files\AVerMedia\Service\AVerRemote.exe [2009-04-08 344064] R4 AVerScheduleService;AVerScheduleService;c:\program files\Common Files\AVerMedia\Service\AVerScheduleService.exe [2008-12-10 405504] S1 aswSnx;aswSnx; [x] S1 aswSP;aswSP; [x] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768] S2 cpuz134;cpuz134;c:\windows\system32\drivers\cpuz134_x32.sys [2010-07-09 20328] S3 DAdderFltr;DeathAdder Mouse;c:\windows\system32\drivers\dadder.sys [2007-04-12 10880] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs ntceoron . Contenu du dossier 'Tâches planifiées' 2010-08-27 c:\windows\Tasks\Maintenance en 1 clic.job - c:\program files\TuneUp Utilities 2008\OneClick.exe [2007-12-21 13:39] . . ------- Examen supplémentaire ------- . uSearchMigratedDefaultURL = hxxp://www.cherche.us/Result.php?cx=partner-pub-0420647136319153%3A5n6ugpjrdrh&cof=GIMP%3ACCCCCC%3BT%3A000000%3BALC%3A551a8b%3BGFNT%3AB7B7B7%3BLC%3A2200cc%3BBGC%3AFFFFFF%3BVLC%3A551a8b%3BGALT%3A008B45%3BFORID%3A10%3BDIV%3A%23FFFFF0%3B&q={searchTerms} uStart Page = hxxp://google.fr/ uInternet Settings,ProxyServer = http=127.0.0.1:6092 uInternet Settings,ProxyOverride = <local> IE: Télécharger avec IDM - c:\program files\Internet Download Manager\IEExt.htm IE: Télécharger le contenu de video FLV avec IDM - c:\program files\Internet Download Manager\IEGetVL.htm IE: Télécharger tous les liens avec IDM - c:\program files\Internet Download Manager\IEGetAll.htm DPF: {6678BE91-1E04-4A4A-9C32-63145EA79C2A} - hxxp://fifa-online.easports.com/fo3-theme/addons/EAFO3AXLauncher.cab FF - ProfilePath - c:\users\Damien\AppData\Roaming\Mozilla\Firefox\Profiles\ajfkqxx9.default\ FF - prefs.js: browser.search.selectedEngine - Bing FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?mkt=fr-FR&form=MIAWB1&q= FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpClipBook.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpClipBookDB.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpNeoLogger.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSaturn.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSeymour.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSmartSelect.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSmartWebPrinting.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSWPOperation.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPLogging.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPMTC.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPMTL.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXREStub.dll FF - component: c:\users\Damien\AppData\Roaming\IDM\idmmzcc3\components\idmmzcc.dll FF - plugin: c:\program files\Canon\ZoomBrowser EX\Program\NPCIG.dll FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll FF - plugin: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\plugins\nphpclipbook.dll FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll FF - plugin: c:\program files\NVIDIA Corporation\3D Vision\npnv3dv.dll FF - plugin: c:\program files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\MEMSWEEP2] "ImagePath"="\??\c:\windows\system32\A505.tmp" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc] "ImagePath"="c:\windows\system32\GameMon.des -service" . --------------------- CLES DE REGISTRE BLOQUEES --------------------- [HKEY_USERS\S-1-5-21-3049684622-1547058301-2819581623-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*] "??"=hex:18,b6,19,56,53,bc,96,ae,71,9f,fa,4f,9c,7d,f5,6a,ad,aa,3d,90,47,ba,07, be,48,c0,d9,c1,ff,a5,82,5f,fc,65,88,d3,4a,34,d8,4f,78,50,42,f5,d4,25,8b,93,\ "??"=hex:5d,2e,bc,00,9b,07,bc,9c,34,34,87,88,c9,ab,ca,0d [HKEY_USERS\S-1-5-21-3049684622-1547058301-2819581623-1003_Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}] @Denied: (Full) (Everyone) "scansk"=hex(0):9f,ad,31,c3,bd,ab,af,68,1e,7f,50,84,52,de,58,de,ec,48,22,dd,6d, 90,57,cd,61,a4,00,ab,58,0d,10,f1,a2,71,02,63,d0,1d,e8,de,00,00,00,00,00,00,\ [HKEY_USERS\S-1-5-21-3049684622-1547058301-2819581623-1003_Classes\CLSID\{8632b6d2-42ef-4544-9e4b-9f25eb05d305}] @Denied: (Full) (Everyone) @Allowed: (Read) (RestrictedCode) "Model"=dword:000000d5 "Therad"=dword:00000019 "MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a, 1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\ [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}\ProxyStubClsid] @DACL=(02 0000) @="{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}\ProxyStubClsid32] @DACL=(02 0000) @="{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}\TypeLib] @DACL=(02 0000) @="{2996F0E7-292B-4CAE-893F-47B8B1C05B56}" "Version"="1.0" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}\1.0\0] @DACL=(02 0000) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}\1.0\FLAGS] @DACL=(02 0000) @="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}\1.0\HELPDIR] @DACL=(02 0000) @="c:\\Program Files\\Ask.com" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Autres processus actifs ------------------------ . c:\windows\system32\nvvsvc.exe c:\windows\system32\nvvsvc.exe c:\program files\Alwil Software\Avast5\AvastSvc.exe c:\windows\system32\conhost.exe c:\program files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe c:\program files\NVIDIA Corporation\nTune\nTuneService.exe c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe c:\windows\system32\PnkBstrA.exe c:\program files\Microsoft SQL Server\90\Shared\sqlbrowser.exe c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe c:\program files\Razer\DeathAdder\razertra.exe c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe c:\program files\Razer\DeathAdder\razerofa.exe c:\program files\NVIDIA Corporation\System Update\UpdateCenterService.exe c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe c:\program files\Windows Media Player\wmpnetwk.exe c:\windows\system32\DllHost.exe c:\windows\system32\sppsvc.exe c:\windows\servicing\TrustedInstaller.exe . ************************************************************************** . Heure de fin: 2010-09-25 23:04:16 - La machine a redémarré ComboFix-quarantined-files.txt 2010-09-25 21:04 ComboFix2.txt 2010-09-17 19:27 Avant-CF: 17,605,361,664 octets libres Après-CF: 17,276,231,680 octets libres - - End Of File - - A762DB57F343DF949A046351061FC877
  6. brta77
    ComboFix 10-09-25.01 - Damien 2010-09-25 20:20:27.2.2 - x86 Microsoft Windows 7 Édition Familiale Premium 6.1.7600.0.1252.1.1036.18.2046.1467 [GMT 2:00] Lancé depuis: c:\users\Damien\Desktop\brta.exe SP: Spybot - Search and Destroy *disabled* (Outdated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9} . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . c:\programdata\hpe7638.dll . ((((((((((((((((((((((((((((( Fichiers créés du 2010-08-25 au 2010-09-25 )))))))))))))))))))))))))))))))))))) . 2010-09-25 18:31 . 2010-09-25 18:31 -------- d-----w- c:\users\Public\AppData\Local\temp 2010-09-25 18:31 . 2010-09-25 18:31 -------- d-----w- c:\users\Mcx1-PC-DAMIEN\AppData\Local\temp 2010-09-25 18:31 . 2010-09-25 18:31 -------- d-----w- c:\users\HomeGroupUser$\AppData\Local\temp 2010-09-25 18:31 . 2010-09-25 18:31 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-09-25 18:31 . 2010-09-25 18:31 -------- d-----w- c:\users\Damien\AppData\Local\temp 2010-09-25 18:31 . 2010-09-25 18:31 -------- d-----w- c:\users\ASPNET\AppData\Local\temp 2010-09-25 18:31 . 2010-09-25 18:31 -------- d-----w- c:\users\Administrateur\AppData\Local\temp 2010-09-25 14:37 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-09-25 14:37 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-09-25 13:18 . 2010-09-25 13:18 -------- d-----w- c:\users\Damien\AppData\Roaming\Malwarebytes 2010-09-25 13:18 . 2010-09-25 13:18 -------- d-----w- c:\programdata\Malwarebytes 2010-09-25 13:18 . 2010-09-25 14:37 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-09-25 12:32 . 2010-05-21 12:14 221568 ------w- c:\windows\system32\MpSigStub.exe 2010-09-25 12:17 . 2010-09-25 14:37 -------- d-----w- c:\users\Damien\Pavark 2010-09-25 12:08 . 2010-09-25 12:08 -------- d-----w- c:\program files\Sophos 2010-09-24 06:16 . 2010-09-24 06:16 -------- d-----w- c:\program files\Unlocker 2010-09-23 20:31 . 2010-09-23 20:31 -------- d-----w- c:\users\Damien\AppData\Roaming\fltk.org 2010-09-23 20:28 . 2010-09-23 20:28 -------- d-----w- c:\program files\ePSXe 1.6 2010-09-23 07:34 . 2010-09-23 07:34 -------- d-----w- c:\program files\BRS 2010-09-23 07:34 . 2010-07-28 17:10 1380352 ----a-w- c:\windows\system32\rapture3d_oal.dll 2010-09-23 07:34 . 2010-03-01 18:51 17686528 ----a-w- c:\windows\system32\mkl_blueripple.dll 2010-09-23 07:11 . 2010-09-23 07:12 -------- d-----w- c:\program files\DAEMON Tools Lite 2010-09-19 08:18 . 2010-09-19 08:18 -------- d-----w- c:\program files\Office 2007 portable 2010-09-18 22:53 . 2008-05-16 09:33 25512 ----a-w- c:\windows\system32\drivers\s0016nd5.sys 2010-09-18 22:53 . 2008-05-16 09:33 15016 ----a-w- c:\windows\system32\drivers\s0016mdfl.sys 2010-09-18 22:53 . 2008-05-16 09:33 115752 ----a-w- c:\windows\system32\drivers\s0016unic.sys 2010-09-18 22:53 . 2008-05-16 09:33 89256 ----a-w- c:\windows\system32\drivers\s0016bus.sys 2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016whnt.sys 2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016wh.sys 2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016cmnt.sys 2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016cm.sys 2010-09-18 22:53 . 2008-05-16 09:33 120744 ----a-w- c:\windows\system32\drivers\s0016mdm.sys 2010-09-18 22:53 . 2008-05-16 09:33 114216 ----a-w- c:\windows\system32\drivers\s0016mgmt.sys 2010-09-18 22:53 . 2008-05-16 09:33 110632 ----a-w- c:\windows\system32\drivers\s0016obex.sys 2010-09-18 22:53 . 2008-05-16 09:33 10792 ----a-w- c:\windows\system32\drivers\s0016cr.sys 2010-09-18 22:46 . 2010-09-18 22:48 34452784 ----a-w- c:\users\Damien\AppData\Roaming\Sony Setup\A189E68E-2253-4C3B-86B7-D77E36F13C55\QuickTimeInstaller.exe 2010-09-18 22:46 . 2010-09-18 22:46 -------- d-----w- c:\users\Damien\AppData\Roaming\Sony Setup 2010-09-18 22:33 . 2010-09-20 18:57 -------- d-----w- C:\hijack 2010-09-17 18:39 . 2010-09-17 18:40 -------- d-----w- c:\program files\WhoCrashed 2010-09-15 18:55 . 2010-09-16 05:27 -------- d-----w- c:\windows\system32\MpEngineStore 2010-09-15 16:04 . 2010-08-21 05:32 316928 ----a-w- c:\windows\system32\spoolsv.exe 2010-09-13 20:40 . 2010-09-07 14:47 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2010-09-13 20:40 . 2010-09-07 14:52 165584 ----a-w- c:\windows\system32\drivers\aswSP.sys 2010-09-13 20:40 . 2010-09-07 14:53 340048 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2010-09-13 20:40 . 2010-09-07 14:47 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2010-09-13 20:40 . 2010-09-07 14:52 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2010-09-13 20:40 . 2010-09-07 14:47 50768 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys 2010-09-13 20:39 . 2010-09-07 15:12 38848 ----a-w- c:\windows\avastSS.scr 2010-09-13 20:39 . 2010-09-07 15:11 167592 ----a-w- c:\windows\system32\aswBoot.exe 2010-09-13 20:39 . 2010-09-13 20:39 -------- d-----w- c:\programdata\Alwil Software 2010-08-28 10:09 . 2010-09-02 21:26 46852 ----a-w- c:\programdata\Blizzard Entertainment\Battle.net\Cache\Download\Scan.dll . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2010-09-25 18:15 . 2007-12-26 10:00 -------- d-----w- c:\programdata\NVIDIA 2010-09-25 18:11 . 2008-03-16 21:33 -------- d-----w- c:\users\Damien\AppData\Roaming\DMCache 2010-09-25 17:58 . 2010-06-19 15:47 -------- d-----w- c:\program files\CAPCOM 2010-09-25 15:52 . 2009-03-01 12:43 -------- d-----w- c:\program files\LittleFighter2 2010-09-25 15:49 . 2007-12-27 20:48 -------- d-----w- c:\program files\EA GAMES 2010-09-25 15:46 . 2010-06-21 21:50 -------- d-----w- c:\program files\Steam 2010-09-25 15:41 . 2007-12-27 14:42 -------- d--h--w- c:\program files\InstallShield Installation Information 2010-09-25 15:38 . 2010-01-24 11:44 -------- d-----w- c:\program files\Common Files\BioWare 2010-09-25 15:35 . 2008-12-04 17:25 -------- d-----w- c:\program files\Rockstar Games 2010-09-25 15:33 . 2009-07-14 08:39 789166 ----a-w- c:\windows\system32\perfh00C.dat 2010-09-25 15:33 . 2009-07-14 08:39 166814 ----a-w- c:\windows\system32\perfc00C.dat 2010-09-25 14:56 . 2008-09-10 11:53 -------- d-----w- c:\program files\Common Files\Apple 2010-09-25 14:39 . 2008-03-16 21:33 -------- d-----w- c:\users\Damien\AppData\Roaming\IDM 2010-09-23 20:03 . 2008-02-02 21:12 -------- d-----w- c:\program files\Free Easy Burner 2010-09-23 07:39 . 2008-07-05 10:52 -------- d-----w- c:\programdata\Codemasters 2010-09-23 07:34 . 2008-01-13 17:32 -------- d-----w- c:\program files\OpenAL 2010-09-23 07:34 . 2007-12-28 11:25 445016 ----a-w- c:\windows\system32\wrap_oal.dll 2010-09-23 07:34 . 2007-12-28 11:25 109144 ----a-w- c:\windows\system32\OpenAL32.dll 2010-09-23 07:18 . 2009-06-15 17:57 -------- d-----w- c:\program files\Codemasters 2010-09-23 07:12 . 2008-07-10 15:49 691696 ----a-w- c:\windows\system32\drivers\sptd.sys 2010-09-20 18:58 . 2008-08-18 21:58 -------- d-----w- c:\users\Damien\AppData\Roaming\Xfire 2010-09-19 19:52 . 2008-07-05 14:10 -------- d-----w- c:\users\Damien\AppData\Roaming\mIRC 2010-09-19 18:06 . 2008-07-23 19:01 -------- d-----w- c:\program files\mIRC 2010-09-19 14:55 . 2008-07-21 18:42 -------- d-----w- c:\programdata\Soulseek 2010-09-18 22:53 . 2008-06-06 12:16 -------- d-----w- c:\program files\Sony Ericsson 2010-09-18 22:45 . 2008-01-13 21:49 -------- d-----w- c:\program files\Sony Setup 2010-09-18 20:54 . 2007-12-27 15:32 138520 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys 2010-09-18 20:54 . 2007-12-27 15:32 233960 ----a-w- c:\windows\system32\PnkBstrB.exe 2010-09-18 13:59 . 2008-08-18 21:58 -------- d-----w- c:\programdata\Xfire 2010-09-17 20:10 . 2008-12-16 09:26 -------- d-----w- c:\users\Damien\AppData\Roaming\Mumble 2010-09-15 18:57 . 2007-04-04 07:58 -------- d-----w- c:\programdata\Microsoft Help 2010-09-15 18:16 . 2010-06-08 18:44 -------- d-----w- c:\program files\EA Sports 2010-09-13 20:39 . 2008-07-07 16:55 -------- d-----w- c:\program files\Alwil Software 2010-09-13 17:37 . 2010-04-28 16:30 133720 ----a-w- c:\windows\system32\drivers\ksecpkg.sys 2010-09-12 00:04 . 2010-09-12 00:04 0 ----a-w- c:\windows\system32\dloED1E.tmp 2010-09-03 10:35 . 2010-07-14 13:53 -------- d-----w- c:\users\Damien\AppData\Roaming\MessengerDiscovery 2 2010-09-02 21:18 . 2010-05-16 16:58 -------- d-----w- c:\users\Damien\AppData\Roaming\Autodesk 2010-09-02 21:18 . 2010-05-16 16:58 -------- d-----w- c:\programdata\Autodesk 2010-09-02 16:17 . 2009-05-15 19:16 -------- d-----w- c:\program files\Microsoft Silverlight 2010-09-01 16:18 . 2008-03-04 17:19 227228 ---ha-w- c:\windows\system32\mlfcache.dat 2010-08-31 10:13 . 2008-01-21 17:57 -------- d-----w- c:\users\Damien\AppData\Roaming\Image Zone Express 2010-08-26 20:58 . 2009-11-21 14:40 -------- d-----w- c:\users\Damien\AppData\Roaming\Winamp 2010-08-23 22:27 . 2010-08-23 22:27 3586 ----a-w- C:\STF283E.tmp 2010-08-23 22:26 . 2010-08-23 22:26 3570 ----a-w- C:\STFA105.tmp 2010-08-23 22:17 . 2010-08-23 22:17 3570 ----a-w- C:\STF5C08.tmp 2010-08-23 21:32 . 2009-12-06 22:39 179424 ----a-w- c:\users\Damien\AppData\Local\GDIPFONTCACHEV1.DAT 2010-08-18 15:10 . 2010-09-23 07:34 809560 ----a-r- c:\windows\system32\tmpBD37.tmp 2010-08-18 15:10 . 2010-08-18 15:10 809560 ----a-r- c:\windows\system32\tmpBD36.tmp 2010-08-18 13:20 . 2010-07-27 16:08 -------- d-----w- c:\program files\StarCraft II 2010-08-17 00:13 . 2010-07-14 15:39 -------- d-----w- c:\program files\League of Legends 2010-08-16 10:46 . 2009-10-05 19:46 1 ----a-w- c:\users\Damien\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys 2010-08-15 07:50 . 2010-08-15 07:50 -------- d-----w- c:\programdata\ASign 2010-08-15 07:39 . 2010-08-15 07:39 -------- d-----w- c:\program files\ARC SYSTEM WORKS 2010-08-14 11:42 . 2010-08-14 07:30 -------- d-----w- c:\programdata\Yahoo! Companion 2010-08-14 07:34 . 2010-08-14 07:21 181574 ----a-w- c:\windows\hpoins29.dat 2010-08-14 07:33 . 2007-12-28 20:00 -------- d-----w- c:\users\Damien\AppData\Roaming\HP 2010-08-14 07:33 . 2007-12-28 19:52 -------- d-----w- c:\programdata\HP 2010-08-14 07:33 . 2007-12-28 19:52 146380 ----a-w- c:\windows\hpoins18.dat 2010-08-14 07:30 . 2010-08-14 07:30 -------- d-----w- c:\users\Damien\AppData\Roaming\Yahoo! 2010-08-14 07:30 . 2008-09-13 13:16 -------- d-----w- c:\program files\Yahoo! 2010-08-14 07:28 . 2007-12-28 19:53 -------- d-----w- c:\program files\HP 2010-08-14 07:25 . 2010-08-14 07:25 -------- d-----w- c:\programdata\HP Product Assistant 2010-08-11 17:36 . 2010-08-11 17:36 -------- d-----w- c:\users\Damien\AppData\Roaming\NVIDIA 2010-08-11 17:17 . 2008-07-22 18:41 -------- d-----w- c:\program files\NVIDIA Corporation 2010-08-08 19:18 . 2010-07-18 14:43 -------- d-----w- c:\program files\Common Files\Blizzard Entertainment 2010-08-01 15:42 . 2008-06-29 21:48 -------- d-----w- c:\program files\wtf 2010-07-29 06:30 . 2010-08-12 16:09 197632 ----a-w- c:\windows\system32\ir32_32.dll 2010-07-29 06:30 . 2010-08-12 16:09 82944 ----a-w- c:\windows\system32\iccvid.dll 2010-07-25 14:35 . 2010-07-25 14:35 85504 ----a-w- c:\users\Damien\AppData\Roaming\SystemRequirementsLab\srlproxy_cyri_4.1.71.0A.dll 2010-07-14 15:53 . 2010-05-14 22:25 53632 ----a-w- c:\users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe 2010-07-09 19:04 . 2010-07-09 19:04 41872 ----a-w- c:\windows\system32\xfcodec.dll 2010-07-09 11:18 . 2010-07-25 12:47 20328 ----a-w- c:\windows\system32\drivers\cpuz134_x32.sys 2010-06-30 06:25 . 2010-08-12 16:09 978432 ----a-w- c:\windows\system32\wininet.dll 2010-01-11 19:28 . 2010-01-07 18:32 25894 ----a-w- c:\program files\SolidWorksswxJRNL.BAK 2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat 2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\snxPluginsShell] @="{F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}" [HKEY_CLASSES_ROOT\CLSID\{F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}] 2010-09-07 15:14 152160 ----a-w- c:\program files\Alwil Software\Avast5\snxPlugins.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2009-07-26 3883856] "IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2010-05-26 3220912] "NVIDIA nTune"="c:\program files\NVIDIA Corporation\nTune\nTuneCmd.exe" [2008-08-18 106496] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "FlashPlayerUpdate"="c:\windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe" [2009-10-28 257440] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DeathAdder"="c:\program files\Razer\DeathAdder\razerhid.exe" [2007-09-07 159744] "avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2010-09-07 2838912] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux3"=wdmaud.drv [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp R1 vigtphcs;vigtphcs;c:\windows\system32\drivers\vigtphcs.sys [x] R1 xwxfhrcf;xwxfhrcf;c:\windows\system32\drivers\xwxfhrcf.sys [x] R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 ntceoron;Microsoft Hardware Error Device Controller;c:\windows\System32\svchost.exe [2009-07-14 20992] R2 OMSI download service;Sony Ericsson OMSI download service;c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 90112] R3 AIDA32Driver;AIDA32Driver;c:\program files\AIDA32 - Personal System Information\aida32.sys [2004-02-23 3584] R3 AVerAF15DMBTH;AVerMedia A850 USB;c:\windows\system32\Drivers\AVerAF15DMBTH.sys [2009-07-27 554368] R3 cpuz130;cpuz130;c:\users\Damien\AppData\Local\Temp\cpuz130\cpuz_x32.sys [x] R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\DRIVERS\ManyCam.sys [x] R3 MEMSWEEP2;MEMSWEEP2;c:\windows\system32\A505.tmp [x] R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [2009-06-17 3173804] R3 ProcAPI;ProcAPI;c:\program files\Intel Corporation\Thermal Analysis Tool\ProcAPI.sys [2006-04-21 12032] R3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\DRIVERS\s0016bus.sys [2008-05-16 89256] R3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016] R3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744] R3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216] R3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512] R3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s0016obex.sys [2008-05-16 110632] R3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\DRIVERS\s0016unic.sys [2008-05-16 115752] R3 tat;tat;c:\program files\Intel Corporation\Thermal Analysis Tool\tat.sys [2005-10-14 5120] R3 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [2009-11-13 92008] R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-27 1343400] R4 Application Updater;Application Updater;c:\program files\Application Updater\ApplicationUpdater.exe [2010-01-07 380928] R4 AVerRemote;AVerRemote;c:\program files\Common Files\AVerMedia\Service\AVerRemote.exe [2009-04-08 344064] R4 AVerScheduleService;AVerScheduleService;c:\program files\Common Files\AVerMedia\Service\AVerScheduleService.exe [2008-12-10 405504] R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-09-23 691696] S1 aswSnx;aswSnx; [x] S1 aswSP;aswSP; [x] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768] S2 cpuz134;cpuz134;c:\windows\system32\drivers\cpuz134_x32.sys [2010-07-09 20328] S2 PStrip;PStrip;c:\windows\system32\drivers\pstrip.sys [2007-07-15 27992] S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-06-07 240232] S3 DAdderFltr;DeathAdder Mouse;c:\windows\system32\drivers\dadder.sys [2007-04-12 10880] --- Autres Services/Pilotes en mémoire --- *Deregistered* - acedrv11 *Deregistered* - fwyhlgw [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs ntceoron . Contenu du dossier 'Tâches planifiées' 2010-08-27 c:\windows\Tasks\Maintenance en 1 clic.job - c:\program files\TuneUp Utilities 2008\OneClick.exe [2007-12-21 13:39] . . ------- Examen supplémentaire ------- . uSearchMigratedDefaultURL = hxxp://www.cherche.us/Result.php?cx=partner-pub-0420647136319153%3A5n6ugpjrdrh&cof=GIMP%3ACCCCCC%3BT%3A000000%3BALC%3A551a8b%3BGFNT%3AB7B7B7%3BLC%3A2200cc%3BBGC%3AFFFFFF%3BVLC%3A551a8b%3BGALT%3A008B45%3BFORID%3A10%3BDIV%3A%23FFFFF0%3B&q={searchTerms} uStart Page = hxxp://google.fr/ uInternet Settings,ProxyServer = http=127.0.0.1:6092 uInternet Settings,ProxyOverride = <local> IE: Télécharger avec IDM - c:\program files\Internet Download Manager\IEExt.htm IE: Télécharger le contenu de video FLV avec IDM - c:\program files\Internet Download Manager\IEGetVL.htm IE: Télécharger tous les liens avec IDM - c:\program files\Internet Download Manager\IEGetAll.htm DPF: {6678BE91-1E04-4A4A-9C32-63145EA79C2A} - hxxp://fifa-online.easports.com/fo3-theme/addons/EAFO3AXLauncher.cab FF - ProfilePath - c:\users\Damien\AppData\Roaming\Mozilla\Firefox\Profiles\ajfkqxx9.default\ FF - prefs.js: browser.search.selectedEngine - Bing FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?mkt=fr-FR&form=MIAWB1&q= FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpClipBook.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpClipBookDB.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpNeoLogger.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSaturn.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSeymour.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSmartSelect.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSmartWebPrinting.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSWPOperation.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPLogging.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPMTC.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPMTL.dll FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXREStub.dll FF - component: c:\users\Damien\AppData\Roaming\IDM\idmmzcc3\components\idmmzcc.dll FF - plugin: c:\program files\Canon\ZoomBrowser EX\Program\NPCIG.dll FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll FF - plugin: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\plugins\nphpclipbook.dll FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll FF - plugin: c:\program files\NVIDIA Corporation\3D Vision\npnv3dv.dll FF - plugin: c:\program files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ . . ------- Associations de fichier ------- . .scr=DWGTrueViewScriptFile . - - - - ORPHELINS SUPPRIMES - - - - AddRemove-Yahoo! Companion - c:\progra~1\Yahoo!\Common\UNYT_W~1.EXE AddRemove-Yahoo! Toolbar - c:\progra~1\Yahoo!\Common\UNYT_W~1.EXE [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\MEMSWEEP2] "ImagePath"="\??\c:\windows\system32\A505.tmp" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc] "ImagePath"="c:\windows\system32\GameMon.des -service" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\fwyhlgw] . --------------------- CLES DE REGISTRE BLOQUEES --------------------- [HKEY_USERS\S-1-5-21-3049684622-1547058301-2819581623-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*] "??"=hex:18,b6,19,56,53,bc,96,ae,71,9f,fa,4f,9c,7d,f5,6a,ad,aa,3d,90,47,ba,07, be,48,c0,d9,c1,ff,a5,82,5f,fc,65,88,d3,4a,34,d8,4f,78,50,42,f5,d4,25,8b,93,\ "??"=hex:5d,2e,bc,00,9b,07,bc,9c,34,34,87,88,c9,ab,ca,0d [HKEY_USERS\S-1-5-21-3049684622-1547058301-2819581623-1003_Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}] @Denied: (Full) (Everyone) "scansk"=hex(0):9f,ad,31,c3,bd,ab,af,68,1e,7f,50,84,52,de,58,de,ec,48,22,dd,6d, 90,57,cd,61,a4,00,ab,58,0d,10,f1,a2,71,02,63,d0,1d,e8,de,00,00,00,00,00,00,\ [HKEY_USERS\S-1-5-21-3049684622-1547058301-2819581623-1003_Classes\CLSID\{8632b6d2-42ef-4544-9e4b-9f25eb05d305}] @Denied: (Full) (Everyone) @Allowed: (Read) (RestrictedCode) "Model"=dword:000000d5 "Therad"=dword:00000019 "MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a, 1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\ [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}\ProxyStubClsid] @DACL=(02 0000) @="{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}\ProxyStubClsid32] @DACL=(02 0000) @="{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}\TypeLib] @DACL=(02 0000) @="{2996F0E7-292B-4CAE-893F-47B8B1C05B56}" "Version"="1.0" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}\1.0\0] @DACL=(02 0000) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}\1.0\FLAGS] @DACL=(02 0000) @="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}\1.0\HELPDIR] @DACL=(02 0000) @="c:\\Program Files\\Ask.com" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Heure de fin: 2010-09-25 20:35:14 ComboFix-quarantined-files.txt 2010-09-25 18:35 ComboFix2.txt 2010-09-17 19:27 Avant-CF: 17,452,273,664 octets libres Après-CF: 17,463,037,952 octets libres - - End Of File - - F0527230B17C6CC2B72ED4B10DE69821
  7. brta77
    Salut tout le monde, j'ai un rookit sur mon pc qui redémarre régulierement mon PC en me faisant un jolie Ecran Bleu avec pour cause de plantage ce fameux fichier FWYHLGW.SYS J'ai déjà esséyé pas mal de chose, mode sans échec, unlocker, copylock, malwarebyte's et toujours la meme réponse (IMPOSSIBLE) http://img843.imageshack.us/img843/6801/rootkit.png http://img837.imageshack.us/img837/5633/rootkit2.png http://img202.imageshack.us/img202/1078/rootkit3.png Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:49, on 2010-09-25 Platform: Unknown Windows (WinNT 6.01.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16385) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Razer\DeathAdder\razerhid.exe C:\Program Files\Alwil Software\Avast5\AvastUI.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Razer\DeathAdder\razertra.exe C:\Program Files\Razer\DeathAdder\razerofa.exe C:\Program Files\Internet Download Manager\IDMan.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\mspaint.exe C:\Windows\system32\NOTEPAD.EXE C:\Windows\system32\DllHost.exe C:\Users\Damien\Desktop\TeamSpeak.exe C:\Windows\system32\SearchFilterHost.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:6092 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [DeathAdder] C:\Program Files\Razer\DeathAdder\razerhid.exe O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [iDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot O4 - HKCU\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" boot "C:\Users\Damien\AppData\Local\NVIDIA Corporation\nTune\Profiles\osbootpf.nsu" O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (file missing) O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {6678BE91-1E04-4A4A-9C32-63145EA79C2A} (EAFO3AXLauncher Control) - http://fifa-online.easports.com/fo3-theme/addons/EAFO3AXLauncher.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUplden-us.cab O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (file missing) O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing) O23 - Service: Performance Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: Sony Ericsson OMSI download service (OMSI download service) - Unknown owner - C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe O23 - Service: Update Center Service (UpdateCenterService) - NVIDIA - C:\Program Files\NVIDIA Corporation\System Update\UpdateCenterService.exe -- End of file - 6922 bytes
×
×
  • Créer...