Pierre-yves34

Bonjour, J'ai acheté un nouveau PC il y a un semaine. Assez rapidement celui ci a présenté une certaine lenteur au démarrage ainsi qu'au lancement de certaines applications (chrome en particulier). En utilisant CCleaner j'ai remarqué un cache très imposant pour Internet Explorer alors que je ne l'ai jamais utilisé. Après avoir désactivé CCleaner, c'est maintenant le cache de Chrome qui semble se remplir très rapidement. Ceci peut il venir d'une infection ? Je vous remercie d'avance pour votre aide

Effectivement voila le rapport complet de UsbFix : ############################## | UsbFix 7.041 | [suppression] Utilisateur: Pierre-Yves (Administrateur) # GEANT [Hewlett-Packard p6740fr-m] Mis à jour le 24/02/2011 par TeamXscript Lancé à 18:52:30 | 04/03/2011 Site Web: TeamXscript : AD-Remover - FindyKill - UsbFix - SEAF Un fichier non reconnu ? : Upload TeamXscript Contact: TeamXscript.ElDesaparecido@gmail.com CPU: Intel® Core i3 CPU 550 @ 3.20GHz CPU 2: Intel® Core i3 CPU 550 @ 3.20GHz Microsoft Windows 7 Édition Familiale Premium (6.1.7600 64-Bit) # Internet Explorer 8.0.7600.16385 Pare-feu Windows: Activé RAM -> 6007 Mo C:\ (%systemdrive%) -> Disque fixe # 918 Go (868 Go libre(s) - 95%) [OS] # NTFS D:\ -> Disque fixe # 14 Go (2 Go libre(s) - 12%) [HP_RECOVERY] # NTFS E:\ -> CD-ROM J:\ -> Disque fixe # 149 Go (120 Go libre(s) - 80%) [] # FAT32 K:\ -> Disque amovible # 4 Go (2 Go libre(s) - 42%) [PIERRE-YVES] # FAT32 ################## | Éléments infectieux | Supprimé! C:\$RECYCLE.BIN\S-1-5-21-1972945643-1436541299-3377523599-1001 Supprimé! D:\$RECYCLE.BIN\S-1-5-21-1972945643-1436541299-3377523599-1001 ################## | Registre | ################## | Mountpoints2 | ################## | Listing | [04/03/2011 - 18:52:44 | SHD ] C:\$RECYCLE.BIN [02/03/2011 - 18:23:29 | N | 3973] C:\Ad-Report-CLEAN[1].txt [02/03/2011 - 18:21:30 | N | 3440] C:\Ad-Report-SCAN[1].txt [03/03/2011 - 22:05:49 | N | 3992] C:\Ad-Report-SCAN[2].txt [03/03/2011 - 22:08:49 | N | 4057] C:\Ad-Report-SCAN[3].txt [04/03/2011 - 18:51:48 | RASHD ] C:\Autorun.inf [24/07/2009 - 20:22:29 | N | 8192] C:\BOOTSECT.BAK [14/07/2009 - 06:08:56 | SHD ] C:\Documents and Settings [04/03/2011 - 18:34:31 | ASH | 4724158464] C:\hiberfil.sys [27/01/2011 - 16:22:54 | D ] C:\hp [27/01/2011 - 16:01:58 | D ] C:\Intel [01/03/2011 - 19:52:08 | RHD ] C:\MSOCache [27/01/2011 - 16:28:31 | N | 0] C:\OS [04/03/2011 - 18:34:42 | ASH | 6298877952] C:\pagefile.sys [14/07/2009 - 04:20:08 | D ] C:\PerfLogs [02/03/2011 - 14:32:09 | N | 512] C:\PhysicalDisk0_MBR.bin [02/03/2011 - 19:14:26 | D ] C:\Program Files [03/03/2011 - 22:11:36 | D ] C:\Program Files (x86) [02/03/2011 - 19:13:45 | HD ] C:\ProgramData [24/07/2009 - 19:32:39 | SHD ] C:\Recovery [28/02/2011 - 23:04:52 | D ] C:\swsetup [04/03/2011 - 00:50:53 | SHD ] C:\System Volume Information [28/02/2011 - 23:04:47 | D ] C:\SYSTEM.SAV [02/03/2011 - 12:33:30 | N | 62948] C:\TDSSKiller.2.4.20.0_02.03.2011_12.32.51_log.txt [02/03/2011 - 17:53:01 | N | 62948] C:\TDSSKiller.2.4.20.0_02.03.2011_17.52.35_log.txt [07/08/2010 - 02:26:40 | ASH | 47104] C:\Thumbs.db [04/03/2011 - 18:52:44 | D ] C:\UsbFix [04/03/2011 - 18:52:27 | N | 2691] C:\UsbFix.txt [04/03/2011 - 18:51:50 | N | 45395635] C:\UsbFix_Upload_Me_GEANT.zip [28/02/2011 - 22:25:55 | D ] C:\Users [04/03/2011 - 18:34:58 | D ] C:\Windows [04/03/2011 - 18:52:44 | SHD ] D:\$RECYCLE.BIN [04/03/2011 - 18:51:48 | RASHD ] D:\Autorun.inf [28/02/2011 - 22:25:39 | D ] D:\boot [14/07/2009 - 03:39:00 | ASH | 383562] D:\bootmgr [28/02/2011 - 22:25:38 | N | 0] D:\BT_HP.FLG [27/01/2011 - 17:02:26 | N | 494] D:\CSP.DAT [27/01/2011 - 17:19:42 | N | 23542] D:\DeployRp.log [28/02/2011 - 22:25:39 | D ] D:\hp [28/02/2011 - 23:04:44 | N | 8] D:\HP_WSD.dat [28/02/2011 - 22:25:25 | N | 44] D:\language.ini [28/02/2011 - 22:25:39 | D ] D:\preload [28/02/2011 - 22:25:39 | SD ] D:\Recovery [27/01/2011 - 17:19:41 | N | 0] D:\RPCONFIG.LOG [02/03/2011 - 08:56:49 | SHD ] D:\System Volume Information [17/01/2010 - 14:30:16 | N | 4096] J:\._.Trashes [17/01/2010 - 14:30:16 | D ] J:\.Trashes [17/01/2010 - 14:30:16 | D ] J:\.fseventsd [17/01/2010 - 14:30:18 | D ] J:\.Spotlight-V100 [22/05/2009 - 14:30:38 | D ] J:\Photos [28/10/2009 - 18:07:00 | N | 913428480] J:\20061220_234710.iso [11/12/2009 - 16:30:12 | SHD ] J:\$RECYCLE.BIN [10/01/2010 - 14:00:44 | SHD ] J:\System Volume Information [17/01/2010 - 13:39:34 | D ] J:\Recycled [05/02/2010 - 10:47:20 | D ] J:\Thèse [05/02/2010 - 11:01:32 | D ] J:\Books [14/11/2009 - 18:43:14 | D ] J:\Mélange [28/06/2010 - 07:09:36 | D ] J:\AGNES [15/05/2010 - 00:05:12 | D ] J:\Documents Mariage [06/06/2010 - 19:25:02 | D ] J:\Voyage Pologne + Paris [06/07/2010 - 16:46:30 | D ] J:\musique mariage [04/03/2011 - 18:51:50 | RASHD ] J:\Autorun.inf [25/02/2009 - 14:34:32 | D ] K:\Dmailer [25/02/2009 - 14:34:32 | D ] K:\Secure II [26/07/2010 - 09:24:20 | N | 304729] K:\GPY263 1H.mnova [22/10/2010 - 16:30:18 | D ] K:\GPY212 [13/01/2010 - 17:23:38 | D ] K:\biotage [13/01/2010 - 19:46:20 | D ] K:\Pierre-Yves [16/02/2010 - 10:26:12 | D ] K:\RMN et Mod. op [21/04/2010 - 11:31:10 | N | 167936] K:\Abstract WMCM.doc [07/04/2010 - 13:37:24 | N | 217340] K:\Comité de thèse 2ème année.pdf [07/04/2010 - 13:37:40 | N | 582144] K:\Comité de thèse 2ème année.ppt [26/02/2010 - 19:20:50 | N | 744448] K:\Copie de secours de tableau.wbk [15/03/2010 - 20:21:18 | N | 1808896] K:\ébauche mémoire maths.doc [07/04/2010 - 13:39:26 | N | 2480128] K:\Mathieu DUPRE - Présentation comité de thèse.ppt [01/04/2010 - 16:17:10 | N | 599524] K:\pyg2e_1.png [01/04/2010 - 16:20:22 | N | 440453] K:\pyg2e_2.png [01/04/2010 - 16:23:38 | N | 581109] K:\pyg2e_3.png [02/04/2010 - 09:03:48 | N | 802520] K:\pyg2e_4.png [02/04/2010 - 09:04:38 | N | 828928] K:\RX.doc [10/03/2010 - 09:10:28 | N | 71732] K:\RX.pdf [10/05/2008 - 16:34:32 | N | 26418697] K:\Strategic Applications of Organic Named Reactions in Organic Synthesis.pdf [09/11/2010 - 19:07:18 | N | 4] K:\_disk_id.pod [28/04/2010 - 09:31:54 | N | 396377] K:\GPY293.pdf [06/05/2010 - 09:22:28 | N | 807314] K:\GPY290.jpg [27/07/2010 - 09:31:58 | N | 1108274] K:\GPY263 13C.mnova [30/03/2010 - 10:49:04 | N | 1241348] K:\GPY268 1H 13C.mnova [15/12/2010 - 11:20:46 | D ] K:\GPY447 [06/05/2010 - 10:05:50 | N | 211128] K:\Mecanisme amination + RX aminocetosulfoxyde (Me).docx [06/05/2010 - 10:46:26 | D ] K:\Raghavan [10/05/2010 - 16:21:40 | N | 1472512] K:\Echantillons.doc [25/08/2010 - 10:40:52 | D ] K:\Paris août 2010 [15/02/2011 - 14:56:00 | D ] K:\GPY488 [11/06/2010 - 00:22:10 | N | 43520] K:\Cahier journal 11.06.10.doc [31/08/2010 - 08:27:20 | N | 65692] K:\Acte deces.pdf [21/10/2009 - 11:34:24 | N | 63303] K:\Fukuzawa JOC2003.pdf [01/10/2010 - 20:40:00 | D ] K:\Pozostale [01/10/2010 - 20:37:22 | D ] K:\Gotowe [04/03/2011 - 18:51:50 | RASHD ] K:\Autorun.inf [09/11/2010 - 18:26:54 | D ] K:\Photos manu [01/07/2010 - 18:31:50 | N | 79176] K:\RIB.pdf [21/10/2010 - 23:51:32 | N | 310784] K:\abstract GSO.doc [20/10/2003 - 18:23:00 | N | 166912] K:\P-Y GEANT abstract GSO.doc [23/11/2010 - 17:56:22 | N | 166400] K:\Copie de secours de abstract.GSO.wbk [07/11/2010 - 21:34:24 | N | 452658] K:\HPLC chirale.docx [10/11/2010 - 09:05:16 | N | 2551808] K:\HPLC chirale.doc [09/11/2010 - 16:40:22 | N | 373760] K:\tableau récapitulatif CO2 et MeI.doc [10/11/2010 - 16:25:02 | N | 224256] K:\Réduction du bromocetosulfoxyde.doc [24/11/2010 - 14:53:26 | N | 3621376] K:\Présentation GSO.ppt [17/02/2011 - 09:31:40 | D ] K:\GPY496 [17/02/2011 - 14:11:12 | D ] K:\GPY497 [09/08/2010 - 15:40:14 | D ] K:\Publi [19/11/2010 - 12:33:16 | N | 1127248] K:\Synthèse énantiosélective d’a-aminocétones à partir.pptx [05/01/2011 - 23:53:22 | N | 723833] K:\o201001403e_kap2.pdf [23/11/2010 - 08:56:10 | D ] K:\addition enolates sur epoxydes [01/03/2011 - 18:05:52 | D ] K:\MestReNova [01/03/2011 - 18:06:04 | D ] K:\endnote X [17/02/2011 - 09:42:20 | N | 309217] K:\GPY496 totale 400MHz.pdf [21/02/2011 - 10:50:48 | D ] K:\GPY498 [17/02/2011 - 17:30:58 | N | 721408] K:\Attribution position PMB.doc [23/02/2011 - 09:22:24 | D ] K:\GPY500 [28/02/2011 - 17:19:20 | D ] K:\GPY503 [28/02/2011 - 17:30:50 | N | 231102] K:\GPY503 F3-4-5 totale.pdf [15/11/2010 - 17:50:34 | N | 2112512] K:\Synthèse énantiosélective d’a-aminocétones à partir.ppt ################## | Vaccin | C:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) D:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) J:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) K:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) ################## | E.O.F | Et celui de ZHPfix : Rapport de ZHPFix 1.12.3227 par Nicolas Coolman, Update du 16/12/2010 Fichier d'export Registre : C:\ZHPExportRegistry-3-4-2011-11-54-51 PM.txt Run by Pierre-Yves at 3/4/2011 11:54:51 PM Windows 7 Home Premium Edition, 64-bit (Build 7600) Web site : ZHPFix Fix de rapport Contact : nicolascoolman@yahoo.fr ========== Elément(s) de donnée du Registre ========== [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified => Donnée supprimée avec succès R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Sign In => Donnée supprimée avec succès R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Sign In => Donnée supprimée avec succès ========== Récapitulatif ========== 3 : Elément(s) de donnée du Registre End of the scan Concernant mes redirections plus de problème ce soir. En espérant que cela dure...

Voila pour le ZHPFix : Rapport de ZHPFix 1.12.3227 par Nicolas Coolman, Update du 16/12/2010 Fichier d'export Registre : Run by Pierre-Yves at 3/4/2011 7:03:17 PM Windows 7 Home Premium Edition, 64-bit (Build 7600) Web site : ZHPFix Fix de rapport Contact : nicolascoolman@yahoo.fr ========== Clé(s) du Registre ========== O42 - Logiciel: Bounce Symphony - (.WildTangent.) [HKLM] -- WT087330 => Désinstallation logicielle annulée par l'utilisateur ou désinstallation partielle! O42 - Logiciel: FATE - (.WildTangent.) [HKLM] -- WT087361 => Désinstallation logicielle annulée par l'utilisateur ou désinstallation partielle! [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\My HP Game Console] => Clé supprimée avec succès O42 - Logiciel: John Deere Drive Green - (.WildTangent.) [HKLM] -- WT087380 => Désinstallation logicielle annulée par l'utilisateur ou désinstallation partielle! O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM] -- WT087396 => Désinstallation logicielle annulée par l'utilisateur ou désinstallation partielle! O42 - Logiciel: Slingo Deluxe - (.WildTangent.) [HKLM] -- WT087510 => Désinstallation logicielle annulée par l'utilisateur ou désinstallation partielle! O23 - Service: (pdfcDispatcher) - Clé orpheline => Clé supprimée avec succès HKCU\Software\5NZQ29B3L2 => Clé supprimée avec succès O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - {searchTerms} - Bing => Clé absente ========== Valeur(s) du Registre ========== O4 - HKCU\..\Run: [WMSF] rundll32 "C:\Users\Pierre-Yves\AppData\Roaming\mfc40ur.dll (.not file.) => Valeur supprimée avec succès O4 - HKUS\S-1-5-21-1972945643-1436541299-3377523599-1001\..\Run: [WMSF] rundll32 "C:\Users\Pierre-Yves\AppData\Roaming\mfc40ur.dll (.not file.) => Valeur absente ========== Elément(s) de donnée du Registre ========== O69 - SBI: SearchScopes [HKCU] {2fa28606-de77-4029-af96-b231e3b8f827} - (Ask.com) - http://eu.ask.com/we...&l=dis&o=HPDTDF => Donnée remplacée avec succès O69 - SBI: SearchScopes [HKCU] {b7fca997-d0fb-4fe0-8afd-255e89cf9671} - (Yahoo) - {searchTerms} - Yahoo! France Résultats de recherche => Donnée remplacée avec succès O69 - SBI: SearchScopes [HKCU] {d43b3890-80c7-4010-a95d-1e77b5924dc3} - (Wikipedia) - http://fr.wikipedia....h={searchTerms} => Donnée remplacée avec succès O69 - SBI: SearchScopes [HKCU] {d944bb61-2e34-4dbf-a683-47e505c587dc} - (eBay) - searchTerms sur eBay - Achetez, vendez! => Donnée remplacée avec succès O69 - SBI: SearchScopes [HKCU] {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} - (Bing) - {searchTerms} - Bing => Donnée remplacée avec succès ========== Dossier(s) ========== C:\Documents and Settings\Pierre-Yves\Application Data\Mozilla\Firefox\Profiles\zpkehr6l.default\extensions\{a6ca9b3b-5e52-4f47-85d8-cca35bb57596} => Supprimé et mis en quarantaine C:\ProgramData\PDFC => Supprimé et mis en quarantaine C:\ProgramData\WildTangent => Supprimé et mis en quarantaine ========== Fichier(s) ========== c:\users\pierre-yves\appdata\roaming\mfc40ur.dll => Supprimé et mis en quarantaine c:\users\pierre~1\appdata\local\temp\vxb.exe (.not file.) => Fichier absent ========== Logiciel(s) ========== O42 - Logiciel: HP Game Console - (.WildTangent.) [HKLM] -- My HP Game Console => Logiciel supprimé avec succès O42 - Logiciel: MediaGet 1.12 - (.MediaGet.) [HKLM] -- {5C9B7D10-4B6B-4E64-8C04-F50F1508C1E8}_is1 => Logiciel supprimé avec succès ========== Tache planifiée ========== Task : {22116563-108C-42c0-A7CE-60161B75E508} => Tâche supprimée avec succès Task : {22116563-108C-42c0-A7CE-60161B75E508} => Tâche supprimée avec succès ========== Récapitulatif ========== 9 : Clé(s) du Registre 2 : Valeur(s) du Registre 5 : Elément(s) de donnée du Registre 3 : Dossier(s) 2 : Fichier(s) 2 : Logiciel(s) 2 : Tache planifiée End of the scan TDSSkiller n'a rien trouvé, voila son rapport : 2011/03/04 19:07:48.0235 2260 TDSS rootkit removing tool 2.4.20.0 Mar 2 2011 10:44:30 2011/03/04 19:07:48.0251 2260 ================================================================================ 2011/03/04 19:07:48.0251 2260 SystemInfo: 2011/03/04 19:07:48.0251 2260 2011/03/04 19:07:48.0251 2260 OS Version: 6.1.7600 ServicePack: 0.0 2011/03/04 19:07:48.0251 2260 Product type: Workstation 2011/03/04 19:07:48.0251 2260 ComputerName: GEANT 2011/03/04 19:07:48.0251 2260 UserName: Pierre-Yves 2011/03/04 19:07:48.0251 2260 Windows directory: C:\Windows 2011/03/04 19:07:48.0251 2260 System windows directory: C:\Windows 2011/03/04 19:07:48.0251 2260 Running under WOW64 2011/03/04 19:07:48.0251 2260 Processor architecture: Intel x64 2011/03/04 19:07:48.0251 2260 Number of processors: 4 2011/03/04 19:07:48.0251 2260 Page size: 0x1000 2011/03/04 19:07:48.0251 2260 Boot type: Normal boot 2011/03/04 19:07:48.0251 2260 ================================================================================ 2011/03/04 19:07:48.0453 2260 Initialize success 2011/03/04 19:07:53.0227 3348 ================================================================================ 2011/03/04 19:07:53.0227 3348 Scan started 2011/03/04 19:07:53.0227 3348 Mode: Manual; 2011/03/04 19:07:53.0227 3348 ================================================================================ 2011/03/04 19:07:53.0789 3348 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys 2011/03/04 19:07:53.0851 3348 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys 2011/03/04 19:07:53.0882 3348 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys 2011/03/04 19:07:53.0914 3348 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys 2011/03/04 19:07:53.0929 3348 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys 2011/03/04 19:07:53.0945 3348 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys 2011/03/04 19:07:53.0976 3348 AFD (b9384e03479d2506bc924c16a3db87bc) C:\Windows\system32\drivers\afd.sys 2011/03/04 19:07:53.0992 3348 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys 2011/03/04 19:07:54.0023 3348 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys 2011/03/04 19:07:54.0054 3348 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys 2011/03/04 19:07:54.0116 3348 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys 2011/03/04 19:07:54.0148 3348 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys 2011/03/04 19:07:54.0163 3348 amdsata (ab3166c09438a161fbde13099a72e0af) C:\Windows\system32\DRIVERS\amdsata.sys 2011/03/04 19:07:54.0194 3348 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys 2011/03/04 19:07:54.0226 3348 amdxata (5118dcd2065d8c8d752ad5ec0b2d6aa6) C:\Windows\system32\DRIVERS\amdxata.sys 2011/03/04 19:07:54.0257 3348 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys 2011/03/04 19:07:54.0272 3348 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys 2011/03/04 19:07:54.0288 3348 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys 2011/03/04 19:07:54.0366 3348 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys 2011/03/04 19:07:54.0397 3348 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys 2011/03/04 19:07:54.0460 3348 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys 2011/03/04 19:07:54.0475 3348 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys 2011/03/04 19:07:54.0522 3348 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys 2011/03/04 19:07:54.0616 3348 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys 2011/03/04 19:07:54.0631 3348 bowser (91ce0d3dc57dd377e690a2d324022b08) C:\Windows\system32\DRIVERS\bowser.sys 2011/03/04 19:07:54.0647 3348 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys 2011/03/04 19:07:54.0662 3348 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys 2011/03/04 19:07:54.0694 3348 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys 2011/03/04 19:07:54.0709 3348 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys 2011/03/04 19:07:54.0725 3348 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys 2011/03/04 19:07:54.0740 3348 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys 2011/03/04 19:07:54.0756 3348 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys 2011/03/04 19:07:54.0865 3348 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys 2011/03/04 19:07:54.0959 3348 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys 2011/03/04 19:07:54.0990 3348 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys 2011/03/04 19:07:55.0037 3348 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys 2011/03/04 19:07:55.0130 3348 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys 2011/03/04 19:07:55.0162 3348 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys 2011/03/04 19:07:55.0208 3348 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys 2011/03/04 19:07:55.0224 3348 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys 2011/03/04 19:07:55.0255 3348 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys 2011/03/04 19:07:55.0271 3348 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys 2011/03/04 19:07:55.0349 3348 DfsC (3f1dc527070acb87e40afe46ef6da749) C:\Windows\system32\Drivers\dfsc.sys 2011/03/04 19:07:55.0396 3348 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys 2011/03/04 19:07:55.0427 3348 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys 2011/03/04 19:07:55.0474 3348 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys 2011/03/04 19:07:55.0520 3348 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys 2011/03/04 19:07:55.0614 3348 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys 2011/03/04 19:07:55.0708 3348 eeCtrl (066108ae4c35835081598827a1a7d08d) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys 2011/03/04 19:07:55.0832 3348 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys 2011/03/04 19:07:55.0879 3348 EraserUtilRebootDrv (12866876e3851f1e5d462b2a83e25578) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 2011/03/04 19:07:55.0895 3348 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys 2011/03/04 19:07:55.0942 3348 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys 2011/03/04 19:07:56.0035 3348 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys 2011/03/04 19:07:56.0066 3348 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys 2011/03/04 19:07:56.0098 3348 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys 2011/03/04 19:07:56.0113 3348 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys 2011/03/04 19:07:56.0129 3348 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys 2011/03/04 19:07:56.0160 3348 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys 2011/03/04 19:07:56.0176 3348 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys 2011/03/04 19:07:56.0254 3348 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys 2011/03/04 19:07:56.0285 3348 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys 2011/03/04 19:07:56.0316 3348 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys 2011/03/04 19:07:56.0332 3348 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys 2011/03/04 19:07:56.0378 3348 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys 2011/03/04 19:07:56.0410 3348 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys 2011/03/04 19:07:56.0488 3348 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys 2011/03/04 19:07:56.0519 3348 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys 2011/03/04 19:07:56.0534 3348 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys 2011/03/04 19:07:56.0566 3348 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys 2011/03/04 19:07:56.0612 3348 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys 2011/03/04 19:07:56.0722 3348 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys 2011/03/04 19:07:56.0753 3348 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys 2011/03/04 19:07:56.0768 3348 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys 2011/03/04 19:07:56.0800 3348 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys 2011/03/04 19:07:56.0831 3348 iaStor (abbf174cb394f5c437410a788b7e404a) C:\Windows\system32\DRIVERS\iaStor.sys 2011/03/04 19:07:56.0940 3348 iaStorV (513dc087cfed7d2bb82f005385d3531f) C:\Windows\system32\DRIVERS\iaStorV.sys 2011/03/04 19:07:56.0956 3348 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys 2011/03/04 19:07:57.0034 3348 IntcAzAudAddService (3c4b4ee54febb09f7e9f58776de96dca) C:\Windows\system32\drivers\RTKVHD64.sys 2011/03/04 19:07:57.0065 3348 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys 2011/03/04 19:07:57.0143 3348 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys 2011/03/04 19:07:57.0174 3348 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys 2011/03/04 19:07:57.0190 3348 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys 2011/03/04 19:07:57.0205 3348 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys 2011/03/04 19:07:57.0236 3348 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys 2011/03/04 19:07:57.0252 3348 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys 2011/03/04 19:07:57.0283 3348 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys 2011/03/04 19:07:57.0361 3348 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys 2011/03/04 19:07:57.0377 3348 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys 2011/03/04 19:07:57.0392 3348 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys 2011/03/04 19:07:57.0424 3348 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys 2011/03/04 19:07:57.0439 3348 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys 2011/03/04 19:07:57.0502 3348 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys 2011/03/04 19:07:57.0611 3348 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys 2011/03/04 19:07:57.0626 3348 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys 2011/03/04 19:07:57.0642 3348 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys 2011/03/04 19:07:57.0658 3348 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys 2011/03/04 19:07:57.0689 3348 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys 2011/03/04 19:07:57.0689 3348 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys 2011/03/04 19:07:57.0704 3348 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys 2011/03/04 19:07:57.0720 3348 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys 2011/03/04 19:07:57.0751 3348 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys 2011/03/04 19:07:57.0782 3348 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys 2011/03/04 19:07:57.0814 3348 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys 2011/03/04 19:07:57.0907 3348 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys 2011/03/04 19:07:57.0923 3348 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys 2011/03/04 19:07:57.0970 3348 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys 2011/03/04 19:07:57.0985 3348 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys 2011/03/04 19:07:58.0001 3348 mrxsmb (767a4c3bcf9410c286ced15a2db17108) C:\Windows\system32\DRIVERS\mrxsmb.sys 2011/03/04 19:07:58.0032 3348 mrxsmb10 (920ee0ff995fcfdeb08c41605a959e1c) C:\Windows\system32\DRIVERS\mrxsmb10.sys 2011/03/04 19:07:58.0048 3348 mrxsmb20 (740d7ea9d72c981510a5292cf6adc941) C:\Windows\system32\DRIVERS\mrxsmb20.sys 2011/03/04 19:07:58.0079 3348 msahci (2ba4ff3d5eb68587dd662a896f649c7d) C:\Windows\system32\DRIVERS\msahci.sys 2011/03/04 19:07:58.0157 3348 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys 2011/03/04 19:07:58.0204 3348 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys 2011/03/04 19:07:58.0219 3348 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys 2011/03/04 19:07:58.0250 3348 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys 2011/03/04 19:07:58.0266 3348 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys 2011/03/04 19:07:58.0282 3348 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys 2011/03/04 19:07:58.0297 3348 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys 2011/03/04 19:07:58.0313 3348 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys 2011/03/04 19:07:58.0328 3348 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys 2011/03/04 19:07:58.0344 3348 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys 2011/03/04 19:07:58.0360 3348 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys 2011/03/04 19:07:58.0360 3348 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys 2011/03/04 19:07:58.0484 3348 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys 2011/03/04 19:07:58.0609 3348 NAVENG (7be93dbb02b66e72872ff76d8a92e662) C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20110304.002\ENG64.SYS 2011/03/04 19:07:58.0672 3348 NAVEX15 (be99edbba322ca59b3f2fe17b9bf987a) C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20110304.002\EX64.SYS 2011/03/04 19:07:58.0812 3348 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys 2011/03/04 19:07:58.0859 3348 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys 2011/03/04 19:07:58.0874 3348 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys 2011/03/04 19:07:58.0906 3348 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys 2011/03/04 19:07:58.0921 3348 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys 2011/03/04 19:07:58.0937 3348 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys 2011/03/04 19:07:58.0952 3348 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys 2011/03/04 19:07:58.0968 3348 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys 2011/03/04 19:07:59.0062 3348 netr28x (1982b291df9833fb3adc397ebd310a18) C:\Windows\system32\DRIVERS\netr28x.sys 2011/03/04 19:07:59.0108 3348 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys 2011/03/04 19:07:59.0155 3348 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys 2011/03/04 19:07:59.0171 3348 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys 2011/03/04 19:07:59.0218 3348 Ntfs (1ad8fef2d6ac7116b68b887a9782fd33) C:\Windows\system32\drivers\Ntfs.sys 2011/03/04 19:07:59.0327 3348 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys 2011/03/04 19:07:59.0374 3348 NVHDA (e20abd5b229760158f753ca90b97e090) C:\Windows\system32\drivers\nvhda64v.sys 2011/03/04 19:07:59.0561 3348 nvlddmkm (2f1bc5c1320b07a7480240c4ca6f6387) C:\Windows\system32\DRIVERS\nvlddmkm.sys 2011/03/04 19:07:59.0686 3348 nvraid (deab10231cbdb0881fc25428ebe11506) C:\Windows\system32\DRIVERS\nvraid.sys 2011/03/04 19:07:59.0701 3348 nvstor (0af7b8136794e23e87be138992880e64) C:\Windows\system32\DRIVERS\nvstor.sys 2011/03/04 19:07:59.0732 3348 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys 2011/03/04 19:07:59.0748 3348 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys 2011/03/04 19:07:59.0795 3348 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys 2011/03/04 19:07:59.0810 3348 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys 2011/03/04 19:07:59.0888 3348 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys 2011/03/04 19:07:59.0920 3348 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys 2011/03/04 19:07:59.0951 3348 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys 2011/03/04 19:07:59.0966 3348 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys 2011/03/04 19:07:59.0982 3348 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys 2011/03/04 19:08:00.0060 3348 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys 2011/03/04 19:08:00.0122 3348 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys 2011/03/04 19:08:00.0200 3348 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys 2011/03/04 19:08:00.0232 3348 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys 2011/03/04 19:08:00.0278 3348 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys 2011/03/04 19:08:00.0341 3348 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys 2011/03/04 19:08:00.0356 3348 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys 2011/03/04 19:08:00.0403 3348 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys 2011/03/04 19:08:00.0434 3348 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys 2011/03/04 19:08:00.0450 3348 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys 2011/03/04 19:08:00.0466 3348 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys 2011/03/04 19:08:00.0466 3348 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys 2011/03/04 19:08:00.0497 3348 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys 2011/03/04 19:08:00.0528 3348 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys 2011/03/04 19:08:00.0606 3348 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys 2011/03/04 19:08:00.0622 3348 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys 2011/03/04 19:08:00.0637 3348 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys 2011/03/04 19:08:00.0653 3348 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys 2011/03/04 19:08:00.0700 3348 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys 2011/03/04 19:08:00.0731 3348 RTL8167 (b15c021c2c9bb217a799d9532e8f04d4) C:\Windows\system32\DRIVERS\Rt64win7.sys 2011/03/04 19:08:00.0762 3348 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys 2011/03/04 19:08:00.0778 3348 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys 2011/03/04 19:08:00.0856 3348 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys 2011/03/04 19:08:00.0902 3348 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys 2011/03/04 19:08:00.0918 3348 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys 2011/03/04 19:08:00.0934 3348 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys 2011/03/04 19:08:00.0980 3348 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys 2011/03/04 19:08:01.0012 3348 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys 2011/03/04 19:08:01.0074 3348 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys 2011/03/04 19:08:01.0105 3348 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys 2011/03/04 19:08:01.0121 3348 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys 2011/03/04 19:08:01.0136 3348 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys 2011/03/04 19:08:01.0152 3348 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys 2011/03/04 19:08:01.0199 3348 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys 2011/03/04 19:08:01.0230 3348 SRTSP (32900ac9cfdc578531279886ca16a4df) C:\Windows\system32\Drivers\SRTSP64.SYS 2011/03/04 19:08:01.0261 3348 SRTSPL (8929566d1f14685fd78eaf25bee3ecc7) C:\Windows\system32\Drivers\SRTSPL64.SYS 2011/03/04 19:08:01.0277 3348 SRTSPX (cb2fdf47ee67f8cca5362ed9b94fe955) C:\Windows\system32\Drivers\SRTSPX64.SYS 2011/03/04 19:08:01.0355 3348 srv (de6f5658da951c4bc8e498570b5b0d5f) C:\Windows\system32\DRIVERS\srv.sys 2011/03/04 19:08:01.0386 3348 srv2 (4d33d59c0b930c523d29f9bd40cda9d2) C:\Windows\system32\DRIVERS\srv2.sys 2011/03/04 19:08:01.0417 3348 srvnet (5a663fd67049267bc5c3f3279e631ffb) C:\Windows\system32\DRIVERS\srvnet.sys 2011/03/04 19:08:01.0480 3348 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys 2011/03/04 19:08:01.0542 3348 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys 2011/03/04 19:08:01.0604 3348 SymEvent (7e4d281982e19abd06728c7ee9ac40a8) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS 2011/03/04 19:08:01.0682 3348 Tcpip (90a2d722cf64d911879d6c4a4f802a4d) C:\Windows\system32\drivers\tcpip.sys 2011/03/04 19:08:01.0776 3348 TCPIP6 (90a2d722cf64d911879d6c4a4f802a4d) C:\Windows\system32\DRIVERS\tcpip.sys 2011/03/04 19:08:01.0807 3348 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys 2011/03/04 19:08:01.0838 3348 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys 2011/03/04 19:08:01.0854 3348 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys 2011/03/04 19:08:01.0870 3348 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys 2011/03/04 19:08:01.0901 3348 Teefer2 (13657dc475de564247745bf4da23207c) C:\Windows\system32\DRIVERS\teefer2.sys 2011/03/04 19:08:01.0963 3348 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys 2011/03/04 19:08:02.0010 3348 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys 2011/03/04 19:08:02.0026 3348 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys 2011/03/04 19:08:02.0041 3348 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys 2011/03/04 19:08:02.0057 3348 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys 2011/03/04 19:08:02.0072 3348 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys 2011/03/04 19:08:02.0088 3348 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys 2011/03/04 19:08:02.0104 3348 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys 2011/03/04 19:08:02.0119 3348 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys 2011/03/04 19:08:02.0135 3348 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys 2011/03/04 19:08:02.0166 3348 usbehci (df9f9afc9aaabd8ed47975d44e38169a) C:\Windows\system32\DRIVERS\usbehci.sys 2011/03/04 19:08:02.0197 3348 usbhub (372a91bc3c6603080a793880b0873785) C:\Windows\system32\DRIVERS\usbhub.sys 2011/03/04 19:08:02.0228 3348 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys 2011/03/04 19:08:02.0291 3348 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys 2011/03/04 19:08:02.0338 3348 USBSTOR (a60e7e0fa88ff067d049d525547cd5e9) C:\Windows\system32\DRIVERS\USBSTOR.SYS 2011/03/04 19:08:02.0353 3348 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys 2011/03/04 19:08:02.0384 3348 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys 2011/03/04 19:08:02.0400 3348 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys 2011/03/04 19:08:02.0416 3348 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys 2011/03/04 19:08:02.0431 3348 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys 2011/03/04 19:08:02.0447 3348 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys 2011/03/04 19:08:02.0478 3348 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys 2011/03/04 19:08:02.0556 3348 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys 2011/03/04 19:08:02.0572 3348 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys 2011/03/04 19:08:02.0603 3348 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys 2011/03/04 19:08:02.0618 3348 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys 2011/03/04 19:08:02.0634 3348 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys 2011/03/04 19:08:02.0665 3348 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys 2011/03/04 19:08:02.0743 3348 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys 2011/03/04 19:08:02.0759 3348 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys 2011/03/04 19:08:02.0821 3348 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys 2011/03/04 19:08:02.0837 3348 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys 2011/03/04 19:08:02.0868 3348 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys 2011/03/04 19:08:02.0884 3348 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys 2011/03/04 19:08:02.0915 3348 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys 2011/03/04 19:08:02.0962 3348 WPS (6cab753b203f39b4ce05ff10013de2ef) C:\Windows\system32\drivers\wpsdrvnt.sys 2011/03/04 19:08:03.0055 3348 WpsHelper (d9b5a13804b7d97770c42da484a9d86e) C:\Windows\system32\drivers\WpsHelper.sys 2011/03/04 19:08:03.0086 3348 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys 2011/03/04 19:08:03.0133 3348 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys 2011/03/04 19:08:03.0149 3348 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys 2011/03/04 19:08:03.0430 3348 ================================================================================ 2011/03/04 19:08:03.0430 3348 Scan finished 2011/03/04 19:08:03.0430 3348 ================================================================================

Bonsoir, Je viens de faire UsbFix, Suppression, voici le rapport : ################## | Registre | ################## | Mountpoints2 | ################## | Listing | [04/03/2011 - 18:52:44 | SHD ] C:\$RECYCLE.BIN [02/03/2011 - 18:23:29 | N | 3973] C:\Ad-Report-CLEAN[1].txt [02/03/2011 - 18:21:30 | N | 3440] C:\Ad-Report-SCAN[1].txt [03/03/2011 - 22:05:49 | N | 3992] C:\Ad-Report-SCAN[2].txt [03/03/2011 - 22:08:49 | N | 4057] C:\Ad-Report-SCAN[3].txt [04/03/2011 - 18:51:48 | RASHD ] C:\Autorun.inf [24/07/2009 - 20:22:29 | N | 8192] C:\BOOTSECT.BAK [14/07/2009 - 06:08:56 | SHD ] C:\Documents and Settings [04/03/2011 - 18:34:31 | ASH | 4724158464] C:\hiberfil.sys [27/01/2011 - 16:22:54 | D ] C:\hp [27/01/2011 - 16:01:58 | D ] C:\Intel [01/03/2011 - 19:52:08 | RHD ] C:\MSOCache [27/01/2011 - 16:28:31 | N | 0] C:\OS [04/03/2011 - 18:34:42 | ASH | 6298877952] C:\pagefile.sys [14/07/2009 - 04:20:08 | D ] C:\PerfLogs [02/03/2011 - 14:32:09 | N | 512] C:\PhysicalDisk0_MBR.bin [02/03/2011 - 19:14:26 | D ] C:\Program Files [03/03/2011 - 22:11:36 | D ] C:\Program Files (x86) [02/03/2011 - 19:13:45 | HD ] C:\ProgramData [24/07/2009 - 19:32:39 | SHD ] C:\Recovery [28/02/2011 - 23:04:52 | D ] C:\swsetup [04/03/2011 - 00:50:53 | SHD ] C:\System Volume Information [28/02/2011 - 23:04:47 | D ] C:\SYSTEM.SAV [02/03/2011 - 12:33:30 | N | 62948] C:\TDSSKiller.2.4.20.0_02.03.2011_12.32.51_log.txt [02/03/2011 - 17:53:01 | N | 62948] C:\TDSSKiller.2.4.20.0_02.03.2011_17.52.35_log.txt [07/08/2010 - 02:26:40 | ASH | 47104] C:\Thumbs.db [04/03/2011 - 18:52:44 | D ] C:\UsbFix [04/03/2011 - 18:52:27 | N | 2691] C:\UsbFix.txt [04/03/2011 - 18:51:50 | N | 45395635] C:\UsbFix_Upload_Me_GEANT.zip [28/02/2011 - 22:25:55 | D ] C:\Users [04/03/2011 - 18:34:58 | D ] C:\Windows [04/03/2011 - 18:52:44 | SHD ] D:\$RECYCLE.BIN [04/03/2011 - 18:51:48 | RASHD ] D:\Autorun.inf [28/02/2011 - 22:25:39 | D ] D:\boot [14/07/2009 - 03:39:00 | ASH | 383562] D:\bootmgr [28/02/2011 - 22:25:38 | N | 0] D:\BT_HP.FLG [27/01/2011 - 17:02:26 | N | 494] D:\CSP.DAT [27/01/2011 - 17:19:42 | N | 23542] D:\DeployRp.log [28/02/2011 - 22:25:39 | D ] D:\hp [28/02/2011 - 23:04:44 | N | 8] D:\HP_WSD.dat [28/02/2011 - 22:25:25 | N | 44] D:\language.ini [28/02/2011 - 22:25:39 | D ] D:\preload [28/02/2011 - 22:25:39 | SD ] D:\Recovery [27/01/2011 - 17:19:41 | N | 0] D:\RPCONFIG.LOG [02/03/2011 - 08:56:49 | SHD ] D:\System Volume Information [17/01/2010 - 14:30:16 | N | 4096] J:\._.Trashes [17/01/2010 - 14:30:16 | D ] J:\.Trashes [17/01/2010 - 14:30:16 | D ] J:\.fseventsd [17/01/2010 - 14:30:18 | D ] J:\.Spotlight-V100 [22/05/2009 - 14:30:38 | D ] J:\Photos [28/10/2009 - 18:07:00 | N | 913428480] J:\20061220_234710.iso [11/12/2009 - 16:30:12 | SHD ] J:\$RECYCLE.BIN [10/01/2010 - 14:00:44 | SHD ] J:\System Volume Information [17/01/2010 - 13:39:34 | D ] J:\Recycled [05/02/2010 - 10:47:20 | D ] J:\Thèse [05/02/2010 - 11:01:32 | D ] J:\Books [14/11/2009 - 18:43:14 | D ] J:\Mélange [28/06/2010 - 07:09:36 | D ] J:\AGNES [15/05/2010 - 00:05:12 | D ] J:\Documents Mariage [06/06/2010 - 19:25:02 | D ] J:\Voyage Pologne + Paris [06/07/2010 - 16:46:30 | D ] J:\musique mariage [04/03/2011 - 18:51:50 | RASHD ] J:\Autorun.inf [25/02/2009 - 14:34:32 | D ] K:\Dmailer [25/02/2009 - 14:34:32 | D ] K:\Secure II [26/07/2010 - 09:24:20 | N | 304729] K:\GPY263 1H.mnova [22/10/2010 - 16:30:18 | D ] K:\GPY212 [13/01/2010 - 17:23:38 | D ] K:\biotage [13/01/2010 - 19:46:20 | D ] K:\Pierre-Yves [16/02/2010 - 10:26:12 | D ] K:\RMN et Mod. op [21/04/2010 - 11:31:10 | N | 167936] K:\Abstract WMCM.doc [07/04/2010 - 13:37:24 | N | 217340] K:\Comité de thèse 2ème année.pdf [07/04/2010 - 13:37:40 | N | 582144] K:\Comité de thèse 2ème année.ppt [26/02/2010 - 19:20:50 | N | 744448] K:\Copie de secours de tableau.wbk [15/03/2010 - 20:21:18 | N | 1808896] K:\ébauche mémoire maths.doc [07/04/2010 - 13:39:26 | N | 2480128] K:\Mathieu DUPRE - Présentation comité de thèse.ppt [01/04/2010 - 16:17:10 | N | 599524] K:\pyg2e_1.png [01/04/2010 - 16:20:22 | N | 440453] K:\pyg2e_2.png [01/04/2010 - 16:23:38 | N | 581109] K:\pyg2e_3.png [02/04/2010 - 09:03:48 | N | 802520] K:\pyg2e_4.png [02/04/2010 - 09:04:38 | N | 828928] K:\RX.doc [10/03/2010 - 09:10:28 | N | 71732] K:\RX.pdf [10/05/2008 - 16:34:32 | N | 26418697] K:\Strategic Applications of Organic Named Reactions in Organic Synthesis.pdf [09/11/2010 - 19:07:18 | N | 4] K:\_disk_id.pod [28/04/2010 - 09:31:54 | N | 396377] K:\GPY293.pdf [06/05/2010 - 09:22:28 | N | 807314] K:\GPY290.jpg [27/07/2010 - 09:31:58 | N | 1108274] K:\GPY263 13C.mnova [30/03/2010 - 10:49:04 | N | 1241348] K:\GPY268 1H 13C.mnova [15/12/2010 - 11:20:46 | D ] K:\GPY447 [06/05/2010 - 10:05:50 | N | 211128] K:\Mecanisme amination + RX aminocetosulfoxyde (Me).docx [06/05/2010 - 10:46:26 | D ] K:\Raghavan [10/05/2010 - 16:21:40 | N | 1472512] K:\Echantillons.doc [25/08/2010 - 10:40:52 | D ] K:\Paris août 2010 [15/02/2011 - 14:56:00 | D ] K:\GPY488 [11/06/2010 - 00:22:10 | N | 43520] K:\Cahier journal 11.06.10.doc [31/08/2010 - 08:27:20 | N | 65692] K:\Acte deces.pdf [21/10/2009 - 11:34:24 | N | 63303] K:\Fukuzawa JOC2003.pdf [01/10/2010 - 20:40:00 | D ] K:\Pozostale [01/10/2010 - 20:37:22 | D ] K:\Gotowe [04/03/2011 - 18:51:50 | RASHD ] K:\Autorun.inf [09/11/2010 - 18:26:54 | D ] K:\Photos manu [01/07/2010 - 18:31:50 | N | 79176] K:\RIB.pdf [21/10/2010 - 23:51:32 | N | 310784] K:\abstract GSO.doc [20/10/2003 - 18:23:00 | N | 166912] K:\P-Y GEANT abstract GSO.doc [23/11/2010 - 17:56:22 | N | 166400] K:\Copie de secours de abstract.GSO.wbk [07/11/2010 - 21:34:24 | N | 452658] K:\HPLC chirale.docx [10/11/2010 - 09:05:16 | N | 2551808] K:\HPLC chirale.doc [09/11/2010 - 16:40:22 | N | 373760] K:\tableau récapitulatif CO2 et MeI.doc [10/11/2010 - 16:25:02 | N | 224256] K:\Réduction du bromocetosulfoxyde.doc [24/11/2010 - 14:53:26 | N | 3621376] K:\Présentation GSO.ppt [17/02/2011 - 09:31:40 | D ] K:\GPY496 [17/02/2011 - 14:11:12 | D ] K:\GPY497 [09/08/2010 - 15:40:14 | D ] K:\Publi [19/11/2010 - 12:33:16 | N | 1127248] K:\Synthèse énantiosélective d’a-aminocétones à partir.pptx [05/01/2011 - 23:53:22 | N | 723833] K:\o201001403e_kap2.pdf [23/11/2010 - 08:56:10 | D ] K:\addition enolates sur epoxydes [01/03/2011 - 18:05:52 | D ] K:\MestReNova [01/03/2011 - 18:06:04 | D ] K:\endnote X [17/02/2011 - 09:42:20 | N | 309217] K:\GPY496 totale 400MHz.pdf [21/02/2011 - 10:50:48 | D ] K:\GPY498 [17/02/2011 - 17:30:58 | N | 721408] K:\Attribution position PMB.doc [23/02/2011 - 09:22:24 | D ] K:\GPY500 [28/02/2011 - 17:19:20 | D ] K:\GPY503 [28/02/2011 - 17:30:50 | N | 231102] K:\GPY503 F3-4-5 totale.pdf [15/11/2010 - 17:50:34 | N | 2112512] K:\Synthèse énantiosélective d’a-aminocétones à partir.ppt ################## | Vaccin | C:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) D:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) J:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) K:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) ################## | E.O.F | Je vais faire ZHPFix tout de suite

Et voila le rapport de UsBFix : ############################## | UsbFix 7.041 | [Recherche] Utilisateur: Pierre-Yves (Administrateur) # GEANT [Hewlett-Packard p6740fr-m] Mis à jour le 24/02/2011 par TeamXscript Lancé à 00:45:37 | 04/03/2011 Site Web: TeamXscript : AD-Remover - FindyKill - UsbFix - SEAF Un fichier non reconnu ? : Upload TeamXscript Contact: TeamXscript.ElDesaparecido@gmail.com CPU: Intel® Core i3 CPU 550 @ 3.20GHz CPU 2: Intel® Core i3 CPU 550 @ 3.20GHz Microsoft Windows 7 Édition Familiale Premium (6.1.7600 64-Bit) # Internet Explorer 8.0.7600.16385 Pare-feu Windows: Activé RAM -> 6007 Mo C:\ (%systemdrive%) -> Disque fixe # 918 Go (868 Go libre(s) - 95%) [OS] # NTFS D:\ -> Disque fixe # 14 Go (2 Go libre(s) - 12%) [HP_RECOVERY] # NTFS E:\ -> CD-ROM J:\ -> Disque fixe # 149 Go (120 Go libre(s) - 80%) [] # FAT32 K:\ -> Disque amovible # 4 Go (2 Go libre(s) - 40%) [PIERRE-YVES] # FAT32 ################## | Éléments infectieux | Présent! K:\eppexwin320fr.exe ################## | Registre | Présent! HKLM\software\microsoft\windows nt\currentversion\winlogon|Taskman Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableTaskMgr ################## | Mountpoints2 | ################## | Vaccin | (!) Cet ordinateur n'est pas vacciné! ################## | E.O.F |

Je viens de terminer le scan Malwarebytes il n'a rien trouvé : Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Version de la base de données: 5947 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 04/03/2011 00:37:23 mbam-log-2011-03-04 (00-37-23).txt Type d'examen: Examen complet (C:\|D:\|) Elément(s) analysé(s): 293932 Temps écoulé: 21 minute(s), 38 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté) Je fais maintenant le UsBFix...

Voila pour le CLEAN : ======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 01/03/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: TeamXscript : AD-Remover - FindyKill - UsbFix - SEAF C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 18:22:36 le 02/03/2011, Mode normal Microsoft Windows 7 Édition Familiale Premium (X64) Pierre-Yves@GEANT (Hewlett-Packard p6740fr-m) ============== ACTION(S) ============== (!) -- Fichiers temporaires supprimés. ============== SCAN ADDITIONNEL ============== **** Mozilla Firefox Version [3.6.14 (fr)] **** HKLM_MozillaPlugins\@cambridgesoft.com/Chem3D,version=12.0 (x) HKLM_MozillaPlugins\@cambridgesoft.com/ChemDraw,version=12.0 (x) HKLM_Extensions|msntoolbar@msn.com - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\Firefox -- C:\Users\Pierre-Yves\AppData\Roaming\Mozilla\FireFox\Profiles\zpkehr6l.default -- Extensions\{a6ca9b3b-5e52-4f47-85d8-cca35bb57596} (Sage) Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.14 ======================================== **** Internet Explorer Version [8.0.7600.16385] **** HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896 HKCU_Main|Start Page - hxxp://fr.msn.com/ HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Start Page - hxxp://fr.msn.com/ HKCU_SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} - "Ask.com" (hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPDTDF) HKCU_SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3} - "Wikipedia" (hxxp://fr.wikipedia.org/wiki/Special:Search?search={searchTerms}) HKCU_SearchScopes\{d944bb61-2e34-4dbf-a683-47e505c587dc} - "eBay" (hxxp://rover.ebay.com/rover/1/709-111075-12437-0/4?satitle={searchTerms}&mfe=Des...) HKLM_SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} - "Ask.com" (hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPDTDF) HKLM_SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3} - "Wikipedia" (hxxp://fr.wikipedia.org/wiki/Special:Search?search={searchTerms}) HKLM_SearchScopes\{d944bb61-2e34-4dbf-a683-47e505c587dc} - "eBay" (hxxp://rover.ebay.com/rover/1/709-111075-12437-0/4?satitle={searchTerms}&mfe=Des...) HKLM_Toolbar|{8dcb7100-df86-4384-8842-8fa844297b3f} (C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll) HKLM_ElevationPolicy\{0002df01-0000-0000-c000-000000000046} - C:\Program Files (x86)\Internet Explorer\iexplore.exe (x) HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x) HKLM_ElevationPolicy\{08FF730A-494F-4cba-AA0B-E4F1D44715F9} - C:\Program Files (x86)\Norton Internet Security\Engine\18.1.0.37\symerr.exe (x) HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x) HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x) HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x) BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll) ======================================== C:\Program Files (x86)\Ad-Remover\Quarantine: 0 Fichier(s) C:\Program Files (x86)\Ad-Remover\Backup: 17 Fichier(s) C:\Ad-Report-CLEAN[1].txt - 02/03/2011 18:22:40 (3769 Octet(s)) C:\Ad-Report-SCAN[1].txt - 02/03/2011 18:20:57 (3440 Octet(s)) Fin à: 18:23:29, 02/03/2011 ============== E.O.F ============== Et le SCAN : ======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 01/03/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: TeamXscript : AD-Remover - FindyKill - UsbFix - SEAF C:\Program Files (x86)\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 18:20:37 le 02/03/2011, Mode normal Microsoft Windows 7 Édition Familiale Premium (X64) Pierre-Yves@GEANT (Hewlett-Packard p6740fr-m) ============== RECHERCHE ============== ============== SCAN ADDITIONNEL ============== **** Mozilla Firefox Version [3.6.14 (fr)] **** HKLM_MozillaPlugins\@cambridgesoft.com/Chem3D,version=12.0 (x) HKLM_MozillaPlugins\@cambridgesoft.com/ChemDraw,version=12.0 (x) HKLM_Extensions|msntoolbar@msn.com - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\Firefox -- C:\Users\Pierre-Yves\AppData\Roaming\Mozilla\FireFox\Profiles\zpkehr6l.default -- Extensions\{a6ca9b3b-5e52-4f47-85d8-cca35bb57596} (Sage) Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.14 ======================================== **** Internet Explorer Version [8.0.7600.16385] **** HKCU_Main|Default_Page_URL - hxxp://g.uk.msn.com/HPDSK/3 HKCU_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKCU_Main|Start Page - hxxp://g.uk.msn.com/HPDSK/3 HKLM_Main|Start Page - hxxp://g.uk.msn.com/HPDSK/3 HKCU_SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} - "Ask.com" (hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPDTDF) HKCU_SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3} - "Wikipedia" (hxxp://fr.wikipedia.org/wiki/Special:Search?search={searchTerms}) HKCU_SearchScopes\{d944bb61-2e34-4dbf-a683-47e505c587dc} - "eBay" (hxxp://rover.ebay.com/rover/1/709-111075-12437-0/4?satitle={searchTerms}&mfe=Des...) HKLM_SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} - "Ask.com" (hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPDTDF) HKLM_SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3} - "Wikipedia" (hxxp://fr.wikipedia.org/wiki/Special:Search?search={searchTerms}) HKLM_SearchScopes\{d944bb61-2e34-4dbf-a683-47e505c587dc} - "eBay" (hxxp://rover.ebay.com/rover/1/709-111075-12437-0/4?satitle={searchTerms}&mfe=Des...) HKLM_Toolbar|{8dcb7100-df86-4384-8842-8fa844297b3f} (C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll) HKLM_ElevationPolicy\{0002df01-0000-0000-c000-000000000046} - C:\Program Files (x86)\Internet Explorer\iexplore.exe (x) HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x) HKLM_ElevationPolicy\{08FF730A-494F-4cba-AA0B-E4F1D44715F9} - C:\Program Files (x86)\Norton Internet Security\Engine\18.1.0.37\symerr.exe (x) HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x) HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x) HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x) BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll) ======================================== C:\Program Files (x86)\Ad-Remover\Quarantine: 0 Fichier(s) C:\Program Files (x86)\Ad-Remover\Backup: 1 Fichier(s) C:\Ad-Report-SCAN[1].txt - 02/03/2011 18:20:57 (3302 Octet(s)) Fin à: 18:21:30, 02/03/2011 ============== E.O.F ==============

Et voila le rapport de ZHPDiag : Rapport de ZHPDiag v1.27.1421 par Nicolas Coolman, Update du 16/12/2010 Run by Pierre-Yves at 3/3/2011 10:12:11 PM Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html Contact : nicolascoolman@yahoo.fr ---\\ Web Browser MSIE: Internet Explorer v8.0.7600.16385 MFIE: Mozilla Firefox v3.6.14 (fr) (Defaut) ---\\ System Information Windows 7 Home Premium Edition, 64-bit (Build 7600) Processor: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 6007.1 MB (82% free) System drive C: has 868 GB (94%) free of 918 GB ---\\ Logged in mode Computer Name: GEANT User Name: Pierre-Yves All Users Names: Pierre-Yves, HomeGroupUser$, Administrateur, Unselected Option: O1,O45,O61,O62,O65,O82 Logged in as Administrator ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 868 Go of 918 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 14 Go) E:\ CD-ROM drive (Not Inserted) F:\ Floppy drive, Flash card reader, USB Key (Not Inserted) G:\ Floppy drive, Flash card reader, USB Key (Not Inserted) H:\ Floppy drive, Flash card reader, USB Key (Not Inserted) I:\ Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified ---\\ Recherche particulière de fichiers génériques [MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - (.Microsoft Corporation - Explorateur Windows.) (.1/27/2011 4:46:25 PM.) -- C:\Windows\Explorer.exe [2870272] [MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.7/14/2009 2:14:45 AM.) -- C:\Windows\System32\Wininit.exe [96256] ---\\ Processus lancés [MD5.554A50B5310E702029D3A675459108FF] - (.Hewlett-Packard - hpsysdrv.) -- C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe [62768] [MD5.51138BEEA3E2C21EC44D0932C71762A8] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysWOW64\rundll32.exe [44544] [MD5.B4000AF76B1E2E9DBBFBAAD49747FA35] - (.Hewlett-Packard Company - PictureMover Application.) -- C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe [1040952] [MD5.25107F58D1B8F60D67D1EE95798C0DE8] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696] [MD5.5516C26A6AF8EB4E2CAB48EC98A74398] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe [54576] [MD5.187A956FB8F79DB449A28A0D08657EFF] - (.Symantec Corporation - Symantec User Session.) -- C:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe [115560] [MD5.93DB1FF92B03D24738A71E6E4992DFD3] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248552] [MD5.4CC38227FE6086678720AF8FBD764B6E] - (.Symantec Corporation - Symantec AntiVirus.) -- C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\ProtectionUtilSurrogate.exe [50544] [MD5.DB1A23EE7DD2E5E04E7DE071A6BEF699] - (.Sun Microsystems, Inc. - Java Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [501480] [MD5.5C8412B8C8C4C141DB03FA30FD580072] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\Ad-Remover\main.exe [524459] [MD5.D378BFFB70923139D6A4F546864AA61C] - (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\SysWOW64\notepad.exe [179712] [MD5.D88135FE55B356618FCCDF1CC5653174] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [912344] [MD5.806A8E35707BEA615B209001E544F0F0] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [620544] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2) P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npnul32.dll P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPOFF12.DLL P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@cambridgesoft.com/Chem3D,version=12.0] - (.CambridgeSoft Corp. - Bio3D Net 12.0.) -- C:\Program Files (x86)\CambridgeSoft\ChemOffice2010\Chem3D\npChem3DPlugin.dll P2 - FPN: [HKLM] [@cambridgesoft.com/ChemDraw,version=12.0] - (.CambridgeSoft Corp. - ChemDraw Pro Plugin 12.0.) -- C:\Program Files (x86)\CambridgeSoft\ChemOffice2010\ChemDraw\npcdp32.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_22 for Mozilla browsers.) -- C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.51204.0.) -- c:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\npctrl.dll P2 - FPN: [HKLM] [@Microsoft.com/NpWinExt,version=5.0] - (.Microsoft Corporation - Bing Bar.) -- C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll M2 - MFEP: prefs.js [Pierre-Yves - zpkehr6l.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v1.5.2.20080717 (.Yahoo!.) M2 - MFEP: prefs.js [Pierre-Yves - zpkehr6l.default\{a6ca9b3b-5e52-4f47-85d8-cca35bb57596}] [] Sage v1.4.9 (.The Sage Team.) M2 - MFEP: prefs.js [Pierre-Yves - zpkehr6l.default\{e001c731-5e37-4538-a5cb-8168736a2360}] [bitdefender] BitDefender QuickScan v1.4.9 (.BitDefender R&D Team.) ---\\ Internet Explorer, Démarrage,Recherche,URSearchHook (R0,R1,R3) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Sign In R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Sign In R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Sign In R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\SysWOW64\ieframe.dll ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=userinit.exe, F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (.Microsoft Corporation - Bing Bar.) -- C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: @C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} . (.Microsoft Corporation - Bing Bar.) -- C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [iAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [PDF Complete] . (.PDF Complete Inc - Sentry for PDF.) -- C:\Program Files (x86)\PDF Complete\pdfsty.exe O4 - HKLM\..\Run: [Easybits Recovery] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe O4 - HKLM\..\Run: [Microsoft Default Manager] . (.Microsoft Corporation - Microsoft Default Manager.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe O4 - HKLM\..\Run: [ccApp] . (.Symantec Corporation - Symantec User Session.) -- C:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe O4 - HKCU\..\Run: [WMSF] rundll32 "C:\Users\Pierre-Yves\AppData\Roaming\mfc40ur.dll (.not file.) O4 - HKLM\..\Wow6432Node\Run: [iAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Wow6432Node\Run: [PDF Complete] . (.PDF Complete Inc - Sentry for PDF.) -- C:\Program Files (x86)\PDF Complete\pdfsty.exe O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe O4 - HKLM\..\Wow6432Node\Run: [Microsoft Default Manager] . (.Microsoft Corporation - Microsoft Default Manager.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe O4 - HKLM\..\Wow6432Node\Run: [ccApp] . (.Symantec Corporation - Symantec User Session.) -- C:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-21-1972945643-1436541299-3377523599-1001\..\Run: [WMSF] rundll32 "C:\Users\Pierre-Yves\AppData\Roaming\mfc40ur.dll (.not file.) O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.) O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.) O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snapfish PictureMover.lnk . (.Hewlett-Packard Company.) -- C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Documents And Settings\Pierre-Yves\Desktop\AD-R.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\Ad-Remover\main.exe O4 - Global Startup: C:\Documents And Settings\Pierre-Yves\Desktop\ChemBioDraw Ultra 12.0.lnk . (.CambridgeSoft Corp..) -- C:\Program Files (x86)\CambridgeSoft\ChemOffice2010\ChemDraw\ChemDraw.exe O4 - Global Startup: C:\Documents And Settings\Pierre-Yves\Desktop\EndNote Program.lnk . (.Pas de propriétaire.) -- C:\Windows\Installer\{86B3F2D6-AC2B-0014-8AE1-F2F77F781B0C}\Icon002B1E90.exe O4 - Global Startup: C:\Documents And Settings\Pierre-Yves\Desktop\MestReNova.lnk . (.Mestrelab Research S.L..) -- C:\Program Files (x86)\Mestrelab Research S.L\MestReNova\MestReNova.exe O4 - Global Startup: C:\Documents And Settings\Pierre-Yves\Desktop\Microsoft Office Excel 2007.lnk . (.Pas de propriétaire.) -- C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe O4 - Global Startup: C:\Documents And Settings\Pierre-Yves\Desktop\Microsoft Office PowerPoint 2007.lnk . (.Pas de propriétaire.) -- C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe O4 - Global Startup: C:\Documents And Settings\Pierre-Yves\Desktop\Microsoft Office Word 2007.lnk . (.Pas de propriétaire.) -- C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe O4 - Global Startup: C:\Users\Pierre-Yves\Desktop\AD-R.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\Ad-Remover\main.exe O4 - Global Startup: C:\Users\Pierre-Yves\Desktop\ChemBioDraw Ultra 12.0.lnk . (.CambridgeSoft Corp..) -- C:\Program Files (x86)\CambridgeSoft\ChemOffice2010\ChemDraw\ChemDraw.exe O4 - Global Startup: C:\Users\Pierre-Yves\Desktop\EndNote Program.lnk . (.Pas de propriétaire.) -- C:\Windows\Installer\{86B3F2D6-AC2B-0014-8AE1-F2F77F781B0C}\Icon002B1E90.exe O4 - Global Startup: C:\Users\Pierre-Yves\Desktop\MestReNova.lnk . (.Mestrelab Research S.L..) -- C:\Program Files (x86)\Mestrelab Research S.L\MestReNova\MestReNova.exe O4 - Global Startup: C:\Users\Pierre-Yves\Desktop\Microsoft Office Excel 2007.lnk . (.Pas de propriétaire.) -- C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe O4 - Global Startup: C:\Users\Pierre-Yves\Desktop\Microsoft Office PowerPoint 2007.lnk . (.Pas de propriétaire.) -- C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe O4 - Global Startup: C:\Users\Pierre-Yves\Desktop\Microsoft Office Word 2007.lnk . (.Pas de propriétaire.) -- C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe O4 - Global Startup: C:\Users\Pierre-Yves\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\MediaGet.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\MediaGet\mediaget.exe O4 - Global Startup: C:\Users\Pierre-Yves\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O4 - Global Startup: C:\Users\Pierre-Yves\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - Clé orpheline O4 - Global Startup: C:\Users\Pierre-Yves\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - Clé orpheline ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~1\Office12\EXCEL.exe ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~2\MICROS~1\Office12\REFBARH.ICO ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{B718222F-B84B-4E10-B843-7A638F607294}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{B718222F-B84B-4E10-B843-7A638F607294}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{B718222F-B84B-4E10-B843-7A638F607294}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: (ccEvtMgr) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: (ccSetMgr) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: (ezSharedSvc) . (.EasyBits Software AS - Shared EasyBits services for Windows.) - C:\Windows\System32\ezSharedSvcHost.exe O23 - Service: (HP Health Check Service) . (.Hewlett-Packard Company - HP Support Assistant.) - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe O23 - Service: (HPAuto) . (.Hewlett-Packard - HP Usage Improvement Tracking.) - C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe O23 - Service: (HPClientSvc) . (.Hewlett-Packard Company - HP Client Services.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe O23 - Service: (HPDrvMntSvc.exe) . (.Hewlett-Packard Company - HP Quick Synchronization Service.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe O23 - Service: (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: (NOBU) . (.Symantec Corporation - Norton Online Backup Service.) - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe O23 - Service: (nvsvc) - Clé orpheline O23 - Service: (pdfcDispatcher) - Clé orpheline O23 - Service: (SmcService) . (.Symantec Corporation - Symantec CMC Smc.) - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Smc.exe O23 - Service: (Symantec AntiVirus) . (.Symantec Corporation - Symantec AntiVirus.) - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Rtvscan.exe O23 - Service: (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - (.not file.) ---\\ Tâches planifiées en automatique (O39) [MD5.08434BD9B4E2F96B77E0C7FB89CDE699] [APT] [DST] (.Microsoft.) -- C:\Program Files (x86)\Hewlett-Packard\Setup Manager\toaster.exe [MD5.6C794171FC5C0EA47C7A277014ECA9F7] [APT] [RMCreator] (.CyberLink.) -- C:\Program Files (x86)\Hewlett-Packard\Recovery\Reminder.exe [MD5.B0663B58C1F90379798D284B2F75633B] [APT] [servicePlan] (.Pas de propriétaire.) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [MD5.00000000000000000000000000000000] [APT] [{22116563-108C-42c0-A7CE-60161B75E508}] (.Pas de propriétaire.) -- C:\Users\PIERRE~1\AppData\Local\Temp\Vxb.exe (.not file.) [MD5.605A36DEFE5B09C6A52D9A71B9689D62] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [MD5.605A36DEFE5B09C6A52D9A71B9689D62] [APT] [PC Tuneup] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\regutils.dll ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys O41 - Driver: (eeCtrl) . (.Symantec Corporation - Symantec Eraser Control Driver.) - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys O41 - Driver: (SRTSP) . (.Symantec Corporation - Symantec AutoProtect.) - C:\Windows\System32\Drivers\SRTSP64.sys O41 - Driver: (SRTSPX) . (.Symantec Corporation - Symantec AutoProtect.) - C:\Windows\System32\Drivers\SRTSPX64.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys O41 - Driver: (WPS) . (.Symantec Corporation - Symantec CMC Firewall WPS.) - C:\Windows\system32\drivers\wpsdrvnt.sys ---\\ Logiciels installés (O42) O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {254C37AA-6B72-4300-84F6-98A82419187E} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- {FFB768E4-E427-4553-BC36-A11F5E62A94D} O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Agatha Christie - Peril at End House - (.WildTangent.) [HKLM] -- WT089362 O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM] -- WT087428 O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM] -- {08234a0d-cf39-4dca-99f0-0c5cb496da81} O42 - Logiciel: Bing Bar Platform - (.Microsoft Corporation.) [HKLM] -- {77C4850C-3592-4A2F-B652-ACB77A1EF77C} O42 - Logiciel: Bing Rewards Client Installer - (.Microsoft Corporation.) [HKLM] -- {61EDBE71-5D3E-4AB7-AD95-E53FEAF68C17} O42 - Logiciel: Blasterball 3 - (.WildTangent.) [HKLM] -- WT089308 O42 - Logiciel: Bounce Symphony - (.WildTangent.) [HKLM] -- WT087330 O42 - Logiciel: Build-a-Lot - The Elizabethan Era - (.WildTangent.) [HKLM] -- WT089303 O42 - Logiciel: Cake Mania - (.WildTangent.) [HKLM] -- WT089359 O42 - Logiciel: CambridgeSoft ChemBioOffice Ultra 2010 - (.CambridgeSoft Corporation.) [HKLM] -- {D06EF6C2-62D8-4308-897E-B20FE81712B4} O42 - Logiciel: Canon MP Navigator EX 2.0 - (.Pas de propriétaire.) [HKLM] -- MP Navigator EX 2.0 O42 - Logiciel: Canon Utilities My Printer - (.Pas de propriétaire.) [HKLM] -- CanonMyPrinter O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM] -- WT087453 O42 - Logiciel: CyberLink DVD Suite Deluxe - (.CyberLink Corp..) [HKLM] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79} O42 - Logiciel: CyberLink DVD Suite Deluxe - (.CyberLink Corp..) [HKLM] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79} O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM] -- InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF} O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM] -- {FB4BB287-37F9-4E27-9C4D-2D3882E08EFF} O42 - Logiciel: Diner Dash 2 Restaurant Rescue - (.WildTangent.) [HKLM] -- WT087536 O42 - Logiciel: EndNote X4 - (.Thomson Reuters.) [HKLM] -- {86B3F2D6-AC2B-0014-8AE1-F2F77F781B0C} O42 - Logiciel: FATE - (.WildTangent.) [HKLM] -- WT087361 O42 - Logiciel: Farm Frenzy - (.WildTangent.) [HKLM] -- WT089328 O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {488F0347-C4A7-4374-91A7-30818BEDA710} O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM] -- {07FA4960-B038-49EB-891B-9F95930AA544} O42 - Logiciel: HP Game Console - (.WildTangent.) [HKLM] -- My HP Game Console O42 - Logiciel: HP Games - (.WildTangent.) [HKLM] -- WildTangent hp Master Uninstall O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM] -- InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A} O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM] -- {DCCAD079-F92C-44DA-B258-624FC6517A5A} O42 - Logiciel: HP MediaSmart Music - (.Hewlett-Packard.) [HKLM] -- InstallShield_{91A34181-9FAD-43AB-A35F-E7A8945B7E1C} O42 - Logiciel: HP MediaSmart Music - (.Hewlett-Packard.) [HKLM] -- {91A34181-9FAD-43AB-A35F-E7A8945B7E1C} O42 - Logiciel: HP MediaSmart Photo - (.Hewlett-Packard.) [HKLM] -- InstallShield_{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF} O42 - Logiciel: HP MediaSmart Photo - (.Hewlett-Packard.) [HKLM] -- {6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF} O42 - Logiciel: HP MediaSmart Video - (.Hewlett-Packard.) [HKLM] -- InstallShield_{D12E3E7F-1B13-4933-A915-16C7DD37A095} O42 - Logiciel: HP MediaSmart Video - (.Hewlett-Packard.) [HKLM] -- {D12E3E7F-1B13-4933-A915-16C7DD37A095} O42 - Logiciel: HP Setup - (.Hewlett-Packard Company.) [HKLM] -- {53469506-A37E-4314-A9D9-38724EC23A75} O42 - Logiciel: HP Setup Manager - (.Hewlett-Packard Company.) [HKLM] -- {AE856388-AFAD-4753-81DF-D96B19D0A17C} O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM] -- {B1A4A13D-4665-4ED3-9DFE-F845725FBBD8} O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {DE77FE3F-A33D-499A-87AD-5FC406617B40} O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {669D4A35-146B-4314-89F1-1AC3D7B88367} O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM] -- WT087480 O42 - Logiciel: Intel® Management Engine Components - (.Intel Corporation.) [HKLM] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} O42 - Logiciel: Intel® Rapid Storage Technology - (.Intel Corporation.) [HKLM] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} O42 - Logiciel: Java 6 Update 22 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216022FF} O42 - Logiciel: Jewel Quest II - (.WildTangent.) [HKLM] -- WT087485 O42 - Logiciel: Jewel Quest Solitaire - (.WildTangent.) [HKLM] -- WT087490 O42 - Logiciel: John Deere Drive Green - (.WildTangent.) [HKLM] -- WT087380 O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM] -- {FD7F0DB8-0E96-4D64-AD4D-9B5A936AF2A8} O42 - Logiciel: LiveUpdate 3.3 (Symantec Corporation) - (.Symantec Corporation.) [HKLM] -- LiveUpdate O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM] -- EasyBits Magic Desktop O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: MediaGet 1.12 - (.MediaGet.) [HKLM] -- {5C9B7D10-4B6B-4E64-8C04-F50F1508C1E8}_is1 O42 - Logiciel: MestReNova 5.0.3-2414 - (.Mestrelab Research S.L..) [HKLM] -- MestReNova O42 - Logiciel: Microsoft Default Manager - (.Microsoft Corporation.) [HKLM] -- {1CAC7A41-583B-4483-9FA5-3E5465AFF8C2} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-002A-040C-1000-0000000FF1CE}_ENTERPRISE_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_ENTERPRISE_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00BA-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2010 - (.Microsoft Corporation.) [HKLM] -- {95140000-0070-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM] -- ENTERPRISE O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Groove MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00BA-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_ENTERPRISE_{14809F99-C601-4D4A-9391-F1E8FAA964C5} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_ENTERPRISE_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {928B06E4-DDAA-476A-926A-641620326327} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 - (.Microsoft Corporation.) [HKLM] -- {196BB40D-1578-3D01-B289-BEFC77A11A1E} O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM] -- InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E} O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM] -- {3023EBDA-BF1B-4831-B347-E5018555F26E} O42 - Logiciel: Mozilla Firefox (3.6.14) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.14) O42 - Logiciel: MusicStation - (.Hewlett-Packard.) [HKLM] -- MusicStationNetstaller O42 - Logiciel: Norton Online Backup - (.Symantec Corporation.) [HKLM] -- {40A66DF6-22D3-44B5-A7D3-83B118A2C0DC} O42 - Logiciel: PDF Complete Special Edition - (.PDF Complete, Inc.) [HKLM] -- PDF Complete O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM] -- WT087394 O42 - Logiciel: PhotoNow! - (.CyberLink Corp..) [HKLM] -- InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE} O42 - Logiciel: PhotoNow! - (.CyberLink Corp..) [HKLM] -- {D36DD326-7280-11D8-97C8-000129760CBE} O42 - Logiciel: PictureMover - (.Hewlett-Packard Company.) [HKLM] -- {264FE20A-757B-492a-B0C3-4009E2997D8A} O42 - Logiciel: Plants vs. Zombies - (.WildTangent.) [HKLM] -- WT087501 O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM] -- WT087396 O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658} O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM] -- {40BF1E83-20EB-11D8-97C5-0009C5020658} O42 - Logiciel: PowerArchiver 2009 French - (.ConeXware, Inc..) [HKLM] -- {18A59CF2-76D3-4031-A380-6B05F4A9B190} O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1} O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1} O42 - Logiciel: PressReader - (. NewspaperDirect Inc..) [HKLM] -- {912CED74-88D3-4C5B-ACB0-13231864975E} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Recovery Manager - (.CyberLink Corp..) [HKLM] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5} O42 - Logiciel: ResearchSoft Direct Export Helper - (.Pas de propriétaire.) [HKLM] -- ResearchSoft Direct Export Helper O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2277947) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{5857EE21-03D0-482E-9620-5A30B314A2AE} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982312) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{B0EC5722-241F-4CDA-83B4-AA5846B6F9F4} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982331) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E8766951-2B6C-4022-86E8-80D2D1762B76} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{5A4E43D5-858F-49BD-BA72-8F30E1793060} O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB982308) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C3F9A0DC-A5D1-4BB6-870E-2953E5A2487B} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB} O42 - Logiciel: Security Update for Microsoft Office Outlook 2007 (KB980376) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{48113C06-9BA2-4D54-A731-D1D2C5B3144A} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46} O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB982124) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{289FA8BC-6A8E-4341-B194-EB26B49E9F5D} O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2251419) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{7E9103DA-253F-41FF-9E83-7C83806C77DA} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Slingo Deluxe - (.WildTangent.) [HKLM] -- WT087510 O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{329050A9-EF80-40F9-B633-74508F54C1FF} O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2492475) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{AB9C3240-8F97-4998-8911-3D40044124FC} O42 - Logiciel: Virtual Villagers - The Secret City - (.WildTangent.) [HKLM] -- WT087513 O42 - Logiciel: Wedding Dash - (.WildTangent.) [HKLM] -- WT087519 O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066} O42 - Logiciel: Windows Live Essentials - (.Microsoft Corporation.) [HKLM] -- {FE044230-9CA5-43F7-9B58-5AC5A28A1F33} O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9D56775A-93F3-44A3-8092-840E3826DE30} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {C66824E4-CBB3-4851-BB3F-E8CFD6350923} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {80956555-A512-4190-9CAD-B000C36D6B6B} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90} O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {19BA08F7-C728-469C-8A35-BFBD3633BE08} O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3} O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {92EA4134-10D1-418A-91E1-5A0453131A38} O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A} O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3} O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70} O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {D436F577-1695-4D2F-8B44-AC76C99E0002} O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1} O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM] -- {34F4D9A4-42C2-4348-BEF4-E553C84549E7} O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4} O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F} O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2} O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {09F56A49-A7B1-4AAB-95B9-D13094254AD1} O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {6A05FEDF-662E-46BF-8A25-010E3F1C9C69} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {3B9A92DA-6374-4872-B646-253F18624D5F} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {A726AE06-AAA3-43D1-87E3-70F510314F04} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {AAF454FC-82CA-4F29-AB31-6A109485E76E} O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194} O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM] -- {DDC8BDEE-DCAC-404D-8257-3E8D4B782467} O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM] -- WT087533 ---\\ HKCU & HKLM Software Keys [HKCU\Software\5NZQ29B3L2] [HKCU\Software\Ad-Remover] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\BitDefender] [HKCU\Software\CambridgeSoft] [HKCU\Software\Canon] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CyberLink] [HKCU\Software\EasyBits] [HKCU\Software\Hewlett-Packard] [HKCU\Software\ISI ResearchSoft] [HKCU\Software\JavaSoft] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\Mestrelab Research S.L.] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\Norton] [HKCU\Software\ODBC] [HKCU\Software\Orange] [HKCU\Software\PDFComplete] [HKCU\Software\PPM] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\PowerArchiverInt] [HKCU\Software\SSPrint] [HKCU\Software\Symantec] [HKCU\Software\Sysinternals] [HKCU\Software\Tific] [HKCU\Software\Trolltech] [HKCU\Software\Wow6432Node] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\ttvzwjg] [HKLM\Software\CambridgeSoft] [HKLM\Software\Canon] [HKLM\Software\Caphyon] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CyberLink] [HKLM\Software\EasyBits] [HKLM\Software\Google] [HKLM\Software\Hewlett-Packard] [HKLM\Software\ISI ResearchSoft] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Khronos] [HKLM\Software\Licenses] [HKLM\Software\LightScribe] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\MediaGet] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NewspaperDirect] [HKLM\Software\ODBC] [HKLM\Software\PDFComplete] [HKLM\Software\Policies] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\Rocket Division Software] [HKLM\Software\Symantec] [HKLM\Software\TrendMicro] [HKLM\Software\Volatile] [HKLM\Software\WildTangent] [HKLM\Software\Win32 Services] [HKLM\Software\Wise Solutions] [HKLM\Software\Yahoo] [HKLM\Software\mozilla.org] ---\\ Contenu des dossiers ProgramFiles/ProgramData (O43) O43 - CFD: 3/2/2011 - 7:14:28 PM ----D- C:\Program Files\Canon O43 - CFD: 3/2/2011 - 7:13:04 PM --H-D- C:\Program Files\CanonBJ O43 - CFD: 3/1/2011 - 11:40:44 PM ----D- C:\Program Files\CCleaner O43 - CFD: 3/2/2011 - 10:33:52 AM ----D- C:\Program Files\Common Files O43 - CFD: 3/2/2011 - 6:25:52 PM ----D- C:\Program Files\DVD Maker O43 - CFD: 1/27/2011 - 4:23:14 PM ----D- C:\Program Files\Hewlett-Packard O43 - CFD: 1/27/2011 - 4:00:34 PM ----D- C:\Program Files\hp O43 - CFD: 3/2/2011 - 6:25:50 PM ----D- C:\Program Files\Internet Explorer O43 - CFD: 7/14/2009 - 8:45:56 AM ----D- C:\Program Files\Microsoft Games O43 - CFD: 3/1/2011 - 7:52:58 PM ----D- C:\Program Files\Microsoft Office O43 - CFD: 7/14/2009 - 6:32:40 AM ----D- C:\Program Files\MSBuild O43 - CFD: 1/27/2011 - 3:55:54 PM ----D- C:\Program Files\NVIDIA Corporation O43 - CFD: 1/27/2011 - 4:14:40 PM ----D- C:\Program Files\PlayReady O43 - CFD: 1/27/2011 - 3:56:06 PM ----D- C:\Program Files\Realtek O43 - CFD: 7/14/2009 - 6:32:40 AM ----D- C:\Program Files\Reference Assemblies O43 - CFD: 3/2/2011 - 10:36:10 AM ----D- C:\Program Files\Symantec O43 - CFD: 3/2/2011 - 6:38:20 PM ----D- C:\Program Files\trend micro O43 - CFD: 7/14/2009 - 6:09:28 AM --H-D- C:\Program Files\Uninstall Information O43 - CFD: 3/2/2011 - 6:25:50 PM ----D- C:\Program Files\Windows Defender O43 - CFD: 3/2/2011 - 6:25:50 PM ----D- C:\Program Files\Windows Journal O43 - CFD: 1/27/2011 - 4:20:14 PM ----D- C:\Program Files\Windows Live O43 - CFD: 3/2/2011 - 6:25:52 PM ----D- C:\Program Files\Windows Mail O43 - CFD: 3/2/2011 - 6:25:50 PM ----D- C:\Program Files\Windows Media Player O43 - CFD: 7/14/2009 - 6:32:40 AM ----D- C:\Program Files\Windows NT O43 - CFD: 3/2/2011 - 6:25:50 PM ----D- C:\Program Files\Windows Photo Viewer O43 - CFD: 7/14/2009 - 6:32:40 AM ----D- C:\Program Files\Windows Portable Devices O43 - CFD: 3/2/2011 - 6:25:52 PM ----D- C:\Program Files\Windows Sidebar O43 - CFD: 3/1/2011 - 7:54:42 PM ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 7/14/2009 - 4:20:10 AM ----D- C:\Program Files\Common Files\Services O43 - CFD: 7/14/2009 - 4:20:10 AM ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 3/2/2011 - 10:35:54 AM ----D- C:\Program Files\Common Files\Symantec Shared O43 - CFD: 3/2/2011 - 6:25:50 PM ----D- C:\Program Files\Common Files\System O43 - CFD: 3/2/2011 - 6:32:06 PM ----D- C:\ProgramData\Adobe O43 - CFD: 7/14/2009 - 6:08:58 AM -SH-D- C:\ProgramData\Application Data O43 - CFD: 3/1/2011 - 11:11:36 PM ----D- C:\ProgramData\CambridgeSoft O43 - CFD: 3/2/2011 - 7:13:46 PM --H-D- C:\ProgramData\CanonBJ O43 - CFD: 3/1/2011 - 11:03:22 PM ----D- C:\ProgramData\ConeXware O43 - CFD: 2/28/2011 - 11:12:24 PM ----D- C:\ProgramData\CyberLink O43 - CFD: 7/14/2009 - 6:08:58 AM -SH-D- C:\ProgramData\Desktop O43 - CFD: 7/14/2009 - 6:08:58 AM -SH-D- C:\ProgramData\Documents O43 - CFD: 7/14/2009 - 6:08:58 AM -SH-D- C:\ProgramData\Favorites O43 - CFD: 3/1/2011 - 7:18:54 AM ----D- C:\ProgramData\Hewlett-Packard O43 - CFD: 3/2/2011 - 11:12:06 AM ----D- C:\ProgramData\Malwarebytes O43 - CFD: 3/1/2011 - 10:20:46 PM ----D- C:\ProgramData\Media Get LLC O43 - CFD: 3/1/2011 - 11:38:30 PM ----D- C:\ProgramData\Mestrelab Research S.L O43 - CFD: 3/1/2011 - 7:55:04 PM -S--D- C:\ProgramData\Microsoft O43 - CFD: 3/3/2011 - 12:17:52 AM ----D- C:\ProgramData\Microsoft Help O43 - CFD: 3/2/2011 - 8:56:50 AM ----D- C:\ProgramData\Norton O43 - CFD: 1/27/2011 - 4:21:22 PM ----D- C:\ProgramData\NortonInstaller O43 - CFD: 3/3/2011 - 8:41:46 PM ----D- C:\ProgramData\NOS O43 - CFD: 1/27/2011 - 7:03:34 PM ----D- C:\ProgramData\NVIDIA O43 - CFD: 1/27/2011 - 3:55:42 PM ----D- C:\ProgramData\NVIDIA Corporation O43 - CFD: 3/1/2011 - 12:10:02 AM ----D- C:\ProgramData\PDFC O43 - CFD: 1/27/2011 - 4:13:46 PM ----D- C:\ProgramData\PictureMover O43 - CFD: 1/27/2011 - 4:02:18 PM ----D- C:\ProgramData\Ralink Driver O43 - CFD: 7/14/2009 - 6:08:58 AM -SH-D- C:\ProgramData\Start Menu O43 - CFD: 3/2/2011 - 6:33:26 PM ----D- C:\ProgramData\Sun O43 - CFD: 3/2/2011 - 10:36:14 AM ----D- C:\ProgramData\Symantec O43 - CFD: 3/1/2011 - 11:26:30 PM ---AD- C:\ProgramData\Temp O43 - CFD: 7/14/2009 - 6:08:58 AM -SH-D- C:\ProgramData\Templates O43 - CFD: 3/1/2011 - 11:22:32 PM ----D- C:\ProgramData\Thomson.ResearchSoft.Installers O43 - CFD: 1/27/2011 - 4:18:26 PM ----D- C:\ProgramData\WildTangent O43 - CFD: 3/1/2011 - 7:54:42 PM ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 7/14/2009 - 4:20:10 AM ----D- C:\Program Files\Common Files\Services O43 - CFD: 7/14/2009 - 4:20:10 AM ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 3/2/2011 - 10:35:54 AM ----D- C:\Program Files\Common Files\Symantec Shared O43 - CFD: 3/2/2011 - 6:25:50 PM ----D- C:\Program Files\Common Files\System O43 - CFD: 3/3/2011 - 10:04:38 PM ----D- C:\Program Files (x86)\Ad-Remover O43 - CFD: 1/27/2011 - 4:19:26 PM ----D- C:\Program Files (x86)\Bing Bar Installer O43 - CFD: 3/1/2011 - 11:11:36 PM ----D- C:\Program Files (x86)\CambridgeSoft O43 - CFD: 3/2/2011 - 7:14:28 PM ----D- C:\Program Files (x86)\Canon O43 - CFD: 3/2/2011 - 6:33:26 PM ----D- C:\Program Files (x86)\Common Files O43 - CFD: 1/27/2011 - 4:08:32 PM ----D- C:\Program Files (x86)\CyberLink O43 - CFD: 2/28/2011 - 11:16:10 PM ----D- C:\Program Files (x86)\EasyBits For Kids O43 - CFD: 3/1/2011 - 11:22:26 PM ----D- C:\Program Files (x86)\EndNote X4 O43 - CFD: 1/27/2011 - 4:21:14 PM ----D- C:\Program Files (x86)\Hewlett-Packard O43 - CFD: 1/27/2011 - 4:03:30 PM ----D- C:\Program Files (x86)\Hp O43 - CFD: 1/27/2011 - 4:18:28 PM ----D- C:\Program Files (x86)\HP Games O43 - CFD: 1/27/2011 - 4:13:18 PM --H-D- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 1/27/2011 - 4:02:28 PM ----D- C:\Program Files (x86)\Intel O43 - CFD: 3/2/2011 - 6:25:48 PM ----D- C:\Program Files (x86)\Internet Explorer O43 - CFD: 3/2/2011 - 6:32:22 PM ----D- C:\Program Files (x86)\Java O43 - CFD: 3/2/2011 - 11:12:06 AM ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware O43 - CFD: 3/1/2011 - 10:20:38 PM ----D- C:\Program Files (x86)\MediaGet O43 - CFD: 3/1/2011 - 11:37:28 PM ----D- C:\Program Files (x86)\Mestrelab Research S.L O43 - CFD: 1/27/2011 - 4:19:22 PM ----D- C:\Program Files (x86)\Microsoft O43 - CFD: 3/1/2011 - 7:55:20 PM ----D- C:\Program Files (x86)\Microsoft Office O43 - CFD: 3/2/2011 - 9:50:48 AM ----D- C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 1/27/2011 - 4:20:40 PM ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 3/1/2011 - 7:55:18 PM ----D- C:\Program Files (x86)\Microsoft Visual Studio O43 - CFD: 3/3/2011 - 12:14:46 AM ----D- C:\Program Files (x86)\Microsoft Works O43 - CFD: 3/3/2011 - 8:46:30 PM ----D- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 3/2/2011 - 10:30:52 AM ----D- C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 7/14/2009 - 6:32:40 AM ----D- C:\Program Files (x86)\MSBuild O43 - CFD: 1/27/2011 - 4:19:22 PM ----D- C:\Program Files (x86)\MSN Toolbar O43 - CFD: 3/2/2011 - 1:13:00 AM ----D- C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 1/27/2011 - 4:18:36 PM ----D- C:\Program Files (x86)\NewspaperDirect O43 - CFD: 1/27/2011 - 4:21:22 PM ----D- C:\Program Files (x86)\NortonInstaller O43 - CFD: 3/2/2011 - 6:29:34 PM ----D- C:\Program Files (x86)\NOS O43 - CFD: 2/28/2011 - 10:26:42 PM R---D- C:\Program Files (x86)\Online Services O43 - CFD: 1/27/2011 - 4:13:26 PM ----D- C:\Program Files (x86)\PDF Complete O43 - CFD: 1/27/2011 - 4:13:46 PM ----D- C:\Program Files (x86)\PictureMover O43 - CFD: 3/2/2011 - 12:53:16 PM ----D- C:\Program Files (x86)\PowerArchiver O43 - CFD: 1/27/2011 - 4:01:12 PM ----D- C:\Program Files (x86)\Realtek O43 - CFD: 7/14/2009 - 6:32:40 AM ----D- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 3/2/2011 - 10:33:58 AM ----D- C:\Program Files (x86)\Symantec O43 - CFD: 1/27/2011 - 4:01:24 PM --H-D- C:\Program Files (x86)\Temp O43 - CFD: 7/14/2009 - 5:57:08 AM --H-D- C:\Program Files (x86)\Uninstall Information O43 - CFD: 3/2/2011 - 6:25:48 PM ----D- C:\Program Files (x86)\Windows Defender O43 - CFD: 1/27/2011 - 4:20:36 PM ----D- C:\Program Files (x86)\Windows Live O43 - CFD: 3/2/2011 - 6:25:48 PM ----D- C:\Program Files (x86)\Windows Mail O43 - CFD: 3/2/2011 - 6:25:48 PM ----D- C:\Program Files (x86)\Windows Media Player O43 - CFD: 7/14/2009 - 6:32:40 AM ----D- C:\Program Files (x86)\Windows NT O43 - CFD: 3/2/2011 - 6:25:48 PM ----D- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 7/14/2009 - 6:32:42 AM ----D- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 3/2/2011 - 6:25:50 PM ----D- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 3/3/2011 - 10:12:14 PM ----D- C:\Program Files (x86)\ZHPDiag O43 - CFD: 3/1/2011 - 7:55:18 PM ----D- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 1/27/2011 - 4:00:24 PM ----D- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 3/2/2011 - 6:33:26 PM ----D- C:\Program Files (x86)\Common Files\Java O43 - CFD: 1/27/2011 - 4:14:00 PM ---AD- C:\Program Files (x86)\Common Files\LightScribe O43 - CFD: 1/27/2011 - 4:13:52 PM ---AD- C:\Program Files (x86)\Common Files\LS Getting Started O43 - CFD: 3/3/2011 - 12:14:48 AM ----D- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 1/27/2011 - 4:02:00 PM ----D- C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 3/1/2011 - 11:22:28 PM ----D- C:\Program Files (x86)\Common Files\ResearchSoft O43 - CFD: 3/1/2011 - 11:22:30 PM ----D- C:\Program Files (x86)\Common Files\Risxtd O43 - CFD: 7/14/2009 - 4:20:10 AM ----D- C:\Program Files (x86)\Common Files\Services O43 - CFD: 7/14/2009 - 4:20:10 AM ----D- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 3/2/2011 - 10:37:06 AM ----D- C:\Program Files (x86)\Common Files\Symantec Shared O43 - CFD: 3/3/2011 - 12:13:56 AM ----D- C:\Program Files (x86)\Common Files\System O43 - CFD: 1/27/2011 - 4:19:44 PM ----D- C:\Program Files (x86)\Common Files\Windows Live ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 2/28/2011 - 10:26:04 PM RSHA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\drivers\103C_HP_53316J G D_p6740fr-m_Y53316J G D_0U_QCZC104_ECZC10468YT DPS_4A_I2A9C_SMSI_V1.1_6.14_T101105_WU3-0_L40C_M6008_J1000_7Intel_8655_93.20_#110228_N10EC8168;18143090_(XS733EA#ABF)_X_CD3_Z_2xxx0204GRxxxxxxxx0.MRK [0] O44 - LFC:[MD5.F201B39A0BFF30C92F7C177853CBDB50] - 2/28/2011 - 11:08:11 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PerfStringBackup.INI [1551984] O44 - LFC:[MD5.41AA41BC2F30F7D1468FD2589E46C4D2] - 3/1/2011 - 7:21:01 AM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\license.rtf [53570] O44 - LFC:[MD5.41AA41BC2F30F7D1468FD2589E46C4D2] - 3/1/2011 - 7:21:01 AM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\license.rtf [53570] O44 - LFC:[MD5.158D85C26868E8A9903A726CE145F66B] - 3/1/2011 - 7:49:27 PM ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\SysNative\atmlib.dll [46080] O44 - LFC:[MD5.158D85C26868E8A9903A726CE145F66B] - 3/1/2011 - 7:49:27 PM ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [34304] O44 - LFC:[MD5.BF973CEDCD012D23F194BBF0A9B218E6] - 3/1/2011 - 7:49:27 PM ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\SysNative\atmfd.dll [366080] O44 - LFC:[MD5.BF973CEDCD012D23F194BBF0A9B218E6] - 3/1/2011 - 7:49:27 PM ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [294400] O44 - LFC:[MD5.2A66E81AE941E54A237490FC35D387C8] - 3/2/2011 - 10:52:56 AM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\epplauncher.mif [1945] O44 - LFC:[MD5.8E104B4F33B11A5A231249CAA836459B] - 3/2/2011 - 12:33:30 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\TDSSKiller.2.4.20.0_02.03.2011_12.32.51_log.txt [62948] O44 - LFC:[MD5.767EE8126468D91C5119F25714D78DAF] - 3/2/2011 - 1:12:28 AM ---A- . (.Microsoft Corporation - Bibliothèque d'assistance au déploiement de.) -- C:\Windows\SysNative\dfshim.dll [1942856] O44 - LFC:[MD5.767EE8126468D91C5119F25714D78DAF] - 3/2/2011 - 1:12:28 AM ---A- . (.Microsoft Corporation - Bibliothèque d'assistance au déploiement de.) -- C:\Windows\System32\dfshim.dll [1130824] O44 - LFC:[MD5.16C0CEAD2918C5FB6D03E4BD61F4C271] - 3/2/2011 - 2:32:09 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\PhysicalDisk0_MBR.bin [512] O44 - LFC:[MD5.9EFA7B49F5AF3F97E367AC119EF55B9C] - 3/2/2011 - 5:53:01 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\TDSSKiller.2.4.20.0_02.03.2011_17.52.35_log.txt [62948] O44 - LFC:[MD5.651A9EC1A7223154FC44531ED9C082F2] - 3/2/2011 - 6:21:30 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Ad-Report-SCAN[1].txt [3440] O44 - LFC:[MD5.4BB4DC17949ACB6D70D130EAB97A59B6] - 3/2/2011 - 6:23:29 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Ad-Report-CLEAN[1].txt [3973] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 3/2/2011 - 6:26:33 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setuperr.log [0] O44 - LFC:[MD5.5A02ECF88377ED6B01824932DB9EB73E] - 3/2/2011 - 7:13:26 PM ---A- . (.CANON INC. - IJ Language Monitor.) -- C:\Windows\SysNative\CNMLM9G.DLL [279040] O44 - LFC:[MD5.5F402D7CEEEDA657B87E9A9B7B4301E3] - 3/3/2011 - 10:00:44 PM -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.9F7C7D4846F9F4F56C7F14D5CAEA0514] - 3/3/2011 - 10:05:49 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Ad-Report-SCAN[2].txt [3992] O44 - LFC:[MD5.B6582A04D6247B08FBA12380B6D60D97] - 3/3/2011 - 10:08:49 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Ad-Report-SCAN[3].txt [4057] O44 - LFC:[MD5.1C0000000000000000000000F4EE1800] - 3/3/2011 - 10:09:44 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log [1462518] O44 - LFC:[MD5.2465EBC8CD6E412CDC1AB9FEF40BCAE6] - 3/3/2011 - 12:13:56 AM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\win.ini [478] O44 - LFC:[MD5.AC849B99E032F4017BB1CE37934DD4AF] - 3/3/2011 - 8:41:25 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setupact.log [112] O44 - LFC:[MD5.0872E0EB5E7EB0FC81463A3546CACF29] - 3/3/2011 - 8:41:28 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\FNTCACHE.DAT [424680] O44 - LFC:[MD5.4E1BE71FEB05D4F1E30B0E40C45C0768] - 3/3/2011 - 8:49:09 PM --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [15568] O44 - LFC:[MD5.4E1BE71FEB05D4F1E30B0E40C45C0768] - 3/3/2011 - 8:49:09 PM --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [15568] O44 - LFC:[MD5.F201B39A0BFF30C92F7C177853CBDB50] - 3/3/2011 - 8:49:43 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\PerfStringBackup.INI [1565144] O44 - LFC:[MD5.9304C4031EA1C7D487A647A84C6DCE5C] - 3/3/2011 - 8:49:43 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc009.dat [106190] O44 - LFC:[MD5.1B8C504B17C77CEC2E72FD6B0C623D35] - 3/3/2011 - 8:49:43 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc00C.dat [130548] O44 - LFC:[MD5.2CA1E0E75D23F9B90B77CDAE14B4E5EA] - 3/3/2011 - 8:49:43 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh009.dat [615810] O44 - LFC:[MD5.6AE280896ACECF0E0673BFA703C8CDB3] - 3/3/2011 - 8:49:43 PM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh00C.dat [704242] ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - EasyBits Security Shield Hook - prevents launching insecure programs by kids - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWow64\EZUPBH~1.DLL ---\\ Déni du service (Local Security Authority) (LSA) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll ---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\SysWOW64\l3codeca.acm" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll O52 - TDSD: \drivers.desc\"C:\Windows\SysWOW64\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.) ---\\ Microsoft Control Security Providers (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll ---\\ Microsoft Windows Policies System (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "HideFastUserSwitching"=0 O55 - MWPS:[HKCU\...\Policies\System] - "DisableLockWorkstation"=0 O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0 O55 - MWPS:[HKCU\...\Policies\System] - "DisableChangePassword"=0 ---\\ Microsoft Windows Policies Explorer (MWPE) (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "EnableShellExecuteHooks"=1 ---\\ Liste des Drivers Système (SDL) (O58) O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 7/14/2009 - 2:52:21 AM ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088] O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 7/14/2009 - 2:52:21 AM ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536] O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 7/14/2009 - 2:52:21 AM ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864] O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 7/14/2009 - 2:52:21 AM ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440] O58 - SDL:[MD5.AB3166C09438A161FBDE13099A72E0AF] - 1/27/2011 - 4:50:53 PM ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [107912] O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 7/14/2009 - 2:52:20 AM ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128] O58 - SDL:[MD5.5118DCD2065D8C8D752AD5EC0B2D6AA6] - 1/27/2011 - 4:50:53 PM ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [27016] O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 7/14/2009 - 2:52:21 AM ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632] O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 7/14/2009 - 2:52:21 AM ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856] O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 6/10/2009 - 9:34:23 PM ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848] O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 6/10/2009 - 9:41:06 PM ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432] O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 6/10/2009 - 9:41:06 PM ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704] O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 7/14/2009 - 2:19:07 AM ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720] O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 6/10/2009 - 9:41:10 PM ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104] O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 6/10/2009 - 9:41:10 PM ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976] O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 6/10/2009 - 9:41:10 PM ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720] O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 6/10/2009 - 9:34:28 PM ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480] O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 7/14/2009 - 2:52:31 AM ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488] O58 - SDL:[MD5.A398ED024F739E7BE74ECFFA8A713A89] - 3/2/2010 - 12:59:50 AM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\cpqdfw.sys [24376] O58 - SDL:[MD5.10FB0FF62AF6262BF88E3607E2AE2A69] - 3/2/2010 - 12:59:50 AM ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\cqcpu.sys [24376] O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 7/14/2009 - 2:47:48 AM ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496] O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 6/10/2009 - 9:34:33 PM ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016] O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 6/10/2009 - 9:31:59 PM ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232] O58 - SDL:[MD5.B6AC71AAA2B10848F57FC49D55A651AF] - 9/17/2009 - 9:54:54 PM ---A- . (.Intel Corporation - Intel® Management Engine Interface.) -- C:\Windows\system32\drivers\HECIx64.sys [56344] O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 7/14/2009 - 2:47:48 AM ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [77888] O58 - SDL:[MD5.ABBF174CB394F5C437410A788B7E404A] - 3/4/2010 - 3:51:40 AM ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys [540696] O58 - SDL:[MD5.513DC087CFED7D2BB82F005385D3531F] - 1/27/2011 - 4:50:53 PM ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410504] O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 7/14/2009 - 2:48:04 AM ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112] O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 7/14/2009 - 2:48:04 AM ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752] O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 7/14/2009 - 2:48:04 AM ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560] O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 7/14/2009 - 2:48:04 AM ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600] O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 7/14/2009 - 2:48:04 AM ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776] O58 - SDL:[MD5.3D3C4B63F11F63F50253E734F0ACE9F2] - 12/20/2010 - 6:08:40 PM ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [24152] O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 7/14/2009 - 2:48:04 AM ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392] O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 7/14/2009 - 2:48:04 AM ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736] O58 - SDL:[MD5.1982B291DF9833FB3ADC397EBD310A18] - 7/22/2010 - 4:57:22 AM ---A- . (.Ralink Technology, Corp. - Ralink 802.11 Wireless Adapter Driver.) -- C:\Windows\system32\drivers\netr28x.sys [1002848] O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 7/14/2009 - 2:48:26 AM ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264] O58 - SDL:[MD5.E20ABD5B229760158F753CA90B97E090] - 6/22/2010 - 2:07:38 AM ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\system32\drivers\nvhda64v.sys [131688] O58 - SDL:[MD5.2F1BC5C1320B07A7480240C4CA6F6387] - 9/9/2010 - 1:38:00 AM ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 259.65.) -- C:\Windows\system32\drivers\nvlddmkm.sys [12479592] O58 - SDL:[MD5.DEAB10231CBDB0881FC25428EBE11506] - 1/27/2011 - 4:50:53 PM ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [148352] O58 - SDL:[MD5.0AF7B8136794E23E87BE138992880E64] - 1/27/2011 - 4:50:53 PM ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [166280] O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 7/14/2009 - 2:45:46 AM ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816] O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 7/14/2009 - 2:45:45 AM ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592] O58 - SDL:[MD5.B15C021C2C9BB217A799D9532E8F04D4] - 9/3/2010 - 7:59:26 AM ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\system32\drivers\Rt64win7.sys [349800] O58 - SDL:[MD5.3C4B4EE54FEBB09F7E9F58776DE96DCA] - 9/7/2010 - 1:27:34 PM ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys [2484072] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 6/10/2009 - 9:37:19 PM ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040] O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 7/14/2009 - 2:45:45 AM ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584] O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 7/14/2009 - 2:45:46 AM ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464] O58 - SDL:[MD5.32900AC9CFDC578531279886CA16A4DF] - 8/25/2009 - 8:05:44 PM ---A- . (.Symantec Corporation - Symantec AutoProtect.) -- C:\Windows\system32\drivers\srtsp64.sys [443952] O58 - SDL:[MD5.8929566D1F14685FD78EAF25BEE3ECC7] - 8/25/2009 - 8:05:46 PM ---A- . (.Symantec Corporation - Symantec AutoProtect.) -- C:\Windows\system32\drivers\srtspl64.sys [481840] O58 - SDL:[MD5.CB2FDF47EE67F8CCA5362ED9B94FE955] - 8/25/2009 - 8:05:48 PM ---A- . (.Symantec Corporation - Symantec AutoProtect.) -- C:\Windows\system32\drivers\srtspx64.sys [32304] O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 7/14/2009 - 2:45:55 AM ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656] O58 - SDL:[MD5.7E4D281982E19ABD06728C7EE9AC40A8] - 3/2/2011 - 10:36:06 AM ---A- . (.Symantec Corporation - Symantec Event Library.) -- C:\Windows\system32\drivers\SYMEVENT64x86.SYS [172592] O58 - SDL:[MD5.13657DC475DE564247745BF4DA23207C] - 5/27/2009 - 2:31:00 PM ---A- . (.Symantec Corporation - Symantec CMC Firewall Teefer2.) -- C:\Windows\system32\drivers\Teefer2.sys [62512] O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 7/14/2009 - 2:45:55 AM ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488] O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 7/14/2009 - 2:45:55 AM ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872] O58 - SDL:[MD5.6CAB753B203F39B4CE05FF10013DE2EF] - 9/17/2009 - 6:37:00 PM ---A- . (.Symantec Corporation - Symantec CMC Firewall WPS.) -- C:\Windows\system32\drivers\WPSDRVnt.sys [52784] O58 - SDL:[MD5.D9B5A13804B7D97770C42DA484A9D86E] - 9/10/2010 - 10:38:10 PM ---A- . (.Symantec Corporation - Symantec Intrusion Detection - WpsHelper.) -- C:\Windows\system32\drivers\wpshelper.sys [225328] O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 12/20/2010 - 6:09:00 PM ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [38224] O58 - SDL:[MD5.32900AC9CFDC578531279886CA16A4DF] - 8/25/2009 - 8:05:44 PM ---A- . (.Symantec Corporation - Symantec AutoProtect.) -- C:\Windows\SysWOW64\drivers\srtsp64.sys [443952] O58 - SDL:[MD5.8929566D1F14685FD78EAF25BEE3ECC7] - 8/25/2009 - 8:05:46 PM ---A- . (.Symantec Corporation - Symantec AutoProtect.) -- C:\Windows\SysWOW64\drivers\srtspl64.sys [481840] O58 - SDL:[MD5.CB2FDF47EE67F8CCA5362ED9B94FE955] - 8/25/2009 - 8:05:48 PM ---A- . (.Symantec Corporation - Symantec AutoProtect.) -- C:\Windows\SysWOW64\drivers\srtspx64.sys [32304] ---\\ Liste des outils de nettoyage (LATC) (O63) O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM] -- Ad-Remover O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ---\\ Liste des services Legacy (LALS) (O64) O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(.Pas de propriétaire - Pas de description.) - LEGACY_BEEP O64 - Services: CurCS - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER O64 - Services: CurCS - C:\Windows\System32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS O64 - Services: CurCS - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS O64 - Services: CurCS - C:\Windows\System32\Drivers\cng.sys - CNG (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG O64 - Services: CurCS - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC O64 - Services: CurCS - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL O64 - Services: CurCS - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys - Symantec Eraser Control driver (eeCtrl) .(.Symantec Corporation - Symantec Eraser Control Driver.) - LEGACY_EECTRL O64 - Services: CurCS - (.not file.) - EraserUtilDrvI10 (EraserUtilDrvI10) .(.Pas de propriétaire - Pas de description.) - LEGACY_ERASERUTILDRVI10 O64 - Services: CurCS - (.not file.) - EraserUtilDrvI9 (EraserUtilDrvI9) .(.Pas de propriétaire - Pas de description.) - LEGACY_ERASERUTILDRVI9 O64 - Services: CurCS - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys - EraserUtilRebootDrv (EraserUtilRebootDrv) .(.Symantec Corporation - Symantec Eraser Utility Driver.) - LEGACY_ERASERUTILREBOOTDRV O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(.Pas de propriétaire - Pas de description.) - LEGACY_FASTFAT O64 - Services: CurCS - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO O64 - Services: CurCS - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(.Pas de propriétaire - Pas de description.) - LEGACY_FS_REC O64 - Services: CurCS - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL O64 - Services: CurCS - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP O64 - Services: CurCS - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY O64 - Services: CurCS - (.not file.) - IDSVia64 (IDSVia64) .(.Pas de propriétaire - Pas de description.) - LEGACY_IDSVIA64 O64 - Services: CurCS - (.not file.) - klmd25 (klmd25) .(.Pas de propriétaire - Pas de description.) - LEGACY_KLMD25 O64 - Services: CurCS - C:\Windows\System32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD O64 - Services: CurCS - C:\Windows\System32\Drivers\ksecpkg.sys - KSecPkg (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG O64 - Services: CurCS - C:\Windows\System32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV O64 - Services: CurCS - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR O64 - Services: CurCS - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10 O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20 O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSFS O64 - Services: CurCS - C:\Windows\System32\DRIVERS\msisadrv.sys - msisadrv (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV O64 - Services: CurCS - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP O64 - Services: CurCS - C:\Windows\System32\DRIVERS\nwifi.sys - NativeWiFi Filter (NativeWifiP) .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP O64 - Services: CurCS - C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20110302.019\ENG64.sys - NAVENG (NAVENG) .(.Symantec Corporation - AV Engine.) - LEGACY_NAVENG O64 - Services: CurCS - C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20110302.019\EX64.sys - NAVEX15 (NAVEX15) .(.Symantec Corporation - AV Engine.) - LEGACY_NAVEX15 O64 - Services: CurCS - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ndisuio.sys - NDIS Usermode I/O Protocol (Ndisuio) .(.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDPROXY O64 - Services: CurCS - C:\Windows\System32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS O64 - Services: CurCS - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NPFS O64 - Services: CurCS - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NTFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(.Pas de propriétaire - Pas de description.) - LEGACY_NULL O64 - Services: CurCS - C:\Windows\System32\drivers\pcw.sys - Performance Counters for Windows Driver (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW O64 - Services: CurCS - C:\Windows\System32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS O64 - Services: CurCS - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD O64 - Services: CurCS - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD O64 - Services: CurCS - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SECDRV O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(.Pas de propriétaire - Pas de description.) - LEGACY_SPLDR O64 - Services: CurCS - C:\Windows\System32\Drivers\SRTSP64.sys - SRTSP (SRTSP) .(.Symantec Corporation - Symantec AutoProtect.) - LEGACY_SRTSP O64 - Services: CurCS - C:\Windows\System32\Drivers\SRTSPX64.sys - Symantec Real Time Storage Protection (PEL) x64 (SRTSPX) .(.Symantec Corporation - Symantec AutoProtect.) - LEGACY_SRTSPX O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2 O64 - Services: CurCS - C:\Windows\System32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET O64 - Services: CurCS - (.not file.) - Symantec Data Store (SymDS) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMDS O64 - Services: CurCS - (.not file.) - Symantec Extended File Attributes (SymEFA) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMEFA O64 - Services: CurCS - C:\Windows\system32\Drivers\SYMEVENT64x86.sys - SymEvent (SymEvent) .(.Symantec Corporation - Symantec Event Library.) - LEGACY_SYMEVENT O64 - Services: CurCS - (.not file.) - Symantec Iron Driver (SymIRON) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMIRON O64 - Services: CurCS - (.not file.) - Symantec Network Security WFP Driver (SymNetS) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMNETS O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP O64 - Services: CurCS - C:\Windows\System32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE O64 - Services: CurCS - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX O64 - Services: CurCS - C:\Windows\System32\DRIVERS\volsnap.sys - Storage volumes (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP O64 - Services: CurCS - C:\Windows\System32\DRIVERS\vwififlt.sys - Virtual WiFi Filter Driver (vwififlt) .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT O64 - Services: CurCS - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6 O64 - Services: CurCS - C:\Windows\System32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000 O64 - Services: CurCS - C:\Windows\System32\DRIVERS\wfplwf.sys - WFP Lightweight Filter (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF O64 - Services: CurCS - C:\Windows\system32\drivers\wpsdrvnt.sys - WPS (WPS) .(.Symantec Corporation - Symantec CMC Firewall WPS.) - LEGACY_WPS O64 - Services: CurCS - C:\Windows\system32\drivers\WpsHelper.sys - WpsHelper (WpsHelper) .(.Symantec Corporation - Symantec Intrusion Detection - WpsHelper.) - LEGACY_WPSHELPER O64 - Services: CurCS - C:\Windows\System32\drivers\WudfPf.sys - User Mode Driver Frameworks Platform Driver (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF ---\\ Observateur d'évènement d'application (OEA) (O66) O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.EXE ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Pas de propriétaire - Pas de description.) -- "C:\Program Files (x86)\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Pas de propriétaire - Pas de description.) -- "C:\Program Files (x86)\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ---\\ Start Menu Internet (SMI) (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <>[HKLM\..\Shell\open\Command] (.Pas de propriétaire - Pas de description.) -- (.Not Key.) (.not file.) ---\\ Search Browser Infection (SBI) (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - {searchTerms} - Bing O69 - SBI: SearchScopes [HKCU] {2fa28606-de77-4029-af96-b231e3b8f827} - (Ask.com) - http://eu.ask.com/web?q={searchterms}&l=dis&o=HPDTDF O69 - SBI: SearchScopes [HKCU] {b7fca997-d0fb-4fe0-8afd-255e89cf9671} - (Yahoo) - {searchTerms} - Yahoo! France Résultats de recherche O69 - SBI: SearchScopes [HKCU] {d43b3890-80c7-4010-a95d-1e77b5924dc3} - (Wikipedia) - http://fr.wikipedia.org/wiki/Special:Search?search={searchTerms} O69 - SBI: SearchScopes [HKCU] {d944bb61-2e34-4dbf-a683-47e505c587dc} - (eBay) - searchTerms sur eBay - Achetez, vendez! O69 - SBI: SearchScopes [HKCU] {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} - (Bing) - {searchTerms} - Bing ---\\ Recherche des services démarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [0] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [0] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [0] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [0] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [0] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [0] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [0] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [0] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [49664] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [0] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows.) -- C:\Windows\System32\tapisrv.dll [241664] O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll [0] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\system32\wuaueng.dll [0] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [0] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [0] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [0] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [0] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\system32\sessenv.dll [99328] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [0] ---\\ Recherche particuliere à la racine de certains dossiers (SPRF) (O84) [MD5.D8FF9877EBA78BEE2A43188D159EA09F] [sPRF] (.NOS Microsystems Ltd. - getPlus+®.) -- C:\Users\Pierre-Yves\AppData\Local\Temp\getPlusUninst_Adobe.exe [34592] [MD5.CF6259E25D0A6BDB6193F8788E7EF0D1] [sPRF] (.CANON INC. - Master Setup.) -- C:\Users\Pierre-Yves\AppData\Local\Temp\MSETUP4.EXE [771408] [MD5.5A432A042DAE460ABE7199B758E8606C] [sPRF] (.Microsoft Corporation - Office Source Engine.) -- C:\Users\Pierre-Yves\AppData\Local\Temp\ose00000.exe [145184] [MD5.44ED0796592A8F609FD54E54C469C2F3] [sPRF] (.Yahoo! Inc. - Yahoo! Toolbar Setup.) -- C:\Users\Pierre-Yves\AppData\Local\Temp\ytb.exe [329479] [MD5.FFA8FF973E3141B15F7872AC78A4F118] [sPRF] (.Zfmjnkpky Wzygsdcruph - FTP Service Performance Counters.) -- C:\Users\Pierre-Yves\AppData\Roaming\mfc40ur.dll [118784] ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 7/8/2009 108392 | "C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe (ccEvtMgr) . (.Symantec Corporation.) - C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe SR - | Auto 7/8/2009 108392 | "C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe (ccSetMgr) . (.Symantec Corporation.) - C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe SR - | Auto 4/23/2010 514232 | (ezSharedSvc) . (.EasyBits Software AS.) - C:\Windows\System32\ezSharedSvcHost.exe SS - | Demand 6/19/2010 246520 | "C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe SR - | Auto 9/18/2010 126008 | "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe (HP Health Check Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe SR - | Auto 8/6/2010 681528 | "C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe (HPAuto) . (.Hewlett-Packard.) - C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe SR - | Auto 8/6/2010 291896 | "C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe (HPClientSvc) . (.Hewlett-Packard Company.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe SR - | Auto 8/21/2010 92216 | "C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe (HPDrvMntSvc.exe) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe SS - | Demand 8/21/2010 707128 | "C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe SR - | Auto 3/4/2010 13336 | "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe SR - | Auto 11/22/2010 73728 | "c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe (LightScribeService) . (.Hewlett-Packard Company.) - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe SS - | Demand 8/18/2009 3093880 | "C:\PROGRA~2\Symantec\LIVEUP~1\LUCOMS~1.exe (LiveUpdate) . (.Symantec Corporation.) - C:\PROGRA~2\Symantec\LIVEUP~1\LUCOMS~1.exe SR - | Auto 10/1/2009 268824 | C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe SR - | Auto 6/2/2010 2804568 | "C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe (NOBU) . (.Symantec Corporation.) - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SR - | Auto 6/2/2010 0 | C:\Windows\system32\nvvsvc.exe (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe SR - | Auto 7/27/2010 249136 | "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (SeaPort) . (.Microsoft Corporation.) - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe SR - | Auto 9/17/2009 3197256 | "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Smc.exe (SmcService) . (.Symantec Corporation.) - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Smc.exe SS - | Disabled 9/17/2009 411976 | "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\SNAC64.exe (SNAC) . (.Symantec Corporation.) - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\SNAC64.exe SR - | Auto 9/17/2009 2477304 | "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Rtvscan.exe (Symantec AntiVirus) . (.Symantec Corporation.) - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Rtvscan.exe SR - | Auto 10/1/2009 2320920 | "C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe SS - | Disabled 7/14/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe SR - | Auto 7/14/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, GMER - Rootkit Detector and Remover Run by Pierre-Yves at 3/3/2011 10:12:23 PM device: opened successfully user: error reading MBR Disk trace: error: Read Descripteur non valide kernel: error reading MBR ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Pierre-Yves at 3/3/2011 10:12:23 PM Use the desktop link 'MBRCheck' to have full report ---\\ Infection BT - BHO/Toolbar (Possible) O69 - SBI: SearchScopes [HKCU] {2fa28606-de77-4029-af96-b231e3b8f827} - (Ask.com) - http://eu.ask.com/web?q={searchterms}&l=dis&o=HPDTDF End of the scan (1021 lines in 11mn AMs)(0)

Bonsoir et merci pour ton aide... Voici le rapport de AD-R : ======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 01/03/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: TeamXscript : AD-Remover - FindyKill - UsbFix - SEAF C:\Program Files (x86)\Ad-Remover\main.exe (SCAN [3]) -> Lancé à 22:08:18 le 03/03/2011, Mode normal Microsoft Windows 7 Édition Familiale Premium (X64) Pierre-Yves@GEANT (Hewlett-Packard p6740fr-m) ============== RECHERCHE ============== ============== SCAN ADDITIONNEL ============== **** Mozilla Firefox Version [3.6.14 (fr)] **** HKLM_MozillaPlugins\@cambridgesoft.com/Chem3D,version=12.0 (x) HKLM_MozillaPlugins\@cambridgesoft.com/ChemDraw,version=12.0 (x) HKLM_Extensions|msntoolbar@msn.com - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\Firefox -- C:\Users\Pierre-Yves\AppData\Roaming\Mozilla\FireFox\Profiles\zpkehr6l.default -- Extensions\{a6ca9b3b-5e52-4f47-85d8-cca35bb57596} (Sage) Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.14 ======================================== **** Internet Explorer Version [8.0.7600.16385] **** HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896 HKCU_Main|Start Page - hxxp://fr.msn.com/ HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Start Page - hxxp://fr.msn.com/ HKCU_SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} - "Ask.com" (hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPDTDF) HKCU_SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3} - "Wikipedia" (hxxp://fr.wikipedia.org/wiki/Special:Search?search={searchTerms}) HKCU_SearchScopes\{d944bb61-2e34-4dbf-a683-47e505c587dc} - "eBay" (hxxp://rover.ebay.com/rover/1/709-111075-12437-0/4?satitle={searchTerms}&mfe=Des...) HKLM_SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} - "Ask.com" (hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPDTDF) HKLM_SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3} - "Wikipedia" (hxxp://fr.wikipedia.org/wiki/Special:Search?search={searchTerms}) HKLM_SearchScopes\{d944bb61-2e34-4dbf-a683-47e505c587dc} - "eBay" (hxxp://rover.ebay.com/rover/1/709-111075-12437-0/4?satitle={searchTerms}&mfe=Des...) HKLM_Toolbar|{8dcb7100-df86-4384-8842-8fa844297b3f} (C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll) HKLM_ElevationPolicy\{0002df01-0000-0000-c000-000000000046} - C:\Program Files (x86)\Internet Explorer\iexplore.exe (x) HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x) HKLM_ElevationPolicy\{08FF730A-494F-4cba-AA0B-E4F1D44715F9} - C:\Program Files (x86)\Norton Internet Security\Engine\18.1.0.37\symerr.exe (x) HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x) HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x) HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x) BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll) ======================================== C:\Program Files (x86)\Ad-Remover\Quarantine: 0 Fichier(s) C:\Program Files (x86)\Ad-Remover\Backup: 4 Fichier(s) C:\Ad-Report-CLEAN[1].txt - 02/03/2011 18:22:40 (3973 Octet(s)) C:\Ad-Report-SCAN[1].txt - 02/03/2011 18:20:57 (3440 Octet(s)) C:\Ad-Report-SCAN[2].txt - 03/03/2011 22:05:21 (3992 Octet(s)) C:\Ad-Report-SCAN[3].txt - 03/03/2011 22:08:21 (3919 Octet(s)) Fin à: 22:08:49, 03/03/2011 ============== E.O.F ==============

Bonjour, J'ai un gros souci sur mon pc (windows 7), depuis 2 jours dès que je fais une recherche sur google (sous firefox), le lien me redirige quasi-systématiquement vers une page publicitaire Gomeo... de plus Internet Explorer ouvre sans arrêt des pages publicitaires. J'ai désactivé IE ce qui empêche l'ouverture des pages, mais lorsque je nettoie mon ordi avec ccleaner je vois énormément de fichiers temporaires dans IE ! J'ai réalisé plusieurs scans anti-virus et avec malwarebytes, sans succès ! Merci d'avance pour vos réponses...