lith0405

Merci pour cette réponse rapide. Le dll était dans le répertoire suivant C:\Windows\System32 Je l'avais déjà passé à la moulinette Virus total. Voilà ce qu'en disait Superantispyware sur son site : DLLH264.DLL - Trojan.Dropper/Sys-NV | SUPERAntiSpyware J'ai donc procédé à un effacement avec Glary Utilities. Ce matin nouveau scan et rien à signaler, de plus le fichier ne se trouve plus présent dans le répertoire. Je vais veiller en cas de réapparition et je vous tiens informé. Je renouvelle mes remerciements et vous souhaite une bonne continuation.

Bonjour, Je souhaite désinfecter mon PC, le fichier détecté (par SuperantiSpy) comme infecté par le trojan est dllh264.dll Nettoyage par Superantispy, puis suppression de la quarantaine. Mais rien n'y fait la nouvelle analyse le détecte à nouveau. Rapport ZHPDiag Rapport de ZHPDiag v1.27.201 par Nicolas Coolman, Update du 08/05/2011 Run by admin at 5/10/2011 12:09:35 PM Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v9.0.8112.16421 MFIE: Mozilla Firefox 4.0.1 v4.0.1 (Defaut) ---\\ System Information Windows 7 Business Edition, 32-bit Service Pack 1 (Build 7601) Processor: x86 Family 6 Model 37 Stepping 5, GenuineIntel Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 3575.3 MB (43% free) System Restore: Activé (Enable) System drive C: has 233 GB (65%) free of 359 GB ---\\ Logged in mode Computer Name: ELITE8100 User Name: admin All Users Names: Administrateur, admin, Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Users\admin\AppData\Roaming %LocalAppData%=C:\Users\admin\AppData\Local %StartMenu%=C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 233 Go of 359 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 7 Go) E:\ CD-ROM drive (Not Inserted) F:\ Hard drive, Flash drive, Thumb drive (Free 39 Go of 98 Go) G:\ Floppy drive, Flash card reader, USB Key (Not Inserted) H:\ Floppy drive, Flash card reader, USB Key (Not Inserted) I:\ Floppy drive, Flash card reader, USB Key (Not Inserted) J:\ Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK ---\\ Recherche particulière de fichiers génériques [MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.2/25/2011 6:30:54 AM.) -- C:\Windows\Explorer.exe [2616320] [MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.7/14/2009 2:14:45 AM.) -- C:\Windows\system32\Wininit.exe [96256] [MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.5/2/2011 2:54:03 PM.) -- C:\Windows\system32\wininet.dll [1126912] [MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.11/20/2010 1:17:54 PM.) -- C:\Windows\system32\Winlogon.exe [286720] [MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.7/14/2009 2:26:15 AM.) -- C:\Windows\system32\drivers\atapi.sys [21584] [MD5.81189C3D7763838E55C397759D49007A] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.3/11/2011 6:39:00 AM.) -- C:\Windows\system32\drivers\ntfs.sys [1211264] ---\\ Processus lancés [MD5.F74737E0EF87295E82EBD0A4B040539A] - (.Microsoft Corporation - Composant de saisie tactile ou avec stylet.) -- C:\Windows\SYSTEM32\WISPTIS.EXE [334336] [MD5.21E01FD4147EA1B952E4CD9928B879B8] - (.Microsoft Corporation - Tablet PC Input Panel Accessory.) -- C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe [181760] [MD5.D9FDF7FDF6D6065BE789FE0CFF4A09A8] - (.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files\TeamViewer\Version6\TeamViewer.exe [7797112] [MD5.9D8F3FE84EB295AC549799BD312731CA] - (.Wacom Technology, Corp. - Tablet user module for professional driver.) -- C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe [1158512] [MD5.DD23DEAC1F551B1B95B4E885996158CB] - (.DigitalPersona, Inc. - DigitalPersona Local Agent.) -- C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe [629584] [MD5.8C48FEDC3FAA7F14C72557D49DC4FDF6] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7596576] [MD5.D2C487A7B8055F35844135D909D7894C] - (.Hewlett-Packard - File Sanitizer for HP ProtectTools.) -- C:\Program Files\Hewlett-Packard\File Sanitizer\coreshredder.exe [11268096] [MD5.21E858BD6B6AC12C669BF94DF159981C] - (.ActivIdentity - ActivIdentity Event Service.) -- C:\Program Files\ActivIdentity\ActivClient\acevents.exe [153640] [MD5.F7BA25E499E33F2116A6E1A15E532376] - (.ActivIdentity - ActivIdentity card event handler.) -- C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [400936] [MD5.436070EB5A482306B7AF58888E011EA7] - (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe [2219184] [MD5.C861851A0BBD9903E324487011AA3705] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [299008] [MD5.F9932C3C8F1C78738F27EB6360ACF681] - (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe [640440] [MD5.1B13227DB8271040CEB5128414EE2742] - (.Logitech Inc. - Logitech Webcam Software.) -- C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [190808] [MD5.CDDD13E60E3D8FA4ECC39BC37620D5CB] - (...) -- C:\Program Files\EATON\IntelligentPowerProtector\mc2.exe [3713961] [MD5.638C728F21CCC7EC4F8517A212C34353] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160] [MD5.13B19DD5EBEB6FDDBD11DD77490A3585] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [253672] [MD5.3647D444D0A674EA494D43AC78D98D84] - (...) -- C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe [203096] [MD5.8EA4AAF03CE0D00CB91FCEE88909E2E9] - (...) -- C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe [687448] [MD5.72F60452B6834A100CFA2A17F8948743] - (.Binary Fortress Software - DisplayFusion.) -- C:\Program Files\DisplayFusion\DisplayFusion.exe [1517288] [MD5.9FB2EE7C060AF10E60E94182779DCECE] - (.SUPERAntiSpyware.com - SUPERAntiSpyware Application.) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2424192] [MD5.B624202660474516E73AA95238FD9843] - (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe [813584] [MD5.F4D6D11C89616549652067E7C8FA1ADF] - (.Dropbox, Inc. - Dropbox.) -- C:\Users\admin\AppData\Roaming\Dropbox\bin\Dropbox.exe [23343848] [MD5.D28C5A1411BB0B47E05E0D6AAF896690] - (.ATI Technologies Inc. - Catalyst Control Center: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [299008] [MD5.E96BC31E0114F0999FB0F92FC65D61CA] - (.Logitech, Inc. - Logitech KHAL Main Process.) -- C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE [55824] [MD5.7D685AE28E6876EE5057DA51958F3CA7] - (.Microsoft Corporation - Serveur de personnalisation d’entrée.) -- C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [294400] [MD5.E83508D9A0F0D0D8449317DC6A4C5E02] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [924632] [MD5.3B2CC09944488DB5ED5DFDC315C9AB57] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856] [MD5.5375A0D0CEE1C942047367E72A4E750A] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [645632] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) M3 - MFPP: Plugins - [admin] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [admin] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml M3 - MFPP: Plugins - [admin] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [admin] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [admin] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [admin] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [admin] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems, Inc. - Contribute Firefox IBE Plugin DLL.) -- C:\Program Files\Mozilla Firefox\Plugins\npContribute.dll P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.4".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.5.9.620.) -- C:\Windows\system32\Adobe\Director\np32dsw.dll P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_25 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60310.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3508.1109] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll P2 - FPN: [HKLM] [@wacom.com/wacom-plugin,version=1.1.0.5] - (.Wacom, Inc. - Wacom Dynamic Link Library.) -- C:\Program Files\TabletPlugins\npwacom.dll M0 - MFSP: prefs.js [admin - ipg6o3e3.default] Navigateur incompatible | Facebook M2 - MFEP: prefs.js [admin - ipg6o3e3.default\foxmarks@kei.com] [] Xmarks v (.Todd Agulnick.) M2 - MFEP: prefs.js [admin - ipg6o3e3.default\mediadico@notrefamille.com] [] Mediadico Toolbar v (.Mediadico.) M2 - MFEP: prefs.js [admin - ipg6o3e3.default\taboo@runningfrombears.com] [] Taboo v0.6.1 (.Jesse Andrews; http://overstimulate.com.) M2 - MFEP: prefs.js [admin - ipg6o3e3.default\{A5C87640-F7CF-11DA-974D-0800200C9A66}] [] Mobile Barcoder v0.2.1 (.Duncan Sample.) M2 - MFEP: prefs.js [admin - ipg6o3e3.default\{e001c731-5e37-4538-a5cb-8168736a2360}] [bitdefender] BitDefender QuickScan v0.9.9.91 (.Echipa R&D BitDefender.) ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKUS\S-1-5-21-614412904-1090549404-624417512-1002\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKUS\S-1-5-21-614412904-1090549404-624417512-1002\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe, F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} . (.Adobe Systems Incorporated. - Contribute IE Plugin.) -- C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} . (.Hewlett-Packard - File Sanitizer for HP ProtectTools.) -- C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll O2 - BHO: HP ProtectTools Security Manager Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} . (.DigitalPersona, Inc. - DigitalPersona OTS Feedback component.) -- C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} . (.Pas de propriétaire - Pas de description.) -- (.not file.) O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} . (.Adobe Systems Incorporated. - Contribute IE Plugin.) -- C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [igfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe O4 - HKLM\..\Run: [iMSS] . (.Pas de propriétaire - PIconStartup application.) -- C:\Program Files\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe O4 - HKLM\..\Run: [PDF Complete] . (.PDF Complete Inc - Sentry for PDF.) -- C:\Program Files\PDF Complete\pdfsty.exe O4 - HKLM\..\Run: [File Sanitizer] . (.Hewlett-Packard - File Sanitizer for HP ProtectTools.) -- C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe O4 - HKLM\..\Run: [acevents] . (.ActivIdentity - ActivIdentity Event Service.) -- C:\Program Files\ActivIdentity\ActivClient\acevents.exe O4 - HKLM\..\Run: [accrdsub] . (.ActivIdentity - ActivIdentity card event handler.) -- C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe O4 - HKLM\..\Run: [startCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKLM\..\Run: [egui] . (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] . (.Logitech, Inc. - Logitech KHAL Main Process.) -- C:\Windows\KHALMNPR.exe O4 - HKLM\..\Run: [AdobeCS4ServiceManager] . (.Adobe Systems Incorporated - Adobe CS4 Service Manager.) -- C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe O4 - HKLM\..\Run: [Acrobat Assistant 8.0] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Run: [LWS] . (.Logitech Inc. - Logitech Webcam Software.) -- C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe O4 - HKLM\..\Run: [Eaton Systray Launcher] . (...) -- C:\Program Files\Eaton\IntelligentPowerProtector\mc2.exe O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe O4 - HKLM\..\Run: [Adobe_ID0ENQBO] . (.Adobe Systems Incorporated - Adobe Version Cue CS4.) -- C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe O4 - HKCU\..\Run: [DisplayFusion] . (.Binary Fortress Software - DisplayFusion.) -- C:\Program Files\DisplayFusion\DisplayFusion.exe O4 - HKCU\..\Run: [AdobeBridge] Clé orpheline O4 - HKCU\..\Run: [sUPERAntiSpyware] . (.SUPERAntiSpyware.com - SUPERAntiSpyware Application.) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-21-614412904-1090549404-624417512-1002\..\Run: [DisplayFusion] . (.Binary Fortress Software - DisplayFusion.) -- C:\Program Files\DisplayFusion\DisplayFusion.exe O4 - HKUS\S-1-5-21-614412904-1090549404-624417512-1002\..\Run: [AdobeBridge] Clé orpheline O4 - HKUS\S-1-5-21-614412904-1090549404-624417512-1002\..\Run: [sUPERAntiSpyware] . (.SUPERAntiSpyware.com - SUPERAntiSpyware Application.) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logitech SetPoint.lnk . (.Logitech, Inc..) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe O4 - Global Startup: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk . (.Dropbox, Inc..) -- C:\Users\admin\AppData\Roaming\Dropbox\bin\Dropbox.exe ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MJC AUBOUE Mail.lnk . (...) -- C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe (.not file.) O4 - Global Startup: C:\Users\admin\Desktop\VirusTotal Uploader 2.0.lnk . (...) -- C:\Program Files\VirusTotalUploader2\VirusTotalUpload2.exe O4 - Global Startup: C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Creator Business v10.lnk . (...) -- C:\Program Files\Common Files\Roxio Shared\10.0\Roxio Central36\Main\Roxio_Central36.exe O4 - Global Startup: C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk . (.Malwarebytes Corporation.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe O4 - Global Startup: C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE O4 - Global Startup: C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O8 - Extra context menu item: Ajouter à un fichier PDF existant . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O8 - Extra context menu item: Convertir au format Adobe PDF . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~1\Office12\EXCEL.exe ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: &Envoyer à OneNote - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~1\Office12\REFBARH.ICO ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll ---\\ Site dans la Zone de confiance d'Internet Explorer (O15) O15 - Trusted Zone: [HKLM\...\Domains\www] http.mcafeeasap.com O15 - Trusted Zone: [HKLM\...\EscDomains\www] http.mcafeeasap.com ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {4A026B12-94F3-4D2F-A468-96AA55DE20A5} (NetCamPlayerWeb11g Control) - http://192.168.10.10/img/NetCamPlayerWeb11g.ocx O16 - DPF: {5896F800-6EFB-422F-A04B-AA7D44D9A4A9} (H264WebClient Control) - http://192.168.10.12/WebClient.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{53747CD1-4D65-4D1B-B25C-528D61276214}: DhcpNameServer = 192.168.10.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{53747CD1-4D65-4D1B-B25C-528D61276214}: DhcpNameServer = 192.168.10.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{53747CD1-4D65-4D1B-B25C-528D61276214}: DhcpNameServer = 192.168.10.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.10.1 ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: DeviceNP . (.Hewlett-Packard Limited - Pas de description.) -- C:\Windows\System32\DeviceNP.dll O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: (ac.sharedstore) . (.ActivIdentity - ActivIdentity Cache Server.) - C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe O23 - Service: (Adobe Version Cue CS4) . (.Adobe Systems Incorporated - Adobe Version Cue CS4.) - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe O23 - Service: C:\Windows\system32\Alg.exe (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe (DpHost) . (.DigitalPersona, Inc. - DigitalPersona Local Host.) - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe O23 - Service: (Eaton IntelligentPowerProtector) . (...) - C:\Program Files\Eaton\IntelligentPowerProtector\mc2.exe O23 - Service: (EhttpSrv) . (.ESET - ESET HTTP Server Service.) - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe O23 - Service: (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Smart Security\ekrn.exe O23 - Service: (FLCDLOCK) . (.Hewlett-Packard Ltd - Device Access Manager.) - C:\Windows\system32\flcdlock.exe O23 - Service: (FLEXnet Licensing Service) . (.Acresso Software Inc. - Activation Licensing Service.) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: (HP Health Check Service) . (.Hewlett-Packard Company - HP Support Assistant.) - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe O23 - Service: (HP ProtectTools Service) . (.Hewlett-Packard Development Company, L.P - PTChangeFilterService.) - C:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe O23 - Service: (HPDrvMntSvc.exe) . (.Hewlett-Packard Company - HP Quick Synchronization Service.) - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe O23 - Service: (HpFkCryptService) . (.McAfee, Inc. - Drive Encryption for HP ProtectTools Servic.) - C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe O23 - Service: (HPFSService) . (.Hewlett-Packard - HPFSService Application.) - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe O23 - Service: (hpqwmiex) . (.Hewlett-Packard Company - hpqwmiex Module.) - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: (iPod Service) . (.Apple Inc. - iPodService Module (32-bit).) - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: (IviRegMgr) . (.InterVideo - RegMgr Module.) - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe O23 - Service: (LBTServ) . (.Logitech, Inc. - Logitech Bluetooth Service.) - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe O23 - Service: (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: (pdfcDispatcher) . (.PDF Complete Inc - Dispatcher.) - C:\Program Files\PDF Complete\pdfsvc.exe O23 - Service: (PSI_SVC_2) . (.Protexis Inc. - PsiService PsiService.) - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe O23 - Service: (RoxMediaDB10) . (.Sonic Solutions - RoxMediaDB10 Module.) - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe O23 - Service: (stllssvr) . (.MicroVision Development, Inc. - SureThing Labelflash Disc Printer Service M.) - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: (TabletServiceWacom) . (.Wacom Technology, Corp. - Tablet Service for professional driver.) - C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe O23 - Service: (TeamViewer6) . (.TeamViewer GmbH - TeamViewer Remote Control Application.) - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe O23 - Service: C:\Windows\system32\umrdp.dll (UMVPFSrv) . (.Logitech Inc. - Logitech User mode UMVPF service.) - C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe O23 - Service: (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ---\\ Tâches planifiées en automatique (O39) [MD5.00000000000000000000000000000000] [APT] [{05B14B5F-E95D-4A8C-B9FF-1C8EA23072BE}] (.Pas de propriétaire.) -- C:\Program Files\Skype\Phone\Skype.exe (.not file.) [MD5.187E0D2AB859AD03393DDD731076BE81] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [MD5.FDC7C934ADB8C3B51A3C21781B608673] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [MD5.FDC7C934ADB8C3B51A3C21781B608673] [APT] [PC Tuneup] (.Hewlett-Packard Company.) -- C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys O41 - Driver: (ehdrv) . (.ESET - ESET Helper driver.) - C:\Windows\System32\DRIVERS\ehdrv.sys O41 - Driver: McAfee Inc. mfehidk (mfehidk) . (.McAfee, Inc. - Host Intrusion Detection Link Driver.) - C:\Windows\System32\drivers\mfehidk.sys O41 - Driver: McAfee Inc. mfetdik (mfetdik) . (.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) - C:\Windows\System32\drivers\mfetdik.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys O41 - Driver: (SASDIFSV) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASDIFSV.SYS.) - C:\Program Files\SUPERAntiSpyware\SASDIFSV.sys O41 - Driver: (SASKUTIL) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASKUTIL.SYS.) - C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys O41 - Driver: (Serial) . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys O41 - Driver: (truecrypt) . (.TrueCrypt Foundation - TrueCrypt Driver.) - C:\Windows\System32\drivers\truecrypt.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys ---\\ Logiciels installés (O42) O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {D7EC8A27-CDA2-46AE-8A26-4104A04FA5BE} O42 - Logiciel: AMD Drag and Drop Transcoding - (.ATI Technologies Inc..) [HKLM] -- {5144CB05-69D8-03DD-9D9A-ECDAEEA93826} O42 - Logiciel: ATI AVIVO Codecs - (.ATI Technologies Inc..) [HKLM] -- {FFE07FA8-37BD-02CB-DEBF-0B64B57C20F8} O42 - Logiciel: ATI Problem Report Wizard - (.ATI Technologies.) [HKLM] -- {02BEB9A6-6695-F451-A98A-E08B048B5687} O42 - Logiciel: ATI Stream SDK v2 Developer - (.ATI Technologies Inc..) [HKLM] -- {86B247F9-1D5E-CCC6-3280-71486D9A4E70} O42 - Logiciel: ActivClient x86 - (.ActivIdentity.) [HKLM] -- {1BE8806A-84F8-4655-A381-0D5524430944} O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {254C37AA-6B72-4300-84F6-98A82419187E} O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {197A3012-8C85-4FD3-AB66-9EC7E13DB92E} O42 - Logiciel: Adobe Acrobat 9.4.4 - CPSID_83708 - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-1033-F400-7760-000000000004}_944 O42 - Logiciel: Adobe After Effects CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {45EC816C-0771-4C14-AE6D-72D1B578F4C8} O42 - Logiciel: Adobe After Effects CS4 Presets - (.Adobe Systems Incorporated.) [HKLM] -- {44E240EC-2224-4078-A88B-2CEE0D3016EF} O42 - Logiciel: Adobe After Effects CS4 Template Projects & Footage - (.Adobe Systems Incorporated.) [HKLM] -- {F600CCF3-9C88-4A22-B0B4-DDA82E997118} O42 - Logiciel: Adobe After Effects CS4 Third Party Content - (.Adobe Systems Incorporated.) [HKLM] -- {67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E} O42 - Logiciel: Adobe Anchor Service CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {1618734A-3957-4ADD-8199-F973763109A8} O42 - Logiciel: Adobe Asset Services CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {B9F4561A-924D-4510-A85A-BB0960C338CB} O42 - Logiciel: Adobe Bridge CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {83877DB1-8B77-45BC-AB43-2BAC22E093E0} O42 - Logiciel: Adobe CMaps CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {94D398EB-D2FD-4FD1-B8C4-592635E8A191} O42 - Logiciel: Adobe CS4 American English Speech Analysis Models - (.Adobe Systems Incorporated.) [HKLM] -- {297190A1-4B0D-4CD6-8B9F-3907F15C3FD8} O42 - Logiciel: Adobe CS4 French Speech Analysis Models - (.Adobe Systems Incorporated.) [HKLM] -- {9AACCD0F-2734-4E8C-8C24-2702D4506E93} O42 - Logiciel: Adobe CS4 German Speech Analysis Models - (.Adobe Systems Incorporated.) [HKLM] -- {9A7C4EAC-6E38-42E3-85AA-408874A803DE} O42 - Logiciel: Adobe CS4 International English Speech Analysis Models - (.Adobe Systems Incorporated.) [HKLM] -- {4F213D2A-B942-4611-AEE5-49F9D42D0A2F} O42 - Logiciel: Adobe CS4 Italian Speech Analysis Models - (.Adobe Systems Incorporated.) [HKLM] -- {0B561CF4-0C7D-4745-AF53-161E24E44F87} O42 - Logiciel: Adobe CS4 Japanese Speech Analysis Models - (.Adobe Systems Incorporated.) [HKLM] -- {B35FDD04-48FD-4D3D-B0EB-088C5137CD42} O42 - Logiciel: Adobe CS4 Korean Speech Analysis Models - (.Adobe Systems Incorporated.) [HKLM] -- {48E9A4FB-17C6-4B14-BC9D-D83AF2A4059A} O42 - Logiciel: Adobe CS4 Spanish Speech Analysis Models - (.Adobe Systems Incorporated.) [HKLM] -- {1FD653A8-9CFA-4392-B89C-CCDB114DE442} O42 - Logiciel: Adobe CSI CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {0F723FC1-7606-4867-866C-CE80AD292DAF} O42 - Logiciel: Adobe Color - Photoshop Specific CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {3D2C9DE6-9ADE-4252-A241-E43723B0CE02} O42 - Logiciel: Adobe Color EU Recommended Settings CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1} O42 - Logiciel: Adobe Color JA Extra Settings CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {0D6013AB-A0C7-41DC-973C-E93129C9A29F} O42 - Logiciel: Adobe Color NA Extra Settings CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {098A2A49-7CF3-4F08-A38D-FB879117152A} O42 - Logiciel: Adobe Color Video Profiles AE CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {B15381DD-FF97-4FCD-A881-ED4DB0975500} O42 - Logiciel: Adobe Color Video Profiles CS CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {63C24A08-70F3-4C8E-B9FB-9F21A903801D} O42 - Logiciel: Adobe Contribute CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {A6EC82A0-1414-475D-8AFD-469089F3080D} O42 - Logiciel: Adobe Creative Suite 4 Master Collection - (.Adobe Systems Incorporated.) [HKLM] -- Adobe_7e74552a59eaf9fafd13f90894ac9bd O42 - Logiciel: Adobe Creative Suite 4 Master Collection - (.Adobe Systems Incorporated.) [HKLM] -- {9966A5DB-8BB0-4D89-A701-386ED84E79B8} O42 - Logiciel: Adobe Default Language CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {C52E3EC1-048C-45E1-8D53-10B0C6509683} O42 - Logiciel: Adobe Device Central CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {67F0E67A-8E93-4C2C-B29D-47C48262738A} O42 - Logiciel: Adobe Dreamweaver CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {30C8AA56-4088-426F-91D1-0EDFD3A25678} O42 - Logiciel: Adobe Drive CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {16E16F01-2E2D-4248-A42F-76261C147B6C} O42 - Logiciel: Adobe Dynamiclink Support - (.Adobe Systems Incorporated.) [HKLM] -- {60DB5894-B5A1-4B62-B0F3-669A22C0EE5D} O42 - Logiciel: Adobe Encore CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {5EAD5443-7194-46CC-A055-428E6ABB1BAF} O42 - Logiciel: Adobe Encore CS4 Codecs - (.Adobe Systems Incorporated.) [HKLM] -- {FB2A5FCC-B81B-48C2-A009-7804694D83E9} O42 - Logiciel: Adobe Encore CS4 Library - (.Adobe Systems Incorporated.) [HKLM] -- {B095B0A4-50A5-46D7-9988-D038FEB040C0} O42 - Logiciel: Adobe ExtendScript Toolkit CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {F8EF2B3F-C345-4F20-8FE4-791A20333CD5} O42 - Logiciel: Adobe Extension Manager CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {054EFA56-2AC1-48F4-A883-0AB89874B972} O42 - Logiciel: Adobe Fireworks CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {428FDF9F-E010-4C4C-A8BB-156960AFCA1C} O42 - Logiciel: Adobe Flash CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {F6E99614-F042-4459-82B7-8B38B2601356} O42 - Logiciel: Adobe Flash CS4 Extension - Flash Lite STI fr - (.Adobe Systems Incorporated.) [HKLM] -- {BD423B54-8668-44B6-8610-D24514445E88} O42 - Logiciel: Adobe Flash CS4 STI-fr - (.Adobe Systems Incorporated.) [HKLM] -- {48F9998C-3BA0-42D3-82E6-5882441EB8CE} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems, Inc..) [HKLM] -- {3A6829EF-0791-4FDD-9382-C690DD0821B9} O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Fonts All - (.Adobe Systems Incorporated.) [HKLM] -- {FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794} O42 - Logiciel: Adobe Illustrator CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {87532CAB-7932-4F84-8937-823337622807} O42 - Logiciel: Adobe InDesign CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {1DCA3EAA-6EB5-4563-A970-EA14D75037BA} O42 - Logiciel: Adobe InDesign CS4 Application Feature Set Files (Roman) - (.Adobe Systems Incorporated.) [HKLM] -- {2BAF2B96-7560-48B4-87D4-10178DDBE217} O42 - Logiciel: Adobe InDesign CS4 Common Base Files - (.Adobe Systems Incorporated.) [HKLM] -- {7CC7BDD5-6F10-4724-96A1-EAC7D9F2831C} O42 - Logiciel: Adobe InDesign CS4 Icon Handler - (.Adobe Systems Incorporated.) [HKLM] -- {1E04CB54-AF4E-4AC3-B4B7-C0A160BE57F1} O42 - Logiciel: Adobe Linguistics CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {931AB7EA-3656-4BB7-864D-022B09E3DD67} O42 - Logiciel: Adobe Media Encoder CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {DEB90B8E-0DCB-48CE-B90E-8842A2BD643E} O42 - Logiciel: Adobe Media Encoder CS4 Additional Exporter - (.Adobe Systems Incorporated.) [HKLM] -- {BE9CEAAA-F069-4331-BF2F-8D350F6504F4} O42 - Logiciel: Adobe Media Encoder CS4 Dolby - (.Adobe Systems Incorporated.) [HKLM] -- {EE353798-E875-42E0-B58D-7E6696182EA8} O42 - Logiciel: Adobe Media Encoder CS4 Exporter - (.Adobe Systems Incorporated.) [HKLM] -- {561968FD-56A1-49FD-9ED0-F55482C7C5BC} O42 - Logiciel: Adobe Media Encoder CS4 Importer - (.Adobe Systems Incorporated.) [HKLM] -- {8186FF34-D389-4B7E-9A2F-C197585BCFBD} O42 - Logiciel: Adobe MotionPicture Color Files CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {B05DE7B7-0B40-4411-BD4B-222CAE2D8F15} O42 - Logiciel: Adobe OnLocation CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {7406DF60-016D-476B-A2C7-55D997592047} O42 - Logiciel: Adobe Output Module - (.Adobe Systems Incorporated.) [HKLM] -- {BB4E33EC-8181-4685-96F7-8554293DEC6A} O42 - Logiciel: Adobe PDF Library Files CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {F93C84A6-0DC6-42AF-89FA-776F7C377353} O42 - Logiciel: Adobe Photoshop CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {B65BA85C-0A27-4BC0-A22D-A66F0E5B9494} O42 - Logiciel: Adobe Photoshop CS4 Support - (.Adobe Systems Incorporated.) [HKLM] -- {63E5CDBF-8214-4F03-84F8-CD3CE48639AD} O42 - Logiciel: Adobe Photoshop Lightroom 3 - (.Adobe.) [HKLM] -- {23DD8A17-65DB-4D49-A2E0-164C6F460E3F} O42 - Logiciel: Adobe Premiere Pro CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {D499F8DE-3F31-4900-9157-61061613704B} O42 - Logiciel: Adobe Premiere Pro CS4 Functional Content - (.Adobe Systems Incorporated.) [HKLM] -- {B169BC97-B8AA-4ACA-9CF2-9D0FF5BABDF7} O42 - Logiciel: Adobe Premiere Pro CS4 Third Party Content - (.Adobe Systems Incorporated.) [HKLM] -- {C938BE91-3BB5-4B84-9EF6-88F0505D0038} O42 - Logiciel: Adobe SGM CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {15BF7AAF-846C-4A6D-80E1-5D1FC7FB461B} O42 - Logiciel: Adobe SING CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {4A52555C-032A-4083-BDD9-6A85ABFB39A8} O42 - Logiciel: Adobe Search for Help - (.Adobe Systems Incorporated.) [HKLM] -- {F0E64E2E-3A60-40D8-A55D-92F6831875DA} O42 - Logiciel: Adobe Service Manager Extension - (.Adobe Systems Incorporated.) [HKLM] -- {4943EFF5-229F-435D-BEA9-BE3CAEA783A7} O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM] -- {BCEEDC10-441F-4E4E-8590-0955C4C6B3F6} O42 - Logiciel: Adobe Shockwave Player 11.5 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player O42 - Logiciel: Adobe Soundbooth CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {14F70205-1940-4000-88C7-BE799A6B2CAD} O42 - Logiciel: Adobe Soundbooth CS4 Codecs - (.Adobe Systems Incorporated.) [HKLM] -- {52232EF4-CC12-4C21-ABCF-ADB79618302D} O42 - Logiciel: Adobe Type Support CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {820D3F45-F6EE-4AAF-81EF-CE21FF21D230} O42 - Logiciel: Adobe Update Manager CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {05308C4E-7285-4066-BAE3-6B50DA6ED755} O42 - Logiciel: Adobe Version Cue CS4 Server - (.Adobe Systems Incorporated.) [HKLM] -- {1B7C06E1-4888-47A6-992A-0990B9683486} O42 - Logiciel: Adobe WinSoft Linguistics Plugin - (.Adobe Systems Incorporated.) [HKLM] -- {3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF} O42 - Logiciel: Adobe XMP Panels CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {3A4E8896-C2E7-4084-A4A4-B8FD1894E739} O42 - Logiciel: AdobeColorCommonSetCMYK - (.Adobe Systems Incorporated.) [HKLM] -- {68243FF8-83CA-466B-B2B8-9F99DA5479C4} O42 - Logiciel: AdobeColorCommonSetRGB - (.Adobe Systems Incorporated.) [HKLM] -- {16E6D2C1-7C90-4309-8EC4-D2212690AAA4} O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {853A4763-6643-4604-8D64-28BDD8925F4C} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {CACAEB5F-174D-4C7C-AC56-A33289A807CA} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1} O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {C2E4B5BD-32DB-4817-A060-341AB17C3F90} O42 - Logiciel: CDDRV_Installer - (.Logitech.) [HKLM] -- {0C826C5B-B131-423A-A229-C71B3CACCD6A} O42 - Logiciel: CameraHelperMsi - (.Logitech.) [HKLM] -- {15634701-BACE-4449-8B25-1567DA8C9FD3} O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM] -- {6AB57823-3580-4CE0-9CF0-072E2A39460C} O42 - Logiciel: Connect - (.Adobe Systems Incorporated.) [HKLM] -- {B29AD377-CC12-490A-A480-1452337C618D} O42 - Logiciel: Contrôle ActiveX Windows Live Mesh pour connexions à distance - (.Microsoft Corporation.) [HKLM] -- {55D003F4-9599-44BF-BA9E-95D060730DD3} O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} O42 - Logiciel: Device Access Manager for HP ProtectTools - (.Hewlett-Packard.) [HKLM] -- {55B52830-024A-443E-AF61-61E1E71AFA1B} O42 - Logiciel: DirectX 9 Runtime - (.Sonic Solutions.) [HKLM] -- {AF9E97C1-7431-426D-A8D5-ABE40995C0B1} O42 - Logiciel: DisplayFusion 3.3.0 - (.Binary Fortress Software.) [HKLM] -- B076073A-5527-4f4f-B46B-B10692277DA2_is1 O42 - Logiciel: Doodle Outlook Connector - (.Doodle AG.) [HKCU] -- 33030675DC63B8C8D12A223C2017505053D50B01 O42 - Logiciel: Drive Encryption for HP ProtectTools - (.Hewlett-Packard.) [HKLM] -- Drive Encryption O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU] -- Dropbox O42 - Logiciel: Eaton Intelligent Power Protector v1.10 - (.Eaton.) [HKLM] -- Eaton IntelligentPowerProtector O42 - Logiciel: File Sanitizer For HP ProtectTools - (.Hewlett-Packard.) [HKLM] -- {6D6ADF03-B257-4EA5-BBC1-1D145AF8D514} O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {488F0347-C4A7-4374-91A7-30818BEDA710} O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM] -- {07FA4960-B038-49EB-891B-9F95930AA544} O42 - Logiciel: HP ProtectTools Security Manager - (.Hewlett-Packard Company.) [HKLM] -- HPProtectTools O42 - Logiciel: HP ProtectTools Security Manager - (.Hewlett-Packard Company.) [HKLM] -- {809FCD4F-CEFE-4F03-8834-2717CFAE8824} O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM] -- {1E6219D4-027E-47EE-AB83-DD2F26E31A32} O42 - Logiciel: HP Vision Hardware Diagnostics - (.Hewlett-Packard.) [HKLM] -- {D79A02E9-6713-4335-9668-AAC7474C0C0E} O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {669D4A35-146B-4314-89F1-1AC3D7B88367} O42 - Logiciel: Intel® Control Center - (.Intel Corporation.) [HKLM] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421} O42 - Logiciel: Intel® Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} O42 - Logiciel: Intel® Management Engine Components - (.Intel Corporation.) [HKLM] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} O42 - Logiciel: Intel® Network Connections 14.6.10.0 - (.Intel.) [HKLM] -- PROSetDX O42 - Logiciel: Intel® Network Connections 14.6.10.0 - (.Intel.) [HKLM] -- {CCC68887-6E07-4438-A035-7C22EFBDC15E} O42 - Logiciel: InterVideo WinDVD 8 - (.InterVideo Inc..) [HKLM] -- InstallShield_{5FEBF468-5AC2-4C66-AD80-DF85C085AA73} O42 - Logiciel: InterVideo WinDVD 8 - (.InterVideo Inc..) [HKLM] -- {5FEBF468-5AC2-4C66-AD80-DF85C085AA73} O42 - Logiciel: Java Card Security for HP ProtectTools - (.Hewlett-Packard.) [HKLM] -- {F4477CC0-7293-414A-93BC-20EE897A80F0} O42 - Logiciel: Java 6 Update 25 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216022FF} O42 - Logiciel: KhalInstallWrapper - (.Logitech.) [HKLM] -- {3101CB58-3482-4D21-AF1A-7057FC935355} O42 - Logiciel: LWS Facebook - (.Logitech.) [HKLM] -- {FF167195-9EE4-46C0-8CD7-FBA3457E88AB} O42 - Logiciel: LWS Gallery - (.Logitech.) [HKLM] -- {6F76EC3C-34B1-436E-97FB-48C58D7BEDCD} O42 - Logiciel: LWS Help_main - (.Logitech.) [HKLM] -- {1651216E-E7AD-4250-92A1-FB8ED61391C9} O42 - Logiciel: LWS Launcher - (.Logitech.) [HKLM] -- {83C8FA3C-F4EA-46C4-8392-D3CE353738D6} O42 - Logiciel: LWS Motion Detection - (.Logitech.) [HKLM] -- {71E66D3F-A009-44AB-8784-75E2819BA4BA} O42 - Logiciel: LWS Pictures And Video - (.Logitech.) [HKLM] -- {08610298-29AE-445B-B37D-EFBE05802967} O42 - Logiciel: LWS Twitter - (.Logitech.) [HKLM] -- {174A3B31-4C43-43DD-866F-73C9DB887B48} O42 - Logiciel: LWS Video Mask Maker - (.Logitech.) [HKLM] -- {EED027B7-0DB6-404B-8F45-6DFEE34A0441} O42 - Logiciel: LWS VideoEffects - (.Logitech.) [HKLM] -- {138A4072-9E64-46BD-B5F9-DB2BB395391F} O42 - Logiciel: LWS WLM Plugin - (.Logitech.) [HKLM] -- {9DAEA76B-E50F-4272-A595-0124E826553D} O42 - Logiciel: LWS Webcam Software - (.Logitech.) [HKLM] -- {8937D274-C281-42E4-8CDB-A0B2DF979189} O42 - Logiciel: LWS YouTube Plugin - (.Logitech.) [HKLM] -- {21DF0294-6B9D-4741-AB6F-B2ABFBD2387E} O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM] -- {07E49BC1-24FF-4D7A-AC74-727BE95801AF} O42 - Logiciel: Logitech SetPoint - (.Logitech.) [HKLM] -- {F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E} O42 - Logiciel: Logitech Webcam Software - (.Logitech Inc..) [HKLM] -- {D40EB009-0499-459c-A8AF-C9C110766215} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E} O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM] -- ENTERPRISE O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Groove MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00BA-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook 2007 - (.Microsoft Corporation.) [HKLM] -- OUTLOOK O42 - Logiciel: Microsoft Office Outlook 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook Connector - (.Microsoft Corporation.) [HKLM] -- {95140000-007A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - KB2467175 - (.Microsoft Corporation.) [HKLM] -- {a0fe116e-9a8a-466f-aee0-625cb7c207e3} O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 - (.Microsoft Corporation.) [HKLM] -- {196BB40D-1578-3D01-B289-BEFC77A11A1E} O42 - Logiciel: Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - (.Microsoft Corporation.) [HKLM] -- Microsoft Visual Studio 2010 Tools for Office Runtime (x86) O42 - Logiciel: Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - (.Microsoft Corporation.) [HKLM] -- {B3D1CFF9-C5DA-3590-894B-40821DDB67C5} O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack O42 - Logiciel: Mozilla Firefox 4.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 4.0.1 (x86 fr) O42 - Logiciel: NEC MultiProfiler 1.0.00.00 - (.NEC Display Solutions.) [HKLM] -- NEC MultiProfiler O42 - Logiciel: PDF Complete Special Edition - (.PDF Complete, Inc.) [HKLM] -- PDF Complete O42 - Logiciel: PDF Settings CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {35D94F92-1D3A-43C5-8605-EA268B1A7BD9} O42 - Logiciel: Photoshop Camera Raw - (.Adobe Systems Incorporated.) [HKLM] -- {CC75AB5C-2110-4A7F-AF52-708680D22FE8} O42 - Logiciel: Pixel Bender Toolkit - (.Adobe Systems Incorporated.) [HKLM] -- {43509E18-076E-40FE-AF38-CA5ED400A5A9} O42 - Logiciel: Privacy Manager for HP ProtectTools - (.Hewlett-Packard Company.) [HKLM] -- {4F7FF6F7-B224-43D8-8238-38D6DF2CC31F} O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Roxio Activation Module - (.Roxio.) [HKLM] -- {EC877639-07AB-495C-BFD1-D63AF9140810} O42 - Logiciel: Roxio Creator Audio - (.Roxio.) [HKLM] -- {73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83} O42 - Logiciel: Roxio Creator Business - (.Roxio.) [HKLM] -- {537BF16E-7412-448C-95D8-846E85A1D817} O42 - Logiciel: Roxio Creator Business v10 - (.Roxio.) [HKLM] -- {ED439A64-F018-4DD4-8BA5-328D85AB09AB} O42 - Logiciel: Roxio Creator Copy - (.Roxio.) [HKLM] -- {B6A26DE5-F2B5-4D58-9570-4FC760E00FCD} O42 - Logiciel: Roxio Creator Data - (.Roxio.) [HKLM] -- {08E81ABD-79F7-49C2-881F-FD6CB0975693} O42 - Logiciel: Roxio Creator Tools - (.Roxio.) [HKLM] -- {1F54DAFA-9261-4A62-B59D-6C9F26B48FE4} O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA} O42 - Logiciel: Roxio MyDVD - (.Roxio.) [HKLM] -- {30A2A953-DEB1-466A-B660-F4399C7C6B9D} O42 - Logiciel: SUPERAntiSpyware - (.SUPERAntiSpyware.com.) [HKLM] -- {CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA} O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906 O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708 O42 - Logiciel: Sonic CinePlayer Decoder Pack - (.Sonic Solutions.) [HKLM] -- {8D337F77-BE7F-41A2-A7CB-D5A63FD7049B} O42 - Logiciel: Suite Shared Configuration CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {842B4B72-9E8F-4962-B3C1-1C422A5C4434} O42 - Logiciel: Tablette Wacom - (.Wacom Technology Corp..) [HKLM] -- Wacom Tablet Driver O42 - Logiciel: TeamViewer 6 - (.TeamViewer GmbH.) [HKLM] -- TeamViewer 6 O42 - Logiciel: The Lord of the Rings FREE Trial - (.ATI Technologies Inc..) [HKLM] -- {8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3} O42 - Logiciel: Theft Recovery - (.Hewlett-Packard.) [HKLM] -- InstallShield_{33C9F24B-1D92-4632-A915-81E3BB1D5D6B} O42 - Logiciel: Theft Recovery - (.Hewlett-Packard.) [HKLM] -- {33C9F24B-1D92-4632-A915-81E3BB1D5D6B} O42 - Logiciel: TrueCrypt - (.TrueCrypt Foundation.) [HKLM] -- TrueCrypt O42 - Logiciel: VirusTotal Uploader 2.0 - (.Pas de propriétaire.) [HKLM] -- VirusTotalUploader2.0 O42 - Logiciel: WMV9/VC-1 Video Playback - (.ATI Technologies Inc..) [HKLM] -- {1DC4873F-493C-F305-B55E-0FE0BBC6EFD1} O42 - Logiciel: WebTablet IE Plugin - (.Wacom Technology Corp..) [HKLM] -- Wacom WebTabletPlugin for IE O42 - Logiciel: WebTablet Netscape Plugin - (.Wacom Technology Corp..) [HKLM] -- Wacom WebTabletPlugin for Netscape O42 - Logiciel: WinRAR 4.00 (32 bits) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066} O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {61AD15B2-50DB-4686-A739-14FE180D4429} O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917} O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {841F1FB4-FDF8-461C-A496-3E1CFD84C0B5} O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {DECDCB7C-58CC-4865-91AF-627F9798FE48} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90} O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3} O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {92EA4134-10D1-418A-91E1-5A0453131A38} O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {83C292B7-38A5-440B-A731-07070E81A64F} O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3} O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70} O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1} O42 - Logiciel: Windows Live Remote Client - (.Microsoft Corporation.) [HKLM] -- {19A4A990-5343-4FF7-B3B5-6F046C091EDF} O42 - Logiciel: Windows Live Remote Client Resources - (.Microsoft Corporation.) [HKLM] -- {DFDBE1F9-04CE-4645-BB6C-4590EABC7A9C} O42 - Logiciel: Windows Live Remote Service - (.Microsoft Corporation.) [HKLM] -- {227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0} O42 - Logiciel: Windows Live Remote Service Resources - (.Microsoft Corporation.) [HKLM] -- {AB93C51F-71F9-4A28-8134-FE1B5B9373E9} O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4} O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F} O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2} O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {05E379CC-F626-4E7D-8354-463865B303BF} O42 - Logiciel: erLT - (.Logitech, Inc..) [HKLM] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C} O42 - Logiciel: erLT - (.Logitech, Inc..) [HKLM] -- {A498D9EB-927B-459B-85D6-DD6EF8C2C564} O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {353FE16B-30FE-469A-BF55-B978F4218003} O42 - Logiciel: kuler - (.Adobe Systems Incorporated.) [HKLM] -- {098727E1-775A-4450-B573-3F441F1CA243} ---\\ HKCU & HKLM Software Keys [HKCU\Software\AMD] [HKCU\Software\ATI] [HKCU\Software\Adobe Lightroom] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Software\DigitalPersona] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Binary Fortress Software] [HKCU\Software\BitDefender] [HKCU\Software\CDDB] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\DigitalPersona] [HKCU\Software\ESET] [HKCU\Software\GPL Ghostscript] [HKCU\Software\Google] [HKCU\Software\Hewlett-Packard] [HKCU\Software\HookNetwork] [HKCU\Software\IM Providers] [HKCU\Software\Intel] [HKCU\Software\InterVideo] [HKCU\Software\JavaSoft] [HKCU\Software\Leadertech] [HKCU\Software\LightScribe] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\LogiShrd] [HKCU\Software\Logitech] [HKCU\Software\Macromedia] [HKCU\Software\MainConcept] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MozillaPlugins] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\PC SOFT] [HKCU\Software\PDFComplete] [HKCU\Software\Policies] [HKCU\Software\RICOH] [HKCU\Software\Realtek] [HKCU\Software\RegisteredApplications] [HKCU\Software\Revenger inc.] [HKCU\Software\Roxio] [HKCU\Software\SUPERAntiSpyware.com] [HKCU\Software\Safer Networking Limited] [HKCU\Software\Skype] [HKCU\Software\Softonic] [HKCU\Software\StackDocklet] [HKCU\Software\Stardock] [HKCU\Software\TClock2] [HKCU\Software\TeamViewer] [HKCU\Software\Trolltech] [HKCU\Software\UberIcon-v1.0.0] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\VIP Concept] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\YahooPartnerToolbar] [HKLM\Software\AMD] [HKLM\Software\ATI Technologies] [HKLM\Software\ATI] [HKLM\Software\ActivCard] [HKLM\Software\ActivIdentity] [HKLM\Software\Adobe] [HKLM\Software\AppDataLow] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Bricomix.net] [HKLM\Software\BrowserChoice] [HKLM\Software\CDDB] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Corel] [HKLM\Software\Debug] [HKLM\Software\DigitalPersona] [HKLM\Software\EATON] [HKLM\Software\ESET] [HKLM\Software\GEAR Software] [HKLM\Software\GSC] [HKLM\Software\Google] [HKLM\Software\Hewlett-Packard] [HKLM\Software\Hispasec] [HKLM\Software\Imagineer Systems Ltd] [HKLM\Software\Intel] [HKLM\Software\InterVideo] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Khronos] [HKLM\Software\Lake] [HKLM\Software\Licenses] [HKLM\Software\LightScribe] [HKLM\Software\LogMeIn Rescue] [HKLM\Software\Logitech] [HKLM\Software\MAXSOFT-OCRON] [HKLM\Software\MGE] [HKLM\Software\Macromedia] [HKLM\Software\Macrovision] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\McAfee.com] [HKLM\Software\McAfee] [HKLM\Software\MicroVision] [HKLM\Software\Minnetonka Audio Software] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\ODBC] [HKLM\Software\PDFComplete] [HKLM\Software\Policies] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\Revenger inc.] [HKLM\Software\Roxio] [HKLM\Software\SRS Labs] [HKLM\Software\SUPERAntiSpyware.com] [HKLM\Software\SafeBoot International] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Sonic] [HKLM\Software\Stardock] [HKLM\Software\Synthetic Aperture] [HKLM\Software\TeamViewer] [HKLM\Software\Volatile] [HKLM\Software\Wacom] [HKLM\Software\WinRAR] [HKLM\Software\Windows] [HKLM\Software\Wow6432Node] [HKLM\Software\ZSMC] [HKLM\Software\illiminable] [HKLM\Software\logishrd] [HKLM\Software\mozilla.org] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 11/10/2010 - 10:28:46 PM - [12752231] ----D- C:\Program Files\ActivIdentity O43 - CFD: 1/18/2011 - 11:49:22 AM - [12727953255] ----D- C:\Program Files\Adobe O43 - CFD: 12/29/2010 - 1:50:58 PM - [2306366] ----D- C:\Program Files\Apple Software Update O43 - CFD: 1/21/2011 - 12:19:32 PM - [17321751] ----D- C:\Program Files\ATI O43 - CFD: 1/21/2011 - 12:18:26 PM - [21013850] ----D- C:\Program Files\ATI Stream O43 - CFD: 12/23/2010 - 11:02:56 AM - [82976466] ----D- C:\Program Files\ATI Technologies O43 - CFD: 12/23/2010 - 10:37:30 AM - [467720] ----D- C:\Program Files\Bing Bar Installer O43 - CFD: 5/5/2011 - 7:47:24 PM - [621224] ----D- C:\Program Files\Bonjour O43 - CFD: 5/5/2011 - 8:11:10 PM - [5169748029] ----D- C:\Program Files\Common Files O43 - CFD: 4/14/2011 - 5:01:18 PM - [690632] ----D- C:\Program Files\CursorXP O43 - CFD: 2/16/2011 - 1:12:54 PM - [4480059] ----D- C:\Program Files\DisplayFusion O43 - CFD: 5/5/2011 - 9:07:24 PM - [83226644] ----D- C:\Program Files\DVD Maker O43 - CFD: 3/23/2011 - 1:00:08 PM - [6928969] ----D- C:\Program Files\EATON O43 - CFD: 12/28/2010 - 11:00:26 PM - [64192114] ----D- C:\Program Files\ESET O43 - CFD: 3/3/2011 - 9:24:02 PM - [91648] ----D- C:\Program Files\ghostscript O43 - CFD: 4/15/2011 - 9:04:40 AM - [16671851] ----D- C:\Program Files\Help O43 - CFD: 1/6/2011 - 8:04:50 PM - [389369682] ----D- C:\Program Files\Hewlett-Packard O43 - CFD: 4/14/2011 - 5:01:00 PM - [1994517] ----D- C:\Program Files\iColorFolder O43 - CFD: 3/23/2011 - 12:47:28 PM - [32718835] --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD: 11/10/2010 - 10:21:16 PM - [32115325] ----D- C:\Program Files\Intel O43 - CFD: 5/5/2011 - 9:07:24 PM - [12097747] ----D- C:\Program Files\Internet Explorer O43 - CFD: 11/10/2010 - 10:23:32 PM - [180976389] ----D- C:\Program Files\InterVideo O43 - CFD: 5/5/2011 - 7:42:32 PM - [1856627] ----D- C:\Program Files\iPod O43 - CFD: 5/5/2011 - 7:45:50 PM - [128262104] ----D- C:\Program Files\iTunes O43 - CFD: 5/5/2011 - 8:10:46 PM - [88332234] ----D- C:\Program Files\Java O43 - CFD: 1/26/2011 - 11:00:22 AM - [98442059] ----D- C:\Program Files\Logitech O43 - CFD: 5/5/2011 - 10:19:22 PM - [4922009] ----D- C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD: 12/23/2010 - 10:36:26 AM - [0] ----D- C:\Program Files\Microsoft O43 - CFD: 12/29/2010 - 1:36:24 AM - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2 O43 - CFD: 12/28/2010 - 11:10:16 PM - [708154373] ----D- C:\Program Files\Microsoft Office O43 - CFD: 5/5/2011 - 7:45:52 PM - [38388859] ----D- C:\Program Files\Microsoft Silverlight O43 - CFD: 1/3/2011 - 9:18:58 PM - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD: 12/28/2010 - 11:10:12 PM - [14904] ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD: 12/28/2010 - 11:07:36 PM - [67476831] ----D- C:\Program Files\Microsoft Visual Studio 8 O43 - CFD: 12/29/2010 - 1:32:54 AM - [3726168] ----D- C:\Program Files\Microsoft Works O43 - CFD: 12/28/2010 - 11:10:02 PM - [8167779] ----D- C:\Program Files\Microsoft.NET O43 - CFD: 5/5/2011 - 7:45:52 PM - [34562526] ----D- C:\Program Files\Mozilla Firefox O43 - CFD: 12/28/2010 - 11:10:16 PM - [26521] ----D- C:\Program Files\MSBuild O43 - CFD: 12/23/2010 - 10:13:42 AM - [0] ----D- C:\Program Files\MSXML 4.0 O43 - CFD: 12/29/2010 - 12:50:14 PM - [14962022] ----D- C:\Program Files\NEC DISPLAY SOLUTIONS O43 - CFD: 12/22/2010 - 7:04:14 PM - [1237] R---D- C:\Program Files\Online Services O43 - CFD: 11/10/2010 - 10:25:30 PM - [38014475] ----D- C:\Program Files\PDF Complete O43 - CFD: 12/29/2010 - 1:51:22 PM - [76322555] ----D- C:\Program Files\QuickTime O43 - CFD: 11/10/2010 - 10:18:04 PM - [9086016] ----D- C:\Program Files\Realtek O43 - CFD: 7/14/2009 - 6:52:32 AM - [39159041] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 3/19/2011 - 12:50:20 AM - [104] ----D- C:\Program Files\RK Launcher O43 - CFD: 12/28/2010 - 11:45:30 PM - [389922628] ----D- C:\Program Files\Roxio O43 - CFD: 5/10/2011 - 11:16:00 AM - [2884779] ----D- C:\Program Files\Spybot - Search & Destroy O43 - CFD: 5/6/2011 - 11:48:30 AM - [56771394] ----D- C:\Program Files\SUPERAntiSpyware O43 - CFD: 4/15/2011 - 9:06:42 AM - [24759478] ----D- C:\Program Files\Tablet O43 - CFD: 4/5/2011 - 6:29:10 PM - [844079] ----D- C:\Program Files\TabletPlugins O43 - CFD: 3/24/2011 - 1:52:06 PM - [59804492] ----D- C:\Program Files\TeamViewer O43 - CFD: 1/12/2011 - 1:29:20 PM - [8299563] ----D- C:\Program Files\TrueCrypt O43 - CFD: 7/14/2009 - 6:53:24 AM - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 5/10/2011 - 12:09:08 PM - [205244] ----D- C:\Program Files\VirusTotalUploader2 O43 - CFD: 5/5/2011 - 9:07:24 PM - [3050496] ----D- C:\Program Files\Windows Defender O43 - CFD: 5/5/2011 - 9:07:24 PM - [7013496] ----D- C:\Program Files\Windows Journal O43 - CFD: 1/3/2011 - 9:23:50 PM - [143156289] ----D- C:\Program Files\Windows Live O43 - CFD: 5/5/2011 - 9:07:24 PM - [6181376] ----D- C:\Program Files\Windows Mail O43 - CFD: 5/5/2011 - 9:07:24 PM - [7107330] ----D- C:\Program Files\Windows Media Player O43 - CFD: 7/14/2009 - 6:52:32 AM - [12197556] ----D- C:\Program Files\Windows NT O43 - CFD: 5/5/2011 - 9:07:24 PM - [4417800] ----D- C:\Program Files\Windows Photo Viewer O43 - CFD: 5/5/2011 - 9:07:24 PM - [189952] ----D- C:\Program Files\Windows Portable Devices O43 - CFD: 5/5/2011 - 9:07:24 PM - [6978152] ----D- C:\Program Files\Windows Sidebar O43 - CFD: 3/22/2011 - 7:35:44 PM - [4055847] ----D- C:\Program Files\WinRAR O43 - CFD: 5/10/2011 - 12:09:52 PM - [3808846] ----D- C:\Program Files\ZHPDiag O43 - CFD: 5/10/2011 - 11:34:26 AM - [2085289] ----D- C:\Program Files\ZHPFix O43 - CFD: 11/10/2010 - 10:28:48 PM - [1550496] ----D- C:\Program Files\Common Files\ActivIdentity O43 - CFD: 5/5/2011 - 7:45:48 PM - [3968793841] ----D- C:\Program Files\Common Files\Adobe O43 - CFD: 12/29/2010 - 12:02:42 AM - [27374423] ----D- C:\Program Files\Common Files\Adobe AIR O43 - CFD: 5/5/2011 - 7:42:30 PM - [91752144] ----D- C:\Program Files\Common Files\Apple O43 - CFD: 12/23/2010 - 11:02:32 AM - [2585864] ----D- C:\Program Files\Common Files\ATI Technologies O43 - CFD: 3/14/2011 - 8:10:58 PM - [86016] ----D- C:\Program Files\Common Files\DESIGNER O43 - CFD: 1/24/2011 - 4:55:54 PM - [2734167] ----D- C:\Program Files\Common Files\InstallShield O43 - CFD: 11/10/2010 - 10:23:32 PM - [179248] ----D- C:\Program Files\Common Files\InterVideo O43 - CFD: 5/5/2011 - 8:11:10 PM - [1252295] ----D- C:\Program Files\Common Files\Java O43 - CFD: 12/28/2010 - 11:33:40 PM - [38489616] ----D- C:\Program Files\Common Files\LightScribe O43 - CFD: 4/15/2011 - 9:05:02 AM - [85222504] ----D- C:\Program Files\Common Files\Logishrd O43 - CFD: 1/26/2011 - 10:59:52 AM - [5241923] ----D- C:\Program Files\Common Files\LWS O43 - CFD: 12/28/2010 - 11:58:52 PM - [655959] ----D- C:\Program Files\Common Files\Macrovision Shared O43 - CFD: 5/5/2011 - 7:45:48 PM - [300005814] ----D- C:\Program Files\Common Files\microsoft shared O43 - CFD: 1/17/2011 - 5:38:08 PM - [28196940] ----D- C:\Program Files\Common Files\PC SOFT O43 - CFD: 11/10/2010 - 10:21:08 PM - [441501] ----D- C:\Program Files\Common Files\postureAgent O43 - CFD: 11/10/2010 - 10:23:32 PM - [1653312] ----D- C:\Program Files\Common Files\Protexis O43 - CFD: 1/12/2011 - 1:55:30 PM - [4546384] ----D- C:\Program Files\Common Files\PX Storage Engine O43 - CFD: 12/28/2010 - 11:45:44 PM - [299750556] ----D- C:\Program Files\Common Files\Roxio Shared O43 - CFD: 7/14/2009 - 4:37:06 AM - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 12/28/2010 - 11:45:30 PM - [7887496] ----D- C:\Program Files\Common Files\Sonic Shared O43 - CFD: 7/14/2009 - 4:37:06 AM - [41103783] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 12/28/2010 - 11:37:40 PM - [732768] ----D- C:\Program Files\Common Files\SureThing Shared O43 - CFD: 12/29/2010 - 12:59:40 PM - [47860477] ----D- C:\Program Files\Common Files\System O43 - CFD: 1/3/2011 - 9:13:24 PM - [211647800] ----D- C:\Program Files\Common Files\Windows Live O43 - CFD: 2/15/2011 - 3:59:30 PM - [677288189] ----D- C:\ProgramData\Adobe O43 - CFD: 12/29/2010 - 12:45:52 AM - [0] ----D- C:\ProgramData\ALM O43 - CFD: 1/3/2011 - 6:58:10 PM - [88347167] ----D- C:\ProgramData\Apple O43 - CFD: 12/29/2010 - 1:52:02 PM - [67008412] ----D- C:\ProgramData\Apple Computer O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Application Data O43 - CFD: 12/23/2010 - 11:04:44 AM - [307] ----D- C:\ProgramData\ATI O43 - CFD: 11/10/2010 - 10:23:44 PM - [2987693] ----D- C:\ProgramData\Corel O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Desktop O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Documents O43 - CFD: 3/23/2011 - 1:01:20 PM - [54] ----D- C:\ProgramData\Eaton O43 - CFD: 12/28/2010 - 11:00:26 PM - [317898859] ----D- C:\ProgramData\ESET O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Favorites O43 - CFD: 5/5/2011 - 7:45:54 PM - [53407] ----D- C:\ProgramData\FLEXnet O43 - CFD: 1/6/2011 - 8:06:32 PM - [1490338] ----D- C:\ProgramData\Hewlett-Packard O43 - CFD: 5/10/2011 - 11:59:30 AM - [568] ----D- C:\ProgramData\HPQLOG O43 - CFD: 1/13/2011 - 11:07:18 AM - [710] ----D- C:\ProgramData\LightScribe O43 - CFD: 12/28/2010 - 11:52:02 PM - [459] ----D- C:\ProgramData\LogiShrd O43 - CFD: 1/26/2011 - 10:59:52 AM - [54708095] ----D- C:\ProgramData\Logitech O43 - CFD: 11/10/2010 - 10:25:38 PM - [2556389] ----D- C:\ProgramData\Macrovision O43 - CFD: 5/3/2011 - 1:26:14 PM - [6654032] ----D- C:\ProgramData\Malwarebytes O43 - CFD: 5/5/2011 - 7:43:06 PM - [708303520] -S--D- C:\ProgramData\Microsoft O43 - CFD: 4/13/2011 - 10:47:48 AM - [69618] ----D- C:\ProgramData\Microsoft Help O43 - CFD: 5/5/2011 - 4:22:46 PM - [0] ----D- C:\ProgramData\PDFC O43 - CFD: 5/6/2011 - 6:58:26 PM - [18038461] ----D- C:\ProgramData\Roxio O43 - CFD: 3/28/2011 - 10:05:32 PM - [23513417] ----D- C:\ProgramData\Skype O43 - CFD: 12/28/2010 - 11:37:10 PM - [1366] ----D- C:\ProgramData\Sonic O43 - CFD: 5/10/2011 - 11:16:00 AM - [134408] ----D- C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Start Menu O43 - CFD: 5/5/2011 - 8:07:56 PM - [154] ----D- C:\ProgramData\Sun O43 - CFD: 5/3/2011 - 12:21:36 PM - [0] ----D- C:\ProgramData\SUPERAntiSpyware.com O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Templates O43 - CFD: 12/28/2010 - 11:45:40 PM - [5201867] ----D- C:\ProgramData\Uninstall O43 - CFD: 5/6/2011 - 4:45:22 PM - [16950590] ----D- C:\Users\admin\AppData\Roaming\Adobe O43 - CFD: 1/3/2011 - 6:58:40 PM - [2966081420] ----D- C:\Users\admin\AppData\Roaming\Apple Computer O43 - CFD: 12/23/2010 - 11:04:44 AM - [0] ----D- C:\Users\admin\AppData\Roaming\ATI O43 - CFD: 4/20/2011 - 9:15:26 AM - [237] ----D- C:\Users\admin\AppData\Roaming\Corel O43 - CFD: 12/22/2010 - 7:03:38 PM - [100] ----D- C:\Users\admin\AppData\Roaming\DigitalPersona O43 - CFD: 2/17/2011 - 10:08:10 AM - [1435429] ----D- C:\Users\admin\AppData\Roaming\DisplayFusion O43 - CFD: 5/10/2011 - 11:59:56 AM - [31690581] ----D- C:\Users\admin\AppData\Roaming\Dropbox O43 - CFD: 12/28/2010 - 11:01:00 PM - [62472] ----D- C:\Users\admin\AppData\Roaming\ESET O43 - CFD: 1/6/2011 - 11:04:56 PM - [55955] ----D- C:\Users\admin\AppData\Roaming\Hewlett-Packard O43 - CFD: 1/6/2011 - 8:06:34 PM - [11937] ----D- C:\Users\admin\AppData\Roaming\hpqLog O43 - CFD: 12/22/2010 - 7:06:26 PM - [0] ----D- C:\Users\admin\AppData\Roaming\Identities O43 - CFD: 12/28/2010 - 11:52:40 PM - [493] ----D- C:\Users\admin\AppData\Roaming\Leadertech O43 - CFD: 12/28/2010 - 11:53:46 PM - [46449] ----D- C:\Users\admin\AppData\Roaming\Logitech O43 - CFD: 12/23/2010 - 11:07:20 AM - [7699] ----D- C:\Users\admin\AppData\Roaming\Macromedia O43 - CFD: 5/3/2011 - 1:26:20 PM - [5380] ----D- C:\Users\admin\AppData\Roaming\Malwarebytes O43 - CFD: 7/14/2009 - 9:49:12 AM - [0] ----D- C:\Users\admin\AppData\Roaming\Media Center Programs O43 - CFD: 5/5/2011 - 7:43:20 PM - [5094117] -S--D- C:\Users\admin\AppData\Roaming\Microsoft O43 - CFD: 12/28/2010 - 11:23:40 PM - [43019162] ----D- C:\Users\admin\AppData\Roaming\Mozilla O43 - CFD: 5/5/2011 - 9:01:36 PM - [121712] ----D- C:\Users\admin\AppData\Roaming\QuickScan O43 - CFD: 5/6/2011 - 6:57:04 PM - [6953] ----D- C:\Users\admin\AppData\Roaming\Roxio O43 - CFD: 12/28/2010 - 11:34:10 PM - [30290052] ----D- C:\Users\admin\AppData\Roaming\Roxio Log Files O43 - CFD: 5/5/2011 - 3:51:18 PM - [1496815] ----D- C:\Users\admin\AppData\Roaming\Skype O43 - CFD: 4/5/2011 - 1:41:26 PM - [7904] ----D- C:\Users\admin\AppData\Roaming\skypePM O43 - CFD: 5/5/2011 - 7:43:26 PM - [83817977] ----D- C:\Users\admin\AppData\Roaming\SUPERAntiSpyware.com O43 - CFD: 3/28/2011 - 11:36:12 AM - [2009] ----D- C:\Users\admin\AppData\Roaming\TeamViewer O43 - CFD: 1/12/2011 - 1:29:38 PM - [2521] ----D- C:\Users\admin\AppData\Roaming\TrueCrypt O43 - CFD: 1/6/2011 - 8:03:22 PM - [0] ----D- C:\Users\admin\AppData\Roaming\WinBatch O43 - CFD: 3/22/2011 - 7:36:28 PM - [12] ----D- C:\Users\admin\AppData\Roaming\WinRAR O43 - CFD: 4/13/2011 - 10:46:12 AM - [66773] ----D- C:\Users\admin\AppData\Roaming\WTablet O43 - CFD: 2/15/2011 - 3:59:28 PM - [1057703499] ----D- C:\Users\admin\Appdata\Local\Adobe O43 - CFD: 12/29/2010 - 1:50:58 PM - [0] ----D- C:\Users\admin\Appdata\Local\Apple O43 - CFD: 1/17/2011 - 11:21:32 PM - [79181998] ----D- C:\Users\admin\Appdata\Local\Apple Computer O43 - CFD: 12/22/2010 - 7:03:24 PM - [0] -SH-D- C:\Users\admin\Appdata\Local\Application Data O43 - CFD: 12/28/2010 - 10:55:42 PM - [4305566] ----D- C:\Users\admin\Appdata\Local\Apps O43 - CFD: 4/4/2011 - 7:19:18 PM - [1395854] ----D- C:\Users\admin\Appdata\Local\assembly O43 - CFD: 12/23/2010 - 11:04:44 AM - [91101] ----D- C:\Users\admin\Appdata\Local\ATI O43 - CFD: 5/10/2011 - 9:43:36 AM - [0] ----D- C:\Users\admin\Appdata\Local\Deployment O43 - CFD: 4/13/2011 - 4:42:24 PM - [0] ----D- C:\Users\admin\Appdata\Local\Diagnostics O43 - CFD: 12/22/2010 - 7:03:38 PM - [0] ----D- C:\Users\admin\Appdata\Local\DigitalPersona O43 - CFD: 3/21/2011 - 3:04:06 PM - [0] ----D- C:\Users\admin\Appdata\Local\ElevatedDiagnostics O43 - CFD: 12/28/2010 - 11:01:00 PM - [4936085] ----D- C:\Users\admin\Appdata\Local\ESET O43 - CFD: 1/27/2011 - 5:10:30 PM - [39505644] ----D- C:\Users\admin\Appdata\Local\Framasoft O43 - CFD: 5/5/2011 - 9:05:04 PM - [0] ----D- C:\Users\admin\Appdata\Local\Google O43 - CFD: 12/22/2010 - 7:05:50 PM - [630965] ----D- C:\Users\admin\Appdata\Local\Hewlett-Packard O43 - CFD: 12/22/2010 - 7:03:24 PM - [0] -SH-D- C:\Users\admin\Appdata\Local\Historique O43 - CFD: 4/4/2011 - 7:19:20 PM - [844] ----D- C:\Users\admin\Appdata\Local\IsolatedStorage O43 - CFD: 5/5/2011 - 7:43:14 PM - [1733270679] ----D- C:\Users\admin\Appdata\Local\Microsoft O43 - CFD: 5/5/2011 - 7:45:58 PM - [446548] ----D- C:\Users\admin\Appdata\Local\Microsoft Help O43 - CFD: 12/28/2010 - 11:23:36 PM - [113566562] ----D- C:\Users\admin\Appdata\Local\Mozilla O43 - CFD: 5/5/2011 - 6:00:58 PM - [0] ----D- C:\Users\admin\Appdata\Local\PDFC O43 - CFD: 3/19/2011 - 12:50:18 AM - [31406] ----D- C:\Users\admin\Appdata\Local\Stardock O43 - CFD: 5/10/2011 - 12:10:50 PM - [699928] ----D- C:\Users\admin\Appdata\Local\Temp O43 - CFD: 12/22/2010 - 7:03:24 PM - [0] -SH-D- C:\Users\admin\Appdata\Local\Temporary Internet Files O43 - CFD: 1/27/2011 - 10:01:38 PM - [2425460] ----D- C:\Users\admin\Appdata\Local\VirtualStore O43 - CFD: 1/17/2011 - 5:37:26 PM - [206] ----D- C:\Users\admin\Appdata\Local\WDSetup O43 - CFD: 1/14/2011 - 1:08:42 PM - [73728] ----D- C:\Users\admin\Appdata\Local\Windows Live ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.5C18CD22BE4628865FCB63337A6E5EF6] - 11/10/2010 - 2:45:49 AM ---A- . (...) -- C:\Windows\System32\ScavengeSpace.xml [10429] O44 - LFC:[MD5.C5DEA5B95AF9AA981C88CAB94A58213E] - 11/20/2010 - 4:52:32 AM ---A- . (...) -- C:\Windows\System32\locale.nls [419880] O44 - LFC:[MD5.03783D0840B2C54D7665248425C74417] - 11/20/2010 - 6:23:54 AM ---A- . (...) -- C:\Windows\System32\dosx.exe [53600] O44 - LFC:[MD5.C236A8735A48B165A2A7724357DBE332] - 11/5/2010 - 3:20:45 AM ---A- . (...) -- C:\Windows\System32\RacRules.xml [105559] O44 - LFC:[MD5.B8CBB46B42570D373C9933FBDF25EBCE] - 11/5/2010 - 3:20:53 AM ---A- . (...) -- C:\Windows\System32\systemsf.ebd [146852] O44 - LFC:[MD5.C5ACDBF61DF211BDCC2B5021B1405BB0] - 4/13/2011 - 8:59:00 AM ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [34304] O44 - LFC:[MD5.ED4649A28AFE0B3DB93C3198BA48E34E] - 4/13/2011 - 8:59:00 AM ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [294912] O44 - LFC:[MD5.C88C969B8E477E4297E4A65D66852BF3] - 4/14/2011 - 4:07:59 AM ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\deployJava1.dll [472808] O44 - LFC:[MD5.B157E305260FF2A607591F33DE41BFCA] - 4/14/2011 - 4:08:09 AM ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\java.exe [145184] O44 - LFC:[MD5.364F7A2B4B535659F3B50DE5E5C20123] - 4/14/2011 - 4:08:10 AM ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\javaw.exe [145184] O44 - LFC:[MD5.A0AC7907D47B54238CA60FC47807F119] - 4/14/2011 - 4:08:11 AM ---A- . (.Sun Microsystems, Inc. - Java Web Start Launcher.) -- C:\Windows\System32\javaws.exe [157472] O44 - LFC:[MD5.0F652C93A9383D0267DD1D3F3DACE8C8] - 4/15/2011 - 8:05:14 AM ---A- . (...) -- C:\Windows\LDPINST.LOG [4580] O44 - LFC:[MD5.735A5BE65B858C193A1B42EA42613B74] - 4/15/2011 - 8:05:14 AM ---A- . (...) -- C:\Windows\System32\lvcoinst.log [16007] O44 - LFC:[MD5.EB02C18DE7A07056FE51F19D5FBB8216] - 4/22/2011 - 8:55:07 AM R--A- . (.Adobe Systems Inc. - Adobe PDF Port Monitor UI DLL.) -- C:\Windows\System32\AdobePDFUI.dll [22872] O44 - LFC:[MD5.D320BF87125326F996D4904FE24300FC] - 4/28/2011 - 1:48:08 PM ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [80256] O44 - LFC:[MD5.46387FB17B086D16DEA267D5BE23A2F2] - 4/28/2011 - 1:48:08 PM ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22400] O44 - LFC:[MD5.5CD5F9A5444E6CDCB0AC89BD62D8B76E] - 4/28/2011 - 1:48:08 PM ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332160] O44 - LFC:[MD5.B3E25EE28883877076E0E1FF877D02E0] - 4/28/2011 - 1:48:08 PM ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117120] O44 - LFC:[MD5.4380E59A170D88C4F1022EFF6719A8A4] - 4/28/2011 - 1:48:09 PM ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [143744] O44 - LFC:[MD5.1C000000000000000000000000EF1200] - 5/10/2011 - 10:58:35 AM ---A- . (...) -- C:\Windows\WindowsUpdate.log [1288864] O44 - LFC:[MD5.B0EE3ED2AFC236C66C59F32CDD784ABA] - 5/10/2011 - 10:59:17 AM -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.F705DC1792250A79CD06DD3160522E55] - 5/10/2011 - 10:59:18 AM ---A- . (...) -- C:\Windows\setupact.log [5585] O44 - LFC:[MD5.797C328E8D79798E4ED997DD34CCF6D5] - 5/10/2011 - 11:03:46 AM ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1549700] O44 - LFC:[MD5.27BE00F2A9561A370A743232327BA6B0] - 5/10/2011 - 11:03:46 AM ---A- . (...) -- C:\Windows\System32\perfc009.dat [106190] O44 - LFC:[MD5.2B5A208BC9B34843552FE05B9650E9C0] - 5/10/2011 - 11:03:46 AM ---A- . (...) -- C:\Windows\System32\perfc00C.dat [130548] O44 - LFC:[MD5.381CBF3FF17C56C8E9ADF6ED8C70C5B5] - 5/10/2011 - 11:03:46 AM ---A- . (...) -- C:\Windows\System32\perfh009.dat [615810] O44 - LFC:[MD5.6CBAED9E87DF0703CEA7273CB126B185] - 5/10/2011 - 11:03:46 AM ---A- . (...) -- C:\Windows\System32\perfh00C.dat [704242] O44 - LFC:[MD5.CB155DCFFDD2D4014F4D6ED5E3A86933] - 5/10/2011 - 11:06:30 AM --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [16976] O44 - LFC:[MD5.CB155DCFFDD2D4014F4D6ED5E3A86933] - 5/10/2011 - 11:06:30 AM --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [16976] O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 5/2/2011 - 2:54:03 PM ---A- . (...) -- C:\Windows\System32\ieuinit.inf [72822] O44 - LFC:[MD5.6BA6D865611ED94BD91E97893DB5D8BE] - 5/2/2011 - 2:55:33 PM ---A- . (...) -- C:\Windows\IE9_main.log [5207] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 5/3/2011 - 2:27:28 PM --HA- . (...) -- C:\Windows\System32\drivers\Msft_Kernel_LUsbFilt_01005.Wdf [0] O44 - LFC:[MD5.6DB3C46BDAD1D9C142912541F4268151] - 5/3/2011 - 3:04:12 PM ---A- . (...) -- C:\Windows\ntbtlog.txt [288686] O44 - LFC:[MD5.41014191543B579AD72FE23B82DAE11F] - 5/5/2011 - 7:10:44 PM ---A- . (...) -- C:\Windows\System32\jupdate-1.6.0_25-b06.log [4239] O44 - LFC:[MD5.1DE21EC4A2232FF4F5298ADCAE7B3690] - 5/5/2011 - 7:53:04 PM ---A- . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll [82944] O44 - LFC:[MD5.EB6C16CE0163AD282E95FCE5EE9BA518] - 5/5/2011 - 7:53:05 PM ---A- . (.Pas de propriétaire - Application PrintBrm.) -- C:\Windows\System32\PrintBrmUi.exe [66048] O44 - LFC:[MD5.163A95975E1D8819E653AA3E961371CA] - 5/5/2011 - 7:53:18 PM ---A- . (.Twain Working Group - Gestionnaire de sources Twain_32 (Image Acq.) -- C:\Windows\twain_32.dll [51200] O44 - LFC:[MD5.737AFC772243C75E6AD17A7A8E8E23F9] - 5/5/2011 - 7:53:21 PM ---A- . (.Windows ® Codename Longhorn DDK provider - Services de gestion des polices.) -- C:\Windows\System32\fms.dll [93696] O44 - LFC:[MD5.39B9273CA01364E115B464416CFB729B] - 5/5/2011 - 7:53:40 PM ---A- . (.Microsoft - robocopy.) -- C:\Windows\System32\Robocopy.exe [98816] O44 - LFC:[MD5.C9FB8C3D650EF8BD76865EC20A19A5BC] - 5/5/2011 - 7:54:12 PM ---A- . (.Microsoft - Filtre du convertisseur RDP (redirecteur).) -- C:\Windows\System32\DShowRdpFilter.dll [252928] O44 - LFC:[MD5.518318A103C888001054EFA1236E5033] - 5/5/2011 - 7:54:46 PM ---A- . (.Microsoft Corporation - Bibliothèque d'assistance au déploiement de.) -- C:\Windows\System32\dfshim.dll [1130824] O44 - LFC:[MD5.4470A16C5DC06D963A466FDB267702A4] - 5/5/2011 - 8:10:05 PM ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [2468728] O44 - LFC:[MD5.6AF616DE54FCF89AEA28A27008D0D85A] - 5/5/2011 - 8:18:57 PM ---A- . (...) -- C:\Windows\PFRO.log [9990] O44 - LFC:[MD5.836E0E09CA9869BE7EB39EF2CF3602C7] - 5/5/2011 - 9:19:17 PM ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [20952] O44 - LFC:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 5/5/2011 - 9:19:20 PM ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\drivers\mbamswissarmy.sys [38224] O44 - LFC:[MD5.26B0F12F9A4C267AF5B2DA35F87A6EFA] - 5/6/2011 - 6:05:13 PM ---A- . (...) -- C:\Windows\System32\DOErrors.log [52] ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"VIDC.I420"="lvcodec2.dll" . (.Logitech Inc. - Video Codec.) -- C:\Windows\System32\lvcodec2.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKCU\...\Policies\System] - "SetVisualStyle"=C:\Windows\Resources\Themes\LeopardXP\LeopardXP.msstyles ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.6D7F09CD92A9FEF3A8EFCE66231FDD79] - 8/14/2008 - 7:57:42 AM ---A- . (.Adobe Systems, Inc. - Adobe Drive File System Driver.) -- C:\Windows\system32\drivers\adfs.sys [74720] O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 7/14/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [422976] O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 7/14/2009 - 2:26:17 AM ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [297552] O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 7/14/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [146512] O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 7/14/2009 - 2:26:15 AM ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [14400] O58 - SDL:[MD5.D320BF87125326F996D4904FE24300FC] - 3/11/2011 - 6:38:37 AM ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [80256] O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 7/14/2009 - 2:26:15 AM ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\system32\drivers\amdsbs.sys [159312] O58 - SDL:[MD5.46387FB17B086D16DEA267D5BE23A2F2] - 3/11/2011 - 6:38:37 AM ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [22400] O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 7/14/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [76368] O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 7/14/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [86608] O58 - SDL:[MD5.95B1E9804CA10D096C0383F7C6684950] - 11/17/2010 - 1:04:24 PM ---A- . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\AtihdW73.sys [101392] O58 - SDL:[MD5.8FD111119BE6924B1B8C3976FAC1B535] - 11/26/2010 - 5:19:20 AM ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [6650368] O58 - SDL:[MD5.C9B705FF53B15DD71F6A4D4F45396EDD] - 11/26/2010 - 3:16:26 AM ---A- . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\system32\drivers\atikmpag.sys [231936] O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 7/14/2009 - 11:02:49 PM ---A- . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gigabit Ethernet..) -- C:\Windows\system32\drivers\b57nd60x.sys [229888] O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 7/14/2009 - 11:53:28 PM ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568] O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 7/14/2009 - 11:53:28 PM ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248] O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 7/14/2009 - 1:57:25 AM ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [272128] O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 7/14/2009 - 11:53:32 PM ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336] O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 7/14/2009 - 11:53:33 PM ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160] O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 7/14/2009 - 11:53:33 PM ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904] O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 7/14/2009 - 11:02:48 PM ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbdx.sys [430080] O58 - SDL:[MD5.9714B7C918C6543D69074EC101F86AC4] - 3/12/2008 - 3:00:00 AM ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\Windows\system32\drivers\cdr4_xp.sys [9072] O58 - SDL:[MD5.0D856D16C08440BFB566D6CDD9948D4E] - 3/12/2008 - 3:00:00 AM ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\Windows\system32\drivers\cdralw2k.sys [9200] O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 7/14/2009 - 2:26:21 AM ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [15952] O58 - SDL:[MD5.9D5E46F66FEADF55EBE13AC76950669F] - 4/27/2010 - 6:44:36 PM ---A- . (...) -- C:\Windows\system32\drivers\cpqdfw.sys [35384] O58 - SDL:[MD5.C6618553FE9A3262C77574FFAE04AA79] - 4/27/2010 - 6:44:36 PM ---A- . (...) -- C:\Windows\system32\drivers\cqcpu.sys [35384] O58 - SDL:[MD5.A05433F6218DCB8F0DEC232DE65F8B26] - 3/9/2010 - 2:31:04 AM ---A- . (.Hewlett-Packard Development Company L.P. - HP Device Access Manager for ProtectTools Driver.) -- C:\Windows\system32\drivers\DAMDrv.sys [32312] O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 7/14/2009 - 2:20:28 AM ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [70720] O58 - SDL:[MD5.A13F07A0422E4A04E7FF6F6F3B05E729] - 12/10/2009 - 6:36:54 PM ---A- . (.Intel Corporation - Intel® Gigabit Adapter NDIS 6.x driver.) -- C:\Windows\system32\drivers\e1k6232.sys [214696] O58 - SDL:[MD5.BF14FBABD52E9522456D3A2F6E7E76E4] - 9/3/2010 - 6:13:46 AM ---A- . (.ESET - Amon monitor.) -- C:\Windows\system32\drivers\eamonm.sys [137144] O58 - SDL:[MD5.7D300A43A7BD8769E0F901BF9E1AE367] - 7/29/2010 - 12:31:26 PM ---A- . (.ESET - ESET Helper driver.) -- C:\Windows\system32\drivers\ehdrv.sys [115008] O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 7/14/2009 - 2:20:28 AM ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [453712] O58 - SDL:[MD5.15BFE00F030EA20955117BB0677E9668] - 7/29/2010 - 12:31:26 PM ---A- . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\system32\drivers\epfw.sys [134512] O58 - SDL:[MD5.52310E0E603D7DA79ECCA7D764937A91] - 7/29/2010 - 12:31:26 PM ---A- . (.ESET - ESET Personal Firewall NDIS filter.) -- C:\Windows\system32\drivers\epfwndis.sys [32608] O58 - SDL:[MD5.235250A79CF1E16A5A42407CFE3F6A4C] - 7/29/2010 - 12:31:26 PM ---A- . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\system32\drivers\epfwwfp.sys [41336] O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 7/14/2009 - 11:02:48 PM ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbdx.sys [3100160] O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 5/18/2009 - 1:17:00 PM ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [26600] O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 7/14/2009 - 11:54:14 PM ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [26624] O58 - SDL:[MD5.A88485DC6A7136C10D9A6C7E38FDFE3C] - 9/17/2009 - 10:54:14 PM ---A- . (.Intel Corporation - Intel® Management Engine Interface.) -- C:\Windows\system32\drivers\HECI.sys [41088] O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 7/14/2009 - 2:20:28 AM ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [67152] O58 - SDL:[MD5.EE81EC6A94D35D149A16D8AB7F3E358D] - 7/22/2009 - 11:46:52 AM ---A- . (.Intel Corporation - NDIS 6.1 Advanced Networking Services..) -- C:\Windows\system32\drivers\iANSW60.sys [113888] O58 - SDL:[MD5.D5EDB998656E6ECF1A17C78DAB019A3C] - 10/2/2009 - 9:40:50 PM ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x86.) -- C:\Windows\system32\drivers\iaStor.sys [432664] O58 - SDL:[MD5.5CD5F9A5444E6CDCB0AC89BD62D8B76E] - 3/11/2011 - 6:38:51 AM ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\system32\drivers\iaStorV.sys [332160] O58 - SDL:[MD5.FAF70667BE6D1E1FFBACC8D4FC15D645] - 11/7/2009 - 12:44:46 AM ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd32.sys [6229504] O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 7/14/2009 - 2:20:36 AM ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41040] O58 - SDL:[MD5.2DB41BA61D5E44D0667CF126D35DCF34] - 10/26/2009 - 9:39:04 PM ---A- . (.Intel Corporation - Intel® Turbo Boost Technology Driver.) -- C:\Windows\system32\drivers\Impcd.sys [125696] O58 - SDL:[MD5.29061F25ABB6E60A5B49FBEED7A5698A] - 10/30/2009 - 3:55:30 PM ---A- . (.Intel® Corporation - Intel® Display HD Audio driver.) -- C:\Windows\system32\drivers\IntcDAud.sys [209920] O58 - SDL:[MD5.1D99AC4CE3ABBD96A8C0D77FF104096D] - 9/21/2009 - 10:20:26 PM ---A- . (.Intel Corporation - Intel® Network Adapter Diagnostic Driver.) -- C:\Windows\system32\drivers\iqvw32.sys [28632] O58 - SDL:[MD5.0C6E346CDE730CF1356DD69AD6E9BC42] - 6/17/2009 - 5:55:18 PM ---A- . (.Logitech, Inc. - Logitech PS2 Keyboard Filter Driver..) -- C:\Windows\system32\drivers\L8042Kbd.sys [20240] O58 - SDL:[MD5.8A5993705ADD14352C9A279FA8338334] - 6/17/2009 - 5:55:26 PM ---A- . (.Logitech, Inc. - Logitech PS/2 Mouse Filter Driver..) -- C:\Windows\system32\drivers\L8042mou.Sys [63248] O58 - SDL:[MD5.7F9C7B28CF1C859E1C42619EEA946DC8] - 6/17/2009 - 5:56:06 PM ---A- . (.Logitech, Inc. - Logitech HID Filter Driver..) -- C:\Windows\system32\drivers\LHidFilt.Sys [35472] O58 - SDL:[MD5.0CCDA159181CD73A0CA13F8B112E8D18] - 3/23/2011 - 12:00:08 PM ---A- . (.http://libusb-win32.sourceforge.net - LibUSB-Win32 - Kernel Driver.) -- C:\Windows\system32\drivers\libusb0.sys [36456] O58 - SDL:[MD5.AB33792A87285344F43B5CE23421BAB0] - 6/17/2009 - 5:56:16 PM ---A- . (.Logitech, Inc. - Logitech Mouse Filter Driver..) -- C:\Windows\system32\drivers\LMouFilt.Sys [37392] O58 - SDL:[MD5.9837E55673818ECD8FEBB47F7F77521A] - 6/17/2009 - 5:56:24 PM ---A- . (.Logitech, Inc. - Logitech Filter Driver for Mouse Class..) -- C:\Windows\system32\drivers\LMouKE.Sys [79248] O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [95824] O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 7/14/2009 - 2:20:37 AM ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [89168] O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [54864] O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [96848] O58 - SDL:[MD5.77030525CD86A93F1AF34FA9B96D33CE] - 6/17/2009 - 5:56:32 PM ---A- . (.Logitech, Inc. - Logitech USB Filter Driver..) -- C:\Windows\system32\drivers\LUsbFilt.sys [28560] O58 - SDL:[MD5.D30EDA6E1AB3C8C82F2CA085AB79040A] - 5/9/2007 - 9:46:48 PM ---A- . (.Logitech Inc. - Audio filter for Express Plus.) -- C:\Windows\system32\drivers\lv302af.sys [14112] O58 - SDL:[MD5.0DA6C5E0C8DA6CEBE52DAACFE7AE9DE6] - 5/9/2007 - 9:47:00 PM ---A- . (.Logitech Inc. - Logitech QuickCam Driver.) -- C:\Windows\system32\drivers\LV302V32.SYS [1276832] O58 - SDL:[MD5.F77390678B3C2FA7ED82EA034D582355] - 4/1/2011 - 6:07:52 AM ---A- . (.Logitech Inc. - Logitech USB Video Class Filter Driver.) -- C:\Windows\system32\drivers\lvbusflt.sys [20448] O58 - SDL:[MD5.8BE71D7EDB8C7494913722059F760DD0] - 5/7/2010 - 6:43:30 PM ---A- . (...) -- C:\Windows\system32\drivers\LVPr2Mon.sys [25824] O58 - SDL:[MD5.B6E1CCD6572984ADCAE68439AFD07011] - 4/1/2011 - 6:09:48 AM ---A- . (.Logitech Inc. - Logitech Kernel Audio Improvement Filter Driver.) -- C:\Windows\system32\drivers\lvrs.sys [291424] O58 - SDL:[MD5.9E9306063ECD8AA91B3FB76678D3CEE2] - 5/9/2007 - 9:51:34 PM ---A- . (.Logitech Inc. - USB Statistic Driver.) -- C:\Windows\system32\drivers\LVUSBSta.sys [41888] O58 - SDL:[MD5.6C42815DD57E397F0CD988304B5EB4B3] - 4/1/2011 - 6:11:10 AM ---A- . (.Logitech Inc. - Logitech USB Video Class Driver.) -- C:\Windows\system32\drivers\lvuvc.sys [4333280] O58 - SDL:[MD5.836E0E09CA9869BE7EB39EF2CF3602C7] - 12/20/2010 - 5:08:40 PM ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [20952] O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 12/20/2010 - 5:09:00 PM ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys [38224] O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\Windows\system32\drivers\megasas.sys [30800] O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [235584] O58 - SDL:[MD5.64B96DE8C492BD435372D9130A535F1D] - 5/16/2009 - 2:15:14 AM ---A- . (.McAfee, Inc. - Anti-Virus File System Filter Driver.) -- C:\Windows\system32\drivers\mfeavfk.sys [79816] O58 - SDL:[MD5.078E87A89D36CC3516F19D5FB518BDDC] - 5/16/2009 - 2:15:14 AM ---A- . (.McAfee, Inc. - Buffer Overflow Protection Driver.) -- C:\Windows\system32\drivers\mfebopk.sys [35272] O58 - SDL:[MD5.168C565101FD5B9DB694EFDEC91FAFA9] - 5/16/2009 - 2:15:14 AM ---A- . (.McAfee, Inc. - Host Intrusion Detection Link Driver.) -- C:\Windows\system32\drivers\mfehidk.sys [214024] O58 - SDL:[MD5.E0842F67DC9BC4D21D1E319610EBE9E5] - 5/16/2009 - 2:15:14 AM ---A- . (.McAfee, Inc. - VSCore Code Analysis Driver.) -- C:\Windows\system32\drivers\mferkdk.sys [34248] O58 - SDL:[MD5.43A7ACBBD70ECD62F0B63486C72089A3] - 5/16/2009 - 2:15:14 AM ---A- . (.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) -- C:\Windows\system32\drivers\mfetdik.sys [55336] O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 7/14/2009 - 2:20:44 AM ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [44624] O58 - SDL:[MD5.B3E25EE28883877076E0E1FF877D02E0] - 3/11/2011 - 6:39:00 AM ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [117120] O58 - SDL:[MD5.4380E59A170D88C4F1022EFF6719A8A4] - 3/11/2011 - 6:39:00 AM ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [143744] O58 - SDL:[MD5.E42E3433DBB4CFFE8FDD91EAB29AEA8E] - 3/19/2010 - 11:00:00 AM ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\system32\drivers\pxhelp20.sys [45648] O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 7/14/2009 - 2:19:04 AM ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1383488] O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 7/14/2009 - 2:19:04 AM ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106064] O58 - SDL:[MD5.001B4278407F4303EFC902A2B16F2453] - 4/18/2007 - 5:09:28 AM ---A- . (.InterVideo - regi driver.) -- C:\Windows\system32\drivers\regi.sys [11032] O58 - SDL:[MD5.6C50ADED23D160C95FC9859748C253DD] - 2/2/2010 - 2:11:24 AM ---A- . (.McAfee, Inc. - McAfee Endpoint Encryption Reserved Files Lock Driver.) -- C:\Windows\system32\drivers\rsvlock.sys [40088] O58 - SDL:[MD5.D0A6C0CEB3B74A91884F804FF4F031C0] - 7/3/2009 - 2:29:04 AM ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHDA.sys [2656160] O58 - SDL:[MD5.21000000000000000000000000EF1200] - 2/2/2010 - 12:00:00 AM ---A- . (...) -- C:\Windows\system32\drivers\SafeBoot.sys [110520] O58 - SDL:[MD5.67215032A3039E5B78BBBBB4F21B904E] - 2/2/2010 - 2:11:46 AM ---A- . (.McAfee, Inc. - SafeBoot FIPS AES Algorithm (256 bit).) -- C:\Windows\system32\drivers\SbAlg.sys [51800] O58 - SDL:[MD5.CD8E12BB9B16C55DEF2AC52B78A09F09] - 2/2/2010 - 2:11:28 AM ---A- . (.McAfee, Inc. - McAfee Endpoint Encryption FS Locker.) -- C:\Windows\system32\drivers\SbFsLock.sys [13256] O58 - SDL:[MD5.5071D2D58E72DCF57591D1F1CFFB75AB] - 2/2/2010 - 2:11:30 AM ---A- . (.McAfee, Inc. - McAfee Endpoint Encryption Hibernation Filter.) -- C:\Windows\system32\drivers\SbHiber.sys [11224] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 7/13/2009 - 9:50:20 PM ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.5FB7FCEA0490D821F26F39CC5EA3D1E2] - 7/14/2009 - 12:45:33 AM ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\serial.sys [83456] O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 7/14/2009 - 2:19:04 AM ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [40016] O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 7/14/2009 - 2:19:04 AM ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [77888] O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 7/14/2009 - 2:19:04 AM ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [21072] O58 - SDL:[MD5.BE45DAD1C73A3216EDC8C485916F6594] - 1/12/2011 - 12:28:18 PM ---A- . (.TrueCrypt Foundation - TrueCrypt Driver.) -- C:\Windows\system32\drivers\truecrypt.sys [231248] O58 - SDL:[MD5.D4FB6ECC60A428564BA8768B0E23C0FC] - 2/18/2011 - 4:36:58 PM ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl.sys [41984] O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 7/14/2009 - 2:19:10 AM ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [16976] O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 7/14/2009 - 2:19:11 AM ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [141904] O58 - SDL:[MD5.C3B03ED7B06657A3355F620BC02ACFB6] - 11/2/2010 - 3:07:54 PM ---A- . (.Wacom Technology - Wacom HID Mouse Monitor Filter Driver.) -- C:\Windows\system32\drivers\wacmoumonitor.sys [10752] O58 - SDL:[MD5.427A8BC96F16C40DF81C2D2F4EDD32DD] - 10/25/2010 - 9:59:32 AM ---A- . (.Wacom Technology - Wacom Mouse Filter Driver.) -- C:\Windows\system32\drivers\wacommousefilter.sys [11312] O58 - SDL:[MD5.846B58EA44BF8C92E4B59F4E2252C4C0] - 10/25/2010 - 9:59:28 AM ---A- . (.Wacom Technology - Virtual Hid Device.) -- C:\Windows\system32\drivers\wacomvhid.sys [14120] O58 - SDL:[MD5.A50F15619949DD98DED4223AA8CC7E27] - 11/10/2010 - 9:29:05 PM ---A- . (...) -- C:\Windows\system32\drivers\wdcfgj.sys [3120] O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 7/13/2009 - 10:40:41 PM ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 7/13/2009 - 10:40:44 PM ---A- . (...) -- C:\Windows\system32\country.sys [27097] O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 7/13/2009 - 10:40:40 PM ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768] O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 7/13/2009 - 10:40:43 PM ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 7/13/2009 - 10:40:43 PM ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537] O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 7/13/2009 - 10:40:23 PM ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 7/13/2009 - 10:40:31 PM ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 7/13/2009 - 10:40:35 PM ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 7/13/2009 - 10:40:39 PM ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 7/13/2009 - 10:40:27 PM ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146] O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 7/13/2009 - 10:40:11 PM ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952] O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 7/13/2009 - 10:40:15 PM ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672] O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 7/13/2009 - 10:40:17 PM ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776] O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 7/13/2009 - 10:40:19 PM ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536] O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 7/13/2009 - 10:40:13 PM ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 O63 - Logiciel: ZHPFix 1.12 - (.Nicolas Coolman.) [HKLM] -- ZHPFix_is1 ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - C:\Windows\system32\Drivers\ADFS.sys - adfs (adfs) .(...) - LEGACY_ADFS O64 - Services: CurCS - 11/26/2010 - C:\Windows\System32\DRIVERS\atikmdag.sys - amdkmdag(amdkmdag) .(.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP O64 - Services: CurCS - 9/3/2010 - C:\Windows\System32\DRIVERS\eamonm.sys - eamonm(eamonm) .(.ESET - Amon monitor.) - LEGACY_EAMONM O64 - Services: CurCS - 7/29/2010 - C:\Windows\System32\DRIVERS\ehdrv.sys - ehdrv(ehdrv) .(.ESET - ESET Helper driver.) - LEGACY_EHDRV O64 - Services: CurCS - 7/29/2010 - C:\Windows\System32\DRIVERS\epfw.sys - epfw(epfw) .(.ESET - ESET Personal Firewall driver.) - LEGACY_EPFW O64 - Services: CurCS - 7/29/2010 - C:\Windows\System32\DRIVERS\epfwwfp.sys - epfwwfp(epfwwfp) .(.ESET - ESET Personal Firewall driver.) - LEGACY_EPFWWFP O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC O64 - Services: CurCS - C:\Windows\System32\DRIVERS\LVPr2Mon.sys - Logitech LVPr2Mon Driver (LVPr2Mon) .(...) - LEGACY_LVPR2MON O64 - Services: CurCS - 5/16/2009 - C:\Windows\System32\drivers\MfeAVFK.sys - McAfee Inc. MfeAVFK(MfeAVFK) .(.McAfee, Inc. - Anti-Virus File System Filter Driver.) - LEGACY_MFEAVFK O64 - Services: CurCS - 5/16/2009 - C:\Windows\System32\drivers\MfeBOPK.sys - McAfee Inc. MfeBOPK(MfeBOPK) .(.McAfee, Inc. - Buffer Overflow Protection Driver.) - LEGACY_MFEBOPK O64 - Services: CurCS - 5/16/2009 - C:\Windows\System32\drivers\mfehidk.sys - McAfee Inc. mfehidk(mfehidk) .(.McAfee, Inc. - Host Intrusion Detection Link Driver.) - LEGACY_MFEHIDK O64 - Services: CurCS - 5/16/2009 - C:\Windows\System32\drivers\mfetdik.sys - McAfee Inc. mfetdik(mfetdik) .(.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) - LEGACY_MFETDIK O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL O64 - Services: CurCS - 4/18/2007 - C:\Windows\System32\drivers\regi.sys - regi(regi) .(.InterVideo - regi driver.) - LEGACY_REGI O64 - Services: CurCS - C:\Windows\system32\Drivers\RSVLOCK.sys - RsvLock (RsvLock) .(...) - LEGACY_RSVLOCK O64 - Services: CurCS - 2/17/2010 - C:\Program Files\SUPERAntiSpyware\SASDIFSV.sys - SASDIFSV(SASDIFSV) .(.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASDIFSV.SYS.) - LEGACY_SASDIFSV O64 - Services: CurCS - 5/10/2010 - C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys - SASKUTIL(SASKUTIL) .(.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASKUTIL.SYS.) - LEGACY_SASKUTIL O64 - Services: CurCS - C:\Windows\system32\Drivers\SBALG.sys - SbAlg (SbAlg) .(...) - LEGACY_SBALG O64 - Services: CurCS - C:\Windows\system32\Drivers\SBFSLOCK.sys - SbFsLock (SbFsLock) .(...) - LEGACY_SBFSLOCK O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR O64 - Services: CurCS - 1/12/2011 - C:\Windows\System32\drivers\truecrypt.sys - truecrypt(truecrypt) .(.TrueCrypt Foundation - TrueCrypt Driver.) - LEGACY_TRUECRYPT ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> <jsfile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> <jsfile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] {AC7CB479-EC33-4290-9AD5-FD1E06FA5610} - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {ED556EFB-FB51-4AD4-ACE4-693C2C399130} [DefaultScope] - (Google) - Google ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.3B3315DC1B27B668FD0F5D93DFAE05B7] [sPRF] (.SUPERAntiSpyware.com - SUPERAntiSpyware Update Application.) -- C:\Users\admin\AppData\Local\Temp\SSUPDATE.EXE [354688] ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "SPPSVC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de la plateforme de protection logicielle Microsoft.) -- C:\Windows\system32\sppsvc.exe O87 - FAEL: "SPPSVC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de la plateforme de protection logicielle Microsoft.) -- C:\Windows\system32\sppsvc.exe O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe O87 - FAEL: "NetPres-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe O87 - FAEL: "{52C23A1C-3F50-47AC-B959-60C7FBA8DD9B}" | In - Private - P6 - TRUE | .(.Adobe Systems Incorporated - Adobe CS4 Service Manager.) -- C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe O87 - FAEL: "{FC6BAFE0-E62A-4380-87B0-853F2FEBCA08}" | In - Private - P17 - TRUE | .(.Adobe Systems Incorporated - Adobe CS4 Service Manager.) -- C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe O87 - FAEL: "{178974B9-11CB-4AF9-B9A7-45844B0CE050}" | In - Private - P6 - TRUE | .(.Adobe Systems Incorporated - Adobe Version Cue CS4.) -- C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe O87 - FAEL: "{E972E1FC-2C46-46A1-A500-5AD5ED157A4B}" | In - Private - P17 - TRUE | .(.Adobe Systems Incorporated - Adobe Version Cue CS4.) -- C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe O87 - FAEL: "{10EEA9BD-65C6-4821-BE8E-9EFD3EF42C1D}" | In - Private - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\admin\AppData\Roaming\Dropbox\bin\Dropbox.exe O87 - FAEL: "{852DF826-76AA-4264-9E39-DFB48B11757B}" | In - Private - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\admin\AppData\Roaming\Dropbox\bin\Dropbox.exe O87 - FAEL: "{148FFA86-7454-474C-B502-DE7F94214814}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O87 - FAEL: "{61F778E3-73FA-4E69-974D-057FA7DFF15A}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Mesh Operating Environment.) -- C:\Program Files\Windows Live\Mesh\MOE.exe O87 - FAEL: "{437C381E-AE2E-41FB-9B55-5AD88D926867}" | In - Domain - P6 - TRUE | .(...) -- C:\Program Files\EATON\IntelligentPowerProtector\mc2.exe O87 - FAEL: "{EDDC96ED-0ACF-454A-890E-75DC3FF275DE}" | In - Domain - P17 - TRUE | .(...) -- C:\Program Files\EATON\IntelligentPowerProtector\mc2.exe O87 - FAEL: "{878E881F-87D2-4DF3-9697-2479A859AADA}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\EATON\IntelligentPowerProtector\mc2.exe O87 - FAEL: "{BC80E7E4-9C8C-426C-A728-4F46C99F2464}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\EATON\IntelligentPowerProtector\mc2.exe O87 - FAEL: "{8773B57E-1ACD-466A-8C7C-3EA5BE37A53F}" | In - Private - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files\TeamViewer\Version6\TeamViewer.exe O87 - FAEL: "{689396B7-4963-4CD1-91FC-63CD0AA3E8BC}" | In - Private - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files\TeamViewer\Version6\TeamViewer.exe O87 - FAEL: "{4088D7B6-F81E-4CC6-AF72-54EBE00C2109}" | In - Private - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe O87 - FAEL: "{57CB42F5-B0F5-4FDB-9C75-86E94EC5B2D4}" | In - Private - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe O87 - FAEL: "{2A7FB9CD-E1C3-4BE9-9FCA-C8BAEC6054A7}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O87 - FAEL: "{FBDED0AB-ECB4-4982-AD62-FEB2A074AF8A}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O87 - FAEL: "{12D82E55-DD3E-4FF8-BC8C-3C6F006E4717}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe O87 - FAEL: "{5C00A94A-3248-4439-AFC1-B7F582B74EDF}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe (.not file.) O87 - FAEL: "{18D67D61-A180-4158-A6AA-B1DF45A6F2C6}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe (.not file.) ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 6/4/2009 207400 | (ac.sharedstore) . (.ActivIdentity.) - C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe SS - | Demand 8/15/2008 284016 | (Adobe Version Cue CS4) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe SR - | Auto 11/26/2010 176128 | (AMD External Events Utility) . (.AMD.) - C:\Windows\system32\atiesrxx.exe SR - | Auto 2/18/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 4/6/2011 349472 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SR - | Auto 6/10/2010 300880 | C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe (DpHost) . (.DigitalPersona, Inc..) - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe SR - | Auto 3/23/2011 3713961 | (Eaton IntelligentPowerProtector) . (...) - C:\Program Files\Eaton\IntelligentPowerProtector\mc2.exe SS - | Demand 11/4/2010 33584 | (EhttpSrv) . (.ESET.) - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe SR - | Auto 11/4/2010 810144 | (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Smart Security\ekrn.exe SS - | Demand 4/28/2010 362040 | (FLCDLOCK) . (.Hewlett-Packard Ltd.) - C:\Windows\system32\flcdlock.exe SS - | Demand 12/28/2010 655624 | (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe SR - | Auto 11/15/2010 126520 | (HP Health Check Service) . (.Hewlett-Packard Company.) - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe SR - | Auto 3/17/2010 36864 | (HP ProtectTools Service) . (.Hewlett-Packard Development Company, L.P.) - C:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe SR - | Auto 10/14/2010 92216 | (HPDrvMntSvc.exe) . (.Hewlett-Packard Company.) - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe SR - | Auto 2/2/2010 281192 | (HpFkCryptService) . (.McAfee, Inc..) - C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe SR - | Auto 5/6/2010 298496 | (HPFSService) . (.Hewlett-Packard.) - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe SR - | Demand 10/14/2010 751672 | (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe SR - | Demand 4/14/2011 820520 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SR - | Auto 1/5/2007 112152 | (IviRegMgr) . (.InterVideo.) - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe SS - | Demand 7/20/2009 121360 | (LBTServ) . (.Logitech, Inc..) - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe SR - | Auto 6/16/2010 73728 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe SR - | Auto 11/5/2009 268824 | (LMS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe SR - | Auto 7/24/2007 185632 | (PSI_SVC_2) . (.Protexis Inc..) - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe SS - | Demand 3/19/2010 1120752 | (RoxMediaDB10) . (.Sonic Solutions.) - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe SS - | Demand 10/16/2009 74392 | (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe SR - | Auto 11/15/2010 4807536 | (TabletServiceWacom) . (.Wacom Technology, Corp..) - C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe SR - | Auto 4/15/2011 2280312 | (TeamViewer6) . (.TeamViewer GmbH.) - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe SR - | Auto 4/1/2011 428640 | (UMVPFSrv) . (.Logitech Inc..) - C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe SR - | Auto 11/5/2009 2320920 | (UNS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe SR - | Auto 7/14/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by admin at 5/10/2011 12:13:28 PM ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin End of the scan (1320 lines in 52mn AMs)(0)