arcisse

Membres

Afficher le profil Afficher son activité

Compteur de contenus
2
Inscription
le 17 mai 2011
Dernière visite
le 23 mai 2011

Type de contenu

Toute l’activité

Profils

Forums

Blogs

Tout ce qui a été posté par arcisse

Problème de DLL

arcisse a répondu à un(e) sujet de arcisse dans Analyses et éradication malwares

Up...
- le 23 mai 2011
- 2 réponses
Problème de DLL

arcisse a posté un sujet dans Analyses et éradication malwares

Bonjour à tous, suite à l'apparition régulière des messages d'erreur suivant : L'application ou la DLL C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL n'est pas une image Windows valide. J'ai procédé à une analyse par ZHPDIAG dont vous trouverez le rapport ci-dessous. Si quelqu'un à la gentillesse de m'indiquer le reste de la marche à suivre, ce serait fort agréable. Cordialement. Rapport de ZHPDiag v1.27.204 par Nicolas Coolman, Update du 14/05/2011 Run by Vivien at 17/05/2011 08:51:50 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v6.0.2900.5512 MFIE: Mozilla Firefox v3.6.13 (fr) (Defaut) MFIE: Mozilla Firefox 4.0.1 v3.6.13 (fr) (Defaut) ---\\ System Information Windows XP Professional Service Pack 3 (Build 2600) Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 2037 MB (66% free) System Restore: Activé (Enable) System drive C: has 122 GB (81%) free of 149 GB ---\\ Logged in mode Computer Name: MAGALI User Name: Vivien All Users Names: Vivien, SUPPORT_388945a0, HelpAssistant, Administrateur, Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Documents and Settings\Vivien\Application Data %LocalAppData%=C:\Documents and Settings\Vivien\Local Settings\Application Data %StartMenu%=C:\Documents and Settings\Vivien\Menu Démarrer ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 122 Go of 149 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 149 Go of 149 Go) G:\ Hard drive, Flash drive, Thumb drive (Free 152 Go of 186 Go) H:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK ---\\ Recherche particulière de fichiers génériques [MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824] [MD5.C53F33C81D4070E9E7BAFC57FB356AF8] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.17/02/2011 14:51:59.) -- C:\WINDOWS\system32\wininet.dll [671232] [MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000] [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 19:40:30.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512] [MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 20:15:53.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574976] ---\\ Processus lancés [MD5.4AF61A15B3614FEF25FE93EA2FABD620] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe [265400] [MD5.73686FE0B2E0469F89FD2075BE724704] - (.Apple Computer, Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [229376] [MD5.E731921DB2E17DCD3DB472FAD5549C57] - (.Sun Microsystems, Inc. - Java Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376] [MD5.288778D9E2D1C7E8A5DBD5C6DB8046B0] - (.AVG Technologies CZ, s.r.o. - AVG IDS application.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [6128720] [MD5.7E6741A17CFDCD700DA5B6EC624F83B3] - (.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files\AVG\AVG10\avgnsx.exe [1084256] [MD5.B265AD2A5791B25C65F8F401764C53A9] - (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe [142104] [MD5.DB28088CDADA0BE4A2896024393EFA93] - (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe [162584] [MD5.C591E7DB162689C9A73A3BC9E5050F8E] - (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe [138008] [MD5.6A8BC204BC31E7CFDD1373CDB247A36C] - (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.EXE [16132608] [MD5.1AAD451CCBECE62987591B35AE8037A8] - (.Sonic Solutions - RoxMMTrayApp Module.) -- C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe [221184] [MD5.0940767CB618E3EDD744161A00ADE5DB] - (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe [128296] [MD5.A21E70B4F972CA396A80013D0D436350] - (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [620152] [MD5.06516883E43F06D0DB1C9CBC422AE22C] - (...) -- C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe [536576] [MD5.93DB1FF92B03D24738A71E6E4992DFD3] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [248552] [MD5.4719ED2A9E1F0FF37BC3FC1999F4FFC4] - (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\Program Files\AVG\AVG10\avgtray.exe [2747744] [MD5.43D083268A0919F3527A2837390BAF63] - (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe [218032] [MD5.44F5561C38F33CB1BC99D34573067CBD] - (.Intel Corporation - igfxsrvc Module.) -- C:\WINDOWS\system32\igfxsrvc.exe [252696] [MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2260480] [MD5.0CCE84F6F693478A769BFC1E993CBF67] - (.AVG Technologies CZ, s.r.o. - AVG IDS application.) -- C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe [737872] [MD5.C551D15D5D0F875D7BF0BC4FBB6EB2D9] - (.Sonic Solutions - ROXHelpRunner Module.) -- C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe [10752] [MD5.227846995AFEEFA70D328BF5334A86A5] - (.Macrovision Europe Ltd. - Activation Licensing Service.) -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848] [MD5.DB1A23EE7DD2E5E04E7DE071A6BEF699] - (.Sun Microsystems, Inc. - Java Update Checker.) -- C:\Program Files\Fichiers communs\Java\Java Update\jucheck.exe [501480] [MD5.CBE988F2111B0FC033E00CEA7ADF9C85] - (.Adobe Systems Incorporated - Adobe Acrobat 8.0.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrobat.exe [349808] [MD5.AC42E793F760034FC6F0BACB17E94003] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [646144] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\avg_igeared.xml M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\MediaDICO-fr.xml M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.0.) -- C:\Program Files\Mozilla Firefox\Plugins\np32dsw.dll P2 - FPN:Firefox Plugin Navigator . (.BitTorrent, Inc. - BitTorrent Plugin 1.) -- C:\Program Files\Mozilla Firefox\Plugins\npbittorrent.dll P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.0.) -- C:\WINDOWS\system32\Adobe\Director\np32dsw.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_23 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll M0 - MFSP: prefs.js [Vivien - 8ijhikkj.default] www.google.fr ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Dell â€“ The Official Site | Dell R0 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Google R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Dell â€“ The Official Site | Dell R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Google R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Google R1 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = google R1 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = Google R1 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\Software\Microsoft\Internet Explorer\Main,Search Page = Google R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} . (.Pas de propriétaire - AVG Security Toolbar.) (6.103.018.001) -- C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Bibliothèque d'objets et de contrôles de do.) (No version) -- %SystemRoot%\system32\shdocvw.dll R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2 ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} . (.AVG Technologies CZ, s.r.o. - Safe Search for Internet Explorer.) -- C:\Program Files\AVG\AVG10\avgssie.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} . (.Pas de propriétaire - AVG Security Toolbar.) -- C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} . (.Dell Inc. - BAE.dll.) -- C:\Program Files\Dell\BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} . (.Pas de propriétaire - AVG Security Toolbar.) -- C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [igfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [RTHDCPL] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.exe O4 - HKLM\..\Run: [Alcmtr] . (.Realtek Semiconductor Corp. - Realtek Azalia Audio - Event Monitor.) -- C:\WINDOWS\ALCMTR.exe O4 - HKLM\..\Run: [RoxWatchTray] . (.Sonic Solutions - RoxMMTrayApp Module.) -- C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe O4 - HKLM\..\Run: [ECenter] . (...) -- C:\Dell\E-Center\EULALauncher.exe O4 - HKLM\..\Run: [PDVDDXSrv] . (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe O4 - HKLM\..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (.not file.) O4 - HKLM\..\Run: [Acrobat Assistant 8.0] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe O4 - HKLM\..\Run: [samsung PanelMgr] . (...) -- C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe O4 - HKLM\..\Run: [AVG_TRAY] . (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\Program Files\AVG\AVG10\avgtray.exe O4 - HKLM\..\Run: [TrojanScanner] . (.Simply Super Software - Trojan Scanner.) -- C:\Program Files\Trojan Remover\Trjscan.exe O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [iSUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe O4 - HKCU\..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (.not file.) O4 - HKCU\..\Run: [AlcoholAutomount] . (.Alcohol Soft Development Team - Alcohol Launcher.) -- C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe O4 - HKCU\..\Run: [spybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\..\Run: [iSUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe O4 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (.not file.) O4 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\..\Run: [AlcoholAutomount] . (.Alcohol Soft Development Team - Alcohol Launcher.) -- C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe O4 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\..\Run: [spybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Adobe Reader Synchronizer.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Acrobat.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-1033-F400-7760-000000000003}\_SC_Acrobat.exe ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 9.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A91000000001}\SC_Reader.ico O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\DADSU-CTL-V08R09.lnk . (...) -- C:\Program Files\DADSU-CTL-V08R09\DADSU-CTL-V08R09.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation.) -- C:\Program Files\Microsoft Works\MSWorks.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox 4.0 Beta 11.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox 4.0 Beta 11\firefox.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\PowerDVD DX.lnk . (.CyberLink Corp..) -- C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Visionneuse Microsoft Office PowerPoint 2007.lnk . (...) -- C:\WINDOWS\Installer\{95120000-00AF-040C-0000-0000000FF1CE}\ppvwicon.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe O4 - Global Startup: C:\Documents And Settings\Vivien\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe O4 - Global Startup: C:\Documents And Settings\Vivien\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Documents And Settings\Vivien\Menu Démarrer\Programmes\Lecteur Windows Media.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe O4 - Global Startup: C:\Documents And Settings\Vivien\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: Ajouter au fichier PDF existant . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O8 - Extra context menu item: Convertir en Adobe PDF . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O8 - Extra context menu item: Convertir la sélection en Adobe PDF . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~3\Office12\EXCEL.exe O8 - Extra context menu item: Sothink SWF Catcher . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Fichiers communs\SourceTec\SWF Catcher\InternetExplorer.htm ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO O9 - Extra button: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (...) -- C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO O9 - Extra button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} . (.SourceTec - Sothink SWF Catcher.) -- C:\Program Files\Fichiers communs\SourceTec\SWF Catcher\SWFCatcher.dll O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.SourceTec - Sothink SWF Catcher.) -- C:\Program Files\Fichiers communs\SourceTec\SWF Catcher\SWFCatcher.dll O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Apple Computer, Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} (CamfrogWEB Advanced Unicode Control) - http://www.visiogood.com/jalss/cfweb_activex.camfrogweb.com-advanced-2.0.2.20_instmodule.exe ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{0FC9E22F-9EC0-444B-AB8B-7CDC5772D2ED}: NameServer = 212.27.40.240 O17 - HKLM\System\CS1\Services\Tcpip\..\{0FC9E22F-9EC0-444B-AB8B-7CDC5772D2ED}: NameServer = 212.27.40.240 O17 - HKLM\System\CS2\Services\Tcpip\..\{0FC9E22F-9EC0-444B-AB8B-7CDC5772D2ED}: NameServer = 212.27.40.240 O17 - HKLM\System\CS3\Services\Tcpip\..\{0FC9E22F-9EC0-444B-AB8B-7CDC5772D2ED}: DhcpNameServer = 212.27.40.241 212.27.40.240 ---\\ Protocole additionnel et piratage de protocole (O18) O18 - Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} . (.Pas de propriétaire - AVG Security Toolbar.) -- C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll O18 - Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} . (.AVG Technologies CZ, s.r.o. - Safe Search pluggable protocol.) -- C:\Program Files\AVG\AVG10\avgpp.dll ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\Windows\System32\WgaLogon.dll O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - AppInit_DLLs: . (.Pas de propriétaire - Pas de description.) - C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\WINDOWS\system32\webcheck.dll O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: (Adobe LM Service) . (.Adobe Systems - System Level Service Utility.) - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: (AVG Security Toolbar Service) . (.Pas de propriétaire - AVG Security Toolbar.) - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe O23 - Service: (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG IDS application.) - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe O23 - Service: (avgwd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files\AVG\AVG10\avgwdsvc.exe O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) . (.Apple Computer, Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: (dkab_device) . (.Pas de propriétaire - Printer Communication System.) - C:\WINDOWS\system32\DKabcoms.exe O23 - Service: (dmadmin) . (.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - C:\WINDOWS\System32\dmadmin.exe O23 - Service: (FLEXnet Licensing Service) . (.Macrovision Europe Ltd. - Activation Licensing Service.) - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: (RoxMediaDB9) . (.Sonic Solutions - RoxMediaDB9 Module.) - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: (RoxWatch9) . (.Sonic Solutions - RoxSniffer9 Module.) - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: (stllssvr) . (.MicroVision Development, Inc. - SureThing Labelflash Disc Printer Service M.) - C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe O23 - Service: (wampapache) . (.Apache Software Foundation - Apache HTTP Server.) - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe O23 - Service: (wampmysqld) . (...) - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Exit.job [MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (.Pas de propriétaire.) -- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [Exit] (.Pas de propriétaire.) -- C:\Windows\system\User.exe (.not file.) ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys O41 - Driver: (Avgldx86) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\System32\DRIVERS\avgldx86.sys O41 - Driver: (Avgmfx86) . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - C:\Windows\System32\DRIVERS\avgmfx86.sys O41 - Driver: (Avgtdix) . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - C:\Windows\System32\DRIVERS\avgtdix.sys O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: (DLARTL_M) . (.Roxio - Shared Driver Component.) - C:\Windows\System32\Drivers\DLARTL_M.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys O41 - Driver: (ISODrive) . (.EZB Systems, Inc. - ISO DVD/CD-ROM Device Driver.) - C:\Program Files\UltraISO\drivers\ISODrive.sys O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre souris HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys ---\\ Logiciels installés (O42) O42 - Logiciel: AHV content for Acrobat and Flash - (.Adobe Systems Incorporated.) [HKLM] -- {6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD} O42 - Logiciel: AVG 2011 - (.AVG Technologies.) [HKLM] -- AVG O42 - Logiciel: AVG 2011 - (.AVG Technologies.) [HKLM] -- {B3AEF776-7FFF-4C50-A402-9119E3849EE0} O42 - Logiciel: AVG 2011 - (.AVG Technologies.) [HKLM] -- {D4E53304-1F6C-4111-9872-1BCD2CF5B642} O42 - Logiciel: Adobe Anchor Service CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {90176341-0A8B-4CCC-A78D-F862228A6B95} O42 - Logiciel: Adobe Asset Services CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61} O42 - Logiciel: Adobe Bridge CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {9C9824D9-9000-4373-A6A5-D0E5D4831394} O42 - Logiciel: Adobe Bridge Start Meeting - (.Adobe Systems Incorporated.) [HKLM] -- {08B32819-6EEF-4057-AEDA-5AB681A36A23} O42 - Logiciel: Adobe BridgeTalk Plugin CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {B73CFB12-C814-4638-AFFD-7E3AAFAF0B4E} O42 - Logiciel: Adobe CMaps - (.Adobe Systems Incorporated.) [HKLM] -- {A2B242BD-FF8D-4840-9DAA-9170EABEC59C} O42 - Logiciel: Adobe Camera Raw 4.0 - (.Adobe Systems Incorporated.) [HKLM] -- {B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C} O42 - Logiciel: Adobe Color - Photoshop Specific - (.Adobe Systems Incorporated.) [HKLM] -- {A2D81E70-2A98-4A08-A628-94388B063C5E} O42 - Logiciel: Adobe Color Common Settings - (.Adobe Systems Incorporated.) [HKLM] -- {DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9} O42 - Logiciel: Adobe Color EU Recommended Settings - (.Adobe Systems Incorporated.) [HKLM] -- {73B5D990-04EA-4751-B10F-5534770B91F2} O42 - Logiciel: Adobe Color JA Extra Settings - (.Adobe Systems Incorporated.) [HKLM] -- {DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029} O42 - Logiciel: Adobe Color NA Extra Settings - (.Adobe Systems Incorporated.) [HKLM] -- {FF29A7E2-FF40-4D07-B7E4-2093DE59E10A} O42 - Logiciel: Adobe Creative Suite 3 Design Premium - (.Adobe Systems Incorporated.) [HKLM] -- {B1EF7B00-8FCC-4209-BFB6-37C50B354B2A} O42 - Logiciel: Adobe Default Language CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {B9B35331-B7E4-4E5C-BF4C-7BC87856124D} O42 - Logiciel: Adobe Device Central CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {8D2BA474-F406-4710-9AE4-D4F22D21F0DD} O42 - Logiciel: Adobe ExtendScript Toolkit 2 - (.Adobe Systems Incorporated.) [HKLM] -- {C2D69781-F392-4118-A5A7-C7E9C38DBFC2} O42 - Logiciel: Adobe Extension Manager CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {BE5F3842-8309-4754-92D5-83E02E6077A3} O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Fonts All - (.Adobe Systems Incorporated.) [HKLM] -- {6ABE0BEE-D572-4FE8-B434-9E72A289431B} O42 - Logiciel: Adobe Help Viewer CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {04AF207D-9A77-465A-8B76-991F6AB66245} O42 - Logiciel: Adobe InDesign CS3 Icon Handler - (.Adobe Systems Incorporated.) [HKLM] -- {EA7B3CC4-366D-4CF6-8350-FD7A7034116E} O42 - Logiciel: Adobe Linguistics CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {54793AA1-5001-42F4-ABB6-C364617C6078} O42 - Logiciel: Adobe MotionPicture Color Files - (.Adobe Systems Incorporated.) [HKLM] -- {6B708481-748A-4EB4-97C1-CD386244FF77} O42 - Logiciel: Adobe PDF Library Files - (.Adobe Systems Incorporated.) [HKLM] -- {D2559B88-CC9D-4B48-81BB-F492BAA9C48C} O42 - Logiciel: Adobe Photoshop CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {C1FA4B3B-1625-4922-9C9D-780E8FCE161A} O42 - Logiciel: Adobe Reader 9.1 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A91000000001} O42 - Logiciel: Adobe SING CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {B671CBFD-4109-4D35-9252-3062D3CCB7B2} O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM] -- {9D3F3D5A-BE6D-48C4-B51E-E2D6753ABCDE} O42 - Logiciel: Adobe Shockwave Player 11 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player O42 - Logiciel: Adobe Stock Photos CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {29E5EA97-5F74-4A57-B8B2-D4F169117183} O42 - Logiciel: Adobe Type Support - (.Adobe Systems Incorporated.) [HKLM] -- {8E6808E2-613D-4FCD-81A2-6C8FA8E03312} O42 - Logiciel: Adobe Update Manager CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {E69AE897-9E0B-485C-8552-7841F48D42D8} O42 - Logiciel: Adobe Version Cue CS3 Client - (.Adobe Systems Incorporated.) [HKLM] -- {D0DFF92A-492E-4C40-B862-A74A173C25C5} O42 - Logiciel: Adobe WAS CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {C5BD220A-EFE8-48A5-B70E-9503D535FACE} O42 - Logiciel: Adobe WinSoft Linguistics Plugin - (.Adobe Systems Incorporated.) [HKLM] -- {184CE391-7E0E-4C63-9935-D7A10EDFD3C6} O42 - Logiciel: Adobe XMP Panels CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {802771A9-A856-4A41-ACF7-1450E523C923} O42 - Logiciel: Ajouter ou supprimer Adobe Creative Suite 3 Design Premium - (.Adobe Systems Incorporated.) [HKLM] -- Adobe_e79070e1ef25043cbd93191267ecaf0 O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver O42 - Logiciel: BitTorrent - (.BitTorrent, Inc.) [HKCU] -- BitTorrent O42 - Logiciel: Browser Address Error Redirector - (.Dell.) [HKLM] -- {62230596-37E5-4618-A329-0D21F529A86F} O42 - Logiciel: CDex extraction audio - (.Pas de propriétaire.) [HKLM] -- CDex O42 - Logiciel: CamStudio 2.0 Fr - (.Pas de propriétaire.) [HKLM] -- CamStudio 2.0 Fr_is1 O42 - Logiciel: CamfrogWEB Advanced ActiveX Plugin (remove only) - (.Pas de propriétaire.) [HKLM] -- CFWebAdvancedU O42 - Logiciel: Comptabilité - (.Pas de propriétaire.) [HKLM] -- {9308A8EB-1C1B-11D4-BFC8-00C04F6180C7} O42 - Logiciel: DADSU-CTL-V08R09 - (.GC.) [HKLM] -- DADSU-CTL-V08R09_is1 O42 - Logiciel: Dell Driver Reset Tool - (.Dell Inc..) [HKLM] -- {5905F42D-3F5F-4916-ADA6-94A3646AEE76} O42 - Logiciel: Désinstallation du logiciel Dell - (.Dell, Inc..) [HKLM] -- Dell_HostCD O42 - Logiciel: Désinstalleur HP LaserJet 1200 - (.Pas de propriétaire.) [HKLM] -- HP LaserJet 1200 Uninstaller O42 - Logiciel: Foxmail 5.0 Fr. - (.Bodafox.) [HKLM] -- Foxmail_is1 O42 - Logiciel: High Definition Audio Driver Package - KB835221 - (.Microsoft Corporation.) [HKLM] -- KB835221WXP O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5 O42 - Logiciel: Intel® Graphics Media Accelerator Driver - (.Pas de propriétaire.) [HKLM] -- HDMI O42 - Logiciel: Intel® PRO Network Connections 12.1.8.0 - (.Intel.) [HKLM] -- {777CA40C-0206-4EF6-A0FC-618BF06BF8D0} O42 - Logiciel: Java 6 Update 23 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216011FF} O42 - Logiciel: Java 6 Update 4 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160040} O42 - Logiciel: Java 6 Update 5 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160050} O42 - Logiciel: Java 6 Update 7 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160070} O42 - Logiciel: MSN - (.Pas de propriétaire.) [HKLM] -- MSNINST O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: MSXML 6 Service Pack 2 (KB954459) - (.Microsoft Corporation.) [HKLM] -- {97AA1F3C-DD64-4AA6-AEC5-F8F9F4CC21C5} O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033) O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700} O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447 O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906 O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs O42 - Logiciel: Microsoft MPEG-4 VKI Video Codec V1/V2/V3 - (.Pas de propriétaire.) [HKLM] -- MS-MPEG4 O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM] -- {95120000-00AF-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {3B160861-7250-451E-B5EE-8B92BF30A710} O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE} O42 - Logiciel: Mozilla Firefox (3.6.13) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.13) O42 - Logiciel: Mozilla Firefox 4.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 4.0.1 (x86 fr) O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM] -- {97B3824E-B2D2-4C49-A860-BCA56F10B040} O42 - Logiciel: PDF Settings - (.Adobe Systems Incorporated.) [HKLM] -- {AC5B0C19-D851-42F4-BDA0-410ECF7F70A5} O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} O42 - Logiciel: PowerDVD - (.Dell.) [HKLM] -- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1} O42 - Logiciel: Realtek High Definition Audio Driver - (.Pas de propriétaire.) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Roxio Activation Module - (.Roxio.) [HKLM] -- {07159635-9DFE-4105-BFC0-2817DB540C68} O42 - Logiciel: Roxio Creator Audio - (.Roxio.) [HKLM] -- {83FFCFC7-88C6-41C6-8752-958A45325C82} O42 - Logiciel: Roxio Creator BDAV Plugin - (.Roxio.) [HKLM] -- {880AF49C-34F7-4285-A8AD-8F7A3D1C33DC} O42 - Logiciel: Roxio Creator Copy - (.Roxio.) [HKLM] -- {619CDD8A-14B6-43A1-AB6C-0F4EE48CE048} O42 - Logiciel: Roxio Creator DE - (.Roxio.) [HKLM] -- {C8B0680B-CDAE-4809-9F91-387B6DE00F7C} O42 - Logiciel: Roxio Creator Data - (.Roxio.) [HKLM] -- {0D397393-9B50-4C52-84D5-77E344289F87} O42 - Logiciel: Roxio Creator Tools - (.Roxio.) [HKLM] -- {0394CDC8-FABD-4ED8-B104-03393876DFDF} O42 - Logiciel: Roxio Drag-to-Disc - (.Roxio.) [HKLM] -- {2F4C24E6-CBD4-4AAC-B56F-C9FD44DE5668} O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA} O42 - Logiciel: Roxio MyDVD DE - (.Roxio, Inc..) [HKLM] -- {D639085F-4B6E-4105-9F37-A0DBB023E2FB} O42 - Logiciel: Roxio Update Manager - (.Roxio.) [HKLM] -- {30465B6C-B53F-49A1-9EBA-A3F187AD502E} O42 - Logiciel: Samsung ML-2855 Series - (.Samsung Electronics CO.,LTD.) [HKLM] -- Samsung ML-2855 Series O42 - Logiciel: SearchAssist - (.Pas de propriétaire.) [HKLM] -- SearchAssist O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5C497F0B-2061-4CC9-A61C-6B45B867354D} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD769337-C8AC-46DB-A7DC-643E50089263} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{536FB502-775F-4494-BACE-C02CC90B7A5B} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2466156) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CEF209AB-F96D-404F-B5CC-44057C057CA3} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2509488) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{AD0DE453-0804-4495-9C91-33D0F9AA5463} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5A4E43D5-858F-49BD-BA72-8F30E1793060} O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2464583) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{151E2FEA-C3A6-4CB6-BE6B-16651FDF04BE} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1} O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062} O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3A4CDE54-2403-483D-8D9A-15E3264410DF} O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Sonic CinePlayer Decoder Pack - (.Sonic Solutions.) [HKLM] -- {8D337F77-BE7F-41A2-A7CB-D5A63FD7049B} O42 - Logiciel: Sothink SWF Decompiler - (.SourceTec Software Co., LTD.) [HKLM] -- {BCDB856C-D247-4DEE-9132-89C02F4D6B8C}_is1 O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 O42 - Logiciel: Trojan Remover 6.8.2 - (.Simply Super Software.) [HKLM] -- Trojan Remover_is1 O42 - Logiciel: UltraISO Premium V9.36 - (.Pas de propriétaire.) [HKLM] -- UltraISO_is1 O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2509470) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1365864D-4C58-489D-9982-844D75691CCC} O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2536413) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{95DF5260-331D-4FFD-A2D5-C64164751945} O42 - Logiciel: VLC media player 0.9.9 - (.VideoLAN Team.) [HKLM] -- VLC media player O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729) - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27} O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01 O42 - Logiciel: WampServer 2.0 - (.Romain Bourdon (Roms).) [HKLM] -- WampServer 2_is1 O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474) - (.Microsoft Corporation.) [HKLM] -- WgaNotify O42 - Logiciel: Windows Installer 3.1 (KB893803) - (.Microsoft Corporation.) [HKLM] -- KB893803v2 O42 - Logiciel: Windows Media Format Runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service O42 - Logiciel: XviD MPEG-4 Video Codec - (.XviD Development Team.) [HKLM] -- xvid O42 - Logiciel: ZD Soft Screen Recorder - (.Pas de propriétaire.) [HKLM] -- ZD Soft Screen Recorder O42 - Logiciel: ZD Soft Screen Video Decoder - (.Pas de propriétaire.) [HKLM] -- ZDSV O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM] -- eMule O42 - Logiciel: gBurner - (.Pas de propriétaire.) [HKLM] -- gBurner O42 - Logiciel: sPAIEctacle 4.4.5 - (.Pas de propriétaire.) [HKLM] -- sPAIEctacle 4.4.5 O42 - Logiciel: sPAIEctacle 4.4.6 - (.Pas de propriétaire.) [HKLM] -- sPAIEctacle 4.4.6 O42 - Logiciel: sPAIEctacle 4.4.7 - (.Pas de propriétaire.) [HKLM] -- sPAIEctacle 4.4.7 O42 - Logiciel: sPAIEctacle 4.4.8 - (.Pas de propriétaire.) [HKLM] -- sPAIEctacle 4.4.8 O42 - Logiciel: sPAIEctacle 4.4.9 - (.Pas de propriétaire.) [HKLM] -- sPAIEctacle 4.4.9 ---\\ HKCU & HKLM Software Keys [HKCU\Software\AVG Security Toolbar] [HKCU\Software\Adobe] [HKCU\Software\Aerofox] [HKCU\Software\Alcohol Soft] [HKCU\Software\AppDataLow\Avg] [HKCU\Software\AppDataLow\Software\Adobe] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Avg] [HKCU\Software\BAE] [HKCU\Software\CDDB] [HKCU\Software\CamfrogWEBAdvanced] [HKCU\Software\CamfrogWEB] [HKCU\Software\Camfrog] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Cyberlink] [HKCU\Software\DELL] [HKCU\Software\DSCLauncher] [HKCU\Software\Dell Printers] [HKCU\Software\EasyBoot Systems] [HKCU\Software\GNU] [HKCU\Software\Google] [HKCU\Software\InstallShield] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Lavasoft] [HKCU\Software\Lexmark] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\Macromedia] [HKCU\Software\Mozilla] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\OpenOffice.org] [HKCU\Software\PDFCreator] [HKCU\Software\Policies] [HKCU\Software\Realtek] [HKCU\Software\Roxio] [HKCU\Software\SSPrint] [HKCU\Software\Safer Networking Limited] [HKCU\Software\Sage] [HKCU\Software\Simply Super Software] [HKCU\Software\Sonic Solutions] [HKCU\Software\Sonic] [HKCU\Software\SourceTec] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\ZD Soft] [HKCU\Software\eMule] [HKCU\Software\gBurner] [HKCU\Software\keyhole.com] [HKCU\Software\pdfforge.org] [HKLM\Software\AVG Security Toolbar] [HKLM\Software\Adobe Systems] [HKLM\Software\Adobe] [HKLM\Software\Aerofox] [HKLM\Software\Alcohol Soft] [HKLM\Software\America Online] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\BitTorrent] [HKLM\Software\C07ft5Y] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CyberLink] [HKLM\Software\Debug] [HKLM\Software\Dell Computers] [HKLM\Software\Dell Printers] [HKLM\Software\DellLaser] [HKLM\Software\Dell] [HKLM\Software\EasyBoot Systems] [HKLM\Software\Gemplus] [HKLM\Software\Google] [HKLM\Software\Hewlett-Packard] [HKLM\Software\InstallShield] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Lavasoft] [HKLM\Software\Lexmark] [HKLM\Software\Licenses] [HKLM\Software\MAXSOFT-OCRON] [HKLM\Software\Macromedia] [HKLM\Software\Macrovision] [HKLM\Software\McAfee] [HKLM\Software\MicroVision] [HKLM\Software\MimarSinan] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NOS] [HKLM\Software\ODBC] [HKLM\Software\OpenOffice.org] [HKLM\Software\Policies] [HKLM\Software\Program Groups] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\Roxio] [HKLM\Software\Runapp] [HKLM\Software\SPanel] [HKLM\Software\SSPrint] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Sage] [HKLM\Software\Samsung] [HKLM\Software\Schlumberger] [HKLM\Software\Secure] [HKLM\Software\Simply Super Software] [HKLM\Software\Sonic] [HKLM\Software\SourceTec] [HKLM\Software\VideoLAN] [HKLM\Software\Windows 3.1 Migration Status] [HKLM\Software\Windows] [HKLM\Software\ZD Soft] [HKLM\Software\illiminable] [HKLM\Software\mozilla.org] [HKLM\Software\pdfforge.org] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 07/04/2009 - 10:46:14 - [2116314388] ----D- C:\Program Files\Adobe O43 - CFD: 03/09/2008 - 09:20:44 - [6158500] ----D- C:\Program Files\Alcohol Soft O43 - CFD: 16/11/2010 - 10:53:42 - [131478035] ----D- C:\Program Files\AVG O43 - CFD: 26/09/2008 - 12:26:50 - [955200] ----D- C:\Program Files\BitTorrent O43 - CFD: 19/09/2008 - 15:58:16 - [323584] ----D- C:\Program Files\Bonjour O43 - CFD: 29/04/2009 - 09:01:54 - [8393978] ----D- C:\Program Files\CamStudio O43 - CFD: 24/08/2009 - 14:19:36 - [3412532] ----D- C:\Program Files\CDex_170b2 O43 - CFD: 01/07/2009 - 08:35:28 - [6533042] ----D- C:\Program Files\CFWebAdvancedU O43 - CFD: 19/08/2004 - 14:15:20 - [0] ----D- C:\Program Files\ComPlus Applications O43 - CFD: 27/06/2008 - 19:57:58 - [44668064] ----D- C:\Program Files\CyberLink O43 - CFD: 08/01/2010 - 10:41:22 - [6638608] ----D- C:\Program Files\DADSU-CTL-V08R09 O43 - CFD: 14/08/2009 - 15:37:28 - [13342410] ----D- C:\Program Files\Dell O43 - CFD: 14/08/2009 - 15:37:36 - [4979227] ----D- C:\Program Files\Dell_HostCD O43 - CFD: 08/06/2010 - 10:53:40 - [409678047] ----D- C:\Program Files\eMule O43 - CFD: 03/06/2010 - 16:42:28 - [1130505823] ----D- C:\Program Files\Fichiers communs O43 - CFD: 03/07/2008 - 10:15:10 - [1653268566] ----D- C:\Program Files\Foxmail O43 - CFD: 09/02/2011 - 12:34:52 - [2488121] ----D- C:\Program Files\gBurner O43 - CFD: 01/04/2011 - 08:28:26 - [20] ----D- C:\Program Files\GOOGLE O43 - CFD: 26/05/2009 - 16:20:16 - [21818408] ----D- C:\Program Files\Hewlett-Packard O43 - CFD: 02/07/2008 - 09:30:06 - [12238200] --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD: 27/06/2008 - 19:48:00 - [5958176] ----D- C:\Program Files\Intel O43 - CFD: 01/07/2009 - 08:46:18 - [1170964] ----D- C:\Program Files\Internet Explorer O43 - CFD: 10/02/2011 - 12:19:22 - [313557005] ----D- C:\Program Files\Java O43 - CFD: 21/12/2009 - 12:16:16 - [11733252] ----D- C:\Program Files\Maestria O43 - CFD: 17/12/2008 - 10:55:50 - [2152579] ----D- C:\Program Files\Messenger O43 - CFD: 19/08/2004 - 14:18:42 - [0] ----D- C:\Program Files\microsoft frontpage O43 - CFD: 04/09/2008 - 15:41:28 - [566441853] ----D- C:\Program Files\Microsoft Office O43 - CFD: 04/09/2008 - 15:41:26 - [14904] ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD: 15/12/2010 - 19:30:54 - [145421942] ----D- C:\Program Files\Microsoft Works O43 - CFD: 04/09/2008 - 15:40:54 - [8152064] ----D- C:\Program Files\Microsoft.NET O43 - CFD: 13/08/2010 - 13:05:36 - [10374874] ----D- C:\Program Files\Movie Maker O43 - CFD: 14/12/2010 - 09:44:40 - [30936554] ----D- C:\Program Files\Mozilla Firefox O43 - CFD: 16/05/2011 - 11:53:08 - [32643396] ----D- C:\Program Files\Mozilla Firefox 4.0 Beta 11 O43 - CFD: 04/09/2008 - 15:41:32 - [764] ----D- C:\Program Files\MSBuild O43 - CFD: 02/07/2008 - 09:48:56 - [21471559] ----D- C:\Program Files\MSN O43 - CFD: 19/08/2004 - 14:14:54 - [8745735] ----D- C:\Program Files\MSN Gaming Zone O43 - CFD: 02/07/2008 - 17:44:54 - [0] ----D- C:\Program Files\MSXML 4.0 O43 - CFD: 27/06/2008 - 19:42:08 - [17340] ----D- C:\Program Files\MSXML 6.0 O43 - CFD: 17/12/2008 - 10:50:30 - [3285523] ----D- C:\Program Files\NetMeeting O43 - CFD: 15/07/2008 - 11:14:14 - [7406] ----D- C:\Program Files\Netscape O43 - CFD: 19/08/2004 - 14:15:06 - [1708] ----D- C:\Program Files\Online Services O43 - CFD: 19/09/2008 - 14:50:10 - [60837] ----D- C:\Program Files\OpenOffice.org 2.4 O43 - CFD: 19/02/2010 - 09:51:30 - [321137249] ----D- C:\Program Files\OpenOffice.org 3 O43 - CFD: 15/12/2010 - 19:27:16 - [4379321] ----D- C:\Program Files\Outlook Express O43 - CFD: 19/09/2008 - 15:31:38 - [33876650] ----D- C:\Program Files\PDFCreator O43 - CFD: 27/06/2008 - 19:51:16 - [212800756] ----D- C:\Program Files\Roxio O43 - CFD: 21/08/2009 - 16:12:22 - [59136326] ----D- C:\Program Files\Samsung O43 - CFD: 19/08/2004 - 14:16:38 - [929] ----D- C:\Program Files\Services en ligne O43 - CFD: 27/06/2008 - 19:48:48 - [28666352] ----D- C:\Program Files\Sonic O43 - CFD: 12/05/2011 - 08:43:52 - [60407748] ----D- C:\Program Files\Spybot - Search & Destroy O43 - CFD: 10/02/2011 - 12:30:52 - [11035904] ----D- C:\Program Files\Trojan Remover O43 - CFD: 03/06/2010 - 16:42:28 - [5963743] ----D- C:\Program Files\UltraISO O43 - CFD: 19/08/2004 - 14:24:00 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 10/04/2009 - 12:29:34 - [64597254] ----D- C:\Program Files\VideoLAN O43 - CFD: 17/12/2008 - 10:53:14 - [4401005] ----D- C:\Program Files\Windows Media Player O43 - CFD: 17/12/2008 - 10:50:26 - [3942655] ----D- C:\Program Files\Windows NT O43 - CFD: 19/08/2004 - 14:16:42 - [0] --H-D- C:\Program Files\WindowsUpdate O43 - CFD: 04/09/2008 - 10:58:26 - [3451643] ----D- C:\Program Files\WinRAR O43 - CFD: 19/08/2004 - 14:18:42 - [0] ----D- C:\Program Files\xerox O43 - CFD: 29/10/2008 - 15:33:38 - [6080131] ----D- C:\Program Files\ZD Soft O43 - CFD: 17/05/2011 - 08:51:58 - [3829486] ----D- C:\Program Files\ZHPDiag O43 - CFD: 07/04/2009 - 10:46:36 - [597332412] ----D- C:\Program Files\Fichiers Communs\Adobe O43 - CFD: 04/09/2008 - 11:06:54 - [72704] ----D- C:\Program Files\Fichiers Communs\Adobe Systems Shared O43 - CFD: 04/09/2008 - 15:41:26 - [92976] ----D- C:\Program Files\Fichiers Communs\DESIGNER O43 - CFD: 03/06/2010 - 16:42:28 - [262144] ----D- C:\Program Files\Fichiers Communs\EZB Systems O43 - CFD: 02/07/2008 - 09:27:10 - [9429968] ----D- C:\Program Files\Fichiers Communs\InstallShield O43 - CFD: 27/06/2008 - 19:43:56 - [51385645] ----D- C:\Program Files\Fichiers Communs\Java O43 - CFD: 19/09/2008 - 15:54:56 - [655183] ----D- C:\Program Files\Fichiers Communs\Macrovision Shared O43 - CFD: 01/07/2010 - 13:03:34 - [249093936] ----D- C:\Program Files\Fichiers Communs\Microsoft Shared O43 - CFD: 19/08/2004 - 14:16:18 - [284160] ----D- C:\Program Files\Fichiers Communs\MSSoap O43 - CFD: 19/08/2004 - 14:10:40 - [0] ----D- C:\Program Files\Fichiers Communs\ODBC O43 - CFD: 27/06/2008 - 19:48:06 - [151004501] ----D- C:\Program Files\Fichiers Communs\Roxio Shared O43 - CFD: 02/07/2008 - 09:30:14 - [11082240] ----D- C:\Program Files\Fichiers Communs\Sage O43 - CFD: 19/08/2004 - 14:16:20 - [8106] ----D- C:\Program Files\Fichiers Communs\Services O43 - CFD: 27/06/2008 - 19:51:10 - [13545656] ----D- C:\Program Files\Fichiers Communs\Sonic Shared O43 - CFD: 29/10/2008 - 15:40:18 - [397503] ----D- C:\Program Files\Fichiers Communs\SourceTec O43 - CFD: 19/08/2004 - 14:10:38 - [3787229] ----D- C:\Program Files\Fichiers Communs\SpeechEngines O43 - CFD: 27/06/2008 - 19:48:40 - [710656] ----D- C:\Program Files\Fichiers Communs\SureThing Shared O43 - CFD: 17/12/2008 - 10:50:24 - [41360804] ----D- C:\Program Files\Fichiers Communs\System O43 - CFD: 14/06/2010 - 11:26:28 - [39454280] ----D- C:\Documents and Settings\Vivien\Application Data\Adobe O43 - CFD: 16/11/2010 - 11:03:22 - [296] ----D- C:\Documents and Settings\Vivien\Application Data\AVG10 O43 - CFD: 11/06/2010 - 18:57:24 - [1328543] ----D- C:\Documents and Settings\Vivien\Application Data\BitTorrent O43 - CFD: 01/07/2009 - 08:35:30 - [3793511] ----D- C:\Documents and Settings\Vivien\Application Data\CamfrogWEB O43 - CFD: 02/07/2008 - 09:25:26 - [0] ----D- C:\Documents and Settings\Vivien\Application Data\CyberLink O43 - CFD: 24/08/2009 - 15:14:32 - [15038] ----D- C:\Documents and Settings\Vivien\Application Data\FileZilla O43 - CFD: 23/09/2008 - 14:42:52 - [33225] ----D- C:\Documents and Settings\Vivien\Application Data\Google O43 - CFD: 10/09/2008 - 14:44:02 - [0] ----D- C:\Documents and Settings\Vivien\Application Data\Help O43 - CFD: 19/08/2004 - 14:24:02 - [0] ----D- C:\Documents and Settings\Vivien\Application Data\Identities O43 - CFD: 27/06/2008 - 19:48:36 - [544] ----D- C:\Documents and Settings\Vivien\Application Data\InstallShield O43 - CFD: 03/07/2008 - 18:33:08 - [4855611] ----D- C:\Documents and Settings\Vivien\Application Data\Macromedia O43 - CFD: 18/03/2011 - 17:42:58 - [2166267] -S--D- C:\Documents and Settings\Vivien\Application Data\Microsoft O43 - CFD: 02/07/2008 - 10:34:38 - [13182199] ----D- C:\Documents and Settings\Vivien\Application Data\Mozilla O43 - CFD: 19/02/2010 - 09:53:58 - [2156575] ----D- C:\Documents and Settings\Vivien\Application Data\OpenOffice.org O43 - CFD: 19/09/2008 - 09:18:00 - [2529462] ----D- C:\Documents and Settings\Vivien\Application Data\OpenOffice.org2 O43 - CFD: 27/06/2008 - 20:00:26 - [1062092] ----D- C:\Documents and Settings\Vivien\Application Data\Roxio O43 - CFD: 03/07/2008 - 17:38:22 - [68545] ----D- C:\Documents and Settings\Vivien\Application Data\Sage O43 - CFD: 10/02/2011 - 12:30:42 - [3761072] ----D- C:\Documents and Settings\Vivien\Application Data\Simply Super Software O43 - CFD: 27/06/2008 - 19:43:12 - [136200279] ----D- C:\Documents and Settings\Vivien\Application Data\Sun O43 - CFD: 30/06/2010 - 11:24:06 - [13824] ----D- C:\Documents and Settings\Vivien\Application Data\Template O43 - CFD: 10/04/2009 - 12:38:54 - [449544] ----D- C:\Documents and Settings\Vivien\Application Data\vlc O43 - CFD: 04/09/2008 - 10:58:58 - [0] ----D- C:\Documents and Settings\Vivien\Application Data\WinRAR O43 - CFD: 04/11/2009 - 15:50:16 - [412325837] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Adobe O43 - CFD: 17/05/2011 - 08:42:50 - [14961] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\ApplicationHistory O43 - CFD: 16/11/2010 - 11:04:18 - [33459] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\AVG Security Toolbar O43 - CFD: 23/09/2008 - 14:42:52 - [514509517] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Google O43 - CFD: 10/09/2008 - 14:44:02 - [0] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Help O43 - CFD: 22/07/2008 - 11:21:32 - [303396] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Identities O43 - CFD: 18/03/2011 - 17:43:04 - [1952320] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Microsoft O43 - CFD: 04/09/2008 - 15:38:14 - [0] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Microsoft Help O43 - CFD: 02/07/2008 - 10:34:36 - [54779616] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Mozilla O43 - CFD: 08/12/2008 - 14:32:36 - [10821] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\PowerDVD DX O43 - CFD: 23/11/2009 - 13:27:46 - [20058] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\PSU O43 - CFD: 10/02/2011 - 11:45:34 - [0] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Sunbelt Software O43 - CFD: 02/07/2008 - 10:33:24 - [0] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\SupportSoft O43 - CFD: 29/04/2009 - 10:51:54 - [0] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\WMTools Downloaded Files ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.E0EE1300F915817C00FCFD7FB4EF1300] - 17/05/2011 - 07:44:38 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [2029341] O44 - LFC:[MD5.38188594E9E673052103813922BE634E] - 17/05/2011 - 07:42:07 ---A- . (...) -- C:\WINDOWS\System32\wpa.dbl [2206] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 17/05/2011 - 07:42:06 ---A- . (...) -- C:\WINDOWS\0.log [0] O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 17/05/2011 - 07:41:44 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048] O44 - LFC:[MD5.E0EE1300F915817C00FCFD7FB4EF1300] - 16/05/2011 - 18:22:55 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [32540] O44 - LFC:[MD5.B2BB04DCFA67772E7F4B504387BCF1D1] - 16/05/2011 - 18:22:36 ---A- . (...) -- C:\WINDOWS\win.ini [597] O44 - LFC:[MD5.F3924083D4298F4F42C136C0847C76C2] - 04/05/2011 - 12:12:59 ---A- . (...) -- C:\WINDOWS\setupact.log [1864] O44 - LFC:[MD5.0375DA832DFDA45918D4A389DBB6B24F] - 04/05/2011 - 12:12:59 ---A- . (...) -- C:\WINDOWS\setupapi.log [266730] O44 - LFC:[MD5.A55A1363E165CB35F5FDEF88094BB919] - 04/05/2011 - 11:54:38 ---A- . (...) -- C:\WINDOWS\System32\LexFiles.usr [4865] O44 - LFC:[MD5.1ECFDF9BDD8C32DF96AADA095016A9A6] - 04/05/2011 - 11:54:28 ---A- . (...) -- C:\dkab.log [44370] O44 - LFC:[MD5.5A380BE16D3F10A64BFC4CD6EAE7291F] - 03/05/2011 - 18:08:11 ---A- . (...) -- C:\WINDOWS\wiadebug.log [216] O44 - LFC:[MD5.A3047A6A76582036C22604FACF1C6900] - 03/05/2011 - 08:31:32 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50] ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe" [Enabled] .(.CyberLink Corp. - CyberLink PowerDVD DX.) -- C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe O47 - AAKE:Key Export SP - "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [Enabled] .(.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe O47 - AAKE:Key Export SP - "C:\Program Files\AVG\AVG8\avgupd.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files\AVG\AVG8\avgupd.exe (.not file.) O47 - AAKE:Key Export SP - "C:\Program Files\AVG\AVG8\avgemc.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files\AVG\AVG8\avgemc.exe (.not file.) O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export SP - "C:\Program Files\BitTorrent\bittorrent.exe" [Enabled] .(.BitTorrent, Inc. - BitTorrent.) -- C:\Program Files\BitTorrent\bittorrent.exe O47 - AAKE:Key Export SP - "C:\Program Files\eMule\emule.exe" [Enabled] .(.http://www.emule-project.net - eMule.) -- C:\Program Files\eMule\emule.exe O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe O47 - AAKE:Key Export SP - "C:\Program Files\Bonjour\mDNSResponder.exe" [Enabled] .(.Apple Computer, Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O47 - AAKE:Key Export SP - "C:\Program Files\Mozilla Firefox\firefox.exe" [Enabled] .(.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\DKabcoms.exe" [Enabled] .(.Pas de propriétaire - Printer Communication System.) -- C:\WINDOWS\system32\DKabcoms.exe O47 - AAKE:Key Export SP - "C:\wamp\bin\apache\Apache2.2.11\bin\httpd.exe" [Enabled] .(.Apache Software Foundation - Apache HTTP Server.) -- C:\wamp\bin\apache\Apache2.2.11\bin\httpd.exe O47 - AAKE:Key Export SP - "C:\Program Files\AVG\AVG10\avgmfapx.exe" [Enabled] .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files\AVG\AVG10\avgmfapx.exe O47 - AAKE:Key Export SP - "C:\Program Files\AVG\AVG10\avgdiagex.exe" [Enabled] .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics Utility.) -- C:\Program Files\AVG\AVG10\avgdiagex.exe O47 - AAKE:Key Export SP - "C:\Program Files\AVG\AVG10\avgnsx.exe" [Enabled] .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files\AVG\AVG10\avgnsx.exe O47 - AAKE:Key Export SP - "C:\Program Files\AVG\AVG10\avgemcx.exe" [Enabled] .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files\AVG\AVG10\avgemcx.exe O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export DP - "C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe" [Enabled] .(.CyberLink Corp. - CyberLink PowerDVD DX.) -- C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe O47 - AAKE:Key Export DP - "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [Enabled] .(.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ---\\ MountPoints2 Shell Key (O51) O51 - MPSK:{0019e539-01b3-11df-8f2d-001ec981ec26}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- H:\LaunchU3.exe (.not file.) O51 - MPSK:{4eb6690b-2eb1-11e0-906a-001ec981ec26}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- I:\LaunchU3.exe (.not file.) O51 - MPSK:{6103a7f4-3557-11de-80e9-001ec981ec26}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- F:\Setup.exe (.not file.) O51 - MPSK:{a6eefca2-437f-11de-80f9-001ec981ec26}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- G:\ntde1ect.com (.not file.) ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \Drivers32\"VIDC.ZDSV"="scrvid.dll" . (.ZD Soft, ZD Soft Screen Recorder, Screen Capture, Screen Sharing, Capture Streaming Video, Game Recorder - ZD Soft Screen Video Decoder.) -- C:\WINDOWS\System32\scrvid.dll O52 - TDSD: \Drivers32\"vidc.XVID"="xvidvfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\xvidvfw.dll O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \drivers.desc\"xvidvfw.dll"="XviD MPEG-4 Video Codec" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\xvidvfw.dll ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145 O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoCDBurning"=0 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.1140AB9938809700B46BB88E46D72A96] - 17/08/2001 - 21:51:56 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\WINDOWS\system32\drivers\aliide.sys [5248] O58 - SDL:[MD5.95B4FB835E28AA1336CEEB07FD5B9398] - 13/04/2008 - 19:36:39 ---A- . (.Advanced Micro Devices, Inc. - AMD Win2000 AGP Filter.) -- C:\WINDOWS\system32\drivers\amdagp.sys [43008] O58 - SDL:[MD5.62D318E9A0C8FC9B780008E724283707] - 17/08/2001 - 21:52:00 ---A- . (.Advanced System Products, Inc. - AdvanSys SCSI Controller Driver.) -- C:\WINDOWS\system32\drivers\asc.sys [26496] O58 - SDL:[MD5.5D8DE112AA0254B907861E9E9C31D597] - 17/08/2001 - 21:51:58 ---A- . (.Advanced System Products, Inc. - AdvanSys Ultra-Wide PCI SCSI Driver.) -- C:\WINDOWS\system32\drivers\asc3550.sys [14848] O58 - SDL:[MD5.0C61F066F4D94BD67063DC6691935143] - 19/08/2010 - 21:42:36 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys [123472] O58 - SDL:[MD5.84853F800CD69252C3C764FE50D0346F] - 13/09/2010 - 16:27:24 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Helper Driver..) -- C:\WINDOWS\system32\drivers\AVGIDSEH.sys [25680] O58 - SDL:[MD5.28D6ADCD03E10F3838488B9B5D407DD4] - 19/08/2010 - 21:42:38 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Filter Driver..) -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys [30288] O58 - SDL:[MD5.0EB16F4DBBB946360AF30D2B13A52D1D] - 19/08/2010 - 21:42:34 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Loader Driver..) -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys [26192] O58 - SDL:[MD5.5FE5A2C2330C376A1D8DCFF8D2680A2D] - 08/12/2010 - 04:12:38 ---A- . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) -- C:\WINDOWS\system32\drivers\avgldx86.sys [251728] O58 - SDL:[MD5.54F1A9B4C9B540C2D8AC4BAA171696B1] - 07/09/2010 - 03:48:56 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgmfx86.sys [34384] O58 - SDL:[MD5.8DA3B77993C5F354CC2977B7EA06D03A] - 07/09/2010 - 03:48:50 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) -- C:\WINDOWS\system32\drivers\avgrkx86.sys [26064] O58 - SDL:[MD5.660788EC46F10ECE80274D564FA8B4AA] - 12/11/2010 - 13:19:38 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) -- C:\WINDOWS\system32\drivers\avgtdix.sys [299984] O58 - SDL:[MD5.BF79E659C506674C0497CC9C61F1A165] - 24/07/2006 - 03:00:00 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdr4_xp.sys [2432] O58 - SDL:[MD5.2C41CD49D82D5FD85C72D57B6CA25471] - 24/07/2006 - 03:00:00 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdralw2k.sys [2560] O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 05/08/2004 - 12:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528] O58 - SDL:[MD5.E3726AD522D0BDAE090671048C991AB3] - 23/08/2001 - 17:04:44 ---A- . (.CMD Technology, Inc. - Pilote de bus PCI IDE CMD.) -- C:\WINDOWS\system32\drivers\cmdide.sys [6656] O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 05/08/2004 - 12:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776] O58 - SDL:[MD5.E550E7418984B65A78299D248F0A7F36] - 17/08/2001 - 21:52:16 ---A- . (.Mylex Corporation - Mylex Disk Array Controller Driver.) -- C:\WINDOWS\system32\drivers\dac2w2k.sys [179584] O58 - SDL:[MD5.A0500678A33802D8954153839301D539] - 23/07/2007 - 15:04:58 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLABMFSM.SYS [37360] O58 - SDL:[MD5.B8D2F68CAC54D46281399F9092644794] - 23/07/2007 - 15:04:52 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLABOIOM.SYS [32848] O58 - SDL:[MD5.0EE93AB799D1CB4EC90B36F3612FE907] - 23/07/2007 - 14:49:44 ---A- . (.Roxio - Shared Driver Component.) -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS.vir [14576] O58 - SDL:[MD5.86DFC5BAE3878CFABDE1430475BD52A7] - 23/07/2007 - 15:05:26 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLADResM.SYS [9136] O58 - SDL:[MD5.766A148235BE1C0039C974446E4C0EDC] - 23/07/2007 - 15:04:50 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLAIFS_M.SYS [108752] O58 - SDL:[MD5.38267CCA177354F1C64450A43A4F7627] - 23/07/2007 - 15:04:54 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLAOPIOM.SYS [27216] O58 - SDL:[MD5.FD363369FD313B46B5AEAB1A688B52E9] - 23/07/2007 - 15:04:52 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLAPoolM.SYS [16304] O58 - SDL:[MD5.336AE18F0912EF4FBE5518849E004D74] - 23/07/2007 - 14:49:44 ---A- . (.Roxio - Shared Driver Component.) -- C:\WINDOWS\system32\drivers\DLARTL_M.SYS [30064] O58 - SDL:[MD5.FD85F682C1CC2A7CA878C7A448E6D87E] - 23/07/2007 - 15:04:56 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLAUDFAM.SYS [93552] O58 - SDL:[MD5.AF389CE587B6BF5BBDCD6F6ABE5EABC0] - 23/07/2007 - 15:04:56 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLAUDF_M.SYS [98448] O58 - SDL:[MD5.5D3B71BB2BB0009D65D290E2EF374BD3] - 23/07/2007 - 14:55:44 ---A- . (.Sonic Solutions - Device Driver.) -- C:\WINDOWS\system32\drivers\DRVMCDB.SYS [99808] O58 - SDL:[MD5.C591BA9F96F40A1FD6494DAFDCD17185] - 23/07/2007 - 14:43:42 ---A- . (.Roxio - Device Driver Manager.) -- C:\WINDOWS\system32\drivers\DRVNDDM.SYS [52000] O58 - SDL:[MD5.1961F8B618E3C20DF54C146B294EFD2A] - 23/08/2001 - 17:12:50 ---A- . (.Intel Corporation - Pilote NDIS 5.) -- C:\WINDOWS\system32\drivers\e100b325.sys [117760] O58 - SDL:[MD5.34AAA3B298A852B3663E6E0D94D12945] - 26/06/2007 - 14:06:20 ---A- . (.Intel Corporation - Intel® PRO/1000 Adapter NDIS 5.2 deserialized driver.) -- C:\WINDOWS\system32\drivers\e1e5132.sys [254872] O58 - SDL:[MD5.997E8F5939F2D12CD9F2E6B395724C16] - 13/06/2007 - 19:25:14 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\WINDOWS\system32\drivers\iastor.sys [304920] O58 - SDL:[MD5.28423512370705AEDA6A652FEDB25468] - 13/06/2007 - 19:21:16 ---A- . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS\system32\drivers\igxpmp32.sys [5760096] O58 - SDL:[MD5.8E7726BA6E6C4CD81BAA6C8D8C0099F3] - 09/03/2007 - 17:04:42 ---A- . (.Intel Corporation - Intel® Network Adapter Diagnostic Driver.) -- C:\WINDOWS\system32\drivers\iqvw32.sys [31072] O58 - SDL:[MD5.B7C19EC8B0DD7EFA58AD41FFEB8B8CDA] - 22/11/2010 - 09:50:19 ---A- . (.Lavasoft AB - Boot Driver.) -- C:\WINDOWS\system32\drivers\Lbd.sys [64288] O58 - SDL:[MD5.3F4BB95E5A44F3BE34824E8E7CAF0737] - 17/08/2001 - 21:52:12 ---A- . (.American Megatrends Inc. - MegaRAID RAID Controller Driver for Windows Whistler 32.) -- C:\WINDOWS\system32\drivers\mraid35x.sys [17280] O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 05/08/2004 - 12:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032] O58 - SDL:[MD5.2B298519EDBFCF451D43E0F1E8F1006D] - 03/08/2004 - 22:29:56 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Driver, Version 56.73.) -- C:\WINDOWS\system32\drivers\nv4_mini.sys [1897408] O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 05/08/2004 - 12:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792] O58 - SDL:[MD5.49452BFCEC22F36A7A9B9C2181BC3042] - 26/07/2007 - 03:00:00 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\WINDOWS\system32\drivers\pxhelp20.sys [43872] O58 - SDL:[MD5.0A63FB54039EB5662433CABA3B26DBA7] - 17/08/2001 - 21:52:20 ---A- . (.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) -- C:\WINDOWS\system32\drivers\ql1080.sys [40320] O58 - SDL:[MD5.156ED0EF20C15114CA097A34A30D8A01] - 17/08/2001 - 21:52:20 ---A- . (.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) -- C:\WINDOWS\system32\drivers\ql12160.sys [45312] O58 - SDL:[MD5.907F0AEEA6BC451011611E732BD31FCF] - 17/08/2001 - 21:52:18 ---A- . (.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) -- C:\WINDOWS\system32\drivers\ql1280.sys [49024] O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 05/08/2004 - 12:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032] O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 05/08/2004 - 12:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032] O58 - SDL:[MD5.17BBBABB21F86B650B2626045A9D016C] - 13/06/2007 - 20:41:44 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys [4403712] O58 - SDL:[MD5.C1AE5D1F53285D79A0B73A62AF20734F] - 10/02/2011 - 10:47:23 ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\WINDOWS\system32\drivers\SBREDrv.sys [98392] O58 - SDL:[MD5.8D837882B0C6750EDA99B82A13E5C9E2] - 27/12/2006 - 15:47:30 ---A- . (.ZD Soft - ZD Soft Screen Capture Driver.) -- C:\WINDOWS\system32\drivers\scrcap.sys [9006] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/11/2007 - 11:25:54 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.6B33D0EBD30DB32E27D1D78FE946A754] - 13/04/2008 - 19:36:39 ---A- . (.Silicon Integrated Systems Corporation - SiS NT AGP Filter.) -- C:\WINDOWS\system32\drivers\sisagp.sys [40960] O58 - SDL:[MD5.83C0F71F86D3BDAF915685F3D568B20E] - 17/08/2001 - 22:07:44 ---A- . (.Adaptec, Inc. - Adaptec AIC-6x60 series SCSI miniport.) -- C:\WINDOWS\system32\drivers\sparrow.sys [19072] O58 - SDL:[MD5.E0EE1300F915817C00FCFD7FB4EF1300] - 30/04/2009 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [721904] O58 - SDL:[MD5.1FF3217614018630D0A6758630FC698C] - 17/08/2001 - 22:07:34 ---A- . (.Symbios Logic Inc. - Symbios Logic Inc. SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\symc810.sys [16256] O58 - SDL:[MD5.070E001D95CF725186EF8B20335F933C] - 17/08/2001 - 22:07:36 ---A- . (.LSI Logic - Symbios 8XX SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\symc8xx.sys [32640] O58 - SDL:[MD5.80AC1C4ABBE2DF3B738BF15517A51F2C] - 17/08/2001 - 22:07:40 ---A- . (.LSI Logic - Symbios Hi-Perf SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\sym_hi.sys [28384] O58 - SDL:[MD5.BF4FAB949A382A8E105F46EBB4937058] - 17/08/2001 - 22:07:42 ---A- . (.LSI Logic - Symbios Ultra3 SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\sym_u3.sys [30688] O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 05/08/2004 - 12:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376] O58 - SDL:[MD5.1B698A51CD528D8DA4FFAED66DFC51B9] - 17/08/2001 - 21:52:22 ---A- . (.Promise Technology, Inc. - Gestionnaire de miniport ULTRA66 de Promise.) -- C:\WINDOWS\system32\drivers\ultra.sys [36736] O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 05/08/2004 - 12:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112] O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097] O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4912] O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537] O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27916] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146] O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [34000] O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560] O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648] O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424] O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - 04/09/2008 - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe - Adobe LM Service(Adobe LM Service) .(.Adobe Systems - System Level Service Utility.) - LEGACY_ADOBE_LM_SERVICE O64 - Services: CurCS - 06/01/2011 - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe - AVGIDSAgent(AVGIDSAgent) .(.AVG Technologies CZ, s.r.o. - AVG IDS application.) - LEGACY_AVGIDSAGENT O64 - Services: CurCS - 19/08/2010 - C:\Windows\System32\DRIVERS\AVGIDSDriver.sys - AVGIDSDriver(AVGIDSDriver) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - LEGACY_AVGIDSDRIVER O64 - Services: CurCS - 13/09/2010 - C:\Windows\System32\DRIVERS\AVGIDSEH.sys - AVGIDSEH(AVGIDSEH) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Helper Dri.) - LEGACY_AVGIDSEH O64 - Services: CurCS - 19/08/2010 - C:\Windows\System32\DRIVERS\AVGIDSFilter.sys - AVGIDSFilter(AVGIDSFilter) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Filter Dri.) - LEGACY_AVGIDSFILTER O64 - Services: CurCS - 19/08/2010 - C:\Windows\System32\DRIVERS\AVGIDSShim.sys - AVGIDSShim(AVGIDSShim) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Loader Dri.) - LEGACY_AVGIDSSHIM O64 - Services: CurCS - 08/12/2010 - C:\Windows\System32\DRIVERS\avgldx86.sys - AVG AVI Loader Driver(Avgldx86) .(.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - LEGACY_AVGLDX86 O64 - Services: CurCS - 07/09/2010 - C:\Windows\System32\DRIVERS\avgmfx86.sys - AVG Mini-Filter Resident Anti-Virus Shield(Avgmfx86) .(.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - LEGACY_AVGMFX86 O64 - Services: CurCS - 07/09/2010 - C:\Windows\System32\DRIVERS\avgrkx86.sys - AVG Anti-Rootkit Driver(Avgrkx86) .(.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) - LEGACY_AVGRKX86 O64 - Services: CurCS - 12/11/2010 - C:\Windows\System32\DRIVERS\avgtdix.sys - AVG8 Network Redirector(AvgTdiX) .(.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - LEGACY_AVGTDIX O64 - Services: CurCS - 22/10/2010 - C:\Program Files\AVG\AVG10\avgwdsvc.exe - AVG WatchDog(avgwd) .(.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - LEGACY_AVGWD O64 - Services: CurCS - 18/03/2011 - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe - AVG Security Toolbar Service(AVG Security Toolbar Service) .(.Pas de propriétaire - AVG Security Toolbar.) - LEGACY_AVG_SECURITY_TOOLBAR_SERVICE O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\BEEP.sys - Beep (Beep) .(...) - LEGACY_BEEP O64 - Services: CurCS - 28/02/2006 - C:\Program Files\Bonjour\mDNSResponder.exe - ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##(Bonjour Service) .(.Apple Computer, Inc. - Bonjour Service.) - LEGACY_BONJOUR_SERVICE O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\CDFS.sys - cdfs (cdfs) .(...) - LEGACY_CDFS O64 - Services: CurCS - (.not file.) - (.not file.) - Application système COM+ (COMSysApp) .(...) - LEGACY_COMSYSAPP O64 - Services: CurCS - (.not file.) - (.not file.) - Lanceur de processus serveur DCOM (DcomLaunch) .(...) - LEGACY_DCOMLAUNCH O64 - Services: CurCS - 21/10/2006 - C:\WINDOWS\system32\DKabcoms.exe - dkab_device(dkab_device) .(.Pas de propriétaire - Printer Communication System.) - LEGACY_DKAB_DEVICE O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLABMFSM.sys - DLABMFSM(DLABMFSM) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLABMFSM O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLABOIOM.sys - DLABOIOM(DLABOIOM) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLABOIOM O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLADResM.sys - DLADResM(DLADResM) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLADRESM O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLAIFS_M.sys - DLAIFS_M(DLAIFS_M) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAIFS_M O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLAOPIOM.sys - DLAOPIOM(DLAOPIOM) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAOPIOM O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLAPoolM.sys - DLAPoolM(DLAPoolM) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAPOOLM O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLARTL_M.sys - DLARTL_M(DLARTL_M) .(.Roxio - Shared Driver Component.) - LEGACY_DLARTL_M O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLAUDFAM.sys - DLAUDFAM(DLAUDFAM) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAUDFAM O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLAUDF_M.sys - DLAUDF_M(DLAUDF_M) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAUDF_M O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\System32\dmadmin.exe - Service d'administration du Gestionnaire de disque logique(dmadmin) .(.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - LEGACY_DMADMIN O64 - Services: CurCS - 14/04/2008 - C:\Windows\System32\drivers\dmboot.sys - dmboot(dmboot) .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT O64 - Services: CurCS - 05/08/2004 - C:\Windows\System32\drivers\dmload.sys - dmload(dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DRVNDDM.sys - DRVNDDM(DRVNDDM) .(.Roxio - Device Driver Manager.) - LEGACY_DRVNDDM O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FASTFAT.sys - fastfat (fastfat) .(...) - LEGACY_FASTFAT O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FIPS.sys - Fips (Fips) .(...) - LEGACY_FIPS O64 - Services: CurCS - 19/09/2008 - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe - FLEXnet Licensing Service(FLEXnet Licensing Service) .(.Macrovision Europe Ltd. - Activation Licensing Service.) - LEGA O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\I2OMGMT.sys - i2omgmt (i2omgmt) .(...) - LEGACY_I2OMGMT O64 - Services: CurCS - 13/06/2007 - C:\Windows\System32\drivers\iaStor.sys - Intel RAID Controller(iaStor) .(.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) - LEGACY_IASTOR O64 - Services: CurCS - 22/10/2004 - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe - InstallDriver Table Manager(IDriverT) .(.Macrovision Corporation - IDriverT Module.) - LEGACY_IDRIVERT O64 - Services: CurCS - 29/01/2010 - C:\Program Files\UltraISO\drivers\ISODrive.sys - ISO DVD/CD-ROM Device Driver(ISODrive) .(.EZB Systems, Inc. - ISO DVD/CD-ROM Device Driver.) - LEGACY_ISODRIVE O64 - Services: CurCS - 12/11/2010 - C:\Program Files\Java\jre6\bin\jqs.exe - Java Quick Starter(JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\KSECDD.sys - ksecdd (ksecdd) .(...) - LEGACY_KSECDD O64 - Services: CurCS - 22/11/2010 - C:\Windows\System32\DRIVERS\Lbd.sys - Lbd(Lbd) .(.Lavasoft AB - Boot Driver.) - LEGACY_LBD O64 - Services: CurCS - (.not file.) - McAfee Services (mcmscsvc) .(...) - LEGACY_MCMSCSVC O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfehidk) .(...) - LEGACY_MFEHIDK O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MNMDD.sys - mnmdd (mnmdd) .(...) - LEGACY_MNMDD O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MOUNTMGR.sys - (.not file.) - mountmgr (mountmgr) .(...) - LEGACY_MOUNTMGR O64 - Services: CurCS - (.not file.) - MPFP (MPFP) .(...) - LEGACY_MPFP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MUP.sys - (.not file.) - Mup (Mup) .(...) - LEGACY_MUP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDIS.sys - (.not file.) - Pilote système NDIS (NDIS) .(...) - LEGACY_NDIS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NTFS.sys - ntfs (ntfs) .(...) - LEGACY_NTFS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARTMGR.sys - (.not file.) - PartMgr (PartMgr) .(...) - LEGACY_PARTMGR O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARVDM.sys - ParVdm (ParVdm) .(...) - LEGACY_PARVDM O64 - Services: CurCS - (.not file.) - RDPNP (RDPNP) .(...) - LEGACY_RDPNP O64 - Services: CurCS - 05/11/2006 - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe - RoxMediaDB9(RoxMediaDB9) .(.Sonic Solutions - RoxMediaDB9 Module.) - LEGACY_ROXMEDIADB9 O64 - Services: CurCS - 05/11/2006 - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe - Roxio Hard Drive Watcher 9(RoxWatch9) .(.Sonic Solutions - RoxSniffer9 Module.) - LEGACY_ROXWATCH9 O64 - Services: CurCS - (.not file.) - (.not file.) - Appel de procédure distante (RPC) (RpcSs) .(...) - LEGACY_RPCSS O64 - Services: CurCS - C:\Windows\System32\Drivers\sptd.sys - sptd (sptd) .(...) - LEGACY_SPTD O64 - Services: CurCS - (.not file.) - (.not file.) - Services Terminal Server (TermService) .(...) - LEGACY_TERMSERVICE O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\UDFS.sys - Udfs (Udfs) .(...) - LEGACY_UDFS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VGA.sys - vga (vga) .(...) - LEGACY_VGA O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VOLSNAP.sys - VolSnap (VolSnap) .(...) - LEGACY_VOLSNAP O64 - Services: CurCS - 10/12/2008 - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe - wampapache(wampapache) .(.Apache Software Foundation - Apache HTTP Server.) - LEGACY_WAMPAPACHE O64 - Services: CurCS - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe - wampmysqld (wampmysqld) .(...) - LEGACY_WAMPMYSQLD ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox 4.0 Beta 11\firefox.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox 4.0 Beta 11\firefox.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox 4.0 Beta 11\firefox.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] {5F18661F-0831-404A-998D-AE94EA7560CD} - (Google) - Google O69 - SBI: SearchScopes [HKCU] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} [DefaultScope] - (AVG Secure Search) - AVG search | Home page O69 - SBI: SearchScopes [HKUS\.DEFAULT] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (Yahoo! Search) - Yahoo! Search - Web Search O69 - SBI: SearchScopes [HKUS\S-1-5-18] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (Yahoo! Search) - Yahoo! Search - Web Search ---\\ Scan Additionnel (O88) Database Version : 7434 - (14/05/2011) Clés trouvées (Keys found) : 2 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 0 Fichiers trouvés (Files found) : 0 [HKCU\Software\pdfforge.org] =>PUP.Dealio [HKLM\Software\pdfforge.org] =>PUP.Dealio ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 04/09/2008 72704 | (Adobe LM Service) . (.Adobe Systems.) - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe SS - | Demand 18/03/2011 947528 | (AVG Security Toolbar Service) . (...) - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe SR - | Auto 06/01/2011 6128720 | (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe SR - | Auto 22/10/2010 265400 | (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG10\avgwdsvc.exe SR - | Auto 28/02/2006 229376 | ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) . (.Apple Computer, Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SS - | Demand 21/10/2006 508824 | (dkab_device) . (...) - C:\WINDOWS\system32\DKabcoms.exe SS - | Demand 14/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe SR - | Demand 19/09/2008 654848 | (FLEXnet Licensing Service) . (.Macrovision Europe Ltd..) - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe SS - | Demand 22/10/2004 73728 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe SR - | Auto 12/11/2010 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe SS - | Demand 05/11/2006 880640 | (RoxMediaDB9) . (.Sonic Solutions.) - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe SS - | Auto 05/11/2006 159744 | (RoxWatch9) . (.Sonic Solutions.) - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe SS - | Demand 11/07/2007 69632 | (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe SS - | Demand 10/12/2008 24636 | (wampapache) . (.Apache Software Foundation.) - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe SS - | Demand 17/06/2009 6582912 | (wampmysqld) . (...) - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by Vivien at 17/05/2011 08:54:38 device: opened successfully user: MBR read successfully Disk trace: called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys spik.sys >>UNKNOWN [0x8A634938]<< spik.sys 1 ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Harddisk0\DR0[0x8A5ABAB8] 3 CLASSPNP[0xBA0E8FD7] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\00000069[0x8A5F32C0] 5 ACPI[0xB9E65620] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Ide\IdeDeviceP0T0L0-3[0x8A5AD940] kernel: MBR read successfully user & kernel MBR OK ---\\ Liste des émulateurs de CD/DVD (Hook du MBR) O58 - SDL:[MD5.E0EE1300F915817C00FCFD7FB4EF1300] - 30/04/2009 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [721904] End of the scan (1130 lines in 02mn 49s)(0)
- le 17 mai 2011
- 2 réponses

Connexion

arcisse

Compteur de contenus

Inscription

Dernière visite

Type de contenu

Profils

Forums

Blogs

Tout ce qui a été posté par arcisse

Problème de DLL

Problème de DLL

Zebulon

Outils en ligne

Naviguer