jielleer

Voici le résultat de ZHPDiag : Rapport de ZHPDiag v1.27.226 par Nicolas Coolman, Update du 06/06/2011 Run by ROCHE Jean-Louis at 23/06/2011 21:48:45 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v8.0.6001.18702 GCIE: Google Chrome v12.0.742.100 (Defaut) ---\\ System Information Windows XP Professional Service Pack 3 (Build 2600) Processor: x86 Family 6 Model 10 Stepping 0, AuthenticAMD Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 1023 MB (42% free) System Restore: Activé (Enable) System drive C: has 52 GB (35%) free of 149 GB ---\\ Logged in mode Computer Name: XPSP2-9BBE198A4 User Name: ROCHE Jean-Louis All Users Names: SUPPORT_388945a0, ROCHE Jean-Louis, LogMeInRemoteUser, HelpAssistant, ASPNET, Administrateur, Admin, Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Documents and Settings\ROCHE Jean-Louis\Application Data %LocalAppData%=C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data %StartMenu%=C:\Documents and Settings\ROCHE Jean-Louis\Menu Démarrer ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 52 Go of 149 Go) D:\ CD-ROM drive (Not Inserted) E:\ CD-ROM drive (Not Inserted) F:\ CD-ROM drive (Not Inserted) G:\ Floppy drive, Flash card reader, USB Key (Not Inserted) H:\ Floppy drive, Flash card reader, USB Key (Not Inserted) I:\ Floppy drive, Flash card reader, USB Key (Not Inserted) J:\ Floppy drive, Flash card reader, USB Key (Not Inserted) M:\ Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK ---\\ Recherche particulière de fichiers génériques [MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.13/04/2008 18:34:04.) -- C:\WINDOWS\Explorer.exe [1037824] [MD5.42F5E14E33D79C236680468B1E4999F4] - (.Microsoft Corporation - Internet Extensions for Win32.) (.25/04/2011 17:06:11.) -- C:\WINDOWS\system32\wininet.dll [916480] [MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.13/04/2008 18:34:30.) -- C:\WINDOWS\system32\Winlogon.exe [512000] [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 10:40:32.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512] [MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 11:15:54.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574976] ---\\ Processus lancés [MD5.C2576358EB08AE7889D2CBB8389FFA6A] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [405504] [MD5.ACB544D7254F366DFB48F380BC36CD25] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384] [MD5.177FF6608B48638D4066726F3A3F8444] - (...) -- C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe [102400] [MD5.3A4982DF893F198A2DFBCCD4CE10F93A] - (.Apple, Inc. - Apple Mobile Device Service.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [110592] [MD5.5E06A9D23727DAF96FAA796F1135FDCD] - (.Sun Microsystems, Inc. - Java Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376] [MD5.29FAB5363138F6E322F4CD780ED9D337] - (...) -- C:\WINDOWS\runservice.exe [2560] [MD5.16B08BB43AED8B39D41D6796A607544F] - (.LogMeIn, Inc. - LMIGuardianSvc.) -- C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe [374152] [MD5.11F714F85530A2BD134074DC30E99FCA] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [322120] [MD5.4D05898896EC49CF663DDA61041AB096] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024] [MD5.0C28BCC9A8A9E8CAC62A348D93DE8A46] - (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\slserv.exe [73796] [MD5.CA90D2C55EB3BB90687677BEA3DB0B59] - (.Ulead Systems, Inc. - ULCDRSvr.) -- C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe [49152] [MD5.668056D5C3C11AB7D266819A96B964E8] - (.Microsoft Corporation - WMDM PMSP Service.) -- C:\WINDOWS\system32\MsPMSPSv.exe [53248] [MD5.97BAD81620E9F115F86D79952C625916] - (.Apple Inc. - iPodService Module.) -- C:\Program Files\iPod\bin\iPodService.exe [503608] [MD5.4C0A4FEFD62519552C0E5171F418C4BC] - (.Nokia. - ServiceLayer Module.) -- C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe [174080] [MD5.E8C30EF9BBC6DDB71F0F77FA3A96515F] - (.GEMTEKS - WLService.) -- C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe [41025] [MD5.976FCD559F02B994A2AFFD64F45E7947] - (.Cisco Linksys Corporation - Wireless Network Monitor.) -- C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WUSB54GS.exe [1508864] [MD5.EE684C735B6D1D07498A1EC2EA1AE483] - (...) -- C:\Program Files\Wireless 802.11g Monitor\WLService.exe [49152] [MD5.69163C3CA09CA989881391CDCCABE370] - (.Pas de propriétaire - Wireless Monitor Application.) -- C:\Program Files\Wireless 802.11g Monitor\WLanCfgG.exe [794624] [MD5.7BD9F0839E7F55DD66D3F9CE9C61D810] - (.Apple Inc. - iTunesHelper Module.) -- C:\Program Files\iTunes\iTunesHelper.exe [267064] [MD5.6C1B31F5C16E03153F0037AC6C451FFD] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe [2838912] [MD5.2E5212A0BFB98FE0167C92C76C87AFE3] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [249064] [MD5.234051C0D242A6F4A79AE5212C1323D4] - (.LogMeIn, Inc. - LogMeIn Desktop Application.) -- C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [63048] [MD5.E98BEC78145E1F148DA0759F2D68DF4C] - (.Sun Microsystems, Inc. - Java Update Checker.) -- C:\Program Files\Fichiers communs\Java\Java Update\jucheck.exe [505064] [MD5.A952B8A6D3E25A3EC6E7060372488136] - (.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe [263624] [MD5.A60FA0DD73690A20CB0BDB0CDC7D5781] - (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe [357832] [MD5.BFBF37F9F55C35FF853D04F9090CC854] - (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Google\Chrome\Application\chrome.exe [1011768] [MD5.0D78A1C6666DD0C33E60430ABD9A4128] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [657920] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Picasa\Picasa3\npPicasa3.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_24 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Microsoft Corp. - Office Live Update v1.3.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8064.0206] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.11.2027] - (.RealNetworks, Inc. - RealPlayer LiveConnect-Enabled Plug-In.) -- C:\Program Files\K-Lite Codec Pack\real\browser\plugins\nppl3260.dll P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.11.2105] - (.RealNetworks, Inc. - RealPlayer LiveConnect-Enabled Plug-In.) -- C:\Program Files\K-Lite Codec Pack\real\browser\plugins\nppl3260.dll P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.1040] - (.RealNetworks, Inc. - 6.0.12.1040.) -- C:\Program Files\K-Lite Codec Pack\real\browser\plugins\nprpjplug.dll P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.1212] - (.RealNetworks, Inc. - 6.0.12.1040.) -- C:\Program Files\K-Lite Codec Pack\real\browser\plugins\nprpjplug.dll P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.5".) -- C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Google\Update\1.3.21.57\npGoogleUpdate3.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Google\Update\1.3.21.57\npGoogleUpdate3.dll ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) G1 - GCS: Preference [user Data\Default] http://mystart.incredimail.com G0 - GCSP: Preference [user Data\Default][HomePage] http://mystart.incredimail.com ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Abonnement Adsl Haut débit avec Alice France. Page d'accueil du portail. R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search Microsoft.com R0 - HKUS\S-1-5-21-1801674531-1078145449-725345543-1006-1801674531-1078145449-725345543-1003\Software\Microsoft\Internet Explorer\Main,Start Page = Abonnement Adsl Haut débit avec Alice France. Page d'accueil du portail. R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Google R1 - HKUS\S-1-5-21-1801674531-1078145449-725345543-1006-1801674531-1078145449-725345543-1003\Software\Microsoft\Internet Explorer\Main,Search Page = Google R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.19072 (longhorn_ie8_gdr.110420-1700)) -- C:\WINDOWS\system32\ieframe.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0 ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {20177355-706D-416B-A23B-49443A7118F3} Clé orpheline O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\ConduitEngine\prxConduitEngine.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: (no name) - {C1764798-C191-44C3-962F-A7D5770C78D4} Clé orpheline O2 - BHO: (no name) - {C56CB6B0-0D96-11D6-8C65-B2868B609932} Clé orpheline O2 - BHO: IncrediMail MediaBar 2 - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\IncrediMail_MediaBar_2\prxtbInc2.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} . (.Pas de propriétaire - Pas de description.) -- (.not file.) O3 - Toolbar: IncrediMail MediaBar 2 Toolbar - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\IncrediMail_MediaBar_2\prxtbInc2.dll O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\ConduitEngine\prxConduitEngine.dll ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [PinnacleDriverCheck] . (...) -- C:\WINDOWS\system32\PSDrvCheck.exe O4 - HKLM\..\Run: [synchronization Manager] . (.Microsoft Corporation - Gestionnaire de synchronisation Microsoft.) -- C:\WINDOWS\system32\mobsync.exe O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\K-Lite Codec Pack\QuickTime\qttask.exe O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper Module.) -- C:\Program Files\iTunes\iTunesHelper.exe O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe O4 - HKLM\..\Run: [LogMeIn GUI] . (.LogMeIn, Inc. - LogMeIn Desktop Application.) -- C:\Program Files\LogMeIn\x86\LogMeInSystray.exe O4 - HKCU\..\Run: [LogitechSoftwareUpdate] . (.Logitech Inc. - Logitech Software Update.) -- C:\Program Files\Logitech\Video\ManifestEngine.exe O4 - HKCU\..\Run: [LaunchList] . (.Pinnacle Systems - Launchlist2 application.) -- C:\Program Files\Pinnacle\Studio 11\LaunchList2.exe O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Google\Update\GoogleUpdate.exe O4 - HKUS\S-1-5-21-1801674531-1078145449-725345543-1006-1801674531-1078145449-725345543-1003\..\Run: [LogitechSoftwareUpdate] . (.Logitech Inc. - Logitech Software Update.) -- C:\Program Files\Logitech\Video\ManifestEngine.exe O4 - HKUS\S-1-5-21-1801674531-1078145449-725345543-1006-1801674531-1078145449-725345543-1003\..\Run: [LaunchList] . (.Pinnacle Systems - Launchlist2 application.) -- C:\Program Files\Pinnacle\Studio 11\LaunchList2.exe O4 - HKUS\S-1-5-21-1801674531-1078145449-725345543-1006-1801674531-1078145449-725345543-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-1801674531-1078145449-725345543-1006-1801674531-1078145449-725345543-1003\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Goog O4 - HKUS\S-1-5-18\..\RunOnce: [Config] . (...) -- C:\WINDOWS\system32\run.cmd O4 - HKUS\S-1-5-18\..\RunOnce: [nlsf] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] . (.Microsoft Corporation - DLL d'action personnalisée d'installation.) -- C:\WINDOWS\system32\tscupgrd.exe O4 - HKUS\S-1-5-18\..\RunOnce: [Config] . (...) -- C:\WINDOWS\system32\run.cmd O4 - HKUS\S-1-5-18\..\RunOnce: [nlsf] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] . (.Microsoft Corporation - DLL d'action personnalisée d'installation.) -- C:\WINDOWS\system32\tscupgrd.exe O4 - HKUS\S-1-5-20\..\RunOnce: [Config] . (...) -- C:\WINDOWS\system32\run.cmd O4 - HKUS\S-1-5-20\..\RunOnce: [nlsf] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe O4 - HKUS\S-1-5-20\..\RunOnce: [tscuninstall] . (.Microsoft Corporation - DLL d'action personnalisée d'installation.) -- C:\WINDOWS\system32\tscupgrd.exe ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Help Center.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe Help Center\ahc.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop Elements 5.0.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Photoshop Elements 5.0\Photoshop Elements 5.0.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Premiere Pro.lnk . (.Adobe Systems Inc..) -- C:\Program Files\Adobe\Premiere Pro\Adobe Premiere Pro.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 9.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A94000000001}\SC_Reader.ico O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}\AppleSoftwareUpdateIco.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\IncrediMail.lnk . (.IncrediMail, Ltd..) -- C:\Program Files\IncrediMail\bin\IncMail.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\LogMeIn.lnk . (.LogMeIn, Inc..) -- C:\Program Files\LogMeIn\x86\LogMeInToolkit.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\MSN Pictures Displayer.lnk . (...) -- C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Defender.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Defender\MSASCui.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe O4 - Global Startup: C:\Documents And Settings\ROCHE Jean-Louis\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe O4 - Global Startup: C:\Documents And Settings\ROCHE Jean-Louis\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Documents And Settings\ROCHE Jean-Louis\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: &Envoyer à OneNote - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO O9 - Extra button: &Envoyer à OneNote - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} . (...) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (...) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {2C7B74DE-3A9E-4CD3-A8DB-47411E9680A8} (VirginMega.DML.Interface) - http://alice.vm-wl.com/Telechargement/DownManLight.cab ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{535EA5A0-6CF5-4FCB-B9BB-40C4E44B25D0}: NameServer = 208.67.220.220,208.67.222.222 O17 - HKLM\System\CCS\Services\Tcpip\..\{765E01BE-D78A-4D71-AE72-33719D55EA30}: NameServer = 213.36.80.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{9A129CEF-90C8-40D6-B459-E771FBA5F4C6}: NameServer = 208.67.220.220,208.67.222.222 O17 - HKLM\System\CS1\Services\Tcpip\..\{535EA5A0-6CF5-4FCB-B9BB-40C4E44B25D0}: NameServer = 208.67.220.220,208.67.222.222 O17 - HKLM\System\CS1\Services\Tcpip\..\{765E01BE-D78A-4D71-AE72-33719D55EA30}: NameServer = 213.36.80.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{9A129CEF-90C8-40D6-B459-E771FBA5F4C6}: NameServer = 208.67.220.220,208.67.222.222 O17 - HKLM\System\CS3\Services\Tcpip\..\{535EA5A0-6CF5-4FCB-B9BB-40C4E44B25D0}: NameServer = 208.67.220.220,208.67.222.222 O17 - HKLM\System\CS3\Services\Tcpip\..\{765E01BE-D78A-4D71-AE72-33719D55EA30}: NameServer = 213.36.80.1 O17 - HKLM\System\CS3\Services\Tcpip\..\{9A129CEF-90C8-40D6-B459-E771FBA5F4C6}: NameServer = 208.67.220.220,208.67.222.222 O17 - HKLM\System\CCS\Services\Tcpip\..\{94BA75F6-3F09-4DB4-8AEB-A06192808972}: DhcpNameServer = 208.67.220.220,208.67.222.222 O17 - HKLM\System\CCS\Services\Tcpip\..\{9A129CEF-90C8-40D6-B459-E771FBA5F4C6}: DhcpNameServer = 208.67.220.220,208.67.222.222 O17 - HKLM\System\CCS\Services\Tcpip\..\{F8ED4B6A-EBCD-4067-9912-C3997079412D}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{94BA75F6-3F09-4DB4-8AEB-A06192808972}: DhcpNameServer = 208.67.220.220,208.67.222.222 O17 - HKLM\System\CS1\Services\Tcpip\..\{9A129CEF-90C8-40D6-B459-E771FBA5F4C6}: DhcpNameServer = 208.67.220.220,208.67.222.222 O17 - HKLM\System\CS1\Services\Tcpip\..\{F8ED4B6A-EBCD-4067-9912-C3997079412D}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS3\Services\Tcpip\..\{94BA75F6-3F09-4DB4-8AEB-A06192808972}: DhcpNameServer = 208.67.220.220,208.67.222.222 O17 - HKLM\System\CS3\Services\Tcpip\..\{9A129CEF-90C8-40D6-B459-E771FBA5F4C6}: DhcpNameServer = 208.67.220.220,208.67.222.222 O17 - HKLM\System\CS3\Services\Tcpip\..\{F8ED4B6A-EBCD-4067-9912-C3997079412D}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ---\\ Protocole additionnel et piratage de protocole (O18) O18 - Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} . (.Logitech Inc. - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\Windows\System32\Ati2evxx.dll O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll O20 - Winlogon Notify: fcccayXO . (.Pas de propriétaire - Pas de description.) -- fcccayXO.dll O20 - Winlogon Notify: LMIinit . (.LogMeIn, Inc. - LogMeIn Remote Control Helper.) -- C:\Windows\System32\LMIinit.dll O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\Windows\System32\WgaLogon.dll O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: (AdobeActiveFileMonitor5.0) . (...) - C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe O23 - Service: (Apple Mobile Device) . (.Apple, Inc. - Apple Mobile Device Service.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: (ATI Smart) . (.Pas de propriétaire - ATI Smart.) - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: (avast! Mail Scanner) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: (avast! Web Scanner) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: (Boonty Games) . (.BOONTY - System Level Service Utility.) - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe O23 - Service: (dmadmin) . (.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - C:\WINDOWS\System32\dmadmin.exe O23 - Service: (getPlus® Helper) . (.NOS Microsystems Ltd. - getPlus® Helper.) - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: (iPod Service) . (.Apple Inc. - iPodService Module.) - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: (LicCtrlService) . (...) - C:\WINDOWS\runservice.exe O23 - Service: (LMIGuardianSvc) . (.LogMeIn, Inc. - LMIGuardianSvc.) - C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe O23 - Service: (LMIMaint) . (.LogMeIn, Inc. - LogMeIn Maintenance Service.) - C:\Program Files\LogMeIn\x86\RaMaint.exe O23 - Service: (LogMeIn) . (.LogMeIn, Inc. - LogMeIn.) - C:\Program Files\LogMeIn\x86\LogMeIn.exe O23 - Service: (Pml Driver HPZ12) . (.HP - PML Driver.) - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: (R54G Wireless Service) . (...) - C:\Program Files\Wireless 802.11g Monitor\WLService.exe O23 - Service: (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: (ServiceLayer) . (.Nokia. - ServiceLayer Module.) - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe O23 - Service: (UleadBurningHelper) . (.Ulead Systems, Inc. - ULCDRSvr.) - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: (WUSB54GSSVC) . (.GEMTEKS - WLService.) - C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - C:\Program Files\Microsoft Office\OFFICE11\WINWORD.exe (.not file.) ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\FRU Task #Hewlett-Packard#hp psc 2170 series#1211961510.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1801674531-1078145449-725345543-1006Core.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1801674531-1078145449-725345543-1006UA.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Maintenance en 1 clic.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\MP Scheduled Scan.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\OGALogon.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\User_Feed_Synchronization-{1B3B498E-9B35-4D37-8238-F351BBDFB70D}.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\User_Feed_Synchronization-{811DF24C-A4F9-44D7-A78C-ADEEF84F7254}.job [MD5.4D6019BE71C720E2D29F2CE758F7A53B] [APT] [FRU Task #Hewlett-Packard#hp psc 2170 series#1211961510] (.Pas de propriétaire.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-1801674531-1078145449-725345543-1006Core] (.Google Inc..) -- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-1801674531-1078145449-725345543-1006UA] (.Google Inc..) -- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [MD5.00000000000000000000000000000000] [APT] [Maintenance en 1 clic] (.Pas de propriétaire.) -- C:\Program Files\TuneUp Utilities 2006\SystemOptimizer.exe (.not file.) [MD5.EC9B420801D3D7F82388267D13D0F89B] [APT] [OGALogon] (.Pas de propriétaire.) -- C:\WINDOWS\system32\OGAexeC.exe ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys O41 - Driver: (AmdK7) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\WINDOWS\System32\DRIVERS\amdk7.sys O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\System32\DRIVERS\cdrom.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\WINDOWS\System32\DRIVERS\i8042prt.sys O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\System32\DRIVERS\imapi.sys O41 - Driver: (InCDPass) . (. - .) - C:\WINDOWS\System32\drivers\InCDPass.sys (.not file.) O41 - Driver: (InCDRm) . (. - .) - C:\WINDOWS\System32\drivers\InCDRm.sys (.not file.) O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\System32\DRIVERS\ipsec.sys O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\WINDOWS\System32\DRIVERS\kbdclass.sys O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\WINDOWS\System32\DRIVERS\mouclass.sys O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\System32\DRIVERS\mrxsmb.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\System32\DRIVERS\netbios.sys O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\System32\DRIVERS\netbt.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\System32\DRIVERS\rasacd.sys O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\WINDOWS\System32\DRIVERS\redbook.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\WINDOWS\System32\DRIVERS\serial.sys O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\System32\DRIVERS\tcpip.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\System32\DRIVERS\termdd.sys O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys ---\\ Logiciels installés (O42) O42 - Logiciel: 7-Zip 4.65 - (.Pas de propriétaire.) [HKLM] -- 7-Zip O42 - Logiciel: ATI - Software Uninstall Utility - (.Pas de propriétaire.) [HKLM] -- All ATI Software O42 - Logiciel: ATI Catalyst Control Center - (.Pas de propriétaire.) [HKLM] -- {6877BB34-2631-46DA-AD62-3DE601E8D7BE} O42 - Logiciel: ATI Control Panel - (.Pas de propriétaire.) [HKLM] -- {0BEDBD4E-2D34-47B5-9973-57E62B29307C} O42 - Logiciel: ATI Display Driver - (.Pas de propriétaire.) [HKLM] -- ATI Display Driver O42 - Logiciel: AVerMedia C038 USB Capture Card 1.0.0.23 - (.AVerMedia TECHNOLOGIES, Inc..) [HKLM] -- AVerMedia C038 USB Capture Card O42 - Logiciel: Adobe Acrobat 4.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Acrobat 4.0 O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Help Center 2.1 - (.Adobe Systems.) [HKLM] -- {25569723-DC5A-4467-A639-79535BF01B71} O42 - Logiciel: Adobe Photoshop Elements 5.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Photoshop Elements 5 O42 - Logiciel: Adobe Premiere Pro - (.Adobe Systems, Inc..) [HKLM] -- {084709F7-38C5-4609-B55F-2417939315EB} O42 - Logiciel: Adobe Reader 9.4.5 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001} O42 - Logiciel: Alice Auto-diagnostic - (.Pas de propriétaire.) [HKLM] -- AliceSAV O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {3EBD3749-304E-4A4C-9575-C00E5F015217} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {B74F042E-E1B9-4A5B-8D46-387BB172F0A4} O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7} O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: Choice Guard - (.Microsoft Corporation.) [HKLM] -- {8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E} O42 - Logiciel: Conduit Engine - (.Conduit Ltd..) [HKLM] -- conduitEngine O42 - Logiciel: DVD Suite - (.Pas de propriétaire.) [HKLM] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79} O42 - Logiciel: Easy CD-DA Extractor 5.0 - (.Pas de propriétaire.) [HKLM] -- Easy CD-DA Extractor 5.0 O42 - Logiciel: Extension HighMAT pour l'Assistant Graver un CD de Microsoft Windows XP - (.Microsoft Corporation.) [HKLM] -- {FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F} O42 - Logiciel: First Step Guide - (.Pas de propriétaire.) [HKLM] -- {C797EAF2-707A-4239-BDF3-F2672314A734} O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {44E54A81-9D91-4AA1-9417-80AFF134F5FF} O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595 O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484 O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399 O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5 O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5 O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM] -- {5E97F3BD-CDDC-4188-9D98-532E14FABB5D} O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM] -- IncrediMail O42 - Logiciel: IncrediMail MediaBar 2 Toolbar - (.IncrediMail MediaBar 2.) [HKLM] -- IncrediMail_MediaBar_2 Toolbar O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {7370DF47-B4F9-4279-BFC3-3F09919F720D} O42 - Logiciel: InstantCopy - (.Pinnacle Systems Inc.) [HKLM] -- {3ED585A4-C0F7-4125-8EC7-3056F9936A44} O42 - Logiciel: J2SE Runtime Environment 5.0 Update 3 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0150030} O42 - Logiciel: J2SE Runtime Environment 5.0 Update 6 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0150060} O42 - Logiciel: Java 6 Update 24 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216017FF} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3} O42 - Logiciel: K-Lite Mega Codec Pack 1.17 - (.Pas de propriétaire.) [HKLM] -- KLiteCodecPack_is1 O42 - Logiciel: Kit de Connexion Alice ADSL - (.Pas de propriétaire.) [HKLM] -- {3A0221AD-D30B-4320-8F9B-1D0F0E6C6843} O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player O42 - Logiciel: Linksys Wireless-G USB Network Adapter - (.Pas de propriétaire.) [HKLM] -- {C7EEF2B9-8C16-4A04-B98D-B1A952A47E55} O42 - Logiciel: LogMeIn - (.LogMeIn, Inc..) [HKLM] -- {65179FD8-04C0-40A7-87FC-007F2CD5BF1E} O42 - Logiciel: Logitech Desktop Messenger - (.Logitech, Inc..) [HKLM] -- {900B1197-53F5-4F46-A882-2CFFFE2EEDCB} O42 - Logiciel: Logitech Print Service - (.Pas de propriétaire.) [HKLM] -- Logitech Print Service O42 - Logiciel: Logitech QuickCam - (.Logitech, Inc..) [HKLM] -- {0496D9E9-224B-4AFA-8F37-23B98D52F1EB} O42 - Logiciel: Logitech SetPoint - (.Pas de propriétaire.) [HKLM] -- {2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3} O42 - Logiciel: MSN Pictures Displayer 4.5 - (.Sébastien BEGOUIN.) [HKLM] -- MSN Pictures Displayer O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: MSXML 4.0 SP2 (KB927978) - (.Microsoft Corporation.) [HKLM] -- {37477865-A3F1-4772-AD43-AAFC6BCFF99F} O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Macromedia Flash 5 - (.Macromedia.) [HKLM] -- {4C93C363-414E-11D4-9756-00C04F8EEB39} O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Micro Application - Jeu de Tarot 345 - (.Pas de propriétaire.) [HKLM] -- Micro Application - Jeu de Tarot 345 O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033) O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700} O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447 O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906 O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.) [HKLM] -- {72AD53CC-CCC0-3757-8480-9EE176866A7C} O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.) [HKLM] -- {0BD83598-C2EF-3343-847B-7D2E84599128} O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31} O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1 O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E} O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- {0A0CADCF-78DA-33C4-A350-CD51849B9702} O42 - Logiciel: Microsoft .NET Framework 4 Extended FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {043F86B7-EE12-3399-B2CA-D0B603D87963} O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1 O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- HOMESTUDENTR O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.) [HKLM] -- {57F0ED40-8F11-41AA-B926-4A66D0D1A9CC} O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook Connector - (.Microsoft Corporation.) [HKLM] -- {95120000-0120-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM] -- {9011040C-6000-11D3-8CFE-0150048383C9} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{14809F99-C601-4D4A-9391-F1E8FAA964C5} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {4CBA3D4C-8F51-4D60-B27E-F6B641C571E7} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5} O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB} O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000 O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F} O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Extended FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended FRA Language Pack O42 - Logiciel: Nero 7 Demo - (.Nero AG.) [HKLM] -- {C67B64FA-E69E-E061-6516-F8E911671036} O42 - Logiciel: Nokia Connectivity Cable Driver - (.Nokia.) [HKLM] -- {6882DD11-33B8-4DEA-8305-7E765BF74BD3} O42 - Logiciel: Nokia PC Connectivity Solution - (.Nokia.) [HKLM] -- {0D80391C-0A72-43BB-9BC2-143F63CC111D} O42 - Logiciel: Nokia PC Suite - (.Nokia.) [HKLM] -- {531317A5-586A-4E36-87C1-CA823447B375} O42 - Logiciel: OGA Notifier 2.0.0048.0 - (.Microsoft Corporation.) [HKLM] -- {B2544A03-10D0-4E5E-BA69-0362FFC20D18} O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238} O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} O42 - Logiciel: Package de base Microsoft de service de chiffrement pour cartes à puce - (.Microsoft Corporation.) [HKLM] -- KB909520 O42 - Logiciel: Photo Loader 3.0F - (.Pas de propriétaire.) [HKLM] -- {70B45586-B51E-4947-A258-A895596C5CED} O42 - Logiciel: Photo Notifier and Animation Creator - (.IncrediMail Ltd..) [HKLM] -- Photo Notifier and Animation Creator O42 - Logiciel: Photo Notifier and Animation Creator - (.Nom de votre société.) [HKLM] -- {6B7F28D4-160E-40C6-B7C8-5EC6B9734DA7} O42 - Logiciel: Photo Transport Ver. 1.0.0(E) - (.Pas de propriétaire.) [HKLM] -- Photo Transport O42 - Logiciel: Photo et imagerie HP 2.0 - All-in-One - (.Hewlett-Packard Company.) [HKLM] -- {9867A917-5D17-40DE-83BA-BEA5293194B1} O42 - Logiciel: Photo et imagerie HP 2.0 - All-in-One Pilote - (.Hewlett-Packard Company.) [HKLM] -- {6ECB39BD-73C2-44DD-B1A0-898207C58D8B} O42 - Logiciel: Photo et imagerie HP 2.0 - hp psc 2170 series - (.Pas de propriétaire.) [HKLM] -- HP PSC 2170 Series O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3 O42 - Logiciel: Pinnacle Instant DVD Recorder - (.Pas de propriétaire.) [HKLM] -- {EF781A5C-58F5-4BFD-87F9-E4F14D382F25} O42 - Logiciel: PowerDirector - (.Pas de propriétaire.) [HKLM] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1} O42 - Logiciel: PowerProducer - (.Pas de propriétaire.) [HKLM] -- {B7A0CE06-068E-11D6-97FD-0050BACBF861} O42 - Logiciel: Programme de gestion Camera de Logitech® - (.Pas de propriétaire.) [HKLM] -- QcDrv O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC} O42 - Logiciel: Scribus 1.3.4 - (.The Scribus Team.) [HKLM] -- Scribus 1.3.4 O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5C497F0B-2061-4CC9-A61C-6B45B867354D} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CD769337-C8AC-46DB-A7DC-643E50089263} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{536FB502-775F-4494-BACE-C02CC90B7A5B} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2509488) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{AD0DE453-0804-4495-9C91-33D0F9AA5463} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906 O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Extended (KB2416472) - (.Microsoft Corporation.) [HKLM] -- {0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2416472 O42 - Logiciel: Security Update for Microsoft Office 2007 System (KB2541012) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CD907315-705A-4475-A1A0-2A1245803E4D} O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2541007) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A0173254-F442-4D04-9154-43FA157B83D0} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1} O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062} O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7} O42 - Logiciel: Sony USB Driver - (.Pas de propriétaire.) [HKLM] -- {5C29CB8B-AC1E-4114-8D68-9CD080140D4A} O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 O42 - Logiciel: Studio 11 - (.Pinnacle Systems.) [HKLM] -- {110B1ADF-2EAE-4E8F-B501-D2A1E6D8ED9D} O42 - Logiciel: Ulead Movie Wizard SE VCD - (.Ulead System.) [HKLM] -- {4F1DA6BF-3614-48A1-9970-9E90F646789E} O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707 O42 - Logiciel: Update for Microsoft Office 2007 System (KB2539530) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4} O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{329050A9-EF80-40F9-B633-74508F54C1FF} O42 - Logiciel: VIA Rhine-Family Fast-Ethernet Adapter - (.Pas de propriétaire.) [HKLM] -- VN_VUIns_Rhine_VIA O42 - Logiciel: VideoLAN VLC media player 0.8.4a - (.VideoLAN Team.) [HKLM] -- VLC media player O42 - Logiciel: Windows Defender - (.Microsoft Corporation.) [HKLM] -- {B2D7CE29-614A-4ACC-8BFE-009EB3A244C9} O42 - Logiciel: Windows Defender Signatures - (.Microsoft Corporation.) [HKLM] -- {A5CC2A09-E9D3-49EC-923D-03874BBD4C2C} O42 - Logiciel: Windows Driver Package - Nokia Modem (06/12/2006 6.81.0.21) - (.Nokia.) [HKLM] -- 3271E907F27C989F2C244ACB3D32020E3DD3CA6F O42 - Logiciel: Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray - (.Microsoft Corporation.) [HKLM] -- KB952011 O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474) - (.Microsoft Corporation.) [HKLM] -- WgaNotify O42 - Logiciel: Windows Genuine Advantage v1.3.0254.0 - (.Microsoft.) [HKLM] -- {63569CE9-FA00-469C-AF5C-E5D4D93ACF91} O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3B4E636E-9D65-4D67-BA61-189800823F52} O42 - Logiciel: Windows Live Contrôle parental - (.Microsoft Corporation.) [HKLM] -- {D6A2DDE3-9D7C-412C-932A-756580D29919} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {63DC2DA0-2A6C-4C38-9249-B75395458657} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {059C042E-796A-4ACC-A81A-ECC2010BB78C} O42 - Logiciel: Windows Live OneCare safety scanner - (.Pas de propriétaire.) [HKLM] -- Windows Live OneCare safety scanner O42 - Logiciel: Windows Live Sync - (.Microsoft Corporation.) [HKLM] -- {9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E} O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM] -- {F7D27C70-90F5-49B9-B188-0A133C0CE353} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {2231CE39-B963-4B9D-823A-F412ECA637B1} O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11 O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11 O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service O42 - Logiciel: Wireless 802.11g USB Adapter - (.Pas de propriétaire.) [HKLM] -- {73E94429-C8A2-46B5-A203-E30C62D5379D} O42 - Logiciel: XML Paper Specification Shared Components Language Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- XPSEPSCLP O42 - Logiciel: Yahoo! Desktop Login - (.Pinnacle Systems.) [HKLM] -- {F9AEEC34-CF00-4CBD-9E36-DF9DC4002685} O42 - Logiciel: avast! Free Antivirus - (.Alwil Software.) [HKLM] -- avast5 O42 - Logiciel: getPlus® for Adobe - (.NOS Microsystems Ltd..) [HKLM] -- {CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7} O42 - Logiciel: hp psc 2170 series - (.Hewlett-Packard Company.) [HKLM] -- {93FB47FB-4FDF-4131-B5FD-7A37883868E7} O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {B045B608-4A47-4C77-9EAD-06C394503306} ---\\ HKCU & HKLM Software Keys [HKCU\Software\3ivx] [HKCU\Software\7-Zip] [HKCU\Software\AC3Filter] [HKCU\Software\ALWIL Software] [HKCU\Software\ANI] [HKCU\Software\ATI] [HKCU\Software\AVG Security Toolbar] [HKCU\Software\Adobe] [HKCU\Software\Ahead] [HKCU\Software\AppDataLow\Software\IncrediMail_MediaBar_2] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Army1Settings] [HKCU\Software\Ascentive] [HKCU\Software\Babylon] [HKCU\Software\CASIO] [HKCU\Software\CDDB] [HKCU\Software\Canon] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CodeStuff] [HKCU\Software\Conduit] [HKCU\Software\CoreVorbis] [HKCU\Software\CyberLink] [HKCU\Software\DivXNetworks] [HKCU\Software\GIANTCompany] [HKCU\Software\Gabest] [HKCU\Software\Google] [HKCU\Software\Haali] [HKCU\Software\Hewlett-Packard] [HKCU\Software\IM Providers] [HKCU\Software\IM] [HKCU\Software\ImInstaller] [HKCU\Software\ImageViewer] [HKCU\Software\IncrediMail] [HKCU\Software\IncrediMail_MediaBar_2] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\KasperskyLab] [HKCU\Software\LanConfig] [HKCU\Software\Lavasoft] [HKCU\Software\Licenses] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\LogMeIn] [HKCU\Software\Logitech] [HKCU\Software\Macromedia] [HKCU\Software\MainConcept] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MozillaPlugins] [HKCU\Software\NOS] [HKCU\Software\Netscape] [HKCU\Software\Nokia] [HKCU\Software\ODBC] [HKCU\Software\PCSuite] [HKCU\Software\PDFCreator] [HKCU\Software\PIXELA] [HKCU\Software\ParisHilton] [HKCU\Software\Patchou] [HKCU\Software\Pinnacle Systems] [HKCU\Software\Piriform] [HKCU\Software\Poikosoft] [HKCU\Software\Policies] [HKCU\Software\RealNetworks] [HKCU\Software\Safer Networking Limited] [HKCU\Software\Samsung] [HKCU\Software\Sony Corporation] [HKCU\Software\Stardock] [HKCU\Software\Teruten] [HKCU\Software\Totem] [HKCU\Software\Ulead] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\VOB] [HKCU\Software\WinRAR] [HKCU\Software\Windows Live Writer] [HKCU\Software\WizMAX] [HKCU\Software\Xi] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\Yahoo] [HKCU\Software\conduitEngine] [HKCU\Software\ƒAƒvƒŠƒP[ƒVƒ‡ƒ“ ƒEƒBƒU[ƒh‚Ŷ¬‚³‚ꂽƒ[ƒJƒ‹ ƒAƒvƒŠƒP[ƒVƒ‡ƒ“] [HKLM\Software\116f] [HKLM\Software\3ivx] [HKLM\Software\781] [HKLM\Software\ACE Compression Software] [HKLM\Software\ALWIL Software] [HKLM\Software\ANIWConnd Service] [HKLM\Software\ANI] [HKLM\Software\ASIO] [HKLM\Software\ATI Technologies Inc.] [HKLM\Software\ATI Technologies] [HKLM\Software\ATI] [HKLM\Software\Aardwork] [HKLM\Software\Acorn] [HKLM\Software\Adobe Systems Incorporated] [HKLM\Software\Adobe] [HKLM\Software\Alice ADSL] [HKLM\Software\AppDataLow] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\BackWeb] [HKLM\Software\Big Fish Games] [HKLM\Software\Boonty] [HKLM\Software\BrowserChoice] [HKLM\Software\C07ft5Y] [HKLM\Software\CASIO] [HKLM\Software\CDDB] [HKLM\Software\Canon] [HKLM\Software\Canopus] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\ClubDeJeux] [HKLM\Software\Conduit] [HKLM\Software\CyberLink] [HKLM\Software\D-Link] [HKLM\Software\DVC150] [HKLM\Software\DivXNetworks] [HKLM\Software\DivX] [HKLM\Software\EliaShim] [HKLM\Software\FAST Multimedia] [HKLM\Software\FotoWire] [HKLM\Software\GIANTCompany] [HKLM\Software\GNU] [HKLM\Software\Gabest] [HKLM\Software\Gemplus] [HKLM\Software\Google] [HKLM\Software\HaaliMkx] [HKLM\Software\Hewlett-Packard] [HKLM\Software\ImInstaller] [HKLM\Software\IncrediMail_MediaBar_2] [HKLM\Software\InstallShield] [HKLM\Software\Intel] [HKLM\Software\InterVideo] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\KLCodecPack] [HKLM\Software\Launcher] [HKLM\Software\LicCtrl] [HKLM\Software\Linksys Corporation] [HKLM\Software\LogMeIn, Inc.] [HKLM\Software\LogMeIn] [HKLM\Software\Logitech] [HKLM\Software\MDC] [HKLM\Software\Macromedia] [HKLM\Software\Magix] [HKLM\Software\Magnet] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\Micro Application] [HKLM\Software\MimarSinan] [HKLM\Software\Mindscape] [HKLM\Software\Minnetonka Audio Software] [HKLM\Software\MovieBox USB] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NOS] [HKLM\Software\Nokia] [HKLM\Software\ODBC] [HKLM\Software\Oak Technology] [HKLM\Software\On2 Technologies] [HKLM\Software\Ots Corporation] [HKLM\Software\PCSuite] [HKLM\Software\Paprikari] [HKLM\Software\ParisHilton] [HKLM\Software\Pegasus Imaging] [HKLM\Software\PegasusImaging] [HKLM\Software\Pinnacle Systems] [HKLM\Software\Poikosoft] [HKLM\Software\Policies] [HKLM\Software\Program Groups] [HKLM\Software\Propellerhead Software] [HKLM\Software\RealNetworks] [HKLM\Software\RegisteredApplications] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Samsung] [HKLM\Software\Schlumberger] [HKLM\Software\Secure] [HKLM\Software\SmartSound Software] [HKLM\Software\Sonic] [HKLM\Software\Sony Corporation] [HKLM\Software\SparkLAN Electronics Inc.] [HKLM\Software\TechCity] [HKLM\Software\TrendMicro] [HKLM\Software\Trolltech] [HKLM\Software\TuneUp] [HKLM\Software\Ulead Systems] [HKLM\Software\Uniblue] [HKLM\Software\Uplay-Istrip] [HKLM\Software\VN_VUIns] [HKLM\Software\VOB] [HKLM\Software\VideoLAN] [HKLM\Software\Windows 3.1 Migration Status] [HKLM\Software\Windows] [HKLM\Software\Wise Solutions] [HKLM\Software\WwGame] [HKLM\Software\Xi] [HKLM\Software\Yahoo] [HKLM\Software\ahead] [HKLM\Software\ashampoo] [HKLM\Software\ffffffff] [HKLM\Software\galrtejh] [HKLM\Software\muvee Technologies] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 15/11/2010 - 17:12:38 - [3095094] ----D- C:\Program Files\7-Zip O43 - CFD: 26/01/2010 - 19:16:00 - [921510238] ----D- C:\Program Files\Adobe O43 - CFD: 14/01/2010 - 12:37:44 - [4952501] ----D- C:\Program Files\Alice O43 - CFD: 10/11/2008 - 11:28:58 - [3275745] ----D- C:\Program Files\Alice SSID O43 - CFD: 15/06/2010 - 05:40:06 - [152774957] ----D- C:\Program Files\Alwil Software O43 - CFD: 29/11/2009 - 17:22:10 - [100352] ----D- C:\Program Files\Ambiance O43 - CFD: 03/06/2010 - 21:34:04 - [637] ----D- C:\Program Files\Ascentive O43 - CFD: 29/12/2005 - 13:12:00 - [80139136] ----D- C:\Program Files\ATI Technologies O43 - CFD: 02/11/2007 - 02:30:54 - [461296] ----D- C:\Program Files\AtomixMP3 O43 - CFD: 15/06/2009 - 17:18:22 - [980954] ----D- C:\Program Files\AVerMedia O43 - CFD: 25/01/2010 - 20:21:54 - [48128] ----D- C:\Program Files\AVG O43 - CFD: 09/04/2008 - 19:01:08 - [432] ----D- C:\Program Files\BankPerfect O43 - CFD: 29/01/2007 - 21:15:50 - [0] ----D- C:\Program Files\Canon O43 - CFD: 29/01/2007 - 21:39:12 - [140152099] ----D- C:\Program Files\CASIO O43 - CFD: 26/10/2010 - 16:31:46 - [3020912] ----D- C:\Program Files\CCleaner O43 - CFD: 03/02/2010 - 12:59:38 - [0] ----D- C:\Program Files\CodeStuff O43 - CFD: 06/06/2008 - 17:51:00 - [0] ----D- C:\Program Files\Common Files O43 - CFD: 01/01/2011 - 12:16:18 - [1802528] ----D- C:\Program Files\Conduit O43 - CFD: 22/06/2011 - 19:29:40 - [9208025] ----D- C:\Program Files\ConduitEngine O43 - CFD: 21/03/2010 - 19:29:10 - [343611359] ----D- C:\Program Files\CyberLink O43 - CFD: 26/10/2010 - 17:48:58 - [8835594] ----D- C:\Program Files\D-Link O43 - CFD: 20/09/2006 - 21:52:50 - [521128] ----D- C:\Program Files\DIFX O43 - CFD: 29/10/2007 - 20:28:46 - [0] ----D- C:\Program Files\directx O43 - CFD: 18/01/2008 - 15:15:46 - [1943179] ----D- C:\Program Files\Easy CD-DA Extractor 5.0 O43 - CFD: 03/06/2011 - 16:30:10 - [2181928560] ----D- C:\Program Files\eMule O43 - CFD: 28/01/2008 - 11:39:32 - [7659740] ----D- C:\Program Files\Fashion Fits! O43 - CFD: 26/10/2010 - 16:22:12 - [894371501] ----D- C:\Program Files\Fichiers communs O43 - CFD: 24/11/2010 - 09:35:34 - [41] ----D- C:\Program Files\Filzip O43 - CFD: 06/06/2008 - 17:40:50 - [5849803] ----D- C:\Program Files\GOA O43 - CFD: 18/05/2011 - 09:09:04 - [2341556] ----D- C:\Program Files\Google O43 - CFD: 05/12/2010 - 19:02:06 - [77506413] ----D- C:\Program Files\gs O43 - CFD: 26/01/2010 - 19:44:04 - [361335962] ----D- C:\Program Files\Hewlett-Packard O43 - CFD: 29/12/2005 - 12:23:20 - [2251111] ----D- C:\Program Files\HighMAT CD Writing Wizard O43 - CFD: 04/06/2011 - 17:40:02 - [39443326] ----D- C:\Program Files\IncrediMail O43 - CFD: 22/06/2011 - 19:29:44 - [17010149] ----D- C:\Program Files\IncrediMail_MediaBar_2 O43 - CFD: 26/10/2010 - 18:03:26 - [209366666] --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD: 31/10/2006 - 22:08:34 - [8557520] ----D- C:\Program Files\InstantTouch O43 - CFD: 19/06/2011 - 07:58:28 - [5595459] ----D- C:\Program Files\Internet Explorer O43 - CFD: 02/11/2007 - 01:17:38 - [1288767] ----D- C:\Program Files\iPod O43 - CFD: 02/11/2007 - 01:17:54 - [65116621] ----D- C:\Program Files\iTunes O43 - CFD: 03/06/2011 - 06:44:44 - [213638812] ----D- C:\Program Files\Java O43 - CFD: 10/03/2006 - 19:17:50 - [119616064] ----D- C:\Program Files\K-Lite Codec Pack O43 - CFD: 29/03/2007 - 15:58:04 - [31870] ----D- C:\Program Files\KODAK O43 - CFD: 28/03/2011 - 16:39:50 - [21669001] ----D- C:\Program Files\KompoZer 0.7.10 O43 - CFD: 03/02/2010 - 12:56:46 - [661275] ----D- C:\Program Files\Lavasoft O43 - CFD: 14/01/2007 - 02:18:58 - [25767393] ----D- C:\Program Files\lecteur windows media 11 O43 - CFD: 13/02/2009 - 16:00:12 - [27007147] ----D- C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor O43 - CFD: 22/02/2006 - 10:36:32 - [70712978] ----D- C:\Program Files\Logitech O43 - CFD: 03/06/2011 - 15:59:06 - [37820323] ----D- C:\Program Files\LogMeIn O43 - CFD: 29/10/2007 - 20:58:06 - [47706068] ----D- C:\Program Files\Macromedia O43 - CFD: 23/10/2010 - 11:37:28 - [3966590] ----D- C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD: 01/10/2007 - 19:12:00 - [723] ----D- C:\Program Files\MAUS Software O43 - CFD: 18/10/2008 - 20:58:08 - [2174318] ----D- C:\Program Files\Messenger O43 - CFD: 03/02/2010 - 13:12:08 - [71256] ----D- C:\Program Files\Messenger Plus! Live O43 - CFD: 21/02/2009 - 19:02:04 - [1522075] ----D- C:\Program Files\Microsoft O43 - CFD: 04/06/2006 - 18:17:48 - [8125927] ----D- C:\Program Files\Microsoft AntiSpyware O43 - CFD: 18/10/2008 - 20:57:02 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2 O43 - CFD: 29/12/2005 - 11:01:18 - [0] ----D- C:\Program Files\microsoft frontpage O43 - CFD: 01/02/2010 - 11:11:38 - [655123489] ----D- C:\Program Files\Microsoft Office O43 - CFD: 20/11/2009 - 11:10:36 - [1562956] ----D- C:\Program Files\Microsoft Office Outlook Connector O43 - CFD: 19/06/2011 - 08:09:44 - [38411899] ----D- C:\Program Files\Microsoft Silverlight O43 - CFD: 21/02/2009 - 18:59:12 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD: 21/02/2009 - 19:00:38 - [2188837] ----D- C:\Program Files\Microsoft Sync Framework O43 - CFD: 29/12/2005 - 11:14:08 - [14904] ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD: 03/02/2010 - 16:00:30 - [5966990] ----D- C:\Program Files\Microsoft Works O43 - CFD: 26/10/2010 - 16:05:24 - [8360319] ----D- C:\Program Files\Microsoft.NET O43 - CFD: 25/01/2011 - 13:02:04 - [15312163] ----D- C:\Program Files\movie maker O43 - CFD: 10/03/2009 - 18:35:08 - [25757] ----D- C:\Program Files\MSBuild O43 - CFD: 11/10/2008 - 12:46:34 - [19278399] ----D- C:\Program Files\msn O43 - CFD: 29/12/2005 - 11:01:18 - [0] ----D- C:\Program Files\msn gaming zone O43 - CFD: 03/02/2010 - 13:02:20 - [0] ----D- C:\Program Files\MSN Messenger O43 - CFD: 13/01/2009 - 11:56:10 - [8183570] ----D- C:\Program Files\MSN Pictures Displayer O43 - CFD: 26/01/2009 - 17:23:50 - [154621567] ----D- C:\Program Files\Multimedia O43 - CFD: 29/12/2005 - 12:11:14 - [226281223] ----D- C:\Program Files\Nero O43 - CFD: 11/10/2008 - 12:43:24 - [3285523] ----D- C:\Program Files\NetMeeting O43 - CFD: 20/09/2006 - 21:41:14 - [22880515] ----D- C:\Program Files\Nokia O43 - CFD: 02/06/2009 - 09:21:20 - [33176] ----D- C:\Program Files\NOS O43 - CFD: 05/07/2009 - 11:24:44 - [36] ----D- C:\Program Files\Objectif Tarot O43 - CFD: 17/12/2010 - 20:26:04 - [4379321] ----D- C:\Program Files\Outlook Express O43 - CFD: 26/11/2010 - 15:42:28 - [8170740] ----D- C:\Program Files\Panasonic O43 - CFD: 02/11/2007 - 00:56:54 - [26898730] ----D- C:\Program Files\PDFCreator O43 - CFD: 01/01/2011 - 12:16:00 - [2757956] ----D- C:\Program Files\Photo Notifier and Animation Creator O43 - CFD: 18/05/2011 - 09:08:38 - [75567595] ----D- C:\Program Files\Picasa O43 - CFD: 23/10/2007 - 11:08:06 - [1552990552] ----D- C:\Program Files\Pinnacle O43 - CFD: 12/02/2006 - 16:22:52 - [3204829] ----D- C:\Program Files\Populu Turchinu O43 - CFD: 02/11/2007 - 01:04:34 - [693] ----D- C:\Program Files\QuickShop Pro Edition O43 - CFD: 10/03/2009 - 18:34:54 - [37949185] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 03/02/2010 - 13:06:54 - [250216] ----D- C:\Program Files\Samsung O43 - CFD: 29/12/2005 - 10:59:16 - [1025] ----D- C:\Program Files\Services en ligne O43 - CFD: 21/03/2010 - 19:31:00 - [999667] ----D- C:\Program Files\Sony Corporation O43 - CFD: 15/01/2010 - 12:10:44 - [68299627] ----D- C:\Program Files\Spybot - Search & Destroy O43 - CFD: 07/06/2011 - 18:24:14 - [11938201] ----D- C:\Program Files\Tarot O43 - CFD: 04/02/2006 - 15:45:08 - [332053] ----D- C:\Program Files\TechCity Solutions O43 - CFD: 04/02/2006 - 19:10:22 - [0] ----D- C:\Program Files\Tiscali O43 - CFD: 04/03/2007 - 15:54:56 - [353] ----D- C:\Program Files\TribalWeb.net O43 - CFD: 29/10/2007 - 20:24:36 - [168695843] ----D- C:\Program Files\Ulead Systems O43 - CFD: 27/02/2006 - 22:17:38 - [24] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 26/10/2010 - 16:22:48 - [3658277] ----D- C:\Program Files\Vdownloader O43 - CFD: 24/02/2006 - 11:19:52 - [22970466] ----D- C:\Program Files\VideoLAN O43 - CFD: 25/02/2006 - 00:21:28 - [165325] ----D- C:\Program Files\Webteh O43 - CFD: 04/06/2006 - 18:18:02 - [5402740] ----D- C:\Program Files\Windows Defender O43 - CFD: 21/02/2009 - 19:01:32 - [141697313] ----D- C:\Program Files\Windows Live O43 - CFD: 14/01/2009 - 23:10:30 - [27075931] ----D- C:\Program Files\Windows Live Safety Center O43 - CFD: 11/01/2009 - 22:15:34 - [245112] ----D- C:\Program Files\Windows Live SkyDrive O43 - CFD: 29/01/2007 - 21:27:32 - [95806] ----D- C:\Program Files\Windows Media Components O43 - CFD: 29/03/2007 - 15:58:04 - [3586190] ----D- C:\Program Files\Windows Media Connect 2 O43 - CFD: 11/10/2008 - 12:43:18 - [10828306] ----D- C:\Program Files\Windows Media Player O43 - CFD: 29/12/2005 - 11:01:18 - [783360] ----D- C:\Program Files\Windows NT O43 - CFD: 29/12/2005 - 10:59:20 - [0] --H-D- C:\Program Files\WindowsUpdate O43 - CFD: 13/01/2007 - 18:40:32 - [3671314] ----D- C:\Program Files\WinRAR O43 - CFD: 29/03/2007 - 15:58:06 - [7970330] ----D- C:\Program Files\Wireless 802.11g Monitor O43 - CFD: 29/12/2005 - 11:01:18 - [0] ----D- C:\Program Files\xerox O43 - CFD: 07/12/2009 - 11:00:58 - [3944696] ----D- C:\Program Files\Xi-NetTransport O43 - CFD: 29/12/2005 - 12:49:46 - [744110] ----D- C:\Program Files\Yahoo! O43 - CFD: 23/06/2011 - 21:48:58 - [4053750] ----D- C:\Program Files\ZHPDiag O43 - CFD: 08/07/2008 - 15:57:26 - [0] ----D- C:\Program Files\Common Files\Companion Wizard O43 - CFD: 06/06/2008 - 17:51:00 - [0] ----D- C:\Program Files\Common Files\INCA Shared O43 - CFD: 18/12/2010 - 19:28:30 - [6645460] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Adobe O43 - CFD: 02/07/2006 - 18:34:28 - [0] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\AdobeUM O43 - CFD: 08/04/2008 - 14:49:04 - [28672] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Ahead O43 - CFD: 08/06/2010 - 18:12:46 - [105645] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Apple Computer O43 - CFD: 24/02/2006 - 11:37:34 - [0] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\ATI O43 - CFD: 09/03/2010 - 09:51:04 - [3016595] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\CyberLink O43 - CFD: 27/01/2010 - 00:30:34 - [22] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Desktopicon O43 - CFD: 20/05/2011 - 18:23:32 - [199] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\dvdcss O43 - CFD: 31/07/2006 - 14:47:46 - [0] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Google O43 - CFD: 22/04/2011 - 09:02:34 - [63] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Help O43 - CFD: 05/07/2010 - 12:30:02 - [3403] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Hewlett-Packard O43 - CFD: 24/02/2006 - 11:36:10 - [0] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Identities O43 - CFD: 20/10/2007 - 08:49:16 - [0] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\InstallShield O43 - CFD: 06/04/2011 - 08:38:28 - [3146515] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\KompoZer O43 - CFD: 26/01/2010 - 19:15:18 - [0] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Leadertech O43 - CFD: 24/02/2006 - 11:37:02 - [67170] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Logitech O43 - CFD: 27/01/2010 - 16:00:16 - [44868] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Macromedia O43 - CFD: 23/10/2010 - 11:37:38 - [23897215] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Malwarebytes O43 - CFD: 31/01/2011 - 16:48:48 - [5815650] -S--D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Microsoft O43 - CFD: 30/03/2010 - 15:31:10 - [0] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Mozilla O43 - CFD: 13/01/2009 - 11:56:10 - [149963] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\MSN Pictures Displayer O43 - CFD: 16/10/2007 - 13:34:12 - [216] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Nokia Multimedia Player O43 - CFD: 12/10/2009 - 11:24:52 - [356] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Office Genuine Advantage O43 - CFD: 21/09/2006 - 16:44:42 - [230] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\PC Suite O43 - CFD: 15/09/2006 - 23:41:44 - [444] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Real O43 - CFD: 25/12/2010 - 10:11:36 - [136491] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Scribus O43 - CFD: 31/07/2006 - 15:03:30 - [74500450] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Sun O43 - CFD: 11/01/2011 - 14:47:48 - [110592] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\U3 O43 - CFD: 24/05/2010 - 09:36:42 - [5344995] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Uniblue O43 - CFD: 02/07/2006 - 19:19:26 - [308901] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\vlc O43 - CFD: 05/11/2009 - 23:16:22 - [0] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Windows Live Writer O43 - CFD: 29/11/2010 - 09:36:46 - [9242592] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Adobe O43 - CFD: 30/03/2010 - 08:59:56 - [2789102] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Ahead O43 - CFD: 08/06/2010 - 18:12:46 - [7810] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Apple Computer O43 - CFD: 23/05/2011 - 10:11:52 - [7787] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\ApplicationHistory O43 - CFD: 24/02/2006 - 11:37:34 - [4542] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\ATI O43 - CFD: 01/01/2011 - 12:16:22 - [103060] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Conduit O43 - CFD: 22/06/2011 - 19:08:56 - [9075236] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\ConduitEngine O43 - CFD: 12/06/2011 - 18:33:18 - [0] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Deployment O43 - CFD: 01/04/2010 - 17:59:12 - [11914752] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Downloaded Installations O43 - CFD: 18/05/2011 - 09:11:30 - [582029064] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Google O43 - CFD: 20/12/2006 - 11:14:44 - [0] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Help O43 - CFD: 26/11/2009 - 17:48:46 - [815408] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Identities O43 - CFD: 14/06/2011 - 09:09:34 - [668340505] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\IM O43 - CFD: 22/06/2011 - 19:08:44 - [11746705] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\IncrediMail_MediaBar_2 O43 - CFD: 05/06/2006 - 18:36:24 - [0] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Logitech-LS O43 - CFD: 03/06/2011 - 15:59:44 - [0] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\LogMeIn O43 - CFD: 24/01/2011 - 15:47:40 - [14554759] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Microsoft O43 - CFD: 01/02/2010 - 11:44:12 - [0] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Microsoft Help O43 - CFD: 02/03/2008 - 16:31:16 - [48812] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Pinnacle O43 - CFD: 28/04/2011 - 04:12:48 - [0] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Temp O43 - CFD: 10/12/2009 - 20:34:48 - [321] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\vdownloader O43 - CFD: 05/11/2009 - 23:16:40 - [356053] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Windows Live Writer O43 - CFD: 15/05/2011 - 08:01:34 - [0] ----D- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\WMTools Downloaded Files ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.C7D205FADE290D0FC5AF73C12D47AA33] - 23/06/2011 - 20:40:40 ---A- . (...) -- C:\hpfr5550.xml [488] O44 - LFC:[MD5.CCEE1200F915817C00ECFD7FA0EF1200] - 23/06/2011 - 19:11:00 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [32534] O44 - LFC:[MD5.CCEE1200F915817C00ECFD7FA0EF1200] - 23/06/2011 - 18:54:47 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1620713] O44 - LFC:[MD5.DBA91CD5A3A68302967C03213E52BDE8] - 23/06/2011 - 15:14:04 --HA- . (...) -- C:\WINDOWS\QTFont.qfn [54156] O44 - LFC:[MD5.D158C252611C2C504D85FA4291C06E98] - 23/06/2011 - 15:13:55 ---A- . (...) -- C:\WINDOWS\System32\wpa.dbl [13646] O44 - LFC:[MD5.D698B1776C8E71137F925046EA44FC13] - 23/06/2011 - 13:32:42 ---A- . (...) -- C:\Installer.log [4981319] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 23/06/2011 - 13:32:41 ---A- . (...) -- C:\Debug.QC6 [0] O44 - LFC:[MD5.465188BA1F71BF4E4AC2F4B3FDF7DE00] - 23/06/2011 - 10:32:29 ---A- . (...) -- C:\WINDOWS\System32\LVCOMSX.LOG [20809] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 22/06/2011 - 18:29:37 ---A- . (...) -- C:\WINDOWS\System32\ConduitEngine.tmp [0] O44 - LFC:[MD5.CCEE1200F915817C00ECFD7FA0EF1200] - 22/06/2011 - 18:25:30 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 22/06/2011 - 18:25:24 ---A- . (...) -- C:\WINDOWS\0.log [0] O44 - LFC:[MD5.CCEE1200F915817C00ECFD7FA0EF1200] - 22/06/2011 - 18:25:23 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50] O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 22/06/2011 - 18:22:35 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048] O44 - LFC:[MD5.76E6CF9D7C97F5FE4552C919C5C12505] - 19/06/2011 - 07:10:11 ---A- . (...) -- C:\WINDOWS\QTFont.for [1409] O44 - LFC:[MD5.C9C6A6202FB913CEE8D40472B1F9C42B] - 19/06/2011 - 07:02:04 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [22729] O44 - LFC:[MD5.8D3B4C12CEC66C20C674F032086ACD4F] - 19/06/2011 - 07:02:03 ---A- . (...) -- C:\WINDOWS\KB2476490.log [23691] O44 - LFC:[MD5.5AA648D3CAF7D5108D9EE305B3E3DDE1] - 19/06/2011 - 07:02:03 ---A- . (...) -- C:\WINDOWS\comsetup.log [10131] O44 - LFC:[MD5.DE758A79C099E2E31C4BBF3ED609BABB] - 19/06/2011 - 07:02:03 ---A- . (...) -- C:\WINDOWS\iis6.log [8015] O44 - LFC:[MD5.B11FE48E694C4B9BC4E315D3866DB460] - 19/06/2011 - 07:02:03 ---A- . (...) -- C:\WINDOWS\imsins.log [584] O44 - LFC:[MD5.1C28CA5B80ECB5FDE3321DA6A60247B3] - 19/06/2011 - 07:02:03 ---A- . (...) -- C:\WINDOWS\msmqinst.log [13090] O44 - LFC:[MD5.0A6EA2DD319F77964C085A4A5293F03A] - 19/06/2011 - 07:02:03 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [6593] O44 - LFC:[MD5.113DB0D732574D1BF338F39ADDC49906] - 19/06/2011 - 07:02:03 ---A- . (...) -- C:\WINDOWS\ocgen.log [896] O44 - LFC:[MD5.34817426C1533D1EB7FF2EE47C52D580] - 19/06/2011 - 07:02:03 ---A- . (...) -- C:\WINDOWS\tsoc.log [11445] O44 - LFC:[MD5.DF0248E97AF95FC90AE1BCAA1A50719E] - 19/06/2011 - 07:01:56 ---A- . (...) -- C:\WINDOWS\imsins.BAK [584] O44 - LFC:[MD5.64EFCEB8094217F275252DE16343EE98] - 19/06/2011 - 07:01:55 ---A- . (...) -- C:\WINDOWS\KB2503665.log [16598] O44 - LFC:[MD5.CA0002BA3E79179450B5855C01E289C3] - 19/06/2011 - 07:01:39 ---A- . (...) -- C:\WINDOWS\win.ini [906] O44 - LFC:[MD5.38AD8B893CC94E530D34D9833E4059B2] - 19/06/2011 - 07:00:07 ---A- . (...) -- C:\WINDOWS\KB2535512.log [15962] O44 - LFC:[MD5.9F1AAC7DDB173694A78B593FAB36E618] - 19/06/2011 - 06:58:41 ---A- . (...) -- C:\WINDOWS\KB2536276.log [14885] O44 - LFC:[MD5.3029597AFD14A76EEE8D41ED887A419F] - 19/06/2011 - 06:58:33 ---A- . (...) -- C:\WINDOWS\KB2530548-IE8.log [19149] O44 - LFC:[MD5.A816E54986C7ABA5DD84159E5119379C] - 19/06/2011 - 06:58:25 ---A- . (...) -- C:\WINDOWS\updspapi.log [2890] O44 - LFC:[MD5.CCF9F0CF83ADAEF978784C9DD260FE0D] - 19/06/2011 - 06:57:52 ---A- . (...) -- C:\WINDOWS\KB2544893.log [10958] O44 - LFC:[MD5.4BD90B7D9B686D1DDFD8B8CD5C5CA02A] - 19/06/2011 - 06:55:02 ---A- . (...) -- C:\WINDOWS\KB2544521-IE8.log [9647] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 19/06/2011 - 06:55:01 ---A- . (...) -- C:\WINDOWS\setupact.log [0] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 19/06/2011 - 06:55:01 ---A- . (...) -- C:\WINDOWS\setuperr.log [0] O44 - LFC:[MD5.EEBB0FA277FF042F70E581A2E4C494F9] - 16/06/2011 - 06:55:17 ---A- . (...) -- C:\WINDOWS\PhotoSnapViewer.INI [151] O44 - LFC:[MD5.2E9A7608E13E3C12D7BC2D390B194BED] - 12/06/2011 - 16:52:12 ---A- . (...) -- C:\WINDOWS\setupapi.log [2271] O44 - LFC:[MD5.0CCAB4684657BE81BCD9031377996C47] - 08/06/2011 - 15:07:45 -SHA- . (...) -- C:\boot.ini [361] O44 - LFC:[MD5.32267DBD5C0D6A29110C9E2381C86B89] - 07/06/2011 - 18:57:17 ---A- . (.Nicolas Coolman - ZHPDiag.) -- C:\ZHPDiag2.exe [2511767] O44 - LFC:[MD5.C51F97B94D86CD013991BEF94CE8B9E6] - 03/06/2011 - 14:59:38 ---A- . (.LogMeIn, Inc. - RemotelyAnywhere Printer Port Monitor.) -- C:\WINDOWS\System32\LMIport.dll [29568] O44 - LFC:[MD5.A9EED82736421EEE31634DC3D16208B4] - 03/06/2011 - 14:59:37 ---A- . (.LogMeIn, Inc. - LogMeIn Rfs Client Network Provider.) -- C:\WINDOWS\System32\LMIRfsClientNP.dll [83360] O44 - LFC:[MD5.3FAA563DDF853320F90259D455A01D79] - 03/06/2011 - 14:59:37 ---A- . (.LogMeIn, Inc. - LogMeIn Rfs Drivemap Driver.) -- C:\WINDOWS\System32\drivers\LMIRfsDriver.sys [47640] O44 - LFC:[MD5.3687D4D7D56469C62FDAE82EBFADB906] - 03/06/2011 - 14:59:24 ---A- . (.LogMeIn, Inc. - LogMeIn Remote Control Helper.) -- C:\WINDOWS\System32\LMIinit.dll [87424] O44 - LFC:[MD5.8BF5F2F09D70BA38E9E1DDB87BF2D8DB] - 03/06/2011 - 14:59:23 ---A- . (...) -- C:\.rnd [1024] O44 - LFC:[MD5.F87BA06FE22C81CDE563761DDFBAB267] - 03/06/2011 - 05:44:51 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\WINDOWS\System32\deployJava1.dll [472808] O44 - LFC:[MD5.68288DA42BC798992A42CD59061B199D] - 03/06/2011 - 05:44:50 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\WINDOWS\System32\java.exe [145184] O44 - LFC:[MD5.5BF8BA1B854D7DFCE1F47E58852B3D8F] - 03/06/2011 - 05:44:50 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\WINDOWS\System32\javaw.exe [145184] O44 - LFC:[MD5.58DC5CBDC930AF070B177843810F2C85] - 03/06/2011 - 05:44:50 ---A- . (.Sun Microsystems, Inc. - Java Web Start Launcher.) -- C:\WINDOWS\System32\javaws.exe [157472] O44 - LFC:[MD5.AB425EC4FBEA44D2CF24795D7C703265] - 03/06/2011 - 05:44:43 ---A- . (...) -- C:\WINDOWS\System32\jupdate-1.6.0_24-b07.log [6033] O44 - LFC:[MD5.2F94F316F20C6442925AD3A90F2B362E] - 02/06/2011 - 17:05:26 ---A- . (...) -- C:\hijackthis.log [12166] O44 - LFC:[MD5.E8269245566BE948F6A219135B434160] - 01/06/2011 - 07:17:19 ---A- . (.Trend Micro Inc. - HijackThis.) -- C:\HiJackThis.exe [401720] ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll O46 - SEH:ShellExecuteHooks - URL Exec Hook - {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\PROGRA~1\WINDOW~4\MpShHook.dll ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\bin\ImLc.exe" [Enabled] .(.IncrediMail, Ltd. - IncrediMail Letter Creator Application.) -- C:\Program Files\IncrediMail\bin\ImLc.exe O47 - AAKE:Key Export SP - "C:\Program Files\MaxTV Online\plugins\Streamer.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files\MaxTV Online\plugins\Streamer.exe (.not file.) O47 - AAKE:Key Export SP - "C:\Program Files\InstantTouch\bin\CmCenterV2.exe" [Enabled] .(.Winwise - CmCenter Module.) -- C:\Program Files\InstantTouch\bin\CmCenterV2.exe O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\bin\ImpCnt.exe" [Enabled] .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\bin\ImpCnt.exe O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\bin\IncMail.exe" [Enabled] .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\bin\IncMail.exe O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\bin\ImPackr.exe" [Enabled] .(.Pas de propriétaire - ContentPacker MFC Application.) -- C:\Program Files\IncrediMail\bin\ImPackr.exe O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\bin\IMApp.exe" [Enabled] .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\bin\IMApp.exe O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\BoontyGames\Pro Cycling Manager\Cym2005.exe" [Disabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files\BoontyGames\Pro Cycling Manager\Cym2005.exe (.not file.) O47 - AAKE:Key Export SP - "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [Enabled] .(.Logitech Inc..) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O47 - AAKE:Key Export SP - "C:\Program Files\Pinnacle\Studio 11\programs\RM.exe" [Enabled] .(.Pinnacle Systems - Render Manager.) -- C:\Program Files\Pinnacle\Studio 11\programs\RM.exe O47 - AAKE:Key Export SP - "C:\Program Files\Pinnacle\Studio 11\programs\Studio.exe" [Enabled] .(.Pinnacle Systems - Studio program file.) -- C:\Program Files\Pinnacle\Studio 11\programs\Studio.exe O47 - AAKE:Key Export SP - "C:\Program Files\Pinnacle\Studio 11\programs\PMSRegisterFile.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files\Pinnacle\Studio 11\programs\PMSRegisterFile.exe O47 - AAKE:Key Export SP - "C:\Program Files\Pinnacle\Studio 11\programs\umi.exe" [Enabled] .(.Pinnacle Systems - umi.) -- C:\Program Files\Pinnacle\Studio 11\programs\umi.exe O47 - AAKE:Key Export SP - "C:\Program Files\iTunes\iTunes.exe" [Enabled] .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe O47 - AAKE:Key Export SP - "C:\Program Files\Internet Explorer\IEXPLORE.EXE" [Enabled] .(.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe" [Enabled] .(.Nero AG - Nero Home.) -- C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe O47 - AAKE:Key Export SP - "C:\Program Files\eMule\emule.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files\eMule\emule.exe (.not file.) O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export DP - "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [Enabled] .(.Logitech Inc..) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ---\\ MountPoints2 Shell Key (O51) O51 - MPSK:{1f404dc3-37db-11dd-a06e-000e8e055ff8}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- K:\WD_Windows_Tools\Setup.exe (.not file.) ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.DIVX"="divx.dll" . (.DivXNetworks, Inc. - DivX® Codec for Windows.) -- C:\WINDOWS\System32\divx.dll O52 - TDSD: \Drivers32\"vidc.XVID"="xvidvfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\xvidvfw.dll O52 - TDSD: \Drivers32\"msacm.lameacm"="lameACM.acm" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\WINDOWS\System32\lameACM.acm O52 - TDSD: \Drivers32\"vidc.3iv2"="3ivxVfWCodec.dll" . (.3ivx.com - 3ivx D4 4.5.1 Pro Video for Windows Codec.) -- C:\WINDOWS\System32\3ivxVfWCodec.dll O52 - TDSD: \Drivers32\"VIDC.VP60"="vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\WINDOWS\System32\vp6vfw.dll O52 - TDSD: \Drivers32\"VIDC.VP61"="vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\WINDOWS\System32\vp6vfw.dll O52 - TDSD: \Drivers32\"VIDC.VP62"="vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\WINDOWS\System32\vp6vfw.dll O52 - TDSD: \Drivers32\"VIDC.VP70"="vp7vfw.dll" . (.On2.com - VP70 VIDEO FOR WINDOWS CODEC.) -- C:\WINDOWS\System32\vp7vfw.dll O52 - TDSD: \Drivers32\"VIDC.VP31"="vp31vfw.dll" . (.On2.com - On2_VP3.) -- C:\WINDOWS\System32\vp31vfw.dll O52 - TDSD: \Drivers32\"msacm.ac3acm"="ac3acm.acm" . (.fccHandler - AC-3 ACM Decompressor.) -- C:\WINDOWS\System32\ac3acm.acm O52 - TDSD: \Drivers32\"msacm.enc"="ITIG726.acm" . (.Ingenient Technologies, Inc. - Ingenient Technologies, Inc. G.726 CODEC.) -- C:\WINDOWS\System32\ITIG726.acm O52 - TDSD: \Drivers32\"VIDC.HFYU"="huffyuv.dll" . (.Disappearing Inc. - Huffyuv lossless video codec.) -- C:\WINDOWS\System32\huffyuv.dll O52 - TDSD: \Drivers32\"msacm.dvacm"="dvacm.acm" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\dvacm.acm O52 - TDSD: \Drivers32\"VIDC.MJPG"="Pvmjpg30.dll" . (.Pegasus Imaging Corporation - PICVideo M-JPEG 3 codec.) -- C:\WINDOWS\System32\Pvmjpg30.dll O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \drivers.desc\"divx.dll"="DivX Pro CE 5.1.1" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"xvidvfw.dll"="XviD MPEG-4 Video Codec v1.0.3" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"lameACM.acm"="Lame ACM MP3 CODEC v3.96" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"3ivxVfWCodec.dll"="3ivx D4 4.5.1 Pro" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"vp6vfw.dll"="On2 VP6 codec" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\WINDOWS\System32\vp6vfw.dll O52 - TDSD: \drivers.desc\"vp7vfw.dll"="On2 VP7 codec" . (.On2.com - VP70 VIDEO FOR WINDOWS CODEC.) -- C:\WINDOWS\System32\vp7vfw.dll O52 - TDSD: \drivers.desc\"vp31vfw.dll"="On2 VP3 codec" . (.On2.com - On2_VP3.) -- C:\WINDOWS\System32\vp31vfw.dll O52 - TDSD: \drivers.desc\"ac3acm.acm"="AC3 ACM Decompressor" . (.fccHandler - AC-3 ACM Decompressor.) -- C:\WINDOWS\System32\ac3acm.acm O52 - TDSD: \drivers.desc\"ITIG726.acm"="ITI G.726 Audio Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"ir32_32.dll"="Indeo® video R3.2 by Intel" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"ir41_32.ax"="Indeo® video interactive R4.3 by Intel" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"iyvu9_32.dll"="Indeo® video Raw YVU9 by Intel" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\iyvu9_32.dll O52 - TDSD: \drivers.desc\"huffyuv.dll"="Huffyuv lossless codec" . (.Disappearing Inc. - Huffyuv lossless video codec.) -- C:\WINDOWS\System32\huffyuv.dll O52 - TDSD: \drivers.desc\"pvmjpg30.dll"="PICVideo 3 M-JPEG VfW Codec" . (.Pegasus Imaging Corporation - PICVideo M-JPEG 3 codec.) -- C:\WINDOWS\System32\pvmjpg30.dll O52 - TDSD: \drivers.desc\"vdrcodec.dll"="Pinnacle Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.) ---\\ ShareTools MSconfig StartupReg (O53) O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe O53 - SMSR:HKLM\...\startupreg\Adobe Photo Downloader [Key] . (.Adobe Systems Incorporated - Adobe Photo Downloader 3.0 component.) -- C:\Program Files\Adobe\Photoshop Elements 5.0\apdproxy.exe O53 - SMSR:HKLM\...\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} [Key] . (.Nero AG - Nero Home.) -- C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe O53 - SMSR:HKLM\...\startupreg\ctfmon.exe [Key] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O53 - SMSR:HKLM\...\startupreg\Google Update [Key] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Google\Update\GoogleUpdate.exe O53 - SMSR:HKLM\...\startupreg\IncrediMail [Key] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\bin\IncMail.exe O53 - SMSR:HKLM\...\startupreg\LDM [Key] . (.Logitech Inc. - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O53 - SMSR:HKLM\...\startupreg\msnmsgr [Key] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\PROGRA~1\WI1F86~1\MESSEN~1\MsnMsgr.exe O53 - SMSR:HKLM\...\startupreg\swg [Key] . (...) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\updateMgr [Key] . (...) -- C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\YeppStudioAgent [Key] . (...) -- C:\Program Files\Samsung\Samsung Media Studio\SamsungMediaStudioAgent.exe (.not file.) ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=255 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoRecentDocsMenu"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoCDBurning"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoStartBanner"= O56 - MWPE:[HKCU\...\policies\Explorer] - "MemCheckBoxInRunDlg"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoSMBalloonTip"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDesktopCleanupWizard"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoWelcomeScreen"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoAutoUpdate"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "WizmaxBackup_NoDriveTypeAutoRun"=145 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoSMHelp"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoCDBurning"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.8D488938E2F7048906F1FBD3AF394887] - 07/09/2010 - 15:46:51 ---A- . (.AVAST Software - avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP.) -- C:\WINDOWS\system32\drivers\aavmker4.sys [28880] O58 - SDL:[MD5.875F9079CABEE679D34B49E466B61701] - 17/04/2002 - 20:27:02 ---A- . (.VOB Computersysteme GmbH - ASAPI.) -- C:\WINDOWS\system32\drivers\asapiW2k.sys [11264] O58 - SDL:[MD5.A0D86B8AC93EF95620420C7A24AC5344] - 07/09/2010 - 15:47:07 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys [17744] O58 - SDL:[MD5.570158B3B6FABC239992B42F5D23E5DF] - 07/09/2010 - 15:47:16 ---A- . (.AVAST Software - avast! File System Filter Driver for Windows NT/2000.) -- C:\WINDOWS\system32\drivers\aswmon.sys [94544] O58 - SDL:[MD5.7D880C76A285A41284D862E2D798EC0D] - 07/09/2010 - 15:47:19 ---A- . (.AVAST Software - avast! File System Filter Driver for Windows XP.) -- C:\WINDOWS\system32\drivers\aswmon2.sys [100176] O58 - SDL:[MD5.69823954BBD461A73D69774928C9737E] - 07/09/2010 - 15:47:46 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\WINDOWS\system32\drivers\aswRdr.sys [23376] O58 - SDL:[MD5.7ECC2776638B04553F9A85BD684C3ABF] - 07/09/2010 - 15:52:03 ---A- . (.AVAST Software - avast! self protection module.) -- C:\WINDOWS\system32\drivers\aswSP.sys [165584] O58 - SDL:[MD5.095ED820A926AA8189180B305E1BCFC9] - 07/09/2010 - 15:52:25 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\WINDOWS\system32\drivers\aswTdi.sys [46672] O58 - SDL:[MD5.9BBEFCE3D18CF3C6EAF4F13920F75200] - 25/01/2006 - 04:52:31 ---A- . (.ATI Technologies Inc. - ATI Radeon WindowsNT Miniport Driver.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys [1478656] O58 - SDL:[MD5.A5E4E3C6831F5DB850120C7EB67B9AA5] - 17/07/2007 - 08:12:54 ---A- . (.AVerMedia TECHNOLOGIES, Inc. - AVerMedia Hybrid TV Driver.) -- C:\WINDOWS\system32\drivers\AVerFx2hbtv.sys [199552] O58 - SDL:[MD5.351735695E9EAD93DE6AF85D8BEB1CA8] - 08/03/2004 - 11:55:50 ---A- . (.B.H.A Corporation - CD-ROM Filter Driver for Windows2000/xp.) -- C:\WINDOWS\system32\drivers\CDRBSDRV.SYS [13567] O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 26/07/2005 - 12:59:55 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528] O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 26/07/2005 - 12:59:55 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776] O58 - SDL:[MD5.4EF3F74439AA644BCD8DDC0ED88A5D01] - 17/07/2009 - 15:23:46 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 USB Wireless Adapter Driver.) -- C:\WINDOWS\system32\drivers\Dr71WU.sys [476544] O58 - SDL:[MD5.E9648254056BCE81A85380C0C3647DC4] - 26/07/2005 - 14:43:26 ---A- . (.VIA Technologies, Inc. - NDIS 5.0 miniport driver.) -- C:\WINDOWS\system32\drivers\fetnd5.sys [27165] O58 - SDL:[MD5.E7072827D0B5F9BD99D6961571A38973] - 22/09/2008 - 03:41:04 ---A- . (.VIA Technologies, Inc. - NDIS 5.0 miniport driver.) -- C:\WINDOWS\system32\drivers\fetnd5bv.sys [43520] O58 - SDL:[MD5.4AC51459805264AFFD5F6FDFB9D9235F] - 19/09/2006 - 14:44:04 ---A- . (.GEAR Software Inc. - CD/DVD Class Filter Driver.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys [15664] O58 - SDL:[MD5.863CC3A82C63C9F60ACF2E85D5310620] - 09/03/2003 - 05:31:00 ---A- . (.HP - IEEE-1284.4-1999 Driver (Windows 2000).) -- C:\WINDOWS\system32\drivers\hpzid412.sys [51024] O58 - SDL:[MD5.08CB72E95DD75B61F2966B311D0E4366] - 09/03/2003 - 05:31:02 ---A- . (.HP - IEEE-1284.4-1999 Print Class Driver.) -- C:\WINDOWS\system32\drivers\HPZipr12.sys [16080] O58 - SDL:[MD5.CA990306ED4EF732AF9695BFF24FC96F] - 09/03/2003 - 05:31:02 ---A- . (.HP - 1284.4<->Usb Datalink Driver (Windows 2000).) -- C:\WINDOWS\system32\drivers\HPZius12.sys [21456] O58 - SDL:[MD5.25EDD75E23C5EF6B33D0FBCCE125A601] - 15/08/2005 - 11:08:26 ---A- . (.Ahead Software AG - NERO IMAGEDRIVE SCSI miniport.) -- C:\WINDOWS\system32\drivers\imagedrv.sys [5888] O58 - SDL:[MD5.9C4BBACF4E9B9543C3CE23F1FE556941] - 15/08/2005 - 11:08:26 ---A- . (.Ahead Software AG - Nero Image Server.) -- C:\WINDOWS\system32\drivers\imagesrv.sys [127488] O58 - SDL:[MD5.032B0247CABF54094CA7819D14E8036D] - 08/06/2004 - 12:36:28 ---A- . (.Logitech, Inc. - Logitech PS2 Keyboard Filter Driver..) -- C:\WINDOWS\system32\drivers\L8042Kbd.sys [13105] O58 - SDL:[MD5.4BEFD29994327E606C93CC82B208F771] - 08/06/2004 - 12:35:18 ---A- . (.Logitech, Inc. - Logitech PS/2 Mouse Filter Driver..) -- C:\WINDOWS\system32\drivers\L8042mou.Sys [54817] O58 - SDL:[MD5.4477689E2D8AE6B78BA34C9AF4CC1ED1] - 17/09/2010 - 14:39:58 ---A- . (.LogMeIn, Inc. - LogMeIn Mirror Miniport Driver.) -- C:\WINDOWS\system32\drivers\lmimirr.sys [10144] O58 - SDL:[MD5.3FAA563DDF853320F90259D455A01D79] - 17/09/2010 - 14:40:06 ---A- . (.LogMeIn, Inc. - LogMeIn Rfs Drivemap Driver.) -- C:\WINDOWS\system32\drivers\LMIRfsDriver.sys [47640] O58 - SDL:[MD5.98E6DC123F52780A6B03CF9747CB1FC7] - 08/06/2004 - 12:35:08 ---A- . (.Logitech, Inc. - Logitech Filter Driver for Mouse Class..) -- C:\WINDOWS\system32\drivers\LMouKE.Sys [71533] O58 - SDL:[MD5.A5D52C11EFF8B133432D98B2C2A4AEE6] - 21/05/2004 - 20:16:14 R--A- . (...) -- C:\WINDOWS\system32\drivers\lvcm.sys [471232] O58 - SDL:[MD5.65994B84DD34E2B8FE2CBE4A077FA2F1] - 21/05/2004 - 20:15:31 R--A- . (...) -- C:\WINDOWS\system32\drivers\LVUSBSta.sys [19968] O58 - SDL:[MD5.A3E700D78EEC390F1208098CDCA5C6B6] - 04/01/2007 - 09:07:00 ---A- . (.Pinnacle Systems GmbH - Pinnacle Marvin Discrete Bus Enumerator.) -- C:\WINDOWS\system32\drivers\MarvinBus.sys [171520] O58 - SDL:[MD5.67B48A903430C6D4FB58CBACA1866601] - 29/04/2010 - 14:39:26 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys [20952] O58 - SDL:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 29/04/2010 - 14:39:38 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys [38224] O58 - SDL:[MD5.BEE76AC58BB524523A84000BA8EFE55A] - 26/05/2004 - 14:54:02 ---A- . (.Meetinghouse Data Communications - IEEE 802.1X Protocol Driver.) -- C:\WINDOWS\system32\drivers\mdc8021x.sys [15781] O58 - SDL:[MD5.C53775780148884AC87C455489A0C070] - 26/07/2005 - 14:44:02 ---A- . (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\drivers\mtlmnt5.sys [126686] O58 - SDL:[MD5.54886A652BF5685192141DF304E923FD] - 26/07/2005 - 14:44:04 ---A- . (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\drivers\mtlstrm.sys [1309184] O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 26/07/2005 - 12:59:55 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032] O58 - SDL:[MD5.F5B1200C75B160C81E7E48CC0489AA5E] - 29/05/2006 - 07:26:38 ---A- . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\WINDOWS\system32\drivers\nmwcd.sys [127488] O58 - SDL:[MD5.5ABB6B2461C4EB0AFDF1BF7F03963D59] - 29/05/2006 - 07:26:36 ---A- . (.Nokia - Nokia USB Phone Generic Client.) -- C:\WINDOWS\system32\drivers\nmwcdc.sys [8704] O58 - SDL:[MD5.353C16D21EEC1F11306270040B3713C1] - 29/05/2006 - 07:26:36 ---A- . (.Nokia - Nokia USB Phone Modem Client.) -- C:\WINDOWS\system32\drivers\nmwcdcj.sys [13312] O58 - SDL:[MD5.353C16D21EEC1F11306270040B3713C1] - 29/05/2006 - 07:26:36 ---A- . (.Nokia - Nokia USB Phone Modem Client.) -- C:\WINDOWS\system32\drivers\nmwcdcm.sys [13312] O58 - SDL:[MD5.576B34CEAE5B7E5D9FD2775E93B3DB53] - 26/07/2005 - 14:44:02 ---A- . (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\drivers\ntmtlfax.sys [180360] O58 - SDL:[MD5.1BEBE7DE8508A02650CDCE45C664C2A2] - 09/02/2005 - 11:59:00 ---A- . (.Pinnacle Systems GmbH - PCLEPCI.) -- C:\WINDOWS\system32\drivers\Pclepci.sys [14165] O58 - SDL:[MD5.ED2E7F396B4098608C95BC3806BDF6FC] - 01/10/2002 - 09:22:32 ---A- . (.Padus, Inc. - Padus® ASPI Shell.) -- C:\WINDOWS\system32\drivers\pfc.sys [9856] O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 02/10/2001 - 17:17:04 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792] O58 - SDL:[MD5.E9AAA0092D74A9D371659C4C38882E12] - 26/07/2005 - 14:44:02 ---A- . (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\drivers\RecAgent.sys [13776] O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 26/07/2005 - 12:59:55 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032] O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 26/07/2005 - 12:59:55 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032] O58 - SDL:[MD5.0F82A97056EA208183C0085589F83050] - 07/05/2004 - 13:47:10 ---A- . (.Ralink Technology Inc. - Sample Driver for Ralink 802.11g Wireless USB Adapters.) -- C:\WINDOWS\system32\drivers\rt2571.sys [79616] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/04/2008 - 08:39:16 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.00DE597B81B381053CB5B21A7F20E365] - 03/03/2005 - 18:53:57 ---A- . (.Protection Technology - StarForce Protection Environment Driver.) -- C:\WINDOWS\system32\drivers\sfdrv01.sys [48640] O58 - SDL:[MD5.64B9AB76F1B16EB059CB6CDD906C067A] - 23/02/2005 - 16:59:54 ---A- . (.Protection Technology - StarForce Protection Helper Driver.) -- C:\WINDOWS\system32\drivers\sfhlp02.sys [6656] O58 - SDL:[MD5.798D918D8F20380008277CE3CE5319D1] - 03/12/2004 - 11:20:41 ---A- . (.Protection Technology - StarForce Protection Synchronization Driver.) -- C:\WINDOWS\system32\drivers\sfsync02.sys [20544] O58 - SDL:[MD5.2C1779C0FEB1F4A6033600305EBA623A] - 26/07/2005 - 14:44:02 ---A- . (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\drivers\slntamr.sys [404990] O58 - SDL:[MD5.F9B8E30E82EE95CF3E1D3E495599B99C] - 26/07/2005 - 14:44:02 ---A- . (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\drivers\slnthal.sys [95424] O58 - SDL:[MD5.DB56BB2C55723815CF549D7FC50CFCEB] - 26/07/2005 - 14:44:06 ---A- . (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\drivers\slwdmsup.sys [13240] O58 - SDL:[MD5.E78CD3BB53A208DFAB8FC826384307E0] - 05/11/2001 - 08:23:14 ---A- . (.Sony Corporation - sonyhcb.sys.) -- C:\WINDOWS\system32\drivers\sonyhcb.sys [6097] O58 - SDL:[MD5.55E48017295F26BA266F935DA49C59A4] - 05/11/2001 - 08:23:20 ---A- . (.Sony Corporation - sonyhcc.sys.) -- C:\WINDOWS\system32\drivers\sonyhcc.sys [38739] O58 - SDL:[MD5.610F515FCD95D37F3252E1C250EF8C61] - 05/11/2001 - 08:23:52 ---A- . (.Sony Corporation - sonyhcs.sys.) -- C:\WINDOWS\system32\drivers\sonyhcs.sys [299923] O58 - SDL:[MD5.DFADFC2C86662F40759BF02ADD27D569] - 15/10/2002 - 21:41:06 ---A- . (.Sony Corporation - Sony Digital Imaging.) -- C:\WINDOWS\system32\drivers\sonypvs1.sys [102220] O58 - SDL:[MD5.A1ECEEAA5C5E74B2499EB51D38185B84] - 26/07/2005 - 12:43:44 ---A- . (.Sony Corporation - Sony USB Lower Filter driver.) -- C:\WINDOWS\system32\drivers\SONYPVU1.SYS [7552] O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 26/07/2005 - 12:59:55 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376] O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 26/07/2005 - 12:59:55 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112] O58 - SDL:[MD5.A1ABFF7B96BE4CBE5E902FEFFB9125D9] - 01/11/2004 - 15:19:00 ---A- . (.VIA Technologies, Inc. - Vinyl AC'97 Codec Combo WDM Driver.) -- C:\WINDOWS\system32\drivers\vinyl97.sys [163712] O58 - SDL:[MD5.9695E4A37E61355F2EB9C7EA65502738] - 01/08/2003 - 14:47:24 ---A- . (.Pinnacle Systems - InstantDrive.) -- C:\WINDOWS\system32\drivers\vobid.sys [29239] O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 02/10/2001 - 17:15:52 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/10/2001 - 17:15:58 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097] O58 - SDL:[MD5.FC80052194D5708254A346568F0E77C0] - 25/09/2003 - 22:15:32 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) -- C:\WINDOWS\system32\GTNDIS5.sys [15872] O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 02/10/2001 - 17:16:28 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4912] O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 02/10/2001 - 17:16:34 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 03/08/2004 - 21:46:56 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537] O58 - SDL:[MD5.CCEE1200F915817C00ECFD7FA0EF1200] - 22/06/2011 - 00:00:00 -SHA- . (...) -- C:\WINDOWS\system32\mmf.sys [593] O58 - SDL:[MD5.9131FE60ADFAB595C8DA53AD6A06AA31] - 01/01/2005 - 01:43:08 ---A- . (.INCA Internet Co., Ltd. - nProtect NPSC Kernel Mode Driver for NT.) -- C:\WINDOWS\system32\npptNT2.sys [4682] O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 02/10/2001 - 17:16:50 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27916] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/10/2001 - 17:16:50 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/10/2001 - 17:16:50 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/10/2001 - 17:16:50 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/10/2001 - 17:16:50 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146] O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 03/08/2004 - 21:45:26 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [34000] O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 03/08/2004 - 21:45:16 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560] O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 03/08/2004 - 21:45:12 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648] O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 03/08/2004 - 21:45:16 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424] O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 03/08/2004 - 21:45:14 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560] ---\\ Recherche heuristique Magic.control (O59) O59 - HSMI:Heuristic Search MagicControl Infection - C:\windows\pack.epk ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\AAVMKER4.sys - (.not file.) - avast! Asynchronous Virus Monitor (Aavmker4) .(...) - LEGACY_AAVMKER4 O64 - Services: CurCS - C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe - Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) .(...) - LEGACY_ADOBEACTIVEFILEMONITOR5.0 O64 - Services: CurCS - (.not file.) - ANIO Service (ANIO) .(...) - LEGACY_ANIO O64 - Services: CurCS - 06/09/2007 - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe - Apple Mobile Device(Apple Mobile Device) .(.Apple, Inc. - Apple Mobile Device Service.) - LEGACY_APPLE_MOBILE_DEVICE O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWFSBLK.sys - (.not file.) - aswFsBlk (aswFsBlk) .(...) - LEGACY_ASWFSBLK O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWMON2.sys - (.not file.) - avast! Standard Shield Support (aswMon2) .(...) - LEGACY_ASWMON2 O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWRDR.sys - (.not file.) - aswRdr (aswRdr) .(...) - LEGACY_ASWRDR O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWSP.sys - (.not file.) - avast! Self Protection (aswSP) .(...) - LEGACY_ASWSP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWTDI.sys - (.not file.) - avast! Network Shield Support (aswTdi) .(...) - LEGACY_ASWTDI O64 - Services: CurCS - 25/01/2006 - C:\WINDOWS\system32\Ati2evxx.exe - Ati HotKey Poller(Ati HotKey Poller) .(.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - LEGACY_ATI_HOTKEY_POLLER O64 - Services: CurCS - 26/01/2006 - C:\WINDOWS\system32\ati2sgag.exe - ATI Smart(ATI Smart) .(.Pas de propriétaire - ATI Smart.) - LEGACY_ATI_SMART O64 - Services: CurCS - 07/09/2010 - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe - avast! Antivirus(avast! Antivirus) .(.AVAST Software - avast! Service.) - LEGACY_AVAST!_ANTIVIRUS O64 - Services: CurCS - 07/09/2010 - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe - avast! Mail Scanner(avast! Mail Scanner) .(.AVAST Software - avast! Service.) - LEGACY_AVAST!_MAIL_SCANNER O64 - Services: CurCS - 07/09/2010 - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe - avast! Web Scanner(avast! Web Scanner) .(.AVAST Software - avast! Service.) - LEGACY_AVAST!_WEB_SCANNER O64 - Services: CurCS - (.not file.) - AVG7 Alert Manager Server (Avg7Alrt) .(...) - LEGACY_AVG7ALRT O64 - Services: CurCS - (.not file.) - AVG7 Wrap Driver (Avg7RsW) .(...) - LEGACY_AVG7RSW O64 - Services: CurCS - (.not file.) - AVG7 Resident Driver XP (Avg7RsXP) .(...) - LEGACY_AVG7RSXP O64 - Services: CurCS - (.not file.) - AVG7 Update Service (Avg7UpdSvc) .(...) - LEGACY_AVG7UPDSVC O64 - Services: CurCS - (.not file.) - AVG7 Clean Driver (AvgClean) .(...) - LEGACY_AVGCLEAN O64 - Services: CurCS - (.not file.) - AVG Free8 Network Redirector (AvgTdiX) .(...) - LEGACY_AVGTDIX O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\BEEP.sys - Beep (Beep) .(...) - LEGACY_BEEP O64 - Services: CurCS - 26/11/2006 - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe - Boonty Games(Boonty Games) .(.BOONTY - System Level Service Utility.) - LEGACY_BOONTY_GAMES O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\CDFS.sys - cdfs (cdfs) .(...) - LEGACY_CDFS O64 - Services: CurCS - (.not file.) - (.not file.) - Application système COM+ (COMSysApp) .(...) - LEGACY_COMSYSAPP O64 - Services: CurCS - (.not file.) - (.not file.) - Lanceur de processus serveur DCOM (DcomLaunch) .(...) - LEGACY_DCOMLAUNCH O64 - Services: CurCS - 13/04/2008 - C:\WINDOWS\System32\dmadmin.exe - Service d'administration du Gestionnaire de disque logique(dmadmin) .(.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - LEGACY_DMADMIN O64 - Services: CurCS - 13/04/2008 - C:\WINDOWS\System32\drivers\dmboot.sys - dmboot(dmboot) .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT O64 - Services: CurCS - 02/10/2001 - C:\WINDOWS\System32\drivers\dmload.sys - dmload(dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD O64 - Services: CurCS - (.not file.) - dump_wmimmc (dump_wmimmc) .(...) - LEGACY_DUMP_WMIMMC O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FASTFAT.sys - fastfat (fastfat) .(...) - LEGACY_FASTFAT O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FIPS.sys - Fips (Fips) .(...) - LEGACY_FIPS O64 - Services: CurCS - (.not file.) - FOPN (FOPN) .(...) - LEGACY_FOPN O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC O64 - Services: CurCS - 03/03/2009 - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe - getPlus® Helper(getPlus® Helper) .(.NOS Microsystems Ltd. - getPlus® Helper.) - LEGACY_GETPLUS®_HELPER O64 - Services: CurCS - 25/09/2003 - C:\WINDOWS\system32\GTNDIS5.sys - GTNDIS5 NDIS Protocol Driver(GTNDIS5) .(.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) - LEGACY_GTNDIS5 O64 - Services: CurCS - 26/09/2007 - C:\Program Files\iPod\bin\iPodService.exe - Service de l'iPod(iPod Service) .(.Apple Inc. - iPodService Module.) - LEGACY_IPOD_SERVICE O64 - Services: CurCS - 02/02/2011 - C:\Program Files\Java\jre6\bin\jqs.exe - Java Quick Starter(JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE O64 - Services: CurCS - (.not file.) - Kl1 (Kl1) .(...) - LEGACY_KL1 O64 - Services: CurCS - (.not file.) - Klif (Klif) .(...) - LEGACY_KLIF O64 - Services: CurCS - (.not file.) - Klmc (Klmc) .(...) - LEGACY_KLMC O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\KSECDD.sys - ksecdd (ksecdd) .(...) - LEGACY_KSECDD O64 - Services: CurCS - C:\WINDOWS\runservice.exe - LicCtrl Service (LicCtrlService) .(...) - LEGACY_LICCTRLSERVICE O64 - Services: CurCS - 01/03/2011 - C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe - LMIGuardianSvc(LMIGuardianSvc) .(.LogMeIn, Inc. - LMIGuardianSvc.) - LEGACY_LMIGUARDIANSVC O64 - Services: CurCS - 17/09/2010 - C:\Program Files\LogMeIn\x86\RaInfo.sys - LogMeIn Kernel Information Provider(LMIInfo) .(.LogMeIn, Inc. - RemotelyAnywhere Kernel Information Provide.) - LEGACY_LMIINFO O64 - Services: CurCS - 01/03/2011 - C:\Program Files\LogMeIn\x86\RaMaint.exe - LogMeIn Maintenance Service(LMIMaint) .(.LogMeIn, Inc. - LogMeIn Maintenance Service.) - LEGACY_LMIMAINT O64 - Services: CurCS - (.not file.) - (.not file.) - LMIRfsClientNP (LMIRfsClientNP) .(...) - LEGACY_LMIRFSCLIENTNP O64 - Services: CurCS - 17/09/2010 - C:\WINDOWS\system32\drivers\LMIRfsDriver.sys - LogMeIn Remote File System Driver(LMIRfsDriver) .(.LogMeIn, Inc. - LogMeIn Rfs Drivemap Driver.) - LEGACY_LMIRFSDRIVER O64 - Services: CurCS - 08/11/2010 - C:\Program Files\LogMeIn\x86\LogMeIn.exe - LogMeIn(LogMeIn) .(.LogMeIn, Inc. - LogMeIn.) - LEGACY_LOGMEIN O64 - Services: CurCS - (.not file.) - mbr (mbr) .(...) - LEGACY_MBR O64 - Services: CurCS - 26/05/2004 - C:\WINDOWS\System32\DRIVERS\mdc8021x.sys - AEGIS Protocol (IEEE 802.1x) v2.3.0.0(MDC8021X) .(.Meetinghouse Data Communications - IEEE 802.1X Protocol Driver.) - LEGACY_MDC8021X O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MNMDD.sys - mnmdd (mnmdd) .(...) - LEGACY_MNMDD O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MOUNTMGR.sys - (.not file.) - mountmgr (mountmgr) .(...) - LEGACY_MOUNTMGR O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS O64 - Services: CurCS - 26/07/2005 - C:\WINDOWS\System32\DRIVERS\Mtlstrm.sys - Mtlstrm(Mtlstrm) .(.Smart Link - Pas de description.) - LEGACY_MTLSTRM O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MUP.sys - (.not file.) - Mup (Mup) .(...) - LEGACY_MUP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDIS.sys - (.not file.) - Pilote système NDIS (NDIS) .(...) - LEGACY_NDIS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NTFS.sys - ntfs (ntfs) .(...) - LEGACY_NTFS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARTMGR.sys - (.not file.) - PartMgr (PartMgr) .(...) - LEGACY_PARTMGR O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARVDM.sys - ParVdm (ParVdm) .(...) - LEGACY_PARVDM O64 - Services: CurCS - 09/02/2005 - C:\WINDOWS\system32\drivers\pclepci.sys - PCLEPCI(PCLEPCI) .(.Pinnacle Systems GmbH - PCLEPCI.) - LEGACY_PCLEPCI O64 - Services: CurCS - 09/03/2003 - C:\WINDOWS\system32\HPZipm12.exe - Pml Driver HPZ12(Pml Driver HPZ12) .(.HP - PML Driver.) - LEGACY_PML_DRIVER_HPZ12 O64 - Services: CurCS - C:\Program Files\Wireless 802.11g Monitor\WLService.exe - R54G Wireless Service (R54G Wireless Service) .(...) - LEGACY_R54G_WIRELESS_SERVICE O64 - Services: CurCS - (.not file.) - RDPNP (RDPNP) .(...) - LEGACY_RDPNP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\RDPWD.sys - RDPWD (RDPWD) .(...) - LEGACY_RDPWD O64 - Services: CurCS - 26/07/2005 - C:\WINDOWS\System32\DRIVERS\RecAgent.sys - RecAgent(RecAgent) .(.Smart Link - Pas de description.) - LEGACY_RECAGENT O64 - Services: CurCS - 19/12/2006 - C:\Program Files\CyberLink\Shared Files\RichVideo.exe - Cyberlink RichVideo Service(CRVS)(RichVideo) .(.Pas de propriétaire - RichVideo Module.) - LEGACY_RICHVIDEO O64 - Services: CurCS - (.not file.) - (.not file.) - Appel de procédure distante (RPC) (RpcSs) .(...) - LEGACY_RPCSS O64 - Services: CurCS - 13/04/2008 - C:\WINDOWS\System32\DRIVERS\secdrv.sys - Secdrv(Secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV O64 - Services: CurCS - 05/06/2006 - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe - ServiceLayer(ServiceLayer) .(.Nokia. - ServiceLayer Module.) - LEGACY_SERVICELAYER O64 - Services: CurCS - 03/03/2005 - C:\WINDOWS\System32\drivers\sfdrv01.sys - StarForce Protection Environment Driver (version 1.x)(sfdrv01) .(.Protection Technology - StarForce Protection Environment Driver.) - LEGACY_SFDRV01 O64 - Services: CurCS - 23/02/2005 - C:\WINDOWS\System32\drivers\sfhlp02.sys - StarForce Protection Helper Driver (version 2.x)(sfhlp02) .(.Protection Technology - StarForce Protection Helper Driver.) - LEGACY_SFHLP02 O64 - Services: CurCS - 03/12/2004 - C:\WINDOWS\System32\drivers\sfsync02.sys - StarForce Protection Synchronization Driver (version 2.x)(sfsync02) .(.Protection Technology - StarForce Protection Synchronization Driver.) - LEGACY_SFSYNC02 O64 - Services: CurCS - 26/07/2005 - C:\WINDOWS\System32\DRIVERS\Slnthal.sys - SlNtHal(SlNtHal) .(.Smart Link - Pas de description.) - LEGACY_SLNTHAL O64 - Services: CurCS - 13/04/2008 - C:\Windows\System32\slserv.exe - SmartLinkService(SLService) .(.Smart Link - Pas de description.) - LEGACY_SLSERVICE O64 - Services: CurCS - 26/07/2005 - C:\WINDOWS\System32\DRIVERS\SlWdmSup.sys - SlWdmSup(SlWdmSup) .(.Smart Link - Pas de description.) - LEGACY_SLWDMSUP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\TDTCP.sys - TDTCP (TDTCP) .(...) - LEGACY_TDTCP O64 - Services: CurCS - (.not file.) - (.not file.) - Services Terminal Server (TermService) .(...) - LEGACY_TERMSERVICE O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\UDFS.sys - Udfs (Udfs) .(...) - LEGACY_UDFS O64 - Services: CurCS - 26/02/2004 - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe - Ulead Burning Helper(UleadBurningHelper) .(.Ulead Systems, Inc. - ULCDRSvr.) - LEGACY_ULEADBURNINGHELPER O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VGA.sys - vga (vga) .(...) - LEGACY_VGA O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VOLSNAP.sys - VolSnap (VolSnap) .(...) - LEGACY_VOLSNAP O64 - Services: CurCS - (.not file.) - vspf (vspf) .(...) - LEGACY_VSPF O64 - Services: CurCS - (.not file.) - vspf_hk (vspf_hk) .(...) - LEGACY_VSPF_HK O64 - Services: CurCS - 06/02/2004 - C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe - WUSB54GSSVC(WUSB54GSSVC) .(.GEMTEKS - WLService.) - LEGACY_WUSB54GSSVC O64 - Services: CurCS - (.not file.) - {516A25F8-8EEC-41A6-B03D1A5FF44DE5B1} ({516A25F8-8EEC-41A6-B03D1A5FF44DE5B1}) .(...) - LEGACY_{516A25F8-8EEC-41A6-B03D1A5FF44DE5B1} O64 - Services: CurCS - (.not file.) - {71EF103A-F789-4C2A-B6A7DDD614BD472F} ({71EF103A-F789-4C2A-B6A7DDD614BD472F}) .(...) - LEGACY_{71EF103A-F789-4C2A-B6A7DDD614BD472F} O64 - Services: CurCS - (.not file.) - {DF1667E1-31BB-4994-B94BF57DEDDFD6C7} ({DF1667E1-31BB-4994-B94BF57DEDDFD6C7}) .(...) - LEGACY_{DF1667E1-31BB-4994-B94BF57DEDDFD6C7} ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Google\Chrome\Application\chrome.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <chrome.exe> <>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} - (MyStart Search) - http://mystart.incredimail.com ---\\ Scan Additionnel (O88) Database Version : 8441 - (06/06/2011) Clés trouvées (Keys found) : 36 Valeurs trouvées (Values found) : 2 Dossiers trouvés (Folders found) : 7 Fichiers trouvés (Files found) : 0 [HKCU\Software\microsoft\SystemCertificates\TrustedPublisher\Certificates\62119ef862c6b3a0d853419b87eb3e2f6c78640a] =>Adware.Navipromo [HKCU\Software\microsoft\SystemCertificates\TrustedPublisher\Certificates\7ee743314c844c7f445b8b1d7617612df1fdd50f] =>Adware.Navipromo [HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine] =>Toolbar.Conduit [HKLM\Software\Classes\Conduit.Engine] =>Toolbar.Conduit [HKLM\Software\Classes\Toolbar.CT2724386] =>Toolbar.Agent [HKLM\Software\Classes\WlcUI.DialerWindow] =>Trojan.Lop [HKLM\Software\Classes\WlcUI.DialerWindow.1] =>Trojan.Lop [HKLM\Software\Classes\WlcUI.PhoneNumber] =>Trojan.Lop [HKLM\Software\Classes\WlcUI.PhoneNumber.1] =>Trojan.Lop [HKCR\CLSID\{0101014E-D958-4d10-82A1-9195E2220B66}] =>Trojan.Nethell [HKLM\Software\Classes\CLSID\{0101014E-D958-4d10-82A1-9195E2220B66}] =>Trojan.Nethell [HKCR\CLSID\{1a03f196-9617-4ca0-842b-a83ceecb022b}] =>Toolbar.SweetIM [HKLM\Software\Classes\CLSID\{1a03f196-9617-4ca0-842b-a83ceecb022b}] =>Toolbar.SweetIM [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{293A63F7-C3B6-423A-9845-901AC0A7EE6E}] =>PUP.Eorezo [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{293A63F7-C3B6-423A-9845-901AC0A7EE6E}] =>PUP.Eorezo [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit [HKCR\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit [HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit [HKLM\Software\Classes\Interface\{33733BAF-6BFE-4F83-9A89-69B2C49CF843}] =>Adware.SearchIt [HKCR\TypeLib\{534E82CE-8042-4f98-ACD8-A3858BCBED0F}] =>Trojan.Agent [HKLM\Software\Classes\TypeLib\{534E82CE-8042-4f98-ACD8-A3858BCBED0F}] =>Trojan.Agent [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}] =>Toolbar.MediaBar [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}] =>Toolbar.MediaBar [HKCR\CLSID\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}] =>Toolbar.MediaBar [HKLM\Software\Classes\CLSID\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}] =>Toolbar.MediaBar [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}] =>Toolbar.MediaBar [HKCU\Software\Conduit] =>Toolbar.Conduit [HKLM\Software\Conduit] =>Toolbar.Conduit [HKCU\Software\conduitEngine] =>Toolbar.Conduit [HKLM\Software\conduitEngine] =>Toolbar.Conduit [HKCU\Software\LanConfig] =>Adware.Navipromo [HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Toolbar] =>Toolbar.Conduit [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine] =>Toolbar.Conduit [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IncrediMail_MediaBar_2 Toolbar] =>Toolbar.Conduit [HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{30F9B915-B755-4826-820B-08FBA6BD249D} =>Toolbar.Conduit [HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{30F9B915-B755-4826-820B-08FBA6BD249D} =>Toolbar.Conduit C:\Program Files\Conduit =>Toolbar.Conduit C:\Program Files\ConduitEngine =>Toolbar.Conduit C:\Program Files\IncrediMail_MediaBar_2 =>Toolbar.Conduit C:\Documents and Settings\ROCHE Jean-Louis\Application Data\Desktopicon =>Adware.ADON C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\Conduit =>Toolbar.Conduit C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\ConduitEngine =>Toolbar.Conduit C:\Documents and Settings\ROCHE Jean-Louis\Local Settings\Application Data\IncrediMail_MediaBar_2 =>Toolbar.Conduit ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 14/09/2006 102400 | (AdobeActiveFileMonitor5.0) . (...) - C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe SR - | Auto 06/09/2007 110592 | (Apple Mobile Device) . (.Apple, Inc..) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe SR - | Auto 25/01/2006 405504 | (Ati HotKey Poller) . (.ATI Technologies Inc..) - C:\WINDOWS\system32\Ati2evxx.exe SS - | Auto 26/01/2006 520192 | (ATI Smart) . (...) - C:\WINDOWS\system32\ati2sgag.exe SR - | Auto 07/09/2010 40384 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe SR - | Demand 07/09/2010 40384 | (avast! Mail Scanner) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe SR - | Demand 07/09/2010 40384 | (avast! Web Scanner) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe SS - | Demand 26/11/2006 69120 | (Boonty Games) . (.BOONTY.) - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe SS - | Demand 13/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe SS - | Demand 03/03/2009 33176 | (getPlus® Helper) . (.NOS Microsystems Ltd..) - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe SS - | Demand 08/02/2011 136120 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe SR - | Demand 26/09/2007 503608 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SR - | Auto 02/02/2011 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe SR - | Auto 04/07/2007 2560 | (LicCtrlService) . (...) - C:\WINDOWS\runservice.exe SR - | Auto 01/03/2011 374152 | (LMIGuardianSvc) . (.LogMeIn, Inc..) - C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe SS - | Disabled 01/03/2011 136584 | (LMIMaint) . (.LogMeIn, Inc..) - C:\Program Files\LogMeIn\x86\RaMaint.exe SS - | Disabled 08/11/2010 390528 | (LogMeIn) . (.LogMeIn, Inc..) - C:\Program Files\LogMeIn\x86\LogMeIn.exe SS - | Demand 09/03/2003 65795 | (Pml Driver HPZ12) . (.HP.) - C:\WINDOWS\system32\HPZipm12.exe SR - | Auto 29/03/2004 49152 | (R54G Wireless Service) . (...) - C:\Program Files\Wireless 802.11g Monitor\WLService.exe SR - | Auto 19/12/2006 272024 | (RichVideo) . (...) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe SR - | Demand 05/06/2006 174080 | (ServiceLayer) . (.Nokia..) - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe SR - | Auto 13/04/2008 73796 | (SLService) . (.Smart Link.) - C:\Windows\System32\slserv.exe SR - | Auto 26/02/2004 49152 | (UleadBurningHelper) . (.Ulead Systems, Inc..) - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe SR - | Auto 06/02/2004 41025 | (WUSB54GSSVC) . (.GEMTEKS.) - C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by ROCHE Jean-Louis at 23/06/2011 21:50:16 device: opened successfully user: MBR read successfully Disk trace: called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x86277228]<< 1 nt!IofCallDriver[0x804E37D5] -> \Device\Harddisk0\DR0[0x86F89030] 3 CLASSPNP[0xF75EEFD7] -> nt!IofCallDriver[0x804E37D5] -> \Device\0000006e[0x86F60F18] 5 ACPI[0xF7564620] -> nt!IofCallDriver[0x804E37D5] -> \Device\Ide\IdeDeviceP0T0L0-3[0x86FCAD98] kernel: MBR read successfully user != kernel MBR !!! ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by ROCHE Jean-Louis at 23/06/2011 21:50:20 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ---\\ Liste des émulateurs de CD/DVD (Hook du MBR) O58 - SDL:[MD5.875F9079CABEE679D34B49E466B61701] - 17/04/2002 - 20:27:02 ---A- . (.VOB Computersysteme GmbH - ASAPI.) -- C:\WINDOWS\system32\drivers\asapiW2k.sys [11264] End of the scan (1512 lines in 01mn 34s)(0)

Lors de ma dernière connection à Internet Explorer via Alice , j’ai eu un plantage en faisan écran suivant et depuis impossible de me connecter . J’ai systématiquement ce message : La dernière session de navigation s'est fermée inopinément Voulez vous restaurer la dernière session ou atteindre la page de démarrage ? [/b] Si je répond « Restaurer la dernière session « , je suis viré d’Internet et si je répond « Atteindre la page de démarrage » , J’ai le message suivant : L'exception unknown software exception (0xc000000fd) s'est produite dans l'application à l'emplacement 0x05418f76 Cliquer sur OK pour terminer le programme Cliquer sur Annuler pour deboguer le programme Si à ce message , je répond « OK » ou « Annuler « , je suis sorti d’Internet Que dois-je faire pour rétablir Internet ?