Aller au contenu

pit67

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    25

  • Inscription

  • Dernière visite

  • Jours gagnés

    1

 Type de contenu 

Tout ce qui a été posté par pit67

  1. pit67
    voila j ai rendu le pc ...vista une decouverte etrange....merci pour tout resolu
  2. pit67
    j ai sauvé les donnees avant d essayer d installer le pack 2 mais aurais je acer nu ? ou accompagné de vista ?
  3. pit67
    non rien a faire pour installe le pack 2 l agent windows update detecte une erreurs irrecuperable...sans n° si je passe par acer erecovery management et que je restaure le syst aux parametres d usine par defaut ...vista sera t il toujours la ? merci
  4. pit67
    voila j ai essaye d installé le pack 2 avant j ai sauvé tout ce que j ai pu dans un dd externe....cela echoue il manque 1 element code d erreur : ERROR_NOT_FOUND(0x80070490)
  5. pit67
    dois je installé le pack 2 (je l ai telechargé) ou est trop tot ?
  6. pit67
    lol bon voila j ai executer reset.cmd vidé win update
  7. pit67
    heu.... j ai telecharger subinacl executé aussi...rien ne se passe copié le texte dans le bloc note(sans l enregistré car impossible)... j ai lu le tuto ...!! y a rien sur son execution.. de plus je n ai plus aces au panneau de configuration...il est vide sinon en passant par l explorateur j ai pu faire le vide pour windows update
  8. pit67
    je viens de m appercevoir que sans le pack 2 vista plus de maj dois je le telecharger ?
  9. pit67
    non pas de numero juste que windows detecte une erreur grave du programme d installation
  10. pit67
    oups dsl il y a un lien pour au check au debut de votre message mais impossible de trouver le lien de telechargement si voila mais l agent vindows uptade detecte une erreur grave irrecuperable!!!
  11. pit67
    bonjour oui les 2 liste verte je vous ai envoyé les 2 rapports j ai aussi lancé ccleaner et suprimé spybot je n avait pas teatimer
  12. pit67
    bonjour pouvez vous reprendre mon sujet merci
  13. pit67
    avec la deuxieme liste verte toujour pas de redemarrage demandé... Rapport de ZHPFix 1.12.3328 par Nicolas Coolman, Update du 26/06/2011 Fichier d'export Registre : C:\ZHPExportRegistry-26-06-2011-19-12-43.txt Run by mel at 26/06/2011 19:12:43 Windows Vista Home Premium Edition, 64-bit Service Pack 1 (Build 6001) Web site : ZHPFix Fix de rapport ========== Logiciel(s) ========== ABSENT Software Key: Zuma's Revenge!1.0 ABSENT Software Key: {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 ABSENT Software Key: P2P_Torrent Toolbar ========== Clé(s) du Registre ========== ERREUR Key**: HKCU\Software\AppDataLow\Software\P2P_Torrent ABSENT Key: HKLM\Software\P2P_Torrent ERREUR Key**: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4} ========== Valeur(s) du Registre ========== ABSENT RunValue: Application Layer Gateway ABSENT RunValue: eRecoveryService ========== Dossier(s) ========== ABSENT C:\Users\mel\AppData\Roaming\iWin ABSENT C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zuma's Revenge! ABSENT C:\Program Files (x86)\P2P_Torrent ABSENT C:\Program Files (x86)\Zuma's Revenge! ABSENT C:\ProgramData\Spybot - Search & Destroy SUPPRIME Reboot C:\Program Files (x86)\Spybot - Search & Destroy ========== Fichier(s) ========== ABSENT File: c:\program files (x86)\common files\alq.exe ABSENT Folder/File: c:\users\mel\appdata\roaming\iwin ABSENT Folder/File: c:\users\mel\appdata\locallow\p2p_torrent ABSENT Folder/File: c:\program files (x86)\p2p_torrent ABSENT File: c:\users\mel\appdata\roaming\microsoft\windows\start menu\programs\startup\openoffice.org 2.1.lnk ABSENT File: c:\users\mel\desktop\internet - raccourci.lnk ABSENT File: c:\users\mel\appdata\roaming\microsoft\internet explorer\quick launch\spybot - search & destroy.lnk ABSENT File: c:\ad-report-clean[1].txt ========== Tache planifiée ========== SUPPRIME Task: McAfee Cleanup ========== Récapitulatif ========== 3 : Clé(s) du Registre 2 : Valeur(s) du Registre 6 : Dossier(s) 8 : Fichier(s) 3 : Logiciel(s) 1 : Tache planifiée ========== Chemin du fichier rapport ========== C:\Program Files (x86)\ZHPDiag\ZHPFixReport.txt End of the scan
  14. pit67
    Rapport de ZHPFix 1.12.3328 par Nicolas Coolman, Update du 26/06/2011 Fichier d'export Registre : C:\ZHPExportRegistry-26-06-2011-19-02-43.txt Run by mel at 26/06/2011 19:02:43 Windows Vista Home Premium Edition, 64-bit Service Pack 1 (Build 6001) Web site : ZHPFix Fix de rapport ========== Logiciel(s) ========== ABSENT Software Key: Zuma's Revenge!1.0 ABSENT Software Key: {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 ABSENT Software Key: P2P_Torrent Toolbar ========== Clé(s) du Registre ========== ERREUR Key**: HKCU\Software\AppDataLow\Software\P2P_Torrent ABSENT Key: HKLM\Software\P2P_Torrent ERREUR Key**: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4} ========== Valeur(s) du Registre ========== SUPPRIME RunValue: Application Layer Gateway SUPPRIME RunValue: eRecoveryService ========== Dossier(s) ========== SUPPRIME C:\Users\mel\AppData\Roaming\iWin SUPPRIME C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zuma's Revenge! SUPPRIME C:\Program Files (x86)\P2P_Torrent SUPPRIME C:\Program Files (x86)\Zuma's Revenge! SUPPRIME c:\users\mel\appdata\locallow\p2p_torrent ABSENT C:\ProgramData\Spybot - Search & Destroy SUPPRIME Reboot C:\Program Files (x86)\Spybot - Search & Destroy ========== Fichier(s) ========== SUPPRIME c:\program files (x86)\common files\alq.exe ABSENT Folder/File: c:\users\mel\appdata\roaming\iwin ABSENT Folder/File: c:\program files (x86)\p2p_torrent SUPPRIME c:\users\mel\appdata\roaming\microsoft\windows\start menu\programs\startup\openoffice.org 2.1.lnk SUPPRIME c:\users\mel\desktop\internet - raccourci.lnk SUPPRIME c:\users\mel\appdata\roaming\microsoft\internet explorer\quick launch\spybot - search & destroy.lnk SUPPRIME c:\ad-report-clean[1].txt ========== Tache planifiée ========== SUPPRIME Task: McAfee Cleanup ========== Récapitulatif ========== 3 : Clé(s) du Registre 2 : Valeur(s) du Registre 7 : Dossier(s) 7 : Fichier(s) 3 : Logiciel(s) 1 : Tache planifiée ========== Chemin du fichier rapport ========== C:\Program Files (x86)\ZHPDiag\ZHPFixReport.txt End of the scan
  15. pit67
    rebonjour desolé pour les 4 rapports postés je reviens de la fete des ecole de mon garcon.... je suis coince au collage des lignes vertes dans zhpfix je copie bien mais le collage s avere impossible..... si voila mais le pc n a pas redemarre donc j ai copie le rapport a l interieur de zhpfix
  16. pit67
    bonjour, j ai toujours anti blaxx qui s affiche au demarrage et une nouvelle fenetre windows qui me dit qu une modification non autorisée a été apportée a windows toujours aussi une notiction de form1 dans la barre des tache et mam qui me dit par rapport a ca qu il bloque un port 49484 de plus en quarantaine mam je m appercoit qu il y a bcp de clé concernant microsoft/ internet /windows je vous renvoie le rapport demandé hier car l ayant deja posté il n apparait pas dans la suite de notre echange!!! Rapport de ZHPDiag v1.27.2347 par Nicolas Coolman, Update du 25/06/2011 Run by mel at 26/06/2011 00:00:06 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v7.0.6001.18000 (Defaut) GCIE: Google Chrome v12.0.742.100 ---\\ System Information Windows Vista Home Premium Edition, 64-bit Service Pack 1 (Build 6001) Processor: Intel64 Family 6 Model 15 Stepping 13, GenuineIntel Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 3838 MB (46% free) System Restore: Activé (Enable) System drive C: has 286 GB (62%) free of 456 GB ---\\ Logged in mode Computer Name: PC-DE-MEL User Name: mel All Users Names: mel, Administrateur, Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Users\mel\AppData\Roaming %LocalAppData%=C:\Users\mel\AppData\Local %StartMenu%=C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 286 Go of 456 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 454 Go of 460 Go) F:\ CD-ROM drive (Not Inserted) H:\ Floppy drive, Flash card reader, USB Key (Not Inserted) I:\ Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK ---\\ Recherche particulière de fichiers génériques [MD5.F6D765FB6B457542D954682F50C26E4F] - (.Microsoft Corporation - Explorateur Windows.) (.21/01/2008 03:48:44.) -- C:\Windows\Explorer.exe [3080704] [MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 03:48:04.) -- C:\Windows\system32\Wininit.exe [96768] [MD5.618A51B5FB9DD5810960F6044C0E9289] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.27/06/2008 05:15:28.) -- C:\Windows\system32\wininet.dll [827392] [MD5.C2610B6BDBEFC053BBDAB4F1B965CB24] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.21/01/2008 03:50:38.) -- C:\Windows\system32\Winlogon.exe [314880] ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 37/3591 ~ Mes musiques (My Musics) : 23/766 ~ Mes Videos (My Videos) : 17/91 ~ Mes Favoris (My Favorites) : 7/40 ~ Mes Documents (My Documents) : 25/921 ~ Mon Bureau (My Desktop) : 3/260 ~ Menu demarrer (Programs) : 6/33 ~ Dossier utilisateur (AppData) : 58/4137 ---\\ Processus lancés [MD5.1AF1360E070BD8EA402F793EF6FBAAEB] - (.Macrovision Corporation - Macrovision Software Manager.) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe [222128] [MD5.CDF9BA83DB9F47A4A3ABDF614DA4F0CE] - (.Google Inc. - Programme d'installation de Google.) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe [136312] [MD5.89F7C30A91E5581BDF14C62AB46A2B2D] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe [255536] [MD5.F0EA603E7B91046CA48EA4B3593A007D] - (.Micro Application - Pas de description.) -- C:\Program Files (x86)\Micro Application\LauncherMA.exe [485376] [MD5.303EAD15DE8EE43CC874C709BB17BF2E] - (.OpenOffice.org - OpenOffice.org 2.1.) -- C:\Program Files (x86)\OpenOffice.org 2.1\program\soffice.exe [2334720] [MD5.D7EE83A9257D508656172A2B9DD3C317] - (.Pas de propriétaire - NTI Backup Now 5 Tray Module.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe [28672] [MD5.407811B64B588FE80FA2E27E783B41EA] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421160] [MD5.1891EEF1A57520E272AF39A56C9C6CB5] - (.Egis inc. - MSN Hook Loader (32 bit).) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSMSNLoader32.exe [454704] [MD5.12902A626CAE9F362AAE39EF1FC79E87] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Systray\SystrayApp.exe [94208] [MD5.4C6898F15701AE7C41775C14E423FE25] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [3459712] [MD5.E9257AE2500A3C8272B6C32A1329DAA3] - (.France Telecom SA - Pas de description.) -- C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe [90112] [MD5.550E3443C77EDE680C06BB47D9DA276D] - (.OpenOffice.org - OpenOffice.org 2.1.) -- C:\Program Files (x86)\OpenOffice.org 2.1\program\soffice.BIN [2486272] [MD5.AAAC76A931480ADD2C9B251621EB524E] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Launcher\Launcher.exe [598016] [MD5.54ABBCF1C68FAEFF10BCCD254740AE16] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\connectivity\connectivitymanager.exe [716800] [MD5.032F85FBFE612ECC455ABA7474E5914F] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\connectivity\CoreCom\CoreCom.exe [360448] [MD5.987B72E406C172F9F5184F1B4F0CE1BB] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\connectivity\CoreCom\OraConfigRecover.exe [28672] [MD5.167A81D7A06119ABF84042F88EE6F6DF] - (.France Telecom SA - Pas de description.) -- C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe [65536] [MD5.E75D8F09B954FB8EF4B83E4EE9E985F4] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [660992] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) P2 - FPN: [HKCU] [@update.flock.com/Flock Update;version=8] - (.Flock Inc. - Flock Update.) -- C:\Users\mel\AppData\Local\Flock\Update\1.2.213.0\npFlockOneClick8.dll ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\mel\AppData\Local\Google\Chrome\User Data\Default\Preferences G0 - GCSP: Preference [user Data\Default][HomePage] Google G2 - GCE: Preference [user Data\Default] [fheoggkfdfchfphceeifdbepaooicaho] SiteAdvisor v.3.31.137.7 (Activé) ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com R0 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Microsoft Corporation R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) [64Bits] - {08C06D61-F1F3-4799-86F8-BE1A89362C85} . (...) (No version) -- (.not file.) R3 - URLSearchHook: (no name) [64Bits] - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (...) (No version) -- (.not file.) ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll O2 - BHO: McAntiPhishingBHO [64Bits] - {377C180E-6F0E-4D4C-980F-F45BD3D40CF4} . (...) -- c:\PROGRA~2\mcafee\msk\MCAPBH~1.DLL (.not file.) O2 - BHO: ShowBarObj Class [64Bits] - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} . (.Egis - ActiveToolBand Module.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\ActiveToolBand.dll O2 - BHO: (no name) [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} Clé orpheline O2 - BHO: (no name) [64Bits] - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline O2 - BHO: avast! WebRep [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Acer eDataSecurity Management [64Bits] - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} . (.Egis Incorporated. - Acer eDataSecurity Management Explorer Tool.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\eDStoolbar.dll O3 - Toolbar: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] . (...) -- C:\Program Files\Acer\Empowering Technology\SysMonitor.exe O4 - HKLM\..\Run: [EmpoweringTechnology] . (.Pas de propriétaire - Acer Empowering Technology Framework Launch.) -- C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe O4 - HKLM\..\Run: [eDataSecurity Loader] . (.Egis Incorporated - Acer eDataSecurity Management Loader.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\eDSloader.exe O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RAVCpl64.exe O4 - HKLM\..\Run: [skytel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\Windows\Skytel.exe O4 - HKLM\..\Run: [ProductReg] . (.Acer - ProductR Application.) -- C:\Program Files\Acer\WR_PopUp\ProductReg.exe O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [iSUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe O4 - HKCU\..\Run: [Flock Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe O4 - HKCU\..\Run: [VMCL] . (...) -- C:\Program Files (x86)\vodafone\vmclite\DongleEnumerator.exe O4 - HKLM\..\Wow6432Node\Run: [PCMMediaSharing] . (...) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe O4 - HKLM\..\Wow6432Node\Run: [bkupTray] . (.Pas de propriétaire - NTI Backup Now 5 Tray Module.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe O4 - HKLM\..\Wow6432Node\Run: [eRecoveryService] Clé orpheline O4 - HKLM\..\Wow6432Node\Run: [EM_EXEC] . (.Logitech Inc. - Control Center.) -- C:\PROGRA~2\Logitech\MOUSEW~1\SYSTEM\EM_exeC.exe O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe O4 - HKLM\..\Wow6432Node\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe O4 - HKLM\..\Wow6432Node\Run: [Anti-Blaxx Manager] . (.MB-Soft, HAANDI - Pas de description.) -- C:\Program Files (x86)\Anti-Blaxx\Anti-Blaxx.exe O4 - HKLM\..\Wow6432Node\Run: [Application Layer Gateway] . (...) -- C:\Program Files (x86)\Common Files\alq.exe O4 - HKLM\..\Wow6432Node\Run: [systrayORAHSS] . (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Systray\SystrayApp.exe O4 - HKLM\..\Wow6432Node\Run: [ORAHSSSessionManager] . (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\SessionManager\SessionManager.exe O4 - HKLM\..\Wow6432Node\Run: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [iSUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [Flock Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [VMCL] . (...) -- C:\Program Files (x86)\vodafone\vmclite\DongleEnumerator.exe O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk . (.McAfee, Inc..) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lanceur.lnk . (.Micro Application.) -- C:\Program Files (x86)\Micro Application\LauncherMA.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.1.lnk . (...) -- C:\Program Files (x86)\OpenOffice.org 2.1\program\quickstart.exe ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O4 - Global Startup: C:\Users\mel\Desktop\AD-R.lnk . (...) -- C:\Program Files (x86)\Ad-Remover\main.exe O4 - Global Startup: C:\Users\mel\Desktop\DivX Movies.lnk . (...) -- C:\Users\mel\Videos\DivX Movies O4 - Global Startup: C:\Users\mel\Desktop\DVD Shrink 3.2.lnk . (.DVD Shrink.) -- C:\Program Files (x86)\DVD Shrink\DVD Shrink 3.2.exe O4 - Global Startup: C:\Users\mel\Desktop\Internet - Raccourci.lnk - Clé orpheline O4 - Global Startup: C:\Users\mel\Desktop\Jeux - Raccourci.lnk . (...) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O4 - Global Startup: C:\Users\mel\Desktop\Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation.) -- C:\Program Files (x86)\Microsoft Works\MSWorks.exe O4 - Global Startup: C:\Users\mel\Desktop\OpenOffice.org Writer.lnk . (...) -- C:\Windows\Installer\{E5430A11-6799-41E0-A9D5-F68BDC67AAD8}\swriter.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Anti-Blaxx.lnk . (.MB-Soft, HAANDI.) -- C:\Program Files (x86)\Anti-Blaxx\Anti-Blaxx.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk . (...) -- C:\Windows\Installer\{20ACB2F8-3BCA-45A8-80A2-9D3CB5C25F43}\SafariIco.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\doors of the mind inner mysteries - Raccourci.lnk . (...) -- J:\Doors of the Mind - Les Méandres du Subconscient\doors of the mind inner mysteries.exe (.not file. O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Flock.lnk . (.Flock Inc. and The Chromium Authors.) -- C:\Users\mel\AppData\Local\Flock\Application\flock.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ImTOO Ringtone Maker.lnk . (...) -- C:\Program Files (x86)\ImTOO\Ringtone Maker\ringtonemaker.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\McAfee Security Center.lnk . (...) -- C:\Program Files (x86)\McAfee\MSC\mcshell.exe (.not file.) O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~1\Office12\EXCEL.exe O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll ---\\ Site dans la Zone de confiance d'Internet Explorer (O15) O15 - Trusted Zone: [HKCU\...\Domains\www] http.orange.fr ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{60342891-EDB5-4417-9F14-172EA0E05AD4}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{60342891-EDB5-4417-9F14-172EA0E05AD4}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{60342891-EDB5-4417-9F14-172EA0E05AD4}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\system32\webcheck.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) [64Bits] - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Acer HomeMedia Connect Service (Acer HomeMedia Connect Service) . (.CyberLink - CLMSServer.) - C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - Apple Mobile Device Service.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: (Ati External Event Utility) . (...) - C:\Windows\system32\Ati2evxx.exe (.not file.) O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) . (.NewTech Infosystems, Inc. - NTI Backup Now 5 Agent service..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe O23 - Service: eDataSecurity Service (eDataSecurity Service) . (.Egis Incorporated - Acer eDataSecurity Management Service.) - C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe O23 - Service: Empowering Technology Service (ETService) . (.Pas de propriétaire - Acer Empowering Technology Framework Servic.) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) . (.France Telecom SA - Pas de description.) - C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) . (.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) . (...) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) . (...) - C:\Windows\system32\nvvsvc.exe (.not file.) O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000Core.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000UA.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\McDefragTask.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\McQcTask.job [MD5.CDF9BA83DB9F47A4A3ABDF614DA4F0CE] [APT] [FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000Core] (.Google Inc..) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe [MD5.CDF9BA83DB9F47A4A3ABDF614DA4F0CE] [APT] [FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000UA] (.Google Inc..) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.00000000000000000000000000000000] [APT] [McAfee Cleanup] (...) -- C:\Users\mel\AppData\Local\Temp\MCCLEANUP.5.0.285.4_DMPackage_en-US_Release\mccleanup.exeSCUéMQCéMQCCUéMSADéMSHRéMSKéMSKCUéMWLéNMCéRedirSvcéVSéMSC -silen (.not file.) [MD5.00000000000000000000000000000000] [APT] [McQcTask] (...) -- c:\PROGRA~2\mcafee\mqc\QcConsol.exe (.not file.) [MD5.973567B98CDFC147DF4E60471D9DF072] [APT] [{8FCCABF3-25AB-4D87-8A80-AE593CD95A8C}] (...) -- C:\PROGRA~2\P2P_TO~1\UNWISE.exe [MD5.7B43567B4C32AD7ADED537CD3B1342B9] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys O41 - Driver: (MPFP) . (.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) - C:\Windows\System32\Drivers\Mpfp.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Tcpip) . (.Microsoft Corporation - TCP/IP Driver.) - C:\Windows\System32\drivers\tcpip.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys ---\\ Logiciels installés (O42) O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{5A2F65A4-808F-4A1E-973E-92E17824982D} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{3EC77D26-799B-4CD8-914F-C1565E796173} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{430971B1-C31E-45DA-81E0-72C095BAB72C} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{B3F4DC34-7F60-4B7C-A79F-1C13012D99D4} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{F7A31780-33C4-4E39-951A-5EC9B91D7BF1} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{00C5525B-3CB3-467D-8100-2E6FB306CD86} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-040C-1000-0000000FF1CE}_HOMESTUDENTR_{EC50B538-CBE1-42E6-B7FE-87AA540AADFB} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{EC50B538-CBE1-42E6-B7FE-87AA540AADFB} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{BEE75E01-DD3F-4D5F-B96C-609E6538D419} O42 - Logiciel: 7-Zip 9.20 - (.Pas de propriétaire.) [HKLM][64Bits] -- 7-Zip O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM][64Bits] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07} O42 - Logiciel: Acer Arcade Live Main Page - (.Acer Inc..) [HKLM][64Bits] -- {EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37} O42 - Logiciel: Acer DV Magician - (.Acer Inc..) [HKLM][64Bits] -- {F6EFFB76-4A07-11DA-9D78-000129760D75} O42 - Logiciel: Acer DVDivine - (.Acer Inc..) [HKLM][64Bits] -- {B145EC69-66F5-11D8-9D75-000129760D75} O42 - Logiciel: Acer Empowering Technology - (.Acer Incorporated.) [HKLM][64Bits] -- {8F1B6239-FEA0-450A-A950-B05276CE177C} O42 - Logiciel: Acer GameZone Console DTV 2.0.1.1 - (.Oberon Media, Inc..) [HKLM][64Bits] -- Acer GameZone Console_is1 O42 - Logiciel: Acer HomeMedia - (.Acer Inc..) [HKLM][64Bits] -- {AA4BF92B-2AAF-11DA-9D78-000129760D75} O42 - Logiciel: Acer HomeMedia Connect - (.Acer Inc..) [HKLM][64Bits] -- {132888AE-EF67-41C5-BCA2-7D5D2488AB63} O42 - Logiciel: Acer HomeMedia Trial Creator - (.Acer Inc..) [HKLM][64Bits] -- {B580C409-E16F-44FF-904D-3AE94E113BE0} O42 - Logiciel: Acer Product Registration - (.Acer Incorporated.) [HKLM][64Bits] -- {DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E} O42 - Logiciel: Acer ScreenSaver - (.Acer Incorporated.) [HKLM][64Bits] -- {79DD56FC-DB8B-47F5-9C80-78B62E05F9BC} O42 - Logiciel: Acer SlideShow DVD - (.Acer Inc..) [HKLM][64Bits] -- {41581EF5-45A7-11DA-9D78-000129760D75} O42 - Logiciel: Acer VideoMagician - (.Acer Inc..) [HKLM][64Bits] -- {F79A208D-D929-11D9-9D77-000129760D75} O42 - Logiciel: Acer eDataSecurity Management - (.Egis Inc..) [HKLM][64Bits] -- {A5633652-3795-4829-BB0B-644F0279E279} O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9} O42 - Logiciel: Acer eSettings Management - (.Acer Incorporated.) [HKLM][64Bits] -- {13D85C14-2B85-419F-AC41-C7F21E68B25D} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 9 ActiveX - (.Adobe Systems.) [HKLM][64Bits] -- ShockwaveFlash O42 - Logiciel: Adobe Reader 8.1.0 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-A81000000003} O42 - Logiciel: Anti-Blaxx 1.16 - (.MB-Soft.) [HKLM][64Bits] -- Anti-Blaxx_is1 O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {DAEAFD68-BB4A-4507-A241-C8804D2EA66D} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {33EB1061-ABF1-4470-A540-32E97A610536} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033} O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7} O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {41BF0DE4-5BAE-4B88-AFD3-86A30B222186} O42 - Logiciel: CANON iMAGE GATEWAY Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- CANON iMAGE GATEWAY Task O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: Canon Internet Library for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- Canon Internet Library for ZoomBrowser EX O42 - Logiciel: Canon RAW Image Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- RAW Image Task O42 - Logiciel: Canon Utilities CameraWindow - (.Canon Inc..) [HKLM][64Bits] -- CameraWindowLauncher O42 - Logiciel: Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- CameraWindowDVC6 O42 - Logiciel: Canon Utilities Digital Photo Professional 3.4 - (.Canon Inc..) [HKLM][64Bits] -- DPP O42 - Logiciel: Canon Utilities EOS Utility - (.Canon Inc..) [HKLM][64Bits] -- EOS Utility O42 - Logiciel: Canon Utilities MyCamera - (.Canon Inc..) [HKLM][64Bits] -- MyCamera O42 - Logiciel: Canon Utilities PhotoStitch - (.Canon Inc..) [HKLM][64Bits] -- PhotoStitch O42 - Logiciel: Canon Utilities Picture Style Editor - (.Canon Inc..) [HKLM][64Bits] -- Picture Style Editor O42 - Logiciel: Canon Utilities RemoteCapture Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- RemoteCaptureTask O42 - Logiciel: Canon Utilities WFT-E1/E2/E3 Utility - (.Canon Inc..) [HKLM][64Bits] -- WFTK O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- ZoomBrowser EX O42 - Logiciel: Canon ZoomBrowser EX Memory Card Utility - (.Canon Inc..) [HKLM][64Bits] -- ZoomBrowser EX Memory Card Utility O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM][64Bits] -- DVD Shrink_is1 O42 - Logiciel: DVD X Player 4.1 Professionnel - (.Pas de propriétaire.) [HKLM][64Bits] -- DVD X Player 4.1 Professionnel_is1 O42 - Logiciel: DivX Codec - (.DivX, Inc..) [HKLM][64Bits] -- {7B63B2922B174135AFC0E1377DD81EC2} O42 - Logiciel: DivX Converter - (.DivX, Inc..) [HKLM][64Bits] -- {B13A7C41581B411290FBC0395694E2A9} O42 - Logiciel: DivX Player - (.DivX, Inc..) [HKLM][64Bits] -- {8ADFC4160D694100B5B8A22DE9DCABD9} O42 - Logiciel: DivX Plus DirectShow Filters - (.DivX, Inc..) [HKLM][64Bits] -- DivX Plus DirectShow Filters O42 - Logiciel: DivX Web Player - (.DivX,Inc..) [HKLM][64Bits] -- {B7050CBDB2504B34BC2A9CA0A692CC29} O42 - Logiciel: EPSON SX100 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON SX100 Series O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM][64Bits] -- EPSON Scanner O42 - Logiciel: EPSON Stylus SX100_TX100 Manuel - (.Pas de propriétaire.) [HKLM][64Bits] -- EPSON Stylus SX100_TX100 Guide d'utilisation O42 - Logiciel: Enigmes & Objets Cachés - Le tour du monde en 80 jours - (.Pas de propriétaire.) [HKLM][64Bits] -- {336B89D4-5021-44EF-AC17-2058AC2A4488} O42 - Logiciel: Enigmes et Objets Cachés - L'Académie de Magie - (.Pas de propriétaire.) [HKLM][64Bits] -- {6F4AF2D8-D98C-497C-A211-0349CACC0589} O42 - Logiciel: Enigmes et Objets Cachés l île Mystérieuse - (.Pas de propriétaire.) [HKLM][64Bits] -- {2BCE6C52-F35D-4F80-981F-4C8299CD21A5} O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {DEDB47A3-C988-4A43-A645-E2CEA571E680} O42 - Logiciel: Flock (3.5.3.4641) - (.Flock.) [HKCU] -- Flock O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9} O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Guide de l'utilisateur Logitech - (.Pas de propriétaire.) [HKLM][64Bits] -- {CBE0FCA1-4E95-11D4-9875-00105ACE7734} O42 - Logiciel: ImTOO Ringtone Maker - (.ImTOO.) [HKLM][64Bits] -- ImTOO Ringtone Maker O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite_Wave3 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619} O42 - Logiciel: LauncherMA - (.Micro Application.) [HKLM][64Bits] -- {C06EFB22-B5DB-46C5-9215-BCB5C19C0858} O42 - Logiciel: Le Trésor des Pirates - (.Pas de propriétaire.) [HKLM][64Bits] -- {3251B64D-81E8-429B-93F8-DB29BC2045CD} O42 - Logiciel: Logitech MouseWare 9.24 - (.Pas de propriétaire.) [HKLM][64Bits] -- {5809E7CF-4DCF-11D4-9875-00105ACE7734} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM][64Bits] -- {7DB4CB30-B94A-4282-AC8A-C86F615AA45B} O42 - Logiciel: Mahjong Escape Ancient China - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743} O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.0.1200 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Micro Application - Super Patiences et Réussites - (.Pas de propriétaire.) [HKLM][64Bits] -- Super Patiences et Réussites O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- {8E34682C-8118-31F1-BC4C-98CD9675E1C2} O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- HOMESTUDENTR O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Office 64-bit Components 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM][64Bits] -- {E50AE784-FABE-46DA-A1F8-7B6B56DCB22E} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-4627-81f2-1818da5d550d} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM][64Bits] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C} O42 - Logiciel: NTI Backup Now 5 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403} O42 - Logiciel: NTI JewelCase Maker Hot Fix - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{DDA223A7-627F-4173-9CA4-A9C531BCBB62} O42 - Logiciel: NTI Media Maker 8 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC} O42 - Logiciel: NTI Photo Maker Hot Fix - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{B9B02A9E-8074-4C3F-AAE5-311528F34FED} O42 - Logiciel: NVIDIA Drivers - (.Pas de propriétaire.) [HKLM] -- NVIDIA Drivers O42 - Logiciel: NVIDIA Pilote graphique 275.33 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver O42 - Logiciel: Navigateur Orange - (.Pas de propriétaire.) [HKLM][64Bits] -- {ORAHSS}.Browser O42 - Logiciel: Odyssée Sibérienne - (.Mindscape.) [HKLM][64Bits] -- {0B270394-8711-4569-AD19-D52054ABCAA0} O42 - Logiciel: OpenOffice.org 2.1 - (.OpenOffice.org.) [HKLM][64Bits] -- {E5430A11-6799-41E0-A9D5-F68BDC67AAD8} O42 - Logiciel: Orange - Logiciels Internet - (.Pas de propriétaire.) [HKLM][64Bits] -- {ORAHSS}.UninstallSuite O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {205C6BDD-7B73-42DE-8505-9A093F35A238} O42 - Logiciel: P2P_Torrent Toolbar - (.Pas de propriétaire.) [HKLM][64Bits] -- P2P_Torrent Toolbar O42 - Logiciel: PE585QAEncoder-64 - (.YUAN.) [HKLM] -- {D8B2C435-8737-431E-8784-24CD13B0B821} O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {E7004147-2CCA-431C-AA05-2AB166B9785D} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Safari - (.Apple Inc..) [HKLM][64Bits] -- {20ACB2F8-3BCA-45A8-80A2-9D3CB5C25F43} O42 - Logiciel: Sandlot Games Client Services 1.2.2 - (.Sandlot Games.) [HKLM][64Bits] -- Sandlot Games Client Services 1.2.2_is1 O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: VC80CRTRedist - 8.0.50727.762 - (.DivX, Inc.) [HKLM][64Bits] -- {767CC44C-9BBC-438D-BAD3-FD4595DD148B} O42 - Logiciel: VLC media player 1.1.4 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player O42 - Logiciel: Vodafone Mobile Connect Lite - (.Vodafone.) [HKLM][64Bits] -- {B5761811-28F3-4257-B537-815C5EEF472C} O42 - Logiciel: Web Games Player Plugin - (.Zylom Games.) [HKLM][64Bits] -- Web Games Player Plugin O42 - Logiciel: WinRAR archiver - (.Pas de propriétaire.) [HKLM][64Bits] -- WinRAR archiver O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {B3B487E7-6171-4376-9074-B28082CEB504} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1} O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {76810709-A7D3-468D-9167-A1780C1E766C} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {5DD76286-9BE7-4894-A990-E905E91AC818} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B} O42 - Logiciel: World Riddles - Seven Wonders - (.Pas de propriétaire.) [HKLM][64Bits] -- am-worldriddlessevenwonders O42 - Logiciel: Your Product - (.Your Company.) [HKLM][64Bits] -- Your Product1.0 O42 - Logiciel: Zuma Deluxe - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700} O42 - Logiciel: Zuma's Revenge! - (.AllSmartGames.) [HKLM][64Bits] -- Zuma's Revenge!1.0 O42 - Logiciel: avast! Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- avast O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM][64Bits] -- eMule O42 - Logiciel: eSobi v2 - (.esobi Inc..) [HKLM][64Bits] -- InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA} O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {104FB32A-7CE3-4C4B-B2AA-70C613FF9DFA} O42 - Logiciel: livebox - (.SAGEM.) [HKLM][64Bits] -- {17342E3B-0818-4A6F-BFF8-99476605ADD6} ---\\ HKCU & HKLM Software Keys [HKCU\Software\7-Zip] [HKCU\Software\ABBYY] [HKCU\Software\ATI Technologies Inc.] [HKCU\Software\ATI] [HKCU\Software\AVAST Software] [HKCU\Software\Acer] [HKCU\Software\Ad-Remover] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Software\Google] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software\Monitored] [HKCU\Software\AppDataLow\Software\P2P_Torrent] [HKCU\Software\AppDataLow\Software\settings] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Big Fish Games] [HKCU\Software\Bilbo] [HKCU\Software\COOPP] [HKCU\Software\Canon] [HKCU\Software\Canon_Inc_IC] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CyberLink] [HKCU\Software\DVD Shrink] [HKCU\Software\DVDXStudios] [HKCU\Software\DivXNetworks] [HKCU\Software\EPSON] [HKCU\Software\Fenomen Games] [HKCU\Software\GameHouse] [HKCU\Software\GameXzone] [HKCU\Software\GoBit] [HKCU\Software\Google] [HKCU\Software\IM Providers] [HKCU\Software\ImTOO] [HKCU\Software\InstallShield] [HKCU\Software\Intenium] [HKCU\Software\JollyBear] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\Logitech] [HKCU\Software\Macromedia] [HKCU\Software\Macrovision] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\McAfee] [HKCU\Software\Micro Application] [HKCU\Software\Mindscape] [HKCU\Software\MozillaPlugins] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\NewTech Infosystems] [HKCU\Software\Northcode Inc] [HKCU\Software\ODBC] [HKCU\Software\Oberon Media] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Realtek] [HKCU\Software\ReflexiveArcade] [HKCU\Software\S3R521] [HKCU\Software\SEIKO EPSON] [HKCU\Software\Safer Networking Limited] [HKCU\Software\SiteAdvisor] [HKCU\Software\Softonic] [HKCU\Software\SpinTop] [HKCU\Software\Test3D] [HKCU\Software\Trolltech] [HKCU\Software\Vodafone] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Wow6432Node] [HKCU\Software\Zylom] [HKCU\Software\cybelsoft] [HKCU\Software\eMule] [HKCU\Software\eSobi] [HKLM\Software\ABBYY] [HKLM\Software\AMD] [HKLM\Software\ATI Technologies] [HKLM\Software\ATI] [HKLM\Software\AVAST Software] [HKLM\Software\Acer Incorporated] [HKLM\Software\Acer] [HKLM\Software\Adobe] [HKLM\Software\America Online] [HKLM\Software\Anti-Blaxx] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Big Fish Games] [HKLM\Software\BrowserChoice] [HKLM\Software\Canon] [HKLM\Software\Canon_Inc_IC] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CyberLink] [HKLM\Software\Cyberlink] [HKLM\Software\Digital River] [HKLM\Software\DivXNetworks] [HKLM\Software\EPSON] [HKLM\Software\FRANCE TELECOM] [HKLM\Software\GEAR Software] [HKLM\Software\GameInstaller] [HKLM\Software\Google] [HKLM\Software\Hauppauge] [HKLM\Software\ImTOO] [HKLM\Software\Intel] [HKLM\Software\Khronos] [HKLM\Software\LightScribe] [HKLM\Software\Logitech] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\Micro Application] [HKLM\Software\Mindscape] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\NewTech Infosystems] [HKLM\Software\ODBC] [HKLM\Software\Oberon Media] [HKLM\Software\OemSetup] [HKLM\Software\OpenOffice.org] [HKLM\Software\P2P_Torrent] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SRS Labs] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Sagem] [HKLM\Software\Sonic] [HKLM\Software\Sun Microsystems] [HKLM\Software\Trad-FR] [HKLM\Software\VideoLAN] [HKLM\Software\Vodafone] [HKLM\Software\Waves Audio] [HKLM\Software\WinRAR] [HKLM\Software\Wise Solutions] [HKLM\Software\Wow6432Node] [HKLM\Software\cybelsoft] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 25/04/2009 - 20:46:20 - [79247895] ----D- C:\Program Files\Acer O43 - CFD: 24/06/2011 - 19:49:32 - [0] ----D- C:\Program Files\ATI Technologies O43 - CFD: 24/06/2011 - 18:34:58 - [168715275] ----D- C:\Program Files\AVAST Software O43 - CFD: 06/11/2010 - 14:54:54 - [195827] ----D- C:\Program Files\Bonjour O43 - CFD: 23/06/2011 - 20:30:42 - [7422296] ----D- C:\Program Files\CCleaner O43 - CFD: 24/06/2011 - 16:47:14 - [222907232] ----D- C:\Program Files\Common Files O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\Program Files\Fichiers communs O43 - CFD: 24/06/2011 - 16:35:32 - [0] ----D- C:\Program Files\Google O43 - CFD: 21/01/2008 - 05:09:38 - [1631428] ----D- C:\Program Files\Internet Explorer O43 - CFD: 06/11/2010 - 15:01:24 - [2345960] ----D- C:\Program Files\iTunes O43 - CFD: 02/11/2006 - 17:07:28 - [93941175] ----D- C:\Program Files\Microsoft Games O43 - CFD: 31/10/2008 - 13:45:08 - [1140374] ----D- C:\Program Files\Microsoft Office O43 - CFD: 07/11/2010 - 17:48:46 - [116183662] ----D- C:\Program Files\Movie Maker O43 - CFD: 02/11/2006 - 17:07:28 - [9908] ----D- C:\Program Files\MSBuild O43 - CFD: 25/06/2011 - 00:08:12 - [334434869] ----D- C:\Program Files\NVIDIA Corporation O43 - CFD: 02/11/2006 - 17:07:28 - [26393182] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 02/11/2006 - 17:44:56 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 21/01/2008 - 05:09:42 - [1302528] ----D- C:\Program Files\Windows Calendar O43 - CFD: 21/01/2008 - 05:09:38 - [2999808] ----D- C:\Program Files\Windows Collaboration O43 - CFD: 21/01/2008 - 05:09:30 - [6395856] ----D- C:\Program Files\Windows Defender O43 - CFD: 21/01/2008 - 05:09:36 - [9655416] ----D- C:\Program Files\Windows Journal O43 - CFD: 04/11/2010 - 08:09:22 - [9622376] ----D- C:\Program Files\Windows Mail O43 - CFD: 21/01/2008 - 05:09:38 - [5138167] ----D- C:\Program Files\Windows Media Player O43 - CFD: 25/04/2009 - 20:41:34 - [8038670] ----D- C:\Program Files\Windows NT O43 - CFD: 21/01/2008 - 05:09:36 - [16354466] ----D- C:\Program Files\Windows Photo Gallery O43 - CFD: 21/01/2008 - 05:09:38 - [7017819] ----D- C:\Program Files\Windows Sidebar O43 - CFD: 10/10/2006 - 21:06:44 - [3608665] ----D- C:\Program Files\YUAN O43 - CFD: 26/04/2009 - 11:40:30 - [5105831] ----D- C:\Program Files\Common Files\Apple O43 - CFD: 02/11/2010 - 21:51:26 - [207639065] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 02/11/2006 - 15:33:54 - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 02/11/2006 - 15:33:54 - [608256] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 21/01/2008 - 05:09:30 - [9551378] ----D- C:\Program Files\Common Files\System O43 - CFD: 31/10/2008 - 14:15:06 - [16083] ----D- C:\ProgramData\Acer GameZone Console O43 - CFD: 31/10/2008 - 14:10:34 - [770] ----D- C:\ProgramData\Adobe O43 - CFD: 27/08/2010 - 18:04:12 - [0] ----D- C:\ProgramData\Alawar Entertainment O43 - CFD: 10/03/2011 - 21:12:36 - [3154583] ----D- C:\ProgramData\Alwil Software O43 - CFD: 06/11/2010 - 14:57:40 - [59300057] ----D- C:\ProgramData\Apple O43 - CFD: 26/04/2009 - 11:42:44 - [83250728] ----D- C:\ProgramData\Apple Computer O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Application Data O43 - CFD: 29/08/2009 - 22:09:04 - [1017812] ----D- C:\ProgramData\Arcade Lab O43 - CFD: 22/06/2011 - 17:18:04 - [43038171] ----D- C:\ProgramData\AVAST Software O43 - CFD: 27/08/2010 - 17:59:10 - [0] ----D- C:\ProgramData\Big Fish Games O43 - CFD: 28/01/2011 - 17:24:16 - [9108805] ----D- C:\ProgramData\Bilbo O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Bureau O43 - CFD: 24/06/2011 - 21:46:58 - [0] ----D- C:\ProgramData\Comodo O43 - CFD: 21/12/2010 - 20:31:16 - [144196] ----D- C:\ProgramData\CyberLink O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Desktop O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Documents O43 - CFD: 03/03/2011 - 14:00:02 - [17224] ----D- C:\ProgramData\DVD Shrink O43 - CFD: 14/07/2009 - 20:15:30 - [10599] ----D- C:\ProgramData\DVD X Studios O43 - CFD: 28/10/2010 - 20:42:42 - [0] ----D- C:\ProgramData\eMule O43 - CFD: 26/04/2009 - 10:13:06 - [6432265] ----D- C:\ProgramData\EPSON O43 - CFD: 28/10/2010 - 21:08:22 - [420] ----D- C:\ProgramData\eSobi O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Favoris O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Favorites O43 - CFD: 25/08/2010 - 21:24:04 - [10448] ----D- C:\ProgramData\Fenomen Games O43 - CFD: 31/10/2008 - 14:16:04 - [0] ----D- C:\ProgramData\FloodLightGames O43 - CFD: 08/02/2011 - 19:15:16 - [243462] ----D- C:\ProgramData\Funny Bear Studio O43 - CFD: 27/08/2010 - 22:46:38 - [89518] ----D- C:\ProgramData\GameHouse O43 - CFD: 12/11/2010 - 15:33:06 - [148442] ----D- C:\ProgramData\GameXzone O43 - CFD: 03/01/2011 - 10:59:42 - [15172954] ----D- C:\ProgramData\GoBit Games O43 - CFD: 23/06/2011 - 20:35:26 - [526512] ----D- C:\ProgramData\Google O43 - CFD: 11/12/2010 - 10:33:26 - [26770] ----D- C:\ProgramData\HoverBee Studios O43 - CFD: 30/08/2010 - 16:31:12 - [503164] ----D- C:\ProgramData\Intenium O43 - CFD: 26/05/2009 - 11:07:06 - [114619] ----D- C:\ProgramData\InterAction studios O43 - CFD: 26/08/2010 - 10:39:16 - [10916166] ----D- C:\ProgramData\JollyBear O43 - CFD: 09/01/2011 - 13:29:16 - [0] ----D- C:\ProgramData\Little Games Company O43 - CFD: 24/06/2011 - 20:10:40 - [1273561] ----D- C:\ProgramData\ma-config.com O43 - CFD: 25/04/2009 - 22:14:08 - [3484022] ----D- C:\ProgramData\Macrovision O43 - CFD: 22/06/2011 - 16:23:28 - [6887336] ----D- C:\ProgramData\Malwarebytes O43 - CFD: 25/06/2011 - 00:08:12 - [851] ----D- C:\ProgramData\McAfee Security Scan O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Menu Démarrer O43 - CFD: 25/08/2010 - 22:18:16 - [0] ----D- C:\ProgramData\Merscom O43 - CFD: 08/02/2010 - 21:56:02 - [668] ----D- C:\ProgramData\Micro Application O43 - CFD: 24/06/2011 - 18:00:14 - [103999536] -S--D- C:\ProgramData\Microsoft O43 - CFD: 07/11/2010 - 17:57:32 - [57676] ----D- C:\ProgramData\Microsoft Help O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Modèles O43 - CFD: 02/02/2010 - 20:05:24 - [0] ----D- C:\ProgramData\NtiDvdCopy O43 - CFD: 24/06/2011 - 23:46:58 - [188348] ----D- C:\ProgramData\NVIDIA O43 - CFD: 24/06/2011 - 20:37:44 - [912773] ----D- C:\ProgramData\NVIDIA Corporation O43 - CFD: 08/05/2009 - 12:24:38 - [21486] ----D- C:\ProgramData\Oberon Games O43 - CFD: 25/07/2010 - 22:43:56 - [0] ----D- C:\ProgramData\PhotoStitch O43 - CFD: 09/01/2011 - 13:07:00 - [12720] ----D- C:\ProgramData\PlayFirst O43 - CFD: 28/08/2010 - 14:09:22 - [7520] ----D- C:\ProgramData\Playrix Entertainment O43 - CFD: 08/05/2009 - 11:04:24 - [366] ----D- C:\ProgramData\Sandlot Games O43 - CFD: 27/08/2010 - 18:06:16 - [82386784] ----D- C:\ProgramData\SpinTop Games O43 - CFD: 25/06/2011 - 13:52:30 - [6982] ----D- C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Start Menu O43 - CFD: 21/12/2010 - 22:32:32 - [0] ---AD- C:\ProgramData\TEMP O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Templates O43 - CFD: 26/04/2009 - 10:19:04 - [3498] ----D- C:\ProgramData\UDL O43 - CFD: 23/07/2010 - 09:48:22 - [0] ----D- C:\ProgramData\ZoomBrowser O43 - CFD: 08/02/2011 - 10:34:48 - [349088] ----D- C:\ProgramData\Zylom O43 - CFD: 26/04/2009 - 11:42:56 - [1942] ----D- C:\ProgramData\{35733029-9859-49C7-8475-1E78E2AAE413} O43 - CFD: 06/11/2010 - 15:01:24 - [895721] ----D- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001} O43 - CFD: 13/11/2010 - 10:10:18 - [36864] -SH-D- C:\Users\mel\AppData\Roaming\.# O43 - CFD: 31/10/2008 - 14:15:06 - [30584] ----D- C:\Users\mel\AppData\Roaming\Acer GameZone Console O43 - CFD: 14/07/2009 - 20:37:02 - [870657] ----D- C:\Users\mel\AppData\Roaming\Adobe O43 - CFD: 27/08/2010 - 18:04:12 - [1534] ----D- C:\Users\mel\AppData\Roaming\Alawar Entertainment O43 - CFD: 06/11/2010 - 13:50:00 - [95858990] ----D- C:\Users\mel\AppData\Roaming\Apple Computer O43 - CFD: 25/04/2009 - 20:48:52 - [0] ----D- C:\Users\mel\AppData\Roaming\ATI O43 - CFD: 27/08/2010 - 17:59:10 - [2004569] ----D- C:\Users\mel\AppData\Roaming\Big Fish Games O43 - CFD: 25/07/2010 - 22:40:52 - [0] ----D- C:\Users\mel\AppData\Roaming\Canon O43 - CFD: 13/09/2009 - 09:46:22 - [33] ----D- C:\Users\mel\AppData\Roaming\CyberLink O43 - CFD: 02/02/2010 - 19:56:08 - [16440] ----D- C:\Users\mel\AppData\Roaming\DivX O43 - CFD: 19/12/2010 - 14:39:52 - [29261] ----D- C:\Users\mel\AppData\Roaming\Dragon Altar Games O43 - CFD: 03/03/2011 - 14:13:02 - [199] ----D- C:\Users\mel\AppData\Roaming\dvdcss O43 - CFD: 28/06/2009 - 14:16:56 - [1004] ----D- C:\Users\mel\AppData\Roaming\EPSON O43 - CFD: 27/08/2010 - 18:00:06 - [399676] ----D- C:\Users\mel\AppData\Roaming\ERS G-Studio O43 - CFD: 26/04/2009 - 10:04:54 - [567566] ----D- C:\Users\mel\AppData\Roaming\eSobi O43 - CFD: 27/04/2009 - 21:20:00 - [35041] ----D- C:\Users\mel\AppData\Roaming\FloodLightGames O43 - CFD: 13/12/2010 - 19:31:12 - [40343] ----D- C:\Users\mel\AppData\Roaming\Freeze Tag O43 - CFD: 26/08/2010 - 11:03:28 - [52236] ----D- C:\Users\mel\AppData\Roaming\Game Mill Entertainment O43 - CFD: 27/10/2010 - 08:45:00 - [0] ----D- C:\Users\mel\AppData\Roaming\Google O43 - CFD: 20/02/2010 - 15:36:30 - [25411] ----D- C:\Users\mel\AppData\Roaming\HdO Adventure O43 - CFD: 25/04/2009 - 20:48:18 - [0] ----D- C:\Users\mel\AppData\Roaming\Identities O43 - CFD: 12/11/2010 - 22:52:10 - [179257] ----D- C:\Users\mel\AppData\Roaming\ImTOO O43 - CFD: 26/04/2009 - 10:13:40 - [0] ----D- C:\Users\mel\AppData\Roaming\InstallShield O43 - CFD: 07/06/2009 - 17:55:48 - [0] ----D- C:\Users\mel\AppData\Roaming\iWin O43 - CFD: 20/09/2010 - 17:50:54 - [32433] ----D- C:\Users\mel\AppData\Roaming\LegacyInteractive O43 - CFD: 09/01/2011 - 13:29:16 - [930748] ----D- C:\Users\mel\AppData\Roaming\Little Games Company O43 - CFD: 25/04/2009 - 20:48:50 - [611] ----D- C:\Users\mel\AppData\Roaming\Macromedia O43 - CFD: 26/04/2009 - 09:49:26 - [488] ----D- C:\Users\mel\AppData\Roaming\Macrovision O43 - CFD: 09/02/2010 - 00:22:36 - [7244] ----D- C:\Users\mel\AppData\Roaming\Magic Academy O43 - CFD: 22/06/2011 - 16:23:56 - [8537308] ----D- C:\Users\mel\AppData\Roaming\Malwarebytes O43 - CFD: 02/11/2006 - 17:07:26 - [0] ----D- C:\Users\mel\AppData\Roaming\Media Center Programs O43 - CFD: 25/08/2010 - 22:18:16 - [514888] ----D- C:\Users\mel\AppData\Roaming\Merscom O43 - CFD: 02/11/2010 - 21:59:24 - [1186146] -S--D- C:\Users\mel\AppData\Roaming\Microsoft O43 - CFD: 20/01/2010 - 18:09:34 - [304147] ----D- C:\Users\mel\AppData\Roaming\Odyssee_Sib O43 - CFD: 25/06/2011 - 21:12:50 - [2352013] ----D- C:\Users\mel\AppData\Roaming\OpenOffice.org2 O43 - CFD: 12/02/2010 - 22:49:28 - [37268] ----D- C:\Users\mel\AppData\Roaming\Pirateville O43 - CFD: 09/01/2011 - 13:07:00 - [150659] ----D- C:\Users\mel\AppData\Roaming\PlayFirst O43 - CFD: 27/08/2010 - 17:36:42 - [1444938] ----D- C:\Users\mel\AppData\Roaming\QB9 O43 - CFD: 27/08/2010 - 23:23:20 - [230] ----D- C:\Users\mel\AppData\Roaming\Roaming O43 - CFD: 13/07/2010 - 08:37:46 - [131494] ----D- C:\Users\mel\AppData\Roaming\SecretIslandFranc O43 - CFD: 23/11/2010 - 18:25:22 - [304266] ----D- C:\Users\mel\AppData\Roaming\Settlement. Colossus O43 - CFD: 18/11/2010 - 12:54:18 - [180880] ----D- C:\Users\mel\AppData\Roaming\ShaoLin O43 - CFD: 27/08/2010 - 17:46:56 - [3123] ----D- C:\Users\mel\AppData\Roaming\she_is_a_shadow O43 - CFD: 26/04/2009 - 10:44:18 - [8704] ----D- C:\Users\mel\AppData\Roaming\Template O43 - CFD: 26/05/2011 - 19:02:40 - [1192449] ----D- C:\Users\mel\AppData\Roaming\vlc O43 - CFD: 12/11/2010 - 22:46:56 - [12] ----D- C:\Users\mel\AppData\Roaming\WinRAR O43 - CFD: 25/07/2010 - 22:42:46 - [0] ----D- C:\Users\mel\AppData\Roaming\ZoomBrowser EX O43 - CFD: 22/12/2010 - 07:36:52 - [6886] ----D- C:\Users\mel\Appdata\Local\Acer Arcade Live O43 - CFD: 22/12/2010 - 07:36:52 - [6907] ----D- C:\Users\mel\Appdata\Local\Acer DV Magician O43 - CFD: 22/12/2010 - 07:36:52 - [8561] ----D- C:\Users\mel\Appdata\Local\Acer DVDivine O43 - CFD: 26/04/2009 - 10:36:20 - [8523] ----D- C:\Users\mel\Appdata\Local\Acer HomeMedia O43 - CFD: 13/09/2009 - 09:25:18 - [6780] ----D- C:\Users\mel\Appdata\Local\Acer SlideShow DVD O43 - CFD: 26/04/2009 - 10:36:04 - [7038] ----D- C:\Users\mel\Appdata\Local\Acer VideoMagician O43 - CFD: 14/07/2009 - 20:37:04 - [39724890] ----D- C:\Users\mel\Appdata\Local\Adobe O43 - CFD: 26/04/2009 - 11:40:54 - [11115713] ----D- C:\Users\mel\Appdata\Local\Apple O43 - CFD: 06/11/2010 - 17:04:56 - [11261089] ----D- C:\Users\mel\Appdata\Local\Apple Computer O43 - CFD: 25/04/2009 - 20:44:48 - [0] -SH-D- C:\Users\mel\Appdata\Local\Application Data O43 - CFD: 14/11/2010 - 13:14:20 - [35256] ----D- C:\Users\mel\Appdata\Local\Ares O43 - CFD: 25/04/2009 - 20:48:52 - [42124] ----D- C:\Users\mel\Appdata\Local\ATI O43 - CFD: 25/07/2010 - 22:42:42 - [1751] ----D- C:\Users\mel\Appdata\Local\CANON_INC O43 - CFD: 26/04/2009 - 10:36:22 - [139264] ----D- C:\Users\mel\Appdata\Local\CyberLink O43 - CFD: 25/04/2009 - 22:13:42 - [11783680] ----D- C:\Users\mel\Appdata\Local\Downloaded Installations O43 - CFD: 30/10/2010 - 09:58:16 - [869466] ----D- C:\Users\mel\Appdata\Local\eMule O43 - CFD: 02/11/2010 - 16:36:52 - [253003793] ----D- C:\Users\mel\Appdata\Local\Flock O43 - CFD: 23/06/2011 - 20:35:26 - [8586131] ----D- C:\Users\mel\Appdata\Local\Google O43 - CFD: 25/04/2009 - 20:44:48 - [0] -SH-D- C:\Users\mel\Appdata\Local\Historique O43 - CFD: 26/08/2010 - 10:39:16 - [1253] ----D- C:\Users\mel\Appdata\Local\JollyBear O43 - CFD: 13/09/2009 - 09:27:08 - [0] ----D- C:\Users\mel\Appdata\Local\MakeDisc O43 - CFD: 24/06/2011 - 18:00:14 - [776882944] ----D- C:\Users\mel\Appdata\Local\Microsoft O43 - CFD: 27/04/2009 - 15:59:46 - [1857964] ----D- C:\Users\mel\Appdata\Local\Microsoft Games O43 - CFD: 25/04/2009 - 20:48:50 - [0] ----D- C:\Users\mel\Appdata\Local\PowerCinema O43 - CFD: 26/06/2011 - 00:00:30 - [12427655] ----D- C:\Users\mel\Appdata\Local\Temp O43 - CFD: 25/04/2009 - 20:44:48 - [0] -SH-D- C:\Users\mel\Appdata\Local\Temporary Internet Files O43 - CFD: 30/08/2010 - 16:47:00 - [165404] ----D- C:\Users\mel\Appdata\Local\Vast Studios O43 - CFD: 08/05/2009 - 11:47:36 - [49271021] ----D- C:\Users\mel\Appdata\Local\VirtualStore O43 - CFD: 21/01/2008 - 05:20:46 - [15271] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 25/04/2009 - 20:48:26 - [174] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 03/01/2011 - 10:53:16 - [1830] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Burger Shop 2 O43 - CFD: 02/11/2010 - 16:36:52 - [4016] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flock O43 - CFD: 21/01/2008 - 05:20:46 - [548] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 25/06/2011 - 16:05:00 - [3111] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 12/11/2010 - 22:45:52 - [2633] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 03/01/2011 - 10:53:20 - [1821] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Your Product O43 - CFD: 27/08/2010 - 18:06:02 - [3709] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zuma's Revenge! O43 - CFD: 30/11/2010 - 09:58:42 - [3511045] ----D- C:\Program Files (x86)\7-Zip O43 - CFD: 26/04/2009 - 10:18:20 - [124428627] ----D- C:\Program Files (x86)\ABBYY FineReader 6.0 Sprint O43 - CFD: 31/10/2008 - 14:01:54 - [74523788] ----D- C:\Program Files (x86)\Acer O43 - CFD: 31/10/2008 - 14:11:02 - [644989344] ----D- C:\Program Files (x86)\Acer Arcade Live O43 - CFD: 21/12/2010 - 19:17:56 - [169953189] ----D- C:\Program Files (x86)\Acer GameZone O43 - CFD: 10/10/2006 - 21:07:18 - [0] ----D- C:\Program Files (x86)\Acer Incorporated O43 - CFD: 25/06/2011 - 23:48:28 - [139023813] ----D- C:\Program Files (x86)\Ad-Remover O43 - CFD: 31/10/2008 - 14:10:06 - [200267752] ----D- C:\Program Files (x86)\Adobe O43 - CFD: 25/11/2010 - 10:07:20 - [617925] ----D- C:\Program Files (x86)\Anti-Blaxx O43 - CFD: 26/04/2009 - 11:40:52 - [2221118] ----D- C:\Program Files (x86)\Apple Software Update O43 - CFD: 11/03/2010 - 18:59:18 - [42348] ----D- C:\Program Files (x86)\BFG O43 - CFD: 06/11/2010 - 14:54:54 - [600007] ----D- C:\Program Files (x86)\Bonjour O43 - CFD: 03/01/2011 - 10:53:16 - [28746459] ----D- C:\Program Files (x86)\Burger Shop 2 O43 - CFD: 23/07/2010 - 09:48:50 - [330761061] ----D- C:\Program Files (x86)\Canon O43 - CFD: 24/06/2011 - 16:48:42 - [721419921] ----D- C:\Program Files (x86)\Common Files O43 - CFD: 31/10/2008 - 14:03:40 - [4765216] ----D- C:\Program Files (x86)\CyberLink O43 - CFD: 15/07/2009 - 20:58:34 - [70306267] ----D- C:\Program Files (x86)\DivX O43 - CFD: 26/04/2009 - 14:30:48 - [979892] ----D- C:\Program Files (x86)\DVD Shrink O43 - CFD: 14/07/2009 - 20:16:08 - [15700152] ----D- C:\Program Files (x86)\DVD X Player 4.1 Professionnel O43 - CFD: 28/10/2010 - 20:42:16 - [10906334] ----D- C:\Program Files (x86)\eMule O43 - CFD: 26/04/2009 - 10:14:22 - [13107148] ----D- C:\Program Files (x86)\epson O43 - CFD: 26/04/2009 - 10:18:28 - [93975345] ----D- C:\Program Files (x86)\Epson Software O43 - CFD: 31/10/2008 - 14:26:54 - [17489955] ----D- C:\Program Files (x86)\eSobi O43 - CFD: 24/06/2011 - 16:35:32 - [260151682] ----D- C:\Program Files (x86)\Google O43 - CFD: 12/11/2010 - 22:51:10 - [66150014] ----D- C:\Program Files (x86)\ImTOO O43 - CFD: 25/06/2011 - 00:08:12 - [131206752] --H-D- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 26/04/2009 - 11:41:34 - [2651852] ----D- C:\Program Files (x86)\Internet Explorer O43 - CFD: 06/11/2010 - 15:00:48 - [1938027] ----D- C:\Program Files (x86)\iPod O43 - CFD: 06/11/2010 - 15:01:24 - [122979411] ----D- C:\Program Files (x86)\iTunes O43 - CFD: 24/06/2011 - 23:28:08 - [7941202] ----D- C:\Program Files (x86)\Lavalys O43 - CFD: 26/04/2009 - 14:51:28 - [6365734] ----D- C:\Program Files (x86)\Logitech O43 - CFD: 24/06/2011 - 20:10:44 - [6093848] ----D- C:\Program Files (x86)\ma-config.com O43 - CFD: 23/06/2011 - 17:44:38 - [7590700] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware O43 - CFD: 24/06/2011 - 18:30:30 - [255536] ----D- C:\Program Files (x86)\McAfee Security Scan O43 - CFD: 30/12/2010 - 17:07:48 - [379634967] ----D- C:\Program Files (x86)\Micro Application O43 - CFD: 02/11/2010 - 21:52:12 - [226432] ----D- C:\Program Files (x86)\Microsoft O43 - CFD: 31/10/2008 - 13:49:42 - [347890693] ----D- C:\Program Files (x86)\Microsoft Office O43 - CFD: 31/10/2008 - 13:50:02 - [7791803] ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant O43 - CFD: 02/11/2010 - 21:54:14 - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 31/10/2008 - 13:49:42 - [151270378] ----D- C:\Program Files (x86)\Microsoft Works O43 - CFD: 24/06/2011 - 19:51:56 - [8175999] ----D- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 29/12/2010 - 19:30:52 - [2659886008] ----D- C:\Program Files (x86)\Mindscape O43 - CFD: 02/11/2006 - 17:07:28 - [9908] ----D- C:\Program Files (x86)\MSBuild O43 - CFD: 31/10/2008 - 14:09:14 - [228861119] ----D- C:\Program Files (x86)\NewTech Infosystems O43 - CFD: 24/06/2011 - 23:47:00 - [0] ----D- C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 25/04/2009 - 22:27:30 - [263849542] ----D- C:\Program Files (x86)\OpenOffice.org 2.1 O43 - CFD: 22/06/2011 - 16:13:48 - [180978831] ----D- C:\Program Files (x86)\Orange O43 - CFD: 23/06/2011 - 21:03:26 - [2789763] ----D- C:\Program Files (x86)\P2P_Torrent O43 - CFD: 06/11/2010 - 14:59:34 - [76337719] ----D- C:\Program Files (x86)\QuickTime O43 - CFD: 08/02/2011 - 10:01:00 - [2435193] ----D- C:\Program Files (x86)\RealArcade O43 - CFD: 31/10/2008 - 13:29:24 - [149450890] ----D- C:\Program Files (x86)\Realtek O43 - CFD: 02/11/2006 - 17:07:28 - [26716348] ----D- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 06/11/2010 - 11:34:42 - [42299504] ----D- C:\Program Files (x86)\Safari O43 - CFD: 25/06/2011 - 00:08:12 - [1309922] ----D- C:\Program Files (x86)\SAGEM O43 - CFD: 25/06/2011 - 00:08:12 - [38412056] ----D- C:\Program Files (x86)\Securitoo O43 - CFD: 23/06/2011 - 19:39:08 - [65887239] ----D- C:\Program Files (x86)\Spybot - Search & Destroy O43 - CFD: 02/11/2006 - 17:36:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information O43 - CFD: 02/11/2010 - 17:22:04 - [78884139] ----D- C:\Program Files (x86)\VideoLAN O43 - CFD: 25/04/2009 - 22:14:08 - [11354021] ----D- C:\Program Files (x86)\Vodafone O43 - CFD: 21/01/2008 - 05:09:50 - [1016832] ----D- C:\Program Files (x86)\Windows Calendar O43 - CFD: 21/01/2008 - 05:09:48 - [53248] ----D- C:\Program Files (x86)\Windows Collaboration O43 - CFD: 21/01/2008 - 05:09:42 - [504128] ----D- C:\Program Files (x86)\Windows Defender O43 - CFD: 02/11/2010 - 21:55:26 - [117449045] ----D- C:\Program Files (x86)\Windows Live O43 - CFD: 02/11/2010 - 21:51:52 - [245112] ----D- C:\Program Files (x86)\Windows Live SkyDrive O43 - CFD: 04/11/2010 - 08:09:22 - [8939368] ----D- C:\Program Files (x86)\Windows Mail O43 - CFD: 21/01/2008 - 05:09:48 - [3008997] ----D- C:\Program Files (x86)\Windows Media Player O43 - CFD: 02/11/2006 - 17:07:28 - [7942926] ----D- C:\Program Files (x86)\Windows NT O43 - CFD: 21/01/2008 - 05:09:48 - [13464738] ----D- C:\Program Files (x86)\Windows Photo Gallery O43 - CFD: 21/01/2008 - 05:09:50 - [6511482] ----D- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 12/11/2010 - 22:45:52 - [3727772] ----D- C:\Program Files (x86)\WinRAR O43 - CFD: 03/01/2011 - 10:53:18 - [131570] ----D- C:\Program Files (x86)\Your Product O43 - CFD: 26/06/2011 - 00:00:34 - [4051278] ----D- C:\Program Files (x86)\ZHPDiag O43 - CFD: 27/08/2010 - 18:06:00 - [114402764] ----D- C:\Program Files (x86)\Zuma's Revenge! O43 - CFD: 08/02/2011 - 10:34:48 - [498392] ----D- C:\Program Files (x86)\Zylom Games O43 - CFD: 31/10/2008 - 14:10:12 - [9874075] ----D- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 06/11/2010 - 15:00:48 - [86845855] ----D- C:\Program Files (x86)\Common Files\Apple O43 - CFD: 23/07/2010 - 09:46:02 - [1184036] ----D- C:\Program Files (x86)\Common Files\Canon O43 - CFD: 31/10/2008 - 13:46:54 - [92976] ----D- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 15/07/2009 - 20:58:22 - [8024284] ----D- C:\Program Files (x86)\Common Files\DivX Shared O43 - CFD: 22/06/2011 - 16:10:54 - [7878358] ----D- C:\Program Files (x86)\Common Files\France Telecom O43 - CFD: 31/10/2008 - 13:38:48 - [6639811] ----D- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 31/10/2008 - 14:08:56 - [7178034] ----D- C:\Program Files (x86)\Common Files\LightScribe O43 - CFD: 26/04/2009 - 14:46:26 - [463926] ----D- C:\Program Files (x86)\Common Files\Logitech O43 - CFD: 02/11/2010 - 21:51:56 - [423393852] ----D- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 15/07/2009 - 20:58:30 - [3926944] ----D- C:\Program Files (x86)\Common Files\PX Storage Engine O43 - CFD: 08/05/2009 - 11:04:32 - [1353752] ----D- C:\Program Files (x86)\Common Files\Sandlot Shared O43 - CFD: 02/11/2006 - 15:33:54 - [2702] ----D- C:\Program Files (x86)\Common Files\Services O43 - CFD: 02/11/2006 - 15:33:54 - [41101735] ----D- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 21/01/2008 - 05:09:42 - [42700942] ----D- C:\Program Files (x86)\Common Files\System O43 - CFD: 28/10/2010 - 20:16:04 - [80727407] ----D- C:\Program Files (x86)\Common Files\Windows Live ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.80EE1700FEFFFFFF57494E444F577E31] - 25/06/2011 - 22:55:33 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1265809] O44 - LFC:[MD5.F5B6694DF4B6FF9EA3CE07C0C0240575] - 25/06/2011 - 22:49:41 ---A- . (...) -- C:\Ad-Report-CLEAN[1].txt [2805] O44 - LFC:[MD5.278C5209337ADFADF495BDD741126CC3] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1606634] O44 - LFC:[MD5.D0777689CD9E3306B5C7E48888EE33D7] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [118064] O44 - LFC:[MD5.BDDF86975092A9146E48F933A4A86A04] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [143958] O44 - LFC:[MD5.769F14BBD18C21742C38DF0C2C54657A] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [631438] O44 - LFC:[MD5.4D692CFA2CFB6AB61295A143F5D74D41] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [719130] O44 - LFC:[MD5.80EE1700FEFFFFFF4C4F47434F4E7E31] - 25/06/2011 - 20:12:49 ---A- . (...) -- C:\Windows\SysNative\LogConfigTemp.xml [0] O44 - LFC:[MD5.6430C85245379591A8856B9F3EFB5DB9] - 25/06/2011 - 20:12:12 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.BAA67B827D40BDB6968724A97B8F88E1] - 25/06/2011 - 19:02:07 ---A- . (...) -- C:\Windows\PFRO.log [6428] O44 - LFC:[MD5.0E181B9023D7D176D96DB849375E1F9C] - 25/06/2011 - 18:56:54 ---A- . (...) -- C:\UsbFix_Upload_Me_PC-DE-MEL.zip [610859336] O44 - LFC:[MD5.9ADA205FD5CCC52AA2DB00E228AE4E26] - 25/06/2011 - 18:20:29 ---A- . (...) -- C:\Windows\SysNative\spsys.log [808] O44 - LFC:[MD5.6E97333F01841E397E651F75AED67FFE] - 25/06/2011 - 12:50:10 ---A- . (...) -- C:\Windows\setupact.log [2119] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 24/06/2011 - 21:55:18 ---A- . (...) -- C:\Windows\setuperr.log [0] O44 - LFC:[MD5.EBF7292E4E930CDCE565EB47B717D90E] - 24/06/2011 - 19:38:36 ---A- . (.NVIDIA Corporation - Pas de description.) -- C:\Windows\SysNative\nvshext.dll [61544] O44 - LFC:[MD5.F5B38907383181659B1BFDAD5E6477D7] - 24/06/2011 - 19:38:35 ---A- . (.NVIDIA Corporation - Easy daemon API.) -- C:\Windows\SysNative\easyupdatusapiu64.dll [739432] O44 - LFC:[MD5.8D23190C8DEC15DF565CA211ADB13258] - 24/06/2011 - 19:33:26 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\SysNative\OpenCL.dll [67176] O44 - LFC:[MD5.8D23190C8DEC15DF565CA211ADB13258] - 24/06/2011 - 19:33:26 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.dll [57960] O44 - LFC:[MD5.FF5EF308DA199B27D9B7236A80225CB4] - 24/06/2011 - 19:33:26 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\SysNative\nvoglv64.dll [22286952] O44 - LFC:[MD5.BAA6974697538067C6B27FA898DED21C] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\SysNative\nvdispco6420150.dll [1496168] O44 - LFC:[MD5.35EE4726EC99386CE41A3268D993693C] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\SysNative\nvgenco642090.dll [1427048] O44 - LFC:[MD5.8A618A2301DC67510DFBA245F438ECBD] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 275.33.) -- C:\Windows\SysNative\nvcuda.dll [7123560] O44 - LFC:[MD5.8A618A2301DC67510DFBA245F438ECBD] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 275.33.) -- C:\Windows\System32\nvcuda.dll [5301352] O44 - LFC:[MD5.B43007E6A0866719BFE1CE9C0449DDA1] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 275.3.) -- C:\Windows\SysNative\nvcuvid.dll [2943592] O44 - LFC:[MD5.B43007E6A0866719BFE1CE9C0449DDA1] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 275.3.) -- C:\Windows\System32\nvcuvid.dll [2804328] O44 - LFC:[MD5.A281C66DE2B2AFC324002193292D7BDF] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 275.33.) -- C:\Windows\SysNative\nvcuvenc.dll [2212968] O44 - LFC:[MD5.A281C66DE2B2AFC324002193292D7BDF] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 275.33.) -- C:\Windows\System32\nvcuvenc.dll [2082408] O44 - LFC:[MD5.B59CD0437F800B224774DA27D81F1A95] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 275.33.) -- C:\Windows\System32\nvcompiler.dll [13011560] O44 - LFC:[MD5.B59CD0437F800B224774DA27D81F1A95] - 24/06/2011 - 19:33:24 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 275.33.) -- C:\Windows\SysNative\nvcompiler.dll [18583144] O44 - LFC:[MD5.278C5209337ADFADF495BDD741126CC3] - 24/06/2011 - 18:55:08 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1586434] O44 - LFC:[MD5.95C17AB35101EEBB1182668E19915ECC] - 24/06/2011 - 17:35:33 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\SysNative\aswBoot.exe [253888] O44 - LFC:[MD5.B8576757416F471C9D7F83B2B04B1F9D] - 24/06/2011 - 17:35:11 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [40112] O44 - LFC:[MD5.95C17AB35101EEBB1182668E19915ECC] - 24/06/2011 - 17:35:10 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe [199304] O44 - LFC:[MD5.319AB4B91B7026869AA45DF4817B2582] - 25/05/2011 - 08:25:23 ---A- . (...) -- C:\Windows\SysNative\nvinfo.pb [7384] ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Orange\Connectivity\ConnectivityManager.exe" [Enabled] .(.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Connectivity\ConnectivityManager.exe ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys ---\\ MountPoints2 Shell Key (O51) O51 - MPSK:{107c71e3-e25b-11df-b86a-0021976a9290}\AutoRun\command. (...) -- G:\StartVMCLite.exe (.not file.) O51 - MPSK:{7002202e-31be-11de-a745-0021976a9290}\AutoRun\command. (...) -- I:\StartVMCLite.exe (.not file.) O51 - MPSK:{9cefb7f9-3236-11de-9ca9-0021976a9290}\AutoRun\command. (...) -- I:\StartVMCLite.exe (.not file.) ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=3 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=3 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=0 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.F14215E37CF124104575073F782111D2] - 21/01/2008 - 03:46:53 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [486456] O58 - SDL:[MD5.7D05A75E3066861A6610F7EE04FF085C] - 21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [342584] O58 - SDL:[MD5.820A201FE08A0C345B3BEDBC30E1A77C] - 21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (X64).) -- C:\Windows\system32\drivers\adpu160m.sys [126520] O58 - SDL:[MD5.9B4AB6854559DC168FBB4C24FC52E794] - 21/01/2008 - 03:47:27 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [185912] O58 - SDL:[MD5.157D0898D4B73F075CE9FA26B482DF98] - 21/01/2008 - 03:46:50 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15976] O58 - SDL:[MD5.BA8417D4765F3988FF921F30F630E303] - 21/01/2008 - 03:46:52 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [90680] O58 - SDL:[MD5.9D41C435619733B34CC16A511E644B11] - 21/01/2008 - 03:47:00 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [91192] O58 - SDL:[MD5.F1DBE3D02FFCDEE5246F29B0ECEBE6E0] - 10/05/2011 - 12:59:37 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys [22360] O58 - SDL:[MD5.F3E75DD1BCC358FB4629357AD09E7C84] - 10/05/2011 - 12:59:48 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys [64344] O58 - SDL:[MD5.FCCBDC045DC12AFD1508205117E7ED11] - 10/05/2011 - 12:59:59 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys [31064] O58 - SDL:[MD5.5824DCA602A0A30E866BC2AC98C6D970] - 10/05/2011 - 13:04:08 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\system32\drivers\aswSnx.sys [600920] O58 - SDL:[MD5.AF07B4BEF920F90205148F3A05E2974C] - 10/05/2011 - 13:04:07 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys [287576] O58 - SDL:[MD5.A3ECA5AF3B4823A523C285A8DF0F9E4F] - 10/05/2011 - 13:02:41 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys [53592] O58 - SDL:[MD5.8EA545F0F90E6388DCACA8F4F9404DC5] - 12/11/2008 - 16:42:22 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [4999680] O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432] O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704] O58 - SDL:[MD5.F0F0BA4D815BE446AA6A4583CA3BCA9B] - 02/11/2006 - 09:43:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [86528] O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 18/09/2006 - 22:30:18 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104] O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 18/09/2006 - 22:30:18 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976] O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 19/09/2006 - 12:42:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720] O58 - SDL:[MD5.E5D5499A1C50A54B5161296B6AFE6192] - 21/01/2008 - 03:46:50 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [18024] O58 - SDL:[MD5.222CB641B4B8A1D1126F8033F9FD6A00] - 02/11/2006 - 12:50:06 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [88168] O58 - SDL:[MD5.264CEE7B031A9D6C827F3D0CB031F2FE] - 21/01/2008 - 03:46:56 ---A- . (.Intel Corporation - Intel® PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\E1G6032E.sys [146176] O58 - SDL:[MD5.C4636D6E10469404AB5308D9FD45ED07] - 21/01/2008 - 03:46:59 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [397368] O58 - SDL:[MD5.1A5DA10E18FC2643E94C5DC7FA965868] - 05/11/2007 - 10:56:58 ---A- . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ewusbmdm.sys [112512] O58 - SDL:[MD5.E403AACF8C7BB11375122D2464560311] - 18/05/2009 - 13:17:08 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [34152] O58 - SDL:[MD5.D7109A1E6BD2DFDBCBA72A6BC626A13B] - 21/01/2008 - 03:46:59 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [47672] O58 - SDL:[MD5.3E3BF3627D886736D0B4E90054F929F6] - 21/01/2008 - 03:46:59 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [290872] O58 - SDL:[MD5.8C3951AD2FE886EF76C7B5027C3125D3] - 02/11/2006 - 13:02:39 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44648] O58 - SDL:[MD5.8C7FA71CB1EBCD3EDE8958D27B1BF0B4] - 19/08/2008 - 14:23:00 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\system32\drivers\int15_64.sys [17952] O58 - SDL:[MD5.63C766CDC609FF8206CB447A65ABBA4A] - 02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [37480] O58 - SDL:[MD5.25D0DACC04EADA6DCBC0B1E46F309759] - 25/02/2008 - 15:29:24 ---A- . (.Windows ® Codename Longhorn DDK provider - Sample IOCTL Driver.) -- C:\Windows\system32\drivers\ITEIO.sys [13144] O58 - SDL:[MD5.1281FE73B17664631D12F643CBEA3F59] - 02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [37480] O58 - SDL:[MD5.ACBE1AF32D3123E330A07BFBC5EC4A9B] - 21/01/2008 - 03:46:51 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [113720] O58 - SDL:[MD5.799FFB2FC4729FA46D2157C0065B3525] - 21/01/2008 - 03:46:56 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [105016] O58 - SDL:[MD5.F445FF1DAAD8A226366BFAF42551226B] - 21/01/2008 - 03:47:01 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [113720] O58 - SDL:[MD5.ED49FD1373DE93617A1F6D128D98FE4D] - 29/05/2011 - 08:11:20 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [25912] O58 - SDL:[MD5.5C5CD6AACED32FB26C3FB34B3DCF972F] - 21/01/2008 - 03:46:59 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [35896] O58 - SDL:[MD5.859BC2436B076C77C159ED694ACFE8F8] - 21/01/2008 - 03:46:56 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [438328] O58 - SDL:[MD5.1A11D72920C8BC64315C8EB4DFD82DA2] - 13/07/2007 - 09:21:36 ---A- . (.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) -- C:\Windows\system32\drivers\Mpfp.sys [173072] O58 - SDL:[MD5.3C200630A89EF2C0864D515B7A75802E] - 02/11/2006 - 13:02:24 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [39016] O58 - SDL:[MD5.307BC83250FC8E3B2878D81E7D760299] - 19/04/2010 - 20:29:18 ---A- . (.Apple Inc. - Apple Mobile Device Ethernet.) -- C:\Windows\system32\drivers\netaapl64.sys [22528] O58 - SDL:[MD5.4AC08BD6AF2DF42E0C3196D826C8AEA7] - 02/11/2006 - 13:03:03 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51816] O58 - SDL:[MD5.7D397449AAF52B0E7C79B64F6AD4473E] - 31/01/2008 - 01:48:32 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\system32\drivers\NTIDrvr.sys [16384] O58 - SDL:[MD5.6E022D5F44CD8B029CF799807BB31269] - 05/08/2008 - 05:29:26 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\system32\drivers\nvhda64v.sys [56352] O58 - SDL:[MD5.B34E9BFBD9C61048EF6281C3E7EC210A] - 25/05/2011 - 08:25:24 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 275.33.) -- C:\Windows\system32\drivers\nvlddmkm.sys [13206120] O58 - SDL:[MD5.98350606682594521D56ECCB5D01ECF7] - 01/08/2008 - 05:51:12 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\system32\drivers\nvmfdx64.sys [1498016] O58 - SDL:[MD5.2C040B7ADA5B06F6FACADAC8514AA034] - 21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [128056] O58 - SDL:[MD5.F7EA0FE82842D05EDA3EFDD376DBFDBA] - 21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [54328] O58 - SDL:[MD5.581286807B5832503FD700A3217B589F] - 18/08/2008 - 12:00:08 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor64.sys [170528] O58 - SDL:[MD5.2CFD31D41CDE75328ACAEEE2D4F4B836] - 29/07/2008 - 17:53:48 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Filter Driver.) -- C:\Windows\system32\drivers\psdfilter.sys [22064] O58 - SDL:[MD5.51A585F999672D8BB07F22AE12B40846] - 29/07/2008 - 17:53:50 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Named Pipe Driver.) -- C:\Windows\system32\drivers\PSDNServ.sys [21040] O58 - SDL:[MD5.DB50D3F5C31B1A848B04F7F2A6FF2709] - 29/07/2008 - 17:53:50 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Virtual Disk Driver.) -- C:\Windows\system32\drivers\PSDVdisk.sys [60976] O58 - SDL:[MD5.0B83F4E681062F3839BE2EC1D98FD94A] - 21/01/2008 - 03:46:52 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1221176] O58 - SDL:[MD5.E1C80F8D4D1E39EF9595809C1369BF2A] - 02/11/2006 - 12:50:27 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [124008] O58 - SDL:[MD5.023EB98945069178C21B324B880AD787] - 19/08/2008 - 11:03:00 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys [1487776] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 30/09/2006 - 00:51:44 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040] O58 - SDL:[MD5.3A2F769FAB9582BC720E11EA1DFB184D] - 21/01/2008 - 03:47:26 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [78392] O58 - SDL:[MD5.2F26A2C6FC96B29BEFF5D8ED74E6625B] - 02/11/2006 - 13:02:52 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [49256] O58 - SDL:[MD5.A909667976D3BCCD1DF813FED517D837] - 02/11/2006 - 13:02:37 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [44648] O58 - SDL:[MD5.36887B56EC2D98B9C362F6AE4DE5B7B0] - 02/11/2006 - 13:02:47 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [48232] O58 - SDL:[MD5.A65643ED30A30E46317C0B25818BC9B7] - 25/02/2008 - 15:29:24 ---A- . (.EnTech Taiwan - TVicPort Driver for Windows NT/2000/XP.) -- C:\Windows\system32\drivers\TVicPort64.sys [16080] O58 - SDL:[MD5.00C8CE31657624A125FDB90EFD554371] - 31/01/2008 - 01:48:16 ---A- . (.NewTech Infosystems Corporation - NTI CDROM Filter Driver.) -- C:\Windows\system32\drivers\UBHelper.sys [16384] O58 - SDL:[MD5.697F0446134CDC8F99E69306184FBBB4] - 21/01/2008 - 03:46:56 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [284728] O58 - SDL:[MD5.31707F09846056651EA2C37858F5DDB0] - 02/11/2006 - 12:50:54 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [148072] O58 - SDL:[MD5.85E5E43ED5B48C8376281BAB519271B7] - 21/01/2008 - 03:46:52 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series x64 Windows Driver.) -- C:\Windows\system32\drivers\ulsata2.sys [174696] O58 - SDL:[MD5.CD03479F2DA26500B203ED075C146A7A] - 19/04/2010 - 20:47:42 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl64.sys [50688] O58 - SDL:[MD5.8294B6C3FDB6C33F24E150DE647ECDAA] - 21/01/2008 - 03:46:50 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [18024] O58 - SDL:[MD5.A68F455ED2673835209318DD61BFBB0E] - 21/01/2008 - 03:47:25 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [149048] O58 - SDL:[MD5.C6E5276C00EBDEB096BB5EF4B797D1B6] - 19/08/2008 - 14:23:00 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\SysWOW64\drivers\int15.sys [15392] O58 - SDL:[MD5.8C7FA71CB1EBCD3EDE8958D27B1BF0B4] - 19/08/2008 - 14:23:00 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\SysWOW64\drivers\int15_64.sys [17952] O58 - SDL:[MD5.B309912717C29FC67E1BA4730A82B6DD] - 29/05/2011 - 08:11:30 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [39984] O58 - SDL:[MD5.1BF91F352D746AD7469FA71783B5FAE8] - 28/11/2006 - 20:46:22 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 MPR Protocol Driver.) -- C:\Windows\SysWOW64\drivers\PCAMp50.sys [28224] O58 - SDL:[MD5.1961590AA191B6B7DCF18A6A693AF7B8] - 28/11/2006 - 20:46:20 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\Windows\SysWOW64\drivers\PCASp50.sys [27072] O58 - SDL:[MD5.58D904A2FA970BC23B636C47CB60E649] - 14/07/2009 - 19:15:28 ---A- . (...) -- C:\Windows\SysWOW64\SystemInfo32.sys [14] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM][64Bits] -- Ad-Remover O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPDiag_is1 ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - ??/??/???? - C:\Windows\system32\drivers\aswMonFlt.sys (.not file.) - aswMonFlt(aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT O64 - Services: CurCS - 30/08/2010 - C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys - driverhardwarev2x64(driverhardwarev2x64) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64 O64 - Services: CurCS - 19/08/2008 - C:\Windows\sysWOW64\drivers\int15_64.sys - int15(int15) .(.Acer, Inc. - int15.) - LEGACY_INT15 O64 - Services: CurCS - ??/??/???? - c:\Windows\system32\drivers\ITEIO.sys (.not file.) - ITEIO.SYS(ITEIO.SYS) .(.Windows ® Codename Longhorn DDK provider - Sample IOCTL Driver.) - LEGACY_ITEIO.SYS O64 - Services: CurCS - ??/??/???? - C:\Windows\system32\drivers\mbam.sys (.not file.) - MBAMProtector(MBAMProtector) .(.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - LEGACY_MBAMPROTECTOR O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\Drivers\Mpfp.sys (.not file.) - MPFP(MPFP) .(.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) - LEGACY_MPFP O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\DRIVERS\psdfilter.sys (.not file.) - PSDFilter(PSDFilter) .(.Egis Incorporated - Acer eDataSecurity Management PSD Filter Dr.) - LEGACY_PSDFILTER O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\DRIVERS\PSDNServ.sys (.not file.) - PSDNServ(PSDNServ) .(.Egis Incorporated - Acer eDataSecurity Management PSD Named Pip.) - LEGACY_PSDNSERV O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\DRIVERS\PSDVdisk.sys (.not file.) - PSDVdisk(psdvdisk) .(.Egis Incorporated - Acer eDataSecurity Management PSD Virtual D.) - LEGACY_PSDVDISK ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (. - .) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.html> <htmlfile>[HKCU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - Google O69 - SBI: SearchScopes [HKCU] {DECA3892-BA8F-44b8-A993-A466AD694AE4} - (Secure Search) - Yahoo! Search - Recherche Web ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.75D44FD61EE5ABED71A893AD62BD7162] [sPRF] (...) -- C:\Users\mel\Desktop\layout.bin [509] ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.) O87 - FAEL: "WinCollab-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-DFSR-Out-TCP" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\dfsr.exe (.not file.) O87 - FAEL: "WinCollab-DFSR-In-TCP" |In - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\dfsr.exe (.not file.) O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - Domain - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-In-UDP" |In - Domain - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "{3E7D3CDF-2881-4A36-8DDE-EB511A35B73B}" | In - None - P6 - TRUE | .(.Acer Incorporated - Acer Arcade Live.) -- C:\Program Files (x86)\Acer Arcade Live\Acer Arcade Live Main Page\Acer Arcade Live.exe O87 - FAEL: "{FC34B5C3-FC07-4101-9EB8-52E6CBB1E487}" |In - Domain - P17 - TRUE | .(...) -- C:\Program Files (x86)\Common Files\Mcafee\MNA\McNaSvc.exe (.not file.) O87 - FAEL: "{A630D44E-E507-4CD0-92AC-E84F288AA824}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer DV Magician.) -- C:\Program Files (x86)\Acer Arcade Live\Acer DV Magician\Acer DV Magician.exe O87 - FAEL: "{1DB1AF9B-9BB2-479D-AD3D-C40DF9975F08}" | In - None - P17 - TRUE | .(.CyberLink Corp. - SlideShow DVD.) -- C:\Program Files (x86)\Acer Arcade Live\Acer SlideShow DVD\Acer SlideShow DVD.exe O87 - FAEL: "{AB9F5B5A-900A-4EE1-BEB0-054C0D4CD1BC}" | In - None - P17 - TRUE | .(.Acer Incorporated - VideoMagician.) -- C:\Program Files (x86)\Acer Arcade Live\Acer VideoMagician\Acer VideoMagician.exe O87 - FAEL: "{972C1E4B-C685-4C9F-B6A0-CD1B305E609F}" | In - None - P17 - TRUE | .(.Acer Incorporated - DVDivine.) -- C:\Program Files (x86)\Acer Arcade Live\Acer DVDivine\Acer DVDivine.exe O87 - FAEL: "{BDCE1255-DB9A-4051-997A-B0DE63857833}" | In - None - P17 - TRUE | .(.CyberLink Corp. - HomeMedia.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia\Acer HomeMedia.exe O87 - FAEL: "{FD2B5AB6-81A8-4AC1-B727-84CE93F01D55}" | In - None - P17 - TRUE | .(.Acer Incorporated - HomeMedia Connect.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Acer HomeMedia Connect.exe O87 - FAEL: "{31042F7B-11AA-4DF2-B9F3-36AC310A7ECE}" | In - None - P17 - TRUE | .(.CyberLink - CLMSServer.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe O87 - FAEL: "{0B09902A-CAAA-49E4-87C9-614B947B74DD}" | In - Public - P6 - TRUE | .(.NewTech Infosystems, Inc. - NTI Backup Now 5 Agent service..) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe O87 - FAEL: "{E1E75BE4-020D-4A69-BD67-E74904DAE007}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O87 - FAEL: "{AE5DD2BC-A9C0-46BD-910A-DC6930EB1EBF}" | In - Public - P6 - TRUE | .(.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O87 - FAEL: "{00EE5FEE-4FD9-48B5-AC87-1614CA958ACC}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O87 - FAEL: "{AF785ACC-0B24-47F5-8755-76081718082B}" | In - Public - P17 - TRUE | .(.NewTech Infosystems, Inc. - NTI Backup Now 5 Agent service..) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe O87 - FAEL: "{5FCB307C-A082-441D-A7EA-CE6FACC9349F}" | In - Public - P17 - TRUE | .(.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O87 - FAEL: "{777AE657-EBEA-4A70-A440-52EEE16CBD11}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer Arcade Live.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Trial Creator\Acer HomeMedia Trial Creator.exe O87 - FAEL: "TCP Query User{F0BEA0DF-C533-40F6-B9DE-EEA1F02FEEFD}C:\program files (x86)\emule\emule.exe" | In - Public - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe O87 - FAEL: "UDP Query User{45C3F5D0-8193-4074-A162-B31C4DFFE516}C:\program files (x86)\emule\emule.exe" | In - Public - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe O87 - FAEL: "{02BACF47-952C-440A-877E-45950A2179A8}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe O87 - FAEL: "{F87ABDED-0F92-476B-A7C6-54C9F95CAF4A}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O87 - FAEL: "{373AA0CF-F197-46EF-B7AC-71D02A063893}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{0DDC083F-79AA-4199-BCE4-2E5D6D37E001}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{9A943007-7652-4D12-A140-F668D07A6354}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe ---\\ Scan Additionnel (O88) Database Version : 8450 - (25/06/2011) Clés trouvées (Keys found) : 1 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 4 Fichiers trouvés (Files found) : 0 [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}] =>Spyware.BHO C:\Users\mel\AppData\Roaming\iWin =>Adware.BHO C:\Users\mel\Appdata\LocalLow\P2P_Torrent =>Adware.BHO C:\Program Files (x86)\P2P_Torrent =>Adware.BHO C:\Program Files (x86)\Zuma's Revenge! =>Adware.PopCap ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 20/05/2008 269448 | (Acer HomeMedia Connect Service) . (.CyberLink.) - C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe SR - | Auto 13/08/2010 144672 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 13/08/2010 0 | (Ati External Event Utility) . (.ATI Technologies Inc..) - C:\Windows\system32\Ati2evxx.exe SR - | Auto 10/05/2011 42184 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe SR - | Auto 27/07/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe SR - | Auto 03/03/2008 16384 | (BUNAgentSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe SR - | Auto 29/07/2008 500784 | (eDataSecurity Service) . (.Egis Incorporated.) - C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe SR - | Auto 19/08/2008 24576 | (ETService) . (...) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe SR - | Auto 25/09/2007 65536 | (FTRTSVC) . (.France Telecom SA.) - C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe SS - | Auto 01/12/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 01/12/2010 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 01/03/2011 182768 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe SR - | Demand 24/09/2010 932640 | (iPod Service) . (.Apple Inc..) - C:\Program Files (x86)\iPod\bin\iPodService.exe SR - | Auto 17/01/2007 61440 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe SS - | Demand 01/05/2011 311744 | (maconfservice) . (.CybelSoft.) - C:\Program Files (x86)\ma-config.com\maconfservice.exe SR - | Auto 29/05/2011 366640 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe SS - | Demand 29/05/2011 0 | (McComponentHostService) . (...) - C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe SR - | Auto 25/04/2008 45056 | (NTIBackupSvc) . (.NewTech InfoSystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe SR - | Auto 25/04/2008 131072 | (NTISchedulerSvc) . (...) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe SR - | Auto 25/04/2008 0 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe SR - | Auto 13/06/2008 241734 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe SR - | Auto 21/01/2008 21504 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by mel at 26/06/2011 00:02:07 device: opened successfully user: error reading MBR Disk trace: error: Read Descripteur non valide kernel: error reading MBR ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by mel at 26/06/2011 00:02:09 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin End of the scan (1276 lines in 02mn 03s)(0)
  17. pit67
    © CJoint.com, 2010
  18. pit67
    Rapport de ZHPDiag v1.27.2347 par Nicolas Coolman, Update du 25/06/2011 Run by mel at 26/06/2011 00:00:06 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v7.0.6001.18000 (Defaut) GCIE: Google Chrome v12.0.742.100 ---\\ System Information Windows Vista Home Premium Edition, 64-bit Service Pack 1 (Build 6001) Processor: Intel64 Family 6 Model 15 Stepping 13, GenuineIntel Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 3838 MB (46% free) System Restore: Activé (Enable) System drive C: has 286 GB (62%) free of 456 GB ---\\ Logged in mode Computer Name: PC-DE-MEL User Name: mel All Users Names: mel, Administrateur, Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Users\mel\AppData\Roaming %LocalAppData%=C:\Users\mel\AppData\Local %StartMenu%=C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 286 Go of 456 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 454 Go of 460 Go) F:\ CD-ROM drive (Not Inserted) H:\ Floppy drive, Flash card reader, USB Key (Not Inserted) I:\ Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK ---\\ Recherche particulière de fichiers génériques [MD5.F6D765FB6B457542D954682F50C26E4F] - (.Microsoft Corporation - Explorateur Windows.) (.21/01/2008 03:48:44.) -- C:\Windows\Explorer.exe [3080704] [MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 03:48:04.) -- C:\Windows\system32\Wininit.exe [96768] [MD5.618A51B5FB9DD5810960F6044C0E9289] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.27/06/2008 05:15:28.) -- C:\Windows\system32\wininet.dll [827392] [MD5.C2610B6BDBEFC053BBDAB4F1B965CB24] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.21/01/2008 03:50:38.) -- C:\Windows\system32\Winlogon.exe [314880] ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 37/3591 ~ Mes musiques (My Musics) : 23/766 ~ Mes Videos (My Videos) : 17/91 ~ Mes Favoris (My Favorites) : 7/40 ~ Mes Documents (My Documents) : 25/921 ~ Mon Bureau (My Desktop) : 3/260 ~ Menu demarrer (Programs) : 6/33 ~ Dossier utilisateur (AppData) : 58/4137 ---\\ Processus lancés [MD5.1AF1360E070BD8EA402F793EF6FBAAEB] - (.Macrovision Corporation - Macrovision Software Manager.) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe [222128] [MD5.CDF9BA83DB9F47A4A3ABDF614DA4F0CE] - (.Google Inc. - Programme d'installation de Google.) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe [136312] [MD5.89F7C30A91E5581BDF14C62AB46A2B2D] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe [255536] [MD5.F0EA603E7B91046CA48EA4B3593A007D] - (.Micro Application - Pas de description.) -- C:\Program Files (x86)\Micro Application\LauncherMA.exe [485376] [MD5.303EAD15DE8EE43CC874C709BB17BF2E] - (.OpenOffice.org - OpenOffice.org 2.1.) -- C:\Program Files (x86)\OpenOffice.org 2.1\program\soffice.exe [2334720] [MD5.D7EE83A9257D508656172A2B9DD3C317] - (.Pas de propriétaire - NTI Backup Now 5 Tray Module.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe [28672] [MD5.407811B64B588FE80FA2E27E783B41EA] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421160] [MD5.1891EEF1A57520E272AF39A56C9C6CB5] - (.Egis inc. - MSN Hook Loader (32 bit).) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSMSNLoader32.exe [454704] [MD5.12902A626CAE9F362AAE39EF1FC79E87] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Systray\SystrayApp.exe [94208] [MD5.4C6898F15701AE7C41775C14E423FE25] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [3459712] [MD5.E9257AE2500A3C8272B6C32A1329DAA3] - (.France Telecom SA - Pas de description.) -- C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe [90112] [MD5.550E3443C77EDE680C06BB47D9DA276D] - (.OpenOffice.org - OpenOffice.org 2.1.) -- C:\Program Files (x86)\OpenOffice.org 2.1\program\soffice.BIN [2486272] [MD5.AAAC76A931480ADD2C9B251621EB524E] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Launcher\Launcher.exe [598016] [MD5.54ABBCF1C68FAEFF10BCCD254740AE16] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\connectivity\connectivitymanager.exe [716800] [MD5.032F85FBFE612ECC455ABA7474E5914F] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\connectivity\CoreCom\CoreCom.exe [360448] [MD5.987B72E406C172F9F5184F1B4F0CE1BB] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\connectivity\CoreCom\OraConfigRecover.exe [28672] [MD5.167A81D7A06119ABF84042F88EE6F6DF] - (.France Telecom SA - Pas de description.) -- C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe [65536] [MD5.E75D8F09B954FB8EF4B83E4EE9E985F4] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [660992] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) P2 - FPN: [HKCU] [@update.flock.com/Flock Update;version=8] - (.Flock Inc. - Flock Update.) -- C:\Users\mel\AppData\Local\Flock\Update\1.2.213.0\npFlockOneClick8.dll ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\mel\AppData\Local\Google\Chrome\User Data\Default\Preferences G0 - GCSP: Preference [user Data\Default][HomePage] Google G2 - GCE: Preference [user Data\Default] [fheoggkfdfchfphceeifdbepaooicaho] SiteAdvisor v.3.31.137.7 (Activé) ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com R0 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Microsoft Corporation R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) [64Bits] - {08C06D61-F1F3-4799-86F8-BE1A89362C85} . (...) (No version) -- (.not file.) R3 - URLSearchHook: (no name) [64Bits] - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (...) (No version) -- (.not file.) ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll O2 - BHO: McAntiPhishingBHO [64Bits] - {377C180E-6F0E-4D4C-980F-F45BD3D40CF4} . (...) -- c:\PROGRA~2\mcafee\msk\MCAPBH~1.DLL (.not file.) O2 - BHO: ShowBarObj Class [64Bits] - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} . (.Egis - ActiveToolBand Module.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\ActiveToolBand.dll O2 - BHO: (no name) [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} Clé orpheline O2 - BHO: (no name) [64Bits] - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline O2 - BHO: avast! WebRep [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Acer eDataSecurity Management [64Bits] - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} . (.Egis Incorporated. - Acer eDataSecurity Management Explorer Tool.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\eDStoolbar.dll O3 - Toolbar: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] . (...) -- C:\Program Files\Acer\Empowering Technology\SysMonitor.exe O4 - HKLM\..\Run: [EmpoweringTechnology] . (.Pas de propriétaire - Acer Empowering Technology Framework Launch.) -- C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe O4 - HKLM\..\Run: [eDataSecurity Loader] . (.Egis Incorporated - Acer eDataSecurity Management Loader.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\eDSloader.exe O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RAVCpl64.exe O4 - HKLM\..\Run: [skytel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\Windows\Skytel.exe O4 - HKLM\..\Run: [ProductReg] . (.Acer - ProductR Application.) -- C:\Program Files\Acer\WR_PopUp\ProductReg.exe O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [iSUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe O4 - HKCU\..\Run: [Flock Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe O4 - HKCU\..\Run: [VMCL] . (...) -- C:\Program Files (x86)\vodafone\vmclite\DongleEnumerator.exe O4 - HKLM\..\Wow6432Node\Run: [PCMMediaSharing] . (...) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe O4 - HKLM\..\Wow6432Node\Run: [bkupTray] . (.Pas de propriétaire - NTI Backup Now 5 Tray Module.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe O4 - HKLM\..\Wow6432Node\Run: [eRecoveryService] Clé orpheline O4 - HKLM\..\Wow6432Node\Run: [EM_EXEC] . (.Logitech Inc. - Control Center.) -- C:\PROGRA~2\Logitech\MOUSEW~1\SYSTEM\EM_exeC.exe O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe O4 - HKLM\..\Wow6432Node\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe O4 - HKLM\..\Wow6432Node\Run: [Anti-Blaxx Manager] . (.MB-Soft, HAANDI - Pas de description.) -- C:\Program Files (x86)\Anti-Blaxx\Anti-Blaxx.exe O4 - HKLM\..\Wow6432Node\Run: [Application Layer Gateway] . (...) -- C:\Program Files (x86)\Common Files\alq.exe O4 - HKLM\..\Wow6432Node\Run: [systrayORAHSS] . (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Systray\SystrayApp.exe O4 - HKLM\..\Wow6432Node\Run: [ORAHSSSessionManager] . (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\SessionManager\SessionManager.exe O4 - HKLM\..\Wow6432Node\Run: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [iSUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [Flock Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [VMCL] . (...) -- C:\Program Files (x86)\vodafone\vmclite\DongleEnumerator.exe O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk . (.McAfee, Inc..) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lanceur.lnk . (.Micro Application.) -- C:\Program Files (x86)\Micro Application\LauncherMA.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.1.lnk . (...) -- C:\Program Files (x86)\OpenOffice.org 2.1\program\quickstart.exe ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O4 - Global Startup: C:\Users\mel\Desktop\AD-R.lnk . (...) -- C:\Program Files (x86)\Ad-Remover\main.exe O4 - Global Startup: C:\Users\mel\Desktop\DivX Movies.lnk . (...) -- C:\Users\mel\Videos\DivX Movies O4 - Global Startup: C:\Users\mel\Desktop\DVD Shrink 3.2.lnk . (.DVD Shrink.) -- C:\Program Files (x86)\DVD Shrink\DVD Shrink 3.2.exe O4 - Global Startup: C:\Users\mel\Desktop\Internet - Raccourci.lnk - Clé orpheline O4 - Global Startup: C:\Users\mel\Desktop\Jeux - Raccourci.lnk . (...) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O4 - Global Startup: C:\Users\mel\Desktop\Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation.) -- C:\Program Files (x86)\Microsoft Works\MSWorks.exe O4 - Global Startup: C:\Users\mel\Desktop\OpenOffice.org Writer.lnk . (...) -- C:\Windows\Installer\{E5430A11-6799-41E0-A9D5-F68BDC67AAD8}\swriter.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Anti-Blaxx.lnk . (.MB-Soft, HAANDI.) -- C:\Program Files (x86)\Anti-Blaxx\Anti-Blaxx.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk . (...) -- C:\Windows\Installer\{20ACB2F8-3BCA-45A8-80A2-9D3CB5C25F43}\SafariIco.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\doors of the mind inner mysteries - Raccourci.lnk . (...) -- J:\Doors of the Mind - Les Méandres du Subconscient\doors of the mind inner mysteries.exe (.not file. O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Flock.lnk . (.Flock Inc. and The Chromium Authors.) -- C:\Users\mel\AppData\Local\Flock\Application\flock.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ImTOO Ringtone Maker.lnk . (...) -- C:\Program Files (x86)\ImTOO\Ringtone Maker\ringtonemaker.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\McAfee Security Center.lnk . (...) -- C:\Program Files (x86)\McAfee\MSC\mcshell.exe (.not file.) O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~1\Office12\EXCEL.exe O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll ---\\ Site dans la Zone de confiance d'Internet Explorer (O15) O15 - Trusted Zone: [HKCU\...\Domains\www] http.orange.fr ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{60342891-EDB5-4417-9F14-172EA0E05AD4}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{60342891-EDB5-4417-9F14-172EA0E05AD4}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{60342891-EDB5-4417-9F14-172EA0E05AD4}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\system32\webcheck.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) [64Bits] - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Acer HomeMedia Connect Service (Acer HomeMedia Connect Service) . (.CyberLink - CLMSServer.) - C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - Apple Mobile Device Service.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: (Ati External Event Utility) . (...) - C:\Windows\system32\Ati2evxx.exe (.not file.) O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) . (.NewTech Infosystems, Inc. - NTI Backup Now 5 Agent service..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe O23 - Service: eDataSecurity Service (eDataSecurity Service) . (.Egis Incorporated - Acer eDataSecurity Management Service.) - C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe O23 - Service: Empowering Technology Service (ETService) . (.Pas de propriétaire - Acer Empowering Technology Framework Servic.) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) . (.France Telecom SA - Pas de description.) - C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) . (.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) . (...) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) . (...) - C:\Windows\system32\nvvsvc.exe (.not file.) O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000Core.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000UA.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\McDefragTask.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\McQcTask.job [MD5.CDF9BA83DB9F47A4A3ABDF614DA4F0CE] [APT] [FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000Core] (.Google Inc..) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe [MD5.CDF9BA83DB9F47A4A3ABDF614DA4F0CE] [APT] [FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000UA] (.Google Inc..) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.00000000000000000000000000000000] [APT] [McAfee Cleanup] (...) -- C:\Users\mel\AppData\Local\Temp\MCCLEANUP.5.0.285.4_DMPackage_en-US_Release\mccleanup.exeSCUéMQCéMQCCUéMSADéMSHRéMSKéMSKCUéMWLéNMCéRedirSvcéVSéMSC -silen (.not file.) [MD5.00000000000000000000000000000000] [APT] [McQcTask] (...) -- c:\PROGRA~2\mcafee\mqc\QcConsol.exe (.not file.) [MD5.973567B98CDFC147DF4E60471D9DF072] [APT] [{8FCCABF3-25AB-4D87-8A80-AE593CD95A8C}] (...) -- C:\PROGRA~2\P2P_TO~1\UNWISE.exe [MD5.7B43567B4C32AD7ADED537CD3B1342B9] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys O41 - Driver: (MPFP) . (.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) - C:\Windows\System32\Drivers\Mpfp.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Tcpip) . (.Microsoft Corporation - TCP/IP Driver.) - C:\Windows\System32\drivers\tcpip.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys ---\\ Logiciels installés (O42) O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{5A2F65A4-808F-4A1E-973E-92E17824982D} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{3EC77D26-799B-4CD8-914F-C1565E796173} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{430971B1-C31E-45DA-81E0-72C095BAB72C} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{B3F4DC34-7F60-4B7C-A79F-1C13012D99D4} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{F7A31780-33C4-4E39-951A-5EC9B91D7BF1} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{00C5525B-3CB3-467D-8100-2E6FB306CD86} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-040C-1000-0000000FF1CE}_HOMESTUDENTR_{EC50B538-CBE1-42E6-B7FE-87AA540AADFB} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{EC50B538-CBE1-42E6-B7FE-87AA540AADFB} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{BEE75E01-DD3F-4D5F-B96C-609E6538D419} O42 - Logiciel: 7-Zip 9.20 - (.Pas de propriétaire.) [HKLM][64Bits] -- 7-Zip O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM][64Bits] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07} O42 - Logiciel: Acer Arcade Live Main Page - (.Acer Inc..) [HKLM][64Bits] -- {EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37} O42 - Logiciel: Acer DV Magician - (.Acer Inc..) [HKLM][64Bits] -- {F6EFFB76-4A07-11DA-9D78-000129760D75} O42 - Logiciel: Acer DVDivine - (.Acer Inc..) [HKLM][64Bits] -- {B145EC69-66F5-11D8-9D75-000129760D75} O42 - Logiciel: Acer Empowering Technology - (.Acer Incorporated.) [HKLM][64Bits] -- {8F1B6239-FEA0-450A-A950-B05276CE177C} O42 - Logiciel: Acer GameZone Console DTV 2.0.1.1 - (.Oberon Media, Inc..) [HKLM][64Bits] -- Acer GameZone Console_is1 O42 - Logiciel: Acer HomeMedia - (.Acer Inc..) [HKLM][64Bits] -- {AA4BF92B-2AAF-11DA-9D78-000129760D75} O42 - Logiciel: Acer HomeMedia Connect - (.Acer Inc..) [HKLM][64Bits] -- {132888AE-EF67-41C5-BCA2-7D5D2488AB63} O42 - Logiciel: Acer HomeMedia Trial Creator - (.Acer Inc..) [HKLM][64Bits] -- {B580C409-E16F-44FF-904D-3AE94E113BE0} O42 - Logiciel: Acer Product Registration - (.Acer Incorporated.) [HKLM][64Bits] -- {DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E} O42 - Logiciel: Acer ScreenSaver - (.Acer Incorporated.) [HKLM][64Bits] -- {79DD56FC-DB8B-47F5-9C80-78B62E05F9BC} O42 - Logiciel: Acer SlideShow DVD - (.Acer Inc..) [HKLM][64Bits] -- {41581EF5-45A7-11DA-9D78-000129760D75} O42 - Logiciel: Acer VideoMagician - (.Acer Inc..) [HKLM][64Bits] -- {F79A208D-D929-11D9-9D77-000129760D75} O42 - Logiciel: Acer eDataSecurity Management - (.Egis Inc..) [HKLM][64Bits] -- {A5633652-3795-4829-BB0B-644F0279E279} O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9} O42 - Logiciel: Acer eSettings Management - (.Acer Incorporated.) [HKLM][64Bits] -- {13D85C14-2B85-419F-AC41-C7F21E68B25D} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 9 ActiveX - (.Adobe Systems.) [HKLM][64Bits] -- ShockwaveFlash O42 - Logiciel: Adobe Reader 8.1.0 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-A81000000003} O42 - Logiciel: Anti-Blaxx 1.16 - (.MB-Soft.) [HKLM][64Bits] -- Anti-Blaxx_is1 O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {DAEAFD68-BB4A-4507-A241-C8804D2EA66D} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {33EB1061-ABF1-4470-A540-32E97A610536} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033} O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7} O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {41BF0DE4-5BAE-4B88-AFD3-86A30B222186} O42 - Logiciel: CANON iMAGE GATEWAY Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- CANON iMAGE GATEWAY Task O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: Canon Internet Library for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- Canon Internet Library for ZoomBrowser EX O42 - Logiciel: Canon RAW Image Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- RAW Image Task O42 - Logiciel: Canon Utilities CameraWindow - (.Canon Inc..) [HKLM][64Bits] -- CameraWindowLauncher O42 - Logiciel: Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- CameraWindowDVC6 O42 - Logiciel: Canon Utilities Digital Photo Professional 3.4 - (.Canon Inc..) [HKLM][64Bits] -- DPP O42 - Logiciel: Canon Utilities EOS Utility - (.Canon Inc..) [HKLM][64Bits] -- EOS Utility O42 - Logiciel: Canon Utilities MyCamera - (.Canon Inc..) [HKLM][64Bits] -- MyCamera O42 - Logiciel: Canon Utilities PhotoStitch - (.Canon Inc..) [HKLM][64Bits] -- PhotoStitch O42 - Logiciel: Canon Utilities Picture Style Editor - (.Canon Inc..) [HKLM][64Bits] -- Picture Style Editor O42 - Logiciel: Canon Utilities RemoteCapture Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- RemoteCaptureTask O42 - Logiciel: Canon Utilities WFT-E1/E2/E3 Utility - (.Canon Inc..) [HKLM][64Bits] -- WFTK O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- ZoomBrowser EX O42 - Logiciel: Canon ZoomBrowser EX Memory Card Utility - (.Canon Inc..) [HKLM][64Bits] -- ZoomBrowser EX Memory Card Utility O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM][64Bits] -- DVD Shrink_is1 O42 - Logiciel: DVD X Player 4.1 Professionnel - (.Pas de propriétaire.) [HKLM][64Bits] -- DVD X Player 4.1 Professionnel_is1 O42 - Logiciel: DivX Codec - (.DivX, Inc..) [HKLM][64Bits] -- {7B63B2922B174135AFC0E1377DD81EC2} O42 - Logiciel: DivX Converter - (.DivX, Inc..) [HKLM][64Bits] -- {B13A7C41581B411290FBC0395694E2A9} O42 - Logiciel: DivX Player - (.DivX, Inc..) [HKLM][64Bits] -- {8ADFC4160D694100B5B8A22DE9DCABD9} O42 - Logiciel: DivX Plus DirectShow Filters - (.DivX, Inc..) [HKLM][64Bits] -- DivX Plus DirectShow Filters O42 - Logiciel: DivX Web Player - (.DivX,Inc..) [HKLM][64Bits] -- {B7050CBDB2504B34BC2A9CA0A692CC29} O42 - Logiciel: EPSON SX100 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON SX100 Series O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM][64Bits] -- EPSON Scanner O42 - Logiciel: EPSON Stylus SX100_TX100 Manuel - (.Pas de propriétaire.) [HKLM][64Bits] -- EPSON Stylus SX100_TX100 Guide d'utilisation O42 - Logiciel: Enigmes & Objets Cachés - Le tour du monde en 80 jours - (.Pas de propriétaire.) [HKLM][64Bits] -- {336B89D4-5021-44EF-AC17-2058AC2A4488} O42 - Logiciel: Enigmes et Objets Cachés - L'Académie de Magie - (.Pas de propriétaire.) [HKLM][64Bits] -- {6F4AF2D8-D98C-497C-A211-0349CACC0589} O42 - Logiciel: Enigmes et Objets Cachés l île Mystérieuse - (.Pas de propriétaire.) [HKLM][64Bits] -- {2BCE6C52-F35D-4F80-981F-4C8299CD21A5} O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {DEDB47A3-C988-4A43-A645-E2CEA571E680} O42 - Logiciel: Flock (3.5.3.4641) - (.Flock.) [HKCU] -- Flock O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9} O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Guide de l'utilisateur Logitech - (.Pas de propriétaire.) [HKLM][64Bits] -- {CBE0FCA1-4E95-11D4-9875-00105ACE7734} O42 - Logiciel: ImTOO Ringtone Maker - (.ImTOO.) [HKLM][64Bits] -- ImTOO Ringtone Maker O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite_Wave3 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619} O42 - Logiciel: LauncherMA - (.Micro Application.) [HKLM][64Bits] -- {C06EFB22-B5DB-46C5-9215-BCB5C19C0858} O42 - Logiciel: Le Trésor des Pirates - (.Pas de propriétaire.) [HKLM][64Bits] -- {3251B64D-81E8-429B-93F8-DB29BC2045CD} O42 - Logiciel: Logitech MouseWare 9.24 - (.Pas de propriétaire.) [HKLM][64Bits] -- {5809E7CF-4DCF-11D4-9875-00105ACE7734} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM][64Bits] -- {7DB4CB30-B94A-4282-AC8A-C86F615AA45B} O42 - Logiciel: Mahjong Escape Ancient China - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743} O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.0.1200 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Micro Application - Super Patiences et Réussites - (.Pas de propriétaire.) [HKLM][64Bits] -- Super Patiences et Réussites O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- {8E34682C-8118-31F1-BC4C-98CD9675E1C2} O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- HOMESTUDENTR O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Office 64-bit Components 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM][64Bits] -- {E50AE784-FABE-46DA-A1F8-7B6B56DCB22E} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-4627-81f2-1818da5d550d} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM][64Bits] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C} O42 - Logiciel: NTI Backup Now 5 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403} O42 - Logiciel: NTI JewelCase Maker Hot Fix - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{DDA223A7-627F-4173-9CA4-A9C531BCBB62} O42 - Logiciel: NTI Media Maker 8 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC} O42 - Logiciel: NTI Photo Maker Hot Fix - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{B9B02A9E-8074-4C3F-AAE5-311528F34FED} O42 - Logiciel: NVIDIA Drivers - (.Pas de propriétaire.) [HKLM] -- NVIDIA Drivers O42 - Logiciel: NVIDIA Pilote graphique 275.33 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver O42 - Logiciel: Navigateur Orange - (.Pas de propriétaire.) [HKLM][64Bits] -- {ORAHSS}.Browser O42 - Logiciel: Odyssée Sibérienne - (.Mindscape.) [HKLM][64Bits] -- {0B270394-8711-4569-AD19-D52054ABCAA0} O42 - Logiciel: OpenOffice.org 2.1 - (.OpenOffice.org.) [HKLM][64Bits] -- {E5430A11-6799-41E0-A9D5-F68BDC67AAD8} O42 - Logiciel: Orange - Logiciels Internet - (.Pas de propriétaire.) [HKLM][64Bits] -- {ORAHSS}.UninstallSuite O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {205C6BDD-7B73-42DE-8505-9A093F35A238} O42 - Logiciel: P2P_Torrent Toolbar - (.Pas de propriétaire.) [HKLM][64Bits] -- P2P_Torrent Toolbar O42 - Logiciel: PE585QAEncoder-64 - (.YUAN.) [HKLM] -- {D8B2C435-8737-431E-8784-24CD13B0B821} O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {E7004147-2CCA-431C-AA05-2AB166B9785D} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Safari - (.Apple Inc..) [HKLM][64Bits] -- {20ACB2F8-3BCA-45A8-80A2-9D3CB5C25F43} O42 - Logiciel: Sandlot Games Client Services 1.2.2 - (.Sandlot Games.) [HKLM][64Bits] -- Sandlot Games Client Services 1.2.2_is1 O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: VC80CRTRedist - 8.0.50727.762 - (.DivX, Inc.) [HKLM][64Bits] -- {767CC44C-9BBC-438D-BAD3-FD4595DD148B} O42 - Logiciel: VLC media player 1.1.4 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player O42 - Logiciel: Vodafone Mobile Connect Lite - (.Vodafone.) [HKLM][64Bits] -- {B5761811-28F3-4257-B537-815C5EEF472C} O42 - Logiciel: Web Games Player Plugin - (.Zylom Games.) [HKLM][64Bits] -- Web Games Player Plugin O42 - Logiciel: WinRAR archiver - (.Pas de propriétaire.) [HKLM][64Bits] -- WinRAR archiver O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {B3B487E7-6171-4376-9074-B28082CEB504} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1} O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {76810709-A7D3-468D-9167-A1780C1E766C} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {5DD76286-9BE7-4894-A990-E905E91AC818} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B} O42 - Logiciel: World Riddles - Seven Wonders - (.Pas de propriétaire.) [HKLM][64Bits] -- am-worldriddlessevenwonders O42 - Logiciel: Your Product - (.Your Company.) [HKLM][64Bits] -- Your Product1.0 O42 - Logiciel: Zuma Deluxe - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700} O42 - Logiciel: Zuma's Revenge! - (.AllSmartGames.) [HKLM][64Bits] -- Zuma's Revenge!1.0 O42 - Logiciel: avast! Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- avast O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM][64Bits] -- eMule O42 - Logiciel: eSobi v2 - (.esobi Inc..) [HKLM][64Bits] -- InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA} O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {104FB32A-7CE3-4C4B-B2AA-70C613FF9DFA} O42 - Logiciel: livebox - (.SAGEM.) [HKLM][64Bits] -- {17342E3B-0818-4A6F-BFF8-99476605ADD6} ---\\ HKCU & HKLM Software Keys [HKCU\Software\7-Zip] [HKCU\Software\ABBYY] [HKCU\Software\ATI Technologies Inc.] [HKCU\Software\ATI] [HKCU\Software\AVAST Software] [HKCU\Software\Acer] [HKCU\Software\Ad-Remover] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Software\Google] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software\Monitored] [HKCU\Software\AppDataLow\Software\P2P_Torrent] [HKCU\Software\AppDataLow\Software\settings] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Big Fish Games] [HKCU\Software\Bilbo] [HKCU\Software\COOPP] [HKCU\Software\Canon] [HKCU\Software\Canon_Inc_IC] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CyberLink] [HKCU\Software\DVD Shrink] [HKCU\Software\DVDXStudios] [HKCU\Software\DivXNetworks] [HKCU\Software\EPSON] [HKCU\Software\Fenomen Games] [HKCU\Software\GameHouse] [HKCU\Software\GameXzone] [HKCU\Software\GoBit] [HKCU\Software\Google] [HKCU\Software\IM Providers] [HKCU\Software\ImTOO] [HKCU\Software\InstallShield] [HKCU\Software\Intenium] [HKCU\Software\JollyBear] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\Logitech] [HKCU\Software\Macromedia] [HKCU\Software\Macrovision] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\McAfee] [HKCU\Software\Micro Application] [HKCU\Software\Mindscape] [HKCU\Software\MozillaPlugins] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\NewTech Infosystems] [HKCU\Software\Northcode Inc] [HKCU\Software\ODBC] [HKCU\Software\Oberon Media] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Realtek] [HKCU\Software\ReflexiveArcade] [HKCU\Software\S3R521] [HKCU\Software\SEIKO EPSON] [HKCU\Software\Safer Networking Limited] [HKCU\Software\SiteAdvisor] [HKCU\Software\Softonic] [HKCU\Software\SpinTop] [HKCU\Software\Test3D] [HKCU\Software\Trolltech] [HKCU\Software\Vodafone] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Wow6432Node] [HKCU\Software\Zylom] [HKCU\Software\cybelsoft] [HKCU\Software\eMule] [HKCU\Software\eSobi] [HKLM\Software\ABBYY] [HKLM\Software\AMD] [HKLM\Software\ATI Technologies] [HKLM\Software\ATI] [HKLM\Software\AVAST Software] [HKLM\Software\Acer Incorporated] [HKLM\Software\Acer] [HKLM\Software\Adobe] [HKLM\Software\America Online] [HKLM\Software\Anti-Blaxx] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Big Fish Games] [HKLM\Software\BrowserChoice] [HKLM\Software\Canon] [HKLM\Software\Canon_Inc_IC] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CyberLink] [HKLM\Software\Cyberlink] [HKLM\Software\Digital River] [HKLM\Software\DivXNetworks] [HKLM\Software\EPSON] [HKLM\Software\FRANCE TELECOM] [HKLM\Software\GEAR Software] [HKLM\Software\GameInstaller] [HKLM\Software\Google] [HKLM\Software\Hauppauge] [HKLM\Software\ImTOO] [HKLM\Software\Intel] [HKLM\Software\Khronos] [HKLM\Software\LightScribe] [HKLM\Software\Logitech] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\Micro Application] [HKLM\Software\Mindscape] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\NewTech Infosystems] [HKLM\Software\ODBC] [HKLM\Software\Oberon Media] [HKLM\Software\OemSetup] [HKLM\Software\OpenOffice.org] [HKLM\Software\P2P_Torrent] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SRS Labs] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Sagem] [HKLM\Software\Sonic] [HKLM\Software\Sun Microsystems] [HKLM\Software\Trad-FR] [HKLM\Software\VideoLAN] [HKLM\Software\Vodafone] [HKLM\Software\Waves Audio] [HKLM\Software\WinRAR] [HKLM\Software\Wise Solutions] [HKLM\Software\Wow6432Node] [HKLM\Software\cybelsoft] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 25/04/2009 - 20:46:20 - [79247895] ----D- C:\Program Files\Acer O43 - CFD: 24/06/2011 - 19:49:32 - [0] ----D- C:\Program Files\ATI Technologies O43 - CFD: 24/06/2011 - 18:34:58 - [168715275] ----D- C:\Program Files\AVAST Software O43 - CFD: 06/11/2010 - 14:54:54 - [195827] ----D- C:\Program Files\Bonjour O43 - CFD: 23/06/2011 - 20:30:42 - [7422296] ----D- C:\Program Files\CCleaner O43 - CFD: 24/06/2011 - 16:47:14 - [222907232] ----D- C:\Program Files\Common Files O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\Program Files\Fichiers communs O43 - CFD: 24/06/2011 - 16:35:32 - [0] ----D- C:\Program Files\Google O43 - CFD: 21/01/2008 - 05:09:38 - [1631428] ----D- C:\Program Files\Internet Explorer O43 - CFD: 06/11/2010 - 15:01:24 - [2345960] ----D- C:\Program Files\iTunes O43 - CFD: 02/11/2006 - 17:07:28 - [93941175] ----D- C:\Program Files\Microsoft Games O43 - CFD: 31/10/2008 - 13:45:08 - [1140374] ----D- C:\Program Files\Microsoft Office O43 - CFD: 07/11/2010 - 17:48:46 - [116183662] ----D- C:\Program Files\Movie Maker O43 - CFD: 02/11/2006 - 17:07:28 - [9908] ----D- C:\Program Files\MSBuild O43 - CFD: 25/06/2011 - 00:08:12 - [334434869] ----D- C:\Program Files\NVIDIA Corporation O43 - CFD: 02/11/2006 - 17:07:28 - [26393182] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 02/11/2006 - 17:44:56 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 21/01/2008 - 05:09:42 - [1302528] ----D- C:\Program Files\Windows Calendar O43 - CFD: 21/01/2008 - 05:09:38 - [2999808] ----D- C:\Program Files\Windows Collaboration O43 - CFD: 21/01/2008 - 05:09:30 - [6395856] ----D- C:\Program Files\Windows Defender O43 - CFD: 21/01/2008 - 05:09:36 - [9655416] ----D- C:\Program Files\Windows Journal O43 - CFD: 04/11/2010 - 08:09:22 - [9622376] ----D- C:\Program Files\Windows Mail O43 - CFD: 21/01/2008 - 05:09:38 - [5138167] ----D- C:\Program Files\Windows Media Player O43 - CFD: 25/04/2009 - 20:41:34 - [8038670] ----D- C:\Program Files\Windows NT O43 - CFD: 21/01/2008 - 05:09:36 - [16354466] ----D- C:\Program Files\Windows Photo Gallery O43 - CFD: 21/01/2008 - 05:09:38 - [7017819] ----D- C:\Program Files\Windows Sidebar O43 - CFD: 10/10/2006 - 21:06:44 - [3608665] ----D- C:\Program Files\YUAN O43 - CFD: 26/04/2009 - 11:40:30 - [5105831] ----D- C:\Program Files\Common Files\Apple O43 - CFD: 02/11/2010 - 21:51:26 - [207639065] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 02/11/2006 - 15:33:54 - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 02/11/2006 - 15:33:54 - [608256] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 21/01/2008 - 05:09:30 - [9551378] ----D- C:\Program Files\Common Files\System O43 - CFD: 31/10/2008 - 14:15:06 - [16083] ----D- C:\ProgramData\Acer GameZone Console O43 - CFD: 31/10/2008 - 14:10:34 - [770] ----D- C:\ProgramData\Adobe O43 - CFD: 27/08/2010 - 18:04:12 - [0] ----D- C:\ProgramData\Alawar Entertainment O43 - CFD: 10/03/2011 - 21:12:36 - [3154583] ----D- C:\ProgramData\Alwil Software O43 - CFD: 06/11/2010 - 14:57:40 - [59300057] ----D- C:\ProgramData\Apple O43 - CFD: 26/04/2009 - 11:42:44 - [83250728] ----D- C:\ProgramData\Apple Computer O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Application Data O43 - CFD: 29/08/2009 - 22:09:04 - [1017812] ----D- C:\ProgramData\Arcade Lab O43 - CFD: 22/06/2011 - 17:18:04 - [43038171] ----D- C:\ProgramData\AVAST Software O43 - CFD: 27/08/2010 - 17:59:10 - [0] ----D- C:\ProgramData\Big Fish Games O43 - CFD: 28/01/2011 - 17:24:16 - [9108805] ----D- C:\ProgramData\Bilbo O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Bureau O43 - CFD: 24/06/2011 - 21:46:58 - [0] ----D- C:\ProgramData\Comodo O43 - CFD: 21/12/2010 - 20:31:16 - [144196] ----D- C:\ProgramData\CyberLink O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Desktop O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Documents O43 - CFD: 03/03/2011 - 14:00:02 - [17224] ----D- C:\ProgramData\DVD Shrink O43 - CFD: 14/07/2009 - 20:15:30 - [10599] ----D- C:\ProgramData\DVD X Studios O43 - CFD: 28/10/2010 - 20:42:42 - [0] ----D- C:\ProgramData\eMule O43 - CFD: 26/04/2009 - 10:13:06 - [6432265] ----D- C:\ProgramData\EPSON O43 - CFD: 28/10/2010 - 21:08:22 - [420] ----D- C:\ProgramData\eSobi O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Favoris O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Favorites O43 - CFD: 25/08/2010 - 21:24:04 - [10448] ----D- C:\ProgramData\Fenomen Games O43 - CFD: 31/10/2008 - 14:16:04 - [0] ----D- C:\ProgramData\FloodLightGames O43 - CFD: 08/02/2011 - 19:15:16 - [243462] ----D- C:\ProgramData\Funny Bear Studio O43 - CFD: 27/08/2010 - 22:46:38 - [89518] ----D- C:\ProgramData\GameHouse O43 - CFD: 12/11/2010 - 15:33:06 - [148442] ----D- C:\ProgramData\GameXzone O43 - CFD: 03/01/2011 - 10:59:42 - [15172954] ----D- C:\ProgramData\GoBit Games O43 - CFD: 23/06/2011 - 20:35:26 - [526512] ----D- C:\ProgramData\Google O43 - CFD: 11/12/2010 - 10:33:26 - [26770] ----D- C:\ProgramData\HoverBee Studios O43 - CFD: 30/08/2010 - 16:31:12 - [503164] ----D- C:\ProgramData\Intenium O43 - CFD: 26/05/2009 - 11:07:06 - [114619] ----D- C:\ProgramData\InterAction studios O43 - CFD: 26/08/2010 - 10:39:16 - [10916166] ----D- C:\ProgramData\JollyBear O43 - CFD: 09/01/2011 - 13:29:16 - [0] ----D- C:\ProgramData\Little Games Company O43 - CFD: 24/06/2011 - 20:10:40 - [1273561] ----D- C:\ProgramData\ma-config.com O43 - CFD: 25/04/2009 - 22:14:08 - [3484022] ----D- C:\ProgramData\Macrovision O43 - CFD: 22/06/2011 - 16:23:28 - [6887336] ----D- C:\ProgramData\Malwarebytes O43 - CFD: 25/06/2011 - 00:08:12 - [851] ----D- C:\ProgramData\McAfee Security Scan O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Menu Démarrer O43 - CFD: 25/08/2010 - 22:18:16 - [0] ----D- C:\ProgramData\Merscom O43 - CFD: 08/02/2010 - 21:56:02 - [668] ----D- C:\ProgramData\Micro Application O43 - CFD: 24/06/2011 - 18:00:14 - [103999536] -S--D- C:\ProgramData\Microsoft O43 - CFD: 07/11/2010 - 17:57:32 - [57676] ----D- C:\ProgramData\Microsoft Help O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Modèles O43 - CFD: 02/02/2010 - 20:05:24 - [0] ----D- C:\ProgramData\NtiDvdCopy O43 - CFD: 24/06/2011 - 23:46:58 - [188348] ----D- C:\ProgramData\NVIDIA O43 - CFD: 24/06/2011 - 20:37:44 - [912773] ----D- C:\ProgramData\NVIDIA Corporation O43 - CFD: 08/05/2009 - 12:24:38 - [21486] ----D- C:\ProgramData\Oberon Games O43 - CFD: 25/07/2010 - 22:43:56 - [0] ----D- C:\ProgramData\PhotoStitch O43 - CFD: 09/01/2011 - 13:07:00 - [12720] ----D- C:\ProgramData\PlayFirst O43 - CFD: 28/08/2010 - 14:09:22 - [7520] ----D- C:\ProgramData\Playrix Entertainment O43 - CFD: 08/05/2009 - 11:04:24 - [366] ----D- C:\ProgramData\Sandlot Games O43 - CFD: 27/08/2010 - 18:06:16 - [82386784] ----D- C:\ProgramData\SpinTop Games O43 - CFD: 25/06/2011 - 13:52:30 - [6982] ----D- C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Start Menu O43 - CFD: 21/12/2010 - 22:32:32 - [0] ---AD- C:\ProgramData\TEMP O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Templates O43 - CFD: 26/04/2009 - 10:19:04 - [3498] ----D- C:\ProgramData\UDL O43 - CFD: 23/07/2010 - 09:48:22 - [0] ----D- C:\ProgramData\ZoomBrowser O43 - CFD: 08/02/2011 - 10:34:48 - [349088] ----D- C:\ProgramData\Zylom O43 - CFD: 26/04/2009 - 11:42:56 - [1942] ----D- C:\ProgramData\{35733029-9859-49C7-8475-1E78E2AAE413} O43 - CFD: 06/11/2010 - 15:01:24 - [895721] ----D- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001} O43 - CFD: 13/11/2010 - 10:10:18 - [36864] -SH-D- C:\Users\mel\AppData\Roaming\.# O43 - CFD: 31/10/2008 - 14:15:06 - [30584] ----D- C:\Users\mel\AppData\Roaming\Acer GameZone Console O43 - CFD: 14/07/2009 - 20:37:02 - [870657] ----D- C:\Users\mel\AppData\Roaming\Adobe O43 - CFD: 27/08/2010 - 18:04:12 - [1534] ----D- C:\Users\mel\AppData\Roaming\Alawar Entertainment O43 - CFD: 06/11/2010 - 13:50:00 - [95858990] ----D- C:\Users\mel\AppData\Roaming\Apple Computer O43 - CFD: 25/04/2009 - 20:48:52 - [0] ----D- C:\Users\mel\AppData\Roaming\ATI O43 - CFD: 27/08/2010 - 17:59:10 - [2004569] ----D- C:\Users\mel\AppData\Roaming\Big Fish Games O43 - CFD: 25/07/2010 - 22:40:52 - [0] ----D- C:\Users\mel\AppData\Roaming\Canon O43 - CFD: 13/09/2009 - 09:46:22 - [33] ----D- C:\Users\mel\AppData\Roaming\CyberLink O43 - CFD: 02/02/2010 - 19:56:08 - [16440] ----D- C:\Users\mel\AppData\Roaming\DivX O43 - CFD: 19/12/2010 - 14:39:52 - [29261] ----D- C:\Users\mel\AppData\Roaming\Dragon Altar Games O43 - CFD: 03/03/2011 - 14:13:02 - [199] ----D- C:\Users\mel\AppData\Roaming\dvdcss O43 - CFD: 28/06/2009 - 14:16:56 - [1004] ----D- C:\Users\mel\AppData\Roaming\EPSON O43 - CFD: 27/08/2010 - 18:00:06 - [399676] ----D- C:\Users\mel\AppData\Roaming\ERS G-Studio O43 - CFD: 26/04/2009 - 10:04:54 - [567566] ----D- C:\Users\mel\AppData\Roaming\eSobi O43 - CFD: 27/04/2009 - 21:20:00 - [35041] ----D- C:\Users\mel\AppData\Roaming\FloodLightGames O43 - CFD: 13/12/2010 - 19:31:12 - [40343] ----D- C:\Users\mel\AppData\Roaming\Freeze Tag O43 - CFD: 26/08/2010 - 11:03:28 - [52236] ----D- C:\Users\mel\AppData\Roaming\Game Mill Entertainment O43 - CFD: 27/10/2010 - 08:45:00 - [0] ----D- C:\Users\mel\AppData\Roaming\Google O43 - CFD: 20/02/2010 - 15:36:30 - [25411] ----D- C:\Users\mel\AppData\Roaming\HdO Adventure O43 - CFD: 25/04/2009 - 20:48:18 - [0] ----D- C:\Users\mel\AppData\Roaming\Identities O43 - CFD: 12/11/2010 - 22:52:10 - [179257] ----D- C:\Users\mel\AppData\Roaming\ImTOO O43 - CFD: 26/04/2009 - 10:13:40 - [0] ----D- C:\Users\mel\AppData\Roaming\InstallShield O43 - CFD: 07/06/2009 - 17:55:48 - [0] ----D- C:\Users\mel\AppData\Roaming\iWin O43 - CFD: 20/09/2010 - 17:50:54 - [32433] ----D- C:\Users\mel\AppData\Roaming\LegacyInteractive O43 - CFD: 09/01/2011 - 13:29:16 - [930748] ----D- C:\Users\mel\AppData\Roaming\Little Games Company O43 - CFD: 25/04/2009 - 20:48:50 - [611] ----D- C:\Users\mel\AppData\Roaming\Macromedia O43 - CFD: 26/04/2009 - 09:49:26 - [488] ----D- C:\Users\mel\AppData\Roaming\Macrovision O43 - CFD: 09/02/2010 - 00:22:36 - [7244] ----D- C:\Users\mel\AppData\Roaming\Magic Academy O43 - CFD: 22/06/2011 - 16:23:56 - [8537308] ----D- C:\Users\mel\AppData\Roaming\Malwarebytes O43 - CFD: 02/11/2006 - 17:07:26 - [0] ----D- C:\Users\mel\AppData\Roaming\Media Center Programs O43 - CFD: 25/08/2010 - 22:18:16 - [514888] ----D- C:\Users\mel\AppData\Roaming\Merscom O43 - CFD: 02/11/2010 - 21:59:24 - [1186146] -S--D- C:\Users\mel\AppData\Roaming\Microsoft O43 - CFD: 20/01/2010 - 18:09:34 - [304147] ----D- C:\Users\mel\AppData\Roaming\Odyssee_Sib O43 - CFD: 25/06/2011 - 21:12:50 - [2352013] ----D- C:\Users\mel\AppData\Roaming\OpenOffice.org2 O43 - CFD: 12/02/2010 - 22:49:28 - [37268] ----D- C:\Users\mel\AppData\Roaming\Pirateville O43 - CFD: 09/01/2011 - 13:07:00 - [150659] ----D- C:\Users\mel\AppData\Roaming\PlayFirst O43 - CFD: 27/08/2010 - 17:36:42 - [1444938] ----D- C:\Users\mel\AppData\Roaming\QB9 O43 - CFD: 27/08/2010 - 23:23:20 - [230] ----D- C:\Users\mel\AppData\Roaming\Roaming O43 - CFD: 13/07/2010 - 08:37:46 - [131494] ----D- C:\Users\mel\AppData\Roaming\SecretIslandFranc O43 - CFD: 23/11/2010 - 18:25:22 - [304266] ----D- C:\Users\mel\AppData\Roaming\Settlement. Colossus O43 - CFD: 18/11/2010 - 12:54:18 - [180880] ----D- C:\Users\mel\AppData\Roaming\ShaoLin O43 - CFD: 27/08/2010 - 17:46:56 - [3123] ----D- C:\Users\mel\AppData\Roaming\she_is_a_shadow O43 - CFD: 26/04/2009 - 10:44:18 - [8704] ----D- C:\Users\mel\AppData\Roaming\Template O43 - CFD: 26/05/2011 - 19:02:40 - [1192449] ----D- C:\Users\mel\AppData\Roaming\vlc O43 - CFD: 12/11/2010 - 22:46:56 - [12] ----D- C:\Users\mel\AppData\Roaming\WinRAR O43 - CFD: 25/07/2010 - 22:42:46 - [0] ----D- C:\Users\mel\AppData\Roaming\ZoomBrowser EX O43 - CFD: 22/12/2010 - 07:36:52 - [6886] ----D- C:\Users\mel\Appdata\Local\Acer Arcade Live O43 - CFD: 22/12/2010 - 07:36:52 - [6907] ----D- C:\Users\mel\Appdata\Local\Acer DV Magician O43 - CFD: 22/12/2010 - 07:36:52 - [8561] ----D- C:\Users\mel\Appdata\Local\Acer DVDivine O43 - CFD: 26/04/2009 - 10:36:20 - [8523] ----D- C:\Users\mel\Appdata\Local\Acer HomeMedia O43 - CFD: 13/09/2009 - 09:25:18 - [6780] ----D- C:\Users\mel\Appdata\Local\Acer SlideShow DVD O43 - CFD: 26/04/2009 - 10:36:04 - [7038] ----D- C:\Users\mel\Appdata\Local\Acer VideoMagician O43 - CFD: 14/07/2009 - 20:37:04 - [39724890] ----D- C:\Users\mel\Appdata\Local\Adobe O43 - CFD: 26/04/2009 - 11:40:54 - [11115713] ----D- C:\Users\mel\Appdata\Local\Apple O43 - CFD: 06/11/2010 - 17:04:56 - [11261089] ----D- C:\Users\mel\Appdata\Local\Apple Computer O43 - CFD: 25/04/2009 - 20:44:48 - [0] -SH-D- C:\Users\mel\Appdata\Local\Application Data O43 - CFD: 14/11/2010 - 13:14:20 - [35256] ----D- C:\Users\mel\Appdata\Local\Ares O43 - CFD: 25/04/2009 - 20:48:52 - [42124] ----D- C:\Users\mel\Appdata\Local\ATI O43 - CFD: 25/07/2010 - 22:42:42 - [1751] ----D- C:\Users\mel\Appdata\Local\CANON_INC O43 - CFD: 26/04/2009 - 10:36:22 - [139264] ----D- C:\Users\mel\Appdata\Local\CyberLink O43 - CFD: 25/04/2009 - 22:13:42 - [11783680] ----D- C:\Users\mel\Appdata\Local\Downloaded Installations O43 - CFD: 30/10/2010 - 09:58:16 - [869466] ----D- C:\Users\mel\Appdata\Local\eMule O43 - CFD: 02/11/2010 - 16:36:52 - [253003793] ----D- C:\Users\mel\Appdata\Local\Flock O43 - CFD: 23/06/2011 - 20:35:26 - [8586131] ----D- C:\Users\mel\Appdata\Local\Google O43 - CFD: 25/04/2009 - 20:44:48 - [0] -SH-D- C:\Users\mel\Appdata\Local\Historique O43 - CFD: 26/08/2010 - 10:39:16 - [1253] ----D- C:\Users\mel\Appdata\Local\JollyBear O43 - CFD: 13/09/2009 - 09:27:08 - [0] ----D- C:\Users\mel\Appdata\Local\MakeDisc O43 - CFD: 24/06/2011 - 18:00:14 - [776882944] ----D- C:\Users\mel\Appdata\Local\Microsoft O43 - CFD: 27/04/2009 - 15:59:46 - [1857964] ----D- C:\Users\mel\Appdata\Local\Microsoft Games O43 - CFD: 25/04/2009 - 20:48:50 - [0] ----D- C:\Users\mel\Appdata\Local\PowerCinema O43 - CFD: 26/06/2011 - 00:00:30 - [12427655] ----D- C:\Users\mel\Appdata\Local\Temp O43 - CFD: 25/04/2009 - 20:44:48 - [0] -SH-D- C:\Users\mel\Appdata\Local\Temporary Internet Files O43 - CFD: 30/08/2010 - 16:47:00 - [165404] ----D- C:\Users\mel\Appdata\Local\Vast Studios O43 - CFD: 08/05/2009 - 11:47:36 - [49271021] ----D- C:\Users\mel\Appdata\Local\VirtualStore O43 - CFD: 21/01/2008 - 05:20:46 - [15271] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 25/04/2009 - 20:48:26 - [174] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 03/01/2011 - 10:53:16 - [1830] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Burger Shop 2 O43 - CFD: 02/11/2010 - 16:36:52 - [4016] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flock O43 - CFD: 21/01/2008 - 05:20:46 - [548] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 25/06/2011 - 16:05:00 - [3111] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 12/11/2010 - 22:45:52 - [2633] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 03/01/2011 - 10:53:20 - [1821] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Your Product O43 - CFD: 27/08/2010 - 18:06:02 - [3709] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zuma's Revenge! O43 - CFD: 30/11/2010 - 09:58:42 - [3511045] ----D- C:\Program Files (x86)\7-Zip O43 - CFD: 26/04/2009 - 10:18:20 - [124428627] ----D- C:\Program Files (x86)\ABBYY FineReader 6.0 Sprint O43 - CFD: 31/10/2008 - 14:01:54 - [74523788] ----D- C:\Program Files (x86)\Acer O43 - CFD: 31/10/2008 - 14:11:02 - [644989344] ----D- C:\Program Files (x86)\Acer Arcade Live O43 - CFD: 21/12/2010 - 19:17:56 - [169953189] ----D- C:\Program Files (x86)\Acer GameZone O43 - CFD: 10/10/2006 - 21:07:18 - [0] ----D- C:\Program Files (x86)\Acer Incorporated O43 - CFD: 25/06/2011 - 23:48:28 - [139023813] ----D- C:\Program Files (x86)\Ad-Remover O43 - CFD: 31/10/2008 - 14:10:06 - [200267752] ----D- C:\Program Files (x86)\Adobe O43 - CFD: 25/11/2010 - 10:07:20 - [617925] ----D- C:\Program Files (x86)\Anti-Blaxx O43 - CFD: 26/04/2009 - 11:40:52 - [2221118] ----D- C:\Program Files (x86)\Apple Software Update O43 - CFD: 11/03/2010 - 18:59:18 - [42348] ----D- C:\Program Files (x86)\BFG O43 - CFD: 06/11/2010 - 14:54:54 - [600007] ----D- C:\Program Files (x86)\Bonjour O43 - CFD: 03/01/2011 - 10:53:16 - [28746459] ----D- C:\Program Files (x86)\Burger Shop 2 O43 - CFD: 23/07/2010 - 09:48:50 - [330761061] ----D- C:\Program Files (x86)\Canon O43 - CFD: 24/06/2011 - 16:48:42 - [721419921] ----D- C:\Program Files (x86)\Common Files O43 - CFD: 31/10/2008 - 14:03:40 - [4765216] ----D- C:\Program Files (x86)\CyberLink O43 - CFD: 15/07/2009 - 20:58:34 - [70306267] ----D- C:\Program Files (x86)\DivX O43 - CFD: 26/04/2009 - 14:30:48 - [979892] ----D- C:\Program Files (x86)\DVD Shrink O43 - CFD: 14/07/2009 - 20:16:08 - [15700152] ----D- C:\Program Files (x86)\DVD X Player 4.1 Professionnel O43 - CFD: 28/10/2010 - 20:42:16 - [10906334] ----D- C:\Program Files (x86)\eMule O43 - CFD: 26/04/2009 - 10:14:22 - [13107148] ----D- C:\Program Files (x86)\epson O43 - CFD: 26/04/2009 - 10:18:28 - [93975345] ----D- C:\Program Files (x86)\Epson Software O43 - CFD: 31/10/2008 - 14:26:54 - [17489955] ----D- C:\Program Files (x86)\eSobi O43 - CFD: 24/06/2011 - 16:35:32 - [260151682] ----D- C:\Program Files (x86)\Google O43 - CFD: 12/11/2010 - 22:51:10 - [66150014] ----D- C:\Program Files (x86)\ImTOO O43 - CFD: 25/06/2011 - 00:08:12 - [131206752] --H-D- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 26/04/2009 - 11:41:34 - [2651852] ----D- C:\Program Files (x86)\Internet Explorer O43 - CFD: 06/11/2010 - 15:00:48 - [1938027] ----D- C:\Program Files (x86)\iPod O43 - CFD: 06/11/2010 - 15:01:24 - [122979411] ----D- C:\Program Files (x86)\iTunes O43 - CFD: 24/06/2011 - 23:28:08 - [7941202] ----D- C:\Program Files (x86)\Lavalys O43 - CFD: 26/04/2009 - 14:51:28 - [6365734] ----D- C:\Program Files (x86)\Logitech O43 - CFD: 24/06/2011 - 20:10:44 - [6093848] ----D- C:\Program Files (x86)\ma-config.com O43 - CFD: 23/06/2011 - 17:44:38 - [7590700] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware O43 - CFD: 24/06/2011 - 18:30:30 - [255536] ----D- C:\Program Files (x86)\McAfee Security Scan O43 - CFD: 30/12/2010 - 17:07:48 - [379634967] ----D- C:\Program Files (x86)\Micro Application O43 - CFD: 02/11/2010 - 21:52:12 - [226432] ----D- C:\Program Files (x86)\Microsoft O43 - CFD: 31/10/2008 - 13:49:42 - [347890693] ----D- C:\Program Files (x86)\Microsoft Office O43 - CFD: 31/10/2008 - 13:50:02 - [7791803] ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant O43 - CFD: 02/11/2010 - 21:54:14 - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 31/10/2008 - 13:49:42 - [151270378] ----D- C:\Program Files (x86)\Microsoft Works O43 - CFD: 24/06/2011 - 19:51:56 - [8175999] ----D- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 29/12/2010 - 19:30:52 - [2659886008] ----D- C:\Program Files (x86)\Mindscape O43 - CFD: 02/11/2006 - 17:07:28 - [9908] ----D- C:\Program Files (x86)\MSBuild O43 - CFD: 31/10/2008 - 14:09:14 - [228861119] ----D- C:\Program Files (x86)\NewTech Infosystems O43 - CFD: 24/06/2011 - 23:47:00 - [0] ----D- C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 25/04/2009 - 22:27:30 - [263849542] ----D- C:\Program Files (x86)\OpenOffice.org 2.1 O43 - CFD: 22/06/2011 - 16:13:48 - [180978831] ----D- C:\Program Files (x86)\Orange O43 - CFD: 23/06/2011 - 21:03:26 - [2789763] ----D- C:\Program Files (x86)\P2P_Torrent O43 - CFD: 06/11/2010 - 14:59:34 - [76337719] ----D- C:\Program Files (x86)\QuickTime O43 - CFD: 08/02/2011 - 10:01:00 - [2435193] ----D- C:\Program Files (x86)\RealArcade O43 - CFD: 31/10/2008 - 13:29:24 - [149450890] ----D- C:\Program Files (x86)\Realtek O43 - CFD: 02/11/2006 - 17:07:28 - [26716348] ----D- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 06/11/2010 - 11:34:42 - [42299504] ----D- C:\Program Files (x86)\Safari O43 - CFD: 25/06/2011 - 00:08:12 - [1309922] ----D- C:\Program Files (x86)\SAGEM O43 - CFD: 25/06/2011 - 00:08:12 - [38412056] ----D- C:\Program Files (x86)\Securitoo O43 - CFD: 23/06/2011 - 19:39:08 - [65887239] ----D- C:\Program Files (x86)\Spybot - Search & Destroy O43 - CFD: 02/11/2006 - 17:36:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information O43 - CFD: 02/11/2010 - 17:22:04 - [78884139] ----D- C:\Program Files (x86)\VideoLAN O43 - CFD: 25/04/2009 - 22:14:08 - [11354021] ----D- C:\Program Files (x86)\Vodafone O43 - CFD: 21/01/2008 - 05:09:50 - [1016832] ----D- C:\Program Files (x86)\Windows Calendar O43 - CFD: 21/01/2008 - 05:09:48 - [53248] ----D- C:\Program Files (x86)\Windows Collaboration O43 - CFD: 21/01/2008 - 05:09:42 - [504128] ----D- C:\Program Files (x86)\Windows Defender O43 - CFD: 02/11/2010 - 21:55:26 - [117449045] ----D- C:\Program Files (x86)\Windows Live O43 - CFD: 02/11/2010 - 21:51:52 - [245112] ----D- C:\Program Files (x86)\Windows Live SkyDrive O43 - CFD: 04/11/2010 - 08:09:22 - [8939368] ----D- C:\Program Files (x86)\Windows Mail O43 - CFD: 21/01/2008 - 05:09:48 - [3008997] ----D- C:\Program Files (x86)\Windows Media Player O43 - CFD: 02/11/2006 - 17:07:28 - [7942926] ----D- C:\Program Files (x86)\Windows NT O43 - CFD: 21/01/2008 - 05:09:48 - [13464738] ----D- C:\Program Files (x86)\Windows Photo Gallery O43 - CFD: 21/01/2008 - 05:09:50 - [6511482] ----D- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 12/11/2010 - 22:45:52 - [3727772] ----D- C:\Program Files (x86)\WinRAR O43 - CFD: 03/01/2011 - 10:53:18 - [131570] ----D- C:\Program Files (x86)\Your Product O43 - CFD: 26/06/2011 - 00:00:34 - [4051278] ----D- C:\Program Files (x86)\ZHPDiag O43 - CFD: 27/08/2010 - 18:06:00 - [114402764] ----D- C:\Program Files (x86)\Zuma's Revenge! O43 - CFD: 08/02/2011 - 10:34:48 - [498392] ----D- C:\Program Files (x86)\Zylom Games O43 - CFD: 31/10/2008 - 14:10:12 - [9874075] ----D- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 06/11/2010 - 15:00:48 - [86845855] ----D- C:\Program Files (x86)\Common Files\Apple O43 - CFD: 23/07/2010 - 09:46:02 - [1184036] ----D- C:\Program Files (x86)\Common Files\Canon O43 - CFD: 31/10/2008 - 13:46:54 - [92976] ----D- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 15/07/2009 - 20:58:22 - [8024284] ----D- C:\Program Files (x86)\Common Files\DivX Shared O43 - CFD: 22/06/2011 - 16:10:54 - [7878358] ----D- C:\Program Files (x86)\Common Files\France Telecom O43 - CFD: 31/10/2008 - 13:38:48 - [6639811] ----D- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 31/10/2008 - 14:08:56 - [7178034] ----D- C:\Program Files (x86)\Common Files\LightScribe O43 - CFD: 26/04/2009 - 14:46:26 - [463926] ----D- C:\Program Files (x86)\Common Files\Logitech O43 - CFD: 02/11/2010 - 21:51:56 - [423393852] ----D- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 15/07/2009 - 20:58:30 - [3926944] ----D- C:\Program Files (x86)\Common Files\PX Storage Engine O43 - CFD: 08/05/2009 - 11:04:32 - [1353752] ----D- C:\Program Files (x86)\Common Files\Sandlot Shared O43 - CFD: 02/11/2006 - 15:33:54 - [2702] ----D- C:\Program Files (x86)\Common Files\Services O43 - CFD: 02/11/2006 - 15:33:54 - [41101735] ----D- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 21/01/2008 - 05:09:42 - [42700942] ----D- C:\Program Files (x86)\Common Files\System O43 - CFD: 28/10/2010 - 20:16:04 - [80727407] ----D- C:\Program Files (x86)\Common Files\Windows Live ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.80EE1700FEFFFFFF57494E444F577E31] - 25/06/2011 - 22:55:33 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1265809] O44 - LFC:[MD5.F5B6694DF4B6FF9EA3CE07C0C0240575] - 25/06/2011 - 22:49:41 ---A- . (...) -- C:\Ad-Report-CLEAN[1].txt [2805] O44 - LFC:[MD5.278C5209337ADFADF495BDD741126CC3] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1606634] O44 - LFC:[MD5.D0777689CD9E3306B5C7E48888EE33D7] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [118064] O44 - LFC:[MD5.BDDF86975092A9146E48F933A4A86A04] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [143958] O44 - LFC:[MD5.769F14BBD18C21742C38DF0C2C54657A] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [631438] O44 - LFC:[MD5.4D692CFA2CFB6AB61295A143F5D74D41] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [719130] O44 - LFC:[MD5.80EE1700FEFFFFFF4C4F47434F4E7E31] - 25/06/2011 - 20:12:49 ---A- . (...) -- C:\Windows\SysNative\LogConfigTemp.xml [0] O44 - LFC:[MD5.6430C85245379591A8856B9F3EFB5DB9] - 25/06/2011 - 20:12:12 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.BAA67B827D40BDB6968724A97B8F88E1] - 25/06/2011 - 19:02:07 ---A- . (...) -- C:\Windows\PFRO.log [6428] O44 - LFC:[MD5.0E181B9023D7D176D96DB849375E1F9C] - 25/06/2011 - 18:56:54 ---A- . (...) -- C:\UsbFix_Upload_Me_PC-DE-MEL.zip [610859336] O44 - LFC:[MD5.9ADA205FD5CCC52AA2DB00E228AE4E26] - 25/06/2011 - 18:20:29 ---A- . (...) -- C:\Windows\SysNative\spsys.log [808] O44 - LFC:[MD5.6E97333F01841E397E651F75AED67FFE] - 25/06/2011 - 12:50:10 ---A- . (...) -- C:\Windows\setupact.log [2119] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 24/06/2011 - 21:55:18 ---A- . (...) -- C:\Windows\setuperr.log [0] O44 - LFC:[MD5.EBF7292E4E930CDCE565EB47B717D90E] - 24/06/2011 - 19:38:36 ---A- . (.NVIDIA Corporation - Pas de description.) -- C:\Windows\SysNative\nvshext.dll [61544] O44 - LFC:[MD5.F5B38907383181659B1BFDAD5E6477D7] - 24/06/2011 - 19:38:35 ---A- . (.NVIDIA Corporation - Easy daemon API.) -- C:\Windows\SysNative\easyupdatusapiu64.dll [739432] O44 - LFC:[MD5.8D23190C8DEC15DF565CA211ADB13258] - 24/06/2011 - 19:33:26 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\SysNative\OpenCL.dll [67176] O44 - LFC:[MD5.8D23190C8DEC15DF565CA211ADB13258] - 24/06/2011 - 19:33:26 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.dll [57960] O44 - LFC:[MD5.FF5EF308DA199B27D9B7236A80225CB4] - 24/06/2011 - 19:33:26 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\SysNative\nvoglv64.dll [22286952] O44 - LFC:[MD5.BAA6974697538067C6B27FA898DED21C] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\SysNative\nvdispco6420150.dll [1496168] O44 - LFC:[MD5.35EE4726EC99386CE41A3268D993693C] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\SysNative\nvgenco642090.dll [1427048] O44 - LFC:[MD5.8A618A2301DC67510DFBA245F438ECBD] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 275.33.) -- C:\Windows\SysNative\nvcuda.dll [7123560] O44 - LFC:[MD5.8A618A2301DC67510DFBA245F438ECBD] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 275.33.) -- C:\Windows\System32\nvcuda.dll [5301352] O44 - LFC:[MD5.B43007E6A0866719BFE1CE9C0449DDA1] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 275.3.) -- C:\Windows\SysNative\nvcuvid.dll [2943592] O44 - LFC:[MD5.B43007E6A0866719BFE1CE9C0449DDA1] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 275.3.) -- C:\Windows\System32\nvcuvid.dll [2804328] O44 - LFC:[MD5.A281C66DE2B2AFC324002193292D7BDF] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 275.33.) -- C:\Windows\SysNative\nvcuvenc.dll [2212968] O44 - LFC:[MD5.A281C66DE2B2AFC324002193292D7BDF] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 275.33.) -- C:\Windows\System32\nvcuvenc.dll [2082408] O44 - LFC:[MD5.B59CD0437F800B224774DA27D81F1A95] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 275.33.) -- C:\Windows\System32\nvcompiler.dll [13011560] O44 - LFC:[MD5.B59CD0437F800B224774DA27D81F1A95] - 24/06/2011 - 19:33:24 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 275.33.) -- C:\Windows\SysNative\nvcompiler.dll [18583144] O44 - LFC:[MD5.278C5209337ADFADF495BDD741126CC3] - 24/06/2011 - 18:55:08 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1586434] O44 - LFC:[MD5.95C17AB35101EEBB1182668E19915ECC] - 24/06/2011 - 17:35:33 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\SysNative\aswBoot.exe [253888] O44 - LFC:[MD5.B8576757416F471C9D7F83B2B04B1F9D] - 24/06/2011 - 17:35:11 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [40112] O44 - LFC:[MD5.95C17AB35101EEBB1182668E19915ECC] - 24/06/2011 - 17:35:10 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe [199304] O44 - LFC:[MD5.319AB4B91B7026869AA45DF4817B2582] - 25/05/2011 - 08:25:23 ---A- . (...) -- C:\Windows\SysNative\nvinfo.pb [7384] ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Orange\Connectivity\ConnectivityManager.exe" [Enabled] .(.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Connectivity\ConnectivityManager.exe ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys ---\\ MountPoints2 Shell Key (O51) O51 - MPSK:{107c71e3-e25b-11df-b86a-0021976a9290}\AutoRun\command. (...) -- G:\StartVMCLite.exe (.not file.) O51 - MPSK:{7002202e-31be-11de-a745-0021976a9290}\AutoRun\command. (...) -- I:\StartVMCLite.exe (.not file.) O51 - MPSK:{9cefb7f9-3236-11de-9ca9-0021976a9290}\AutoRun\command. (...) -- I:\StartVMCLite.exe (.not file.) ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=3 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=3 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=0 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.F14215E37CF124104575073F782111D2] - 21/01/2008 - 03:46:53 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [486456] O58 - SDL:[MD5.7D05A75E3066861A6610F7EE04FF085C] - 21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [342584] O58 - SDL:[MD5.820A201FE08A0C345B3BEDBC30E1A77C] - 21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (X64).) -- C:\Windows\system32\drivers\adpu160m.sys [126520] O58 - SDL:[MD5.9B4AB6854559DC168FBB4C24FC52E794] - 21/01/2008 - 03:47:27 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [185912] O58 - SDL:[MD5.157D0898D4B73F075CE9FA26B482DF98] - 21/01/2008 - 03:46:50 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15976] O58 - SDL:[MD5.BA8417D4765F3988FF921F30F630E303] - 21/01/2008 - 03:46:52 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [90680] O58 - SDL:[MD5.9D41C435619733B34CC16A511E644B11] - 21/01/2008 - 03:47:00 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [91192] O58 - SDL:[MD5.F1DBE3D02FFCDEE5246F29B0ECEBE6E0] - 10/05/2011 - 12:59:37 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys [22360] O58 - SDL:[MD5.F3E75DD1BCC358FB4629357AD09E7C84] - 10/05/2011 - 12:59:48 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys [64344] O58 - SDL:[MD5.FCCBDC045DC12AFD1508205117E7ED11] - 10/05/2011 - 12:59:59 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys [31064] O58 - SDL:[MD5.5824DCA602A0A30E866BC2AC98C6D970] - 10/05/2011 - 13:04:08 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\system32\drivers\aswSnx.sys [600920] O58 - SDL:[MD5.AF07B4BEF920F90205148F3A05E2974C] - 10/05/2011 - 13:04:07 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys [287576] O58 - SDL:[MD5.A3ECA5AF3B4823A523C285A8DF0F9E4F] - 10/05/2011 - 13:02:41 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys [53592] O58 - SDL:[MD5.8EA545F0F90E6388DCACA8F4F9404DC5] - 12/11/2008 - 16:42:22 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [4999680] O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432] O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704] O58 - SDL:[MD5.F0F0BA4D815BE446AA6A4583CA3BCA9B] - 02/11/2006 - 09:43:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [86528] O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 18/09/2006 - 22:30:18 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104] O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 18/09/2006 - 22:30:18 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976] O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 19/09/2006 - 12:42:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720] O58 - SDL:[MD5.E5D5499A1C50A54B5161296B6AFE6192] - 21/01/2008 - 03:46:50 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [18024] O58 - SDL:[MD5.222CB641B4B8A1D1126F8033F9FD6A00] - 02/11/2006 - 12:50:06 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [88168] O58 - SDL:[MD5.264CEE7B031A9D6C827F3D0CB031F2FE] - 21/01/2008 - 03:46:56 ---A- . (.Intel Corporation - Intel® PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\E1G6032E.sys [146176] O58 - SDL:[MD5.C4636D6E10469404AB5308D9FD45ED07] - 21/01/2008 - 03:46:59 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [397368] O58 - SDL:[MD5.1A5DA10E18FC2643E94C5DC7FA965868] - 05/11/2007 - 10:56:58 ---A- . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ewusbmdm.sys [112512] O58 - SDL:[MD5.E403AACF8C7BB11375122D2464560311] - 18/05/2009 - 13:17:08 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [34152] O58 - SDL:[MD5.D7109A1E6BD2DFDBCBA72A6BC626A13B] - 21/01/2008 - 03:46:59 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [47672] O58 - SDL:[MD5.3E3BF3627D886736D0B4E90054F929F6] - 21/01/2008 - 03:46:59 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [290872] O58 - SDL:[MD5.8C3951AD2FE886EF76C7B5027C3125D3] - 02/11/2006 - 13:02:39 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44648] O58 - SDL:[MD5.8C7FA71CB1EBCD3EDE8958D27B1BF0B4] - 19/08/2008 - 14:23:00 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\system32\drivers\int15_64.sys [17952] O58 - SDL:[MD5.63C766CDC609FF8206CB447A65ABBA4A] - 02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [37480] O58 - SDL:[MD5.25D0DACC04EADA6DCBC0B1E46F309759] - 25/02/2008 - 15:29:24 ---A- . (.Windows ® Codename Longhorn DDK provider - Sample IOCTL Driver.) -- C:\Windows\system32\drivers\ITEIO.sys [13144] O58 - SDL:[MD5.1281FE73B17664631D12F643CBEA3F59] - 02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [37480] O58 - SDL:[MD5.ACBE1AF32D3123E330A07BFBC5EC4A9B] - 21/01/2008 - 03:46:51 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [113720] O58 - SDL:[MD5.799FFB2FC4729FA46D2157C0065B3525] - 21/01/2008 - 03:46:56 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [105016] O58 - SDL:[MD5.F445FF1DAAD8A226366BFAF42551226B] - 21/01/2008 - 03:47:01 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [113720] O58 - SDL:[MD5.ED49FD1373DE93617A1F6D128D98FE4D] - 29/05/2011 - 08:11:20 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [25912] O58 - SDL:[MD5.5C5CD6AACED32FB26C3FB34B3DCF972F] - 21/01/2008 - 03:46:59 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [35896] O58 - SDL:[MD5.859BC2436B076C77C159ED694ACFE8F8] - 21/01/2008 - 03:46:56 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [438328] O58 - SDL:[MD5.1A11D72920C8BC64315C8EB4DFD82DA2] - 13/07/2007 - 09:21:36 ---A- . (.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) -- C:\Windows\system32\drivers\Mpfp.sys [173072] O58 - SDL:[MD5.3C200630A89EF2C0864D515B7A75802E] - 02/11/2006 - 13:02:24 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [39016] O58 - SDL:[MD5.307BC83250FC8E3B2878D81E7D760299] - 19/04/2010 - 20:29:18 ---A- . (.Apple Inc. - Apple Mobile Device Ethernet.) -- C:\Windows\system32\drivers\netaapl64.sys [22528] O58 - SDL:[MD5.4AC08BD6AF2DF42E0C3196D826C8AEA7] - 02/11/2006 - 13:03:03 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51816] O58 - SDL:[MD5.7D397449AAF52B0E7C79B64F6AD4473E] - 31/01/2008 - 01:48:32 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\system32\drivers\NTIDrvr.sys [16384] O58 - SDL:[MD5.6E022D5F44CD8B029CF799807BB31269] - 05/08/2008 - 05:29:26 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\system32\drivers\nvhda64v.sys [56352] O58 - SDL:[MD5.B34E9BFBD9C61048EF6281C3E7EC210A] - 25/05/2011 - 08:25:24 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 275.33.) -- C:\Windows\system32\drivers\nvlddmkm.sys [13206120] O58 - SDL:[MD5.98350606682594521D56ECCB5D01ECF7] - 01/08/2008 - 05:51:12 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\system32\drivers\nvmfdx64.sys [1498016] O58 - SDL:[MD5.2C040B7ADA5B06F6FACADAC8514AA034] - 21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [128056] O58 - SDL:[MD5.F7EA0FE82842D05EDA3EFDD376DBFDBA] - 21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [54328] O58 - SDL:[MD5.581286807B5832503FD700A3217B589F] - 18/08/2008 - 12:00:08 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor64.sys [170528] O58 - SDL:[MD5.2CFD31D41CDE75328ACAEEE2D4F4B836] - 29/07/2008 - 17:53:48 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Filter Driver.) -- C:\Windows\system32\drivers\psdfilter.sys [22064] O58 - SDL:[MD5.51A585F999672D8BB07F22AE12B40846] - 29/07/2008 - 17:53:50 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Named Pipe Driver.) -- C:\Windows\system32\drivers\PSDNServ.sys [21040] O58 - SDL:[MD5.DB50D3F5C31B1A848B04F7F2A6FF2709] - 29/07/2008 - 17:53:50 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Virtual Disk Driver.) -- C:\Windows\system32\drivers\PSDVdisk.sys [60976] O58 - SDL:[MD5.0B83F4E681062F3839BE2EC1D98FD94A] - 21/01/2008 - 03:46:52 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1221176] O58 - SDL:[MD5.E1C80F8D4D1E39EF9595809C1369BF2A] - 02/11/2006 - 12:50:27 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [124008] O58 - SDL:[MD5.023EB98945069178C21B324B880AD787] - 19/08/2008 - 11:03:00 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys [1487776] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 30/09/2006 - 00:51:44 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040] O58 - SDL:[MD5.3A2F769FAB9582BC720E11EA1DFB184D] - 21/01/2008 - 03:47:26 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [78392] O58 - SDL:[MD5.2F26A2C6FC96B29BEFF5D8ED74E6625B] - 02/11/2006 - 13:02:52 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [49256] O58 - SDL:[MD5.A909667976D3BCCD1DF813FED517D837] - 02/11/2006 - 13:02:37 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [44648] O58 - SDL:[MD5.36887B56EC2D98B9C362F6AE4DE5B7B0] - 02/11/2006 - 13:02:47 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [48232] O58 - SDL:[MD5.A65643ED30A30E46317C0B25818BC9B7] - 25/02/2008 - 15:29:24 ---A- . (.EnTech Taiwan - TVicPort Driver for Windows NT/2000/XP.) -- C:\Windows\system32\drivers\TVicPort64.sys [16080] O58 - SDL:[MD5.00C8CE31657624A125FDB90EFD554371] - 31/01/2008 - 01:48:16 ---A- . (.NewTech Infosystems Corporation - NTI CDROM Filter Driver.) -- C:\Windows\system32\drivers\UBHelper.sys [16384] O58 - SDL:[MD5.697F0446134CDC8F99E69306184FBBB4] - 21/01/2008 - 03:46:56 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [284728] O58 - SDL:[MD5.31707F09846056651EA2C37858F5DDB0] - 02/11/2006 - 12:50:54 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [148072] O58 - SDL:[MD5.85E5E43ED5B48C8376281BAB519271B7] - 21/01/2008 - 03:46:52 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series x64 Windows Driver.) -- C:\Windows\system32\drivers\ulsata2.sys [174696] O58 - SDL:[MD5.CD03479F2DA26500B203ED075C146A7A] - 19/04/2010 - 20:47:42 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl64.sys [50688] O58 - SDL:[MD5.8294B6C3FDB6C33F24E150DE647ECDAA] - 21/01/2008 - 03:46:50 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [18024] O58 - SDL:[MD5.A68F455ED2673835209318DD61BFBB0E] - 21/01/2008 - 03:47:25 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [149048] O58 - SDL:[MD5.C6E5276C00EBDEB096BB5EF4B797D1B6] - 19/08/2008 - 14:23:00 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\SysWOW64\drivers\int15.sys [15392] O58 - SDL:[MD5.8C7FA71CB1EBCD3EDE8958D27B1BF0B4] - 19/08/2008 - 14:23:00 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\SysWOW64\drivers\int15_64.sys [17952] O58 - SDL:[MD5.B309912717C29FC67E1BA4730A82B6DD] - 29/05/2011 - 08:11:30 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [39984] O58 - SDL:[MD5.1BF91F352D746AD7469FA71783B5FAE8] - 28/11/2006 - 20:46:22 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 MPR Protocol Driver.) -- C:\Windows\SysWOW64\drivers\PCAMp50.sys [28224] O58 - SDL:[MD5.1961590AA191B6B7DCF18A6A693AF7B8] - 28/11/2006 - 20:46:20 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\Windows\SysWOW64\drivers\PCASp50.sys [27072] O58 - SDL:[MD5.58D904A2FA970BC23B636C47CB60E649] - 14/07/2009 - 19:15:28 ---A- . (...) -- C:\Windows\SysWOW64\SystemInfo32.sys [14] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM][64Bits] -- Ad-Remover O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPDiag_is1 ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - ??/??/???? - C:\Windows\system32\drivers\aswMonFlt.sys (.not file.) - aswMonFlt(aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT O64 - Services: CurCS - 30/08/2010 - C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys - driverhardwarev2x64(driverhardwarev2x64) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64 O64 - Services: CurCS - 19/08/2008 - C:\Windows\sysWOW64\drivers\int15_64.sys - int15(int15) .(.Acer, Inc. - int15.) - LEGACY_INT15 O64 - Services: CurCS - ??/??/???? - c:\Windows\system32\drivers\ITEIO.sys (.not file.) - ITEIO.SYS(ITEIO.SYS) .(.Windows ® Codename Longhorn DDK provider - Sample IOCTL Driver.) - LEGACY_ITEIO.SYS O64 - Services: CurCS - ??/??/???? - C:\Windows\system32\drivers\mbam.sys (.not file.) - MBAMProtector(MBAMProtector) .(.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - LEGACY_MBAMPROTECTOR O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\Drivers\Mpfp.sys (.not file.) - MPFP(MPFP) .(.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) - LEGACY_MPFP O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\DRIVERS\psdfilter.sys (.not file.) - PSDFilter(PSDFilter) .(.Egis Incorporated - Acer eDataSecurity Management PSD Filter Dr.) - LEGACY_PSDFILTER O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\DRIVERS\PSDNServ.sys (.not file.) - PSDNServ(PSDNServ) .(.Egis Incorporated - Acer eDataSecurity Management PSD Named Pip.) - LEGACY_PSDNSERV O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\DRIVERS\PSDVdisk.sys (.not file.) - PSDVdisk(psdvdisk) .(.Egis Incorporated - Acer eDataSecurity Management PSD Virtual D.) - LEGACY_PSDVDISK ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (. - .) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.html> <htmlfile>[HKCU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - Google O69 - SBI: SearchScopes [HKCU] {DECA3892-BA8F-44b8-A993-A466AD694AE4} - (Secure Search) - Yahoo! Search - Recherche Web ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.75D44FD61EE5ABED71A893AD62BD7162] [sPRF] (...) -- C:\Users\mel\Desktop\layout.bin [509] ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.) O87 - FAEL: "WinCollab-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-DFSR-Out-TCP" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\dfsr.exe (.not file.) O87 - FAEL: "WinCollab-DFSR-In-TCP" |In - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\dfsr.exe (.not file.) O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - Domain - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-In-UDP" |In - Domain - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "{3E7D3CDF-2881-4A36-8DDE-EB511A35B73B}" | In - None - P6 - TRUE | .(.Acer Incorporated - Acer Arcade Live.) -- C:\Program Files (x86)\Acer Arcade Live\Acer Arcade Live Main Page\Acer Arcade Live.exe O87 - FAEL: "{FC34B5C3-FC07-4101-9EB8-52E6CBB1E487}" |In - Domain - P17 - TRUE | .(...) -- C:\Program Files (x86)\Common Files\Mcafee\MNA\McNaSvc.exe (.not file.) O87 - FAEL: "{A630D44E-E507-4CD0-92AC-E84F288AA824}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer DV Magician.) -- C:\Program Files (x86)\Acer Arcade Live\Acer DV Magician\Acer DV Magician.exe O87 - FAEL: "{1DB1AF9B-9BB2-479D-AD3D-C40DF9975F08}" | In - None - P17 - TRUE | .(.CyberLink Corp. - SlideShow DVD.) -- C:\Program Files (x86)\Acer Arcade Live\Acer SlideShow DVD\Acer SlideShow DVD.exe O87 - FAEL: "{AB9F5B5A-900A-4EE1-BEB0-054C0D4CD1BC}" | In - None - P17 - TRUE | .(.Acer Incorporated - VideoMagician.) -- C:\Program Files (x86)\Acer Arcade Live\Acer VideoMagician\Acer VideoMagician.exe O87 - FAEL: "{972C1E4B-C685-4C9F-B6A0-CD1B305E609F}" | In - None - P17 - TRUE | .(.Acer Incorporated - DVDivine.) -- C:\Program Files (x86)\Acer Arcade Live\Acer DVDivine\Acer DVDivine.exe O87 - FAEL: "{BDCE1255-DB9A-4051-997A-B0DE63857833}" | In - None - P17 - TRUE | .(.CyberLink Corp. - HomeMedia.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia\Acer HomeMedia.exe O87 - FAEL: "{FD2B5AB6-81A8-4AC1-B727-84CE93F01D55}" | In - None - P17 - TRUE | .(.Acer Incorporated - HomeMedia Connect.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Acer HomeMedia Connect.exe O87 - FAEL: "{31042F7B-11AA-4DF2-B9F3-36AC310A7ECE}" | In - None - P17 - TRUE | .(.CyberLink - CLMSServer.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe O87 - FAEL: "{0B09902A-CAAA-49E4-87C9-614B947B74DD}" | In - Public - P6 - TRUE | .(.NewTech Infosystems, Inc. - NTI Backup Now 5 Agent service..) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe O87 - FAEL: "{E1E75BE4-020D-4A69-BD67-E74904DAE007}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O87 - FAEL: "{AE5DD2BC-A9C0-46BD-910A-DC6930EB1EBF}" | In - Public - P6 - TRUE | .(.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O87 - FAEL: "{00EE5FEE-4FD9-48B5-AC87-1614CA958ACC}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O87 - FAEL: "{AF785ACC-0B24-47F5-8755-76081718082B}" | In - Public - P17 - TRUE | .(.NewTech Infosystems, Inc. - NTI Backup Now 5 Agent service..) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe O87 - FAEL: "{5FCB307C-A082-441D-A7EA-CE6FACC9349F}" | In - Public - P17 - TRUE | .(.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O87 - FAEL: "{777AE657-EBEA-4A70-A440-52EEE16CBD11}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer Arcade Live.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Trial Creator\Acer HomeMedia Trial Creator.exe O87 - FAEL: "TCP Query User{F0BEA0DF-C533-40F6-B9DE-EEA1F02FEEFD}C:\program files (x86)\emule\emule.exe" | In - Public - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe O87 - FAEL: "UDP Query User{45C3F5D0-8193-4074-A162-B31C4DFFE516}C:\program files (x86)\emule\emule.exe" | In - Public - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe O87 - FAEL: "{02BACF47-952C-440A-877E-45950A2179A8}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe O87 - FAEL: "{F87ABDED-0F92-476B-A7C6-54C9F95CAF4A}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O87 - FAEL: "{373AA0CF-F197-46EF-B7AC-71D02A063893}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{0DDC083F-79AA-4199-BCE4-2E5D6D37E001}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{9A943007-7652-4D12-A140-F668D07A6354}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe ---\\ Scan Additionnel (O88) Database Version : 8450 - (25/06/2011) Clés trouvées (Keys found) : 1 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 4 Fichiers trouvés (Files found) : 0 [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}] =>Spyware.BHO C:\Users\mel\AppData\Roaming\iWin =>Adware.BHO C:\Users\mel\Appdata\LocalLow\P2P_Torrent =>Adware.BHO C:\Program Files (x86)\P2P_Torrent =>Adware.BHO C:\Program Files (x86)\Zuma's Revenge! =>Adware.PopCap ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 20/05/2008 269448 | (Acer HomeMedia Connect Service) . (.CyberLink.) - C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe SR - | Auto 13/08/2010 144672 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 13/08/2010 0 | (Ati External Event Utility) . (.ATI Technologies Inc..) - C:\Windows\system32\Ati2evxx.exe SR - | Auto 10/05/2011 42184 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe SR - | Auto 27/07/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe SR - | Auto 03/03/2008 16384 | (BUNAgentSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe SR - | Auto 29/07/2008 500784 | (eDataSecurity Service) . (.Egis Incorporated.) - C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe SR - | Auto 19/08/2008 24576 | (ETService) . (...) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe SR - | Auto 25/09/2007 65536 | (FTRTSVC) . (.France Telecom SA.) - C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe SS - | Auto 01/12/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 01/12/2010 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 01/03/2011 182768 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe SR - | Demand 24/09/2010 932640 | (iPod Service) . (.Apple Inc..) - C:\Program Files (x86)\iPod\bin\iPodService.exe SR - | Auto 17/01/2007 61440 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe SS - | Demand 01/05/2011 311744 | (maconfservice) . (.CybelSoft.) - C:\Program Files (x86)\ma-config.com\maconfservice.exe SR - | Auto 29/05/2011 366640 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe SS - | Demand 29/05/2011 0 | (McComponentHostService) . (...) - C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe SR - | Auto 25/04/2008 45056 | (NTIBackupSvc) . (.NewTech InfoSystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe SR - | Auto 25/04/2008 131072 | (NTISchedulerSvc) . (...) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe SR - | Auto 25/04/2008 0 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe SR - | Auto 13/06/2008 241734 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe SR - | Auto 21/01/2008 21504 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by mel at 26/06/2011 00:02:07 device: opened successfully user: error reading MBR Disk trace: error: Read Descripteur non valide kernel: error reading MBR ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by mel at 26/06/2011 00:02:09 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin End of the scan (1276 lines in 02mn 03s)(0) Rapport de ZHPDiag v1.27.2347 par Nicolas Coolman, Update du 25/06/2011 Run by mel at 26/06/2011 00:00:06 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v7.0.6001.18000 (Defaut) GCIE: Google Chrome v12.0.742.100 ---\\ System Information Windows Vista Home Premium Edition, 64-bit Service Pack 1 (Build 6001) Processor: Intel64 Family 6 Model 15 Stepping 13, GenuineIntel Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 3838 MB (46% free) System Restore: Activé (Enable) System drive C: has 286 GB (62%) free of 456 GB ---\\ Logged in mode Computer Name: PC-DE-MEL User Name: mel All Users Names: mel, Administrateur, Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Users\mel\AppData\Roaming %LocalAppData%=C:\Users\mel\AppData\Local %StartMenu%=C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 286 Go of 456 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 454 Go of 460 Go) F:\ CD-ROM drive (Not Inserted) H:\ Floppy drive, Flash card reader, USB Key (Not Inserted) I:\ Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK ---\\ Recherche particulière de fichiers génériques [MD5.F6D765FB6B457542D954682F50C26E4F] - (.Microsoft Corporation - Explorateur Windows.) (.21/01/2008 03:48:44.) -- C:\Windows\Explorer.exe [3080704] [MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 03:48:04.) -- C:\Windows\system32\Wininit.exe [96768] [MD5.618A51B5FB9DD5810960F6044C0E9289] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.27/06/2008 05:15:28.) -- C:\Windows\system32\wininet.dll [827392] [MD5.C2610B6BDBEFC053BBDAB4F1B965CB24] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.21/01/2008 03:50:38.) -- C:\Windows\system32\Winlogon.exe [314880] ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 37/3591 ~ Mes musiques (My Musics) : 23/766 ~ Mes Videos (My Videos) : 17/91 ~ Mes Favoris (My Favorites) : 7/40 ~ Mes Documents (My Documents) : 25/921 ~ Mon Bureau (My Desktop) : 3/260 ~ Menu demarrer (Programs) : 6/33 ~ Dossier utilisateur (AppData) : 58/4137 ---\\ Processus lancés [MD5.1AF1360E070BD8EA402F793EF6FBAAEB] - (.Macrovision Corporation - Macrovision Software Manager.) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe [222128] [MD5.CDF9BA83DB9F47A4A3ABDF614DA4F0CE] - (.Google Inc. - Programme d'installation de Google.) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe [136312] [MD5.89F7C30A91E5581BDF14C62AB46A2B2D] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe [255536] [MD5.F0EA603E7B91046CA48EA4B3593A007D] - (.Micro Application - Pas de description.) -- C:\Program Files (x86)\Micro Application\LauncherMA.exe [485376] [MD5.303EAD15DE8EE43CC874C709BB17BF2E] - (.OpenOffice.org - OpenOffice.org 2.1.) -- C:\Program Files (x86)\OpenOffice.org 2.1\program\soffice.exe [2334720] [MD5.D7EE83A9257D508656172A2B9DD3C317] - (.Pas de propriétaire - NTI Backup Now 5 Tray Module.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe [28672] [MD5.407811B64B588FE80FA2E27E783B41EA] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421160] [MD5.1891EEF1A57520E272AF39A56C9C6CB5] - (.Egis inc. - MSN Hook Loader (32 bit).) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSMSNLoader32.exe [454704] [MD5.12902A626CAE9F362AAE39EF1FC79E87] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Systray\SystrayApp.exe [94208] [MD5.4C6898F15701AE7C41775C14E423FE25] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [3459712] [MD5.E9257AE2500A3C8272B6C32A1329DAA3] - (.France Telecom SA - Pas de description.) -- C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe [90112] [MD5.550E3443C77EDE680C06BB47D9DA276D] - (.OpenOffice.org - OpenOffice.org 2.1.) -- C:\Program Files (x86)\OpenOffice.org 2.1\program\soffice.BIN [2486272] [MD5.AAAC76A931480ADD2C9B251621EB524E] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Launcher\Launcher.exe [598016] [MD5.54ABBCF1C68FAEFF10BCCD254740AE16] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\connectivity\connectivitymanager.exe [716800] [MD5.032F85FBFE612ECC455ABA7474E5914F] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\connectivity\CoreCom\CoreCom.exe [360448] [MD5.987B72E406C172F9F5184F1B4F0CE1BB] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\connectivity\CoreCom\OraConfigRecover.exe [28672] [MD5.167A81D7A06119ABF84042F88EE6F6DF] - (.France Telecom SA - Pas de description.) -- C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe [65536] [MD5.E75D8F09B954FB8EF4B83E4EE9E985F4] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [660992] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) P2 - FPN: [HKCU] [@update.flock.com/Flock Update;version=8] - (.Flock Inc. - Flock Update.) -- C:\Users\mel\AppData\Local\Flock\Update\1.2.213.0\npFlockOneClick8.dll ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\mel\AppData\Local\Google\Chrome\User Data\Default\Preferences G0 - GCSP: Preference [user Data\Default][HomePage] Google G2 - GCE: Preference [user Data\Default] [fheoggkfdfchfphceeifdbepaooicaho] SiteAdvisor v.3.31.137.7 (Activé) ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com R0 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Microsoft Corporation R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) [64Bits] - {08C06D61-F1F3-4799-86F8-BE1A89362C85} . (...) (No version) -- (.not file.) R3 - URLSearchHook: (no name) [64Bits] - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (...) (No version) -- (.not file.) ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll O2 - BHO: McAntiPhishingBHO [64Bits] - {377C180E-6F0E-4D4C-980F-F45BD3D40CF4} . (...) -- c:\PROGRA~2\mcafee\msk\MCAPBH~1.DLL (.not file.) O2 - BHO: ShowBarObj Class [64Bits] - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} . (.Egis - ActiveToolBand Module.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\ActiveToolBand.dll O2 - BHO: (no name) [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} Clé orpheline O2 - BHO: (no name) [64Bits] - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline O2 - BHO: avast! WebRep [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Acer eDataSecurity Management [64Bits] - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} . (.Egis Incorporated. - Acer eDataSecurity Management Explorer Tool.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\eDStoolbar.dll O3 - Toolbar: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] . (...) -- C:\Program Files\Acer\Empowering Technology\SysMonitor.exe O4 - HKLM\..\Run: [EmpoweringTechnology] . (.Pas de propriétaire - Acer Empowering Technology Framework Launch.) -- C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe O4 - HKLM\..\Run: [eDataSecurity Loader] . (.Egis Incorporated - Acer eDataSecurity Management Loader.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\eDSloader.exe O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RAVCpl64.exe O4 - HKLM\..\Run: [skytel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\Windows\Skytel.exe O4 - HKLM\..\Run: [ProductReg] . (.Acer - ProductR Application.) -- C:\Program Files\Acer\WR_PopUp\ProductReg.exe O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [iSUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe O4 - HKCU\..\Run: [Flock Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe O4 - HKCU\..\Run: [VMCL] . (...) -- C:\Program Files (x86)\vodafone\vmclite\DongleEnumerator.exe O4 - HKLM\..\Wow6432Node\Run: [PCMMediaSharing] . (...) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe O4 - HKLM\..\Wow6432Node\Run: [bkupTray] . (.Pas de propriétaire - NTI Backup Now 5 Tray Module.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe O4 - HKLM\..\Wow6432Node\Run: [eRecoveryService] Clé orpheline O4 - HKLM\..\Wow6432Node\Run: [EM_EXEC] . (.Logitech Inc. - Control Center.) -- C:\PROGRA~2\Logitech\MOUSEW~1\SYSTEM\EM_exeC.exe O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe O4 - HKLM\..\Wow6432Node\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe O4 - HKLM\..\Wow6432Node\Run: [Anti-Blaxx Manager] . (.MB-Soft, HAANDI - Pas de description.) -- C:\Program Files (x86)\Anti-Blaxx\Anti-Blaxx.exe O4 - HKLM\..\Wow6432Node\Run: [Application Layer Gateway] . (...) -- C:\Program Files (x86)\Common Files\alq.exe O4 - HKLM\..\Wow6432Node\Run: [systrayORAHSS] . (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Systray\SystrayApp.exe O4 - HKLM\..\Wow6432Node\Run: [ORAHSSSessionManager] . (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\SessionManager\SessionManager.exe O4 - HKLM\..\Wow6432Node\Run: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [iSUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [Flock Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [VMCL] . (...) -- C:\Program Files (x86)\vodafone\vmclite\DongleEnumerator.exe O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk . (.McAfee, Inc..) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lanceur.lnk . (.Micro Application.) -- C:\Program Files (x86)\Micro Application\LauncherMA.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.1.lnk . (...) -- C:\Program Files (x86)\OpenOffice.org 2.1\program\quickstart.exe ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O4 - Global Startup: C:\Users\mel\Desktop\AD-R.lnk . (...) -- C:\Program Files (x86)\Ad-Remover\main.exe O4 - Global Startup: C:\Users\mel\Desktop\DivX Movies.lnk . (...) -- C:\Users\mel\Videos\DivX Movies O4 - Global Startup: C:\Users\mel\Desktop\DVD Shrink 3.2.lnk . (.DVD Shrink.) -- C:\Program Files (x86)\DVD Shrink\DVD Shrink 3.2.exe O4 - Global Startup: C:\Users\mel\Desktop\Internet - Raccourci.lnk - Clé orpheline O4 - Global Startup: C:\Users\mel\Desktop\Jeux - Raccourci.lnk . (...) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O4 - Global Startup: C:\Users\mel\Desktop\Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation.) -- C:\Program Files (x86)\Microsoft Works\MSWorks.exe O4 - Global Startup: C:\Users\mel\Desktop\OpenOffice.org Writer.lnk . (...) -- C:\Windows\Installer\{E5430A11-6799-41E0-A9D5-F68BDC67AAD8}\swriter.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Anti-Blaxx.lnk . (.MB-Soft, HAANDI.) -- C:\Program Files (x86)\Anti-Blaxx\Anti-Blaxx.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk . (...) -- C:\Windows\Installer\{20ACB2F8-3BCA-45A8-80A2-9D3CB5C25F43}\SafariIco.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\doors of the mind inner mysteries - Raccourci.lnk . (...) -- J:\Doors of the Mind - Les Méandres du Subconscient\doors of the mind inner mysteries.exe (.not file. O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Flock.lnk . (.Flock Inc. and The Chromium Authors.) -- C:\Users\mel\AppData\Local\Flock\Application\flock.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ImTOO Ringtone Maker.lnk . (...) -- C:\Program Files (x86)\ImTOO\Ringtone Maker\ringtonemaker.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\McAfee Security Center.lnk . (...) -- C:\Program Files (x86)\McAfee\MSC\mcshell.exe (.not file.) O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~1\Office12\EXCEL.exe O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll ---\\ Site dans la Zone de confiance d'Internet Explorer (O15) O15 - Trusted Zone: [HKCU\...\Domains\www] http.orange.fr ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{60342891-EDB5-4417-9F14-172EA0E05AD4}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{60342891-EDB5-4417-9F14-172EA0E05AD4}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{60342891-EDB5-4417-9F14-172EA0E05AD4}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\system32\webcheck.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) [64Bits] - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Acer HomeMedia Connect Service (Acer HomeMedia Connect Service) . (.CyberLink - CLMSServer.) - C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - Apple Mobile Device Service.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: (Ati External Event Utility) . (...) - C:\Windows\system32\Ati2evxx.exe (.not file.) O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) . (.NewTech Infosystems, Inc. - NTI Backup Now 5 Agent service..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe O23 - Service: eDataSecurity Service (eDataSecurity Service) . (.Egis Incorporated - Acer eDataSecurity Management Service.) - C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe O23 - Service: Empowering Technology Service (ETService) . (.Pas de propriétaire - Acer Empowering Technology Framework Servic.) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) . (.France Telecom SA - Pas de description.) - C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) . (.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) . (...) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) . (...) - C:\Windows\system32\nvvsvc.exe (.not file.) O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000Core.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000UA.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\McDefragTask.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\McQcTask.job [MD5.CDF9BA83DB9F47A4A3ABDF614DA4F0CE] [APT] [FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000Core] (.Google Inc..) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe [MD5.CDF9BA83DB9F47A4A3ABDF614DA4F0CE] [APT] [FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000UA] (.Google Inc..) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.00000000000000000000000000000000] [APT] [McAfee Cleanup] (...) -- C:\Users\mel\AppData\Local\Temp\MCCLEANUP.5.0.285.4_DMPackage_en-US_Release\mccleanup.exeSCUéMQCéMQCCUéMSADéMSHRéMSKéMSKCUéMWLéNMCéRedirSvcéVSéMSC -silen (.not file.) [MD5.00000000000000000000000000000000] [APT] [McQcTask] (...) -- c:\PROGRA~2\mcafee\mqc\QcConsol.exe (.not file.) [MD5.973567B98CDFC147DF4E60471D9DF072] [APT] [{8FCCABF3-25AB-4D87-8A80-AE593CD95A8C}] (...) -- C:\PROGRA~2\P2P_TO~1\UNWISE.exe [MD5.7B43567B4C32AD7ADED537CD3B1342B9] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys O41 - Driver: (MPFP) . (.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) - C:\Windows\System32\Drivers\Mpfp.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Tcpip) . (.Microsoft Corporation - TCP/IP Driver.) - C:\Windows\System32\drivers\tcpip.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys ---\\ Logiciels installés (O42) O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{5A2F65A4-808F-4A1E-973E-92E17824982D} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{3EC77D26-799B-4CD8-914F-C1565E796173} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{430971B1-C31E-45DA-81E0-72C095BAB72C} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{B3F4DC34-7F60-4B7C-A79F-1C13012D99D4} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{F7A31780-33C4-4E39-951A-5EC9B91D7BF1} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{00C5525B-3CB3-467D-8100-2E6FB306CD86} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-040C-1000-0000000FF1CE}_HOMESTUDENTR_{EC50B538-CBE1-42E6-B7FE-87AA540AADFB} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{EC50B538-CBE1-42E6-B7FE-87AA540AADFB} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{BEE75E01-DD3F-4D5F-B96C-609E6538D419} O42 - Logiciel: 7-Zip 9.20 - (.Pas de propriétaire.) [HKLM][64Bits] -- 7-Zip O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM][64Bits] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07} O42 - Logiciel: Acer Arcade Live Main Page - (.Acer Inc..) [HKLM][64Bits] -- {EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37} O42 - Logiciel: Acer DV Magician - (.Acer Inc..) [HKLM][64Bits] -- {F6EFFB76-4A07-11DA-9D78-000129760D75} O42 - Logiciel: Acer DVDivine - (.Acer Inc..) [HKLM][64Bits] -- {B145EC69-66F5-11D8-9D75-000129760D75} O42 - Logiciel: Acer Empowering Technology - (.Acer Incorporated.) [HKLM][64Bits] -- {8F1B6239-FEA0-450A-A950-B05276CE177C} O42 - Logiciel: Acer GameZone Console DTV 2.0.1.1 - (.Oberon Media, Inc..) [HKLM][64Bits] -- Acer GameZone Console_is1 O42 - Logiciel: Acer HomeMedia - (.Acer Inc..) [HKLM][64Bits] -- {AA4BF92B-2AAF-11DA-9D78-000129760D75} O42 - Logiciel: Acer HomeMedia Connect - (.Acer Inc..) [HKLM][64Bits] -- {132888AE-EF67-41C5-BCA2-7D5D2488AB63} O42 - Logiciel: Acer HomeMedia Trial Creator - (.Acer Inc..) [HKLM][64Bits] -- {B580C409-E16F-44FF-904D-3AE94E113BE0} O42 - Logiciel: Acer Product Registration - (.Acer Incorporated.) [HKLM][64Bits] -- {DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E} O42 - Logiciel: Acer ScreenSaver - (.Acer Incorporated.) [HKLM][64Bits] -- {79DD56FC-DB8B-47F5-9C80-78B62E05F9BC} O42 - Logiciel: Acer SlideShow DVD - (.Acer Inc..) [HKLM][64Bits] -- {41581EF5-45A7-11DA-9D78-000129760D75} O42 - Logiciel: Acer VideoMagician - (.Acer Inc..) [HKLM][64Bits] -- {F79A208D-D929-11D9-9D77-000129760D75} O42 - Logiciel: Acer eDataSecurity Management - (.Egis Inc..) [HKLM][64Bits] -- {A5633652-3795-4829-BB0B-644F0279E279} O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9} O42 - Logiciel: Acer eSettings Management - (.Acer Incorporated.) [HKLM][64Bits] -- {13D85C14-2B85-419F-AC41-C7F21E68B25D} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 9 ActiveX - (.Adobe Systems.) [HKLM][64Bits] -- ShockwaveFlash O42 - Logiciel: Adobe Reader 8.1.0 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-A81000000003} O42 - Logiciel: Anti-Blaxx 1.16 - (.MB-Soft.) [HKLM][64Bits] -- Anti-Blaxx_is1 O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {DAEAFD68-BB4A-4507-A241-C8804D2EA66D} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {33EB1061-ABF1-4470-A540-32E97A610536} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033} O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7} O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {41BF0DE4-5BAE-4B88-AFD3-86A30B222186} O42 - Logiciel: CANON iMAGE GATEWAY Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- CANON iMAGE GATEWAY Task O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: Canon Internet Library for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- Canon Internet Library for ZoomBrowser EX O42 - Logiciel: Canon RAW Image Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- RAW Image Task O42 - Logiciel: Canon Utilities CameraWindow - (.Canon Inc..) [HKLM][64Bits] -- CameraWindowLauncher O42 - Logiciel: Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- CameraWindowDVC6 O42 - Logiciel: Canon Utilities Digital Photo Professional 3.4 - (.Canon Inc..) [HKLM][64Bits] -- DPP O42 - Logiciel: Canon Utilities EOS Utility - (.Canon Inc..) [HKLM][64Bits] -- EOS Utility O42 - Logiciel: Canon Utilities MyCamera - (.Canon Inc..) [HKLM][64Bits] -- MyCamera O42 - Logiciel: Canon Utilities PhotoStitch - (.Canon Inc..) [HKLM][64Bits] -- PhotoStitch O42 - Logiciel: Canon Utilities Picture Style Editor - (.Canon Inc..) [HKLM][64Bits] -- Picture Style Editor O42 - Logiciel: Canon Utilities RemoteCapture Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- RemoteCaptureTask O42 - Logiciel: Canon Utilities WFT-E1/E2/E3 Utility - (.Canon Inc..) [HKLM][64Bits] -- WFTK O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- ZoomBrowser EX O42 - Logiciel: Canon ZoomBrowser EX Memory Card Utility - (.Canon Inc..) [HKLM][64Bits] -- ZoomBrowser EX Memory Card Utility O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM][64Bits] -- DVD Shrink_is1 O42 - Logiciel: DVD X Player 4.1 Professionnel - (.Pas de propriétaire.) [HKLM][64Bits] -- DVD X Player 4.1 Professionnel_is1 O42 - Logiciel: DivX Codec - (.DivX, Inc..) [HKLM][64Bits] -- {7B63B2922B174135AFC0E1377DD81EC2} O42 - Logiciel: DivX Converter - (.DivX, Inc..) [HKLM][64Bits] -- {B13A7C41581B411290FBC0395694E2A9} O42 - Logiciel: DivX Player - (.DivX, Inc..) [HKLM][64Bits] -- {8ADFC4160D694100B5B8A22DE9DCABD9} O42 - Logiciel: DivX Plus DirectShow Filters - (.DivX, Inc..) [HKLM][64Bits] -- DivX Plus DirectShow Filters O42 - Logiciel: DivX Web Player - (.DivX,Inc..) [HKLM][64Bits] -- {B7050CBDB2504B34BC2A9CA0A692CC29} O42 - Logiciel: EPSON SX100 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON SX100 Series O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM][64Bits] -- EPSON Scanner O42 - Logiciel: EPSON Stylus SX100_TX100 Manuel - (.Pas de propriétaire.) [HKLM][64Bits] -- EPSON Stylus SX100_TX100 Guide d'utilisation O42 - Logiciel: Enigmes & Objets Cachés - Le tour du monde en 80 jours - (.Pas de propriétaire.) [HKLM][64Bits] -- {336B89D4-5021-44EF-AC17-2058AC2A4488} O42 - Logiciel: Enigmes et Objets Cachés - L'Académie de Magie - (.Pas de propriétaire.) [HKLM][64Bits] -- {6F4AF2D8-D98C-497C-A211-0349CACC0589} O42 - Logiciel: Enigmes et Objets Cachés l île Mystérieuse - (.Pas de propriétaire.) [HKLM][64Bits] -- {2BCE6C52-F35D-4F80-981F-4C8299CD21A5} O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {DEDB47A3-C988-4A43-A645-E2CEA571E680} O42 - Logiciel: Flock (3.5.3.4641) - (.Flock.) [HKCU] -- Flock O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9} O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Guide de l'utilisateur Logitech - (.Pas de propriétaire.) [HKLM][64Bits] -- {CBE0FCA1-4E95-11D4-9875-00105ACE7734} O42 - Logiciel: ImTOO Ringtone Maker - (.ImTOO.) [HKLM][64Bits] -- ImTOO Ringtone Maker O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite_Wave3 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619} O42 - Logiciel: LauncherMA - (.Micro Application.) [HKLM][64Bits] -- {C06EFB22-B5DB-46C5-9215-BCB5C19C0858} O42 - Logiciel: Le Trésor des Pirates - (.Pas de propriétaire.) [HKLM][64Bits] -- {3251B64D-81E8-429B-93F8-DB29BC2045CD} O42 - Logiciel: Logitech MouseWare 9.24 - (.Pas de propriétaire.) [HKLM][64Bits] -- {5809E7CF-4DCF-11D4-9875-00105ACE7734} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM][64Bits] -- {7DB4CB30-B94A-4282-AC8A-C86F615AA45B} O42 - Logiciel: Mahjong Escape Ancient China - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743} O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.0.1200 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Micro Application - Super Patiences et Réussites - (.Pas de propriétaire.) [HKLM][64Bits] -- Super Patiences et Réussites O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- {8E34682C-8118-31F1-BC4C-98CD9675E1C2} O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- HOMESTUDENTR O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Office 64-bit Components 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM][64Bits] -- {E50AE784-FABE-46DA-A1F8-7B6B56DCB22E} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-4627-81f2-1818da5d550d} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM][64Bits] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C} O42 - Logiciel: NTI Backup Now 5 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403} O42 - Logiciel: NTI JewelCase Maker Hot Fix - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{DDA223A7-627F-4173-9CA4-A9C531BCBB62} O42 - Logiciel: NTI Media Maker 8 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC} O42 - Logiciel: NTI Photo Maker Hot Fix - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{B9B02A9E-8074-4C3F-AAE5-311528F34FED} O42 - Logiciel: NVIDIA Drivers - (.Pas de propriétaire.) [HKLM] -- NVIDIA Drivers O42 - Logiciel: NVIDIA Pilote graphique 275.33 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver O42 - Logiciel: Navigateur Orange - (.Pas de propriétaire.) [HKLM][64Bits] -- {ORAHSS}.Browser O42 - Logiciel: Odyssée Sibérienne - (.Mindscape.) [HKLM][64Bits] -- {0B270394-8711-4569-AD19-D52054ABCAA0} O42 - Logiciel: OpenOffice.org 2.1 - (.OpenOffice.org.) [HKLM][64Bits] -- {E5430A11-6799-41E0-A9D5-F68BDC67AAD8} O42 - Logiciel: Orange - Logiciels Internet - (.Pas de propriétaire.) [HKLM][64Bits] -- {ORAHSS}.UninstallSuite O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {205C6BDD-7B73-42DE-8505-9A093F35A238} O42 - Logiciel: P2P_Torrent Toolbar - (.Pas de propriétaire.) [HKLM][64Bits] -- P2P_Torrent Toolbar O42 - Logiciel: PE585QAEncoder-64 - (.YUAN.) [HKLM] -- {D8B2C435-8737-431E-8784-24CD13B0B821} O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {E7004147-2CCA-431C-AA05-2AB166B9785D} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Safari - (.Apple Inc..) [HKLM][64Bits] -- {20ACB2F8-3BCA-45A8-80A2-9D3CB5C25F43} O42 - Logiciel: Sandlot Games Client Services 1.2.2 - (.Sandlot Games.) [HKLM][64Bits] -- Sandlot Games Client Services 1.2.2_is1 O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: VC80CRTRedist - 8.0.50727.762 - (.DivX, Inc.) [HKLM][64Bits] -- {767CC44C-9BBC-438D-BAD3-FD4595DD148B} O42 - Logiciel: VLC media player 1.1.4 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player O42 - Logiciel: Vodafone Mobile Connect Lite - (.Vodafone.) [HKLM][64Bits] -- {B5761811-28F3-4257-B537-815C5EEF472C} O42 - Logiciel: Web Games Player Plugin - (.Zylom Games.) [HKLM][64Bits] -- Web Games Player Plugin O42 - Logiciel: WinRAR archiver - (.Pas de propriétaire.) [HKLM][64Bits] -- WinRAR archiver O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {B3B487E7-6171-4376-9074-B28082CEB504} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1} O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {76810709-A7D3-468D-9167-A1780C1E766C} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {5DD76286-9BE7-4894-A990-E905E91AC818} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B} O42 - Logiciel: World Riddles - Seven Wonders - (.Pas de propriétaire.) [HKLM][64Bits] -- am-worldriddlessevenwonders O42 - Logiciel: Your Product - (.Your Company.) [HKLM][64Bits] -- Your Product1.0 O42 - Logiciel: Zuma Deluxe - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700} O42 - Logiciel: Zuma's Revenge! - (.AllSmartGames.) [HKLM][64Bits] -- Zuma's Revenge!1.0 O42 - Logiciel: avast! Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- avast O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM][64Bits] -- eMule O42 - Logiciel: eSobi v2 - (.esobi Inc..) [HKLM][64Bits] -- InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA} O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {104FB32A-7CE3-4C4B-B2AA-70C613FF9DFA} O42 - Logiciel: livebox - (.SAGEM.) [HKLM][64Bits] -- {17342E3B-0818-4A6F-BFF8-99476605ADD6} ---\\ HKCU & HKLM Software Keys [HKCU\Software\7-Zip] [HKCU\Software\ABBYY] [HKCU\Software\ATI Technologies Inc.] [HKCU\Software\ATI] [HKCU\Software\AVAST Software] [HKCU\Software\Acer] [HKCU\Software\Ad-Remover] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Software\Google] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software\Monitored] [HKCU\Software\AppDataLow\Software\P2P_Torrent] [HKCU\Software\AppDataLow\Software\settings] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Big Fish Games] [HKCU\Software\Bilbo] [HKCU\Software\COOPP] [HKCU\Software\Canon] [HKCU\Software\Canon_Inc_IC] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CyberLink] [HKCU\Software\DVD Shrink] [HKCU\Software\DVDXStudios] [HKCU\Software\DivXNetworks] [HKCU\Software\EPSON] [HKCU\Software\Fenomen Games] [HKCU\Software\GameHouse] [HKCU\Software\GameXzone] [HKCU\Software\GoBit] [HKCU\Software\Google] [HKCU\Software\IM Providers] [HKCU\Software\ImTOO] [HKCU\Software\InstallShield] [HKCU\Software\Intenium] [HKCU\Software\JollyBear] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\Logitech] [HKCU\Software\Macromedia] [HKCU\Software\Macrovision] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\McAfee] [HKCU\Software\Micro Application] [HKCU\Software\Mindscape] [HKCU\Software\MozillaPlugins] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\NewTech Infosystems] [HKCU\Software\Northcode Inc] [HKCU\Software\ODBC] [HKCU\Software\Oberon Media] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Realtek] [HKCU\Software\ReflexiveArcade] [HKCU\Software\S3R521] [HKCU\Software\SEIKO EPSON] [HKCU\Software\Safer Networking Limited] [HKCU\Software\SiteAdvisor] [HKCU\Software\Softonic] [HKCU\Software\SpinTop] [HKCU\Software\Test3D] [HKCU\Software\Trolltech] [HKCU\Software\Vodafone] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Wow6432Node] [HKCU\Software\Zylom] [HKCU\Software\cybelsoft] [HKCU\Software\eMule] [HKCU\Software\eSobi] [HKLM\Software\ABBYY] [HKLM\Software\AMD] [HKLM\Software\ATI Technologies] [HKLM\Software\ATI] [HKLM\Software\AVAST Software] [HKLM\Software\Acer Incorporated] [HKLM\Software\Acer] [HKLM\Software\Adobe] [HKLM\Software\America Online] [HKLM\Software\Anti-Blaxx] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Big Fish Games] [HKLM\Software\BrowserChoice] [HKLM\Software\Canon] [HKLM\Software\Canon_Inc_IC] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CyberLink] [HKLM\Software\Cyberlink] [HKLM\Software\Digital River] [HKLM\Software\DivXNetworks] [HKLM\Software\EPSON] [HKLM\Software\FRANCE TELECOM] [HKLM\Software\GEAR Software] [HKLM\Software\GameInstaller] [HKLM\Software\Google] [HKLM\Software\Hauppauge] [HKLM\Software\ImTOO] [HKLM\Software\Intel] [HKLM\Software\Khronos] [HKLM\Software\LightScribe] [HKLM\Software\Logitech] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\Micro Application] [HKLM\Software\Mindscape] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\NewTech Infosystems] [HKLM\Software\ODBC] [HKLM\Software\Oberon Media] [HKLM\Software\OemSetup] [HKLM\Software\OpenOffice.org] [HKLM\Software\P2P_Torrent] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SRS Labs] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Sagem] [HKLM\Software\Sonic] [HKLM\Software\Sun Microsystems] [HKLM\Software\Trad-FR] [HKLM\Software\VideoLAN] [HKLM\Software\Vodafone] [HKLM\Software\Waves Audio] [HKLM\Software\WinRAR] [HKLM\Software\Wise Solutions] [HKLM\Software\Wow6432Node] [HKLM\Software\cybelsoft] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 25/04/2009 - 20:46:20 - [79247895] ----D- C:\Program Files\Acer O43 - CFD: 24/06/2011 - 19:49:32 - [0] ----D- C:\Program Files\ATI Technologies O43 - CFD: 24/06/2011 - 18:34:58 - [168715275] ----D- C:\Program Files\AVAST Software O43 - CFD: 06/11/2010 - 14:54:54 - [195827] ----D- C:\Program Files\Bonjour O43 - CFD: 23/06/2011 - 20:30:42 - [7422296] ----D- C:\Program Files\CCleaner O43 - CFD: 24/06/2011 - 16:47:14 - [222907232] ----D- C:\Program Files\Common Files O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\Program Files\Fichiers communs O43 - CFD: 24/06/2011 - 16:35:32 - [0] ----D- C:\Program Files\Google O43 - CFD: 21/01/2008 - 05:09:38 - [1631428] ----D- C:\Program Files\Internet Explorer O43 - CFD: 06/11/2010 - 15:01:24 - [2345960] ----D- C:\Program Files\iTunes O43 - CFD: 02/11/2006 - 17:07:28 - [93941175] ----D- C:\Program Files\Microsoft Games O43 - CFD: 31/10/2008 - 13:45:08 - [1140374] ----D- C:\Program Files\Microsoft Office O43 - CFD: 07/11/2010 - 17:48:46 - [116183662] ----D- C:\Program Files\Movie Maker O43 - CFD: 02/11/2006 - 17:07:28 - [9908] ----D- C:\Program Files\MSBuild O43 - CFD: 25/06/2011 - 00:08:12 - [334434869] ----D- C:\Program Files\NVIDIA Corporation O43 - CFD: 02/11/2006 - 17:07:28 - [26393182] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 02/11/2006 - 17:44:56 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 21/01/2008 - 05:09:42 - [1302528] ----D- C:\Program Files\Windows Calendar O43 - CFD: 21/01/2008 - 05:09:38 - [2999808] ----D- C:\Program Files\Windows Collaboration O43 - CFD: 21/01/2008 - 05:09:30 - [6395856] ----D- C:\Program Files\Windows Defender O43 - CFD: 21/01/2008 - 05:09:36 - [9655416] ----D- C:\Program Files\Windows Journal O43 - CFD: 04/11/2010 - 08:09:22 - [9622376] ----D- C:\Program Files\Windows Mail O43 - CFD: 21/01/2008 - 05:09:38 - [5138167] ----D- C:\Program Files\Windows Media Player O43 - CFD: 25/04/2009 - 20:41:34 - [8038670] ----D- C:\Program Files\Windows NT O43 - CFD: 21/01/2008 - 05:09:36 - [16354466] ----D- C:\Program Files\Windows Photo Gallery O43 - CFD: 21/01/2008 - 05:09:38 - [7017819] ----D- C:\Program Files\Windows Sidebar O43 - CFD: 10/10/2006 - 21:06:44 - [3608665] ----D- C:\Program Files\YUAN O43 - CFD: 26/04/2009 - 11:40:30 - [5105831] ----D- C:\Program Files\Common Files\Apple O43 - CFD: 02/11/2010 - 21:51:26 - [207639065] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 02/11/2006 - 15:33:54 - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 02/11/2006 - 15:33:54 - [608256] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 21/01/2008 - 05:09:30 - [9551378] ----D- C:\Program Files\Common Files\System O43 - CFD: 31/10/2008 - 14:15:06 - [16083] ----D- C:\ProgramData\Acer GameZone Console O43 - CFD: 31/10/2008 - 14:10:34 - [770] ----D- C:\ProgramData\Adobe O43 - CFD: 27/08/2010 - 18:04:12 - [0] ----D- C:\ProgramData\Alawar Entertainment O43 - CFD: 10/03/2011 - 21:12:36 - [3154583] ----D- C:\ProgramData\Alwil Software O43 - CFD: 06/11/2010 - 14:57:40 - [59300057] ----D- C:\ProgramData\Apple O43 - CFD: 26/04/2009 - 11:42:44 - [83250728] ----D- C:\ProgramData\Apple Computer O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Application Data O43 - CFD: 29/08/2009 - 22:09:04 - [1017812] ----D- C:\ProgramData\Arcade Lab O43 - CFD: 22/06/2011 - 17:18:04 - [43038171] ----D- C:\ProgramData\AVAST Software O43 - CFD: 27/08/2010 - 17:59:10 - [0] ----D- C:\ProgramData\Big Fish Games O43 - CFD: 28/01/2011 - 17:24:16 - [9108805] ----D- C:\ProgramData\Bilbo O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Bureau O43 - CFD: 24/06/2011 - 21:46:58 - [0] ----D- C:\ProgramData\Comodo O43 - CFD: 21/12/2010 - 20:31:16 - [144196] ----D- C:\ProgramData\CyberLink O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Desktop O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Documents O43 - CFD: 03/03/2011 - 14:00:02 - [17224] ----D- C:\ProgramData\DVD Shrink O43 - CFD: 14/07/2009 - 20:15:30 - [10599] ----D- C:\ProgramData\DVD X Studios O43 - CFD: 28/10/2010 - 20:42:42 - [0] ----D- C:\ProgramData\eMule O43 - CFD: 26/04/2009 - 10:13:06 - [6432265] ----D- C:\ProgramData\EPSON O43 - CFD: 28/10/2010 - 21:08:22 - [420] ----D- C:\ProgramData\eSobi O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Favoris O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Favorites O43 - CFD: 25/08/2010 - 21:24:04 - [10448] ----D- C:\ProgramData\Fenomen Games O43 - CFD: 31/10/2008 - 14:16:04 - [0] ----D- C:\ProgramData\FloodLightGames O43 - CFD: 08/02/2011 - 19:15:16 - [243462] ----D- C:\ProgramData\Funny Bear Studio O43 - CFD: 27/08/2010 - 22:46:38 - [89518] ----D- C:\ProgramData\GameHouse O43 - CFD: 12/11/2010 - 15:33:06 - [148442] ----D- C:\ProgramData\GameXzone O43 - CFD: 03/01/2011 - 10:59:42 - [15172954] ----D- C:\ProgramData\GoBit Games O43 - CFD: 23/06/2011 - 20:35:26 - [526512] ----D- C:\ProgramData\Google O43 - CFD: 11/12/2010 - 10:33:26 - [26770] ----D- C:\ProgramData\HoverBee Studios O43 - CFD: 30/08/2010 - 16:31:12 - [503164] ----D- C:\ProgramData\Intenium O43 - CFD: 26/05/2009 - 11:07:06 - [114619] ----D- C:\ProgramData\InterAction studios O43 - CFD: 26/08/2010 - 10:39:16 - [10916166] ----D- C:\ProgramData\JollyBear O43 - CFD: 09/01/2011 - 13:29:16 - [0] ----D- C:\ProgramData\Little Games Company O43 - CFD: 24/06/2011 - 20:10:40 - [1273561] ----D- C:\ProgramData\ma-config.com O43 - CFD: 25/04/2009 - 22:14:08 - [3484022] ----D- C:\ProgramData\Macrovision O43 - CFD: 22/06/2011 - 16:23:28 - [6887336] ----D- C:\ProgramData\Malwarebytes O43 - CFD: 25/06/2011 - 00:08:12 - [851] ----D- C:\ProgramData\McAfee Security Scan O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Menu Démarrer O43 - CFD: 25/08/2010 - 22:18:16 - [0] ----D- C:\ProgramData\Merscom O43 - CFD: 08/02/2010 - 21:56:02 - [668] ----D- C:\ProgramData\Micro Application O43 - CFD: 24/06/2011 - 18:00:14 - [103999536] -S--D- C:\ProgramData\Microsoft O43 - CFD: 07/11/2010 - 17:57:32 - [57676] ----D- C:\ProgramData\Microsoft Help O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Modèles O43 - CFD: 02/02/2010 - 20:05:24 - [0] ----D- C:\ProgramData\NtiDvdCopy O43 - CFD: 24/06/2011 - 23:46:58 - [188348] ----D- C:\ProgramData\NVIDIA O43 - CFD: 24/06/2011 - 20:37:44 - [912773] ----D- C:\ProgramData\NVIDIA Corporation O43 - CFD: 08/05/2009 - 12:24:38 - [21486] ----D- C:\ProgramData\Oberon Games O43 - CFD: 25/07/2010 - 22:43:56 - [0] ----D- C:\ProgramData\PhotoStitch O43 - CFD: 09/01/2011 - 13:07:00 - [12720] ----D- C:\ProgramData\PlayFirst O43 - CFD: 28/08/2010 - 14:09:22 - [7520] ----D- C:\ProgramData\Playrix Entertainment O43 - CFD: 08/05/2009 - 11:04:24 - [366] ----D- C:\ProgramData\Sandlot Games O43 - CFD: 27/08/2010 - 18:06:16 - [82386784] ----D- C:\ProgramData\SpinTop Games O43 - CFD: 25/06/2011 - 13:52:30 - [6982] ----D- C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Start Menu O43 - CFD: 21/12/2010 - 22:32:32 - [0] ---AD- C:\ProgramData\TEMP O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Templates O43 - CFD: 26/04/2009 - 10:19:04 - [3498] ----D- C:\ProgramData\UDL O43 - CFD: 23/07/2010 - 09:48:22 - [0] ----D- C:\ProgramData\ZoomBrowser O43 - CFD: 08/02/2011 - 10:34:48 - [349088] ----D- C:\ProgramData\Zylom O43 - CFD: 26/04/2009 - 11:42:56 - [1942] ----D- C:\ProgramData\{35733029-9859-49C7-8475-1E78E2AAE413} O43 - CFD: 06/11/2010 - 15:01:24 - [895721] ----D- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001} O43 - CFD: 13/11/2010 - 10:10:18 - [36864] -SH-D- C:\Users\mel\AppData\Roaming\.# O43 - CFD: 31/10/2008 - 14:15:06 - [30584] ----D- C:\Users\mel\AppData\Roaming\Acer GameZone Console O43 - CFD: 14/07/2009 - 20:37:02 - [870657] ----D- C:\Users\mel\AppData\Roaming\Adobe O43 - CFD: 27/08/2010 - 18:04:12 - [1534] ----D- C:\Users\mel\AppData\Roaming\Alawar Entertainment O43 - CFD: 06/11/2010 - 13:50:00 - [95858990] ----D- C:\Users\mel\AppData\Roaming\Apple Computer O43 - CFD: 25/04/2009 - 20:48:52 - [0] ----D- C:\Users\mel\AppData\Roaming\ATI O43 - CFD: 27/08/2010 - 17:59:10 - [2004569] ----D- C:\Users\mel\AppData\Roaming\Big Fish Games O43 - CFD: 25/07/2010 - 22:40:52 - [0] ----D- C:\Users\mel\AppData\Roaming\Canon O43 - CFD: 13/09/2009 - 09:46:22 - [33] ----D- C:\Users\mel\AppData\Roaming\CyberLink O43 - CFD: 02/02/2010 - 19:56:08 - [16440] ----D- C:\Users\mel\AppData\Roaming\DivX O43 - CFD: 19/12/2010 - 14:39:52 - [29261] ----D- C:\Users\mel\AppData\Roaming\Dragon Altar Games O43 - CFD: 03/03/2011 - 14:13:02 - [199] ----D- C:\Users\mel\AppData\Roaming\dvdcss O43 - CFD: 28/06/2009 - 14:16:56 - [1004] ----D- C:\Users\mel\AppData\Roaming\EPSON O43 - CFD: 27/08/2010 - 18:00:06 - [399676] ----D- C:\Users\mel\AppData\Roaming\ERS G-Studio O43 - CFD: 26/04/2009 - 10:04:54 - [567566] ----D- C:\Users\mel\AppData\Roaming\eSobi O43 - CFD: 27/04/2009 - 21:20:00 - [35041] ----D- C:\Users\mel\AppData\Roaming\FloodLightGames O43 - CFD: 13/12/2010 - 19:31:12 - [40343] ----D- C:\Users\mel\AppData\Roaming\Freeze Tag O43 - CFD: 26/08/2010 - 11:03:28 - [52236] ----D- C:\Users\mel\AppData\Roaming\Game Mill Entertainment O43 - CFD: 27/10/2010 - 08:45:00 - [0] ----D- C:\Users\mel\AppData\Roaming\Google O43 - CFD: 20/02/2010 - 15:36:30 - [25411] ----D- C:\Users\mel\AppData\Roaming\HdO Adventure O43 - CFD: 25/04/2009 - 20:48:18 - [0] ----D- C:\Users\mel\AppData\Roaming\Identities O43 - CFD: 12/11/2010 - 22:52:10 - [179257] ----D- C:\Users\mel\AppData\Roaming\ImTOO O43 - CFD: 26/04/2009 - 10:13:40 - [0] ----D- C:\Users\mel\AppData\Roaming\InstallShield O43 - CFD: 07/06/2009 - 17:55:48 - [0] ----D- C:\Users\mel\AppData\Roaming\iWin O43 - CFD: 20/09/2010 - 17:50:54 - [32433] ----D- C:\Users\mel\AppData\Roaming\LegacyInteractive O43 - CFD: 09/01/2011 - 13:29:16 - [930748] ----D- C:\Users\mel\AppData\Roaming\Little Games Company O43 - CFD: 25/04/2009 - 20:48:50 - [611] ----D- C:\Users\mel\AppData\Roaming\Macromedia O43 - CFD: 26/04/2009 - 09:49:26 - [488] ----D- C:\Users\mel\AppData\Roaming\Macrovision O43 - CFD: 09/02/2010 - 00:22:36 - [7244] ----D- C:\Users\mel\AppData\Roaming\Magic Academy O43 - CFD: 22/06/2011 - 16:23:56 - [8537308] ----D- C:\Users\mel\AppData\Roaming\Malwarebytes O43 - CFD: 02/11/2006 - 17:07:26 - [0] ----D- C:\Users\mel\AppData\Roaming\Media Center Programs O43 - CFD: 25/08/2010 - 22:18:16 - [514888] ----D- C:\Users\mel\AppData\Roaming\Merscom O43 - CFD: 02/11/2010 - 21:59:24 - [1186146] -S--D- C:\Users\mel\AppData\Roaming\Microsoft O43 - CFD: 20/01/2010 - 18:09:34 - [304147] ----D- C:\Users\mel\AppData\Roaming\Odyssee_Sib O43 - CFD: 25/06/2011 - 21:12:50 - [2352013] ----D- C:\Users\mel\AppData\Roaming\OpenOffice.org2 O43 - CFD: 12/02/2010 - 22:49:28 - [37268] ----D- C:\Users\mel\AppData\Roaming\Pirateville O43 - CFD: 09/01/2011 - 13:07:00 - [150659] ----D- C:\Users\mel\AppData\Roaming\PlayFirst O43 - CFD: 27/08/2010 - 17:36:42 - [1444938] ----D- C:\Users\mel\AppData\Roaming\QB9 O43 - CFD: 27/08/2010 - 23:23:20 - [230] ----D- C:\Users\mel\AppData\Roaming\Roaming O43 - CFD: 13/07/2010 - 08:37:46 - [131494] ----D- C:\Users\mel\AppData\Roaming\SecretIslandFranc O43 - CFD: 23/11/2010 - 18:25:22 - [304266] ----D- C:\Users\mel\AppData\Roaming\Settlement. Colossus O43 - CFD: 18/11/2010 - 12:54:18 - [180880] ----D- C:\Users\mel\AppData\Roaming\ShaoLin O43 - CFD: 27/08/2010 - 17:46:56 - [3123] ----D- C:\Users\mel\AppData\Roaming\she_is_a_shadow O43 - CFD: 26/04/2009 - 10:44:18 - [8704] ----D- C:\Users\mel\AppData\Roaming\Template O43 - CFD: 26/05/2011 - 19:02:40 - [1192449] ----D- C:\Users\mel\AppData\Roaming\vlc O43 - CFD: 12/11/2010 - 22:46:56 - [12] ----D- C:\Users\mel\AppData\Roaming\WinRAR O43 - CFD: 25/07/2010 - 22:42:46 - [0] ----D- C:\Users\mel\AppData\Roaming\ZoomBrowser EX O43 - CFD: 22/12/2010 - 07:36:52 - [6886] ----D- C:\Users\mel\Appdata\Local\Acer Arcade Live O43 - CFD: 22/12/2010 - 07:36:52 - [6907] ----D- C:\Users\mel\Appdata\Local\Acer DV Magician O43 - CFD: 22/12/2010 - 07:36:52 - [8561] ----D- C:\Users\mel\Appdata\Local\Acer DVDivine O43 - CFD: 26/04/2009 - 10:36:20 - [8523] ----D- C:\Users\mel\Appdata\Local\Acer HomeMedia O43 - CFD: 13/09/2009 - 09:25:18 - [6780] ----D- C:\Users\mel\Appdata\Local\Acer SlideShow DVD O43 - CFD: 26/04/2009 - 10:36:04 - [7038] ----D- C:\Users\mel\Appdata\Local\Acer VideoMagician O43 - CFD: 14/07/2009 - 20:37:04 - [39724890] ----D- C:\Users\mel\Appdata\Local\Adobe O43 - CFD: 26/04/2009 - 11:40:54 - [11115713] ----D- C:\Users\mel\Appdata\Local\Apple O43 - CFD: 06/11/2010 - 17:04:56 - [11261089] ----D- C:\Users\mel\Appdata\Local\Apple Computer O43 - CFD: 25/04/2009 - 20:44:48 - [0] -SH-D- C:\Users\mel\Appdata\Local\Application Data O43 - CFD: 14/11/2010 - 13:14:20 - [35256] ----D- C:\Users\mel\Appdata\Local\Ares O43 - CFD: 25/04/2009 - 20:48:52 - [42124] ----D- C:\Users\mel\Appdata\Local\ATI O43 - CFD: 25/07/2010 - 22:42:42 - [1751] ----D- C:\Users\mel\Appdata\Local\CANON_INC O43 - CFD: 26/04/2009 - 10:36:22 - [139264] ----D- C:\Users\mel\Appdata\Local\CyberLink O43 - CFD: 25/04/2009 - 22:13:42 - [11783680] ----D- C:\Users\mel\Appdata\Local\Downloaded Installations O43 - CFD: 30/10/2010 - 09:58:16 - [869466] ----D- C:\Users\mel\Appdata\Local\eMule O43 - CFD: 02/11/2010 - 16:36:52 - [253003793] ----D- C:\Users\mel\Appdata\Local\Flock O43 - CFD: 23/06/2011 - 20:35:26 - [8586131] ----D- C:\Users\mel\Appdata\Local\Google O43 - CFD: 25/04/2009 - 20:44:48 - [0] -SH-D- C:\Users\mel\Appdata\Local\Historique O43 - CFD: 26/08/2010 - 10:39:16 - [1253] ----D- C:\Users\mel\Appdata\Local\JollyBear O43 - CFD: 13/09/2009 - 09:27:08 - [0] ----D- C:\Users\mel\Appdata\Local\MakeDisc O43 - CFD: 24/06/2011 - 18:00:14 - [776882944] ----D- C:\Users\mel\Appdata\Local\Microsoft O43 - CFD: 27/04/2009 - 15:59:46 - [1857964] ----D- C:\Users\mel\Appdata\Local\Microsoft Games O43 - CFD: 25/04/2009 - 20:48:50 - [0] ----D- C:\Users\mel\Appdata\Local\PowerCinema O43 - CFD: 26/06/2011 - 00:00:30 - [12427655] ----D- C:\Users\mel\Appdata\Local\Temp O43 - CFD: 25/04/2009 - 20:44:48 - [0] -SH-D- C:\Users\mel\Appdata\Local\Temporary Internet Files O43 - CFD: 30/08/2010 - 16:47:00 - [165404] ----D- C:\Users\mel\Appdata\Local\Vast Studios O43 - CFD: 08/05/2009 - 11:47:36 - [49271021] ----D- C:\Users\mel\Appdata\Local\VirtualStore O43 - CFD: 21/01/2008 - 05:20:46 - [15271] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 25/04/2009 - 20:48:26 - [174] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 03/01/2011 - 10:53:16 - [1830] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Burger Shop 2 O43 - CFD: 02/11/2010 - 16:36:52 - [4016] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flock O43 - CFD: 21/01/2008 - 05:20:46 - [548] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 25/06/2011 - 16:05:00 - [3111] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 12/11/2010 - 22:45:52 - [2633] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 03/01/2011 - 10:53:20 - [1821] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Your Product O43 - CFD: 27/08/2010 - 18:06:02 - [3709] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zuma's Revenge! O43 - CFD: 30/11/2010 - 09:58:42 - [3511045] ----D- C:\Program Files (x86)\7-Zip O43 - CFD: 26/04/2009 - 10:18:20 - [124428627] ----D- C:\Program Files (x86)\ABBYY FineReader 6.0 Sprint O43 - CFD: 31/10/2008 - 14:01:54 - [74523788] ----D- C:\Program Files (x86)\Acer O43 - CFD: 31/10/2008 - 14:11:02 - [644989344] ----D- C:\Program Files (x86)\Acer Arcade Live O43 - CFD: 21/12/2010 - 19:17:56 - [169953189] ----D- C:\Program Files (x86)\Acer GameZone O43 - CFD: 10/10/2006 - 21:07:18 - [0] ----D- C:\Program Files (x86)\Acer Incorporated O43 - CFD: 25/06/2011 - 23:48:28 - [139023813] ----D- C:\Program Files (x86)\Ad-Remover O43 - CFD: 31/10/2008 - 14:10:06 - [200267752] ----D- C:\Program Files (x86)\Adobe O43 - CFD: 25/11/2010 - 10:07:20 - [617925] ----D- C:\Program Files (x86)\Anti-Blaxx O43 - CFD: 26/04/2009 - 11:40:52 - [2221118] ----D- C:\Program Files (x86)\Apple Software Update O43 - CFD: 11/03/2010 - 18:59:18 - [42348] ----D- C:\Program Files (x86)\BFG O43 - CFD: 06/11/2010 - 14:54:54 - [600007] ----D- C:\Program Files (x86)\Bonjour O43 - CFD: 03/01/2011 - 10:53:16 - [28746459] ----D- C:\Program Files (x86)\Burger Shop 2 O43 - CFD: 23/07/2010 - 09:48:50 - [330761061] ----D- C:\Program Files (x86)\Canon O43 - CFD: 24/06/2011 - 16:48:42 - [721419921] ----D- C:\Program Files (x86)\Common Files O43 - CFD: 31/10/2008 - 14:03:40 - [4765216] ----D- C:\Program Files (x86)\CyberLink O43 - CFD: 15/07/2009 - 20:58:34 - [70306267] ----D- C:\Program Files (x86)\DivX O43 - CFD: 26/04/2009 - 14:30:48 - [979892] ----D- C:\Program Files (x86)\DVD Shrink O43 - CFD: 14/07/2009 - 20:16:08 - [15700152] ----D- C:\Program Files (x86)\DVD X Player 4.1 Professionnel O43 - CFD: 28/10/2010 - 20:42:16 - [10906334] ----D- C:\Program Files (x86)\eMule O43 - CFD: 26/04/2009 - 10:14:22 - [13107148] ----D- C:\Program Files (x86)\epson O43 - CFD: 26/04/2009 - 10:18:28 - [93975345] ----D- C:\Program Files (x86)\Epson Software O43 - CFD: 31/10/2008 - 14:26:54 - [17489955] ----D- C:\Program Files (x86)\eSobi O43 - CFD: 24/06/2011 - 16:35:32 - [260151682] ----D- C:\Program Files (x86)\Google O43 - CFD: 12/11/2010 - 22:51:10 - [66150014] ----D- C:\Program Files (x86)\ImTOO O43 - CFD: 25/06/2011 - 00:08:12 - [131206752] --H-D- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 26/04/2009 - 11:41:34 - [2651852] ----D- C:\Program Files (x86)\Internet Explorer O43 - CFD: 06/11/2010 - 15:00:48 - [1938027] ----D- C:\Program Files (x86)\iPod O43 - CFD: 06/11/2010 - 15:01:24 - [122979411] ----D- C:\Program Files (x86)\iTunes O43 - CFD: 24/06/2011 - 23:28:08 - [7941202] ----D- C:\Program Files (x86)\Lavalys O43 - CFD: 26/04/2009 - 14:51:28 - [6365734] ----D- C:\Program Files (x86)\Logitech O43 - CFD: 24/06/2011 - 20:10:44 - [6093848] ----D- C:\Program Files (x86)\ma-config.com O43 - CFD: 23/06/2011 - 17:44:38 - [7590700] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware O43 - CFD: 24/06/2011 - 18:30:30 - [255536] ----D- C:\Program Files (x86)\McAfee Security Scan O43 - CFD: 30/12/2010 - 17:07:48 - [379634967] ----D- C:\Program Files (x86)\Micro Application O43 - CFD: 02/11/2010 - 21:52:12 - [226432] ----D- C:\Program Files (x86)\Microsoft O43 - CFD: 31/10/2008 - 13:49:42 - [347890693] ----D- C:\Program Files (x86)\Microsoft Office O43 - CFD: 31/10/2008 - 13:50:02 - [7791803] ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant O43 - CFD: 02/11/2010 - 21:54:14 - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 31/10/2008 - 13:49:42 - [151270378] ----D- C:\Program Files (x86)\Microsoft Works O43 - CFD: 24/06/2011 - 19:51:56 - [8175999] ----D- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 29/12/2010 - 19:30:52 - [2659886008] ----D- C:\Program Files (x86)\Mindscape O43 - CFD: 02/11/2006 - 17:07:28 - [9908] ----D- C:\Program Files (x86)\MSBuild O43 - CFD: 31/10/2008 - 14:09:14 - [228861119] ----D- C:\Program Files (x86)\NewTech Infosystems O43 - CFD: 24/06/2011 - 23:47:00 - [0] ----D- C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 25/04/2009 - 22:27:30 - [263849542] ----D- C:\Program Files (x86)\OpenOffice.org 2.1 O43 - CFD: 22/06/2011 - 16:13:48 - [180978831] ----D- C:\Program Files (x86)\Orange O43 - CFD: 23/06/2011 - 21:03:26 - [2789763] ----D- C:\Program Files (x86)\P2P_Torrent O43 - CFD: 06/11/2010 - 14:59:34 - [76337719] ----D- C:\Program Files (x86)\QuickTime O43 - CFD: 08/02/2011 - 10:01:00 - [2435193] ----D- C:\Program Files (x86)\RealArcade O43 - CFD: 31/10/2008 - 13:29:24 - [149450890] ----D- C:\Program Files (x86)\Realtek O43 - CFD: 02/11/2006 - 17:07:28 - [26716348] ----D- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 06/11/2010 - 11:34:42 - [42299504] ----D- C:\Program Files (x86)\Safari O43 - CFD: 25/06/2011 - 00:08:12 - [1309922] ----D- C:\Program Files (x86)\SAGEM O43 - CFD: 25/06/2011 - 00:08:12 - [38412056] ----D- C:\Program Files (x86)\Securitoo O43 - CFD: 23/06/2011 - 19:39:08 - [65887239] ----D- C:\Program Files (x86)\Spybot - Search & Destroy O43 - CFD: 02/11/2006 - 17:36:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information O43 - CFD: 02/11/2010 - 17:22:04 - [78884139] ----D- C:\Program Files (x86)\VideoLAN O43 - CFD: 25/04/2009 - 22:14:08 - [11354021] ----D- C:\Program Files (x86)\Vodafone O43 - CFD: 21/01/2008 - 05:09:50 - [1016832] ----D- C:\Program Files (x86)\Windows Calendar O43 - CFD: 21/01/2008 - 05:09:48 - [53248] ----D- C:\Program Files (x86)\Windows Collaboration O43 - CFD: 21/01/2008 - 05:09:42 - [504128] ----D- C:\Program Files (x86)\Windows Defender O43 - CFD: 02/11/2010 - 21:55:26 - [117449045] ----D- C:\Program Files (x86)\Windows Live O43 - CFD: 02/11/2010 - 21:51:52 - [245112] ----D- C:\Program Files (x86)\Windows Live SkyDrive O43 - CFD: 04/11/2010 - 08:09:22 - [8939368] ----D- C:\Program Files (x86)\Windows Mail O43 - CFD: 21/01/2008 - 05:09:48 - [3008997] ----D- C:\Program Files (x86)\Windows Media Player O43 - CFD: 02/11/2006 - 17:07:28 - [7942926] ----D- C:\Program Files (x86)\Windows NT O43 - CFD: 21/01/2008 - 05:09:48 - [13464738] ----D- C:\Program Files (x86)\Windows Photo Gallery O43 - CFD: 21/01/2008 - 05:09:50 - [6511482] ----D- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 12/11/2010 - 22:45:52 - [3727772] ----D- C:\Program Files (x86)\WinRAR O43 - CFD: 03/01/2011 - 10:53:18 - [131570] ----D- C:\Program Files (x86)\Your Product O43 - CFD: 26/06/2011 - 00:00:34 - [4051278] ----D- C:\Program Files (x86)\ZHPDiag O43 - CFD: 27/08/2010 - 18:06:00 - [114402764] ----D- C:\Program Files (x86)\Zuma's Revenge! O43 - CFD: 08/02/2011 - 10:34:48 - [498392] ----D- C:\Program Files (x86)\Zylom Games O43 - CFD: 31/10/2008 - 14:10:12 - [9874075] ----D- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 06/11/2010 - 15:00:48 - [86845855] ----D- C:\Program Files (x86)\Common Files\Apple O43 - CFD: 23/07/2010 - 09:46:02 - [1184036] ----D- C:\Program Files (x86)\Common Files\Canon O43 - CFD: 31/10/2008 - 13:46:54 - [92976] ----D- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 15/07/2009 - 20:58:22 - [8024284] ----D- C:\Program Files (x86)\Common Files\DivX Shared O43 - CFD: 22/06/2011 - 16:10:54 - [7878358] ----D- C:\Program Files (x86)\Common Files\France Telecom O43 - CFD: 31/10/2008 - 13:38:48 - [6639811] ----D- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 31/10/2008 - 14:08:56 - [7178034] ----D- C:\Program Files (x86)\Common Files\LightScribe O43 - CFD: 26/04/2009 - 14:46:26 - [463926] ----D- C:\Program Files (x86)\Common Files\Logitech O43 - CFD: 02/11/2010 - 21:51:56 - [423393852] ----D- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 15/07/2009 - 20:58:30 - [3926944] ----D- C:\Program Files (x86)\Common Files\PX Storage Engine O43 - CFD: 08/05/2009 - 11:04:32 - [1353752] ----D- C:\Program Files (x86)\Common Files\Sandlot Shared O43 - CFD: 02/11/2006 - 15:33:54 - [2702] ----D- C:\Program Files (x86)\Common Files\Services O43 - CFD: 02/11/2006 - 15:33:54 - [41101735] ----D- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 21/01/2008 - 05:09:42 - [42700942] ----D- C:\Program Files (x86)\Common Files\System O43 - CFD: 28/10/2010 - 20:16:04 - [80727407] ----D- C:\Program Files (x86)\Common Files\Windows Live ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.80EE1700FEFFFFFF57494E444F577E31] - 25/06/2011 - 22:55:33 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1265809] O44 - LFC:[MD5.F5B6694DF4B6FF9EA3CE07C0C0240575] - 25/06/2011 - 22:49:41 ---A- . (...) -- C:\Ad-Report-CLEAN[1].txt [2805] O44 - LFC:[MD5.278C5209337ADFADF495BDD741126CC3] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1606634] O44 - LFC:[MD5.D0777689CD9E3306B5C7E48888EE33D7] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [118064] O44 - LFC:[MD5.BDDF86975092A9146E48F933A4A86A04] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [143958] O44 - LFC:[MD5.769F14BBD18C21742C38DF0C2C54657A] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [631438] O44 - LFC:[MD5.4D692CFA2CFB6AB61295A143F5D74D41] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [719130] O44 - LFC:[MD5.80EE1700FEFFFFFF4C4F47434F4E7E31] - 25/06/2011 - 20:12:49 ---A- . (...) -- C:\Windows\SysNative\LogConfigTemp.xml [0] O44 - LFC:[MD5.6430C85245379591A8856B9F3EFB5DB9] - 25/06/2011 - 20:12:12 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.BAA67B827D40BDB6968724A97B8F88E1] - 25/06/2011 - 19:02:07 ---A- . (...) -- C:\Windows\PFRO.log [6428] O44 - LFC:[MD5.0E181B9023D7D176D96DB849375E1F9C] - 25/06/2011 - 18:56:54 ---A- . (...) -- C:\UsbFix_Upload_Me_PC-DE-MEL.zip [610859336] O44 - LFC:[MD5.9ADA205FD5CCC52AA2DB00E228AE4E26] - 25/06/2011 - 18:20:29 ---A- . (...) -- C:\Windows\SysNative\spsys.log [808] O44 - LFC:[MD5.6E97333F01841E397E651F75AED67FFE] - 25/06/2011 - 12:50:10 ---A- . (...) -- C:\Windows\setupact.log [2119] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 24/06/2011 - 21:55:18 ---A- . (...) -- C:\Windows\setuperr.log [0] O44 - LFC:[MD5.EBF7292E4E930CDCE565EB47B717D90E] - 24/06/2011 - 19:38:36 ---A- . (.NVIDIA Corporation - Pas de description.) -- C:\Windows\SysNative\nvshext.dll [61544] O44 - LFC:[MD5.F5B38907383181659B1BFDAD5E6477D7] - 24/06/2011 - 19:38:35 ---A- . (.NVIDIA Corporation - Easy daemon API.) -- C:\Windows\SysNative\easyupdatusapiu64.dll [739432] O44 - LFC:[MD5.8D23190C8DEC15DF565CA211ADB13258] - 24/06/2011 - 19:33:26 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\SysNative\OpenCL.dll [67176] O44 - LFC:[MD5.8D23190C8DEC15DF565CA211ADB13258] - 24/06/2011 - 19:33:26 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.dll [57960] O44 - LFC:[MD5.FF5EF308DA199B27D9B7236A80225CB4] - 24/06/2011 - 19:33:26 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\SysNative\nvoglv64.dll [22286952] O44 - LFC:[MD5.BAA6974697538067C6B27FA898DED21C] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\SysNative\nvdispco6420150.dll [1496168] O44 - LFC:[MD5.35EE4726EC99386CE41A3268D993693C] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\SysNative\nvgenco642090.dll [1427048] O44 - LFC:[MD5.8A618A2301DC67510DFBA245F438ECBD] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 275.33.) -- C:\Windows\SysNative\nvcuda.dll [7123560] O44 - LFC:[MD5.8A618A2301DC67510DFBA245F438ECBD] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 275.33.) -- C:\Windows\System32\nvcuda.dll [5301352] O44 - LFC:[MD5.B43007E6A0866719BFE1CE9C0449DDA1] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 275.3.) -- C:\Windows\SysNative\nvcuvid.dll [2943592] O44 - LFC:[MD5.B43007E6A0866719BFE1CE9C0449DDA1] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 275.3.) -- C:\Windows\System32\nvcuvid.dll [2804328] O44 - LFC:[MD5.A281C66DE2B2AFC324002193292D7BDF] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 275.33.) -- C:\Windows\SysNative\nvcuvenc.dll [2212968] O44 - LFC:[MD5.A281C66DE2B2AFC324002193292D7BDF] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 275.33.) -- C:\Windows\System32\nvcuvenc.dll [2082408] O44 - LFC:[MD5.B59CD0437F800B224774DA27D81F1A95] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 275.33.) -- C:\Windows\System32\nvcompiler.dll [13011560] O44 - LFC:[MD5.B59CD0437F800B224774DA27D81F1A95] - 24/06/2011 - 19:33:24 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 275.33.) -- C:\Windows\SysNative\nvcompiler.dll [18583144] O44 - LFC:[MD5.278C5209337ADFADF495BDD741126CC3] - 24/06/2011 - 18:55:08 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1586434] O44 - LFC:[MD5.95C17AB35101EEBB1182668E19915ECC] - 24/06/2011 - 17:35:33 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\SysNative\aswBoot.exe [253888] O44 - LFC:[MD5.B8576757416F471C9D7F83B2B04B1F9D] - 24/06/2011 - 17:35:11 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [40112] O44 - LFC:[MD5.95C17AB35101EEBB1182668E19915ECC] - 24/06/2011 - 17:35:10 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe [199304] O44 - LFC:[MD5.319AB4B91B7026869AA45DF4817B2582] - 25/05/2011 - 08:25:23 ---A- . (...) -- C:\Windows\SysNative\nvinfo.pb [7384] ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Orange\Connectivity\ConnectivityManager.exe" [Enabled] .(.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Connectivity\ConnectivityManager.exe ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys ---\\ MountPoints2 Shell Key (O51) O51 - MPSK:{107c71e3-e25b-11df-b86a-0021976a9290}\AutoRun\command. (...) -- G:\StartVMCLite.exe (.not file.) O51 - MPSK:{7002202e-31be-11de-a745-0021976a9290}\AutoRun\command. (...) -- I:\StartVMCLite.exe (.not file.) O51 - MPSK:{9cefb7f9-3236-11de-9ca9-0021976a9290}\AutoRun\command. (...) -- I:\StartVMCLite.exe (.not file.) ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=3 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=3 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=0 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.F14215E37CF124104575073F782111D2] - 21/01/2008 - 03:46:53 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [486456] O58 - SDL:[MD5.7D05A75E3066861A6610F7EE04FF085C] - 21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [342584] O58 - SDL:[MD5.820A201FE08A0C345B3BEDBC30E1A77C] - 21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (X64).) -- C:\Windows\system32\drivers\adpu160m.sys [126520] O58 - SDL:[MD5.9B4AB6854559DC168FBB4C24FC52E794] - 21/01/2008 - 03:47:27 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [185912] O58 - SDL:[MD5.157D0898D4B73F075CE9FA26B482DF98] - 21/01/2008 - 03:46:50 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15976] O58 - SDL:[MD5.BA8417D4765F3988FF921F30F630E303] - 21/01/2008 - 03:46:52 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [90680] O58 - SDL:[MD5.9D41C435619733B34CC16A511E644B11] - 21/01/2008 - 03:47:00 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [91192] O58 - SDL:[MD5.F1DBE3D02FFCDEE5246F29B0ECEBE6E0] - 10/05/2011 - 12:59:37 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys [22360] O58 - SDL:[MD5.F3E75DD1BCC358FB4629357AD09E7C84] - 10/05/2011 - 12:59:48 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys [64344] O58 - SDL:[MD5.FCCBDC045DC12AFD1508205117E7ED11] - 10/05/2011 - 12:59:59 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys [31064] O58 - SDL:[MD5.5824DCA602A0A30E866BC2AC98C6D970] - 10/05/2011 - 13:04:08 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\system32\drivers\aswSnx.sys [600920] O58 - SDL:[MD5.AF07B4BEF920F90205148F3A05E2974C] - 10/05/2011 - 13:04:07 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys [287576] O58 - SDL:[MD5.A3ECA5AF3B4823A523C285A8DF0F9E4F] - 10/05/2011 - 13:02:41 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys [53592] O58 - SDL:[MD5.8EA545F0F90E6388DCACA8F4F9404DC5] - 12/11/2008 - 16:42:22 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [4999680] O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432] O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704] O58 - SDL:[MD5.F0F0BA4D815BE446AA6A4583CA3BCA9B] - 02/11/2006 - 09:43:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [86528] O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 18/09/2006 - 22:30:18 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104] O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 18/09/2006 - 22:30:18 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976] O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 19/09/2006 - 12:42:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720] O58 - SDL:[MD5.E5D5499A1C50A54B5161296B6AFE6192] - 21/01/2008 - 03:46:50 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [18024] O58 - SDL:[MD5.222CB641B4B8A1D1126F8033F9FD6A00] - 02/11/2006 - 12:50:06 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [88168] O58 - SDL:[MD5.264CEE7B031A9D6C827F3D0CB031F2FE] - 21/01/2008 - 03:46:56 ---A- . (.Intel Corporation - Intel® PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\E1G6032E.sys [146176] O58 - SDL:[MD5.C4636D6E10469404AB5308D9FD45ED07] - 21/01/2008 - 03:46:59 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [397368] O58 - SDL:[MD5.1A5DA10E18FC2643E94C5DC7FA965868] - 05/11/2007 - 10:56:58 ---A- . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ewusbmdm.sys [112512] O58 - SDL:[MD5.E403AACF8C7BB11375122D2464560311] - 18/05/2009 - 13:17:08 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [34152] O58 - SDL:[MD5.D7109A1E6BD2DFDBCBA72A6BC626A13B] - 21/01/2008 - 03:46:59 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [47672] O58 - SDL:[MD5.3E3BF3627D886736D0B4E90054F929F6] - 21/01/2008 - 03:46:59 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [290872] O58 - SDL:[MD5.8C3951AD2FE886EF76C7B5027C3125D3] - 02/11/2006 - 13:02:39 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44648] O58 - SDL:[MD5.8C7FA71CB1EBCD3EDE8958D27B1BF0B4] - 19/08/2008 - 14:23:00 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\system32\drivers\int15_64.sys [17952] O58 - SDL:[MD5.63C766CDC609FF8206CB447A65ABBA4A] - 02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [37480] O58 - SDL:[MD5.25D0DACC04EADA6DCBC0B1E46F309759] - 25/02/2008 - 15:29:24 ---A- . (.Windows ® Codename Longhorn DDK provider - Sample IOCTL Driver.) -- C:\Windows\system32\drivers\ITEIO.sys [13144] O58 - SDL:[MD5.1281FE73B17664631D12F643CBEA3F59] - 02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [37480] O58 - SDL:[MD5.ACBE1AF32D3123E330A07BFBC5EC4A9B] - 21/01/2008 - 03:46:51 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [113720] O58 - SDL:[MD5.799FFB2FC4729FA46D2157C0065B3525] - 21/01/2008 - 03:46:56 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [105016] O58 - SDL:[MD5.F445FF1DAAD8A226366BFAF42551226B] - 21/01/2008 - 03:47:01 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [113720] O58 - SDL:[MD5.ED49FD1373DE93617A1F6D128D98FE4D] - 29/05/2011 - 08:11:20 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [25912] O58 - SDL:[MD5.5C5CD6AACED32FB26C3FB34B3DCF972F] - 21/01/2008 - 03:46:59 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [35896] O58 - SDL:[MD5.859BC2436B076C77C159ED694ACFE8F8] - 21/01/2008 - 03:46:56 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [438328] O58 - SDL:[MD5.1A11D72920C8BC64315C8EB4DFD82DA2] - 13/07/2007 - 09:21:36 ---A- . (.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) -- C:\Windows\system32\drivers\Mpfp.sys [173072] O58 - SDL:[MD5.3C200630A89EF2C0864D515B7A75802E] - 02/11/2006 - 13:02:24 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [39016] O58 - SDL:[MD5.307BC83250FC8E3B2878D81E7D760299] - 19/04/2010 - 20:29:18 ---A- . (.Apple Inc. - Apple Mobile Device Ethernet.) -- C:\Windows\system32\drivers\netaapl64.sys [22528] O58 - SDL:[MD5.4AC08BD6AF2DF42E0C3196D826C8AEA7] - 02/11/2006 - 13:03:03 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51816] O58 - SDL:[MD5.7D397449AAF52B0E7C79B64F6AD4473E] - 31/01/2008 - 01:48:32 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\system32\drivers\NTIDrvr.sys [16384] O58 - SDL:[MD5.6E022D5F44CD8B029CF799807BB31269] - 05/08/2008 - 05:29:26 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\system32\drivers\nvhda64v.sys [56352] O58 - SDL:[MD5.B34E9BFBD9C61048EF6281C3E7EC210A] - 25/05/2011 - 08:25:24 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 275.33.) -- C:\Windows\system32\drivers\nvlddmkm.sys [13206120] O58 - SDL:[MD5.98350606682594521D56ECCB5D01ECF7] - 01/08/2008 - 05:51:12 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\system32\drivers\nvmfdx64.sys [1498016] O58 - SDL:[MD5.2C040B7ADA5B06F6FACADAC8514AA034] - 21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [128056] O58 - SDL:[MD5.F7EA0FE82842D05EDA3EFDD376DBFDBA] - 21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [54328] O58 - SDL:[MD5.581286807B5832503FD700A3217B589F] - 18/08/2008 - 12:00:08 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor64.sys [170528] O58 - SDL:[MD5.2CFD31D41CDE75328ACAEEE2D4F4B836] - 29/07/2008 - 17:53:48 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Filter Driver.) -- C:\Windows\system32\drivers\psdfilter.sys [22064] O58 - SDL:[MD5.51A585F999672D8BB07F22AE12B40846] - 29/07/2008 - 17:53:50 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Named Pipe Driver.) -- C:\Windows\system32\drivers\PSDNServ.sys [21040] O58 - SDL:[MD5.DB50D3F5C31B1A848B04F7F2A6FF2709] - 29/07/2008 - 17:53:50 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Virtual Disk Driver.) -- C:\Windows\system32\drivers\PSDVdisk.sys [60976] O58 - SDL:[MD5.0B83F4E681062F3839BE2EC1D98FD94A] - 21/01/2008 - 03:46:52 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1221176] O58 - SDL:[MD5.E1C80F8D4D1E39EF9595809C1369BF2A] - 02/11/2006 - 12:50:27 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [124008] O58 - SDL:[MD5.023EB98945069178C21B324B880AD787] - 19/08/2008 - 11:03:00 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys [1487776] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 30/09/2006 - 00:51:44 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040] O58 - SDL:[MD5.3A2F769FAB9582BC720E11EA1DFB184D] - 21/01/2008 - 03:47:26 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [78392] O58 - SDL:[MD5.2F26A2C6FC96B29BEFF5D8ED74E6625B] - 02/11/2006 - 13:02:52 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [49256] O58 - SDL:[MD5.A909667976D3BCCD1DF813FED517D837] - 02/11/2006 - 13:02:37 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [44648] O58 - SDL:[MD5.36887B56EC2D98B9C362F6AE4DE5B7B0] - 02/11/2006 - 13:02:47 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [48232] O58 - SDL:[MD5.A65643ED30A30E46317C0B25818BC9B7] - 25/02/2008 - 15:29:24 ---A- . (.EnTech Taiwan - TVicPort Driver for Windows NT/2000/XP.) -- C:\Windows\system32\drivers\TVicPort64.sys [16080] O58 - SDL:[MD5.00C8CE31657624A125FDB90EFD554371] - 31/01/2008 - 01:48:16 ---A- . (.NewTech Infosystems Corporation - NTI CDROM Filter Driver.) -- C:\Windows\system32\drivers\UBHelper.sys [16384] O58 - SDL:[MD5.697F0446134CDC8F99E69306184FBBB4] - 21/01/2008 - 03:46:56 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [284728] O58 - SDL:[MD5.31707F09846056651EA2C37858F5DDB0] - 02/11/2006 - 12:50:54 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [148072] O58 - SDL:[MD5.85E5E43ED5B48C8376281BAB519271B7] - 21/01/2008 - 03:46:52 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series x64 Windows Driver.) -- C:\Windows\system32\drivers\ulsata2.sys [174696] O58 - SDL:[MD5.CD03479F2DA26500B203ED075C146A7A] - 19/04/2010 - 20:47:42 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl64.sys [50688] O58 - SDL:[MD5.8294B6C3FDB6C33F24E150DE647ECDAA] - 21/01/2008 - 03:46:50 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [18024] O58 - SDL:[MD5.A68F455ED2673835209318DD61BFBB0E] - 21/01/2008 - 03:47:25 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [149048] O58 - SDL:[MD5.C6E5276C00EBDEB096BB5EF4B797D1B6] - 19/08/2008 - 14:23:00 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\SysWOW64\drivers\int15.sys [15392] O58 - SDL:[MD5.8C7FA71CB1EBCD3EDE8958D27B1BF0B4] - 19/08/2008 - 14:23:00 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\SysWOW64\drivers\int15_64.sys [17952] O58 - SDL:[MD5.B309912717C29FC67E1BA4730A82B6DD] - 29/05/2011 - 08:11:30 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [39984] O58 - SDL:[MD5.1BF91F352D746AD7469FA71783B5FAE8] - 28/11/2006 - 20:46:22 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 MPR Protocol Driver.) -- C:\Windows\SysWOW64\drivers\PCAMp50.sys [28224] O58 - SDL:[MD5.1961590AA191B6B7DCF18A6A693AF7B8] - 28/11/2006 - 20:46:20 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\Windows\SysWOW64\drivers\PCASp50.sys [27072] O58 - SDL:[MD5.58D904A2FA970BC23B636C47CB60E649] - 14/07/2009 - 19:15:28 ---A- . (...) -- C:\Windows\SysWOW64\SystemInfo32.sys [14] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM][64Bits] -- Ad-Remover O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPDiag_is1 ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - ??/??/???? - C:\Windows\system32\drivers\aswMonFlt.sys (.not file.) - aswMonFlt(aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT O64 - Services: CurCS - 30/08/2010 - C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys - driverhardwarev2x64(driverhardwarev2x64) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64 O64 - Services: CurCS - 19/08/2008 - C:\Windows\sysWOW64\drivers\int15_64.sys - int15(int15) .(.Acer, Inc. - int15.) - LEGACY_INT15 O64 - Services: CurCS - ??/??/???? - c:\Windows\system32\drivers\ITEIO.sys (.not file.) - ITEIO.SYS(ITEIO.SYS) .(.Windows ® Codename Longhorn DDK provider - Sample IOCTL Driver.) - LEGACY_ITEIO.SYS O64 - Services: CurCS - ??/??/???? - C:\Windows\system32\drivers\mbam.sys (.not file.) - MBAMProtector(MBAMProtector) .(.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - LEGACY_MBAMPROTECTOR O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\Drivers\Mpfp.sys (.not file.) - MPFP(MPFP) .(.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) - LEGACY_MPFP O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\DRIVERS\psdfilter.sys (.not file.) - PSDFilter(PSDFilter) .(.Egis Incorporated - Acer eDataSecurity Management PSD Filter Dr.) - LEGACY_PSDFILTER O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\DRIVERS\PSDNServ.sys (.not file.) - PSDNServ(PSDNServ) .(.Egis Incorporated - Acer eDataSecurity Management PSD Named Pip.) - LEGACY_PSDNSERV O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\DRIVERS\PSDVdisk.sys (.not file.) - PSDVdisk(psdvdisk) .(.Egis Incorporated - Acer eDataSecurity Management PSD Virtual D.) - LEGACY_PSDVDISK ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (. - .) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.html> <htmlfile>[HKCU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - Google O69 - SBI: SearchScopes [HKCU] {DECA3892-BA8F-44b8-A993-A466AD694AE4} - (Secure Search) - Yahoo! Search - Recherche Web ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.75D44FD61EE5ABED71A893AD62BD7162] [sPRF] (...) -- C:\Users\mel\Desktop\layout.bin [509] ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.) O87 - FAEL: "WinCollab-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-DFSR-Out-TCP" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\dfsr.exe (.not file.) O87 - FAEL: "WinCollab-DFSR-In-TCP" |In - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\dfsr.exe (.not file.) O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - Domain - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-In-UDP" |In - Domain - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "{3E7D3CDF-2881-4A36-8DDE-EB511A35B73B}" | In - None - P6 - TRUE | .(.Acer Incorporated - Acer Arcade Live.) -- C:\Program Files (x86)\Acer Arcade Live\Acer Arcade Live Main Page\Acer Arcade Live.exe O87 - FAEL: "{FC34B5C3-FC07-4101-9EB8-52E6CBB1E487}" |In - Domain - P17 - TRUE | .(...) -- C:\Program Files (x86)\Common Files\Mcafee\MNA\McNaSvc.exe (.not file.) O87 - FAEL: "{A630D44E-E507-4CD0-92AC-E84F288AA824}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer DV Magician.) -- C:\Program Files (x86)\Acer Arcade Live\Acer DV Magician\Acer DV Magician.exe O87 - FAEL: "{1DB1AF9B-9BB2-479D-AD3D-C40DF9975F08}" | In - None - P17 - TRUE | .(.CyberLink Corp. - SlideShow DVD.) -- C:\Program Files (x86)\Acer Arcade Live\Acer SlideShow DVD\Acer SlideShow DVD.exe O87 - FAEL: "{AB9F5B5A-900A-4EE1-BEB0-054C0D4CD1BC}" | In - None - P17 - TRUE | .(.Acer Incorporated - VideoMagician.) -- C:\Program Files (x86)\Acer Arcade Live\Acer VideoMagician\Acer VideoMagician.exe O87 - FAEL: "{972C1E4B-C685-4C9F-B6A0-CD1B305E609F}" | In - None - P17 - TRUE | .(.Acer Incorporated - DVDivine.) -- C:\Program Files (x86)\Acer Arcade Live\Acer DVDivine\Acer DVDivine.exe O87 - FAEL: "{BDCE1255-DB9A-4051-997A-B0DE63857833}" | In - None - P17 - TRUE | .(.CyberLink Corp. - HomeMedia.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia\Acer HomeMedia.exe O87 - FAEL: "{FD2B5AB6-81A8-4AC1-B727-84CE93F01D55}" | In - None - P17 - TRUE | .(.Acer Incorporated - HomeMedia Connect.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Acer HomeMedia Connect.exe O87 - FAEL: "{31042F7B-11AA-4DF2-B9F3-36AC310A7ECE}" | In - None - P17 - TRUE | .(.CyberLink - CLMSServer.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe O87 - FAEL: "{0B09902A-CAAA-49E4-87C9-614B947B74DD}" | In - Public - P6 - TRUE | .(.NewTech Infosystems, Inc. - NTI Backup Now 5 Agent service..) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe O87 - FAEL: "{E1E75BE4-020D-4A69-BD67-E74904DAE007}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O87 - FAEL: "{AE5DD2BC-A9C0-46BD-910A-DC6930EB1EBF}" | In - Public - P6 - TRUE | .(.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O87 - FAEL: "{00EE5FEE-4FD9-48B5-AC87-1614CA958ACC}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O87 - FAEL: "{AF785ACC-0B24-47F5-8755-76081718082B}" | In - Public - P17 - TRUE | .(.NewTech Infosystems, Inc. - NTI Backup Now 5 Agent service..) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe O87 - FAEL: "{5FCB307C-A082-441D-A7EA-CE6FACC9349F}" | In - Public - P17 - TRUE | .(.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O87 - FAEL: "{777AE657-EBEA-4A70-A440-52EEE16CBD11}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer Arcade Live.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Trial Creator\Acer HomeMedia Trial Creator.exe O87 - FAEL: "TCP Query User{F0BEA0DF-C533-40F6-B9DE-EEA1F02FEEFD}C:\program files (x86)\emule\emule.exe" | In - Public - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe O87 - FAEL: "UDP Query User{45C3F5D0-8193-4074-A162-B31C4DFFE516}C:\program files (x86)\emule\emule.exe" | In - Public - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe O87 - FAEL: "{02BACF47-952C-440A-877E-45950A2179A8}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe O87 - FAEL: "{F87ABDED-0F92-476B-A7C6-54C9F95CAF4A}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O87 - FAEL: "{373AA0CF-F197-46EF-B7AC-71D02A063893}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{0DDC083F-79AA-4199-BCE4-2E5D6D37E001}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{9A943007-7652-4D12-A140-F668D07A6354}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe ---\\ Scan Additionnel (O88) Database Version : 8450 - (25/06/2011) Clés trouvées (Keys found) : 1 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 4 Fichiers trouvés (Files found) : 0 [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}] =>Spyware.BHO C:\Users\mel\AppData\Roaming\iWin =>Adware.BHO C:\Users\mel\Appdata\LocalLow\P2P_Torrent =>Adware.BHO C:\Program Files (x86)\P2P_Torrent =>Adware.BHO C:\Program Files (x86)\Zuma's Revenge! =>Adware.PopCap ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 20/05/2008 269448 | (Acer HomeMedia Connect Service) . (.CyberLink.) - C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe SR - | Auto 13/08/2010 144672 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 13/08/2010 0 | (Ati External Event Utility) . (.ATI Technologies Inc..) - C:\Windows\system32\Ati2evxx.exe SR - | Auto 10/05/2011 42184 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe SR - | Auto 27/07/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe SR - | Auto 03/03/2008 16384 | (BUNAgentSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe SR - | Auto 29/07/2008 500784 | (eDataSecurity Service) . (.Egis Incorporated.) - C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe SR - | Auto 19/08/2008 24576 | (ETService) . (...) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe SR - | Auto 25/09/2007 65536 | (FTRTSVC) . (.France Telecom SA.) - C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe SS - | Auto 01/12/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 01/12/2010 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 01/03/2011 182768 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe SR - | Demand 24/09/2010 932640 | (iPod Service) . (.Apple Inc..) - C:\Program Files (x86)\iPod\bin\iPodService.exe SR - | Auto 17/01/2007 61440 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe SS - | Demand 01/05/2011 311744 | (maconfservice) . (.CybelSoft.) - C:\Program Files (x86)\ma-config.com\maconfservice.exe SR - | Auto 29/05/2011 366640 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe SS - | Demand 29/05/2011 0 | (McComponentHostService) . (...) - C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe SR - | Auto 25/04/2008 45056 | (NTIBackupSvc) . (.NewTech InfoSystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe SR - | Auto 25/04/2008 131072 | (NTISchedulerSvc) . (...) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe SR - | Auto 25/04/2008 0 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe SR - | Auto 13/06/2008 241734 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe SR - | Auto 21/01/2008 21504 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by mel at 26/06/2011 00:02:07 device: opened successfully user: error reading MBR Disk trace: error: Read Descripteur non valide kernel: error reading MBR ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by mel at 26/06/2011 00:02:09 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin End of the scan (1276 lines in 02mn 03s)(0) Rapport de ZHPDiag v1.27.2347 par Nicolas Coolman, Update du 25/06/2011 Run by mel at 26/06/2011 00:00:06 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v7.0.6001.18000 (Defaut) GCIE: Google Chrome v12.0.742.100 ---\\ System Information Windows Vista Home Premium Edition, 64-bit Service Pack 1 (Build 6001) Processor: Intel64 Family 6 Model 15 Stepping 13, GenuineIntel Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 3838 MB (46% free) System Restore: Activé (Enable) System drive C: has 286 GB (62%) free of 456 GB ---\\ Logged in mode Computer Name: PC-DE-MEL User Name: mel All Users Names: mel, Administrateur, Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Users\mel\AppData\Roaming %LocalAppData%=C:\Users\mel\AppData\Local %StartMenu%=C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 286 Go of 456 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 454 Go of 460 Go) F:\ CD-ROM drive (Not Inserted) H:\ Floppy drive, Flash card reader, USB Key (Not Inserted) I:\ Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK ---\\ Recherche particulière de fichiers génériques [MD5.F6D765FB6B457542D954682F50C26E4F] - (.Microsoft Corporation - Explorateur Windows.) (.21/01/2008 03:48:44.) -- C:\Windows\Explorer.exe [3080704] [MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 03:48:04.) -- C:\Windows\system32\Wininit.exe [96768] [MD5.618A51B5FB9DD5810960F6044C0E9289] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.27/06/2008 05:15:28.) -- C:\Windows\system32\wininet.dll [827392] [MD5.C2610B6BDBEFC053BBDAB4F1B965CB24] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.21/01/2008 03:50:38.) -- C:\Windows\system32\Winlogon.exe [314880] ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 37/3591 ~ Mes musiques (My Musics) : 23/766 ~ Mes Videos (My Videos) : 17/91 ~ Mes Favoris (My Favorites) : 7/40 ~ Mes Documents (My Documents) : 25/921 ~ Mon Bureau (My Desktop) : 3/260 ~ Menu demarrer (Programs) : 6/33 ~ Dossier utilisateur (AppData) : 58/4137 ---\\ Processus lancés [MD5.1AF1360E070BD8EA402F793EF6FBAAEB] - (.Macrovision Corporation - Macrovision Software Manager.) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe [222128] [MD5.CDF9BA83DB9F47A4A3ABDF614DA4F0CE] - (.Google Inc. - Programme d'installation de Google.) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe [136312] [MD5.89F7C30A91E5581BDF14C62AB46A2B2D] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe [255536] [MD5.F0EA603E7B91046CA48EA4B3593A007D] - (.Micro Application - Pas de description.) -- C:\Program Files (x86)\Micro Application\LauncherMA.exe [485376] [MD5.303EAD15DE8EE43CC874C709BB17BF2E] - (.OpenOffice.org - OpenOffice.org 2.1.) -- C:\Program Files (x86)\OpenOffice.org 2.1\program\soffice.exe [2334720] [MD5.D7EE83A9257D508656172A2B9DD3C317] - (.Pas de propriétaire - NTI Backup Now 5 Tray Module.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe [28672] [MD5.407811B64B588FE80FA2E27E783B41EA] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421160] [MD5.1891EEF1A57520E272AF39A56C9C6CB5] - (.Egis inc. - MSN Hook Loader (32 bit).) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSMSNLoader32.exe [454704] [MD5.12902A626CAE9F362AAE39EF1FC79E87] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Systray\SystrayApp.exe [94208] [MD5.4C6898F15701AE7C41775C14E423FE25] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [3459712] [MD5.E9257AE2500A3C8272B6C32A1329DAA3] - (.France Telecom SA - Pas de description.) -- C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe [90112] [MD5.550E3443C77EDE680C06BB47D9DA276D] - (.OpenOffice.org - OpenOffice.org 2.1.) -- C:\Program Files (x86)\OpenOffice.org 2.1\program\soffice.BIN [2486272] [MD5.AAAC76A931480ADD2C9B251621EB524E] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Launcher\Launcher.exe [598016] [MD5.54ABBCF1C68FAEFF10BCCD254740AE16] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\connectivity\connectivitymanager.exe [716800] [MD5.032F85FBFE612ECC455ABA7474E5914F] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\connectivity\CoreCom\CoreCom.exe [360448] [MD5.987B72E406C172F9F5184F1B4F0CE1BB] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\connectivity\CoreCom\OraConfigRecover.exe [28672] [MD5.167A81D7A06119ABF84042F88EE6F6DF] - (.France Telecom SA - Pas de description.) -- C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe [65536] [MD5.E75D8F09B954FB8EF4B83E4EE9E985F4] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [660992] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) P2 - FPN: [HKCU] [@update.flock.com/Flock Update;version=8] - (.Flock Inc. - Flock Update.) -- C:\Users\mel\AppData\Local\Flock\Update\1.2.213.0\npFlockOneClick8.dll ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\mel\AppData\Local\Google\Chrome\User Data\Default\Preferences G0 - GCSP: Preference [user Data\Default][HomePage] Google G2 - GCE: Preference [user Data\Default] [fheoggkfdfchfphceeifdbepaooicaho] SiteAdvisor v.3.31.137.7 (Activé) ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com R0 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Microsoft Corporation R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) [64Bits] - {08C06D61-F1F3-4799-86F8-BE1A89362C85} . (...) (No version) -- (.not file.) R3 - URLSearchHook: (no name) [64Bits] - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (...) (No version) -- (.not file.) ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll O2 - BHO: McAntiPhishingBHO [64Bits] - {377C180E-6F0E-4D4C-980F-F45BD3D40CF4} . (...) -- c:\PROGRA~2\mcafee\msk\MCAPBH~1.DLL (.not file.) O2 - BHO: ShowBarObj Class [64Bits] - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} . (.Egis - ActiveToolBand Module.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\ActiveToolBand.dll O2 - BHO: (no name) [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} Clé orpheline O2 - BHO: (no name) [64Bits] - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline O2 - BHO: avast! WebRep [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Acer eDataSecurity Management [64Bits] - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} . (.Egis Incorporated. - Acer eDataSecurity Management Explorer Tool.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\eDStoolbar.dll O3 - Toolbar: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] . (...) -- C:\Program Files\Acer\Empowering Technology\SysMonitor.exe O4 - HKLM\..\Run: [EmpoweringTechnology] . (.Pas de propriétaire - Acer Empowering Technology Framework Launch.) -- C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe O4 - HKLM\..\Run: [eDataSecurity Loader] . (.Egis Incorporated - Acer eDataSecurity Management Loader.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\eDSloader.exe O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RAVCpl64.exe O4 - HKLM\..\Run: [skytel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\Windows\Skytel.exe O4 - HKLM\..\Run: [ProductReg] . (.Acer - ProductR Application.) -- C:\Program Files\Acer\WR_PopUp\ProductReg.exe O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [iSUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe O4 - HKCU\..\Run: [Flock Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe O4 - HKCU\..\Run: [VMCL] . (...) -- C:\Program Files (x86)\vodafone\vmclite\DongleEnumerator.exe O4 - HKLM\..\Wow6432Node\Run: [PCMMediaSharing] . (...) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe O4 - HKLM\..\Wow6432Node\Run: [bkupTray] . (.Pas de propriétaire - NTI Backup Now 5 Tray Module.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe O4 - HKLM\..\Wow6432Node\Run: [eRecoveryService] Clé orpheline O4 - HKLM\..\Wow6432Node\Run: [EM_EXEC] . (.Logitech Inc. - Control Center.) -- C:\PROGRA~2\Logitech\MOUSEW~1\SYSTEM\EM_exeC.exe O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe O4 - HKLM\..\Wow6432Node\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe O4 - HKLM\..\Wow6432Node\Run: [Anti-Blaxx Manager] . (.MB-Soft, HAANDI - Pas de description.) -- C:\Program Files (x86)\Anti-Blaxx\Anti-Blaxx.exe O4 - HKLM\..\Wow6432Node\Run: [Application Layer Gateway] . (...) -- C:\Program Files (x86)\Common Files\alq.exe O4 - HKLM\..\Wow6432Node\Run: [systrayORAHSS] . (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Systray\SystrayApp.exe O4 - HKLM\..\Wow6432Node\Run: [ORAHSSSessionManager] . (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\SessionManager\SessionManager.exe O4 - HKLM\..\Wow6432Node\Run: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [iSUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [Flock Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe O4 - HKUS\S-1-5-21-1246582734-39791316-2866014588-1000\..\Run: [VMCL] . (...) -- C:\Program Files (x86)\vodafone\vmclite\DongleEnumerator.exe O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk . (.McAfee, Inc..) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lanceur.lnk . (.Micro Application.) -- C:\Program Files (x86)\Micro Application\LauncherMA.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.1.lnk . (...) -- C:\Program Files (x86)\OpenOffice.org 2.1\program\quickstart.exe ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O4 - Global Startup: C:\Users\mel\Desktop\AD-R.lnk . (...) -- C:\Program Files (x86)\Ad-Remover\main.exe O4 - Global Startup: C:\Users\mel\Desktop\DivX Movies.lnk . (...) -- C:\Users\mel\Videos\DivX Movies O4 - Global Startup: C:\Users\mel\Desktop\DVD Shrink 3.2.lnk . (.DVD Shrink.) -- C:\Program Files (x86)\DVD Shrink\DVD Shrink 3.2.exe O4 - Global Startup: C:\Users\mel\Desktop\Internet - Raccourci.lnk - Clé orpheline O4 - Global Startup: C:\Users\mel\Desktop\Jeux - Raccourci.lnk . (...) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O4 - Global Startup: C:\Users\mel\Desktop\Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation.) -- C:\Program Files (x86)\Microsoft Works\MSWorks.exe O4 - Global Startup: C:\Users\mel\Desktop\OpenOffice.org Writer.lnk . (...) -- C:\Windows\Installer\{E5430A11-6799-41E0-A9D5-F68BDC67AAD8}\swriter.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Anti-Blaxx.lnk . (.MB-Soft, HAANDI.) -- C:\Program Files (x86)\Anti-Blaxx\Anti-Blaxx.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk . (...) -- C:\Windows\Installer\{20ACB2F8-3BCA-45A8-80A2-9D3CB5C25F43}\SafariIco.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\doors of the mind inner mysteries - Raccourci.lnk . (...) -- J:\Doors of the Mind - Les Méandres du Subconscient\doors of the mind inner mysteries.exe (.not file. O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Flock.lnk . (.Flock Inc. and The Chromium Authors.) -- C:\Users\mel\AppData\Local\Flock\Application\flock.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ImTOO Ringtone Maker.lnk . (...) -- C:\Program Files (x86)\ImTOO\Ringtone Maker\ringtonemaker.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\McAfee Security Center.lnk . (...) -- C:\Program Files (x86)\McAfee\MSC\mcshell.exe (.not file.) O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe O4 - Global Startup: C:\Users\mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~1\Office12\EXCEL.exe O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll ---\\ Site dans la Zone de confiance d'Internet Explorer (O15) O15 - Trusted Zone: [HKCU\...\Domains\www] http.orange.fr ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{60342891-EDB5-4417-9F14-172EA0E05AD4}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{60342891-EDB5-4417-9F14-172EA0E05AD4}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{60342891-EDB5-4417-9F14-172EA0E05AD4}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\system32\webcheck.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) [64Bits] - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Acer HomeMedia Connect Service (Acer HomeMedia Connect Service) . (.CyberLink - CLMSServer.) - C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - Apple Mobile Device Service.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: (Ati External Event Utility) . (...) - C:\Windows\system32\Ati2evxx.exe (.not file.) O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) . (.NewTech Infosystems, Inc. - NTI Backup Now 5 Agent service..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe O23 - Service: eDataSecurity Service (eDataSecurity Service) . (.Egis Incorporated - Acer eDataSecurity Management Service.) - C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe O23 - Service: Empowering Technology Service (ETService) . (.Pas de propriétaire - Acer Empowering Technology Framework Servic.) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) . (.France Telecom SA - Pas de description.) - C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) . (.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) . (...) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) . (...) - C:\Windows\system32\nvvsvc.exe (.not file.) O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000Core.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000UA.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\McDefragTask.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\McQcTask.job [MD5.CDF9BA83DB9F47A4A3ABDF614DA4F0CE] [APT] [FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000Core] (.Google Inc..) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe [MD5.CDF9BA83DB9F47A4A3ABDF614DA4F0CE] [APT] [FlockUpdateTaskUserS-1-5-21-1246582734-39791316-2866014588-1000UA] (.Google Inc..) -- C:\Users\mel\AppData\Local\Flock\Update\FlockUpdate.exe [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.00000000000000000000000000000000] [APT] [McAfee Cleanup] (...) -- C:\Users\mel\AppData\Local\Temp\MCCLEANUP.5.0.285.4_DMPackage_en-US_Release\mccleanup.exeSCUéMQCéMQCCUéMSADéMSHRéMSKéMSKCUéMWLéNMCéRedirSvcéVSéMSC -silen (.not file.) [MD5.00000000000000000000000000000000] [APT] [McQcTask] (...) -- c:\PROGRA~2\mcafee\mqc\QcConsol.exe (.not file.) [MD5.973567B98CDFC147DF4E60471D9DF072] [APT] [{8FCCABF3-25AB-4D87-8A80-AE593CD95A8C}] (...) -- C:\PROGRA~2\P2P_TO~1\UNWISE.exe [MD5.7B43567B4C32AD7ADED537CD3B1342B9] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys O41 - Driver: (MPFP) . (.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) - C:\Windows\System32\Drivers\Mpfp.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Tcpip) . (.Microsoft Corporation - TCP/IP Driver.) - C:\Windows\System32\drivers\tcpip.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys ---\\ Logiciels installés (O42) O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{5A2F65A4-808F-4A1E-973E-92E17824982D} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{3EC77D26-799B-4CD8-914F-C1565E796173} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{430971B1-C31E-45DA-81E0-72C095BAB72C} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{B3F4DC34-7F60-4B7C-A79F-1C13012D99D4} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{F7A31780-33C4-4E39-951A-5EC9B91D7BF1} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{00C5525B-3CB3-467D-8100-2E6FB306CD86} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-040C-1000-0000000FF1CE}_HOMESTUDENTR_{EC50B538-CBE1-42E6-B7FE-87AA540AADFB} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{EC50B538-CBE1-42E6-B7FE-87AA540AADFB} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{BEE75E01-DD3F-4D5F-B96C-609E6538D419} O42 - Logiciel: 7-Zip 9.20 - (.Pas de propriétaire.) [HKLM][64Bits] -- 7-Zip O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM][64Bits] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07} O42 - Logiciel: Acer Arcade Live Main Page - (.Acer Inc..) [HKLM][64Bits] -- {EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37} O42 - Logiciel: Acer DV Magician - (.Acer Inc..) [HKLM][64Bits] -- {F6EFFB76-4A07-11DA-9D78-000129760D75} O42 - Logiciel: Acer DVDivine - (.Acer Inc..) [HKLM][64Bits] -- {B145EC69-66F5-11D8-9D75-000129760D75} O42 - Logiciel: Acer Empowering Technology - (.Acer Incorporated.) [HKLM][64Bits] -- {8F1B6239-FEA0-450A-A950-B05276CE177C} O42 - Logiciel: Acer GameZone Console DTV 2.0.1.1 - (.Oberon Media, Inc..) [HKLM][64Bits] -- Acer GameZone Console_is1 O42 - Logiciel: Acer HomeMedia - (.Acer Inc..) [HKLM][64Bits] -- {AA4BF92B-2AAF-11DA-9D78-000129760D75} O42 - Logiciel: Acer HomeMedia Connect - (.Acer Inc..) [HKLM][64Bits] -- {132888AE-EF67-41C5-BCA2-7D5D2488AB63} O42 - Logiciel: Acer HomeMedia Trial Creator - (.Acer Inc..) [HKLM][64Bits] -- {B580C409-E16F-44FF-904D-3AE94E113BE0} O42 - Logiciel: Acer Product Registration - (.Acer Incorporated.) [HKLM][64Bits] -- {DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E} O42 - Logiciel: Acer ScreenSaver - (.Acer Incorporated.) [HKLM][64Bits] -- {79DD56FC-DB8B-47F5-9C80-78B62E05F9BC} O42 - Logiciel: Acer SlideShow DVD - (.Acer Inc..) [HKLM][64Bits] -- {41581EF5-45A7-11DA-9D78-000129760D75} O42 - Logiciel: Acer VideoMagician - (.Acer Inc..) [HKLM][64Bits] -- {F79A208D-D929-11D9-9D77-000129760D75} O42 - Logiciel: Acer eDataSecurity Management - (.Egis Inc..) [HKLM][64Bits] -- {A5633652-3795-4829-BB0B-644F0279E279} O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9} O42 - Logiciel: Acer eSettings Management - (.Acer Incorporated.) [HKLM][64Bits] -- {13D85C14-2B85-419F-AC41-C7F21E68B25D} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 9 ActiveX - (.Adobe Systems.) [HKLM][64Bits] -- ShockwaveFlash O42 - Logiciel: Adobe Reader 8.1.0 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-A81000000003} O42 - Logiciel: Anti-Blaxx 1.16 - (.MB-Soft.) [HKLM][64Bits] -- Anti-Blaxx_is1 O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {DAEAFD68-BB4A-4507-A241-C8804D2EA66D} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {33EB1061-ABF1-4470-A540-32E97A610536} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033} O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7} O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {41BF0DE4-5BAE-4B88-AFD3-86A30B222186} O42 - Logiciel: CANON iMAGE GATEWAY Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- CANON iMAGE GATEWAY Task O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: Canon Internet Library for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- Canon Internet Library for ZoomBrowser EX O42 - Logiciel: Canon RAW Image Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- RAW Image Task O42 - Logiciel: Canon Utilities CameraWindow - (.Canon Inc..) [HKLM][64Bits] -- CameraWindowLauncher O42 - Logiciel: Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- CameraWindowDVC6 O42 - Logiciel: Canon Utilities Digital Photo Professional 3.4 - (.Canon Inc..) [HKLM][64Bits] -- DPP O42 - Logiciel: Canon Utilities EOS Utility - (.Canon Inc..) [HKLM][64Bits] -- EOS Utility O42 - Logiciel: Canon Utilities MyCamera - (.Canon Inc..) [HKLM][64Bits] -- MyCamera O42 - Logiciel: Canon Utilities PhotoStitch - (.Canon Inc..) [HKLM][64Bits] -- PhotoStitch O42 - Logiciel: Canon Utilities Picture Style Editor - (.Canon Inc..) [HKLM][64Bits] -- Picture Style Editor O42 - Logiciel: Canon Utilities RemoteCapture Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- RemoteCaptureTask O42 - Logiciel: Canon Utilities WFT-E1/E2/E3 Utility - (.Canon Inc..) [HKLM][64Bits] -- WFTK O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- ZoomBrowser EX O42 - Logiciel: Canon ZoomBrowser EX Memory Card Utility - (.Canon Inc..) [HKLM][64Bits] -- ZoomBrowser EX Memory Card Utility O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM][64Bits] -- DVD Shrink_is1 O42 - Logiciel: DVD X Player 4.1 Professionnel - (.Pas de propriétaire.) [HKLM][64Bits] -- DVD X Player 4.1 Professionnel_is1 O42 - Logiciel: DivX Codec - (.DivX, Inc..) [HKLM][64Bits] -- {7B63B2922B174135AFC0E1377DD81EC2} O42 - Logiciel: DivX Converter - (.DivX, Inc..) [HKLM][64Bits] -- {B13A7C41581B411290FBC0395694E2A9} O42 - Logiciel: DivX Player - (.DivX, Inc..) [HKLM][64Bits] -- {8ADFC4160D694100B5B8A22DE9DCABD9} O42 - Logiciel: DivX Plus DirectShow Filters - (.DivX, Inc..) [HKLM][64Bits] -- DivX Plus DirectShow Filters O42 - Logiciel: DivX Web Player - (.DivX,Inc..) [HKLM][64Bits] -- {B7050CBDB2504B34BC2A9CA0A692CC29} O42 - Logiciel: EPSON SX100 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON SX100 Series O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM][64Bits] -- EPSON Scanner O42 - Logiciel: EPSON Stylus SX100_TX100 Manuel - (.Pas de propriétaire.) [HKLM][64Bits] -- EPSON Stylus SX100_TX100 Guide d'utilisation O42 - Logiciel: Enigmes & Objets Cachés - Le tour du monde en 80 jours - (.Pas de propriétaire.) [HKLM][64Bits] -- {336B89D4-5021-44EF-AC17-2058AC2A4488} O42 - Logiciel: Enigmes et Objets Cachés - L'Académie de Magie - (.Pas de propriétaire.) [HKLM][64Bits] -- {6F4AF2D8-D98C-497C-A211-0349CACC0589} O42 - Logiciel: Enigmes et Objets Cachés l île Mystérieuse - (.Pas de propriétaire.) [HKLM][64Bits] -- {2BCE6C52-F35D-4F80-981F-4C8299CD21A5} O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {DEDB47A3-C988-4A43-A645-E2CEA571E680} O42 - Logiciel: Flock (3.5.3.4641) - (.Flock.) [HKCU] -- Flock O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9} O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Guide de l'utilisateur Logitech - (.Pas de propriétaire.) [HKLM][64Bits] -- {CBE0FCA1-4E95-11D4-9875-00105ACE7734} O42 - Logiciel: ImTOO Ringtone Maker - (.ImTOO.) [HKLM][64Bits] -- ImTOO Ringtone Maker O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite_Wave3 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619} O42 - Logiciel: LauncherMA - (.Micro Application.) [HKLM][64Bits] -- {C06EFB22-B5DB-46C5-9215-BCB5C19C0858} O42 - Logiciel: Le Trésor des Pirates - (.Pas de propriétaire.) [HKLM][64Bits] -- {3251B64D-81E8-429B-93F8-DB29BC2045CD} O42 - Logiciel: Logitech MouseWare 9.24 - (.Pas de propriétaire.) [HKLM][64Bits] -- {5809E7CF-4DCF-11D4-9875-00105ACE7734} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM][64Bits] -- {7DB4CB30-B94A-4282-AC8A-C86F615AA45B} O42 - Logiciel: Mahjong Escape Ancient China - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743} O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.0.1200 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Micro Application - Super Patiences et Réussites - (.Pas de propriétaire.) [HKLM][64Bits] -- Super Patiences et Réussites O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- {8E34682C-8118-31F1-BC4C-98CD9675E1C2} O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- HOMESTUDENTR O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Office 64-bit Components 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM][64Bits] -- {E50AE784-FABE-46DA-A1F8-7B6B56DCB22E} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-4627-81f2-1818da5d550d} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM][64Bits] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C} O42 - Logiciel: NTI Backup Now 5 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403} O42 - Logiciel: NTI JewelCase Maker Hot Fix - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{DDA223A7-627F-4173-9CA4-A9C531BCBB62} O42 - Logiciel: NTI Media Maker 8 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC} O42 - Logiciel: NTI Photo Maker Hot Fix - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{B9B02A9E-8074-4C3F-AAE5-311528F34FED} O42 - Logiciel: NVIDIA Drivers - (.Pas de propriétaire.) [HKLM] -- NVIDIA Drivers O42 - Logiciel: NVIDIA Pilote graphique 275.33 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver O42 - Logiciel: Navigateur Orange - (.Pas de propriétaire.) [HKLM][64Bits] -- {ORAHSS}.Browser O42 - Logiciel: Odyssée Sibérienne - (.Mindscape.) [HKLM][64Bits] -- {0B270394-8711-4569-AD19-D52054ABCAA0} O42 - Logiciel: OpenOffice.org 2.1 - (.OpenOffice.org.) [HKLM][64Bits] -- {E5430A11-6799-41E0-A9D5-F68BDC67AAD8} O42 - Logiciel: Orange - Logiciels Internet - (.Pas de propriétaire.) [HKLM][64Bits] -- {ORAHSS}.UninstallSuite O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {205C6BDD-7B73-42DE-8505-9A093F35A238} O42 - Logiciel: P2P_Torrent Toolbar - (.Pas de propriétaire.) [HKLM][64Bits] -- P2P_Torrent Toolbar O42 - Logiciel: PE585QAEncoder-64 - (.YUAN.) [HKLM] -- {D8B2C435-8737-431E-8784-24CD13B0B821} O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {E7004147-2CCA-431C-AA05-2AB166B9785D} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Safari - (.Apple Inc..) [HKLM][64Bits] -- {20ACB2F8-3BCA-45A8-80A2-9D3CB5C25F43} O42 - Logiciel: Sandlot Games Client Services 1.2.2 - (.Sandlot Games.) [HKLM][64Bits] -- Sandlot Games Client Services 1.2.2_is1 O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: VC80CRTRedist - 8.0.50727.762 - (.DivX, Inc.) [HKLM][64Bits] -- {767CC44C-9BBC-438D-BAD3-FD4595DD148B} O42 - Logiciel: VLC media player 1.1.4 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player O42 - Logiciel: Vodafone Mobile Connect Lite - (.Vodafone.) [HKLM][64Bits] -- {B5761811-28F3-4257-B537-815C5EEF472C} O42 - Logiciel: Web Games Player Plugin - (.Zylom Games.) [HKLM][64Bits] -- Web Games Player Plugin O42 - Logiciel: WinRAR archiver - (.Pas de propriétaire.) [HKLM][64Bits] -- WinRAR archiver O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {B3B487E7-6171-4376-9074-B28082CEB504} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1} O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {76810709-A7D3-468D-9167-A1780C1E766C} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {5DD76286-9BE7-4894-A990-E905E91AC818} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B} O42 - Logiciel: World Riddles - Seven Wonders - (.Pas de propriétaire.) [HKLM][64Bits] -- am-worldriddlessevenwonders O42 - Logiciel: Your Product - (.Your Company.) [HKLM][64Bits] -- Your Product1.0 O42 - Logiciel: Zuma Deluxe - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700} O42 - Logiciel: Zuma's Revenge! - (.AllSmartGames.) [HKLM][64Bits] -- Zuma's Revenge!1.0 O42 - Logiciel: avast! Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- avast O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM][64Bits] -- eMule O42 - Logiciel: eSobi v2 - (.esobi Inc..) [HKLM][64Bits] -- InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA} O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {104FB32A-7CE3-4C4B-B2AA-70C613FF9DFA} O42 - Logiciel: livebox - (.SAGEM.) [HKLM][64Bits] -- {17342E3B-0818-4A6F-BFF8-99476605ADD6} ---\\ HKCU & HKLM Software Keys [HKCU\Software\7-Zip] [HKCU\Software\ABBYY] [HKCU\Software\ATI Technologies Inc.] [HKCU\Software\ATI] [HKCU\Software\AVAST Software] [HKCU\Software\Acer] [HKCU\Software\Ad-Remover] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Software\Google] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software\Monitored] [HKCU\Software\AppDataLow\Software\P2P_Torrent] [HKCU\Software\AppDataLow\Software\settings] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Big Fish Games] [HKCU\Software\Bilbo] [HKCU\Software\COOPP] [HKCU\Software\Canon] [HKCU\Software\Canon_Inc_IC] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CyberLink] [HKCU\Software\DVD Shrink] [HKCU\Software\DVDXStudios] [HKCU\Software\DivXNetworks] [HKCU\Software\EPSON] [HKCU\Software\Fenomen Games] [HKCU\Software\GameHouse] [HKCU\Software\GameXzone] [HKCU\Software\GoBit] [HKCU\Software\Google] [HKCU\Software\IM Providers] [HKCU\Software\ImTOO] [HKCU\Software\InstallShield] [HKCU\Software\Intenium] [HKCU\Software\JollyBear] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\Logitech] [HKCU\Software\Macromedia] [HKCU\Software\Macrovision] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\McAfee] [HKCU\Software\Micro Application] [HKCU\Software\Mindscape] [HKCU\Software\MozillaPlugins] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\NewTech Infosystems] [HKCU\Software\Northcode Inc] [HKCU\Software\ODBC] [HKCU\Software\Oberon Media] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Realtek] [HKCU\Software\ReflexiveArcade] [HKCU\Software\S3R521] [HKCU\Software\SEIKO EPSON] [HKCU\Software\Safer Networking Limited] [HKCU\Software\SiteAdvisor] [HKCU\Software\Softonic] [HKCU\Software\SpinTop] [HKCU\Software\Test3D] [HKCU\Software\Trolltech] [HKCU\Software\Vodafone] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Wow6432Node] [HKCU\Software\Zylom] [HKCU\Software\cybelsoft] [HKCU\Software\eMule] [HKCU\Software\eSobi] [HKLM\Software\ABBYY] [HKLM\Software\AMD] [HKLM\Software\ATI Technologies] [HKLM\Software\ATI] [HKLM\Software\AVAST Software] [HKLM\Software\Acer Incorporated] [HKLM\Software\Acer] [HKLM\Software\Adobe] [HKLM\Software\America Online] [HKLM\Software\Anti-Blaxx] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Big Fish Games] [HKLM\Software\BrowserChoice] [HKLM\Software\Canon] [HKLM\Software\Canon_Inc_IC] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CyberLink] [HKLM\Software\Cyberlink] [HKLM\Software\Digital River] [HKLM\Software\DivXNetworks] [HKLM\Software\EPSON] [HKLM\Software\FRANCE TELECOM] [HKLM\Software\GEAR Software] [HKLM\Software\GameInstaller] [HKLM\Software\Google] [HKLM\Software\Hauppauge] [HKLM\Software\ImTOO] [HKLM\Software\Intel] [HKLM\Software\Khronos] [HKLM\Software\LightScribe] [HKLM\Software\Logitech] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\Micro Application] [HKLM\Software\Mindscape] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\NewTech Infosystems] [HKLM\Software\ODBC] [HKLM\Software\Oberon Media] [HKLM\Software\OemSetup] [HKLM\Software\OpenOffice.org] [HKLM\Software\P2P_Torrent] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SRS Labs] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Sagem] [HKLM\Software\Sonic] [HKLM\Software\Sun Microsystems] [HKLM\Software\Trad-FR] [HKLM\Software\VideoLAN] [HKLM\Software\Vodafone] [HKLM\Software\Waves Audio] [HKLM\Software\WinRAR] [HKLM\Software\Wise Solutions] [HKLM\Software\Wow6432Node] [HKLM\Software\cybelsoft] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 25/04/2009 - 20:46:20 - [79247895] ----D- C:\Program Files\Acer O43 - CFD: 24/06/2011 - 19:49:32 - [0] ----D- C:\Program Files\ATI Technologies O43 - CFD: 24/06/2011 - 18:34:58 - [168715275] ----D- C:\Program Files\AVAST Software O43 - CFD: 06/11/2010 - 14:54:54 - [195827] ----D- C:\Program Files\Bonjour O43 - CFD: 23/06/2011 - 20:30:42 - [7422296] ----D- C:\Program Files\CCleaner O43 - CFD: 24/06/2011 - 16:47:14 - [222907232] ----D- C:\Program Files\Common Files O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\Program Files\Fichiers communs O43 - CFD: 24/06/2011 - 16:35:32 - [0] ----D- C:\Program Files\Google O43 - CFD: 21/01/2008 - 05:09:38 - [1631428] ----D- C:\Program Files\Internet Explorer O43 - CFD: 06/11/2010 - 15:01:24 - [2345960] ----D- C:\Program Files\iTunes O43 - CFD: 02/11/2006 - 17:07:28 - [93941175] ----D- C:\Program Files\Microsoft Games O43 - CFD: 31/10/2008 - 13:45:08 - [1140374] ----D- C:\Program Files\Microsoft Office O43 - CFD: 07/11/2010 - 17:48:46 - [116183662] ----D- C:\Program Files\Movie Maker O43 - CFD: 02/11/2006 - 17:07:28 - [9908] ----D- C:\Program Files\MSBuild O43 - CFD: 25/06/2011 - 00:08:12 - [334434869] ----D- C:\Program Files\NVIDIA Corporation O43 - CFD: 02/11/2006 - 17:07:28 - [26393182] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 02/11/2006 - 17:44:56 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 21/01/2008 - 05:09:42 - [1302528] ----D- C:\Program Files\Windows Calendar O43 - CFD: 21/01/2008 - 05:09:38 - [2999808] ----D- C:\Program Files\Windows Collaboration O43 - CFD: 21/01/2008 - 05:09:30 - [6395856] ----D- C:\Program Files\Windows Defender O43 - CFD: 21/01/2008 - 05:09:36 - [9655416] ----D- C:\Program Files\Windows Journal O43 - CFD: 04/11/2010 - 08:09:22 - [9622376] ----D- C:\Program Files\Windows Mail O43 - CFD: 21/01/2008 - 05:09:38 - [5138167] ----D- C:\Program Files\Windows Media Player O43 - CFD: 25/04/2009 - 20:41:34 - [8038670] ----D- C:\Program Files\Windows NT O43 - CFD: 21/01/2008 - 05:09:36 - [16354466] ----D- C:\Program Files\Windows Photo Gallery O43 - CFD: 21/01/2008 - 05:09:38 - [7017819] ----D- C:\Program Files\Windows Sidebar O43 - CFD: 10/10/2006 - 21:06:44 - [3608665] ----D- C:\Program Files\YUAN O43 - CFD: 26/04/2009 - 11:40:30 - [5105831] ----D- C:\Program Files\Common Files\Apple O43 - CFD: 02/11/2010 - 21:51:26 - [207639065] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 02/11/2006 - 15:33:54 - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 02/11/2006 - 15:33:54 - [608256] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 21/01/2008 - 05:09:30 - [9551378] ----D- C:\Program Files\Common Files\System O43 - CFD: 31/10/2008 - 14:15:06 - [16083] ----D- C:\ProgramData\Acer GameZone Console O43 - CFD: 31/10/2008 - 14:10:34 - [770] ----D- C:\ProgramData\Adobe O43 - CFD: 27/08/2010 - 18:04:12 - [0] ----D- C:\ProgramData\Alawar Entertainment O43 - CFD: 10/03/2011 - 21:12:36 - [3154583] ----D- C:\ProgramData\Alwil Software O43 - CFD: 06/11/2010 - 14:57:40 - [59300057] ----D- C:\ProgramData\Apple O43 - CFD: 26/04/2009 - 11:42:44 - [83250728] ----D- C:\ProgramData\Apple Computer O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Application Data O43 - CFD: 29/08/2009 - 22:09:04 - [1017812] ----D- C:\ProgramData\Arcade Lab O43 - CFD: 22/06/2011 - 17:18:04 - [43038171] ----D- C:\ProgramData\AVAST Software O43 - CFD: 27/08/2010 - 17:59:10 - [0] ----D- C:\ProgramData\Big Fish Games O43 - CFD: 28/01/2011 - 17:24:16 - [9108805] ----D- C:\ProgramData\Bilbo O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Bureau O43 - CFD: 24/06/2011 - 21:46:58 - [0] ----D- C:\ProgramData\Comodo O43 - CFD: 21/12/2010 - 20:31:16 - [144196] ----D- C:\ProgramData\CyberLink O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Desktop O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Documents O43 - CFD: 03/03/2011 - 14:00:02 - [17224] ----D- C:\ProgramData\DVD Shrink O43 - CFD: 14/07/2009 - 20:15:30 - [10599] ----D- C:\ProgramData\DVD X Studios O43 - CFD: 28/10/2010 - 20:42:42 - [0] ----D- C:\ProgramData\eMule O43 - CFD: 26/04/2009 - 10:13:06 - [6432265] ----D- C:\ProgramData\EPSON O43 - CFD: 28/10/2010 - 21:08:22 - [420] ----D- C:\ProgramData\eSobi O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Favoris O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Favorites O43 - CFD: 25/08/2010 - 21:24:04 - [10448] ----D- C:\ProgramData\Fenomen Games O43 - CFD: 31/10/2008 - 14:16:04 - [0] ----D- C:\ProgramData\FloodLightGames O43 - CFD: 08/02/2011 - 19:15:16 - [243462] ----D- C:\ProgramData\Funny Bear Studio O43 - CFD: 27/08/2010 - 22:46:38 - [89518] ----D- C:\ProgramData\GameHouse O43 - CFD: 12/11/2010 - 15:33:06 - [148442] ----D- C:\ProgramData\GameXzone O43 - CFD: 03/01/2011 - 10:59:42 - [15172954] ----D- C:\ProgramData\GoBit Games O43 - CFD: 23/06/2011 - 20:35:26 - [526512] ----D- C:\ProgramData\Google O43 - CFD: 11/12/2010 - 10:33:26 - [26770] ----D- C:\ProgramData\HoverBee Studios O43 - CFD: 30/08/2010 - 16:31:12 - [503164] ----D- C:\ProgramData\Intenium O43 - CFD: 26/05/2009 - 11:07:06 - [114619] ----D- C:\ProgramData\InterAction studios O43 - CFD: 26/08/2010 - 10:39:16 - [10916166] ----D- C:\ProgramData\JollyBear O43 - CFD: 09/01/2011 - 13:29:16 - [0] ----D- C:\ProgramData\Little Games Company O43 - CFD: 24/06/2011 - 20:10:40 - [1273561] ----D- C:\ProgramData\ma-config.com O43 - CFD: 25/04/2009 - 22:14:08 - [3484022] ----D- C:\ProgramData\Macrovision O43 - CFD: 22/06/2011 - 16:23:28 - [6887336] ----D- C:\ProgramData\Malwarebytes O43 - CFD: 25/06/2011 - 00:08:12 - [851] ----D- C:\ProgramData\McAfee Security Scan O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Menu Démarrer O43 - CFD: 25/08/2010 - 22:18:16 - [0] ----D- C:\ProgramData\Merscom O43 - CFD: 08/02/2010 - 21:56:02 - [668] ----D- C:\ProgramData\Micro Application O43 - CFD: 24/06/2011 - 18:00:14 - [103999536] -S--D- C:\ProgramData\Microsoft O43 - CFD: 07/11/2010 - 17:57:32 - [57676] ----D- C:\ProgramData\Microsoft Help O43 - CFD: 25/04/2009 - 20:41:34 - [0] -SH-D- C:\ProgramData\Modèles O43 - CFD: 02/02/2010 - 20:05:24 - [0] ----D- C:\ProgramData\NtiDvdCopy O43 - CFD: 24/06/2011 - 23:46:58 - [188348] ----D- C:\ProgramData\NVIDIA O43 - CFD: 24/06/2011 - 20:37:44 - [912773] ----D- C:\ProgramData\NVIDIA Corporation O43 - CFD: 08/05/2009 - 12:24:38 - [21486] ----D- C:\ProgramData\Oberon Games O43 - CFD: 25/07/2010 - 22:43:56 - [0] ----D- C:\ProgramData\PhotoStitch O43 - CFD: 09/01/2011 - 13:07:00 - [12720] ----D- C:\ProgramData\PlayFirst O43 - CFD: 28/08/2010 - 14:09:22 - [7520] ----D- C:\ProgramData\Playrix Entertainment O43 - CFD: 08/05/2009 - 11:04:24 - [366] ----D- C:\ProgramData\Sandlot Games O43 - CFD: 27/08/2010 - 18:06:16 - [82386784] ----D- C:\ProgramData\SpinTop Games O43 - CFD: 25/06/2011 - 13:52:30 - [6982] ----D- C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Start Menu O43 - CFD: 21/12/2010 - 22:32:32 - [0] ---AD- C:\ProgramData\TEMP O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Templates O43 - CFD: 26/04/2009 - 10:19:04 - [3498] ----D- C:\ProgramData\UDL O43 - CFD: 23/07/2010 - 09:48:22 - [0] ----D- C:\ProgramData\ZoomBrowser O43 - CFD: 08/02/2011 - 10:34:48 - [349088] ----D- C:\ProgramData\Zylom O43 - CFD: 26/04/2009 - 11:42:56 - [1942] ----D- C:\ProgramData\{35733029-9859-49C7-8475-1E78E2AAE413} O43 - CFD: 06/11/2010 - 15:01:24 - [895721] ----D- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001} O43 - CFD: 13/11/2010 - 10:10:18 - [36864] -SH-D- C:\Users\mel\AppData\Roaming\.# O43 - CFD: 31/10/2008 - 14:15:06 - [30584] ----D- C:\Users\mel\AppData\Roaming\Acer GameZone Console O43 - CFD: 14/07/2009 - 20:37:02 - [870657] ----D- C:\Users\mel\AppData\Roaming\Adobe O43 - CFD: 27/08/2010 - 18:04:12 - [1534] ----D- C:\Users\mel\AppData\Roaming\Alawar Entertainment O43 - CFD: 06/11/2010 - 13:50:00 - [95858990] ----D- C:\Users\mel\AppData\Roaming\Apple Computer O43 - CFD: 25/04/2009 - 20:48:52 - [0] ----D- C:\Users\mel\AppData\Roaming\ATI O43 - CFD: 27/08/2010 - 17:59:10 - [2004569] ----D- C:\Users\mel\AppData\Roaming\Big Fish Games O43 - CFD: 25/07/2010 - 22:40:52 - [0] ----D- C:\Users\mel\AppData\Roaming\Canon O43 - CFD: 13/09/2009 - 09:46:22 - [33] ----D- C:\Users\mel\AppData\Roaming\CyberLink O43 - CFD: 02/02/2010 - 19:56:08 - [16440] ----D- C:\Users\mel\AppData\Roaming\DivX O43 - CFD: 19/12/2010 - 14:39:52 - [29261] ----D- C:\Users\mel\AppData\Roaming\Dragon Altar Games O43 - CFD: 03/03/2011 - 14:13:02 - [199] ----D- C:\Users\mel\AppData\Roaming\dvdcss O43 - CFD: 28/06/2009 - 14:16:56 - [1004] ----D- C:\Users\mel\AppData\Roaming\EPSON O43 - CFD: 27/08/2010 - 18:00:06 - [399676] ----D- C:\Users\mel\AppData\Roaming\ERS G-Studio O43 - CFD: 26/04/2009 - 10:04:54 - [567566] ----D- C:\Users\mel\AppData\Roaming\eSobi O43 - CFD: 27/04/2009 - 21:20:00 - [35041] ----D- C:\Users\mel\AppData\Roaming\FloodLightGames O43 - CFD: 13/12/2010 - 19:31:12 - [40343] ----D- C:\Users\mel\AppData\Roaming\Freeze Tag O43 - CFD: 26/08/2010 - 11:03:28 - [52236] ----D- C:\Users\mel\AppData\Roaming\Game Mill Entertainment O43 - CFD: 27/10/2010 - 08:45:00 - [0] ----D- C:\Users\mel\AppData\Roaming\Google O43 - CFD: 20/02/2010 - 15:36:30 - [25411] ----D- C:\Users\mel\AppData\Roaming\HdO Adventure O43 - CFD: 25/04/2009 - 20:48:18 - [0] ----D- C:\Users\mel\AppData\Roaming\Identities O43 - CFD: 12/11/2010 - 22:52:10 - [179257] ----D- C:\Users\mel\AppData\Roaming\ImTOO O43 - CFD: 26/04/2009 - 10:13:40 - [0] ----D- C:\Users\mel\AppData\Roaming\InstallShield O43 - CFD: 07/06/2009 - 17:55:48 - [0] ----D- C:\Users\mel\AppData\Roaming\iWin O43 - CFD: 20/09/2010 - 17:50:54 - [32433] ----D- C:\Users\mel\AppData\Roaming\LegacyInteractive O43 - CFD: 09/01/2011 - 13:29:16 - [930748] ----D- C:\Users\mel\AppData\Roaming\Little Games Company O43 - CFD: 25/04/2009 - 20:48:50 - [611] ----D- C:\Users\mel\AppData\Roaming\Macromedia O43 - CFD: 26/04/2009 - 09:49:26 - [488] ----D- C:\Users\mel\AppData\Roaming\Macrovision O43 - CFD: 09/02/2010 - 00:22:36 - [7244] ----D- C:\Users\mel\AppData\Roaming\Magic Academy O43 - CFD: 22/06/2011 - 16:23:56 - [8537308] ----D- C:\Users\mel\AppData\Roaming\Malwarebytes O43 - CFD: 02/11/2006 - 17:07:26 - [0] ----D- C:\Users\mel\AppData\Roaming\Media Center Programs O43 - CFD: 25/08/2010 - 22:18:16 - [514888] ----D- C:\Users\mel\AppData\Roaming\Merscom O43 - CFD: 02/11/2010 - 21:59:24 - [1186146] -S--D- C:\Users\mel\AppData\Roaming\Microsoft O43 - CFD: 20/01/2010 - 18:09:34 - [304147] ----D- C:\Users\mel\AppData\Roaming\Odyssee_Sib O43 - CFD: 25/06/2011 - 21:12:50 - [2352013] ----D- C:\Users\mel\AppData\Roaming\OpenOffice.org2 O43 - CFD: 12/02/2010 - 22:49:28 - [37268] ----D- C:\Users\mel\AppData\Roaming\Pirateville O43 - CFD: 09/01/2011 - 13:07:00 - [150659] ----D- C:\Users\mel\AppData\Roaming\PlayFirst O43 - CFD: 27/08/2010 - 17:36:42 - [1444938] ----D- C:\Users\mel\AppData\Roaming\QB9 O43 - CFD: 27/08/2010 - 23:23:20 - [230] ----D- C:\Users\mel\AppData\Roaming\Roaming O43 - CFD: 13/07/2010 - 08:37:46 - [131494] ----D- C:\Users\mel\AppData\Roaming\SecretIslandFranc O43 - CFD: 23/11/2010 - 18:25:22 - [304266] ----D- C:\Users\mel\AppData\Roaming\Settlement. Colossus O43 - CFD: 18/11/2010 - 12:54:18 - [180880] ----D- C:\Users\mel\AppData\Roaming\ShaoLin O43 - CFD: 27/08/2010 - 17:46:56 - [3123] ----D- C:\Users\mel\AppData\Roaming\she_is_a_shadow O43 - CFD: 26/04/2009 - 10:44:18 - [8704] ----D- C:\Users\mel\AppData\Roaming\Template O43 - CFD: 26/05/2011 - 19:02:40 - [1192449] ----D- C:\Users\mel\AppData\Roaming\vlc O43 - CFD: 12/11/2010 - 22:46:56 - [12] ----D- C:\Users\mel\AppData\Roaming\WinRAR O43 - CFD: 25/07/2010 - 22:42:46 - [0] ----D- C:\Users\mel\AppData\Roaming\ZoomBrowser EX O43 - CFD: 22/12/2010 - 07:36:52 - [6886] ----D- C:\Users\mel\Appdata\Local\Acer Arcade Live O43 - CFD: 22/12/2010 - 07:36:52 - [6907] ----D- C:\Users\mel\Appdata\Local\Acer DV Magician O43 - CFD: 22/12/2010 - 07:36:52 - [8561] ----D- C:\Users\mel\Appdata\Local\Acer DVDivine O43 - CFD: 26/04/2009 - 10:36:20 - [8523] ----D- C:\Users\mel\Appdata\Local\Acer HomeMedia O43 - CFD: 13/09/2009 - 09:25:18 - [6780] ----D- C:\Users\mel\Appdata\Local\Acer SlideShow DVD O43 - CFD: 26/04/2009 - 10:36:04 - [7038] ----D- C:\Users\mel\Appdata\Local\Acer VideoMagician O43 - CFD: 14/07/2009 - 20:37:04 - [39724890] ----D- C:\Users\mel\Appdata\Local\Adobe O43 - CFD: 26/04/2009 - 11:40:54 - [11115713] ----D- C:\Users\mel\Appdata\Local\Apple O43 - CFD: 06/11/2010 - 17:04:56 - [11261089] ----D- C:\Users\mel\Appdata\Local\Apple Computer O43 - CFD: 25/04/2009 - 20:44:48 - [0] -SH-D- C:\Users\mel\Appdata\Local\Application Data O43 - CFD: 14/11/2010 - 13:14:20 - [35256] ----D- C:\Users\mel\Appdata\Local\Ares O43 - CFD: 25/04/2009 - 20:48:52 - [42124] ----D- C:\Users\mel\Appdata\Local\ATI O43 - CFD: 25/07/2010 - 22:42:42 - [1751] ----D- C:\Users\mel\Appdata\Local\CANON_INC O43 - CFD: 26/04/2009 - 10:36:22 - [139264] ----D- C:\Users\mel\Appdata\Local\CyberLink O43 - CFD: 25/04/2009 - 22:13:42 - [11783680] ----D- C:\Users\mel\Appdata\Local\Downloaded Installations O43 - CFD: 30/10/2010 - 09:58:16 - [869466] ----D- C:\Users\mel\Appdata\Local\eMule O43 - CFD: 02/11/2010 - 16:36:52 - [253003793] ----D- C:\Users\mel\Appdata\Local\Flock O43 - CFD: 23/06/2011 - 20:35:26 - [8586131] ----D- C:\Users\mel\Appdata\Local\Google O43 - CFD: 25/04/2009 - 20:44:48 - [0] -SH-D- C:\Users\mel\Appdata\Local\Historique O43 - CFD: 26/08/2010 - 10:39:16 - [1253] ----D- C:\Users\mel\Appdata\Local\JollyBear O43 - CFD: 13/09/2009 - 09:27:08 - [0] ----D- C:\Users\mel\Appdata\Local\MakeDisc O43 - CFD: 24/06/2011 - 18:00:14 - [776882944] ----D- C:\Users\mel\Appdata\Local\Microsoft O43 - CFD: 27/04/2009 - 15:59:46 - [1857964] ----D- C:\Users\mel\Appdata\Local\Microsoft Games O43 - CFD: 25/04/2009 - 20:48:50 - [0] ----D- C:\Users\mel\Appdata\Local\PowerCinema O43 - CFD: 26/06/2011 - 00:00:30 - [12427655] ----D- C:\Users\mel\Appdata\Local\Temp O43 - CFD: 25/04/2009 - 20:44:48 - [0] -SH-D- C:\Users\mel\Appdata\Local\Temporary Internet Files O43 - CFD: 30/08/2010 - 16:47:00 - [165404] ----D- C:\Users\mel\Appdata\Local\Vast Studios O43 - CFD: 08/05/2009 - 11:47:36 - [49271021] ----D- C:\Users\mel\Appdata\Local\VirtualStore O43 - CFD: 21/01/2008 - 05:20:46 - [15271] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 25/04/2009 - 20:48:26 - [174] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 03/01/2011 - 10:53:16 - [1830] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Burger Shop 2 O43 - CFD: 02/11/2010 - 16:36:52 - [4016] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flock O43 - CFD: 21/01/2008 - 05:20:46 - [548] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 25/06/2011 - 16:05:00 - [3111] R---D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 12/11/2010 - 22:45:52 - [2633] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 03/01/2011 - 10:53:20 - [1821] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Your Product O43 - CFD: 27/08/2010 - 18:06:02 - [3709] ----D- C:\Users\mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zuma's Revenge! O43 - CFD: 30/11/2010 - 09:58:42 - [3511045] ----D- C:\Program Files (x86)\7-Zip O43 - CFD: 26/04/2009 - 10:18:20 - [124428627] ----D- C:\Program Files (x86)\ABBYY FineReader 6.0 Sprint O43 - CFD: 31/10/2008 - 14:01:54 - [74523788] ----D- C:\Program Files (x86)\Acer O43 - CFD: 31/10/2008 - 14:11:02 - [644989344] ----D- C:\Program Files (x86)\Acer Arcade Live O43 - CFD: 21/12/2010 - 19:17:56 - [169953189] ----D- C:\Program Files (x86)\Acer GameZone O43 - CFD: 10/10/2006 - 21:07:18 - [0] ----D- C:\Program Files (x86)\Acer Incorporated O43 - CFD: 25/06/2011 - 23:48:28 - [139023813] ----D- C:\Program Files (x86)\Ad-Remover O43 - CFD: 31/10/2008 - 14:10:06 - [200267752] ----D- C:\Program Files (x86)\Adobe O43 - CFD: 25/11/2010 - 10:07:20 - [617925] ----D- C:\Program Files (x86)\Anti-Blaxx O43 - CFD: 26/04/2009 - 11:40:52 - [2221118] ----D- C:\Program Files (x86)\Apple Software Update O43 - CFD: 11/03/2010 - 18:59:18 - [42348] ----D- C:\Program Files (x86)\BFG O43 - CFD: 06/11/2010 - 14:54:54 - [600007] ----D- C:\Program Files (x86)\Bonjour O43 - CFD: 03/01/2011 - 10:53:16 - [28746459] ----D- C:\Program Files (x86)\Burger Shop 2 O43 - CFD: 23/07/2010 - 09:48:50 - [330761061] ----D- C:\Program Files (x86)\Canon O43 - CFD: 24/06/2011 - 16:48:42 - [721419921] ----D- C:\Program Files (x86)\Common Files O43 - CFD: 31/10/2008 - 14:03:40 - [4765216] ----D- C:\Program Files (x86)\CyberLink O43 - CFD: 15/07/2009 - 20:58:34 - [70306267] ----D- C:\Program Files (x86)\DivX O43 - CFD: 26/04/2009 - 14:30:48 - [979892] ----D- C:\Program Files (x86)\DVD Shrink O43 - CFD: 14/07/2009 - 20:16:08 - [15700152] ----D- C:\Program Files (x86)\DVD X Player 4.1 Professionnel O43 - CFD: 28/10/2010 - 20:42:16 - [10906334] ----D- C:\Program Files (x86)\eMule O43 - CFD: 26/04/2009 - 10:14:22 - [13107148] ----D- C:\Program Files (x86)\epson O43 - CFD: 26/04/2009 - 10:18:28 - [93975345] ----D- C:\Program Files (x86)\Epson Software O43 - CFD: 31/10/2008 - 14:26:54 - [17489955] ----D- C:\Program Files (x86)\eSobi O43 - CFD: 24/06/2011 - 16:35:32 - [260151682] ----D- C:\Program Files (x86)\Google O43 - CFD: 12/11/2010 - 22:51:10 - [66150014] ----D- C:\Program Files (x86)\ImTOO O43 - CFD: 25/06/2011 - 00:08:12 - [131206752] --H-D- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 26/04/2009 - 11:41:34 - [2651852] ----D- C:\Program Files (x86)\Internet Explorer O43 - CFD: 06/11/2010 - 15:00:48 - [1938027] ----D- C:\Program Files (x86)\iPod O43 - CFD: 06/11/2010 - 15:01:24 - [122979411] ----D- C:\Program Files (x86)\iTunes O43 - CFD: 24/06/2011 - 23:28:08 - [7941202] ----D- C:\Program Files (x86)\Lavalys O43 - CFD: 26/04/2009 - 14:51:28 - [6365734] ----D- C:\Program Files (x86)\Logitech O43 - CFD: 24/06/2011 - 20:10:44 - [6093848] ----D- C:\Program Files (x86)\ma-config.com O43 - CFD: 23/06/2011 - 17:44:38 - [7590700] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware O43 - CFD: 24/06/2011 - 18:30:30 - [255536] ----D- C:\Program Files (x86)\McAfee Security Scan O43 - CFD: 30/12/2010 - 17:07:48 - [379634967] ----D- C:\Program Files (x86)\Micro Application O43 - CFD: 02/11/2010 - 21:52:12 - [226432] ----D- C:\Program Files (x86)\Microsoft O43 - CFD: 31/10/2008 - 13:49:42 - [347890693] ----D- C:\Program Files (x86)\Microsoft Office O43 - CFD: 31/10/2008 - 13:50:02 - [7791803] ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant O43 - CFD: 02/11/2010 - 21:54:14 - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 31/10/2008 - 13:49:42 - [151270378] ----D- C:\Program Files (x86)\Microsoft Works O43 - CFD: 24/06/2011 - 19:51:56 - [8175999] ----D- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 29/12/2010 - 19:30:52 - [2659886008] ----D- C:\Program Files (x86)\Mindscape O43 - CFD: 02/11/2006 - 17:07:28 - [9908] ----D- C:\Program Files (x86)\MSBuild O43 - CFD: 31/10/2008 - 14:09:14 - [228861119] ----D- C:\Program Files (x86)\NewTech Infosystems O43 - CFD: 24/06/2011 - 23:47:00 - [0] ----D- C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 25/04/2009 - 22:27:30 - [263849542] ----D- C:\Program Files (x86)\OpenOffice.org 2.1 O43 - CFD: 22/06/2011 - 16:13:48 - [180978831] ----D- C:\Program Files (x86)\Orange O43 - CFD: 23/06/2011 - 21:03:26 - [2789763] ----D- C:\Program Files (x86)\P2P_Torrent O43 - CFD: 06/11/2010 - 14:59:34 - [76337719] ----D- C:\Program Files (x86)\QuickTime O43 - CFD: 08/02/2011 - 10:01:00 - [2435193] ----D- C:\Program Files (x86)\RealArcade O43 - CFD: 31/10/2008 - 13:29:24 - [149450890] ----D- C:\Program Files (x86)\Realtek O43 - CFD: 02/11/2006 - 17:07:28 - [26716348] ----D- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 06/11/2010 - 11:34:42 - [42299504] ----D- C:\Program Files (x86)\Safari O43 - CFD: 25/06/2011 - 00:08:12 - [1309922] ----D- C:\Program Files (x86)\SAGEM O43 - CFD: 25/06/2011 - 00:08:12 - [38412056] ----D- C:\Program Files (x86)\Securitoo O43 - CFD: 23/06/2011 - 19:39:08 - [65887239] ----D- C:\Program Files (x86)\Spybot - Search & Destroy O43 - CFD: 02/11/2006 - 17:36:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information O43 - CFD: 02/11/2010 - 17:22:04 - [78884139] ----D- C:\Program Files (x86)\VideoLAN O43 - CFD: 25/04/2009 - 22:14:08 - [11354021] ----D- C:\Program Files (x86)\Vodafone O43 - CFD: 21/01/2008 - 05:09:50 - [1016832] ----D- C:\Program Files (x86)\Windows Calendar O43 - CFD: 21/01/2008 - 05:09:48 - [53248] ----D- C:\Program Files (x86)\Windows Collaboration O43 - CFD: 21/01/2008 - 05:09:42 - [504128] ----D- C:\Program Files (x86)\Windows Defender O43 - CFD: 02/11/2010 - 21:55:26 - [117449045] ----D- C:\Program Files (x86)\Windows Live O43 - CFD: 02/11/2010 - 21:51:52 - [245112] ----D- C:\Program Files (x86)\Windows Live SkyDrive O43 - CFD: 04/11/2010 - 08:09:22 - [8939368] ----D- C:\Program Files (x86)\Windows Mail O43 - CFD: 21/01/2008 - 05:09:48 - [3008997] ----D- C:\Program Files (x86)\Windows Media Player O43 - CFD: 02/11/2006 - 17:07:28 - [7942926] ----D- C:\Program Files (x86)\Windows NT O43 - CFD: 21/01/2008 - 05:09:48 - [13464738] ----D- C:\Program Files (x86)\Windows Photo Gallery O43 - CFD: 21/01/2008 - 05:09:50 - [6511482] ----D- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 12/11/2010 - 22:45:52 - [3727772] ----D- C:\Program Files (x86)\WinRAR O43 - CFD: 03/01/2011 - 10:53:18 - [131570] ----D- C:\Program Files (x86)\Your Product O43 - CFD: 26/06/2011 - 00:00:34 - [4051278] ----D- C:\Program Files (x86)\ZHPDiag O43 - CFD: 27/08/2010 - 18:06:00 - [114402764] ----D- C:\Program Files (x86)\Zuma's Revenge! O43 - CFD: 08/02/2011 - 10:34:48 - [498392] ----D- C:\Program Files (x86)\Zylom Games O43 - CFD: 31/10/2008 - 14:10:12 - [9874075] ----D- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 06/11/2010 - 15:00:48 - [86845855] ----D- C:\Program Files (x86)\Common Files\Apple O43 - CFD: 23/07/2010 - 09:46:02 - [1184036] ----D- C:\Program Files (x86)\Common Files\Canon O43 - CFD: 31/10/2008 - 13:46:54 - [92976] ----D- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 15/07/2009 - 20:58:22 - [8024284] ----D- C:\Program Files (x86)\Common Files\DivX Shared O43 - CFD: 22/06/2011 - 16:10:54 - [7878358] ----D- C:\Program Files (x86)\Common Files\France Telecom O43 - CFD: 31/10/2008 - 13:38:48 - [6639811] ----D- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 31/10/2008 - 14:08:56 - [7178034] ----D- C:\Program Files (x86)\Common Files\LightScribe O43 - CFD: 26/04/2009 - 14:46:26 - [463926] ----D- C:\Program Files (x86)\Common Files\Logitech O43 - CFD: 02/11/2010 - 21:51:56 - [423393852] ----D- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 15/07/2009 - 20:58:30 - [3926944] ----D- C:\Program Files (x86)\Common Files\PX Storage Engine O43 - CFD: 08/05/2009 - 11:04:32 - [1353752] ----D- C:\Program Files (x86)\Common Files\Sandlot Shared O43 - CFD: 02/11/2006 - 15:33:54 - [2702] ----D- C:\Program Files (x86)\Common Files\Services O43 - CFD: 02/11/2006 - 15:33:54 - [41101735] ----D- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 21/01/2008 - 05:09:42 - [42700942] ----D- C:\Program Files (x86)\Common Files\System O43 - CFD: 28/10/2010 - 20:16:04 - [80727407] ----D- C:\Program Files (x86)\Common Files\Windows Live ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.80EE1700FEFFFFFF57494E444F577E31] - 25/06/2011 - 22:55:33 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1265809] O44 - LFC:[MD5.F5B6694DF4B6FF9EA3CE07C0C0240575] - 25/06/2011 - 22:49:41 ---A- . (...) -- C:\Ad-Report-CLEAN[1].txt [2805] O44 - LFC:[MD5.278C5209337ADFADF495BDD741126CC3] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1606634] O44 - LFC:[MD5.D0777689CD9E3306B5C7E48888EE33D7] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [118064] O44 - LFC:[MD5.BDDF86975092A9146E48F933A4A86A04] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [143958] O44 - LFC:[MD5.769F14BBD18C21742C38DF0C2C54657A] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [631438] O44 - LFC:[MD5.4D692CFA2CFB6AB61295A143F5D74D41] - 25/06/2011 - 20:19:37 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [719130] O44 - LFC:[MD5.80EE1700FEFFFFFF4C4F47434F4E7E31] - 25/06/2011 - 20:12:49 ---A- . (...) -- C:\Windows\SysNative\LogConfigTemp.xml [0] O44 - LFC:[MD5.6430C85245379591A8856B9F3EFB5DB9] - 25/06/2011 - 20:12:12 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.BAA67B827D40BDB6968724A97B8F88E1] - 25/06/2011 - 19:02:07 ---A- . (...) -- C:\Windows\PFRO.log [6428] O44 - LFC:[MD5.0E181B9023D7D176D96DB849375E1F9C] - 25/06/2011 - 18:56:54 ---A- . (...) -- C:\UsbFix_Upload_Me_PC-DE-MEL.zip [610859336] O44 - LFC:[MD5.9ADA205FD5CCC52AA2DB00E228AE4E26] - 25/06/2011 - 18:20:29 ---A- . (...) -- C:\Windows\SysNative\spsys.log [808] O44 - LFC:[MD5.6E97333F01841E397E651F75AED67FFE] - 25/06/2011 - 12:50:10 ---A- . (...) -- C:\Windows\setupact.log [2119] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 24/06/2011 - 21:55:18 ---A- . (...) -- C:\Windows\setuperr.log [0] O44 - LFC:[MD5.EBF7292E4E930CDCE565EB47B717D90E] - 24/06/2011 - 19:38:36 ---A- . (.NVIDIA Corporation - Pas de description.) -- C:\Windows\SysNative\nvshext.dll [61544] O44 - LFC:[MD5.F5B38907383181659B1BFDAD5E6477D7] - 24/06/2011 - 19:38:35 ---A- . (.NVIDIA Corporation - Easy daemon API.) -- C:\Windows\SysNative\easyupdatusapiu64.dll [739432] O44 - LFC:[MD5.8D23190C8DEC15DF565CA211ADB13258] - 24/06/2011 - 19:33:26 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\SysNative\OpenCL.dll [67176] O44 - LFC:[MD5.8D23190C8DEC15DF565CA211ADB13258] - 24/06/2011 - 19:33:26 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.dll [57960] O44 - LFC:[MD5.FF5EF308DA199B27D9B7236A80225CB4] - 24/06/2011 - 19:33:26 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\SysNative\nvoglv64.dll [22286952] O44 - LFC:[MD5.BAA6974697538067C6B27FA898DED21C] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\SysNative\nvdispco6420150.dll [1496168] O44 - LFC:[MD5.35EE4726EC99386CE41A3268D993693C] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\SysNative\nvgenco642090.dll [1427048] O44 - LFC:[MD5.8A618A2301DC67510DFBA245F438ECBD] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 275.33.) -- C:\Windows\SysNative\nvcuda.dll [7123560] O44 - LFC:[MD5.8A618A2301DC67510DFBA245F438ECBD] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 275.33.) -- C:\Windows\System32\nvcuda.dll [5301352] O44 - LFC:[MD5.B43007E6A0866719BFE1CE9C0449DDA1] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 275.3.) -- C:\Windows\SysNative\nvcuvid.dll [2943592] O44 - LFC:[MD5.B43007E6A0866719BFE1CE9C0449DDA1] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 275.3.) -- C:\Windows\System32\nvcuvid.dll [2804328] O44 - LFC:[MD5.A281C66DE2B2AFC324002193292D7BDF] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 275.33.) -- C:\Windows\SysNative\nvcuvenc.dll [2212968] O44 - LFC:[MD5.A281C66DE2B2AFC324002193292D7BDF] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 275.33.) -- C:\Windows\System32\nvcuvenc.dll [2082408] O44 - LFC:[MD5.B59CD0437F800B224774DA27D81F1A95] - 24/06/2011 - 19:33:25 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 275.33.) -- C:\Windows\System32\nvcompiler.dll [13011560] O44 - LFC:[MD5.B59CD0437F800B224774DA27D81F1A95] - 24/06/2011 - 19:33:24 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 275.33.) -- C:\Windows\SysNative\nvcompiler.dll [18583144] O44 - LFC:[MD5.278C5209337ADFADF495BDD741126CC3] - 24/06/2011 - 18:55:08 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1586434] O44 - LFC:[MD5.95C17AB35101EEBB1182668E19915ECC] - 24/06/2011 - 17:35:33 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\SysNative\aswBoot.exe [253888] O44 - LFC:[MD5.B8576757416F471C9D7F83B2B04B1F9D] - 24/06/2011 - 17:35:11 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [40112] O44 - LFC:[MD5.95C17AB35101EEBB1182668E19915ECC] - 24/06/2011 - 17:35:10 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe [199304] O44 - LFC:[MD5.319AB4B91B7026869AA45DF4817B2582] - 25/05/2011 - 08:25:23 ---A- . (...) -- C:\Windows\SysNative\nvinfo.pb [7384] ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Orange\Connectivity\ConnectivityManager.exe" [Enabled] .(.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\Connectivity\ConnectivityManager.exe ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys ---\\ MountPoints2 Shell Key (O51) O51 - MPSK:{107c71e3-e25b-11df-b86a-0021976a9290}\AutoRun\command. (...) -- G:\StartVMCLite.exe (.not file.) O51 - MPSK:{7002202e-31be-11de-a745-0021976a9290}\AutoRun\command. (...) -- I:\StartVMCLite.exe (.not file.) O51 - MPSK:{9cefb7f9-3236-11de-9ca9-0021976a9290}\AutoRun\command. (...) -- I:\StartVMCLite.exe (.not file.) ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=3 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=3 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=0 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.F14215E37CF124104575073F782111D2] - 21/01/2008 - 03:46:53 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [486456] O58 - SDL:[MD5.7D05A75E3066861A6610F7EE04FF085C] - 21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [342584] O58 - SDL:[MD5.820A201FE08A0C345B3BEDBC30E1A77C] - 21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (X64).) -- C:\Windows\system32\drivers\adpu160m.sys [126520] O58 - SDL:[MD5.9B4AB6854559DC168FBB4C24FC52E794] - 21/01/2008 - 03:47:27 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [185912] O58 - SDL:[MD5.157D0898D4B73F075CE9FA26B482DF98] - 21/01/2008 - 03:46:50 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15976] O58 - SDL:[MD5.BA8417D4765F3988FF921F30F630E303] - 21/01/2008 - 03:46:52 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [90680] O58 - SDL:[MD5.9D41C435619733B34CC16A511E644B11] - 21/01/2008 - 03:47:00 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [91192] O58 - SDL:[MD5.F1DBE3D02FFCDEE5246F29B0ECEBE6E0] - 10/05/2011 - 12:59:37 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys [22360] O58 - SDL:[MD5.F3E75DD1BCC358FB4629357AD09E7C84] - 10/05/2011 - 12:59:48 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys [64344] O58 - SDL:[MD5.FCCBDC045DC12AFD1508205117E7ED11] - 10/05/2011 - 12:59:59 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys [31064] O58 - SDL:[MD5.5824DCA602A0A30E866BC2AC98C6D970] - 10/05/2011 - 13:04:08 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\system32\drivers\aswSnx.sys [600920] O58 - SDL:[MD5.AF07B4BEF920F90205148F3A05E2974C] - 10/05/2011 - 13:04:07 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys [287576] O58 - SDL:[MD5.A3ECA5AF3B4823A523C285A8DF0F9E4F] - 10/05/2011 - 13:02:41 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys [53592] O58 - SDL:[MD5.8EA545F0F90E6388DCACA8F4F9404DC5] - 12/11/2008 - 16:42:22 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [4999680] O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432] O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704] O58 - SDL:[MD5.F0F0BA4D815BE446AA6A4583CA3BCA9B] - 02/11/2006 - 09:43:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [86528] O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 18/09/2006 - 22:30:18 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104] O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 18/09/2006 - 22:30:18 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976] O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 19/09/2006 - 12:42:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720] O58 - SDL:[MD5.E5D5499A1C50A54B5161296B6AFE6192] - 21/01/2008 - 03:46:50 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [18024] O58 - SDL:[MD5.222CB641B4B8A1D1126F8033F9FD6A00] - 02/11/2006 - 12:50:06 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [88168] O58 - SDL:[MD5.264CEE7B031A9D6C827F3D0CB031F2FE] - 21/01/2008 - 03:46:56 ---A- . (.Intel Corporation - Intel® PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\E1G6032E.sys [146176] O58 - SDL:[MD5.C4636D6E10469404AB5308D9FD45ED07] - 21/01/2008 - 03:46:59 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [397368] O58 - SDL:[MD5.1A5DA10E18FC2643E94C5DC7FA965868] - 05/11/2007 - 10:56:58 ---A- . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ewusbmdm.sys [112512] O58 - SDL:[MD5.E403AACF8C7BB11375122D2464560311] - 18/05/2009 - 13:17:08 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [34152] O58 - SDL:[MD5.D7109A1E6BD2DFDBCBA72A6BC626A13B] - 21/01/2008 - 03:46:59 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [47672] O58 - SDL:[MD5.3E3BF3627D886736D0B4E90054F929F6] - 21/01/2008 - 03:46:59 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [290872] O58 - SDL:[MD5.8C3951AD2FE886EF76C7B5027C3125D3] - 02/11/2006 - 13:02:39 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44648] O58 - SDL:[MD5.8C7FA71CB1EBCD3EDE8958D27B1BF0B4] - 19/08/2008 - 14:23:00 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\system32\drivers\int15_64.sys [17952] O58 - SDL:[MD5.63C766CDC609FF8206CB447A65ABBA4A] - 02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [37480] O58 - SDL:[MD5.25D0DACC04EADA6DCBC0B1E46F309759] - 25/02/2008 - 15:29:24 ---A- . (.Windows ® Codename Longhorn DDK provider - Sample IOCTL Driver.) -- C:\Windows\system32\drivers\ITEIO.sys [13144] O58 - SDL:[MD5.1281FE73B17664631D12F643CBEA3F59] - 02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [37480] O58 - SDL:[MD5.ACBE1AF32D3123E330A07BFBC5EC4A9B] - 21/01/2008 - 03:46:51 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [113720] O58 - SDL:[MD5.799FFB2FC4729FA46D2157C0065B3525] - 21/01/2008 - 03:46:56 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [105016] O58 - SDL:[MD5.F445FF1DAAD8A226366BFAF42551226B] - 21/01/2008 - 03:47:01 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [113720] O58 - SDL:[MD5.ED49FD1373DE93617A1F6D128D98FE4D] - 29/05/2011 - 08:11:20 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [25912] O58 - SDL:[MD5.5C5CD6AACED32FB26C3FB34B3DCF972F] - 21/01/2008 - 03:46:59 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [35896] O58 - SDL:[MD5.859BC2436B076C77C159ED694ACFE8F8] - 21/01/2008 - 03:46:56 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [438328] O58 - SDL:[MD5.1A11D72920C8BC64315C8EB4DFD82DA2] - 13/07/2007 - 09:21:36 ---A- . (.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) -- C:\Windows\system32\drivers\Mpfp.sys [173072] O58 - SDL:[MD5.3C200630A89EF2C0864D515B7A75802E] - 02/11/2006 - 13:02:24 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [39016] O58 - SDL:[MD5.307BC83250FC8E3B2878D81E7D760299] - 19/04/2010 - 20:29:18 ---A- . (.Apple Inc. - Apple Mobile Device Ethernet.) -- C:\Windows\system32\drivers\netaapl64.sys [22528] O58 - SDL:[MD5.4AC08BD6AF2DF42E0C3196D826C8AEA7] - 02/11/2006 - 13:03:03 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51816] O58 - SDL:[MD5.7D397449AAF52B0E7C79B64F6AD4473E] - 31/01/2008 - 01:48:32 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\system32\drivers\NTIDrvr.sys [16384] O58 - SDL:[MD5.6E022D5F44CD8B029CF799807BB31269] - 05/08/2008 - 05:29:26 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\system32\drivers\nvhda64v.sys [56352] O58 - SDL:[MD5.B34E9BFBD9C61048EF6281C3E7EC210A] - 25/05/2011 - 08:25:24 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 275.33.) -- C:\Windows\system32\drivers\nvlddmkm.sys [13206120] O58 - SDL:[MD5.98350606682594521D56ECCB5D01ECF7] - 01/08/2008 - 05:51:12 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\system32\drivers\nvmfdx64.sys [1498016] O58 - SDL:[MD5.2C040B7ADA5B06F6FACADAC8514AA034] - 21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [128056] O58 - SDL:[MD5.F7EA0FE82842D05EDA3EFDD376DBFDBA] - 21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [54328] O58 - SDL:[MD5.581286807B5832503FD700A3217B589F] - 18/08/2008 - 12:00:08 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor64.sys [170528] O58 - SDL:[MD5.2CFD31D41CDE75328ACAEEE2D4F4B836] - 29/07/2008 - 17:53:48 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Filter Driver.) -- C:\Windows\system32\drivers\psdfilter.sys [22064] O58 - SDL:[MD5.51A585F999672D8BB07F22AE12B40846] - 29/07/2008 - 17:53:50 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Named Pipe Driver.) -- C:\Windows\system32\drivers\PSDNServ.sys [21040] O58 - SDL:[MD5.DB50D3F5C31B1A848B04F7F2A6FF2709] - 29/07/2008 - 17:53:50 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Virtual Disk Driver.) -- C:\Windows\system32\drivers\PSDVdisk.sys [60976] O58 - SDL:[MD5.0B83F4E681062F3839BE2EC1D98FD94A] - 21/01/2008 - 03:46:52 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1221176] O58 - SDL:[MD5.E1C80F8D4D1E39EF9595809C1369BF2A] - 02/11/2006 - 12:50:27 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [124008] O58 - SDL:[MD5.023EB98945069178C21B324B880AD787] - 19/08/2008 - 11:03:00 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys [1487776] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 30/09/2006 - 00:51:44 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040] O58 - SDL:[MD5.3A2F769FAB9582BC720E11EA1DFB184D] - 21/01/2008 - 03:47:26 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [78392] O58 - SDL:[MD5.2F26A2C6FC96B29BEFF5D8ED74E6625B] - 02/11/2006 - 13:02:52 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [49256] O58 - SDL:[MD5.A909667976D3BCCD1DF813FED517D837] - 02/11/2006 - 13:02:37 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [44648] O58 - SDL:[MD5.36887B56EC2D98B9C362F6AE4DE5B7B0] - 02/11/2006 - 13:02:47 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [48232] O58 - SDL:[MD5.A65643ED30A30E46317C0B25818BC9B7] - 25/02/2008 - 15:29:24 ---A- . (.EnTech Taiwan - TVicPort Driver for Windows NT/2000/XP.) -- C:\Windows\system32\drivers\TVicPort64.sys [16080] O58 - SDL:[MD5.00C8CE31657624A125FDB90EFD554371] - 31/01/2008 - 01:48:16 ---A- . (.NewTech Infosystems Corporation - NTI CDROM Filter Driver.) -- C:\Windows\system32\drivers\UBHelper.sys [16384] O58 - SDL:[MD5.697F0446134CDC8F99E69306184FBBB4] - 21/01/2008 - 03:46:56 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [284728] O58 - SDL:[MD5.31707F09846056651EA2C37858F5DDB0] - 02/11/2006 - 12:50:54 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [148072] O58 - SDL:[MD5.85E5E43ED5B48C8376281BAB519271B7] - 21/01/2008 - 03:46:52 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series x64 Windows Driver.) -- C:\Windows\system32\drivers\ulsata2.sys [174696] O58 - SDL:[MD5.CD03479F2DA26500B203ED075C146A7A] - 19/04/2010 - 20:47:42 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl64.sys [50688] O58 - SDL:[MD5.8294B6C3FDB6C33F24E150DE647ECDAA] - 21/01/2008 - 03:46:50 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [18024] O58 - SDL:[MD5.A68F455ED2673835209318DD61BFBB0E] - 21/01/2008 - 03:47:25 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [149048] O58 - SDL:[MD5.C6E5276C00EBDEB096BB5EF4B797D1B6] - 19/08/2008 - 14:23:00 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\SysWOW64\drivers\int15.sys [15392] O58 - SDL:[MD5.8C7FA71CB1EBCD3EDE8958D27B1BF0B4] - 19/08/2008 - 14:23:00 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\SysWOW64\drivers\int15_64.sys [17952] O58 - SDL:[MD5.B309912717C29FC67E1BA4730A82B6DD] - 29/05/2011 - 08:11:30 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [39984] O58 - SDL:[MD5.1BF91F352D746AD7469FA71783B5FAE8] - 28/11/2006 - 20:46:22 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 MPR Protocol Driver.) -- C:\Windows\SysWOW64\drivers\PCAMp50.sys [28224] O58 - SDL:[MD5.1961590AA191B6B7DCF18A6A693AF7B8] - 28/11/2006 - 20:46:20 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\Windows\SysWOW64\drivers\PCASp50.sys [27072] O58 - SDL:[MD5.58D904A2FA970BC23B636C47CB60E649] - 14/07/2009 - 19:15:28 ---A- . (...) -- C:\Windows\SysWOW64\SystemInfo32.sys [14] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM][64Bits] -- Ad-Remover O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPDiag_is1 ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - ??/??/???? - C:\Windows\system32\drivers\aswMonFlt.sys (.not file.) - aswMonFlt(aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT O64 - Services: CurCS - 30/08/2010 - C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys - driverhardwarev2x64(driverhardwarev2x64) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64 O64 - Services: CurCS - 19/08/2008 - C:\Windows\sysWOW64\drivers\int15_64.sys - int15(int15) .(.Acer, Inc. - int15.) - LEGACY_INT15 O64 - Services: CurCS - ??/??/???? - c:\Windows\system32\drivers\ITEIO.sys (.not file.) - ITEIO.SYS(ITEIO.SYS) .(.Windows ® Codename Longhorn DDK provider - Sample IOCTL Driver.) - LEGACY_ITEIO.SYS O64 - Services: CurCS - ??/??/???? - C:\Windows\system32\drivers\mbam.sys (.not file.) - MBAMProtector(MBAMProtector) .(.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - LEGACY_MBAMPROTECTOR O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\Drivers\Mpfp.sys (.not file.) - MPFP(MPFP) .(.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) - LEGACY_MPFP O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\DRIVERS\psdfilter.sys (.not file.) - PSDFilter(PSDFilter) .(.Egis Incorporated - Acer eDataSecurity Management PSD Filter Dr.) - LEGACY_PSDFILTER O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\DRIVERS\PSDNServ.sys (.not file.) - PSDNServ(PSDNServ) .(.Egis Incorporated - Acer eDataSecurity Management PSD Named Pip.) - LEGACY_PSDNSERV O64 - Services: CurCS - ??/??/???? - C:\Windows\System32\DRIVERS\PSDVdisk.sys (.not file.) - PSDVdisk(psdvdisk) .(.Egis Incorporated - Acer eDataSecurity Management PSD Virtual D.) - LEGACY_PSDVDISK ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (. - .) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.html> <htmlfile>[HKCU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - Google O69 - SBI: SearchScopes [HKCU] {DECA3892-BA8F-44b8-A993-A466AD694AE4} - (Secure Search) - Yahoo! Search - Recherche Web ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.75D44FD61EE5ABED71A893AD62BD7162] [sPRF] (...) -- C:\Users\mel\Desktop\layout.bin [509] ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.) O87 - FAEL: "WinCollab-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-DFSR-Out-TCP" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\dfsr.exe (.not file.) O87 - FAEL: "WinCollab-DFSR-In-TCP" |In - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\dfsr.exe (.not file.) O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - Domain - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-In-UDP" |In - Domain - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "{3E7D3CDF-2881-4A36-8DDE-EB511A35B73B}" | In - None - P6 - TRUE | .(.Acer Incorporated - Acer Arcade Live.) -- C:\Program Files (x86)\Acer Arcade Live\Acer Arcade Live Main Page\Acer Arcade Live.exe O87 - FAEL: "{FC34B5C3-FC07-4101-9EB8-52E6CBB1E487}" |In - Domain - P17 - TRUE | .(...) -- C:\Program Files (x86)\Common Files\Mcafee\MNA\McNaSvc.exe (.not file.) O87 - FAEL: "{A630D44E-E507-4CD0-92AC-E84F288AA824}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer DV Magician.) -- C:\Program Files (x86)\Acer Arcade Live\Acer DV Magician\Acer DV Magician.exe O87 - FAEL: "{1DB1AF9B-9BB2-479D-AD3D-C40DF9975F08}" | In - None - P17 - TRUE | .(.CyberLink Corp. - SlideShow DVD.) -- C:\Program Files (x86)\Acer Arcade Live\Acer SlideShow DVD\Acer SlideShow DVD.exe O87 - FAEL: "{AB9F5B5A-900A-4EE1-BEB0-054C0D4CD1BC}" | In - None - P17 - TRUE | .(.Acer Incorporated - VideoMagician.) -- C:\Program Files (x86)\Acer Arcade Live\Acer VideoMagician\Acer VideoMagician.exe O87 - FAEL: "{972C1E4B-C685-4C9F-B6A0-CD1B305E609F}" | In - None - P17 - TRUE | .(.Acer Incorporated - DVDivine.) -- C:\Program Files (x86)\Acer Arcade Live\Acer DVDivine\Acer DVDivine.exe O87 - FAEL: "{BDCE1255-DB9A-4051-997A-B0DE63857833}" | In - None - P17 - TRUE | .(.CyberLink Corp. - HomeMedia.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia\Acer HomeMedia.exe O87 - FAEL: "{FD2B5AB6-81A8-4AC1-B727-84CE93F01D55}" | In - None - P17 - TRUE | .(.Acer Incorporated - HomeMedia Connect.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Acer HomeMedia Connect.exe O87 - FAEL: "{31042F7B-11AA-4DF2-B9F3-36AC310A7ECE}" | In - None - P17 - TRUE | .(.CyberLink - CLMSServer.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe O87 - FAEL: "{0B09902A-CAAA-49E4-87C9-614B947B74DD}" | In - Public - P6 - TRUE | .(.NewTech Infosystems, Inc. - NTI Backup Now 5 Agent service..) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe O87 - FAEL: "{E1E75BE4-020D-4A69-BD67-E74904DAE007}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O87 - FAEL: "{AE5DD2BC-A9C0-46BD-910A-DC6930EB1EBF}" | In - Public - P6 - TRUE | .(.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O87 - FAEL: "{00EE5FEE-4FD9-48B5-AC87-1614CA958ACC}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O87 - FAEL: "{AF785ACC-0B24-47F5-8755-76081718082B}" | In - Public - P17 - TRUE | .(.NewTech Infosystems, Inc. - NTI Backup Now 5 Agent service..) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe O87 - FAEL: "{5FCB307C-A082-441D-A7EA-CE6FACC9349F}" | In - Public - P17 - TRUE | .(.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O87 - FAEL: "{777AE657-EBEA-4A70-A440-52EEE16CBD11}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer Arcade Live.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Trial Creator\Acer HomeMedia Trial Creator.exe O87 - FAEL: "TCP Query User{F0BEA0DF-C533-40F6-B9DE-EEA1F02FEEFD}C:\program files (x86)\emule\emule.exe" | In - Public - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe O87 - FAEL: "UDP Query User{45C3F5D0-8193-4074-A162-B31C4DFFE516}C:\program files (x86)\emule\emule.exe" | In - Public - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe O87 - FAEL: "{02BACF47-952C-440A-877E-45950A2179A8}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe O87 - FAEL: "{F87ABDED-0F92-476B-A7C6-54C9F95CAF4A}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O87 - FAEL: "{373AA0CF-F197-46EF-B7AC-71D02A063893}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{0DDC083F-79AA-4199-BCE4-2E5D6D37E001}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{9A943007-7652-4D12-A140-F668D07A6354}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe ---\\ Scan Additionnel (O88) Database Version : 8450 - (25/06/2011) Clés trouvées (Keys found) : 1 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 4 Fichiers trouvés (Files found) : 0 [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}] =>Spyware.BHO C:\Users\mel\AppData\Roaming\iWin =>Adware.BHO C:\Users\mel\Appdata\LocalLow\P2P_Torrent =>Adware.BHO C:\Program Files (x86)\P2P_Torrent =>Adware.BHO C:\Program Files (x86)\Zuma's Revenge! =>Adware.PopCap ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 20/05/2008 269448 | (Acer HomeMedia Connect Service) . (.CyberLink.) - C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe SR - | Auto 13/08/2010 144672 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 13/08/2010 0 | (Ati External Event Utility) . (.ATI Technologies Inc..) - C:\Windows\system32\Ati2evxx.exe SR - | Auto 10/05/2011 42184 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe SR - | Auto 27/07/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe SR - | Auto 03/03/2008 16384 | (BUNAgentSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe SR - | Auto 29/07/2008 500784 | (eDataSecurity Service) . (.Egis Incorporated.) - C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe SR - | Auto 19/08/2008 24576 | (ETService) . (...) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe SR - | Auto 25/09/2007 65536 | (FTRTSVC) . (.France Telecom SA.) - C:\PROGRA~2\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe SS - | Auto 01/12/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 01/12/2010 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 01/03/2011 182768 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe SR - | Demand 24/09/2010 932640 | (iPod Service) . (.Apple Inc..) - C:\Program Files (x86)\iPod\bin\iPodService.exe SR - | Auto 17/01/2007 61440 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe SS - | Demand 01/05/2011 311744 | (maconfservice) . (.CybelSoft.) - C:\Program Files (x86)\ma-config.com\maconfservice.exe SR - | Auto 29/05/2011 366640 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe SS - | Demand 29/05/2011 0 | (McComponentHostService) . (...) - C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe SR - | Auto 25/04/2008 45056 | (NTIBackupSvc) . (.NewTech InfoSystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe SR - | Auto 25/04/2008 131072 | (NTISchedulerSvc) . (...) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe SR - | Auto 25/04/2008 0 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe SR - | Auto 13/06/2008 241734 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe SR - | Auto 21/01/2008 21504 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by mel at 26/06/2011 00:02:07 device: opened successfully user: error reading MBR Disk trace: error: Read Descripteur non valide kernel: error reading MBR ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by mel at 26/06/2011 00:02:09 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin End of the scan (1276 lines in 02mn 03s)(0)
  19. pit67
  20. pit67
    il n y a pas de menace avec mam donc pas de rapport de nettoyage voici le fichier Clean.txt de Ad_Remover ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 12/04/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: http://www.teamxscript.org C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 23:48:26 le 25/06/2011, Mode normal Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1 (X64) mel@PC-DE-MEL (Acer Aspire X1700) ============== ACTION(S) ============== (!) -- Fichiers temporaires supprimés. ============== SCAN ADDITIONNEL ============== **** Internet Explorer Version [7.0.6001.18000] **** HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896 HKCU_Main|Start Page - hxxp://fr.msn.com/ HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Start Page - hxxp://fr.msn.com/ HKCU_URLSearchHooks|{08C06D61-F1F3-4799-86F8-BE1A89362C85} - "Search Class" (C:\Program Files (x86)\Orange\SearchURLHook\SearchPageURL.dll) HKCU_URLSearchHooks|{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} (x) HKCU_Toolbar\ShellBrowser|{5CBE3B7C-1E47-477E-A7DD-396DB0476E29} (C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll) HKLM_Toolbar|{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} (C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll) HKLM_Toolbar|{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll) HKLM_ElevationPolicy\d13ae9ff-114e-4aae-ab0a-4b843ac20416 - C:\Program Files (x86)\P2P_Torrent\P2P_TorrentToolbarHelper.exe (?) HKLM_ElevationPolicy\{A067FF86-282B-487E-8481-E14648F89A19} - C:\Program Files (x86)\P2P_Torrent\P2P_TorrentToolbarHelper1.exe (Conduit Ltd.) HKLM_ElevationPolicy\{F365CC6C-656A-4108-8CF0-16DF98696395} - C:\Program Files (x86)\Canon\ZoomBrowser EX\Program\ZoomBrowser.exe (?) BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?) BHO\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - "avast! WebRep" (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll) BHO\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} (?) ======================================== C:\Program Files (x86)\Ad-Remover\Quarantine: 0 Fichier(s) C:\Program Files (x86)\Ad-Remover\Backup: 15 Fichier(s) C:\Ad-Report-CLEAN[1].txt - 25/06/2011 23:48:32 (2666 Octet(s)) Fin à: 23:49:40, 25/06/2011 ============== E.O.F ==============
  21. pit67
    Malwarebytes' Anti-Malware 1.51.0.1200 www.malwarebytes.org Version de la base de données: 6949 Windows 6.0.6001 Service Pack 1 Internet Explorer 7.0.6001.18000 25/06/2011 22:20:54 mbam-log-2011-06-25 (22-20-54).txt Type d'examen: Examen complet (C:\|D:\|F:\|H:\|I:\|) Elément(s) analysé(s): 349443 Temps écoulé: 47 minute(s), 34 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) voibi le rapport mam Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté)
  22. pit67
    le fichier fix a ete envoye.....merci pour votre patience voila le rapport scan ad-r je ne trouve pas le rapport de nettoyage!!! ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 12/04/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: http://www.teamxscript.org C:\Program Files (x86)\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 21:04:26 le 25/06/2011, Mode normal Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1 (X64) mel@PC-DE-MEL (Acer Aspire X1700) ============== RECHERCHE ============== Fichier trouvé: C:\Windows\SysWOW64\ConduitEngine.tmp Dossier trouvé: C:\Users\mel\AppData\LocalLow\Conduit Dossier trouvé: C:\Program Files (x86)\Conduit Dossier trouvé: C:\Users\mel\AppData\LocalLow\ConduitEngine Dossier trouvé: C:\Program Files (x86)\ConduitEngine Dossier trouvé: C:\Users\mel\AppData\LocalLow\PriceGong Dossier trouvé: C:\ProgramData\Trymedia Clé trouvée: HKLM\Software\Classes\Toolbar.CT1210541 Clé trouvée: HKLM\Software\Conduit Clé trouvée: HKLM\Software\conduitEngine Clé trouvée: HKLM\Software\Trymedia Systems Clé trouvée: HKCU\Software\PopCap Clé trouvée: HKCU\Software\AppDataLow\Toolbar Clé trouvée: HKCU\Software\AppDataLow\Software\Conduit Clé trouvée: HKCU\Software\AppDataLow\Software\conduitEngine Clé trouvée: HKCU\Software\AppDataLow\Software\PriceGong Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} ============== SCAN ADDITIONNEL ============== **** Internet Explorer Version [7.0.6001.18000] **** HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896 HKCU_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKCU_Main|Start Page - hxxp://fr.msn.com/ HKLM_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Start Page - hxxp://fr.msn.com/ HKCU_URLSearchHooks|{08C06D61-F1F3-4799-86F8-BE1A89362C85} - "Search Class" (C:\Program Files (x86)\Orange\SearchURLHook\SearchPageURL.dll) HKCU_URLSearchHooks|{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} (x) HKCU_SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} - "P2P Torrent Customized Web Search" (hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT...) HKLM_SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} - "P2P Torrent Customized Web Search" (hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT...) HKCU_Toolbar\ShellBrowser|{5CBE3B7C-1E47-477E-A7DD-396DB0476E29} (C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll) HKLM_Toolbar|{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} (C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll) HKLM_Toolbar|{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll) HKLM_ElevationPolicy\d13ae9ff-114e-4aae-ab0a-4b843ac20416 - C:\Program Files (x86)\P2P_Torrent\P2P_TorrentToolbarHelper.exe (?) HKLM_ElevationPolicy\{A067FF86-282B-487E-8481-E14648F89A19} - C:\Program Files (x86)\P2P_Torrent\P2P_TorrentToolbarHelper1.exe (Conduit Ltd.) HKLM_ElevationPolicy\{F365CC6C-656A-4108-8CF0-16DF98696395} - C:\Program Files (x86)\Canon\ZoomBrowser EX\Program\ZoomBrowser.exe (?) BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?) BHO\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - "avast! WebRep" (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll) BHO\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} (?) ======================================== C:\Program Files (x86)\Ad-Remover\Quarantine: 0 Fichier(s) C:\Program Files (x86)\Ad-Remover\Backup: 1 Fichier(s) C:\Ad-Report-SCAN[1].txt - 25/06/2011 21:04:29 (4082 Octet(s)) Fin à: 21:05:18, 25/06/2011 ============== E.O.F ==============
  23. pit67
    voila les 2 rapport usbfix ############################## | UsbFix 7.048 | [Recherche] Utilisateur: mel (Administrateur) # PC-DE-MEL [Acer Aspire X1700] Mis à jour le 11/06/2011 par TeamXscript Lancé à 19:48:51 | 25/06/2011 Site Web: http://www.teamxscript.org Submit your sample: http://www.teamxscript.org/Upload.php Contact: TeamXscript.ElDesaparecido@gmail.com CPU: Intel® Pentium® Dual CPU E2220 @ 2.40GHz CPU 2: Intel® Pentium® Dual CPU E2220 @ 2.40GHz Microsoft® Windows Vista™ Édition Familiale Premium (6.0.6001 64-Bit) # Service Pack 1 Internet Explorer 7.0.6001.18000 RAM -> 3838 Mo C:\ (%systemdrive%) -> Disque fixe # 456 Go (286 Go libre(s) - 63%) [ACER] # NTFS D:\ -> Disque fixe # 460 Go (454 Go libre(s) - 99%) [DATA] # NTFS E:\ -> Disque amovible # 242 Mo (230 Mo libre(s) - 95%) [bLUE] # FAT32 F:\ -> CD-ROM ################## | Éléments infectieux | ################## | Registre | ################## | Mountpoints2 | HKCU\.\.\.\.\Explorer\MountPoints2\{107c71cc-e25b-11df-b86a-0021976a9290} Shell\AutoRun\Command = G:\StartVMCLite.exe HKCU\.\.\.\.\Explorer\MountPoints2\{107c71e3-e25b-11df-b86a-0021976a9290} Shell\AutoRun\Command = G:\StartVMCLite.exe HKCU\.\.\.\.\Explorer\MountPoints2\{1782f7fd-a034-11de-a12e-0021976a9290} Shell\AutoRun\Command = G:\StartVMCLite.exe HKCU\.\.\.\.\Explorer\MountPoints2\{7002202a-31be-11de-a745-0021976a9290} Shell\AutoRun\Command = I:\StartVMCLite.exe HKCU\.\.\.\.\Explorer\MountPoints2\{7002202e-31be-11de-a745-0021976a9290} Shell\AutoRun\Command = I:\StartVMCLite.exe HKCU\.\.\.\.\Explorer\MountPoints2\{7002203a-31be-11de-a745-0021976a9290} Shell\AutoRun\Command = I:\StartVMCLite.exe HKCU\.\.\.\.\Explorer\MountPoints2\{7b17a9bb-e196-11df-94e4-0021976a9290} Shell\AutoRun\Command = K:\StartVMCLite.exe HKCU\.\.\.\.\Explorer\MountPoints2\{9cefb7f3-3236-11de-9ca9-0021976a9290} Shell\AutoRun\Command = I:\StartVMCLite.exe HKCU\.\.\.\.\Explorer\MountPoints2\{9cefb7f9-3236-11de-9ca9-0021976a9290} Shell\AutoRun\Command = I:\StartVMCLite.exe ################## | Vaccin | C:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) D:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) E:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) ################## | E.O.F | et ############################## | UsbFix 7.048 | [suppression] Utilisateur: mel (Administrateur) # PC-DE-MEL [Acer Aspire X1700] Mis à jour le 11/06/2011 par TeamXscript Lancé à 19:53:52 | 25/06/2011 Site Web: http://www.teamxscript.org Submit your sample: http://www.teamxscript.org/Upload.php Contact: TeamXscript.ElDesaparecido@gmail.com CPU: Intel® Pentium® Dual CPU E2220 @ 2.40GHz CPU 2: Intel® Pentium® Dual CPU E2220 @ 2.40GHz Microsoft® Windows Vista™ Édition Familiale Premium (6.0.6001 64-Bit) # Service Pack 1 Internet Explorer 7.0.6001.18000 RAM -> 3838 Mo C:\ (%systemdrive%) -> Disque fixe # 456 Go (286 Go libre(s) - 63%) [ACER] # NTFS D:\ -> Disque fixe # 460 Go (454 Go libre(s) - 99%) [DATA] # NTFS E:\ -> Disque amovible # 242 Mo (230 Mo libre(s) - 95%) [bLUE] # FAT32 F:\ -> CD-ROM ################## | Éléments infectieux | Supprimé! C:\$RECYCLE.BIN\S-1-5-21-1246582734-39791316-2866014588-1000 Supprimé! D:\$RECYCLE.BIN\S-1-5-21-1246582734-39791316-2866014588-1000 ################## | Registre | ################## | Mountpoints2 | Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{107c71cc-e25b-11df-b86a-0021976a9290} Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{1782f7fd-a034-11de-a12e-0021976a9290} Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{7002202a-31be-11de-a745-0021976a9290} Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{7002203a-31be-11de-a745-0021976a9290} Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{7b17a9bb-e196-11df-94e4-0021976a9290} Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{9cefb7f3-3236-11de-9ca9-0021976a9290} ################## | Listing | [25/06/2011 - 19:54:33 | SHD ] C:\$RECYCLE.BIN [25/06/2011 - 00:08:11 | D ] C:\ACER [25/04/2009 - 20:47:30 | D ] C:\ACERSW [25/06/2011 - 19:31:52 | RASHD ] C:\Autorun.inf [22/02/2011 - 09:33:46 | D ] C:\BigFishGamesCache [31/10/2008 - 14:27:46 | D ] C:\Book [31/10/2008 - 21:06:06 | D ] C:\Boot [21/01/2008 - 04:50:15 | RASH | 333203] C:\bootmgr [31/10/2008 - 21:06:07 | N | 8192] C:\BOOTSECT.BAK [02/11/2006 - 17:42:17 | SHD ] C:\Documents and Settings [06/12/2010 - 12:25:48 | D ] C:\found.000 [08/02/2011 - 10:34:48 | D ] C:\GameHouse Games [23/09/2005 - 00:39:38 | N | 894976] C:\msdia80.dll [31/10/2008 - 13:43:38 | RHD ] C:\MSOCache [24/06/2011 - 20:32:30 | D ] C:\NVIDIA [25/06/2011 - 19:43:55 | ASH | 4339343360] C:\pagefile.sys [21/01/2008 - 05:04:13 | D ] C:\PerfLogs [25/06/2011 - 16:08:44 | N | 512] C:\PhysicalDisk0_MBR.bin [24/06/2011 - 22:01:29 | D ] C:\Program Files [25/06/2011 - 19:44:21 | D ] C:\Program Files (x86) [24/06/2011 - 21:41:05 | HD ] C:\ProgramData [31/10/2008 - 13:31:04 | N | 827] C:\RHDSetup.log [24/06/2011 - 23:13:12 | N | 159] C:\Setup.log [25/06/2011 - 16:15:37 | SHD ] C:\System Volume Information [25/06/2011 - 19:54:34 | D ] C:\UsbFix [25/06/2011 - 19:53:47 | A | 2876] C:\UsbFix.txt [25/06/2011 - 19:33:45 | N | 610859389] C:\UsbFix_Upload_Me_PC-DE-MEL.zip [24/06/2011 - 23:46:57 | D ] C:\Users [25/06/2011 - 00:14:44 | D ] C:\Windows [25/06/2011 - 19:54:34 | SHD ] D:\$RECYCLE.BIN [25/06/2011 - 19:31:52 | RASHD ] D:\Autorun.inf [03/03/2011 - 14:12:36 | D ] D:\joutes [15/04/2010 - 21:56:23 | D ] D:\MICHAEL_JACKSONS_THIS_IS_IT [02/06/2008 - 12:41:54 | SHD ] D:\System Volume Information [24/06/2011 - 23:12:26 | N | 423640] E:\LAN_NVIDIA_MCP_onboard_1.0.1.6772_Vistax86.zip [24/06/2011 - 23:15:00 | D ] E:\LAN_NVIDIA_MCP_onboard_1.0.1.6772_Vistax86 [24/06/2011 - 23:25:54 | N | 10255080] E:\everest-ultimate_everest_ultimate_5.50.2100_francais_12281.exe [25/06/2011 - 19:31:54 | RASHD ] E:\Autorun.inf ################## | Vaccin | C:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) D:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) E:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) ################## | Upload | Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_PC-DE-MEL.zip http://www.teamxscript.org/Upload.php Merci de votre contribution. ################## | E.O.F |
  24. pit67
    © CJoint.com, 2010
  25. pit67
    bonjour voila.. sur un pc acer aspire x1700 avec vista home premium (avec une vrais clé) impossible de le mettre a jour sur windows update et le pare feu windows ne fonctionne pas
×
×
  • Créer...