mika34

c'est une tour,ok je vais faire ça.merci pour ton aide c'est sympa

ps: le dd apparemment chauffe en interne 62° au lieu de 47° max sinon en ext 38°.

merci de ta réponse rapide,voici le rapport Rapport de ZHPFix 1.12.3374 par Nicolas Coolman, Update du 05/12/2011 Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-12-12-2011-14-03-33.txt Run by mika at 12/12/2011 14:03:33 Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002) Web site : ZHPFix Fix de rapport ========== Valeur(s) du Registre ========== ABSENT Valeur Standard Profile: FirewallRaz : ABSENT Valeur Domain Profile: FirewallRaz : ========== Elément(s) de donnée du Registre ========== SUPPRIME PhishingFilter Value: Enabled = 0 SUPPRIME R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page SUPPRIME R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy ========== Dossier(s) ========== SUPPRIME Flash Cookies: 4 SUPPRIME Temporaires Windows: : 70 ========== Fichier(s) ========== SUPPRIME Flash Cookies: 3 SUPPRIME Temporaires Windows: : 34 ========== Récapitulatif ========== 2 : Valeur(s) du Registre 3 : Elément(s) de donnée du Registre 2 : Dossier(s) 2 : Fichier(s) End of clean in 00mn 01s ========== Chemin de fichier rapport ========== C:\ZHP\ZHPFix[R1].txt - 12/12/2011 14:03:33 [1105]

bonjour,mon pc ne cesse de se figer ,obliger de redemarrer à chaque fois et une fois sur 3 l'unité centrale bipe.merci de votre aide ,ci-joint rapport zhpdiag. Run by mika at 12/12/2011 10:14:30 Web site : ZHPDiag Outil de diagnostic State : Version à jour. ---\\ Web Browser MSIE: Internet Explorer v9.0.8112.16421 MFIE: Mozilla Firefox 6.0.2 v6.0.2 GCIE: Google Chrome v15.0.874.121 (Defaut) ---\\ Windows Product Information ~ Langage: Français Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002) Windows Server License Manager Script : OK ~ Vista, OEM_SLP channel System Locked Preinstallation (OEM_SLP) : OK Windows ID Activation : OK ~ Windows Partial Key : WQD8Q Windows License : OK Windows Automatic Updates : OK ---\\ System Information ~ Processor: x86 Family 15 Model 95 Stepping 3, AuthenticAMD ~ Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 893 MB (21% free) System Restore: Activé (Enable) System drive C: has 74 GB (52%) free of 142 GB ---\\ Logged in mode ~ Computer Name: PC-DE-MIKA ~ User Name: mika ~ All Users Names: mika, Administrateur, ~ Unselected Option: O45,O61,O62,O65,O66,O82,O89 Logged in as Administrator ---\\ Environnement Variables ~ System Unit : C:\ ~ %AppData% : C:\Users\mika\AppData\Roaming\ ~ %Desktop% : C:\Users\mika\Desktop\ ~ %Favorites% : C:\Users\mika\Favorites\ ~ %LocalAppData% : C:\Users\mika\AppData\Local\ ~ %StartMenu% : C:\Users\mika\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\system32\ ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 74 Go of 142 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 7 Go) E:\ CD-ROM drive (Not Inserted) F:\ Floppy drive, Flash card reader, USB Key (Not Inserted) G:\ Floppy drive, Flash card reader, USB Key (Not Inserted) H:\ Floppy drive, Flash card reader, USB Key (Not Inserted) I:\ Floppy drive, Flash card reader, USB Key (Not Inserted) J:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyComputer: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ~ Scan Security Center in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.20/09/2011 - 07:27:36.) -- C:\Windows\Explorer.exe [2926592] [MD5.4B555106290BD117334E9A08761C035A] - (....) (.02/11/2006 - 10:45:37.) -- C:\Windows\system32\rundll32.exe [44544] [MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.20/09/2011 - 22:33:38.) -- C:\Windows\system32\Wininit.exe [96768] [MD5.D3788D91530CFA005BD516189A4C676E] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.12/10/2011 - 03:28:15.) -- C:\Windows\system32\wininet.dll [1126912] [MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.20/09/2011 - 07:28:13.) -- C:\Windows\system32\Winlogon.exe [314368] [MD5.95F5FF73B076576C41740F1A842B9B57] - (....) (.20/09/2011 - 22:34:12.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480] [MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.20/09/2011 - 14:58:27.) -- C:\Windows\system32\drivers\AFD.sys [273408] [MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.20/09/2011 - 07:32:26.) -- C:\Windows\system32\drivers\atapi.sys [19944] [MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.20/09/2011 - 20:28:04.) -- C:\Windows\system32\drivers\Cdfs.sys [70144] [MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/09/2011 - 05:39:17.) -- C:\Windows\system32\drivers\Cdrom.sys [67072] [MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/09/2011 - 15:59:03.) -- C:\Windows\system32\drivers\DfsC.sys [75264] [MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/09/2011 - 05:42:42.) -- C:\Windows\system32\drivers\HDAudBus.sys [561152] [MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.20/09/2011 - 20:49:20.) -- C:\Windows\system32\drivers\i8042prt.sys [54784] [MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.20/09/2011 - 20:56:30.) -- C:\Windows\system32\drivers\IpNat.sys [100864] [MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.20/09/2011 - 14:24:40.) -- C:\Windows\system32\drivers\MRxSmb.sys [106496] [MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.20/09/2011 - 05:45:37.) -- C:\Windows\system32\drivers\netBT.sys [185856] [MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.20/09/2011 - 07:32:49.) -- C:\Windows\system32\drivers\ntfs.sys [1083880] [MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 09:51:30.) -- C:\Windows\system32\drivers\Parport.sys [79360] [MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/09/2011 - 20:56:36.) -- C:\Windows\system32\drivers\Rasl2tp.sys [76288] [MD5.E8BD98D46F2ED77132BA927FCCB47D8B] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.02/11/2006 - 10:03:00.) -- C:\Windows\system32\drivers\rdpdr.sys [242688] [MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.20/09/2011 - 05:45:22.) -- C:\Windows\system32\drivers\smb.sys [66560] [MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.20/09/2011 - 05:45:56.) -- C:\Windows\system32\drivers\tdx.sys [72192] [MD5.147281C01FCB1DF9252DE2A10D5E7093] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/09/2011 - 07:32:55.) -- C:\Windows\system32\drivers\volsnap.sys [226280] ~ Scan Generic Processes in 00mn 03s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/948 ~ Mes musiques (My Musics) : 51/894 ~ Mes Videos (My Videos) : 1/30 ~ Mes Favoris (My Favorites) : 2/24 ~ Mes Documents (My Documents) : 3/502 ~ Mon Bureau (My Desktop) : 2/68 ~ Menu demarrer (Programs) : 7/39 ~ Scan Hidden Files in 00mn 04s ---\\ Processus lancés [MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe [1008184] [PID.4076] [MD5.9A4322EE420D6FACD4D4B1FF6CB856B1] - (.Hewlett-Packard Company - hpsysdrv.) -- C:\hp\support\hpsysdrv.exe [65536] [PID.4092] [MD5.B1361669BDC6ED612C35B7C67ADA2240] - (.OsdMaestro - OsdMaestro main program.) -- C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe [118784] [PID.4180] [MD5.361CD47DC5BD83EE24407903233B0D9A] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\WINDOWS\RtHDVCpl.exe [4874240] [PID.4216] [MD5.72334F906C2E2B002CDD2FF9022FD957] - (.PixArt Imaging Incorporation - Registry Monitor.) -- C:\WINDOWS\PixArt\Pac207\Monitor.exe [319488] [PID.4240] [MD5.8FFCFE3351F51E19B856A2347E19B850] - (.Logitech Inc. - Logitech Webcam Software.) -- C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [205336] [PID.4260] [MD5.9DADCE3EFDF94879303C7BEE4AFDC119] - (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [258512] [PID.4292] [MD5.BF08674925F151BD4537B89A493E3E0C] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe [125952] [PID.4308] [MD5.F9B2C6E8ED637734164F65C69DA8E3E5] - (.Pas de propriétaire - NetgearCUv2 MFC Application.) -- C:\Program Files\NETGEAR\WG111v3\WG111v3.exe [2105344] [PID.4412] [MD5.1BA45CDEF852381DA4A95D056DDB4B48] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [210520] [PID.4428] [MD5.0F4195B9B348DE5CF9B822F81704B20E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\Windows\ehome\ehmsas.exe [37376] [PID.4592] [MD5.E6FF299C72B5E8A4303A41662D6CF2D7] - (...) -- C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe [265240] [PID.5824] [MD5.85E7BB8A103644085C5C665481022E56] - (.Hewlett-Packard Co. - HP CUE Status.) -- C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe [271960] [PID.5840] [MD5.902054D6B4292329F9594FFF24EE02DB] - (...) -- C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe [680984] [PID.6124] [MD5.7CAC10A1C258DFCB5ADE563BAE6D2F15] - (.Hewlett-Packard Company - KBD EXE.) -- C:\hp\kbd\kbd.exe [67128] [PID.6852] [MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120] [PID.7356] [MD5.5E101BF6336D3DEF4A588BF56BB2AA38] - (.Google Inc. - Google Chrome.) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe [1036344] [PID.4276] [MD5.6E3245DF783E58375B3465F03274743E] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696] [PID.7520] [MD5.B93C4070F24E46B0097648C276B5039E] - (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49152] [PID.3964] [MD5.4B555106290BD117334E9A08761C035A] - (...) -- C:\Windows\system32\rundll32.exe [44544] [PID.7336] [MD5.D1A41D53847198EE3B755DB18394C026] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [2210304] [PID.7716] [MD5.2FE4FE6B316836AFE396851EFF6DEA6B] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 187.8.) -- C:\Windows\system32\nvvsvc.exe [211560] [PID.] [MD5.862BB4CBC05D80C5B45BE430E5EF872F] - (.Microsoft Corporation - Service de gestion des licences Microsoft.) -- C:\Windows\system32\SLsvc.exe [3408896] [PID.] [MD5.A0CCA65A17FF3D110C4C63ED1570DAA7] - (.Avira Operations GmbH & Co. KG - Avira Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [86224] [PID.] [MD5.6B4479E48BFFBC52FC97A16DDB3F4526] - (.Avira Operations GmbH & Co. KG - Avira Firewall Service.) -- C:\Program Files\Avira\AntiVir Desktop\avfwsvc.exe [616400] [PID.] [MD5.04972A4491DE1F7F098F3E48AD550D3B] - (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [110032] [PID.] [MD5.F34B35F6F74E28A460749DA11D1117F8] - (.Hewlett-Packard Company - LightScribe Service.) -- c:\Program Files\Common Files\LightScribe\LSSrvc.exe [79136] [PID.] [MD5.794D4B48DFB6E999537C7C3947863463] - (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [1153368] [PID.] [MD5.71D1298CB3B3752121EF7FCE9FBC4FE1] - (.Avira Operations GmbH & Co. KG - Avira Shadow Copy Service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [80336] [PID.] [MD5.FB086757347D788366EBFB5F6F35BE08] - (.Avira Operations GmbH & Co. KG - Avira MailGuard Service.) -- C:\Program Files\Avira\AntiVir Desktop\avmailc.exe [342480] [PID.] [MD5.C3377384082BB2B278895E209B7DBD5A] - (.Avira Operations GmbH & Co. KG - Avira WebGuard Service.) -- C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [463824] [PID.] [MD5.E48B80F6614D4BEFA7768B960FFEF514] - (.Hewlett-Packard - HP Health Check Service.) -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [61440] [PID.] [MD5.5DAF7081A4BB112FA3F1915819330A3E] - (...) -- C:\Program Files\ZHPDiag\pv.exe [61440] [PID.] ~ Scan Processes Running in 00mn 01s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\mika\AppData\Local\Google\Chrome\User Data\Default\Preferences G1 - GCS: Preference [user Data\Default] None G0 - GCSP: Preference [user Data\Default][HomePage] Google G2 - GCE: Preference [user Data\Default] [pbglijbamgmlcpnnpbfjkbdeheejjloj] Shockwave Flash v.10,3,183,7 (Désactivé) ~ Scan Google Browser in 00mn 00s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Users\mika\AppData\Roaming\Mozilla\Firefox\Profiles\6rbqevn2.default\prefs.js C:\Users\mika\AppData\Roaming\Mozilla\Firefox\Profiles\6rbqevn2.default\user.js M3 - MFPP: Plugins - [mika] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [mika] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml M3 - MFPP: Plugins - [mika] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [mika] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [mika] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [mika] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [mika] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\System32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_29 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll P2 - FPN: [HKCU] [@megamedia/Megakey] - (.Megamedia Ltd. - Web browser plugin for Megakey.) -- C:\Users\mika\AppData\Local\Megamedia\Megakey\npMegaPlugin.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\mika\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\mika\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll ~ Scan Firefox Browser in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\system32\ieframe.dll R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 0 ~ Scan IE Browser in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Scan Proxy management in 00mn 00s ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ~ Scan Keys in 00mn 00s ---\\ Redirection du fichier Hosts (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Scan Hosts File in 00mn 00s ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: MegaIeHelperBHO - {77F4E711-789B-447F-9614-96759B2F83C6} . (.Megamedia Ltd. - Web browser plugin for Megakey.) -- C:\Users\mika\AppData\Local\Megamedia\Megakey\MegaIeHelper.dll O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} . (.Megaupload Limited - Mega Manager IE Click Catcher.) -- C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll ~ Scan BHO in 00mn 00s ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe O4 - HKLM\..\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\RunOnce: [Launcher] . (.soft thinks - Launcher.) -- C:\Windows\SMINST\launcher.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll ~ Scan Application in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\(31 non lus) - romera.lnk . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook.lnk . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hotmail - [email protected] . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\La Banque Postale - Le détail de vos opérations.lnk . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Page YouTube de mika34200 - YouTube.lnk . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe O4 - Global Startup: C:\Users\mika\Desktop\Audacity 1.3 Beta (Unicode).lnk . (.The Audacity Team.) -- C:\Program Files\Audacity 1.3 Beta (Unicode)\audacity.exe O4 - Global Startup: C:\Users\mika\Desktop\cac.lnk . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\Desktop\CVitae V4.lnk . (...) -- C:\Program Files\CVitaeV4\CVitae.exe O4 - Global Startup: C:\Users\mika\Desktop\Facebook.lnk . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\Desktop\Free M4a to MP3 Converter.lnk . (.ManiacTools.) -- C:\Program Files\Free M4a to MP3 Converter\m4a_converter.exe O4 - Global Startup: C:\Users\mika\Desktop\HomePlayer.lnk . (...) -- C:\Program Files\HomePlayer\HomePlayer.exe O4 - Global Startup: C:\Users\mika\Desktop\Hotmail.lnk . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\Desktop\JDownloader.lnk . (.AppWork UG (haftungsbeschränkt).) -- C:\Program Files\JDownloader\JDownloaderD3D.exe O4 - Global Startup: C:\Users\mika\Desktop\La Banque Postale - Le détail de vos opérations.lnk . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\Desktop\Project64 1.6.lnk . (...) -- C:\Program Files\Project64 1.6\Project64.exe O4 - Global Startup: C:\Users\mika\Desktop\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe O4 - Global Startup: C:\Users\mika\Desktop\yahoo-mail.lnk . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\(31 non lus) - romera.lnk . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Facebook.lnk . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free M4a to MP3 Converter.lnk . (.ManiacTools.) -- C:\Program Files\Free M4a to MP3 Converter\m4a_converter.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Hotmail - [email protected] . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\La Banque Postale - Le détail de vos opérations.lnk . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Page YouTube de mika34200 - YouTube.lnk . (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Snipping Tool.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\System32\SnippingTool.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe O4 - Global Startup: C:\Users\mika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe ~ Scan Global Startup in 00mn 00s ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: Capture Web Page . (...) -- C:\Users\mika\AppData\Local\Megamedia\Megakey\CaptureWebPage.htm O8 - Extra context menu item: Fetch to Megaupload . (...) -- C:\Users\mika\AppData\Local\Megamedia\Megakey\MegaUpload.htm ~ Scan IE Menu Contextuel in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll ~ Scan Winsock in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{F4DF8505-EA9B-4503-8770-3E45A74A62BD}: DhcpNameServer = 212.27.40.240 212.27.40.241 O17 - HKLM\System\CS1\Services\Tcpip\..\{F4DF8505-EA9B-4503-8770-3E45A74A62BD}: DhcpNameServer = 212.27.40.240 212.27.40.241 O17 - HKLM\System\CS3\Services\Tcpip\..\{F4DF8505-EA9B-4503-8770-3E45A74A62BD}: DhcpNameServer = 212.27.40.240 212.27.40.241 ~ Scan Domain in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\system32\mshtml.dll O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\system32\mshtml.dll O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\system32\mshtml.dll O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll O18 - Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\system32\mshtml.dll O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\system32\mshtml.dll O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll ~ Scan Protocole Additionnel in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\WINDOWS\System32\webcheck.dll ~ Scan SSODL in 00mn 00s ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll ~ Scan STS/SSO in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Avira FireWall (AntiVirFirewallService) . (.Avira Operations GmbH & Co. KG - Avira Firewall Service.) - C:\Program Files\Avira\AntiVir Desktop\avfwsvc.exe O23 - Service: Avira Mail Protection (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Avira MailGuard Service.) - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe O23 - Service: Avira Scheduler (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Avira Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Realtime Protection (AntiVirService) . (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Avira Web Protection (AntiVirWebService) . (.Avira Operations GmbH & Co. KG - Avira WebGuard Service.) - C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 187.8.) - C:\WINDOWS\System32\nvvsvc.exe O23 - Service: SBSD Security Center Service (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe ~ Scan Services in 00mn 00s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Scan Desktop Component in 00mn 00s ---\\ BootExecute (O34) O34 - HKLM BootExecute: (autocheck autochk /p \??\C:) - File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found ~ Scan Keys in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1152011361-215654452-1431131949-1000Core.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1152011361-215654452-1431131949-1000UA.job [MD5.00000000000000000000000000000000] [APT] [1-Click Maintenance] (...) -- C:\Program Files\TuneUp Utilities 2009\OneClickStarter.exe (.not file.) [MD5.7F73B83E2C975B5057D36625FA3D1A71] [APT] [defrag] (.Microsoft Corp..) -- C:\WINDOWS\System32\Defrag.exe [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-1152011361-215654452-1431131949-1000Core] (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Update\GoogleUpdate.exe [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-1152011361-215654452-1431131949-1000UA] (.Google Inc..) -- C:\Users\mika\AppData\Local\Google\Update\GoogleUpdate.exe [MD5.2D141D455A3F1BDAC97A08006ACD7B4B] [APT] [HP Health Check] (.Hewlett-Packard.) -- c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [MD5.2D141D455A3F1BDAC97A08006ACD7B4B] [APT] [HP Health Check Scheduler] (.Hewlett-Packard.) -- C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [MD5.B93C4070F24E46B0097648C276B5039E] [APT] [HP online update program] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe [MD5.6E3245DF783E58375B3465F03274743E] [APT] [Java Update Scheduler] (.Sun Microsystems, Inc..) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [MD5.4F89DD4EA74C66916E15A6E7D74A50B5] [APT] [Java Updater] (.Sun Microsystems, Inc..) -- C:\WINDOWS\System32\jureg.exe [MD5.689C6EA7A17B3AE0F2A0151465EF311E] [APT] [JavaUpdateAdministrator] (.Sun Microsystems, Inc..) -- C:\WINDOWS\System32\jusched.exe [MD5.689C6EA7A17B3AE0F2A0151465EF311E] [APT] [JavaUpdatemika] (.Sun Microsystems, Inc..) -- C:\WINDOWS\System32\jusched.exe [MD5.7F96DA57AA3F5BCE706580C859402B6B] [APT] [RecoveryCD] (...) -- C:\Program Files\Hewlett-Packard\SDP\RemEngine.exe [MD5.7F96DA57AA3F5BCE706580C859402B6B] [APT] [Registration] (...) -- C:\Program Files\Hewlett-Packard\SDP\RemEngine.exe ~ Scan Scheduled Task in 00mn 03s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Utilitaire d'installation du Lecteur Windows Media de Microsoft.) -- C:\Windows\system32\unregmp2.exe O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\system32\ie4uinit.exe O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\system32\iedkcs32.dll O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll O40 - ASIC: Microsoft Windows Media Player 11.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\WINDOWS\System32\wmpdxm.dll O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Windows Media Player.) -- C:\Windows\system32\wmp.dll O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll O40 - ASIC: Macromedia Shockwave Flash - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 9.0 r45.) -- C:\WINDOWS\System32\Macromed\Flash\Flash9c.ocx ~ Scan Active Setup in 00mn 00s ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (avfwot) . (.Avira GmbH - TDI filtering kernel driver.) - C:\Windows\system32\DRIVERS\avfwot.sys O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\Windows\system32\DRIVERS\avipbb.sys O41 - Driver: (avkmgr) . (.Avira GmbH - Avira Manager Driver.) - C:\Windows\system32\DRIVERS\avkmgr.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys O41 - Driver: (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\system32\DRIVERS\dtsoftbus01.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\system32\DRIVERS\i8042prt.sys O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\system32\DRIVERS\kbdclass.sys O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\system32\DRIVERS\mouclass.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\system32\DRIVERS\rasacd.sys O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\system32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys O41 - Driver: (RtlProt) . (.Windows ® Codename Longhorn DDK provider - Realtek Utility I/O Driver.) - C:\Windows\system32\DRIVERS\rtlprot.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\system32\DRIVERS\smb.sys O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\system32\DRIVERS\ssmdrv.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Microsoft Corporation - Winsock2 IFS Layer.) - C:\Windows\system32\drivers\ws2ifsl.sys ~ Scan Drivers in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {A80FA752-C491-4ED9-ABF0-4278563160B2} O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {254C37AA-6B72-4300-84F6-98A82419187E} O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Flash Player ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Reader 8.3.1 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A83000000003} O42 - Logiciel: Audacity 1.3.13 (Unicode) - (.Audacity Team.) [HKLM] -- Audacity 1.3 Beta (Unicode)_is1 O42 - Logiciel: Avira Internet Security 2012 - (.Avira.) [HKLM] -- Avira AntiVir Desktop O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: CVitaeV4 - (.Pas de propriétaire.) [HKCU] -- CVitaeV4 O42 - Logiciel: CameraHelperMsi - (.Logitech.) [HKLM] -- {15634701-BACE-4449-8B25-1567DA8C9FD3} O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite O42 - Logiciel: Free M4a to MP3 Converter 7.0 - (.ManiacTools.com.) [HKLM] -- Free M4a to MP3 Converter_is1 O42 - Logiciel: GIMP 2.6.11 - (.The GIMP Team.) [HKLM] -- WinGimp-2.0_is1 O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {DBEA1034-5882-4A88-8033-81C4EF0CFA29} O42 - Logiciel: HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {0A47BAFF-D4FF-4BD3-96CA-02A22EA62722} O42 - Logiciel: HP Active Support Library 32 bit components - (.Hewlett-Packard.) [HKLM] -- {6D3DB611-D5E8-4E4B-8952-0D3F549F9CC6} O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM] -- {73A43E42-3658-4DD9-8551-FACDA3632538} O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM] -- {AB5E289E-76BF-4251-9F3F-9B763F681AE0} O42 - Logiciel: HP Customer Feedback - (.Hewlett-Packard.) [HKLM] -- {9DBA770F-BF73-4D39-B1DF-6035D95268FC} O42 - Logiciel: HP Customer Participation Program 8.0 - (.HP.) [HKLM] -- HPExtendedCapabilities O42 - Logiciel: HP Deskjet All-In-One Software 8.0 - (.HP.) [HKLM] -- {24557DC0-0839-496f-82F9-C4EB72EFE4FA} O42 - Logiciel: HP Easy Setup - Frontend - (.Hewlett-Packard.) [HKLM] -- {40F7AED3-0C7D-4582-99F6-484A515C73F2} O42 - Logiciel: HP Imaging Device Functions 8.0 - (.HP.) [HKLM] -- HP Imaging Device Functions O42 - Logiciel: HP On-Screen Cap/Num/Scroll Lock Indicator - (.Hewlett-Packard.) [HKLM] -- OsdMaestro O42 - Logiciel: HP Picasso Media Center Add-In - (.HP.) [HKLM] -- {55979C41-7D6A-49CC-B591-64AC1BBE2C8B} O42 - Logiciel: HP Product Assistant - (.Hewlett-Packard.) [HKLM] -- {36FDBE6E-6684-462B-AE98-9A39A1B200CC} O42 - Logiciel: HP Solution Center 8.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3} O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {669D4A35-146B-4314-89F1-1AC3D7B88367} O42 - Logiciel: HPSSupply - (.Nom de votre société.) [HKLM] -- {EB75DE50-5754-4F6F-875D-126EDF8E4CB3} O42 - Logiciel: HomePlayer 1.5.9d - (.HomePlayer.) [HKLM] -- HomePlayer O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595 O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484 O42 - Logiciel: JDownloader 0.9 - (.AppWork GmbH.) [HKLM] -- 5513-1208-7298-9440 O42 - Logiciel: Java 6 Update 29 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216026FF} O42 - Logiciel: Java SE Runtime Environment 6 Update 1 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160010} O42 - Logiciel: LWS Facebook - (.Logitech.) [HKLM] -- {FF167195-9EE4-46C0-8CD7-FBA3457E88AB} O42 - Logiciel: LWS Gallery - (.Logitech.) [HKLM] -- {6F76EC3C-34B1-436E-97FB-48C58D7BEDCD} O42 - Logiciel: LWS Help_main - (.Logitech.) [HKLM] -- {1651216E-E7AD-4250-92A1-FB8ED61391C9} O42 - Logiciel: LWS Launcher - (.Logitech.) [HKLM] -- {83C8FA3C-F4EA-46C4-8392-D3CE353738D6} O42 - Logiciel: LWS Motion Detection - (.Logitech.) [HKLM] -- {71E66D3F-A009-44AB-8784-75E2819BA4BA} O42 - Logiciel: LWS Pictures And Video - (.Logitech.) [HKLM] -- {08610298-29AE-445B-B37D-EFBE05802967} O42 - Logiciel: LWS Twitter - (.Logitech.) [HKLM] -- {174A3B31-4C43-43DD-866F-73C9DB887B48} O42 - Logiciel: LWS Video Mask Maker - (.Logitech.) [HKLM] -- {EED027B7-0DB6-404B-8F45-6DFEE34A0441} O42 - Logiciel: LWS VideoEffects - (.Logitech.) [HKLM] -- {138A4072-9E64-46BD-B5F9-DB2BB395391F} O42 - Logiciel: LWS WLM Plugin - (.Logitech.) [HKLM] -- {9DAEA76B-E50F-4272-A595-0124E826553D} O42 - Logiciel: LWS Webcam Software - (.Logitech.) [HKLM] -- {8937D274-C281-42E4-8CDB-A0B2DF979189} O42 - Logiciel: LWS YouTube Plugin - (.Logitech.) [HKLM] -- {21DF0294-6B9D-4741-AB6F-B2ABFBD2387E} O42 - Logiciel: Logitech Webcam Software - (.Logitech Inc..) [HKLM] -- {D40EB009-0499-459c-A8AF-C9C110766215} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Mega Manager - (.Megaupload Limited.) [HKLM] -- {3B6E3FC6-274C-4B6C-BC85-5C3B15DE18E2} O42 - Logiciel: Megakey - (.Megamedia Ltd..) [HKCU] -- Megakey O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31} O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {A49F249F-0C91-497F-86DF-B2585E8E76B7} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 - (.Microsoft Corporation.) [HKLM] -- {6AFCA4E1-9B78-3640-8F72-A7BF33448200} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475} O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5} O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C} O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack O42 - Logiciel: Mozilla Firefox 6.0.2 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 6.0.2 (x86 fr) O42 - Logiciel: NETGEAR WG111v3 wireless USB 2.0 adapter - (.Nom de votre société.) [HKLM] -- InstallShield_{5396FBD8-8BD7-47F9-92AE-F62F13D5A11D} O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers O42 - Logiciel: Outils de diagnostic du matériel - (.PC-Doctor, Inc..) [HKLM] -- PC-Doctor 5 for Windows O42 - Logiciel: Project64 1.6 - (.Project64.) [HKLM] -- {9559F7CA-5E34-4237-A2D9-D856464AD727} O42 - Logiciel: Python 2.5 - (.Martin v. Löwis.) [HKLM] -- {0A2C5854-557E-48C8-835A-3B9F074BDCAA} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Roxio Activation Module - (.Roxio.) [HKLM] -- {35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0} O42 - Logiciel: Roxio Creator Audio - (.Roxio.) [HKLM] -- {83FFCFC7-88C6-41c6-8752-958A45325C82} O42 - Logiciel: Roxio Creator Basic v9 - (.Roxio.) [HKLM] -- {C8B0680B-CDAE-4809-9F91-387B6DE00F7C} O42 - Logiciel: Roxio Creator Copy - (.Roxio.) [HKLM] -- {619CDD8A-14B6-43a1-AB6C-0F4EE48CE048} O42 - Logiciel: Roxio Creator Data - (.Roxio.) [HKLM] -- {0D397393-9B50-4c52-84D5-77E344289F87} O42 - Logiciel: Roxio Creator EasyArchive - (.Roxio.) [HKLM] -- {11F93B4B-48F0-4A4E-AE77-DFA96A99664B} O42 - Logiciel: Roxio Creator Tools - (.Roxio.) [HKLM] -- {0394CDC8-FABD-4ed8-B104-03393876DFDF} O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA} O42 - Logiciel: Roxio MyDVD Basic v9 - (.Roxio.) [HKLM] -- {938B1CD7-7C60-491E-AA90-1F1888168240} O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478663 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2539636 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2572078 O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2478663 O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2518870 O42 - Logiciel: Skype 3.1 - (.Skype Technologies S.A..) [HKLM] -- Skype_is1 O42 - Logiciel: Skype Plugin Manager - (.Skype Limited.) [HKLM] -- {3D5E5C0A-5B36-4F98-99A7-287F7DBDCE03} O42 - Logiciel: Solution de clavier multimédia amélioré - (.Hewlett-Packard.) [HKLM] -- KBD O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707 O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871 O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2533523 O42 - Logiciel: VLC media player 1.1.11 - (.VideoLAN.) [HKLM] -- VLC media player O42 - Logiciel: Webcam 1200 - (.Logitech.) [HKLM] -- {66D475AE-F18B-43A0-8BAF-61AF4403E339} O42 - Logiciel: WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver O42 - Logiciel: erLT - (.Logitech, Inc..) [HKLM] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C} O42 - Logiciel: muvee autoProducer 6.0 - (.muvee Technologies.) [HKLM] -- {14AF024E-2E3B-49D0-A175-D1C1A06B155A} ---\\ HKCU & HKLM Software Keys [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Software\Megamedia] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\ArcSoft] [HKCU\Software\Audacity] [HKCU\Software\Avira] [HKCU\Software\CeWe Color] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\DT Soft] [HKCU\Software\Google] [HKCU\Software\HP Guide] [HKCU\Software\HP] [HKCU\Software\Hewlett-Packard] [HKCU\Software\JaboSoft] [HKCU\Software\JavaSoft] [HKCU\Software\Leadertech] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\LogiShrd] [HKCU\Software\Logitech] [HKCU\Software\Macromedia] [HKCU\Software\MainConcept] [HKCU\Software\ManiacTools] [HKCU\Software\Megamedia] [HKCU\Software\Megaupload] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\N64 Emulation] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Realtek] [HKCU\Software\RocketDock] [HKCU\Software\Safer Networking Limited] [HKCU\Software\SecuROM] [HKCU\Software\Skype] [HKCU\Software\Softonic] [HKCU\Software\Trolltech] [HKCU\Software\TuneUp] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\ej-technologies] [HKLM\Software\685D6D1C-D73A-4F37-B7E5E53660311DDB] [HKLM\Software\Adobe] [HKLM\Software\Avira] [HKLM\Software\BitdefenderSavedSettings] [HKLM\Software\BrowserChoice] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\DT Soft] [HKLM\Software\Debug] [HKLM\Software\Google] [HKLM\Software\HPS] [HKLM\Software\HP] [HKLM\Software\Hewlett-Packard] [HKLM\Software\ICE] [HKLM\Software\IObit] [HKLM\Software\InstallShield] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\LightScribe] [HKLM\Software\Logitech] [HKLM\Software\Macromedia] [HKLM\Software\Megamedia] [HKLM\Software\Megaupload Limited] [HKLM\Software\Megaupload] [HKLM\Software\MicroVision] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NETGEAR] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\ODBC] [HKLM\Software\PC-Doctor] [HKLM\Software\Piriform] [HKLM\Software\PixArt] [HKLM\Software\Policies] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\Roxio] [HKLM\Software\RtWlan] [HKLM\Software\SRS Labs] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Set8187B] [HKLM\Software\Skype] [HKLM\Software\Software] [HKLM\Software\Sonic] [HKLM\Software\SymDebug] [HKLM\Software\Symantec] [HKLM\Software\TuneUp] [HKLM\Software\VideoLAN] [HKLM\Software\WholeSecurity] [HKLM\Software\Wilson WindowWare] [HKLM\Software\WinRAR] [HKLM\Software\Windows] [HKLM\Software\X-AVCSD] [HKLM\Software\ej-technologies] [HKLM\Software\illiminable] [HKLM\Software\logishrd] [HKLM\Software\mozilla.org] [HKLM\Software\muvee Technologies] ~ Scan Softwares in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 29/09/2011 - 07:25:02 - [123,232] ----D- C:\Program Files\Adobe O43 - CFD: 08/12/2011 - 16:03:54 - [40,482] ----D- C:\Program Files\Audacity 1.3 Beta (Unicode) O43 - CFD: 15/11/2011 - 11:23:36 - [160,316] ----D- C:\Program Files\Avira O43 - CFD: 15/11/2011 - 10:44:20 - [0] ----D- C:\Program Files\Bitdefender O43 - CFD: 21/09/2011 - 07:18:28 - [3,927] ----D- C:\Program Files\CCleaner O43 - CFD: 13/11/2011 - 09:19:24 - [628,662] ----D- C:\Program Files\Common Files O43 - CFD: 13/10/2011 - 09:04:04 - [2,218] ----D- C:\Program Files\CVitaeV4 O43 - CFD: 04/11/2011 - 14:19:12 - [24,373] ----D- C:\Program Files\DAEMON Tools Lite O43 - CFD: 04/11/2011 - 15:29:14 - [0] ----D- C:\Program Files\directx O43 - CFD: 17/09/2007 - 00:49:52 - [49,120] ----D- C:\Program Files\EasyBits O43 - CFD: 20/09/2011 - 09:30:40 - [0] -SH-D- C:\Program Files\Fichiers communs O43 - CFD: 08/12/2011 - 16:08:00 - [3,794] ----D- C:\Program Files\Free M4a to MP3 Converter O43 - CFD: 13/10/2011 - 09:36:20 - [107,888] ----D- C:\Program Files\GIMP-2.0 O43 - CFD: 21/09/2011 - 07:00:54 - [0] ----D- C:\Program Files\Google O43 - CFD: 20/09/2011 - 17:15:36 - [144,657] ----D- C:\Program Files\Hewlett-Packard O43 - CFD: 05/11/2011 - 19:39:42 - [135,712] ----D- C:\Program Files\HomePlayer O43 - CFD: 02/10/2011 - 09:29:40 - [106,037] ----D- C:\Program Files\HP O43 - CFD: 09/11/2011 - 14:56:30 - [51,872] --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD: 12/10/2011 - 22:39:58 - [5,020] ----D- C:\Program Files\Internet Explorer O43 - CFD: 21/10/2011 - 06:45:50 - [163,175] ----D- C:\Program Files\Java O43 - CFD: 09/12/2011 - 16:36:30 - [55,325] ----D- C:\Program Files\JDownloader O43 - CFD: 24/09/2011 - 10:13:36 - [53,481] ----D- C:\Program Files\Logitech O43 - CFD: 04/11/2011 - 08:02:54 - [10,136] ----D- C:\Program Files\Megaupload O43 - CFD: 02/11/2006 - 13:37:36 - [89,117] ----D- C:\Program Files\Microsoft Games O43 - CFD: 16/09/2007 - 15:59:58 - [4,022] ----D- C:\Program Files\Microsoft Office O43 - CFD: 16/09/2007 - 15:59:58 - [143,337] ----D- C:\Program Files\Microsoft Works O43 - CFD: 20/09/2011 - 15:07:24 - [0,015] ----D- C:\Program Files\Microsoft.NET O43 - CFD: 20/09/2011 - 16:36:16 - [94,740] ----D- C:\Program Files\Movie Maker O43 - CFD: 20/09/2011 - 18:57:14 - [34,781] ----D- C:\Program Files\Mozilla Firefox O43 - CFD: 02/11/2006 - 13:37:36 - [0,025] ----D- C:\Program Files\MSBuild O43 - CFD: 20/09/2011 - 11:51:04 - [0] ----D- C:\Program Files\MSXML 4.0 O43 - CFD: 16/09/2007 - 15:56:24 - [154,952] ----D- C:\Program Files\muvee Technologies O43 - CFD: 20/09/2011 - 17:52:10 - [9,295] ----D- C:\Program Files\NETGEAR O43 - CFD: 20/09/2011 - 14:22:34 - [1,162] ----D- C:\Program Files\NVIDIA Corporation O43 - CFD: 16/09/2007 - 16:23:18 - [122,148] ----D- C:\Program Files\PC-Doctor 5 for Windows O43 - CFD: 22/11/2011 - 11:18:36 - [0] ----D- C:\Program Files\Photocite Collection 4.6 O43 - CFD: 25/10/2011 - 08:26:02 - [3,364] ----D- C:\Program Files\Project64 1.6 O43 - CFD: 20/09/2011 - 17:35:06 - [29,723] ----D- C:\Program Files\Realtek O43 - CFD: 02/11/2006 - 13:37:36 - [36,902] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 16/09/2007 - 15:54:58 - [220,188] ----D- C:\Program Files\Roxio O43 - CFD: 16/09/2007 - 16:09:16 - [35,272] ----D- C:\Program Files\Services en ligne O43 - CFD: 23/09/2011 - 17:03:38 - [30,512] ----D- C:\Program Files\Skype O43 - CFD: 10/12/2011 - 09:20:40 - [62,549] ----D- C:\Program Files\Spybot - Search & Destroy O43 - CFD: 11/12/2011 - 11:33:22 - [7,621] ----D- C:\Program Files\TuneUp Utilities 2009 O43 - CFD: 02/11/2006 - 14:01:56 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 21/09/2011 - 07:16:10 - [80,790] ----D- C:\Program Files\VideoLAN O43 - CFD: 23/09/2011 - 17:00:22 - [6,054] ----D- C:\Program Files\Webcam 1200 O43 - CFD: 20/09/2011 - 16:36:16 - [0,970] ----D- C:\Program Files\Windows Calendar O43 - CFD: 20/09/2011 - 16:36:14 - [2,610] ----D- C:\Program Files\Windows Collaboration O43 - CFD: 20/09/2011 - 16:36:04 - [4,283] ----D- C:\Program Files\Windows Defender O43 - CFD: 20/09/2011 - 16:36:14 - [6,756] ----D- C:\Program Files\Windows Journal O43 - CFD: 09/11/2011 - 15:13:20 - [8,694] ----D- C:\Program Files\Windows Mail O43 - CFD: 20/09/2011 - 16:36:14 - [4,290] ----D- C:\Program Files\Windows Media Player O43 - CFD: 20/09/2011 - 09:30:40 - [7,589] ----D- C:\Program Files\Windows NT O43 - CFD: 20/09/2011 - 16:36:12 - [12,902] ----D- C:\Program Files\Windows Photo Gallery O43 - CFD: 22/09/2011 - 02:42:02 - [0,128] ----D- C:\Program Files\Windows Portable Devices O43 - CFD: 20/09/2011 - 16:36:14 - [6,225] ----D- C:\Program Files\Windows Sidebar O43 - CFD: 28/09/2011 - 18:18:26 - [3,693] ----D- C:\Program Files\WinRAR O43 - CFD: 12/12/2011 - 10:14:56 - [9,121] ----D- C:\Program Files\ZHPDiag O43 - CFD: 29/09/2011 - 07:25:20 - [11,954] ----D- C:\Program Files\Common Files\Adobe O43 - CFD: 15/11/2011 - 10:36:04 - [0,963] ----D- C:\Program Files\Common Files\Bitdefender O43 - CFD: 02/10/2011 - 09:28:04 - [0,436] ----D- C:\Program Files\Common Files\Hewlett-Packard O43 - CFD: 16/09/2007 - 15:48:30 - [4,768] ----D- C:\Program Files\Common Files\HP O43 - CFD: 04/11/2011 - 15:20:46 - [9,976] ----D- C:\Program Files\Common Files\InstallShield O43 - CFD: 21/10/2011 - 06:47:26 - [33,535] ----D- C:\Program Files\Common Files\Java O43 - CFD: 16/09/2007 - 15:55:56 - [19,489] ---AD- C:\Program Files\Common Files\LightScribe O43 - CFD: 24/09/2011 - 10:15:00 - [115,523] ----D- C:\Program Files\Common Files\LogiShrd O43 - CFD: 16/09/2007 - 15:55:42 - [0,066] ---AD- C:\Program Files\Common Files\LS Getting Started O43 - CFD: 24/09/2011 - 10:11:04 - [4,999] ----D- C:\Program Files\Common Files\LWS O43 - CFD: 16/09/2007 - 15:59:58 - [224,038] ----D- C:\Program Files\Common Files\microsoft shared O43 - CFD: 16/09/2007 - 15:56:28 - [37,174] ----D- C:\Program Files\Common Files\muvee Technologies O43 - CFD: 16/09/2007 - 15:55:00 - [0,924] ----D- C:\Program Files\Common Files\PX Storage Engine O43 - CFD: 16/09/2007 - 15:54:36 - [109,792] ----D- C:\Program Files\Common Files\Roxio Shared O43 - CFD: 02/11/2006 - 12:18:34 - [0,003] ----D- C:\Program Files\Common Files\Services O43 - CFD: 23/09/2011 - 17:03:38 - [1,744] ----D- C:\Program Files\Common Files\Skype O43 - CFD: 16/09/2007 - 15:54:36 - [4,573] ----D- C:\Program Files\Common Files\Sonic Shared O43 - CFD: 02/11/2006 - 12:18:34 - [39,198] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 16/09/2007 - 15:49:38 - [0,697] ----D- C:\Program Files\Common Files\SureThing Shared O43 - CFD: 13/11/2011 - 11:42:26 - [0,478] ----D- C:\Program Files\Common Files\Symantec Shared O43 - CFD: 09/11/2011 - 15:08:36 - [8,333] ----D- C:\Program Files\Common Files\System O43 - CFD: 29/09/2011 - 07:25:14 - [0,001] ----D- C:\ProgramData\Adobe O43 - CFD: 20/09/2011 - 09:30:40 - [0] -SH-D- C:\ProgramData\Application Data O43 - CFD: 15/11/2011 - 11:23:36 - [28,099] ----D- C:\ProgramData\Avira O43 - CFD: 20/09/2011 - 09:30:40 - [0] -SH-D- C:\ProgramData\Bureau O43 - CFD: 04/11/2011 - 14:18:42 - [0,001] ----D- C:\ProgramData\DAEMON Tools Lite O43 - CFD: 20/09/2011 - 09:30:40 - [0] -SH-D- C:\ProgramData\Documents O43 - CFD: 20/09/2011 - 09:30:40 - [0] -SH-D- C:\ProgramData\Favoris O43 - CFD: 21/09/2011 - 06:56:14 - [0,007] ----D- C:\ProgramData\Google O43 - CFD: 02/10/2011 - 08:38:54 - [0,520] ----D- C:\ProgramData\Hewlett-Packard O43 - CFD: 02/10/2011 - 09:51:30 - [8,786] ----D- C:\ProgramData\HP O43 - CFD: 12/10/2011 - 20:28:50 - [0,009] ----D- C:\ProgramData\HP Product Assistant O43 - CFD: 22/11/2011 - 09:23:26 - [0,490] ----D- C:\ProgramData\hps O43 - CFD: 02/10/2011 - 09:29:38 - [0] ----D- C:\ProgramData\HPSSUPPLY O43 - CFD: 07/11/2011 - 20:10:36 - [0,000] ----D- C:\ProgramData\IObit O43 - CFD: 24/09/2011 - 10:14:32 - [0,000] ----D- C:\ProgramData\LogiShrd O43 - CFD: 24/09/2011 - 10:11:08 - [20,165] ----D- C:\ProgramData\Logitech O43 - CFD: 03/11/2011 - 08:49:38 - [2,682] ----D- C:\ProgramData\Megamedia O43 - CFD: 20/09/2011 - 09:30:40 - [0] -SH-D- C:\ProgramData\Menu Démarrer O43 - CFD: 05/11/2011 - 08:25:58 - [178,553] -S--D- C:\ProgramData\Microsoft O43 - CFD: 20/09/2011 - 09:30:40 - [0] -SH-D- C:\ProgramData\Modèles O43 - CFD: 16/09/2007 - 15:56:20 - [0] ----D- C:\ProgramData\muvee Technologies O43 - CFD: 20/09/2011 - 16:45:26 - [0,224] ----D- C:\ProgramData\NVIDIA O43 - CFD: 16/09/2007 - 16:03:20 - [0,001] ----D- C:\ProgramData\PC-Doctor O43 - CFD: 16/09/2007 - 15:54:40 - [16,318] ----D- C:\ProgramData\Roxio O43 - CFD: 23/09/2011 - 17:03:38 - [2,319] ----D- C:\ProgramData\Skype O43 - CFD: 16/09/2007 - 15:49:20 - [0,001] ----D- C:\ProgramData\Sonic O43 - CFD: 11/12/2011 - 08:26:16 - [0,055] ----D- C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 20/09/2011 - 10:08:02 - [0,000] ----D- C:\ProgramData\Sun O43 - CFD: 13/11/2011 - 11:42:28 - [7,252] ----D- C:\ProgramData\Symantec O43 - CFD: 22/11/2011 - 10:53:58 - [6,917] ----D- C:\ProgramData\tmp O43 - CFD: 10/11/2011 - 09:19:04 - [0,237] ----D- C:\ProgramData\TuneUp Software O43 - CFD: 02/10/2011 - 10:20:54 - [0,000] ----D- C:\ProgramData\WEBREG O43 - CFD: 21/10/2011 - 13:24:22 - [0] ----D- C:\ProgramData\WindowsSearch O43 - CFD: 10/11/2011 - 09:17:06 - [16,306] -SH-D- C:\ProgramData\{55A29068-F2CE-456C-9148-C869879E2357} O43 - CFD: 26/09/2011 - 10:41:20 - [6,477] ----D- C:\Users\mika\AppData\Roaming\Adobe O43 - CFD: 23/09/2011 - 17:38:02 - [0,000] ----D- C:\Users\mika\AppData\Roaming\ArcSoft O43 - CFD: 08/12/2011 - 16:16:32 - [0,002] ----D- C:\Users\mika\AppData\Roaming\Audacity O43 - CFD: 15/11/2011 - 11:26:02 - [0] ----D- C:\Users\mika\AppData\Roaming\Avira O43 - CFD: 13/10/2011 - 09:04:22 - [0,488] ----D- C:\Users\mika\AppData\Roaming\CVitae O43 - CFD: 13/11/2011 - 11:39:16 - [0] ----D- C:\Users\mika\AppData\Roaming\DAEMON Tools Lite O43 - CFD: 20/09/2011 - 12:56:54 - [0] ----D- C:\Users\mika\AppData\Roaming\Google O43 - CFD: 03/12/2011 - 18:42:12 - [0,000] ----D- C:\Users\mika\AppData\Roaming\gtk-2.0 O43 - CFD: 20/09/2011 - 09:40:32 - [0,310] ----D- C:\Users\mika\AppData\Roaming\Hewlett-Packard O43 - CFD: 13/11/2011 - 17:41:44 - [0,218] ----D- C:\Users\mika\AppData\Roaming\HP O43 - CFD: 19/10/2011 - 17:49:12 - [0,006] ----D- C:\Users\mika\AppData\Roaming\HpUpdate O43 - CFD: 20/09/2011 - 09:38:00 - [0] ----D- C:\Users\mika\AppData\Roaming\Identities O43 - CFD: 20/09/2011 - 17:38:06 - [0] ----D- C:\Users\mika\AppData\Roaming\InstallShield O43 - CFD: 03/11/2011 - 10:10:22 - [2,531] ----D- C:\Users\mika\AppData\Roaming\IObit O43 - CFD: 24/09/2011 - 10:13:40 - [0,000] ----D- C:\Users\mika\AppData\Roaming\Leadertech O43 - CFD: 20/09/2011 - 09:37:04 - [2,950] ----D- C:\Users\mika\AppData\Roaming\Macromedia O43 - CFD: 02/11/2006 - 13:37:36 - [0] ----D- C:\Users\mika\AppData\Roaming\Media Center Programs O43 - CFD: 03/11/2011 - 08:50:02 - [0,007] ----D- C:\Users\mika\AppData\Roaming\Megamedia O43 - CFD: 04/11/2011 - 08:08:28 - [0,423] ----D- C:\Users\mika\AppData\Roaming\Megaupload O43 - CFD: 27/10/2011 - 07:23:28 - [2,033] -S--D- C:\Users\mika\AppData\Roaming\Microsoft O43 - CFD: 20/09/2011 - 18:35:28 - [12,372] ----D- C:\Users\mika\AppData\Roaming\Mozilla O43 - CFD: 05/11/2011 - 22:34:46 - [0,002] ----D- C:\Users\mika\AppData\Roaming\PIFreePC O43 - CFD: 13/11/2011 - 09:29:18 - [0] ----D- C:\Users\mika\AppData\Roaming\QuickScan O43 - CFD: 20/11/2011 - 11:54:52 - [0,913] ----D- C:\Users\mika\AppData\Roaming\Skype O43 - CFD: 10/11/2011 - 09:20:04 - [0,109] ----D- C:\Users\mika\AppData\Roaming\TuneUp Software O43 - CFD: 19/11/2011 - 10:55:22 - [0,599] ----D- C:\Users\mika\AppData\Roaming\vlc O43 - CFD: 20/09/2011 - 17:12:16 - [0] ----D- C:\Users\mika\AppData\Roaming\WinBatch O43 - CFD: 29/09/2011 - 07:20:18 - [0,000] ----D- C:\Users\mika\AppData\Roaming\WinRAR O43 - CFD: 29/09/2011 - 07:24:08 - [0,208] ----D- C:\Users\mika\AppData\Local\Adobe O43 - CFD: 13/11/2011 - 11:41:22 - [1,356] ----D- C:\Users\mika\AppData\Local\Akamai O43 - CFD: 20/09/2011 - 09:34:36 - [0] -SH-D- C:\Users\mika\AppData\Local\Application Data O43 - CFD: 13/11/2011 - 19:15:40 - [0,658] ----D- C:\Users\mika\AppData\Local\cache O43 - CFD: 11/11/2011 - 16:20:58 - [0,001] ----D- C:\Users\mika\AppData\Local\Electronic_Arts_Inc O43 - CFD: 25/11/2011 - 17:21:26 - [364,801] ----D- C:\Users\mika\AppData\Local\Google O43 - CFD: 20/09/2011 - 09:40:18 - [0,003] ----D- C:\Users\mika\AppData\Local\Hewlett-Packard O43 - CFD: 20/09/2011 - 09:34:36 - [0] -SH-D- C:\Users\mika\AppData\Local\Historique O43 - CFD: 28/11/2011 - 18:22:18 - [0,198] ----D- C:\Users\mika\AppData\Local\HP O43 - CFD: 24/09/2011 - 10:17:48 - [2,779] ----D- C:\Users\mika\AppData\Local\Logitech® Webcam Software O43 - CFD: 03/11/2011 - 08:49:36 - [9,106] ----D- C:\Users\mika\AppData\Local\Megamedia O43 - CFD: 30/11/2011 - 18:23:30 - [91,845] ----D- C:\Users\mika\AppData\Local\Microsoft O43 - CFD: 20/09/2011 - 18:35:14 - [41,113] ----D- C:\Users\mika\AppData\Local\Mozilla O43 - CFD: 13/11/2011 - 16:27:48 - [0] ----D- C:\Users\mika\AppData\Local\romera.mickael O43 - CFD: 13/11/2011 - 16:27:46 - [0,012] ----D- C:\Users\mika\AppData\Local\SafeBox O43 - CFD: 12/12/2011 - 10:13:34 - [0,204] ----D- C:\Users\mika\AppData\Local\Temp O43 - CFD: 20/09/2011 - 09:34:36 - [0] -SH-D- C:\Users\mika\AppData\Local\Temporary Internet Files O43 - CFD: 23/09/2011 - 17:38:14 - [1,774] ----D- C:\Users\mika\AppData\Local\VirtualStore ~ Scan Program Folder in 00mn 15s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.7C52DF01B0D66C972F04EE6F138659C9] - 12/12/2011 - 03:00:11 ---A- . (...) -- C:\Windows\WindowsUpdate.log [596899] O44 - LFC:[MD5.2A54405D3A8F3D6D1744539A190E3093] - 11/12/2011 - 23:34:55 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.475FBB85956534720858AE72010C0A43] - 08/12/2011 - 13:39:52 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\Windows\system32\drivers\avipbb.sys [134856] O44 - LFC:[MD5.F21C3B0BD8CF9509CBB333001BC6C24D] - 07/12/2011 - 08:23:53 ---A- . (.TuneUp Software - TuneUp Program Statistics Service.) -- C:\Windows\system32\TUProgSt.exe [604416] O44 - LFC:[MD5.13A1F3DBF6212FFAE12C174AEEE14BF6] - 30/11/2011 - 08:24:09 ---A- . (...) -- C:\Windows\system32\PerfStringBackup.INI [1495948] O44 - LFC:[MD5.3616DF0FF852CDD557F3EFCA9DEC8E36] - 30/11/2011 - 08:24:09 ---A- . (...) -- C:\Windows\system32\perfc009.dat [103872] O44 - LFC:[MD5.EB9846FA65AB93ED40D7A732B370623C] - 30/11/2011 - 08:24:09 ---A- . (...) -- C:\Windows\system32\perfc00C.dat [126420] O44 - LFC:[MD5.B21E9062329FD9E77A6416B5641F4BE0] - 30/11/2011 - 08:24:09 ---A- . (...) -- C:\Windows\system32\perfh009.dat [595798] O44 - LFC:[MD5.2AA01CB49AB0C8B4358DEFB2098CF868] - 30/11/2011 - 08:24:09 ---A- . (...) -- C:\Windows\system32\perfh00C.dat [678804] O44 - LFC:[MD5.A36EE93698802CD899F98BFD553D8185] - 15/11/2011 - 11:22:25 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\system32\drivers\ssmdrv.sys [28520] O44 - LFC:[MD5.271CFD1A989209B1964E24D969552BF7] - 15/11/2011 - 11:22:24 ---A- . (.Avira GmbH - Avira Manager Driver.) -- C:\Windows\system32\drivers\avkmgr.sys [36000] O44 - LFC:[MD5.7713E4EB0276702FAA08E52A6E23F2A6] - 15/11/2011 - 11:22:21 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys [74640] O44 - LFC:[MD5.AE0C5D218E815AF8F38670A8C5773E6E] - 15/11/2011 - 11:22:21 ---A- . (.Avira GmbH - TDI filtering kernel driver.) -- C:\Windows\system32\drivers\avfwot.sys [111160] O44 - LFC:[MD5.83D71E1911F235E9C0D2F53D54DF3129] - 15/11/2011 - 11:22:20 ---A- . (.Avira GmbH - Packet filtering kernel driver ( NDIS IM ).) -- C:\Windows\system32\drivers\avfwim.sys [91096] O44 - LFC:[MD5.A5AE11ED5CD26A31895504BA3982B5A4] - 15/11/2011 - 10:32:18 ---A- . (...) -- C:\bdlog.txt [7742] O44 - LFC:[MD5.B26133A2B788F1439EFF3EB0BED19268] - 14/11/2011 - 19:37:39 ---A- . (...) -- C:\Windows\system32\spsys.log [552] O44 - LFC:[MD5.4E8F2BB3A5A87E75C35533723B50E685] - 13/11/2011 - 11:22:06 ---A- . (...) -- C:\Windows\system32\user_gensett.xml [385] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/11/2011 - 11:07:22 --HA- . (...) -- C:\Windows\system32\drivers\Msft_Kernel_avchv_01009.Wdf [0] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/11/2011 - 11:07:21 --HA- . (...) -- C:\Windows\system32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf [0] O44 - LFC:[MD5.933222B19FF3E7EA5F65517EA1F7D57E] - 14/07/2009 - 18:45:07 ---A- . (...) -- C:\Windows\system32\drivers\MsftWdf_Kernel_01009_Inbox_Critical.Wdf [3] ~ Scan Files in 00mn 06s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\system32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\Windows\system32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\system32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\system32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\system32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\system32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\system32\tspkg.dll ~ Scan Keys in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\system32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\system32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\system32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\system32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\system32\Drivers\volmgrx.sys ~ Scan CSB in 00mn 00s ---\\ MountPoints2 Shell Key (O51) O51 - MPSK:{c3de3aab-0601-11e1-995b-0019214511a7}\AutoRun\command. (...) -- J:\Autorun.exe (.not file.) ~ Scan Keys in 00mn 00s ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\system32\iccvid.dll O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ~ Scan Keys in 00mn 00s ---\\ ShareTools MSconfig StartupReg (O53) O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe O53 - SMSR:HKLM\...\startupreg\ehTray.exe [Key] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe O53 - SMSR:HKLM\...\startupreg\Google Update [Key] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\mika\AppData\Local\Google\Update\GoogleUpdate.exe O53 - SMSR:HKLM\...\startupreg\HomePlayer [Key] . (...) -- C:\Program Files\HomePlayer\HomePlayer.exe O53 - SMSR:HKLM\...\startupreg\hpsysdrv [Key] . (.Hewlett-Packard Company - hpsysdrv.) -- C:\hp\support\hpsysdrv.exe O53 - SMSR:HKLM\...\startupreg\KBD [Key] . (...) -- C:\hp\KBD\KbdStub.exe O53 - SMSR:HKLM\...\startupreg\LWS [Key] . (.Logitech Inc. - Logitech Webcam Software.) -- C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe O53 - SMSR:HKLM\...\startupreg\Mega Manager [Key] . (.Megaupload Limited - Mega Manager.) -- C:\Program Files\Megaupload\Mega Manager\MegaManager.exe O53 - SMSR:HKLM\...\startupreg\Megakey [Key] . (.Megamedia Ltd. - Megakey.) -- C:\Users\mika\AppData\Local\Megamedia\Megakey\Megakey.exe O53 - SMSR:HKLM\...\startupreg\MegakeyUpdater [Key] . (.Megamedia Ltd. - Megakey Update.) -- C:\Users\mika\AppData\Local\Megamedia\Megakey\MegakeyUpdater.exe O53 - SMSR:HKLM\...\startupreg\Monitor [Key] . (.PixArt Imaging Incorporation - Registry Monitor.) -- C:\WINDOWS\PixArt\Pac207\Monitor.exe O53 - SMSR:HKLM\...\startupreg\NvCplDaemon [Key] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\system32\NvCpl.dll O53 - SMSR:HKLM\...\startupreg\OsdMaestro [Key] . (.OsdMaestro - OsdMaestro main program.) -- C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe O53 - SMSR:HKLM\...\startupreg\SpybotSD TeaTimer [Key] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe ~ Scan SMSR Keys in 00mn 00s ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=255 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=67108863 O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutorunSetting"=1 ~ Scan Keys in 00mn 00s ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.2EDC5BBAC6C651ECE337BDE8ED97C9FB] - 02/11/2006 - 10:51:38 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [420968] O58 - SDL:[MD5.B84088CA3CDCA97DA44A984C6CE1CCAD] - 02/11/2006 - 10:51:32 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [297576] O58 - SDL:[MD5.7880C67BCCC27C86FD05AA2AFB5EA469] - 02/11/2006 - 10:50:35 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\system32\drivers\adpu160m.sys [98408] O58 - SDL:[MD5.9AE713F8E30EFC2ABCCD84904333DF4D] - 02/11/2006 - 10:51:00 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [147048] O58 - SDL:[MD5.A7B8A3A79D35215D798A300DF49ED23F] - 23/09/2011 - 13:58:56 ---A- . (.Arcsoft, Inc. - Arcsoft® ASPI Shell.) -- C:\Windows\system32\drivers\afc.sys [11776] O58 - SDL:[MD5.90395B64600EBB4552E26E178C94B2E4] - 02/11/2006 - 10:49:20 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [14952] O58 - SDL:[MD5.5F673180268BB1FDB69C99B6619FE379] - 02/11/2006 - 10:50:09 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [67688] O58 - SDL:[MD5.957F7540B5E7F602E44648C7DE5A1C05] - 02/11/2006 - 10:50:10 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [67688] O58 - SDL:[MD5.2ECD68F363CACC2B1EAE7DB5130F2A48] - 13/11/2011 - 15:11:46 ---A- . (.BitDefender - BitDefender AntiVirus Active Virus Control Hypervisor driver.) -- C:\Windows\system32\drivers\avchv.sys [240184] O58 - SDL:[MD5.3215E4C6033F5A52CC82ECEFB85E5B5C] - 13/11/2011 - 10:15:08 ---A- . (.BitDefender - Active Virus Control Kernel Filtering driver.) -- C:\Windows\system32\drivers\avckf.sys [454960] O58 - SDL:[MD5.83D71E1911F235E9C0D2F53D54DF3129] - 15/11/2011 - 11:22:20 ---A- . (.Avira GmbH - Packet filtering kernel driver ( NDIS IM ).) -- C:\Windows\system32\drivers\avfwim.sys [91096] O58 - SDL:[MD5.AE0C5D218E815AF8F38670A8C5773E6E] - 15/11/2011 - 11:22:21 ---A- . (.Avira GmbH - TDI filtering kernel driver.) -- C:\Windows\system32\drivers\avfwot.sys [111160] O58 - SDL:[MD5.7713E4EB0276702FAA08E52A6E23F2A6] - 15/11/2011 - 11:22:21 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys [74640] O58 - SDL:[MD5.475FBB85956534720858AE72010C0A43] - 15/11/2011 - 13:39:52 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\Windows\system32\drivers\avipbb.sys [134856] O58 - SDL:[MD5.271CFD1A989209B1964E24D969552BF7] - 15/11/2011 - 11:22:24 ---A- . (.Avira GmbH - Avira Manager Driver.) -- C:\Windows\system32\drivers\avkmgr.sys [36000] O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568] O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248] O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [71808] O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336] O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160] O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904] O58 - SDL:[MD5.BF79E659C506674C0497CC9C61F1A165] - 16/09/2007 - 02:00:00 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\Windows\system32\drivers\cdr4_xp.sys [2432] O58 - SDL:[MD5.2C41CD49D82D5FD85C72D57B6CA25471] - 16/09/2007 - 02:00:00 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\Windows\system32\drivers\cdralw2k.sys [2560] O58 - SDL:[MD5.45201046C776FFDAF3FC8A0029C581C8] - 02/11/2006 - 10:49:28 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [16488] O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [71272] O58 - SDL:[MD5.C0C7CECCB6C85994C2BC92D58E52D3F2] - 04/11/2011 - 14:19:11 ---A- . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\system32\drivers\dtsoftbus01.sys [232512] O58 - SDL:[MD5.F88FB26547FD2CE6D0A5AF2985892C48] - 02/11/2006 - 08:30:54 ---A- . (.Intel Corporation - Intel® PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\E1G60I32.sys [117760] O58 - SDL:[MD5.E8F3F21A71720C84BCF423B80028359F] - 02/11/2006 - 10:51:34 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [316520] O58 - SDL:[MD5.DF353B401001246853763C4B7AAA6F50] - 02/11/2006 - 10:50:10 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [37480] O58 - SDL:[MD5.C957BF4B5D80B46C5017BF0101E6C906] - 02/11/2006 - 10:51:25 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [232040] O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41576] O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [35944] O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [35944] O58 - SDL:[MD5.A2262FB9F28935E862B4DB46438C80D2] - 02/11/2006 - 10:50:04 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [65640] O58 - SDL:[MD5.30D73327D390F72A62F32C103DAF1D6D] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [65640] O58 - SDL:[MD5.E1E36FEFD45849A95F1AB81DE0159FE3] - 02/11/2006 - 10:50:10 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [65640] O58 - SDL:[MD5.7521C0C58EE91BE90B6CC33E792D10C7] - 24/09/2011 - 10:26:46 ---A- . (.Logitech Inc. - Logitech Kernel Audio Improvement Filter Driver.) -- C:\Windows\system32\drivers\lvrs.sys [315808] O58 - SDL:[MD5.D153B14FC6598EAE8422A2037553ADCE] - 02/11/2006 - 10:49:53 ---A- . (.LSI Logic Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [28776] O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [33384] O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [45160] O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\system32\drivers\ntrigdigi.sys [20608] O58 - SDL:[MD5.E0434DCCF91A47D9D8A785AF83865D7D] - 30/10/2009 - 18:01:10 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 187.80.) -- C:\Windows\system32\drivers\nvlddmkm.sys [9803464] O58 - SDL:[MD5.1EFEC38A852AB35883BFFF3427B92B3F] - 12/08/2010 - 11:07:50 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\system32\drivers\nvmfdx32.sys [292712] O58 - SDL:[MD5.E69E946F80C1C31C53003BFBF50CBB7C] - 02/11/2006 - 10:50:24 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [88680] O58 - SDL:[MD5.9E0BA19A28C498A6D323D065DB76DFFC] - 02/11/2006 - 10:50:13 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [40040] O58 - SDL:[MD5.7EBA6C9A0A295B1559EFB9062E701218] - 20/09/2011 - 10:51:24 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor32.sys [110624] O58 - SDL:[MD5.509039B85C95E6E85CB7A8E3465FB702] - 23/09/2011 - 15:32:08 ---A- . (.PixArt Imaging Inc. - PFC027.) -- C:\Windows\system32\drivers\PFC027.SYS [611584] O58 - SDL:[MD5.390C204CED3785609AB24E9C52054A84] - 16/09/2007 - 18:27:00 ---A- . (.Hewlett-Packard Company - PS2 SYS.) -- C:\Windows\system32\drivers\PS2.sys [19072] O58 - SDL:[MD5.49452BFCEC22F36A7A9B9C2181BC3042] - 16/09/2007 - 02:00:00 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\system32\drivers\pxhelp20.sys [43872] O58 - SDL:[MD5.CCDAC889326317792480C0A67156A1EC] - 02/11/2006 - 10:51:45 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [900712] O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106088] O58 - SDL:[MD5.EDC37B918E583A5A813C53D4F5588255] - 20/09/2011 - 18:19:04 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHDA.sys [2047576] O58 - SDL:[MD5.0D60B8C10A2C5E8DD620B3FDEB1CDA64] - 20/09/2011 - 09:50:50 ---A- . (.Windows ® Codename Longhorn DDK provider - Realtek Utility I/O Driver.) -- C:\Windows\system32\drivers\RtlProt.sys [25896] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.CEDD6F4E7D84E9F98B34B3FE988373AA] - 02/11/2006 - 10:50:10 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [38504] O58 - SDL:[MD5.DF843C528C4F69D12CE41CE462E973A7] - 02/11/2006 - 10:50:16 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [71784] O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 15/11/2011 - 11:22:25 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\system32\drivers\ssmdrv.sys [28520] O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [35944] O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [31848] O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [34920] O58 - SDL:[MD5.3CD4EA35A6221B85DCC25DAA46313F8D] - 02/11/2006 - 10:51:25 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [235112] O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [98408] O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 02/11/2006 - 10:50:45 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\system32\drivers\ulsata2.sys [115816] O58 - SDL:[MD5.FD2E3175FCADA350C7AB4521DCA187EC] - 02/11/2006 - 10:49:30 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17512] O58 - SDL:[MD5.D984439746D42B30FC65A4C3546C6829] - 02/11/2006 - 10:50:41 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\system32\drivers\vsmraid.sys [112232] O58 - SDL:[MD5.D5D2E9F785FDA3C1E021FDE9F218C7F5] - 14/10/2009 - 06:07:40 ---A- . (.NETGEAR Inc. - NETGEAR WG111v3 Wireless-G USB Adapter NDIS Driver.) -- C:\Windows\system32\drivers\wg111v3.sys [348160] O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (...) -- C:\Windows\system32\country.sys [27097] O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768] O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537] O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146] O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952] O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672] O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776] O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536] O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672] ~ Scan Drivers in 00mn 18s ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ~ Scan ADS in 00mn 00s ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - 15/11/2011 - C:\Windows\system32\DRIVERS\avfwot.sys (avfwot) .(.Avira GmbH - TDI filtering kernel driver.) - LEGACY_AVFWOT O64 - Services: CurCS - 15/11/2011 - C:\Windows\system32\DRIVERS\avgntflt.sys (avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT O64 - Services: CurCS - 08/12/2011 - C:\Windows\system32\DRIVERS\avipbb.sys (avipbb) .(.Avira GmbH - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB O64 - Services: CurCS - 15/11/2011 - C:\Windows\system32\DRIVERS\avkmgr.sys (avkmgr) .(.Avira GmbH - Avira Manager Driver.) - LEGACY_AVKMGR O64 - Services: CurCS - 23/04/2007 - C:\Windows\system32\DRIVERS\rtlprot.sys (RtlProt) .(.Windows ® Codename Longhorn DDK provider - Realtek Utility I/O Driver.) - LEGACY_RTLPROT O64 - Services: CurCS - ??\??\???? - C:\Windows\system32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV O64 - Services: CurCS - 15/11/2011 - C:\Windows\system32\DRIVERS\ssmdrv.sys (ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV ~ Scan Services in 00mn 03s ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (. - .) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe ~ Scan Keys in 00mn 00s ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\system32\ie4uinit.exe O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\system32\ie4uinit.exe O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Users\mika\AppData\Local\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\system32\ie4uinit.exe ~ Scan Keys in 00mn 00s ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {42AC5FDA-DB9E-4406-8C39-29AEEB65A2C2} - (Kelkoo) - Voitures Et Motos | Comparer Prix & Acheter Voiture Et Moto - Kelkoo France O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Kelkoo) - Voitures Et Motos | Comparer Prix & Acheter Voiture Et Moto - Kelkoo France O69 - SBI: SearchScopes [HKCU] {E21074E4-DB6A-4F56-8989-5925F5239CFC} - (Yahoo! France) - Yahoo! Search - Recherche Web ~ Scan Keys in 00mn 00s ---\\ Recherche des services démarrés par Svchost (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [24576] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [62976] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\system32\shsvcs.dll [247808] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [40448] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [40448] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [125952] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [576512] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [438784] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [315392] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [90624] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d'accès distant.) -- C:\Windows\System32\rasmans.dll [262144] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [68608] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [47104] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [288256] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows.) -- C:\Windows\System32\tapisrv.dll [242688] O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes Terminal Server.) -- C:\Windows\System32\termsrv.dll [449024] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\system32\wuaueng.dll [1929952] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [758784] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [247808] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [200704] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [19968] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [33280] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [111616] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\system32\mmcss.dll [45056] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [153088] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [57344] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [162304] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [601600] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service de configuration des services Terminal Server.) -- C:\Windows\system32\sessenv.dll [84992] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [81920] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [68096] ~ Scan Services in 00mn 00s ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.3E76016D9604A84EE6C48551966969D8] [sPRF][21/09/2011] (...) -- C:\Users\mika\AppData\Local\d3d9caps.dat [680] [MD5.D41D8CD98F00B204E9800998ECF8427E] [sPRF][10/12/2011] (...) -- C:\Users\mika\AppData\Local\Temp\wdzt45uf.dll [0] [MD5.6C44CAB62A032432959A4E8A7EBB8CF6] [sPRF][19/04/2001] (...) -- C:\Users\mika\Desktop\megasis.exe [598016] ~ Scan Files in 00mn 00s ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "{96E0C91F-D3D3-4053-9219-B7D0ED770544}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\HomePlayer\VLC\vlc.exe O87 - FAEL: "{0D5C8460-8B92-47CE-B223-0A3D74E3091B}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\HomePlayer\VLC\vlc.exe O87 - FAEL: "TCP Query User{A33E8884-3786-4FA7-9161-F1EB0BA4243F}C:\program files\java\jre6\bin\javaw.exe" | In - Private - P6 - TRUE | .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\javaw.exe O87 - FAEL: "UDP Query User{F767C162-CD2B-4C8F-A201-FAC80B348B86}C:\program files\java\jre6\bin\javaw.exe" | In - Private - P17 - TRUE | .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\javaw.exe O87 - FAEL: "TCP Query User{EEB40025-3528-4009-8D23-26568603F112}C:\program files\homeplayer\homeplayer.exe" | In - Public - P6 - TRUE | .(...) -- C:\Program Files\HomePlayer\HomePlayer.exe O87 - FAEL: "UDP Query User{D2B2F18B-5BED-4456-BD35-571C7E8ED4AA}C:\program files\homeplayer\homeplayer.exe" | In - Public - P17 - TRUE | .(...) -- C:\Program Files\HomePlayer\HomePlayer.exe O87 - FAEL: "{80A70976-E3FD-4518-A347-1BA18E31E96C}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\HomePlayer\HomePlayer.exe O87 - FAEL: "{0BDC86CA-7B03-4864-B7F9-0A510F49D3F1}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\HomePlayer\HomePlayer.exe ~ Scan Firewall in 00mn 01s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 15/11/2011 616400 | (AntiVirFirewallService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avfwsvc.exe SR - | Auto 15/11/2011 342480 | (AntiVirMailService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe SR - | Auto 15/11/2011 86224 | (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe SR - | Auto 15/11/2011 110032 | (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe SR - | Auto 15/11/2011 463824 | (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe SR - | Disabled 16/09/2007 61440 | (HP Health Check Service) . (.Hewlett-Packard.) - C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe SS - | Disabled 16/09/2007 73728 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe SR - | Auto 16/09/2007 79136 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe SR - | Auto 20/09/2011 211560 | (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\nvvsvc.exe SS - | Disabled 16/09/2007 887544 | (RoxMediaDB9) . (.Sonic Solutions.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCom\RoxMediaDB9.exe SR - | Auto 25/11/2011 1153368 | (SBSDWSCService) . (.Safer Networking Ltd..) - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe SS - | Demand 16/09/2007 74656 | (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe SR - | Auto 20/09/2011 21504 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\WINDOWS\System32\svchost.exe ~ Scan Services in 00mn 09s ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by mika at 12/12/2011 10:16:04 device: opened successfully user: MBR read successfully Disk trace: called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll storport.sys nvstor32.sys C:\Windows\system32\drivers\nvstor32.sys NVIDIA Corporation NVIDIA nForce SATA Driver 1 ntkrnlpa!IofCallDriver[0x81C52912] -> \Device\Harddisk0\DR0[0x84E168B8] 3 CLASSPNP[0x85FAB8B3] -> ntkrnlpa!IofCallDriver[0x81C52912] -> [0x83687360] 5 acpi[0x806146BC] -> ntkrnlpa!IofCallDriver[0x81C52912] -> \Device\00000056[0x8367A928] kernel: MBR read successfully user & kernel MBR OK ~ Scan MBR in 00mn 02s ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by mika at 12/12/2011 10:16:06 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ Scan MBR in 00mn 04s ---\\ Liste des émulateurs de CD/DVD (Hook du MBR) O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite ~ Scan Emulateurs in 00mn 04s End of the scan (1217 lines in 01mn 35s)(0)