desinstallation de software 1.3 editeur soft2pc

pear · le 13 mai 2010

Bonjour,

Etat général vous fait un diagnostic.

Ensuite vous cliquez sur les différents onglets: autorun, traces, vaccination.

Quand c'est vert , c'est bon, rouge ->à corriger.

Tout est réversible , il n'y a donc pas le moindre risque

Modifié le 13 mai 2010 par pear

cybernay · le 16 octobre 2010

Bonjour cjc77, bonjour pear,

Je suis nouveau, et je suis confronté au mème problème que d'autres sur ce site :

Même programme sur mon ordinateur (Software 1.3 1,48Mo et Soft2PC 1.0 1,48Mo) téléchargé par un de mes enfants probablement

Problèmes apparus:

Des fenêtres web intempestives s'ouvrent pendant l'usage d'internet

Quand on ferme Mozilla et qu'on essaie de le rouvrir un peu plus tard, on obtient un message disant qu'une session est déjà ouverte et il est nécessaire de fermer l'ordinateur et le redémarrer afin de pouvoir rouvrir Mozilla

Ouverture d'onglets intempestifs sous Mozilla et, en période d'inactivité de l'ordinateur, Mozilla se lance tout seul avec ces onglets intempestifs publicitaires.

Je vous poste le rapport ZHP Diag en esperant que vous puissiez m'aider à trouver une parade à ce programme

merci de votre aide

cybernay

Rapport de ZHPDiag v1.22.06 par Nicolas Coolman, Update du 14/10/2010

Run by Christophe at 16/10/2010 13:44:06

Web site : ZHPDiag Outil de diagnostic

Contact : nicolascoolman@yahoo.fr

---\\ Web Browser

MSIE: Internet Explorer v8.0.7600.16385

MFIE: Mozilla Firefox (3.6.10)

---\\ System Information

Platform : Windows 7 Home Premium (6.1.7600)

Processor: Intel64 Family 6 Model 26 Stepping 5, GenuineIntel

Operating System: 64 Bits

Boot mode: Normal (Normal boot)

Total RAM: 6142 MB (50% free)

System drive C: has 136 GB (29%) free of 466 GB

---\\ Logged in mode

Computer Name: PC

User Name: Christophe

All Users Names: LES ENFANTS, HomeGroupUser$, Christophe, Administrateur,

Unselected Option: O1,O45,O61,O62,O65,O82

Logged in as Administrator

---\\ DOS/Devices

A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

C:\ Hard drive, Flash drive, Thumb drive (Free 136 Go of 466 Go)

D:\ CD-ROM drive (Not Inserted)

I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified

---\\ Processus lancés

[MD5.2DC64A3446C8C6E020E781456B46573D] - (.Microsoft Corporation - Tablet PC Input Panel Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe [10240]

[MD5.41242AE90B09411168D2E81BAFC343F8] - (.EoRezo - SoftwareHelper.) -- C:\Users\Christophe\AppData\Roaming\Soft2PC\Software\SoftwareHP.exe [376832]

[MD5.A8E2D2429E86EE910CFF9594F8ADBEC8] - (.MyWebSearch.com - My Web Search Plugin Loader.) -- C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSOEMON.EXE [32849]

[MD5.D19996D4867880C86C605B9865977CAA] - (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [3367224]

[MD5.008F2FE191618133A68F1AC190DC6044] - (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe [328056]

[MD5.4B3228894D9A22FD458A663684CFD8FE] - (.Microsoft® Corporation - Microsoft® Works Calendar Reminder Service.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe [53317]

[MD5.7BA45D25BFDD966B265418DC4735F01E] - (.Microsoft® Corporation - Calendrier Microsoft® Works.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Works Shared\WksCal.exe [135223]

[MD5.95A7E88A5F4EF79C605413F00A945CD3] - (.DeviceVM, Inc. - Browser Configuration Utility.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe [346320]

[MD5.1A5024838562999647A7E1B6B62F91F4] - (.NEC Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496]

[MD5.79BC415B0923D84898FF1B0D40883832] - (.Wireless Service - ANIWZCS2 launcher for Windows..) -- C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe [98304]

[MD5.7A95448039064F2919D825B7C531F248] - (.D-Link Corp. - D-Link WLAN Application.) -- C:\Program Files (x86)\D-Link\DWA-140 revB\AirNCFG.exe [1683456]

[MD5.4D5D968FE6AE6BF94A807F73F7FF6B3D] - (.Brother Industries, Ltd. - Brother Status Monitor Application.) -- C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1159168]

[MD5.6631BB8D95906DECC7E6F7C51F6469E6] - (.Soft2PC - Soft2PC.) -- C:\Program Files (x86)\Soft2PC\soft2pc.exe [638976]

[MD5.36E5CA5DCE72A831A3F7C7ED8AEA83AE] - (.Brother Industries, Ltd. - Control Center 3 Main Program.) -- C:\Program Files (x86)\Brother\ControlCenter3\brccMCtl.exe [872448]

[MD5.910428038DE586C8935EBF3FAC8B09B1] - (.E-Book Systems Inc. - FlipViewer Library.) -- C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe [409296]

[MD5.E3A584DFC135C03A232994A765BE85EF] - (.Applian Technologies, Inc. - FLV Service for Freecorder 4.) -- C:\Program Files (x86)\Freecorder\FLVSrvc.exe [167936]

[MD5.490F9A7948EF661DF32A9F0DC8534284] - (.Brother Industries, Ltd. - Brother Status Monitor (Local).) -- C:\Program Files (x86)\Brother\Brmfcmon\BrMfcmon.exe [221184]

[MD5.BAF503FEDF00C58C123B100CDA7A7D4F] - (.Vuze Inc. - Pas de description.) -- C:\Program Files (x86)\Vuze\Azureus.exe [232896]

[MD5.A26898623D61508C2FA3F5672C11FA5D] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [910296]

[MD5.D61ACEBA5AC21AB4EA814BBC5BF9E5BE] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [14808]

[MD5.CBAC41ADDDD6D5C761CDDD2C015CEF2C] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [580096]

---\\ Page de démarrage de Mozilla Firefox (M0)

M0 - MFSP: prefs.js [Christophe - 69anbxbn.default] Moteur de recherche : Web, Photos, Videos, Voyages, Encyclopédie

---\\ Programmes d'extension pour Mozilla Firefox (M2)

M2 - MFEP: prefs.js [Christophe - 69anbxbn.default\engine@conduit.com] [] Conduit Engine 3.1.0.12 (.Conduit Ltd..)

M2 - MFEP: prefs.js [Christophe - 69anbxbn.default\{1392b8d2-5c05-419f-a8f6-b9f15a596612}] [] Freecorder Toolbar 2.7.1.3 (.Conduit Ltd..)

M2 - MFEP: prefs.js [Christophe - 69anbxbn.default\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}] [] Softonic-Eng7 Toolbar 2.5.8.6 (.Conduit Ltd..)

M2 - MFEP: prefs.js [Christophe - 69anbxbn.default\{73a6fe31-595d-460b-a920-fcc0f8843232}] [noscript] NoScript 2.0.3.3 (.Giorgio Maone.)

M2 - MFEP: prefs.js [Christophe - 69anbxbn.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper 4.8.1 (.Michel Gutierrez.)

M2 - MFEP: prefs.js [Christophe - 69anbxbn.default\{ba14329e-9550-4989-b3f2-9732e92d17cc}] [] Vuze Remote Toolbar 2.7.2.0 (.Conduit Ltd..)

M2 - MFEP: prefs.js [Christophe - 69anbxbn.default\{c3f96da5-7330-4948-b99c-15fdb4035089}] [] NetScop.Net Community Toolbar 3.1.0.12 (.Conduit Ltd..)

M2 - MFEP: prefs.js [Christophe - 69anbxbn.default\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}] [adblockplus] Adblock Plus 1.2.2 (.Wladimir Palant.)

---\\ Plugins de navigateurs Opera/Firefox(P1/P2)

P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll

P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npnul32.dll

P2 - FPN:Firefox Plugin Navigator . (.E-Book Systems. - Opf Launcher.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPOpf.dll

P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll

P2 - FPN:Firefox Plugin Navigator . (.Zylom - Zylom Plugin.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npzylomgamesplayer.dll

P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll

P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_21 for Mozilla browsers.) -- C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll

P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.50917.0.) -- c:\Program Files (x86)\Microsoft Silverlight\4.0.50917.0\npctrl.dll

P2 - FPN: [HKLM] [@mywebsearch.com/Plugin] - (.MyWebSearch.com - My Web Search Plugin Stub for 32-bit Windows.) -- C:\Program Files (x86)\MyWebSearch\bar\2.bin\NPMyWebS.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files (x86)\Google\Update\1.2.183.29\npGoogleOneClick8.dll

P2 - FPN: [HKLM] [@wacom.com/wacom-plugin,version=1.1.0.3] - (.Wacom, Inc. - Wacom Dynamic Link Library.) -- C:\Program Files (x86)\TabletPlugins\npwacom.dll

P2 - FPN: [HKLM] [@zylom.com/ZylomGamesPlayer] - (.Zylom - Zylom Plugin.) -- C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=userinit.exe

F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe

F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe

---\\ Pages de démarrage d'Internet Explorer (R0)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Série TV warner

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

---\\ Pages de recherche d'Internet Explorer (R1)

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk

---\\ Internet Explorer URLSearchHook (R3)

R3 - URLSearchHook: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} . (.Conduit Ltd. - Conduit Toolbar.) (5, 3, 7, 1) -- C:\Program Files (x86)\Softonic-Eng7\tbSoft.dll

R3 - URLSearchHook: Freecorder Toolbar - {1392b8d2-5c05-419f-a8f6-b9f15a596612} . (.Conduit Ltd. - Conduit Toolbar.) (5, 3, 2, 0) -- C:\Program Files (x86)\Freecorder\tbFree.dll

R3 - URLSearchHook: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) (6.1.0.7) -- C:\Program Files (x86)\Vuze_Remote\tbVuze.dll

R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} . (.DeviceVM, Inc. - Browser Configuration Utility Address Bar S.) (1.1.11.0) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll

R3 - URLSearchHook: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} . (.Conduit Ltd. - Conduit Toolbar.) (5, 3, 7, 1) -- C:\Program Files (x86)\Softonic-Eng7\tbSoft.dll

R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} . (.MyWebSearch.com - MyWebSearch Search Assistant.) (1, 2, 0, 1) -- C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSSRCAS.DLL

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\SysWOW64\ieframe.dll

R3 - URLSearchHook: Freecorder Toolbar - {1392b8d2-5c05-419f-a8f6-b9f15a596612} . (.Conduit Ltd. - Conduit Toolbar.) (5, 3, 2, 0) -- C:\Program Files (x86)\Freecorder\tbFree.dll

R3 - URLSearchHook: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) (6.1.0.7) -- C:\Program Files (x86)\Vuze_Remote\tbVuze.dll

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} . (.MyWebSearch.com - MyWebSearch Search Assistant.) -- C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSSRCAS.DLL

O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} . (.MyWebSearch.com - My Web Search Bar.) -- C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSBAR.DLL

O2 - BHO: Freecorder Toolbar - {1392b8d2-5c05-419f-a8f6-b9f15a596612} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\Freecorder\tbFree.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll

O2 - BHO: SOFT2PCBHO - {3475D2C4-BBD1-4255-A70D-4125A4D30956} . (.Soft2PC - ....) -- C:\Program Files (x86)\Soft2PC\soft2pcBHO.dll

O2 - BHO: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\Softonic-Eng7\tbSoft.dll

O2 - BHO: FlpLauncher Class - {4401FDC3-7996-4774-8D2B-C1AE9CD6CC25} . (.E-Book Systems Inc. - FlpLaunch Module.) -- C:\PROGRA~2\E-BOOK~1\FLIPVI~1\fvbho140.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\Vuze_Remote\tbVuze.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\Softonic-Eng7\tbSoft.dll

O3 - Toolbar: My Web Search - {07B18EA9-A523-4961-B6BB-170DE4475CCA} . (.MyWebSearch.com - My Web Search Bar.) -- C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSBAR.DLL

O3 - Toolbar: Freecorder Toolbar - {1392b8d2-5c05-419f-a8f6-b9f15a596612} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\Freecorder\tbFree.dll

O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} . (.BitDefender S.R.L. - BitDefender Antiphishing Toolbar.) -- C:\Program Files\BitDefender\BitDefender 2011\Antispam32\IEToolbar.dll

O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\Vuze_Remote\tbVuze.dll

O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll

---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [bCU] . (.DeviceVM, Inc. - Browser Configuration Utility.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe

O4 - HKLM\..\Run: [JMB36X IDE Setup] . (.Pas de propriétaire - Pas de description.) -- C:\Windows\RaidTool\xInsIDE.exe

O4 - HKLM\..\Run: [NUSB3MON] . (.NEC Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

O4 - HKLM\..\Run: [ANIWZCS2Service] . (.Wireless Service - ANIWZCS2 launcher for Windows..) -- C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe

O4 - HKLM\..\Run: [D-Link D-Link Wireless N DWA-140] . (.D-Link Corp. - D-Link WLAN Application.) -- C:\Program Files (x86)\D-Link\DWA-140 revB\AirNCFG.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKLM\..\Run: [brMfcWnd] . (.Brother Industries, Ltd. - Brother Status Monitor Application.) -- C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe

O4 - HKLM\..\Run: [ControlCenter3] . (.Brother Industries, Ltd. - ControlCenter Program.) -- C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe

O4 - HKLM\..\Run: [soft2PC] . (.Soft2PC - Soft2PC.) -- C:\Program Files (x86)\Soft2PC\soft2pc.exe

O4 - HKLM\..\Run: [startCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

O4 - HKLM\..\Run: [NWEReboot] Clé orpheline

O4 - HKLM\..\Run: [MyWebSearch Email Plugin] . (.MyWebSearch.com - My Web Search Plugin Loader.) -- C:\PROGRA~2\MYWEBS~1\bar\2.bin\mwsoemon.exe

O4 - HKLM\..\Run: [My Web Search Bar Search Scope Monitor] . (.MyWebSearch.com - MyWebSearch SearchScope Monitor.) -- C:\PROGRA~2\MYWEBS~1\bar\2.bin\m3SrchMn.exe

O4 - HKLM\..\Run: [FlipViewer Library] . (.E-Book Systems Inc. - FlipViewer Library.) -- C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe

O4 - HKLM\..\Run: [Freecorder FLV Service] . (.Applian Technologies, Inc. - FLV Service for Freecorder 4.) -- C:\Program Files (x86)\Freecorder\FLVSrvc.exe

O4 - HKLM\..\Run: [bitDefender Antiphishing Helper] . (.BitDefender S.R.L. - IEShow Application.) -- C:\Program Files\BitDefender\BitDefender 2011\Antispam32\ieshow.exe

O4 - HKLM\..\RunOnce: [Helper] . (.EoRezo - SoftwareHelper.) -- C:\Users\Christophe\AppData\Roaming\Soft2PC\Software\SoftwareHP.exe

O4 - HKCU\..\Run: [MyWebSearch Email Plugin] . (.MyWebSearch.com - My Web Search Plugin Loader.) -- C:\PROGRA~2\MYWEBS~1\bar\2.bin\mwsoemon.exe

O4 - HKCU\..\Run: [KiesTrayAgent] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe

O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe

O4 - HKLM\..\Wow6432Node\Run: [bCU] . (.DeviceVM, Inc. - Browser Configuration Utility.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe

O4 - HKLM\..\Wow6432Node\Run: [JMB36X IDE Setup] . (.Pas de propriétaire - Pas de description.) -- C:\Windows\RaidTool\xInsIDE.exe

O4 - HKLM\..\Wow6432Node\Run: [NUSB3MON] . (.NEC Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

O4 - HKLM\..\Wow6432Node\Run: [ANIWZCS2Service] . (.Wireless Service - ANIWZCS2 launcher for Windows..) -- C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe

O4 - HKLM\..\Wow6432Node\Run: [D-Link D-Link Wireless N DWA-140] . (.D-Link Corp. - D-Link WLAN Application.) -- C:\Program Files (x86)\D-Link\DWA-140 revB\AirNCFG.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKLM\..\Wow6432Node\Run: [brMfcWnd] . (.Brother Industries, Ltd. - Brother Status Monitor Application.) -- C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe

O4 - HKLM\..\Wow6432Node\Run: [ControlCenter3] . (.Brother Industries, Ltd. - ControlCenter Program.) -- C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe

O4 - HKLM\..\Wow6432Node\Run: [soft2PC] . (.Soft2PC - Soft2PC.) -- C:\Program Files (x86)\Soft2PC\soft2pc.exe

O4 - HKLM\..\Wow6432Node\Run: [startCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

O4 - HKLM\..\Wow6432Node\Run: [NWEReboot] Clé orpheline

O4 - HKLM\..\Wow6432Node\Run: [MyWebSearch Email Plugin] . (.MyWebSearch.com - My Web Search Plugin Loader.) -- C:\PROGRA~2\MYWEBS~1\bar\2.bin\mwsoemon.exe

O4 - HKLM\..\Wow6432Node\Run: [My Web Search Bar Search Scope Monitor] . (.MyWebSearch.com - MyWebSearch SearchScope Monitor.) -- C:\PROGRA~2\MYWEBS~1\bar\2.bin\m3SrchMn.exe

O4 - HKLM\..\Wow6432Node\Run: [FlipViewer Library] . (.E-Book Systems Inc. - FlipViewer Library.) -- C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe

O4 - HKLM\..\Wow6432Node\Run: [Freecorder FLV Service] . (.Applian Technologies, Inc. - FLV Service for Freecorder 4.) -- C:\Program Files (x86)\Freecorder\FLVSrvc.exe

O4 - HKLM\..\Wow6432Node\Run: [bitDefender Antiphishing Helper] . (.BitDefender S.R.L. - IEShow Application.) -- C:\Program Files\BitDefender\BitDefender 2011\Antispam32\ieshow.exe

O4 - HKLM\..\Wow6432Node\RunOnce: [Helper] . (.EoRezo - SoftwareHelper.) -- C:\Users\Christophe\AppData\Roaming\Soft2PC\Software\SoftwareHP.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-21-3254377070-2731850599-2222456915-1000\..\Run: [MyWebSearch Email Plugin] . (.MyWebSearch.com - My Web Search Plugin Loader.) -- C:\PROGRA~2\MYWEBS~1\bar\2.bin\mwsoemon.exe

O4 - HKUS\S-1-5-21-3254377070-2731850599-2222456915-1000\..\Run: [KiesTrayAgent] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe

O4 - HKUS\S-1-5-21-3254377070-2731850599-2222456915-1000\..\Run: [uTorrent] . (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)

O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Rappels du Calendrier Microsoft Works.lnk . (.Microsoft® Corporation.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe

---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Documents And Settings\Christophe\Desktop\Battlefield 1942 The Road To Rome.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\EA GAMES\Battlefield 1942\BF1942.exe

O4 - Global Startup: C:\Documents And Settings\Christophe\Desktop\Call of Duty® 4 - Modern Warfare campagne solo.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3sp.exe

O4 - Global Startup: C:\Documents And Settings\Christophe\Desktop\Call of Duty® 4 - Modern Warfare Multijoueur.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe

O4 - Global Startup: C:\Documents And Settings\Christophe\Desktop\ControlCenter3.lnk . (.Brother Industries, Ltd..) -- C:\Program Files (x86)\Brother\ControlCenter3\BrCtrCen.exe

O4 - Global Startup: C:\Documents And Settings\Christophe\Desktop\FourCC Changer.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\K-Lite Codec Pack\Tools\fourcc.exe

O4 - Global Startup: C:\Documents And Settings\Christophe\Desktop\Helicon 3D Viewer.lnk . (.Helicon Soft Ltd..) -- C:\Program Files (x86)\Helicon Software\Helicon Focus\Helicon3DViewer.exe

O4 - Global Startup: C:\Documents And Settings\Christophe\Desktop\Helicon Focus.lnk . (.Helicon Soft Ltd..) -- C:\Program Files (x86)\Helicon Software\Helicon Focus\HeliconFocus.exe

O4 - Global Startup: C:\Documents And Settings\Christophe\Desktop\IZArc.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\IZArc\IZArc.exe

O4 - Global Startup: C:\Documents And Settings\Christophe\Desktop\Mediathek Premium 6.6.lnk . (.Pas de propriétaire.) -- C:\Users\Christophe\AppData\Roaming\Microsoft\Installer\{3870151E-5895-4A54-9B44-EC75767E27BE}\_55b9b65.exe

O4 - Global Startup: C:\Documents And Settings\Christophe\Desktop\SnapTouch.lnk . (.AccentSoft Team.) -- C:\Program Files (x86)\SnapTouch\SnapTouch.exe

O4 - Global Startup: C:\Documents And Settings\Christophe\Desktop\TriloBase.lnk . (.Danny Alexandre.) -- C:\Users\Public\TriloBase_70\TriloBase.exe

O4 - Global Startup: C:\Documents And Settings\Christophe\Desktop\Vuze Downloads - Raccourci.lnk . (.Pas de propriétaire.) -- C:\Users\Christophe\Documents\Vuze Downloads

O4 - Global Startup: C:\Documents And Settings\Christophe\Desktop\µTorrent.lnk . (.BitTorrent, Inc..) -- C:\Program Files (x86)\uTorrent\uTorrent.exe

O4 - Global Startup: C:\Users\Christophe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\Christophe\Desktop\Battlefield 1942 The Road To Rome.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\EA GAMES\Battlefield 1942\BF1942.exe

O4 - Global Startup: C:\Users\Christophe\Desktop\Call of Duty® 4 - Modern Warfare campagne solo.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3sp.exe

O4 - Global Startup: C:\Users\Christophe\Desktop\Call of Duty® 4 - Modern Warfare Multijoueur.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe

O4 - Global Startup: C:\Users\Christophe\Desktop\ControlCenter3.lnk . (.Brother Industries, Ltd..) -- C:\Program Files (x86)\Brother\ControlCenter3\BrCtrCen.exe

O4 - Global Startup: C:\Users\Christophe\Desktop\FourCC Changer.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\K-Lite Codec Pack\Tools\fourcc.exe

O4 - Global Startup: C:\Users\Christophe\Desktop\Helicon 3D Viewer.lnk . (.Helicon Soft Ltd..) -- C:\Program Files (x86)\Helicon Software\Helicon Focus\Helicon3DViewer.exe

O4 - Global Startup: C:\Users\Christophe\Desktop\Helicon Focus.lnk . (.Helicon Soft Ltd..) -- C:\Program Files (x86)\Helicon Software\Helicon Focus\HeliconFocus.exe

O4 - Global Startup: C:\Users\Christophe\Desktop\IZArc.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\IZArc\IZArc.exe

O4 - Global Startup: C:\Users\Christophe\Desktop\Mediathek Premium 6.6.lnk . (.Pas de propriétaire.) -- C:\Users\Christophe\AppData\Roaming\Microsoft\Installer\{3870151E-5895-4A54-9B44-EC75767E27BE}\_55b9b65.exe

O4 - Global Startup: C:\Users\Christophe\Desktop\SnapTouch.lnk . (.AccentSoft Team.) -- C:\Program Files (x86)\SnapTouch\SnapTouch.exe

O4 - Global Startup: C:\Users\Christophe\Desktop\TriloBase.lnk . (.Danny Alexandre.) -- C:\Users\Public\TriloBase_70\TriloBase.exe

O4 - Global Startup: C:\Users\Christophe\Desktop\Vuze Downloads - Raccourci.lnk . (.Pas de propriétaire.) -- C:\Users\Christophe\Documents\Vuze Downloads

O4 - Global Startup: C:\Users\Christophe\Desktop\µTorrent.lnk . (.BitTorrent, Inc..) -- C:\Program Files (x86)\uTorrent\uTorrent.exe

O4 - Global Startup: C:\Users\Christophe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\Christophe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O4 - Global Startup: C:\Users\Christophe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - Clé orpheline

O4 - Global Startup: C:\Users\Christophe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk . (.Vuze Inc..) -- C:\Program Files (x86)\Vuze\Azureus.exe

O4 - Global Startup: C:\Users\Christophe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - Clé orpheline

O4 - Global Startup: C:\Users\Christophe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk . (.BitTorrent, Inc..) -- C:\Program Files (x86)\uTorrent\uTorrent.exe

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: &Search - (.not file.) - http:\\edits.mywebsearch.com\toolbaredits\menusearch.jhtml?s=100000343&p=ZKfox000&si=&a=6gXLOhBG42IeWL.Xgmiwsw&n=2010062011

O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} . (.not file.) - (.not file.)

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab

O16 - DPF: {814EA0DA-E0D9-4AA4-833C-A1A6D38E79E9} (DASWebDownload Class) - http://das.microsoft.com/activate/cab/x86/i486/NTANSI/retail/DASAct.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{6463C1A3-31EC-4A65-94C7-0FB7758FF4D4}: NameServer = 188.121.241.253 188.121.241.254

O17 - HKLM\System\CS1\Services\Tcpip\..\{6463C1A3-31EC-4A65-94C7-0FB7758FF4D4}: NameServer = 188.121.241.253 188.121.241.254

O17 - HKLM\System\CCS\Services\Tcpip\..\{6FBA009D-D47C-488B-8C6A-390C7C3BDE5C}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{6FBA009D-D47C-488B-8C6A-390C7C3BDE5C}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{6FBA009D-D47C-488B-8C6A-390C7C3BDE5C}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: (AMD External Events Utility) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\atiesrxx.exe (.not file.)

O23 - Service: ANIWConn Service (ANIWConnService) . (.Pas de propriétaire - ANIWConnService.) - C:\Windows\system32\ANIWConnService.exe

O23 - Service: Browser Configuration Utility Service (BCUService) . (.DeviceVM, Inc. - Browser Configuration Utility Auto-recovery.) - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe

O23 - Service: Device Error Recovery Service (dgdersvc) . (.Devguru Co., Ltd. - Device Error Recovery SDK(x86).) - C:\Windows\system32\dgdersvc.exe

O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) . (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe

O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: JMB36X (JMB36X) . (.Pas de propriétaire - Pas de description.) - C:\Windows\SysWOW64\XSrvSetup.exe

O23 - Service: My Web Search Service (MyWebSearchService) . (.MyWebSearch.com - My Web Search Bar.) - C:\PROGRA~2\MYWEBS~1\bar\2.bin\mwssvc.exe

O23 - Service: NMSAccess (NMSAccess) . (.Pas de propriétaire - Pas de description.) - C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe

O23 - Service: PnkBstrA (PnkBstrA) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\PnkBstrA.exe

O23 - Service: Protexis Licensing V2 (PSI_SVC_2) . (.Protexis Inc. - PsiService PsiService.) - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe

O23 - Service: C:\Windows\system32\samsrv.dll (SamSs) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\lsass.exe (.not file.)

O23 - Service: C:\Windows\system32\spoolsv.exe (Spooler) . (.Pas de propriétaire - Pas de description.) - C:\Windows\System32\spoolsv.exe (.not file.)

O23 - Service: C:\Windows\system32\sppsvc.exe (sppsvc) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\sppsvc.exe (.not file.)

O23 - Service: TabletServicePen (TabletServicePen) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\Pen_Tablet.exe (.not file.)

O23 - Service: BitDefender Desktop Update Service (Updatesrv) . (.BitDefender S.R.L. - BitDefender Update Service.) - C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe

O23 - Service: BitDefender Virus Shield (VSSERV) . (.BitDefender S.R.L. - BitDefender Security Service.) - C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe

O23 - Service: WTouch Service (WTouchService) . (.Wacom Technology, Corp. - Touch Service.) - C:\Program Files\WTouch\WTouchService.exe

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - (.not file.)

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

---\\ Composants installés (ActiveSetup Installed Components) (O40)

O40 - ASIC: Personnalisation du navigateur - >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS . (.Pas de propriétaire - Pas de description.) -- Rundll32 IEDKCS32.dll

O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\regutils.dll

O40 - ASIC: Windows Media Player 5.2 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Pas de propriétaire - Pas de description.) -- C:\Windows\INF\mswmp.inf

O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- %ProgramFiles(x86)%\Windows Mail\WinMail.exe

O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\Windows\SysWow64\Macromed\Flash\Flash10e.ocx

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: bdfwfpf (bdfwfpf) . (.BitDefender - BitDefender Firewall WFP Filter Driver.) - C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys

O41 - Driver: (blbdrive) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\blbdrive.sys

O41 - Driver: Pilote de CD-ROM (cdrom) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\cdrom.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\Drivers\dfsc.sys

O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\discache.sys

O41 - Driver: Pilote BIOS de gestion de systèmes Microsoft (mssmbios) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\mssmbios.sys

O41 - Driver: NetBIOS Interface (NetBIOS) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\netbios.sys

O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\netbt.sys

O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\pacer.sys

O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\rdbss.sys

O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\RDPCDD.sys

O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\rdprefmp.sys

O41 - Driver: Pilote de périphérique terminal (TermDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: WFP Lightweight Filter (WfpLwf) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\wfplwf.sys

---\\ Logiciels installés (O42)

O42 - Logiciel: 7-Zip 4.65 - (.Pas de propriétaire.) [HKLM] -- 7-Zip

O42 - Logiciel: AMD DnD V1.0.19 - (.AMD.) [HKLM] -- {87BB78C4-F36D-4D93-A7C7-F80F18219848}

O42 - Logiciel: ANIWZCS2 Service - (.Pas de propriétaire.) [HKLM] -- {4C590030-7469-453E-8589-D15DA9D03F52}

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {B194272D-1F92-46DF-99EB-8D5CE91CB4EC}

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin

O42 - Logiciel: Adobe Reader 9.3.1 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A93000000001}

O42 - Logiciel: ArtRage 2 Starter Edition - (.Ambient Design.) [HKLM] -- {016884F6-765D-4482-AE07-34C930718B5C}

O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}

O42 - Logiciel: Bamboo - (.Wacom Technology Corp..) [HKLM] -- Pen Tablet Driver

O42 - Logiciel: Battlefield 1942: Secret Weapons of WWII - (.Pas de propriétaire.) [HKLM] -- {B73B4A99-4173-4747-BBEC-0F05E966F9D2}

O42 - Logiciel: Battlefield 1942: The Road To Rome - (.Pas de propriétaire.) [HKLM] -- {D057AA08-8CBF-42E3-9EAB-23B8FED1C279}

O42 - Logiciel: Brother MFL-Pro Suite MFC-5860CN - (.Brother Industries, Ltd..) [HKLM] -- {7E48AFD3-F28A-4E54-99A8-9F3A4A27DBC4}

O42 - Logiciel: Browser Configuration Utility - (.DeviceVM.) [HKLM] -- {5B363E1D-8C36-4458-BAE4-D5081999E094}

O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1

O42 - Logiciel: Call of Duty® 4 - Modern Warfare - (.Activision.) [HKLM] -- COD4_is1

O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM] -- {8D7133DE-27D2-47E5-B248-4180278D32AA}

O42 - Logiciel: Collection Manager 6.1 - (.Mourad AIT SAID.) [HKLM] -- Collection Manager_is1

O42 - Logiciel: Complément Microsoft Word de Works Suite - (.Microsoft Corporation.) [HKLM] -- {0BE4B058-700D-11D3-B999-00C04F328D26}

O42 - Logiciel: Conduit Engine - (.Conduit Ltd..) [HKLM] -- conduitEngine

O42 - Logiciel: Content - (.Your Company Name.) [HKLM] -- {B369483E-0728-405C-8F8C-3427B263B01F}

O42 - Logiciel: Corel Painter 11 - (.Corel Corporation.) [HKLM] -- _{5B51BB5F-4E7C-4275-A653-E98534E9C1D2}

O42 - Logiciel: Corel Painter 11 - (.Corel Corporation.) [HKLM] -- {28F8F8F0-C278-454A-9507-46B344AAD188}

O42 - Logiciel: Corel Painter 11 - ICA - (.Corel Corporation.) [HKLM] -- {5B51BB5F-4E7C-4275-A653-E98534E9C1D2}

O42 - Logiciel: Corel Painter 11 - IPM - (.Corel Corporation.) [HKLM] -- {7EC69F77-5494-4E1F-8BC6-956DAA5A91F2}

O42 - Logiciel: D-Link Wireless N DWA-140 - (.D-Link.) [HKLM] -- {D7D2F494-89E3-42ED-8A2B-75BDD9B464CB}

O42 - Logiciel: EA Download Manager - (.Electronic Arts, Inc..) [HKLM] -- EA Download Manager

O42 - Logiciel: EA Download Manager UI - (.Electronic Arts.) [HKLM] -- com.ea.Vault.919CACB699904AC5D41B606703500DD39747C02D.1

O42 - Logiciel: EA Download Manager UI - (.Electronic Arts.) [HKLM] -- {E17141A6-211D-5854-61D9-69827A430D82}

O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM] -- {34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}

O42 - Logiciel: FlipViewer 4.6 - (.E-Book Systems Inc..) [HKLM] -- {A6BF8BCF-6293-44E8-80AB-037EF72DC353}

O42 - Logiciel: FlySuite v.1.1 - (.Natium S.A..) [HKLM] -- FlySuite

O42 - Logiciel: Freecorder 4.01 Application - (.Applian Technologies Inc..) [HKLM] -- Freecorder4.01

O42 - Logiciel: Freecorder Toolbar - (.Pas de propriétaire.) [HKLM] -- Freecorder Toolbar

O42 - Logiciel: Gigabyte Raid Cinfigurer - (.GIGABYTE Technologies, Inc..) [HKLM] -- {3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {4286E640-B5FB-11DF-AC4B-005056C00008}

O42 - Logiciel: Helicon Focus 5.1.2 - (.Helicon Soft Ltd..) [HKLM] -- Helicon Focus_is1

O42 - Logiciel: HotPixels Eliminator for Digital Cameras 1.0 - (.Pas de propriétaire.) [HKLM] -- HotPixels Eliminator for Digital Cameras 1.0_is1

O42 - Logiciel: HydraVision - (.ATI Technologies Inc..) [HKLM] -- {E7951681-CCC7-24AA-7BFE-9647F477DCFF}

O42 - Logiciel: IZArc 4.1.2 - (.Ivan Zahariev.) [HKLM] -- {97C82B44-D408-4F14-9252-47FC1636D23E}_is1

O42 - Logiciel: IconHandler 32 bit - (.Corel Corporation.) [HKLM] -- {1AED4ABF-0852-4B3F-9F87-00CF88F25CE0}

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {46ABBC54-1872-4AA3-95E2-F2C063A63F31}

O42 - Logiciel: Java 6 Update 21 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216019FF}

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5}

O42 - Logiciel: K-Lite Mega Codec Pack 3.5.3 - (.Pas de propriétaire.) [HKLM] -- KLiteCodecPack_is1

O42 - Logiciel: Kies - (.Nom de votre société.) [HKLM] -- InstallShield_{D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}

O42 - Logiciel: Kies - (.Nom de votre société.) [HKLM] -- {D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}

O42 - Logiciel: Knoll Light Factory EZ Studio - (.Pas de propriétaire.) [HKLM] -- Knoll Light Factory EZ Studio

O42 - Logiciel: Langauge - (.Your Company Name.) [HKLM] -- {840BF2FE-033D-437C-89D1-AAA206BA13B6}

O42 - Logiciel: Language - Support Files - (.Your Company Name.) [HKLM] -- {F0BA9A89-99BE-4BFB-8837-9299010FB216}

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: Manga Studio EX Demo 4.0 - (.Smith Micro.) [HKLM] -- {EEE6B5FD-EA10-42F0-B15E-620DE927B53C}

O42 - Logiciel: Mediathek 6.6 FR - (.http://www.faucourt.com.) [HKLM] -- {3870151E-5895-4A54-9B44-EC75767E27BE}

O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}

O42 - Logiciel: Microsoft Office Excel Viewer 2003 - (.Microsoft Corporation.) [HKLM] -- {9084040C-6000-11D3-8CFE-0150048383C9}

O42 - Logiciel: Microsoft Office Word Viewer 2003 - (.Microsoft Corporation.) [HKLM] -- {9085040C-6000-11D3-8CFE-0150048383C9}

O42 - Logiciel: Microsoft Reader - (.Pas de propriétaire.) [HKLM] -- {0510E9B6-C4C9-4C1D-8FE9-89EDDAA54958}

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

O42 - Logiciel: Microsoft Works 2000 - (.Microsoft Corporation.) [HKLM] -- {A3088CD2-612B-11D3-AF43-00C04F443448}

O42 - Logiciel: Mozilla Firefox (3.6.10) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.10)

O42 - Logiciel: My Web Search (Webfetti) - (.My Web Search.) [HKLM] -- MyWebSearch bar Uninstall

O42 - Logiciel: NEC Electronics USB 3.0 Host Controller Driver - (.NEC Electronics Corporation.) [HKLM] -- InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}

O42 - Logiciel: NEC Electronics USB 3.0 Host Controller Driver - (.NEC Electronics Corporation.) [HKLM] -- {D7BF9739-8A68-4335-BBEE-37752AD9E86B}

O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}

O42 - Logiciel: PhotoFiltre - (.Pas de propriétaire.) [HKCU] -- PhotoFiltre

O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3

O42 - Logiciel: Pinnacle Studio Ultimate Plugins - (.Pinnacle Systems.) [HKLM] -- {65173BC2-60E7-4DE8-A61D-A81FCB96EE93}

O42 - Logiciel: Realtek Ethernet Controller Driver For Windows Vista and Later - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}

O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}

O42 - Logiciel: Red Giant ToonIt Studio - (.Pas de propriétaire.) [HKLM] -- Red Giant ToonIt Studio

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841

O42 - Logiciel: SnapTouch 2.90 - (.AccentSoft Team.) [HKLM] -- SnapTouch

O42 - Logiciel: Soft2PC 1.4 - (.Soft2PC.) [HKLM] -- Soft2PC_is1

O42 - Logiciel: Softonic-Eng7 Toolbar - (.Pas de propriétaire.) [HKLM] -- Softonic-Eng7 Toolbar

O42 - Logiciel: Software 1.3 - (.Soft2PC.) [HKLM] -- Software_is1

O42 - Logiciel: TriloBase V7.0 - (.Danny Alexandre - Trilobase.) [HKLM] -- TriloBase V7.0_is1

O42 - Logiciel: VLC media player 1.0.5 - (.VideoLAN Team.) [HKLM] -- VLC media player

O42 - Logiciel: Vuze - (.Vuze Inc..) [HKLM] -- 8461-7759-5462-8226

O42 - Logiciel: Vuze Remote Toolbar - (.Vuze Remote.) [HKLM] -- Vuze_Remote Toolbar

O42 - Logiciel: WebTablet IE Plugin - (.Wacom Technology Corp..) [HKLM] -- Wacom WebTabletPlugin for IE

O42 - Logiciel: WebTablet Netscape Plugin - (.Wacom Technology Corp..) [HKLM] -- Wacom WebTabletPlugin for Netscape

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {ED00D08A-3C5F-488D-93A0-A04F21F23956}

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818}

O42 - Logiciel: Zylom Games Player Plugin - (.Zylom Games.) [HKLM] -- Zylom Games Player Plugin

O42 - Logiciel: resident evil 4 - (.CAPCOM.) [HKLM] -- {DFFCDB41-C2DA-47D6-96FF-03C05C0BEA22}

O42 - Logiciel: µTorrent - (.Pas de propriétaire.) [HKCU] -- uTorrent

---\\ HKCU & HKLM Software Keys

[HKCU\Software\2015]

[HKCU\Software\7-Zip]

[HKCU\Software\ALWIL Software]

[HKCU\Software\AMD]

[HKCU\Software\ANI]

[HKCU\Software\ATI]

[HKCU\Software\AccentSoft Utilities]

[HKCU\Software\Adobe]

[HKCU\Software\AppDataLow\Software\Adobe]

[HKCU\Software\AppDataLow\Software\Conduit]

[HKCU\Software\AppDataLow\Software\Freecorder]

[HKCU\Software\AppDataLow\Software\Fun Web Products]

[HKCU\Software\AppDataLow\Software\FunWebProducts]

[HKCU\Software\AppDataLow\Software\MarkAny]

[HKCU\Software\AppDataLow\Software\Microsoft]

[HKCU\Software\AppDataLow\Software\Monitored]

[HKCU\Software\AppDataLow\Software\MyWebSearch]

[HKCU\Software\AppDataLow\Software\Softonic-Eng7]

[HKCU\Software\AppDataLow\Software\Vuze_Remote]

[HKCU\Software\AppDataLow\Software\conduitEngine]

[HKCU\Software\AppDataLow\Software\settings]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow\Toolbar]

[HKCU\Software\AppDataLow]

[HKCU\Software\ApplianTechnologies]

[HKCU\Software\Ask&Record]

[HKCU\Software\Azureus]

[HKCU\Software\Battlefield 1942]

[HKCU\Software\Binary Noise]

[HKCU\Software\BitDefender]

[HKCU\Software\BitTorrent]

[HKCU\Software\Borland]

[HKCU\Software\Brother]

[HKCU\Software\Canneverbe Limited]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\CollectManager]

[HKCU\Software\Conduit]

[HKCU\Software\D-Link]

[HKCU\Software\DeviceVM]

[HKCU\Software\Digienhanc]

[HKCU\Software\DownloadCenter]

[HKCU\Software\EA Games]

[HKCU\Software\EBooksys]

[HKCU\Software\Google]

[HKCU\Software\Helicon]

[HKCU\Software\IZSoftware]

[HKCU\Software\JavaSoft]

[HKCU\Software\Ligos]

[HKCU\Software\Local AppWizard-Generated Applications]

[HKCU\Software\LowRegistry]

[HKCU\Software\MAGIX AG]

[HKCU\Software\Macromedia]

[HKCU\Software\Magix]

[HKCU\Software\MainConcept (Magix)]

[HKCU\Software\MainConcept]

[HKCU\Software\Mozilla]

[HKCU\Software\MyWebSearch]

[HKCU\Software\NEC Electronics]

[HKCU\Software\Netscape]

[HKCU\Software\ODBC]

[HKCU\Software\Opalium]

[HKCU\Software\Pinnacle Systems]

[HKCU\Software\Policies]

[HKCU\Software\Realtek]

[HKCU\Software\Samsung]

[HKCU\Software\SecuROM]

[HKCU\Software\Soft2PC]

[HKCU\Software\Softonic]

[HKCU\Software\Stephane]

[HKCU\Software\Wow6432Node]

[HKCU\Software\Xara]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\Zerene Systems]

[HKCU\Software\ej-technologies]

[HKLM\Software\505Games]

[HKLM\Software\ALWIL Software]

[HKLM\Software\ANI]

[HKLM\Software\ATI Technologies]

[HKLM\Software\ATI]

[HKLM\Software\AVC3]

[HKLM\Software\Activision]

[HKLM\Software\Adobe]

[HKLM\Software\Alpha Networks]

[HKLM\Software\AmbientDesign]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\Azureus]

[HKLM\Software\Boonty]

[HKLM\Software\Borland]

[HKLM\Software\Brother Industries, Ltd.]

[HKLM\Software\Brother]

[HKLM\Software\C07ft5Y]

[HKLM\Software\CAPCOM]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Collection Manager]

[HKLM\Software\Conduit]

[HKLM\Software\Corel]

[HKLM\Software\D-Link]

[HKLM\Software\DeviceVM]

[HKLM\Software\DivXNetworks]

[HKLM\Software\EA GAMES]

[HKLM\Software\EBookSys]

[HKLM\Software\Electronic Arts]

[HKLM\Software\Even Balance]

[HKLM\Software\FocusInteractive]

[HKLM\Software\Freecorder]

[HKLM\Software\Fun Web Products]

[HKLM\Software\GIGABYTE Technologies, Inc.]

[HKLM\Software\Google]

[HKLM\Software\IZSoftware]

[HKLM\Software\InstallShield]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\KLCodecPack]

[HKLM\Software\Macromedia]

[HKLM\Software\Macrovision]

[HKLM\Software\Magix]

[HKLM\Software\Marvell]

[HKLM\Software\MidasHeurScanner]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\MyWebSearch]

[HKLM\Software\Nero]

[HKLM\Software\Nexway]

[HKLM\Software\ODBC]

[HKLM\Software\PegasusImaging]

[HKLM\Software\Pinnacle Systems]

[HKLM\Software\PoINT]

[HKLM\Software\Policies]

[HKLM\Software\Protexis]

[HKLM\Software\Realtek Semiconductor Corp.]

[HKLM\Software\Realtek]

[HKLM\Software\Red Giant Software]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\Samsung]

[HKLM\Software\Softonic-Eng7]

[HKLM\Software\Uniblue]

[HKLM\Software\VideoLAN]

[HKLM\Software\Volatile]

[HKLM\Software\Vuze_Remote]

[HKLM\Software\Wacom]

[HKLM\Software\Windows]

[HKLM\Software\Xara]

[HKLM\Software\ej-technologies]

[HKLM\Software\mozilla.org]

[HKLM\Software\soft2PC]

---\\ Contenu des dossiers ProgramFiles/ProgramData (O43)

O43 - CFD:Common File Directory ----D- C:\Program Files\Alwil Software

O43 - CFD:Common File Directory ----D- C:\Program Files\ATI

O43 - CFD:Common File Directory ----D- C:\Program Files\ATI Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files\BitDefender

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files

O43 - CFD:Common File Directory ----D- C:\Program Files\DVD Maker

O43 - CFD:Common File Directory -SH-D- C:\Program Files\Fichiers communs

O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Games

O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild

O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek

O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies

O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Defender

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Journal

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Mail

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Photo Viewer

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Portable Devices

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Sidebar

O43 - CFD:Common File Directory ----D- C:\Program Files\WTouch

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\ATI Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\BitDefender

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Microsoft Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Services

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System

O43 - CFD:Common File Directory ----D- C:\ProgramData\Adobe

O43 - CFD:Common File Directory ----D- C:\ProgramData\Alwil Software

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Application Data

O43 - CFD:Common File Directory ----D- C:\ProgramData\ATI

O43 - CFD:Common File Directory ----D- C:\ProgramData\bdch

O43 - CFD:Common File Directory ----D- C:\ProgramData\BitDefender

O43 - CFD:Common File Directory ----D- C:\ProgramData\BOONTY

O43 - CFD:Common File Directory ----D- C:\ProgramData\Brother

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Bureau

O43 - CFD:Common File Directory ----D- C:\ProgramData\Canneverbe Limited

O43 - CFD:Common File Directory ----D- C:\ProgramData\Corel

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Desktop

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Documents

O43 - CFD:Common File Directory ----D- C:\ProgramData\EA

O43 - CFD:Common File Directory ----D- C:\ProgramData\EA Core

O43 - CFD:Common File Directory ----D- C:\ProgramData\EBookSys

O43 - CFD:Common File Directory ----D- C:\ProgramData\Electronic Arts

O43 - CFD:Common File Directory ----D- C:\ProgramData\eMule

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Favoris

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Favorites

O43 - CFD:Common File Directory ----D- C:\ProgramData\FLEXnet

O43 - CFD:Common File Directory ----D- C:\ProgramData\Helicon

O43 - CFD:Common File Directory ----D- C:\ProgramData\MAGIX

O43 - CFD:Common File Directory ----D- C:\ProgramData\McAfee

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Menu Démarrer

O43 - CFD:Common File Directory -S--D- C:\ProgramData\Microsoft

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Modèles

O43 - CFD:Common File Directory ----D- C:\ProgramData\Pinnacle

O43 - CFD:Common File Directory ----D- C:\ProgramData\Pinnacle Studio Ultimate

O43 - CFD:Common File Directory ----D- C:\ProgramData\Samsung

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Start Menu

O43 - CFD:Common File Directory ----D- C:\ProgramData\Studio14Trial

O43 - CFD:Common File Directory ----D- C:\ProgramData\Sun

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Templates

O43 - CFD:Common File Directory ----D- C:\ProgramData\TuneUp Software

O43 - CFD:Common File Directory ----D- C:\ProgramData\Zylom

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\ATI Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\BitDefender

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Microsoft Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Services

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\7-Zip

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Activision

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Ambient Design

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ANI

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ATI Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\BoontyGames

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Brother

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\CAPCOM

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\CDBurnerXP

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Collection Manager 6.1

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Conduit

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ConduitEngine

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Corel

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\D-Link

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\DeviceVM

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\E-Book Systems

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\EA GAMES

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Electronic Arts

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Freecorder

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\FunWebProducts

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Google

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Helicon Software

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\HotPixels

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\i2p

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\InstallShield Installation Information

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Intel

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Internet Explorer

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\IZArc

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Java

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\K-Lite Codec Pack

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MAGIX

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MarkAny

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Marvell

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Mediathek

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Reader

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Silverlight

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Works

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Works Suite 2000

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft.NET

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Mozilla Firefox

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSBuild

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSECache

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSXML 4.0

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MyWebSearch

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\NEC Electronics

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\OpenOffice.org 3

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\PC Connectivity Solution

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\PhotoFiltre

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Pinnacle

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Realtek

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Reference Assemblies

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Samsung

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Smith Micro

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SnapTouch

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Soft2PC

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\softendo.com

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Softonic-Eng7

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Tablet

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\TabletPlugins

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Temp

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Trend Micro

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\TuneUp Utilities 2010

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Uniblue

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Uninstall Information

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\uTorrent

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\VideoLAN

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Vuze

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Vuze_Remote

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Defender

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live SkyDrive

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Mail

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Media Player

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows NT

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Photo Viewer

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Portable Devices

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Sidebar

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ZHPDiag

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Zylom Games

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe AIR

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\ATI Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\BitDefender

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\BOONTY Shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Borland Shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Corel

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\InstallShield

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Java

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\MAGIX Services

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\MAGIX Shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\microsoft shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Nikon

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Pinnacle

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Protexis

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Samsung

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Services

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\SWF Studio

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\System

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Windows Live

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\xara

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.00000000000000000000000000000000] - 16/10/2010 - 12:34:20 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log [1595061]

O44 - LFC:[MD5.89FE9D7BFE54CE368A1F3390218B54E9] - 16/10/2010 - 07:36:27 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [14832]

O44 - LFC:[MD5.89FE9D7BFE54CE368A1F3390218B54E9] - 16/10/2010 - 07:36:27 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [14832]

O44 - LFC:[MD5.BB5E2ACE993ABFF2DF7790DF9B7F8506] - 16/10/2010 - 07:28:59 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setupact.log [73105]

O44 - LFC:[MD5.83C12F001BC394C85EAD98D8C63AC6EC] - 16/10/2010 - 07:28:54 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.569ED9DB8185FEECA202434E64CC5966] - 15/10/2010 - 21:56:54 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\bdlog.txt [195967]

O44 - LFC:[MD5.582BC9F3174096AB2BD27DF1CE8C328C] - 15/10/2010 - 21:40:08 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\FNTCACHE.DAT [2327288]

O44 - LFC:[MD5.AAC842AF25EAB491BC486F5DE1B49854] - 15/10/2010 - 21:39:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\PFRO.log [264210]

O44 - LFC:[MD5.017EC76F05B6B1E15CA843BE9F764041] - 15/10/2010 - 21:32:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\PerfStringBackup.INI [1570666]

O44 - LFC:[MD5.CB621080CB8FF74FCF41D3D7523B1D03] - 15/10/2010 - 21:32:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc009.dat [106190]

O44 - LFC:[MD5.0AA0DF456FDD9B8A6F5E052542A0DE4B] - 15/10/2010 - 21:32:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc00C.dat [130548]

O44 - LFC:[MD5.1FBF393DBB1F0FD5027E77D8E4F916CF] - 15/10/2010 - 21:32:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh009.dat [615810]

O44 - LFC:[MD5.54EEAE0496AA4F855828D686D50C19FC] - 15/10/2010 - 21:32:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh00C.dat [704242]

O44 - LFC:[MD5.E57B778208C783D8DEBAB320C16A1B82] - 22/09/2010 - 19:22:10 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\drivers\StarOpen.sys [7168]

---\\ Déni du service (Local Security Authority) (LSA) (O48)

O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\SysWOW64\l3codeca.acm" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll

O52 - TDSD: \drivers.desc\"C:\Windows\SysWOW64\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

---\\ Microsoft Control Security Providers (MCSP) (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

---\\ Microsoft Windows Policies System (MWPS) (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

---\\ Microsoft Windows Policies Explorer (MWPE) (O56)

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutorun"=0

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0

---\\ Liste des Drivers Système (SDL) (O58)

O58 - SDL:[MD5.6E9C8B324980AFE454C6F7762E2B4478] - 10/04/2010 - 17:46:01 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\acedrv07.sys

O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys

O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys

O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys

O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys

O58 - SDL:[MD5.7A4B413614C055935567CF88A9734D38] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys

O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys

O58 - SDL:[MD5.B4AD0CACBAB298671DD6F6EF7E20679D] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys

O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys

O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys

O58 - SDL:[MD5.FB7602C5C508BE281368AAE0B61B51C6] - 30/09/2009 - 15:34:30 ---A- . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\AtiHdmi.sys

O58 - SDL:[MD5.544256005D11723E89AF323EE4F01809] - 07/10/2009 - 05:33:30 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys

O58 - SDL:[MD5.D6AD5A019A914616C7A702C00149283A] - 28/06/2010 - 11:55:38 ---A- . (.BitDefender - Active Virus Control filter driver.) -- C:\Windows\system32\drivers\avc3.sys

O58 - SDL:[MD5.4598404E09F7BC80C53100C560B8C67E] - 28/06/2010 - 11:55:44 ---A- . (.BitDefender - Active Virus Control Kernel Filtering driver.) -- C:\Windows\system32\drivers\avckf.sys

O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys

O58 - SDL:[MD5.57A812537B752E2B0409576120183E4F] - 13/05/2010 - 15:52:08 ---A- . (.BitDefender S.R.L. Bucharest, ROMANIA - BitDefender Active Virus Control Filter Driver.) -- C:\Windows\system32\drivers\bdfm.sys

O58 - SDL:[MD5.FD25D9E7054A422BD9A4C6540B2B8290] - 27/07/2010 - 11:34:59 ---A- . (.BitDefender - BitDefender AntiVirus FS filter driver.) -- C:\Windows\system32\drivers\bdfsfltr.sys

O58 - SDL:[MD5.191150400EB109085C4111D739F92528] - 13/05/2010 - 15:52:46 ---A- . (.BitDefender S.R.L. Bucharest, ROMANIA - BitDefender AntiVirus Hypervisor driver.) -- C:\Windows\system32\drivers\bdhv.sys

O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys

O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys

O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys

O58 - SDL:[MD5.80E52EF092F3DAD03E0EE15E64F97245] - 03/09/2006 - 23:53:54 ---A- . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\system32\drivers\BrSerIf.sys

O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys

O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys

O58 - SDL:[MD5.601CB966FFFEBC6806626DC8E7AA0EF2] - 03/09/2006 - 23:53:38 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys

O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys

O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys

O58 - SDL:[MD5.867FA8B9E9E3078F68C4089904BBF4B0] - 25/05/2010 - 07:45:38 ---A- . (.Devguru Co., Ltd - Device Error Recovery SDK(x64).) -- C:\Windows\system32\drivers\dgderdrv.sys

O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys

O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys

O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys

O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys

O58 - SDL:[MD5.D83EFB6FD45DF9D55E9A1AFC63640D50] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys

O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys

O58 - SDL:[MD5.6EBE4832B1A7C063FDF87035AFC1E3DC] - 07/10/2009 - 12:26:24 ---A- . (.JMicron Technology Corp. - JMicron JMB36X RAID Driver.) -- C:\Windows\system32\drivers\jraid.sys

O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys

O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys

O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys

O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys

O58 - SDL:[MD5.024DA28053D57E9E32BEE52600576BBB] - 23/09/2005 - 21:18:34 ---A- . (.Pinnacle Systems GmbH - Pinnacle Marvin Discrete Bus Enumerator.) -- C:\Windows\system32\drivers\MarvinBus64.sys

O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys

O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys

O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys

O58 - SDL:[MD5.A61B0AF4D6B934928CFD1140DEEA5C8D] - 25/09/2009 - 15:58:24 ---A- . (.NEC Electronics Corporation - USB 3.0 Hub Driver.) -- C:\Windows\system32\drivers\nusb3hub.sys

O58 - SDL:[MD5.FA4B2F20561BDBCC6B9AC3E3BDCD7E3F] - 25/09/2009 - 15:58:32 ---A- . (.NEC Electronics Corporation - USB 3.0 Host Controller Driver.) -- C:\Windows\system32\drivers\nusb3xhc.sys

O58 - SDL:[MD5.3E38712941E9BB4DDBEE00AFFE3FED3D] - 14/07/2009 - 02:48:27 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys

O58 - SDL:[MD5.477DC4D6DEB99BE37084C9AC6D013DA1] - 14/07/2009 - 02:45:45 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys

O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys

O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys

O58 - SDL:[MD5.3D542C75DDCD791C06488EE121074A30] - 15/04/2009 - 13:33:00 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 USB Wireless Adapter Driver.) -- C:\Windows\system32\drivers\rt2870.sys

O58 - SDL:[MD5.3B01789EE4EAEE97F5EB46B711387D5E] - 20/08/2009 - 17:05:06 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\system32\drivers\Rt64win7.sys

O58 - SDL:[MD5.59B0BBA422F04467E8C89B7CE6AE95E1] - 21/10/2009 - 15:27:58 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys

O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys

O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys

O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys

O58 - SDL:[MD5.866F8212EF7E75BAC8BCA03331E30CB4] - 21/06/2010 - 04:26:36 ---A- . (.MCCI Corporation - SAMSUNG Android USB Composite Device Driver.) -- C:\Windows\system32\drivers\ssadbus.sys

O58 - SDL:[MD5.4EC7CF79D4CC2D7027BAC342F2357938] - 21/06/2010 - 04:26:36 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssadcm.sys

O58 - SDL:[MD5.4EC7CF79D4CC2D7027BAC342F2357938] - 21/06/2010 - 04:26:36 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssadcmnt.sys

O58 - SDL:[MD5.73E2BA39E7EB024DC686412E2E924A74] - 21/06/2010 - 04:26:38 ---A- . (.MCCI Corporation - SAMSUNG Android USB Modem Filter Driver.) -- C:\Windows\system32\drivers\ssadmdfl.sys

O58 - SDL:[MD5.74B032D6C1E36AE2F790752FDE8CE055] - 21/06/2010 - 04:26:36 ---A- . (.MCCI Corporation - SAMSUNG Android USB Modem.) -- C:\Windows\system32\drivers\ssadmdm.sys

O58 - SDL:[MD5.D332524C7B50CD8BECB2A95979C47FF4] - 21/06/2010 - 04:26:36 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssadwh.sys

O58 - SDL:[MD5.D332524C7B50CD8BECB2A95979C47FF4] - 21/06/2010 - 04:26:36 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssadwhnt.sys

O58 - SDL:[MD5.E57B778208C783D8DEBAB320C16A1B82] - 12/11/2009 - 13:48:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\StarOpen.sys

O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys

O58 - SDL:[MD5.CE4B6956E4E12492715A53076E58761F] - 25/05/2010 - 07:45:52 ---A- . (.Teruten Inc - File System Mini Filter Drvier.) -- C:\Windows\system32\drivers\TFsExDisk.sys

O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys

O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys

O58 - SDL:[MD5.6B6718DC4B4597EC10F4F8C614282EE1] - 27/08/2009 - 14:06:34 ---A- . (.Wacom Technology - Wacom HID Mouse Monitor Filter Driver.) -- C:\Windows\system32\drivers\wacmoumonitor.sys

O58 - SDL:[MD5.E04D43C7D1641E95D35CAE6086C7E350] - 16/02/2007 - 20:12:36 ---A- . (.Wacom Technology - Wacom Mouse Filter Driver.) -- C:\Windows\system32\drivers\wacommousefilter.sys

O58 - SDL:[MD5.26B430E7C5F598FE7353E3BC4B261321] - 20/05/2009 - 20:54:06 ---A- . (.Wacom Technology - Virtual Hid Device.) -- C:\Windows\system32\drivers\wacomvhid.sys

O58 - SDL:[MD5.D0D4F3CA1D3A4400E1F40F36A800CD12] - 25/05/2010 - 07:44:30 ---A- . (.Devguru Co., Ltd - Device Error Recovery SDK(x86).) -- C:\Windows\SysWOW64\drivers\dgderdrv.sys

O58 - SDL:[MD5.F92254B0BCFCD10CAAC7BCCC7CB7F467] - 12/11/2009 - 13:48:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysWOW64\drivers\StarOpen.sys

O58 - SDL:[MD5.CE4B6956E4E12492715A53076E58761F] - 25/05/2010 - 07:45:52 ---A- . (.Teruten Inc - File System Mini Filter Drvier.) -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys

---\\ Liste des outils de nettoyage (LATC) (O63)

O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

---\\ Liste des services Legacy (LALS) (O64)

O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys (AFD) .(.Pas de propriétaire - Pas de description.) - LEGACY_AFD

O64 - Services: CurCS - (.not file.) - aswFsBlk (aswFsBlk) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWFSBLK

O64 - Services: CurCS - (.not file.) - aswMonFlt (aswMonFlt) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWMONFLT

O64 - Services: CurCS - (.not file.) - aswRdr (aswRdr) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWRDR

O64 - Services: CurCS - (.not file.) - aswSP (aswSP) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWSP

O64 - Services: CurCS - (.not file.) - avast! Network Shield Support (aswTdi) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWTDI

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\bdfm.sys - BDFM (bdfm) .(.Pas de propriétaire - Pas de description.) - LEGACY_BDFM

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\bdfsfltr.sys - bdfsfltr (bdfsfltr) .(.Pas de propriétaire - Pas de description.) - LEGACY_BDFSFLTR

O64 - Services: CurCS - C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys - bdfwfpf (bdfwfpf) .(.BitDefender - BitDefender Firewall WFP Filter Driver.) - LEGACY_BDFWFPF

O64 - Services: CurCS - (.not file.) - Beep (Beep) .(.Pas de propriétaire - Pas de description.) - LEGACY_BEEP

O64 - Services: CurCS - C:\Windows\system32\browser.dll (bowser) .(.Pas de propriétaire - Pas de description.) - LEGACY_BOWSER

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_CDFS

O64 - Services: CurCS - C:\Windows\system32\clfs.sys (CLFS) .(.Pas de propriétaire - Pas de description.) - LEGACY_CLFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\cng.sys - CNG (CNG) .(.Pas de propriétaire - Pas de description.) - LEGACY_CNG

O64 - Services: CurCS - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Pas de propriétaire - Pas de description.) - LEGACY_DFSC

O64 - Services: CurCS - C:\Windows\system32\drivers\dgderdrv.sys - dgderdrv (dgderdrv) .(.Devguru Co., Ltd - Device Error Recovery SDK(x86).) - LEGACY_DGDERDRV

O64 - Services: CurCS - C:\Windows\system32\drivers\discache.sys (discache) .(.Pas de propriétaire - Pas de description.) - LEGACY_DISCACHE

O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Pas de propriétaire - Pas de description.) - LEGACY_DXGKRNL

O64 - Services: CurCS - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(.Pas de propriétaire - Pas de description.) - LEGACY_FASTFAT

O64 - Services: CurCS - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Pas de propriétaire - Pas de description.) - LEGACY_FILEINFO

O64 - Services: CurCS - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_FLTMGR

O64 - Services: CurCS - C:\Windows\system32\drivers\fsdepends.sys (FsDepends) .(.Pas de propriétaire - Pas de description.) - LEGACY_FSDEPENDS

O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(.Pas de propriétaire - Pas de description.) - LEGACY_FS_REC

O64 - Services: CurCS - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Pas de propriétaire - Pas de description.) - LEGACY_FVEVOL

O64 - Services: CurCS - C:\Windows\gdrv.sys (.not file.) - gdrv (gdrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_GDRV

O64 - Services: CurCS - C:\Windows\system32\drivers\http.sys (HTTP) .(.Pas de propriétaire - Pas de description.) - LEGACY_HTTP

O64 - Services: CurCS - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Pas de propriétaire - Pas de description.) - LEGACY_HWPOLICY

O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_KSECDD

O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecpkg.sys - KSecPkg (KSecPkg) .(.Pas de propriétaire - Pas de description.) - LEGACY_KSECPKG

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Pas de propriétaire - Pas de description.) - LEGACY_LLTDIO

O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Pas de propriétaire - Pas de description.) - LEGACY_LUAFV

O64 - Services: CurCS - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_MOUNTMGR

O64 - Services: CurCS - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB10

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB20

O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSFS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\msisadrv.sys - msisadrv (msisadrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSISADRV

O64 - Services: CurCS - C:\Windows\system32\drivers\mup.sys (Mup) .(.Pas de propriétaire - Pas de description.) - LEGACY_MUP

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\nwifi.sys - NativeWiFi Filter (NativeWifiP) .(.Pas de propriétaire - Pas de description.) - LEGACY_NATIVEWIFIP

O64 - Services: CurCS - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDIS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\ndisuio.sys - NDIS Usermode I/O Protocol (Ndisuio) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDISUIO

O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDPROXY

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETBIOS

O64 - Services: CurCS - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETBT

O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NPFS

O64 - Services: CurCS - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NSIPROXY

O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NTFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(.Pas de propriétaire - Pas de description.) - LEGACY_NULL

O64 - Services: CurCS - C:\Windows\system32\drivers\pcw.sys - Performance Counters for Windows Driver (pcw) .(.Pas de propriétaire - Pas de description.) - LEGACY_PCW

O64 - Services: CurCS - C:\Windows\system32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Pas de propriétaire - Pas de description.) - LEGACY_PEAUTH

O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (Psched) .(.Pas de propriétaire - Pas de description.) - LEGACY_PSCHED

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (rdbss) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDBSS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPENCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPREFMP

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Pas de propriétaire - Pas de description.) - LEGACY_RSPNDR

O64 - Services: CurCS - (.not file.) - Security Driver (secdrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SECDRV

O64 - Services: CurCS - (.not file.) - Security Processor Loader Driver (spldr) .(.Pas de propriétaire - Pas de description.) - LEGACY_SPLDR

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRV

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv2) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRV2

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRVNET

O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP

O64 - Services: CurCS - C:\Windows\system32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Pas de propriétaire - Pas de description.) - LEGACY_TCPIPREG

O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX

O64 - Services: CurCS - C:\Windows\system32\Drivers\TFsExDisk.sys - TFsExDisk (TFsExDisk) .(.Teruten Inc - File System Mini Filter Drvier.) - LEGACY_TFSEXDISK

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\udfs.sys - udfs (udfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_UDFS

O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Pas de propriétaire - Pas de description.) - LEGACY_VGASAVE

O64 - Services: CurCS - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLMGRX

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\volsnap.sys - Volumes de stockage (volsnap) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLSNAP

O64 - Services: CurCS - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6

O64 - Services: CurCS - C:\Windows\system32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Pas de propriétaire - Pas de description.) - LEGACY_WDF01000

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\wfplwf.sys - WFP Lightweight Filter (WfpLwf) .(.Pas de propriétaire - Pas de description.) - LEGACY_WFPLWF

O64 - Services: CurCS - C:\Windows\system32\drivers\WudfPf.sys - User Mode Driver Frameworks Platform Driver (WudfPf) .(.Pas de propriétaire - Pas de description.) - LEGACY_WUDFPF

---\\ Observateur d'évènement d'application (OEA) (O66)

O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Internet Explorer ImpExp FF exporter.) -- C:\Program Files (x86)\Internet Explorer\extexport.exe

O66 - EventLog: ID=1000 (Application Error) - (.Macrovision Corporation - Setup.exe.) -- C:\Users\CHRIST~1\AppData\Local\Temp\ins3900.tmp

O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe

O66 - EventLog: ID=1000 (Application Error) - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

O66 - EventLog: ID=1000 (Application Error) - (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe

O66 - EventLog: ID=1000 (Application Error) - (.Soft2PC - Soft2PC.) -- C:\Program Files (x86)\Soft2PC\soft2pc.exe

O66 - EventLog: ID=1000 (Application Error) - (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\EA GAMES\Battlefield 1942\BF1942.exe

O66 - EventLog: ID=1000 (Application Error) - (.http://www.faucourt.com - Médiathek Premium v6.6.) -- C:\Program Files (x86)\Mediathek\Program\mediatek.exe

O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) -- C:\Windows\system32\SearchIndexer.exe

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

---\\ Start Menu Internet (SMI) (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

---\\ Search Browser Infection (SBI) (O69)

O69 - SBI: C:\Users\Christophe\Application Data\Mozilla\Firefox\Profiles\\69anbxbn.default\searchplugins\conduit.xml

O69 - SBI: prefs.js [Christophe - 69anbxbn.default] user_pref("CT1060933.SearchEngine", "Search||http://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT1060933

O69 - SBI: prefs.js [Christophe - 69anbxbn.default] user_pref("CT1060933.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT1060933&q=");

O69 - SBI: prefs.js [Christophe - 69anbxbn.default] user_pref("CT2405280.SearchEngine", "Search||http://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2405280

O69 - SBI: prefs.js [Christophe - 69anbxbn.default] user_pref("CT2405280.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2405280&q=");

O69 - SBI: prefs.js [Christophe - 69anbxbn.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT1060933&SearchSource=3&q={searchTerms}");

O69 - SBI: prefs.js [Christophe - 69anbxbn.default] user_pref("browser.startup.homepage", "http://y.lo.st");

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing

O69 - SBI: SearchScopes [HKCU] {56256A51-B582-467e-B8D4-7786EDA79AE0} - (My Web Search) - Search

O69 - SBI: SearchScopes [HKCU] {735D2FCB-7426-4cf8-B830-901FB4B2FB38} - (Google) - http://www.google.com%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=fr&q={searchTerms}

O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (Freecorder Customized Web Search) - http://search.conduit.com

O69 - SBI: SearchScopes [HKCU] {E3149E9C-5BBA-4c31-8F2F-BF6CD123D2C1} [DefaultScope] - (Yahoo) - Yahoo! Search - Recherche Web

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, GMER - Rootkit Detector and Remover

Run by Christophe at 16/10/2010 13:46:26

device: opened successfully

user: MBR read successfully

kernel: error reading MBR

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

MBRCheck, version 1.2.3 by ad13, http://ad13.geekstog

Run by Christophe at 16/10/2010 13:46:50

465 GB \\.\PhysicalDrive0 Windows 7 MBR code detected

SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB79

Dump file Name : C:\Program Files (x86)\ZHPDiag\MBRDump_10-16-10_13-46-51_PhysicalDrive0.bin

---\\ Recherche des services démarrés par Svchost (SSS) (O83)

O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\aelupsvc.dll [0]

O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\certprop.dll [0]

O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\certprop.dll [0]

O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\srvsvc.dll [0]

O83 - Search Svchost Services: gpsvc (gpsvc) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\gpsvc.dll [0]

O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\Audiosrv.dll [0]

O83 - Search Svchost Services: Rasauto (Rasauto) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\rasauto.dll [0]

O83 - Search Svchost Services: Rasman (Rasman) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\rasmans.dll [0]

O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264]

O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [49664]

O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ipnathlp.dll [0]

O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows.) -- C:\Windows\System32\tapisrv.dll [241664]

O83 - Search Svchost Services: TermService (TermService) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\termsrv.dll [0]

O83 - Search Svchost Services: wuauserv (wuauserv) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\wuaueng.dll [0]

O83 - Search Svchost Services: BITS (BITS) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\qmgr.dll [0]

O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192]

O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\iphlpsvc.dll [0]

O83 - Search Svchost Services: msiscsi (msiscsi) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\iscsiexe.dll [0]

O83 - Search Svchost Services: schedule (schedule) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\schedsvc.dll [0]

O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\system32\sessenv.dll [99328]

O83 - Search Svchost Services: winmgmt (winmgmt) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\wbem\WMIsvc.dll [0]

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SS - | Demand 0 | C:\Windows\System32\alg.exe (ALG) . (.Pas de propriétaire.) - C:\Windows\System32\alg.exe

SR - | Auto 0 | C:\Windows\system32\atiesrxx.exe (AMD External Events Utility) . (.Pas de propriétaire.) - C:\Windows\system32\atiesrxx.exe

SR - | Auto 26/02/2009 147456 | C:\Windows\system32\ANIWConnService.exe (ANIWConnService) . (.Pas de propriétaire.) - C:\Windows\system32\ANIWConnService.exe

SS - | Demand 19/01/2007 49152 | C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIWZCSdS.exe (ANIWZCSdService) . (.Wireless Service.) - C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIWZCSdS.exe

SR - | Auto 04/08/2009 219360 | C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe (BCUService) . (.DeviceVM, Inc..) - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe

SS - | Demand 08/05/2010 69120 | C:\Program Files (x86)\Common Files\BOONTY Shared\Service\Boonty.exe (Boonty Games) . (.BOONTY.) - C:\Program Files (x86)\Common Files\BOONTY Shared\Service\Boonty.exe

SR - | Auto 25/05/2010 95568 | C:\Windows\system32\dgdersvc.exe (dgdersvc) . (.Devguru Co., Ltd..) - C:\Windows\system32\dgdersvc.exe

SR - | Demand 25/05/2010 0 | C:\Windows\System32\lsass.exe (EFS) . (.Pas de propriétaire.) - C:\Windows\System32\lsass.exe

SR - | Auto 27/08/2009 1253376 | C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe

SS - | Demand 27/08/2009 0 | C:\Windows\system32\fxssvc.exe (Fax) . (.Pas de propriétaire.) - C:\Windows\system32\fxssvc.exe

SS - | Demand 07/08/2008 3276800 | C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe (FirebirdServerMAGIXInstance) . (.MAGIX®.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe

SS - | Auto 11/07/2010 136176 | C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

SS - | Demand 22/12/2009 136120 | C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

SR - | Auto 06/08/2009 65536 | C:\Windows\SysWOW64\XSrvSetup.exe (JMB36X) . (.Pas de propriétaire.) - C:\Windows\SysWOW64\XSrvSetup.exe

SR - | Demand 06/08/2009 0 | C:\Windows\system32\lsass.exe (KeyIso) . (.Pas de propriétaire.) - C:\Windows\system32\lsass.exe

SR - | Demand 06/08/2009 0 | C:\Windows\System32\msdtc.exe (MSDTC) . (.Pas de propriétaire.) - C:\Windows\System32\msdtc.exe

SR - | Auto 20/06/2010 28762 | C:\PROGRA~2\MYWEBS~1\bar\2.bin\mwssvc.exe (MyWebSearchService) . (.MyWebSearch.com.) - C:\PROGRA~2\MYWEBS~1\bar\2.bin\mwssvc.exe

SS - | Demand 20/06/2010 0 | C:\Windows\system32\lsass.exe (Netlogon) . (.Pas de propriétaire.) - C:\Windows\system32\lsass.exe

SR - | Auto 04/03/2010 71096 | C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe (NMSAccess) . (.Pas de propriétaire.) - C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe

SR - | Auto 19/09/2010 75064 | C:\Windows\system32\PnkBstrA.exe (PnkBstrA) . (.Pas de propriétaire.) - C:\Windows\system32\PnkBstrA.exe

SS - | Demand 19/09/2010 0 | C:\Windows\system32\lsass.exe (ProtectedStorage) . (.Pas de propriétaire.) - C:\Windows\system32\lsass.exe

SR - | Auto 24/07/2007 185632 | c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (PSI_SVC_2) . (.Protexis Inc..) - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe

SS - | Demand 24/07/2007 0 | C:\Windows\system32\locator.exe (RpcLocator) . (.Pas de propriétaire.) - C:\Windows\system32\locator.exe

SR - | Auto 24/07/2007 0 | C:\Windows\system32\lsass.exe (SamSs) . (.Pas de propriétaire.) - C:\Windows\system32\lsass.exe

SS - | Demand 24/07/2007 0 | C:\Windows\System32\snmptrap.exe (SNMPTRAP) . (.Pas de propriétaire.) - C:\Windows\System32\snmptrap.exe

SR - | Auto 24/07/2007 0 | C:\Windows\System32\spoolsv.exe (Spooler) . (.Pas de propriétaire.) - C:\Windows\System32\spoolsv.exe

SS - | Auto 24/07/2007 0 | C:\Windows\system32\sppsvc.exe (sppsvc) . (.Pas de propriétaire.) - C:\Windows\system32\sppsvc.exe

SR - | Auto 24/07/2007 0 | C:\Windows\system32\Pen_Tablet.exe (TabletServicePen) . (.Pas de propriétaire.) - C:\Windows\system32\Pen_Tablet.exe

SS - | Demand 24/07/2007 0 | C:\Windows\system32\UI0Detect.exe (UI0Detect) . (.Pas de propriétaire.) - C:\Windows\system32\UI0Detect.exe

SS - | Demand 11/09/2010 467248 | C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe (Update Server) . (.BitDefender.) - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe

SR - | Auto 11/09/2010 50664 | C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe (Updatesrv) . (.BitDefender S.R.L..) - C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe

SS - | Demand 11/09/2010 0 | C:\Windows\system32\lsass.exe (VaultSvc) . (.Pas de propriétaire.) - C:\Windows\system32\lsass.exe

SS - | Demand 11/09/2010 0 | C:\Windows\System32\vds.exe (vds) . (.Pas de propriétaire.) - C:\Windows\System32\vds.exe

SS - | Demand 11/09/2010 0 | C:\Windows\system32\vssvc.exe (VSS) . (.Pas de propriétaire.) - C:\Windows\system32\vssvc.exe

SR - | Auto 08/10/2010 2359864 | C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe (VSSERV) . (.BitDefender S.R.L..) - C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe

SR - | Demand 08/10/2010 0 | C:\Windows\system32\Wat\WatAdminSvc.exe (WatAdminSvc) . (.Pas de propriétaire.) - C:\Windows\system32\Wat\WatAdminSvc.exe

SS - | Demand 08/10/2010 0 | C:\Windows\system32\wbengine.exe (wbengine) . (.Pas de propriétaire.) - C:\Windows\system32\wbengine.exe

SS - | Demand 08/10/2010 0 | C:\Windows\system32\wbem\WmiApSrv.exe (wmiApSrv) . (.Pas de propriétaire.) - C:\Windows\system32\wbem\WmiApSrv.exe

SR - | Auto 23/11/2009 127784 | C:\Program Files\WTouch\WTouchService.exe (WTouchService) . (.Wacom Technology, Corp..) - C:\Program Files\WTouch\WTouchService.exe

---\\ Infection Rogue/FakeAlert (Possible)

[MD5.41242AE90B09411168D2E81BAFC343F8] - (.EoRezo - SoftwareHelper.) -- C:\Users\Christophe\AppData\Roaming\Soft2PC\Software\SoftwareHP.exe [376832]

O4 - HKLM\..\RunOnce: [Helper] . (.EoRezo - SoftwareHelper.) -- C:\Users\Christophe\AppData\Roaming\Soft2PC\Software\SoftwareHP.exe

O4 - HKLM\..\Wow6432Node\RunOnce: [Helper] . (.EoRezo - SoftwareHelper.) -- C:\Users\Christophe\AppData\Roaming\Soft2PC\Software\SoftwareHP.exe

---\\ Infection BT - BHO/Toolbar (Possible)