bwin

[chryslerman]

Bonjour, une fenetre s'ouvre lors de la navigation internet.

 

c'est une fenetre de jeu bwin non désirée.

 

Si une ame charitable pouvit analiser le rapport ci apres, je lui en serait reconnaissant.

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 12:02:08, on 04/09/2010

Platform: Unknown Windows (WinNT 6.01.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Boot mode: Normal

 

Running processes:

C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

C:\Program Files (x86)\Launch Manager\LManager.exe

C:\Program Files\Alwil Software\Avast4\ashDisp.exe

C:\Program Files (x86)\Java\jre6\bin\jusched.exe

C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe

C:\Users\Joseph\Desktop\HiJackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&m=aspire_7736&r=27361009g306l03d8z1m5t4701a698

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Fissa search

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&m=aspire_7736&r=27361009g306l03d8z1m5t4701a698

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&m=aspire_7736&r=27361009g306l03d8z1m5t4701a698

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: OfferBox - {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} - C:\Program Files (x86)\OfferBox\OfferBoxBHO.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe

O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe"

O4 - HKLM\..\Run: [autodetect] C:\Windows\SysWOW64\SupportAppXL\AutoDect.exe

O4 - HKLM\..\Run: [MobileConnect] C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe /silent

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\RunOnce: [uniblueRegistryBooster] "C:\Program Files (x86)\Uniblue\RegistryBooster\launcher.exe" delay 20000

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office10\EXCEL.EXE/3000

O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll

O13 - Gopher Prefix:

O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe

O23 - Service: Service d'état ASP.NET (aspnet_state) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing)

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe

O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe

O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE

O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe

O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe

O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe

O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: Sentinel Keys Server (SentinelKeysServer) - SafeNet, Inc. - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe

O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe

O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe

O23 - Service: SFR.DashBoard.Service - SFR - C:\Program Files (x86)\SFR\Gestionnaire de Connexion\SFR.DashBoard.Service.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Seysrvice: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: Vodafone Mobile Connect Service (VMCService) - Vodafone - C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

 

--

End of file - 11829 bytes

 

 

Merci pour votre aide.

Chryslerman

[chryslerman]

Bon, je vais peut etre aller demander ailleurs ....

[Florinator]

Bonsoir

 

 

Bon, je vais peut etre aller demander ailleurs ....

:notlol: Tu crois quand même pas qu'on est payé au sujet ouvert?

 

Bon ben si tu n'as pas trouvé d'autres âmes charitables pour t'aider fais ceci:

 

Télécharge Ad-Remover

 

Déconnectes toi et fermes toutes applications en cours

 

• Double clique sur le programme, et valide le message d'avertissement
  
• Double clique sur l'icône située sur ton bureau
  
• Choisi l'option "scanner"
  
• Poste le rapport qui apparait à la fin .

 

Remarque: Le rapport est sauvegardé sous C:\Ad-report SCAN.log. Il est possible que ton antivirus se mette en alerte, ignore la.

 

 

A++

[chryslerman]

Youpeee une âme charitable !!!!

 

 

Merci monseigneur de votre extrême bonté .... et je pèse mes mots ...

 

Je vais de ce pas effectuer cette gracieuse manip'

 

A de suite ...

[chryslerman]

Et voilà cher Florinator , Bonne lecture et merci pour ton prochain commentaire .

 

 

======= RAPPORT D'AD-REMOVER 2.0.0.1,E | UNIQUEMENT XP/VISTA/7 =======

 

Mis à jour par C_XX le 06/09/10 à 15:20

Contact: AdRemover.contact[AT]gmail.com

Site web: TEAM X SCRIPT : UsbFix - AD-Remover - FindyKill

 

C:\Program Files (x86)\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 18:57:19 le 06/09/2010, Mode normal

 

Microsoft Windows 7 Édition Familiale Premium (X64)

Joseph@JOSEPH-PC (Acer Aspire 7736)

 

============== RECHERCHE ==============

 

Service: "Application Updater" Présent

 

0,Fichier trouvé: C:\Program Files (x86)\Mozilla Firefox\extensions\searchsettings@spigot.com

0,Dossier trouvé: C:\Program Files (x86)\Application Updater

0,Dossier trouvé: C:\Program Files (x86)\Dealio Toolbar

0,Dossier trouvé: C:\Users\Joseph\AppData\Roaming\Search Settings

0,Dossier trouvé: C:\Program Files (x86)\Search Settings

3,Fichier trouvé: C:\Windows\Installer\61fc7e.msi

3,Fichier trouvé: C:\Windows\Installer\61fc85.msi

 

1,Clé trouvée: HKLM\Software\Classes\CLSID\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}

1,Clé trouvée: HKLM\Software\Classes\CLSID\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}

1,Clé trouvée: HKLM\Software\Classes\Interface\{144940B1-F191-11D0-A8E2-00A0C90F29FC}

1,Clé trouvée: HKLM\Software\Classes\Interface\{2ACF56E2-56F1-11D0-9C43-00A0C90F29FC}

1,Clé trouvée: HKLM\Software\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}

1,Clé trouvée: HKLM\Software\Classes\Interface\{89541520-2D31-11D2-A166-0060081C43D9}

1,Clé trouvée: HKLM\Software\Classes\Interface\{8954152E-2D31-11D2-A166-0060081C43D9}

1,Clé trouvée: HKLM\Software\Classes\Interface\{D5A1EF9A-7948-435D-8B87-D6A598317288}

1,Clé trouvée: HKLM\Software\Classes\Interface\{FED621D1-59B0-11D0-9C47-00A0C90F29FC}

1,Clé trouvée: HKLM\Software\Classes\TypeLib\{CD082CCA-086F-4FD8-8FD7-247A0DBBD1CC}

0,Clé trouvée: HKLM\Software\Classes\SearchSettings.BHO

0,Clé trouvée: HKLM\Software\Classes\SearchSettings.BHO.1

0,Clé trouvée: HKLM\Software\Application Updater

0,Clé trouvée: HKLM\Software\Dealio

0,Clé trouvée: HKLM\Software\Search Settings

0,Clé trouvée: HKCU\Software\Search Settings

0,Clé trouvée: HKCU\Software\AppDataLow\Software\Dealio

0,Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C878CD69-85DB-426B-81A3-E71175AAEB91}

0,Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\Search Settings

 

 

============== SCAN ADDITIONNEL ==============

 

** Mozilla Firefox Version [3.6.8 (fr)] **

 

-- C:\Users\Joseph\AppData\Roaming\Mozilla\FireFox\Profiles\i4aesmnj.default\Prefs.js --

browser.download.dir, C:\\Users\\Joseph\\Desktop

browser.download.lastDir, C:\\Users\\Joseph\\Desktop

browser.search.selectedEngine, Fissa

browser.startup.homepage, hxxp://portail.free.fr/

browser.startup.homepage_override.mstone, rv:1.9.2.8

 

========================================

 

** Internet Explorer Version [8.0.7600.16385] **

 

[HKCU\Software\Microsoft\Internet Explorer\Main]

Default_Page_URL: hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&m=aspire_7736&r=27361009g306l03d8z1m5t4701a698

Do404Search: 0x01000000

Enable Browser Extensions: yes

Local Page: C:\Windows\system32\blank.htm

Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896

Show_ToolBar: yes

Start Page: hxxp://www.fissa.com/fr/?s=h&c=1008268519&suid=EjrTR6gF4&d=3&pid=

 

[HKLM\Software\Microsoft\Internet Explorer\Main]

AutoHide: yes

Default_Page_URL: hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&m=aspire_7736&r=27361009g306l03d8z1m5t4701a698

Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896

Delete_Temp_Files_On_Exit: yes

Local Page: C:\Windows\SysWOW64\blank.htm

Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896

Start Page: hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&m=aspire_7736&r=27361009g306l03d8z1m5t4701a698

 

[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]

Tabs: res://ieframe.dll/tabswelcome.htm

Blank: res://mshtml.dll/blank.htm

 

========================================

 

C:\Program Files (x86)\Ad-Remover\Quarantine: 0 Fichier(s)

C:\Program Files (x86)\Ad-Remover\Backup: 1 Fichier(s)

 

C:\Ad-Report-SCAN[1].txt - 06/09/2010 (4085 Octet(s))

 

Fin à: 19:02:08, 06/09/2010

 

============== E.O.F ==============

[Florinator]

Bonsoir chryslerman

 

Arrête tu vas me faire rougir

 

Ok, on continu:

 

!Déconnectes toi et fermes toutes applications en cours !

 

 

 

• Relance Ad-remover : au menu principal choisi l'option "Nettoyer" .
  
• Poste le rapport qui apparait à la fin.

 

Le rapport est sauvegardé sous C:\Ad-report CLEAN.log

 

 

 

Si ton Bureau ne réapparaît pas:

 

• - Fais CTRL+ALT+SUPP pour ouvrir le Gestionnaire de tâches.
  - Clique en haut à gauche sur "Fichier"
  - Choisi "Nouvelle tâche" (Exécuter ...)
  - Tape "explorer" et valide.
  - Cela fera apparaître ton Bureau.

 

 

A++

[chryslerman]

A nouveau merci pour la reponse.

 

Ci apres le rapport

 

 

======= RAPPORT D'AD-REMOVER 2.0.0.1,E | UNIQUEMENT XP/VISTA/7 =======

 

Mis à jour par C_XX le 06/09/10 à 15:20

Contact: AdRemover.contact[AT]gmail.com

Site web: TEAM X SCRIPT : UsbFix - AD-Remover - FindyKill

 

C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 23:37:30 le 06/09/2010, Mode normal

 

Microsoft Windows 7 Édition Familiale Premium (X64)

Joseph@JOSEPH-PC (Acer Aspire 7736)

 

============== ACTION(S) ==============

 

Service: "Application Updater" Stoppé et supprimé

 

0,Fichier supprimé: C:\Program Files (x86)\Mozilla Firefox\extensions\searchsettings@spigot.com

0,Dossier supprimé: C:\Program Files (x86)\Application Updater

0,Dossier supprimé: C:\Program Files (x86)\Dealio Toolbar

0,Dossier supprimé: C:\Users\Joseph\AppData\Roaming\Search Settings

0,Dossier supprimé: C:\Program Files (x86)\Search Settings

3,Fichier supprimé: C:\Windows\Installer\61fc7e.msi

3,Fichier supprimé: C:\Windows\Installer\61fc85.msi

 

(!) -- Fichiers temporaires supprimés.

 

 

1,Clé supprimée: HKLM\Software\Classes\CLSID\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}

1,Clé supprimée: HKLM\Software\Classes\CLSID\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}

1,Clé supprimée: HKLM\Software\Classes\Interface\{144940B1-F191-11D0-A8E2-00A0C90F29FC}

1,Clé supprimée: HKLM\Software\Classes\Interface\{2ACF56E2-56F1-11D0-9C43-00A0C90F29FC}

1,Clé supprimée: HKLM\Software\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}

1,Clé supprimée: HKLM\Software\Classes\Interface\{89541520-2D31-11D2-A166-0060081C43D9}

1,Clé supprimée: HKLM\Software\Classes\Interface\{8954152E-2D31-11D2-A166-0060081C43D9}

1,Clé supprimée: HKLM\Software\Classes\Interface\{D5A1EF9A-7948-435D-8B87-D6A598317288}

1,Clé supprimée: HKLM\Software\Classes\Interface\{FED621D1-59B0-11D0-9C47-00A0C90F29FC}

1,Clé supprimée: HKLM\Software\Classes\TypeLib\{CD082CCA-086F-4FD8-8FD7-247A0DBBD1CC}

0,Clé supprimée: HKLM\Software\Classes\SearchSettings.BHO

0,Clé supprimée: HKLM\Software\Classes\SearchSettings.BHO.1

0,Clé supprimée: HKLM\Software\Application Updater

0,Clé supprimée: HKLM\Software\Dealio

0,Clé supprimée: HKLM\Software\Search Settings

0,Clé supprimée: HKCU\Software\Search Settings

0,Clé supprimée: HKCU\Software\AppDataLow\Software\Dealio

0,Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C878CD69-85DB-426B-81A3-E71175AAEB91}

0,Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\Search Settings

 

 

============== SCAN ADDITIONNEL ==============

 

** Mozilla Firefox Version [3.6.8 (fr)] **

 

-- C:\Users\Joseph\AppData\Roaming\Mozilla\FireFox\Profiles\i4aesmnj.default\Prefs.js --

browser.download.dir, C:\\Users\\Joseph\\Desktop

browser.download.lastDir, C:\\Users\\Joseph\\Desktop

browser.search.selectedEngine, Fissa

browser.startup.homepage, hxxp://portail.free.fr/

browser.startup.homepage_override.mstone, rv:1.9.2.8

 

========================================

 

** Internet Explorer Version [8.0.7600.16385] **

 

[HKCU\Software\Microsoft\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Do404Search: 0x01000000

Enable Browser Extensions: yes

Local Page: C:\Windows\system32\blank.htm

Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896

Show_ToolBar: yes

Start Page: hxxp://fr.msn.com/

 

[HKLM\Software\Microsoft\Internet Explorer\Main]

AutoHide: yes

Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896

Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Delete_Temp_Files_On_Exit: yes

Local Page: C:\Windows\SysWOW64\blank.htm

Search bar: hxxp://search.msn.com/spbasic.htm

Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Start Page: hxxp://fr.msn.com/

 

[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]

Tabs: res://ieframe.dll/tabswelcome.htm

Blank: res://mshtml.dll/blank.htm

 

========================================

 

C:\Program Files (x86)\Ad-Remover\Quarantine: 39 Fichier(s)

C:\Program Files (x86)\Ad-Remover\Backup: 15 Fichier(s)

 

C:\Ad-Report-CLEAN[1].txt - 06/09/2010 (4150 Octet(s))

C:\Ad-Report-SCAN[1].txt - 06/09/2010 (4214 Octet(s))

 

Fin à: 23:42:17, 06/09/2010

 

============== E.O.F ==============

 

 

 

quoi de neuf ?

Chryslerman, mode inquiet

[Florinator]

Bonjour Chryslerman

 

A nouveau merci pour la reponse.

Et tu auras des réponses jusqu'à la fin du sujet maintenant.

 

Les pages de publicités vont disparaître, le coupable est Eorezo, un espèce de faux logiciel qui sert à rien à part te balancer des pubs.Lui même était désinstallé mais pas son service actif C:\Program Files (x86)\Application Updater.

 

Bref,il y a des choses à supprimer encore donc on va creuser:

 

Télécharge ZHPDiag crée par Nicolas Coolman

 

• Enregistre le sur ton bureau
  
• Double clique sur l'icône
  
• Suis les instructions à l'ecran
  
• Clique sur pour lancer l'analyse
  
• Clique sur pour copier le rapport
  
• Puis colle le dans ta prochaine réponses
  
• Le rapport se situe aussi sous C:\Program Files\ZebHelpProcess\ZHPDiag.txt

 

A++

[chryslerman]

A nouveau ... suite du marathon ...

 

Rapport de ZHPDiag v1.26.592 par Nicolas Coolman, Update du 06/09/2010

Run by Joseph at 07/09/2010 13:51:26

Web site : ZHPDiag Outil de diagnostic

Contact : nicolascoolman@yahoo.fr

 

---\\ Web Browser

MSIE: Internet Explorer v8.0.7600.16385

MFIE: Mozilla Firefox (3.6.

 

---\\ System Information

Platform : Windows 7 Home Premium (6.1.7600)

Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel

Operating System: 64 Bits

Boot mode: Normal (Normal boot)

Total RAM: 4090 MB (53% free)

System drive C: has 257 GB (56%) free of 454 GB

 

---\\ Logged in mode

Computer Name: JOSEPH-PC

User Name: Joseph

All Users Names: Joseph, HomeGroupUser$, ASPNET, Administrateur,

Unselected Option: O1,O45,O61,O65,O82

Logged in as Administrator

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 257 Go of 454 Go)

D:\ CD-ROM drive (Not Inserted)

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK

 

 

---\\ Processus lancés

[MD5.896A1DB9A972AD2339C2E8569EC926D1] - (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088]

[MD5.C7A9C4FDCEA704A34A5997FE0A8A0A38] - (.Dritek System Inc. - Launch Manager Keyboard Application.) -- C:\Program Files (x86)\Launch Manager\LManager.exe [1194504]

[MD5.0A7E9FDF3BF1980CA09FEEAC7F52EFBC] - (.ALWIL Software - avast! service GUI component.) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe [81000]

[MD5.3A0647BDED81DBE0BCBB51D70B22C9E0] - (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jusched.exe [149280]

[MD5.E3E52FB1E04853E45E2888F94CDD10B7] - (.Vodafone - MobileConnect.) -- C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe [2412032]

[MD5.BACCDA841C689D1CBA941F478E8ED24B] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [910296]

[MD5.964969077EF45690167B485F75CFA6EB] - (.Secure Digital Services Limited - OfferBox.) -- C:\Program Files (x86)\OfferBox\OfferBox.exe [1962840]

[MD5.642FA80C2C43EE609313746AA305DC86] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [14808]

[MD5.415617780C17047D2E19B10699A0CE02] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [548352]

 

 

---\\ Page de démarrage de Mozilla Firefox (M0)

M0 - MFSP: prefs.js [Joseph - i4aesmnj.default] Portail Free

 

 

---\\ Programmes d'extension pour Mozilla Firefox (M2)

M2 - MFEP: prefs.js [Joseph - i4aesmnj.default\tineye@ideeinc.com] [] TinEye Reverse Image Search 1.0 (.Martine Vong.)

M2 - MFEP: prefs.js [Joseph - i4aesmnj.default\{2f17f610-5e97-4fed-828f-9940b7b577a4}] [] TV-Fox 1.6.1 (.tv-fox Inc..)

M2 - MFEP: prefs.js [Joseph - i4aesmnj.default\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}] [] Flash and Video Download 0.1 (.Vicente Amor.)

 

 

---\\ Plugins de navigateurs Opera/Firefox(P1/P2)

P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll

P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeploytk.dll

P2 - FPN:Firefox Plugin Navigator . (.DivX, Inc - npdivxplayerplugin.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npDivxPlayerPlugin.dll

P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npnul32.dll

P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.3.4".) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin6.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin7.dll

P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX Web Player version 2.0.2.40.) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

P2 - FPN: [HKLM] [@divx.com/DivX Player Plugin,version=1.0.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\DivX\DivX Player\npDivxPlayerPlugin.dll (.not file.)

P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.50524.0.) -- c:\Program Files (x86)\Microsoft Silverlight\4.0.50524.0\npctrl.dll

P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8081.0709] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files (x86)\Google\Update\1.2.183.29\npGoogleOneClick8.dll

P2 - FPN: [HKLM] [@videolan.org/vlc,version=0.8.6b] - (.VideoLAN Team - Version 0.8.6b, copyright 1996-2006 The VideoLAN Team<br><a href="http.) -- C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

 

 

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,

F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe

F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe

 

 

---\\ Pages de démarrage d'Internet Explorer (R0)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

 

 

---\\ Pages de recherche d'Internet Explorer (R1)

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Sign In

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Sign In

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Sign In

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

 

 

---\\ Internet Explorer URLSearchHook (R3)

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\SysWOW64\ieframe.dll

 

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: OfferBox - {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} . (.Secure Digital Services Limited - OfferBox.) -- C:\Program Files (x86)\OfferBox\OfferBoxBHO.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

 

 

---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [LManager] . (.Dritek System Inc. - Launch Manager Keyboard Application.) -- C:\Program Files (x86)\Launch Manager\LManager.exe

O4 - HKLM\..\Run: [avast!] . (.ALWIL Software - avast! service GUI component.) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jusched.exe

O4 - HKLM\..\Run: [autodetect] C:\Windows\SysWOW64\SupportAppXL\AutoDect.exe (.not file.)

O4 - HKLM\..\Run: [MobileConnect] . (.Vodafone - MobileConnect.) -- C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKCU\..\Run: [spybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\RunOnce: [uniblueRegistryBooster] C:\Program Files (x86)\Uniblue\RegistryBooster\launcher.exe (.not file.)

O4 - HKLM\..\Wow6432Node\Run: [LManager] . (.Dritek System Inc. - Launch Manager Keyboard Application.) -- C:\Program Files (x86)\Launch Manager\LManager.exe

O4 - HKLM\..\Wow6432Node\Run: [avast!] . (.ALWIL Software - avast! service GUI component.) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe

O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jusched.exe

O4 - HKLM\..\Wow6432Node\Run: [autodetect] C:\Windows\SysWOW64\SupportAppXL\AutoDect.exe (.not file.)

O4 - HKLM\..\Wow6432Node\Run: [MobileConnect] . (.Vodafone - MobileConnect.) -- C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-21-2810073013-1146786066-65820551-1000\..\Run: [spybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)

O4 - HKUS\S-1-5-21-2810073013-1146786066-65820551-1000\..\RunOnce: [uniblueRegistryBooster] C:\Program Files (x86)\Uniblue\RegistryBooster\launcher.exe (.not file.)

 

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\PROGRA~2\MICROS~2\Office10\EXCEL.exe

 

 

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet Explorer.) -- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)

 

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll

O10 - WLSP:\000000000008\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll

 

 

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{76AAABAB-3992-4CED-99F2-407017B4F0F5}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\..\{F90DAC89-C3FE-43B5-BC5D-34AAB9D707FD}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{76AAABAB-3992-4CED-99F2-407017B4F0F5}: DhcpNameServer = 212.27.40.241 212.27.40.240

O17 - HKLM\System\CS1\Services\Tcpip\..\{DEEE12E0-3A39-4EA7-854A-DF3C9FB965E5}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{E63872AF-E04F-47A1-99C8-FE96FC20ED91}: DhcpNameServer = 172.20.2.10 172.20.2.39

O17 - HKLM\System\CS2\Services\Tcpip\..\{76AAABAB-3992-4CED-99F2-407017B4F0F5}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{F90DAC89-C3FE-43B5-BC5D-34AAB9D707FD}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS3\Services\Tcpip\..\{76AAABAB-3992-4CED-99F2-407017B4F0F5}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS3\Services\Tcpip\..\{F90DAC89-C3FE-43B5-BC5D-34AAB9D707FD}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

 

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

 

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) . (.LSI Corporation - LSI Soft Modem Call Progress Service.) - C:\Program Files\LSI SoftModem\agr64svc.exe

O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - Apple Mobile Device Service.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) . (.ALWIL Software - avast! Antivirus updating service.) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus (avast! Antivirus) . (.ALWIL Software - avast! antivirus service.) - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe

O23 - Service: Acer ePower Service (ePowerSvc) . (.Acer Incorporated - ePowerSvc.) - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe

O23 - Service: EpsonBidirectionalService (EpsonBidirectionalService) . (.SEIKO EPSON CORPORATION - eEBAPI Core Process module.) - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe

O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.exe

O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.exe

O23 - Service: GRegService (Greg_Service) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe

O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

O23 - Service: NTI IScheduleSvc (NTI IScheduleSvc) . (.NewTech Infosystems, Inc. - Backup Manager Module.) - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe

O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) . (.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\nvvsvc.exe

O23 - Service: C:\Windows\system32\samsrv.dll (SamSs) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\lsass.exe

O23 - Service: SBSD Security Center Service (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: Sentinel Keys Server (SentinelKeysServer) . (.SafeNet, Inc. - Pas de description.) - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe

O23 - Service: Sentinel Protection Server (SentinelProtectionServer) . (.SafeNet, Inc - Sentinel Protection Server for SuperPro and.) - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe

O23 - Service: (SFR.DashBoard.Service) . (.SFR - SFR.DashBoard.Service.) - C:\Program Files (x86)\SFR\Gestionnaire de Connexion\SFR.DashBoard.Service.exe

O23 - Service: C:\Windows\system32\spoolsv.exe (Spooler) . (.Pas de propriétaire - Pas de description.) - C:\Windows\System32\spoolsv.exe

O23 - Service: C:\Windows\system32\sppsvc.exe (sppsvc) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\sppsvc.exe

O23 - Service: TeamViewer 5 (TeamViewer5) . (.TeamViewer GmbH - TeamViewer Service.) - C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe

O23 - Service: Updater Service (Updater Service) . (.Acer - Acer Update Service.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

O23 - Service: Vodafone Mobile Connect Service (VMCService) . (.Vodafone - VMCService.) - C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe

 

 

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - (.not file.)

 

 

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Epson Printer Software Downloader.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Registry Winner Schedule.job

 

 

---\\ Composants installés (ActiveSetup Installed Components) (O40)

O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\regutils.dll

O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE

O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r22.) -- C:\Windows\SysWow64\Macromed\Flash\Flash10b.ocx

 

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (blbdrive) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\blbdrive.sys

O41 - Driver: Pilote de CD-ROM (cdrom) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\cdrom.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\Drivers\dfsc.sys

O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\discache.sys

O41 - Driver: EUTRON SmartKey Parallel Driver (eusk2par) . (.EUTRON - SmartKey Parallel driver for Windows.) - C:\Windows\system32\Drivers\eusk2par.sys

O41 - Driver: Microsoft System Management BIOS Driver (mssmbios) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\mssmbios.sys

O41 - Driver: NetBIOS Interface (NetBIOS) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\netbios.sys

O41 - Driver: NetBT (NetBT) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\netbt.sys

O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\pacer.sys

O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\rdbss.sys

O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\RDPCDD.sys

O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\rdprefmp.sys

O41 - Driver: Terminal Device Driver (TermDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: Virtual WiFi Filter Driver (vwififlt) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\vwififlt.sys

O41 - Driver: WFP Lightweight Filter (WfpLwf) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\wfplwf.sys

O41 - Driver: mwlPSDFilter (mwlPSDFilter) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\mwlPSDFilter.sys

O41 - Driver: mwlPSDNServ (mwlPSDNServ) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\mwlPSDNServ.sys

O41 - Driver: mwlPSDVDisk (mwlPSDVDisk) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys

 

 

---\\ Logiciels installés (O42)

O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07}

O42 - Logiciel: ABC 3GP/MP4 Converter 3.00 - (.ABCMedia Studio@VOWSoft,Ltd..) [HKLM] -- ABC 3GP/MP4 Converter

O42 - Logiciel: ACDSee 6.0 Standard - (.ACD Systems Ltd..) [HKLM] -- {968E8690-EDC0-413A-A25C-9D85ADA0333F}

O42 - Logiciel: AVS Update Manager 1.0 - (.Online Media Technologies Ltd..) [HKLM] -- AVS Update Manager_is1

O42 - Logiciel: AVS Video Converter 6 - (.Online Media Technologies Ltd..) [HKLM] -- AVS4YOU Video Converter 6_is1

O42 - Logiciel: AVS4YOU Software Navigator 1.3 - (.Online Media Technologies Ltd..) [HKLM] -- AVS4YOU Software Navigator_is1

O42 - Logiciel: Acer Arcade Deluxe - (.CyberLink Corp..) [HKLM] -- InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}

O42 - Logiciel: Acer Arcade Deluxe - (.CyberLink Corp..) [HKLM] -- {2637C347-9DAD-11D6-9EA2-00055D0CA761}

O42 - Logiciel: Acer Backup Manager - (.NewTech Infosystems.) [HKLM] -- InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}

O42 - Logiciel: Acer Crystal Eye Webcam - (.Suyin Optronics Corp.) [HKLM] -- {7760D94E-B1B5-40A0-9AA0-ABF942108755}

O42 - Logiciel: Acer GameZone Console - (.Oberon Media, Inc..) [HKLM] -- {8ed9688e-4f79-4308-91ca-f1c37ca142b4}_is1

O42 - Logiciel: Acer GridVista - (.Acer Inc..) [HKLM] -- GridVista

O42 - Logiciel: Acer Registration - (.Acer Incorporated.) [HKLM] -- Acer Registration

O42 - Logiciel: Acer ScreenSaver - (.Acer Incorporated.) [HKLM] -- Acer Screensaver

O42 - Logiciel: Acer Updater - (.Acer Incorporated.) [HKLM] -- {EE171732-BEB4-4576-887D-CB62727F01CA}

O42 - Logiciel: Acer ePower Management - (.Acer Incorporated.) [HKLM] -- {3DB0448D-AD82-4923-B305-D001E521A964}

O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.) [HKLM] -- {7F811A54-5A09-4579-90E1-C93498E230D9}

O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems, Inc..) [HKLM] -- {922E8525-AC7E-4294-ACAA-43712D4423C0}

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin

O42 - Logiciel: Adobe Illustrator 10 - (.Adobe Systems, Inc..) [HKLM] -- {412033BC-44CF-48D9-B813-4B835101F4D3}

O42 - Logiciel: Adobe Photoshop 7.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Photoshop 7.0

O42 - Logiciel: Adobe Reader 9.3.4 MUI - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}

O42 - Logiciel: Adobe SVG Viewer 3.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe SVG Viewer

O42 - Logiciel: Alice Greenfingers - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}

O42 - Logiciel: Amazonia - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11273477}

O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {A93944F2-D2D4-4750-BFE7-9A288FEAF2CF}

O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}

O42 - Logiciel: Applian FLV Player - (.Applian Technologies Inc..) [HKLM] -- Applian FLV Player2.0.23

O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}

O42 - Logiciel: Backup Manager Basic - (.NewTech Infosystems.) [HKLM] -- {72B776E5-4530-4C4B-9453-751DF87D9D93}

O42 - Logiciel: Chicken Invaders 2 - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110209593}

O42 - Logiciel: Client Activator 2.0 - English - (.Pas de propriétaire.) [HKLM] -- Rainbow Client Activator 2.0 English

O42 - Logiciel: Configuration DivX - (.DivX, Inc. .) [HKLM] -- DivX Setup.divx.com

O42 - Logiciel: CopyToDVD - (.VSO Software.) [HKLM] -- {93884E34-FD8F-46A9-A4D4-402868A5D51F}_is1

O42 - Logiciel: Cucusoft DVD to iPod + iPod Video Converter Suite 7.22.7.16 - (.Cucusoft, Inc..) [HKLM] -- Cucusoft DVD to iPod + iPod Video Converter Suite_is1

O42 - Logiciel: DVD Decrypter 3.5.4.0 Fr - (.Pas de propriétaire.) [HKLM] -- DVD Decrypter 3.5.4.0 Fr

O42 - Logiciel: Dairy Dash - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}

O42 - Logiciel: DivX Converter - (.DivX, Inc..) [HKLM] -- {B13A7C41581B411290FBC0395694E2A9}

O42 - Logiciel: DivX Player - (.DivX, Inc..) [HKLM] -- {8ADFC4160D694100B5B8A22DE9DCABD9}

O42 - Logiciel: DivX Plus DirectShow Filters - (.DivX, Inc..) [HKLM] -- DivX Plus DirectShow Filters

O42 - Logiciel: Dream Day First Home - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}

O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM] -- EPSON Scanner

O42 - Logiciel: Easy GIF Animator 5.1 - (.Karlis Blumentals.) [HKLM] -- Easy GIF Animator_is1

O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM] -- {87C2248A-C7DD-49ED-9BCD-B312A9D0819E}

O42 - Logiciel: Epson Event Manager - (.SEIKO EPSON Corporation.) [HKLM] -- {48F22622-1CC2-4A83-9C1E-644DD96F832D}

O42 - Logiciel: Epson FAX Utility - (.SEIKO EPSON CORPORATION.) [HKLM] -- {0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}

O42 - Logiciel: Epson PC-FAX Driver - (.Pas de propriétaire.) [HKLM] -- EPSON PC-FAX Driver 2

O42 - Logiciel: Epson Printer Software Downloader - (.Pas de propriétaire.) [HKLM] -- Epson Printer Software Downloader

O42 - Logiciel: Epson Printer Software Downloader - (.SEIKO EPSON CORPORATION.) [HKLM] -- {B6A98E5F-D6A7-46FB-9E9D-1F7BF4434001}

O42 - Logiciel: Epson Stylus Office BX610FW_Office TX610FW_SX610FW Manuel - (.Pas de propriétaire.) [HKLM] -- Epson Stylus Office BX610FW_Office TX610FW_SX610FW Guide d'utilisation

O42 - Logiciel: EpsonNet Print - (.SEIKO EPSON CORPORATION.) [HKLM] -- {3E31400D-274E-4647-916C-2CACC3741799}

O42 - Logiciel: EpsonNet Setup - (.SEIKO EPSON CORPORATION.) [HKLM] -- {FFFAE01B-466F-4C07-9821-A94FD753BDDA}

O42 - Logiciel: Farm Frenzy 2 - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}

O42 - Logiciel: FileZilla Client 3.3.1 - (.Pas de propriétaire.) [HKLM] -- FileZilla Client

O42 - Logiciel: Fissa - (.Secure Digital Services.) [HKLM] -- Fissa

O42 - Logiciel: Free PDF to Word Doc Converter v1.1 - (.www.hellopdf.com.) [HKLM] -- Free PDF to Word Doc Converter_is1

O42 - Logiciel: Free Video Converter V 2.5 - (.Koyote Soft.) [HKLM] -- Free Video Converter_is1

O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {B131E59D-202C-43C6-84C9-68F0C37541F1}

O42 - Logiciel: Gestionnaire de Connexion SFR 3.0 - (.SFR.) [HKLM] -- {FC48747D-095F-4CF6-B54E-37D4F4738A15}_is1

O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {F7B0939E-58DF-11DF-B3A6-005056806466}

O42 - Logiciel: Grand Theft Auto IV - (.Rockstar Games.) [HKLM] -- Grand Theft Auto IV_is1

O42 - Logiciel: Grand Theft Auto Vice City - (.Pas de propriétaire.) [HKLM] -- {4B35F00C-E63D-40DC-9839-DF15A33EAC46}

O42 - Logiciel: Granny In Paradise - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110551697}

O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {7059BDA7-E1DB-442C-B7A1-6144596720A4}

O42 - Logiciel: Heroes of Hellas - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}

O42 - Logiciel: Identity Card - (.Acer Incorporated.) [HKLM] -- Identity Card

O42 - Logiciel: InSitu 5.5 - (.Transtechnology.) [HKLM] -- InSitu_is1

O42 - Logiciel: Installation BizManager - (.Pas de propriétaire.) [HKLM] -- Installation BizManager

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {46ABBC54-1872-4AA3-95E2-F2C063A63F31}

O42 - Logiciel: Java 6 Update 17 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216017FF}

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5}

O42 - Logiciel: Launch Manager - (.Acer Inc..) [HKLM] -- LManager

O42 - Logiciel: MAJ CATALOGUE 2020 ARTISAN 2007 - (.2020 Technologies.) [HKLM] -- {D21E37CE-C539-427A-B35D-952DAF50747E}

O42 - Logiciel: MAJ CATALOGUE 2020 DECO MEUBLE - (.2020 Technologies.) [HKLM] -- {3B9FF5B0-E28F-467C-8E8C-39FEFB02F32B}

O42 - Logiciel: MAJ CATALOGUE 2020 DECO VERSION 8.1 - (.2020 Technologies.) [HKLM] -- {870C1936-2053-4085-80E7-C90C367D9A49}

O42 - Logiciel: MAJ CATALOGUE 2020 ELECTROMENAGER - (.2020 Technologies.) [HKLM] -- {E2330810-DE11-4804-8ED4-B48571A89F3E}

O42 - Logiciel: MAJ CATALOGUE 2020 HOTTE ELICA - (.2020 Technologies.) [HKLM] -- {550DC5CB-36F4-474D-A4DA-92A216A48342}

O42 - Logiciel: MAJ CATALOGUE 2020 LEADER FLORIDA 2007 - (.2020 Technologies.) [HKLM] -- {329DFF1F-0395-44C1-991C-50E5782334AD}

O42 - Logiciel: MAJ CATALOGUE 2020 LEADER JUILLET 2007 - (.2020 Technologies.) [HKLM] -- {3A12E274-2DFC-4BE4-B47B-F361F8C51CEC}

O42 - Logiciel: MAJ CATALOGUE 2020 Leader Arcos - (.2020 Technologies.) [HKLM] -- {645D7CA3-7DE4-48D4-8CBB-314CF44E2AB5}

O42 - Logiciel: MAJ CATALOGUE 2020 PIECE - (.2020 Technologies.) [HKLM] -- {1C564114-5A34-4579-8AFD-371FA6306148}

O42 - Logiciel: MAJ CATALOGUE 2020 Placards - (.2020 Technologies.) [HKLM] -- {414E7B91-C5BE-4D1E-9D7E-85C6B72D6EC1}

O42 - Logiciel: MAJ CATALOGUE 2020 SANITAIRE BAINS - (.2020 Technologies.) [HKLM] -- {94F93177-9521-41DF-84CF-5CFAEE6DF6EA}

O42 - Logiciel: MAJ CATALOGUE 2020 XTRA DECO - (.2020 Technologies.) [HKLM] -- {4825329B-9371-4B1E-8470-CD144A2D5256}

O42 - Logiciel: MSVC80_x86 - (.Nokia.) [HKLM] -- {212748BB-0DA5-46DE-82A1-403736DC9F27}

O42 - Logiciel: MSVC80_x86_v2 - (.Nokia.) [HKLM] -- {6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1

O42 - Logiciel: Maqwin - (.Pas de propriétaire.) [HKLM] -- Maqwin

O42 - Logiciel: Merriam Websters Spell Jam - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112662477}

O42 - Logiciel: Micro Application Police Manuscrite - (.Pas de propriétaire.) [HKLM] -- Police Manuscrite

O42 - Logiciel: Micro Scrabble - (.Pas de propriétaire.) [HKLM] -- ST6UNST #1

O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}

O42 - Logiciel: Microsoft AutoRoute 2006 - (.Microsoft Corporation.) [HKLM] -- {83ED1E80-A1B7-4236-BCF1-AC4A88151A6B}

O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}

O42 - Logiciel: Microsoft Games for Windows - LIVE - (.Microsoft Corporation.) [HKLM] -- {F97E3841-CA9D-4964-9D64-26066241D26F}

O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM] -- {8FB1B528-E260-451E-9B55-E9152F94B80B}

O42 - Logiciel: Microsoft Office XP Professional avec FrontPage - (.Microsoft Corporation.) [HKLM] -- {9028040C-6000-11D3-8CFE-0050048383C9}

O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}

O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {0214A441-A4AB-43A8-8DEF-2F73C5364673}

O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE}

O42 - Logiciel: Movies2iPhone .74b - (.OK Prods Ltd.) [HKLM] -- Movies2iPhone

O42 - Logiciel: Mozilla Firefox (3.6. - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.

O42 - Logiciel: NETGEAR WG111T Smart Wizard Wireless Utility - (.Pas de propriétaire.) [HKLM] -- {51123D42-6B9C-4B93-900C-29F9EC5963C9}

O42 - Logiciel: NTI Backup Now 5 - (.NewTech Infosystems.) [HKLM] -- InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}

O42 - Logiciel: NTI Media Maker 8 - (.NewTech Infosystems.) [HKLM] -- InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}

O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {1C4551A6-4743-4093-91E4-1477CD655043}

O42 - Logiciel: Need4 Software Launcher 6.3 - (.Need4Video.) [HKLM] -- Need4 Software Launcher

O42 - Logiciel: Need4 Video Converter 7 - (.Need4Video.) [HKLM] -- Need4 Video Converter 7

O42 - Logiciel: Nokia Connectivity Cable Driver - (.Nokia.) [HKLM] -- {6869591A-7DD8-46D2-837F-57CBF7358955}

O42 - Logiciel: OfferBox - (.Secure Digital Services.) [HKLM] -- {2C8574B5-6935-4FCE-860E-F4E8602378FF}

O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}

O42 - Logiciel: PC Connectivity Solution - (.Nokia.) [HKLM] -- {6E0352EE-6F0D-4FBC-B1B8-4FF032C78BE0}

O42 - Logiciel: PDF Writer Pro v2.0 - (.Amic Utilities, Inc.) [HKLM] -- PDF Writer Pro_is1

O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}

O42 - Logiciel: Poker Pop Deluxe - (.Zylom Games.) [HKLM] -- Poker Pop Deluxe

O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {3D9892BB-A751-4E48-ADC8-E4289956CE1D}

O42 - Logiciel: RarZilla Free Unrar - (.Philipp Winterberg.) [HKLM] -- RarZilla Free Unrar

O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}

O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}

O42 - Logiciel: Return to Castle Wolfenstein - (.Activision, Inc..) [HKLM] -- Return to Castle Wolfenstein

O42 - Logiciel: Rockstar Games Social Club - (.Rockstar Games.) [HKLM] -- {08B3869E-D282-424C-9AFC-870E04A4BA14}

O42 - Logiciel: SCRABBLE Deluxe - (.MSN Zone.) [HKLM] -- SCRABBLE Deluxe

O42 - Logiciel: SCRABBLE® 2005 DEMO FR - (.Pas de propriétaire.) [HKLM] -- {07CE148E-1523-46E8-A22E-120954477135}

O42 - Logiciel: Safari - (.Apple Inc..) [HKLM] -- {EAFEF30E-3789-49C7-A6D9-77C12E005BAC}

O42 - Logiciel: Scrabble™ Interactive 2009 Edition - (.Pas de propriétaire.) [HKLM] -- Scrabble™ Interactive 2009 Edition_is1

O42 - Logiciel: Search Settings v1.2.3 - (.Spigot, Inc..) [HKLM] -- {5F05C28D-DEA9-4AD6-A73A-064175988EAB}

O42 - Logiciel: Sentinel Protection Installer 7.4.2 - (.SafeNet, Inc..) [HKLM] -- {335424A2-2C4E-49F3-A066-58635269DB83}

O42 - Logiciel: Sentinel System Driver Installer 7.4.0 - (.SafeNet, Inc..) [HKLM] -- {62B74257-2E1B-48FB-843C-0FBA43FE1327}

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1

O42 - Logiciel: Star Defender 4 - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-114803710}

O42 - Logiciel: Sweet Home 3D version 2.2 - (.eTeks.) [HKLM] -- Sweet Home 3D_is1

O42 - Logiciel: TeamViewer 5 - (.TeamViewer GmbH.) [HKLM] -- TeamViewer 5

O42 - Logiciel: TranstecMaj - (.Pas de propriétaire.) [HKLM] -- UninstallTranstecMaj

O42 - Logiciel: Uninstall Dual Mode Camera - (.Pas de propriétaire.) [HKLM] -- Dual Mode Camera_is1

O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM] -- {5EE7D259-D137-4438-9A5F-42F432EC0421}

O42 - Logiciel: Video Download Capture V2.3.8 - (.Apowersoft.) [HKLM] -- {3C9D008D-3716-4C3F-90CD-38ED57568FAB}_is1

O42 - Logiciel: VideoLAN VLC media player 0.8.6b - (.VideoLAN Team.) [HKLM] -- VLC media player

O42 - Logiciel: VideoMach - (.Pas de propriétaire.) [HKLM] -- VideoMach

O42 - Logiciel: Vodafone Mobile Connect - (.Vodafone.) [HKLM] -- {96B51C0B-D3BE-4DF3-959C-28B22C10CFBB}

O42 - Logiciel: Welcome Center - (.Acer Incorporated.) [HKLM] -- Acer Welcome Center

O42 - Logiciel: Whitesmoke - (.Secure Digital Services.) [HKLM] -- {18BEEA50-526B-486A-A66A-BF0AB729E4CD}

O42 - Logiciel: WinHTTrack Website Copier 3.43-9C - (.HTTrack.) [HKLM] -- WinHTTrack Website Copier_is1

O42 - Logiciel: WinMerge 2.12.4 - (.Thingamahoochie Software.) [HKLM] -- WinMerge_is1

O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {ED00D08A-3C5F-488D-93A0-A04F21F23956}

O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA}

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818}

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {770F1BEC-2871-4E70-B837-FB8525FFA3B1}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA}

O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}

O42 - Logiciel: avast! Antivirus - (.Alwil Software.) [HKLM] -- avast!

O42 - Logiciel: e-anim-test 8.02.025 - (.Pas de propriétaire.) [HKLM] -- e-anim-test 8.02.025

O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM] -- eMule

O42 - Logiciel: eReg - (.Logitech, Inc..) [HKLM] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}

O42 - Logiciel: eSobi v2 - (.esobi Inc..) [HKLM] -- InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}

O42 - Logiciel: ioquake3 - (.Pas de propriétaire.) [HKLM] -- ioquake3

O42 - Logiciel: scrabbleproB 1.1.2 - (.scrabblepro.) [HKLM] -- scrabbleproB_is1

 

---\\ HKCU & HKLM Software Keys

[HKCU\Software\20-20 Reports]

[HKCU\Software\20-20 Technologies]

[HKCU\Software\ABBYY]

[HKCU\Software\AC3Filter]

[HKCU\Software\ACD Systems]

[HKCU\Software\ALWIL Software]

[HKCU\Software\AVS4YOU]

[HKCU\Software\Acer]

[HKCU\Software\Ad-Remover]

[HKCU\Software\Adobe]

[HKCU\Software\Alps]

[HKCU\Software\AppDataLow\Software\Google]

[HKCU\Software\AppDataLow\Software\Microsoft]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\Apple Computer, Inc.]

[HKCU\Software\Apple Inc.]

[HKCU\Software\Binary Noise]

[HKCU\Software\Boonty]

[HKCU\Software\Bytemobile]

[HKCU\Software\Canon]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\CoreAAC]

[HKCU\Software\CyberLink]

[HKCU\Software\DVD Decrypter]

[HKCU\Software\Data Dynamics]

[HKCU\Software\DivXNetworks]

[HKCU\Software\DivX]

[HKCU\Software\Dvd-cloner]

[HKCU\Software\EPSON]

[HKCU\Software\FLEXnet]

[HKCU\Software\FissaSearch]

[HKCU\Software\Freeware]

[HKCU\Software\GNU]

[HKCU\Software\Gabest]

[HKCU\Software\Google]

[HKCU\Software\Gromada]

[HKCU\Software\HP]

[HKCU\Software\Hewlett-Packard]

[HKCU\Software\IM Providers]

[HKCU\Software\InnoShock]

[HKCU\Software\Intel]

[HKCU\Software\JavaSoft]

[HKCU\Software\Karlis Blumentals]

[HKCU\Software\LG Software Innovations]

[HKCU\Software\Laudrin]

[HKCU\Software\Leadertech]

[HKCU\Software\Local AppWizard-Generated Applications]

[HKCU\Software\Logitech]

[HKCU\Software\Macromedia]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Mozilla]

[HKCU\Software\NVIDIA Corporation]

[HKCU\Software\Need4Video]

[HKCU\Software\Netscape]

[HKCU\Software\NewTech Infosystems]

[HKCU\Software\Nokia]

[HKCU\Software\Northcode Inc]

[HKCU\Software\Novatel Wireless]

[HKCU\Software\ODBC]

[HKCU\Software\OEM]

[HKCU\Software\Oberon Media]

[HKCU\Software\OfferBox]

[HKCU\Software\PAW-Software]

[HKCU\Software\PDFCreator]

[HKCU\Software\Philipp Winterberg]

[HKCU\Software\Policies]

[HKCU\Software\Realtek]

[HKCU\Software\RtkPCEE3sMsg]

[HKCU\Software\S3R521]

[HKCU\Software\SEIKO EPSON]

[HKCU\Software\SFR]

[HKCU\Software\Safer Networking Limited]

[HKCU\Software\SecuROM]

[HKCU\Software\SlySoft]

[HKCU\Software\Sonix]

[HKCU\Software\TeamViewer]

[HKCU\Software\Thingamahoochie]

[HKCU\Software\Trolltech]

[HKCU\Software\VB and VBA Program Settings]

[HKCU\Software\VOWSoft]

[HKCU\Software\VSO]

[HKCU\Software\Vodafone]

[HKCU\Software\WhiteSmokeTranslator]

[HKCU\Software\WinHTTrack Website Copier]

[HKCU\Software\WinRAR SFX]

[HKCU\Software\Wistron]

[HKCU\Software\Wow6432Node]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\Zylom]

[HKCU\Software\eMule]

[HKCU\Software\keyhole.com]

[HKCU\Software\pdfw]

[HKLM\Software\20-20 Program Group]

[HKLM\Software\6Tm]

[HKLM\Software\ABBYY]

[HKLM\Software\ACD Systems]

[HKLM\Software\AGEIA Technologies]

[HKLM\Software\ALWIL Software]

[HKLM\Software\AVS4YOU]

[HKLM\Software\Acer Incorporated]

[HKLM\Software\Activision]

[HKLM\Software\Adobe]

[HKLM\Software\America Online]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\Apple Inc.]

[HKLM\Software\Canon]

[HKLM\Software\Chilkat Software, Inc.]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Cucusoft]

[HKLM\Software\CyberLink]

[HKLM\Software\DIOC]

[HKLM\Software\DivXNetworks]

[HKLM\Software\DivX]

[HKLM\Software\EPSON]

[HKLM\Software\EpsonNet]

[HKLM\Software\FileZilla 3]

[HKLM\Software\GNU]

[HKLM\Software\Google]

[HKLM\Software\Hewlett-Packard]

[HKLM\Software\ICE]

[HKLM\Software\ICL]

[HKLM\Software\InnoShock]

[HKLM\Software\InstallShield]

[HKLM\Software\Intel]

[HKLM\Software\JL2005C]

[HKLM\Software\JL2005C_1]

[HKLM\Software\JL2005C_2]

[HKLM\Software\JL2005C_3]

[HKLM\Software\JL2005C_4]

[HKLM\Software\JL2005C_5]

[HKLM\Software\JL2005C_6]

[HKLM\Software\JL6_DECODE]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\Kodak]

[HKLM\Software\LG Software Innovations]

[HKLM\Software\Licenses]

[HKLM\Software\MDC]

[HKLM\Software\Macromedia]

[HKLM\Software\Malwarebytes' Anti-Malware]

[HKLM\Software\McAfeeInstaller]

[HKLM\Software\Melbourne House]

[HKLM\Software\Metaboli]

[HKLM\Software\Micro Application]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\NETGEAR]

[HKLM\Software\NVIDIA Corporation]

[HKLM\Software\Need4Video]

[HKLM\Software\NewTech Infosystems]

[HKLM\Software\Nokia]

[HKLM\Software\Novatel Wireless]

[HKLM\Software\ODBC]

[HKLM\Software\OEM]

[HKLM\Software\Oberon Media]

[HKLM\Software\OfferBox]

[HKLM\Software\PC Connectivity Solution]

[HKLM\Software\PCM_Upgrade]

[HKLM\Software\PCSuite]

[HKLM\Software\PDFCreator]

[HKLM\Software\Philipp Winterberg]

[HKLM\Software\Policies]

[HKLM\Software\Rainbow Technologies]

[HKLM\Software\Realtek Semiconductor Corp.]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\Rockstar Games]

[HKLM\Software\S3R521]

[HKLM\Software\SEIKO EPSON CORPORATION]

[HKLM\Software\SFR]

[HKLM\Software\Safenet Sentinel]

[HKLM\Software\Safer Networking Limited]

[HKLM\Software\SiteAdvisor]

[HKLM\Software\Suyin Optronics Corp]

[HKLM\Software\TeamViewer3]

[HKLM\Software\TeamViewer]

[HKLM\Software\Thingamahoochie]

[HKLM\Software\Transtechnology]

[HKLM\Software\TrendMicro]

[HKLM\Software\UBISOFT]

[HKLM\Software\Uniblue]

[HKLM\Software\VideoLAN]

[HKLM\Software\Vodafone]

[HKLM\Software\Volatile]

[HKLM\Software\Vso]

[HKLM\Software\WinHTTrack Website Copier]

[HKLM\Software\Wise Solutions]

[HKLM\Software\Wistron]

[HKLM\Software\Wow6432Node]

[HKLM\Software\ZebraProd]

[HKLM\Software\ds]

[HKLM\Software\mozilla.org]

[HKLM\Software\nSplitter]

 

 

---\\ Contenu des dossiers ProgramFiles/ProgramData (O43)

O43 - CFD:Common File Directory ----D- C:\Program Files\Acer

O43 - CFD:Common File Directory ----D- C:\Program Files\Alwil Software

O43 - CFD:Common File Directory ----D- C:\Program Files\Apoint2K

O43 - CFD:Common File Directory ----D- C:\Program Files\Bonjour

O43 - CFD:Common File Directory ----D- C:\Program Files\Broadcom

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files

O43 - CFD:Common File Directory ----D- C:\Program Files\DIFX

O43 - CFD:Common File Directory ----D- C:\Program Files\DivX

O43 - CFD:Common File Directory ----D- C:\Program Files\DVD Maker

O43 - CFD:Common File Directory ----D- C:\Program Files\EpsonNet

O43 - CFD:Common File Directory -SH-D- C:\Program Files\Fichiers communs

O43 - CFD:Common File Directory ----D- C:\Program Files\Google

O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer

O43 - CFD:Common File Directory ----D- C:\Program Files\iPod

O43 - CFD:Common File Directory ----D- C:\Program Files\iTunes

O43 - CFD:Common File Directory ----D- C:\Program Files\Logitech

O43 - CFD:Common File Directory ----D- C:\Program Files\LSI SoftModem

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Games

O43 - CFD:Common File Directory ----D- C:\Program Files\micro_scrabble

O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild

O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek

O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies

O43 - CFD:Common File Directory ----D- C:\Program Files\Transtechnology

O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Defender

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Journal

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Mail

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Photo Viewer

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Portable Devices

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Service

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Sidebar

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Apple

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\LogiShrd

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Microsoft Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Services

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System

O43 - CFD:Common File Directory ----D- C:\ProgramData\ACD Systems

O43 - CFD:Common File Directory ----D- C:\ProgramData\Acer

O43 - CFD:Common File Directory ----D- C:\ProgramData\Adobe

O43 - CFD:Common File Directory ----D- C:\ProgramData\Apple

O43 - CFD:Common File Directory ----D- C:\ProgramData\Apple Computer

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Application Data

O43 - CFD:Common File Directory ----D- C:\ProgramData\Arcade Lab

O43 - CFD:Common File Directory ----D- C:\ProgramData\AVS4YOU

O43 - CFD:Common File Directory ----D- C:\ProgramData\AWEM

O43 - CFD:Common File Directory ----D- C:\ProgramData\BackupManager

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Bureau

O43 - CFD:Common File Directory ----D- C:\ProgramData\CyberLink

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Desktop

O43 - CFD:Common File Directory ----D- C:\ProgramData\DivX

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Documents

O43 - CFD:Common File Directory ----D- C:\ProgramData\EgisTec

O43 - CFD:Common File Directory ----D- C:\ProgramData\EPSON

O43 - CFD:Common File Directory ----D- C:\ProgramData\eSobi

O43 - CFD:Common File Directory ----D- C:\ProgramData\FarmFrenzy2

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Favoris

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Favorites

O43 - CFD:Common File Directory ----D- C:\ProgramData\FLEXnet

O43 - CFD:Common File Directory ----D- C:\ProgramData\Friends Games

O43 - CFD:Common File Directory ----D- C:\ProgramData\HP

O43 - CFD:Common File Directory ----D- C:\ProgramData\HP Product Assistant

O43 - CFD:Common File Directory ----D- C:\ProgramData\Installations

O43 - CFD:Common File Directory ----D- C:\ProgramData\Logishrd

O43 - CFD:Common File Directory ----D- C:\ProgramData\Logitech

O43 - CFD:Common File Directory ----D- C:\ProgramData\Malwarebytes

O43 - CFD:Common File Directory ----D- C:\ProgramData\McAfee

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Menu Démarrer

O43 - CFD:Common File Directory -S--D- C:\ProgramData\Microsoft

O43 - CFD:Common File Directory ----D- C:\ProgramData\Microsoft Help

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Modèles

O43 - CFD:Common File Directory ----D- C:\ProgramData\NVIDIA

O43 - CFD:Common File Directory ----D- C:\ProgramData\OEM

O43 - CFD:Common File Directory ----D- C:\ProgramData\Partner

O43 - CFD:Common File Directory ----D- C:\ProgramData\PC Drivers HeadQuarters

O43 - CFD:Common File Directory ----D- C:\ProgramData\PC Suite

O43 - CFD:Common File Directory ----D- C:\ProgramData\PlayFirst

O43 - CFD:Common File Directory ----D- C:\ProgramData\QuickTime

O43 - CFD:Common File Directory ----D- C:\ProgramData\Scrabble2009

O43 - CFD:Common File Directory ----D- C:\ProgramData\SiteAdvisor

O43 - CFD:Common File Directory ----D- C:\ProgramData\SlySoft

O43 - CFD:Common File Directory ----D- C:\ProgramData\Spybot - Search & Destroy

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Start Menu

O43 - CFD:Common File Directory ---AD- C:\ProgramData\Temp

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Templates

O43 - CFD:Common File Directory ----D- C:\ProgramData\UDL

O43 - CFD:Common File Directory ----D- C:\ProgramData\VideoMach

O43 - CFD:Common File Directory ----D- C:\ProgramData\Vodafone

O43 - CFD:Common File Directory ----D- C:\ProgramData\VOWSoft

O43 - CFD:Common File Directory ----D- C:\ProgramData\WEBREG

O43 - CFD:Common File Directory ----D- C:\ProgramData\WindSolutions

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Apple

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\LogiShrd

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Microsoft Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Services

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\20-20 Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\2020

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ABBYY FineReader 6.0 Sprint

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ABC 3GP Converter

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ACD Systems

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Acer

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Acer Arcade Deluxe

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Acer GameZone

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Acer Inc

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Ad-Remover

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\AGEIA Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Amic Utilities

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Apowersoft

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Apple Software Update

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\AVS4YOU

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\AxBx

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Bonjour

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Cucusoft

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Cyberlink

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\DivX

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\DVD Decrypter

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Easy GIF Animator

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\EgisTec

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\eMule

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\epson

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Epson Software

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\EpsonNet

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\eSobi

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\FileZilla FTP Client

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\FLV Player

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Free PDF to Word Doc Converter

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Free Video Converter

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Google

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\HP

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\InstallShield Installation Information

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Intel

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Internet Explorer

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ioquake3

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\iTunes

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Java

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\JL2005C

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Launch Manager

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Micro Application

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft AutoRoute

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Games for Windows - LIVE

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Silverlight

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Works

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft.NET

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Movies2iPhone

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Mozilla Firefox

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSBuild

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSECache

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSXML 4.0

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Navilog1

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Need4 Software Launcher

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Need4 Video Converter 7

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\NETGEAR

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\NewTech Infosystems

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Nokia

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\OfferBox

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\PC Connectivity Solution

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\PDFCreator

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\QuickTime

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\RarZilla Free Unrar

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Realtek

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Reference Assemblies

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\RegCleaner

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Registry Winner

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Return to Castle Wolfenstein

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Rockstar Games

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Safari

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SafeNet Sentinel

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\scrabbleproB1.1

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SFR

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SlySoft

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Spybot - Search & Destroy

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Sweet Home 3D

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\TeamViewer

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Temp

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Ubisoft

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Uninstall

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Uninstall Information

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\VideoLAN

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\VideoMach

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Vodafone

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\vso

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Defender

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live SkyDrive

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Mail

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Media Player

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows NT

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Photo Viewer

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Portable Devices

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Sidebar

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\WinHTTrack

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\WinMerge

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ZHPDiag

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Zone.Com Deluxe Games

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Zylom Games

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\ACD Systems

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe AIR

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Apple

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\AVSMedia

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Designer

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\DivX Shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\EPSON

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Hewlett-Packard

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\HP

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\InstallShield

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\LogiShrd

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\microsoft shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Oberon Media

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\PX Storage Engine

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\SafeNet Sentinel

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Services

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\System

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Windows Live

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Wise Installation Wizard

 

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.70FD6D5E4DAEE4F0CB9D006A611BC0C2] - 07/09/2010 - 12:40:25 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\PerfStringBackup.INI [1578180]

O44 - LFC:[MD5.93F05455432F45DF145FCCE2ACFF24DD] - 07/09/2010 - 12:40:25 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc009.dat [110414]

O44 - LFC:[MD5.2380D2A23278E7288C3653B6AEE314E8] - 07/09/2010 - 12:40:25 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc00C.dat [135616]

O44 - LFC:[MD5.E845CD9AEB813A89EC081332FBF36593] - 07/09/2010 - 12:40:25 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh009.dat [624776]

O44 - LFC:[MD5.246202487620A66D9A4407145FE7C1A8] - 07/09/2010 - 12:40:25 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh00C.dat [714332]

O44 - LFC:[MD5.00000000000000000000000000000000] - 07/09/2010 - 12:35:52 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log [1879930]

O44 - LFC:[MD5.2591AFB3E534C2B098C025A5DC679DA2] - 07/09/2010 - 09:12:44 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.6468D735F66495E4FB751A1F82E3AE44] - 07/09/2010 - 07:47:15 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [17600]

O44 - LFC:[MD5.6468D735F66495E4FB751A1F82E3AE44] - 07/09/2010 - 07:47:15 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [17600]

O44 - LFC:[MD5.97F1D496081DE232586E80433E4846E9] - 07/09/2010 - 07:39:19 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setupact.log [130611]

O44 - LFC:[MD5.E7A9D320FCC714760CED2104B72E9437] - 06/09/2010 - 22:53:51 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Ad-Report-SCAN[2].txt [2386]

O44 - LFC:[MD5.6BDC2AD878F7E5E072844543C1EAE77E] - 06/09/2010 - 22:42:18 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Ad-Report-CLEAN[1].txt [4336]

O44 - LFC:[MD5.1F375C65ECEEEAA8C041F50044EB9B46] - 06/09/2010 - 18:03:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Ad-Report-SCAN[1].txt [4214]

O44 - LFC:[MD5.EF2799F2775BE6B3CF1B8AAC92AF8701] - 04/09/2010 - 11:00:59 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\cleannavi.txt [757]

O44 - LFC:[MD5.8A87800ECA579A5FD8221F93AD47C0A2] - 29/08/2010 - 17:15:32 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\win.ini [1045]

O44 - LFC:[MD5.81FBA6C196802CFA3349341F9AEEAB51] - 27/08/2010 - 12:54:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\LkmdfCoInst.log [2633]

O44 - LFC:[MD5.A74116F33BB199685850CD4F77F45DA5] - 27/08/2010 - 10:36:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\PFRO.log [776770]

O44 - LFC:[MD5.BE6A525961D30F7A87C2D2B355B223EC] - 22/08/2010 - 09:11:48 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\ACD Wallpaper.bmp [3087102]

O44 - LFC:[MD5.552203F94D983A105CBFC131DF3BE249] - 21/08/2010 - 16:17:53 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\FNTCACHE.DAT [340792]

O44 - LFC:[MD5.D2994770806E9BD001DD474CB9B4040C] - 09/08/2010 - 15:21:12 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\debug1214.txt [40896]

 

 

---\\ Export de clé d'application autorisée (ECAA) (O47)

O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Ubisoft\Scrabble2009\ScrabblePCR.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\Ubisoft\Scrabble2009\ScrabblePCR.exe

O47 - AAKE:Key Export DP - "C:\Program Files (x86)\Ubisoft\Scrabble2009\ScrabblePCR.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\Ubisoft\Scrabble2009\ScrabblePCR.exe

 

 

---\\ Déni du service (Local Security Authority) (LSA) (O48)

O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

 

 

---\\ MountPoints2 Shell Key (MPSK) (O51)

O51 - MPSK:{29fe2f76-c4cf-11de-a298-001f16c97df7}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- J:\SFR.exe (.not file.)

O51 - MPSK:{ccc3808f-c4f7-11de-92ce-001f16c97df7}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- E:\SFR.exe (.not file.)

 

 

---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\SysWOW64\l3codeca.acm" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll

O52 - TDSD: \Drivers32\"vidc.dvsd"="pdvcodec.dll" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\DivX.dll

O52 - TDSD: \Drivers32\"vidc.yv12"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\DivX.dll

O52 - TDSD: \drivers.desc\"C:\Windows\SysWOW64\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"pdvcodec.dll"="DV Video Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"DivX.dll"="DivX 6.9.2 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

 

 

---\\ Microsoft Control Security Providers (MCSP) (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

 

 

---\\ Microsoft Windows Policies System (MWPS) (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

 

 

---\\ Microsoft Windows Policies Explorer (MWPE) (O56)

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=255

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=0

 

 

---\\ Liste des Drivers Système (SDL) (O58)

O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys

O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys

O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys

O58 - SDL:[MD5.AF4748EF93416159459769A24A0053AF] - 07/04/2009 - 02:31:08 ---A- . (.LSI Corporation - SoftModem Device Driver.) -- C:\Windows\system32\drivers\agrsm64.sys

O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys

O58 - SDL:[MD5.7A4B413614C055935567CF88A9734D38] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys

O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys

O58 - SDL:[MD5.B4AD0CACBAB298671DD6F6EF7E20679D] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys

O58 - SDL:[MD5.9815014F3E30357168DA272088C6F12F] - 25/05/2009 - 04:57:42 ---A- . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\Windows\system32\drivers\Apfiltr.sys

O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys

O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys

O58 - SDL:[MD5.5BAB6D80435F9DFF95A7E86C69110B32] - 25/11/2009 - 00:50:05 ---A- . (.ALWIL Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys

O58 - SDL:[MD5.6067EC1C153F07A9E8E76B45DF4D9F8D] - 25/11/2009 - 00:49:56 ---A- . (.ALWIL Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys

O58 - SDL:[MD5.E4928B11D24FC5490C92ED74ECD922D0] - 25/11/2009 - 00:49:00 ---A- . (.ALWIL Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys

O58 - SDL:[MD5.C6C9A87DD1BA5815082CD900EBE0BFB1] - 25/11/2009 - 00:50:25 ---A- . (.ALWIL Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys

O58 - SDL:[MD5.D6CD3F4C869ADF746C87B7188743664F] - 25/11/2009 - 00:49:10 ---A- . (.ALWIL Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys

O58 - SDL:[MD5.5D4529AC4156E16BEDB01441AE0CF984] - 09/07/2009 - 02:49:16 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys

O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys

O58 - SDL:[MD5.9E84A931DBEE0292E38ED672F6293A99] - 10/06/2009 - 21:34:38 ---A- . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless driver.) -- C:\Windows\system32\drivers\BCMWL664.SYS

O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys

O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys

O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys

O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys

O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys

O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys

O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys

O58 - SDL:[MD5.4B300DC9B143C99674B6ECD917384155] - 06/10/2009 - 11:53:56 ---A- . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\system32\drivers\ccdcmbox64.sys

O58 - SDL:[MD5.DD1D06C2A7E048766482256AB8C755CF] - 06/10/2009 - 11:53:54 ---A- . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\system32\drivers\ccdcmbx64.sys

O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys

O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys

O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys

O58 - SDL:[MD5.E403AACF8C7BB11375122D2464560311] - 18/05/2009 - 14:17:08 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys

O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys

O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys

O58 - SDL:[MD5.1D004CB1DA6323B1F55CAEF7F94B61D9] - 05/06/2009 - 02:54:36 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys

O58 - SDL:[MD5.D83EFB6FD45DF9D55E9A1AFC63640D50] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys

O58 - SDL:[MD5.A87261EF1546325B559374F5689CF5BC] - 10/06/2009 - 21:37:05 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd64.sys

O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys

O58 - SDL:[MD5.46153F05CB2131C3570C7A75DD06FD66] - 29/08/2007 - 12:30:52 ---A- . (.Windows ® Codename Longhorn DDK provider - Universal Serial Bus Camera Driver.) -- C:\Windows\system32\drivers\jl2005c.sys

O58 - SDL:[MD5.249EE2D26CB1530F3BEDE0AC8B9E3099] - 20/06/2009 - 12:35:00 ---A- . (.Broadcom Corporation - Broadcom NetLink Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\k57nd60a.sys

O58 - SDL:[MD5.2AC603C3188C704CFCE353659AA7AD71] - 20/06/2009 - 03:09:57 ---A- . (.Atheros Communications, Inc. - Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20.) -- C:\Windows\system32\drivers\L1E62x64.sys

O58 - SDL:[MD5.50D3B6FBDA64721CC5D9E18D90B50422] - 10/11/2009 - 12:52:44 ---A- . (.Logitech, Inc. - Logitech Equad USB Driver..) -- C:\Windows\system32\drivers\LEqdUsb.sys

O58 - SDL:[MD5.CB22746A724202EE29CC74823B7F6FD9] - 10/11/2009 - 12:52:52 ---A- . (.Logitech, Inc. - Logitech HID Filter Driver..) -- C:\Windows\system32\drivers\LHidEqd.sys

O58 - SDL:[MD5.CEB6E18DCFAD5C72B81C7DA1AC3C1CC1] - 10/11/2009 - 12:53:00 ---A- . (.Logitech, Inc. - Logitech HID Filter Driver..) -- C:\Windows\system32\drivers\LHidFilt.Sys

O58 - SDL:[MD5.F9E48F18BE4D2B365F138987B8E7885B] - 10/11/2009 - 12:53:16 ---A- . (.Logitech, Inc. - Logitech Mouse Filter Driver..) -- C:\Windows\system32\drivers\LMouFilt.Sys

O58 - SDL:[MD5.64AEB5790901EA8854884981F104CAA6] - 27/08/2010 - 12:53:10 ---A- . (.Logitech, Inc. - Logitech Non-Plug and Play Driver..) -- C:\Windows\system32\drivers\LNonPnP.sys

O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys

O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys

O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys

O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys

O58 - SDL:[MD5.7AEAC0B5B185CB5601673A0462C7EC36] - 30/06/2009 - 17:46:22 R--A- . (.ZTE Incorporated - ZTE CDROM Filter.) -- C:\Windows\system32\drivers\massfilter.sys

O58 - SDL:[MD5.989D47E8BD1D7539EB3976D3902E223E] - 07/01/2010 - 16:07:06 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys

O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys

O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys

O58 - SDL:[MD5.6FFECC25B39DC7652A0CEC0ADA9DB589] - 03/06/2009 - 04:15:30 ---A- . (.Egis Technology Inc. - PSD Filter Driver.) -- C:\Windows\system32\drivers\mwlPSDFilter.sys

O58 - SDL:[MD5.0BEFE32CA56D6EE89D58175725596A85] - 03/06/2009 - 04:15:30 ---A- . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) -- C:\Windows\system32\drivers\mwlPSDNserv.sys

O58 - SDL:[MD5.D43BC633B8660463E446E28E14A51262] - 03/06/2009 - 04:15:30 ---A- . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) -- C:\Windows\system32\drivers\mwlPSDVDisk.sys

O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys

O58 - SDL:[MD5.64DDD0DEE976302F4BD93E5EFCC2F013] - 06/05/2009 - 01:46:08 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\system32\drivers\NTIDrvr.sys

O58 - SDL:[MD5.6E41A4DF26340A07A489B721F9721EC1] - 01/05/2009 - 19:13:34 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\system32\drivers\nvhda64v.sys

O58 - SDL:[MD5.24F526274353FF7BB93D99D238E582DA] - 29/07/2009 - 03:56:00 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 186.52.) -- C:\Windows\system32\drivers\nvlddmkm.sys

O58 - SDL:[MD5.3E38712941E9BB4DDBEE00AFFE3FED3D] - 14/07/2009 - 02:48:27 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys

O58 - SDL:[MD5.477DC4D6DEB99BE37084C9AC6D013DA1] - 14/07/2009 - 02:45:45 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys

O58 - SDL:[MD5.BC0018C2D29F655188A0ED3FA94FDB24] - 28/08/2008 - 11:44:42 ---A- . (.Nokia - PCCS Mode Change Filter Driver.) -- C:\Windows\system32\drivers\pccsmcfdx64.sys

O58 - SDL:[MD5.AF7CE12C4F3DC8CB2B07685C916BBCFE] - 20/11/2009 - 18:05:10 ---A- . (.VSO Software - low level access layer for CD/DVD/BD devices.) -- C:\Windows\system32\drivers\pcouffin.sys

O58 - SDL:[MD5.A7A134DE374E91D931BA211556293B1B] - 11/02/2010 - 23:08:19 ---A- . (.VSO Software - Patin-Couffin low level access layer for CD devices.) -- C:\Windows\system32\drivers\pcouffin64a.sys

O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys

O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys

O58 - SDL:[MD5.9AA6A93852E36FE76C3F7FC2904F3B01] - 06/08/2009 - 02:46:38 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys

O58 - SDL:[MD5.F70A9384917659A4C5EF30F0F4EC484D] - 10/06/2009 - 21:35:46 ---A- . (.Realtek Semiconductor Corporation - Realtek RTL8187B NDIS Driver.) -- C:\Windows\system32\drivers\RTL8187B.sys

O58 - SDL:[MD5.2DB8116D52B19216812C4E6D5D837810] - 05/06/2009 - 01:46:50 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\system32\drivers\RtsUStor.sys

O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys

O58 - SDL:[MD5.84AC127242DD3CCDE02F9A4673214B1F] - 27/04/2007 - 07:40:00 ---A- . (.SafeNet, Inc. - Sentinel System Driver (NT Parallel x64 driver).) -- C:\Windows\system32\drivers\sentinel64.sys

O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys

O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys

O58 - SDL:[MD5.9D82300431ABC9E993C36601034415C6] - 27/04/2007 - 07:40:00 ---A- . (.SafeNet, Inc. - Sentinel System USB Driver.) -- C:\Windows\system32\drivers\SNTUSB64.SYS

O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys

O58 - SDL:[MD5.2E22C1FD397A5A9FFEF55E9D1FC96C00] - 06/05/2009 - 01:46:08 ---A- . (.NewTech Infosystems Corporation - NTI CDROM Filter Driver.) -- C:\Windows\system32\drivers\UBHelper.sys

O58 - SDL:[MD5.CD03479F2DA26500B203ED075C146A7A] - 19/04/2010 - 19:47:42 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl64.sys

O58 - SDL:[MD5.69405C5429EF448B319F08042B897FC6] - 06/10/2009 - 11:53:56 ---A- . (.Nokia - Filter Driver for Nokia USB Phone Bus Driver.) -- C:\Windows\system32\drivers\usbser_lowerfltx64.sys

O58 - SDL:[MD5.0305D5F7D5751D0AE763250EB78DC5D7] - 06/10/2009 - 11:54:18 ---A- . (.Nokia - Filter Driver for Nokia USB Phone Bus Driver.) -- C:\Windows\system32\drivers\usbser_lowerfltx64j.sys

O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys

O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys

O58 - SDL:[MD5.F98415E5B83742C901D0A336972509A0] - 19/09/2009 - 15:54:02 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ZTEusbmdm6k.sys

O58 - SDL:[MD5.A11DC648D2164FCDEB36ACBF52808E30] - 21/08/2009 - 15:44:00 ---A- . (.ZTE Corporation. - USB NDIS Miniport Driver.) -- C:\Windows\system32\drivers\ZTEusbnet.sys

O58 - SDL:[MD5.F98415E5B83742C901D0A336972509A0] - 19/09/2009 - 15:54:02 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ZTEusbnmea.sys

O58 - SDL:[MD5.F98415E5B83742C901D0A336972509A0] - 19/09/2009 - 15:54:02 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ZTEusbnmeaext.sys

O58 - SDL:[MD5.F98415E5B83742C901D0A336972509A0] - 19/09/2009 - 15:54:02 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ZTEusbnmeaext2.sys

O58 - SDL:[MD5.F98415E5B83742C901D0A336972509A0] - 19/09/2009 - 15:54:02 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ZTEusbser6k.sys

O58 - SDL:[MD5.F98415E5B83742C901D0A336972509A0] - 19/09/2009 - 15:54:02 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ZTEusbvoice.sys

O58 - SDL:[MD5.37CDCD0D54B4D3F7FF866D1A996C620C] - 14/10/2004 - 18:24:00 ---A- . (.Windows ® 2000 DDK provider - ATHEROS USB Driver.) -- C:\Windows\SysWOW64\drivers\athfmwdl.sys

O58 - SDL:[MD5.D5BCB77BE83CF99F508943945D46343D] - 26/03/2009 - 20:16:08 ---A- . (.Dritek System Inc. - Dritek 64-bit PS/2 Keyboard Filter Driver.) -- C:\Windows\SysWOW64\drivers\DKbFltr.sys

O58 - SDL:[MD5.F7955F5273F7CA5DA13EBEEF4F736C44] - 18/11/2004 - 12:49:14 ---A- . (.EUTRON - SmartKey Parallel driver for Windows.) -- C:\Windows\SysWOW64\drivers\eusk2par.sys

O58 - SDL:[MD5.C0D40BEAA6DFC05602FC8F484696F7F5] - 07/01/2010 - 16:07:14 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys

O58 - SDL:[MD5.8FEE53C104223973ED9919936D9CD156] - 24/03/2010 - 23:49:59 ---A- . (.Meetinghouse Data Communications - IEEE 802.1X Protocol Driver.) -- C:\Windows\SysWOW64\drivers\mdc8021x.sys

O58 - SDL:[MD5.5903FA75200807AD739286BBF40C4904] - 09/11/2009 - 12:00:06 ---A- . (.Padus, Inc. - Padus® ASPI Shell.) -- C:\Windows\SysWOW64\drivers\pfc.sys

O58 - SDL:[MD5.3EF6E2CED476CE85F4402FA32F5BD348] - 07/01/2005 - 12:11:00 ---A- . (.NETGEAR, Inc. - WG111T Wireless NDIS 5 Driver.) -- C:\Windows\SysWOW64\drivers\wg11tnd5.sys

O58 - SDL:[MD5.81A3CFF05560C1BE2789B1F7BDD66B53] - 20/03/2002 - 22:01:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysWOW64\Digita.sys

 

 

---\\ Liste des outils de nettoyage (LATC) (O63)

O63 - Logiciel: Ad-Remover By C_XX - (.C_XX.)

O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.)

O63 - Logiciel: ZHPDiag 1.26 - (.Nicolas Coolman.)

 

 

---\\ Liste des services Legacy (LALS) (O64)

O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys (AFD) .(.Pas de propriétaire - Pas de description.) - LEGACY_AFD

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\aswFsBlk.sys - aswFsBlk (aswFsBlk) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWFSBLK

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\aswMonFlt.sys - aswMonFlt (aswMonFlt) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWMONFLT

O64 - Services: CurCS - (.not file.) - aswRdr (aswRdr) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWRDR

O64 - Services: CurCS - (.not file.) - avast! Self Protection (aswSP) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWSP

O64 - Services: CurCS - (.not file.) - avast! Network Shield Support (aswTdi) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWTDI

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\atapi.sys - IDE Channel (atapi) .(.Pas de propriétaire - Pas de description.) - LEGACY_ATAPI

O64 - Services: CurCS - (.not file.) - Beep (Beep) .(.Pas de propriétaire - Pas de description.) - LEGACY_BEEP

O64 - Services: CurCS - C:\Windows\system32\browser.dll (bowser) .(.Pas de propriétaire - Pas de description.) - LEGACY_BOWSER

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_CDFS

O64 - Services: CurCS - C:\Windows\system32\clfs.sys (CLFS) .(.Pas de propriétaire - Pas de description.) - LEGACY_CLFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\cng.sys - CNG (CNG) .(.Pas de propriétaire - Pas de description.) - LEGACY_CNG

O64 - Services: CurCS - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Pas de propriétaire - Pas de description.) - LEGACY_DFSC

O64 - Services: CurCS - C:\Windows\system32\drivers\discache.sys (discache) .(.Pas de propriétaire - Pas de description.) - LEGACY_DISCACHE

O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Pas de propriétaire - Pas de description.) - LEGACY_DXGKRNL

O64 - Services: CurCS - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(.Pas de propriétaire - Pas de description.) - LEGACY_FASTFAT

O64 - Services: CurCS - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Pas de propriétaire - Pas de description.) - LEGACY_FILEINFO

O64 - Services: CurCS - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_FLTMGR

O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(.Pas de propriétaire - Pas de description.) - LEGACY_FS_REC

O64 - Services: CurCS - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Pas de propriétaire - Pas de description.) - LEGACY_FVEVOL

O64 - Services: CurCS - C:\Windows\system32\drivers\http.sys (HTTP) .(.Pas de propriétaire - Pas de description.) - LEGACY_HTTP

O64 - Services: CurCS - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Pas de propriétaire - Pas de description.) - LEGACY_HWPOLICY

O64 - Services: CurCS - C:\Windows\system32\rascfg.dll (IpFilterDriver) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_IPFILTERDRIVER

O64 - Services: CurCS - C:\Windows\system32\drivers\ipnat.sys - IP Network Address Translator (IPNAT) .(.Pas de propriétaire - Pas de description.) - LEGACY_IPNAT

O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_KSECDD

O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecpkg.sys - KSecPkg (KSecPkg) .(.Pas de propriétaire - Pas de description.) - LEGACY_KSECPKG

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Pas de propriétaire - Pas de description.) - LEGACY_LLTDIO

O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Pas de propriétaire - Pas de description.) - LEGACY_LUAFV

O64 - Services: CurCS - (.not file.) - McAfee Inc. mfeavfk (mfeavfk) .(.Pas de propriétaire - Pas de description.) - LEGACY_MFEAVFK

O64 - Services: CurCS - (.not file.) - McAfee Inc. mfehidk (mfehidk) .(.Pas de propriétaire - Pas de description.) - LEGACY_MFEHIDK

O64 - Services: CurCS - (.not file.) - McAfee Inc. mfesmfk (mfesmfk) .(.Pas de propriétaire - Pas de description.) - LEGACY_MFESMFK

O64 - Services: CurCS - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_MOUNTMGR

O64 - Services: CurCS - (.not file.) - MPFP (MPFP) .(.Pas de propriétaire - Pas de description.) - LEGACY_MPFP

O64 - Services: CurCS - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB10

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB20

O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSFS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\msisadrv.sys - msisadrv (msisadrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSISADRV

O64 - Services: CurCS - C:\Windows\system32\drivers\mup.sys (Mup) .(.Pas de propriétaire - Pas de description.) - LEGACY_MUP

O64 - Services: CurCS - C:\Windows\system32\Drivers\MWLPSDFILTER.sys - mwlPSDFilter (mwlPSDFilter) .(.Pas de propriétaire - Pas de description.) - LEGACY_MWLPSDFILTER

O64 - Services: CurCS - C:\Windows\system32\Drivers\MWLPSDNSERV.sys - mwlPSDNServ (mwlPSDNServ) .(.Pas de propriétaire - Pas de description.) - LEGACY_MWLPSDNSERV

O64 - Services: CurCS - C:\Windows\system32\Drivers\MWLPSDVDISK.sys - mwlPSDVDisk (mwlPSDVDisk) .(.Pas de propriétaire - Pas de description.) - LEGACY_MWLPSDVDISK

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\nwifi.sys - NativeWiFi Filter (NativeWifiP) .(.Pas de propriétaire - Pas de description.) - LEGACY_NATIVEWIFIP

O64 - Services: CurCS - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDIS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\ndisuio.sys - NDIS Usermode I/O Protocol (Ndisuio) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDISUIO

O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDPROXY

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETBIOS

O64 - Services: CurCS - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETBT

O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NPFS

O64 - Services: CurCS - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NSIPROXY

O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NTFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(.Pas de propriétaire - Pas de description.) - LEGACY_NULL

O64 - Services: CurCS - C:\Windows\system32\drivers\pcw.sys - Performance Counters for Windows Driver (pcw) .(.Pas de propriétaire - Pas de description.) - LEGACY_PCW

O64 - Services: CurCS - C:\Windows\system32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Pas de propriétaire - Pas de description.) - LEGACY_PEAUTH

O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (Psched) .(.Pas de propriétaire - Pas de description.) - LEGACY_PSCHED

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (rdbss) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDBSS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPENCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPREFMP

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Pas de propriétaire - Pas de description.) - LEGACY_RSPNDR

O64 - Services: CurCS - (.not file.) - Security Driver (secdrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SECDRV

O64 - Services: CurCS - C:\Windows\system32\Drivers\Sentinel64.sys - Sentinel64 (Sentinel64) .(.Pas de propriétaire - Pas de description.) - LEGACY_SENTINEL64

O64 - Services: CurCS - (.not file.) - Security Processor Loader Driver (spldr) .(.Pas de propriétaire - Pas de description.) - LEGACY_SPLDR

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRV

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv2) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRV2

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRVNET

O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP

O64 - Services: CurCS - C:\Windows\system32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Pas de propriétaire - Pas de description.) - LEGACY_TCPIPREG

O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\udfs.sys - udfs (udfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_UDFS

O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Pas de propriétaire - Pas de description.) - LEGACY_VGASAVE

O64 - Services: CurCS - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLMGRX

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\volsnap.sys - Volumes de stockage (volsnap) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLSNAP

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\vwififlt.sys - Virtual WiFi Filter Driver (vwififlt) .(.Pas de propriétaire - Pas de description.) - LEGACY_VWIFIFLT

O64 - Services: CurCS - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6

O64 - Services: CurCS - C:\Windows\system32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Pas de propriétaire - Pas de description.) - LEGACY_WDF01000

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\wfplwf.sys - WFP Lightweight Filter (WfpLwf) .(.Pas de propriétaire - Pas de description.) - LEGACY_WFPLWF

O64 - Services: CurCS - C:\Windows\system32\drivers\wimmount.sys - WIMMount (WIMMount) .(.Microsoft Corporation - Wim file system Driver.) - LEGACY_WIMMOUNT

O64 - Services: CurCS - C:\Windows\system32\drivers\WudfPf.sys - User Mode Driver Frameworks Platform Driver (WudfPf) .(.Pas de propriétaire - Pas de description.) - LEGACY_WUDFPF

 

 

---\\ Observateur d'évènement d'application (OEA) (O66)

O66 - EventLog: ID=1000 (Application Error) - (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\Ubisoft\Scrabble2009\ScrabblePCR.exe

O66 - EventLog: ID=1000 (Application Error) - (.Pas de propriétaire - Zylom Games.) -- C:\Program Files (x86)\Zylom Games\Poker Pop Deluxe\pokerpop.exe

O66 - EventLog: ID=1000 (Application Error) - (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe

O66 - EventLog: ID=1000 (Application Error) - (.Pas de propriétaire - Pas de description.) -- C:\InSitu\cp.exe

O66 - EventLog: ID=1000 (Application Error) - (.ACD Systems Ltd. - Application ACDSee 6.0.) -- C:\Program Files (x86)\ACD Systems\ACDSee\6.0\ACDSee6.exe

O66 - EventLog: ID=1000 (Application Error) - (.Vodafone - MobileConnect.) -- C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe

 

 

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

 

 

---\\ Start Menu Internet (SMI) (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O68 - StartMenuInternet: <Safari.exe> <Safari>[HKLM\..\Shell\open\Command] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe

 

 

---\\ Search Browser Infection (SBI) (O69)

O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - Bing

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing

O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - Google

O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - Google

O69 - SBI: SearchScopes [HKCU] {8ECEACB0-D3F4-430B-BAD3-AE23E22B462A} - (Yahoo! Search) - Yahoo! Search - Recherche Web

O69 - SBI: SearchScopes [HKCU] {b41306c6-96d0-442a-bcc4-b0f621e82ce9} - (Fissa) - Fissa search

 

 

---\\ Search Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, GMER - Rootkit Detector and Remover

Run by Joseph at 07/09/2010 13:53:29

device: opened successfully

user: MBR read successfully

kernel: error reading MBR

 

 

---\\ Recherche des services démarrés par Svchost (SSS) (O83)

O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\aelupsvc.dll [0]

O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\certprop.dll [0]

O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\certprop.dll [0]

O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\srvsvc.dll [0]

O83 - Search Svchost Services: gpsvc (gpsvc) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\gpsvc.dll [0]

O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\Audiosrv.dll [0]

O83 - Search Svchost Services: Rasauto (Rasauto) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\rasauto.dll [0]

O83 - Search Svchost Services: Rasman (Rasman) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\rasmans.dll [0]

O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264]

O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [49664]

O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ipnathlp.dll [0]

O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows.) -- C:\Windows\System32\tapisrv.dll [241664]

O83 - Search Svchost Services: TermService (TermService) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\termsrv.dll [0]

O83 - Search Svchost Services: wuauserv (wuauserv) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\wuaueng.dll [0]

O83 - Search Svchost Services: BITS (BITS) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\qmgr.dll [0]

O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192]

O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\iphlpsvc.dll [0]

O83 - Search Svchost Services: msiscsi (msiscsi) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\iscsiexe.dll [0]

O83 - Search Svchost Services: schedule (schedule) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\schedsvc.dll [0]

O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\system32\sessenv.dll [99328]

O83 - Search Svchost Services: winmgmt (winmgmt) . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\wbem\WMIsvc.dll [0]

 

 

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SR - | Auto 28/03/2009 16896 | Agere Modem Call Progress Audio (AgereModemAudio) . (.LSI Corporation.) - C:\Program Files\LSI SoftModem\agr64svc.exe

SR - | Auto 10/06/2010 144176 | Apple Mobile Device (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

SS - | Demand 10/06/2010 0 | Service d'état ASP.NET (aspnet_state) . (.Pas de propriétaire.) - C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe

SR - | Auto 25/11/2009 18752 | avast! iAVS4 Control Service (aswUpdSv) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

SR - | Auto 25/11/2009 138680 | avast! Antivirus (avast! Antivirus) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\ashServ.exe

SR - | Demand 25/11/2009 254040 | avast! Mail Scanner (avast! Mail Scanner) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

SR - | Demand 25/11/2009 352920 | avast! Web Scanner (avast! Web Scanner) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

SR - | Auto 18/05/2010 345376 | Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe

SR - | Auto 05/08/2009 844320 | Acer ePower Service (ePowerSvc) . (.Acer Incorporated.) - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe

SR - | Auto 19/12/2006 94208 | EpsonBidirectionalService (EpsonBidirectionalService) . (.SEIKO EPSON CORPORATION.) - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe

SR - | Auto 17/12/2007 163840 | EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) . (.SEIKO EPSON CORPORATION.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.exe

SR - | Auto 11/01/2007 126464 | EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) . (.SEIKO EPSON CORPORATION.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.exe

SR - | Auto 04/06/2009 1150496 | GRegService (Greg_Service) . (.Acer Incorporated.) - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe

SS - | Auto 25/02/2010 135664 | Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

SR - | Auto 05/06/2009 354840 | Intel® Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

SS - | Demand 21/07/2010 654112 | Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe

SR - | Demand 21/07/2010 0 | @keyiso.dll,-100 (KeyIso) . (.Pas de propriétaire.) - C:\Windows\system32\lsass.exe

SS - | Demand 29/01/2010 357456 | Logitech Bluetooth Service (LBTServ) . (.Logitech, Inc..) - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe

SS - | Demand 29/01/2010 0 | @comres.dll,-2797 (MSDTC) . (.Pas de propriétaire.) - C:\Windows\System32\msdtc.exe

SR - | Auto 21/08/2009 62720 | NTI IScheduleSvc (NTI IScheduleSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe

SS - | Demand 18/06/2009 50432 | NTI Backup Now 5 Backup Service (NTIBackupSvc) . (.NewTech InfoSystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe

SR - | Auto 18/06/2009 144640 | NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

SR - | Auto 18/06/2009 0 | NVIDIA Display Driver Service (nvsvc) . (.Pas de propriétaire.) - C:\Windows\system32\nvvsvc.exe

SR - | Auto 26/01/2009 1153368 | SBSD Security Center Service (SBSDWSCService) . (.Safer Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

SR - | Auto 21/03/2008 327800 | Sentinel Keys Server (SentinelKeysServer) . (.SafeNet, Inc..) - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe

SR - | Auto 21/03/2008 204920 | Sentinel Protection Server (SentinelProtectionServer) . (.SafeNet, Inc.) - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe

SS - | Demand 27/10/2009 657408 | ServiceLayer (ServiceLayer) . (.Nokia.) - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe

SR - | Auto 16/03/2010 14488 | (SFR.DashBoard.Service) . (.SFR.) - C:\Program Files (x86)\SFR\Gestionnaire de Connexion\SFR.DashBoard.Service.exe

SR - | Auto 08/12/2009 185640 | TeamViewer 5 (TeamViewer5) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe

SR - | Auto 04/07/2009 240160 | Updater Service (Updater Service) . (.Acer.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

SR - | Auto 18/09/2009 9216 | Vodafone Mobile Connect Service (VMCService) . (.Vodafone.) - C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe

 

 

---\\ Infection BT - BHO/Toolbar (Possible)

O42 - Logiciel: Search Settings v1.2.3 - (.Spigot, Inc..) [HKLM] -- {5F05C28D-DEA9-4AD6-A73A-064175988EAB}

 

 

 

End of the scan (1239 lines in 02mn 04s)(0)

[Florinator]

Bonjour chrys

 

Allez on continu:

 

 

 

1)

 

• Copie ces lignes ci dessous:

 

O2 - BHO: OfferBox - {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} . (.Secure Digital Services Limited - OfferBox.) -- C:\Program Files (x86)\OfferBox\OfferBoxBHO.dll

O42 - Logiciel: Search Settings v1.2.3 - (.Spigot, Inc..) [HKLM] -- {5F05C28D-DEA9-4AD6-A73A-064175988EAB}

O51 - MPSK:{29fe2f76-c4cf-11de-a298-001f16c97df7}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- J:\SFR.exe (.not file.) => Infection USB (USB.Troj)

O51 - MPSK:{ccc3808f-c4f7-11de-92ce-001f16c97df7}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- E:\SFR.exe (.not file.)

 

 

• Ouvre ZHPDiag, puis clique sur l'icône
  Si l'icône n'apparait pas, relance un scan avec ZHPDiag, à la fin du scan elle apparaitra
  
• Clique successivement sur l'icône ,pour effacer le rapport qui s'est affiché
  
• Clique ensuite sur pour coller la sélection
  
• Vérifie que toutes les lignes que je t'ai demandé de copier (et seulement elles) sont dans la fenêtre
  
• Clique sur "OK", ce qui fait apparaître un carré à gauche de chaque ligne.
  
• Clique sur "Tous" puis sur "Nettoyer".
  Si on te demande de redémarrer l'ordi pour achever le nettoyage, fais le immmédiatement.
  
• Copie/colle le rapport dans ton prochain post.

 

Remarque:Le rapport se situe aussi sous C:\Program Files\ZebHelpProcess\ZHPFixReport.txt

 

 

 

 

2)

 

Télécharge ceci

 

• Branche tout tes supports externes Disque dur/Clé USB etc (ne les ouvres pas!!)
  
• Exécute le fichier
  
• Poste moi le rapport stp

 

Laisse tes supports branchés ,tels qui le seront pour le scan, important pour la suite de la suppression

 

 

A++