Rootkit Bubak et éradication fichier

[brta77]

Salut tout le monde, j'ai un rookit sur mon pc qui redémarre régulierement mon PC en me faisant un jolie Ecran Bleu avec pour cause de plantage ce fameux fichier FWYHLGW.SYS

 

J'ai déjà esséyé pas mal de chose, mode sans échec, unlocker, copylock, malwarebyte's et toujours la meme réponse (IMPOSSIBLE)

 

 

http://img843.imageshack.us/img843/6801/rootkit.png

http://img837.imageshack.us/img837/5633/rootkit2.png

http://img202.imageshack.us/img202/1078/rootkit3.png

 

 

 

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 16:49, on 2010-09-25

Platform: Unknown Windows (WinNT 6.01.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Program Files\Razer\DeathAdder\razerhid.exe

C:\Program Files\Alwil Software\Avast5\AvastUI.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Razer\DeathAdder\razertra.exe

C:\Program Files\Razer\DeathAdder\razerofa.exe

C:\Program Files\Internet Download Manager\IDMan.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe

C:\Windows\system32\DllHost.exe

C:\Windows\system32\mspaint.exe

C:\Windows\system32\NOTEPAD.EXE

C:\Windows\system32\DllHost.exe

C:\Users\Damien\Desktop\TeamSpeak.exe

C:\Windows\system32\SearchFilterHost.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:6092

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O4 - HKLM\..\Run: [DeathAdder] C:\Program Files\Razer\DeathAdder\razerhid.exe

O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent

O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [iDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot

O4 - HKCU\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" boot "C:\Users\Damien\AppData\Local\NVIDIA Corporation\nTune\Profiles\osbootpf.nsu"

O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm

O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm

O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm

O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL

O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (file missing)

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab

O16 - DPF: {6678BE91-1E04-4A4A-9C32-63145EA79C2A} (EAFO3AXLauncher Control) - http://fifa-online.easports.com/fo3-theme/addons/EAFO3AXLauncher.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab

O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUplden-us.cab

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (file missing)

O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)

O23 - Service: Performance Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: Sony Ericsson OMSI download service (OMSI download service) - Unknown owner - C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe

O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe

O23 - Service: Update Center Service (UpdateCenterService) - NVIDIA - C:\Program Files\NVIDIA Corporation\System Update\UpdateCenterService.exe

 

--

End of file - 6922 bytes

[nardino]

Bonsoir,

Télécharge Combofix

Clique droit sur le lien, enregistrer sous brta.com, sur le bureau.

 

IMPORTANT. Enregistre ComboFix.exe sur le Bureau.

Désactive les applications antivirus et anti-malware résidentes, en général via un clic droit sur l'icône de la Zone de notification, sinon elles risquent d'interférer avec l'outil.

Fais un double clic sur l'icône et suis les invites.

Lorsque l'outil aura terminé, il affichera un rapport.

Surtout ne lance aucune application pendant le scan et après le redémarrage parfois nécessaire et provoqué.

Attends l'affichage du rapport

Copie le contenu dans ta prochaine réponse.

Il sera enregistré sous C:\Combofix.txt

@+

Modifié le 25 septembre 2010 par nardino

[brta77]

ComboFix 10-09-25.01 - Damien 2010-09-25 20:20:27.2.2 - x86

Microsoft Windows 7 Édition Familiale Premium 6.1.7600.0.1252.1.1036.18.2046.1467 [GMT 2:00]

Lancé depuis: c:\users\Damien\Desktop\brta.exe

SP: Spybot - Search and Destroy *disabled* (Outdated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}

.

 

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))

.

 

c:\programdata\hpe7638.dll

 

.

((((((((((((((((((((((((((((( Fichiers créés du 2010-08-25 au 2010-09-25 ))))))))))))))))))))))))))))))))))))

.

 

2010-09-25 18:31 . 2010-09-25 18:31 -------- d-----w- c:\users\Public\AppData\Local\temp

2010-09-25 18:31 . 2010-09-25 18:31 -------- d-----w- c:\users\Mcx1-PC-DAMIEN\AppData\Local\temp

2010-09-25 18:31 . 2010-09-25 18:31 -------- d-----w- c:\users\HomeGroupUser$\AppData\Local\temp

2010-09-25 18:31 . 2010-09-25 18:31 -------- d-----w- c:\users\Default\AppData\Local\temp

2010-09-25 18:31 . 2010-09-25 18:31 -------- d-----w- c:\users\Damien\AppData\Local\temp

2010-09-25 18:31 . 2010-09-25 18:31 -------- d-----w- c:\users\ASPNET\AppData\Local\temp

2010-09-25 18:31 . 2010-09-25 18:31 -------- d-----w- c:\users\Administrateur\AppData\Local\temp

2010-09-25 14:37 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2010-09-25 14:37 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys

2010-09-25 13:18 . 2010-09-25 13:18 -------- d-----w- c:\users\Damien\AppData\Roaming\Malwarebytes

2010-09-25 13:18 . 2010-09-25 13:18 -------- d-----w- c:\programdata\Malwarebytes

2010-09-25 13:18 . 2010-09-25 14:37 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2010-09-25 12:32 . 2010-05-21 12:14 221568 ------w- c:\windows\system32\MpSigStub.exe

2010-09-25 12:17 . 2010-09-25 14:37 -------- d-----w- c:\users\Damien\Pavark

2010-09-25 12:08 . 2010-09-25 12:08 -------- d-----w- c:\program files\Sophos

2010-09-24 06:16 . 2010-09-24 06:16 -------- d-----w- c:\program files\Unlocker

2010-09-23 20:31 . 2010-09-23 20:31 -------- d-----w- c:\users\Damien\AppData\Roaming\fltk.org

2010-09-23 20:28 . 2010-09-23 20:28 -------- d-----w- c:\program files\ePSXe 1.6

2010-09-23 07:34 . 2010-09-23 07:34 -------- d-----w- c:\program files\BRS

2010-09-23 07:34 . 2010-07-28 17:10 1380352 ----a-w- c:\windows\system32\rapture3d_oal.dll

2010-09-23 07:34 . 2010-03-01 18:51 17686528 ----a-w- c:\windows\system32\mkl_blueripple.dll

2010-09-23 07:11 . 2010-09-23 07:12 -------- d-----w- c:\program files\DAEMON Tools Lite

2010-09-19 08:18 . 2010-09-19 08:18 -------- d-----w- c:\program files\Office 2007 portable

2010-09-18 22:53 . 2008-05-16 09:33 25512 ----a-w- c:\windows\system32\drivers\s0016nd5.sys

2010-09-18 22:53 . 2008-05-16 09:33 15016 ----a-w- c:\windows\system32\drivers\s0016mdfl.sys

2010-09-18 22:53 . 2008-05-16 09:33 115752 ----a-w- c:\windows\system32\drivers\s0016unic.sys

2010-09-18 22:53 . 2008-05-16 09:33 89256 ----a-w- c:\windows\system32\drivers\s0016bus.sys

2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016whnt.sys

2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016wh.sys

2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016cmnt.sys

2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016cm.sys

2010-09-18 22:53 . 2008-05-16 09:33 120744 ----a-w- c:\windows\system32\drivers\s0016mdm.sys

2010-09-18 22:53 . 2008-05-16 09:33 114216 ----a-w- c:\windows\system32\drivers\s0016mgmt.sys

2010-09-18 22:53 . 2008-05-16 09:33 110632 ----a-w- c:\windows\system32\drivers\s0016obex.sys

2010-09-18 22:53 . 2008-05-16 09:33 10792 ----a-w- c:\windows\system32\drivers\s0016cr.sys

2010-09-18 22:46 . 2010-09-18 22:48 34452784 ----a-w- c:\users\Damien\AppData\Roaming\Sony Setup\A189E68E-2253-4C3B-86B7-D77E36F13C55\QuickTimeInstaller.exe

2010-09-18 22:46 . 2010-09-18 22:46 -------- d-----w- c:\users\Damien\AppData\Roaming\Sony Setup

2010-09-18 22:33 . 2010-09-20 18:57 -------- d-----w- C:\hijack

2010-09-17 18:39 . 2010-09-17 18:40 -------- d-----w- c:\program files\WhoCrashed

2010-09-15 18:55 . 2010-09-16 05:27 -------- d-----w- c:\windows\system32\MpEngineStore

2010-09-15 16:04 . 2010-08-21 05:32 316928 ----a-w- c:\windows\system32\spoolsv.exe

2010-09-13 20:40 . 2010-09-07 14:47 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys

2010-09-13 20:40 . 2010-09-07 14:52 165584 ----a-w- c:\windows\system32\drivers\aswSP.sys

2010-09-13 20:40 . 2010-09-07 14:53 340048 ----a-w- c:\windows\system32\drivers\aswSnx.sys

2010-09-13 20:40 . 2010-09-07 14:47 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys

2010-09-13 20:40 . 2010-09-07 14:52 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys

2010-09-13 20:40 . 2010-09-07 14:47 50768 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2010-09-13 20:39 . 2010-09-07 15:12 38848 ----a-w- c:\windows\avastSS.scr

2010-09-13 20:39 . 2010-09-07 15:11 167592 ----a-w- c:\windows\system32\aswBoot.exe

2010-09-13 20:39 . 2010-09-13 20:39 -------- d-----w- c:\programdata\Alwil Software

2010-08-28 10:09 . 2010-09-02 21:26 46852 ----a-w- c:\programdata\Blizzard Entertainment\Battle.net\Cache\Download\Scan.dll

 

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-09-25 18:15 . 2007-12-26 10:00 -------- d-----w- c:\programdata\NVIDIA

2010-09-25 18:11 . 2008-03-16 21:33 -------- d-----w- c:\users\Damien\AppData\Roaming\DMCache

2010-09-25 17:58 . 2010-06-19 15:47 -------- d-----w- c:\program files\CAPCOM

2010-09-25 15:52 . 2009-03-01 12:43 -------- d-----w- c:\program files\LittleFighter2

2010-09-25 15:49 . 2007-12-27 20:48 -------- d-----w- c:\program files\EA GAMES

2010-09-25 15:46 . 2010-06-21 21:50 -------- d-----w- c:\program files\Steam

2010-09-25 15:41 . 2007-12-27 14:42 -------- d--h--w- c:\program files\InstallShield Installation Information

2010-09-25 15:38 . 2010-01-24 11:44 -------- d-----w- c:\program files\Common Files\BioWare

2010-09-25 15:35 . 2008-12-04 17:25 -------- d-----w- c:\program files\Rockstar Games

2010-09-25 15:33 . 2009-07-14 08:39 789166 ----a-w- c:\windows\system32\perfh00C.dat

2010-09-25 15:33 . 2009-07-14 08:39 166814 ----a-w- c:\windows\system32\perfc00C.dat

2010-09-25 14:56 . 2008-09-10 11:53 -------- d-----w- c:\program files\Common Files\Apple

2010-09-25 14:39 . 2008-03-16 21:33 -------- d-----w- c:\users\Damien\AppData\Roaming\IDM

2010-09-23 20:03 . 2008-02-02 21:12 -------- d-----w- c:\program files\Free Easy Burner

2010-09-23 07:39 . 2008-07-05 10:52 -------- d-----w- c:\programdata\Codemasters

2010-09-23 07:34 . 2008-01-13 17:32 -------- d-----w- c:\program files\OpenAL

2010-09-23 07:34 . 2007-12-28 11:25 445016 ----a-w- c:\windows\system32\wrap_oal.dll

2010-09-23 07:34 . 2007-12-28 11:25 109144 ----a-w- c:\windows\system32\OpenAL32.dll

2010-09-23 07:18 . 2009-06-15 17:57 -------- d-----w- c:\program files\Codemasters

2010-09-23 07:12 . 2008-07-10 15:49 691696 ----a-w- c:\windows\system32\drivers\sptd.sys

2010-09-20 18:58 . 2008-08-18 21:58 -------- d-----w- c:\users\Damien\AppData\Roaming\Xfire

2010-09-19 19:52 . 2008-07-05 14:10 -------- d-----w- c:\users\Damien\AppData\Roaming\mIRC

2010-09-19 18:06 . 2008-07-23 19:01 -------- d-----w- c:\program files\mIRC

2010-09-19 14:55 . 2008-07-21 18:42 -------- d-----w- c:\programdata\Soulseek

2010-09-18 22:53 . 2008-06-06 12:16 -------- d-----w- c:\program files\Sony Ericsson

2010-09-18 22:45 . 2008-01-13 21:49 -------- d-----w- c:\program files\Sony Setup

2010-09-18 20:54 . 2007-12-27 15:32 138520 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys

2010-09-18 20:54 . 2007-12-27 15:32 233960 ----a-w- c:\windows\system32\PnkBstrB.exe

2010-09-18 13:59 . 2008-08-18 21:58 -------- d-----w- c:\programdata\Xfire

2010-09-17 20:10 . 2008-12-16 09:26 -------- d-----w- c:\users\Damien\AppData\Roaming\Mumble

2010-09-15 18:57 . 2007-04-04 07:58 -------- d-----w- c:\programdata\Microsoft Help

2010-09-15 18:16 . 2010-06-08 18:44 -------- d-----w- c:\program files\EA Sports

2010-09-13 20:39 . 2008-07-07 16:55 -------- d-----w- c:\program files\Alwil Software

2010-09-13 17:37 . 2010-04-28 16:30 133720 ----a-w- c:\windows\system32\drivers\ksecpkg.sys

2010-09-12 00:04 . 2010-09-12 00:04 0 ----a-w- c:\windows\system32\dloED1E.tmp

2010-09-03 10:35 . 2010-07-14 13:53 -------- d-----w- c:\users\Damien\AppData\Roaming\MessengerDiscovery 2

2010-09-02 21:18 . 2010-05-16 16:58 -------- d-----w- c:\users\Damien\AppData\Roaming\Autodesk

2010-09-02 21:18 . 2010-05-16 16:58 -------- d-----w- c:\programdata\Autodesk

2010-09-02 16:17 . 2009-05-15 19:16 -------- d-----w- c:\program files\Microsoft Silverlight

2010-09-01 16:18 . 2008-03-04 17:19 227228 ---ha-w- c:\windows\system32\mlfcache.dat

2010-08-31 10:13 . 2008-01-21 17:57 -------- d-----w- c:\users\Damien\AppData\Roaming\Image Zone Express

2010-08-26 20:58 . 2009-11-21 14:40 -------- d-----w- c:\users\Damien\AppData\Roaming\Winamp

2010-08-23 22:27 . 2010-08-23 22:27 3586 ----a-w- C:\STF283E.tmp

2010-08-23 22:26 . 2010-08-23 22:26 3570 ----a-w- C:\STFA105.tmp

2010-08-23 22:17 . 2010-08-23 22:17 3570 ----a-w- C:\STF5C08.tmp

2010-08-23 21:32 . 2009-12-06 22:39 179424 ----a-w- c:\users\Damien\AppData\Local\GDIPFONTCACHEV1.DAT

2010-08-18 15:10 . 2010-09-23 07:34 809560 ----a-r- c:\windows\system32\tmpBD37.tmp

2010-08-18 15:10 . 2010-08-18 15:10 809560 ----a-r- c:\windows\system32\tmpBD36.tmp

2010-08-18 13:20 . 2010-07-27 16:08 -------- d-----w- c:\program files\StarCraft II

2010-08-17 00:13 . 2010-07-14 15:39 -------- d-----w- c:\program files\League of Legends

2010-08-16 10:46 . 2009-10-05 19:46 1 ----a-w- c:\users\Damien\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys

2010-08-15 07:50 . 2010-08-15 07:50 -------- d-----w- c:\programdata\ASign

2010-08-15 07:39 . 2010-08-15 07:39 -------- d-----w- c:\program files\ARC SYSTEM WORKS

2010-08-14 11:42 . 2010-08-14 07:30 -------- d-----w- c:\programdata\Yahoo! Companion

2010-08-14 07:34 . 2010-08-14 07:21 181574 ----a-w- c:\windows\hpoins29.dat

2010-08-14 07:33 . 2007-12-28 20:00 -------- d-----w- c:\users\Damien\AppData\Roaming\HP

2010-08-14 07:33 . 2007-12-28 19:52 -------- d-----w- c:\programdata\HP

2010-08-14 07:33 . 2007-12-28 19:52 146380 ----a-w- c:\windows\hpoins18.dat

2010-08-14 07:30 . 2010-08-14 07:30 -------- d-----w- c:\users\Damien\AppData\Roaming\Yahoo!

2010-08-14 07:30 . 2008-09-13 13:16 -------- d-----w- c:\program files\Yahoo!

2010-08-14 07:28 . 2007-12-28 19:53 -------- d-----w- c:\program files\HP

2010-08-14 07:25 . 2010-08-14 07:25 -------- d-----w- c:\programdata\HP Product Assistant

2010-08-11 17:36 . 2010-08-11 17:36 -------- d-----w- c:\users\Damien\AppData\Roaming\NVIDIA

2010-08-11 17:17 . 2008-07-22 18:41 -------- d-----w- c:\program files\NVIDIA Corporation

2010-08-08 19:18 . 2010-07-18 14:43 -------- d-----w- c:\program files\Common Files\Blizzard Entertainment

2010-08-01 15:42 . 2008-06-29 21:48 -------- d-----w- c:\program files\wtf

2010-07-29 06:30 . 2010-08-12 16:09 197632 ----a-w- c:\windows\system32\ir32_32.dll

2010-07-29 06:30 . 2010-08-12 16:09 82944 ----a-w- c:\windows\system32\iccvid.dll

2010-07-25 14:35 . 2010-07-25 14:35 85504 ----a-w- c:\users\Damien\AppData\Roaming\SystemRequirementsLab\srlproxy_cyri_4.1.71.0A.dll

2010-07-14 15:53 . 2010-05-14 22:25 53632 ----a-w- c:\users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe

2010-07-09 19:04 . 2010-07-09 19:04 41872 ----a-w- c:\windows\system32\xfcodec.dll

2010-07-09 11:18 . 2010-07-25 12:47 20328 ----a-w- c:\windows\system32\drivers\cpuz134_x32.sys

2010-06-30 06:25 . 2010-08-12 16:09 978432 ----a-w- c:\windows\system32\wininet.dll

2010-01-11 19:28 . 2010-01-07 18:32 25894 ----a-w- c:\program files\SolidWorksswxJRNL.BAK

2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat

2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe

.

 

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

REGEDIT4

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\snxPluginsShell]

@="{F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}"

[HKEY_CLASSES_ROOT\CLSID\{F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}]

2010-09-07 15:14 152160 ----a-w- c:\program files\Alwil Software\Avast5\snxPlugins.dll

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2009-07-26 3883856]

"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2010-05-26 3220912]

"NVIDIA nTune"="c:\program files\NVIDIA Corporation\nTune\nTuneCmd.exe" [2008-08-18 106496]

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

"FlashPlayerUpdate"="c:\windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe" [2009-10-28 257440]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"DeathAdder"="c:\program files\Razer\DeathAdder\razerhid.exe" [2007-09-07 159744]

"avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2010-09-07 2838912]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 0 (0x0)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableLUA"= 0 (0x0)

"EnableUIADesktopToggle"= 0 (0x0)

"PromptOnSecureDesktop"= 0 (0x0)

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"aux3"=wdmaud.drv

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]

Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

 

R1 vigtphcs;vigtphcs;c:\windows\system32\drivers\vigtphcs.sys [x]

R1 xwxfhrcf;xwxfhrcf;c:\windows\system32\drivers\xwxfhrcf.sys [x]

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 ntceoron;Microsoft Hardware Error Device Controller;c:\windows\System32\svchost.exe [2009-07-14 20992]

R2 OMSI download service;Sony Ericsson OMSI download service;c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 90112]

R3 AIDA32Driver;AIDA32Driver;c:\program files\AIDA32 - Personal System Information\aida32.sys [2004-02-23 3584]

R3 AVerAF15DMBTH;AVerMedia A850 USB;c:\windows\system32\Drivers\AVerAF15DMBTH.sys [2009-07-27 554368]

R3 cpuz130;cpuz130;c:\users\Damien\AppData\Local\Temp\cpuz130\cpuz_x32.sys [x]

R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\DRIVERS\ManyCam.sys [x]

R3 MEMSWEEP2;MEMSWEEP2;c:\windows\system32\A505.tmp [x]

R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [2009-06-17 3173804]

R3 ProcAPI;ProcAPI;c:\program files\Intel Corporation\Thermal Analysis Tool\ProcAPI.sys [2006-04-21 12032]

R3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]

R3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]

R3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]

R3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]

R3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]

R3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]

R3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]

R3 tat;tat;c:\program files\Intel Corporation\Thermal Analysis Tool\tat.sys [2005-10-14 5120]

R3 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [2009-11-13 92008]

R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-27 1343400]

R4 Application Updater;Application Updater;c:\program files\Application Updater\ApplicationUpdater.exe [2010-01-07 380928]

R4 AVerRemote;AVerRemote;c:\program files\Common Files\AVerMedia\Service\AVerRemote.exe [2009-04-08 344064]

R4 AVerScheduleService;AVerScheduleService;c:\program files\Common Files\AVerMedia\Service\AVerScheduleService.exe [2008-12-10 405504]

R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-09-23 691696]

S1 aswSnx;aswSnx; [x]

S1 aswSP;aswSP; [x]

S2 aswFsBlk;aswFsBlk; [x]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768]

S2 cpuz134;cpuz134;c:\windows\system32\drivers\cpuz134_x32.sys [2010-07-09 20328]

S2 PStrip;PStrip;c:\windows\system32\drivers\pstrip.sys [2007-07-15 27992]

S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-06-07 240232]

S3 DAdderFltr;DeathAdder Mouse;c:\windows\system32\drivers\dadder.sys [2007-04-12 10880]

 

 

--- Autres Services/Pilotes en mémoire ---

 

*Deregistered* - acedrv11

*Deregistered* - fwyhlgw

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

ntceoron

.

Contenu du dossier 'Tâches planifiées'

 

2010-08-27 c:\windows\Tasks\Maintenance en 1 clic.job

- c:\program files\TuneUp Utilities 2008\OneClick.exe [2007-12-21 13:39]

.

.

------- Examen supplémentaire -------

.

uSearchMigratedDefaultURL = hxxp://www.cherche.us/Result.php?cx=partner-pub-0420647136319153%3A5n6ugpjrdrh&cof=GIMP%3ACCCCCC%3BT%3A000000%3BALC%3A551a8b%3BGFNT%3AB7B7B7%3BLC%3A2200cc%3BBGC%3AFFFFFF%3BVLC%3A551a8b%3BGALT%3A008B45%3BFORID%3A10%3BDIV%3A%23FFFFF0%3B&q={searchTerms}

uStart Page = hxxp://google.fr/

uInternet Settings,ProxyServer = http=127.0.0.1:6092

uInternet Settings,ProxyOverride = <local>

IE: Télécharger avec IDM - c:\program files\Internet Download Manager\IEExt.htm

IE: Télécharger le contenu de video FLV avec IDM - c:\program files\Internet Download Manager\IEGetVL.htm

IE: Télécharger tous les liens avec IDM - c:\program files\Internet Download Manager\IEGetAll.htm

DPF: {6678BE91-1E04-4A4A-9C32-63145EA79C2A} - hxxp://fifa-online.easports.com/fo3-theme/addons/EAFO3AXLauncher.cab

FF - ProfilePath - c:\users\Damien\AppData\Roaming\Mozilla\Firefox\Profiles\ajfkqxx9.default\

FF - prefs.js: browser.search.selectedEngine - Bing

FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr

FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?mkt=fr-FR&form=MIAWB1&q=

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpClipBook.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpClipBookDB.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpNeoLogger.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSaturn.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSeymour.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSmartSelect.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSmartWebPrinting.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSWPOperation.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPLogging.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPMTC.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPMTL.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXREStub.dll

FF - component: c:\users\Damien\AppData\Roaming\IDM\idmmzcc3\components\idmmzcc.dll

FF - plugin: c:\program files\Canon\ZoomBrowser EX\Program\NPCIG.dll

FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll

FF - plugin: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\plugins\nphpclipbook.dll

FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll

FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll

FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll

FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll

FF - plugin: c:\program files\NVIDIA Corporation\3D Vision\npnv3dv.dll

FF - plugin: c:\program files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

.

.

------- Associations de fichier -------

.

.scr=DWGTrueViewScriptFile

.

- - - - ORPHELINS SUPPRIMES - - - -

 

AddRemove-Yahoo! Companion - c:\progra~1\Yahoo!\Common\UNYT_W~1.EXE

AddRemove-Yahoo! Toolbar - c:\progra~1\Yahoo!\Common\UNYT_W~1.EXE

 

 

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\MEMSWEEP2]

"ImagePath"="\??\c:\windows\system32\A505.tmp"

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]

"ImagePath"="c:\windows\system32\GameMon.des -service"

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\fwyhlgw]

 

.

--------------------- CLES DE REGISTRE BLOQUEES ---------------------

 

[HKEY_USERS\S-1-5-21-3049684622-1547058301-2819581623-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]

"??"=hex:18,b6,19,56,53,bc,96,ae,71,9f,fa,4f,9c,7d,f5,6a,ad,aa,3d,90,47,ba,07,

be,48,c0,d9,c1,ff,a5,82,5f,fc,65,88,d3,4a,34,d8,4f,78,50,42,f5,d4,25,8b,93,\

"??"=hex:5d,2e,bc,00,9b,07,bc,9c,34,34,87,88,c9,ab,ca,0d

 

[HKEY_USERS\S-1-5-21-3049684622-1547058301-2819581623-1003_Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]

@Denied: (Full) (Everyone)

"scansk"=hex(0):9f,ad,31,c3,bd,ab,af,68,1e,7f,50,84,52,de,58,de,ec,48,22,dd,6d,

90,57,cd,61,a4,00,ab,58,0d,10,f1,a2,71,02,63,d0,1d,e8,de,00,00,00,00,00,00,\

 

[HKEY_USERS\S-1-5-21-3049684622-1547058301-2819581623-1003_Classes\CLSID\{8632b6d2-42ef-4544-9e4b-9f25eb05d305}]

@Denied: (Full) (Everyone)

@Allowed: (Read) (RestrictedCode)

"Model"=dword:000000d5

"Therad"=dword:00000019

"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,

1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}\ProxyStubClsid]

@DACL=(02 0000)

@="{00020424-0000-0000-C000-000000000046}"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}\ProxyStubClsid32]

@DACL=(02 0000)

@="{00020424-0000-0000-C000-000000000046}"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}\TypeLib]

@DACL=(02 0000)

@="{2996F0E7-292B-4CAE-893F-47B8B1C05B56}"

"Version"="1.0"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}\1.0\0]

@DACL=(02 0000)

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}\1.0\FLAGS]

@DACL=(02 0000)

@="0"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}\1.0\HELPDIR]

@DACL=(02 0000)

@="c:\\Program Files\\Ask.com"

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Heure de fin: 2010-09-25 20:35:14

ComboFix-quarantined-files.txt 2010-09-25 18:35

ComboFix2.txt 2010-09-17 19:27

 

Avant-CF: 17,452,273,664 octets libres

Après-CF: 17,463,037,952 octets libres

 

- - End Of File - - F0527230B17C6CC2B72ED4B10DE69821

[nardino]

Bonsoir,

**Création d'un Script Combofix**

ATTENTION : Cette procédure a été rédigée pour le cas présent, toute copie sur sur un autre système peut entrainer des dysfonctionnements graves.

 

Ouvre le bloc-notes : Tous les programmes-Accessoire-Bloc-notes

Colles-y les lignes ci-dessous en citation :

Veille à ce que Retour à la ligne ne soit pas coché dans Format.

 

KillAll::

 

Driver::

fwyhlgw

vigtphcs

xwxfhrcf

acedrv11

 

File::

C:\STF283E.tmp

C:\STFA105.tmp

C:\STF5C08.tmp

c:\windows\system32\A505.tmp

C:\windows\system32\dloED1E.tmp

c:\windows\system32\tmpBD37.tmp

c:\windows\system32\tmpBD36.tmp

c:\windows\system32\drivers\.sys

c:\windows\system32\drivers\.sys

 

Registry:::

[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\fwyhlgw]

 

 

Enregistre-le sous CFScript.txt, sur le bureau

Comme sur l'image présentée ici, fais glisser CFScript.txt dans Combofix.exe

http://i75.servimg.com/u/f75/11/05/93/83/cf110.gif

Combofix va se lancer et faire redémarrer l'ordinateur.

Poste le rapport C:\Combofix.

Donne des infos sur l'évolution de tes problèmes.

 

@+

[brta77]

ComboFix 10-09-25.01 - Damien 2010-09-25 22:41:51.3.2 - x86

Microsoft Windows 7 Édition Familiale Premium 6.1.7600.0.1252.1.1036.18.2046.1077 [GMT 2:00]

Lancé depuis: c:\users\Damien\Desktop\brta.exe

Commutateurs utilisés :: c:\users\Damien\Desktop\CFScript.txt

SP: Spybot - Search and Destroy *disabled* (Outdated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}

* Un nouveau point de restauration a été créé

 

FILE ::

"C:\STF283E.tmp"

"C:\STF5C08.tmp"

"C:\STFA105.tmp"

"c:\windows\system32\A505.tmp"

"c:\windows\system32\dloED1E.tmp"

"c:\windows\system32\drivers\.sys"

"c:\windows\system32\tmpBD36.tmp"

"c:\windows\system32\tmpBD37.tmp"

.

 

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))

.

 

C:\STF283E.tmp

C:\STF5C08.tmp

C:\STFA105.tmp

c:\windows\system32\dloED1E.tmp

c:\windows\system32\tmpBD36.tmp

c:\windows\system32\tmpBD37.tmp

 

.

((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.

 

-------\Legacy_ACEDRV11

-------\Legacy_FWYHLGW

-------\Service_fwyhlgw

-------\Service_vigtphcs

-------\Service_xwxfhrcf

 

 

((((((((((((((((((((((((((((( Fichiers créés du 2010-08-25 au 2010-09-25 ))))))))))))))))))))))))))))))))))))

.

 

2010-09-25 20:53 . 2010-09-25 20:55 -------- d-----w- c:\users\Damien\AppData\Local\temp

2010-09-25 20:53 . 2010-09-25 20:53 -------- d-----w- c:\users\Public\AppData\Local\temp

2010-09-25 20:53 . 2010-09-25 20:53 -------- d-----w- c:\users\Mcx1-PC-DAMIEN\AppData\Local\temp

2010-09-25 20:53 . 2010-09-25 20:53 -------- d-----w- c:\users\HomeGroupUser$\AppData\Local\temp

2010-09-25 20:53 . 2010-09-25 20:53 -------- d-----w- c:\users\Default\AppData\Local\temp

2010-09-25 20:53 . 2010-09-25 20:53 -------- d-----w- c:\users\ASPNET\AppData\Local\temp

2010-09-25 20:53 . 2010-09-25 20:53 -------- d-----w- c:\users\Administrateur\AppData\Local\temp

2010-09-25 18:43 . 2010-09-25 18:43 761152 ----a-w- c:\windows\msvcr100.dll

2010-09-25 14:37 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2010-09-25 14:37 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys

2010-09-25 13:18 . 2010-09-25 13:18 -------- d-----w- c:\users\Damien\AppData\Roaming\Malwarebytes

2010-09-25 13:18 . 2010-09-25 13:18 -------- d-----w- c:\programdata\Malwarebytes

2010-09-25 13:18 . 2010-09-25 14:37 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2010-09-25 12:32 . 2010-05-21 12:14 221568 ------w- c:\windows\system32\MpSigStub.exe

2010-09-25 12:17 . 2010-09-25 14:37 -------- d-----w- c:\users\Damien\Pavark

2010-09-25 12:08 . 2010-09-25 12:08 -------- d-----w- c:\program files\Sophos

2010-09-24 06:16 . 2010-09-24 06:16 -------- d-----w- c:\program files\Unlocker

2010-09-23 20:31 . 2010-09-23 20:31 -------- d-----w- c:\users\Damien\AppData\Roaming\fltk.org

2010-09-23 20:28 . 2010-09-23 20:28 -------- d-----w- c:\program files\ePSXe 1.6

2010-09-23 07:34 . 2010-09-23 07:34 -------- d-----w- c:\program files\BRS

2010-09-23 07:34 . 2010-07-28 17:10 1380352 ----a-w- c:\windows\system32\rapture3d_oal.dll

2010-09-23 07:34 . 2010-03-01 18:51 17686528 ----a-w- c:\windows\system32\mkl_blueripple.dll

2010-09-23 07:11 . 2010-09-23 07:12 -------- d-----w- c:\program files\DAEMON Tools Lite

2010-09-19 08:18 . 2010-09-19 08:18 -------- d-----w- c:\program files\Office 2007 portable

2010-09-18 22:53 . 2008-05-16 09:33 25512 ----a-w- c:\windows\system32\drivers\s0016nd5.sys

2010-09-18 22:53 . 2008-05-16 09:33 15016 ----a-w- c:\windows\system32\drivers\s0016mdfl.sys

2010-09-18 22:53 . 2008-05-16 09:33 115752 ----a-w- c:\windows\system32\drivers\s0016unic.sys

2010-09-18 22:53 . 2008-05-16 09:33 89256 ----a-w- c:\windows\system32\drivers\s0016bus.sys

2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016whnt.sys

2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016wh.sys

2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016cmnt.sys

2010-09-18 22:53 . 2008-05-16 09:33 12200 ----a-w- c:\windows\system32\drivers\s0016cm.sys

2010-09-18 22:53 . 2008-05-16 09:33 120744 ----a-w- c:\windows\system32\drivers\s0016mdm.sys

2010-09-18 22:53 . 2008-05-16 09:33 114216 ----a-w- c:\windows\system32\drivers\s0016mgmt.sys

2010-09-18 22:53 . 2008-05-16 09:33 110632 ----a-w- c:\windows\system32\drivers\s0016obex.sys

2010-09-18 22:53 . 2008-05-16 09:33 10792 ----a-w- c:\windows\system32\drivers\s0016cr.sys

2010-09-18 22:46 . 2010-09-18 22:46 -------- d-----w- c:\users\Damien\AppData\Roaming\Sony Setup

2010-09-18 22:33 . 2010-09-20 18:57 -------- d-----w- C:\hijack

2010-09-17 18:39 . 2010-09-17 18:40 -------- d-----w- c:\program files\WhoCrashed

2010-09-15 18:55 . 2010-09-16 05:27 -------- d-----w- c:\windows\system32\MpEngineStore

2010-09-15 16:04 . 2010-08-21 05:32 316928 ----a-w- c:\windows\system32\spoolsv.exe

2010-09-13 20:40 . 2010-09-07 14:47 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys

2010-09-13 20:40 . 2010-09-07 14:52 165584 ----a-w- c:\windows\system32\drivers\aswSP.sys

2010-09-13 20:40 . 2010-09-07 14:53 340048 ----a-w- c:\windows\system32\drivers\aswSnx.sys

2010-09-13 20:40 . 2010-09-07 14:47 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys

2010-09-13 20:40 . 2010-09-07 14:52 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys

2010-09-13 20:40 . 2010-09-07 14:47 50768 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2010-09-13 20:39 . 2010-09-07 15:12 38848 ----a-w- c:\windows\avastSS.scr

2010-09-13 20:39 . 2010-09-07 15:11 167592 ----a-w- c:\windows\system32\aswBoot.exe

2010-09-13 20:39 . 2010-09-13 20:39 -------- d-----w- c:\programdata\Alwil Software

2010-09-11 21:47 . 2010-09-25 20:54 842752 ----a-w- c:\windows\system32\drivers\fwyhlgw.sys

 

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-09-25 20:55 . 2007-12-26 10:00 -------- d-----w- c:\programdata\NVIDIA

2010-09-25 18:47 . 2009-07-14 08:39 789166 ----a-w- c:\windows\system32\perfh00C.dat

2010-09-25 18:47 . 2009-07-14 08:39 166814 ----a-w- c:\windows\system32\perfc00C.dat

2010-09-25 18:11 . 2008-03-16 21:33 -------- d-----w- c:\users\Damien\AppData\Roaming\DMCache

2010-09-25 17:58 . 2010-06-19 15:47 -------- d-----w- c:\program files\CAPCOM

2010-09-25 15:52 . 2009-03-01 12:43 -------- d-----w- c:\program files\LittleFighter2

2010-09-25 15:49 . 2007-12-27 20:48 -------- d-----w- c:\program files\EA GAMES

2010-09-25 15:46 . 2010-06-21 21:50 -------- d-----w- c:\program files\Steam

2010-09-25 15:41 . 2007-12-27 14:42 -------- d--h--w- c:\program files\InstallShield Installation Information

2010-09-25 15:38 . 2010-01-24 11:44 -------- d-----w- c:\program files\Common Files\BioWare

2010-09-25 15:35 . 2008-12-04 17:25 -------- d-----w- c:\program files\Rockstar Games

2010-09-25 14:56 . 2008-09-10 11:53 -------- d-----w- c:\program files\Common Files\Apple

2010-09-25 14:39 . 2008-03-16 21:33 -------- d-----w- c:\users\Damien\AppData\Roaming\IDM

2010-09-23 20:03 . 2008-02-02 21:12 -------- d-----w- c:\program files\Free Easy Burner

2010-09-23 07:39 . 2008-07-05 10:52 -------- d-----w- c:\programdata\Codemasters

2010-09-23 07:34 . 2008-01-13 17:32 -------- d-----w- c:\program files\OpenAL

2010-09-23 07:34 . 2007-12-28 11:25 445016 ----a-w- c:\windows\system32\wrap_oal.dll

2010-09-23 07:34 . 2007-12-28 11:25 109144 ----a-w- c:\windows\system32\OpenAL32.dll

2010-09-23 07:18 . 2009-06-15 17:57 -------- d-----w- c:\program files\Codemasters

2010-09-23 07:12 . 2008-07-10 15:49 691696 ----a-w- c:\windows\system32\drivers\sptd.sys

2010-09-20 18:58 . 2008-08-18 21:58 -------- d-----w- c:\users\Damien\AppData\Roaming\Xfire

2010-09-19 19:52 . 2008-07-05 14:10 -------- d-----w- c:\users\Damien\AppData\Roaming\mIRC

2010-09-19 18:06 . 2008-07-23 19:01 -------- d-----w- c:\program files\mIRC

2010-09-19 14:55 . 2008-07-21 18:42 -------- d-----w- c:\programdata\Soulseek

2010-09-18 22:53 . 2008-06-06 12:16 -------- d-----w- c:\program files\Sony Ericsson

2010-09-18 22:48 . 2010-09-18 22:46 34452784 ----a-w- c:\users\Damien\AppData\Roaming\Sony Setup\A189E68E-2253-4C3B-86B7-D77E36F13C55\QuickTimeInstaller.exe

2010-09-18 22:45 . 2008-01-13 21:49 -------- d-----w- c:\program files\Sony Setup

2010-09-18 20:54 . 2007-12-27 15:32 138520 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys

2010-09-18 20:54 . 2007-12-27 15:32 233960 ----a-w- c:\windows\system32\PnkBstrB.exe

2010-09-18 13:59 . 2008-08-18 21:58 -------- d-----w- c:\programdata\Xfire

2010-09-17 20:10 . 2008-12-16 09:26 -------- d-----w- c:\users\Damien\AppData\Roaming\Mumble

2010-09-15 18:57 . 2007-04-04 07:58 -------- d-----w- c:\programdata\Microsoft Help

2010-09-15 18:16 . 2010-06-08 18:44 -------- d-----w- c:\program files\EA Sports

2010-09-13 20:39 . 2008-07-07 16:55 -------- d-----w- c:\program files\Alwil Software

2010-09-13 17:37 . 2010-04-28 16:30 133720 ----a-w- c:\windows\system32\drivers\ksecpkg.sys

2010-09-03 10:35 . 2010-07-14 13:53 -------- d-----w- c:\users\Damien\AppData\Roaming\MessengerDiscovery 2

2010-09-02 21:26 . 2010-08-28 10:09 46852 ----a-w- c:\programdata\Blizzard Entertainment\Battle.net\Cache\Download\Scan.dll

2010-09-02 21:18 . 2010-05-16 16:58 -------- d-----w- c:\users\Damien\AppData\Roaming\Autodesk

2010-09-02 21:18 . 2010-05-16 16:58 -------- d-----w- c:\programdata\Autodesk

2010-09-02 16:17 . 2009-05-15 19:16 -------- d-----w- c:\program files\Microsoft Silverlight

2010-09-01 16:18 . 2008-03-04 17:19 227228 ---ha-w- c:\windows\system32\mlfcache.dat

2010-08-31 10:13 . 2008-01-21 17:57 -------- d-----w- c:\users\Damien\AppData\Roaming\Image Zone Express

2010-08-26 20:58 . 2009-11-21 14:40 -------- d-----w- c:\users\Damien\AppData\Roaming\Winamp

2010-08-23 21:32 . 2009-12-06 22:39 179424 ----a-w- c:\users\Damien\AppData\Local\GDIPFONTCACHEV1.DAT

2010-08-18 13:20 . 2010-07-27 16:08 -------- d-----w- c:\program files\StarCraft II

2010-08-17 00:13 . 2010-07-14 15:39 -------- d-----w- c:\program files\League of Legends

2010-08-16 10:46 . 2009-10-05 19:46 1 ----a-w- c:\users\Damien\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys

2010-08-15 07:50 . 2010-08-15 07:50 -------- d-----w- c:\programdata\ASign

2010-08-15 07:39 . 2010-08-15 07:39 -------- d-----w- c:\program files\ARC SYSTEM WORKS

2010-08-14 11:42 . 2010-08-14 07:30 -------- d-----w- c:\programdata\Yahoo! Companion

2010-08-14 07:34 . 2010-08-14 07:21 181574 ----a-w- c:\windows\hpoins29.dat

2010-08-14 07:33 . 2007-12-28 20:00 -------- d-----w- c:\users\Damien\AppData\Roaming\HP

2010-08-14 07:33 . 2007-12-28 19:52 -------- d-----w- c:\programdata\HP

2010-08-14 07:33 . 2007-12-28 19:52 146380 ----a-w- c:\windows\hpoins18.dat

2010-08-14 07:30 . 2010-08-14 07:30 -------- d-----w- c:\users\Damien\AppData\Roaming\Yahoo!

2010-08-14 07:30 . 2008-09-13 13:16 -------- d-----w- c:\program files\Yahoo!

2010-08-14 07:28 . 2007-12-28 19:53 -------- d-----w- c:\program files\HP

2010-08-14 07:25 . 2010-08-14 07:25 -------- d-----w- c:\programdata\HP Product Assistant

2010-08-11 17:36 . 2010-08-11 17:36 -------- d-----w- c:\users\Damien\AppData\Roaming\NVIDIA

2010-08-11 17:17 . 2008-07-22 18:41 -------- d-----w- c:\program files\NVIDIA Corporation

2010-08-08 19:18 . 2010-07-18 14:43 -------- d-----w- c:\program files\Common Files\Blizzard Entertainment

2010-08-01 15:42 . 2008-06-29 21:48 -------- d-----w- c:\program files\wtf

2010-07-29 06:30 . 2010-08-12 16:09 197632 ----a-w- c:\windows\system32\ir32_32.dll

2010-07-29 06:30 . 2010-08-12 16:09 82944 ----a-w- c:\windows\system32\iccvid.dll

2010-07-25 14:35 . 2010-07-25 14:35 85504 ----a-w- c:\users\Damien\AppData\Roaming\SystemRequirementsLab\srlproxy_cyri_4.1.71.0A.dll

2010-07-14 15:53 . 2010-05-14 22:25 53632 ----a-w- c:\users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe

2010-07-09 19:04 . 2010-07-09 19:04 41872 ----a-w- c:\windows\system32\xfcodec.dll

2010-07-09 11:18 . 2010-07-25 12:47 20328 ----a-w- c:\windows\system32\drivers\cpuz134_x32.sys

2010-06-30 06:25 . 2010-08-12 16:09 978432 ----a-w- c:\windows\system32\wininet.dll

2010-01-11 19:28 . 2010-01-07 18:32 25894 ----a-w- c:\program files\SolidWorksswxJRNL.BAK

2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat

2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe

.

 

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

REGEDIT4

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\snxPluginsShell]

@="{F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}"

[HKEY_CLASSES_ROOT\CLSID\{F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}]

2010-09-07 15:14 152160 ----a-w- c:\program files\Alwil Software\Avast5\snxPlugins.dll

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2009-07-26 3883856]

"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2010-05-26 3220912]

"NVIDIA nTune"="c:\program files\NVIDIA Corporation\nTune\nTuneCmd.exe" [2008-08-18 106496]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"DeathAdder"="c:\program files\Razer\DeathAdder\razerhid.exe" [2007-09-07 159744]

"avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2010-09-07 2838912]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 0 (0x0)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableLUA"= 0 (0x0)

"EnableUIADesktopToggle"= 0 (0x0)

"PromptOnSecureDesktop"= 0 (0x0)

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"aux3"=wdmaud.drv

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]

Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

 

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R3 AIDA32Driver;AIDA32Driver;c:\program files\AIDA32 - Personal System Information\aida32.sys [2004-02-23 3584]

R3 AVerAF15DMBTH;AVerMedia A850 USB;c:\windows\system32\Drivers\AVerAF15DMBTH.sys [2009-07-27 554368]

R3 cpuz130;cpuz130;c:\users\Damien\AppData\Local\Temp\cpuz130\cpuz_x32.sys [x]

R4 Application Updater;Application Updater;c:\program files\Application Updater\ApplicationUpdater.exe [2010-01-07 380928]

R4 AVerRemote;AVerRemote;c:\program files\Common Files\AVerMedia\Service\AVerRemote.exe [2009-04-08 344064]

R4 AVerScheduleService;AVerScheduleService;c:\program files\Common Files\AVerMedia\Service\AVerScheduleService.exe [2008-12-10 405504]

S1 aswSnx;aswSnx; [x]

S1 aswSP;aswSP; [x]

S2 aswFsBlk;aswFsBlk; [x]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768]

S2 cpuz134;cpuz134;c:\windows\system32\drivers\cpuz134_x32.sys [2010-07-09 20328]

S3 DAdderFltr;DeathAdder Mouse;c:\windows\system32\drivers\dadder.sys [2007-04-12 10880]

 

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

ntceoron

.

Contenu du dossier 'Tâches planifiées'

 

2010-08-27 c:\windows\Tasks\Maintenance en 1 clic.job

- c:\program files\TuneUp Utilities 2008\OneClick.exe [2007-12-21 13:39]

.

.

------- Examen supplémentaire -------

.

uSearchMigratedDefaultURL = hxxp://www.cherche.us/Result.php?cx=partner-pub-0420647136319153%3A5n6ugpjrdrh&cof=GIMP%3ACCCCCC%3BT%3A000000%3BALC%3A551a8b%3BGFNT%3AB7B7B7%3BLC%3A2200cc%3BBGC%3AFFFFFF%3BVLC%3A551a8b%3BGALT%3A008B45%3BFORID%3A10%3BDIV%3A%23FFFFF0%3B&q={searchTerms}

uStart Page = hxxp://google.fr/

uInternet Settings,ProxyServer = http=127.0.0.1:6092

uInternet Settings,ProxyOverride = <local>

IE: Télécharger avec IDM - c:\program files\Internet Download Manager\IEExt.htm

IE: Télécharger le contenu de video FLV avec IDM - c:\program files\Internet Download Manager\IEGetVL.htm

IE: Télécharger tous les liens avec IDM - c:\program files\Internet Download Manager\IEGetAll.htm

DPF: {6678BE91-1E04-4A4A-9C32-63145EA79C2A} - hxxp://fifa-online.easports.com/fo3-theme/addons/EAFO3AXLauncher.cab

FF - ProfilePath - c:\users\Damien\AppData\Roaming\Mozilla\Firefox\Profiles\ajfkqxx9.default\

FF - prefs.js: browser.search.selectedEngine - Bing

FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr

FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?mkt=fr-FR&form=MIAWB1&q=

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpClipBook.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpClipBookDB.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpNeoLogger.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSaturn.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSeymour.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSmartSelect.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSmartWebPrinting.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSWPOperation.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPLogging.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPMTC.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPMTL.dll

FF - component: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXREStub.dll

FF - component: c:\users\Damien\AppData\Roaming\IDM\idmmzcc3\components\idmmzcc.dll

FF - plugin: c:\program files\Canon\ZoomBrowser EX\Program\NPCIG.dll

FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll

FF - plugin: c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\plugins\nphpclipbook.dll

FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll

FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll

FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll

FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll

FF - plugin: c:\program files\NVIDIA Corporation\3D Vision\npnv3dv.dll

FF - plugin: c:\program files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\MEMSWEEP2]

"ImagePath"="\??\c:\windows\system32\A505.tmp"

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]

"ImagePath"="c:\windows\system32\GameMon.des -service"

.

--------------------- CLES DE REGISTRE BLOQUEES ---------------------

 

[HKEY_USERS\S-1-5-21-3049684622-1547058301-2819581623-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]

"??"=hex:18,b6,19,56,53,bc,96,ae,71,9f,fa,4f,9c,7d,f5,6a,ad,aa,3d,90,47,ba,07,

be,48,c0,d9,c1,ff,a5,82,5f,fc,65,88,d3,4a,34,d8,4f,78,50,42,f5,d4,25,8b,93,\

"??"=hex:5d,2e,bc,00,9b,07,bc,9c,34,34,87,88,c9,ab,ca,0d

 

[HKEY_USERS\S-1-5-21-3049684622-1547058301-2819581623-1003_Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]

@Denied: (Full) (Everyone)

"scansk"=hex(0):9f,ad,31,c3,bd,ab,af,68,1e,7f,50,84,52,de,58,de,ec,48,22,dd,6d,

90,57,cd,61,a4,00,ab,58,0d,10,f1,a2,71,02,63,d0,1d,e8,de,00,00,00,00,00,00,\

 

[HKEY_USERS\S-1-5-21-3049684622-1547058301-2819581623-1003_Classes\CLSID\{8632b6d2-42ef-4544-9e4b-9f25eb05d305}]

@Denied: (Full) (Everyone)

@Allowed: (Read) (RestrictedCode)

"Model"=dword:000000d5

"Therad"=dword:00000019

"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,

1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}\ProxyStubClsid]

@DACL=(02 0000)

@="{00020424-0000-0000-C000-000000000046}"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}\ProxyStubClsid32]

@DACL=(02 0000)

@="{00020424-0000-0000-C000-000000000046}"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}\TypeLib]

@DACL=(02 0000)

@="{2996F0E7-292B-4CAE-893F-47B8B1C05B56}"

"Version"="1.0"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}\1.0\0]

@DACL=(02 0000)

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}\1.0\FLAGS]

@DACL=(02 0000)

@="0"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}\1.0\HELPDIR]

@DACL=(02 0000)

@="c:\\Program Files\\Ask.com"

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

------------------------ Autres processus actifs ------------------------

.

c:\windows\system32\nvvsvc.exe

c:\windows\system32\nvvsvc.exe

c:\program files\Alwil Software\Avast5\AvastSvc.exe

c:\windows\system32\conhost.exe

c:\program files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe

c:\program files\NVIDIA Corporation\nTune\nTuneService.exe

c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe

c:\windows\system32\PnkBstrA.exe

c:\program files\Microsoft SQL Server\90\Shared\sqlbrowser.exe

c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe

c:\program files\Razer\DeathAdder\razertra.exe

c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

c:\program files\Razer\DeathAdder\razerofa.exe

c:\program files\NVIDIA Corporation\System Update\UpdateCenterService.exe

c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

c:\program files\Windows Media Player\wmpnetwk.exe

c:\windows\system32\DllHost.exe

c:\windows\system32\sppsvc.exe

c:\windows\servicing\TrustedInstaller.exe

.

**************************************************************************

.

Heure de fin: 2010-09-25 23:04:16 - La machine a redémarré

ComboFix-quarantined-files.txt 2010-09-25 21:04

ComboFix2.txt 2010-09-17 19:27

 

Avant-CF: 17,605,361,664 octets libres

Après-CF: 17,276,231,680 octets libres

 

- - End Of File - - A762DB57F343DF949A046351061FC877

[brta77]

Après avoir fait ta manipulation, je suis allez dans System32\driver voir si le fichier fwyhlgw.sys était toujours présent, il y était j'ai donc esséyé de le supprimer, et la MIRACLE il c'est supprimé moi qui a passer l'aprèm a vouloir le supprimer sans y parvenir... j'aurai su qu'une solution m'aurait été proposé si rapidement ici je l'aurait fait depuis bien longtemps 100000 merci et je te tiens au courant si j'ai de nouveau soucis

 

Si tu voit des traces / ou des manipulation pour savoir si je suis plus infecté fait le moi savoir

 

Encore merci

[nardino]

Bonjour

Il reste à supprimer Combofix.

Dans le menu Démarrer :

Sous Vista/7 > ou Exécuter > tape combofix /uninstall > valide par Entrer ou OK

Un message t'avertira de la bonne suppression de l'outil.

Supprime le rapport C:\Combofix.txt

Pour contrôle.

Télécharge et installe Malwarebytes Anti-Malware de RubbeR DuckY

 

Double-clique sur le fichier mbam-setup-1.46.exe (sous Vista et 7 autorise les modifications)

A la fin de l'installation, veille à ce que les options suivantes soient cochées

• -Mettre à jour Malwarebytes' Anti-Malware
  -Exécuter Malwarebytes' Anti-Malware

Clique sur Terminer

Une fenêtre Mise à jour de Malwarebytes' Anti-Malware va s'ouvrir avec une barre de progression.

Puis une autre annonçant le succès de la mise à jour de la base de données. Clique sur OK.

Le programme s'ouvre sur l'onglet Recherche.

Coche Exécuter un examen rapide, clique sur le bouton

 

A la fin du scan, sélectionne tout et clique sur Supprimer la sélection

 

Poste le rapport qui s'ouvre après cette suppression.

Redémarre le pc si cela est demandé

Tu peux retrouver le rapport dans l'onglet Rapports/Logs avec la date et l'heure d'exécution.

 

Télécharge ZHPDiag de Nicolas Coolman sur ton bureau.

 

• Clique sur pour lancer l'installation.
  Clique sur pour lancer le programme.

 

Sous Vista et Sept , il faut cliquer droit dessus et dans le menu contextuel sur Exécuter en tant qu'administrateur.

Clique sur pour vérifier si une mise à jour du logiciel est disponible.

Clique sur pour lancer le scan.

Clique sur quand le scan sera terminé pour mettre le rapport dans le presse-papier.

 

Poste ce dernier dans ta réponse en appuyant sur les touches CTRL+V

Referme l'outil.

Le rapport sera enregistré sur le bureau.

[brta77]

Desinstallation de combofix pas réussie ( brta.exe est sur le bureau et j'ai bien fait combofix /uninstall comme dit ci-dessus )

 

http://img213.imageshack.us/img213/8836/comboxfixuninstall.png

Malwarebytes n'a rien trouvé

 

Malwarebytes' Anti-Malware 1.46

www.malwarebytes.org

 

Version de la base de données: 4691

 

Windows 6.1.7600

Internet Explorer 8.0.7600.16385

 

2010-09-26 17:42:33

mbam-log-2010-09-26 (17-42-33).txt

 

Type d'examen: Examen rapide

Elément(s) analysé(s): 183496

Temps écoulé: 6 minute(s), 18 seconde(s)

 

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 0

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 0

Fichier(s) infecté(s): 0

 

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Clé(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

 

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

 

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

 

Dossier(s) infecté(s):

(Aucun élément nuisible détecté)

 

Fichier(s) infecté(s):

(Aucun élément nuisible détecté)

 

ZHPDiag

 

Rapport de ZHPDiag v1.26.67 par Nicolas Coolman, Update du 25/09/2010

Run by Damien at 2010-09-26 17:47:04

Web site : ZHPDiag Outil de diagnostic

Contact : nicolascoolman@yahoo.fr

 

---\\ Web Browser

MSIE: Internet Explorer v8.0.7600.16385

MFIE: Mozilla Firefox (3.0.19)

 

---\\ System Information

Platform : Windows 7 Home Premium (6.1.7600)

Processor: x86 Family 6 Model 15 Stepping 11, GenuineIntel

Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 2046.5 MB (52% free)

System drive C: has 16 GB (6%) free of 233 GB

 

---\\ Logged in mode

Computer Name: PC-DAMIEN

User Name: Damien

All Users Names: Mcx1-PC-DAMIEN, HomeGroupUser$, Damien, ASPNET, Administrateur,

Unselected Option: O1,O45,O61,O62,O65,O82,O84

Logged in as Administrator

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 16 Go of 233 Go)

D:\ CD-ROM drive (Not Inserted)

F:\ Hard drive, Flash drive, Thumb drive (Free 106 Go of 466 Go)

H:\ Hard drive, Flash drive, Thumb drive (Free 45 Go of 466 Go)

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

 

 

---\\ Processus lancés

[MD5.EE3D9986F75FB4239050F341348C2FF6] - (.Pas de propriétaire - razerhid MFC Application.) -- C:\Program Files\Razer\DeathAdder\razerhid.exe [159744]

[MD5.6C1B31F5C16E03153F0037AC6C451FFD] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2838912]

[MD5.CFDE710E4AD97EFD666E6042750F218F] - (.Pas de propriétaire - razertra MFC Application.) -- C:\Program Files\Razer\DeathAdder\razertra.exe [143360]

[MD5.7A54E4A4116A8747EE148E1E82E595F6] - (.Razer Inc. - Razer OFA - On-the-Fly Sensitivity Adjustme.) -- C:\Program Files\Razer\DeathAdder\razerofa.exe [163840]

[MD5.4E4D64765D183B3A0C5F7E6579F8AAC9] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe [3220912]

[MD5.B80B49333FF247705691FE2C12DFD139] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [307672]

[MD5.53C62FB3B0BAD66EC2026977D707A2A4] - (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe [116280]

[MD5.4CADC1C815E97DA5A383FC5A011E969D] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\WinRAR\WinRAR.exe [932352]

[MD5.D378BFFB70923139D6A4F546864AA61C] - (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\NOTEPAD.EXE [179712]

[MD5.5BD890FB9EB505010EDD9796C6FA3AE3] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [556032]

 

 

---\\ Page de démarrage de Mozilla Firefox (M0)

M0 - MFSP: prefs.js [Damien - ajfkqxx9.default] Google

 

 

---\\ Programmes d'extension pour Mozilla Firefox (M2)

M2 - MFEP: prefs.js [Damien - ajfkqxx9.default\eafo3fflauncher@ea.com] [] FIFA Online Web Launcher 1.1 (.Electronic Arts Inc..)

M2 - MFEP: prefs.js [Damien - ajfkqxx9.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant 1.1 (.Microsoft.)

M2 - MFEP: prefs.js [Damien - ajfkqxx9.default\{5556F97E-11A5-46b0-9082-32AD74AAA920}] [] AutoFormer 0.4.1.5 (.Mykola Onyschuk.)

M2 - MFEP: prefs.js [Damien - ajfkqxx9.default\{800b5000-a755-47e1-992b-48a1c1357f07}] [] ICQ Toolbar 0.4.1.5 (.Mykola Onyschuk.)

 

 

---\\ Plugins de navigateurs Opera/Firefox(P1/P2)

P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll

P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll

P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll

P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL

P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll

P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll

P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

P2 - FPN: [HKLM] [@canon.com/MycameraPlugin] - (.CANON INC. - CANON iMAGE GATEWAY Mycamera Plugin.) -- C:\Program Files\Canon\ZoomBrowser EX\Program\NPCIG.dll

P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX Web Player version 2.0.2.39.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

P2 - FPN: [HKLM] [@divx.com/DivX Content Upload Plugin,version=1.0.0] - (.DivX,Inc. - DivX® Content Upload Plugin.) -- C:\Program Files\DivX\DivX Content Uploader\npUpload.dll

P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.50826.0.) -- C:\Program Files\Microsoft Silverlight\4.0.50826.0\npctrl.dll

P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll

P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.5] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll

P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8081.0709] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

P2 - FPN: [HKLM] [@nvidia.com/3DVision] - (.NVIDIA Corporation - NVIDIA 3D Vision plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

P2 - FPN: [HKLM] [@nvidia.com/3DVisionStreaming] - (.NVIDIA Corporation - NVIDIA 3D Vision Streaming plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.11.2321] - (.RealNetworks, Inc. - RealPlayer LiveConnect-Enabled Plug-In.) -- C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll

P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.1483] - (.RealNetworks, Inc. - 6.0.12.1483.) -- C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll

P2 - FPN: [HKLM] [yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1] - (.Yahoo! Inc. - Yahoo! activeX Plug-in Bridge.) -- C:\Program Files\Yahoo!\Common\npyaxmpb.dll

 

 

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe

 

 

---\\ Pages de démarrage d'Internet Explorer (R0)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

 

 

---\\ Pages de recherche d'Internet Explorer (R1)

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <local>

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:6092

 

 

---\\ Internet Explorer URLSearchHook (R3)

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll

 

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Tonec Inc. - IDM BHO Module.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

 

 

---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [DeathAdder] . (.Pas de propriétaire - razerhid MFC Application.) -- C:\Program Files\Razer\DeathAdder\razerhid.exe

O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe

O4 - HKCU\..\Run: [MsnMsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\MsnMsgr.exe

O4 - HKCU\..\Run: [iDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe

O4 - HKCU\..\Run: [NVIDIA nTune] . (.NVIDIA - NVIDIA nTune Command.) -- C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe

O4 - HKUS\S-1-5-21-3049684622-1547058301-2819581623-1003\..\Run: [MsnMsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\MsnMsgr.exe

O4 - HKUS\S-1-5-21-3049684622-1547058301-2819581623-1003\..\Run: [iDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe

O4 - HKUS\S-1-5-21-3049684622-1547058301-2819581623-1003\..\Run: [NVIDIA nTune] . (.NVIDIA - NVIDIA nTune Command.) -- C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe

O4 - Global Startup: C:\Users\Damien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

 

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: Télécharger avec IDM . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Internet Download Manager\IEExt.htm

O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Internet Download Manager\IEGetVL.htm

O8 - Extra context menu item: Télécharger tous les liens avec IDM . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Internet Download Manager\IEGetAll.htm

 

 

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~4\Office12\REFBARH.ICO

O9 - Extra 'Tools' menuitem: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} . (.not file.) - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

 

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

 

 

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab

O16 - DPF: {6678BE91-1E04-4A4A-9C32-63145EA79C2A} (EAFO3AXLauncher Control) - http://fifa-online.easports.com/fo3-theme/addons/EAFO3AXLauncher.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab

O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUplden-us.cab

 

 

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{FFA7DFC9-16EA-4BAA-87E8-0904FB317673}: DhcpNameServer = 192.168.0.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{FFA7DFC9-16EA-4BAA-87E8-0904FB317673}: DhcpNameServer = 192.168.0.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{FFA7DFC9-16EA-4BAA-87E8-0904FB317673}: DhcpNameServer = 192.168.0.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1

 

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\system32\webcheck.dll

 

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (.not file.)

O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: Performance Service (nTuneService) . (.NVIDIA - NVIDIA Performance Service.) - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 257.2.) - C:\Windows\system32\nvvsvc.exe

O23 - Service: Sony Ericsson OMSI download service (OMSI download service) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe

O23 - Service: PnkBstrA (PnkBstrA) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\PnkBstrA.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

O23 - Service: Update Center Service (UpdateCenterService) . (.NVIDIA - NVIDIA Update Center Service.) - C:\Program Files\NVIDIA Corporation\System Update\UpdateCenterService.exe

 

 

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe

 

 

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Maintenance en 1 clic.job

 

 

---\\ Composants installés (ActiveSetup Installed Components) (O40)

O40 - ASIC: Personnalisation du navigateur - >{ED3DF1A7-E9AD-41C7-A62A-1CDA6E33F517} . (.Pas de propriétaire - Pas de description.) -- RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP

O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll

 

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: NCPro (NCPro) . (.Samsung Electronics, Inc. - MagicTunePremium Driver.) - C:\Windows\system32\drivers\MTictwl.sys

O41 - Driver: NVIDIA PORT IO Control Driver (nvport) . (.NVIDIA Corporation. - Port Driver.) - C:\Windows\system32\Drivers\nvport.sys

O41 - Driver: WINIO (WINIO) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\IRAI\AUTOMGEN8\winio.sys

 

 

---\\ Logiciels installés (O42)

O42 - Logiciel: 2007 Microsoft Office system - (.Microsoft Corporation.) [HKLM] -- PROHYBRIDR

O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {859D40CF-8491-44AD-8FA8-7389CB418C64}

O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D}

O42 - Logiciel: AIDA32 v3.93 - (.Tamas Miklos.) [HKLM] -- AIDA32_is1

O42 - Logiciel: ASIO4ALL - (.Pas de propriétaire.) [HKLM] -- ASIO4ALL

O42 - Logiciel: AUTOMGEN V8.016 ©IRAI - (.Pas de propriétaire.) [HKLM] -- AUTOMGEN8.016

O42 - Logiciel: AVerMedia A850 USB DMB-TH 1.0.0.28 - (.AVerMedia TECHNOLOGIES, Inc..) [HKLM] -- AVerMedia A850 USB DMB-TH

O42 - Logiciel: AVerTV - (.AVerMedia Technologies, Inc..) [HKLM] -- InstallShield_{E28B1E6F-E0AA-4228-AB89-DB4A0C89D426}

O42 - Logiciel: Activation Assistant for the 2007 Microsoft Office suites - (.Microsoft Corporation.) [HKLM] -- Activation Assistant for the 2007 Microsoft Office suites

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {B194272D-1F92-46DF-99EB-8D5CE91CB4EC}

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin

O42 - Logiciel: Adobe Reader 9.3 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A93000000001}

O42 - Logiciel: Advanced RAR Repair v1.2 - (.Pas de propriétaire.) [HKLM] -- Advanced RAR Repair v1.2

O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver

O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE}

O42 - Logiciel: Assistant de connexion Windows Live ID - (.Microsoft Corporation.) [HKLM] -- {0840B4D6-7DD1-4187-8523-E6FC0007EFB7}

O42 - Logiciel: Assistant de connexion Windows Live ID - (.Microsoft Corporation.) [HKLM] -- {10A44844-4465-456E-8C97-80BDD4F68845}

O42 - Logiciel: Audacity 1.3.9 (Unicode) - (.Audacity Team.) [HKLM] -- Audacity 1.3 Beta (Unicode)_is1

O42 - Logiciel: Audio Record Wizard v3.8 - (.NowSmart Studio.) [HKLM] -- Audio Record Wizard_is1

O42 - Logiciel: AutoCAD 2008 - Français - (.Autodesk.) [HKLM] -- AutoCAD 2008 - Français

O42 - Logiciel: Autodesk Design Review 2010 - (.Autodesk, Inc..) [HKLM] -- Autodesk Design Review 2010

O42 - Logiciel: Autodesk Inventor 2010 - (.Autodesk, Inc..) [HKLM] -- {7F4DD591-1400-0409-0000-7107D70F3DB4}

O42 - Logiciel: Autodesk Inventor 2010 English (English) - (.Autodesk, Inc..) [HKLM] -- Autodesk Inventor 2010

O42 - Logiciel: Autodesk Inventor 2010 English Language Pack - (.Autodesk, Inc..) [HKLM] -- {52969324-463B-4643-BF36-854BE2BECB89}

O42 - Logiciel: Autodesk Inventor Content Center Libraries 2010 (Desktop Content) - (.Autodesk, Inc..) [HKLM] -- {1FB138CC-5503-4B4A-BC42-81E9C1FF26EE}

O42 - Logiciel: Avanquest update - (.Avanquest Software.) [HKLM] -- {76E41F43-59D2-4F30-BA42-9A762EE1E8DE}

O42 - Logiciel: BLAZBLUE -CALAMITY TRIGGER- - (.ARC SYSTEM WORKS.) [HKLM] -- GFWL_{415807D5-45E8-4635-A5A9-C81000008400}

O42 - Logiciel: BLAZBLUE -CALAMITY TRIGGER- - (.ARC SYSTEM WORKS.) [HKLM] -- {415807D5-45E8-4635-A5A9-C81000008400}

O42 - Logiciel: BS.Player FREE - (.Webteh, d.o.o..) [HKLM] -- BSPlayerf

O42 - Logiciel: BurnAware Free 2.2.1 - (.Burnaware Technologies.) [HKLM] -- BurnAware Free_is1

O42 - Logiciel: CANAL+ pour Windows Media Center - (.Microsoft Corporation.) [HKLM] -- {E2A6B1A0-C1E3-4311-BF86-EAF18841FD67}

O42 - Logiciel: CANON iMAGE GATEWAY Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CANON iMAGE GATEWAY Task

O42 - Logiciel: CB-StratBoard - (.TacticsBoard.com.) [HKLM] -- {17027A59-C876-497C-80CC-3D1AAF6330B3}

O42 - Logiciel: CCleaner (remove only) - (.Pas de propriétaire.) [HKLM] -- CCleaner

O42 - Logiciel: CPU Stress MT 1.0.4 - (.Foudge.) [HKLM] -- CPU Stress MT_is1

O42 - Logiciel: CPUID CPU-Z 1.55 - (.Pas de propriétaire.) [HKLM] -- CPUID CPU-Z_is1

O42 - Logiciel: Call of Duty® 4 - Modern Warfare - (.Activision.) [HKLM] -- InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}

O42 - Logiciel: Call of Duty® 4 - Modern Warfare 1.4 Patch - (.Pas de propriétaire.) [HKLM] -- InstallShield_{3BD633E0-4BF8-4499-9149-88F0767D449C}

O42 - Logiciel: Call of Duty® 4 - Modern Warfare 1.5 Multiplayer Patch - (.Pas de propriétaire.) [HKLM] -- InstallShield_{8503C901-85D7-4262-88D2-8D8B2A7B08B8}

O42 - Logiciel: Call of Duty® 4 - Modern Warfare 1.6 Patch - (.Pas de propriétaire.) [HKLM] -- InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}

O42 - Logiciel: Call of Duty® 4 - Modern Warfare 1.7 Patch - (.Pas de propriétaire.) [HKLM] -- InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}

O42 - Logiciel: Canon Internet Library for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- Canon Internet Library for ZoomBrowser EX

O42 - Logiciel: Canon MOV Decoder - (.Canon Inc..) [HKLM] -- Canon MOV Decoder

O42 - Logiciel: Canon MOV Encoder - (.Canon Inc..) [HKLM] -- Canon MOV Encoder

O42 - Logiciel: Canon MovieEdit Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- MovieEditTask

O42 - Logiciel: Canon Utilities CameraWindow - (.Canon Inc..) [HKLM] -- CameraWindowLauncher

O42 - Logiciel: Canon Utilities CameraWindow DC - (.Canon Inc..) [HKLM] -- CameraWindowDC

O42 - Logiciel: Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CameraWindowDVC6

O42 - Logiciel: Canon Utilities MyCamera - (.Canon Inc..) [HKLM] -- MyCamera

O42 - Logiciel: Canon Utilities MyCamera DC - (.Canon Inc..) [HKLM] -- MyCameraDC

O42 - Logiciel: Canon Utilities PhotoStitch - (.Canon Inc..) [HKLM] -- PhotoStitch

O42 - Logiciel: Canon Utilities RemoteCapture Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- RemoteCaptureTask

O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Canon Inc..) [HKLM] -- ZoomBrowser EX

O42 - Logiciel: Canon ZoomBrowser EX Memory Card Utility - (.Canon Inc..) [HKLM] -- ZoomBrowser EX Memory Card Utility

O42 - Logiciel: Collab - (.Image-Line bvba.) [HKLM] -- Collab

O42 - Logiciel: Configuration DivX - (.DivX, Inc. .) [HKLM] -- DivX Setup.divx.com

O42 - Logiciel: Counter-Strike: Source - (.Valve.) [HKLM] -- Steam App 240

O42 - Logiciel: Crazy Fun Game BNC - (.Pas de propriétaire.) [HKCU] -- Crazy Fun Game BNC

O42 - Logiciel: DFU Tools - (.Pas de propriétaire.) [HKLM] -- {FBBE31CA-0367-4112-B58C-4C06B31F0C78}

O42 - Logiciel: DFX for Winamp - (.Power Technology.) [HKLM] -- DFX for Winamp

O42 - Logiciel: DLFreeTools 1.0 - (.Pas de propriétaire.) [HKLM] -- DLFreeTools

O42 - Logiciel: DMW Pro Client - (.DMW International Ltd..) [HKLM] -- DMW Pro Client

O42 - Logiciel: DMW Scanner 3 - (.DMW International Ltd.) [HKLM] -- DMW Scanner 3

O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM] -- DVD Shrink_is1

O42 - Logiciel: DWG TrueView 2010 - (.Autodesk.) [HKLM] -- DWG TrueView 2010

O42 - Logiciel: Dead Rising 2 - (.Capcom.) [HKLM] -- GFWL_{4343080E-91B7-4388-AB4D-FB1000008200}

O42 - Logiciel: Dead Rising 2 - (.Capcom.) [HKLM] -- {4343080E-91B7-4388-AB4D-FB1000008200}

O42 - Logiciel: Debugging Tools for Windows (x86) - (.Microsoft Corporation.) [HKLM] -- {1CD0C3C5-809D-4CFC-904A-1B67C6243637}

O42 - Logiciel: Directory Classifier v2.3 - (.Adolix.) [HKLM] -- Directory Classifier v2.3_is1

O42 - Logiciel: DivX Content Uploader - (.DivX, Inc..) [HKLM] -- {D050D7362D214723AD585B541FFB6C11}

O42 - Logiciel: Driver Sweeper 1.5.5 - (.Phyxion.net - Guru3D.com.) [HKLM] -- {0965D484-1777-4BA5-8C3A-095A6B0D2696}_is1

O42 - Logiciel: EA SPORTS FIFA Online - (.Electronic Arts.) [HKLM] -- {6FE3B0CE-37C1-4825-908A-5A84C9B4EC2F}

O42 - Logiciel: EVEREST Home Edition v2.20 - (.Lavalys Inc.) [HKLM] -- EVEREST Home Edition_is1

O42 - Logiciel: EVEREST Ultimate Edition v5.02 - (.Lavalys, Inc..) [HKLM] -- EVEREST Ultimate Edition_is1

O42 - Logiciel: Emjysoft Programme TV 1.0 - (.Emjysoft.) [HKLM] -- Emjysoft Programme TV_is1

O42 - Logiciel: F1 2010 - (.Codemasters.) [HKLM] -- GFWL_{434D0831-3E0C-4D03-A5D4-5E1000008400}

O42 - Logiciel: F1 2010 - (.Codemasters.) [HKLM] -- {434D0831-3E0C-4D03-A5D4-5E1000008400}

O42 - Logiciel: FIFA 11 Demo - (.Electronic Arts.) [HKLM] -- {DC158DF7-6B36-4C6F-BC91-109014297994}

O42 - Logiciel: FL Studio 8 - (.Image-Line bvba.) [HKLM] -- FL Studio 8

O42 - Logiciel: FTP Expert 3 - (.Pas de propriétaire.) [HKLM] -- FTP Expert 3

O42 - Logiciel: Fichiers de prise en charge de l'installation de Microsoft SQL Server (Français) - (.Microsoft Corporation.) [HKLM] -- {3380F354-C5F7-4E71-8F51-EEE6C3F06C62}

O42 - Logiciel: File Recover 7.5 - (.PC Tools.) [HKLM] -- File Recover_is1

O42 - Logiciel: FileZilla Client 3.0.10 - (.Pas de propriétaire.) [HKLM] -- FileZilla Client

O42 - Logiciel: Fraps (remove only) - (.Pas de propriétaire.) [HKLM] -- Fraps

O42 - Logiciel: Free Easy Burner V 4.1 - (.Koyote soft.) [HKLM] -- Free Easy Burner_is1

O42 - Logiciel: Free Mp3 Wma Converter V 1.8.0 - (.Pas de propriétaire.) [HKLM] -- Free Mp3 Wma Converter_is1

O42 - Logiciel: Freez FLV to AVI/MPEG/WMV Converter - (.www.smallvideosoft.com.) [HKLM] -- Freez FLV to AVI/MPEG/WMV Converter 1.5_is1

O42 - Logiciel: Frets On Fire - (.Pas de propriétaire.) [HKLM] -- Frets on Fire

O42 - Logiciel: Futuremark SystemInfo - (.Futuremark Corporation.) [HKLM] -- {BEE64C14-BEF1-4610-8A68-A16EAA47B882}

O42 - Logiciel: GDR 4053 for SQL Server Database Services 2005 ENU (KB970892) - (.Microsoft Corporation.) [HKLM] -- KB970892_SQL9

O42 - Logiciel: GTactix - (.default.) [HKLM] -- {046ED2B7-14D5-4F2C-A275-09D54CEFE757}

O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {B131E59D-202C-43C6-84C9-68F0C37541F1}

O42 - Logiciel: Gestionnaire de contacts professionnels pour Outlook 2007 SP2 - (.Microsoft Corporation.) [HKLM] -- Business Contact Manager

O42 - Logiciel: Gestionnaire de contacts professionnels pour Outlook 2007 SP2 - (.Microsoft Corporation.) [HKLM] -- {69ca8988-1c6c-4285-b8af-db780a6e42af}

O42 - Logiciel: Glary Undelete 1.6.0.262 - (.GlarySoft.com.) [HKLM] -- Glary Undelete_is1

O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM] -- HPExtendedCapabilities

O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM] -- HP Imaging Device Functions

O42 - Logiciel: HP Photosmart C4400 All-In-One Driver Software 13.0 Rel. 3 - (.HP.) [HKLM] -- {8181C5B7-2FF5-4677-BA6A-8E2C3F5A7601}

O42 - Logiciel: HP Photosmart Essential - (.HP.) [HKLM] -- {EB21A812-671B-4D08-B974-2A347F0D8F70}

O42 - Logiciel: HP Photosmart Essential 3.5 - (.HP.) [HKLM] -- HP Photosmart Essential

O42 - Logiciel: HP Photosmart.All-In-One Driver Software 8.0 .A - (.HP.) [HKLM] -- {282E5AB2-8E47-4571-B6FA-6B512555B557}

O42 - Logiciel: HP Smart Web Printing 4.51 - (.HP.) [HKLM] -- HP Smart Web Printing

O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools

O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {7059BDA7-E1DB-442C-B7A1-6144596720A4}

O42 - Logiciel: Hamachi 1.0.2.5 - (.Pas de propriétaire.) [HKLM] -- Hamachi

O42 - Logiciel: I-Doser v4 - (.Pas de propriétaire.) [HKCU] -- I-Doser v4

O42 - Logiciel: IL Download Manager - (.Image-Line bvba.) [HKLM] -- IL Download Manager

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {46ABBC54-1872-4AA3-95E2-F2C063A63F31}

O42 - Logiciel: Internet Download Manager - (.Pas de propriétaire.) [HKLM] -- Internet Download Manager

O42 - Logiciel: Java 6 Update 17 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216016FF}

O42 - Logiciel: Java 6 Update 6 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160060}

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5}

O42 - Logiciel: K-Lite Mega Codec Pack 1.52 Beta - (.Pas de propriétaire.) [HKLM] -- KLiteCodecPack_is1

O42 - Logiciel: League of Legends - (.Pas de propriétaire.) [HKLM] -- League of Legends_is1

O42 - Logiciel: Logiciel QuickCam de Logitech - (.Logitech, Inc..) [HKLM] -- {C43048A9-742C-4DAD-90D2-E3B53C9DB825}

O42 - Logiciel: MIKSOFT Mobile 3GP converter - (.MIKSOFT.) [HKLM] -- MIKSOFT Mobile 3GP converter_is1

O42 - Logiciel: MMTVConfig (désinstallation seulement) - (.Pas de propriétaire.) [HKLM] -- MMTVConfig

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}

O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF}

O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- {C523D256-313D-4866-B36A-F3DE528246EF}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}

O42 - Logiciel: MagicTune Premium - (.Samsung Electronics Co. Ltd..) [HKLM] -- {D6044256-A309-43B5-9833-D3FAFE2AD24D}

O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1

O42 - Logiciel: Max Payne 2 - (.Pas de propriétaire.) [HKLM] -- {EFE1AB94-5466-4B6E-BE31-FF4C115FD25D}

O42 - Logiciel: MaxTV - (.MaxTV Technologies.) [HKLM] -- MaxTV

O42 - Logiciel: Medal of Honor débarquement allié - (.Pas de propriétaire.) [HKLM] -- {0DEA94ED-915A-4834-A87E-388D012C8E02}

O42 - Logiciel: Mega Manager - (.Megaupload Limited.) [HKLM] -- {3B6E3FC6-274C-4B6C-BC85-5C3B15DE18E2}

O42 - Logiciel: Messenger Plus! Live - (.Patchou.) [HKLM] -- Messenger Plus! Live

O42 - Logiciel: MessengerDiscovery 2.5.95 - (.Matt Holwood.) [HKLM] -- MessengerDiscovery_is1

O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}

O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)

O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB953297) - (.Pas de propriétaire.) [HKLM] -- M953297

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}

O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}

O42 - Logiciel: Microsoft Games for Windows - LIVE - (.Microsoft Corporation.) [HKLM] -- {F97E3841-CA9D-4964-9D64-26066241D26F}

O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM] -- {8FB1B528-E260-451E-9B55-E9152F94B80B}

O42 - Logiciel: Microsoft Office 2003 Web Components - (.Microsoft Corporation.) [HKLM] -- {90A4040C-6000-11D3-8CFE-0150048383C9}

O42 - Logiciel: Microsoft Office 2007 Primary Interop Assemblies - (.Microsoft Corporation.) [HKLM] -- {50120000-1105-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROHYBRIDR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- HOMESTUDENTR

O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Live Add-in 1.5 - (.Microsoft Corporation.) [HKLM] -- {F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}

O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Professional Hybrid 2007 - (.Microsoft Corporation.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_PROHYBRIDR_{14809F99-C601-4D4A-9391-F1E8FAA964C5}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_PROHYBRIDR_{A0516415-ED61-419A-981D-93596DA74165}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROHYBRIDR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROHYBRIDR_{F580DDD5-8D37-4998-968E-EBB76BB86787}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROHYBRIDR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROHYBRIDR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}

O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Small Business Connectivity Components - (.Microsoft Corporation.) [HKLM] -- {A939D341-5A04-4E0A-BB55-3E65B386432D}

O42 - Logiciel: Microsoft Office Visio 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{0FD405D3-CAF8-4CA6-8BFD-911D2F8A6585}

O42 - Logiciel: Microsoft Office Visio 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0054-040C-0000-0000000FF1CE}_VISPRO_{7EC87B94-B9A7-4C72-9C55-21C1C9DEE3C5}

O42 - Logiciel: Microsoft Office Visio MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0054-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Visio Professional 2007 - (.Microsoft Corporation.) [HKLM] -- VISPRO

O42 - Logiciel: Microsoft Office Visio Professional 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft SQL Server 2005 - (.Microsoft Corporation.) [HKLM] -- Microsoft SQL Server 2005

O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

O42 - Logiciel: Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) - (.Microsoft Corporation.) [HKLM] -- {480DBB60-F0B6-45F2-B26F-1A2E11197791}

O42 - Logiciel: Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR) - (.Microsoft Corporation.) [HKLM] -- {E09B48B5-E141-427A-AB0C-D3605127224A}

O42 - Logiciel: Microsoft SQL Server Native Client - (.Microsoft Corporation.) [HKLM] -- {1F24E48F-7692-4E89-8784-68DD4D2712A0}

O42 - Logiciel: Microsoft SQL Server VSS Writer - (.Microsoft Corporation.) [HKLM] -- {A30179B7-997A-4D47-AA43-57AE59A9C78B}

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {A49F249F-0C91-497F-86DF-B2585E8E76B7}

O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 - (.Microsoft Corporation.) [HKLM] -- {820B6609-4C97-3A2B-B644-573B06A0F0CC}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..) [HKLM] -- {E3E71D07-CD27-46CB-8448-16D4FB29AA13}

O42 - Logiciel: Microsoft Xbox 360 Accessories 1.1 - (.Microsoft.) [HKLM] -- {9F5DF7FC-3AF2-4502-9084-F62FC00A5A3F}

O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra

O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack

O42 - Logiciel: Monkey Island 2 LeChucks Revenge Special Edition - (.Pas de propriétaire.) [HKLM] -- Monkey Island 2 LeChucks Revenge Special Edition_is1

O42 - Logiciel: Mozilla Firefox (3.0.19) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.0.19)

O42 - Logiciel: Mumble and Murmur - (.Mumble.) [HKLM] -- Mumble

O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Display Control Panel

O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers

O42 - Logiciel: NVIDIA Performance - (.NVIDIA Corporation.) [HKLM] -- InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}

O42 - Logiciel: NVIDIA Performance - (.NVIDIA Corporation.) [HKLM] -- {7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}

O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}

O42 - Logiciel: NVIDIA PureVideo Decoder - (.Pas de propriétaire.) [HKLM] -- {055FEF8E-4B86-400F-A5C6-8FAC0042DCD9}

O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM] -- NVIDIAStereo

O42 - Logiciel: NVIDIA System Monitor - (.NVIDIA Corporation.) [HKLM] -- InstallShield_{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}

O42 - Logiciel: NVIDIA System Monitor - (.NVIDIA Corporation.) [HKLM] -- {E9CFBE78-ED91-4FCF-9E6F-210E477E527D}

O42 - Logiciel: NVIDIA System Update - (.NVIDIA Corporation.) [HKLM] -- InstallShield_{6F69C969-2942-4E7B-B594-75B37664B8BA}

O42 - Logiciel: NVIDIA System Update - (.NVIDIA Corporation.) [HKLM] -- {6F69C969-2942-4E7B-B594-75B37664B8BA}

O42 - Logiciel: Natural Color Pro - (.Pas de propriétaire.) [HKLM] -- {FC2C7405-BC58-4E11-8F51-29671BEAC06B}

O42 - Logiciel: OCCT Perestroika 3.0.1 - (.Tetedeiench.) [HKLM] -- OCCT_is1

O42 - Logiciel: OCR Software by I.R.I.S. 13.0 - (.HP.) [HKLM] -- HPOCR

O42 - Logiciel: OLYMPUS Master 2 - (.OLYMPUS IMAGING CORP..) [HKLM] -- {3A1AB8E6-748E-4B95-AA2D-FE9952EB3106}

O42 - Logiciel: OneStopSoft Youtube Video File Downloader 1.0.0.7 - (.OneStopSoft.com.) [HKLM] -- OneStopSoft Youtube Video File Downloader Trial Version_is1

O42 - Logiciel: OpenAL - (.Pas de propriétaire.) [HKLM] -- OpenAL

O42 - Logiciel: OpenMG Limited Patch 4.7-07-14-05-01 - (.Pas de propriétaire.) [HKLM] -- OpenMG HotFix4.7-07-13-22-01

O42 - Logiciel: OpenMG Secure Module 4.7.00 - (.Sony Corporation.) [HKLM] -- InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}

O42 - Logiciel: OpenOffice.org 3.1 - (.OpenOffice.org.) [HKLM] -- {0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}

O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}

O42 - Logiciel: PC Inspector File Recovery - (.Pas de propriétaire.) [HKLM] -- {0DD140D3-9563-481E-AA75-BA457CBDAEF2}

O42 - Logiciel: PDF Editeur 2 - (.Pas de propriétaire.) [HKLM] -- PDF Editeur 2

O42 - Logiciel: PKR - (.PKR Ltd.) [HKLM] -- PKR

O42 - Logiciel: Philips FunCam - (.Pas de propriétaire.) [HKLM] -- {8ED84666-3A2A-4E28-AB26-B6B65260CB86}

O42 - Logiciel: PowerStrip 3 (remove only) - (.Pas de propriétaire.) [HKLM] -- PowerStrip 3 (remove only)

O42 - Logiciel: ProtectDisc Driver, Version 11 - (.ProtectDisc Software GmbH.) [HKLM] -- ProtectDisc Driver 11

O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM] -- PunkBusterSvc

O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {8DC42D05-680B-41B0-8878-6C14D24602DB}

O42 - Logiciel: RapidShare Manager - (.RapidShare AG.) [HKCU] -- 5f48e2ab41c5d005

O42 - Logiciel: Rapture3D 2.4.4 Game - (.Blue Ripple Sound.) [HKLM] -- {D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1

O42 - Logiciel: Razer DeathAdder Mouse - (.Razer Inc..) [HKLM] -- {EB1B8449-CD8F-485B-ADB6-02FBCFE180D3}

O42 - Logiciel: Realtek 8169 8168 8101E 8102E Ethernet Driver - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}

O42 - Logiciel: Revo Uninstaller 1.83 - (.VS Revo Group.) [HKLM] -- Revo Uninstaller

O42 - Logiciel: SMPlayer 0.6.0final - (.RVM.) [HKLM] -- SMPlayer_is1

O42 - Logiciel: SPEED-LINK DUAL SHOCK ADAPTER - (.GASIA.) [HKLM] -- {FEC7CD2E-2BB5-40C3-9592-078F64677E6C}

O42 - Logiciel: STREET FIGHTER IV - (.CAPCOM U.S.A., INC..) [HKLM] -- {59ABBDF0-E1E5-48AF-85FB-F523A08C3490}

O42 - Logiciel: Search Settings v1.2.3 - (.Spigot, Inc..) [HKLM] -- {5F05C28D-DEA9-4AD6-A73A-064175988EAB}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2277947) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5857EE21-03D0-482E-9620-5A30B314A2AE}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2277947) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{5857EE21-03D0-482E-9620-5A30B314A2AE}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{5C497F0B-2061-4CC9-A61C-6B45B867354D}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5C497F0B-2061-4CC9-A61C-6B45B867354D}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{5C497F0B-2061-4CC9-A61C-6B45B867354D}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{7F207DCA-3399-40CB-A968-6E5991B1421A}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7F207DCA-3399-40CB-A968-6E5991B1421A}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{7F207DCA-3399-40CB-A968-6E5991B1421A}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982312) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{B0EC5722-241F-4CDA-83B4-AA5846B6F9F4}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982312) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{B0EC5722-241F-4CDA-83B4-AA5846B6F9F4}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982312) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{B0EC5722-241F-4CDA-83B4-AA5846B6F9F4}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982331) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E8766951-2B6C-4022-86E8-80D2D1762B76}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982331) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{E8766951-2B6C-4022-86E8-80D2D1762B76}

O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906

O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5}

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{5A4E43D5-858F-49BD-BA72-8F30E1793060}

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB982308) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C3F9A0DC-A5D1-4BB6-870E-2953E5A2487B}

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB982308) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C3F9A0DC-A5D1-4BB6-870E-2953E5A2487B}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}

O42 - Logiciel: Security Update for Microsoft Office Outlook 2007 (KB2288953) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{8B772E1C-7C05-42D2-839D-3EC2D39EFF22}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46}

O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB982124) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{289FA8BC-6A8E-4341-B194-EB26B49E9F5D}

O42 - Logiciel: Security Update for Microsoft Office Visio 2007 (KB982127) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{AA3200A8-BD90-4763-B7D0-27DFBFB8DD71}

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2251419) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7E9103DA-253F-41FF-9E83-7C83806C77DA}

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2251419) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{7E9103DA-253F-41FF-9E83-7C83806C77DA}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{3D019598-7B59-447A-80AE-815B703B84FF}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{3D019598-7B59-447A-80AE-815B703B84FF}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}

O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM] -- Shop for HP Supplies

O42 - Logiciel: Skype™ 3.8 - (.Skype Technologies S.A..) [HKLM] -- {5C82DAE5-6EB0-4374-9254-BE3319BA4E82}

O42 - Logiciel: SolidWorks 2004 SP03.1 - (.SolidWorks.) [HKLM] -- {2AB93590-0677-4AEF-A7FA-70BB48E10F7F}

O42 - Logiciel: SolidWorks Explorer 2007 sp0 - (.SolidWorks Corporation.) [HKLM] -- {559FAB96-A0CD-4105-A02F-1C21DEBCEF89}

O42 - Logiciel: SolidWorks Installation Manager - (.SolidWorks.) [HKLM] -- {26621E14-A45B-45CD-9ED9-7A0A9B585DB4}

O42 - Logiciel: SonicStage 4.3 - (.Sony Corporation.) [HKLM] -- {A0EB195B-5876-48E6-879D-33D4B2102610}

O42 - Logiciel: Sony Ericsson PC Suite 6.011.00 - (.Sony Ericsson.) [HKLM] -- {2FFE93F0-BB72-4E52-8761-354D1AAA9387}

O42 - Logiciel: Sony Media Manager 2.0 - (.Sony.) [HKLM] -- {C34E19B2-F4D4-4C1F-A565-BA92627178D8}

O42 - Logiciel: Sony Media Manager 2.2 - (.Sony.) [HKLM] -- {2B5A75F0-FD85-4094-AB00-94902398D192}

O42 - Logiciel: Sony Vegas 6.0c - (.Sony.) [HKLM] -- {DC53BB56-FBB5-47BE-B342-E43CC83C0ECF}

O42 - Logiciel: Sophos Anti-Rootkit 1.5.0 - (.Sophos Plc.) [HKLM] -- Sophos-AntiRootkit

O42 - Logiciel: SoulSeek 157 NS 13 - (.Pas de propriétaire.) [HKLM] -- Soulseek2

O42 - Logiciel: Spelling Dictionaries Support For Adobe Reader 9 - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-5464-3428-900000000004}

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1

O42 - Logiciel: StarCraft II - (.Blizzard Entertainment.) [HKLM] -- StarCraft II

O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}

O42 - Logiciel: Stop-PC - (.Vbteam.) [HKLM] -- {72EFD9F9-ACA7-412B-9E66-187D1D54C8F8}

O42 - Logiciel: Sumatra PDF reader - (.Pas de propriétaire.) [HKLM] -- SumatraPDF

O42 - Logiciel: System Requirements Lab - (.Husdawg, LLC.) [HKLM] -- {9E1BAB75-EB78-440D-94C0-A3857BE2E733}

O42 - Logiciel: System Requirements Lab - (.Pas de propriétaire.) [HKLM] -- SystemRequirementsLab

O42 - Logiciel: TeamSpeak 2 RC2 - (.Dominating Bytes Design.) [HKLM] -- Teamspeak 2 RC2_is1

O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM] -- TeamSpeak 3 Client

O42 - Logiciel: Thermal Analysis Tool - (.Intel Corporation.) [HKLM] -- {6B2C675E-8040-431B-99C4-137DF4FBF75A}

O42 - Logiciel: TomTom HOME 2.7.3.1894 - (.TomTom.) [HKLM] -- TomTom HOME

O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}

O42 - Logiciel: TuneUp Utilities 2008 - (.TuneUp Software.) [HKLM] -- {5888428E-699C-4E71-BF71-94EE06B497DA}

O42 - Logiciel: UndeletePlus™ 3.0.0.602 - (.Copyright © 2009 Phoenix Technologies • All Rights Reserved.) [HKLM] -- UndeletePlus™_is1

O42 - Logiciel: Universal Anticheat 2 v2.44 - (.DExUS & Snipes.) [HKLM] -- {99BEB67F-B288-44F5-8B2A-23F5F522A1AE}_is1

O42 - Logiciel: Unlocker 1.9.0 - (.Cedrick Collomb.) [HKLM] -- Unlocker

O42 - Logiciel: Update Service - (.Sony Ericsson Mobile Communications AB.) [HKLM] -- Update Service

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{329050A9-EF80-40F9-B633-74508F54C1FF}

O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (kb2291599) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{768A5B4B-2FDF-4F3D-981E-33C53724BBC8}

O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM] -- {5EE7D259-D137-4438-9A5F-42F432EC0421}

O42 - Logiciel: VLC media player 0.9.8a - (.VideoLAN Team.) [HKLM] -- VLC media player

O42 - Logiciel: Ventrilo - (.Flagship Industries, Inc..) [HKLM] -- {789289CA-F73A-4A16-A331-54D498CE069F}

O42 - Logiciel: Video Converter - (.MZ.) [HKLM] -- Video Converter1.0

O42 - Logiciel: Virtual DJ - Atomix Productions - (.Pas de propriétaire.) [HKLM] -- Virtual DJ - Atomix Productions

O42 - Logiciel: WhoCrashed 2.10 - (.Resplendence Software Projects Sp..) [HKLM] -- WhoCrashed_is1

O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM] -- Winamp

O42 - Logiciel: Windows 7 Codec Pack 2.3.0 - (.Windows 7 Codec Pack.) [HKLM] -- Windows 7 - Codec Pack

O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3B4E636E-9D65-4D67-BA61-189800823F52}

O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA}

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818}

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {770F1BEC-2871-4E70-B837-FB8525FFA3B1}

O42 - Logiciel: Windows Live OneCare safety scanner - (.Microsoft Corporation.) [HKLM] -- Windows Live OneCare safety scanner

O42 - Logiciel: Windows Live OneCare safety scanner - (.Microsoft Corporation.) [HKLM] -- {FE0646A7-19D0-41B4-A2BB-2C35D644270D}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA}

O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}

O42 - Logiciel: Wolfenstein 1.1 Patch - (.Pas de propriétaire.) [HKLM] -- InstallShield_{E03B44A3-9237-4B55-B7A5-DB1DD46920D3}

O42 - Logiciel: Xfire (remove only) - (.Pas de propriétaire.) [HKLM] -- Xfire

O42 - Logiciel: Xilisoft HD Video Converter - (.Xilisoft.) [HKLM] -- Xilisoft HD Video Converter

O42 - Logiciel: XnView 1.92 - (.Gougelet Pierre-e.) [HKLM] -- XnView_is1

O42 - Logiciel: Youtube Music Downloader V2.7 - (.Youtube Music Downloader.) [HKLM] -- Youtube Music Downloader_is1

O42 - Logiciel: avast! Pro Antivirus - (.Alwil Software.) [HKLM] -- avast5

O42 - Logiciel: eDrawings 2004 SP03 - (.SolidWorks.) [HKLM] -- {83F7144B-CE67-483B-BB16-AE66902439E4}

O42 - Logiciel: eDrawings 2007 - (.SolidWorks.) [HKLM] -- {75FEB085-179F-4C85-B0E4-B517D2160750}

O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {EA418519-2160-43A0-AABD-6608DDD8D87F}

O42 - Logiciel: mIRC - (.mIRC Co. Ltd..) [HKLM] -- mIRC

 

---\\ HKCU & HKLM Software Keys

[HKCU\Software\2015]

[HKCU\Software\2K Sports]

[HKCU\Software\AC3Filter]

[HKCU\Software\ALWIL Software]

[HKCU\Software\ARAR]

[HKCU\Software\ASIO4ALL v2 by Wuschel]

[HKCU\Software\ASUS]

[HKCU\Software\AVS4YOU]

[HKCU\Software\AVerMedia TECHNOLOGIES, Inc.]

[HKCU\Software\AVerMedia TV Applications]

[HKCU\Software\Adobe]

[HKCU\Software\Adolix]

[HKCU\Software\Alcohol Soft]

[HKCU\Software\AppDataLow\AskBarDis]

[HKCU\Software\AppDataLow\Software\AVG]

[HKCU\Software\AppDataLow\Software\AskToolbar]

[HKCU\Software\AppDataLow\Software\Autodesk]

[HKCU\Software\AppDataLow\Software\Microsoft]

[HKCU\Software\AppDataLow\Software\Yahoo]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\Apple Computer, Inc.]

[HKCU\Software\Ask.com]

[HKCU\Software\Audacity]

[HKCU\Software\Autodesk]

[HKCU\Software\BST]

[HKCU\Software\Blizzard Entertainment]

[HKCU\Software\BlueRippleSound]

[HKCU\Software\Bugsplat]

[HKCU\Software\CD Projekt RED]

[HKCU\Software\CDDB]

[HKCU\Software\Canon]

[HKCU\Software\Canon_Inc_IC]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\Codemasters]

[HKCU\Software\CoreVorbis]

[HKCU\Software\CyboPat]

[HKCU\Software\DFX]

[HKCU\Software\DT Soft]

[HKCU\Software\DVD Shrink]

[HKCU\Software\Dec 16 Productions]

[HKCU\Software\DirectShow]

[HKCU\Software\DivXNetworks]

[HKCU\Software\DivX]

[HKCU\Software\DownloadManager]

[HKCU\Software\EA Games]

[HKCU\Software\EA Sports]

[HKCU\Software\ESET]

[HKCU\Software\EasySystems]

[HKCU\Software\Electronic Arts]

[HKCU\Software\EnTech]

[HKCU\Software\Freeware]

[HKCU\Software\Futuremark]

[HKCU\Software\GNU]

[HKCU\Software\GSC Game World]

[HKCU\Software\GSpot Appliance Corp]

[HKCU\Software\Gabest]

[HKCU\Software\GameSpy]

[HKCU\Software\GlarySoft]

[HKCU\Software\HP]

[HKCU\Software\Haali]

[HKCU\Software\Hewlett-Packard]

[HKCU\Software\HookNetwork]

[HKCU\Software\IGA]

[HKCU\Software\IM Providers]

[HKCU\Software\INCAInternet]

[HKCU\Software\IRAI]

[HKCU\Software\ImTOO]

[HKCU\Software\Image-Line]

[HKCU\Software\Intel]

[HKCU\Software\JEDI-VCL]

[HKCU\Software\JavaSoft]

[HKCU\Software\Lake]

[HKCU\Software\Lavalys]

[HKCU\Software\Local AppWizard-Generated Applications]

[HKCU\Software\Logitech]

[HKCU\Software\MPR]

[HKCU\Software\Macromedia]

[HKCU\Software\Magic Tune]

[HKCU\Software\MainConcept]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\ManyCam 2.4]

[HKCU\Software\Matt Holwood]

[HKCU\Software\Megaupload]

[HKCU\Software\Mozilla]

[HKCU\Software\Mumble]

[HKCU\Software\NVIDIA Corporation]

[HKCU\Software\Nadeo]

[HKCU\Software\Natural Color Pro]

[HKCU\Software\Netscape]

[HKCU\Software\NowSmart Studio]

[HKCU\Software\ODBC]

[HKCU\Software\OLYMPUS]

[HKCU\Software\OneStopSoft VideoDownloader]

[HKCU\Software\OpenOffice.org]

[HKCU\Software\PCTools]

[HKCU\Software\Patchou]

[HKCU\Software\PeopleCanFly]

[HKCU\Software\Phoenix Technologies]

[HKCU\Software\Policies]

[HKCU\Software\Protect Software GmbH]

[HKCU\Software\RapidSolution]

[HKCU\Software\Razer]

[HKCU\Software\RealNetworks]

[HKCU\Software\RedRexx]

[HKCU\Software\Remedy Entertainment]

[HKCU\Software\Resplendence Sp]

[HKCU\Software\SDTP]

[HKCU\Software\Safer Networking Limited]

[HKCU\Software\SecuROM]

[HKCU\Software\Skidrow]

[HKCU\Software\Skype]

[HKCU\Software\SoftVoice]

[HKCU\Software\SolidWorks]

[HKCU\Software\Sony Corporation]

[HKCU\Software\Sony Ericsson]

[HKCU\Software\Sony Media Software]

[HKCU\Software\SoulSeek]

[HKCU\Software\Soulseek2]

[HKCU\Software\Sysinternals]

[HKCU\Software\System Requirements Lab]

[HKCU\Software\THQ]

[HKCU\Software\TNWA Limited]

[HKCU\Software\TomTom]

[HKCU\Software\Trolltech]

[HKCU\Software\TuneUp]

[HKCU\Software\UDP Soft]

[HKCU\Software\Unlimited Possibilities]

[HKCU\Software\Unwinder]

[HKCU\Software\VB and VBA Program Settings]

[HKCU\Software\VSRevoGroup]

[HKCU\Software\Valve]

[HKCU\Software\Ventrilo]

[HKCU\Software\VirtualDJ]

[HKCU\Software\Vision Thing]

[HKCU\Software\Wget]

[HKCU\Software\WinRAR SFX]

[HKCU\Software\WinRAR]

[HKCU\Software\Winamp]

[HKCU\Software\Windows 7 - Codec Pack]

[HKCU\Software\Windows Live]

[HKCU\Software\Wizou]

[HKCU\Software\Xfire]

[HKCU\Software\Xilisoft]

[HKCU\Software\Xobni]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\Yahoo]

[HKCU\Software\dmw]

[HKCU\Software\eDrawings]

[HKCU\Software\ej-technologies]

[HKCU\Software\epsxe]

[HKCU\Software\flv2avi]

[HKCU\Software\mIRC]

[HKCU\Software\mozilla.org]

[HKCU\Software\wizgate]

[HKLM\Software\3ivx]

[HKLM\Software\781]

[HKLM\Software\ACE Compression Software]

[HKLM\Software\AGEIA Technologies]

[HKLM\Software\ALWIL Software]

[HKLM\Software\ARC SYSTEM WORKS]

[HKLM\Software\ASIO]

[HKLM\Software\ASProtect]

[HKLM\Software\ASUS]

[HKLM\Software\ATI Technologies]

[HKLM\Software\AVG]

[HKLM\Software\AVS4YOU]

[HKLM\Software\AVerMedia TECHNOLOGIES, Inc.]

[HKLM\Software\Activision]

[HKLM\Software\Adobe]

[HKLM\Software\Adolix]

[HKLM\Software\Ahead]

[HKLM\Software\Alcohol Soft]

[HKLM\Software\America Online]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\Apple Inc.]

[HKLM\Software\Application Updater]

[HKLM\Software\Applied Networking]

[HKLM\Software\Autodesk, Inc.]

[HKLM\Software\Autodesk]

[HKLM\Software\BVRP Software]

[HKLM\Software\Blizzard Entertainment]

[HKLM\Software\BlueRippleSound]

[HKLM\Software\Bluebeam Software]

[HKLM\Software\BrowserChoice]

[HKLM\Software\C07ft5Y]

[HKLM\Software\CAPCOM]

[HKLM\Software\CDDB]

[HKLM\Software\Canon]

[HKLM\Software\Canon_Inc_IC]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Codemasters]

[HKLM\Software\Convar Deutschland GmbH]

[HKLM\Software\DFX]

[HKLM\Software\DICE]

[HKLM\Software\DT Soft]

[HKLM\Software\Debug]

[HKLM\Software\DivXNetworks]

[HKLM\Software\DivX]

[HKLM\Software\EA GAMES]

[HKLM\Software\EA Sports]

[HKLM\Software\ESET]

[HKLM\Software\Electronic Arts]

[HKLM\Software\EnTech]

[HKLM\Software\Even Balance]

[HKLM\Software\Fezcgsgn]

[HKLM\Software\FileZilla 3]

[HKLM\Software\Fraps2]

[HKLM\Software\Futuremark Corporation]

[HKLM\Software\Futuremark]

[HKLM\Software\GASIA]

[HKLM\Software\GNU]

[HKLM\Software\GSC Game World]

[HKLM\Software\Gabest]

[HKLM\Software\Google]

[HKLM\Software\HP]

[HKLM\Software\HaaliMkx]

[HKLM\Software\Hewlett-Packard]

[HKLM\Software\HighCriteria]

[HKLM\Software\ICE]

[HKLM\Software\Image-Line]

[HKLM\Software\InstallShield]

[HKLM\Software\Intel Corporation]

[HKLM\Software\Intel]

[HKLM\Software\InterVideo]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\K!]

[HKLM\Software\KLCodecPack]

[HKLM\Software\Khronos]

[HKLM\Software\Lake]

[HKLM\Software\Licenses]

[HKLM\Software\Logitech]

[HKLM\Software\Macromedia]

[HKLM\Software\Macrovision]

[HKLM\Software\Magic Tune]

[HKLM\Software\Malwarebytes' Anti-Malware]

[HKLM\Software\ManyCam]

[HKLM\Software\Matt Holwood]

[HKLM\Software\Megaupload Limited]

[HKLM\Software\Megaupload]

[HKLM\Software\Meizu]

[HKLM\Software\Metaboli]

[HKLM\Software\MimarSinan]

[HKLM\Software\Monolith Productions]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\NVIDIA Corporation]

[HKLM\Software\Nadeo]

[HKLM\Software\Nero]

[HKLM\Software\Nullsoft]

[HKLM\Software\ODBC]

[HKLM\Software\OLYMPUS]

[HKLM\Software\OldTimer Tools]

[HKLM\Software\On2 Technologies]

[HKLM\Software\OpenOffice.org]

[HKLM\Software\Outsim]

[HKLM\Software\PCTools]

[HKLM\Software\Patchou]

[HKLM\Software\PeopleCanFly]

[HKLM\Software\Persits Software]

[HKLM\Software\Philips]

[HKLM\Software\Policies]

[HKLM\Software\Pragmatic Solutions Inc.]

[HKLM\Software\Preclick]

[HKLM\Software\Propellerhead Software]

[HKLM\Software\RTLSetup]

[HKLM\Software\Radeon2.ru]

[HKLM\Software\RapidSolution]

[HKLM\Software\RealNetworks]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\Remedy Entertainment]

[HKLM\Software\Riot Games]

[HKLM\Software\Rockstar Games]

[HKLM\Software\S3R521]

[HKLM\Software\SEC]

[HKLM\Software\Safer Networking Limited]

[HKLM\Software\Samsung Electronics Co. Ltd.]

[HKLM\Software\Search Settings]

[HKLM\Software\Skype]

[HKLM\Software\SolidWorks Corporation]

[HKLM\Software\SolidWorks]

[HKLM\Software\Sonic]

[HKLM\Software\Sony Corporation]

[HKLM\Software\Sony Ericsson]

[HKLM\Software\Sony Media Software]

[HKLM\Software\Srac]

[HKLM\Software\Sun Microsystems]

[HKLM\Software\Swearware]

[HKLM\Software\Symantec]

[HKLM\Software\Techland]

[HKLM\Software\TerraTec Electronic GmbH]

[HKLM\Software\TheXSoft.com]

[HKLM\Software\TomTom]

[HKLM\Software\TrendMicro]

[HKLM\Software\TuneUp]

[HKLM\Software\Ubi Soft]

[HKLM\Software\Unwinder]

[HKLM\Software\VST]

[HKLM\Software\Valve]

[HKLM\Software\VideoLAN]

[HKLM\Software\VirtualDJ]

[HKLM\Software\Visicom Media]

[HKLM\Software\Volatile]

[HKLM\Software\Webteh]

[HKLM\Software\Wow6432Node]

[HKLM\Software\X-ray Anti-Cheat]

[HKLM\Software\Yahoo]

[HKLM\Software\eDrawings]

[HKLM\Software\ej-technologies]

[HKLM\Software\leagueoflegends]

[HKLM\Software\magnet]

[HKLM\Software\mozilla.org]

 

 

---\\ Contenu des dossiers ProgramFiles/ProgramData (O43)

O43 - CFD:Common File Directory ----D- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites

O43 - CFD:Common File Directory ----D- C:\Program Files\Activision

O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files\Adolix

O43 - CFD:Common File Directory ----D- C:\Program Files\AGEIA Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files\AIDA32 - Personal System Information

O43 - CFD:Common File Directory ----D- C:\Program Files\Alcohol Soft

O43 - CFD:Common File Directory ----D- C:\Program Files\Alwil Software

O43 - CFD:Common File Directory ----D- C:\Program Files\Application Updater

O43 - CFD:Common File Directory ----D- C:\Program Files\ARAR

O43 - CFD:Common File Directory ----D- C:\Program Files\ARC SYSTEM WORKS

O43 - CFD:Common File Directory ----D- C:\Program Files\ARWizard3

O43 - CFD:Common File Directory ----D- C:\Program Files\ASIO4ALL v2

O43 - CFD:Common File Directory ----D- C:\Program Files\ASUS

O43 - CFD:Common File Directory ----D- C:\Program Files\Audacity 1.3 Beta (Unicode)

O43 - CFD:Common File Directory ----D- C:\Program Files\AutoCAD 2008

O43 - CFD:Common File Directory ----D- C:\Program Files\Autodesk

O43 - CFD:Common File Directory ----D- C:\Program Files\Avanquest update

O43 - CFD:Common File Directory ----D- C:\Program Files\AVerMedia

O43 - CFD:Common File Directory ----D- C:\Program Files\AVS4YOU

O43 - CFD:Common File Directory ----D- C:\Program Files\Azureus

O43 - CFD:Common File Directory ----D- C:\Program Files\Bethesda Softworks

O43 - CFD:Common File Directory ----D- C:\Program Files\Bluebeam Software

O43 - CFD:Common File Directory ----D- C:\Program Files\BRS

O43 - CFD:Common File Directory ----D- C:\Program Files\BS.Player ControlBar

O43 - CFD:Common File Directory ----D- C:\Program Files\BurnAware Free

O43 - CFD:Common File Directory ----D- C:\Program Files\Canon

O43 - CFD:Common File Directory ----D- C:\Program Files\CAPCOM

O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner

O43 - CFD:Common File Directory ----D- C:\Program Files\Codemasters

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files

O43 - CFD:Common File Directory ----D- C:\Program Files\CPU Stress MT

O43 - CFD:Common File Directory ----D- C:\Program Files\CPUID

O43 - CFD:Common File Directory ----D- C:\Program Files\Crazy Fun Game BNC

O43 - CFD:Common File Directory ----D- C:\Program Files\DAEMON Tools Lite

O43 - CFD:Common File Directory ----D- C:\Program Files\Debugging Tools for Windows (x86)

O43 - CFD:Common File Directory ----D- C:\Program Files\DExUS

O43 - CFD:Common File Directory ----D- C:\Program Files\DFX

O43 - CFD:Common File Directory ----D- C:\Program Files\Disney Interactive Studios

O43 - CFD:Common File Directory ----D- C:\Program Files\DivX

O43 - CFD:Common File Directory ----D- C:\Program Files\DLFreeTools

O43 - CFD:Common File Directory ----D- C:\Program Files\DMV

O43 - CFD:Common File Directory ----D- C:\Program Files\DMW Pro Client

O43 - CFD:Common File Directory ----D- C:\Program Files\DMW Scanner 3

O43 - CFD:Common File Directory ----D- C:\Program Files\DreamCatcher

O43 - CFD:Common File Directory ----D- C:\Program Files\Driver Sweeper

O43 - CFD:Common File Directory ----D- C:\Program Files\DVD Maker

O43 - CFD:Common File Directory ----D- C:\Program Files\DVD Shrink

O43 - CFD:Common File Directory ----D- C:\Program Files\DWG TrueView 2010

O43 - CFD:Common File Directory ----D- C:\Program Files\EA GAMES

O43 - CFD:Common File Directory ----D- C:\Program Files\EA Sports

O43 - CFD:Common File Directory ----D- C:\Program Files\Electronic Arts

O43 - CFD:Common File Directory ----D- C:\Program Files\Emjysoft

O43 - CFD:Common File Directory ----D- C:\Program Files\Empire Interactive

O43 - CFD:Common File Directory ----D- C:\Program Files\ePSXe 1.6

O43 - CFD:Common File Directory ----D- C:\Program Files\ESET

O43 - CFD:Common File Directory -SH-D- C:\Program Files\Fichiers communs

O43 - CFD:Common File Directory ----D- C:\Program Files\File Recover

O43 - CFD:Common File Directory ----D- C:\Program Files\FileZilla FTP Client

O43 - CFD:Common File Directory ----D- C:\Program Files\Free Audio Pack

O43 - CFD:Common File Directory ----D- C:\Program Files\Free Download Manager

O43 - CFD:Common File Directory ----D- C:\Program Files\Free Easy Burner

O43 - CFD:Common File Directory ----D- C:\Program Files\Frets on Fire

O43 - CFD:Common File Directory ----D- C:\Program Files\Futuremark

O43 - CFD:Common File Directory ----D- C:\Program Files\Glary Undelete

O43 - CFD:Common File Directory ----D- C:\Program Files\GTactix

O43 - CFD:Common File Directory ----D- C:\Program Files\Hamachi

O43 - CFD:Common File Directory ----D- C:\Program Files\HP

O43 - CFD:Common File Directory ----D- C:\Program Files\ICQToolbar

O43 - CFD:Common File Directory ----D- C:\Program Files\IDoser v4

O43 - CFD:Common File Directory ----D- C:\Program Files\Image-Line

O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD:Common File Directory ----D- C:\Program Files\Intel Corporation

O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Download Manager

O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer

O43 - CFD:Common File Directory ----D- C:\Program Files\IRAI

O43 - CFD:Common File Directory ----D- C:\Program Files\iTunes

O43 - CFD:Common File Directory ----D- C:\Program Files\Java

O43 - CFD:Common File Directory ----D- C:\Program Files\JRE

O43 - CFD:Common File Directory ----D- C:\Program Files\K!

O43 - CFD:Common File Directory ----D- C:\Program Files\K-Lite Codec Pack

O43 - CFD:Common File Directory ----D- C:\Program Files\Lavalys

O43 - CFD:Common File Directory ----D- C:\Program Files\Lavasoft

O43 - CFD:Common File Directory ----D- C:\Program Files\League of Legends

O43 - CFD:Common File Directory ----D- C:\Program Files\LittleFighter2

O43 - CFD:Common File Directory ----D- C:\Program Files\Logitech

O43 - CFD:Common File Directory ----D- C:\Program Files\LucasArts

O43 - CFD:Common File Directory ----D- C:\Program Files\MagicTune Premium

O43 - CFD:Common File Directory ----D- C:\Program Files\Malwarebytes' Anti-Malware

O43 - CFD:Common File Directory ----D- C:\Program Files\MediaCoder

O43 - CFD:Common File Directory ----D- C:\Program Files\Megaupload

O43 - CFD:Common File Directory ----D- C:\Program Files\Meizu

O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger Plus! Live

O43 - CFD:Common File Directory ----D- C:\Program Files\MessengerDiscovery 2

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Games

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Games for Windows - LIVE

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Silverlight

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Small Business

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft SQL Server

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft SQL Server Compact Edition

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Visual Studio

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Works

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft WSE

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Xbox 360 Accessories

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft.NET

O43 - CFD:Common File Directory ----D- C:\Program Files\MIKSOFT

O43 - CFD:Common File Directory ----D- C:\Program Files\mIRC

O43 - CFD:Common File Directory ----D- C:\Program Files\MMTVConfig

O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox

O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox(1)

O43 - CFD:Common File Directory ----D- C:\Program Files\MP3Gain

O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild

O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 4.0

O43 - CFD:Common File Directory ----D- C:\Program Files\Mumble

O43 - CFD:Common File Directory ----D- C:\Program Files\My Company Name

O43 - CFD:Common File Directory ----D- C:\Program Files\NVIDIA Corporation

O43 - CFD:Common File Directory ----D- C:\Program Files\OCCT

O43 - CFD:Common File Directory ----D- C:\Program Files\Office 2007 portable

O43 - CFD:Common File Directory ----D- C:\Program Files\OLYMPUS

O43 - CFD:Common File Directory ----D- C:\Program Files\OneStopSoft.com

O43 - CFD:Common File Directory ----D- C:\Program Files\OpenAL

O43 - CFD:Common File Directory ----D- C:\Program Files\OpenOffice.org 3

O43 - CFD:Common File Directory ----D- C:\Program Files\Outsim

O43 - CFD:Common File Directory ----D- C:\Program Files\PC Inspector File Recovery

O43 - CFD:Common File Directory ----D- C:\Program Files\PDF Editeur 2

O43 - CFD:Common File Directory ----D- C:\Program Files\Philips FunCam

O43 - CFD:Common File Directory ----D- C:\Program Files\Phoenix Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files\Pic

O43 - CFD:Common File Directory ----D- C:\Program Files\PKR

O43 - CFD:Common File Directory ----D- C:\Program Files\Postal 2 Special Edition

O43 - CFD:Common File Directory ----D- C:\Program Files\PowerStrip

O43 - CFD:Common File Directory ----D- C:\Program Files\ProtectDisc Driver Installer

O43 - CFD:Common File Directory ----D- C:\Program Files\PS3 Media Server

O43 - CFD:Common File Directory ----D- C:\Program Files\RapidSolution

O43 - CFD:Common File Directory ----D- C:\Program Files\Razer

O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek

O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies

O43 - CFD:Common File Directory ----D- C:\Program Files\RegCleaner

O43 - CFD:Common File Directory ----D- C:\Program Files\RegCure

O43 - CFD:Common File Directory ----D- C:\Program Files\RivaTuner v2.06

O43 - CFD:Common File Directory ----D- C:\Program Files\Rockstar Games

O43 - CFD:Common File Directory ----D- C:\Program Files\Runaway A Twist of Fate

O43 - CFD:Common File Directory ----D- C:\Program Files\SEC

O43 - CFD:Common File Directory ----D- C:\Program Files\Skype

O43 - CFD:Common File Directory ----D- C:\Program Files\Smallvideosoft

O43 - CFD:Common File Directory ----D- C:\Program Files\SMPlayer

O43 - CFD:Common File Directory ----D- C:\Program Files\SolidWorks

O43 - CFD:Common File Directory ----D- C:\Program Files\Sony

O43 - CFD:Common File Directory ----D- C:\Program Files\Sony Ericsson

O43 - CFD:Common File Directory ----D- C:\Program Files\Sony Setup

O43 - CFD:Common File Directory ----D- C:\Program Files\Sophos

O43 - CFD:Common File Directory ----D- C:\Program Files\Soulseek-Test

O43 - CFD:Common File Directory ----D- C:\Program Files\Spybot - Search & Destroy

O43 - CFD:Common File Directory ----D- C:\Program Files\StarCraft II

O43 - CFD:Common File Directory ----D- C:\Program Files\Steam

O43 - CFD:Common File Directory ----D- C:\Program Files\SumatraPDF

O43 - CFD:Common File Directory ----D- C:\Program Files\SystemRequirementsLab

O43 - CFD:Common File Directory ----D- C:\Program Files\TB-StratBoard

O43 - CFD:Common File Directory ----D- C:\Program Files\TeamSpeak 3 Client

O43 - CFD:Common File Directory ----D- C:\Program Files\Teamspeak2_RC2

O43 - CFD:Common File Directory ----D- C:\Program Files\The All-Seeing Eye

O43 - CFD:Common File Directory ----D- C:\Program Files\THQ

O43 - CFD:Common File Directory ----D- C:\Program Files\TomTom DesktopSuite

O43 - CFD:Common File Directory ----D- C:\Program Files\TomTom HOME 2

O43 - CFD:Common File Directory ----D- C:\Program Files\TomTom International B.V

O43 - CFD:Common File Directory ----D- C:\Program Files\TrackMania United

O43 - CFD:Common File Directory ----D- C:\Program Files\Trend Micro

O43 - CFD:Common File Directory ----D- C:\Program Files\TuneUp Utilities 2008

O43 - CFD:Common File Directory ----D- C:\Program Files\Ubisoft

O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information

O43 - CFD:Common File Directory ----D- C:\Program Files\Unlocker

O43 - CFD:Common File Directory ----D- C:\Program Files\Unreal Tournament 3

O43 - CFD:Common File Directory ----D- C:\Program Files\Vbteam

O43 - CFD:Common File Directory ----D- C:\Program Files\Ventrilo

O43 - CFD:Common File Directory ----D- C:\Program Files\Video Converter

O43 - CFD:Common File Directory ----D- C:\Program Files\VideoLAN

O43 - CFD:Common File Directory ----D- C:\Program Files\VID_0E8F&PID_0003

O43 - CFD:Common File Directory ----D- C:\Program Files\VirtualDJ

O43 - CFD:Common File Directory ----D- C:\Program Files\Visicom Media

O43 - CFD:Common File Directory ----D- C:\Program Files\vmntoolbar

O43 - CFD:Common File Directory ----D- C:\Program Files\VS Revo Group

O43 - CFD:Common File Directory ----D- C:\Program Files\Vstplugins

O43 - CFD:Common File Directory ----D- C:\Program Files\Webteh

O43 - CFD:Common File Directory ----D- C:\Program Files\WhoCrashed

O43 - CFD:Common File Directory ----D- C:\Program Files\Winamp

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Calendar

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Collaboration

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Defender

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Journal

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live Safety Center

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live SkyDrive

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Mail

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Photo Gallery

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Photo Viewer

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Portable Devices

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Sidebar

O43 - CFD:Common File Directory ----D- C:\Program Files\WinRAR

O43 - CFD:Common File Directory R---D- C:\Program Files\WorldOfGoo

O43 - CFD:Common File Directory ----D- C:\Program Files\wtf

O43 - CFD:Common File Directory ----D- C:\Program Files\X-ray Anti-Cheat

O43 - CFD:Common File Directory ----D- C:\Program Files\XBCD 360

O43 - CFD:Common File Directory ----D- C:\Program Files\Xfire

O43 - CFD:Common File Directory ----D- C:\Program Files\Xilisoft

O43 - CFD:Common File Directory ----D- C:\Program Files\XnView

O43 - CFD:Common File Directory ----D- C:\Program Files\Yahoo!

O43 - CFD:Common File Directory ----D- C:\Program Files\ZHPDiag

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe AIR

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Apple

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Autodesk Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\AVerMedia

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\AVSMedia

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\BioWare

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Blizzard Entertainment

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Bluebeam Software

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Canon

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\DESIGNER

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\DFX

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\DivX Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\eDrawings2007

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Futuremark Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Hewlett-Packard

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\HP

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\INCA Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\InstallShield

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Java

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Macrovision Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\microsoft shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\PX Storage Engine

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Services

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Skype

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\sndm360

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Solidworks Data

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SolidWorks Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Sony Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Steam

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Windows Live

O43 - CFD:Common File Directory -SH-D- C:\Program Files\Common Files\WindowsLiveInstaller

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Wise Installation Wizard

O43 - CFD:Common File Directory ----D- C:\ProgramData\2DBoy

O43 - CFD:Common File Directory ----D- C:\ProgramData\AA3DeployClient

O43 - CFD:Common File Directory ----D- C:\ProgramData\Adobe

O43 - CFD:Common File Directory ----D- C:\ProgramData\Alwil Software

O43 - CFD:Common File Directory ----D- C:\ProgramData\Apple

O43 - CFD:Common File Directory ----D- C:\ProgramData\Apple Computer

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Application Data

O43 - CFD:Common File Directory ----D- C:\ProgramData\ashampoo

O43 - CFD:Common File Directory ----D- C:\ProgramData\ASign

O43 - CFD:Common File Directory ----D- C:\ProgramData\Autodesk

O43 - CFD:Common File Directory ----D- C:\ProgramData\AVerTV

O43 - CFD:Common File Directory ----D- C:\ProgramData\Avg8

O43 - CFD:Common File Directory ----D- C:\ProgramData\AVS4YOU

O43 - CFD:Common File Directory ----D- C:\ProgramData\Azureus

O43 - CFD:Common File Directory ----D- C:\ProgramData\Blizzard

O43 - CFD:Common File Directory ----D- C:\ProgramData\Blizzard Entertainment

O43 - CFD:Common File Directory ----D- C:\ProgramData\Bluebeam Software

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Bureau

O43 - CFD:Common File Directory ----D- C:\ProgramData\BVRP Software

O43 - CFD:Common File Directory ----D- C:\ProgramData\Codemasters

O43 - CFD:Common File Directory ----D- C:\ProgramData\DAEMON Tools Lite

O43 - CFD:Common File Directory ----D- C:\ProgramData\DassaultSystemes

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Desktop

O43 - CFD:Common File Directory ----D- C:\ProgramData\DFX

O43 - CFD:Common File Directory ----D- C:\ProgramData\DivX

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Documents

O43 - CFD:Common File Directory ----D- C:\ProgramData\DVD Shrink

O43 - CFD:Common File Directory ----D- C:\ProgramData\Electronic Arts Inc

O43 - CFD:Common File Directory ----D- C:\ProgramData\ESET

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Favoris

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Favorites

O43 - CFD:Common File Directory ----D- C:\ProgramData\FLEXnet

O43 - CFD:Common File Directory ----D- C:\ProgramData\Hewlett-Packard

O43 - CFD:Common File Directory ----D- C:\ProgramData\HP

O43 - CFD:Common File Directory ----D- C:\ProgramData\HP Product Assistant

O43 - CFD:Common File Directory ----D- C:\ProgramData\huryvsfk

O43 - CFD:Common File Directory ----D- C:\ProgramData\InstallShield

O43 - CFD:Common File Directory ----D- C:\ProgramData\Lavasoft

O43 - CFD:Common File Directory ----D- C:\ProgramData\Malwarebytes

O43 - CFD:Common File Directory ----D- C:\ProgramData\Media Center Programs

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Menu Démarrer

O43 - CFD:Common File Directory ----D- C:\ProgramData\Messenger Plus!

O43 - CFD:Common File Directory ----D- C:\ProgramData\MessengerDiscovery 2

O43 - CFD:Common File Directory -S--D- C:\ProgramData\Microsoft

O43 - CFD:Common File Directory ----D- C:\ProgramData\Microsoft Help

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Modèles

O43 - CFD:Common File Directory ----D- C:\ProgramData\NVIDIA

O43 - CFD:Common File Directory ----D- C:\ProgramData\NVIDIA Corporation

O43 - CFD:Common File Directory ----D- C:\ProgramData\Pendulo Studios

O43 - CFD:Common File Directory ----D- C:\ProgramData\RapidSolution

O43 - CFD:Common File Directory ----D- C:\ProgramData\Real

O43 - CFD:Common File Directory ----D- C:\ProgramData\Skype

O43 - CFD:Common File Directory ----D- C:\ProgramData\SonicStage

O43 - CFD:Common File Directory ----D- C:\ProgramData\Sony

O43 - CFD:Common File Directory ----D- C:\ProgramData\Sony Corporation

O43 - CFD:Common File Directory ----D- C:\ProgramData\Sony Ericsson

O43 - CFD:Common File Directory ----D- C:\ProgramData\Soulseek

O43 - CFD:Common File Directory ----D- C:\ProgramData\Spybot - Search & Destroy

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Start Menu

O43 - CFD:Common File Directory ---AD- C:\ProgramData\TEMP

O43 - CFD:Common File Directory -SH-D- C:\ProgramData\Templates

O43 - CFD:Common File Directory ----D- C:\ProgramData\TomTom

O43 - CFD:Common File Directory ----D- C:\ProgramData\TuneUp Software

O43 - CFD:Common File Directory ----D- C:\ProgramData\TVU Networks

O43 - CFD:Common File Directory ----D- C:\ProgramData\WEBREG

O43 - CFD:Common File Directory ----D- C:\ProgramData\WLInstaller

O43 - CFD:Common File Directory ----D- C:\ProgramData\Xfire

O43 - CFD:Common File Directory ----D- C:\ProgramData\Yahoo! Companion

O43 - CFD:Common File Directory ----D- C:\ProgramData\ZoomBrowser

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe AIR

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Apple

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Autodesk Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\AVerMedia

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\AVSMedia

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\BioWare

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Blizzard Entertainment

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Bluebeam Software

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Canon

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\DESIGNER

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\DFX

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\DivX Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\eDrawings2007

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Futuremark Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Hewlett-Packard

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\HP

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\INCA Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\InstallShield

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Java

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Macrovision Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\microsoft shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\PX Storage Engine

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Services

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Skype

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\sndm360

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Solidworks Data

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SolidWorks Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Sony Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Steam

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Windows Live

O43 - CFD:Common File Directory -SH-D- C:\Program Files\Common Files\WindowsLiveInstaller

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Wise Installation Wizard

 

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.D484B84727B221AF8022FD78729D6C0D] - 2010-09-01 - 17:18:06 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\mlfcache.dat [227228]

O44 - LFC:[MD5.A0D86B8AC93EF95620420C7A24AC5344] - 2010-09-07 - 15:47:07 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\System32\drivers\aswFsBlk.sys [17744]

O44 - LFC:[MD5.BD9119468C32B7ECD1E0544D3F286A73] - 2010-09-07 - 15:47:30 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [50768]

O44 - LFC:[MD5.69823954BBD461A73D69774928C9737E] - 2010-09-07 - 15:47:46 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\System32\drivers\aswRdr.sys [23376]

O44 - LFC:[MD5.7ECC2776638B04553F9A85BD684C3ABF] - 2010-09-07 - 15:52:03 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [165584]

O44 - LFC:[MD5.095ED820A926AA8189180B305E1BCFC9] - 2010-09-07 - 15:52:25 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\System32\drivers\aswTdi.sys [46672]

O44 - LFC:[MD5.81F10376AF5F0F466F03CB2C5321B7ED] - 2010-09-07 - 15:53:58 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys [340048]

O44 - LFC:[MD5.C983EB22398295B00A5A10B681DABC6E] - 2010-09-07 - 16:11:54 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe [167592]

O44 - LFC:[MD5.62C5E46076F52D394EA0B898FF7B8747] - 2010-09-07 - 16:12:17 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [38848]

O44 - LFC:[MD5.81051BCC2CF1BEDF378224B0A93E2877] - 2010-09-11 - 22:58:05 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\jh5n1.log [2]

O44 - LFC:[MD5.E493FD44B066465EA9E4EDBFA8EA17AD] - 2010-09-13 - 21:39:48 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\1BCD64AE-CEE7-4113-8900-B8E8240D97F1.txt [3830]

O44 - LFC:[MD5.01C47C2ECED034EF6F8C1552A97CFF00] - 2010-09-13 - 21:49:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\config.nt [2577]

O44 - LFC:[MD5.04C83EF9416618F1267409FA54750837] - 2010-09-15 - 19:55:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\MRT.INI [185]

O44 - LFC:[MD5.AE72E8619CB31D84DA25E2435E55003C] - 2010-09-17 - 20:04:45 ---A- . (.NirSoft - NirCmd.) -- C:\Windows\NIRCMD.exe [31232]

O44 - LFC:[MD5.C5EC72A20B4C98DB5314E6C46765B148] - 2010-09-17 - 20:04:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\MBR.exe [77312]

O44 - LFC:[MD5.F1FBA6185A6A2BC6456970914875078E] - 2010-09-17 - 20:04:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\PEV.exe [256512]

O44 - LFC:[MD5.9E05A9C264C8A908A8E79450FCBFF047] - 2010-09-17 - 20:04:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\grep.exe [80412]

O44 - LFC:[MD5.2B657A67AEBB84AEA5632C53E61E23BF] - 2010-09-17 - 20:04:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\sed.exe [98816]

O44 - LFC:[MD5.5E832F4FAF5F481F2EAF3B3A48F603B8] - 2010-09-17 - 20:04:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\zip.exe [68096]

O44 - LFC:[MD5.01D95A1F8CF13D07CC564AABB36BCC0B] - 2010-09-17 - 20:04:45 ---A- . (.SteelWerX - Freeware implementation of REG.EXE.) -- C:\Windows\SWREG.exe [161792]

O44 - LFC:[MD5.B7517DB073B28F5696A1E5528ABEB5D0] - 2010-09-17 - 20:04:45 ---A- . (.SteelWerX - Freeware implementation of SC.EXE.) -- C:\Windows\SWSC.exe [136704]

O44 - LFC:[MD5.58ABDA95BCA4C92BD55D5BED022A8656] - 2010-09-18 - 21:54:12 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PnkBstrB.exe [233960]

O44 - LFC:[MD5.58ABDA95BCA4C92BD55D5BED022A8656] - 2010-09-18 - 21:54:12 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PnkBstrB.xtr [233960]

O44 - LFC:[MD5.85463D3DA32D92712BF025400D1AAAC2] - 2010-09-18 - 21:54:21 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\drivers\PnkBstrK.sys [138520]

O44 - LFC:[MD5.59509AD6CBC28F2C73056268985B3E48] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 Driver.) -- C:\Windows\System32\drivers\s0016bus.sys [89256]

O44 - LFC:[MD5.44D115C6BE5DF0F32338DA1032923644] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB Ethernet Emul.) -- C:\Windows\System32\drivers\s0016cr.sys [10792]

O44 - LFC:[MD5.34EF7B5F611957B73E7219DD5A222AD1] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB Ethernet Emul.) -- C:\Windows\System32\drivers\s0016nd5.sys [25512]

O44 - LFC:[MD5.927208754FB27FC3E7A659E77500C5D1] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB Ethernet Emul.) -- C:\Windows\System32\drivers\s0016unic.sys [115752]

O44 - LFC:[MD5.7A78BBA97FEB5E6D24C49E93A3BF7287] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC Device Ma.) -- C:\Windows\System32\drivers\s0016mgmt.sys [114216]

O44 - LFC:[MD5.B98C3A6F91F4FBA285AF9606A240C6B4] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC Modem Fil.) -- C:\Windows\System32\drivers\s0016mdfl.sys [15016]

O44 - LFC:[MD5.8A83426F4FB7B5212825D9DE76368B1A] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC Modem WDM.) -- C:\Windows\System32\drivers\s0016mdm.sys [120744]

O44 - LFC:[MD5.36792935847143E4A3CDA0DC87248487] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC OBEX Inte.) -- C:\Windows\System32\drivers\s0016obex.sys [110632]

O44 - LFC:[MD5.8C4A9024CF84D61D4BC07F06DDF7B2D1] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\s0016cm.sys [12200]

O44 - LFC:[MD5.8C4A9024CF84D61D4BC07F06DDF7B2D1] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\s0016cmnt.sys [12200]

O44 - LFC:[MD5.DA9BB7BCBB5F3D4B4E9B1E767278259D] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\s0016wh.sys [12200]

O44 - LFC:[MD5.DA9BB7BCBB5F3D4B4E9B1E767278259D] - 2010-09-18 - 23:53:40 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\s0016whnt.sys [12200]

O44 - LFC:[MD5.CDDDEC541BC3C96F91ECB48759673505] - 2010-09-23 - 08:12:18 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\drivers\sptd.sys [691696]

O44 - LFC:[MD5.23E1442C2957204DE00CE0405BA0C76F] - 2010-09-23 - 08:34:39 ---A- . (.Creative Labs - OpenAL32.) -- C:\Windows\System32\wrap_oal.dll [445016]

O44 - LFC:[MD5.628321A50ED9558513F8A5E37A5E1FBA] - 2010-09-23 - 08:34:39 ---A- . (.Portions © Creative Labs Inc. and NVIDIA - Standard OpenAL Implementation.) -- C:\Windows\System32\OpenAL32.dll [109144]

O44 - LFC:[MD5.BA85D4951E3BAF18481E92F383C7C38C] - 2010-09-23 - 08:34:41 ---A- . (.Blue Ripple Sound Limited - Rapture3D OpenAL Renderer.) -- C:\Windows\System32\rapture3d_oal.dll [1380352]

O44 - LFC:[MD5.E055CC6CF50C3070438C531DC5D6F4AC] - 2010-09-23 - 08:34:41 ---A- . (.Intel Corporation / Blue Ripple Sound Limit - Custom Math Kernel Library.) -- C:\Windows\System32\mkl_blueripple.dll [17686528]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 2010-09-25 - 13:19:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setuperr.log [0]

O44 - LFC:[MD5.67B48A903430C6D4FB58CBACA1866601] - 2010-09-25 - 15:37:35 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [20952]

O44 - LFC:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 2010-09-25 - 15:37:37 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\drivers\mbamswissarmy.sys [38224]

O44 - LFC:[MD5.BAEC90B950B919FC406F5808FB270BCD] - 2010-09-25 - 18:10:27 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\ntbtlog.txt [155058]

O44 - LFC:[MD5.B1A9CF0B6F80611D31987C247EC630B4] - 2010-09-25 - 21:39:14 ---A- . (.SteelWerX - Freeware implementation of XCACLS.) -- C:\Windows\SWXCACLS.exe [212480]

O44 - LFC:[MD5.456747F2DE45D98E1AE8049D7CAD9EFF] - 2010-09-25 - 21:54:54 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\PFRO.log [3200]

O44 - LFC:[MD5.3CF3D4A45CC2AF973DBC30EC8D33252B] - 2010-09-25 - 21:55:32 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system.ini [215]

O44 - LFC:[MD5.41F108DF9B0B3A477AA2704231FC6931] - 2010-09-25 - 22:04:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\ComboFix.txt [23710]

O44 - LFC:[MD5.7436AF3D2A454AF1BCEF8C1AA4E1AC91] - 2010-09-26 - 07:42:16 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.7127D1D1C1C32977650C388C3C3C0BEF] - 2010-09-26 - 07:42:20 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setupact.log [72208]

O44 - LFC:[MD5.00000000000000000000000000000000] - 2010-09-26 - 07:46:02 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log [1322333]

O44 - LFC:[MD5.694DA88C3C2B5DB47EA992DCAA4763DC] - 2010-09-26 - 07:48:39 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [9712]

O44 - LFC:[MD5.694DA88C3C2B5DB47EA992DCAA4763DC] - 2010-09-26 - 07:48:39 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [9712]

O44 - LFC:[MD5.EC387CC1700AA3428DD8BD46596994B3] - 2010-09-26 - 10:03:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PerfStringBackup.INI [1782510]

O44 - LFC:[MD5.2224F2C682D3707B8DDF922CBF5322F0] - 2010-09-26 - 10:03:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfc009.dat [136266]

O44 - LFC:[MD5.7A68CE508AF768DD42AC141D18308FF4] - 2010-09-26 - 10:03:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfc00C.dat [166814]

O44 - LFC:[MD5.DCEE43496FEF3CD79A8F7AC6F07A852C] - 2010-09-26 - 10:03:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfh009.dat [692020]

O44 - LFC:[MD5.FA6839ABDA0BD97BC377D9B4FBE7B95E] - 2010-09-26 - 10:03:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfh00C.dat [789166]

 

 

---\\ Déni du service (Local Security Authority) (LSA) (O48)

O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

 

 

---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)

O52 - TDSD: \Drivers32\"VIDC.I420"="lvcodec2.dll" . (.Logitech Inc. - Video Codec.) -- C:\Windows\System32\lvcodec2.dll

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll

O52 - TDSD: \Drivers32\"msacm.ac3acm"="ac3acm.acm" . (.fccHandler - AC-3 ACM Codec.) -- C:\Windows\System32\ac3acm.acm

O52 - TDSD: \Drivers32\"msacm.l3fhg"="mp3fhg.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Audio Layer-3 Codec for MSACM.) -- C:\Windows\System32\mp3fhg.acm

O52 - TDSD: \Drivers32\"msacm.vorbis"="vorbis.acm" . (.HMS http://hp.vector.co.jp/authors/VA012897 - Ogg Vorbis CODEC for MSACM.) -- C:\Windows\System32\vorbis.acm

O52 - TDSD: \Drivers32\"VIDC.3iv2"="3ivxVfWCodec.dll" . (.3ivx.com - 3ivx D4 4.5.1 Pro Video for Windows Codec.) -- C:\Windows\System32\3ivxVfWCodec.dll

O52 - TDSD: \Drivers32\"VIDC.CFHD"="cfhd.dll" . (.CineForm Inc. - CineForm VFW CODEC.) -- C:\Windows\System32\cfhd.dll

O52 - TDSD: \Drivers32\"VIDC.FFDS"="ff_vfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ff_vfw.dll

O52 - TDSD: \Drivers32\"VIDC.FPS1"="frapsvid.dll" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsvid.dll

O52 - TDSD: \Drivers32\"VIDC.VP31"="vp31vfw.dll" . (.On2.com - On2_VP3 Version 3.2.6.1 Decoder Tune.) -- C:\Windows\System32\vp31vfw.dll

O52 - TDSD: \Drivers32\"VIDC.VP60"="vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp6vfw.dll

O52 - TDSD: \Drivers32\"VIDC.VP61"="vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp6vfw.dll

O52 - TDSD: \Drivers32\"VIDC.VP62"="vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp6vfw.dll

O52 - TDSD: \Drivers32\"VIDC.VP70"="vp7vfw.dll" . (.On2.com - VP70 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp7vfw.dll

O52 - TDSD: \Drivers32\"VIDC.X264"="x264vfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\x264vfw.dll

O52 - TDSD: \Drivers32\"VIDC.XFR1"="xfcodec.dll" . (.Pas de propriétaire - Xfire Video Codec.) -- C:\Windows\System32\xfcodec.dll

O52 - TDSD: \Drivers32\"VIDC.XVID"="xvidvfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\xvidvfw.dll

O52 - TDSD: \Drivers32\"msacm.divxa32"="DivXa32.acm" . (.Packed With Joy ! - DivX;-) Audio Codec.) -- C:\Windows\System32\DivXa32.acm

O52 - TDSD: \Drivers32\"msacm.lameacm"="LameACM.acm" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\Windows\System32\LameACM.acm

O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\DivX.dll

O52 - TDSD: \Drivers32\"vidc.yv12"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\DivX.dll

O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \drivers.desc\"3ivxVfWCodec.dll"="3ivx D4 4.5.1 Pro" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"ac3acm.acm"="AC3 ACM Decompressor" . (.fccHandler - AC-3 ACM Codec.) -- C:\Windows\System32\ac3acm.acm

O52 - TDSD: \drivers.desc\"asusasv2.dll"="ASUS ASV2 CODEC" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"cfhd.dll"="CineForm HD VFW Codec" . (.CineForm Inc. - CineForm VFW CODEC.) -- C:\Windows\System32\cfhd.dll

O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow Video Codec" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ff_vfw.dll

O52 - TDSD: \drivers.desc\"frapsvid.dll"="Fraps Video Decompressor" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsvid.dll

O52 - TDSD: \drivers.desc\"mp3fhg.acm"="Fraunhofer IIS MPEG Layer-3 Codec (Professional) v3.3.2" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"vorbis.acm"="Ogg Vorbis Audio CODEC" . (.HMS http://hp.vector.co.jp/authors/VA012897 - Ogg Vorbis CODEC for MSACM.) -- C:\Windows\System32\vorbis.acm

O52 - TDSD: \drivers.desc\"vp31vfw.dll"="On2 VP3" . (.On2.com - On2_VP3 Version 3.2.6.1 Decoder Tune.) -- C:\Windows\System32\vp31vfw.dll

O52 - TDSD: \drivers.desc\"vp6vfw.dll"="On2 VP6 6.4.2 Video Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"vp7vfw.dll"="On2 VP7" . (.On2.com - VP70 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp7vfw.dll

O52 - TDSD: \drivers.desc\"x264vfw.dll"="x264 H.264 Video Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"xfcodec.dll"="Xfire video codec [XFR1]" . (.Pas de propriétaire - Xfire Video Codec.) -- C:\Windows\System32\xfcodec.dll

O52 - TDSD: \drivers.desc\"xvidvfw.dll"="XviD 1.2.1 Video Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"DivXa32.acm"="DivX Audio Codec" . (.Packed With Joy ! - DivX;-) Audio Codec.) -- C:\Windows\System32\DivXa32.acm

O52 - TDSD: \drivers.desc\"LameACM.acm"="Lame ACM MP3 Codec" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\Windows\System32\LameACM.acm

O52 - TDSD: \drivers.desc\"DivX.dll"="DivX 6.9.2 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

 

 

---\\ ShareTools MSconfig StartupReg (SMSR) (O53)

O53 - SMSR:HKLM\...\startupreg\command . (.Pas de propriétaire - Pas de description.) -- C:\Users\Damien\AppData\Roaming\Adobe\Player.exe

 

 

---\\ Microsoft Control Security Providers (MCSP) (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

 

 

---\\ Microsoft Windows Policies System (MWPS) (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0

 

 

---\\ Microsoft Windows Policies Explorer (MWPE) (O56)

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0

O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoCDBurning"=0

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=67108863

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=255

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0

 

 

---\\ Liste des Drivers Système (SDL) (O58)

O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 2009-07-14 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys

O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 2009-07-14 - 02:26:17 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys

O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 2009-07-14 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys

O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 2009-07-14 - 02:26:15 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys

O58 - SDL:[MD5.2101A86C25C154F8314B24EF49D7FBC2] - 2009-07-14 - 02:26:15 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys

O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 2009-07-14 - 02:26:15 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\system32\drivers\amdsbs.sys

O58 - SDL:[MD5.B81C2B5616F6420A9941EA093A92B150] - 2009-07-14 - 02:26:15 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys

O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 2009-07-14 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys

O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 2009-07-14 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys

O58 - SDL:[MD5.94442E3029FF6C9F08140FE6718AF4FB] - 2007-01-29 - 17:12:52 ---A- . (.ASUSTeK COMPUTER INC. - AsusVRC.) -- C:\Windows\system32\drivers\AsusVRC.sys

O58 - SDL:[MD5.A0D86B8AC93EF95620420C7A24AC5344] - 2010-09-07 - 15:47:07 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys

O58 - SDL:[MD5.BD9119468C32B7ECD1E0544D3F286A73] - 2010-09-07 - 15:47:30 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys

O58 - SDL:[MD5.69823954BBD461A73D69774928C9737E] - 2010-09-07 - 15:47:46 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys

O58 - SDL:[MD5.81F10376AF5F0F466F03CB2C5321B7ED] - 2010-09-07 - 15:53:58 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\system32\drivers\aswSnx.sys

O58 - SDL:[MD5.7ECC2776638B04553F9A85BD684C3ABF] - 2010-09-07 - 15:52:03 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys

O58 - SDL:[MD5.095ED820A926AA8189180B305E1BCFC9] - 2010-09-07 - 15:52:25 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys

O58 - SDL:[MD5.454A7AA0E071A54CE7E1310B34FD3402] - 2009-07-27 - 06:45:34 ---A- . (.AVerMedia TECHNOLOGIES, Inc. - AVerAF15DMBTH Driver.) -- C:\Windows\system32\drivers\AVerAF15DMBTH.sys

O58 - SDL:[MD5.76C10D80E46CB79570479CB7CF205D39] - 2009-03-24 - 16:07:58 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys

O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 2009-07-14 - 23:02:49 ---A- . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gigabit Ethernet..) -- C:\Windows\system32\drivers\b57nd60x.sys

O58 - SDL:[MD5.3E2A2B4D7F4E1CBA53BC0762CF85C422] - 2008-07-07 - 21:04:50 ---A- . (.BitDefender SRL - BitDefender Firewall NDIS Filter Driver.) -- C:\Windows\system32\drivers\bdfndisf.sys.avxpnd

O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 2009-07-14 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys

O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 2009-07-14 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys

O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 2009-07-14 - 01:57:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys

O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 2009-07-14 - 23:53:32 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys

O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 2009-07-14 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys

O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 2009-07-14 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys

O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 2009-07-14 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbdx.sys

O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 2009-07-14 - 02:26:21 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys

O58 - SDL:[MD5.75FA19142531CBF490770C2988A7DB64] - 2010-07-09 - 12:18:54 ---A- . (.Windows ® Win 7 DDK provider - CPUID Driver.) -- C:\Windows\system32\drivers\cpuz134_x32.sys

O58 - SDL:[MD5.5D7FA9B0591F0474A83A4E4A9BF7B9AF] - 2005-03-03 - 18:47:42 ---A- . (.Cypress Semiconductor - Cypress Generic USB Device Driver.) -- C:\Windows\system32\drivers\CYUSB.sys

O58 - SDL:[MD5.57DF86B24BFEA7B2CCAD82118D33EC17] - 2007-04-12 - 05:46:50 ---A- . (.Razer (Asia-Pacific) Pte Ltd - Razer DeathAdd USB Optical Mouse Driver.) -- C:\Windows\system32\drivers\dadder.sys

O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 2009-07-14 - 02:20:28 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys

O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 2009-07-14 - 02:20:28 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys

O58 - SDL:[MD5.FD9FC82F134B1C91004FFC76A5AE494B] - 2004-10-25 - 20:02:58 ---A- . (.EnTech Taiwan - Pas de description.) -- C:\Windows\system32\drivers\Entech.sys

O58 - SDL:[MD5.4FC3498AAB35E5B78993B2AAFBCCFB62] - 2004-06-22 - 15:44:50 ---A- . (.EnTech Taiwan - EnTech driver for Windows XP 64.) -- C:\Windows\system32\drivers\Entech64.sys

O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 2009-07-14 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbdx.sys

O58 - SDL:[MD5.AB8A6A87D9D7255C3884D5B9541A6E80] - 2008-04-17 - 12:12:54 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys

O58 - SDL:[MD5.7929A161F9951D173CA9900FE7067391] - 2008-05-16 - 19:10:28 ---A- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\system32\drivers\hamachi.sys

O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 2009-07-14 - 23:54:14 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys

O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 2009-07-14 - 02:20:28 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys

O58 - SDL:[MD5.934AF4D7C5F457B9F0743F4299B77B67] - 2009-07-14 - 02:20:36 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\system32\drivers\iaStorV.sys

O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 2009-07-14 - 02:20:36 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys

O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 2009-07-14 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys

O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 2009-07-14 - 02:20:37 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys

O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 2009-07-14 - 02:20:36 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys

O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 2009-07-14 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys

O58 - SDL:[MD5.9A155D31B8E52F41B258282092CC93A7] - 2005-05-27 - 09:32:52 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\lvcm.sys

O58 - SDL:[MD5.93418CD2C3B544847C3CDF7DB66F1921] - 2005-05-27 - 09:23:38 ---A- . (.Logitech Inc. - SmoothVision filter.) -- C:\Windows\system32\drivers\lvsvf2.sys

O58 - SDL:[MD5.C5EFBD05A5195402121711A6EBBB271F] - 2005-05-27 - 09:31:28 ---A- . (.Logitech Inc. - USB Statistic Driver.) -- C:\Windows\system32\drivers\LVUSBSta.sys

O58 - SDL:[MD5.67B48A903430C6D4FB58CBACA1866601] - 2010-04-29 - 14:39:26 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys

O58 - SDL:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 2010-04-29 - 14:39:38 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys

O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 2009-07-14 - 02:20:36 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\Windows\system32\drivers\megasas.sys

O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 2009-07-14 - 02:20:36 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys

O58 - SDL:[MD5.66497E522B5591C160E980F7BFA4B5C5] - 2008-01-17 - 14:45:56 ---A- . (.Samsung Electronics, Inc. - MagicTunePremium Driver.) -- C:\Windows\system32\drivers\MTiCtwl.sys

O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 2009-07-14 - 02:20:44 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys

O58 - SDL:[MD5.01544D3E8B6C8C490F57317AD5E4E9FF] - 2010-06-08 - 00:57:00 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 257.21.) -- C:\Windows\system32\drivers\nvlddmkm.sys

O58 - SDL:[MD5.ADD596F11D3A23E55D960D4CCE6E9B3A] - 2006-05-05 - 18:21:00 ---A- . (.NVIDIA Corporation. - Port Driver.) -- C:\Windows\system32\drivers\nvport.sys

O58 - SDL:[MD5.3F3D04B1D08D43C16EA7963954EC768D] - 2009-07-14 - 02:20:44 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys

O58 - SDL:[MD5.C99F251A5DE63C6F129CF71933ACED0F] - 2009-07-14 - 02:20:44 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys

O58 - SDL:[MD5.D6829ACFA6315DB9A963D3EDE2BCBCFF] - 2001-11-19 - 19:05:18 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\PciBus.sys

O58 - SDL:[MD5.DA86016F0672ADA925F589EDE715F185] - 2006-03-29 - 07:49:26 ---A- . (.Padus, Inc. - Padus® ASPI Shell.) -- C:\Windows\system32\drivers\pfc.sys

O58 - SDL:[MD5.85463D3DA32D92712BF025400D1AAAC2] - 2010-09-18 - 21:54:21 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\PnkBstrK.sys

O58 - SDL:[MD5.BCF8D075FAD718FEA8EF6E281331A56E] - 2007-07-15 - 02:37:04 ---A- . (.EnTech Taiwan - PowerStrip support NT kernel-mode driver.) -- C:\Windows\system32\drivers\pstrip.sys

O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 2009-07-14 - 02:19:04 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys

O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 2009-07-14 - 02:19:04 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys

O58 - SDL:[MD5.2CC77C65216A8BB4677E637120D5731D] - 2008-10-04 - 01:17:24 ---A- . (.Realtek Corporation - Realtek 8101E/8168/8169 NDIS6 32-bit Driver.) -- C:\Windows\system32\drivers\Rtlh86.sys

O58 - SDL:[MD5.59509AD6CBC28F2C73056268985B3E48] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 Driver.) -- C:\Windows\system32\drivers\s0016bus.sys

O58 - SDL:[MD5.8C4A9024CF84D61D4BC07F06DDF7B2D1] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s0016cm.sys

O58 - SDL:[MD5.8C4A9024CF84D61D4BC07F06DDF7B2D1] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s0016cmnt.sys

O58 - SDL:[MD5.44D115C6BE5DF0F32338DA1032923644] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB Ethernet Emulation (WDM class reg.) -- C:\Windows\system32\drivers\s0016cr.sys

O58 - SDL:[MD5.B98C3A6F91F4FBA285AF9606A240C6B4] - 2008-05-16 - 10:33:14 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC Modem Filter Driver.) -- C:\Windows\system32\drivers\s0016mdfl.sys

O58 - SDL:[MD5.8A83426F4FB7B5212825D9DE76368B1A] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC Modem WDM Driver.) -- C:\Windows\system32\drivers\s0016mdm.sys

O58 - SDL:[MD5.7A78BBA97FEB5E6D24C49E93A3BF7287] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC Device Management Driver.) -- C:\Windows\system32\drivers\s0016mgmt.sys

O58 - SDL:[MD5.34EF7B5F611957B73E7219DD5A222AD1] - 2008-05-16 - 10:33:14 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB Ethernet Emulation (NDIS 5 Minipo.) -- C:\Windows\system32\drivers\s0016nd5.sys

O58 - SDL:[MD5.36792935847143E4A3CDA0DC87248487] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB WMC OBEX Interface Device Driver.) -- C:\Windows\system32\drivers\s0016obex.sys

O58 - SDL:[MD5.927208754FB27FC3E7A659E77500C5D1] - 2008-05-16 - 10:33:14 ---A- . (.MCCI Corporation - Sony Ericsson Device 0016 USB Ethernet Emulation.) -- C:\Windows\system32\drivers\s0016unic.sys

O58 - SDL:[MD5.DA9BB7BCBB5F3D4B4E9B1E767278259D] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s0016wh.sys

O58 - SDL:[MD5.DA9BB7BCBB5F3D4B4E9B1E767278259D] - 2008-05-16 - 10:33:12 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s0016whnt.sys

O58 - SDL:[MD5.815445F4676CC96BC9AEEC303C727E19] - 2007-04-03 - 12:57:42 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 Driver.) -- C:\Windows\system32\drivers\s116bus.sys

O58 - SDL:[MD5.0C8F4ECE9684FE64ECD09CAD1797BB20] - 2007-04-03 - 12:57:44 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s116cm.sys

O58 - SDL:[MD5.0C8F4ECE9684FE64ECD09CAD1797BB20] - 2007-04-03 - 12:57:44 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s116cmnt.sys

O58 - SDL:[MD5.F6F34ECAFCB915177983797A2BBAC547] - 2007-04-03 - 12:57:46 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB Ethernet Emulation (WDM class regi.) -- C:\Windows\system32\drivers\s116cr.sys

O58 - SDL:[MD5.333D1E0743E6DE1779C3C418AC601C3A] - 2007-04-03 - 12:57:48 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB WMC Modem Filter Driver.) -- C:\Windows\system32\drivers\s116mdfl.sys

O58 - SDL:[MD5.50D6E5B021E9EC7553AB8A3553CC1B6B] - 2007-04-03 - 12:57:48 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB WMC Modem WDM Driver.) -- C:\Windows\system32\drivers\s116mdm.sys

O58 - SDL:[MD5.1589AA53E43F8D193A7D4D580D3FFA95] - 2007-04-03 - 12:57:50 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB WMC Device Management Driver.) -- C:\Windows\system32\drivers\s116mgmt.sys

O58 - SDL:[MD5.306F85733671FE507470F0273025E768] - 2007-04-03 - 12:57:52 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB Ethernet Emulation (NDIS 5 Minipor.) -- C:\Windows\system32\drivers\s116nd5.sys

O58 - SDL:[MD5.EC32601F04A5A5DE89315D0F55E73D66] - 2007-04-03 - 12:57:52 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB WMC OBEX Interface Device Driver.) -- C:\Windows\system32\drivers\s116obex.sys

O58 - SDL:[MD5.32E3ECB4B2B5887426EAF241A8149CDE] - 2007-04-03 - 12:57:54 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB Ethernet Emulation.) -- C:\Windows\system32\drivers\s116unic.sys

O58 - SDL:[MD5.1EB2AD3D5220A5543F4E00F2CE681DCD] - 2007-04-03 - 12:57:54 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s116wh.sys

O58 - SDL:[MD5.1EB2AD3D5220A5543F4E00F2CE681DCD] - 2007-04-03 - 12:57:54 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s116whnt.sys

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 2009-07-13 - 21:50:20 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys

O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 2009-07-14 - 02:19:04 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys

O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 2009-07-14 - 02:19:04 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys

O58 - SDL:[MD5.A8B89638CF5CA8C3D1D4546733BCC65C] - 2003-12-08 - 19:35:16 ---A- . (.Pas de propriétaire - Camera Driver.) -- C:\Windows\system32\drivers\sndm360.sys

O58 - SDL:[MD5.CDDDEC541BC3C96F91ECB48759673505] - 2010-09-23 - 08:12:18 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\system32\drivers\sptd.sys

O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 2009-07-14 - 02:19:04 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys

O58 - SDL:[MD5.1C768107AC5BD510686C8F0E4DA30C48] - 2005-12-21 - 11:23:26 ---A- . (.Motorola - UsbIsp.) -- C:\Windows\system32\drivers\USBICP.sys

O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 2009-07-14 - 02:19:10 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys

O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 2009-07-14 - 02:19:11 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys

O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 2009-07-13 - 22:40:41 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\ANSI.SYS

O58 - SDL:[MD5.59DCD600DBC998C4CCAEBAC1B98C7805] - 2005-04-29 - 03:08:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\AVerIO.sys

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 2009-07-13 - 22:40:44 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\country.sys

O58 - SDL:[MD5.77EBF3E9386DAA51551AF429052D88D0] - 1996-04-03 - 20:33:26 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\giveio.sys

O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 2009-07-13 - 22:40:40 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\HIMEM.SYS

O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 2009-07-13 - 22:40:43 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\KEY01.SYS

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 2009-07-13 - 22:40:43 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\KEYBOARD.SYS

O58 - SDL:[MD5.9131FE60ADFAB595C8DA53AD6A06AA31] - 2005-01-02 - 04:43:08 ---A- . (.INCA Internet Co., Ltd. - nProtect NPSC Kernel Mode Driver for NT.) -- C:\Windows\system32\npptNT2.sys

O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 2009-07-13 - 22:40:23 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS.SYS

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 2009-07-13 - 22:40:31 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS404.SYS

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 2009-07-13 - 22:40:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS411.SYS

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 2009-07-13 - 22:40:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS412.SYS

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 2009-07-13 - 22:40:27 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS804.SYS

O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 2009-07-13 - 22:40:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO.SYS

O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 2009-07-13 - 22:40:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO404.SYS

O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 2009-07-13 - 22:40:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO411.SYS

O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 2009-07-13 - 22:40:19 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO412.SYS

O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 2009-07-13 - 22:40:13 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO804.SYS

O58 - SDL:[MD5.5D6401DB90EC81B71F8E2C5C8F0FEF23] - 2006-09-24 - 14:28:46 ---A- . (.Windows ® 2000 DDK provider - SpeedFan Device Driver.) -- C:\Windows\system32\speedfan.sys

 

 

---\\ Liste des outils de nettoyage (LATC) (O63)

O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis

O63 - Logiciel: ZHPDiag 1.26 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

O63 - Logiciel: OTL - (.OldTimer.)

 

 

---\\ Liste des services Legacy (LALS) (O64)

O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD

O64 - Services: CurCS - C:\Program Files\AIDA32 - Personal system Information\aida32.sys - AIDA32Driver (AIDA32Driver) .(.Pas de propriétaire - Pas de description.) - LEGACY_AIDA32DRIVER

O64 - Services: CurCS - (.not file.) - aswFsBlk (aswFsBlk) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWFSBLK

O64 - Services: CurCS - C:\Windows\system32\drivers\aswMonFlt.sys - aswMonFlt (aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT

O64 - Services: CurCS - (.not file.) - aswRdr (aswRdr) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWRDR

O64 - Services: CurCS - (.not file.) - aswSnx (aswSnx) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWSNX

O64 - Services: CurCS - (.not file.) - avast! Self Protection (aswSP) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWSP

O64 - Services: CurCS - (.not file.) - avast! Network Shield Support (aswTdi) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWTDI

O64 - Services: CurCS - (.not file.) - Beep (Beep) .(.Pas de propriétaire - Pas de description.) - LEGACY_BEEP

O64 - Services: CurCS - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER

O64 - Services: CurCS - C:\Users\Damien\AppData\Local\Temp\catchme.sys (.not file.) - catchme (catchme) .(.Pas de propriétaire - Pas de description.) - LEGACY_CATCHME

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS

O64 - Services: CurCS - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\cng.sys - CNG (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG

O64 - Services: CurCS - C:\Users\Damien\AppData\Local\Temp\cpuz130\cpuz_x32.sys (.not file.) - cpuz130 (cpuz130) .(.Pas de propriétaire - Pas de description.) - LEGACY_CPUZ130

O64 - Services: CurCS - C:\Windows\system32\drivers\cpuz134_x32.sys - cpuz134 (cpuz134) .(.Windows ® Win 7 DDK provider - CPUID Driver.) - LEGACY_CPUZ134

O64 - Services: CurCS - C:\Program Files\MediaCoder\sysInfo.sys (.not file.) - CrystalSysInfo (CrystalSysInfo) .(.Pas de propriétaire - Pas de description.) - LEGACY_CRYSTALSYSINFO

O64 - Services: CurCS - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC

O64 - Services: CurCS - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE

O64 - Services: CurCS - C:\PROGRA~1\K!\K!TVXP~1\DSDrv4.sys (.not file.) - DSDrv4 (DSDrv4) .(.Pas de propriétaire - Pas de description.) - LEGACY_DSDRV4

O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\ENTECH.sys - ENTECH (ENTECH) .(.EnTech Taiwan - Pas de description.) - LEGACY_ENTECH

O64 - Services: CurCS - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(.Pas de propriétaire - Pas de description.) - LEGACY_FASTFAT

O64 - Services: CurCS - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO

O64 - Services: CurCS - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR

O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(.Pas de propriétaire - Pas de description.) - LEGACY_FS_REC

O64 - Services: CurCS - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL

O64 - Services: CurCS - C:\Windows\system32\drivers\hardlock.sys (.not file.) - Hardlock (Hardlock) .(.Pas de propriétaire - Pas de description.) - LEGACY_HARDLOCK

O64 - Services: CurCS - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP

O64 - Services: CurCS - C:\Users\Damien\AppData\Local\Temp\Rar$EX01.193\HWIONT.sys (.not file.) - HWIONT (HWIONT) .(.Pas de propriétaire - Pas de description.) - LEGACY_HWIONT

O64 - Services: CurCS - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY

O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD

O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecpkg.sys - KSecPkg (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG

O64 - Services: CurCS - (.not file.) - kxdcqpob (kxdcqpob) .(.Pas de propriétaire - Pas de description.) - LEGACY_KXDCQPOB

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO

O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV

O64 - Services: CurCS - C:\Windows\system32\drivers\MTiCtwl.sys - MagicTune (MagicTune) .(.Samsung Electronics, Inc. - MagicTunePremium Driver.) - LEGACY_MAGICTUNE

O64 - Services: CurCS - C:\Program Files\MagicTune Premium\MagicTuneEngine.exe - MagicTuneEngine (MagicTuneEngine) .(.Pas de propriétaire - Pas de description.) - LEGACY_MAGICTUNEENGINE

O64 - Services: CurCS - C:\Users\Damien\AppData\Local\Temp\mbr.sys (.not file.) - mbr (mbr) .(.Pas de propriétaire - Pas de description.) - LEGACY_MBR

O64 - Services: CurCS - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR

O64 - Services: CurCS - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV

O64 - Services: CurCS - C:\Windows\system32\webclnt.dll (MRxDAV) .(.Microsoft Corporation - Fichier DLL du service DAV pour le Web.) - LEGACY_MRXDAV

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20

O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSFS

O64 - Services: CurCS - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP

O64 - Services: CurCS - C:\Windows\system32\drivers\MTictwl.sys - NCPro (NCPro) .(.Samsung Electronics, Inc. - MagicTunePremium Driver.) - LEGACY_NCPRO

O64 - Services: CurCS - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDPROXY

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS

O64 - Services: CurCS - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT

O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NPFS

O64 - Services: CurCS - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY

O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NTFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(.Pas de propriétaire - Pas de description.) - LEGACY_NULL

O64 - Services: CurCS - C:\Windows\system32\Drivers\nvport.sys - NVIDIA PORT IO Control Driver (nvport) .(.NVIDIA Corporation. - Port Driver.) - LEGACY_NVPORT

O64 - Services: CurCS - C:\Windows\nvoclock.sys - NVR0Dev (NVR0Dev) .(.NVidia Corp. - NVidia System Utility Driver.) - LEGACY_NVR0DEV

O64 - Services: CurCS - C:\Windows\nvflash.sys - NVR0FLASHDev (NVR0FLASHDev) .(.NVidia Corp. - NVidia System Utility Driver.) - LEGACY_NVR0FLASHDEV

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\parvdm.sys - Parvdm (Parvdm) .(.Microsoft Corporation - Pilote parallèle VDM.) - LEGACY_PARVDM

O64 - Services: CurCS - C:\Windows\system32\drivers\pcw.sys - Performance Counters for Windows Driver (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW

O64 - Services: CurCS - C:\Windows\system32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH

O64 - Services: CurCS - C:\Program Files\Intel Corporation\Thermal Analysis Tool\ProcAPI.sys - ProcAPI (ProcAPI) .(.Intel Corporation - Intel® Processor API Support Driver.) - LEGACY_PROCAPI

O64 - Services: CurCS - (.not file.) - PROCEXP113 (PROCEXP113) .(.Pas de propriétaire - Pas de description.) - LEGACY_PROCEXP113

O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED

O64 - Services: CurCS - C:\Windows\system32\drivers\pstrip.sys - PStrip (PStrip) .(.EnTech Taiwan - PowerStrip support NT kernel-mode driver.) - LEGACY_PSTRIP

O64 - Services: CurCS - C:\Windows\system32\drivers\qwavedrv.sys (QWAVEdrv) .(.Microsoft Corporation - Pilote du support de Microsoft Quality Wind.) - LEGACY_QWAVEDRV

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP

O64 - Services: CurCS - (.not file.) - RDP Winstation Driver (RDPWD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPWD

O64 - Services: CurCS - C:\Program Files\RivaTuner v2.06\RivaTuner32.sys - RivaTuner32 (RivaTuner32) .(.Pas de propriétaire - Pas de description.) - LEGACY_RIVATUNER32

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR

O64 - Services: CurCS - (.not file.) - Security Driver (secdrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SECDRV

O64 - Services: CurCS - (.not file.) - Security Processor Loader Driver (spldr) .(.Pas de propriétaire - Pas de description.) - LEGACY_SPLDR

O64 - Services: CurCS - C:\Windows\system32\Drivers\sptd.sys - sptd (sptd) .(.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) - LEGACY_SPTD

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET

O64 - Services: CurCS - C:\Program Files\Intel Corporation\Thermal Analysis Tool\tat.sys - tat (tat) .(.Intel Corporation - Thermal Analysis Tool support driver.) - LEGACY_TAT

O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP

O64 - Services: CurCS - C:\Windows\system32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG

O64 - Services: CurCS - C:\Windows\system32\drivers\tdtcp.sys - TDTCP (TDTCP) .(.Microsoft Corporation - TCP Transport Driver.) - LEGACY_TDTCP

O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\tssecsrv.sys (tssecsrv) .(.Microsoft Corporation - TS Security Filter Driver.) - LEGACY_TSSECSRV

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\udfs.sys - udfs (udfs) .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS

O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE

O64 - Services: CurCS - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\volsnap.sys - Volumes de stockage (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP

O64 - Services: CurCS - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6

O64 - Services: CurCS - C:\Windows\system32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\wfplwf.sys - WFP Lightweight Filter (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF

O64 - Services: CurCS - C:\Program Files\IRAI\AUTOMGEN8\winio.sys - WINIO (WINIO) .(.Pas de propriétaire - Pas de description.) - LEGACY_WINIO

O64 - Services: CurCS - C:\Windows\system32\drivers\WudfPf.sys - User Mode Driver Frameworks Platform Driver (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF

 

 

---\\ Observateur d'évènement d'application (OEA) (O66)

O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O66 - EventLog: ID=1000 (Application Error) - (.Nullsoft - Winamp.) -- C:\Program Files\Winamp\winamp.exe

O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe

O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Windows Live Messenger Virus Scanner.) -- C:\Program Files\Windows Live\Messenger\msvs.exe

O66 - EventLog: ID=1000 (Application Error) - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\SumatraPDF\SumatraPDF.exe

O66 - EventLog: ID=1000 (Application Error) - (.Pas de propriétaire - Pas de description.) -- C:\Users\Damien\Documents\Downloads\Programs\Phoenix.exe

 

 

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <ComFile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <ComFile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

 

 

---\\ Start Menu Internet (SMI) (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe

 

 

---\\ Search Browser Infection (SBI) (O69)

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - Bing

O69 - SBI: SearchScopes [HKCU] {3F6A79B6-1DEC-4A5A-8FC5-B2F798F86AD6} - (Rercherche d'articles 01net.com) - 01net informatique high-tech : actu, produits, téléchargement logiciels et jeux

O69 - SBI: SearchScopes [HKCU] {7F2778B0-AC3B-4957-9EF4-462D3C17116B} - (Recherche produits informatique 01net.com) - 01net informatique high-tech : actu, produits, téléchargement logiciels et jeux

O69 - SBI: SearchScopes [HKCU] {8146BA2B-0E14-4478-BE19-DCA416B281DD} - (Recherche 01net.com) - 01net informatique high-tech : actu, produits, téléchargement logiciels et jeux

O69 - SBI: SearchScopes [HKCU] {87E9F187-E5C9-4D7D-B44D-EF0B57CF4333} - (Recherche de téléchargements 01net.com) - 01net informatique high-tech : actu, produits, téléchargement logiciels et jeux

 

 

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, GMER - Rootkit Detector and Remover

Run by Damien at 2010-09-26 17:47:57

device: opened successfully

user: MBR read successfully

called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS intelide.sys PCIIDEX.SYS atapi.sys nvlddmkm.sys dxgkrnl.sys dxgmms1.sys

USBPORT.SYS usbuhci.sys dadder.sys hidusb.sys HIDCLASS.SYS HIDPARSE.SYS mouhid.sys mouclass.sys usbhub.sys partmgr.sys volmgr.sys fvevol.sys

volsnap.sys Ntfs.sys

kernel: MBR read successfully

user & kernel MBR OK

 

 

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

MBRCheck, version 1.2.3 by ad13, http://ad13.geekstog

Run by Damien at 2010-09-26 17:47:59

Dump file Name : C:\Program Files\ZHPDiag\MBRDump_09-26-10_17-47-59_PhysicalDrive0.bin

 

 

---\\ Internet Feature Controls (IFC) (O81)

O81 - IFC: Internet Feature Controls [HKUS\.DEFAULT] [FEATURE_BROWSER_EMULATION] -- svchost.exe

O81 - IFC: Internet Feature Controls [HKUS\S-1-5-18] [FEATURE_BROWSER_EMULATION] -- svchost.exe

 

 

---\\ Recherche des services démarrés par Svchost (SSS) (O83)

O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464]

O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [67584]

O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [67584]

O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168448]

O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [591360]

O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [667136]

O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [473088]

O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [90624]

O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [285184]

O83 - Search Svchost Services: ntceoron (ntceoron) . (.Pas de propriétaire - Pas de description.) -- c:\windows\system32\dloed1e.dll [0]

O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264]

O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\system32\sens.dll [49664]

O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [300544]

O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows.) -- C:\Windows\System32\tapisrv.dll [241664]

O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll [543232]

O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\system32\wuaueng.dll [1912832]

O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\system32\qmgr.dll [589312]

O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192]

O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [497152]

O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [21504]

O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [46592]

O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [114688]

O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\system32\mmcss.dll [49664]

O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440]

O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304]

O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [162816]

O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [743424]

O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [71168]

O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\system32\sessenv.dll [99328]

O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [168960]

O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102400]

O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [37376]

O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800]

 

 

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SS - | Disabled 2010-01-08 380928 | Application Updater (Application Updater) . (.Spigot, Inc..) - C:\Program Files\Application Updater\ApplicationUpdater.exe

SS - | Auto 2010-01-08 0 | avast! iAVS4 Control Service (aswUpdSv) . (.Pas de propriétaire.) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

SS - | Demand 2010-05-16 85096 | Autodesk Licensing Service (Autodesk Licensing Service) . (.Autodesk.) - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe

SR - | Auto 2010-09-07 40384 | avast! Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

SR - | Demand 2010-09-07 40384 | avast! Mail Scanner (avast! Mail Scanner) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

SR - | Demand 2010-09-07 40384 | avast! Web Scanner (avast! Web Scanner) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

SS - | Disabled 2009-04-08 344064 | AVerRemote (AVerRemote) . (.AVerMedia.) - C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe

SS - | Disabled 2008-12-10 405504 | AVerScheduleService (AVerScheduleService) . (.Pas de propriétaire.) - C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe

SS - | Demand 2010-06-13 651720 | FLEXnet Licensing Service (FLEXnet Licensing Service) . (.Macrovision Europe Ltd..) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

SS - | Demand 2005-11-14 69632 | InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe

SS - | Demand 2005-11-14 0 | Service de l’iPod (iPod Service) . (.Pas de propriétaire.) - C:\Program Files\iPod\bin\iPodService.exe

SS - | Disabled 2007-08-23 45056 | MagicTuneEngine (MagicTuneEngine) . (.Pas de propriétaire.) - C:\Program Files\MagicTune Premium\MagicTuneEngine.exe

SS - | Demand 2007-08-23 0 | MEMSWEEP2 (MEMSWEEP2) . (.Pas de propriétaire.) - C:\Windows\system32\A505.tmp

SS - | Disabled 2006-12-14 45056 | MSCSPTISRV (MSCSPTISRV) . (.Sony Corporation.) - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe

SS - | Demand 2009-06-17 3173804 | nProtect GameGuard Service (npggsvc) . (.INCA Internet Co., Ltd..) - C:\Windows\system32\GameMon.des

SR - | Auto 2008-08-18 155648 | Performance Service (nTuneService) . (.NVIDIA.) - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe

SR - | Auto 2010-06-07 129640 | NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe

SR - | Auto 2009-04-30 90112 | Sony Ericsson OMSI download service (OMSI download service) . (.Pas de propriétaire.) - C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe

SS - | Disabled 2006-12-14 57344 | PACSPTISVR (PACSPTISVR) . (.Pas de propriétaire.) - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe

SR - | Auto 2009-03-01 75064 | PnkBstrA (PnkBstrA) . (.Pas de propriétaire.) - C:\Windows\system32\PnkBstrA.exe

SS - | Disabled 2007-02-05 112184 | SonicStage Back-End Service (SonicStage Back-End Service) . (.Sony Corporation.) - C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe

SS - | Demand 2006-12-14 69632 | Sony SPTI Service (SPTISRV) . (.Sony Corporation.) - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe

SS - | Demand 2007-02-05 75320 | SonicStage SCSI Service (SSScsiSV) . (.Sony Corporation.) - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe

SS - | Demand 2009-07-16 316664 | Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files\Common Files\Steam\SteamService.exe

SR - | Auto 2010-06-07 240232 | NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

SS - | Demand 2009-11-13 92008 | TomTomHOMEService (TomTomHOMEService) . (.TomTom.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

SS - | Demand 2008-09-25 306432 | TuneUp Drive Defrag Service (TuneUp.Defrag) . (.TuneUp Software GmbH.) - C:\Windows\System32\TuneUpDefragService.exe

SR - | Auto 2008-08-01 114688 | Update Center Service (UpdateCenterService) . (.NVIDIA.) - C:\Program Files\NVIDIA Corporation\System Update\UpdateCenterService.exe

 

 

---\\ Infection BT - BHO/Toolbar (Possible)

O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE}

O42 - Logiciel: Search Settings v1.2.3 - (.Spigot, Inc..) [HKLM] -- {5F05C28D-DEA9-4AD6-A73A-064175988EAB}

[HKCU\Software\AppDataLow\AskBarDis]

[HKCU\Software\Ask.com]

[HKLM\Software\Search Settings]

 

 

 

End of the scan (1750 lines in 00mn 56s)(0)

 

 

 

 

 

 

 

 

Modifié le 26 septembre 2010 par brta77

[nardino]

Bonsoir,

Tu as bien tapé combofix /uninstall ?

Eventuellement renomme el fichier avec son, vrai nom

@+

Modifié le 26 septembre 2010 par nardino

[brta77]

En le renommant Combofix.exe quand je tape combofix /uninstall sa me trouve plus rien.