Fenetre intempestives Internet Explorer

Laurenn · le 25 janvier 2011

Bonjour!!

j'ai un gros problème!! J'utilise Google chrome maintenant, mais depuis un certain temps j'ai des fenêtres Internet explorer qui n’arrêtent pas de s'ouvrir! Faut dire que c'est pas tellement pratique en plein film!!

Quelle est la solution pour que tout s’arrête?

Merci d'avance!!

Blue2 · le 25 janvier 2011

Produisez un diagnostique complet du PC.

• Téléchargez sur votre bureau > ZHPDiag < (de Coolman).

• Laisser la connexion Internet ouverte..,

Avec XP :

• Lancer ZHPDiag.exe par un double-clique

Avec Vista/Win7 :

• Lancer ZHPDiag.exe par un clic-droit → Exécuter en tant qu'Adm..

.. Le rapport ZHPDiag.txt va s'ouvrir, ..après un certain délai.

.. Une copie sera aussi disponible dans le répertoire d’installation "par défaut" C:\Program File\ZHPDiag\..

► Postez ce rapport.

Modifié le 25 janvier 2011 par Blue2

thorgal · le 25 janvier 2011

Bonjour Laurenn et bienvenue sur le forum, Salutation à toi Blue2,

Tu devrais faire un tour dans la rubrique sécurité si tu connais une infection. Cela me paraît être la plus sage des consignes à te donner.

Laurenn · le 5 février 2011

Voici le rapport:

Rapport de ZHPDiag v1.27.1520 par Nicolas Coolman, Update du 28/01/2011

Run by Utilitaire at 05/02/2011 15:13:06

Web site : ZHPDiag Outil de diagnostic

Contact : nicolascoolman@yahoo.fr

---\\ Web Browser

MSIE: Internet Explorer v8.0.6001.18702 (Defaut)

GCIE: Google Chrome v8.0.552.237

---\\ System Information

Windows XP Home Edition Service Pack 3 (Build 2600)

Processor: x86 Family 6 Model 28 Stepping 2, GenuineIntel

Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 1015 MB (21% free)

System Restore: Activé (Enable)

System drive C: has 22 GB (30%) free of 72 GB

---\\ Logged in mode

Computer Name: YOUR-U66B30FHLA

User Name: Utilitaire

All Users Names: Utilitaire, SUPPORT_388945a0, HelpAssistant, Administrateur,

Unselected Option: O45,O61,O62,O65,O82

Logged in as Administrator

---\\ Environnement Variables

%AppData%=%USERPROFILE%\Application Data

%LocalAppData%=%USERPROFILE%\Local Settings\Application Data

%StartMenu%=%USERPROFILE%\Menu Démarrer

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 22 Go of 72 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 72 Go of 72 Go)

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: Modified

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

---\\ Recherche particulière de fichiers génériques

[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 13:00:00.) -- C:\Windows\Explorer.exe [1037824]

[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 13:00:00.) -- C:\Windows\System32\Winlogon.exe [512000]

[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 10:40:32.) -- C:\Windows\System32\drivers\atapi.sys [96512]

[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.14/04/2008 13:00:00.) -- C:\Windows\System32\drivers\ntfs.sys [574976]

---\\ Processus lancés

[MD5.0BDD72BA9009EF4914CDEA08107A8262] - (.ALWIL Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384]

[MD5.4F0BED169FAB31EA094A649B0473B5C6] - (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe [135168]

[MD5.8B0DE4B972DB725FB9D591E69CD236FB] - (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe [159744]

[MD5.5AEE71F957654D73E0798BBC295DC5A8] - (.ASUSTeK Computer Inc. - Asus Eee PC ACPI Service.) -- C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe [630784]

[MD5.9474B0F93F8C62A9D4981A4482846402] - (.ASUSTeK Computer Inc. - AsEPCMon.) -- C:\Program Files\EeePC\ACPI\AsEPCMon.exe [98304]

[MD5.29C8FD8DE192B3A52E7CB7DCECE552AF] - (.ASUSTeK Computer Inc. - Eee PC Tray Utility.) -- C:\Program Files\EeePC\ACPI\AsTray.exe [118784]

[MD5.6E0B205042FC3AF5DE84F90F875AFFDA] - (.Intel Corporation - igfxsrvc Module.) -- C:\WINDOWS\system32\igfxsrvc.exe [249856]

[MD5.BB1F9614D427716D0D9E9FEFC34CC9A4] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1434920]

[MD5.5ECD3C3B70B6B50F284DBAF6016B2DDF] - (.EoRezo - SoftwareHelper.) -- C:\Documents and Settings\Utilitaire\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe [368224]

[MD5.5E4C9C25D603AE46DEDCBD9674F86E21] - (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe [149280]

[MD5.33D3A0E487064D4B333452015506F054] - (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.EXE [17881088]

[MD5.4168B08FA453C8B9314CDDA3824F6311] - (.ALWIL Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2769336]

[MD5.3726751A8C2C57D1013F3C8D7AAE726C] - (.Intel Corporation - igfxext Module.) -- C:\WINDOWS\system32\igfxext.exe [163840]

[MD5.010B0375D16D6194B03B97AFDFC2856D] - (.EoRezo - EoRezo.) -- C:\Program Files\EoRezo\eorezo.exe [667648]

[MD5.4F6915F7DD7DF11E434F5EBF516B7738] - (.FaceMoi - www.facemoi.com.) -- C:\Facemoi\facemoi.exe [176128]

[MD5.CB71DFA64E99B01752E71E13827AC4AB] - (.MusicLab, LLC - Data Manager.) -- C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\DATAMN~1.EXE [983480]

[MD5.677FE7FE101460A2ACF62CEB400245ED] - (.Pinball Corporation. - ClickPotato Search assistant.) -- C:\Program Files\ClickPotatoLite\bin\10.0.646.0\ClickPotatoLiteSA.exe [741680]

[MD5.A58E05767687E1E636D160ECEA9BC8ED] - (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1226608]

[MD5.57D8C4ED26DFD7EF0E2CB196FB8BFB54] - (.DivX, LLC - DivX Download Manager Service.) -- C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe [63360]

[MD5.0CD07121C7AF4A70143C92F9846BBCA2] - (.Pas de propriétaire - Eee Docking Application.) -- C:\Program Files\ASUS\Eee Docking\Eee Docking.exe [395776]

[MD5.EF1ECB9DF42AF6BF7514BB5EBC5C59EC] - (.Google Inc. - Picasa.) -- C:\Program Files\Picasa2\PicasaMediaDetector.exe [443968]

[MD5.000E5D189227DE9655E6C6EFB9C3A3F8] - (.ASUSTeK Computer Inc. - Eee Super Hybrid Engine.) -- C:\Program Files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe [376832]

[MD5.32C26797AB646074A2BB562F9D10ADB5] - (.Microsoft Corporation - Microsoft Office OneNote Quick Launcher.) -- C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE [97680]

[MD5.6163664C7E9CD110AF70180C126C3FDC] - (.Microsoft Corporation - BCM SQL Startup Service.) -- C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [30312]

[MD5.09417134F248DFCEEA15C72BCC87F592] - (.Sun Microsystems, Inc. - Java Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]

[MD5.BE72F68C3E898C6C7DD61AFDF28769DD] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Motorola\MotoConnectService\MotoConnectService.exe [91456]

[MD5.D2F4F32B59440011174B4F8137AF4E0C] - (.Microsoft Corporation - SQL Server VSS Writer.) -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [87904]

[MD5.6326EE5DAC329BEF00D838A8995B62C8] - (.Motorola - Motorola Phone Service Application.) -- C:\Program Files\Motorola\MotoConnectService\MotoConnect.exe [279360]

[MD5.357A7D530F0EF82F836BA0B9F0D56A7F] - (.Sun Microsystems, Inc. - Java Update Checker.) -- C:\Program Files\Java\jre6\bin\jucheck.exe [386872]

[MD5.C09116C3F2F168DAB019C047AFDD5285] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [14944136]

[MD5.2CE8F1C52F490875592166316C512B6F] - (.Skype Technologies - Skype Extras Manager.) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe [80256]

[MD5.4BFE28145799174386393B1E09764ED4] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [991800]

[MD5.474C4819EEC595978D183C807FB58334] - (.Pas de propriétaire - Pas de description.) -- C:\Documents and Settings\Utilitaire\Mes documents\Downloads\ZHPDiag_silent.exe [704238]

[MD5.7558283B371F9E5078F6EA48110C39F8] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [623616]

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2)

P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX, LLC - DivX Web Player version 2.1.0.900.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

P2 - FPN: [HKLM] [@divx.com/DivX OVS Helper,version=1.0.0] - (.DivX, LLC. - DivX OVS Helper Plug-in.) -- C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

P2 - FPN: [HKLM] [@google.com/npPicasa2,version=2.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Picasa2\npPicasa2.dll

P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Picasa2\npPicasa3.dll

P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.51204.0.) -- C:\Program Files\Microsoft Silverlight\4.0.51204.0\npctrl.dll

P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Microsoft Corp. - Office Live Update v1.3.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll

P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll

P2 - FPN: [HKCU] [@facebook.com/FBPlugin,version=1.0.3] - (.Pas de propriétaire - Pas de description.) -- C:\Documents and Settings\Utilitaire\Application Data\Facebook\npfbplugin_1_0_3.dll (.not file.)

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

G1 - GCS: Preference [user Data\Default] None

G0 - GCSP: Preference [user Data\Default][HomePage] Google

G2 - GCE: Preference [user Data\Default] [dbknnmebcajacipdbplichlbfjbjamlf] Facemoi v.2.3.0 (Activé)

G2 - GCE: Preference [user Data\Default] [fnjbmmemklcjgepojigaapkoodmkgbae] DivX HiQ v.2.1.0.900 (Activé)

G2 - GCE: Preference [user Data\Default] [nneajnkjbffgblleaoojgaacokifdkhm] \u003Cvideo\u003E HTML5 DivX Plus Web Player v.2.1.0.900 (Activé)

---\\ Internet Explorer, Démarrage,Recherche,URSearchHook (R0,R1,R3)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Moteur de recherche : Web, Photos, Videos, Voyages, Encyclopédie

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Google

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Google Toolbar

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Google Toolbar

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18992 (longhorn_ie8_gdr.101015-1700)) -- C:\WINDOWS\system32\ieframe.dll

R3 - URLSearchHook: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.3.0) -- C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} . (.Pas de propriétaire - MediaBar Link Library.) -- C:\PROGRA~1\BEARSH~1\MediaBar\ToolBar\BearshareMediabarDx.dll

O2 - BHO: ShopperReports - {100EB1FD-D03E-47fd-81F3-EE91287F9465} . (.SmartShopper Inc. - ShopperReports.) -- C:\Program Files\ShopperReports3\bin\3.0.517.0\ShopperReports.dll

O2 - BHO: ShoppingReport2 - {258C9770-1713-4021-8D7E-1F184A2BD754} . (.SmartShopper Networks - Pas de description.) -- C:\Program Files\ShoppingReport2\Bin\2.7.27\ShoppingReport.dll

O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\ConduitEngine\ConduitEngin0.dll

O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} . (.DivX, LLC - DivX Web Player version 2.1.0.900.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} . (.DivX, LLC - DivX Web Player version 2.1.0.900.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

O2 - BHO: Messenger Plus Live France - {59994074-c06d-4a75-9768-49e5a8c21264} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: UrlHelper Class - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} . (.MusicLab, LLC - IEHelper.) -- C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll

O2 - BHO: BrowserHelper Class - {8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6} . (.Make The Web Better, LLC - Pas de description.) -- C:\Program Files\SGPSA\SearchAssistant.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll

O2 - BHO: EOBHO - {C10DC1F4-CCDF-4224-A24D-B23AFC3573C8} . (.EoRezo - ....) -- C:\Program Files\EoRezo\EoRezoBHO.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O2 - BHO: (no name) - {F0626A63-410B-45E2-99A1-3F2475B2D695} Clé orpheline

O2 - BHO: XBTBPos00 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} . (.Pas de propriétaire - IE Toolbar Engine.) -- C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: IE Toolbar - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} . (.Pas de propriétaire - IE Toolbar Engine.) -- C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll

O3 - Toolbar: Messenger Plus Live France Toolbar - {59994074-c06d-4a75-9768-49e5a8c21264} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Messenger_Plus_Live_France\tbMes1.dll

O3 - Toolbar: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} . (.Pas de propriétaire - MediaBar Link Library.) -- C:\PROGRA~1\BEARSH~1\MediaBar\ToolBar\BearshareMediabarDx.dll

O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\ConduitEngine\ConduitEngin0.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll

---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [igfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe

O4 - HKLM\..\Run: [AsusACPIServer] . (.ASUSTeK Computer Inc. - Asus Eee PC ACPI Service.) -- C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe

O4 - HKLM\..\Run: [AsusEPCMonitor] . (.ASUSTeK Computer Inc. - AsEPCMon.) -- C:\Program Files\EeePC\ACPI\AsEPCMon.exe

O4 - HKLM\..\Run: [AsusTray] . (.ASUSTeK Computer Inc. - Eee PC Tray Utility.) -- C:\Program Files\EeePC\ACPI\AsTray.exe

O4 - HKLM\..\Run: [synTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [synAsusAcpi] . (.Synaptics Incorporated - Asus Custom Acpi Monitor Application.) -- C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe

O4 - HKLM\..\Run: [softwareHelper] . (.EoRezo - SoftwareHelper.) -- C:\Documents and Settings\Utilitaire\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe

O4 - HKLM\..\Run: [EoDesk3d] Clé orpheline

O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe

O4 - HKLM\..\Run: [FBSearch] . (.Pas de propriétaire - Fast Browser Search Protection.) -- C:\Program Files\Search Guard Plus\SearchGuardPlus.exe

O4 - HKLM\..\Run: [RTHDCPL] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\Windows\RTHDCPL.exe

O4 - HKLM\..\Run: [avast5] . (.ALWIL Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe

O4 - HKLM\..\Run: [eorezo] . (.EoRezo - EoRezo.) -- C:\Program Files\EoRezo\eorezo.exe

O4 - HKLM\..\Run: [EEESplendidAR] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\ASUS\EPC\EeeSplendid\AutoRun.exe

O4 - HKLM\..\Run: [Facemoi] . (.FaceMoi - www.facemoi.com.) -- c:\Facemoi\facemoi.exe

O4 - HKLM\..\Run: [cspep.exe] . (.Pas de propriétaire - cspep.) -- C:\Program Files\cspep\cspep.exe

O4 - HKLM\..\Run: [DATAMNGR] . (.MusicLab, LLC - Data Manager.) -- C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\DATAMN~1.exe

O4 - HKLM\..\Run: [ClickPotatoLiteSA] . (.Pinball Corporation. - ClickPotato Search assistant.) -- C:\Program Files\ClickPotatoLite\bin\10.0.646.0\ClickPotatoLiteSA.exe

O4 - HKLM\..\Run: [DivXUpdate] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe

O4 - HKLM\..\Run: [DivX Download Manager] . (.DivX, LLC - DivX Download Manager Service.) -- C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe

O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [Eee Docking] . (.Pas de propriétaire - Eee Docking Application.) -- C:\Program Files\ASUS\Eee Docking\Eee Docking.exe

O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O4 - HKCU\..\Run: [Picasa Media Detector] . (.Google Inc. - Picasa.) -- C:\Program Files\Picasa2\PicasaMediaDetector.exe

O4 - HKCU\..\Run: [PersSecurity] C:\Program Files\PersSecurity\psecurity.exe (.not file.)

O4 - HKCU\..\Run: [Facemoi] . (.FaceMoi - www.facemoi.com.) -- C:\Facemoi\facemoi.exe

O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

O4 - HKUS\S-1-5-21-3560152835-2262235841-4004563780-1006\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe

O4 - HKUS\S-1-5-21-3560152835-2262235841-4004563780-1006\..\Run: [Eee Docking] . (.Pas de propriétaire - Eee Docking Application.) -- C:\Program Files\ASUS\Eee Docking\Eee Docking.exe

O4 - HKUS\S-1-5-21-3560152835-2262235841-4004563780-1006\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O4 - HKUS\S-1-5-21-3560152835-2262235841-4004563780-1006\..\Run: [Picasa Media Detector] . (.Google Inc. - Picasa.) -- C:\Program Files\Picasa2\PicasaMediaDetector.exe

O4 - HKUS\S-1-5-21-3560152835-2262235841-4004563780-1006\..\Run: [PersSecurity] C:\Program Files\PersSecurity\psecurity.exe (.not file.)

O4 - HKUS\S-1-5-21-3560152835-2262235841-4004563780-1006\..\Run: [Facemoi] . (.FaceMoi - www.facemoi.com.) -- C:\Facemoi\facemoi.exe

O4 - HKUS\S-1-5-21-3560152835-2262235841-4004563780-1006\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\ SuperHybridEngine.lnk . (.ASUSTeK Computer Inc..) -- C:\Program Files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe

O4 - Global Startup: C:\Documents And Settings\Utilitaire\Menu Démarrer\Programmes\Démarrage\OneNote 2007 - Capture d'écran et lancement.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 8.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A81000000003}\SC_Reader.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\AppleSoftwareUpdateIco.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation.) -- C:\Program Files\Microsoft Works\MSWorks.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Visionneuse Microsoft Office PowerPoint 2007.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{95120000-00AF-040C-0000-0000000FF1CE}\ppvwicon.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe

O4 - Global Startup: C:\Documents And Settings\Utilitaire\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe

O4 - Global Startup: C:\Documents And Settings\Utilitaire\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Documents And Settings\Utilitaire\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe

O4 - Global Startup: C:\Documents And Settings\Utilitaire\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\WINDOWS\system32\GPhotos.scr

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~3\Office12\EXCEL.exe

O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - (.not file.) - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: Envoyer à Bluetooth - (.not file.) - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico

O9 - Extra button: Skype Plug-In - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO

O9 - Extra button: Skype Plug-In - {B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} . (.Pinball Corporation - ClickPotato.) -- C:\Program Files\ClickPotatoLite\bin\10.0.646.0\ClickPotatoLiteSABHO.dll

O9 - Extra button: Skype Plug-In - {C5428486-50A0-4a02-9D20-520B59A9F9B2} . (.SmartShopper Inc. - ShopperReports.) -- C:\Program Files\ShopperReports3\bin\3.0.517.0\ShopperReports.dll

O9 - Extra button: Skype Plug-In - {C5428486-50A0-4a02-9D20-520B59A9F9B3} . (.SmartShopper Inc. - ShopperReports.) -- C:\Program Files\ShopperReports3\bin\3.0.517.0\ShopperReports.dll

O9 - Extra button: Skype Plug-In - {DB38E21A-0133-419d-92AD-ECDFD5244D6D} . (.SmartShopper Networks - Pas de description.) -- C:\Program Files\ShoppingReport2\Bin\2.7.27\ShoppingReport.dll

O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.SmartShopper Networks - Pas de description.) -- C:\Program Files\ShoppingReport2\Bin\2.7.27\ShoppingReport.dll

O9 - Extra button: @xpsp3res.dll,-20001 - {EB620C54-E229-4942-87CE-E717109FC8C6} . (.SmartShopper Networks - Pas de description.) -- C:\Program Files\ShoppingReport2\Bin\2.7.27\ShoppingReport.dll

O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} (CamfrogWEB Advanced Unicode Control) - http://activex.camfrogweb.com/advanced/2.0.2.20/cfweb_activex.camfrogweb.com-advanced-2.0.2.20_instmodule.exe

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{7C9CE49F-7244-483B-B4C7-90EC1C0655C8}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{7C9CE49F-7244-483B-B4C7-90EC1C0655C8}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{7C9CE49F-7244-483B-B4C7-90EC1C0655C8}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Protocole additionnel et piratage de protocole (O18)

O18 - Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll

O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll

O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll

O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll

O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll

O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll

O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll

O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll

O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll

O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll

O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - AppInit_DLLs: . (.MusicLab, LLC - Data Manager.) - C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\datamngr.dll

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll

O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll

O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)

O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: (avast! Antivirus) . (.ALWIL Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: (BarDiscover Service) . (.Pas de propriétaire - Pas de description.) - C:\Documents and Settings\All Users\Application Data\BarDiscover\bardiscover141.exe

O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: (MotoConnect Service) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\Motorola\MotoConnectService\MotoConnectService.exe

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Norton Security Scan for Utilitaire.job

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys

O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys

O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys

O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys

O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys

O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys

O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys

O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys

O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys

O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys

O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys

O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys

O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys

O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys

O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys

---\\ Logiciels installés (O42)

O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {60FFB3E0-6D5B-4D73-AE5B-07E58B83AF0C}

O42 - Logiciel: ASUSUpdate for Eee PC - (.Pas de propriétaire.) [HKLM] -- {587178E7-B1DF-494E-9838-FA4DD36E873C}

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems, Inc..) [HKLM] -- {0DFB3DE8-65B9-44FF-AA0A-3BECC5A2BFD1}

O42 - Logiciel: Adobe Reader 8.1.0 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A81000000003}

O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {553255F3-78FD-40F1-A6F8-6882140265FE}

O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}

O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}

O42 - Logiciel: Asus ACPI Driver - (.AsusTek Computer.) [HKLM] -- {19F5658D-92E8-4A08-8657-D38ABB1574B2}

O42 - Logiciel: Atheros Client Installation Program - (.Atheros.) [HKLM] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}

O42 - Logiciel: Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}

O42 - Logiciel: Azurewave Wireless LAN Card - (.Azurewave.) [HKLM] -- {8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}

O42 - Logiciel: BarDiscover 1.0 build 141 - (.Pas de propriétaire.) [HKLM] -- BarDiscover

O42 - Logiciel: Business Contact Manager for Outlook 2007 SP2 - (.Microsoft Corporation.) [HKLM] -- Business Contact Manager

O42 - Logiciel: Business Contact Manager for Outlook 2007 SP2 - (.Microsoft Corporation.) [HKLM] -- {B32C4059-6E7A-41EF-AD20-56DF1872B923}

O42 - Logiciel: CamfrogWEB Advanced ActiveX Plugin (remove only) - (.Pas de propriétaire.) [HKLM] -- CFWebAdvancedU

O42 - Logiciel: ClickPotato - (.Pinball Corporation..) [HKLM] -- ClickPotatoLiteSA

O42 - Logiciel: Conduit Engine - (.Conduit Ltd..) [HKLM] -- conduitEngine

O42 - Logiciel: Configuration DivX - (.DivX, LLC.) [HKLM] -- DivX Setup.divx.com

O42 - Logiciel: Data Sync - (.ASUS.) [HKLM] -- {B9BDA46B-2E17-4F43-9D7A-9B1E09A0A4D8}

O42 - Logiciel: Eee Docking 1.3.1.0 - (.ASUSTEK.) [HKLM] -- Eee Docking_is1

O42 - Logiciel: EeePC_1005HA Screen Saver - (.Pas de propriétaire.) [HKLM] -- EeePC_1005HA

O42 - Logiciel: EeeSplendid - (.ASUS.) [HKLM] -- {6333FC29-BFE5-4024-AC78-958A1A7555D1}

O42 - Logiciel: EoRezo 12.0 - (.EoRezo.) [HKLM] -- EoRezo_is1

O42 - Logiciel: Fissa - (.Secure Digital Services.) [HKLM] -- Fissa

O42 - Logiciel: FontResizer - (.ASUSTek.) [HKLM] -- {47BACF74-5A07-48BD-BADB-A769550F0F5A}

O42 - Logiciel: GDR 4053 for SQL Server Database Services 2005 ENU (KB970892) - (.Microsoft Corporation.) [HKLM] -- KB970892_SQL9

O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}

O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

O42 - Logiciel: HP Photosmart C4700 All-in-One Driver 14.0 Rel. 6 - (.HP.) [HKLM] -- {68550918-63B5-4762-85CB-3C160AA4B213}

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484

O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399

O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5

O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8}

O42 - Logiciel: Intel® Graphics Media Accelerator Driver - (.Pas de propriétaire.) [HKLM] -- HDMI

O42 - Logiciel: Java 6 Update 16 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216016FF}

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619}

O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player

O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.) [HKLM] -- MAGIX Screenshare UK

O42 - Logiciel: MAGIX Speed burnR - (.MAGIX AG.) [HKLM] -- MAGIX Speed burnR UK

O42 - Logiciel: MAGIX Video easy Download version 1.0.2.2 (UK) - (.MAGIX AG.) [HKLM] -- MAGIX Video easy Download version UK

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: MSXML 6.0 Parser - (.Microsoft Corporation.) [HKLM] -- {A43BF6A5-D5F0-4AAA-BF41-65995063EC44}

O42 - Logiciel: MediaBar - (.Musiclab, LLC.) [HKLM] -- BearShare MediaBar

O42 - Logiciel: Messenger Plus! Live - (.Yuna Software.) [HKLM] -- Messenger Plus! Live

O42 - Logiciel: Messenger_Plus_Live_France Toolbar - (.Pas de propriétaire.) [HKLM] -- Messenger_Plus_Live_France Toolbar

O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}

O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)

O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447

O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906

O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}

O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}

O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}

O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1

O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs

O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 - (.Microsoft Corporation.) [HKLM] -- Wdf01007

O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping

O42 - Logiciel: Microsoft Office 2003 Web Components - (.Microsoft Corporation.) [HKLM] -- {90A40409-6000-11D3-8CFE-0150048383C9}

O42 - Logiciel: Microsoft Office 2007 Primary Interop Assemblies - (.Microsoft Corporation.) [HKLM] -- {50120000-1105-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-0409-0000-0000000FF1CE}_PROR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0115-0409-0000-0000000FF1CE}_PROR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0117-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

O42 - Logiciel: Microsoft Office Access MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Access Setup Metadata MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0117-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Excel MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.) [HKLM] -- {57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}

O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM] -- {95120000-00AF-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Professional 2007 - (.Microsoft Corporation.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Professional 2007 Trial - (.Microsoft Corporation.) [HKLM] -- PROR

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{14809F99-C601-4D4A-9391-F1E8FAA964C5}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}

O42 - Logiciel: Microsoft Office Publisher MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared Setup Metadata MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0115-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Small Business Connectivity Components - (.Microsoft Corporation.) [HKLM] -- {A939D341-5A04-4E0A-BB55-3E65B386432D}

O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM] -- {E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}

O42 - Logiciel: Microsoft Office Word MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft SQL Server 2005 - (.Microsoft Corporation.) [HKLM] -- Microsoft SQL Server 2005

O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

O42 - Logiciel: Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) - (.Microsoft Corporation.) [HKLM] -- {2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}

O42 - Logiciel: Microsoft SQL Server Native Client - (.Microsoft Corporation.) [HKLM] -- {BD68F46D-8A82-4664-8E68-F87C55BDEFD4}

O42 - Logiciel: Microsoft SQL Server Setup Support Files (English) - (.Microsoft Corporation.) [HKLM] -- {53F5C3EE-05ED-4830-994B-50B2F0D50FCE}

O42 - Logiciel: Microsoft SQL Server VSS Writer - (.Microsoft Corporation.) [HKLM] -- {56B4002F-671C-49F4-984C-C760FE3806B5}

O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}

O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}

O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {3B160861-7250-451E-B5EE-8B92BF30A710}

O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE}

O42 - Logiciel: MotoConnect - (.Motorola.) [HKLM] -- {DDC5B3E0-C656-4070-9CF0-E592EC60AD42}

O42 - Logiciel: Norton Security Scan - (.Symantec Corporation.) [HKLM] -- NSS

O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}

O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3

O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{5C497F0B-2061-4CC9-A61C-6B45B867354D}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5C497F0B-2061-4CC9-A61C-6B45B867354D}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{CD769337-C8AC-46DB-A7DC-643E50089263}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CD769337-C8AC-46DB-A7DC-643E50089263}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2289158) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{210B16C0-CEBD-4DE9-B474-04A7E8735E16}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2289158) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{210B16C0-CEBD-4DE9-B474-04A7E8735E16}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2344875) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{6FC5C4C1-D7AE-44C3-94B7-6424FC3E752F}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2344875) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FC5C4C1-D7AE-44C3-94B7-6424FC3E752F}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{536FB502-775F-4494-BACE-C02CC90B7A5B}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{536FB502-775F-4494-BACE-C02CC90B7A5B}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{7F207DCA-3399-40CB-A968-6E5991B1421A}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7F207DCA-3399-40CB-A968-6E5991B1421A}

O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5}

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{5A4E43D5-858F-49BD-BA72-8F30E1793060}

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2345035) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{B23002DD-34EC-4988-B810-A5E2A0BF04F1}

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2345035) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{B23002DD-34EC-4988-B810-A5E2A0BF04F1}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer (KB2413381) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{3DED0A62-44C8-4E00-A785-5212F297A9D9}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer (KB2413381) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3DED0A62-44C8-4E00-A785-5212F297A9D9}

O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{3A4CDE54-2403-483D-8D9A-15E3264410DF}

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{3D019598-7B59-447A-80AE-815B703B84FF}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}

O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}

O42 - Logiciel: ShopperReports - (.ShopperReports.) [HKLM] -- ShoppingReport2

O42 - Logiciel: ShopperReports - (.SmartShopper.) [HKLM] -- ShopperReportsSA

O42 - Logiciel: Skype Toolbars - (.Skype Technologies S.A..) [HKLM] -- {CD95D125-2992-4858-B3EF-5F6FB52FBAD6}

O42 - Logiciel: Skype™ 5.0 - (.Skype Technologies S.A..) [HKLM] -- {E633D396-5188-4E9D-8F6B-BFB8BF3467E8}

O42 - Logiciel: SoftwareUpdate 1.0 - (.eoRezo.) [HKLM] -- SoftwareUpdate_is1

O42 - Logiciel: Super Hybrid Engine - (.ASUS.) [HKLM] -- {88F08F98-12BC-4613-81A2-8F9B88CFC73E}

O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey

O42 - Logiciel: USB2.0 UVC Camera Device - (.UVCPCC.) [HKLM] -- {3FB39BED-37C8-4E60-8E02-315B8C2B07E3}

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707

O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{329050A9-EF80-40F9-B633-74508F54C1FF}

O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2412171) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{752A0B7C-BD24-4362-AC86-AB63FEE6F46F}

O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2483110) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{592B47F5-D305-431A-9781-ED6CBB44FA8B}

O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM] -- {5EE7D259-D137-4438-9A5F-42F432EC0421}

O42 - Logiciel: VLC media player 1.1.5 - (.VideoLAN.) [HKLM] -- VLC media player

O42 - Logiciel: Version d'évaluation de Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- HOMESTUDENTR

O42 - Logiciel: Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray - (.Microsoft Corporation.) [HKLM] -- KB952011

O42 - Logiciel: Windows Internet Explorer 7 - (.Microsoft Corporation.) [HKLM] -- ie7

O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8

O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504}

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}

O42 - Logiciel: Windows Live Contrôle parental - (.Microsoft Corporation.) [HKLM] -- {9FF9FDF7-F84A-4F99-B4BB-066B6F95F33D}

O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {76810709-A7D3-468D-9167-A1780C1E766C}

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818}

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}

O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM] -- {9D6524E6-15CF-4852-BF70-04FE973A3DE1}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA}

O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11

O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime

O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11

O42 - Logiciel: avast! Free Antivirus - (.Alwil Software.) [HKLM] -- avast5

O42 - Logiciel: cspep.0 - (.cspep.) [HKLM] -- cspep_is1

---\\ HKCU & HKLM Software Keys

[HKCU\Software\ALWIL Software]

[HKCU\Software\Adobe]

[HKCU\Software\Apple Computer, Inc.]

[HKCU\Software\Asus]

[HKCU\Software\BearShare]

[HKCU\Software\CamfrogWEBAdvanced]

[HKCU\Software\CamfrogWEB]

[HKCU\Software\Camfrog]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\Conduit]

[HKCU\Software\DataMngr]

[HKCU\Software\DivXNetworks]

[HKCU\Software\DivX]

[HKCU\Software\EoRezo]

[HKCU\Software\FBSearch]

[HKCU\Software\FissaSearch]

[HKCU\Software\Google]

[HKCU\Software\Headlight]

[HKCU\Software\Hewlett-Packard]

[HKCU\Software\IM Providers]

[HKCU\Software\Intel]

[HKCU\Software\JEDI-VCL]

[HKCU\Software\JavaSoft]

[HKCU\Software\MAGIX AG]

[HKCU\Software\Macromedia]

[HKCU\Software\Magix]

[HKCU\Software\Magnet]

[HKCU\Software\Messenger_Plus_Live_France]

[HKCU\Software\Monitored]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Netscape]

[HKCU\Software\Norton]

[HKCU\Software\ODBC]

[HKCU\Software\OfferBox]

[HKCU\Software\Ordinarysoft]

[HKCU\Software\Patchou]

[HKCU\Software\Policies]

[HKCU\Software\PriceGong]

[HKCU\Software\Realtek]

[HKCU\Software\ShopperReports3]

[HKCU\Software\ShoppingReport2]

[HKCU\Software\SkypeApps]

[HKCU\Software\Skype]

[HKCU\Software\Spointer]

[HKCU\Software\Synaptics]

[HKCU\Software\TBSB07183]

[HKCU\Software\TeamViewer]

[HKCU\Software\Trolltech]

[HKCU\Software\Widcomm]

[HKCU\Software\WideStream]

[HKCU\Software\WinRAR SFX]

[HKCU\Software\Winsudate]

[HKCU\Software\bearsharemediabartb]

[HKCU\Software\clickpotatolitesa]

[HKCU\Software\conduitEngine]

[HKCU\Software\cspep]

[HKCU\Software\settings]

[HKLM\Software\ALWIL Software]

[HKLM\Software\ASUS]

[HKLM\Software\Adobe]

[HKLM\Software\Apple Inc.]

[HKLM\Software\AsusTek Computer]

[HKLM\Software\Atheros Communications Inc.]

[HKLM\Software\Atheros]

[HKLM\Software\Azurewave]

[HKLM\Software\BearShareMediabarTb]

[HKLM\Software\BrowserChoice]

[HKLM\Software\C07ft5Y]

[HKLM\Software\Classes]

[HKLM\Software\ClickPotatoLite]

[HKLM\Software\Clients]

[HKLM\Software\Conduit]

[HKLM\Software\Creative Tech]

[HKLM\Software\DE1020806C710425AEB71A7C1701B03E]

[HKLM\Software\DataMngr]

[HKLM\Software\Digital River]

[HKLM\Software\DivXNetworks]

[HKLM\Software\DivX]

[HKLM\Software\ECAREME]

[HKLM\Software\EoRezo]

[HKLM\Software\F8A00992D00A67C54FAA89099BDE2FCB]

[HKLM\Software\Gemplus]

[HKLM\Software\Google]

[HKLM\Software\Hewlett-Packard]

[HKLM\Software\ICE]

[HKLM\Software\InstalledOptions]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\Macromedia]

[HKLM\Software\Magix]

[HKLM\Software\Messenger_Plus_Live_France]

[HKLM\Software\MimarSinan]

[HKLM\Software\Motorola]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\MusicNet]

[HKLM\Software\Norton]

[HKLM\Software\ODBC]

[HKLM\Software\OfferBox]

[HKLM\Software\Patchou]

[HKLM\Software\PoINT]

[HKLM\Software\Policies]

[HKLM\Software\Program Groups]

[HKLM\Software\RALINK]

[HKLM\Software\Realtek Semiconductor Corp.]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\S3R521]

[HKLM\Software\Schlumberger]

[HKLM\Software\SecureDigitalServices]

[HKLM\Software\Secure]

[HKLM\Software\ShopperReports3]

[HKLM\Software\Skype]

[HKLM\Software\Symantec]

[HKLM\Software\Synaptics]

[HKLM\Software\TeamViewer]

[HKLM\Software\UVCPCC]

[HKLM\Software\VideoLAN]

[HKLM\Software\Windows 3.1 Migration Status]

[HKLM\Software\Winsudate]

[HKLM\Software\mozilla.org]

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 12/05/2009 - 21:49:56 ----D- C:\Program Files\Adobe

O43 - CFD: 05/02/2010 - 17:00:30 ----D- C:\Program Files\Alwil Software

O43 - CFD: 26/05/2010 - 16:29:42 ----D- C:\Program Files\Apple Software Update

O43 - CFD: 09/12/2009 - 01:58:24 ----D- C:\Program Files\ASUS

O43 - CFD: 12/05/2009 - 21:07:20 ----D- C:\Program Files\Atheros

O43 - CFD: 28/07/2010 - 22:42:10 ----D- C:\Program Files\BarDiscover

O43 - CFD: 08/01/2011 - 17:07:20 ----D- C:\Program Files\BearShare Applications

O43 - CFD: 13/06/2010 - 23:48:36 ----D- C:\Program Files\CFWebAdvancedU

O43 - CFD: 14/01/2011 - 19:50:00 ----D- C:\Program Files\ClickPotatoLite

O43 - CFD: 12/05/2009 - 20:42:28 ----D- C:\Program Files\ComPlus Applications

O43 - CFD: 25/04/2010 - 21:55:04 ----D- C:\Program Files\Conduit

O43 - CFD: 04/01/2011 - 15:30:04 ----D- C:\Program Files\ConduitEngine

O43 - CFD: 04/02/2011 - 12:34:06 ----D- C:\Program Files\cspep

O43 - CFD: 17/01/2011 - 11:56:04 ----D- C:\Program Files\DivX

O43 - CFD: 12/05/2009 - 21:08:10 ----D- C:\Program Files\EeePC

O43 - CFD: 19/12/2010 - 23:58:34 ----D- C:\Program Files\EoRezo

O43 - CFD: 21/12/2009 - 00:46:22 ----D- C:\Program Files\Fast Browser Search

O43 - CFD: 29/01/2011 - 03:52:00 ----D- C:\Program Files\Fichiers communs

O43 - CFD: 26/05/2010 - 03:15:56 ----D- C:\Program Files\Fluendo

O43 - CFD: 05/02/2010 - 17:03:04 ----D- C:\Program Files\Google

O43 - CFD: 02/10/2010 - 21:26:24 ----D- C:\Program Files\HP

O43 - CFD: 12/05/2009 - 21:14:14 --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD: 12/05/2009 - 20:55:08 ----D- C:\Program Files\Intel

O43 - CFD: 15/12/2010 - 21:08:56 ----D- C:\Program Files\Internet Explorer

O43 - CFD: 19/12/2009 - 21:55:36 ----D- C:\Program Files\Java

O43 - CFD: 29/01/2011 - 03:57:22 ----D- C:\Program Files\MAGIX

O43 - CFD: 12/05/2009 - 21:41:22 ----D- C:\Program Files\Messenger

O43 - CFD: 12/09/2010 - 23:13:44 ----D- C:\Program Files\Messenger Plus! Live

O43 - CFD: 12/11/2010 - 14:24:22 ----D- C:\Program Files\Messenger_Plus_Live_France

O43 - CFD: 08/12/2009 - 16:31:52 ----D- C:\Program Files\Microsoft

O43 - CFD: 12/05/2009 - 20:44:34 ----D- C:\Program Files\microsoft frontpage

O43 - CFD: 03/02/2010 - 22:39:30 ----D- C:\Program Files\Microsoft Office

O43 - CFD: 12/05/2009 - 22:06:30 ----D- C:\Program Files\Microsoft Office Suite Activation Assistant

O43 - CFD: 16/12/2010 - 21:32:04 ----D- C:\Program Files\Microsoft Silverlight

O43 - CFD: 03/02/2010 - 22:39:24 ----D- C:\Program Files\Microsoft Small Business

O43 - CFD: 05/02/2010 - 21:04:02 ----D- C:\Program Files\Microsoft SQL Server

O43 - CFD: 12/05/2009 - 21:56:56 ----D- C:\Program Files\Microsoft SQL Server Compact Edition

O43 - CFD: 12/05/2009 - 21:57:54 ----D- C:\Program Files\Microsoft Sync Framework

O43 - CFD: 03/02/2010 - 22:07:02 ----D- C:\Program Files\Microsoft Visual Studio

O43 - CFD: 15/12/2010 - 21:08:08 ----D- C:\Program Files\Microsoft Works

O43 - CFD: 03/02/2010 - 22:35:38 ----D- C:\Program Files\Microsoft.NET

O43 - CFD: 19/01/2011 - 21:38:30 ----D- C:\Program Files\Motorola

O43 - CFD: 19/08/2010 - 21:11:56 ----D- C:\Program Files\Movie Maker

O43 - CFD: 14/12/2009 - 12:48:02 ----D- C:\Program Files\MSBuild

O43 - CFD: 12/05/2009 - 20:41:50 ----D- C:\Program Files\MSN Gaming Zone

O43 - CFD: 03/10/2010 - 20:00:44 ----D- C:\Program Files\MSXML 4.0

O43 - CFD: 05/02/2010 - 17:21:28 ----D- C:\Program Files\MSXML 6.0

O43 - CFD: 03/01/2011 - 23:25:32 ----D- C:\Program Files\Navilog1

O43 - CFD: 12/05/2009 - 20:42:48 ----D- C:\Program Files\NetMeeting

O43 - CFD: 10/04/2010 - 20:04:24 ----D- C:\Program Files\Norton Internet Security

O43 - CFD: 17/01/2011 - 14:52:28 ----D- C:\Program Files\Norton Security Scan

O43 - CFD: 17/01/2011 - 14:52:24 ----D- C:\Program Files\NortonInstaller

O43 - CFD: 15/12/2010 - 21:01:06 ----D- C:\Program Files\Outlook Express

O43 - CFD: 08/01/2011 - 16:55:32 ----D- C:\Program Files\PhotoFiltre

O43 - CFD: 17/12/2010 - 23:46:02 ----D- C:\Program Files\Picasa2

O43 - CFD: 12/05/2009 - 21:04:56 ----D- C:\Program Files\Realtek

O43 - CFD: 14/12/2009 - 12:47:46 ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 21/12/2009 - 00:46:30 ----D- C:\Program Files\Search Guard Plus

O43 - CFD: 12/05/2009 - 20:43:00 ----D- C:\Program Files\Services en ligne

O43 - CFD: 21/12/2009 - 00:46:28 ----D- C:\Program Files\SGPSA

O43 - CFD: 14/01/2011 - 19:59:06 ----D- C:\Program Files\ShopperReports3

O43 - CFD: 17/11/2010 - 16:16:06 ----D- C:\Program Files\ShoppingReport2

O43 - CFD: 08/12/2010 - 21:36:40 R---D- C:\Program Files\Skype

O43 - CFD: 10/07/2010 - 17:12:10 ----D- C:\Program Files\sw_updater

O43 - CFD: 12/05/2009 - 21:10:06 ----D- C:\Program Files\Synaptics

O43 - CFD: 12/05/2009 - 20:47:46 --H-D- C:\Program Files\Uninstall Information

O43 - CFD: 12/05/2009 - 21:11:24 ----D- C:\Program Files\USB2.0 UVC Camera Device

O43 - CFD: 09/12/2009 - 14:12:02 ----D- C:\Program Files\VideoLAN

O43 - CFD: 01/02/2011 - 01:12:36 ----D- C:\Program Files\Windows Live

O43 - CFD: 12/05/2009 - 21:55:54 ----D- C:\Program Files\Windows Live SkyDrive

O43 - CFD: 12/05/2009 - 22:01:18 ----D- C:\Program Files\Windows Media Connect 2

O43 - CFD: 12/05/2009 - 22:01:48 ----D- C:\Program Files\Windows Media Player

O43 - CFD: 12/05/2009 - 20:41:46 ----D- C:\Program Files\Windows NT

O43 - CFD: 12/05/2009 - 20:43:02 --H-D- C:\Program Files\WindowsUpdate

O43 - CFD: 03/02/2010 - 00:05:46 ----D- C:\Program Files\Winsudate

O43 - CFD: 12/05/2009 - 20:44:34 ----D- C:\Program Files\xerox

O43 - CFD: 05/02/2011 - 15:13:26 ----D- C:\Program Files\ZHPDiag

O43 - CFD: 12/05/2009 - 21:50:06 ----D- C:\Program Files\Fichiers Communs\Adobe

O43 - CFD: 26/05/2010 - 16:30:12 ----D- C:\Program Files\Fichiers Communs\Apple

O43 - CFD: 12/05/2009 - 22:04:48 ----D- C:\Program Files\Fichiers Communs\DESIGNER

O43 - CFD: 15/06/2010 - 23:45:52 ----D- C:\Program Files\Fichiers Communs\DivX Shared

O43 - CFD: 02/10/2010 - 21:27:04 ----D- C:\Program Files\Fichiers Communs\Hewlett-Packard

O43 - CFD: 02/10/2010 - 21:27:32 ----D- C:\Program Files\Fichiers Communs\HP

O43 - CFD: 12/05/2009 - 21:12:22 ----D- C:\Program Files\Fichiers Communs\InstallShield

O43 - CFD: 29/01/2011 - 03:52:00 ----D- C:\Program Files\Fichiers Communs\MAGIX Services

O43 - CFD: 05/02/2010 - 21:11:40 ----D- C:\Program Files\Fichiers Communs\Microsoft Shared

O43 - CFD: 12/05/2009 - 20:42:46 ----D- C:\Program Files\Fichiers Communs\MSSoap

O43 - CFD: 12/05/2009 - 22:39:00 ----D- C:\Program Files\Fichiers Communs\ODBC

O43 - CFD: 10/04/2010 - 00:32:16 ----D- C:\Program Files\Fichiers Communs\PersSecurityUninstall

O43 - CFD: 12/05/2009 - 20:42:48 ----D- C:\Program Files\Fichiers Communs\Services

O43 - CFD: 08/12/2010 - 21:36:14 ----D- C:\Program Files\Fichiers Communs\Skype

O43 - CFD: 12/05/2009 - 22:38:58 ----D- C:\Program Files\Fichiers Communs\SpeechEngines

O43 - CFD: 10/04/2010 - 19:55:12 ----D- C:\Program Files\Fichiers Communs\Symantec Shared

O43 - CFD: 03/02/2010 - 22:02:34 ----D- C:\Program Files\Fichiers Communs\System

O43 - CFD: 12/05/2009 - 21:53:34 ----D- C:\Program Files\Fichiers Communs\Windows Live

O43 - CFD: 07/12/2009 - 17:17:44 ----D- C:\Documents and Settings\Utilitaire\Application Data\Adobe

O43 - CFD: 12/06/2010 - 16:25:00 ----D- C:\Documents and Settings\Utilitaire\Application Data\Apple Computer

O43 - CFD: 26/05/2010 - 03:29:32 ----D- C:\Documents and Settings\Utilitaire\Application Data\banshee-1

O43 - CFD: 02/01/2011 - 19:05:24 ----D- C:\Documents and Settings\Utilitaire\Application Data\bearsharemediabartb

O43 - CFD: 13/06/2010 - 23:48:38 ----D- C:\Documents and Settings\Utilitaire\Application Data\CamfrogWEB

O43 - CFD: 14/01/2011 - 19:50:00 ----D- C:\Documents and Settings\Utilitaire\Application Data\ClickPotatoLite

O43 - CFD: 03/07/2010 - 11:16:28 ----D- C:\Documents and Settings\Utilitaire\Application Data\DivX

O43 - CFD: 12/06/2010 - 17:01:28 ----D- C:\Documents and Settings\Utilitaire\Application Data\dvdcss

O43 - CFD: 09/12/2009 - 01:57:28 ----D- C:\Documents and Settings\Utilitaire\Application Data\EoRezo

O43 - CFD: 11/11/2010 - 02:23:22 ----D- C:\Documents and Settings\Utilitaire\Application Data\FissaSearch

O43 - CFD: 03/02/2010 - 22:31:00 ----D- C:\Documents and Settings\Utilitaire\Application Data\GetRightToGo

O43 - CFD: 08/12/2009 - 16:04:00 ----D- C:\Documents and Settings\Utilitaire\Application Data\Google

O43 - CFD: 05/02/2010 - 16:55:36 ----D- C:\Documents and Settings\Utilitaire\Application Data\HTML Executable

O43 - CFD: 11/01/2010 - 11:46:46 ----D- C:\Documents and Settings\Utilitaire\Application Data\Icones

O43 - CFD: 12/05/2009 - 20:47:48 ----D- C:\Documents and Settings\Utilitaire\Application Data\Identities

O43 - CFD: 12/05/2009 - 21:06:36 ----D- C:\Documents and Settings\Utilitaire\Application Data\InstallShield

O43 - CFD: 13/12/2010 - 02:17:06 ----D- C:\Documents and Settings\Utilitaire\Application Data\LimeWire

O43 - CFD: 17/01/2011 - 11:56:18 ----D- C:\Documents and Settings\Utilitaire\Application Data\Local

O43 - CFD: 08/12/2009 - 15:30:32 ----D- C:\Documents and Settings\Utilitaire\Application Data\Macromedia

O43 - CFD: 29/01/2011 - 03:57:30 ----D- C:\Documents and Settings\Utilitaire\Application Data\MAGIX

O43 - CFD: 29/10/2010 - 13:16:58 -S--D- C:\Documents and Settings\Utilitaire\Application Data\Microsoft

O43 - CFD: 26/05/2010 - 16:19:20 ----D- C:\Documents and Settings\Utilitaire\Application Data\moovida-1

O43 - CFD: 19/12/2009 - 21:59:28 ----D- C:\Documents and Settings\Utilitaire\Application Data\Mozilla

O43 - CFD: 11/11/2010 - 01:58:24 ----D- C:\Documents and Settings\Utilitaire\Application Data\OfferBox

O43 - CFD: 05/05/2010 - 20:30:50 ----D- C:\Documents and Settings\Utilitaire\Application Data\PhotoFiltre

O43 - CFD: 05/02/2011 - 15:04:00 ----D- C:\Documents and Settings\Utilitaire\Application Data\PriceGong

O43 - CFD: 14/01/2011 - 20:54:34 ----D- C:\Documents and Settings\Utilitaire\Application Data\ShopperReports3

O43 - CFD: 04/02/2011 - 18:35:14 ----D- C:\Documents and Settings\Utilitaire\Application Data\ShoppingReport2

O43 - CFD: 05/02/2011 - 14:50:32 ----D- C:\Documents and Settings\Utilitaire\Application Data\Skype

O43 - CFD: 05/02/2011 - 14:50:36 ----D- C:\Documents and Settings\Utilitaire\Application Data\skypePM

O43 - CFD: 19/12/2009 - 21:54:42 ----D- C:\Documents and Settings\Utilitaire\Application Data\Sun

O43 - CFD: 29/01/2011 - 04:19:40 ----D- C:\Documents and Settings\Utilitaire\Application Data\TeamViewer

O43 - CFD: 09/12/2009 - 08:01:16 ----D- C:\Documents and Settings\Utilitaire\Application Data\Template

O43 - CFD: 29/01/2011 - 04:44:38 ----D- C:\Documents and Settings\Utilitaire\Application Data\vlc

O43 - CFD: 10/11/2010 - 09:37:18 ----D- C:\Documents and Settings\Utilitaire\Application Data\widestream

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.2CF51300F915817C00ECFD7F00F61300] - 05/02/2011 - 15:03:41 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\WindowsUpdate.log [2026619]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 04/02/2011 - 12:34:42 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\0.log [0]

O44 - LFC:[MD5.2CF51300F915817C00ECFD7F00F61300] - 04/02/2011 - 12:34:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiadebug.log [157]

O44 - LFC:[MD5.2CF51300F915817C00ECFD7F00F61300] - 04/02/2011 - 12:34:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiaservc.log [50]

O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 04/02/2011 - 12:33:47 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\bootstat.dat [2048]

O44 - LFC:[MD5.2CF51300F915817C00ECFD7F00F61300] - 04/02/2011 - 02:56:19 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SchedLgU.Txt [32558]

O44 - LFC:[MD5.30904CD1DE37126559F6E0CC745BF83A] - 31/01/2011 - 18:50:12 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\d3d9caps.dat [664]

O44 - LFC:[MD5.053F96F305C1C5D94F8FB688881DC76E] - 01/02/2011 - 01:10:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\DirectX.log [90559]

O44 - LFC:[MD5.E493D597768845FDBBFAA5E6177DC483] - 01/02/2011 - 01:10:21 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB954708.log [1788]

O44 - LFC:[MD5.8AA41DC880643F2120C2E063B85F6D39] - 30/01/2011 - 13:50:10 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\FNTCACHE.DAT [306808]

O44 - LFC:[MD5.BA21718479D6A385346F9F9A856DDF7B] - 29/01/2011 - 03:57:52 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setupapi.log [324892]

O44 - LFC:[MD5.9BB05A7814162EC03011D83ED77C528B] - 29/01/2011 - 03:55:38 ---A- . (.MAGIX AG - MAGIX Restore.) -- C:\WINDOWS\System32\MXRestore.exe [913408]

O44 - LFC:[MD5.1F552EC27C24A82850A568107E376E7A] - 29/01/2011 - 03:55:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\mgxcdr.txt [27807]

O44 - LFC:[MD5.8EF0C1253D47A158D3023F1292A5E293] - 29/01/2011 - 03:55:38 ---A- . (.PoINT Software & Systems GmbH - PoINT CDread API.) -- C:\WINDOWS\System32\DLLRD32.dll [40960]

O44 - LFC:[MD5.69C3A42D62622DC14200D2F0531B7171] - 29/01/2011 - 03:55:38 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLMSC32.dll [32768]

O44 - LFC:[MD5.2C072B0C96E0D399FF3FF0999F808CF4] - 29/01/2011 - 03:55:38 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLPNT32.dll [40960]

O44 - LFC:[MD5.7C6D4A7AB07EC274030BE674EA3778C3] - 29/01/2011 - 03:55:38 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLPRF32.dll [49152]

O44 - LFC:[MD5.B4455EF6F773C790ECBAAD93F719C1FE] - 29/01/2011 - 03:55:38 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLPRJ32.dll [53248]

O44 - LFC:[MD5.BE5E9E3646D1EC21B9CD75895FE90B36] - 29/01/2011 - 03:55:38 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLPTL32.dll [65536]

O44 - LFC:[MD5.D5D120B725C5918146E4BB9575419F3D] - 29/01/2011 - 03:55:38 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLRES32.dll [233472]

O44 - LFC:[MD5.B2BCA1AAACFD7C7656F58ECF5C6569AC] - 29/01/2011 - 03:55:38 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLTPO32.dll [57344]

O44 - LFC:[MD5.7F605FEEA9C1899347184649D61A25FB] - 29/01/2011 - 03:55:38 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\STRING32.dll [32768]

O44 - LFC:[MD5.1DA32728F808D41F380193B6B21B14C2] - 29/01/2011 - 03:55:38 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\TTI32.dll [24576]

O44 - LFC:[MD5.AB024EFED92D5A91DDCC9577FD5A3A9C] - 29/01/2011 - 03:55:38 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\TTIC32.dll [24576]

O44 - LFC:[MD5.B542E1BBB193304986A2782E96919D3C] - 29/01/2011 - 03:55:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\DLLAV32.lib [14182]

O44 - LFC:[MD5.3CF5D6F462D385BF3A26BA60A0459F67] - 29/01/2011 - 03:55:37 ---A- . (.PoINT Software & Systems GmbH - API of PoINT CDarchive.) -- C:\WINDOWS\System32\DLLCDA32.dll [114688]

O44 - LFC:[MD5.435EBFA51632D4ACC7368F751597A86C] - 29/01/2011 - 03:55:37 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLCDF32.dll [61440]

O44 - LFC:[MD5.C661198F1C9482F77206A6644EFD568E] - 29/01/2011 - 03:55:37 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLCPY32.dll [106496]

O44 - LFC:[MD5.A4B69C88D7B1B636FCD10E833C2C6646] - 29/01/2011 - 03:55:37 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLDEV32.dll [167936]

O44 - LFC:[MD5.9B108B6A630027763CD9EB28AB06992B] - 29/01/2011 - 03:55:37 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLDIR32.dll [32768]

O44 - LFC:[MD5.A33C23106C6E7EA3C3D0717AA89906C5] - 29/01/2011 - 03:55:37 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLDRV32.dll [163840]

O44 - LFC:[MD5.1903B46D93ED6E1ED5A41954FA21870F] - 29/01/2011 - 03:55:37 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLIMG32.dll [45056]

O44 - LFC:[MD5.AF788F3D259F5969D21DDE0F51870AE8] - 29/01/2011 - 03:55:37 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLIO32.dll [53248]

O44 - LFC:[MD5.D41CD97D3A7B3DAF632C9335710162A0] - 29/01/2011 - 03:55:37 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLISO32.dll [32768]

O44 - LFC:[MD5.82D1CAC671A80EB542B4428F072D7548] - 29/01/2011 - 03:55:37 ---A- . (.PoINT Software & Systems GmbH - PoINT Shared DLL.) -- C:\WINDOWS\System32\DLLIX.dll [24576]

O44 - LFC:[MD5.F47360C6BF52E7A154BBCAD57ED5AD57] - 29/01/2011 - 03:55:36 ---A- . (.PoINT Software & Systems GmbH - API of PoINT CD/DVD Audio/Video SDK.) -- C:\WINDOWS\System32\DLLAV32.dll [643072]

O44 - LFC:[MD5.931BAEE214DEDCF789BEBDB62D528AE9] - 29/01/2011 - 03:53:20 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\DLLDEV32i.dll [120200]

O44 - LFC:[MD5.B7DF5491B7B1CD00CD33796C95DC4D21] - 25/01/2011 - 02:06:23 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setupact.log [221435]

O44 - LFC:[MD5.26C4E638E4C13CD6076DB5BA7B23B180] - 21/01/2011 - 23:20:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wmsetup.log [94732]

O44 - LFC:[MD5.5F16CCD1D0DEF818992A3C454A05D684] - 13/01/2011 - 02:25:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB2419632.log [19466]

O44 - LFC:[MD5.B64309DB07B7F46777F921C72DE261E3] - 13/01/2011 - 02:25:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\comsetup.log [399846]

O44 - LFC:[MD5.CF24B44413BD0EDBF025EAD5DC88AEAF] - 13/01/2011 - 02:25:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\iis6.log [185743]

O44 - LFC:[MD5.0A59BFF4E169794A2A48EA5167610FBC] - 13/01/2011 - 02:25:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\imsins.log [1374]

O44 - LFC:[MD5.64AD3AC14181D925D994BD7B515758FD] - 13/01/2011 - 02:25:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ntdtcsetup.log [240386]

O44 - LFC:[MD5.157CA6F06148E774EC573D1449D39FF3] - 13/01/2011 - 02:25:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ocmsn.log [64530]

O44 - LFC:[MD5.EAB806A1F908BCCD782BE06A324B9E0C] - 13/01/2011 - 02:25:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\tsoc.log [454713]

O44 - LFC:[MD5.75B48996BAB8A8B1B1E18EED00EA85E8] - 13/01/2011 - 02:25:05 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\FaxSetup.log [1162795]

O44 - LFC:[MD5.31BB2033AD10B9EBC151DD68915E9FFA] - 13/01/2011 - 02:25:05 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\msgsocm.log [58685]

O44 - LFC:[MD5.51BA09D50C73C31B0B5BA51091D2F003] - 13/01/2011 - 02:25:05 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ocgen.log [570167]

O44 - LFC:[MD5.7D2C0B9F5334FF2AC25A4AB9C89A7E58] - 13/01/2011 - 02:25:02 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\updspapi.log [173216]

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)

O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll

---\\ Export de clé d'application autorisée (O47)

O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe

O47 - AAKE:Key Export SP - "C:\Program Files\LimeWire\LimeWire.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files\LimeWire\LimeWire.exe (.not file.)

O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe

O47 - AAKE:Key Export SP - "C:\Documents and Settings\Utilitaire\Local Settings\Temp\7zS53B8\setup\hpznui01.exe" [Enabled] .(.Hewlett-Packard.) -- C:\Documents and Settings\Utilitaire\Local Settings\Temp\7zS53B8\setup\hpznui01.exe

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe" [Enabled] .(.Hewlett-Packard Co. - HP CUE-Scanning Flow Component.) -- C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" [Enabled] .(.Hewlett-Packard Co. - HP CUE-Print Component.) -- C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" [Enabled] .(.Hewlett-Packard Co. - HP Scan Application Resources.) -- C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Plugin Manager\skypePM.exe" [Enabled] .(.Skype Technologies - Skype Extras Manager.) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Phone\Skype.exe" [Enabled] .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe

O47 - AAKE:Key Export SP - "C:\Program Files\BearShare Applications\BearShare\BearShare.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files\BearShare Applications\BearShare\BearShare.exe (.not file.)

O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe

O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe

O47 - AAKE:Key Export DP - "C:\Documents and Settings\Utilitaire\Local Settings\Temp\7zS53B8\setup\hpznui01.exe" [Enabled] .(.Hewlett-Packard.) -- C:\Documents and Settings\Utilitaire\Local Settings\Temp\7zS53B8\setup\hpznui01.exe

O47 - AAKE:Key Export DP - "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe" [Enabled] .(.Hewlett-Packard Co. - HP CUE-Scanning Flow Component.) -- C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe

O47 - AAKE:Key Export DP - "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" [Enabled] .(.Hewlett-Packard Co. - HP CUE-Print Component.) -- C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe

O47 - AAKE:Key Export DP - "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" [Enabled] .(.Hewlett-Packard Co. - HP Scan Application Resources.) -- C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe

O47 - AAKE:Key Export DP - "C:\Program Files\BearShare Applications\BearShare\BearShare.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files\BearShare Applications\BearShare\BearShare.exe (.not file.)

O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe

---\\ Déni du service (Local Security Authority) (O48)

O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\System32\msv1_0.dll

O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\WINDOWS\System32\scecli.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\System32\msv1_0.dll

---\\ Image File Execution Options (IFEO) (O50)

O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d

---\\ MountPoints2 Shell Key (O51)

O51 - MPSK:{b8498bc2-e495-11de-a932-00261882b6d7}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\GUegAE.exe (.not file.)

O51 - MPSK:{fee0510e-240b-11e0-abdd-00261882b6d7}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- E:\setup.exe (.not file.)

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll

O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax

O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm

O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax

O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\WINDOWS\System32\DivX.dll

O52 - TDSD: \Drivers32\"vidc.yv12"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\WINDOWS\System32\DivX.dll

O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm

O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax

O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

O52 - TDSD: \drivers.desc\"DivX.dll"="DivX 6.9.2 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

---\\ ShareTools MSconfig StartupReg (O53)

O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe

O53 - SMSR:HKLM\...\startupreg\MsnMsgr [Key] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\MsnMsgr.exe

O53 - SMSR:HKLM\...\startupreg\SRS Premium Sound [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\SRS Labs\SRS Premium Sound\SRSPremiumSoundBig_Small.exe

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

---\\ Microsoft Windows Policies Explorer (O56)

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutorun"=0

O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.D5D75EDD02157FCD3EB576D4681E8C3E] - 09/03/2010 - 11:08:15 ---A- . (.ALWIL Software - avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP.) -- C:\WINDOWS\system32\drivers\aavmker4.sys [28880]

O58 - SDL:[MD5.F6AF59D6EEE5E1C304F7F73706AD11D8] - 05/08/2008 - 19:10:12 ---A- . (.Creative - Creative WDM 3D Audio Driver.) -- C:\WINDOWS\system32\drivers\Ambfilt.sys [1684736]

O58 - SDL:[MD5.12415A4B61DED200FE9932B47A35FA42] - 08/04/2008 - 14:59:28 ---A- . (.ASUSTeK Computer Inc. - ASUS ACPI Device Driver.) -- C:\WINDOWS\system32\drivers\ASUSACPI.SYS [10752]

O58 - SDL:[MD5.FB6A381C32A87EE6588EED61D22DC03B] - 09/03/2010 - 11:08:30 ---A- . (.ALWIL Software - avast! File System Access Blocking Driver.) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys [19024]

O58 - SDL:[MD5.72BEDB9179163E04280D25314286D253] - 09/03/2010 - 11:08:38 ---A- . (.ALWIL Software - avast! File System Filter Driver for Windows NT/2000.) -- C:\WINDOWS\system32\drivers\aswmon.sys [94800]

O58 - SDL:[MD5.1A10CBECFDD0A597B27E2D0998D95CF9] - 09/03/2010 - 11:08:41 ---A- . (.ALWIL Software - avast! File System Filter Driver for Windows XP.) -- C:\WINDOWS\system32\drivers\aswmon2.sys [100432]

O58 - SDL:[MD5.7827F70B86B29FBF112CBCE547205ACC] - 09/03/2010 - 11:09:08 ---A- . (.ALWIL Software - avast! TDI RDR Driver.) -- C:\WINDOWS\system32\drivers\aswRdr.sys [23376]

O58 - SDL:[MD5.39BF48164A958F4BF0C0EC6CDC447DB5] - 09/03/2010 - 11:12:33 ---A- . (.ALWIL Software - avast! self protection module.) -- C:\WINDOWS\system32\drivers\aswSP.sys [162640]

O58 - SDL:[MD5.755E4AFB683E3306886A0F4DF02A1575] - 09/03/2010 - 11:12:54 ---A- . (.ALWIL Software - avast! TDI Filter Driver.) -- C:\WINDOWS\system32\drivers\aswTdi.sys [46672]

O58 - SDL:[MD5.E0EE769D14128014965E03B433F5F46E] - 13/03/2009 - 22:05:26 ---A- . (.Atheros Communications, Inc. - Driver for Atheros AR5008 Wireless Network Adapter.) -- C:\WINDOWS\system32\drivers\athw.sys [1528928]

O58 - SDL:[MD5.C21362BB5A22CE4B40A7B475254F858C] - 11/06/2008 - 07:14:24 ---A- . (.Broadcom Corporation. - Broadcom Bluetooth IT Manager Filter.) -- C:\WINDOWS\system32\drivers\btwsecfl.sys [89896]

O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 14/04/2008 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528]

O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 14/04/2008 - 13:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776]

O58 - SDL:[MD5.573C7D0A32852B48F3058CFD8026F511] - 14/04/2008 - 13:00:00 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\drivers\hdaudbus.sys [144384]

O58 - SDL:[MD5.D03D10F7DED688FECF50F8FBF1EA9B8A] - 29/10/2008 - 01:27:07 ---A- . (.HP - IEEE-1284.4-1999 Driver (Windows 2000).) -- C:\WINDOWS\system32\drivers\HPZid412.sys [49920]

O58 - SDL:[MD5.89F41658929393487B6B7D13C8528CE3] - 29/10/2008 - 01:27:07 ---A- . (.HP - IEEE-1284.4-1999 Print Class Driver.) -- C:\WINDOWS\system32\drivers\HPZipr12.sys [16496]

O58 - SDL:[MD5.ABCB05CCDBF03000354B9553820E39F8] - 29/10/2008 - 01:27:07 ---A- . (.HP - 1284.4<->Usb Datalink Driver (Windows 2000).) -- C:\WINDOWS\system32\drivers\HPZius12.sys [21568]

O58 - SDL:[MD5.8EF427C54497C5F8A7A645990E4278C7] - 12/09/2008 - 06:32:56 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\WINDOWS\system32\drivers\iaStor.sys [327192]

O58 - SDL:[MD5.0F68E2EC713F132FFB19E45415B09679] - 19/12/2007 - 16:32:12 ---A- . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS\system32\drivers\igxpmp32.sys [5854688]

O58 - SDL:[MD5.6C8658587E91EA25B0FD2E71781AD228] - 02/03/2009 - 06:03:47 ---A- . (.Atheros Communications, Inc. - Atheros AR8131/AR8132 PCI-E Ethernet Controller ndis miniport d.) -- C:\WINDOWS\system32\drivers\l1c51x86.sys [38912]

O58 - SDL:[MD5.9FA7207D1B1ADEAD88AE8EED9CDBBAA5] - 04/01/2006 - 14:41:48 ---A- . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\WINDOWS\system32\drivers\Monfilt.sys [1389056]

O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 14/04/2008 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032]

O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 14/04/2008 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792]

O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 14/04/2008 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032]

O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 14/04/2008 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032]

O58 - SDL:[MD5.303EA99C05A8A435DA9A4DC9E00C52B6] - 24/03/2009 - 00:25:24 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 Wireless Adapter Driver.) -- C:\WINDOWS\system32\drivers\rt2860.sys [966912]

O58 - SDL:[MD5.9037C8BD3E896D7F2803A171FDEAEEF4] - 27/04/2009 - 18:26:44 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys [5074944]

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 14/04/2008 - 13:00:00 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480]

O58 - SDL:[MD5.0BD44AA4743A9DBD2C638D699A7FD438] - 20/04/2009 - 09:38:18 R--A- . (.Pas de propriétaire - SRS Premium Sound driver.) -- C:\WINDOWS\system32\drivers\SRS_PremiumSound_i386.sys [232872]

O58 - SDL:[MD5.A10D781153BB23036B474FFEDB448266] - 06/03/2009 - 09:58:44 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\WINDOWS\system32\drivers\SynTP.sys [208304]

O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 14/04/2008 - 13:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376]

O58 - SDL:[MD5.C019889035CDC1A06F2FEBC93CBB6897] - 19/11/2008 - 21:21:28 ---A- . (.GenesysLogic Technologies, Inc. - uvclf.sys.) -- C:\WINDOWS\system32\drivers\uvclf.sys [39040]

O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 14/04/2008 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112]

O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ansi.sys [9037]

O58 - SDL:[MD5.E0EE769D14128014965E03B433F5F46E] - 13/03/2009 - 22:05:26 ---A- . (.Atheros Communications, Inc. - Driver for Atheros AR5008 Wireless Network Adapter.) -- C:\WINDOWS\system32\athw.sys [1528928]

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\country.sys [27097]

O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\himem.sys [4912]

O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\key01.sys [42809]

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\keyboard.sys [42537]

O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos.sys [27916]

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos404.sys [29146]

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos411.sys [29370]

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos412.sys [29274]

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos804.sys [29146]

O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio.sys [34000]

O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio404.sys [34560]

O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio411.sys [35648]

O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio412.sys [35424]

O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio804.sys [34560]

---\\ Liste des outils de nettoyage (O63)

O63 - Logiciel: Dial-a-fix - (.Djlizard.)

---\\ Liste des services Legacy (O64)

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\AAVMKER4.sys - (.not file.) - avast! Asynchronous Virus Monitor (Aavmker4) .(.Pas de propriétaire - Pas de description.) - LEGACY_AAVMKER4

O64 - Services: CurCS - C:\WINDOWS\system32\drivers\afd.sys - AFD (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD

O64 - Services: CurCS - C:\WINDOWS\System32\alg.exe - Service de la passerelle de la couche Application (ALG) .(.Microsoft Corporation - Application Layer Gateway Service.) - LEGACY_ALG

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Gestion d'applications (AppMgmt) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_APPMGMT

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWFSBLK.sys - (.not file.) - aswFsBlk (aswFsBlk) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWFSBLK

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWMON2.sys - (.not file.) - aswMon2 (aswMon2) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWMON2

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWRDR.sys - (.not file.) - aswRdr (aswRdr) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWRDR

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWSP.sys - (.not file.) - aswSP (aswSP) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWSP

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWTDI.sys - (.not file.) - avast! Network Shield Support (aswTdi) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWTDI

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Audio Windows (AudioSrv) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_AUDIOSRV

O64 - Services: CurCS - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe - avast! Antivirus (avast! Antivirus) .(.ALWIL Software - avast! Service.) - LEGACY_AVAST!_ANTIVIRUS

O64 - Services: CurCS - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe - avast! Mail Scanner (avast! Mail Scanner) .(.ALWIL Software - avast! Service.) - LEGACY_AVAST!_MAIL_SCANNER

O64 - Services: CurCS - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe - avast! Web Scanner (avast! Web Scanner) .(.ALWIL Software - avast! Service.) - LEGACY_AVAST!_WEB_SCANNER

O64 - Services: CurCS - C:\Documents and Settings\All Users\Application Data\BarDiscover\bardiscover141.exe - BarDiscover Service (BarDiscover Service) .(.Pas de propriétaire - Pas de description.) - LEGACY_BARDISCOVER_SERVICE

O64 - Services: CurCS - C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe - Business Contact Manager SQL Server Startup Service (BcmSqlStartupSvc) .(.Microsoft Corporation - BCM SQL Startup Service.) - LEGACY_BCMSQLSTARTUPSVC

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\BEEP.sys - Beep (Beep) .(.Pas de propriétaire - Pas de description.) - LEGACY_BEEP

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Service de transfert intelligent en arrière-plan (BITS) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_BITS

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Explorateur d'ordinateur (Browser) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_BROWSER

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\CDFS.sys - cdfs (cdfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_CDFS

O64 - Services: CurCS - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe - .NET Runtime Optimization Service v2.0.50727_X86 (clr_optimization_v2.0.50727_32) .(.Microsoft Corporation - .NET Runtime Optimization Service.) - LEGACY_CLR_OPTIMIZATION_V2.0.50727_32

O64 - Services: CurCS - (.not file.) - (.not file.) - Application système COM+ (COMSysApp) .(.Pas de propriétaire - Pas de description.) - LEGACY_COMSYSAPP

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Services de cryptographie (CryptSvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_CRYPTSVC

O64 - Services: CurCS - (.not file.) - (.not file.) - Lanceur de processus serveur DCOM (DcomLaunch) .(.Pas de propriétaire - Pas de description.) - LEGACY_DCOMLAUNCH

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Client DHCP (Dhcp) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_DHCP

O64 - Services: CurCS - C:\WINDOWS\System32\dmadmin.exe - Service d'administration du Gestionnaire de disque logique (dmadmin) .(.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - LEGACY_DMADMIN

O64 - Services: CurCS - C:\Windows\System32\drivers\dmboot.sys - dmboot (dmboot) .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT

O64 - Services: CurCS - C:\Windows\System32\drivers\dmload.sys - dmload (dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Gestionnaire de disque logique (dmserver) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_DMSERVER

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Client DNS (Dnscache) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_DNSCACHE

O64 - Services: CurCS - (.not file.) - Symantec Eraser Control driver (eeCtrl) .(.Pas de propriétaire - Pas de description.) - LEGACY_EECTRL

O64 - Services: CurCS - (.not file.) - EraserUtilDrvI9 (EraserUtilDrvI9) .(.Pas de propriétaire - Pas de description.) - LEGACY_ERASERUTILDRVI9

O64 - Services: CurCS - (.not file.) - EraserUtilRebootDrv (EraserUtilRebootDrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_ERASERUTILREBOOTDRV

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Service de rapport d'erreurs (ERSvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_ERSVC

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Système d'événements de COM+ (EventSystem) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_EVENTSYSTEM

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FASTFAT.sys - fastfat (fastfat) .(.Pas de propriétaire - Pas de description.) - LEGACY_FASTFAT

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Compatibilité avec le Changement rapide d'utilisateur (FastUserSwitchingCompatibility) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_FASTUSERSWITCHINGCOMPATIBILITY

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FIPS.sys - Fips (Fips) .(.Pas de propriétaire - Pas de description.) - LEGACY_FIPS

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\fltMgr.sys - FltMgr (FltMgr) .(.Microsoft Corporation - Microsoft Filesystem Filter Manager.) - LEGACY_FLTMGR

O64 - Services: CurCS - C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe - Windows Presentation Foundation Font Cache 3.0.0.0 (FontCache3.0.0.0) .(.Microsoft Corporation - PresentationFontCache.exe.) - LEGACY_FONTCACHE3.0.0.0

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\fssfltr_tdi.sys - FssFltr (fssfltr) .(.Microsoft Corporation - Family Safety Filter Driver (TDI).) - LEGACY_FSSFLTR

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(.Pas de propriétaire - Pas de description.) - LEGACY_FS_REC

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\msgpc.sys - Classificateur de paquets générique (Gpc) .(.Microsoft Corporation - MS General Packet Classifier.) - LEGACY_GPC

O64 - Services: CurCS - C:\Program Files\Google\Update\GoogleUpdate.exe - Service Google Update (gupdate) (gupdate) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE

O64 - Services: CurCS - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe - Google Software Updater (gusvc) .(.Google - gusvc.) - LEGACY_GUSVC

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Aide et support (helpsvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_HELPSVC

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - HID Input Service (HidServ) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_HIDSERV

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - HP Network Devices Support (HPSLPSVC) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_HPSLPSVC

O64 - Services: CurCS - C:\Windows\System32\Drivers\HTTP.sys - HTTP (HTTP) .(.Microsoft Corporation - HTTP Protocol Stack.) - LEGACY_HTTP

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - HTTP SSL (HTTPFilter) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_HTTPFILTER

O64 - Services: CurCS - C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe - Windows CardSpace (idsvc) .(.Microsoft Corporation - Windows CardSpace.) - LEGACY_IDSVC

O64 - Services: CurCS - C:\WINDOWS\system32\imapi.exe - Service COM de gravage de CD IMAPI (ImapiService) .(.Microsoft Corporation - API Image Mastering.) - LEGACY_IMAPISERVICE

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ipnat.sys - Traducteur d'adresses réseau IP (IpNat) .(.Microsoft Corporation - IP Network Address Translator.) - LEGACY_IPNAT

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ipsec.sys - Pilote IPSEC (IPSec) .(.Microsoft Corporation - IPSec Driver.) - LEGACY_IPSEC

O64 - Services: CurCS - C:\Program Files\Java\jre6\bin\jqs.exe - Java Quick Starter (JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\KSECDD.sys - ksecdd (ksecdd) .(.Pas de propriétaire - Pas de description.) - LEGACY_KSECDD

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Serveur (LanmanServer) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_LANMANSERVER

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Station de travail (LanmanWorkstation) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_LANMANWORKSTATION

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Assistance TCP/IP NetBIOS (LmHosts) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_LMHOSTS

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MNMDD.sys - mnmdd (mnmdd) .(.Pas de propriétaire - Pas de description.) - LEGACY_MNMDD

O64 - Services: CurCS - C:\Program Files\Motorola\MotoConnectService\MotoConnectService.exe - MotoConnect Service (MotoConnect Service) .(.Pas de propriétaire - Pas de description.) - LEGACY_MOTOCONNECT_SERVICE

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MOUNTMGR.sys - mountmgr (mountmgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_MOUNTMGR

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\mrxdav.sys - Redirecteur client WebDav (MRxDAV) .(.Microsoft Corporation - Windows NT WebDav Minirdr.) - LEGACY_MRXDAV

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\mrxsmb.sys - MRXSMB (MRxSmb) .(.Microsoft Corporation - Windows NT SMB Minirdr.) - LEGACY_MRXSMB

O64 - Services: CurCS - C:\WINDOWS\system32\msdtc.exe - Distributed Transaction Coordinator (MSDTC) .(.Microsoft Corporation - MS DTC console program.) - LEGACY_MSDTC

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MSFS.sys - Msfs (Msfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSFS

O64 - Services: CurCS - C:\WINDOWS\system32\msiexec.exe - Windows Installer (MSIServer) .(.Microsoft Corporation - Windows® installer.) - LEGACY_MSISERVER

O64 - Services: CurCS - C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe - SQL Server (MSSMLBIZ) (MSSQL$MSSMLBIZ) .(.Microsoft Corporation - SQL Server Windows NT.) - LEGACY_MSSQL$MSSMLBIZ

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MUP.sys - (.not file.) - Mup (Mup) .(.Pas de propriétaire - Pas de description.) - LEGACY_MUP

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDIS.sys - (.not file.) - Pilote système NDIS (NDIS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDIS

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ndistapi.sys - Pilote TAPI NDIS d'accès distant (NdisTapi) .(.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) - LEGACY_NDISTAPI

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ndisuio.sys - NDIS mode utilisateur E/S Protocole (Ndisuio) .(.Microsoft Corporation - NDIS User mode I/O Driver.) - LEGACY_NDISUIO

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDPROXY

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\netbios.sys - Interface NetBIOS (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\netbt.sys - NetBIOS sur TCP/IP (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Connexions réseau (Netman) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_NETMAN

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Net Driver HPZ12 (Net Driver HPZ12) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_NET_DRIVER_HPZ12

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - NLA (Network Location Awareness) (Nla) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_NLA

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NPFS.sys - Npfs (Npfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NPFS

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NTFS.sys - ntfs (ntfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NTFS

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NULL.sys - Null (Null) .(.Pas de propriétaire - Pas de description.) - LEGACY_NULL

O64 - Services: CurCS - C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.exe - Office Source Engine (ose) .(.Microsoft Corporation - Office Source Engine.) - LEGACY_OSE

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARTMGR.sys - PartMgr (PartMgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_PARTMGR

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARVDM.sys - ParVdm (ParVdm) .(.Pas de propriétaire - Pas de description.) - LEGACY_PARVDM

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Pml Driver HPZ12 (Pml Driver HPZ12) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_PML_DRIVER_HPZ12

O64 - Services: CurCS - C:\WINDOWS\system32\lsass.exe - Services IPSEC (PolicyAgent) .(.Microsoft Corporation - LSA Shell (Export Version).) - LEGACY_POLICYAGENT

O64 - Services: CurCS - C:\WINDOWS\system32\lsass.exe - Emplacement protégé (ProtectedStorage) .(.Microsoft Corporation - LSA Shell (Export Version).) - LEGACY_PROTECTEDSTORAGE

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rasacd.sys - Pilote de connexion automatique d'accès distant (RasAcd) .(.Microsoft Corporation - RAS Automatic Connection Driver.) - LEGACY_RASACD

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Gestionnaire de connexions d'accès distant (RasMan) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_RASMAN

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rdbss.sys - Rdbss (Rdbss) .(.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - LEGACY_RDBSS

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\RDPCDD.sys - RDPCDD (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD

O64 - Services: CurCS - (.not file.) - RDPNP (RDPNP) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPNP

O64 - Services: CurCS - (.not file.) - (.not file.) - Appel de procédure distante (RPC) (RpcSs) .(.Pas de propriétaire - Pas de description.) - LEGACY_RPCSS

O64 - Services: CurCS - C:\WINDOWS\system32\rsvp.exe - QoS RSVP (RSVP) .(.Microsoft Corporation - Microsoft RSVP.) - LEGACY_RSVP

O64 - Services: CurCS - C:\WINDOWS\system32\lsass.exe - Gestionnaire de comptes de sécurité (SamSs) .(.Microsoft Corporation - LSA Shell (Export Version).) - LEGACY_SAMSS

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Planificateur de tâches (Schedule) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SCHEDULE

O64 - Services: CurCS - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe - SeaPort (SeaPort) .(.Microsoft Corporation - Microsoft SeaPort Search Enhancement Broker.) - LEGACY_SEAPORT

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Connexion secondaire (seclogon) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SECLOGON

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Notification d'événement système (SENS) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SENS

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\SERIAL.sys - Serial (Serial) .(.Pas de propriétaire - Pas de description.) - LEGACY_SERIAL

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Pare-feu Windows / Partage de connexion Internet (SharedAccess) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SHAREDACCESS

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Détection matériel noyau (ShellHWDetection) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SHELLHWDETECTION

O64 - Services: CurCS - C:\WINDOWS\system32\spoolsv.exe - Spouleur d'impression (Spooler) .(.Microsoft Corporation - Spooler SubSystem App.) - LEGACY_SPOOLER

O64 - Services: CurCS - C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe - SQL Server Browser (SQLBrowser) .(.Microsoft Corporation - SQL Browser Service EXE.) - LEGACY_SQLBROWSER

O64 - Services: CurCS - C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe - SQL Server VSS Writer (SQLWriter) .(.Microsoft Corporation - SQL Server VSS Writer.) - LEGACY_SQLWRITER

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\sr.sys - Pilote de filtre de restauration système (sr) .(.Microsoft Corporation - Pilote de filtre de système de fichiers pou.) - LEGACY_SR

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Service de restauration système (srservice) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SRSERVICE

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\srv.sys - Srv (Srv) .(.Microsoft Corporation - Server driver.) - LEGACY_SRV

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Service de découvertes SSDP (SSDPSRV) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SSDPSRV

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Acquisition d'image Windows (WIA) (stisvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_STISVC

O64 - Services: CurCS - (.not file.) - SYMDNS (SYMDNS) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMDNS

O64 - Services: CurCS - (.not file.) - Symantec Extended File Attributes (SymEFA) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMEFA

O64 - Services: CurCS - (.not file.) - SymEvent (SymEvent) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMEVENT

O64 - Services: CurCS - (.not file.) - SYMFW (SYMFW) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMFW

O64 - Services: CurCS - (.not file.) - SYMIDS (SYMIDS) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMIDS

O64 - Services: CurCS - (.not file.) - SYMNDIS (SYMNDIS) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMNDIS

O64 - Services: CurCS - (.not file.) - SYMREDRV (SYMREDRV) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMREDRV

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Téléphonie (TapiSrv) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_TAPISRV

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\tcpip.sys - Pilote du protocole TCP/IP (Tcpip) .(.Microsoft Corporation - TCP/IP Protocol Driver.) - LEGACY_TCPIP

O64 - Services: CurCS - (.not file.) - (.not file.) - Services Terminal Server (TermService) .(.Pas de propriétaire - Pas de description.) - LEGACY_TERMSERVICE

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Thèmes (Themes) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_THEMES

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Client de suivi de lien distribué (TrkWks) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_TRKWKS

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Hôte de périphérique universel Plug-and-Play (upnphost) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_UPNPHOST

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VGA.sys - vga (vga) .(.Pas de propriétaire - Pas de description.) - LEGACY_VGA

O64 - Services: CurCS - C:\WINDOWS\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VOLSNAP.sys - VolSnap (VolSnap) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLSNAP

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Horloge Windows (W32Time) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_W32TIME

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\wanarp.sys - Pilote ARP IP d'accès distant (Wanarp) .(.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - LEGACY_WANARP

O64 - Services: CurCS - C:\Windows\System32\Drivers\wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Microsoft Corporation - WDF Dynamic.) - LEGACY_WDF01000

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - WebClient (WebClient) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WEBCLIENT

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Infrastructure de gestion Windows (winmgmt) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WINMGMT

O64 - Services: CurCS - C:\WINDOWS\system32\wbem\wmiapsrv.exe - Carte de performance WMI (WmiApSrv) .(.Microsoft Corporation - Service de la carte de performance WMI.) - LEGACY_WMIAPSRV

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Centre de sécurité (wscsvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WSCSVC

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Mises à jour automatiques (wuauserv) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WUAUSERV

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\WudfPf.sys - Windows Driver Foundation - User-mode Driver Framework Platform Driver (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF

O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Windows Driver Foundation - User-mode Driver Framework (WudfSvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WUDFSVC

O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Configuration automatique sans fil (WZCSVC) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WZCSVC

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe

O67 - Shell Spawning: <.html> <htmlfile>[HKCU\..\open\Command] (.Not Key.)

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <chrome.exe> <>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe

O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

---\\ Search Browser Infection (O69)

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing

O69 - SBI: SearchScopes [HKCU] {18EAB056-9057-F224-FD4C-1F6569C4D8D2} - (Ask) - Search Plus!

O69 - SBI: SearchScopes [HKCU] {19F2B849-4ADE-4d4b-85F9-C31C643DBDE9} - (Fast Browser Search) - Fast Browser Search

O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - Google

O69 - SBI: SearchScopes [HKCU] {7a14ea26-cbb6-4fd1-b802-49415c8e9ee6} - (Wibeez) - Wibeez France

O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69} [DefaultScope] - (Web Search) - Search

O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (Messenger Plus Live France Customized Web Search) - http://search.conduit.com

O69 - SBI: SearchScopes [HKCU] {b41306c6-96d0-442a-bcc4-b0f621e82ce9} - (Fissa) - Fissa search

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SR - | Auto 09/03/2010 40384 | (avast! Antivirus) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

SR - | Demand 09/03/2010 40384 | (avast! Mail Scanner) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

SR - | Demand 09/03/2010 40384 | (avast! Web Scanner) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

SS - | Auto 10/07/2010 57616 | (BarDiscover Service) . (.Pas de propriétaire.) - C:\Documents and Settings\All Users\Application Data\BarDiscover\bardiscover141.exe

SS - | Demand 14/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe

SS - | Auto 05/02/2010 133104 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe

SS - | Demand 08/12/2009 182768 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

SR - | Auto 19/12/2009 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe

SR - | Auto 29/04/2010 91456 | (MotoConnect Service) . (.Pas de propriétaire.) - C:\Program Files\Motorola\MotoConnectService\MotoConnectService.exe

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, GMER - Rootkit Detector and Remover

Run by Utilitaire at 05/02/2011 15:14:30

device: opened successfully

user: MBR read successfully

Disk trace:

called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll iaStor.sys

C:\WINDOWS\system32\drivers\iaStor.sys Intel Corporation Intel Matrix Storage Manager driver

1 ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Harddisk0\DR0[0x8657B380]

3 CLASSPNP[0xF75C8FD7] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\00000065[0x8655A358]

5 ACPI[0xF745E620] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Ide\IAAStorageDevice-0[0x85FB7028]

kernel: MBR read successfully

user & kernel MBR OK

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

Written by ad13, http://ad13.geekstog

Run by Utilitaire at 05/02/2011 15:14:30

Use the desktop link 'MBRCheck' to have full report

---\\ Infection Rogue/FakeAlert (Possible)

[MD5.5ECD3C3B70B6B50F284DBAF6016B2DDF] - (.EoRezo - SoftwareHelper.) -- C:\Documents and Settings\Utilitaire\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe [368224]

[MD5.010B0375D16D6194B03B97AFDFC2856D] - (.EoRezo - EoRezo.) -- C:\Program Files\EoRezo\eorezo.exe [667648]

O2 - BHO: EOBHO - {C10DC1F4-CCDF-4224-A24D-B23AFC3573C8} . (.EoRezo - ....) -- C:\Program Files\EoRezo\EoRezoBHO.dll

O4 - HKLM\..\Run: [softwareHelper] . (.EoRezo - SoftwareHelper.) -- C:\Documents and Settings\Utilitaire\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe

O4 - HKLM\..\Run: [eorezo] . (.EoRezo - EoRezo.) -- C:\Program Files\EoRezo\eorezo.exe

O42 - Logiciel: EoRezo 12.0 - (.EoRezo.) [HKLM] -- EoRezo_is1

O42 - Logiciel: SoftwareUpdate 1.0 - (.eoRezo.) [HKLM] -- SoftwareUpdate_is1

[HKCU\Software\EoRezo]

[HKLM\Software\EoRezo]

---\\ Infection BT - BHO/Toolbar (Possible)

O2 - BHO: BrowserHelper Class - {8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6} . (.Make The Web Better, LLC - Pas de description.) -- C:\Program Files\SGPSA\SearchAssistant.dll

O2 - BHO: XBTBPos00 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} . (.Pas de propriétaire - IE Toolbar Engine.) -- C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll

O3 - Toolbar: IE Toolbar - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} . (.Pas de propriétaire - IE Toolbar Engine.) -- C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll

O4 - HKLM\..\Run: [FBSearch] . (.Pas de propriétaire - Fast Browser Search Protection.) -- C:\Program Files\Search Guard Plus\SearchGuardPlus.exe

O69 - SBI: SearchScopes [HKCU] {19F2B849-4ADE-4d4b-85F9-C31C643DBDE9} - (Fast Browser Search) - Fast Browser Search

End of the scan (1243 lines in 01mn 24s)(0)

thorgal · le 5 février 2011

Bonjour,

Tu y comprends quelque chose à toutes ces lignes toi ? J'ai du mal, tu aurais dû poster dans la bonne rubrique comme je te l'avais demandé => http://forum.zebulon...8-p1532398.html.

Sinon, on peut dire qu'il y a bien des petites choses !

Regarde dans Ajout/Supprimer des programmes. Tu dois avoir Eorezo. Supprime le. Ensuite, applique ceci :

Télécharge Malwarebytes' Anti-Malware sur ton Bureau.

Installe-le en double-cliquant sur le fichier mbam-setup.exe.
Une fois l'installation et la mise à jour effectuées :
Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
Afin de lancer la recherche, clic sur"Rechercher".
Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :
Si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
Si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau.
Fais redémarrer ton ordinateur normalement et poste le rapport dans ta prochaine réponse.

REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.

Modifié le 5 février 2011 par thorgal

Tonton · le 5 février 2011

Salut Laurenn,

thorgal a plus que raison; voici la liste de toutes les infections présentes sur ton PC :

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: Modified => Infection Diverse (Disabled.SecurityCenter)
[MD5.5ECD3C3B70B6B50F284DBAF6016B2DDF] - (.EoRezo - SoftwareHelper.) -- C:\Documents and Settings\Utilitaire\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe [368224]

[MD5.010B0375D16D6194B03B97AFDFC2856D] - (.EoRezo - EoRezo.) -- C:\Program Files\EoRezo\eorezo.exe [667648] => Infection FakeAlert (EoRezo.Spy)

[MD5.677FE7FE101460A2ACF62CEB400245ED] - (.Pinball Corporation. - ClickPotato Search assistant.) -- C:\Program Files\ClickPotatoLite\bin\10.0.646.0\ClickPotatoLiteSA.exe [741680] => Infection BT (Adware.ClickPotato)

O2 - BHO: ShopperReports - {100EB1FD-D03E-47fd-81F3-EE91287F9465} . (.SmartShopper Inc. - ShopperReports.) -- C:\Program Files\ShopperReports3\bin\3.0.517.0\ShopperReports.dll => Infection BT (Adware.ShopperReports)

O2 - BHO: ShoppingReport2 - {258C9770-1713-4021-8D7E-1F184A2BD754} . (.SmartShopper Networks - Pas de description.) -- C:\Program Files\ShoppingReport2\Bin\2.7.27\ShoppingReport.dll => Infection BT (Adware.ShoppingReports)

O2 - BHO: BrowserHelper Class - {8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6} . (.Make The Web Better, LLC - Pas de description.) -- C:\Program Files\SGPSA\SearchAssistant.dll => Infection BT (PUP.FBSearch)

O2 - BHO: EOBHO - {C10DC1F4-CCDF-4224-A24D-B23AFC3573C8} . (.EoRezo - ....) -- C:\Program Files\EoRezo\EoRezoBHO.dll => Infection FakeAlert (Rogue.Eorezo)

O2 - BHO: (no name) - {F0626A63-410B-45E2-99A1-3F2475B2D695} Clé orpheline => Infection BT (Fast Browser Search Toolbar)

O2 - BHO: XBTBPos00 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} . (.Pas de propriétaire - IE Toolbar Engine.) -- C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll => Infection BT (PUP.Fbsearch)

O3 - Toolbar: IE Toolbar - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} . (.Pas de propriétaire - IE Toolbar Engine.) -- C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll => Infection BT (PUP.Fbsearch)

O4 - HKLM\..\Run: [softwareHelper] . (.EoRezo - SoftwareHelper.) -- C:\Documents and Settings\Utilitaire\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe => Infection FakeAlert (Rogue.Eorezo)

O4 - HKLM\..\Run: [FBSearch] . (.Pas de propriétaire - Fast Browser Search Protection.) -- C:\Program Files\Search Guard Plus\SearchGuardPlus.exe => Infection BT (PUP.FBSearch)

O4 - HKLM\..\Run: [eorezo] . (.EoRezo - EoRezo.) -- C:\Program Files\EoRezo\eorezo.exe => Infection FakeAlert (Rogue.Eorezo)

O4 - HKLM\..\Run: [ClickPotatoLiteSA] . (.Pinball Corporation. - ClickPotato Search assistant.) -- C:\Program Files\ClickPotatoLite\bin\10.0.646.0\ClickPotatoLiteSA.exe => Infection BT (Adware.ClickPotato)

O4 - HKCU\..\Run: [PersSecurity] C:\Program Files\PersSecurity\psecurity.exe (.not file.) => Infection Rogue (Rogue.PersonalSecurity)

O4 - HKUS\S-1-5-21-3560152835-2262235841-4004563780-1006\..\Run: [PersSecurity] C:\Program Files\PersSecurity\psecurity.exe (.not file.) => Infection Rogue (Rogue.PersonalSecurity)

O9 - Extra button: Skype Plug-In - {B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} . (.Pinball Corporation - ClickPotato.) -- C:\Program Files\ClickPotatoLite\bin\10.0.646.0\ClickPotatoLiteSABHO.dll => Infection BT (Adware.ClickPotato)

O9 - Extra button: Skype Plug-In - {C5428486-50A0-4a02-9D20-520B59A9F9B2} . (.SmartShopper Inc. - ShopperReports.) -- C:\Program Files\ShopperReports3\bin\3.0.517.0\ShopperReports.dll => Infection BT (Adware.ShopperReports)

O9 - Extra button: Skype Plug-In - {C5428486-50A0-4a02-9D20-520B59A9F9B3} . (.SmartShopper Inc. - ShopperReports.) -- C:\Program Files\ShopperReports3\bin\3.0.517.0\ShopperReports.dll => Infection BT (Adware.ShopperReports)

O9 - Extra button: Skype Plug-In - {DB38E21A-0133-419d-92AD-ECDFD5244D6D} . (.SmartShopper Networks - Pas de description.) -- C:\Program Files\ShoppingReport2\Bin\2.7.27\ShoppingReport.dll => Infection BT (Adware.ShoppingReports)

O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.SmartShopper Networks - Pas de description.) -- C:\Program Files\ShoppingReport2\Bin\2.7.27\ShoppingReport.dll => Infection BT (Adware.ShoppingReports)

O9 - Extra button: @xpsp3res.dll,-20001 - {EB620C54-E229-4942-87CE-E717109FC8C6} . (.SmartShopper Networks - Pas de description.) -- C:\Program Files\ShoppingReport2\Bin\2.7.27\ShoppingReport.dll => Infection BT (Adware.ShoppingReports)

O23 - Service: (BarDiscover Service) . (.Pas de propriétaire - Pas de description.) - C:\Documents and Settings\All Users\Application Data\BarDiscover\bardiscover141.exe => Infection BT (Adware.BarDiscover)

O42 - Logiciel: ClickPotato - (.Pinball Corporation..) [HKLM] -- ClickPotatoLiteSA => Infection BT (Adware.ClickPotato)

O42 - Logiciel: EoRezo 12.0 - (.EoRezo.) [HKLM] -- EoRezo_is1 => Infection FakeAlert (Rogue.Eorezo)

O42 - Logiciel: Fissa - (.Secure Digital Services.) [HKLM] -- Fissa => Infection BT (PUP.OfferBox)

O42 - Logiciel: ShopperReports - (.ShopperReports.) [HKLM] -- ShoppingReport2 => Infection BT (ShopperReports.Adw)

O42 - Logiciel: ShopperReports - (.SmartShopper.) [HKLM] -- ShopperReportsSA => Infection BT (ShopperReports.Adw)

O42 - Logiciel: SoftwareUpdate 1.0 - (.eoRezo.) [HKLM] -- SoftwareUpdate_is1 => Infection FakeAlert (EoRezo.Spy)

[HKCU\Software\DataMngr] => Infection BT (Adware.Bandoo)

[HKCU\Software\EoRezo] => Infection FakeAlert (Rogue.Eorezo)

[HKCU\Software\FBSearch] => Infection BT (PUP.Fbsearch)

[HKCU\Software\FissaSearch] => Infection BT (PUP.OfferBox)

[HKCU\Software\OfferBox] => Infection BT (PUP.OfferBox)

[HKCU\Software\PriceGong] => Infection Diverse (Adware.PriceGong)

[HKCU\Software\ShopperReports3] => Infection BT (Adware.ShopperReports)

[HKCU\Software\ShoppingReport2] => Infection BT (Adware.ShoppingReports)

[HKCU\Software\Spointer] => Infection BT (Adware.SPointer)

[HKCU\Software\TBSB07183] => Infection BT (PUP.Fbsearch)

[HKCU\Software\Winsudate] => Infection Diverse (Adware.Gibmedia)

[HKCU\Software\clickpotatolitesa] => Infection BT (Adware.ClickPotato)

[HKLM\Software\ClickPotatoLite] => Infection BT (Adware.ClickPotato)

[HKLM\Software\DataMngr] => Infection BT (Adware.Bandoo)

[HKLM\Software\EoRezo] => Infection FakeAlert (Rogue.Eorezo)

[HKLM\Software\OfferBox] => Infection BT (PUP.OfferBox)

[HKLM\Software\ShopperReports3] => Infection BT (Adware.ShopperReports)

[HKLM\Software\Winsudate] => Infection Diverse (Adware.Gibmedia)

O43 - CFD: 28/07/2010 - 22:42:10 ----D- C:\Program Files\BarDiscover => Infection BT (Adware.BarDiscover)

O43 - CFD: 14/01/2011 - 19:50:00 ----D- C:\Program Files\ClickPotatoLite => Infection BT (Adware.ClickPotato)

O43 - CFD: 19/12/2010 - 23:58:34 ----D- C:\Program Files\EoRezo => Infection FakeAlert (Rogue.Eorezo)

O43 - CFD: 21/12/2009 - 00:46:22 ----D- C:\Program Files\Fast Browser Search => Infection BT (PUP.Fbsearch)

O43 - CFD: 21/12/2009 - 00:46:30 ----D- C:\Program Files\Search Guard Plus => Infection BT (PUP.FBSearch)

O43 - CFD: 21/12/2009 - 00:46:28 ----D- C:\Program Files\SGPSA => Infection BT (PUP.FBSearch)

O43 - CFD: 14/01/2011 - 19:59:06 ----D- C:\Program Files\ShopperReports3 => Infection BT (Adware.ShopperReports)

O43 - CFD: 17/11/2010 - 16:16:06 ----D- C:\Program Files\ShoppingReport2 => Infection BT (Adware.ShoppingReports)

O43 - CFD: 03/02/2010 - 00:05:46 ----D- C:\Program Files\Winsudate => Infection Diverse (Adware.Gibmedia)

O43 - CFD: 10/04/2010 - 00:32:16 ----D- C:\Program Files\Fichiers Communs\PersSecurityUninstall => Infection Rogue (Rogue.PersonalSecurity)

O43 - CFD: 14/01/2011 - 19:50:00 ----D- C:\Documents and Settings\Utilitaire\Application Data\ClickPotatoLite => Infection BT (Adware.ClickPotato)

O43 - CFD: 09/12/2009 - 01:57:28 ----D- C:\Documents and Settings\Utilitaire\Application Data\EoRezo => Infection FakeAlert (Rogue.Eorezo)

O43 - CFD: 11/11/2010 - 02:23:22 ----D- C:\Documents and Settings\Utilitaire\Application Data\FissaSearch => Infection BT (PUP.OfferBox)

O43 - CFD: 11/11/2010 - 01:58:24 ----D- C:\Documents and Settings\Utilitaire\Application Data\OfferBox => Infection BT (PUP.OfferBox)

O43 - CFD: 05/02/2011 - 15:04:00 ----D- C:\Documents and Settings\Utilitaire\Application Data\PriceGong => Infection Diverse (Adware.PriceGong)

O43 - CFD: 14/01/2011 - 20:54:34 ----D- C:\Documents and Settings\Utilitaire\Application Data\ShopperReports3 => Infection BT (Adware.ShopperReports)

O43 - CFD: 04/02/2011 - 18:35:14 ----D- C:\Documents and Settings\Utilitaire\Application Data\ShoppingReport2 => Infection BT (Adware.ShoppingReports)

O64 - Services: CurCS - C:\Documents and Settings\All Users\Application Data\BarDiscover\bardiscover141.exe - BarDiscover Service (BarDiscover Service) .(.Pas de propriétaire - Pas de description.) - LEGACY_BARDISCOVER_SERVICE => Infection BT (Adware.BarDiscover)

SS - | Auto 10/07/2010 57616 | (BarDiscover Service) . (.Pas de propriétaire.) - C:\Documents and Settings\All Users\Application Data\BarDiscover\bardiscover141.exe => Infection BT (Adware.BarDiscover)

[MD5.5ECD3C3B70B6B50F284DBAF6016B2DDF] - (.EoRezo - SoftwareHelper.) -- C:\Documents and Settings\Utilitaire\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe [368224]

[MD5.010B0375D16D6194B03B97AFDFC2856D] - (.EoRezo - EoRezo.) -- C:\Program Files\EoRezo\eorezo.exe [667648] => Infection FakeAlert (EoRezo.Spy)

O2 - BHO: EOBHO - {C10DC1F4-CCDF-4224-A24D-B23AFC3573C8} . (.EoRezo - ....) -- C:\Program Files\EoRezo\EoRezoBHO.dll => Infection FakeAlert (Rogue.Eorezo)

O4 - HKLM\..\Run: [softwareHelper] . (.EoRezo - SoftwareHelper.) -- C:\Documents and Settings\Utilitaire\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe => Infection FakeAlert (Rogue.Eorezo)

O4 - HKLM\..\Run: [eorezo] . (.EoRezo - EoRezo.) -- C:\Program Files\EoRezo\eorezo.exe => Infection FakeAlert (Rogue.Eorezo)

O42 - Logiciel: EoRezo 12.0 - (.EoRezo.) [HKLM] -- EoRezo_is1 => Infection FakeAlert (Rogue.Eorezo)

O42 - Logiciel: SoftwareUpdate 1.0 - (.eoRezo.) [HKLM] -- SoftwareUpdate_is1 => Infection FakeAlert (EoRezo.Spy)

[HKCU\Software\EoRezo] => Infection FakeAlert (Rogue.Eorezo)

[HKLM\Software\EoRezo] => Infection FakeAlert (Rogue.Eorezo)

O2 - BHO: BrowserHelper Class - {8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6} . (.Make The Web Better, LLC - Pas de description.) -- C:\Program Files\SGPSA\SearchAssistant.dll => Infection BT (PUP.FBSearch)

O2 - BHO: XBTBPos00 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} . (.Pas de propriétaire - IE Toolbar Engine.) -- C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll => Infection BT (PUP.Fbsearch)

O3 - Toolbar: IE Toolbar - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} . (.Pas de propriétaire - IE Toolbar Engine.) -- C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll => Infection BT (PUP.Fbsearch)

O4 - HKLM\..\Run: [FBSearch] . (.Pas de propriétaire - Fast Browser Search Protection.) -- C:\Program Files\Search Guard Plus\SearchGuardPlus.exe => Infection BT (PUP.FBSearch)

--------------------------------------------------------------

--> Ouvre très vite un nouveau sujet dans la section "Analyse et éradication des malwares" dont voici le lien :

--------------------------------------------------------------

Pour une bonne traçabilité et afin que le helper qui te prendra en charge soit informé des manips déjà réalisées, copie/colle ds ton nouveau sujet le lien que tu trouveras en cliquant ds le n° du présent Post.

--------------------------------------------------------------

Bonne désinfection et bon we,

Tonton

Modifié le 5 février 2011 par Tonton57

Blue2 · le 6 février 2011

• Y manque du stock dans les lignes proposées par Tonton57.

• Un scan avec USBFix serait à considérer.

Laurenn,

Ils y a une grande quantité de Toolbar "à risques" et d'Adware d'installés.

Sans être des virus ou spyware.

Qu'un de ces objets, est susceptible de provoquer un ralentissement remarqué des performances.

Ces objets sont installés, avec leurs options cochées "par défauts", lors de l'installation de logiciels "gratuits". Certains de ces logiciels sont connus et même des plus recherchés. Même les toolbar légitimes, telques les Google, Yahoo etc. Qui ne sont jamais utilisées, devraient aussi être évitées ou désinstallées. Considérant qu'il prennent un peu en ressources ..dès l'ouverture des navigateurs.

⊳ Toujours Décocher toutes applications(cochées par défauts), proposées en pré-installation.

Que vous ayez ou non fait les procédures de Thorgal et Tonton57.

Faites déplacer le sujet dans la section : Analyses et éradication malwares

Connexion

Pas encore inscrit ?

Fenetre intempestives Internet Explorer

Messages recommandés

Laurenn

Blue2

thorgal

Laurenn

thorgal

Tonton

Blue2

Rejoindre la conversation

En ligne récemment 0 membre est en ligne

Zebulon

Outils en ligne

Naviguer