Problème mise a jour windows update

[erick10]

bonjour,

 

voila a vrai dire mon pc est devenu tres lent

et je l'entend travailler sans arret.

J'essaie de faire les mises a jour windows mais quand je suis sur windows update

j'ai l'erreur code 80073712

[thorgal]

Bonjour,

 

En appliquant cette solution => Windows Update Vista: Réparer l'erreur 80073712 : Astuces pour dépanner Vista et Seven, ton problème devrait se régler.

[erick10]

bonjour,

merci mais j'ai déja fait cette manip mais dans l'invit de commande le fichier

takeown /f C:\Windows\winsxs\pending.xml

est introuvable donc je ne sais pas aller plus loin

[Tonton]

Salut erick10,

 

• Télécharge ZHPDiag de Nicolas Coolman :
  
• Enregistre le sur ton bureau
  - Sous XP : double-clique sur l'icône
  - Sous Vista ou Windows 7 : clique droit sur l’icône puis « exécuter en tant qu’administrateur »
  
• Suis les instructions à l'écran
  
• Clique sur l'icône LOUPE pour lancer l'analyse
  
• Clique sur l'icône APPAREIL PHOTO pour copier le rapport, puis colle-le dans ta prochaine réponse
  
• Tu peux également trouver le rapport sous C:\Program Files\ZebHelpProcess\ZHPDiag.txt

A te lire,

Tonton

Modifié le 9 mars 2011 par Tonton57

[erick10]

bonsoir tonton57

et merci pour cette intervention je poste ici mon rapport

 

Rapport de ZHPDiag v1.27.1633 par Nicolas Coolman, Update du 10/03/2011

Run by Eric at 10/03/2011 19:46:23

Web site : ZHPDiag Outil de diagnostic

Contact : nicolascoolman@yahoo.fr

 

---\\ Web Browser

MSIE: Internet Explorer v8.0.6001.18865

MFIE: Mozilla Firefox v3.6.15 (fr)

GCIE: Google Chrome v5.0.375.126

 

---\\ System Information

Windows Vista Home Premium Edition, 32-bit (Build 6000)

Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel

Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 2045 MB (48% free)

System Restore: Activé (Enable)

System drive C: has 317 GB (69%) free of 458 GB

 

---\\ Logged in mode

Computer Name: PC-DE-ERIC

User Name: Eric

All Users Names: Eric, Administrateur,

Unselected Option: O45,O61,O62,O65,O66,O82

Logged in as Administrator

 

---\\ Environnement Variables

%AppData%=C:\Users\Eric\AppData\Roaming

%LocalAppData%=C:\Users\Eric\AppData\Local

%StartMenu%=C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Start Menu

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 317 Go of 458 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 8 Go)

E:\ CD-ROM drive (Not Inserted)

F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

J:\ Hard drive, Flash drive, Thumb drive (Free 228 Go of 233 Go)

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

 

 

---\\ Recherche particulière de fichiers génériques

[MD5.37440D09DEAE0B672A04DCCF7ABF06BE] - (.Microsoft Corporation - Explorateur Windows.) (.29/10/2008 7:20:29.) -- C:\Windows\Explorer.exe [2923520]

[MD5.D4385B03E8CCCEE6F0EE249F827C1F3E] - (.Microsoft Corporation - Application de démarrage de Windows.) (.02/11/2006 10:45:57.) -- C:\Windows\System32\Wininit.exe [95744]

[MD5.DCB9E422810877D7C4115BACE54B084C] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.21/11/2009 7:40:20.) -- C:\Windows\System32\wininet.dll [916480]

[MD5.9F75392B9128A91ABAFB044EA350BAAD] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.02/11/2006 10:45:57.) -- C:\Windows\System32\Winlogon.exe [308224]

[MD5.E03E8C99D15D0381E02743C36AFC7C6F] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.19/05/2008 18:52:27.) -- C:\Windows\System32\drivers\atapi.sys [21560]

[MD5.37430AA7A66D7A63407ADC2C0D05E9F6] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.19/05/2008 18:53:04.) -- C:\Windows\System32\drivers\ntfs.sys [1060920]

 

 

---\\ Processus lancés

[MD5.1BAEB483167B1568A0D95437B4B310A3] - (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\Program Files\AVG\AVG9\avgtray.exe [2069344]

[MD5.2E5212A0BFB98FE0167C92C76C87AFE3] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [249064]

[MD5.F3E9065EB617A7E3A832A7976BFA021B] - (.Microsoft Corporation - Windows Update Automatic Updates.) -- C:\Windows\system32\wuauclt.exe [53080]

[MD5.6CBF6DCC830A1C32EBCF7036A4978C8C] - (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\system32\Macromed\Flash\FlashUtil10n_ActiveX.exe [234656]

[MD5.AE4FDCD118E80F22F122AAAD87E92769] - (.Google Inc. - Google Chrome.) -- C:\Users\Eric\AppData\Local\Google\Chrome\Application\chrome.exe [945720]

[MD5.1B6362BB14FCEB9E76BCF9A953B04788] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [638232]

[MD5.88C44CA9A052AEAEC0C91A57CE5AB41A] - (.Google Inc. - Google Toolbar Broker.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe [304304]

[MD5.4D51683744E2CC9A5B10E6EDA129C1E6] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [632320]

 

 

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)

M3 - MFPP: Plugins - [Eric] -- C:\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\ycdq3zne.default\searchplugins\MyStart Search.xml

M3 - MFPP: Plugins - [Eric] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml

M3 - MFPP: Plugins - [Eric] -- C:\Program Files\Mozilla FireFox\searchplugins\amazondotcom.xml

M3 - MFPP: Plugins - [Eric] -- C:\Program Files\Mozilla FireFox\searchplugins\answers.xml

M3 - MFPP: Plugins - [Eric] -- C:\Program Files\Mozilla FireFox\searchplugins\babylon.xml

M3 - MFPP: Plugins - [Eric] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml

M3 - MFPP: Plugins - [Eric] -- C:\Program Files\Mozilla FireFox\searchplugins\creativecommons.xml

M3 - MFPP: Plugins - [Eric] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml

M3 - MFPP: Plugins - [Eric] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay.xml

M3 - MFPP: Plugins - [Eric] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml

M3 - MFPP: Plugins - [Eric] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml

M3 - MFPP: Plugins - [Eric] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia.xml

M3 - MFPP: Plugins - [Eric] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml

M3 - MFPP: Plugins - [Eric] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo.xml

P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll

P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll

P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFFICE.DLL

P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.0.1.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll

P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll

P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_24 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll

P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.50917.0.) -- c:\Program Files\Microsoft Silverlight\4.0.50917.0\npctrl.dll

P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8064.0206] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8081.0709] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

P2 - FPN: [HKLM] [@pandasecurity.com/activescan] - (.Panda Security, S.L. - Panda ActiveScan 2.0 Plugin for Firefox.) -- C:\Program Files\Panda Security\ActiveScan 2.0\npwrapper.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll

M0 - MFSP: prefs.js [Eric - ycdq3zne.default] Google

M2 - MFEP: prefs.js [Eric - ycdq3zne.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)

M2 - MFEP: prefs.js [Eric - ycdq3zne.default\{2122962a-1424-fffe-19af-bba2ef3eff4a}] [] YouTube Downloader for Facebook v1.0 (..)

M2 - MFEP: prefs.js [Eric - ycdq3zne.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.8.1 (.Michel Gutierrez.)

M2 - MFEP: prefs.js [Eric - ycdq3zne.default\{d1a1c8f1-e3d9-48df-802f-20201061ef61}] [] Messenger Plus Live Belgium Toolbar v2.5.6.0 (.Conduit Ltd..)

M2 - MFEP: prefs.js [Eric - ycdq3zne.default\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}] [] IncrediMail MediaBar 2 Toolbar v2.7.2.0 (.Conduit Ltd..)

 

 

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

G1 - GCS: Preference [user Data\Default] None

G0 - GCSP: Preference [user Data\Default][HomePage] Google

G2 - GCE: Preference [user Data\Default] [hkacjpbfdknhflllbcmjibkdeoafencn] Default v.1.1 (Activé)

 

 

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKUS\S-1-5-21-1794191197-965866768-1418396078-1000\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Microsoft Corporation

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R3 - URLSearchHook: Messenger Plus Live Belgium Toolbar - {d1a1c8f1-e3d9-48df-802f-20201061ef61} . (.Conduit Ltd. - Conduit Toolbar.) (5, 3, 5, 4) -- C:\Program Files\Messenger_Plus_Live_Belgium\tbMess.dll

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)) -- C:\Windows\system32\ieframe.dll

R3 - URLSearchHook: Messenger Plus Live Belgium Toolbar - {d1a1c8f1-e3d9-48df-802f-20201061ef61} . (.Conduit Ltd. - Conduit Toolbar.) (5, 3, 5, 4) -- C:\Program Files\Messenger_Plus_Live_Belgium\tbMess.dll

R3 - URLSearchHook: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} Clé orpheline

R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 1

 

 

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

 

 

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

 

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} Clé orpheline

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} . (.AVG Technologies CZ, s.r.o. - Safe Search for Internet Explorer.) -- C:\Program Files\AVG\AVG9\avgssie.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll

O2 - BHO: Messenger Plus Live Belgium Toolbar - {d1a1c8f1-e3d9-48df-802f-20201061ef61} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Messenger_Plus_Live_Belgium\tbMess.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

 

 

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: Messenger Plus Live Belgium Toolbar - {d1a1c8f1-e3d9-48df-802f-20201061ef61} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Messenger_Plus_Live_Belgium\tbMess.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

 

 

---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [AVG9_TRAY] . (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\PROGRA~1\AVG\AVG9\avgtray.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe

O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll

 

 

---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe

O4 - Global Startup: C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe

O4 - Global Startup: C:\Users\Eric\Desktop\Adobe Photoshop CS2.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Photoshop CS2\Photoshop.exe

O4 - Global Startup: C:\Users\Eric\Desktop\Calculator.lnk . (.Microsoft Corporation.) -- C:\Windows\System32\calc.exe

O4 - Global Startup: C:\Users\Eric\Desktop\Computer Management.lnk . (...) -- C:\Windows\System32\compmgmt.msc

O4 - Global Startup: C:\Users\Eric\Desktop\ConvertXtoDvd 3.lnk . (.VSO Software SARL.) -- C:\Program Files\VSO\ConvertX\3\ConvertXtoDvd.exe

O4 - Global Startup: C:\Users\Eric\Desktop\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\Eric\Desktop\Mes documents.lnk . (...) -- C:\Users\Eric\Documents

O4 - Global Startup: C:\Users\Eric\Desktop\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O4 - Global Startup: C:\Users\Eric\Desktop\Paint.lnk . (.Microsoft Corporation.) -- C:\Windows\System32\mspaint.exe

O4 - Global Startup: C:\Users\Eric\Desktop\Poste de travail.lnk - Clé orpheline

O4 - Global Startup: C:\Users\Eric\Desktop\Programmes et fonctionnalités - Raccourci.lnk - Clé orpheline

O4 - Global Startup: C:\Users\Eric\Desktop\Téléchargement.lnk . (...) -- C:\Users\Eric\Downloads

O4 - Global Startup: C:\Users\Eric\Desktop\Video Convert Master.lnk . (...) -- C:\Program Files\Video Convert Master\videoapp.exe

O4 - Global Startup: C:\Users\Eric\Desktop\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\MOVIEMK.exe

O4 - Global Startup: C:\Users\Eric\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\CodeStuff Starter.lnk . (.CodeStuff.) -- C:\Program Files\CodeStuff\Starter\Starter.exe

O4 - Global Startup: C:\Users\Eric\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\extinction ordi.lnk . (.Microsoft Corporation.) -- C:\Windows\System32\shutdown.exe

O4 - Global Startup: C:\Users\Eric\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Users\Eric\AppData\Local\Google\Chrome\Application\chrome.exe

O4 - Global Startup: C:\Users\Eric\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\IncrediMail 2.0.lnk . (.IncrediMail, Ltd..) -- C:\Program Files\IncrediMail\Bin\IncMail.exe

O4 - Global Startup: C:\Users\Eric\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\Eric\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2003.lnk . (...) -- C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\wordicon.exe

O4 - Global Startup: C:\Users\Eric\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O4 - Global Startup: C:\Users\Eric\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Live Messenger .lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

 

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.exe

O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll

O8 - Extra context menu item: Tout télécharger avec BitComet - (.not file.) - Z:\BitComet.exe

O8 - Extra context menu item: Télécharger avec BitComet - (.not file.) - Z:\BitComet.exe

O8 - Extra context menu item: Télécharger toutes les vidéos avec BitComet - (.not file.) - Z:\BitComet.exe

 

 

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~3\OFFICE11\REFBARH.ICO

O9 - Extra 'Tools' menuitem: Recherche - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} . (.not file.) - Z:\tools\bitcometbho.dll

 

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll

 

 

---\\ Site dans la Zone de confiance d'Internet Explorer (O15)

O15 - Trusted Zone: [HKCU\...\Domains\www] http.secuser.com

 

 

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab

O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} - (SpinTop DRM Control) - (.not file.) - C:\Program Files\Super Mah Jong Solitaire\Images\stg_drm.ocx

O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} (CamfrogWEB Advanced Unicode Control) - http://www.visiogood.com/jalss/cfweb_activex.camfrogweb.com-advanced-2.0.2.20_instmodule.exe

O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab

O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} () - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab

O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www3.snapfish.be/SnapfishActivia.cab

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/pr01/resources/VistaMSNPUpldfr-be.cab

O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab

O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.extrafilm.be/ImageUploader5.cab

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab

O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab

O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} () - http://download.eset.com/special/eos/OnlineScanner.cab

O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab

O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} ("Ma-Config.com control) - http://www.ma-config.com/plugins/MaConfig_4_6_0_1.cab

O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab

O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} - (ArmHelper Control) - (.not file.) - C:\Program Files\Mahjong Escape - Ancient Japan\Images\armhelper.ocx

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

 

 

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{007F1567-D28C-4121-98B9-82ECA3B7CE12}: DhcpNameServer = 62.197.111.140

O17 - HKLM\System\CCS\Services\Tcpip\..\{F17C72E4-EAF6-4181-A783-BBFB1F9334D0}: DhcpNameServer = 62.197.111.140

O17 - HKLM\System\CS1\Services\Tcpip\..\{007F1567-D28C-4121-98B9-82ECA3B7CE12}: DhcpNameServer = 62.197.111.140

O17 - HKLM\System\CS1\Services\Tcpip\..\{F17C72E4-EAF6-4181-A783-BBFB1F9334D0}: DhcpNameServer = 62.197.111.140

O17 - HKLM\System\CS3\Services\Tcpip\..\{007F1567-D28C-4121-98B9-82ECA3B7CE12}: DhcpNameServer = 62.197.111.140

O17 - HKLM\System\CS3\Services\Tcpip\..\{F17C72E4-EAF6-4181-A783-BBFB1F9334D0}: DhcpNameServer = 62.197.111.140

O17 - HKLM\System\CCS\Services\Tcpip\..\{F17C72E4-EAF6-4181-A783-BBFB1F9334D0}: DhcpDomain = teledisnet.be

O17 - HKLM\System\CS1\Services\Tcpip\..\{F17C72E4-EAF6-4181-A783-BBFB1F9334D0}: DhcpDomain = teledisnet.be

O17 - HKLM\System\CS3\Services\Tcpip\..\{F17C72E4-EAF6-4181-A783-BBFB1F9334D0}: DhcpDomain = teledisnet.be

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.197.111.140

 

 

---\\ Protocole additionnel et piratage de protocole (O18)

O18 - Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} . (.AVG Technologies CZ, s.r.o. - Safe Search pluggable protocol.) -- C:\Program Files\AVG\AVG9\avgpp.dll

 

 

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - Winlogon Notify: !SASWinLogon . (.SUPERAntiSpyware.com - SUPERAntiSpyware WinLogon Processor.) -- C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

 

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll

 

 

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll

 

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: (Adobe LM Service) . (.Adobe Systems - System Level Service Utility.) - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: (Ati External Event Utility) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\Windows\system32\Ati2evxx.exe

O23 - Service: (avg9wd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files\AVG\AVG9\avgwdsvc.exe

O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe

O23 - Service: (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: (lxdiCATSCustConnectService) . (.Lexmark International, Inc. - Lexmark Connect Service Executable.) - C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdiserv.exe

O23 - Service: (lxdi_device) . (.Pas de propriétaire - Printer Communication System.) - C:\Windows\system32\lxdicoms.exe

O23 - Service: (maconfservice) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\maconfservice.exe

O23 - Service: (NBService) . (.Nero AG - Nero BackItUp.) - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: (NMIndexingService) . (.Nero AG - Nero Home.) - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

O23 - Service: (PCD5SRVC{BD6912E3-AC9D80E8-05040000}) . (.PC-Doctor, Inc. - pcdrsrvc.sys.) - C:\PROGRA~1\PC-DOC~1\PCD5SRVC.pkms

O23 - Service: (ProtexisLicensing) . (.Pas de propriétaire - nTitles PSIService.) - C:\Windows\system32\PSIService.exe

O23 - Service: (sp_rssrv) . (.Crawler.com - Spyware Terminator Realtime Shield Service.) - C:\Program Files\Spyware Terminator\sp_rsser.exe

O23 - Service: C:\Windows\System32\TuneUpDefragService.exe (TuneUp.Defrag) . (.TuneUp Software GmbH - TuneUp Drive Defrag-Dienst.) - C:\Windows\System32\TuneUpDefragService.exe

 

 

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(...) - (.not file.)

 

 

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\User_Feed_Synchronization-{07F730B7-40FA-4F9F-9E96-7A3A02DA76E5}.job

[MD5.70FFCB9B44BEF2E2D94C0ECDE130FAE3] [APT] [GlaryInitialize] (.Glarysoft Ltd.) -- C:\Program Files\Glary Utilities\initialize.exe

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe

[MD5.2E5212A0BFB98FE0167C92C76C87AFE3] [APT] [Java Update Scheduler] (.Sun Microsystems, Inc..) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe

[MD5.00000000000000000000000000000000] [APT] [JavaUpdateAdministrator] (.Pas de propriétaire.) -- C:\Windows\system32\jusched.exe (.not file.)

[MD5.D155CE851C7714732A4D3E3115F1CF01] [APT] [Maintenance automatique] (.Pas de propriétaire.) -- C:\Program Files\TuneUp Utilities 2008\OneClickStarter.exe

[MD5.BAD6BEA0DE1F69C82BDB74378CE0C20A] [APT] [Programme de mise … jour en ligne de Adobe] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

[MD5.00000000000000000000000000000000] [APT] [{4FCB38EA-14FF-4F9C-B867-46E2D2623F06}] (.Pas de propriétaire.) -- J:\Programme\NERO 7.10.1.0\nero_nero_7.10.1.0_francais_10297.exe (.not file.)

[MD5.00000000000000000000000000000000] [APT] [{CEEDBB61-9537-4FB6-832C-D1B85E562B60}] (.Pas de propriétaire.) -- C:\Program Files\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe (.not file.)

[MD5.61D3771702DE72053FEE2A98F213A030] [APT] [scheduled Maintanence] (.PC-Doctor, Inc..) -- C:\Program Files\PC-Doctor 5 for Windows\RunProfiler.exe

 

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (AvgLdx86) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\System32\Drivers\avgldx86.sys

O41 - Driver: (AvgMfx86) . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - C:\Windows\System32\Drivers\avgmfx86.sys

O41 - Driver: (AvgTdiX) . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - C:\Windows\System32\Drivers\avgtdix.sys

O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys

O41 - Driver: (DfsC) . (.Microsoft Corporation - DFS Client MUP Surrogate Driver.) - C:\Windows\System32\Drivers\dfsc.sys

O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys

O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys

O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys

O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys

O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys

O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys

O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys

O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys

O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys

O41 - Driver: (SASDIFSV) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASDIFSV.SYS.) - C:\Program Files\SUPERAntiSpyware\SASDIFSV.sys

O41 - Driver: (SASKUTIL) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASKUTIL.SYS.) - C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Tcpip) . (.Microsoft Corporation - TCP/IP Driver.) - C:\Windows\System32\drivers\tcpip.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys

O41 - Driver: (Tosrfcom) . (.TOSHIBA Corporation - Bluetooth RFCOMM Driver.) - C:\Windows\System32\Drivers\tosrfcom.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys

 

 

---\\ Logiciels installés (O42)

O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07}

O42 - Logiciel: ACDSee 10 Photo Manager - (.ACD Systems International.) [HKLM] -- {F8B98EB6-FC06-45BF-87D4-9784E0408611}

O42 - Logiciel: AVG Free 9.0 - (.AVG Technologies.) [HKLM] -- AVG9Uninstall

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}

O42 - Logiciel: Adobe Bridge 1.0 - (.Adobe Systems.) [HKLM] -- {B74D4E10-6884-0000-0000-000000000101}

O42 - Logiciel: Adobe Common File Installer - (.Adobe System Incorporated.) [HKLM] -- {8EDBA74D-0686-4C99-BFDD-F894678E5101}

O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1

O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin

O42 - Logiciel: Adobe Help Center 1.0 - (.Adobe Systems.) [HKLM] -- {E9787678-119F-4D52-B551-6739B2B22101}

O42 - Logiciel: Adobe Photoshop CS2 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Photoshop CS2 - {236BB7C4-4419-42FD-040C-1E257A25E34D}

O42 - Logiciel: Adobe Reader X (10.0.1) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA0000000001}

O42 - Logiciel: Adobe Stock Photos 1.0 - (.Adobe Systems.) [HKLM] -- {786C5747-0C40-4930-9AFE-113BCE553101}

O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {553255F3-78FD-40F1-A6F8-6882140265FE}

O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}

O42 - Logiciel: ArcSoft TotalMedia Backup - (.ArcSoft.) [HKLM] -- {A8019072-B760-47E2-9BDD-DF94B4FBFFBB}

O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver

O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}

O42 - Logiciel: Auslogics Disk Defrag - (.Auslogics Software Pty Ltd.) [HKLM] -- {DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1

O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner

O42 - Logiciel: CamfrogWEB Advanced ActiveX Plugin (remove only) - (.Pas de propriétaire.) [HKLM] -- CFWebAdvancedU

O42 - Logiciel: Camouflage - (.Pas de propriétaire.) [HKLM] -- Camouflage

O42 - Logiciel: CodeStuff Starter - (.CodeStuff.) [HKLM] -- CodeStuff Starter

O42 - Logiciel: ConvertXtoDVD 3.3.4.106e - (.Pas de propriétaire.) [HKLM] -- {76C24F39-B161-498F-BD8B-C64789812D13}_is1

O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM] -- DVD Shrink_is1

O42 - Logiciel: Defraggler - (.Piriform.) [HKLM] -- Defraggler

O42 - Logiciel: EasyCleaner - (.ToniArts.) [HKLM] -- {F5346614-B7C4-4E94-826A-E2363155233D}

O42 - Logiciel: Eraser - (.Heidi Computers Ltd..) [HKLM] -- Eraser

O42 - Logiciel: Eraser - (.Heidi Computers Ltd..) [HKLM] -- {F850707C-B6A0-4B56-8709-F89CF8F9AC6D}

O42 - Logiciel: FormatFactory - (.FormatFactory.) [HKLM] -- {010E4D62-E59D-4191-A332-8D37223F630C}

O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}

O42 - Logiciel: Glary Utilities 2.27.0.982 - (.Glarysoft Ltd.) [HKLM] -- Glary Utilities_is1

O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM] -- {AFAD41A9-9687-48A3-848F-693C11451433}

O42 - Logiciel: HP Customer Feedback - (.Hewlett-Packard.) [HKLM] -- {9DBA770F-BF73-4D39-B1DF-6035D95268FC}

O42 - Logiciel: HP Easy Setup - Frontend - (.Hewlett-Packard.) [HKLM] -- {9885A11E-60E4-417C-B58B-8B31B21C0B8A}

O42 - Logiciel: HP On-Screen Cap/Num/Scroll Lock Indicator - (.Hewlett-Packard.) [HKLM] -- OsdMaestro

O42 - Logiciel: HP Photosmart Essential 2.5 - (.HP.) [HKLM] -- HP Photosmart Essential

O42 - Logiciel: HP Picasso Media Center Add-In - (.HP.) [HKLM] -- {55979C41-7D6A-49CC-B591-64AC1BBE2C8B}

O42 - Logiciel: HP Total Care Advisor - (.Hewlett-Packard.) [HKLM] -- {e96b3d28-47d6-43cc-98fd-7069eeab6b11}

O42 - Logiciel: Hercules Classic Webcam Drivers - (.Hercules.) [HKLM] -- {5F0EE12C-44B1-4FCB-87E3-4686C888774A}

O42 - Logiciel: Hercules WebCam Station - (.Pas de propriétaire.) [HKLM] -- {D208F4A7-6B73-4C2A-8B1E-8756FCBA831E}

O42 - Logiciel: Hercules Webcam - (.Pas de propriétaire.) [HKLM] -- {A250D351-A07F-4D5D-AB6C-693C69B9BFAF}

O42 - Logiciel: Hewlett-Packard Active Check - (.Hewlett-Packard.) [HKLM] -- {254C37AA-6B72-4300-84F6-98A82419187E}

O42 - Logiciel: Hewlett-Packard Asset Agent for Health Check - (.HP.) [HKLM] -- {669D4A35-146B-4314-89F1-1AC3D7B88367}

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484

O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM] -- {5E97F3BD-CDDC-4188-9D98-532E14FABB5D}

O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM] -- IncrediMail

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8}

O42 - Logiciel: Intel® Matrix Storage Manager - (.Pas de propriétaire.) [HKLM] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}

O42 - Logiciel: Java 6 Update 24 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF}

O42 - Logiciel: K-Lite Codec Pack 4.3.4 (Full) - (.Pas de propriétaire.) [HKLM] -- KLiteCodecPack_is1

O42 - Logiciel: LG USB Modem driver - (.Pas de propriétaire.) [HKLM] -- {C3ABE126-2BB2-4246-BFE1-6797679B3579}

O42 - Logiciel: Lexmark 3500-4500 Series - (.Lexmark International, Inc..) [HKLM] -- Lexmark 3500-4500 Series

O42 - Logiciel: LightScribe System Software 1.10.19.1 - (.http://www.lightscribe.com.) [HKLM] -- {59046D29-2E6B-4224-BF0D-64F3E7A93F7B}

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}

O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF}

O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- {C523D256-313D-4866-B36A-F3DE528246EF}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {96EB95A2-5245-4EA2-B6EA-B8BA2FBF64C4}

O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1

O42 - Logiciel: Malwarebytes' RogueRemover - (.Malwarebytes.) [HKLM] -- Malwarebytes' RogueRemover FREE_is1

O42 - Logiciel: Messenger Plus! Live - (.Yuna Software.) [HKLM] -- Messenger Plus! Live

O42 - Logiciel: Messenger_Plus_Live_Belgium Toolbar - (.Pas de propriétaire.) [HKLM] -- Messenger_Plus_Live_Belgium Toolbar

O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}

O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}

O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM] -- {9011040C-6000-11D3-8CFE-0150048383C9}

O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {A49F249F-0C91-497F-86DF-B2585E8E76B7}

O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {3B160861-7250-451E-B5EE-8B92BF30A710}

O42 - Logiciel: Microsoft_VC80_ATL_x86 - (.Adobe.) [HKLM] -- {0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}

O42 - Logiciel: Microsoft_VC80_CRT_x86 - (.Adobe.) [HKLM] -- {92D58719-BBC1-4CC3-A08B-56C9E884CC2C}

O42 - Logiciel: Microsoft_VC80_MFCLOC_x86 - (.Adobe.) [HKLM] -- {D92BBB52-82FF-42ED-8A3C-4E062F944AB7}

O42 - Logiciel: Microsoft_VC80_MFC_x86 - (.Adobe.) [HKLM] -- {D1A19B02-817E-4296-A45B-07853FD74D57}

O42 - Logiciel: Microsoft_VC90_ATL_x86 - (.Adobe.) [HKLM] -- {033E378E-6AD3-4AD5-BDEB-CBD69B31046C}

O42 - Logiciel: Microsoft_VC90_CRT_x86 - (.Adobe.) [HKLM] -- {08D2E121-7F6A-43EB-97FD-629B44903403}

O42 - Logiciel: Microsoft_VC90_MFC_x86 - (.Adobe.) [HKLM] -- {635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}

O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE}

O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra

O42 - Logiciel: Mozilla Firefox (3.6.15) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.15)

O42 - Logiciel: Nero 7 Ultra Edition - (.Nero AG.) [HKLM] -- {CF097717-F174-4144-954A-FBC4BF301036}

O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}

O42 - Logiciel: Outils de diagnostic du matériel - (.PC-Doctor, Inc..) [HKLM] -- PC-Doctor 5 for Windows

O42 - Logiciel: Panda ActiveScan 2.0 - (.Panda Security.) [HKLM] -- ActiveScan 2.0

O42 - Logiciel: Photo Notifier and Animation Creator - (.IncrediMail Ltd..) [HKLM] -- Photo Notifier and Animation Creator

O42 - Logiciel: Photo Notifier and Animation Creator - (.Nom de votre société.) [HKLM] -- {6B7F28D4-160E-40C6-B7C8-5EC6B9734DA7}

O42 - Logiciel: PhotoMail Maker - (.IncrediMail Ltd..) [HKLM] -- PhotoMail

O42 - Logiciel: PhotoMail Maker - (.Nom de votre société.) [HKLM] -- {75AE8014-1184-4BC0-B279-C879540719EE}

O42 - Logiciel: Pixum EasyBook - (.Pas de propriétaire.) [HKLM] -- Pixum EasyBook

O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}

O42 - Logiciel: SUPERAntiSpyware Free Edition - (.SUPERAntiSpyware.com.) [HKLM] -- {CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}

O42 - Logiciel: Solution de clavier multimédia amélioré - (.Hewlett-Packard.) [HKLM] -- KBD

O42 - Logiciel: Solutions de télécopie Lexmark - (.Pas de propriétaire.) [HKLM] -- Lexmark Fax Solutions

O42 - Logiciel: Speccy - (.Piriform.) [HKLM] -- Speccy

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1

O42 - Logiciel: Spyware Terminator - (.Crawler Inc..) [HKLM] -- Spyware Terminator_is1

O42 - Logiciel: ThiWeb Live 2.2 - (.ThiWeb Creative.) [HKLM] -- ThiWeb Live

O42 - Logiciel: TuneUp Utilities 2008 - (.TuneUp Software.) [HKLM] -- {5888428E-699C-4E71-BF71-94EE06B497DA}

O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707

O42 - Logiciel: VLC media player 0.9.8a - (.VideoLAN Team.) [HKLM] -- VLC media player

O42 - Logiciel: Video Convert Master 8.0.8.24 - (.Pas de propriétaire.) [HKLM] -- Video Convert Master_is1

O42 - Logiciel: VirtualDub 1.6.9 Fr - (.Pas de propriétaire.) [HKLM] -- VirtualDub 1.6.9 Fr

O42 - Logiciel: WinZip 14.5 - (.WinZip Computing, S.L. .) [HKLM] -- {CD95F661-A5C4-44F5-A6AA-ECDD91C240BD}

O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504}

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}

O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {76810709-A7D3-468D-9167-A1780C1E766C}

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}

O42 - Logiciel: ccc-Branding - (.ATI.) [HKLM] -- {4F027497-15AE-4DE5-B3BC-8E721C6127DE}

O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM] -- eMule

O42 - Logiciel: jv16 PowerTools 1.3 - (.Pas de propriétaire.) [HKLM] -- jv16 PowerTools_is1

O42 - Logiciel: nCleaner second 2.3.4.0 - (.Pas de propriétaire.) [HKLM] -- nCleaner

O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}

O42 - Logiciel: µTorrent - (.Pas de propriétaire.) [HKLM] -- uTorrent

 

---\\ HKCU & HKLM Software Keys

[HKCU\Software\ABBYY]

[HKCU\Software\AC3filter]

[HKCU\Software\ACD Systems]

[HKCU\Software\ASProtect]

[HKCU\Software\ATI Technologies Inc.]

[HKCU\Software\ATI]

[HKCU\Software\AVS4YOU]

[HKCU\Software\Adobe]

[HKCU\Software\Ahead]

[HKCU\Software\AppDataLow\Aurigma]

[HKCU\Software\AppDataLow\Avg]

[HKCU\Software\AppDataLow\Software\AVG]

[HKCU\Software\AppDataLow\Software\Google]

[HKCU\Software\AppDataLow\Software\Messenger_Plus_Live_Belgium]

[HKCU\Software\AppDataLow\Software\Microsoft]

[HKCU\Software\AppDataLow\Software\Monitored]

[HKCU\Software\AppDataLow\Software\settings]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\Apple Computer, Inc.]

[HKCU\Software\Astonsoft]

[HKCU\Software\AusLogics]

[HKCU\Software\AutoUpdate]

[HKCU\Software\Avg]

[HKCU\Software\Binary Noise]

[HKCU\Software\BitComet]

[HKCU\Software\BitTorrent]

[HKCU\Software\CDDB]

[HKCU\Software\Camfrog]

[HKCU\Software\Camouflage]

[HKCU\Software\CeWe Color]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\CodeStuff]

[HKCU\Software\CoreAAC]

[HKCU\Software\CoreVorbis]

[HKCU\Software\CyberLink]

[HKCU\Software\DVD Shrink]

[HKCU\Software\DVDCX]

[HKCU\Software\Digital River]

[HKCU\Software\DivXNetworks]

[HKCU\Software\Elecard]

[HKCU\Software\Flowmix]

[HKCU\Software\FormatFactory]

[HKCU\Software\FoxBurnerSDK]

[HKCU\Software\Freeware]

[HKCU\Software\GNU]

[HKCU\Software\GPL Ghostscript]

[HKCU\Software\GSpot Appliance Corp]

[HKCU\Software\Gabest]

[HKCU\Software\GlarySoft]

[HKCU\Software\Google]

[HKCU\Software\Haali]

[HKCU\Software\Heidi Computers Ltd]

[HKCU\Software\Hewlett-Packard]

[HKCU\Software\IM Providers]

[HKCU\Software\ImInstaller]

[HKCU\Software\IncrediMail]

[HKCU\Software\JOE Full]

[HKCU\Software\JavaSoft]

[HKCU\Software\JollyBear]

[HKCU\Software\Lavalys]

[HKCU\Software\LexmarkInkjet]

[HKCU\Software\Licenses]

[HKCU\Software\LightScribe]

[HKCU\Software\Macromedia]

[HKCU\Software\Magnet]

[HKCU\Software\MainConcept (Muvee)]

[HKCU\Software\MainConcept]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\MediaInfo]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Netscape]

[HKCU\Software\Nico Mak Computing]

[HKCU\Software\ODBC]

[HKCU\Software\PTP]

[HKCU\Software\Paint.NET]

[HKCU\Software\Patchou]

[HKCU\Software\Piriform]

[HKCU\Software\Policies]

[HKCU\Software\SUPERAntiSpyware.com]

[HKCU\Software\Safer Networking Limited]

[HKCU\Software\Sammsoft]

[HKCU\Software\Secunia]

[HKCU\Software\Softthinks]

[HKCU\Software\SpinTop]

[HKCU\Software\Spyware Terminator]

[HKCU\Software\Sysinternals]

[HKCU\Software\Textalk]

[HKCU\Software\Toshiba]

[HKCU\Software\Trolltech]

[HKCU\Software\TuneUp]

[HKCU\Software\UUME]

[HKCU\Software\Uniblue]

[HKCU\Software\VB and VBA Program Settings]

[HKCU\Software\VCW]

[HKCU\Software\VSO]

[HKCU\Software\VicMan Software]

[HKCU\Software\WinRAR SFX]

[HKCU\Software\WinRAR]

[HKCU\Software\WinZip Computing]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\Zyrax Software]

[HKCU\Software\cybelsoft]

[HKCU\Software\eMule]

[HKCU\Software\pm]

[HKLM\Software\<company>]

[HKLM\Software\ABBYY]

[HKLM\Software\ACD Systems]

[HKLM\Software\ATI Technologies]

[HKLM\Software\ATI]

[HKLM\Software\AVG]

[HKLM\Software\AVS4YOU]

[HKLM\Software\AVS]

[HKLM\Software\Adobe Systems]

[HKLM\Software\Adobe]

[HKLM\Software\Ahead]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\Apple Inc.]

[HKLM\Software\ArcSoft]

[HKLM\Software\AviSynth]

[HKLM\Software\CD Jaquette]

[HKLM\Software\CLSYSTEM]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Codec Tweak Tool]

[HKLM\Software\CyberLink]

[HKLM\Software\DIOC]

[HKLM\Software\Debug]

[HKLM\Software\EACADEMY]

[HKLM\Software\Eset]

[HKLM\Software\FaxManPorts]

[HKLM\Software\Flowmix]

[HKLM\Software\GNU]

[HKLM\Software\Gabest]

[HKLM\Software\Google]

[HKLM\Software\HPS]

[HKLM\Software\HP]

[HKLM\Software\HaaliMkx]

[HKLM\Software\Hewlett-Packard]

[HKLM\Software\ImInstaller]

[HKLM\Software\InstallShield]

[HKLM\Software\Intel]

[HKLM\Software\InterVideo]

[HKLM\Software\JavaRa]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\KLCodecPack]

[HKLM\Software\LexmarkInkjet]

[HKLM\Software\Lexmark]

[HKLM\Software\Licenses]

[HKLM\Software\LightScribe]

[HKLM\Software\Macromedia]

[HKLM\Software\Magnet]

[HKLM\Software\Malwarebytes' Anti-Malware]

[HKLM\Software\Matrox]

[HKLM\Software\McAfee.com]

[HKLM\Software\Messenger_Plus_Live_Belgium]

[HKLM\Software\MimarSinan]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\NKProds]

[HKLM\Software\Network Associates]

[HKLM\Software\Nico Mak Computing]

[HKLM\Software\Ntpad]

[HKLM\Software\ODBC]

[HKLM\Software\OmniVision]

[HKLM\Software\PC-Doctor]

[HKLM\Software\Panda Software]

[HKLM\Software\Patchou]

[HKLM\Software\Piriform]

[HKLM\Software\Policies]

[HKLM\Software\Protexis]

[HKLM\Software\RAD Game Tools]

[HKLM\Software\Rainbow Technologies]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\S3R521]

[HKLM\Software\SUPERAntiSpyware.com]

[HKLM\Software\Safer Networking Limited]

[HKLM\Software\Secunia]

[HKLM\Software\Services]

[HKLM\Software\Sonic]

[HKLM\Software\Spyware Terminator]

[HKLM\Software\SymNRT]

[HKLM\Software\TQ566808]

[HKLM\Software\Toshiba]

[HKLM\Software\Trad-FR]

[HKLM\Software\TrendMicro]

[HKLM\Software\TuneUp]

[HKLM\Software\Uniblue]

[HKLM\Software\VSO]

[HKLM\Software\VideoLAN]

[HKLM\Software\Volatile]

[HKLM\Software\WholeSecurity]

[HKLM\Software\Wilson WindowWare]

[HKLM\Software\WinLicense]

[HKLM\Software\Windows]

[HKLM\Software\Wow6432Node]

[HKLM\Software\cybelsoft]

[HKLM\Software\mozilla.org]

 

 

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 05/07/2010 - 15:27:18 - [121173883] ----D- C:\Program Files\Abbyy FineReader 6.0 Sprint

O43 - CFD: 05/06/2008 - 9:15:24 - [52475969] ----D- C:\Program Files\ACD Systems

O43 - CFD: 07/03/2011 - 19:10:40 - [555465984] ----D- C:\Program Files\Adobe

O43 - CFD: 28/12/2008 - 18:13:24 - [75020855] ----D- C:\Program Files\adslTV

O43 - CFD: 24/07/2010 - 13:58:30 - [2221118] ----D- C:\Program Files\Apple Software Update

O43 - CFD: 03/01/2011 - 22:05:18 - [21414652] ----D- C:\Program Files\ArcSoft

O43 - CFD: 19/02/2008 - 2:24:08 - [14464254] ----D- C:\Program Files\ATI

O43 - CFD: 19/02/2008 - 2:24:52 - [111007648] ----D- C:\Program Files\ATI Technologies

O43 - CFD: 09/03/2011 - 19:19:08 - [9256724] ----D- C:\Program Files\Auslogics

O43 - CFD: 09/06/2010 - 22:12:34 - [108626] ----D- C:\Program Files\AusLogics Disk Defrag

O43 - CFD: 30/04/2010 - 7:44:02 - [69103832] ----D- C:\Program Files\AVG

O43 - CFD: 25/09/2008 - 19:48:38 - [144857] ----D- C:\Program Files\AviSynth 2.5

O43 - CFD: 03/01/2009 - 20:52:44 - [285345] ----D- C:\Program Files\Camouflage

O43 - CFD: 30/01/2011 - 12:07:30 - [3608096] ----D- C:\Program Files\CCleaner

O43 - CFD: 07/11/2010 - 23:35:28 - [6533042] ----D- C:\Program Files\CFWebAdvancedU

O43 - CFD: 12/10/2008 - 11:29:02 - [1337381] ----D- C:\Program Files\CodeStuff

O43 - CFD: 07/03/2011 - 18:23:52 - [1167367666] ----D- C:\Program Files\Common Files

O43 - CFD: 08/02/2011 - 18:58:06 - [3882032] ----D- C:\Program Files\Defraggler

O43 - CFD: 03/11/2008 - 19:48:50 - [888300] ----D- C:\Program Files\DVD Shrink

O43 - CFD: 19/02/2008 - 5:58:08 - [51506213] ----D- C:\Program Files\EasyBits

O43 - CFD: 23/01/2010 - 18:42:16 - [10798861] ----D- C:\Program Files\eMule

O43 - CFD: 31/01/2009 - 17:23:44 - [2802747] ----D- C:\Program Files\Eraser

O43 - CFD: 26/07/2009 - 15:03:22 - [8539814] ----D- C:\Program Files\ESET

O43 - CFD: 28/09/2008 - 15:32:38 - [56870689] ----D- C:\Program Files\FormatFactory

O43 - CFD: 29/12/2010 - 2:16:46 - [19664123] ----D- C:\Program Files\Glary Utilities

O43 - CFD: 21/01/2011 - 1:08:44 - [31538058] ----D- C:\Program Files\Google

O43 - CFD: 22/10/2008 - 20:35:12 - [592987360] ----D- C:\Program Files\Hercules

O43 - CFD: 23/09/2009 - 16:41:46 - [402620751] ----D- C:\Program Files\Hewlett-Packard

O43 - CFD: 24/05/2008 - 20:08:02 - [34218339] ----D- C:\Program Files\HP

O43 - CFD: 19/10/2008 - 10:45:08 - [1143] ----D- C:\Program Files\Incomplete

O43 - CFD: 12/08/2010 - 18:07:58 - [24983892] ----D- C:\Program Files\IncrediMail

O43 - CFD: 14/01/2011 - 21:47:42 - [24436445] --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD: 19/02/2008 - 2:23:22 - [8447879] ----D- C:\Program Files\Intel

O43 - CFD: 24/12/2009 - 17:07:44 - [5915338] ----D- C:\Program Files\Internet Explorer

O43 - CFD: 07/03/2011 - 18:21:00 - [90234731] ----D- C:\Program Files\Java

O43 - CFD: 30/05/2008 - 8:11:00 - [4481] ----D- C:\Program Files\JSAL Software

O43 - CFD: 03/03/2011 - 21:15:50 - [748348573] ----D- C:\Program Files\jv16 PowerTools

O43 - CFD: 28/11/2008 - 9:29:12 - [36069984] ----D- C:\Program Files\K-Lite Codec Pack

O43 - CFD: 21/01/2011 - 11:15:12 - [142948938] ----D- C:\Program Files\Lexmark 3500-4500 Series

O43 - CFD: 21/01/2011 - 21:34:00 - [36804561] ----D- C:\Program Files\Lexmark Fax Solutions

O43 - CFD: 14/01/2011 - 21:47:42 - [1034904] ----D- C:\Program Files\LG Electronics

O43 - CFD: 28/10/2010 - 22:28:28 - [5253635] ----D- C:\Program Files\ma-config.com

O43 - CFD: 04/03/2011 - 15:25:12 - [5006768] ----D- C:\Program Files\Malwarebytes' Anti-Malware

O43 - CFD: 21/01/2011 - 0:58:06 - [13295708] ----D- C:\Program Files\Messenger Plus! Live

O43 - CFD: 26/05/2010 - 17:17:12 - [2561266] ----D- C:\Program Files\Messenger_Plus_Live_Belgium

O43 - CFD: 18/09/2009 - 21:42:20 - [226432] ----D- C:\Program Files\Microsoft

O43 - CFD: 02/11/2006 - 13:37:36 - [92804023] ----D- C:\Program Files\Microsoft Games

O43 - CFD: 01/09/2010 - 18:43:44 - [302212858] ----D- C:\Program Files\Microsoft Office

O43 - CFD: 07/11/2010 - 23:35:26 - [38360699] ----D- C:\Program Files\Microsoft Silverlight

O43 - CFD: 20/05/2008 - 16:12:54 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition

O43 - CFD: 01/09/2010 - 17:37:10 - [144696470] ----D- C:\Program Files\Microsoft Works

O43 - CFD: 01/09/2010 - 18:43:14 - [315392] ----D- C:\Program Files\Microsoft.NET

O43 - CFD: 19/02/2008 - 10:18:22 - [99153518] ----D- C:\Program Files\Movie Maker

O43 - CFD: 09/03/2011 - 6:17:20 - [32759154] ----D- C:\Program Files\Mozilla Firefox

O43 - CFD: 01/09/2010 - 17:36:50 - [25757] ----D- C:\Program Files\MSBuild

O43 - CFD: 02/11/2006 - 13:37:36 - [3272760] ----D- C:\Program Files\MSN

O43 - CFD: 21/01/2011 - 0:58:08 - [406594153] ----D- C:\Program Files\Nero

O43 - CFD: 09/11/2008 - 9:53:14 - [893021] ----D- C:\Program Files\NKProds

O43 - CFD: 17/06/2008 - 16:32:04 - [145748440] ----D- C:\Program Files\Panda Security

O43 - CFD: 21/01/2011 - 0:58:08 - [137717673] ----D- C:\Program Files\PC-Doctor 5 for Windows

O43 - CFD: 06/02/2011 - 14:40:22 - [2757956] ----D- C:\Program Files\Photo Notifier and Animation Creator

O43 - CFD: 19/06/2010 - 15:27:18 - [1873554] ----D- C:\Program Files\PhotoMail Maker

O43 - CFD: 24/07/2008 - 20:53:06 - [119826069] ----D- C:\Program Files\Pixum

O43 - CFD: 24/07/2010 - 14:01:24 - [77915296] ----D- C:\Program Files\QuickTime

O43 - CFD: 02/11/2006 - 13:37:36 - [38637313] ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 08/11/2008 - 0:47:52 - [773632] ----D- C:\Program Files\RegCleaner

O43 - CFD: 19/11/2008 - 21:52:10 - [1770503] ----D- C:\Program Files\RogueRemover FREE

O43 - CFD: 07/03/2011 - 19:03:22 - [1366503] ----D- C:\Program Files\Secunia

O43 - CFD: 24/07/2010 - 16:44:18 - [6514797] ----D- C:\Program Files\Services en ligne

O43 - CFD: 30/01/2011 - 12:14:34 - [4068264] ----D- C:\Program Files\Speccy

O43 - CFD: 15/11/2009 - 14:57:50 - [100781345] ----D- C:\Program Files\Spybot - Search & Destroy

O43 - CFD: 21/01/2011 - 0:58:10 - [26633887] ----D- C:\Program Files\Spyware Terminator

O43 - CFD: 20/02/2010 - 22:46:32 - [31261799] ----D- C:\Program Files\SUPERAntiSpyware

O43 - CFD: 25/06/2010 - 7:15:24 - [374400] ----D- C:\Program Files\ThiWeb Live 2

O43 - CFD: 07/08/2008 - 8:37:50 - [16339278] ----D- C:\Program Files\ToniArts

O43 - CFD: 06/03/2011 - 10:16:24 - [799294] ----D- C:\Program Files\trend micro

O43 - CFD: 21/05/2008 - 16:55:32 - [33345234] ----D- C:\Program Files\TuneUp Utilities 2008

O43 - CFD: 26/09/2010 - 17:21:26 - [328056] ----D- C:\Program Files\uTorrent

O43 - CFD: 19/04/2010 - 15:44:20 - [188918] ----D- C:\Program Files\VDownloader 1.13

O43 - CFD: 23/09/2009 - 10:27:44 - [36156640] ----D- C:\Program Files\Video Convert Master

O43 - CFD: 20/04/2009 - 18:22:22 - [1703495] ----D- C:\Program Files\VirtualDub

O43 - CFD: 24/01/2009 - 15:12:52 - [58446888] ----D- C:\Program Files\VSO

O43 - CFD: 19/02/2008 - 10:41:52 - [1016832] ----D- C:\Program Files\Windows Calendar

O43 - CFD: 19/02/2008 - 10:18:22 - [2761216] ----D- C:\Program Files\Windows Collaboration

O43 - CFD: 19/02/2008 - 10:25:38 - [4486592] ----D- C:\Program Files\Windows Defender

O43 - CFD: 19/02/2008 - 10:18:22 - [7078008] ----D- C:\Program Files\Windows Journal

O43 - CFD: 12/02/2011 - 16:20:10 - [83051235] ----D- C:\Program Files\Windows Live

O43 - CFD: 18/09/2009 - 21:42:10 - [245112] ----D- C:\Program Files\Windows Live SkyDrive

O43 - CFD: 29/11/2008 - 16:36:08 - [9074528] ----D- C:\Program Files\Windows Mail

O43 - CFD: 21/01/2011 - 0:58:12 - [4492391] ----D- C:\Program Files\Windows Media Player

O43 - CFD: 30/05/2008 - 10:24:28 - [7940176] ----D- C:\Program Files\Windows NT

O43 - CFD: 19/02/2008 - 10:18:22 - [13463714] ----D- C:\Program Files\Windows Photo Gallery

O43 - CFD: 07/10/2008 - 17:28:04 - [25765964] ----D- C:\Program Files\Windows Sidebar

O43 - CFD: 19/11/2008 - 22:02:24 - [3035137] ----D- C:\Program Files\WinRAR

O43 - CFD: 23/06/2010 - 11:46:32 - [20413068] ----D- C:\Program Files\WinZip

O43 - CFD: 19/04/2010 - 15:48:30 - [1908316] ----D- C:\Program Files\YoutubeDownloader

O43 - CFD: 10/03/2011 - 19:46:44 - [3787943] ----D- C:\Program Files\ZHPDiag

O43 - CFD: 06/06/2008 - 21:37:30 - [18310610] ----D- C:\Program Files\Common Files\ACD Systems

O43 - CFD: 07/03/2011 - 18:41:48 - [233730029] ----D- C:\Program Files\Common Files\Adobe

O43 - CFD: 07/03/2011 - 19:10:28 - [30826314] ----D- C:\Program Files\Common Files\Adobe AIR

O43 - CFD: 11/06/2009 - 18:59:20 - [72704] ----D- C:\Program Files\Common Files\Adobe Systems Shared

O43 - CFD: 17/11/2008 - 14:16:34 - [120157957] ----D- C:\Program Files\Common Files\Ahead

O43 - CFD: 24/07/2010 - 13:58:44 - [41190056] ----D- C:\Program Files\Common Files\Apple

O43 - CFD: 22/10/2008 - 20:27:06 - [4890866] ----D- C:\Program Files\Common Files\ArcSoft

O43 - CFD: 05/06/2008 - 10:05:00 - [27084] ----D- C:\Program Files\Common Files\Cisco Systems

O43 - CFD: 16/06/2008 - 12:18:54 - [146441] ----D- C:\Program Files\Common Files\Corel(1)

O43 - CFD: 01/09/2010 - 18:43:44 - [86016] ----D- C:\Program Files\Common Files\DESIGNER

O43 - CFD: 21/05/2008 - 19:42:00 - [140439] ----D- C:\Program Files\Common Files\Hewlett-Packard

O43 - CFD: 19/02/2008 - 2:30:24 - [4027816] ----D- C:\Program Files\Common Files\HP

O43 - CFD: 22/10/2008 - 20:24:52 - [13182948] ----D- C:\Program Files\Common Files\InstallShield

O43 - CFD: 07/03/2011 - 18:23:52 - [1247175] ----D- C:\Program Files\Common Files\Java

O43 - CFD: 04/11/2008 - 22:57:40 - [27463977] ---AD- C:\Program Files\Common Files\LightScribe

O43 - CFD: 19/02/2008 - 2:37:02 - [56415] ---AD- C:\Program Files\Common Files\LS Getting Started

O43 - CFD: 01/09/2010 - 18:44:30 - [359445186] ----D- C:\Program Files\Common Files\microsoft shared

O43 - CFD: 21/05/2008 - 19:40:58 - [568832] ----D- C:\Program Files\Common Files\MSSoap

O43 - CFD: 07/11/2008 - 13:00:54 - [177025] ----D- C:\Program Files\Common Files\Nero

O43 - CFD: 02/11/2006 - 12:18:34 - [41100711] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 29/05/2008 - 16:04:52 - [519608] ----D- C:\Program Files\Common Files\Symantec Shared

O43 - CFD: 01/09/2010 - 18:43:20 - [22498476] ----D- C:\Program Files\Common Files\System

O43 - CFD: 16/02/2009 - 16:23:52 - [213417605] ----D- C:\Program Files\Common Files\Windows Live

O43 - CFD: 16/09/2008 - 17:12:42 - [3882032] -SH-D- C:\Program Files\Common Files\WindowsLiveInstaller

O43 - CFD: 15/08/2010 - 18:05:50 - [30201344] ----D- C:\Program Files\Common Files\Wise Installation Wizard

O43 - CFD: 07/11/2010 - 23:35:28 - [6506] ----D- C:\ProgramData\ABBYY

O43 - CFD: 25/05/2008 - 12:07:10 - [175862] ----D- C:\ProgramData\ACD Systems

O43 - CFD: 07/03/2011 - 18:41:24 - [139239174] ----D- C:\ProgramData\Adobe

O43 - CFD: 11/06/2009 - 19:06:32 - [5946] ----D- C:\ProgramData\Adobe Systems

O43 - CFD: 26/07/2009 - 10:22:16 - [440] ----D- C:\ProgramData\Ahead

O43 - CFD: 24/07/2010 - 13:58:28 - [16254976] ----D- C:\ProgramData\Apple

O43 - CFD: 21/05/2008 - 20:48:08 - [56722432] ----D- C:\ProgramData\Apple Computer

O43 - CFD: 02/11/2006 - 14:02:04 - [0] -SH-D- C:\ProgramData\Application Data

O43 - CFD: 19/02/2008 - 2:29:32 - [206] ----D- C:\ProgramData\ATI

O43 - CFD: 15/07/2010 - 18:38:36 - [183095193] ----D- C:\ProgramData\avg9

O43 - CFD: 19/05/2008 - 18:13:32 - [0] -SH-D- C:\ProgramData\Bureau

O43 - CFD: 11/06/2008 - 13:46:32 - [437474] ----D- C:\ProgramData\Corel

O43 - CFD: 02/11/2006 - 14:02:04 - [0] -SH-D- C:\ProgramData\Desktop

O43 - CFD: 26/12/2008 - 8:56:04 - [180] ----D- C:\ProgramData\Disk Cleaner

O43 - CFD: 02/11/2006 - 14:02:04 - [0] -SH-D- C:\ProgramData\Documents

O43 - CFD: 03/11/2008 - 19:48:50 - [4] ----D- C:\ProgramData\DVD Shrink

O43 - CFD: 23/01/2010 - 18:42:30 - [0] ----D- C:\ProgramData\eMule

O43 - CFD: 19/05/2008 - 18:13:32 - [0] -SH-D- C:\ProgramData\Favoris

O43 - CFD: 02/11/2006 - 14:02:04 - [0] -SH-D- C:\ProgramData\Favorites

O43 - CFD: 24/05/2008 - 11:28:28 - [27148] ----D- C:\ProgramData\FaxCtr

O43 - CFD: 10/07/2010 - 22:39:18 - [792] ----D- C:\ProgramData\FLEXnet

O43 - CFD: 17/01/2009 - 14:33:04 - [536308] ----D- C:\ProgramData\Google

O43 - CFD: 19/05/2008 - 18:14:52 - [325880] ----D- C:\ProgramData\Hewlett-Packard

O43 - CFD: 19/02/2008 - 2:30:24 - [55160] ----D- C:\ProgramData\HP

O43 - CFD: 17/09/2008 - 17:30:22 - [1716033] ----D- C:\ProgramData\hps

O43 - CFD: 17/02/2011 - 23:13:44 - [163] ----D- C:\ProgramData\IM

O43 - CFD: 02/06/2008 - 19:10:54 - [8758559] ----D- C:\ProgramData\IncrediMail

O43 - CFD: 07/11/2010 - 23:35:26 - [68070] ----D- C:\ProgramData\JSAL Software

O43 - CFD: 22/10/2008 - 17:53:38 - [14770531] ----D- C:\ProgramData\Lavasoft

O43 - CFD: 24/05/2008 - 12:09:00 - [1160] ----D- C:\ProgramData\LightScribe

O43 - CFD: 08/02/2011 - 1:06:16 - [405262] ----D- C:\ProgramData\Lx_cats

O43 - CFD: 28/10/2010 - 22:28:28 - [1162422] ----D- C:\ProgramData\ma-config.com

O43 - CFD: 08/10/2008 - 19:14:26 - [14075023] ----D- C:\ProgramData\Malwarebytes

O43 - CFD: 07/03/2011 - 18:39:40 - [15332] ----D- C:\ProgramData\McAfee

O43 - CFD: 19/05/2008 - 18:13:32 - [0] -SH-D- C:\ProgramData\Menu Démarrer

O43 - CFD: 20/01/2010 - 23:10:16 - [64266] ----D- C:\ProgramData\Messenger Plus!

O43 - CFD: 20/10/2010 - 19:33:26 - [5138712308] ----D- C:\ProgramData\Microsoft

O43 - CFD: 01/09/2010 - 17:37:18 - [160948] ----D- C:\ProgramData\Microsoft Help

O43 - CFD: 19/05/2008 - 18:13:32 - [0] -SH-D- C:\ProgramData\Modèles

O43 - CFD: 07/11/2008 - 12:49:18 - [4956317] ----D- C:\ProgramData\Nero

O43 - CFD: 19/02/2008 - 2:42:44 - [1235] ----D- C:\ProgramData\PC-Doctor

O43 - CFD: 06/02/2011 - 14:40:22 - [1029545] ----D- C:\ProgramData\Photo Notifier and Animation Creator

O43 - CFD: 19/06/2010 - 15:27:18 - [712167] ----D- C:\ProgramData\PhotoMail

O43 - CFD: 26/07/2010 - 18:42:42 - [6857] ----D- C:\ProgramData\regid.1986-12.com.adobe

O43 - CFD: 07/11/2010 - 23:35:34 - [10111] ----D- C:\ProgramData\Spybot - Search & Destroy

O43 - CFD: 07/11/2010 - 23:35:34 - [43163886] ----D- C:\ProgramData\Spyware Terminator

O43 - CFD: 02/11/2006 - 14:02:04 - [0] -SH-D- C:\ProgramData\Start Menu

O43 - CFD: 12/02/2010 - 16:00:08 - [294] ----D- C:\ProgramData\Sun

O43 - CFD: 20/02/2010 - 22:46:44 - [0] ----D- C:\ProgramData\SUPERAntiSpyware.com

O43 - CFD: 09/03/2011 - 19:18:18 - [0] ---AD- C:\ProgramData\TEMP

O43 - CFD: 02/11/2006 - 14:02:06 - [0] -SH-D- C:\ProgramData\Templates

O43 - CFD: 31/12/2010 - 12:50:28 - [1584342] ----D- C:\ProgramData\TuneUp Software

O43 - CFD: 18/01/2009 - 17:12:32 - [47] ----D- C:\ProgramData\vsosdk

O43 - CFD: 19/05/2008 - 18:15:00 - [35] ----D- C:\ProgramData\WildTangent

O43 - CFD: 23/06/2010 - 11:48:06 - [196] ----D- C:\ProgramData\WinZip

O43 - CFD: 05/08/2008 - 21:15:42 - [687678] ----D- C:\ProgramData\WLInstaller

O43 - CFD: 20/10/2008 - 16:32:56 - [150026] ----D- C:\Users\Eric\AppData\Roaming\.ABC

O43 - CFD: 27/09/2010 - 16:49:02 - [10074] ----D- C:\Users\Eric\AppData\Roaming\ABBYY

O43 - CFD: 06/06/2008 - 10:49:20 - [5760054] ----D- C:\Users\Eric\AppData\Roaming\ACD Systems

O43 - CFD: 16/02/2011 - 20:18:22 - [32736473] ----D- C:\Users\Eric\AppData\Roaming\Adobe

O43 - CFD: 25/09/2008 - 15:43:40 - [0] ----D- C:\Users\Eric\AppData\Roaming\AdobeUM

O43 - CFD: 26/07/2009 - 10:22:16 - [142096] ----D- C:\Users\Eric\AppData\Roaming\Ahead

O43 - CFD: 19/04/2010 - 15:34:58 - [105452] ----D- C:\Users\Eric\AppData\Roaming\aHisoft

O43 - CFD: 09/06/2010 - 22:23:32 - [2103455] ----D- C:\Users\Eric\AppData\Roaming\Apple Computer

O43 - CFD: 03/01/2011 - 22:06:02 - [34905] ----D- C:\Users\Eric\AppData\Roaming\ArcSoft

O43 - CFD: 17/12/2008 - 17:16:14 - [1404661] ----D- C:\Users\Eric\AppData\Roaming\Ashampoo

O43 - CFD: 19/05/2008 - 18:20:46 - [0] ----D- C:\Users\Eric\AppData\Roaming\ATI

O43 - CFD: 07/07/2008 - 19:02:16 - [2979] ----D- C:\Users\Eric\AppData\Roaming\AVS4YOU

O43 - CFD: 22/06/2008 - 18:31:36 - [4886] ----D- C:\Users\Eric\AppData\Roaming\CDBurnerXP_Soft

O43 - CFD: 16/06/2008 - 13:05:26 - [12461116] ----D- C:\Users\Eric\AppData\Roaming\Corel

O43 - CFD: 24/05/2008 - 21:06:38 - [20] ----D- C:\Users\Eric\AppData\Roaming\CyberLink

O43 - CFD: 27/12/2008 - 23:18:00 - [346] ----D- C:\Users\Eric\AppData\Roaming\DeepBurner

O43 - CFD: 19/11/2008 - 20:21:00 - [69171] ----D- C:\Users\Eric\AppData\Roaming\FrostWire

O43 - CFD: 29/04/2009 - 15:49:18 - [1801] ----D- C:\Users\Eric\AppData\Roaming\Gaijin Ent

O43 - CFD: 26/12/2008 - 8:50:38 - [21555] ----D- C:\Users\Eric\AppData\Roaming\GlarySoft

O43 - CFD: 22/05/2008 - 19:11:28 - [2528] ----D- C:\Users\Eric\AppData\Roaming\Google

O43 - CFD: 22/10/2008 - 20:19:04 - [83] ----D- C:\Users\Eric\AppData\Roaming\gtk-2.0

O43 - CFD: 19/05/2008 - 18:16:36 - [0] ----D- C:\Users\Eric\AppData\Roaming\Hewlett-Packard

O43 - CFD: 05/10/2008 - 11:12:08 - [27628] ----D- C:\Users\Eric\AppData\Roaming\IcoFX

O43 - CFD: 19/05/2008 - 18:20:16 - [0] ----D- C:\Users\Eric\AppData\Roaming\Identities

O43 - CFD: 11/06/2008 - 13:36:40 - [0] ----D- C:\Users\Eric\AppData\Roaming\InstallShield

O43 - CFD: 29/10/2009 - 18:54:46 - [62204] ----D- C:\Users\Eric\AppData\Roaming\KoffeeWare

O43 - CFD: 25/09/2008 - 15:45:32 - [0] ----D- C:\Users\Eric\AppData\Roaming\Leadertech

O43 - CFD: 21/01/2011 - 11:23:42 - [125018] ----D- C:\Users\Eric\AppData\Roaming\Lexmark Productivity Studio

O43 - CFD: 05/07/2009 - 19:07:44 - [4178896] ----D- C:\Users\Eric\AppData\Roaming\LimeWire

O43 - CFD: 19/05/2008 - 18:17:04 - [20057] ----D- C:\Users\Eric\AppData\Roaming\Macromedia

O43 - CFD: 08/10/2008 - 19:14:30 - [9412435] ----D- C:\Users\Eric\AppData\Roaming\Malwarebytes

O43 - CFD: 24/07/2008 - 21:12:30 - [225410] ----D- C:\Users\Eric\AppData\Roaming\MCB

O43 - CFD: 02/11/2006 - 13:37:36 - [0] ----D- C:\Users\Eric\AppData\Roaming\Media Center Programs

O43 - CFD: 21/08/2008 - 18:08:10 - [59] ----D- C:\Users\Eric\AppData\Roaming\Media Player Classic

O43 - CFD: 02/09/2010 - 16:17:52 - [16510299] -S--D- C:\Users\Eric\AppData\Roaming\Microsoft

O43 - CFD: 17/10/2008 - 12:52:14 - [7866139] ----D- C:\Users\Eric\AppData\Roaming\Mozilla

O43 - CFD: 22/10/2008 - 20:19:04 - [2327621] ----D- C:\Users\Eric\AppData\Roaming\muvee Technologies

O43 - CFD: 09/11/2008 - 9:53:26 - [841] ----D- C:\Users\Eric\AppData\Roaming\nCleaner

O43 - CFD: 26/07/2009 - 13:14:34 - [7714881] ----D- C:\Users\Eric\AppData\Roaming\NeoDivX2009

O43 - CFD: 05/11/2008 - 17:41:18 - [675912] ----D- C:\Users\Eric\AppData\Roaming\Nero

O43 - CFD: 22/09/2009 - 19:06:30 - [2427000] ----D- C:\Users\Eric\AppData\Roaming\OpenOffice.org

O43 - CFD: 13/10/2008 - 17:40:20 - [217614] ----D- C:\Users\Eric\AppData\Roaming\Opera

O43 - CFD: 06/03/2011 - 2:01:18 - [0] ----D- C:\Users\Eric\AppData\Roaming\Sammsoft

O43 - CFD: 25/09/2008 - 16:03:08 - [232632] ----D- C:\Users\Eric\AppData\Roaming\Sony Ericsson

O43 - CFD: 22/04/2009 - 17:03:44 - [25214] ----D- C:\Users\Eric\AppData\Roaming\SpinTop

O43 - CFD: 07/11/2010 - 18:20:08 - [350509] ----D- C:\Users\Eric\AppData\Roaming\Spyware Terminator

O43 - CFD: 20/02/2010 - 22:46:32 - [45667281] ----D- C:\Users\Eric\AppData\Roaming\SUPERAntiSpyware.com

O43 - CFD: 02/01/2010 - 11:14:36 - [8275097] ----D- C:\Users\Eric\AppData\Roaming\Teleca

O43 - CFD: 12/08/2010 - 17:54:18 - [39387684] ----D- C:\Users\Eric\AppData\Roaming\Thunderbird

O43 - CFD: 28/12/2009 - 22:12:16 - [0] ----D- C:\Users\Eric\AppData\Roaming\Toshiba

O43 - CFD: 31/12/2010 - 12:47:58 - [13209180] ----D- C:\Users\Eric\AppData\Roaming\TuneUp Software

O43 - CFD: 29/01/2010 - 11:10:26 - [35575624] ----D- C:\Users\Eric\AppData\Roaming\Uniblue

O43 - CFD: 05/03/2011 - 19:18:18 - [1793519] ----D- C:\Users\Eric\AppData\Roaming\uTorrent

O43 - CFD: 18/02/2009 - 19:41:58 - [444498] ----D- C:\Users\Eric\AppData\Roaming\vlc

O43 - CFD: 24/02/2011 - 20:55:50 - [424926] ----D- C:\Users\Eric\AppData\Roaming\Vso

O43 - CFD: 08/06/2008 - 19:51:44 - [0] ----D- C:\Users\Eric\AppData\Roaming\WinRAR

 

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.EFC7008496B9E2E592ABB02D135409C4] - 05/03/2011 - 8:43:13 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1519970]

O44 - LFC:[MD5.7B2CB610081307955AF19224153F8E84] - 05/03/2011 - 8:43:14 ---A- . (...) -- C:\Windows\System32\perfc009.dat [104570]

O44 - LFC:[MD5.4DF069CA2199BC20CCC56F02681BCD83] - 05/03/2011 - 8:43:14 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [118244]

O44 - LFC:[MD5.1E9140CA50AE2EB017C4D1970858E8F5] - 05/03/2011 - 8:43:14 ---A- . (...) -- C:\Windows\System32\perfh009.dat [612848]

O44 - LFC:[MD5.A1CD10B9BCFBE64F65017199AB437D2A] - 05/03/2011 - 8:43:14 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [693350]

O44 - LFC:[MD5.0D972B6D286C2ADF8E3F72A74C76AD03] - 09/03/2011 - 6:16:35 ---A- . (...) -- C:\TB.txt [1940]

O44 - LFC:[MD5.A1EB5E326B26570675EF5A9189CF6424] - 10/03/2011 - 6:02:57 ---A- . (...) -- C:\Windows\PFRO.log [1242]

O44 - LFC:[MD5.90ED1200D8DC8B7500FCFD7F64EE1200] - 10/03/2011 - 17:25:49 ---A- . (...) -- C:\Windows\WindowsUpdate.log [2078824]

O44 - LFC:[MD5.106ED05FB0AF69F1BF8A5E1A018908E8] - 10/03/2011 - 17:22:30 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.68288DA42BC798992A42CD59061B199D] - 07/03/2011 - 18:21:18 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\java.exe [145184]

O44 - LFC:[MD5.5BF8BA1B854D7DFCE1F47E58852B3D8F] - 07/03/2011 - 18:21:18 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\javaw.exe [145184]

O44 - LFC:[MD5.58DC5CBDC930AF070B177843810F2C85] - 07/03/2011 - 18:21:18 ---A- . (.Sun Microsystems, Inc. - Java Web Start Launcher.) -- C:\Windows\System32\javaws.exe [157472]

O44 - LFC:[MD5.79361C48047BB7276778E775FFC8AD6B] - 07/03/2011 - 18:21:01 ---A- . (...) -- C:\Windows\System32\jupdate-1.6.0_24-b07.log [3199]

O44 - LFC:[MD5.76D76C7D8DD9828FCA222262381D8529] - 05/03/2011 - 21:42:30 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]

 

 

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)

O46 - SEH:ShellExecuteHooks - SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL

 

 

---\\ MountPoints2 Shell Key (O51)

O51 - MPSK:{545482ea-1fd8-11e0-b14a-001e8cdfac98}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- L:\USBAutoRun.exe (.not file.)

O51 - MPSK:{9d78f157-1126-11e0-af61-001e8cdfac98}\AutoRun\command - Clé orpheline

O51 - MPSK:{9f0cb71f-e5ba-11df-b8b0-001e8cdfac98}\AutoRun\command - Clé orpheline

 

 

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"vidc.i420"="i420vfw.dll" . (.www.helixcommunity.org - Helix I420 YUV Codec.) -- C:\Windows\System32\i420vfw.dll

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll

O52 - TDSD: \Drivers32\"VIDC.ACDV"="ACDV.dll" . (.ACD Systems - ACDV.) -- C:\Windows\System32\ACDV.dll

O52 - TDSD: \Drivers32\"msacm.voxacm160"="vct3216.acm" . (.Voxware, Inc. - Voxware Audio Compression Manager Driver.) -- C:\Windows\System32\vct3216.acm

O52 - TDSD: \Drivers32\"msacm.scg726"="scg726.acm" . (.SHARP Corporation - SHARP G.726 ACM Audio Decoder.) -- C:\Windows\System32\scg726.acm

O52 - TDSD: \Drivers32\"msacm.alf2cd"="alf2cd.acm" . (.NCT Company - NCT ALF2CD Audio CODEC.) -- C:\Windows\System32\alf2cd.acm

O52 - TDSD: \Drivers32\"vidc.dvsd"="mcdvd_32.dll" . (.MainConcept - MainConcept DV Codec.) -- C:\Windows\System32\mcdvd_32.dll

O52 - TDSD: \Drivers32\"VIDC.DIVX"="divx.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\divx.dll

O52 - TDSD: \Drivers32\"VIDC.XVID"="xvidvfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\xvidvfw.dll

O52 - TDSD: \Drivers32\"VIDC.YV12"="yv12vfw.dll" . (.www.helixcommunity.org - Helix YV12 YUV Codec.) -- C:\Windows\System32\yv12vfw.dll

O52 - TDSD: \Drivers32\"msacm.ac3acm"="ac3acm.acm" . (.fccHandler - AC-3 ACM Codec.) -- C:\Windows\System32\ac3acm.acm

O52 - TDSD: \Drivers32\"msacm.lameacm"="lameACM.acm" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\Windows\System32\lameACM.acm

O52 - TDSD: \Drivers32\"VIDC.FFDS"="ff_vfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ff_vfw.dll

O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \drivers.desc\"wdmaud.drv"="Pilote de fonction UAA 1.1 Microsoft pour High Definition Audio" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"ACDV.dll"="ACDV 1.0" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"vct3216.acm"="Voxware Compression Toolkit" . (.Voxware, Inc. - Voxware Audio Compression Manager Driver.) -- C:\Windows\System32\vct3216.acm

O52 - TDSD: \drivers.desc\"scg726.acm"="Sharp G.726 Audio Decoder" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"alf2cd.acm"="alf2cd.acm" . (.NCT Company - NCT ALF2CD Audio CODEC.) -- C:\Windows\System32\alf2cd.acm

O52 - TDSD: \drivers.desc\"mcdvd_32.dll"="mcdvd_32.dll" . (.MainConcept - MainConcept DV Codec.) -- C:\Windows\System32\mcdvd_32.dll

O52 - TDSD: \drivers.desc\"mpg4c32.dll"="MS MPEG-4 v1,2,3 driver 4.1.0.3927" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"divx.dll"="DivX 6.8.5" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"xvidvfw.dll"="Xvid MPEG-4 Video Codec v1.2-dev" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"lameACM.acm"="Lame ACM MP3 CODEC v3.98" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"ac3acm.acm"="AC-3 ACM Codec" . (.fccHandler - AC-3 ACM Codec.) -- C:\Windows\System32\ac3acm.acm

O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow video encoder" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ff_vfw.dll

 

 

---\\ ShareTools MSconfig StartupReg (O53)

O53 - SMSR:HKLM\...\startupreg\AdobeCS5ServiceManager [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe

O53 - SMSR:HKLM\...\startupreg\Malwarebytes' Anti-Malware (reboot) [Key] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

 

 

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll

 

 

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

 

 

---\\ Microsoft Windows Policies Explorer (O56)

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=255

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=255

O56 - MWPE:[HKCU\...\policies\Explorer] - "HonorAutoRunSetting"=0

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=255

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=255

O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=0

 

 

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.2EDC5BBAC6C651ECE337BDE8ED97C9FB] - 02/11/2006 - 10:51:38 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [420968]

O58 - SDL:[MD5.B84088CA3CDCA97DA44A984C6CE1CCAD] - 02/11/2006 - 10:51:32 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [297576]

O58 - SDL:[MD5.7880C67BCCC27C86FD05AA2AFB5EA469] - 02/11/2006 - 10:50:35 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\system32\drivers\adpu160m.sys [98408]

O58 - SDL:[MD5.9AE713F8E30EFC2ABCCD84904333DF4D] - 02/11/2006 - 10:51:00 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [147048]

O58 - SDL:[MD5.E94E2EA7FAAA05C776A711EDB198B9FD] - 04/09/2009 - 16:38:28 ---A- . (.Google Inc - ADB Interface.) -- C:\Windows\system32\drivers\androidusb.sys [25728]

O58 - SDL:[MD5.5F673180268BB1FDB69C99B6619FE379] - 02/11/2006 - 10:50:09 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [67688]

O58 - SDL:[MD5.957F7540B5E7F602E44648C7DE5A1C05] - 02/11/2006 - 10:50:10 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [67688]

O58 - SDL:[MD5.86BA34BD8FE23C77B2920C7CBA26D653] - 16/02/2007 - 15:41:20 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athr.sys [691712]

O58 - SDL:[MD5.63FC6A312BB0FBBBF355CB5D4A1C7764] - 14/09/2007 - 23:16:22 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [3151872]

O58 - SDL:[MD5.B8C187439D27ABA430DD69FDCF1FA657] - 15/07/2010 - 18:40:18 ---A- . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) -- C:\Windows\system32\drivers\avgldx86.sys [216400]

O58 - SDL:[MD5.53B3F979930A786A614D29CAFE99F645] - 02/06/2010 - 19:59:15 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) -- C:\Windows\system32\drivers\avgmfx86.sys [29584]

O58 - SDL:[MD5.22E3B793C3E61720F03D3A22351AF410] - 15/07/2010 - 18:40:18 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) -- C:\Windows\system32\drivers\avgtdix.sys [243024]

O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 9:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568]

O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 9:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248]

O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 9:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [71808]

O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 9:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336]

O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 9:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160]

O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 9:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904]

O58 - SDL:[MD5.F937CD8BF4AC930A179589EB2CCB2EFD] - 02/11/2006 - 10:50:11 ---A- . (...) -- C:\Windows\system32\drivers\djsvs.sys [71272]

O58 - SDL:[MD5.C0B00E55CF82D122D25983C7A6A53DEA] - 02/11/2006 - 8:30:54 ---A- . (.Intel Corporation - Pilote NDIS 5.1 de la carte Intel® PRO/100.) -- C:\Windows\system32\drivers\e100b325.sys [163328]

O58 - SDL:[MD5.F88FB26547FD2CE6D0A5AF2985892C48] - 02/11/2006 - 8:30:54 ---A- . (.Intel Corporation - Pilote désérialisé NDIS 6 de la carte Intel® PRO/1000.) -- C:\Windows\system32\drivers\E1G60I32.sys [117760]

O58 - SDL:[MD5.E8F3F21A71720C84BCF423B80028359F] - 02/11/2006 - 10:51:34 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [316520]

O58 - SDL:[MD5.DF353B401001246853763C4B7AAA6F50] - 02/11/2006 - 10:50:10 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [37480]

O58 - SDL:[MD5.2358C53F30CB9DCD1D3843C4E2F299B2] - 12/07/2007 - 17:35:02 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\system32\drivers\iaStor.sys [305176]

O58 - SDL:[MD5.C957BF4B5D80B46C5017BF0101E6C906] - 02/11/2006 - 10:51:25 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [232040]

O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41576]

O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [35944]

O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [35944]

O58 - SDL:[MD5.9419FAAC6552A51542DBBA02971C841C] - 11/11/2008 - 13:41:00 ---A- . (.LG Electronics Inc. - LG CDMA USB Multi function Driver.) -- C:\Windows\system32\drivers\lgusbbus.sys [13056]

O58 - SDL:[MD5.C0A466FA4FFEC464320E159BC1BBDC0C] - 11/11/2008 - 13:41:00 ---A- . (.LG Electronics Inc. - LG CDMA USB Diagnostics Driver.) -- C:\Windows\system32\drivers\lgusbdiag.sys [19968]

O58 - SDL:[MD5.F74A54774A9B0AFEB3C40ADEC68AA600] - 11/11/2008 - 13:42:00 ---A- . (.LG Electronics Inc. - LG CDMA USB Modem Driver.) -- C:\Windows\system32\drivers\lgusbmodem.sys [24832]

O58 - SDL:[MD5.A2262FB9F28935E862B4DB46438C80D2] - 02/11/2006 - 10:50:04 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [65640]

O58 - SDL:[MD5.30D73327D390F72A62F32C103DAF1D6D] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [65640]

O58 - SDL:[MD5.E1E36FEFD45849A95F1AB81DE0159FE3] - 02/11/2006 - 10:50:10 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [65640]

O58 - SDL:[MD5.836E0E09CA9869BE7EB39EF2CF3602C7] - 20/12/2010 - 18:08:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [20952]

O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 18:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys [38224]

O58 - SDL:[MD5.D153B14FC6598EAE8422A2037553ADCE] - 02/11/2006 - 10:49:53 ---A- . (.LSI Logic Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [28776]

O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [33384]

O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [45160]

O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 8:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\system32\drivers\ntrigdigi.sys [20608]

O58 - SDL:[MD5.E69E946F80C1C31C53003BFBF50CBB7C] - 02/11/2006 - 10:50:24 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [88680]

O58 - SDL:[MD5.9E0BA19A28C498A6D323D065DB76DFFC] - 02/11/2006 - 10:50:13 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [40040]

O58 - SDL:[MD5.7AF8E2849F31AA42EE6A7AD2E6612789] - 08/11/2004 - 23:37:32 ---A- . (.OmniVision Technologies Inc. - Dual Mode USB Camera 530 Universal Serial Bus Camera Driver.) -- C:\Windows\system32\drivers\ov530cmd.sys [25177]

O58 - SDL:[MD5.71CFFB1E06AA8978A7B4A346C191F8BA] - 15/03/2005 - 16:04:00 ---A- . (.OmniVision Technologies, Inc. - Dual Mode USB Camera 530 Stream Class Mini Driver.) -- C:\Windows\system32\drivers\ov530vid.sys [161792]

O58 - SDL:[MD5.3ADB8BD6154A3EF87496E8FCE9C22493] - 30/06/2009 - 10:37:16 ---A- . (.Panda Security, S.L. - Panda Boot Driver.) -- C:\Windows\system32\drivers\pavboot.sys [28552]

O58 - SDL:[MD5.5B6C11DE7E839C05248CED8825470FEF] - 17/01/2009 - 16:56:23 ---A- . (.VSO Software - low level access layer for CD/DVD/BD devices.) -- C:\Windows\system32\drivers\pcouffin.sys [47360]

O58 - SDL:[MD5.957B82EC80AD7EAD64E5E47DF6B0DC40] - 03/06/2008 - 12:40:55 ---A- . (.Padus, Inc. - Padus® ASPI Shell.) -- C:\Windows\system32\drivers\pfc.sys [10368]

O58 - SDL:[MD5.390C204CED3785609AB24E9C52054A84] - 12/12/2005 - 18:27:00 ---A- . (.Hewlett-Packard Company - PS2 SYS.) -- C:\Windows\system32\drivers\PS2.sys [19072]

O58 - SDL:[MD5.CCDAC889326317792480C0A67156A1EC] - 02/11/2006 - 10:51:45 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [900712]

O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106088]

O58 - SDL:[MD5.815445F4676CC96BC9AEEC303C727E19] - 03/04/2007 - 12:57:42 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 Driver.) -- C:\Windows\system32\drivers\s116bus.sys [83336]

O58 - SDL:[MD5.0C8F4ECE9684FE64ECD09CAD1797BB20] - 03/04/2007 - 12:57:44 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s116cm.sys [12424]

O58 - SDL:[MD5.0C8F4ECE9684FE64ECD09CAD1797BB20] - 03/04/2007 - 12:57:44 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s116cmnt.sys [12424]

O58 - SDL:[MD5.F6F34ECAFCB915177983797A2BBAC547] - 03/04/2007 - 12:57:46 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB Ethernet Emulation (WDM class regi.) -- C:\Windows\system32\drivers\s116cr.sys [11016]

O58 - SDL:[MD5.333D1E0743E6DE1779C3C418AC601C3A] - 03/04/2007 - 12:57:48 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB WMC Modem Filter Driver.) -- C:\Windows\system32\drivers\s116mdfl.sys [15112]

O58 - SDL:[MD5.50D6E5B021E9EC7553AB8A3553CC1B6B] - 03/04/2007 - 12:57:48 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB WMC Modem WDM Driver.) -- C:\Windows\system32\drivers\s116mdm.sys [108680]

O58 - SDL:[MD5.1589AA53E43F8D193A7D4D580D3FFA95] - 03/04/2007 - 12:57:50 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB WMC Device Management Driver.) -- C:\Windows\system32\drivers\s116mgmt.sys [100488]

O58 - SDL:[MD5.306F85733671FE507470F0273025E768] - 03/04/2007 - 12:57:52 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB Ethernet Emulation (NDIS 5 Minipor.) -- C:\Windows\system32\drivers\s116nd5.sys [23176]

O58 - SDL:[MD5.EC32601F04A5A5DE89315D0F55E73D66] - 03/04/2007 - 12:57:52 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB WMC OBEX Interface Device Driver.) -- C:\Windows\system32\drivers\s116obex.sys [98696]

O58 - SDL:[MD5.32E3ECB4B2B5887426EAF241A8149CDE] - 03/04/2007 - 12:57:54 ---A- . (.MCCI Corporation - Sony Ericsson Device 116 USB Ethernet Emulation.) -- C:\Windows\system32\drivers\s116unic.sys [99080]

O58 - SDL:[MD5.1EB2AD3D5220A5543F4E00F2CE681DCD] - 03/04/2007 - 12:57:54 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s116wh.sys [12424]

O58 - SDL:[MD5.1EB2AD3D5220A5543F4E00F2CE681DCD] - 03/04/2007 - 12:57:54 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\s116whnt.sys [12424]

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 7:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480]

O58 - SDL:[MD5.CEDD6F4E7D84E9F98B34B3FE988373AA] - 02/11/2006 - 10:50:10 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [38504]

O58 - SDL:[MD5.DF843C528C4F69D12CE41CE462E973A7] - 02/11/2006 - 10:50:16 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [71784]

O58 - SDL:[MD5.8831252BCF05FCFB5ABD116A22E552D8] - 28/02/2010 - 11:20:40 ---A- . (...) -- C:\Windows\system32\drivers\sp_rsdrv2.sys [142592]

O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [35944]

O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [31848]

O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [34920]

O58 - SDL:[MD5.8D624D3BD1F2D78BD1C01A2D4E954B4E] - 10/10/2006 - 18:33:00 ---A- . (.TOSHIBA Corporation - TOSHIBA Bluetooth Port Emulation Driver.) -- C:\Windows\system32\drivers\tosporte.sys [41600]

O58 - SDL:[MD5.42A23FF09BD172FA3F6A3A0A589EF1B0] - 12/01/2007 - 20:41:32 ---A- . (.TOSHIBA CORPORATION - Bluetooth RF Bus Driver.) -- C:\Windows\system32\drivers\tosrfbd.sys [113792]

O58 - SDL:[MD5.90C8525BC578AAFFE87C2D0ED4379E9E] - 20/11/2006 - 16:55:16 ---A- . (.TOSHIBA Corporation - Bluetooth RFBNEP Driver.) -- C:\Windows\system32\drivers\tosrfbnp.sys [36480]

O58 - SDL:[MD5.5BA1CA3B3CDDB1DDC67DF473F05D1EC2] - 01/08/2005 - 15:45:00 ---A- . (.TOSHIBA Corporation - Bluetooth RFCOMM Driver.) -- C:\Windows\system32\drivers\tosrfcom.sys [64896]

O58 - SDL:[MD5.410AA85D04CFE697A2C3368286DDD128] - 24/01/2007 - 13:57:38 ---A- . (.TOSHIBA Corporation. - Bluetooth HID Driver from TOSHIBA.) -- C:\Windows\system32\drivers\Tosrfhid.sys [73728]

O58 - SDL:[MD5.C52FD27B9ADF3A1F22CB90E6BCF9B0CB] - 06/01/2005 - 12:42:00 ---A- . (.TOSHIBA Corporation. - Bluetooth BNEP Driver.) -- C:\Windows\system32\drivers\tosrfnds.sys [18612]

O58 - SDL:[MD5.A4CE9572BC4AC8D329455059B43C5BEA] - 22/01/2007 - 9:43:26 ---A- . (.TOSHIBA Corporation - Bluetooth Audio Driver (WDM).) -- C:\Windows\system32\drivers\TosRfSnd.sys [53376]

O58 - SDL:[MD5.967316FB4777BC6EAAA0E15552FEF768] - 12/01/2007 - 20:16:54 ---A- . (.TOSHIBA CORPORATION - Bluetooth USB Miniport Driver.) -- C:\Windows\system32\drivers\tosrfusb.sys [40576]

O58 - SDL:[MD5.3CD4EA35A6221B85DCC25DAA46313F8D] - 02/11/2006 - 10:51:25 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [235112]

O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [98408]

O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 02/11/2006 - 10:50:45 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\system32\drivers\ulsata2.sys [115816]

O58 - SDL:[MD5.D984439746D42B30FC65A4C3546C6829] - 02/11/2006 - 10:50:41 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\system32\drivers\vsmraid.sys [112232]

O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 8:09:42 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029]

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 8:09:45 ---A- . (...) -- C:\Windows\system32\country.sys [27097]

O58 - SDL:[MD5.1AA0AF0F0B2F3746D96F55BB69481A6C] - 22/07/2008 - 19:04:51 RSHA- . (...) -- C:\Windows\system32\D0D0BD2D62.sys [88]

O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 8:09:41 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768]

O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 8:09:44 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809]

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 8:09:44 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537]

O58 - SDL:[MD5.9242CC02210CA44F0525EBAABA925063] - 22/07/2008 - 19:05:14 -SHA- . (...) -- C:\Windows\system32\KGyGaAvL.sys [4232]

O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 8:09:29 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866]

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 8:09:35 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146]

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 8:09:38 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370]

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 8:09:40 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274]

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 8:09:31 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146]

O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 8:09:20 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952]

O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 8:09:23 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672]

O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 8:09:24 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776]

O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 8:09:26 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536]

O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 8:09:22 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672]

 

 

---\\ Liste des outils de nettoyage (O63)

O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis

O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

O63 - Logiciel: RSIT - (.random/random.)

O63 - Logiciel: Toolbar SD - (.IDN Team.)

 

 

---\\ Liste des services Legacy (O64)

O64 - Services: CurCS - (.not file.) - (.not file.) - Ad-Watch Connect Kernel Filter (Ad-Watch Connect Filter) .(...) - LEGACY_AD-WATCH_CONNECT_FILTER

O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys - Ancilliary Function Driver for Winsock (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD

O64 - Services: CurCS - (.not file.) - AFS (AFS) .(...) - LEGACY_AFS

O64 - Services: CurCS - (.not file.) - aswFsBlk (aswFsBlk) .(...) - LEGACY_ASWFSBLK

O64 - Services: CurCS - (.not file.) - aswMonFlt (aswMonFlt) .(...) - LEGACY_ASWMONFLT

O64 - Services: CurCS - (.not file.) - aswRdr (aswRdr) .(...) - LEGACY_ASWRDR

O64 - Services: CurCS - (.not file.) - avast! Self Protection (aswSP) .(...) - LEGACY_ASWSP

O64 - Services: CurCS - (.not file.) - avast! Network Shield Support (aswTdi) .(...) - LEGACY_ASWTDI

O64 - Services: CurCS - C:\Windows\System32\Drivers\avgldx86.sys - AVG Free AVI Loader Driver x86 (AvgLdx86) .(.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - LEGACY_AVGLDX86

O64 - Services: CurCS - C:\Windows\System32\Drivers\avgmfx86.sys - AVG Free On-access Scanner Minifilter Driver x86 (AvgMfx86) .(.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - LEGACY_AVGMFX86

O64 - Services: CurCS - C:\Windows\System32\Drivers\avgtdix.sys - AVG Free8 Network Redirector (AvgTdiX) .(.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - LEGACY_AVGTDIX

O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\bowser.sys - Bowser (bowser) .(.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) - LEGACY_BOWSER

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS

O64 - Services: CurCS - C:\Windows\System32\CLFS.sys - Common Log (CLFS) (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS

O64 - Services: CurCS - (.not file.) - CO_Mon (CO_Mon) .(...) - LEGACY_CO_MON

O64 - Services: CurCS - C:\Windows\System32\drivers\crcdisk.sys - Crcdisk Filter Driver (crcdisk) .(.Microsoft Corporation - Disk Block Verification Filter Driver.) - LEGACY_CRCDISK

O64 - Services: CurCS - C:\Windows\System32\Drivers\dfsc.sys - Dfs Client Driver (DfsC) .(.Microsoft Corporation - DFS Client MUP Surrogate Driver.) - LEGACY_DFSC

O64 - Services: CurCS - C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys - driverhardwarev2 (driverhardwarev2) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2

O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL

O64 - Services: CurCS - (.not file.) - EAMON (eamon) .(...) - LEGACY_EAMON

O64 - Services: CurCS - (.not file.) - easdrv (easdrv) .(...) - LEGACY_EASDRV

O64 - Services: CurCS - (.not file.) - epfwtdir (epfwtdir) .(...) - LEGACY_EPFWTDIR

O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT

O64 - Services: CurCS - C:\Windows\System32\drivers\fileinfo.sys - File Information FS MiniFilter (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO

O64 - Services: CurCS - C:\ProgramData\Spyware Terminator\FileObjInfo.sys - STFileDriver (FileObjInfo) .(.Microsoft Corporation - WinNT FileObjInfo driver.) - LEGACY_FILEOBJINFO

O64 - Services: CurCS - C:\Windows\System32\drivers\fltmgr.sys - FltMgr (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR

O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC

O64 - Services: CurCS - C:\Program Files\Google\Update\GoogleUpdate.exe - Service Google Update (gupdate) (gupdate) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE

O64 - Services: CurCS - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe - Google Software Updater (gusvc) .(.Google - gusvc.) - LEGACY_GUSVC

O64 - Services: CurCS - C:\Windows\System32\drivers\HTTP.sys - HTTP (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP

O64 - Services: CurCS - (.not file.) - Symantec Intrusion Prevention Driver (IDSvix86) .(...) - LEGACY_IDSVIX86

O64 - Services: CurCS - (.not file.) - kl1 (kl1) .(...) - LEGACY_KL1

O64 - Services: CurCS - (.not file.) - Kaspersky Lab Driver (KLIF) .(...) - LEGACY_KLIF

O64 - Services: CurCS - C:\Windows\System32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD

O64 - Services: CurCS - C:\Program Files\Common Files\LightScribe\LSSrvc.exe - LightScribeService Direct Disc Labeling Service (LightScribeService) .(.Hewlett-Packard Company - LightScribe Service.) - LEGACY_LIGHTSCRIBESERVICE

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO

O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys - UAC File Virtualization (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV

O64 - Services: CurCS - (.not file.) - mbr (mbr) .(...) - LEGACY_MBR

O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfeapfk) .(...) - LEGACY_MFEAPFK

O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfeavfk) .(...) - LEGACY_MFEAVFK

O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfehidk) .(...) - LEGACY_MFEHIDK

O64 - Services: CurCS - (.not file.) - (.not file.) - VSCore mferkdk (mferkdk) .(...) - LEGACY_MFERKDK

O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfetdik) .(...) - LEGACY_MFETDIK

O64 - Services: CurCS - C:\Windows\System32\drivers\mountmgr.sys - Mount Point Manager (MountMgr) .(.Microsoft Corporation - Mount Point Manager.) - LEGACY_MOUNTMGR

O64 - Services: CurCS - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV

O64 - Services: CurCS - C:\Windows\system32\drivers\mrxdav.sys - WebDav Client Redirector Driver (MRxDAV) .(.Microsoft Corporation - Windows NT WebDav Minirdr.) - LEGACY_MRXDAV

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\mrxsmb.sys - SMB MiniRedirector Wrapper and Engine (mrxsmb) .(.Microsoft Corporation - Windows NT SMB Minirdr.) - LEGACY_MRXSMB

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\mrxsmb10.sys - SMB 1.x MiniRedirector (mrxsmb10) .(.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) - LEGACY_MRXSMB10

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\mrxsmb20.sys - SMB 2.0 MiniRedirector (mrxsmb20) .(.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) - LEGACY_MRXSMB20

O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS

O64 - Services: CurCS - C:\Windows\System32\drivers\msisadrv.sys - ISA/EISA Class Driver (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV

O64 - Services: CurCS - C:\Windows\System32\Drivers\mup.sys - Mup (Mup) .(.Microsoft Corporation - Multiple UNC Provider driver.) - LEGACY_MUP

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\nwifi.sys - NativeWiFi Filter (NativeWifiP) .(.Microsoft Corporation - NativeWiFi Miniport Driver.) - LEGACY_NATIVEWIFIP

O64 - Services: CurCS - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe - NBService (NBService) .(.Nero AG - Nero BackItUp.) - LEGACY_NBSERVICE

O64 - Services: CurCS - C:\Windows\System32\drivers\ndis.sys - NDIS System Driver (NDIS) .(.Microsoft Corporation - NDIS 6.0 wrapper driver.) - LEGACY_NDIS

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ndisuio.sys - NDIS Usermode I/O Protocol (Ndisuio) .(.Microsoft Corporation - NDIS User mode I/O driver.) - LEGACY_NDISUIO

O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\netbt.sys - NETBT (netbt) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT

O64 - Services: CurCS - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe - NMIndexingService (NMIndexingService) .(.Nero AG - Nero Home.) - LEGACY_NMINDEXINGSERVICE

O64 - Services: CurCS - (.not file.) - npf (npf) .(...) - LEGACY_NPF

O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS

O64 - Services: CurCS - C:\Windows\System32\drivers\nsiproxy.sys - NSI proxy service (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY

O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL

O64 - Services: CurCS - C:\Windows\System32\drivers\pavboot.sys - pavboot (pavboot) .(.Panda Security, S.L. - Panda Boot Driver.) - LEGACY_PAVBOOT

O64 - Services: CurCS - C:\PROGRA~1\PC-DOC~1\PCD5SRVC.pkms - PCD5SRVC{BD6912E3-AC9D80E8-05040000} - PCDR Kernel Mode Service Helper Driver (PCD5SRVC{BD6912E3-AC9D80E8-05040000}) .(.PC-Doctor, Inc. - pcdrsrvc.sys.) - LEGACY_PCD5SRVC{BD6912E3-AC9D80E8-050

O64 - Services: CurCS - C:\Windows\System32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH

O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (PSched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rasacd.sys - Remote Access Auto Connection Driver (RasAcd) .(.Microsoft Corporation - RAS Automatic Connection Driver.) - LEGACY_RASACD

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rdbss.sys - Redirected Buffering Sub Sysytem (rdbss) .(.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - LEGACY_RDBSS

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\RDPCDD.sys - RDPCDD (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD

O64 - Services: CurCS - C:\Windows\System32\drivers\rdpencdd.sys - RDP Encoder Mirror Driver (RDPENCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPENCDD

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR

O64 - Services: CurCS - C:\Program Files\SUPERAntiSpyware\SASDIFSV.sys - SASDIFSV (SASDIFSV) .(.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASDIFSV.SYS.) - LEGACY_SASDIFSV

O64 - Services: CurCS - C:\Program Files\SUPERAntiSpyware\SASENUM.sys - SASENUM (SASENUM) .(. SUPERAdBlocker.com and SUPERAntiSpyware.co - SASENUM.SYS.) - LEGACY_SASENUM

O64 - Services: CurCS - C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys - SASKUTIL (SASKUTIL) .(.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASKUTIL.SYS.) - LEGACY_SASKUTIL

O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV

O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (Smb) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_SMB

O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR

O64 - Services: CurCS - C:\Windows\system32\Drivers\SP_RSDRV2.sys - Spyware Terminator Driver 2 (sp_rsdrv2) .(...) - LEGACY_SP_RSDRV2

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\srv.sys - srv (srv) .(.Microsoft Corporation - Server driver.) - LEGACY_SRV

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\srv2.sys - srv2 (srv2) .(.Microsoft Corporation - Smb 2.0 Server driver.) - LEGACY_SRV2

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET

O64 - Services: CurCS - (.not file.) - SYMDNS (SYMDNS) .(...) - LEGACY_SYMDNS

O64 - Services: CurCS - (.not file.) - SymEvent (SymEvent) .(...) - LEGACY_SYMEVENT

O64 - Services: CurCS - (.not file.) - SYMFW (SYMFW) .(...) - LEGACY_SYMFW

O64 - Services: CurCS - (.not file.) - SYMNDISV (SYMNDISV) .(...) - LEGACY_SYMNDISV

O64 - Services: CurCS - (.not file.) - SYMREDRV (SYMREDRV) .(...) - LEGACY_SYMREDRV

O64 - Services: CurCS - (.not file.) - SYMTDI (SYMTDI) .(...) - LEGACY_SYMTDI

O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP

O64 - Services: CurCS - C:\Windows\System32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG

O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\udfs.sys - udfs (udfs) .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS

O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE

O64 - Services: CurCS - C:\Windows\System32\drivers\volmgrx.sys - Dynamic Volume Manager (volmgrx) .(.Microsoft Corporation - Volume Manager Extension Driver.) - LEGACY_VOLMGRX

O64 - Services: CurCS - C:\Windows\System32\drivers\volsnap.sys - Volumes de stockage (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\wanarp.sys - Remote Access IPv6 ARP Driver (Wanarpv6) .(.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - LEGACY_WANARPV6

O64 - Services: CurCS - C:\Windows\System32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Microsoft Corporation - WDF Dynamic.) - LEGACY_WDF01000

 

 

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\Eric\AppData\Local\Google\Chrome\Application\chrome.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

 

 

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\Eric\AppData\Local\Google\Chrome\Application\chrome.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

 

 

---\\ Search Browser Infection (O69)

O69 - SBI: prefs.js [Eric - ycdq3zne.default] user_pref("CT2535304.SearchEngine", "Recherche||http://search.conduit.com/Results.aspx?

O69 - SBI: prefs.js [Eric - ycdq3zne.default] user_pref("CT2724386.ct2724431.SearchEngine", "Recherche||http://search.conduit.com/Results.aspx?

O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - Bing

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - Bing

O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (@ieframe.dll,-12512) - Bing

O69 - SBI: SearchScopes [HKCU] {4C802A60-CF0C-4573-906C-491139ACBCEE} - (Kelkoo) - Kelkoo Belgique - Achat en ligne & Comparaison de prix

O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - Google

O69 - SBI: SearchScopes [HKCU] {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} [DefaultScope] - (MyStart Search) - http://mystart.incredimail.com

O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - Bing

O69 - SBI: SearchScopes [HKUS\.DEFAULT] {4C802A60-CF0C-4573-906C-491139ACBCEE} - (Kelkoo) - Kelkoo Belgique - Achat en ligne & Comparaison de prix

O69 - SBI: SearchScopes [HKUS\.DEFAULT] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - Google

O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - Bing

O69 - SBI: SearchScopes [HKUS\S-1-5-18] {4C802A60-CF0C-4573-906C-491139ACBCEE} - (Kelkoo) - Kelkoo Belgique - Achat en ligne & Comparaison de prix

O69 - SBI: SearchScopes [HKUS\S-1-5-18] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - Google

 

 

---\\ Recherche particuliere à la racine de certains dossiers (O84)

[MD5.CDA12F70283C1D0F08E5E729D8799A23] [sPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\Eric\AppData\Roaming\ezpinst.exe [81920]

[MD5.254FBCA565E049648B0CCE2CEADF05D2] [sPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\Eric\AppData\Roaming\inst.exe [87608]

[MD5.5B6C11DE7E839C05248CED8825470FEF] [sPRF] (.VSO Software - low level access layer for CD/DVD/BD devices.) -- C:\Users\Eric\AppData\Roaming\pcouffin.sys [47360]

 

 

---\\ Firewall Active Exception List (FirewallRules) (O87)

O87 - FAEL: "MCX-Prov-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe

O87 - FAEL: "WinCollab-DFSR-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Distributed File System Replication.) -- C:\Windows\system32\dfsr.exe

O87 - FAEL: "WinCollab-DFSR-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Distributed File System Replication.) -- C:\Windows\system32\dfsr.exe

O87 - FAEL: "WinCollab-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe

O87 - FAEL: "WinCollab-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe

O87 - FAEL: "WinCollab-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe

O87 - FAEL: "WinCollab-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe

O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe

O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe

O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe

O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe

O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "NetPres-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus de l’autorité de sécurité locale.) -- C:\Windows\system32\lsass.exe

O87 - FAEL: "{E82BF82C-264F-4D9F-95FC-04BBFC2ADF54}" |In - None - P6 - TRUE | .(...) -- c:\Program Files\Cyberlink\PowerDirector\PDR.exe (.not file.)

O87 - FAEL: "{5980F348-BEA7-480A-84FC-5AEA09DB3DD8}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe

O87 - FAEL: "TCP Query User{2750FAE0-2B2B-41F0-AEFD-0DD6A348E058}C:\program files\internet explorer\iexplore.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe

O87 - FAEL: "UDP Query User{D733C15F-1552-4F40-A3C0-4EF0FE651A01}C:\program files\internet explorer\iexplore.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe

O87 - FAEL: "{8F04A38C-80FF-48E2-B043-B59EB090D3AF}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxdiih.exe

O87 - FAEL: "{A9DCCDA3-911C-4BFE-A2AE-DC5BAE4F7AA9}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxdiih.exe

O87 - FAEL: "{3DDCA2B0-FEF0-4C20-AA24-524DCC7F39AB}" | In - Public - P6 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\bin\ImpCnt.exe

O87 - FAEL: "{7517E89D-721A-4894-B83C-0E5F0D4C8370}" | In - Public - P17 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\bin\ImpCnt.exe

O87 - FAEL: "{EC7A7603-A71B-432B-8482-CAACAD824CF4}" | In - Public - P6 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\bin\ImApp.exe

O87 - FAEL: "{DD4FD6EB-05F4-41CF-AF9A-C9E7D1742B9D}" | In - Public - P17 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\bin\ImApp.exe

O87 - FAEL: "{5E2686D9-0D7E-4677-8525-7B3D0672F5EB}" | In - Public - P6 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\bin\IncMail.exe

O87 - FAEL: "{972D6925-6C80-42E6-BCF8-5A675801174D}" | In - Public - P17 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\bin\IncMail.exe

O87 - FAEL: "{167B8436-755D-4225-A605-F107DD929CB1}" | In - Public - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Update module.) -- C:\Program Files\AVG\AVG9\avgupd.exe

O87 - FAEL: "{3AD2F2B4-1679-44B8-B7C8-F56F1CAC44DB}" | In - Public - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe

O87 - FAEL: "{24EFF415-4579-4F28-8DF3-9DE4CC52D04B}" | In - Public - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe

O87 - FAEL: "TCP Query User{E3DFE688-A0CB-434A-A667-2EF189E401A5}C:\program files\utorrent\utorrent.exe" | In - Private - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\program files\utorrent\utorrent.exe

O87 - FAEL: "UDP Query User{CF0D94BB-1DA7-4440-9A4C-D181DEC20F7D}C:\program files\utorrent\utorrent.exe" | In - Private - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\program files\utorrent\utorrent.exe

O87 - FAEL: "{609E49E9-FF96-4B84-A87B-E14AF97D1560}" | In - Public - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Network scanner Service.) -- C:\Program Files\AVG\AVG9\avgnsx.exe

O87 - FAEL: "{DAA34A48-B30B-48FB-AA28-BA07C882FA05}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Device Monitor Application.) -- C:\Program Files\Lexmark 3500-4500 Series\lxdiamon.exe

O87 - FAEL: "{A6F17AB8-F105-46A0-A1A6-45994183BD6C}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Device Monitor Application.) -- C:\Program Files\Lexmark 3500-4500 Series\lxdiamon.exe

O87 - FAEL: "{158F76C0-EFAC-459F-B1FA-10E0B81D3334}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printing Application.) -- C:\Program Files\Lexmark 3500-4500 Series\App4R.exe

O87 - FAEL: "{5435A2F8-6C54-41F6-8CFB-84A2956D7B48}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printing Application.) -- C:\Program Files\Lexmark 3500-4500 Series\App4R.exe

O87 - FAEL: "{A54D2823-9DC0-4A6B-802C-333081383E1C}" | In - Public - P6 - TRUE | .(.ABBYY (BIT Software) - FineScanManager.) -- C:\Program Files\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe

O87 - FAEL: "{E8AEE828-3498-4DEA-BF6F-2CE02D98E10C}" | In - Public - P17 - TRUE | .(.ABBYY (BIT Software) - FineScanManager.) -- C:\Program Files\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe

O87 - FAEL: "{3DE17F7E-9D2B-419E-A16F-C45E3C8B919D}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Lexmark Fax Solutions Software.) -- C:\Program Files\Lexmark Fax Solutions\FaxCtr.exe

O87 - FAEL: "{86ED094A-EEBB-483E-8768-46C0600188BE}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Lexmark Fax Solutions Software.) -- C:\Program Files\Lexmark Fax Solutions\FaxCtr.exe

O87 - FAEL: "{E31E1929-DFEC-4148-8834-155ACAEA19FC}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Device Monitor.) -- C:\Program Files\Lexmark 3500-4500 Series\lxdimon.exe

O87 - FAEL: "{2B417B39-4070-492F-ACF0-6CC4C158FB5A}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Device Monitor.) -- C:\Program Files\Lexmark 3500-4500 Series\lxdimon.exe

O87 - FAEL: "{0C81DA37-5D5A-4BD8-8DAD-CE609385FBA5}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxdicfg.exe

O87 - FAEL: "{A5FEA26B-91F9-409D-A1AC-98B210048A0D}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxdicfg.exe

O87 - FAEL: "{206E7EFC-7915-43E7-912A-5DEB65952131}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxdicoms.exe

O87 - FAEL: "{DBE96A6E-764F-4D15-AE6B-6E1E11BB0FD4}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxdicoms.exe

O87 - FAEL: "{29657D5F-F663-47EC-8614-E1A4E9EA81F5}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printer Status Window Interface.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdipswx.exe

O87 - FAEL: "{CFE52F18-9236-42AA-8271-1AFC65A76ACD}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printer Status Window Interface.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdipswx.exe

O87 - FAEL: "{D454D013-87C2-463E-9C91-727788DCE493}" | In - Public - P6 - TRUE | .(.Lexmark International, Inc. - Lexmark Connect Time Executable.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxditime.exe

O87 - FAEL: "{9FD8A1F0-4459-4EC3-82B4-0E5181EEE6D6}" | In - Public - P17 - TRUE | .(.Lexmark International, Inc. - Lexmark Connect Time Executable.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxditime.exe

O87 - FAEL: "{C535A1EF-C1F0-40EC-A4B2-F9AD7A38163D}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Job Status Window Interface.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdijswx.exe

O87 - FAEL: "{818E84F6-EF89-416D-A589-F43551C5E947}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Job Status Window Interface.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdijswx.exe

O87 - FAEL: "TCP Query User{94457325-1A5D-45B7-9565-940CAACF9CEE}C:\program files\emule\emule.exe" | In - Public - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files\emule\emule.exe

O87 - FAEL: "UDP Query User{C80EA3E7-7BF0-48BA-A2EF-0CC3B26ECF62}C:\program files\emule\emule.exe" | In - Public - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files\emule\emule.exe

O87 - FAEL: "TCP Query User{4DE9A02D-1615-41D9-BD1F-ED30F0C9B672}C:\program files\spyware terminator\spywareterminatorupdate.exe" | In - Public - P6 - TRUE | .(.Crawler.com.) -- C:\program files\spyware terminator\spywareterminatorupdate.exe

O87 - FAEL: "UDP Query User{7E183111-57F2-4284-BF0B-8F0DD7570926}C:\program files\spyware terminator\spywareterminatorupdate.exe" | In - Public - P17 - TRUE | .(.Crawler.com.) -- C:\program files\spyware terminator\spywareterminatorupdate.exe

O87 - FAEL: "TCP Query User{9D2A3710-1D7B-4989-916E-45CDC1712DE3}Z:\bitcomet.exe" |In - Public - P6 - TRUE | .(...) -- Z:\bitcomet.exe (.not file.)

O87 - FAEL: "UDP Query User{561E36F7-A720-4E8E-A662-3874E6AEB52C}Z:\bitcomet.exe" |In - Public - P17 - TRUE | .(...) -- Z:\bitcomet.exe (.not file.)

O87 - FAEL: "TCP Query User{D9FCB68B-3E82-4C20-90AF-F75915E62CD2}C:\program files\java\jre6\bin\java.exe" | In - Public - P6 - TRUE | .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\program files\java\jre6\bin\java.exe

O87 - FAEL: "UDP Query User{74A552C4-378F-44A8-A718-BA4BD52DDC8C}C:\program files\java\jre6\bin\java.exe" | In - Public - P17 - TRUE | .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\program files\java\jre6\bin\java.exe

O87 - FAEL: "{E1C86BB9-61D7-4647-8D3C-AC00EB1232A8}" | In - Public - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe

O87 - FAEL: "{C2C4D534-2EFE-4367-836F-D132C27E83B1}" | In - Public - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe

O87 - FAEL: "{357F2991-B2E0-45FC-8487-D3688243B066}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxdicoms.exe

O87 - FAEL: "{33B293F3-053D-4D7C-A390-13484EE07296}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxdicoms.exe

O87 - FAEL: "{6660BD5F-5E03-4EA1-BA03-100DFA6749B0}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Device Monitor Application.) -- C:\Program Files\Lexmark 3500-4500 Series\lxdiamon.exe

O87 - FAEL: "{D5911C73-30C3-4784-8604-88B171ED7756}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Device Monitor Application.) -- C:\Program Files\Lexmark 3500-4500 Series\lxdiamon.exe

O87 - FAEL: "{761CF7D4-9AEE-46E3-A816-E193AEE193C6}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Printing Application.) -- C:\Program Files\Lexmark 3500-4500 Series\App4R.exe

O87 - FAEL: "{9A3AD746-B414-4AFC-A05E-34666F72B24E}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Printing Application.) -- C:\Program Files\Lexmark 3500-4500 Series\App4R.exe

O87 - FAEL: "{2DE15BFA-0E08-4511-9BDE-B3E54537FD41}" | In - Private - P6 - TRUE | .(.ABBYY (BIT Software) - FineScanManager.) -- C:\Program Files\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe

O87 - FAEL: "{50B76A37-E4CA-4F66-96E4-C0E26A03FCE0}" | In - Private - P17 - TRUE | .(.ABBYY (BIT Software) - FineScanManager.) -- C:\Program Files\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe

O87 - FAEL: "{CAAA7A04-6BB2-4BC3-B1E2-4DB1C71C758E}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Lexmark Fax Solutions Software.) -- C:\Program Files\Lexmark Fax Solutions\FaxCtr.exe

O87 - FAEL: "{10779A92-68C6-4723-A13F-3BE0DBD18533}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Lexmark Fax Solutions Software.) -- C:\Program Files\Lexmark Fax Solutions\FaxCtr.exe

O87 - FAEL: "{FA698F0F-3C93-4D5F-9C8E-F504D60A2AF7}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Device Monitor.) -- C:\Program Files\Lexmark 3500-4500 Series\lxdimon.exe

O87 - FAEL: "{442DA3AC-881C-4382-8D8C-5CAC7F20A142}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Device Monitor.) -- C:\Program Files\Lexmark 3500-4500 Series\lxdimon.exe

O87 - FAEL: "{FCB6BFD6-C049-4750-BE91-50E919F02D1C}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Printer Status Window Interface.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdipswx.exe

O87 - FAEL: "{1A763557-057C-426D-A903-2C421498F327}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Printer Status Window Interface.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdipswx.exe

O87 - FAEL: "{ECB44B2D-4BB6-4C5B-8C80-15C149F329F3}" | In - Private - P6 - TRUE | .(.Lexmark International, Inc. - Lexmark Connect Time Executable.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxditime.exe

O87 - FAEL: "{8DFCD994-8935-4925-9812-092E1D750CC2}" | In - Private - P17 - TRUE | .(.Lexmark International, Inc. - Lexmark Connect Time Executable.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxditime.exe

O87 - FAEL: "{0C5BE420-0524-4AB5-B2EB-4794B0055195}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Lexmark Web Gateway.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdiwbgw.exe

O87 - FAEL: "{04F50259-D015-462D-8367-B76F511F4C51}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Lexmark Web Gateway.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdiwbgw.exe

O87 - FAEL: "{3835961C-D6A5-45F6-B607-2FA573CB2FAB}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Job Status Window Interface.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdijswx.exe

O87 - FAEL: "{49613F23-9130-4ECA-8A7A-74BFEB38DD3F}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Job Status Window Interface.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdijswx.exe

O87 - FAEL: "{5CC7B68E-E09C-4DBC-BD89-79799C3E1BD2}" | In - Private - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe

O87 - FAEL: "{EF4BE6DF-D86D-40B6-B7F8-6B91096F6C2A}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe

O87 - FAEL: "{E4E3E80F-5386-43EE-87B0-7A81452FF777}" | In - Private - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe

O87 - FAEL: "{7DD37739-B328-4A36-A251-3420C16826C9}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe

O87 - FAEL: "{5D09ED75-B8ED-4D75-B1F3-A98294FDA709}" | In - Private - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\Bin\ImpCnt.exe

O87 - FAEL: "{326DE4B1-7BFE-4463-AE03-26BAA1D34E73}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\Bin\ImpCnt.exe

O87 - FAEL: "{B6FC3512-6887-42B9-A0B0-75671B46AF93}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O87 - FAEL: "{AF5387DA-FA6A-41ED-BD72-618C4C4B5FA4}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe

 

 

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SS - | Demand 11/06/2009 72704 | (Adobe LM Service) . (.Adobe Systems.) - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

SR - | Auto 14/09/2007 610304 | (Ati External Event Utility) . (.ATI Technologies Inc..) - C:\Windows\system32\Ati2evxx.exe

SR - | Auto 15/07/2010 308136 | (avg9wd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG9\avgwdsvc.exe

SS - | Auto 06/02/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe

SS - | Demand 26/04/2009 182768 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

SR - | Auto 19/09/2007 65536 | (HP Health Check Service) . (.Hewlett-Packard.) - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe

SR - | Auto 12/07/2007 354840 | (IAANTMON) . (.Intel Corporation.) - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe

SS - | Demand 14/11/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe

SS - | Disabled 18/10/2007 79136 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

SS - | Auto 11/06/2007 99248 | (lxdiCATSCustConnectService) . (.Lexmark International, Inc..) - C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdiserv.exe

SR - | Auto 11/06/2007 517040 | (lxdi_device) . (...) - C:\Windows\system32\lxdicoms.exe

SS - | Demand 12/09/2010 251248 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe

SS - | Disabled 29/06/2007 800040 | (NBService) . (.Nero AG.) - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

SS - | Disabled 27/06/2007 279848 | (NMIndexingService) . (.Nero AG.) - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

SS - | Demand 13/09/2007 25760 | (PCD5SRVC{BD6912E3-AC9D80E8-05040000}) . (.PC-Doctor, Inc..) - C:\PROGRA~1\PC-DOC~1\PCD5SRVC.pkms

SR - | Auto 05/06/2007 177704 | (ProtexisLicensing) . (...) - C:\Windows\system32\PSIService.exe

SR - | Auto 28/02/2010 488960 | (sp_rssrv) . (.Crawler.com.) - C:\Program Files\Spyware Terminator\sp_rsser.exe

SS - | Demand 21/05/2008 354560 | C:\Windows\System32\TuneUpDefragService.exe (TuneUp.Defrag) . (.TuneUp Software GmbH.) - C:\Windows\System32\TuneUpDefragService.exe

 

 

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, GMER - Rootkit Detector and Remover

 

 

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

Written by ad13, http://ad13.geekstog

Run by Eric at 10/03/2011 19:47:50

Use the desktop link 'MBRCheck' to have full report

Dump file Name : C:\PhysicalDisk0_MBR.bin

 

 

 

---\\ Liste des émulateurs de CD/DVD (Hook du MBR)

O58 - SDL:[MD5.5B6C11DE7E839C05248CED8825470FEF] - 17/01/2009 - 16:56:23 ---A- . (.VSO Software - low level access layer for CD/DVD/BD devices.) -- C:\Windows\system32\drivers\pcouffin.sys [47360]

 

 

 

End of the scan (1424 lines in 01mn 26s)(0)

[Tonton]

Salut erick10,

 

Beaucoup de choses à dire :

 

1.

Attention au P2P : en plus du côté légal / juridique, il s'agit là de la manière la plus efficace pourinfecter un PC...

 

2.

• 
   
  
• Copie l'ensemble du texte présent dans l'encadré ci-dessous (tu le sélectionnes avec ta souris / clique droit dessus et choisis "copier" ou fait Ctrl+C)
   

  R3 - URLSearchHook: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} Clé orpheline
  O4 - Global Startup: C:\Users\Eric\Desktop\Poste de travail.lnk - Clé orpheline
  O4 - Global Startup: C:\Users\Eric\Desktop\Programmes et fonctionnalités - Raccourci.lnk - Clé orpheline
  O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} - (SpinTop DRM Control) - (.not file.) - C:\Program Files\Super Mah Jong Solitaire\Images\stg_drm.ocx
  O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} - (ArmHelper Control) - (.not file.) - C:\Program Files\Mahjong Escape - Ancient Japan\Images\armhelper.ocx => ArmHelper Control
  [MD5.00000000000000000000000000000000] [APT] [{4FCB38EA-14FF-4F9C-B867-46E2D2623F06}] (.Pas de propriétaire.) -- J:\Programme\NERO 7.10.1.0\nero_nero_7.10.1.0_francais_10297.exe (.not file.)
  O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 => Safer Networking Limited Spybot - Search & De
  O43 - CFD: 15/11/2009 - 14:57:50 - [100781345] ----D- C:\Program Files\Spybot - Search & Destroy => Spybot - Search & Destroy
  O43 - CFD: 26/07/2010 - 18:42:42 - [6857] ----D- C:\ProgramData\regid.1986-12.com.adobe
  O43 - CFD: 07/11/2010 - 23:35:34 - [10111] ----D- C:\ProgramData\Spybot - Search & Destroy => Spybot - Search & Destroy
  O51 - MPSK:{9d78f157-1126-11e0-af61-001e8cdfac98}\AutoRun\command - Clé orpheline
  O51 - MPSK:{9f0cb71f-e5ba-11df-b8b0-001e8cdfac98}\AutoRun\command - Clé orpheline
  O69 - SBI: prefs.js [Eric - ycdq3zne.default] user_pref("CT2535304.SearchEngine", "Recherche||http://search.conduit.com/Results.aspx?
  O69 - SBI: prefs.js [Eric - ycdq3zne.default] user_pref("CT2724386.ct2724431.SearchEngine", "Recherche||http://search.conduit.com/Results.aspx?
  O87 - FAEL: "{3DDCA2B0-FEF0-4C20-AA24-524DCC7F39AB}" | In - Public - P6 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\bin\ImpCnt.exe
  O87 - FAEL: "{7517E89D-721A-4894-B83C-0E5F0D4C8370}" | In - Public - P17 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\bin\ImpCnt.exe
  O87 - FAEL: "{EC7A7603-A71B-432B-8482-CAACAD824CF4}" | In - Public - P6 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\bin\ImApp.exe
  O87 - FAEL: "{DD4FD6EB-05F4-41CF-AF9A-C9E7D1742B9D}" | In - Public - P17 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\bin\ImApp.exe
  O87 - FAEL: "TCP Query User{9D2A3710-1D7B-4989-916E-45CDC1712DE3}Z:\bitcomet.exe" |In - Public - P6 - TRUE | .(...) -- Z:\bitcomet.exe (.not file.)
  O87 - FAEL: "UDP Query User{561E36F7-A720-4E8E-A662-3874E6AEB52C}Z:\bitcomet.exe" |In - Public - P17 - TRUE | .(...) -- Z:\bitcomet.exe (.not file.)
  O87 - FAEL: "{E4E3E80F-5386-43EE-87B0-7A81452FF777}" | In - Private - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe
  O87 - FAEL: "{7DD37739-B328-4A36-A251-3420C16826C9}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe
  O87 - FAEL: "{5D09ED75-B8ED-4D75-B1F3-A98294FDA709}" | In - Private - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\Bin\ImpCnt.exe
  O87 - FAEL: "{326DE4B1-7BFE-4463-AE03-26BAA1D34E73}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\Bin\ImpCnt.exe
  O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} Clé orpheline => BitComet PeerToPeer
  O8 - Extra context menu item: Tout télécharger avec BitComet - (.not file.) - Z:\BitComet.exe => BitComet PeerToPeer
  O8 - Extra context menu item: Télécharger avec BitComet - (.not file.) - Z:\BitComet.exe => BitComet PeerToPeer
  O8 - Extra context menu item: Télécharger toutes les vidéos avec BitComet - (.not file.) - Z:\BitComet.exe => BitComet PeerToPeer
  O9 - Extra 'Tools' menuitem: Recherche - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} . (.not file.) - Z:\tools\bitcometbho.dll => BitComet PeerToPeer
  O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM] -- eMule => eMule PeerToPeer
  O42 - Logiciel: µTorrent - (.Pas de propriétaire.) [HKLM] -- uTorrent => µTorrent PeerToPeer
  [HKCU\Software\BitComet] => BitComet PeerToPeer
  [HKCU\Software\BitTorrent] => Bittorent PeerToPeer
  [HKCU\Software\eMule] => eMule PeerToPeer
  O43 - CFD: 23/01/2010 - 18:42:16 - [10798861] ----D- C:\Program Files\eMule => eMule PeerToPeer
  O43 - CFD: 26/09/2010 - 17:21:26 - [328056] ----D- C:\Program Files\uTorrent => µTorrent PeerToPeer
  O43 - CFD: 23/01/2010 - 18:42:30 - [0] ----D- C:\ProgramData\eMule => eMule PeerToPeer
  O43 - CFD: 19/11/2008 - 20:21:00 - [69171] ----D- C:\Users\Eric\AppData\Roaming\FrostWire => FrostWire Gnutella
  O43 - CFD: 05/07/2009 - 19:07:44 - [4178896] ----D- C:\Users\Eric\AppData\Roaming\LimeWire => LimeWire Java PeerToPeer
  O43 - CFD: 05/03/2011 - 19:18:18 - [1793519] ----D- C:\Users\Eric\AppData\Roaming\uTorrent => µTorrent PeerToPeer
  O87 - FAEL: "{3AD2F2B4-1679-44B8-B7C8-F56F1CAC44DB}" | In - Public - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe
  O87 - FAEL: "{24EFF415-4579-4F28-8DF3-9DE4CC52D04B}" | In - Public - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe
  O87 - FAEL: "TCP Query User{E3DFE688-A0CB-434A-A667-2EF189E401A5}C:\program files\utorrent\utorrent.exe" | In - Private - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\program files\utorrent\utorrent.exe
  O87 - FAEL: "UDP Query User{CF0D94BB-1DA7-4440-9A4C-D181DEC20F7D}C:\program files\utorrent\utorrent.exe" | In - Private - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\program files\utorrent\utorrent.exe
  O87 - FAEL: "TCP Query User{94457325-1A5D-45B7-9565-940CAACF9CEE}C:\program files\emule\emule.exe" | In - Public - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files\emule\emule.exe
  O87 - FAEL: "UDP Query User{C80EA3E7-7BF0-48BA-A2EF-0CC3B26ECF62}C:\program files\emule\emule.exe" | In - Public - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files\emule\emule.exe

• Puis Lance ZHPFix depuis le raccourci du bureau
  
• Une fois l'outil ZHPFix ouvert, clique sur le bouton [H] ("coller les lignes Helper")
  
• Dans l'encadré principal, tu verras donc apparaître les lignes que tu as précédemment copiées
  
• Vérifie :
  - que toutes les lignes que je t'ai demandé de copier (et seulement elles) sont dans la fenêtre
  - que les lignes soient disposées les unes en dessous des autres
  
• Puis clique sur le bouton [OK]
  
• À ce moment là, il apparaitra au début de chaque ligne une petite case vide : ne touche plus à rien !
  
• Déconnecte toi d'internet, désactive tes défenses (anti-virus et anti-malwares) et ferme bien toutes les autres applications (y compris les navigateurs) !
  
• Clique sur le bouton [Tous]
  
• Vérifie que toutes les lignes soient bien cochées
  
• Enfin, clique sur le bouton [Nettoyer]
  --> laisse travailler l'outil et ne touche à rien...
  
• Une fois terminé, un nouveau rapport s'affiche :
  --> copie/colle le contenu de ce dernier dans ta prochaine réponse
  
• NB : ce rapport est en sauvegardé dans le dossier C:\Program files\ZHPDiag\ZHPFixReport.txt
  
• Important : s'il t'est demandé de redémarrer le PC pour finir le nettoyage, fais-le de suite
  

3.

• Télécharge AD REMOVER de C-XX, puis enregistre-le sur le bureau
  
• Lien :
  
• L'installation de AD REMOVER requiert que toutes les applications soient fermées
  
• Comme tu utilises VISTA, désactive provisoirement l'UAC : shi.fr/Astuce/3-Desactiver-lUAC-Sous-Vista7.html
  
• Clic droit/exécuter comme administrateur sur l'icône AD REMOVER placée sur le bureau
  
• En cas de réaction du pare-feu, accepte de manière à laisser tourner le programme
  
• Après avoir cliqué sur "SCANNER", tu trouveras le rapport sous C:\Ad-Report :
  --> merci de le poster ds ta réponse
  
• Clic droit/exécuter comme administrateur sur l'icône AD REMOVER placée sur le bureau
  
• En cas de réaction du pare-feu, accepte de manière à laisser tourner le programme
  
• Après avoir cliqué sur "NETTOYER", tu trouveras le rapport sous C:\Ad-Report Clean :
  --> merci de le poster également ds ta réponse
  
• Remarques :
  - le bureau va disparaître : pas d'inquiétude, cette étape fait partie du processus
  - pense à réactiver l'UAC
  

4.

• Télécharge la version Free de Malwarebytes' Anti-Malware (MBAM) :
  
• Tu peux garder ce programme
  
• Connecte tous tes supports avant d’effectuer un scan (disque dur ou clé USB, par ex.)
  
• Double clique sur le fichier téléchargé pour lancer l’installation
  
• Clique sur le bouton « Recherche de mise à jour » situé dans l'onglet « Mise à jour » ; au cas où le pare-feu demande l'autorisation à MBAM de se connecter, accepte
  
• Lorsque la mise à jour est finie, rends-toi dans l'onglet « Recherche », sélectionne « Exécuter un examen complet » et clique sur « Rechercher »
  
• Ceci va déclencher le démarrage de l'analyse (qui peut être longue).
  
• A la fin de l'analyse, un message s'affiche :

  L'examen s'est terminé normalement. Cliquer sur « Afficher les résultats » pour afficher tous les objets trouvés.

• Clique sur « OK » pour continuer. Si MBAM n'a rien trouvé, il te préviendra également
  
• Ferme tes navigateurs
  
• Si MBAM a trouvé des malwares, clique sur « Afficher les résultats »
  
• Coche l’ensemble, ou laisse coché, puis clique sur « Supprimer la sélection » : MBAM va alors détruire les fichiers et clés de registre et en placer une copie dans la quarantaine
  
• En parallèle, MBAM ouvre le Bloc-notes et y copie le rapport d'analyse
  --> Copie/colle ce rapport et poste-le dans ta prochaine réponse stp

5.

Tu as plusieurs anti-virus et anti-malwares : ne garde qu'1 seul anti-virus et qu'1 seul anti-malwares.

Sinon, tu constateras des ralentissements, voire des dysfonctionnements.

 

6.

Limite tes programmes au démarrage : exécuter > taper msconfig > démarrage > tout décocher, sauf anti-virus, pare-feu et connexion internet > redémarrer

 

7.

Active les mises à jour automatiques via Windows Update, ce qui te permettra notamment d'installer le SP2.

 

Voili, voilou pour le moment :

--> j'attends tes rapports et commentaires et, si tout va bien, ns pourrons passer à l'étape suivante (désactivation des services Windows inutiles, nettoyage et défragmentation)

 

Bonne soirée,

Tonton

Modifié le 10 mars 2011 par Tonton57

[erick10]

[size="2"]bonsoir

 

voila le 1er rapport avec ZHP fix avant de faire tout le reste [/size]

Rapport de ZHPFix 1.12.3257 par Nicolas Coolman, Update du 05/03/2011

Fichier d'export Registre :

Run by Eric at 11/03/2011 22:48:43

Windows Vista Home Premium Edition, 32-bit (Build 6000)

Web site : ZHPFix Fix de rapport

Contact : nicolascoolman@yahoo.fr

 

========== Clé(s) du Registre ==========

O42 - Logiciel: µTorrent - (.Pas de propriétaire.) [HKLM] -- uTorrent => Désinstallation logicielle annulée par l'utilisateur ou désinstallation partielle!

O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} - (SpinTop DRM Control) - (.not file.) - C:\Program Files\Super Mah Jong Solitaire\Images\stg_drm.ocx => Clé absente

O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} - (ArmHelper Control) - (.not file.) - C:\Program Files\Mahjong Escape - Ancient Japan\Images\armhelper.ocx => Clé absente

O51 - MPSK:{9d78f157-1126-11e0-af61-001e8cdfac98}\AutoRun\command - Clé orpheline => Clé absente

O51 - MPSK:{9f0cb71f-e5ba-11df-b8b0-001e8cdfac98}\AutoRun\command - Clé orpheline => Clé absente

O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} Clé orpheline => Clé absente

O8 - Extra context menu item: Tout télécharger avec BitComet - (.not file.) - Z:\BitComet.exe => Clé absente

O8 - Extra context menu item: Télécharger avec BitComet - (.not file.) - Z:\BitComet.exe => Clé absente

O8 - Extra context menu item: Télécharger toutes les vidéos avec BitComet - (.not file.) - Z:\BitComet.exe => Clé absente

O9 - Extra 'Tools' menuitem: Recherche - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} . (.not file.) - Z:\tools\bitcometbho.dll => Clé absente

HKCU\Software\BitComet => Clé absente

HKCU\Software\BitTorrent => Clé absente

HKCU\Software\eMule => Clé absente

 

========== Valeur(s) du Registre ==========

R3 - URLSearchHook: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} Clé orpheline => Valeur absente

{3DDCA2B0-FEF0-4C20-AA24-524DCC7F39AB} => Valeur absente

{7517E89D-721A-4894-B83C-0E5F0D4C8370} => Valeur absente

{EC7A7603-A71B-432B-8482-CAACAD824CF4} => Valeur absente

{DD4FD6EB-05F4-41CF-AF9A-C9E7D1742B9D} => Valeur absente

TCP Query User{9D2A3710-1D7B-4989-916E-45CDC1712DE3}Z:\bitcomet.exe => Valeur absente

UDP Query User{561E36F7-A720-4E8E-A662-3874E6AEB52C}Z:\bitcomet.exe => Valeur absente

{E4E3E80F-5386-43EE-87B0-7A81452FF777} => Valeur absente

{7DD37739-B328-4A36-A251-3420C16826C9} => Valeur absente

{5D09ED75-B8ED-4D75-B1F3-A98294FDA709} => Valeur absente

{326DE4B1-7BFE-4463-AE03-26BAA1D34E73} => Valeur absente

{3AD2F2B4-1679-44B8-B7C8-F56F1CAC44DB} => Valeur absente

{24EFF415-4579-4F28-8DF3-9DE4CC52D04B} => Valeur absente

TCP Query User{E3DFE688-A0CB-434A-A667-2EF189E401A5}C:\program files\utorrent\utorrent.exe => Valeur absente

UDP Query User{CF0D94BB-1DA7-4440-9A4C-D181DEC20F7D}C:\program files\utorrent\utorrent.exe => Valeur absente

TCP Query User{94457325-1A5D-45B7-9565-940CAACF9CEE}C:\program files\emule\emule.exe => Valeur absente

UDP Query User{C80EA3E7-7BF0-48BA-A2EF-0CC3B26ECF62}C:\program files\emule\emule.exe => Valeur absente

 

========== Préférences navigateur ==========

O69 - SBI: prefs.js [Eric - ycdq3zne.default] user_pref("CT2535304.SearchEngine", "Recherche||http://search.conduit.com/Results.aspx? => Valeur supprimée avec succès

O69 - SBI: prefs.js [Eric - ycdq3zne.default] user_pref("CT2724386.ct2724431.SearchEngine", "Recherche||http://search.conduit.com/Results.aspx? => Valeur supprimée avec succès

 

========== Dossier(s) ==========

C:\Program Files\Spybot - Search & Destroy => Fichier supprimé au reboot

C:\ProgramData\regid.1986-12.com.adobe => Dossier absent

C:\ProgramData\Spybot - Search & Destroy => Dossier absent

C:\Program Files\eMule => Dossier absent

C:\Program Files\uTorrent => Dossier absent

C:\ProgramData\eMule => Dossier absent

C:\Users\Eric\AppData\Roaming\FrostWire => Dossier absent

C:\Users\Eric\AppData\Roaming\LimeWire => Dossier absent

C:\Users\Eric\AppData\Roaming\uTorrent => Dossier absent

 

========== Fichier(s) ==========

c:\users\eric\desktop\poste de travail.lnk => Fichier absent

c:\users\eric\desktop\programmes et fonctionnalités - raccourci.lnk => Fichier absent

j:\programme\nero 7.10.1.0\nero_nero_7.10.1.0_francais_10297.exe (.not file.) => Fichier absent

z:\bitcomet.exe => Supprimé et mis en quarantaine

z:\tools\bitcometbho.dll => Supprimé et mis en quarantaine

 

========== Logiciel(s) ==========

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 => Logiciel déjà supprimé

O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM] -- eMule => Logiciel déjà supprimé

 

========== Tache planifiée ==========

Task : {4FCB38EA-14FF-4F9C-B867-46E2D2623F06} => Tache absente

 

 

========== Récapitulatif ==========

13 : Clé(s) du Registre

17 : Valeur(s) du Registre

9 : Dossier(s)

5 : Fichier(s)

2 : Logiciel(s)

2 : Préférences navigateur

1 : Tache planifiée

 

 

End of the scan

 

 

 

scan ad-r

 

 

======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 =======

 

Mis à jour par TeamXscript le 01/03/11

Contact: AdRemover[DOT]contact[AT]gmail[DOT]com

Site web: http://www.teamxscript.org'>http://www.teamxscript.org

 

C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 00:20:35 le 12/03/2011, Mode normal

 

Microsoft® Windows Vista™ Édition Familiale Premium (X86)

Eric@PC-DE-ERIC (HP-Pavilion KQ431AA-B14 a6312.be)

 

============== RECHERCHE ==============

 

 

Dossier trouvé: C:\Users\Eric\AppData\Roaming\Mozilla\FireFox\Profiles\ycdq3zne.default\conduit

 

-- Fichier ouvert: C:\Users\Eric\AppData\Roaming\Mozilla\FireFox\Profiles\ycdq3zne.default\Prefs.js --

Ligne trouvée: /*/*user_pref("CT2535304.SearchEngine", "Recherche||hxxp://search.conduit.com/Results.aspx?*/q=UCM_S...

Ligne trouvée: /*/*user_pref("CT2724386.ct2724431.SearchEngine", "Recherche||hxxp://search.conduit.com/Results.aspx...

Ligne trouvée: user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);

Ligne trouvée: user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Wed Mar 09 2011 06:17:33 GMT+0100");

Ligne trouvée: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");

Ligne trouvée: user_pref("CommunityToolbar.alert.locale", "en");

Ligne trouvée: user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);

Ligne trouvée: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Wed Mar 09 2011 06:17:33 GMT+0100");

Ligne trouvée: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1291052234");

Ligne trouvée: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);

Ligne trouvée: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");

Ligne trouvée: user_pref("CommunityToolbar.alert.showTrayIcon", false);

Ligne trouvée: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);

Ligne trouvée: user_pref("CommunityToolbar.alert.userId", "{ac79e61a-c5e7-4494-88e3-b29acbc83145}");

Ligne trouvée: user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Wed Mar 09 2011 06:17:34 GMT+0100");

-- Fichier Fermé --

 

 

Clé trouvée: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar

 

 

============== SCAN ADDITIONNEL ==============

 

**** Mozilla Firefox Version [3.6.15 (fr)] ****

 

Searchplugins\amazondotcom.xml (hxxp://www.amazon.com/exec/obidos/external-search/)

Searchplugins\answers.xml (hxxp://www.answers.com/main/ntquery)

Searchplugins\babylon.xml (hxxp://search.babylon.com/web/{searchTerms})

Searchplugins\creativecommons.xml (hxxp://search.creativecommons.org/)

Searchplugins\eBay.xml (hxxp://rover.ebay.com/rover/1/711-47294-18009-3/4)

Searchplugins\wikipedia.xml (hxxp://en.wikipedia.org/wiki/Special:Search)

HKLM_Extensions|{3f963a5b-e555-4543-90e2-c3908898db71} - C:\Program Files\AVG\AVG9\Firefox

 

-- C:\Users\Eric\AppData\Roaming\Mozilla\FireFox\Profiles\ycdq3zne.default --

Extensions\{2122962a-1424-fffe-19af-bba2ef3eff4a} (YouTube Downloader for Facebook)

Extensions\{d1a1c8f1-e3d9-48df-802f-20201061ef61} (Messenger Plus Live Belgium Toolbar)

Extensions\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (IncrediMail MediaBar 2 Toolbar)

Searchplugins\MyStart Search.xml (?)

Prefs.js - browser.download.dir, C:\\Users\\Eric\\Downloads

Prefs.js - browser.download.lastDir, C:\\Users\\Eric\\Documents\\Pictures

Prefs.js - browser.search.defaultenginename, MyStart Search

Prefs.js - browser.search.selectedEngine, MyStart Search

Prefs.js - browser.startup.homepage, hxxp://www.google.be/

Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.15

 

========================================

 

**** Google Chrome Version [10.0.648.127] ****

 

 

-- C:\Users\Eric\AppData\Local\Google\Chrome\User Data\Default --

Preferences - default_search_provider: "Google" (Activé: true) (?)

Preferences - homepage: hxxp://www.google.be/

Preferences - homepage_is_newtabpage: false

 

========================================

 

**** Internet Explorer Version [8.0.6001.18865] ****

 

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896

HKCU_Main|Start Page - hxxp://www.google.be/

HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896

HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm

HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKLM_Main|Start Page - hxxp://fr.msn.com/

HKCU_URLSearchHooks|{d1a1c8f1-e3d9-48df-802f-20201061ef61} - "Messenger Plus Live Belgium Toolbar" (C:\Program Files\Messenger_Plus_Live_Belgium\tbMess.dll)

HKLM_URLSearchHooks|{d1a1c8f1-e3d9-48df-802f-20201061ef61} - "Messenger Plus Live Belgium Toolbar" (C:\Program Files\Messenger_Plus_Live_Belgium\tbMess.dll)

HKCU_SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - "?" (?)

HKCU_SearchScopes\{4C802A60-CF0C-4573-906C-491139ACBCEE} - "Kelkoo" (hxxp://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromfor...)

HKLM_SearchScopes\{4C802A60-CF0C-4573-906C-491139ACBCEE} - "Kelkoo" (hxxp://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromfor...)

HKCU_Toolbar\WebBrowser|{A057A204-BACC-4D26-9990-79A187E2698E} (x)

HKCU_Toolbar\WebBrowser|{D1A1C8F1-E3D9-48DF-802F-20201061EF61} (C:\Program Files\Messenger_Plus_Live_Belgium\tbMess.dll)

HKCU_Toolbar\WebBrowser|{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0} (x)

HKLM_Toolbar|{d1a1c8f1-e3d9-48df-802f-20201061ef61} (C:\Program Files\Messenger_Plus_Live_Belgium\tbMess.dll)

HKCU_ElevationPolicy\{BE743CBC-FD55-4DA5-ACA3-61E903B332F6} - C:\Program Files\ACD Systems\ACDSee\10.0\ACDSeeQV10.exe (ACD Systems)

HKCU_ElevationPolicy\{C6CBF2CD-6EFA-4BBE-98E6-5F572443AB71} - C:\Program Files\ACD Systems\ACDSee\10.0\ACDSee10.exe (ACD Systems)

HKLM_ElevationPolicy\377ddff6-4694-41e4-ae9a-82b37811cdcb - C:\Program Files\Messenger_Plus_Live_Belgium\Messenger_Plus_Live_BelgiumToolbarHelper.exe (?)

HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)

HKLM_Extensions\{D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - "BitComet" (Z:\tools\bitcometbho.dll,203)

BHO\{d1a1c8f1-e3d9-48df-802f-20201061ef61} - "Messenger Plus Live Belgium Toolbar" (C:\Program Files\Messenger_Plus_Live_Belgium\tbMess.dll)

 

========================================

 

C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s)

C:\Program Files\Ad-Remover\Backup: 1 Fichier(s)

 

C:\Ad-Report-SCAN[1].txt - 12/03/2011 00:20:42 (6726 Octet(s))

 

Fin à: 00:21:28, 12/03/2011

 

============== E.O.F ==============

 

 

 

======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 =======

 

Mis à jour par TeamXscript le 01/03/11

Contact: AdRemover[DOT]contact[AT]gmail[DOT]com

Site web: http://www.teamxscript.org

 

C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 00:29:50 le 12/03/2011, Mode normal

 

Microsoft® Windows Vista™ Édition Familiale Premium (X86)

Eric@PC-DE-ERIC (HP-Pavilion KQ431AA-B14 a6312.be)

 

============== ACTION(S) ==============

 

 

Dossier supprimé: C:\Users\Eric\AppData\Roaming\Mozilla\FireFox\Profiles\ycdq3zne.default\conduit

 

(!) -- Fichiers temporaires supprimés.

 

 

-- Fichier ouvert: C:\Users\Eric\AppData\Roaming\Mozilla\FireFox\Profiles\ycdq3zne.default\Prefs.js --

Ligne supprimée: /*/*user_pref("CT2535304.SearchEngine", "Recherche||hxxp://search.conduit.com/Results.aspx?*/q=UCM_S...

Ligne supprimée: /*/*user_pref("CT2724386.ct2724431.SearchEngine", "Recherche||hxxp://search.conduit.com/Results.aspx...

Ligne supprimée: user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);

Ligne supprimée: user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Wed Mar 09 2011 06:17:33 GMT+0100");

Ligne supprimée: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");

Ligne supprimée: user_pref("CommunityToolbar.alert.locale", "en");

Ligne supprimée: user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);

Ligne supprimée: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Wed Mar 09 2011 06:17:33 GMT+0100");

Ligne supprimée: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1291052234");

Ligne supprimée: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);

Ligne supprimée: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");

Ligne supprimée: user_pref("CommunityToolbar.alert.showTrayIcon", false);

Ligne supprimée: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);

Ligne supprimée: user_pref("CommunityToolbar.alert.userId", "{ac79e61a-c5e7-4494-88e3-b29acbc83145}");

Ligne supprimée: user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Wed Mar 09 2011 06:17:34 GMT+0100");

-- Fichier Fermé --

 

 

Erreur suppression clé: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar

 

 

============== SCAN ADDITIONNEL ==============

 

**** Mozilla Firefox Version [3.6.15 (fr)] ****

 

Searchplugins\amazondotcom.xml (hxxp://www.amazon.com/exec/obidos/external-search/)

Searchplugins\answers.xml (hxxp://www.answers.com/main/ntquery)

Searchplugins\babylon.xml (hxxp://search.babylon.com/web/{searchTerms})

Searchplugins\creativecommons.xml (hxxp://search.creativecommons.org/)

Searchplugins\eBay.xml (hxxp://rover.ebay.com/rover/1/711-47294-18009-3/4)

Searchplugins\wikipedia.xml (hxxp://en.wikipedia.org/wiki/Special:Search)

HKLM_Extensions|{3f963a5b-e555-4543-90e2-c3908898db71} - C:\Program Files\AVG\AVG9\Firefox

 

-- C:\Users\Eric\AppData\Roaming\Mozilla\FireFox\Profiles\ycdq3zne.default --

Extensions\{2122962a-1424-fffe-19af-bba2ef3eff4a} (YouTube Downloader for Facebook)

Extensions\{d1a1c8f1-e3d9-48df-802f-20201061ef61} (Messenger Plus Live Belgium Toolbar)

Extensions\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (IncrediMail MediaBar 2 Toolbar)

Searchplugins\MyStart Search.xml (?)

Prefs.js - browser.download.dir, C:\\Users\\Eric\\Downloads

Prefs.js - browser.download.lastDir, C:\\Users\\Eric\\Documents\\Pictures

Prefs.js - browser.search.defaultenginename, MyStart Search

Prefs.js - browser.search.selectedEngine, MyStart Search

Prefs.js - browser.startup.homepage, hxxp://www.google.be/

Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.15

 

========================================

 

**** Google Chrome Version [10.0.648.127] ****

 

 

-- C:\Users\Eric\AppData\Local\Google\Chrome\User Data\Default --

Preferences - default_search_provider: "Google" (Activé: true) (?)

Preferences - homepage: hxxp://www.google.be/

Preferences - homepage_is_newtabpage: false

 

========================================

 

**** Internet Explorer Version [8.0.6001.18865] ****

 

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896

HKCU_Main|Start Page - hxxp://fr.msn.com/

HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896

HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm

HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKLM_Main|Start Page - hxxp://fr.msn.com/

HKCU_URLSearchHooks|{d1a1c8f1-e3d9-48df-802f-20201061ef61} - "Messenger Plus Live Belgium Toolbar" (C:\Program Files\Messenger_Plus_Live_Belgium\tbMess.dll)

HKLM_URLSearchHooks|{d1a1c8f1-e3d9-48df-802f-20201061ef61} - "Messenger Plus Live Belgium Toolbar" (C:\Program Files\Messenger_Plus_Live_Belgium\tbMess.dll)

HKCU_SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - "?" (?)

HKCU_SearchScopes\{4C802A60-CF0C-4573-906C-491139ACBCEE} - "Kelkoo" (hxxp://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromfor...)

HKLM_SearchScopes\{4C802A60-CF0C-4573-906C-491139ACBCEE} - "Kelkoo" (hxxp://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromfor...)

HKCU_Toolbar\WebBrowser|{A057A204-BACC-4D26-9990-79A187E2698E} (x)

HKCU_Toolbar\WebBrowser|{D1A1C8F1-E3D9-48DF-802F-20201061EF61} (C:\Program Files\Messenger_Plus_Live_Belgium\tbMess.dll)

HKCU_Toolbar\WebBrowser|{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0} (x)

HKLM_Toolbar|{d1a1c8f1-e3d9-48df-802f-20201061ef61} (C:\Program Files\Messenger_Plus_Live_Belgium\tbMess.dll)

HKCU_ElevationPolicy\{BE743CBC-FD55-4DA5-ACA3-61E903B332F6} - C:\Program Files\ACD Systems\ACDSee\10.0\ACDSeeQV10.exe (ACD Systems)

HKCU_ElevationPolicy\{C6CBF2CD-6EFA-4BBE-98E6-5F572443AB71} - C:\Program Files\ACD Systems\ACDSee\10.0\ACDSee10.exe (ACD Systems)

HKLM_ElevationPolicy\377ddff6-4694-41e4-ae9a-82b37811cdcb - C:\Program Files\Messenger_Plus_Live_Belgium\Messenger_Plus_Live_BelgiumToolbarHelper.exe (?)

HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)

HKLM_Extensions\{D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - "BitComet" (Z:\tools\bitcometbho.dll,203)

BHO\{d1a1c8f1-e3d9-48df-802f-20201061ef61} - "Messenger Plus Live Belgium Toolbar" (C:\Program Files\Messenger_Plus_Live_Belgium\tbMess.dll)

 

========================================

 

C:\Program Files\Ad-Remover\Quarantine: 3 Fichier(s)

C:\Program Files\Ad-Remover\Backup: 16 Fichier(s)

 

C:\Ad-Report-CLEAN[1].txt - 12/03/2011 00:29:55 (6812 Octet(s))

 

Fin à: 00:30:54, 12/03/2011

 

============== E.O.F ==============

Modifié le 11 mars 2011 par erick10

[Tonton]

Salut erick10,

 

- 1 -

Clic droit/exécuter comme administrateur sur l'icône AD REMOVER placée sur le bureau et choisis l'option "désinstaller".

Pense à réactiver l'UAC.

 

- 2 -

Active les mises à jour automatiques via Windows Update, ce qui te permettra notamment d'installer le SP2.

 

- 3 -

As-tu bien fais le choix d'1 seul anti-virus et d'1 seul anti-malware ?

 

- 4 -

• Télécharge la version Free de Malwarebytes' Anti-Malware (MBAM) :
  
• Tu peux garder ce programme
  
• Connecte tous tes supports avant d’effectuer un scan (disque dur ou clé USB, par ex.)
  
• Double clique sur le fichier téléchargé pour lancer l’installation
  
• Clique sur le bouton « Recherche de mise à jour » situé dans l'onglet « Mise à jour » ; au cas où le pare-feu demande l'autorisation à MBAM de se connecter, accepte
  
• Lorsque la mise à jour est finie, rends-toi dans l'onglet « Recherche », sélectionne « Exécuter un examen complet » et clique sur « Rechercher »
  
• Ceci va déclencher le démarrage de l'analyse (qui peut être longue).
  
• A la fin de l'analyse, un message s'affiche :

  L'examen s'est terminé normalement. Cliquer sur « Afficher les résultats » pour afficher tous les objets trouvés.

• Clique sur « OK » pour continuer. Si MBAM n'a rien trouvé, il te préviendra également
  
• Ferme tes navigateurs
  
• Si MBAM a trouvé des malwares, clique sur « Afficher les résultats »
  
• Coche l’ensemble, ou laisse coché, puis clique sur « Supprimer la sélection » : MBAM va alors détruire les fichiers et clés de registre et en placer une copie dans la quarantaine
  
• En parallèle, MBAM ouvre le Bloc-notes et y copie le rapport d'analyse
  --> Copie/colle ce rapport et poste-le dans ta prochaine réponse stp

- 5 -

Limite tes programmes au démarrage : exécuter > taper msconfig > démarrage > tout décocher, sauf anti-virus, pare-feu et connexion internet > redémarrer

 

@+,

Tonton

Modifié le 12 mars 2011 par Tonton57

[erick10]

bonjour,

voila mon rapport MBAM

pour l'anti virus j'ai bon regardé je n'en vois qu'un seul.

J'ai bien des autres installé mais c'est des scan en ligne sinon je ne vois rien d'autre

 

 

Malwarebytes' Anti-Malware 1.50.1.1100

www.malwarebytes.org

 

Version de la base de données: 6032

 

Windows 6.0.6000

Internet Explorer 8.0.6001.18865

 

12/03/2011 13:24:51

mbam-log-2011-03-12 (13-24-51).txt

 

Type d'examen: Examen complet (C:\|D:\|)

Elément(s) analysé(s): 282589

Temps écoulé: 58 minute(s), 42 seconde(s)

 

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 0

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 0

Fichier(s) infecté(s): 0

 

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Clé(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

 

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

 

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

 

Dossier(s) infecté(s):

(Aucun élément nuisible détecté)

 

Fichier(s) infecté(s):

(Aucun élément nuisible détecté)

[erick10]

pour ce qui est de la mise a jour

toujours la meme chose j'ai bien mis de faire les mise a jour automatique

mais il me demande d'installer window update

et toujour la meme erreur 80073712