Soupçon infection

lacalacla · le 17 mars 2011

Bonjour,

depuis peu de temps, j'ai des problèmes avec le clavier qui a un comportement aberrant (touche p qui ouvre le menu "Enregistre sous" dans office 2007), touche 9 qui ouvre l'aide sous firefox, etc...). Je soupçonne l'infection par un virus ou un malware. J'ai fait tourner ZHPDiag dont je joins le rapport ci-dessous. Pouvez-vous me dire ce qu'il en est et la démarche à suivre éventuelle ,

Merci d'avance

Rapport de ZHPDiag v1.27.1701 par Nicolas Coolman, Update du 12/03/2011

Run by marine at 16/03/2011 18:58:28

Web site : ZHPDiag Outil de diagnostic

Contact : nicolascoolman@yahoo.fr

---\\ Web Browser

MSIE: Internet Explorer v8.0.7600.16385

---\\ System Information

Windows 7 Home Premium Edition, 64-bit (Build 7600)

Processor: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel

Operating System: 64 Bits

Boot mode: Normal (Normal boot)

Total RAM: 3950 MB (61% free)

System Restore: Activé (Enable)

System drive C: has 188 GB (65%) free of 285 GB

---\\ Logged in mode

Computer Name: MARINE-VAIO

User Name: marine

All Users Names: marine, HomeGroupUser$, Administrateur,

Unselected Option: O45,O61,O62,O65,O66,O82

Logged in as Administrator

---\\ Environnement Variables

%AppData%=C:\Users\marine\AppData\Roaming

%LocalAppData%=C:\Users\marine\AppData\Local

%StartMenu%=C:\Users\marine\AppData\Roaming\Microsoft\Windows\Start Menu

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 188 Go of 285 Go)

D:\ CD-ROM drive (Free 0 Go of 1 Go)

E:\ Floppy drive, Flash card reader, USB Key (Free 3 Go of 4 Go)

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

---\\ Recherche particulière de fichiers génériques

[MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - (.Microsoft Corporation - Explorateur Windows.) (.31/10/2009 07:34:59.) -- C:\Windows\Explorer.exe [2870272]

[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]

[MD5.78B9ADA2BC8946AF7B17678E0D07A773] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.21/12/2010 06:38:22.) -- C:\Windows\System32\wininet.dll [981504]

---\\ Processus lancés

[MD5.DA6EA8656109F445DF33F9F2A58018EE] - (.Sony Corporation - VAIO Care.) -- C:\Program Files\Sony\VAIO Care\VCSpt.exe [81296]

[MD5.569E547273C25B019054A12A40400ECE] - (.OpenOffice.org - OpenOffice.org 3.2.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [11318784]

[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (...) -- C:\Windows\SysWOW64\RunDll32.exe [44544]

[MD5.4B723F33D7331F20E06F3A2FD76EC1D5] - (.OpenOffice.org - OpenOffice.org 3.2.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [11312128]

[MD5.25107F58D1B8F60D67D1EE95798C0DE8] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696]

[MD5.CCA9023E3DDBE290D4381344115D99B7] - (.Sony Corporation - Pas de description.) -- C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [673136]

[MD5.AC32E0F47BB9083BB4164171A4C562A2] - (.Sony Corporation - Media Check Tool.) -- C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [600928]

[MD5.2E9A1A6555C20424FC6DCC3AF21F4D68] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [3451496]

[MD5.2E5212A0BFB98FE0167C92C76C87AFE3] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [249064]

[MD5.CCC250711E6B5F998DC1B7393233A755] - (.Broadcom Corporation. - Bluetooth Headset Skype Proxy.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe [13600]

[MD5.2F881390B9BBD912D790A4875CB33A34] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [912344]

[MD5.0AF80338BAD26049974531322857A42E] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [16856]

[MD5.5E8687798FC2C1D3C5BAEEB8C57AD395] - (.Sony of America Corporation - VaioCare Window Listener Application.) -- C:\Program Files\Sony\VAIO Care\listener.exe [75776]

[MD5.172C4062B6BE64F4A6F5AA0F28795A82] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [634880]

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)

P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.dll

M0 - MFSP: prefs.js [marine - 65mssrcg.default] www.google.fr

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

G1 - GCS: Preference [user Data\Default] None

G0 - GCSP: Preference [user Data\Default][HomePage] Google

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search Microsoft.com

R0 - HKUS\S-1-5-21-2451325978-1917979913-2365848531-1000\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Google

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Google

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Google

R1 - HKUS\S-1-5-21-2451325978-1917979913-2365848531-1000\Software\Microsoft\Internet Explorer\Main,Search Page = Google

R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll

R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <local>;*.local

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.Pas de propriétaire - avast! WebRep Plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll

O2 - BHO: Partner BHO Class [64Bits] - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} . (.Google Inc. - Partner application.) -- C:\ProgramData\Partner\Partner64.dll

O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll

O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg64.dll

O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL

O2 - BHO: Java Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: Google Toolbar [64Bits] - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll

O3 - Toolbar: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.Pas de propriétaire - avast! WebRep Plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll

---\\ ---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint\Apoint.exe

O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

O4 - HKLM\..\Wow6432Node\Run: [iAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

O4 - HKLM\..\Wow6432Node\Run: [iSBMgr.exe] . (.Sony Corporation - Pas de description.) -- C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe

O4 - HKLM\..\Wow6432Node\Run: [PMBVolumeWatcher] . (.Sony Corporation - Media Check Tool.) -- C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe

O4 - HKLM\..\Wow6432Node\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe

O4 - HKLM\..\Wow6432Node\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe

O4 - HKLM\..\Wow6432Node\Run: [startCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-21-2451325978-1917979913-2365848531-1000\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)

O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk . (...) -- C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe (.not file.)

O4 - Global Startup: C:\Users\marine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk . (...) -- C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

---\\ ---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Users\marine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O4 - Global Startup: C:\Users\marine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Picasa3\Picasa3.exe

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~1\Office12\EXCEL.exe

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll

O10 - WLSP:\000000000008\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll

O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

O10 - WLSP:\000000000010\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{1193553A-5DFA-429C-9E1E-5E28C07DD99E}: DhcpNameServer = 212.27.40.240 212.27.40.241

O17 - HKLM\System\CCS\Services\Tcpip\..\{BC863AAA-54E2-4F05-A57B-5B003D0368DB}: DhcpNameServer = 212.27.40.240 212.27.40.241

O17 - HKLM\System\CS1\Services\Tcpip\..\{1193553A-5DFA-429C-9E1E-5E28C07DD99E}: DhcpNameServer = 212.27.40.240 212.27.40.241

O17 - HKLM\System\CS1\Services\Tcpip\..\{BC863AAA-54E2-4F05-A57B-5B003D0368DB}: DhcpNameServer = 212.27.40.240 212.27.40.241

O17 - HKLM\System\CS2\Services\Tcpip\..\{1193553A-5DFA-429C-9E1E-5E28C07DD99E}: DhcpNameServer = 212.27.40.240 212.27.40.241

O17 - HKLM\System\CS2\Services\Tcpip\..\{BC863AAA-54E2-4F05-A57B-5B003D0368DB}: DhcpNameServer = 212.27.40.240 212.27.40.241

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - Winlogon Notify: igfxcui . (.Pas de propriétaire - Pas de description.) -- igfxdev.dll

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

O23 - Service: (AdobeActiveFileMonitor8.0) . (.Adobe Systems Incorporated - Adobe Photoshop Elements 8.0 (component).) - C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe

O23 - Service: C:\Windows\system32\Alg.exe (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe

O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe

O23 - Service: (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

O23 - Service: (EvtEng) . (.Intel® Corporation - Intel® PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe

O23 - Service: (FLEXnet Licensing Service) . (.Acresso Software Inc. - Activation Licensing Service.) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: (Partner Service) . (.Google Inc. - Partner application.) - C:\ProgramData\Partner\Partner.exe

O23 - Service: (PMBDeviceInfoProvider) . (.Sony Corporation - Device Information Provider.) - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe

O23 - Service: (RegSrvc) . (.Intel® Corporation - Intel® PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

O23 - Service: (SampleCollector) - Clé orpheline

O23 - Service: (SOHCImp) . (.Sony Corporation - VAIO Media plus Content Importer.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe

O23 - Service: (SOHDms) . (.Sony Corporation - VAIO Media plus Digital Media Server.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe

O23 - Service: (SOHDs) . (.Sony Corporation - VAIO Media plus Device Searcher.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe

O23 - Service: (SpfService) . (.Sony Corporation - VAIO Entertainment Common Service.) - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe

O23 - Service: (uCamMonitor) . (.ArcSoft, Inc. - MgiSvr.) - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe

O23 - Service: (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: (VAIO Event Service) . (.Sony Corporation - VAIO Event Service (Service Module).) - C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe

O23 - Service: (VAIO Power Management) . (.Sony Corporation - SPM Module.) - C:\Program Files\Sony\VAIO Power Management\SPMService.exe

O23 - Service: (VCFw) . (.Sony Corporation - VAIO Content Folder Watcher.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe

O23 - Service: (VcmIAlzMgr) . (.Sony Corporation - VCM Intelligent Analyzing Manager.) - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe

O23 - Service: (VcmINSMgr) . (.Sony Corporation - VCM Intelligent Network Service Manager.) - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe

O23 - Service: (VcmXmlIfHelper) . (.Sony Corporation - VcmXml Helper Interface.) - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe

O23 - Service: (VSNService) . (.Sony Corporation - VAIO Smart Network Service.) - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe

O23 - Service: (VUAgent) . (.Sony Corporation - VUAgent.exe.) - C:\Program Files\Sony\VAIO Update 5\VUAgent.exe

O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(...) - (.not file.)

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

[MD5.187E0D2AB859AD03393DDD731076BE81] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe

[MD5.1485CC1756CB59547F273C7B035EC6E0] [APT] [Level4Daily] (.Sony Corporation.) -- C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe

[MD5.1485CC1756CB59547F273C7B035EC6E0] [APT] [Level4Month] (.Sony Corporation.) -- C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe

[MD5.6FF06B82464719EB9B2BB8C5708797ED] [APT] [VAIO Gate] (.Sony Corporation.) -- C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe

[MD5.389F88F9822ED5B566371EA1E9200549] [APT] [VPM Logon Start] (.Sony Corporation.) -- C:\Program Files\Sony\VAIO Power Management\SPMgr.exe

[MD5.389F88F9822ED5B566371EA1E9200549] [APT] [VPM Session Change] (.Sony Corporation.) -- C:\Program Files\Sony\VAIO Power Management\SPMgr.exe

[MD5.389F88F9822ED5B566371EA1E9200549] [APT] [VPM Unlock] (.Sony Corporation.) -- C:\Program Files\Sony\VAIO Power Management\SPMgr.exe

[MD5.286263A6CD2BB55EC048452C28B723E2] [APT] [VAIO Update 5] (.Sony Corporation.) -- C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe

[MD5.00000000000000000000000000000000] [APT] [VAIO Wallpaper Setting Tool] (.Pas de propriétaire.) -- C:\Program Files (x86)\Sony\VAIO Wallpaper Setting Tool\VWSet.exe (.not file.)

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\drivers\blbdrive.sys

O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys

O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys

O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys

O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys

O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys

O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys

O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys

O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys

O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys

O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys

---\\ Logiciels installés (O42)

O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM] -- {5BC83141-83DD-07BE-C940-04B385540F04}

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin

O42 - Logiciel: Adobe Photoshop Elements 8.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Photoshop Elements 8.0

O42 - Logiciel: Adobe Premiere Elements 8.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- PremElem80

O42 - Logiciel: Adobe Premiere Elements 8.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A0E583D1-23F7-4C35-9620-B169D7715E4B}

O42 - Logiciel: Adobe Reader 9.4.2 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-A94000000001}

O42 - Logiciel: Alps Pointing-device for VAIO - (.ALPS ELECTRIC CO., LTD..) [HKLM] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}

O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {2DC94AFD-A6E2-4AB4-9132-4A3F8E07B386}

O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {8F473675-D702-45F9-8EBC-342B40C17BF5}

O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}

O42 - Logiciel: ArcSoft Magic-i Visual Effects 2 - (.ArcSoft.) [HKLM][64Bits] -- {7BB90344-0647-468E-925A-7F69F7983421}

O42 - Logiciel: ArcSoft WebCam Companion 3 - (.ArcSoft.) [HKLM][64Bits] -- {DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}

O42 - Logiciel: Barre d'outils Bing - (.Microsoft Corporation.) [HKLM][64Bits] -- {08234a0d-cf39-4dca-99f0-0c5cb496da81}

O42 - Logiciel: Bing Bar Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {65C0025A-2CDE-43C5-82D0-C7A56EF0DB39}

O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}

O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {C5529BC1-C2BF-44E8-B62A-01913D70081C}

O42 - Logiciel: Clavier à distance avec PlayStation 3 - (.Sony Corporation.) [HKLM][64Bits] -- {65B138AE-F636-4D4C-BA5D-A06E21E47C53}

O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}

O42 - Logiciel: Contrôle ActiveX Windows Live Mesh pour connexions à distance - (.Microsoft Corporation.) [HKLM][64Bits] -- {55D003F4-9599-44BF-BA9E-95D060730DD3}

O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}

O42 - Logiciel: Definition update for Microsoft Office 2010 (KB982726) - (.Microsoft.) [HKLM][64Bits] -- {91140000-003B-0000-0000-0000000FF1CE}_Office14.PRJPROR_{2CF1930D-7485-42D3-BED1-B3E2EBB1FD7F}

O42 - Logiciel: Definition update for Microsoft Office 2010 (KB982726) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{2CF1930D-7485-42D3-BED1-B3E2EBB1FD7F}

O42 - Logiciel: Evernote - (.Evernote Corp..) [HKLM][64Bits] -- {F761359C-9CED-45AE-9A51-9D6605CD55C4}

O42 - Logiciel: Free PDF to Word Converter 5.1.0.383 - (.Smart Soft.) [HKLM] -- Free PDF to Word Converter_is1

O42 - Logiciel: GIMP 2.6.11 - (.The GIMP Team.) [HKLM][64Bits] -- WinGimp-2.0_is1

O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {488F0347-C4A7-4374-91A7-30818BEDA710}

O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {C768790F-04FB-11E0-9B2C-001AA037B01E}

O42 - Logiciel: Intel PROSet Wireless - (.Pas de propriétaire.) [HKLM] -- ProInst

O42 - Logiciel: Intel® Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}

O42 - Logiciel: Intel® Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}

O42 - Logiciel: Intel® Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}

O42 - Logiciel: Intel® Turbo Boost Technology Driver - (.Intel Corporation.) [HKLM][64Bits] -- {D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}

O42 - Logiciel: Java 6 Update 20 (64-bit) - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F86416020FF}

O42 - Logiciel: Java 6 Update 24 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF}

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}

O42 - Logiciel: Lecture à distance avec PlayStation®3 - (.Sony Corporation.) [HKLM][64Bits] -- {07441A52-E208-478A-92B7-5C337CA8C131}

O42 - Logiciel: Les Sims 2 - (.Pas de propriétaire.) [HKLM][64Bits] -- {6E7DD182-9FC6-4651-0095-2E666CC6AF35}

O42 - Logiciel: Les Sims 2 : Nuits de Folie - (.Pas de propriétaire.) [HKLM][64Bits] -- {F7529650-B9DB-481B-0089-A2AC3C2821C1}

O42 - Logiciel: Logiciel Intel® PROSet/Wireless WiFi - (.Intel Corporation.) [HKLM] -- {D16A2127-B927-4379-B153-3DEC091E4EEB}

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}

O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}

O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM][64Bits] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44}

O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94}

O42 - Logiciel: Manuel VAIO - (.Sony Corporation.) [HKLM][64Bits] -- {C6E893E7-E5EA-4CD5-917C-5443E753FCBD}

O42 - Logiciel: Media Gallery - (.Sony Corporation.) [HKLM] -- {115B60D5-BBDB-490E-AF2E-064D37A3CE01}

O42 - Logiciel: Media Gallery - (.Sony Corporation.) [HKLM] -- {202B76AB-1B21-434E-A289-788D767D3A7C}

O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0015-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0019-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001A-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISER_{E64BA721-2310-4B55-BE5A-2925F9706192}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-040C-1000-0000000FF1CE}_ENTERPRISER_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0044-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE}_ENTERPRISER_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-00BA-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0015-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- ENTERPRISER

O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Groove MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-00BA-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0044-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Office 64-bit Components 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Office 64-bit Components 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002A-0000-1000-0000000FF1CE}

O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook Connector - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-007A-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001A-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Project MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00B4-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Project Professional 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {91140000-003B-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0401-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Dutch) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0413-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (German) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0407-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Spanish) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0C0A-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-002C-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-002C-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE}_ENTERPRISER_{14809F99-C601-4D4A-9391-F1E8FAA964C5}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISER_{A0516415-ED61-419A-981D-93596DA74165}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISER_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISER_{F580DDD5-8D37-4998-968E-EBB76BB86787}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE}_ENTERPRISER_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISER_{187308AB-5FA7-4F14-9AB9-D290383A10D9}

O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0019-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-040C-1000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002A-040C-1000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-006E-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Visio 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {91140000-0057-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Visio MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0054-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Visio Professionnel 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.VISIOR

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {B6E3757B-5E77-3915-866A-CCFC4B8D194C}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {071c9b48-7c32-4621-a0ac-3f809523288f}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}

O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {EE936C7A-EA40-31D5-9B65-8E3E089C3828}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {350AA351-21FA-3270-8B7A-835434E766AD}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

O42 - Logiciel: Microsoft Project Professionnel 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.PRJPROR

O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack

O42 - Logiciel: Mozilla Firefox (3.6.15) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox (3.6.15)

O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM][64Bits] -- {266517E6-D866-439D-919C-B8B1A52E6080}

O42 - Logiciel: Outil de restauration de données VAIO - (.Sony Corporation.) [HKLM][64Bits] -- {57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}

O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}

O42 - Logiciel: PMB - (.Sony Corporation.) [HKLM][64Bits] -- {B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}

O42 - Logiciel: PMB VAIO Edition Guide - (.Sony Corporation.) [HKLM][64Bits] -- {88C252C8-A7EE-4B60-BF74-8E5919A8048F}

O42 - Logiciel: PMB VAIO Edition plug-in (Click to Disc) - (.Sony Corporation.) [HKLM] -- {10E14C74-0638-4996-ABAD-BBF7A6CF1FAA}

O42 - Logiciel: PMB VAIO Edition plug-in (Click to Disc) - (.Sony Corporation.) [HKLM] -- {1E37FC84-799E-481B-9462-3489861E36C9}

O42 - Logiciel: PMB VAIO Edition plug-in (Click to Disc) - (.Sony Corporation.) [HKLM][64Bits] -- {4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}

O42 - Logiciel: PMB VAIO Edition plug-in (Click to Disc) - (.Sony Corporation.) [HKLM][64Bits] -- {CFB66DB0-00AC-4CBC-B99D-99EFEB03743C}

O42 - Logiciel: PMB VAIO Edition plug-in (VAIO Image Optimizer) - (.Sony Corporation.) [HKLM][64Bits] -- {1873FFC1-FDCB-47E1-B7C7-F418211E3530}

O42 - Logiciel: PMB VAIO Edition plug-in (VAIO Movie Story) - (.Sony Corporation.) [HKLM] -- {4DABD2B3-B67A-41B0-86FE-C11AAF5D158A}

O42 - Logiciel: PMB VAIO Edition plug-in (VAIO Movie Story) - (.Sony Corporation.) [HKLM] -- {5AC18E2C-7EAB-4F9E-BEEC-07FD722B28E3}

O42 - Logiciel: PMB VAIO Edition plug-in (VAIO Movie Story) - (.Sony Corporation.) [HKLM][64Bits] -- {B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}

O42 - Logiciel: PMB VAIO Edition plug-in (VAIO Movie Story) - (.Sony Corporation.) [HKLM][64Bits] -- {FBB4411F-1328-4E36-A5B3-16AA8CFA8F9C}

O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3

O42 - Logiciel: Prise en charge du transfert VAIO - (.Sony Corporation.) [HKLM][64Bits] -- {5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}

O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C}

O42 - Logiciel: Realtek HDMI Audio Driver for ATI - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5449FB4F-1802-4D5B-A6D8-087DB1142147}

O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{5C497F0B-2061-4CC9-A61C-6B45B867354D}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{CD769337-C8AC-46DB-A7DC-643E50089263}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2289158) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{210B16C0-CEBD-4DE9-B474-04A7E8735E16}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2344875) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6FC5C4C1-D7AE-44C3-94B7-6424FC3E752F}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{536FB502-775F-4494-BACE-C02CC90B7A5B}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{7F207DCA-3399-40CB-A968-6E5991B1421A}

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841

O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289078) - (.Microsoft.) [HKLM][64Bits] -- {91140000-003B-0000-0000-0000000FF1CE}_Office14.PRJPROR_{1D1A4F08-2F17-475B-BA72-476CE5992FEE}

O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289078) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{1D1A4F08-2F17-475B-BA72-476CE5992FEE}

O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289161) - (.Microsoft.) [HKLM][64Bits] -- {91140000-003B-0000-0000-0000000FF1CE}_Office14.PRJPROR_{F134C2C6-30B3-4169-A325-58482B4CE6FC}

O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289161) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{F134C2C6-30B3-4169-A325-58482B4CE6FC}

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5}

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{5A4E43D5-858F-49BD-BA72-8F30E1793060}

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2345035) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{B23002DD-34EC-4988-B810-A5E2A0BF04F1}

O42 - Logiciel: Security Update for Microsoft Office Groove 2007 (KB2494047) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{B91E2AEC-7F93-4E33-ACF6-EC90640CBE4F}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer (KB2413381) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{3DED0A62-44C8-4E00-A785-5212F297A9D9}

O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{3A4CDE54-2403-483D-8D9A-15E3264410DF}

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{3D019598-7B59-447A-80AE-815B703B84FF}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}

O42 - Logiciel: Skype™ 5.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {E633D396-5188-4E9D-8F6B-BFB8BF3467E8}

O42 - Logiciel: SmartSound Quicktracks for Premiere Elements 8.0 - (.SmartSound Software Inc.) [HKLM][64Bits] -- InstallShield_{4685A344-6718-4923-AA9D-158A0A2E1CFB}

O42 - Logiciel: SmartSound Quicktracks for Premiere Elements 8.0 - (.SmartSound Software Inc.) [HKLM][64Bits] -- {4685A344-6718-4923-AA9D-158A0A2E1CFB}

O42 - Logiciel: Update for 2007 Microsoft Office System (KB2284654) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISER_{FB166E7C-8AA6-48C8-B726-1F25BEE7825A}

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2473228) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2473228

O42 - Logiciel: Update for Microsoft Office 2010 (KB2202188) - (.Microsoft.) [HKLM][64Bits] -- {91140000-003B-0000-0000-0000000FF1CE}_Office14.PRJPROR_{86B7A074-265D-420C-9E1E-7A920EF0ECA7}

O42 - Logiciel: Update for Microsoft Office 2010 (KB2202188) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{86B7A074-265D-420C-9E1E-7A920EF0ECA7}

O42 - Logiciel: Update for Microsoft Office 2010 (KB2494150) - (.Microsoft.) [HKLM][64Bits] -- {91140000-003B-0000-0000-0000000FF1CE}_Office14.PRJPROR_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}

O42 - Logiciel: Update for Microsoft Office 2010 (KB2494150) - (.Microsoft.) [HKLM][64Bits] -- {91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}

O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{329050A9-EF80-40F9-B633-74508F54C1FF}

O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2412171) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{752A0B7C-BD24-4362-AC86-AB63FEE6F46F}

O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2508979) - (.Microsoft.) [HKLM][64Bits] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{D2137BBA-250B-4548-BC1C-19E5009893D7}

O42 - Logiciel: VAIO - Media Gallery - (.Sony Corporation.) [HKLM][64Bits] -- {DD88F979-FA58-41AC-980C-A6E1A82B61D9}

O42 - Logiciel: VAIO - PMB VAIO Edition Guide - (.Sony Corporation.) [HKLM][64Bits] -- InstallShield_{88C252C8-A7EE-4B60-BF74-8E5919A8048F}

O42 - Logiciel: VAIO - PMB VAIO Edition plug-in (Click to Disc) - (.Sony Corporation.) [HKLM][64Bits] -- InstallShield_{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}

O42 - Logiciel: VAIO - PMB VAIO Edition plug-in (VAIO Image Optimizer) - (.Sony Corporation.) [HKLM][64Bits] -- InstallShield_{1873FFC1-FDCB-47E1-B7C7-F418211E3530}

O42 - Logiciel: VAIO - PMB VAIO Edition plug-in (VAIO Movie Story) - (.Sony Corporation.) [HKLM][64Bits] -- InstallShield_{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}

O42 - Logiciel: VAIO Care - (.Sony Corporation.) [HKLM][64Bits] -- {36C5BBF0-E5BF-4DE1-B684-7E90B0C93FB5}

O42 - Logiciel: VAIO Control Center - (.Sony Corporation.) [HKLM][64Bits] -- {72042FA6-5609-489F-A8EA-3C2DD650F667}

O42 - Logiciel: VAIO DVD Menu Data - (.Sony Corporation.) [HKLM][64Bits] -- {596BED91-A1D8-4DF1-8CD1-1C777F7588AC}

O42 - Logiciel: VAIO Gate - (.Sony Corporation.) [HKLM][64Bits] -- {A7C30414-2382-4086-B0D6-01A88ABA21C3}

O42 - Logiciel: VAIO Gate Default - (.Sony Corporation.) [HKLM][64Bits] -- {B7546697-2A80-4256-A24B-1C33163F535B}

O42 - Logiciel: VAIO Media plus - (.Sony Corporation.) [HKLM] -- {5AFD1F5C-8FDA-413C-AF38-F1E7BD10D72F}

O42 - Logiciel: VAIO Media plus - (.Sony Corporation.) [HKLM] -- {A3D964A6-411A-4817-9D58-5CB8808F494E}

O42 - Logiciel: VAIO Media plus - (.Sony Corporation.) [HKLM][64Bits] -- {8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD}

O42 - Logiciel: VAIO Media plus Opening Movie - (.Sony Corporation.) [HKLM][64Bits] -- {9238E8A4-BEBA-43A3-B926-769BDBF194C5}

O42 - Logiciel: VAIO Movie Story Template Data - (.Sony Corporation.) [HKLM][64Bits] -- InstallShield_{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}

O42 - Logiciel: VAIO Movie Story Template Data - (.Sony Corporation.) [HKLM][64Bits] -- {6FA8BA2C-052B-4072-B8E2-2302C268BE9E}

O42 - Logiciel: VAIO Quick Web Access - (.Sony Corporation.) [HKLM][64Bits] -- splashtop

O42 - Logiciel: VAIO Quick Web Access - (.Sony Corporation.) [HKLM][64Bits] -- {5A92468F-3ED8-4F96-A9E1-4F176C80EC29}

O42 - Logiciel: VAIO Sample Contents - (.Sony Corporation.) [HKLM][64Bits] -- {547C9EB4-4CA6-402F-9D1B-8BD30DC71E44}

O42 - Logiciel: VAIO Smart Network - (.Sony Corporation.) [HKLM][64Bits] -- {0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}

O42 - Logiciel: VAIO Update - (.Sony Corporation.) [HKLM][64Bits] -- {5BEE8F1F-BD32-4553-8107-500439E43BD7}

O42 - Logiciel: VAIO screensaver - (.Sony Europe.) [HKLM][64Bits] -- VAIO screensaver

O42 - Logiciel: VLC media player 1.1.7 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player

O42 - Logiciel: WIDCOMM Bluetooth Software - (.Broadcom Corporation.) [HKLM] -- {436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}

O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite

O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}

O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {46A5FBE9-ADB3-4493-A1CC-B4CFFD24D26A}

O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {FE4BE0BD-1EDB-4D24-9614-847B3C472887}

O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {76810709-A7D3-468D-9167-A1780C1E766C}

O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1B8ABA62-74F0-47ED-B18C-A43128E591B8}

O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}

O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {D07A61E5-A59C-433C-BCBD-22025FA2287B}

O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59}

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D56775A-93F3-44A3-8092-840E3826DE30}

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}

O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM][64Bits] -- {841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}

O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM][64Bits] -- {DECDCB7C-58CC-4865-91AF-627F9798FE48}

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660}

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90}

O42 - Logiciel: Windows Live Messenger Companion Core - (.Microsoft Corporation.) [HKLM][64Bits] -- {78A96B4C-A643-4D0F-98C2-A8E16A6669F9}

O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}

O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {92EA4134-10D1-418A-91E1-5A0453131A38}

O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {83C292B7-38A5-440B-A731-07070E81A64F}

O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}

O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}

O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM][64Bits] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}

O42 - Logiciel: Windows Live Remote Client - (.Microsoft Corporation.) [HKLM] -- {DF6D988A-EEA0-4277-AAB8-158E086E439B}

O42 - Logiciel: Windows Live Remote Client Resources - (.Microsoft Corporation.) [HKLM] -- {B750FA38-7AB0-42CB-ACBB-E7DBE9FF603F}

O42 - Logiciel: Windows Live Remote Service - (.Microsoft Corporation.) [HKLM] -- {E02A6548-6FDE-40E2-8ED9-119D7D7E641F}

O42 - Logiciel: Windows Live Remote Service Resources - (.Microsoft Corporation.) [HKLM] -- {5E2CD4FB-4538-4831-8176-05D653C3E6D4}

O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM][64Bits] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}

O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM][64Bits] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}

O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}

O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {05E379CC-F626-4E7D-8354-463865B303BF}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B9A92DA-6374-4872-B646-253F18624D5F}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}

O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM][64Bits] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}

O42 - Logiciel: avast! Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- avast

---\\ HKCU & HKLM Software Keys

[HKCU\Software\ALWIL Software]

[HKCU\Software\ATI]

[HKCU\Software\AVAST Software]

[HKCU\Software\Adobe]

[HKCU\Software\Alps]

[HKCU\Software\AppDataLow]

[HKCU\Software\Apple Computer, Inc.]

[HKCU\Software\ArcSoft]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\Google]

[HKCU\Software\HookNetwork]

[HKCU\Software\IM Providers]

[HKCU\Software\JavaSoft]

[HKCU\Software\Local AppWizard-Generated Applications]

[HKCU\Software\Macromedia]

[HKCU\Software\MainConcept (Adobe2)]

[HKCU\Software\MainConcept]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Netscape]

[HKCU\Software\ODBC]

[HKCU\Software\OpenOffice.org]

[HKCU\Software\PDFCreator]

[HKCU\Software\Policies]

[HKCU\Software\Realtek]

[HKCU\Software\Skype]

[HKCU\Software\Smart Soft]

[HKCU\Software\Sony Corporation]

[HKCU\Software\Widcomm]

[HKCU\Software\Wow6432Node]

[HKCU\Software\YahooPartnerToolbar]

[HKLM\Software\AMD]

[HKLM\Software\ATI Technologies]

[HKLM\Software\ATI]

[HKLM\Software\Alps]

[HKLM\Software\Broadcom]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\DeviceVM]

[HKLM\Software\Google]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\ODBC]

[HKLM\Software\Policies]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\SRS Labs]

[HKLM\Software\SiteAdvisor]

[HKLM\Software\Sonic]

[HKLM\Software\Sony Corporation]

[HKLM\Software\Waves Audio]

[HKLM\Software\Widcomm]

[HKLM\Software\Wow6432Node]

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 06/01/2011 - 19:08:30 - [163494288] ----D- C:\Program Files\Alwil Software

O43 - CFD: 06/01/2011 - 17:43:10 - [17593455] ----D- C:\Program Files\Apoint

O43 - CFD: 12/07/2010 - 23:10:46 - [23283098] ----D- C:\Program Files\ATI

O43 - CFD: 06/03/2011 - 12:44:00 - [195920] ----D- C:\Program Files\Bonjour

O43 - CFD: 06/03/2011 - 12:44:12 - [133147565] ----D- C:\Program Files\Common Files

O43 - CFD: 05/08/2010 - 22:48:56 - [90257428] ----D- C:\Program Files\DVD Maker

O43 - CFD: 06/01/2011 - 18:51:30 - [0] -SH-D- C:\Program Files\Fichiers communs

O43 - CFD: 24/02/2011 - 22:46:56 - [5538160] ----D- C:\Program Files\Free PDF to Word Converter

O43 - CFD: 05/08/2010 - 13:18:24 - [319984] ----D- C:\Program Files\Google

O43 - CFD: 05/08/2010 - 12:59:34 - [93356052] ----D- C:\Program Files\Intel

O43 - CFD: 12/02/2011 - 12:25:12 - [5174573] ----D- C:\Program Files\Internet Explorer

O43 - CFD: 05/08/2010 - 13:36:04 - [79805363] ----D- C:\Program Files\Java

O43 - CFD: 13/07/2010 - 19:20:20 - [149236786] ----D- C:\Program Files\Microsoft Games

O43 - CFD: 07/01/2011 - 23:36:48 - [4783168] ----D- C:\Program Files\Microsoft Office

O43 - CFD: 14/07/2009 - 06:32:40 - [25757] ----D- C:\Program Files\MSBuild

O43 - CFD: 05/08/2010 - 12:56:42 - [18962080] ----D- C:\Program Files\Realtek

O43 - CFD: 14/07/2009 - 06:32:40 - [36253865] ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 06/01/2011 - 18:52:48 - [267093091] ----D- C:\Program Files\Sony

O43 - CFD: 14/07/2009 - 06:09:28 - [0] --H-D- C:\Program Files\Uninstall Information

O43 - CFD: 05/08/2010 - 12:57:14 - [184840064] ----D- C:\Program Files\WIDCOMM

O43 - CFD: 05/08/2010 - 22:48:56 - [4039168] ----D- C:\Program Files\Windows Defender

O43 - CFD: 05/08/2010 - 22:48:56 - [9224824] ----D- C:\Program Files\Windows Journal

O43 - CFD: 11/03/2011 - 22:41:18 - [8888329] ----D- C:\Program Files\Windows Live

O43 - CFD: 08/01/2011 - 03:33:26 - [6667264] ----D- C:\Program Files\Windows Mail

O43 - CFD: 08/01/2011 - 03:33:16 - [7687085] ----D- C:\Program Files\Windows Media Player

O43 - CFD: 06/01/2011 - 18:51:30 - [12627124] ----D- C:\Program Files\Windows NT

O43 - CFD: 05/08/2010 - 22:48:56 - [5516568] ----D- C:\Program Files\Windows Photo Viewer

O43 - CFD: 14/07/2009 - 06:32:40 - [235008] ----D- C:\Program Files\Windows Portable Devices

O43 - CFD: 05/08/2010 - 22:48:56 - [7191662] ----D- C:\Program Files\Windows Sidebar

O43 - CFD: 06/03/2011 - 12:44:12 - [6246981] ----D- C:\Program Files\Common Files\Apple

O43 - CFD: 05/08/2010 - 12:59:34 - [13079104] ----D- C:\Program Files\Common Files\Intel

O43 - CFD: 11/03/2011 - 22:40:40 - [92068190] ----D- C:\Program Files\Common Files\Microsoft Shared

O43 - CFD: 14/07/2009 - 04:20:10 - [2702] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 05/08/2010 - 13:19:34 - [9131849] ----D- C:\Program Files\Common Files\Sony Shared

O43 - CFD: 14/07/2009 - 04:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 05/08/2010 - 22:48:56 - [12009971] ----D- C:\Program Files\Common Files\System

O43 - CFD: 30/01/2011 - 20:40:36 - [739782384] ----D- C:\ProgramData\Adobe

O43 - CFD: 06/01/2011 - 19:08:30 - [34305095] ----D- C:\ProgramData\Alwil Software

O43 - CFD: 06/03/2011 - 12:43:50 - [33119744] ----D- C:\ProgramData\Apple

O43 - CFD: 06/03/2011 - 12:44:40 - [26896384] ----D- C:\ProgramData\Apple Computer

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Application Data

O43 - CFD: 11/03/2011 - 22:50:20 - [15631962] --H-D- C:\ProgramData\ArcSoft

O43 - CFD: 08/01/2011 - 08:50:04 - [188] ----D- C:\ProgramData\ATI

O43 - CFD: 06/01/2011 - 18:51:30 - [0] -SH-D- C:\ProgramData\Bureau

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Desktop

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Documents

O43 - CFD: 05/08/2010 - 13:13:56 - [360580] ----D- C:\ProgramData\eSellerate

O43 - CFD: 05/08/2010 - 13:17:08 - [111994] ----D- C:\ProgramData\Evernote

O43 - CFD: 06/01/2011 - 18:51:30 - [0] -SH-D- C:\ProgramData\Favoris

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Favorites

O43 - CFD: 05/08/2010 - 13:18:26 - [12820] ----D- C:\ProgramData\Google

O43 - CFD: 05/08/2010 - 12:59:34 - [1209] ----D- C:\ProgramData\Intel

O43 - CFD: 06/01/2011 - 19:01:16 - [6246] ----D- C:\ProgramData\McAfee

O43 - CFD: 06/01/2011 - 18:51:30 - [0] -SH-D- C:\ProgramData\Menu Démarrer

O43 - CFD: 11/03/2011 - 22:41:54 - [273930765] -S--D- C:\ProgramData\Microsoft

O43 - CFD: 11/03/2011 - 00:20:58 - [76030] ----D- C:\ProgramData\Microsoft Help

O43 - CFD: 06/01/2011 - 18:51:30 - [0] -SH-D- C:\ProgramData\Modèles

O43 - CFD: 05/08/2010 - 13:18:26 - [1516691] ----D- C:\ProgramData\Partner

O43 - CFD: 11/03/2011 - 22:49:00 - [38724430] ----D- C:\ProgramData\Skype

O43 - CFD: 24/02/2011 - 22:46:56 - [5836160] ----D- C:\ProgramData\Smart Soft

O43 - CFD: 05/08/2010 - 13:14:42 - [367484076] ----D- C:\ProgramData\SmartSound Software Inc

O43 - CFD: 05/08/2010 - 13:51:46 - [1187249348] ----D- C:\ProgramData\Sony Corporation

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Start Menu

O43 - CFD: 05/08/2010 - 13:35:50 - [189] ----D- C:\ProgramData\Sun

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Templates

O43 - CFD: 14/01/2011 - 21:13:18 - [1531135] ----D- C:\Users\marine\AppData\Roaming\Adobe

O43 - CFD: 11/03/2011 - 22:50:18 - [3026] ----D- C:\Users\marine\AppData\Roaming\ArcSoft

O43 - CFD: 06/01/2011 - 18:53:28 - [0] ----D- C:\Users\marine\AppData\Roaming\ATI

O43 - CFD: 24/02/2011 - 22:45:10 - [117538816] ----D- C:\Users\marine\AppData\Roaming\Downloaded Installations

O43 - CFD: 24/02/2011 - 22:46:58 - [2029] ----D- C:\Users\marine\AppData\Roaming\Free PDF to Word Converter

O43 - CFD: 06/01/2011 - 18:52:56 - [0] ----D- C:\Users\marine\AppData\Roaming\Identities

O43 - CFD: 06/01/2011 - 19:01:22 - [1157] ----D- C:\Users\marine\AppData\Roaming\Intel

O43 - CFD: 06/01/2011 - 18:53:34 - [0] ----D- C:\Users\marine\AppData\Roaming\Intel Corporation

O43 - CFD: 05/08/2010 - 13:05:42 - [56473] ----D- C:\Users\marine\AppData\Roaming\Macromedia

O43 - CFD: 13/07/2010 - 19:20:20 - [0] ----D- C:\Users\marine\AppData\Roaming\Media Center Programs

O43 - CFD: 11/03/2011 - 22:49:12 - [4762786] -S--D- C:\Users\marine\AppData\Roaming\Microsoft

O43 - CFD: 06/01/2011 - 19:18:34 - [7707741] ----D- C:\Users\marine\AppData\Roaming\Mozilla

O43 - CFD: 06/01/2011 - 19:25:20 - [2053364] ----D- C:\Users\marine\AppData\Roaming\OpenOffice.org

O43 - CFD: 13/03/2011 - 18:54:50 - [3602084] ----D- C:\Users\marine\AppData\Roaming\Skype

O43 - CFD: 13/03/2011 - 17:37:00 - [58408] ----D- C:\Users\marine\AppData\Roaming\skypePM

O43 - CFD: 06/01/2011 - 18:59:32 - [126757] ----D- C:\Users\marine\AppData\Roaming\Sony Corporation

O43 - CFD: 06/03/2011 - 09:36:14 - [1558125] ----D- C:\Users\marine\AppData\Roaming\vlc

O43 - CFD: 30/01/2011 - 20:40:34 - [2105370911] ----D- C:\Program Files (x86)\Adobe

O43 - CFD: 06/03/2011 - 12:44:24 - [2306366] ----D- C:\Program Files (x86)\Apple Software Update

O43 - CFD: 05/08/2010 - 13:41:48 - [129658760] ----D- C:\Program Files (x86)\ArcSoft

O43 - CFD: 08/01/2011 - 08:49:34 - [91470357] ----D- C:\Program Files (x86)\ATI Technologies

O43 - CFD: 11/03/2011 - 22:40:30 - [999006] ----D- C:\Program Files (x86)\Bing Bar Installer

O43 - CFD: 06/03/2011 - 12:44:00 - [617144] ----D- C:\Program Files (x86)\Bonjour

O43 - CFD: 05/08/2010 - 12:59:36 - [6670534] ----D- C:\Program Files (x86)\Cisco

O43 - CFD: 11/03/2011 - 22:49:06 - [1309934826] ----D- C:\Program Files (x86)\Common Files

O43 - CFD: 05/08/2010 - 13:32:54 - [257331712] ----D- C:\Program Files (x86)\Downloaded Installations

O43 - CFD: 15/01/2011 - 22:18:34 - [4289332402] ----D- C:\Program Files (x86)\EA GAMES

O43 - CFD: 05/08/2010 - 13:17:42 - [84808882] ----D- C:\Program Files (x86)\Evernote

O43 - CFD: 07/01/2011 - 17:46:34 - [112231497] ----D- C:\Program Files (x86)\GIMP-2.0

O43 - CFD: 21/02/2011 - 23:08:28 - [575021541] ----D- C:\Program Files (x86)\Google

O43 - CFD: 11/03/2011 - 22:50:48 - [258991166] --H-D- C:\Program Files (x86)\InstallShield Installation Information

O43 - CFD: 05/08/2010 - 12:58:36 - [34908201] ----D- C:\Program Files (x86)\Intel

O43 - CFD: 06/03/2011 - 12:44:56 - [5612193] ----D- C:\Program Files (x86)\Internet Explorer

O43 - CFD: 04/03/2011 - 19:42:32 - [91531781] ----D- C:\Program Files (x86)\Java

O43 - CFD: 06/01/2011 - 19:24:02 - [16295712] ----D- C:\Program Files (x86)\JRE

O43 - CFD: 05/08/2010 - 13:46:04 - [2572021] ----D- C:\Program Files (x86)\Microsoft

O43 - CFD: 07/01/2011 - 23:37:28 - [39848379] ----D- C:\Program Files (x86)\Microsoft Analysis Services

O43 - CFD: 07/01/2011 - 23:38:14 - [1100528666] ----D- C:\Program Files (x86)\Microsoft Office

O43 - CFD: 15/03/2011 - 08:33:24 - [38371963] ----D- C:\Program Files (x86)\Microsoft Silverlight

O43 - CFD: 05/08/2010 - 13:47:38 - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition

O43 - CFD: 06/01/2011 - 19:32:54 - [14904] ----D- C:\Program Files (x86)\Microsoft Visual Studio

O43 - CFD: 06/01/2011 - 19:30:38 - [1387249] ----D- C:\Program Files (x86)\Microsoft Visual Studio 8

O43 - CFD: 08/01/2011 - 03:04:50 - [3726168] ----D- C:\Program Files (x86)\Microsoft Works

O43 - CFD: 26/01/2011 - 16:52:28 - [8167779] ----D- C:\Program Files (x86)\Microsoft.NET

O43 - CFD: 06/03/2011 - 09:35:08 - [31551463] ----D- C:\Program Files (x86)\Mozilla Firefox

O43 - CFD: 06/01/2011 - 19:33:08 - [26521] ----D- C:\Program Files (x86)\MSBuild

O43 - CFD: 11/03/2011 - 22:40:18 - [6834838] ----D- C:\Program Files (x86)\MSN Toolbar

O43 - CFD: 05/08/2010 - 13:26:16 - [154033] ----D- C:\Program Files (x86)\MSXML 4.0

O43 - CFD: 06/01/2011 - 19:24:02 - [388118329] ----D- C:\Program Files (x86)\OpenOffice.org 3

O43 - CFD: 06/01/2011 - 19:37:36 - [26886629] ----D- C:\Program Files (x86)\PDFCreator

O43 - CFD: 06/03/2011 - 12:44:54 - [76322555] ----D- C:\Program Files (x86)\QuickTime

O43 - CFD: 05/08/2010 - 12:56:30 - [5037193] ----D- C:\Program Files (x86)\Realtek

O43 - CFD: 14/07/2009 - 06:32:40 - [38597377] ----D- C:\Program Files (x86)\Reference Assemblies

O43 - CFD: 11/03/2011 - 22:49:06 - [19143029] R---D- C:\Program Files (x86)\Skype

O43 - CFD: 05/08/2010 - 13:13:56 - [9460898] ----D- C:\Program Files (x86)\SmartSound Software

O43 - CFD: 05/08/2010 - 13:48:44 - [754931110] ----D- C:\Program Files (x86)\Sony

O43 - CFD: 05/08/2010 - 12:57:08 - [0] --H-D- C:\Program Files (x86)\Temp

O43 - CFD: 14/07/2009 - 05:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information

O43 - CFD: 05/08/2010 - 13:33:54 - [42877355] ----D- C:\Program Files (x86)\VAIO screensavers

O43 - CFD: 13/02/2011 - 12:52:30 - [82392202] ----D- C:\Program Files (x86)\VideoLAN

O43 - CFD: 05/08/2010 - 22:48:56 - [524800] ----D- C:\Program Files (x86)\Windows Defender

O43 - CFD: 11/03/2011 - 22:46:02 - [184678226] ----D- C:\Program Files (x86)\Windows Live

O43 - CFD: 08/01/2011 - 03:33:26 - [6180864] ----D- C:\Program Files (x86)\Windows Mail

O43 - CFD: 08/01/2011 - 03:33:16 - [5024017] ----D- C:\Program Files (x86)\Windows Media Player

O43 - CFD: 14/07/2009 - 06:32:40 - [12197556] ----D- C:\Program Files (x86)\Windows NT

O43 - CFD: 05/08/2010 - 22:48:56 - [4417800] ----D- C:\Program Files (x86)\Windows Photo Viewer

O43 - CFD: 14/07/2009 - 06:32:42 - [189440] ----D- C:\Program Files (x86)\Windows Portable Devices

O43 - CFD: 05/08/2010 - 22:48:58 - [5994114] ----D- C:\Program Files (x86)\Windows Sidebar

O43 - CFD: 16/03/2011 - 18:58:40 - [3458597] ----D- C:\Program Files (x86)\ZHPDiag

O43 - CFD: 06/03/2011 - 12:44:12 - [6246981] ----D- C:\Program Files\Common Files\Apple

O43 - CFD: 05/08/2010 - 12:59:34 - [13079104] ----D- C:\Program Files\Common Files\Intel

O43 - CFD: 11/03/2011 - 22:40:40 - [92068190] ----D- C:\Program Files\Common Files\Microsoft Shared

O43 - CFD: 14/07/2009 - 04:20:10 - [2702] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 05/08/2010 - 13:19:34 - [9131849] ----D- C:\Program Files\Common Files\Sony Shared

O43 - CFD: 14/07/2009 - 04:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 05/08/2010 - 22:48:56 - [12009971] ----D- C:\Program Files\Common Files\System

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.2E2C26F8CEDF7DAC5C6BF75FCC8FFC6D] - 16/03/2011 - 18:59:43 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [13872]

O44 - LFC:[MD5.2E2C26F8CEDF7DAC5C6BF75FCC8FFC6D] - 16/03/2011 - 18:59:43 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [13872]

O44 - LFC:[MD5.130000000000000000000000F0EF1800] - 16/03/2011 - 18:55:47 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1145245]

O44 - LFC:[MD5.E3BC16A6EAAF6E51B98B2871B5DF6360] - 16/03/2011 - 18:52:13 ---A- . (...) -- C:\Windows\setupact.log [42799]

O44 - LFC:[MD5.D5ABA0AF41CD5E935A219C2778C25B2F] - 16/03/2011 - 18:52:11 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.08945D6ACA4492BDFD256B354A24F1F9] - 16/03/2011 - 14:21:05 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1549700]

O44 - LFC:[MD5.794B704145716A535E00A2794A485DC4] - 16/03/2011 - 14:21:05 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106388]

O44 - LFC:[MD5.17FCD085B9D7B1E2305CCA02FFB8915C] - 16/03/2011 - 14:21:05 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130754]

O44 - LFC:[MD5.FAFC243210F5366843F3CB256CF68584] - 16/03/2011 - 14:21:05 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [616008]

O44 - LFC:[MD5.747EFD7E74101FE0E10DCC151A145F27] - 16/03/2011 - 14:21:05 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704480]

O44 - LFC:[MD5.9ED10EE7D1E98391AD93A7619C1FC5AA] - 11/03/2011 - 22:39:44 ---A- . (...) -- C:\Windows\DirectX.log [72745]

O44 - LFC:[MD5.A4E54A645B56B0B6961591E4F8102D80] - 04/03/2011 - 19:42:36 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\java.exe [145184]

O44 - LFC:[MD5.B2AFE404EDA76D0FB751C769ECA93940] - 04/03/2011 - 19:42:36 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\javaw.exe [145184]

O44 - LFC:[MD5.51D259F8A59B914702AFDCE8799F70C3] - 04/03/2011 - 19:42:36 ---A- . (.Sun Microsystems, Inc. - Java Web Start Launcher.) -- C:\Windows\System32\javaws.exe [157472]

O44 - LFC:[MD5.85B3DE9FD12291CA5BE463F8AFCA8A6B] - 03/03/2011 - 07:57:50 ---A- . (...) -- C:\Windows\PFRO.log [5470]

O44 - LFC:[MD5.0439C6170F7F6355BB5275C9CAA6050F] - 23/02/2011 - 16:04:21 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [40648]

O44 - LFC:[MD5.2320C2AC6577ECF1D4211F2D9BABE3DD] - 23/02/2011 - 16:04:17 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe [190016]

O44 - LFC:[MD5.2320C2AC6577ECF1D4211F2D9BABE3DD] - 23/02/2011 - 16:04:07 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\SysNative\aswBoot.exe [238968]

---\\ Déni du service (Local Security Authority) (O48)

O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

---\\ Microsoft Windows Policies Explorer (O56)

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088]

O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536]

O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864]

O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440]

O58 - SDL:[MD5.7A4B413614C055935567CF88A9734D38] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [106576]

O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128]

O58 - SDL:[MD5.B4AD0CACBAB298671DD6F6EF7E20679D] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [28752]

O58 - SDL:[MD5.2D45F2DFBC3D8F53DF7EBEFFA8C9BC38] - 31/05/2010 - 22:36:54 ---A- . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\Windows\system32\drivers\Apfiltr.sys [299568]

O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632]

O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856]

O58 - SDL:[MD5.C130BC4A51B1382B2BE8E44579EC4C0A] - 26/05/2009 - 13:32:04 ---A- . (.ArcSoft, Inc. - For X64.) -- C:\Windows\system32\drivers\ArcSoftKsUFilter.sys [19968]

O58 - SDL:[MD5.F810E3EA3D1F3C3BA26F2F4719BDCA4F] - 23/02/2011 - 15:54:58 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys [22360]

O58 - SDL:[MD5.3687FD9CEDF56D3B9F18923F4E14F3F9] - 23/02/2011 - 15:55:05 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys [64344]

O58 - SDL:[MD5.E99E48596B35E5D5240104BCD61B3471] - 23/02/2011 - 15:55:13 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys [31064]

O58 - SDL:[MD5.84AD8FB3FD2EFA52D8599A0028BBB6FE] - 23/02/2011 - 15:57:01 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\system32\drivers\aswSnx.sys [505176]

O58 - SDL:[MD5.8CBA6CC5DCA9E3829F1792BF98F06901] - 23/02/2011 - 15:57:04 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys [280408]

O58 - SDL:[MD5.184248F2DED7B1641C7F3B30381BAA2A] - 23/02/2011 - 15:55:53 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys [53592]

O58 - SDL:[MD5.CCA705CDF038D5BC243203CE4416B345] - 31/05/2010 - 22:36:41 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys [1573888]

O58 - SDL:[MD5.EA244A8B88DE8B5986BF3B7903B063AF] - 08/10/2010 - 07:55:08 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [6661120]

O58 - SDL:[MD5.DCA6E341A4A7C31EA8A14C6166C9B249] - 08/10/2010 - 07:55:08 ---A- . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\system32\drivers\atikmpag.sys [195584]

O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848]

O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432]

O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704]

O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720]

O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104]

O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976]

O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720]

O58 - SDL:[MD5.59E3510784548C6939C1B3B985C232E3] - 23/06/2010 - 21:04:43 ---A- . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windows Vista.) -- C:\Windows\system32\drivers\btwampfl.sys [342056]

O58 - SDL:[MD5.1872074ED0A3FB22E3F1E3197B984BFA] - 23/06/2010 - 21:04:43 ---A- . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\system32\drivers\btwaudio.sys [102952]

O58 - SDL:[MD5.691CF076C33AB1C3A5B2FD5450300733] - 23/06/2010 - 21:04:43 ---A- . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\system32\drivers\btwavdt.sys [135720]

O58 - SDL:[MD5.07096D2BC22CCB6CEA5A532DF0BE8A75] - 23/06/2010 - 21:04:09 ---A- . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\system32\drivers\btwl2cap.sys [39464]

O58 - SDL:[MD5.C9273B20DEC8CE38DBCE5D29DE63C907] - 23/06/2010 - 21:04:45 ---A- . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\system32\drivers\btwrchid.sys [21544]

O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480]

O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488]

O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496]

O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016]

O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232]

O58 - SDL:[MD5.B6AC71AAA2B10848F57FC49D55A651AF] - 28/05/2010 - 21:02:36 ---A- . (.Intel Corporation - Intel® Management Engine Interface.) -- C:\Windows\system32\drivers\HECIx64.sys [56344]

O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [77888]

O58 - SDL:[MD5.ABBF174CB394F5C437410A788B7E404A] - 04/03/2010 - 03:51:40 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys [540696]

O58 - SDL:[MD5.D83EFB6FD45DF9D55E9A1AFC63640D50] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410688]

O58 - SDL:[MD5.2A22AB054F4630D2EF4BAB2853F6D5F6] - 24/06/2010 - 21:33:43 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd64.sys [10326784]

O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112]

O58 - SDL:[MD5.DD587A55390ED2295BCE6D36AD567DA9] - 28/05/2010 - 21:03:12 ---A- . (.Intel Corporation - Intel® Turbo Boost Technology Driver.) -- C:\Windows\system32\drivers\Impcd.sys [158976]

O58 - SDL:[MD5.58CF58DEE26C909BD6F977B61D246295] - 24/06/2010 - 21:34:53 ---A- . (.Intel® Corporation - Intel® Display Audio Driver.) -- C:\Windows\system32\drivers\IntcDAud.sys [271872]

O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752]

O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560]

O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600]

O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776]

O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392]

O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736]

O58 - SDL:[MD5.18555F48844C2861D9DCE8F2B7223AE5] - 31/05/2010 - 11:05:06 ---A- . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\system32\drivers\NETw5s64.sys [7689216]

O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264]

O58 - SDL:[MD5.3E38712941E9BB4DDBEE00AFFE3FED3D] - 14/07/2009 - 02:48:27 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [149056]

O58 - SDL:[MD5.477DC4D6DEB99BE37084C9AC6D013DA1] - 14/07/2009 - 02:45:45 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [167488]

O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816]

O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592]

O58 - SDL:[MD5.FA6ABC06B629DA29634D31F1FE0347BD] - 23/06/2010 - 21:02:59 ---A- . (.REDC - RICOH MS Driver.) -- C:\Windows\system32\drivers\rimssne64.sys [94208]

O58 - SDL:[MD5.8F8539A7F5C117D4407B2985995671F2] - 23/06/2010 - 21:03:07 ---A- . (.REDC - RICOH PCIe SD/MMC Driver.) -- C:\Windows\system32\drivers\risdsne64.sys [78848]

O58 - SDL:[MD5.D6D381B76056C668679723938F06F16C] - 31/05/2010 - 21:10:13 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RtHDMIVX.sys [231328]

O58 - SDL:[MD5.526E482AFB586CB1CDD687869DECF686] - 31/05/2010 - 22:39:03 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys [2357024]

O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040]

O58 - SDL:[MD5.286D3889E6AB5589646FF8A63CB928AE] - 26/04/2010 - 21:20:29 ---A- . (.Sony Corporation - Sony Firmware Extension Parser driver.) -- C:\Windows\system32\drivers\SFEP.sys [12032]

O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584]

O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464]

O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656]

O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488]

O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872]

O58 - SDL:[MD5.5250193EF8E173AA7491250F00EB367F] - 31/05/2010 - 22:36:48 ---A- . (.Marvell - NDIS6.20 Miniport Driver for Marvell Yukon Ethernet Controller.) -- C:\Windows\system32\drivers\yk62x64.sys [402720]

---\\ Liste des outils de nettoyage (O63)

O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPDiag_is1

---\\ Liste des services Legacy (O64)

O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\atikmdag.sys - amdkmdag (amdkmdag) .(.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG

O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWFSBLK.sys - (.not file.) - aswFsBlk (aswFsBlk) .(...) - LEGACY_ASWFSBLK

O64 - Services: CurCS - C:\Windows\system32\drivers\aswMonFlt.sys - aswMonFlt (aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT

O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWRDR.sys - (.not file.) - aswRdr (aswRdr) .(...) - LEGACY_ASWRDR

O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWSNX.sys - (.not file.) - aswSnx (aswSnx) .(...) - LEGACY_ASWSNX

O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWSP.sys - (.not file.) - aswSP (aswSP) .(...) - LEGACY_ASWSP

O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWTDI.sys - (.not file.) - avast! Network Shield Support (aswTdi) .(...) - LEGACY_ASWTDI

O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP

O64 - Services: CurCS - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS

O64 - Services: CurCS - (.not file.) - McAfee Inc. cfwids (cfwids) .(...) - LEGACY_CFWIDS

O64 - Services: CurCS - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS

O64 - Services: CurCS - C:\Windows\System32\Drivers\cng.sys - CNG (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG

O64 - Services: CurCS - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC

O64 - Services: CurCS - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE

O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL

O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT

O64 - Services: CurCS - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO

O64 - Services: CurCS - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR

O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC

O64 - Services: CurCS - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL

O64 - Services: CurCS - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP

O64 - Services: CurCS - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY

O64 - Services: CurCS - C:\Windows\System32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD

O64 - Services: CurCS - C:\Windows\System32\Drivers\ksecpkg.sys - KSecPkg (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO

O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV

O64 - Services: CurCS - (.not file.) - McAfee Inc. mfeapfk (mfeapfk) .(...) - LEGACY_MFEAPFK

O64 - Services: CurCS - (.not file.) - McAfee Inc. mfeavfk (mfeavfk) .(...) - LEGACY_MFEAVFK

O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfeavfk01) .(...) - LEGACY_MFEAVFK01

O64 - Services: CurCS - (.not file.) - McAfee Inc. mfefirek (mfefirek) .(...) - LEGACY_MFEFIREK

O64 - Services: CurCS - (.not file.) - McAfee Inc. mfehidk (mfehidk) .(...) - LEGACY_MFEHIDK

O64 - Services: CurCS - (.not file.) - McAfee Inc. mfewfpk (mfewfpk) .(...) - LEGACY_MFEWFPK

O64 - Services: CurCS - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR

O64 - Services: CurCS - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20

O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS

O64 - Services: CurCS - C:\Windows\System32\drivers\msisadrv.sys - msisadrv (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV

O64 - Services: CurCS - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\nwifi.sys - NativeWiFi Filter (NativeWifiP) .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP

O64 - Services: CurCS - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ndisuio.sys - NDIS Usermode I/O Protocol (Ndisuio) .(.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO

O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS

O64 - Services: CurCS - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT

O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS

O64 - Services: CurCS - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY

O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL

O64 - Services: CurCS - C:\Windows\System32\drivers\pcw.sys - Performance Counters for Windows Driver (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW

O64 - Services: CurCS - C:\Windows\System32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH

O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR

O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV

O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET

O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP

O64 - Services: CurCS - C:\Windows\System32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG

O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\udfs.sys - udfs (udfs) .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS

O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE

O64 - Services: CurCS - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX

O64 - Services: CurCS - C:\Windows\System32\drivers\volsnap.sys - Volumes de stockage (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\vwififlt.sys - Virtual WiFi Filter Driver (vwififlt) .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT

O64 - Services: CurCS - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6

O64 - Services: CurCS - C:\Windows\System32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\wfplwf.sys - WFP Lightweight Filter (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF

O64 - Services: CurCS - C:\Windows\System32\drivers\WudfPf.sys - User Mode Driver Frameworks Platform Driver (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <ChromeHTML>[HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

---\\ Search Browser Infection (O69)

O69 - SBI: SearchScopes [HKCU] {517446DE-1E33-428C-A154-1CE9F5A308FB} - (Zinio) -

O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Goo) - Google

O69 - SBI: SearchScopes [HKCU] {CE87EDB7-2CB0-44E7-ACC4-91F54A392A59} - (eBay) - eBay

O69 - SBI: SearchScopes [HKCU] {CF19AA3D-77D6-42EC-AA02-DA8F9413E3DB} - (Shopping.com) - Comparer les prix et lire des avis sur Shopping.com, comparateur de prix du groupe eBay.

---\\ Recherche particuliere à la racine de certains dossiers (O84)

[MD5.3A3C37750D40262EFCB31FECEB61591F] [sPRF] (.Electronic Arts Inc. - Electronic Arts AutoRun.) -- C:\Users\marine\AppData\Local\Temp\AutoRun.exe [700416]

[MD5.D7FA28864CBE36BF25890DAA3023D109] [sPRF] (.Electronic Arts Inc. - AutoRun GUI.) -- C:\Users\marine\AppData\Local\Temp\AutoRunGUI.dll [618496]

[MD5.BFD203827AB373DE4650A8898DCD7E6A] [sPRF] (.Macromedia, Inc. - Macromedia Flash Player 6.0 r21.) -- C:\Users\marine\AppData\Local\Temp\First15.exe [1453843]

[MD5.34908E446D09432BD17830458D242BD2] [sPRF] (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Users\marine\AppData\Local\Temp\jre-6u23-windows-i586-iftw-rv.exe [884512]

[MD5.A8D666FCE8EFD0788FA0DF14FB3491B4] [sPRF] (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Users\marine\AppData\Local\Temp\jre-6u24-windows-i586-iftw-rv.exe [885536]

[MD5.9D10F99A6712E28F8ACD5641E3A7EA6B] [sPRF] (.Microsoft Corporation - Office Source Engine.) -- C:\Users\marine\AppData\Local\Temp\ose00000.exe [149352]

[MD5.5B2DA96D90C95228239806D40B720BD2] [sPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\marine\AppData\Local\Temp\VP6.reg [340]

[MD5.1410ADCB69C267916EE702E2A443E93F] [sPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\marine\AppData\Local\Temp\VP6Install.exe [23040]

[MD5.4D6F38D3CDA2D0BA502BC1C499A622CF] [sPRF] (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Users\marine\AppData\Local\Temp\VP6VFW.dll [442368]

[MD5.719AF0A81B65A4AEB4BA7BD6644BB1A7] [sPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\marine\AppData\Local\Temp\WLM2011Installer.exe [1289216]

[MD5.64281AF23447705DAB84E1A198D920C7] [sPRF] (.Microsoft Corporation - Windows Live Installer.) -- C:\Users\marine\AppData\Local\Temp\WLM_2011.exe [1289576]

---\\ Firewall Active Exception List (FirewallRules) (O87)

O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)

O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)

O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.)

O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)

O87 - FAEL: "RemoteSvcAdmin-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)

O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe

O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe

O87 - FAEL: "{A14E413A-972D-4787-A89D-F4A802FEF863}" | In - Public - P6 - FALSE | .(.Adobe Systems Incorporated - Adobe Photoshop Elements 8.0 (component).) -- C:\Program Files (x86)\Adobe\Elements Organizer 8.0\AdobePhotoshopElementsMediaServer.exe

O87 - FAEL: "{4AA11795-6AFE-4B2D-BCD9-7AC6C9B8E198}" | In - Public - P17 - FALSE | .(.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Elements Organizer 8.0\AdobePhotoshopElementsMediaServer.exe

O87 - FAEL: "{704D0FF9-F3DB-438E-AA1A-0BC0349BC9B6}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{419409CD-16B1-472F-92D7-58FE37841E06}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

O87 - FAEL: "{78FE31CC-E54B-48F1-A56C-6A488466450F}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe

O87 - FAEL: "{E08C36FB-B4CE-46E0-95BB-C83B77D18EA7}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files (x86)\Microsoft Office\Office12\outlook.exe

O87 - FAEL: "{875F446D-DDDE-445B-A138-BD46EFEB7D49}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Microsoft Office Groove.) -- C:\Program Files (x86)\Microsoft Office\Office12\GROOVE.exe

O87 - FAEL: "{F5A24DF5-9AE1-49B5-B856-FC7E425C4EA9}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Groove.) -- C:\Program Files (x86)\Microsoft Office\Office12\GROOVE.exe

O87 - FAEL: "{21A0D555-001E-4EAA-941E-D73492C89BA3}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files (x86)\Microsoft Office\Office12\ONENOTE.exe

O87 - FAEL: "{5BB1D47E-3204-4AB1-AC39-A6A7B5E62518}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files (x86)\Microsoft Office\Office12\ONENOTE.exe

O87 - FAEL: "{9278FED1-5EE4-42BC-AAAC-1CF778F7BB7B}" |In - Private - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)

O87 - FAEL: "TCP Query User{58961AF8-ABFB-4D5B-BA11-819CC6E3DF01}C:\program files (x86)\google\google earth\client\googleearth.exe" | In - Private - P6 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\client\googleearth.exe

O87 - FAEL: "UDP Query User{7FEE2A97-4D04-4CC3-BA25-FE40BA89E11E}C:\program files (x86)\google\google earth\client\googleearth.exe" | In - Private - P17 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\client\googleearth.exe

O87 - FAEL: "TCP Query User{98367440-C111-4CA6-8D3B-507E8054C9B7}C:\program files (x86)\google\google earth\client\googleearth.exe" | In - Public - P6 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\client\googleearth.exe

O87 - FAEL: "UDP Query User{39AA5006-4FC5-4500-90B4-7A5EDA274767}C:\program files (x86)\google\google earth\client\googleearth.exe" | In - Public - P17 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\client\googleearth.exe

O87 - FAEL: "{99018CC6-C58D-490F-9E64-5DC9FBA02373}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe

O87 - FAEL: "{D3D9CAF5-D31A-4575-91ED-09C83D4C82B6}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe

O87 - FAEL: "{1765DD3D-B54C-419A-BA45-6248844BD7E3}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

O87 - FAEL: "{CF14E4FC-4CD5-4478-8877-6D451B6B1C2F}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Mesh Operating Environment.) -- C:\Program Files (x86)\Windows Live\Mesh\MOE.exe

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SS - | Demand 18/03/2010 113152 | (ACDaemon) . (.ArcSoft Inc..) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

SS - | Demand 09/10/2009 169312 | (AdobeActiveFileMonitor8.0) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe

SR - | Auto 09/10/2009 0 | (AMD External Events Utility) . (.AMD.) - C:\Windows\system32\atiesrxx.exe

SR - | Auto 18/02/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

SR - | Auto 23/02/2011 42184 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

SR - | Auto 07/10/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe

SR - | Auto 08/06/2010 952096 | (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

SR - | Auto 05/03/2010 1425168 | (EvtEng) . (.Intel® Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe

SS - | Demand 05/08/2010 867080 | (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

SS - | Auto 05/08/2010 136176 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

SS - | Demand 05/08/2010 182768 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

SR - | Auto 04/03/2010 13336 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

SR - | Auto 28/05/2010 268824 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

SS - | Demand 05/08/2010 332272 | (Partner Service) . (.Google Inc..) - C:\ProgramData\Partner\Partner.exe

SR - | Auto 01/06/2010 367456 | (PMBDeviceInfoProvider) . (.Sony Corporation.) - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe

SR - | Auto 05/03/2010 831760 | (RegSrvc) . (.Intel® Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

SS - | Demand 20/06/2010 108400 | (SOHCImp) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe

SS - | Demand 18/06/2010 423280 | (SOHDms) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe

SS - | Demand 20/06/2010 67952 | (SOHDs) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe

SS - | Demand 06/06/2010 304496 | (SpfService) . (.Sony Corporation.) - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe

SR - | Auto 18/09/2008 104960 | (uCamMonitor) . (.ArcSoft, Inc..) - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe

SR - | Auto 28/05/2010 2320920 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

SR - | Auto 31/05/2010 217968 | (VAIO Event Service) . (.Sony Corporation.) - C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe

SR - | Auto 21/06/2010 575856 | (VAIO Power Management) . (.Sony Corporation.) - C:\Program Files\Sony\VAIO Power Management\SPMService.exe

SS - | Demand 17/06/2010 851824 | (VCFw) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe

SS - | Demand 09/06/2010 537456 | (VcmIAlzMgr) . (.Sony Corporation.) - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe

SS - | Demand 09/06/2010 384880 | (VcmINSMgr) . (.Sony Corporation.) - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe

SS - | Demand 09/06/2010 101232 | (VcmXmlIfHelper) . (.Sony Corporation.) - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe

SR - | Auto 08/06/2010 836608 | (VSNService) . (.Sony Corporation.) - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe

SS - | Demand 31/05/2010 1250160 | (VUAgent) . (.Sony Corporation.) - C:\Program Files\Sony\VAIO Update 5\VUAgent.exe

SR - | Auto 14/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, GMER - Rootkit Detector and Remover

Run by marine at 16/03/2011 19:01:15

device: opened successfully

user: error reading MBR

Disk trace:

error: Read Descripteur non valide

kernel: error reading MBR

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

Written by ad13,

Run by marine at 16/03/2011 19:01:19

Use the desktop link 'MBRCheck' to have full report

Dump file Name : C:\PhysicalDisk0_MBR.bin

End of the scan (1122 lines in 02mn 50s)(0)

Connexion

Pas encore inscrit ?

Soupçon infection

Messages recommandés

lacalacla

Rejoindre la conversation

En ligne récemment 0 membre est en ligne

Zebulon

Outils en ligne

Naviguer