rien ne va !

[argana]

bonjour,

 

voilà, j'ai besoin d'aide ca fait plusieurs jour que je bidouille mon ordi car je n'arrive pas a voir ma webcam sur msn , du coup je me suis retourné vers skype et là, je n'arrive pas du tout a l'installer j'ai un message qui me dis win 32 invalide, ne sachant plus quoi faire je sort un rapport whpdiag si quelqu'un peu voir d'ou viens mon probleme car je n'y connais rien du tout, faute d'essayer je suis allé dans plusieurs forum mais sans resultat, merci de m'aider svp

[argana]

oup's j'oublie de mettre le rapport, le voici !

 

 

Rapport de ZHPDiag v1.27.17042 par Nicolas Coolman, Update du 17/03/2011

Run by San at 19/03/2011 14:21:12

Web site : ZHPDiag Outil de diagnostic

Contact : nicolascoolman@yahoo.fr

 

 

---\\ Web Browser

MSIE: Internet Explorer v8.0.7600.16385

 

---\\ System Information

Windows 7 Home Premium Edition, 64-bit (Build 7600)

Processor: AMD64 Family 16 Model 6 Stepping 2, AuthenticAMD

Operating System: 64 Bits

Boot mode: Normal (Normal boot)

Total RAM: 2812 MB (62% free)

System Restore: Activé (Enable)

System drive C: has 150 GB (52%) free of 284 GB

 

---\\ Logged in mode

Computer Name: SAN-PC

User Name: San

All Users Names: San, Administrateur,

Unselected Option: O45,O61,O62,O65,O66,O82

Logged in as Administrator

 

---\\ Environnement Variables

%AppData%=C:\Users\San\AppData\Roaming

%LocalAppData%=C:\Users\San\AppData\Local

%StartMenu%=C:\Users\San\AppData\Roaming\Microsoft\Windows\Start Menu

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 150 Go of 284 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 13 Go)

E:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)

F:\ CD-ROM drive (Not Inserted)

G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

H:\ CD-ROM drive (Not Inserted)

 

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

 

 

 

---\\ Recherche particulière de fichiers génériques

[MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - (.Microsoft Corporation - Explorateur Windows.) (.31/10/2009 07:34:59.) -- C:\Windows\Explorer.exe [2870272]

[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]

[MD5.78B9ADA2BC8946AF7B17678E0D07A773] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.21/12/2010 06:38:22.) -- C:\Windows\System32\wininet.dll [981504]

 

 

 

---\\ Processus lancés

[MD5.E02E715FA2BC8D88FF9362374E309D76] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392]

[MD5.A5F78606A9BA8F0C4C8FF9DED6ED5107] - (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048]

[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]

[MD5.019D774B725DCFD9A188F07764A32214] - (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe [322104]

[MD5.5516C26A6AF8EB4E2CAB48EC98A74398] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe [54576]

[MD5.1FF10EDF73F1DB310D22A461606B26E7] - (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files (x86)\Athan\Athan.exe [1208320]

[MD5.C983E62B6FB74457D173BA93F66F6068] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [281768]

[MD5.0DE3C7622EC33126579B1742260F08C2] - (.Pas de propriétaire - HpqToaster Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe [632888]

[MD5.C3CADC3528F0F5572F5F4D9B34045F45] - (...) -- C:\Program Files (x86)\Kit Internet Mobile Bouygues Telecom\UIMain.exe [7147520]

[MD5.AA08B68EF4E35EFA170CF85A44B23B70] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [673040]

[MD5.99B6CE3840F5AD5C4B13B666249AA467] - (.Microsoft Corporation - Microsoft Search Client Server.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe [316208]

[MD5.FF8EA20CFA47CD134B3EABA59C6689F0] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [640512]

 

 

 

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

G1 - GCS: Preference [user Data\Default] None

G0 - GCSP: Preference [user Data\Default][HomePage] Google

 

 

 

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MessFrance.com

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKUS\S-1-5-21-512403285-1079311878-3067351514-1001\Software\Microsoft\Internet Explorer\Main,Start Page = MessFrance.com

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Google

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Rirefun : moteur de recherche

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R1 - HKUS\S-1-5-21-512403285-1079311878-3067351514-1001\Software\Microsoft\Internet Explorer\Main,Search Page = Google

R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll

R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1

 

 

 

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

 

 

 

---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe

 

 

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.6.5627.1104\swg64.dll

O2 - BHO: (no name) [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} Clé orpheline

 

 

 

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: DAEMON Tools Toolbar [64Bits] - {32099AAC-C132-4136-9E9A-4E364A424E17} . (.Pas de propriétaire - ToolBand Module.) -- C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll

 

 

 

---\\ ---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [synTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [sysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe

O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe

O4 - HKCU\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe

O4 - HKCU\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe

O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [MsnMsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.exe

O4 - HKLM\..\Wow6432Node\Run: [startCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

O4 - HKLM\..\Wow6432Node\Run: [QlbCtrl.exe] . (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe

O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Wow6432Node\Run: [WirelessAssistant] . (.Hewlett-Packard - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

O4 - HKLM\..\Wow6432Node\Run: [Athan] . (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files (x86)\Athan\Athan.exe

O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-21-512403285-1079311878-3067351514-1001\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe

O4 - HKUS\S-1-5-21-512403285-1079311878-3067351514-1001\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe

O4 - HKUS\S-1-5-21-512403285-1079311878-3067351514-1001\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe

O4 - HKUS\S-1-5-21-512403285-1079311878-3067351514-1001\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKUS\S-1-5-21-512403285-1079311878-3067351514-1001\..\Run: [MsnMsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.exe

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)

 

 

 

---\\ ---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Users\San\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\San\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\San\Desktop\Athan.lnk . (.www.IslamicFinder.org.) -- C:\Program Files (x86)\Athan\Athan.exe

O4 - Global Startup: C:\Users\San\Desktop\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\San\Desktop\Kit Internet Mobile Bouygues Telecom.lnk . (...) -- C:\Program Files (x86)\Kit Internet Mobile Bouygues Telecom\UIMain.exe

O4 - Global Startup: C:\Users\San\Desktop\Magic Desktop.lnk . (.EasyBits Software AS.) -- C:\Program Files (x86)\EasyBits For Kids\ezSecShield.exe

O4 - Global Startup: C:\Users\San\Desktop\Vidéos - Raccourci.lnk . (...) -- C:\Users\San\AppData\Roaming\Microsoft\Windows\Libraries\Videos.library-ms

O4 - Global Startup: C:\Users\San\Desktop\Windows Live Messenger .lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

O4 - Global Startup: C:\Users\San\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\San\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Minefield.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Minefield\firefox.exe

O4 - Global Startup: C:\Users\San\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QuickTime Player.lnk . (.Apple Computer, Inc..) -- C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe

 

 

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~4\OFFICE11\EXCEL.exe

 

 

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

 

 

 

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

 

 

 

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{11B8F79D-A9A9-4A8C-919E-74BEDD7D95FF}: NameServer = 62.201.129.99 62.201.159.99

O17 - HKLM\System\CS1\Services\Tcpip\..\{11B8F79D-A9A9-4A8C-919E-74BEDD7D95FF}: NameServer = 62.201.129.99 62.201.159.99

O17 - HKLM\System\CCS\Services\Tcpip\..\{DFB6A003-C195-4514-8A39-17B48BEF0276}: DhcpNameServer = 212.27.40.241 212.27.40.242

O17 - HKLM\System\CS1\Services\Tcpip\..\{DFB6A003-C195-4514-8A39-17B48BEF0276}: DhcpNameServer = 212.27.40.241 212.27.40.242

O17 - HKLM\System\CS2\Services\Tcpip\..\{DFB6A003-C195-4514-8A39-17B48BEF0276}: DhcpNameServer = 212.27.40.241 212.27.40.242

 

 

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

 

 

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe

O23 - Service: C:\Windows\system32\Alg.exe (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe

O23 - Service: (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

O23 - Service: (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

O23 - Service: (Boonty Games) . (.BOONTY - System Level Service Utility.) - C:\Program Files (x86)\Common Files\BOONTY Shared\Service\Boonty.exe

O23 - Service: (Com4QLBEx) . (.Hewlett-Packard Development Company, L.P. - Com for QLB application.) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe

O23 - Service: (GameConsoleService) . (.WildTangent, Inc. - GameConsoleService.) - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe

O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: (hpqwmiex) . (.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

O23 - Service: (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

O23 - Service: (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe

O23 - Service: (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe

 

 

 

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(...) - (.not file.)

 

 

 

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForSan.job

[MD5.00000000000000000000000000000000] [APT] [CreateChoiceProcessTask] (.Pas de propriétaire.) -- (.not file.)

[MD5.00000000000000000000000000000000] [APT] [HPCeeScheduleForSan] (.Pas de propriétaire.) -- (.not file.)

[MD5.00000000000000000000000000000000] [APT] [sidebarExecute] (.Pas de propriétaire.) -- (.not file.)

[MD5.00000000000000000000000000000000] [APT] [{00D3BAE9-669A-4A0A-9661-5B0D23D44D1D}] (.Pas de propriétaire.) -- C:\Users\San\Downloads\SkypeSetup.exe (.not file.)

[MD5.00000000000000000000000000000000] [APT] [{2EC74167-424F-4696-BDCC-E6C119933D9C}] (.Pas de propriétaire.) -- C:\Users\San\Downloads\SkypeSetup.exe (.not file.)

[MD5.20010B640167FD1E299680E7F6AF759B] [APT] [{6A5C7597-5308-49F4-A95C-42D9CC4EA9F4}] (.Pas de propriétaire.) -- C:\Users\San\Downloads\SkypeSetupFull.exe

[MD5.00000000000000000000000000000000] [APT] [{93135A7F-42EA-40BB-80D0-FFDF3942B9AB}] (.Pas de propriétaire.) -- (.not file.)

[MD5.00000000000000000000000000000000] [APT] [{F7AB33DE-AC34-465B-A8AA-89146BD80F3B}] (.Pas de propriétaire.) -- (.not file.)

[MD5.00000000000000000000000000000000] [APT] [HPSA Upgrade] (.Pas de propriétaire.) -- (.not file.)

[MD5.00000000000000000000000000000000] [APT] [PC Health Analysis] (.Pas de propriétaire.) -- (.not file.)

[MD5.00000000000000000000000000000000] [APT] [PC Tuneup] (.Pas de propriétaire.) -- (.not file.)

[MD5.00000000000000000000000000000000] [APT] [MP Scheduled Scan] (.Pas de propriétaire.) -- (.not file.)

 

 

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\Windows\System32\DRIVERS\avipbb.sys

O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys

O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys

O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys

O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\DRIVERS\mssmbios.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys

O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys

O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys

O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys

O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys

O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys

O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\system32\DRIVERS\serial.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys

O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys

O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys

 

 

 

---\\ Logiciels installés (O42)

O42 - Logiciel: AMD USB Filter Driver - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5271C0D4-24E4-4C3D-A782-C012033FD3CF}

O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}

O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {254C37AA-6B72-4300-84F6-98A82419187E}

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {B194272D-1F92-46DF-99EB-8D5CE91CB4EC}

O42 - Logiciel: Adobe Acrobat 5.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Acrobat 5.0

O42 - Logiciel: Adobe Download Manager - (.NOS Microsystems Ltd..) [HKLM][64Bits] -- {E2883E8F-472F-4fb0-9522-AC9BF37916A7}

O42 - Logiciel: Adobe Flash Player 10 ActiveX 64-bit - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX 64

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin

O42 - Logiciel: Adobe Reader 9.1 MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}

O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}

O42 - Logiciel: Age of Empires III - (.Microsoft Game Studios.) [HKLM][64Bits] -- InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}

O42 - Logiciel: Athan Basic 4.0 - (.Pas de propriétaire.) [HKLM][64Bits] -- Athan

O42 - Logiciel: Atheros Driver Installation Program - (.Atheros.) [HKLM][64Bits] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7}

O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM][64Bits] -- Avira AntiVir Desktop

O42 - Logiciel: Barricade 1.6.0 - (.Mathieu Rossignol.) [HKCU] -- Barricade 1.6.0

O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner

O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {E0897770-46C9-4322-AD44-8BFA6BE217B2}

O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}

O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}

O42 - Logiciel: CyberLink MediaShow - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}

O42 - Logiciel: CyberLink MediaShow - (.CyberLink Corp..) [HKLM][64Bits] -- {80E158EA-7181-40FE-A701-301CE6BE64AB}

O42 - Logiciel: CyberLink PowerDVD 8 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}

O42 - Logiciel: CyberLink PowerDVD 8 - (.CyberLink Corp..) [HKLM][64Bits] -- {2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}

O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}

O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}

O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}

O42 - Logiciel: DAEMON Tools Toolbar - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Toolbar

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}

O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM][64Bits] -- {40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}

O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}

O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall

O42 - Logiciel: HP Quick Launch Buttons - (.Hewlett-Packard.) [HKLM][64Bits] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}

O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM][64Bits] -- {17B4760F-334B-475D-829F-1A3E94A6A4E6}

O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {741CFE3A-1C0B-4A7D-8E08-5D78C911C09D}

O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {D46D081B-F60E-467E-A7C4-117B70D76731}

O42 - Logiciel: HP User Guides 0148 - (.Hewlett-Packard.) [HKLM][64Bits] -- {9D3318E1-5A9F-4A95-A7A1-7E045403AE34}

O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {54CC7901-804D-4155-B353-21F0CC9112AB}

O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {669D4A35-146B-4314-89F1-1AC3D7B88367}

O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}

O42 - Logiciel: Jewel Quest 3 fr - (.Boonty.) [HKLM][64Bits] -- Jewel Quest 3_is1

O42 - Logiciel: Kit Internet Mobile Bouygues Telecom - (.Pas de propriétaire.) [HKLM][64Bits] -- {93D34EE3-99B3-4DB1-8B0A-0A657466F90D}

O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}

O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}

O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM][64Bits] -- {CC8E94A2-55C7-4460-953C-2A790180578C}

O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM][64Bits] -- WinRAR archiver

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM][64Bits] -- EasyBits Magic Desktop

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{E64BA721-2310-4B55-BE5A-2925F9706192}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-040C-1000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- HOMESTUDENTR

O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Office 64-bit Components 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE}

O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00AF-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9011040C-6000-11D3-8CFE-0150048383C9}

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-002C-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{14809F99-C601-4D4A-9391-F1E8FAA964C5}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}

O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-040C-1000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM][64Bits] -- {E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {B6E3757B-5E77-3915-866A-CCFC4B8D194C}

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM][64Bits] -- {770657D0-A123-3C07-8E44-1C83EC895118}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {071c9b48-7c32-4621-a0ac-3f809523288f}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-4627-81f2-1818da5d550d}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B160861-7250-451E-B5EE-8B92BF30A710}

O42 - Logiciel: Minefield (3.7a5pre) - (.Mozilla.) [HKLM][64Bits] -- Minefield (3.7a5pre)

O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0020-040C-0000-0000000FF1CE}

O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack

O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}

O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}

O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}

O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}

O42 - Logiciel: QLBCASL - (.Hewlett-Packard.) [HKLM][64Bits] -- {F1D7AC58-554A-4A58-B784-B61558B1449A}

O42 - Logiciel: QuickTime - (.Pas de propriétaire.) [HKLM][64Bits] -- QuickTime

O42 - Logiciel: Realtek 8136 8168 8169 Ethernet Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}

O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}

O42 - Logiciel: Recovery Manager - (.CyberLink Corp..) [HKLM][64Bits] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5C497F0B-2061-4CC9-A61C-6B45B867354D}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CD769337-C8AC-46DB-A7DC-643E50089263}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2289158) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{210B16C0-CEBD-4DE9-B474-04A7E8735E16}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2344875) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FC5C4C1-D7AE-44C3-94B7-6424FC3E752F}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{536FB502-775F-4494-BACE-C02CC90B7A5B}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7F207DCA-3399-40CB-A968-6E5991B1421A}

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2345035) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{B23002DD-34EC-4988-B810-A5E2A0BF04F1}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer (KB2413381) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3DED0A62-44C8-4E00-A785-5212F297A9D9}

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}

O42 - Logiciel: SimCity 4 Deluxe - (.Pas de propriétaire.) [HKLM][64Bits] -- {3F0D0ABE-CDAF-431A-00BC-CBBE018EA74E}

O42 - Logiciel: Supercow fr - (.Boonty.) [HKLM][64Bits] -- Supercow_is1

O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey

O42 - Logiciel: Update for 2007 Microsoft Office System (KB2284654) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{FB166E7C-8AA6-48C8-B726-1F25BEE7825A}

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2473228) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2473228

O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{329050A9-EF80-40F9-B633-74508F54C1FF}

O42 - Logiciel: VLC media player 1.1.1 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {BADF6744-3787-48F6-B8C9-4C4995401D65}

O42 - Logiciel: Zuma Deluxe RA - (.Pas de propriétaire.) [HKLM][64Bits] -- Zuma Deluxe RA

O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM][64Bits] -- eMule

O42 - Logiciel: muvee Reveal - (.muvee Technologies Pte Ltd.) [HKLM][64Bits] -- {43BA31BA-04BD-2EA3-0A60-A9C54E06D3F2}

 

---\\ HKCU & HKLM Software Keys

[HKCU\Software\ATI]

[HKCU\Software\Adobe]

[HKCU\Software\Anuman Interactive]

[HKCU\Software\AppDataLow\Software\Adobe]

[HKCU\Software\AppDataLow\Software\Microsoft]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\Avira]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\CyberLink]

[HKCU\Software\DT Soft]

[HKCU\Software\EasyBits]

[HKCU\Software\FotoWire]

[HKCU\Software\GameHouse]

[HKCU\Software\Google]

[HKCU\Software\Hewlett-Packard]

[HKCU\Software\IDT]

[HKCU\Software\IM Providers]

[HKCU\Software\Intel]

[HKCU\Software\JavaSoft]

[HKCU\Software\LightScribe]

[HKCU\Software\Logitech]

[HKCU\Software\Macromedia]

[HKCU\Software\MainConcept (Muvee)]

[HKCU\Software\MainConcept (Muvee2)]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Netscape]

[HKCU\Software\Norton]

[HKCU\Software\ODBC]

[HKCU\Software\Piriform]

[HKCU\Software\Policies]

[HKCU\Software\PopCap]

[HKCU\Software\Skype]

[HKCU\Software\Softonic]

[HKCU\Software\Synaptics]

[HKCU\Software\Tific]

[HKCU\Software\Trolltech]

[HKCU\Software\WildTangent]

[HKCU\Software\WinRAR SFX]

[HKCU\Software\WinRAR]

[HKCU\Software\Wow6432Node]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\Zylom]

[HKCU\Software\eMule]

[HKCU\Software\funkitron]

[HKLM\Software\AMD]

[HKLM\Software\ATI Technologies]

[HKLM\Software\ATI Technologies]

[HKLM\Software\ATI]

[HKLM\Software\ATI]

[HKLM\Software\Adobe]

[HKLM\Software\Agere]

[HKLM\Software\Analog Devices]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\Atheros]

[HKLM\Software\Avira]

[HKLM\Software\Boonty]

[HKLM\Software\BrowserChoice]

[HKLM\Software\C07ft5Y]

[HKLM\Software\CXT]

[HKLM\Software\Caphyon]

[HKLM\Software\Classes]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Clients]

[HKLM\Software\Cyberlink]

[HKLM\Software\DT Soft]

[HKLM\Software\Debug]

[HKLM\Software\DexterLib]

[HKLM\Software\Digital River]

[HKLM\Software\Dofus 2]

[HKLM\Software\EasyBits]

[HKLM\Software\Electronic Arts]

[HKLM\Software\FCTB000063009]

[HKLM\Software\Google]

[HKLM\Software\HPQLOG]

[HKLM\Software\HPQ]

[HKLM\Software\HPQ]

[HKLM\Software\Hewlett-Packard]

[HKLM\Software\Hewlett-Packard]

[HKLM\Software\IDT]

[HKLM\Software\IDT]

[HKLM\Software\InstallShield]

[HKLM\Software\InstalledOptions]

[HKLM\Software\Intel]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\Kit Internet Mobile Bouygues Telecom]

[HKLM\Software\LSI]

[HKLM\Software\LightScribe]

[HKLM\Software\Logitech]

[HKLM\Software\Macromedia]

[HKLM\Software\Macromedia]

[HKLM\Software\Maxis]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\NOS]

[HKLM\Software\ODBC]

[HKLM\Software\ODBC]

[HKLM\Software\P2G_Upgrade]

[HKLM\Software\PDR_Upgrade]

[HKLM\Software\Policies]

[HKLM\Software\Policies]

[HKLM\Software\Product_Upgrade]

[HKLM\Software\RTLSetup]

[HKLM\Software\Realtek Semiconductor Corp.]

[HKLM\Software\Realtek Semiconductor Corp.]

[HKLM\Software\Realtek]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\Sonic]

[HKLM\Software\Symantec]

[HKLM\Software\Synaptics]

[HKLM\Software\The Learning Company]

[HKLM\Software\VideoLAN]

[HKLM\Software\Volatile]

[HKLM\Software\Volatile]

[HKLM\Software\WildTangent]

[HKLM\Software\WildTangent]

[HKLM\Software\WinRAR]

[HKLM\Software\Windows]

[HKLM\Software\Windows]

[HKLM\Software\Wow6432Node]

[HKLM\Software\X-AVCSD]

[HKLM\Software\ZTE Corporation]

[HKLM\Software\ZTEUSBDriverFlag]

[HKLM\Software\ZTEUSBDriverFlag]

[HKLM\Software\mozilla.org]

[HKLM\Software\muvee Technologies]

 

 

 

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 17/03/2010 - 01:29:26 - [19031373] ----D- C:\Program Files\ATI

O43 - CFD: 22/09/2010 - 22:05:24 - [36546653] ----D- C:\Program Files\Common Files

O43 - CFD: 17/03/2010 - 01:31:42 - [931896] ----D- C:\Program Files\DIFX

O43 - CFD: 17/03/2010 - 10:22:26 - [90257428] ----D- C:\Program Files\DVD Maker

O43 - CFD: 16/07/2010 - 11:35:22 - [0] -SH-D- C:\Program Files\Fichiers communs

O43 - CFD: 21/09/2010 - 10:41:56 - [317496] ----D- C:\Program Files\Google

O43 - CFD: 14/11/2009 - 08:36:36 - [171008] ----D- C:\Program Files\Hewlett-Packard

O43 - CFD: 17/03/2010 - 01:33:30 - [42017387] ----D- C:\Program Files\IDT

O43 - CFD: 03/03/2011 - 00:40:28 - [5174113] ----D- C:\Program Files\Internet Explorer

O43 - CFD: 03/03/2011 - 00:09:42 - [0] ----D- C:\Program Files\Java

O43 - CFD: 17/03/2010 - 10:22:26 - [149236786] ----D- C:\Program Files\Microsoft Games

O43 - CFD: 14/11/2009 - 09:31:44 - [1141526] ----D- C:\Program Files\Microsoft Office

O43 - CFD: 14/07/2009 - 06:32:40 - [25757] ----D- C:\Program Files\MSBuild

O43 - CFD: 14/07/2009 - 06:32:40 - [36253865] ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 17/03/2010 - 01:31:06 - [32322202] ----D- C:\Program Files\Synaptics

O43 - CFD: 14/07/2009 - 06:09:28 - [0] --H-D- C:\Program Files\Uninstall Information

O43 - CFD: 14/11/2009 - 17:24:34 - [4039168] ----D- C:\Program Files\Windows Defender

O43 - CFD: 17/03/2011 - 22:45:24 - [0] ----D- C:\Program Files\Windows Live

O43 - CFD: 02/03/2011 - 11:11:54 - [6667264] ----D- C:\Program Files\Windows Mail

O43 - CFD: 21/02/2011 - 04:48:26 - [7687085] ----D- C:\Program Files\Windows Media Player

O43 - CFD: 16/07/2010 - 11:35:22 - [12627124] ----D- C:\Program Files\Windows NT

O43 - CFD: 14/11/2009 - 17:24:34 - [5516568] ----D- C:\Program Files\Windows Photo Viewer

O43 - CFD: 24/12/2010 - 11:45:34 - [235008] ----D- C:\Program Files\Windows Portable Devices

O43 - CFD: 16/07/2010 - 11:37:10 - [11374107] ----D- C:\Program Files\Windows Sidebar

O43 - CFD: 17/03/2011 - 22:45:42 - [23925212] ----D- C:\Program Files\Common Files\Microsoft Shared

O43 - CFD: 24/12/2010 - 11:44:34 - [2702] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 14/07/2009 - 04:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 14/11/2009 - 17:24:34 - [12009971] ----D- C:\Program Files\Common Files\System

O43 - CFD: 09/08/2010 - 20:25:24 - [0] ----D- C:\ProgramData\2DBoy

O43 - CFD: 14/03/2011 - 14:47:26 - [134233418] ----D- C:\ProgramData\Adobe

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Application Data

O43 - CFD: 17/03/2010 - 01:32:28 - [8972] ----D- C:\ProgramData\Atheros

O43 - CFD: 17/03/2010 - 02:06:08 - [188] ----D- C:\ProgramData\ATI

O43 - CFD: 18/03/2011 - 10:17:26 - [40345781] ----D- C:\ProgramData\Avira

O43 - CFD: 07/08/2010 - 11:07:02 - [22157] ----D- C:\ProgramData\BOONTY

O43 - CFD: 16/07/2010 - 11:35:22 - [0] -SH-D- C:\ProgramData\Bureau

O43 - CFD: 17/03/2010 - 01:41:34 - [51710] ----D- C:\ProgramData\CyberLink

O43 - CFD: 01/09/2010 - 00:11:30 - [388] ----D- C:\ProgramData\DAEMON Tools Lite

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Desktop

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Documents

O43 - CFD: 20/07/2010 - 14:39:30 - [0] ----D- C:\ProgramData\eMule

O43 - CFD: 16/07/2010 - 11:35:22 - [0] -SH-D- C:\ProgramData\Favoris

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Favorites

O43 - CFD: 27/07/2010 - 23:01:46 - [81767322] ----D- C:\ProgramData\GameHouse

O43 - CFD: 21/09/2010 - 10:40:14 - [0] ----D- C:\ProgramData\Google

O43 - CFD: 05/10/2010 - 20:53:18 - [58452519] ----D- C:\ProgramData\Hewlett-Packard

O43 - CFD: 02/03/2011 - 10:29:36 - [720] ----D- C:\ProgramData\LightScribe

O43 - CFD: 25/02/2011 - 13:28:40 - [8302] ----D- C:\ProgramData\McAfee

O43 - CFD: 16/07/2010 - 11:35:22 - [0] -SH-D- C:\ProgramData\Menu Démarrer

O43 - CFD: 17/03/2011 - 18:29:02 - [202903370] -S--D- C:\ProgramData\Microsoft

O43 - CFD: 02/03/2011 - 11:11:40 - [57688] ----D- C:\ProgramData\Microsoft Help

O43 - CFD: 16/07/2010 - 11:35:22 - [0] -SH-D- C:\ProgramData\Modèles

O43 - CFD: 22/09/2010 - 00:09:30 - [17432] ----D- C:\ProgramData\Norton

O43 - CFD: 17/03/2010 - 01:46:36 - [8766591] ----D- C:\ProgramData\NortonInstaller

O43 - CFD: 17/03/2011 - 22:38:36 - [12820] ----D- C:\ProgramData\NOS

O43 - CFD: 25/07/2010 - 00:04:46 - [14] ----D- C:\ProgramData\PopCap Games

O43 - CFD: 19/03/2011 - 12:29:08 - [10258] ----D- C:\ProgramData\QuickTime

O43 - CFD: 22/08/2010 - 19:04:54 - [8121] ----D- C:\ProgramData\Recovery

O43 - CFD: 02/03/2011 - 20:16:42 - [19148800] ----D- C:\ProgramData\Skype

O43 - CFD: 02/03/2011 - 11:11:14 - [4538] ----D- C:\ProgramData\Spybot - Search & Destroy

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Start Menu

O43 - CFD: 22/07/2010 - 20:46:52 - [154] ----D- C:\ProgramData\Sun

O43 - CFD: 02/03/2011 - 11:11:42 - [614826] ----D- C:\ProgramData\Temp

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Templates

O43 - CFD: 31/08/2010 - 18:24:04 - [135145903] ----D- C:\ProgramData\WildTangent

O43 - CFD: 02/03/2011 - 11:11:42 - [74452] ----D- C:\ProgramData\Zylom

O43 - CFD: 14/03/2011 - 18:45:08 - [847341] ----D- C:\Users\San\AppData\Roaming\Adobe

O43 - CFD: 16/07/2010 - 11:43:14 - [0] ----D- C:\Users\San\AppData\Roaming\ATI

O43 - CFD: 18/03/2011 - 10:26:12 - [0] ----D- C:\Users\San\AppData\Roaming\Avira

O43 - CFD: 26/07/2010 - 21:52:26 - [827253] ----D- C:\Users\San\AppData\Roaming\Barricade 1.6.0

O43 - CFD: 26/07/2010 - 20:23:40 - [4378] ----D- C:\Users\San\AppData\Roaming\CrazyLoader

O43 - CFD: 22/10/2010 - 00:48:18 - [0] ----D- C:\Users\San\AppData\Roaming\CyberLink

O43 - CFD: 01/09/2010 - 00:21:40 - [4250] ----D- C:\Users\San\AppData\Roaming\DAEMON Tools Lite

O43 - CFD: 14/03/2011 - 18:46:04 - [199] ----D- C:\Users\San\AppData\Roaming\dvdcss

O43 - CFD: 26/11/2010 - 21:04:44 - [7889] ----D- C:\Users\San\AppData\Roaming\EleFun Games

O43 - CFD: 31/08/2010 - 17:43:28 - [3334] ----D- C:\Users\San\AppData\Roaming\funkitron

O43 - CFD: 06/08/2010 - 22:11:54 - [7554] ----D- C:\Users\San\AppData\Roaming\GOL_byHasbro

O43 - CFD: 25/07/2010 - 15:01:08 - [0] ----D- C:\Users\San\AppData\Roaming\Google

O43 - CFD: 05/10/2010 - 20:53:18 - [173829] ----D- C:\Users\San\AppData\Roaming\Hewlett-Packard

O43 - CFD: 26/07/2010 - 22:26:02 - [278] ----D- C:\Users\San\AppData\Roaming\HP Support Assistant

O43 - CFD: 16/07/2010 - 11:41:34 - [1502] ----D- C:\Users\San\AppData\Roaming\hpqlog

O43 - CFD: 26/07/2010 - 22:26:02 - [1684] ----D- C:\Users\San\AppData\Roaming\HpUpdate

O43 - CFD: 07/08/2010 - 08:39:14 - [2334] ----D- C:\Users\San\AppData\Roaming\Identities

O43 - CFD: 21/09/2010 - 19:30:20 - [0] ----D- C:\Users\San\AppData\Roaming\InstallShield

O43 - CFD: 07/08/2010 - 11:07:56 - [0] ----D- C:\Users\San\AppData\Roaming\iWin

O43 - CFD: 30/07/2010 - 00:21:58 - [3459] ----D- C:\Users\San\AppData\Roaming\Macromedia

O43 - CFD: 17/03/2010 - 10:22:24 - [0] ----D- C:\Users\San\AppData\Roaming\Media Center Programs

O43 - CFD: 14/03/2011 - 18:45:08 - [5747368] -S--D- C:\Users\San\AppData\Roaming\Microsoft

O43 - CFD: 26/02/2011 - 03:31:42 - [1470385] ----D- C:\Users\San\AppData\Roaming\Mozilla

O43 - CFD: 26/07/2010 - 20:35:42 - [121] ----D- C:\Users\San\AppData\Roaming\OfferBox

O43 - CFD: 26/07/2010 - 21:25:40 - [585480] ----D- C:\Users\San\AppData\Roaming\Participatory Culture Foundation

O43 - CFD: 26/07/2010 - 15:42:38 - [422817] ----D- C:\Users\San\AppData\Roaming\PCF-VLC

O43 - CFD: 27/02/2011 - 01:19:42 - [227138] ----D- C:\Users\San\AppData\Roaming\PCFix

O43 - CFD: 30/07/2010 - 00:21:58 - [760] ----D- C:\Users\San\AppData\Roaming\PlayFirst

O43 - CFD: 13/03/2011 - 17:14:50 - [72] ----D- C:\Users\San\AppData\Roaming\PriceGong

O43 - CFD: 13/11/2010 - 21:34:54 - [886] ----D- C:\Users\San\AppData\Roaming\StoneLoopsWT

O43 - CFD: 21/12/2010 - 12:36:04 - [23496] ----D- C:\Users\San\AppData\Roaming\Super-Cow

O43 - CFD: 26/07/2010 - 20:47:26 - [25602] ----D- C:\Users\San\AppData\Roaming\Tific

O43 - CFD: 29/12/2010 - 04:06:18 - [677365] ----D- C:\Users\San\AppData\Roaming\uTorrent

O43 - CFD: 14/03/2011 - 18:46:04 - [1427205] ----D- C:\Users\San\AppData\Roaming\vlc

O43 - CFD: 16/07/2010 - 16:29:10 - [742] ----D- C:\Users\San\AppData\Roaming\WildTangent

O43 - CFD: 07/03/2011 - 19:25:06 - [295] ----D- C:\Users\San\AppData\Roaming\Windows Live Writer

O43 - CFD: 26/07/2010 - 18:33:40 - [12] ----D- C:\Users\San\AppData\Roaming\WinRAR

O43 - CFD: 07/08/2010 - 08:39:14 - [264516] ----D- C:\Users\San\AppData\Roaming\Zylom

O43 - CFD: 16/03/2011 - 16:47:26 - [150360] ----D- C:\Users\San\AppData\Roaming\_MDLogs

O43 - CFD: 14/03/2011 - 18:45:56 - [193250989] ----D- C:\Program Files (x86)\Adobe

O43 - CFD: 17/03/2010 - 01:31:42 - [76515] ----D- C:\Program Files (x86)\AMD

O43 - CFD: 16/03/2011 - 10:06:12 - [19718865] ----D- C:\Program Files (x86)\Athan

O43 - CFD: 17/03/2010 - 01:32:26 - [1511498] ----D- C:\Program Files (x86)\Atheros

O43 - CFD: 17/03/2010 - 01:30:42 - [84649253] ----D- C:\Program Files (x86)\ATI Technologies

O43 - CFD: 23/01/2011 - 12:35:44 - [3291334] ----D- C:\Program Files (x86)\ATLAS

O43 - CFD: 18/03/2011 - 10:17:26 - [112162758] ----D- C:\Program Files (x86)\Avira

O43 - CFD: 02/03/2011 - 11:11:38 - [5894574] ----D- C:\Program Files (x86)\Barricade 1.6.0

O43 - CFD: 10/02/2011 - 10:24:04 - [153098781] ----D- C:\Program Files (x86)\BoontyGames

O43 - CFD: 02/03/2011 - 11:11:38 - [2902648] ----D- C:\Program Files (x86)\CCleaner

O43 - CFD: 19/03/2011 - 12:32:38 - [582652681] ----D- C:\Program Files (x86)\Common Files

O43 - CFD: 13/03/2011 - 16:14:38 - [532064] ----D- C:\Program Files (x86)\Conduit

O43 - CFD: 14/03/2011 - 12:56:36 - [13875] ----D- C:\Program Files (x86)\ConduitEngine

O43 - CFD: 17/03/2010 - 01:45:38 - [1600146057] ----D- C:\Program Files (x86)\CyberLink

O43 - CFD: 01/09/2010 - 00:12:48 - [11240946] ----D- C:\Program Files (x86)\DAEMON Tools Lite

O43 - CFD: 01/09/2010 - 00:12:48 - [4392090] ----D- C:\Program Files (x86)\DAEMON Tools Toolbar

O43 - CFD: 16/03/2011 - 16:47:28 - [156678929] ----D- C:\Program Files (x86)\EasyBits For Kids

O43 - CFD: 20/07/2010 - 13:56:10 - [10906334] ----D- C:\Program Files (x86)\eMule

O43 - CFD: 21/09/2010 - 10:41:56 - [10212956] ----D- C:\Program Files (x86)\Google

O43 - CFD: 17/03/2010 - 01:49:24 - [407567157] ----D- C:\Program Files (x86)\Hewlett-Packard

O43 - CFD: 14/11/2009 - 11:30:40 - [3116216] ----D- C:\Program Files (x86)\Hp

O43 - CFD: 26/07/2010 - 21:52:22 - [1717526683] ----D- C:\Program Files (x86)\HP Games

O43 - CFD: 19/03/2011 - 12:31:52 - [206949777] --H-D- C:\Program Files (x86)\InstallShield Installation Information

O43 - CFD: 02/03/2011 - 11:11:54 - [5133867] ----D- C:\Program Files (x86)\Internet Explorer

O43 - CFD: 15/03/2011 - 16:27:58 - [15670657] ----D- C:\Program Files (x86)\Kit Internet Mobile Bouygues Telecom

O43 - CFD: 22/10/2010 - 12:58:46 - [1251689556] ----D- C:\Program Files (x86)\Maxis

O43 - CFD: 14/11/2009 - 08:41:34 - [2664525] ----D- C:\Program Files (x86)\Microsoft

O43 - CFD: 01/09/2010 - 00:39:28 - [2226771523] ----D- C:\Program Files (x86)\Microsoft Games

O43 - CFD: 31/10/2010 - 14:57:52 - [646492288] ----D- C:\Program Files (x86)\Microsoft Office

O43 - CFD: 14/11/2009 - 09:34:00 - [7791803] ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant

O43 - CFD: 04/03/2011 - 20:45:44 - [38371963] ----D- C:\Program Files (x86)\Microsoft Silverlight

O43 - CFD: 29/12/2010 - 22:43:36 - [145421942] ----D- C:\Program Files (x86)\Microsoft Works

O43 - CFD: 25/02/2011 - 13:01:56 - [8352099] ----D- C:\Program Files (x86)\Microsoft.NET

O43 - CFD: 29/01/2011 - 20:13:28 - [0] ----D- C:\Program Files (x86)\Mindscape

O43 - CFD: 14/03/2011 - 18:46:02 - [26509880] ----D- C:\Program Files (x86)\Minefield

O43 - CFD: 18/03/2011 - 00:32:10 - [8523218] ----D- C:\Program Files (x86)\Mozilla Firefox

O43 - CFD: 14/07/2009 - 06:32:40 - [25757] ----D- C:\Program Files (x86)\MSBuild

O43 - CFD: 14/03/2011 - 12:56:36 - [356059] ----D- C:\Program Files (x86)\MSN Messenger

O43 - CFD: 23/10/2010 - 02:38:18 - [0] ----D- C:\Program Files (x86)\MSXML 4.0

O43 - CFD: 17/03/2010 - 01:46:22 - [61148631] ----D- C:\Program Files (x86)\muvee Technologies

O43 - CFD: 14/03/2011 - 18:46:02 - [396848] ----D- C:\Program Files (x86)\NOS

O43 - CFD: 26/07/2010 - 21:52:26 - [21107901] R---D- C:\Program Files (x86)\Online Services

O43 - CFD: 02/03/2011 - 11:11:40 - [2250347] ----D- C:\Program Files (x86)\QuickTime

O43 - CFD: 26/07/2010 - 21:52:26 - [9400635] ----D- C:\Program Files (x86)\Realtek

O43 - CFD: 14/07/2009 - 06:32:40 - [38597377] ----D- C:\Program Files (x86)\Reference Assemblies

O43 - CFD: 25/11/2010 - 22:51:02 - [110420184] ----D- C:\Program Files (x86)\SAGEM

O43 - CFD: 14/03/2011 - 12:56:36 - [25406] ----D- C:\Program Files (x86)\Softonic_France

O43 - CFD: 14/07/2009 - 05:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information

O43 - CFD: 27/07/2010 - 00:42:42 - [78060736] ----D- C:\Program Files (x86)\VideoLAN

O43 - CFD: 14/03/2011 - 17:13:42 - [0] ----D- C:\Program Files (x86)\Wikikou

O43 - CFD: 14/11/2009 - 17:24:34 - [524800] ----D- C:\Program Files (x86)\Windows Defender

O43 - CFD: 18/03/2011 - 00:25:50 - [31083075] ----D- C:\Program Files (x86)\Windows Live

O43 - CFD: 02/03/2011 - 11:11:54 - [6180864] ----D- C:\Program Files (x86)\Windows Mail

O43 - CFD: 21/02/2011 - 04:48:26 - [5336849] ----D- C:\Program Files (x86)\Windows Media Player

O43 - CFD: 14/07/2009 - 06:32:40 - [12197556] ----D- C:\Program Files (x86)\Windows NT

O43 - CFD: 14/11/2009 - 17:24:34 - [4417800] ----D- C:\Program Files (x86)\Windows Photo Viewer

O43 - CFD: 24/12/2010 - 11:45:34 - [189440] ----D- C:\Program Files (x86)\Windows Portable Devices

O43 - CFD: 16/07/2010 - 11:37:10 - [5994166] ----D- C:\Program Files (x86)\Windows Sidebar

O43 - CFD: 01/09/2010 - 00:10:56 - [3886217] ----D- C:\Program Files (x86)\WinRAR

O43 - CFD: 19/03/2011 - 14:21:18 - [3574488] ----D- C:\Program Files (x86)\ZHPDiag

O43 - CFD: 20/07/2010 - 11:12:30 - [4554302] ----D- C:\Program Files (x86)\ZTEDriver

O43 - CFD: 21/09/2010 - 23:54:26 - [6057839] ----D- C:\Program Files (x86)\Zuma Deluxe

O43 - CFD: 03/03/2011 - 00:12:30 - [0] ----D- C:\Program Files (x86)\Zylom Games

O43 - CFD: 17/03/2011 - 22:45:42 - [23925212] ----D- C:\Program Files\Common Files\Microsoft Shared

O43 - CFD: 24/12/2010 - 11:44:34 - [2702] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 14/07/2009 - 04:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 14/11/2009 - 17:24:34 - [12009971] ----D- C:\Program Files\Common Files\System

 

 

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.1B0000000000000000000000F0EF1800] - 19/03/2011 - 13:50:50 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1938927]

O44 - LFC:[MD5.DEBECD7A04A8AB17EF3F1B01F0886BE7] - 19/03/2011 - 12:57:58 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [23248]

O44 - LFC:[MD5.DEBECD7A04A8AB17EF3F1B01F0886BE7] - 19/03/2011 - 12:57:58 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [23248]

O44 - LFC:[MD5.799E695A83DB4F6685EE81BFF5A54CE2] - 19/03/2011 - 12:55:08 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1575208]

O44 - LFC:[MD5.93DDDAE8BFDAD84091B00E0C24812395] - 19/03/2011 - 12:55:08 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [110276]

O44 - LFC:[MD5.B9EB4989DCE6D53E5EC6FF54550E0486] - 19/03/2011 - 12:55:08 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [134914]

O44 - LFC:[MD5.677C45DD66DE9A2DA7BBA4BC9D38B0C2] - 19/03/2011 - 12:55:08 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [624292]

O44 - LFC:[MD5.5E852EE9A9CD058C47036A13593C7F1D] - 19/03/2011 - 12:55:08 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [713224]

O44 - LFC:[MD5.9982DE5B241F4776F71698EB4D4FC7E9] - 19/03/2011 - 12:50:07 ---A- . (...) -- C:\Windows\setupact.log [168]

O44 - LFC:[MD5.7A593104B961364048CB6EDEA5BCD15B] - 19/03/2011 - 12:50:06 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.0E6B1534D71062248E2680F6BB981806] - 19/03/2011 - 12:50:01 ---A- . (...) -- C:\Windows\PFRO.log [2654]

O44 - LFC:[MD5.839EE79A38FC50920ACF3EDAB94C0CEF] - 19/03/2011 - 12:32:44 ---A- . (...) -- C:\Windows\msxmlcab.log [101]

O44 - LFC:[MD5.2EF9F78F66B5BE9A9091C258D6C0E8B3] - 19/03/2011 - 12:31:28 ---A- . (...) -- C:\LogiSetup.log [91]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 19/03/2011 - 11:39:20 ---A- . (...) -- C:\Windows\setuperr.log [0]

O44 - LFC:[MD5.2A22ABA3A90FC4D0A7526C8907146B5E] - 19/03/2011 - 00:35:11 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]

O44 - LFC:[MD5.456462905091DB042141487FE030E3C9] - 16/03/2011 - 09:30:54 ---A- . (.Indigo Rose Corporation - SUF60Runtime.) -- C:\Windows\iun6002.exe [737280]

O44 - LFC:[MD5.F6B7F01CE0D339E2FF8044EA50755B9A] - 25/02/2011 - 10:56:45 ---A- . (...) -- C:\Windows\adiras.ini [46]

O44 - LFC:[MD5.B1333C7A61106FCC28C60BE9CAC7EF39] - 23/02/2011 - 19:42:31 ---A- . (...) -- C:\Windows\win.ini [499]

O44 - LFC:[MD5.294C785778AA1F2C491C75DC222D2043] - 21/02/2011 - 04:49:54 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [393008]

O44 - LFC:[MD5.158D85C26868E8A9903A726CE145F66B] - 20/02/2011 - 15:39:08 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\SysNative\atmlib.dll [46080]

O44 - LFC:[MD5.158D85C26868E8A9903A726CE145F66B] - 20/02/2011 - 15:39:08 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [34304]

O44 - LFC:[MD5.BF973CEDCD012D23F194BBF0A9B218E6] - 20/02/2011 - 15:39:08 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\SysNative\atmfd.dll [366080]

O44 - LFC:[MD5.BF973CEDCD012D23F194BBF0A9B218E6] - 20/02/2011 - 15:39:08 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [294400]

 

 

 

---\\ MountPoints2 Shell Key (O51)

O51 - MPSK:{6684b19f-b555-11df-8a54-c80aa93d4104}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- H:\nuls.exe (.not file.)

 

 

 

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

 

 

 

---\\ ShareTools MSconfig StartupReg (O53)

O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe

O53 - SMSR:HKLM\...\startupreg\msnmsgr [Key] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

O53 - SMSR:HKLM\...\startupreg\swg [Key] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

 

 

 

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

 

 

 

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

O55 - MWPS:[HKLM\...\Policies\System] - "HideFastUserSwitching"=0

O55 - MWPS:[HKCU\...\Policies\System] - "DisableLockWorkstation"=0

O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0

O55 - MWPS:[HKCU\...\Policies\System] - "DisableChangePassword"=0

 

 

 

---\\ Microsoft Windows Policies Explorer (O56)

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0

 

 

 

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.BCA6AABA425CE46D89412190A5A27B94] - 07/02/2007 - 15:50:58 ---A- . (.Analog Deivces - USB Firmware loader.) -- C:\Windows\system32\drivers\adildrx64.sys [58264]

O58 - SDL:[MD5.5EB7BA94AD23F24761DEFE05F4855933] - 07/02/2007 - 15:51:18 ---A- . (.Analog Devices Inc. - ADSL USB Driver.) -- C:\Windows\system32\drivers\adiusbawx64.sys [169496]

O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088]

O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536]

O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864]

O58 - SDL:[MD5.98022774D9930ECBB292E70DB7601DF6] - 10/06/2009 - 22:01:06 ---A- . (.LSI Corp - SoftModem Device Driver.) -- C:\Windows\system32\drivers\agrsm64.sys [1146880]

O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440]

O58 - SDL:[MD5.7A4B413614C055935567CF88A9734D38] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [106576]

O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128]

O58 - SDL:[MD5.B4AD0CACBAB298671DD6F6EF7E20679D] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [28752]

O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632]

O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856]

O58 - SDL:[MD5.38562A6A9CB10844759EAF2B01A7FCD3] - 21/09/2009 - 19:47:14 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys [1484800]

O58 - SDL:[MD5.3B9014FB7CE9E20FD726321C7DB7D8B0] - 24/07/2009 - 08:49:00 ---A- . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\AtiHdmi.sys [119312]

O58 - SDL:[MD5.A29087680A1C3B049E3C05438E8FF2B8] - 05/08/2009 - 06:23:00 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [6038016]

O58 - SDL:[MD5.7C5D273E29DCC5505469B299C6F29163] - 05/05/2009 - 06:30:28 ---A- . (.Advanced Micro Devices Inc. - AMD PCIE Filter Driver for ATI PCIE chipset.) -- C:\Windows\system32\drivers\AtiPcie.sys [16440]

O58 - SDL:[MD5.39C2E2870FC0C2AE0595B883CBE716B4] - 10/01/2011 - 14:23:52 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys [83120]

O58 - SDL:[MD5.C98FA6E5AD0E857D22716BD2B8B1F399] - 10/01/2011 - 14:23:53 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\Windows\system32\drivers\avipbb.sys [116568]

O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848]

O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432]

O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704]

O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720]

O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104]

O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976]

O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720]

O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480]

O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488]

O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496]

O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016]

O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232]

O58 - SDL:[MD5.9AF482D058BE59CC28BCE52E7C4B747C] - 29/04/2009 - 08:48:32 ---A- . (.Hewlett-Packard Development Company, L.P. - HpqKbFiltr Keyboard Filter Driver.) -- C:\Windows\system32\drivers\HpqKbFiltr.sys [18432]

O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [77888]

O58 - SDL:[MD5.D83EFB6FD45DF9D55E9A1AFC63640D50] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410688]

O58 - SDL:[MD5.A87261EF1546325B559374F5689CF5BC] - 10/06/2009 - 21:37:05 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd64.sys [6108416]

O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112]

O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752]

O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560]

O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600]

O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776]

O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392]

O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736]

O58 - SDL:[MD5.64428DFDAF6E88366CB51F45A79C5F69] - 10/06/2009 - 21:35:28 ---A- . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\system32\drivers\netw5v64.sys [5434368]

O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264]

O58 - SDL:[MD5.3E38712941E9BB4DDBEE00AFFE3FED3D] - 14/07/2009 - 02:48:27 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [149056]

O58 - SDL:[MD5.477DC4D6DEB99BE37084C9AC6D013DA1] - 14/07/2009 - 02:45:45 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [167488]

O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816]

O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592]

O58 - SDL:[MD5.B49DC435AE3695BAC5623DD94B05732D] - 23/05/2009 - 07:52:30 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\system32\drivers\Rt64win7.sys [215040]

O58 - SDL:[MD5.A5DF2F732A6C95554E548FCB6932BD31] - 24/06/2009 - 20:00:18 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\system32\drivers\RtsUStor.sys [216576]

O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040]

O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584]

O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464]

O58 - SDL:[MD5.1A0000000000000000000000F0EF1800] - 01/09/2010 - 00:00:00 ---A- . (...) -- C:\Windows\system32\drivers\sptd.sys [834544]

O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656]

O58 - SDL:[MD5.ED1722F43CE61409EF68340402D6267D] - 22/07/2009 - 02:33:32 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\system32\drivers\stwrt64.sys [487936]

O58 - SDL:[MD5.929C9FA0B18AD2EBC8340591C4BF00FF] - 15/07/2009 - 00:16:34 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\system32\drivers\SynTP.sys [273456]

O58 - SDL:[MD5.44D9C773FEBFF10593B50DDFC2D6BC27] - 09/03/2009 - 06:49:08 ---A- . (.Advanced Micro Devices - AMD USB Filter Driver.) -- C:\Windows\system32\drivers\usbfilter.sys [36408]

O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488]

O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872]

O58 - SDL:[MD5.0C4540311E11664B245A263E1154CEF8] - 10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\VSTAZL6.SYS [292864]

O58 - SDL:[MD5.18E40C245DBFAF36FD0134A7EF2DF396] - 10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\VSTCNXT6.SYS [740864]

O58 - SDL:[MD5.02071D207A9858FBE3A48CBFD59C4A04] - 10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\VSTDPV6.SYS [1485312]

O58 - SDL:[MD5.B3EEACF62445E24FBB2CD4B0FB4DB026] - 10/06/2009 - 21:35:33 ---A- . (.Marvell - Miniport Driver for Marvell Yukon Ethernet Controller..) -- C:\Windows\system32\drivers\yk62x64.sys [389120]

O58 - SDL:[MD5.FF5A03A65B68DB7E02A12880399D40D4] - 09/10/2009 - 10:46:10 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ZTEusbmdm6k.sys [119680]

O58 - SDL:[MD5.A11DC648D2164FCDEB36ACBF52808E30] - 21/08/2009 - 15:44:00 ---A- . (.ZTE Corporation. - USB NDIS Miniport Driver.) -- C:\Windows\system32\drivers\ZTEusbnet.sys [135168]

O58 - SDL:[MD5.FF5A03A65B68DB7E02A12880399D40D4] - 09/10/2009 - 10:46:10 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ZTEusbnmea.sys [119680]

O58 - SDL:[MD5.FF5A03A65B68DB7E02A12880399D40D4] - 09/10/2009 - 10:46:10 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ZTEusbnmeaext.sys [119680]

O58 - SDL:[MD5.FF5A03A65B68DB7E02A12880399D40D4] - 09/10/2009 - 10:46:10 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ZTEusbnmeaext2.sys [119680]

O58 - SDL:[MD5.FF5A03A65B68DB7E02A12880399D40D4] - 09/10/2009 - 10:46:10 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ZTEusbser6k.sys [119680]

O58 - SDL:[MD5.FF5A03A65B68DB7E02A12880399D40D4] - 09/10/2009 - 10:46:10 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\system32\drivers\ZTEusbvoice.sys [119680]

O58 - SDL:[MD5.3862318F85BE7A91957ADA5E814ED58C] - 09/10/2009 - 10:44:48 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\SysWOW64\drivers\ZTEusbmdm6k.sys [105088]

O58 - SDL:[MD5.E9C90EDE4EE66E64222D2C23F45473F7] - 21/08/2009 - 15:43:20 ---A- . (.ZTE Corporation. - USB NDIS Miniport Driver.) -- C:\Windows\SysWOW64\drivers\ZTEusbnet.sys [114688]

O58 - SDL:[MD5.3862318F85BE7A91957ADA5E814ED58C] - 09/10/2009 - 10:44:48 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\SysWOW64\drivers\ZTEusbnmea.sys [105088]

O58 - SDL:[MD5.3862318F85BE7A91957ADA5E814ED58C] - 09/10/2009 - 10:44:48 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\SysWOW64\drivers\ZTEusbnmeaext.sys [105088]

O58 - SDL:[MD5.3862318F85BE7A91957ADA5E814ED58C] - 09/10/2009 - 10:44:48 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\SysWOW64\drivers\ZTEusbnmeaext2.sys [105088]

O58 - SDL:[MD5.3862318F85BE7A91957ADA5E814ED58C] - 09/10/2009 - 10:44:48 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\SysWOW64\drivers\ZTEusbser6k.sys [105088]

O58 - SDL:[MD5.3862318F85BE7A91957ADA5E814ED58C] - 09/10/2009 - 10:44:48 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\Windows\SysWOW64\drivers\ZTEusbvoice.sys [105088]

 

 

 

---\\ Liste des outils de nettoyage (O63)

O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPDiag_is1

 

 

 

---\\ Liste des services Legacy (O64)

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\adp94xx.sys - adp94xx (adp94xx) .(.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) - LEGACY_ADP94XX

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\adpahci.sys - adpahci (adpahci) .(.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) - LEGACY_ADPAHCI

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\adpu320.sys - adpu320 (adpu320) .(.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) - LEGACY_ADPU320

O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\aliide.sys - aliide (aliide) .(.Acer Laboratories Inc. - ALi mini IDE Driver.) - LEGACY_ALIIDE

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\amdide.sys - amdide (amdide) .(.Microsoft Corporation - Pilote IDE AMD.) - LEGACY_AMDIDE

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\amdsata.sys - amdsata (amdsata) .(.Advanced Micro Devices - AHCI 1.2 Device Driver.) - LEGACY_AMDSATA

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\amdsbs.sys - amdsbs (amdsbs) .(.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) - LEGACY_AMDSBS

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\arc.sys - arc (arc) .(.Adaptec, Inc. - Adaptec RAID Storport Driver.) - LEGACY_ARC

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\arcsas.sys - Pilote miniport de boîte de réception Windows Adaptec SAS/SATA-II RAID (arcsas) .(.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) - LEGACY_ARCSAS

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\atapi.sys - IDE Channel (atapi) .(.Microsoft Corporation - ATAPI IDE Miniport Driver.) - LEGACY_ATAPI

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\avgntflt.sys - avgntflt (avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\avipbb.sys - avipbb (avipbb) .(.Avira GmbH - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB

O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP

O64 - Services: CurCS - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS

O64 - Services: CurCS - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\cmdide.sys - cmdide (cmdide) .(.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) - LEGACY_CMDIDE

O64 - Services: CurCS - C:\Windows\System32\Drivers\cng.sys - CNG (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG

O64 - Services: CurCS - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC

O64 - Services: CurCS - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE

O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL

O64 - Services: CurCS - (.not file.) - Symantec Eraser Control driver (eeCtrl) .(...) - LEGACY_EECTRL

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\elxstor.sys - elxstor (elxstor) .(.Emulex - Storport Miniport Driver for LightPulse HBA.) - LEGACY_ELXSTOR

O64 - Services: CurCS - (.not file.) - EraserUtilDrv10920 (EraserUtilDrv10920) .(...) - LEGACY_ERASERUTILDRV10920

O64 - Services: CurCS - (.not file.) - EraserUtilDrv11010 (EraserUtilDrv11010) .(...) - LEGACY_ERASERUTILDRV11010

O64 - Services: CurCS - (.not file.) - EraserUtilRebootDrv (EraserUtilRebootDrv) .(...) - LEGACY_ERASERUTILREBOOTDRV

O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT

O64 - Services: CurCS - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO

O64 - Services: CurCS - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR

O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC

O64 - Services: CurCS - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\HpSAMD.sys - HpSAMD (HpSAMD) .(.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) - LEGACY_HPSAMD

O64 - Services: CurCS - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP

O64 - Services: CurCS - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\iaStorV.sys - Contrôleur RAID Intel Windows 7 (iaStorV) .(.Intel Corporation - Intel Matrix Storage Manager driver - x64.) - LEGACY_IASTORV

O64 - Services: CurCS - (.not file.) - IDSVia64 (IDSVia64) .(...) - LEGACY_IDSVIA64

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\iirsp.sys - iirsp (iirsp) .(.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) - LEGACY_IIRSP

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\intelide.sys - intelide (intelide) .(.Microsoft Corporation - Intel PCI IDE Driver.) - LEGACY_INTELIDE

O64 - Services: CurCS - C:\Windows\System32\drivers\ipnat.sys - IP Network Address Translator (IPNAT) .(.Microsoft Corporation - IP Network Address Translator.) - LEGACY_IPNAT

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\isapnp.sys - isapnp (isapnp) .(.Microsoft Corporation - Pilote de bus PNP ISA.) - LEGACY_ISAPNP

O64 - Services: CurCS - C:\Windows\System32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD

O64 - Services: CurCS - C:\Windows\System32\Drivers\ksecpkg.sys - KSecPkg (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\lsi_fc.sys - LSI_FC (LSI_FC) .(.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) - LEGACY_LSI_FC

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\lsi_sas.sys - LSI_SAS (LSI_SAS) .(.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) - LEGACY_LSI_SAS

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\lsi_sas2.sys - LSI_SAS2 (LSI_SAS2) .(.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) - LEGACY_LSI_SAS2

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\lsi_scsi.sys - LSI_SCSI (LSI_SCSI) .(.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) - LEGACY_LSI_SCSI

O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\megasas.sys - megasas (megasas) .(.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) - LEGACY_MEGASAS

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\MegaSR.sys - MegaSR (MegaSR) .(.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) - LEGACY_MEGASR

O64 - Services: CurCS - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR

O64 - Services: CurCS - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\msahci.sys - msahci (msahci) .(.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) - LEGACY_MSAHCI

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\msdsm.sys - Module spécifique de périphériques à chemins d’accès multiples Microsoft (msdsm) .(.Microsoft Corporation - Module spécifique de périphériques Microsof.) - LEGACY_MSDSM

O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\msisadrv.sys - msisadrv (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV

O64 - Services: CurCS - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\nwifi.sys - NativeWiFi Filter (NativeWifiP) .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP

O64 - Services: CurCS - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ndisuio.sys - NDIS Usermode I/O Protocol (Ndisuio) .(.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO

O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS

O64 - Services: CurCS - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\nfrd960.sys - nfrd960 (nfrd960) .(.IBM Corporation - IBM ServeRAID Controller Driver.) - LEGACY_NFRD960

O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS

O64 - Services: CurCS - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY

O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\nvraid.sys - nvraid (nvraid) .(.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) - LEGACY_NVRAID

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\nvstor.sys - nvstor (nvstor) .(.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) - LEGACY_NVSTOR

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\pciide.sys - pciide (pciide) .(.Microsoft Corporation - Generic PCI IDE Bus Driver.) - LEGACY_PCIIDE

O64 - Services: CurCS - C:\Windows\System32\drivers\pcw.sys - Performance Counters for Windows Driver (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW

O64 - Services: CurCS - C:\Windows\System32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH

O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ql2300.sys - Pilote de miniport QLogic Fibre Channel (ql2300) .(.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) - LEGACY_QL2300

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ql40xx.sys - Pilote de miniport QLogic iSCSI (ql40xx) .(.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) - LEGACY_QL40XX

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\sbp2port.sys - Pilote de bus de transport/protocole SBP-2 (sbp2port) .(.Microsoft Corporation - SBP-2 Protocol Driver.) - LEGACY_SBP2PORT

O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\SiSRaid2.sys - SiSRaid2 (SiSRaid2) .(.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) - LEGACY_SISRAID2

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\sisraid4.sys - SiSRaid4 (SiSRaid4) .(.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) - LEGACY_SISRAID4

O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR

O64 - Services: CurCS - C:\Windows\System32\Drivers\sptd.sys - sptd (sptd) .(...) - LEGACY_SPTD

O64 - Services: CurCS - (.not file.) - Symantec Real Time Storage Protection (PEL) x64 (SRTSPX) .(...) - LEGACY_SRTSPX

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\stexstor.sys - stexstor (stexstor) .(.Promise Technology - Promise SuperTrak EX Series Driver for Win.) - LEGACY_STEXSTOR

O64 - Services: CurCS - (.not file.) - Symantec Data Store (SymDS) .(...) - LEGACY_SYMDS

O64 - Services: CurCS - (.not file.) - Symantec Extended File Attributes (SymEFA) .(...) - LEGACY_SYMEFA

O64 - Services: CurCS - (.not file.) - SymEvent (SymEvent) .(...) - LEGACY_SYMEVENT

O64 - Services: CurCS - (.not file.) - Symantec Iron Driver (SymIRON) .(...) - LEGACY_SYMIRON

O64 - Services: CurCS - (.not file.) - Symantec Vista Network Dispatch Driver (SYMTDIv) .(...) - LEGACY_SYMTDIV

O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP

O64 - Services: CurCS - C:\Windows\System32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG

O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\udfs.sys - udfs (udfs) .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS

O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\viaide.sys - viaide (viaide) .(.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) - LEGACY_VIAIDE

O64 - Services: CurCS - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\volsnap.sys - Volumes de stockage (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\vsmraid.sys - vsmraid (vsmraid) .(.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) - LEGACY_VSMRAID

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\vwififlt.sys - Virtual WiFi Filter Driver (vwififlt) .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT

O64 - Services: CurCS - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\wd.sys - Pilote du Minuteur de surveillance Microsoft (Wd) .(.Microsoft Corporation - Microsoft Watchdog Timer Driver.) - LEGACY_WD

O64 - Services: CurCS - C:\Windows\System32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\wfplwf.sys - WFP Lightweight Filter (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF

O64 - Services: CurCS - C:\Windows\System32\drivers\WudfPf.sys - User Mode Driver Frameworks Platform Driver (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF

 

 

 

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Minefield.) -- C:\Program Files (x86)\Minefield\firefox.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Minefield.) -- C:\Program Files (x86)\Minefield\firefox.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

 

 

 

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Minefield>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Minefield.) -- C:\Program Files (x86)\Minefield\firefox.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

 

 

 

---\\ Search Browser Infection (O69)

O69 - SBI: SearchScopes [HKCU] {4FC1B895-E129-4345-B101-CF4EF5EF80C8} - (Google) - Rirefun : moteur de recherche

O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - Google

O69 - SBI: SearchScopes [HKCU] {7AF68011-0057-443F-B29B-A7F80A3E60AE} - (Bing) - Bing

O69 - SBI: SearchScopes [HKCU] {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} - (DAEMON Search) - DAEMON-Search.com :: EXPLORE

 

 

 

---\\ Firewall Active Exception List (FirewallRules) (O87)

O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)

O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)

O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.)

O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)

O87 - FAEL: "RemoteSvcAdmin-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)

O87 - FAEL: "{F983178C-4D57-4156-AB4E-C746DB507E0A}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files (x86)\Microsoft Office\Office12\ONENOTE.exe

O87 - FAEL: "{6E3576D6-C625-4A0A-A4BA-F6F1C45BC76F}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files (x86)\Microsoft Office\Office12\ONENOTE.exe

O87 - FAEL: "{B1A95725-1BDA-4747-9CED-9C4EB30EA118}" | In - None - P17 - TRUE | .(.CyberLink Corp. - PowerDirector.) -- C:\Program Files (x86)\CyberLink\PowerDirector\PDR.exe

O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe

O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe

O87 - FAEL: "{54696515-FDB6-4427-8144-DAE9F4325510}" | In - None - P6 - TRUE | .(.CyberLink Corp. - PowerDVD 8.0.) -- C:\Program Files (x86)\CyberLink\PowerDVD8\PowerDVD8.exe

O87 - FAEL: "{F8F88C20-1FBB-4885-86E0-BAD4414FB99B}" |In - Private - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)

O87 - FAEL: "TCP Query User{81ECFFBF-2295-4159-A7DF-973A114E35A0}C:\program files (x86)\emule\emule.exe" | In - Public - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe

O87 - FAEL: "UDP Query User{1D0288A6-3D97-4487-BBD3-721DFBB2185A}C:\program files (x86)\emule\emule.exe" | In - Public - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe

O87 - FAEL: "{270E9D80-9A5E-450D-A4A7-7D55E3219B3C}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

O87 - FAEL: "{9018E42A-DF5D-4FDF-B80D-7681224D06C4}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files (x86)\Windows Live\Messenger\livecall.exe

O87 - FAEL: "{AB3F1CBA-6245-4FF6-BCD7-ECB278DE8E11}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

O87 - FAEL: "{DF04A614-AC1A-4A76-8AD0-5E0F4F09B256}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files (x86)\Windows Live\Messenger\livecall.exe

 

 

 

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SR - | Auto 02/03/2009 89600 | (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe

SR - | Auto 02/03/2009 0 | (AMD External Events Utility) . (.AMD.) - C:\Windows\system32\atiesrxx.exe

SR - | Auto 10/01/2011 135336 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

SR - | Auto 10/01/2011 267944 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

SS - | Demand 07/08/2010 69120 | (Boonty Games) . (.BOONTY.) - C:\Program Files (x86)\Common Files\BOONTY Shared\Service\Boonty.exe

SR - | Demand 05/05/2009 228408 | (Com4QLBEx) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe

SS - | Demand 06/06/2009 250616 | (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe

SS - | Demand 21/09/2010 182768 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

SR - | Auto 24/09/2009 125440 | (HP Health Check Service) . (.Hewlett-Packard.) - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe

SR - | Demand 30/04/2009 229944 | (hpqwmiex) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

SS - | Demand 03/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

SR - | Auto 20/08/2009 73728 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

SR - | Auto 06/07/2009 247152 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe

SR - | Auto 22/07/2009 240128 | (STacSV) . (.IDT, Inc..) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe

 

 

 

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, GMER - Rootkit Detector and Remover

Run by San at 19/03/2011 14:24:12

 

device: opened successfully

user: error reading MBR

 

Disk trace:

error: Read Descripteur non valide

kernel: error reading MBR

 

 

 

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

Written by ad13, http://ad13.geekstog

Run by San at 19/03/2011 14:24:14

Use the desktop link 'MBRCheck' to have full report

Dump file Name : C:\PhysicalDisk0_MBR.bin

 

 

 

---\\ Liste des émulateurs de CD/DVD (Hook du MBR)

O42 - Logiciel: DAEMON Tools Toolbar - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Toolbar

O58 - SDL:[MD5.1A0000000000000000000000F0EF1800] - 01/09/2010 - 00:00:00 ---A- . (...) -- C:\Windows\system32\drivers\sptd.sys [834544]

 

 

 

End of the scan (1130 lines in 03mn 01s)(0)

[argana]

on peu me dire si je me suis trompé d'endrois pour poster mon message ? je n'ai aucune aide bizarre!!!! dois je le deplacer ?

[bernard53]

Bonjour

 

Pas grand chose dans le rapport mais fait ceci.

 

 

* Copie le tout le texte présent dans l'encadré ci-dessous (tu le sélectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C)

O3 - Toolbar: DAEMON Tools Toolbar [64Bits] - {32099AAC-C132-4136-9E9A-4E364A424E17} . (.Pas de propriétaire - ToolBand Module.) -- C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll

O42 - Logiciel: DAEMON Tools Toolbar - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Toolbar

[HKCU\Software\PopCap]

[HKLM\Software\Boonty]

[HKLM\Software\FCTB000063009]

O43 - CFD: 07/08/2010 - 11:07:02 - [22157] ----D- C:\ProgramData\BOONTY

O43 - CFD: 25/07/2010 - 00:04:46 - [14] ----D- C:\ProgramData\PopCap Games

O43 - CFD: 26/07/2010 - 20:35:42 - [121] ----D- C:\Users\San\AppData\Roaming\OfferBox

O43 - CFD: 13/03/2011 - 17:14:50 - [72] ----D- C:\Users\San\AppData\Roaming\PriceGong

O43 - CFD: 14/03/2011 - 12:56:36 - [13875] ----D- C:\Program Files (x86)\ConduitEngine

O43 - CFD: 13/03/2011 - 16:14:38 - [532064] ----D- C:\Program Files (x86)\Conduit

FirewallRaz

EmptyFlash

Emptytemp

 

Puis Lance ZHPFix depuis le raccourci du bureau.

 

* Une fois l'outil ZHPFix ouvert, clique sur le bouton [H] ("coller les lignes Helper").

 

* Dans l'encadré principal tu verras donc les lignes que tu as copié précédemment qui apparaitront.

 

Vérifie :

- que toutes les lignes que je t'ai demandé de copier (et seulement elles) sont dans la fenêtre.

- que les lignes soient disposées les unes en dessous des autres.

 

* Puis clique sur le bouton [OK].

> À ce moment là, il apparaitra au début de chaque ligne une petite case vide. Ne touche plus à rien !

 

!! Déconnecte toi d'internet, désactive tes défenses (anti-virus, anti-spyware) et ferme bien toutes autres applications (navigateurs compris) !!

 

 

* Clique sur le bouton [Tous]. Vérifies que toutes les lignes soient bien cochées.

 

* Enfin clique sur le bouton [Nettoyer].

 

 

-> laisse travailler l'outil et ne touche à rien ...

 

 

Une fois terminée, un nouveau rapport s'affiche : copie/colle le contenu de ce dernier dans ta prochaine réponse ...

 

(ce rapport est en outre sauvegardé dans ce dossier > C:\Program files\ZHPDiag\ZHPFixReport.txt)

 

 

Important : s'il t'est demandé de redémarrer le PC pour finir le nettoyage, fais le de suite !

 

 

Ensuite ceci

 

Installe Malewarebytes' Antimalware,

 

Malwarebytes

 

Prends bien la version FREE

 

*** Met-le à jour puis choisi, Exécuter un examen complet

 

*** Si une infection est trouvée, coche la case a coté et valides avec l’Onglet Supprimer la sélection

 

Poste le rapport final.

 

 

Ensuite dis moi c'est toi qui as mis " MessFrance.com" en page d'acceuil

 

Puis perso je ne crois pas que le soucis vienne d'un intrus mais à suivre.

 

[argana]

merci beaucoup je vais suivre les instructions, par contre pour ce qui est de la question si c'est moi qui est mi messfrance en page d'acceuil , la reponse est non!

[bernard53]

merci beaucoup je vais suivre les instructions, par contre pour ce qui est de la question si c'est moi qui est mi messfrance en page d'acceuil , la reponse est non!

 

OK alors pour messfrance tu feras ceci en complément s.t.p

 

 

* Copie le tout le texte présent dans l'encadré ci-dessous (tu le sélectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MessFrance.com

R0 - HKUS\S-1-5-21-512403285-1079311878-3067351514-1001\Software\Microsoft\Internet Explorer\Main,Start Page = MessFrance.com

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Rirefun : moteur de recherche

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com

 

Puis Lance ZHPFix depuis le raccourci du bureau.

 

* Une fois l'outil ZHPFix ouvert, clique sur le bouton [H] ("coller les lignes Helper").

 

* Dans l'encadré principal tu verras donc les lignes que tu as copié précédemment qui apparaitront.

 

Vérifie :

- que toutes les lignes que je t'ai demandé de copier (et seulement elles) sont dans la fenêtre.

- que les lignes soient disposées les unes en dessous des autres.

 

* Puis clique sur le bouton [OK].

> À ce moment là, il apparaitra au début de chaque ligne une petite case vide. Ne touche plus à rien !

 

!! Déconnecte toi d'internet, désactive tes défenses (anti-virus, anti-spyware) et ferme bien toutes autres applications (navigateurs compris) !!

 

 

* Clique sur le bouton [Tous]. Vérifies que toutes les lignes soient bien cochées.

 

* Enfin clique sur le bouton [Nettoyer].

 

 

-> laisse travailler l'outil et ne touche à rien ...

 

 

Une fois terminée, un nouveau rapport s'affiche : copie/colle le contenu de ce dernier dans ta prochaine réponse ...

 

(ce rapport est en outre sauvegardé dans ce dossier > C:\Program files\ZHPDiag\ZHPFixReport.txt)

 

 

Important : s'il t'est demandé de redémarrer le PC pour finir le nettoyage, fais le de suite !

[argana]

bonjour,

 

voici le premier rapport, merci!

 

Rapport de ZHPFix 1.12.3260 par Nicolas Coolman, Update du 11/03/2011

Fichier d'export Registre :

Run by San at 20/03/2011 15:51:50

Windows 7 Home Premium Edition, 64-bit (Build 7600)

Web site : ZHPFix Fix de rapport

Contact : nicolascoolman@yahoo.fr

 

========== Clé(s) du Registre ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}] => Clé supprimée avec succès

[HKCR\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}] => Clé supprimée avec succès

HKCU\Software\PopCap => Clé supprimée avec succès

HKLM\Software\Boonty => Clé absente

HKLM\Software\FCTB000063009 => Clé absente

 

========== Valeur(s) du Registre ==========

O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} . (.Pas de propriétaire - ToolBand Module.) -- C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll => Valeur supprimée avec succès

FirewallRaz : Aucune valeur présente dans la clé de registre "Standard Profile"

FirewallRaz : Aucune valeur présente dans la clé de registre "Domain Profile"

FirewallRaz (Domain) : FPS-SpoolSvc-In-TCP-NoScope => Valeur supprimée avec succès

FirewallRaz (Public) : FPS-SpoolSvc-In-TCP => Valeur supprimée avec succès

FirewallRaz (Domain) : CoreNet-GP-LSASS-Out-TCP => Valeur supprimée avec succès

FirewallRaz (Domain) : RemoteSvcAdmin-In-TCP-NoScope => Valeur supprimée avec succès

FirewallRaz (Public) : RemoteSvcAdmin-In-TCP => Valeur supprimée avec succès

FirewallRaz (Domain) : NetPres-In-TCP-NoScope => Valeur supprimée avec succès

FirewallRaz (Domain) : NetPres-Out-TCP-NoScope => Valeur supprimée avec succès

FirewallRaz (None) : NetPres-WSD-In-UDP => Valeur supprimée avec succès

FirewallRaz (None) : NetPres-WSD-Out-UDP => Valeur supprimée avec succès

FirewallRaz (Public) : NetPres-In-TCP => Valeur supprimée avec succès

FirewallRaz (Public) : NetPres-Out-TCP => Valeur supprimée avec succès

FirewallRaz (Private) : {F8F88C20-1FBB-4885-86E0-BAD4414FB99B} => Valeur supprimée avec succès

FirewallRaz (None) : {EA6C2E7E-A096-4E71-870D-8ACF4EED2846} => Valeur supprimée avec succès

FirewallRaz (None) : {45C4A309-CBFE-4FEF-B263-3AB0C16364C5} => Valeur supprimée avec succès

FirewallRaz (None) : {E0181117-D360-4EF3-8832-9C7367F39B1A} => Valeur supprimée avec succès

 

========== Dossier(s) ==========

Dossiers temporaires Windows supprimés: 74

 

========== Fichier(s) ==========

Fichiers temporaires Windows supprimés : 83

 

========== Logiciel(s) ==========

O42 - Logiciel: DAEMON Tools Toolbar - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Toolbar => Logiciel déjà supprimé

 

 

========== Récapitulatif ==========

5 : Clé(s) du Registre

18 : Valeur(s) du Registre

1 : Dossier(s)

1 : Fichier(s)

1 : Logiciel(s)

 

 

End of the scan

[argana]

le deuxieme rapport apres malwarebytes

 

Malwarebytes' Anti-Malware 1.50.1.1100

www.malwarebytes.org

 

Version de la base de données: 5363

 

Windows 6.1.7600

Internet Explorer 8.0.7600.16385

 

20/03/2011 17:37:17

mbam-log-2011-03-20 (17-37-17).txt

 

Type d'examen: Examen complet (C:\|D:\|E:\|)

Elément(s) analysé(s): 374084

Temps écoulé: 45 minute(s), 41 seconde(s)

 

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 0

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 0

Fichier(s) infecté(s): 1

 

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Clé(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

 

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

 

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

 

Dossier(s) infecté(s):

(Aucun élément nuisible détecté)

 

Fichier(s) infecté(s):

c:\Users\San\downloads\skypesetupfull.exe (Spyware.Banker) -> Quarantined and deleted successfully.

 

 

 

merci!!!

[bernard53]

ok tu as relancer ZHPfix pour supprimer "MessFrance.com " comme nommé plus haut

 

 

Ensuite dis moi comment va ton pc s.t.p

[argana]

et voilà le dernier rapport

Rapport de ZHPFix 1.12.3260 par Nicolas Coolman, Update du 11/03/2011

Fichier d'export Registre : C:\ZHPExportRegistry-20-03-2011-19-32-23.txt

Run by San at 20/03/2011 19:32:23

Windows 7 Home Premium Edition, 64-bit (Build 7600)

Web site : ZHPFix Fix de rapport

Contact : nicolascoolman@yahoo.fr

 

========== Elément(s) de donnée du Registre ==========

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MessFrance.com => Donnée supprimée avec succès

R0 - HKUS\S-1-5-21-512403285-1079311878-3067351514-1001\Software\Microsoft\Internet Explorer\Main,Start Page = MessFrance.com => Donnée supprimée avec succès

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Rirefun : moteur de recherche => Donnée supprimée avec succès

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com => Donnée supprimée avec succès

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com => Donnée supprimée avec succès

 

 

========== Récapitulatif ==========

5 : Elément(s) de donnée du Registre

 

 

End of the scan

 

j'ai ressayé pour faire fonctionné ma web cam sur msn toujours le meme probleme , et pareil pour l'instalation de skype ca ne veut pas finir l'instal

apparement le probleme serai ailleurs , peu etre dans ma configuration ? ou des fichiers effacé par erreur !!!

merci pour ton aide , ca a comme meme fait je pense un bon nettoyage!