Plantages de mon PC (principalement Java)

[oneill76]

Bonsoir a tous et toutes .

 

 

Je rencontre divers problemes .

 

Le premier un plantage complet de java et une impossibilité de le mettre a jour.

Lorsque je supprime un Programme la petite fenetre que je pense etre une fenetre java s'ouvre pour me dire le temps de suppression et le fichier cette fenetre plante et je suis obliger d'arreter le processus pour pouvoir recuperer les commandes .

A oui Il ne m'est plus possbile d'activer le pare feu windows /// AU secourrrrss

Je me tient a votre disposition pour tout complement d'informations et de données .

Merci d'avance au zebulon-sauveteur

 

Alex

 

 

 

 

Version du plugin

5,1,0,4

Version de la base

17

Date de la detection

28/03/2011 20:12

Nom de la machine

PC-de-nicolasal

Système d'exploitation

Windows Vista Edition Familiale Premium (build 6002) Service Pack 2

Navigateur web par défaut: Mozilla Firefox

Client e-mail par défaut: Windows Mail

Client de groupes de discussions par défaut: Windows Mail

Antispyware:Windows Defender 1.1.1505.0

Carte mère

SMBios version 2.4

Wistron 30CE 80.52

Bios: Phoenix F.2E 12/01/2008 taille: 1024Kb

Chipset

Northbridge: Intel PM965

Southbridge: Intel 82801HBM (ICH8-ME)

Processeur

Intel Mobile Core 2 Duo T5750 Merom Socket P (478) (@65 nm) 2000 Mhz ( L1I: 2 x 32 Ko, L1D: 2 x 32 Ko, L2: 2048 Ko )

Mémoire

Mémoire physique totale: 3072 Mo, Type: DDR2, @332.5MHz, 5.0-5-5-15--1T

DDR2 Micron Technology 16HTF25664HY-667E1 2048 Mo PC2-5300 (333 Mhz)

DDR2 Hyundai Electronics HYMP512S64CP8-Y5 1024 Mo PC2-5300 (333 Mhz)

Carte graphique

NVIDIA GeForce 8400M GS (G86M,,128 Mo)

Périphériques IDE

WDC WD3200BEVT-60ZCT0 12.01A12 (SATA II, 298.09 Go, tampon: 8 Mo)

Lecteurs CD/DVD

Optiarc DVD RW AD-7561A GH09 (DVD-RAM Recorder)

Disque dur

WDC WD3200BEVT-60ZCT0

Cartes PCI/AGP

Stockage

Intel Corporation:82801HBM/HEM (ICH8M/ICH8M-E) IDE Controller:

Intel Corporation:82801HBM/HEM (ICH8M/ICH8M-E) SATA AHCI Controller:

 

Réseau

Marvell Technology Group Ltd.:88E8039 PCI-E Fast Ethernet Controller:

Intel Corporation:PRO/Wireless 4965 AG or AGN [Kedron] Network Connection: PRO/Wireless 4965 AG or AGN

 

Affichage

nVidia Corporation:G86 [GeForce 8400M GS]:

 

Multimedia

Intel Corporation:82801H (ICH8 Family) HD Audio Controller:

 

Ponts

Intel Corporation:Mobile PM965/GM965/GL960 Memory Controller Hub:

Intel Corporation:Mobile PM965/GM965/GL960 PCI Express Root Port

Intel Corporation:82801H (ICH8 Family) PCI Express Port 1

Intel Corporation:82801H (ICH8 Family) PCI Express Port 2

Intel Corporation:82801H (ICH8 Family) PCI Express Port 3

Intel Corporation:82801H (ICH8 Family) PCI Express Port 4

Intel Corporation:82801 Mobile PCI Bridge

Intel Corporation:82801HEM (ICH8M) LPC Interface Controller:

 

Système

Ricoh Co Ltd:R5C822 SD/SDIO/MMC/MS/MSPro Host Adapter:

Ricoh Co Ltd:R5C843 MMC Host Controller:

Ricoh Co Ltd:R5C592 Memory Stick Bus Host Adapter:

Ricoh Co Ltd:xD-Picture Card Controller:

 

Bus Series

Intel Corporation:82801H (ICH8 Family) USB UHCI Controller #4:

Intel Corporation:82801H (ICH8 Family) USB UHCI Controller #5:

Intel Corporation:82801H (ICH8 Family) USB2 EHCI Controller #2:

Intel Corporation:82801H (ICH8 Family) USB UHCI Controller #1:

Intel Corporation:82801H (ICH8 Family) USB UHCI Controller #2:

Intel Corporation:82801H (ICH8 Family) USB UHCI Controller #3:

Intel Corporation:82801H (ICH8 Family) USB2 EHCI Controller #1:

Intel Corporation:82801H (ICH8 Family) SMBus Controller:

Ricoh Co Ltd:R5C832 IEEE 1394 Controller:

Périphérique USB

Hewlett-Packard Wireless (Bluetooth + WLAN) Interface [integrated Module]

Microsoft Corp. Microsoft USB Wireless Mouse (IntelliPoint) (Périphérique d'interface utilisateur USB)

Chicony Electronics Co., Ltd VGA 30fps UVC Webcam (Périphérique USB composite)

Chicony Electronics Co., Ltd VGA 30fps UVC Webcam (Périphérique vidéo USB)

Clavier

Standard 101/102-Key or Microsoft Natural PS/2 Keyboard with HP QLB

Périphérique clavier PIH

Souris

Alps Pointing-device (2-way)

Souris HID

Ecran

Moniteur Plug-and-Play générique(AUO )

Modifié le 28 mars 2011 par oneill76

[Tonton]

Salut oneill76,

 

1. Désinstalle Java :

 

2. Réinstalle-le à partir du site officiel :

 

Si cette manip ne donne rien, ns passerons à autre chose.

 

@+,

Tonton

[oneill76]

MErci Tonton

 

APparament java refonctionne et la suppression des fichiers aussi /// meme si un ficier de 30ko met 6 secondes a s'effacer... ^^

 

PAr compte toujours pas moyen de reactiver le pare feu

 

*cordialement

 

Alex

[Tonton]

On va faire la vérification suivante :

 

Démarre une invite de commandes en mode administrateur ainsi :

• 
   
  
• Clique sur Démarrer/(Tous les)Programmes/Accessoires > clique droit sur Invite de commandes > choisis "Exécuter en tant qu'Administrateur"
  
• Dans la fenêtre noire qui s'ouvre, copie-colle la commande suivante puis appuie sur la touche [Entrée] : sfc /verifyonly
  
• L'analyse du système démarre et peut durer plus ou moins longtemps, notamment en fonction des performances de ton PC
  
• Tu peux suivre la progression de la tâche en surveillant le % d'avancement affiché
  --> merci de poster dans ta prochaine réponse le message qui apparaîtra une fois la vérification terminée
  

A te lire,

Tonton

Modifié le 28 mars 2011 par Tonton57

[oneill76]

bon j'ai parler trop vite ... la suppression de fichier c'est une horreur pas moyen de faire comme avant ca rame mais ca rame ^^

 

voici le resultat du scan

 

 

La protection des ressources Windows a trouvé des violations d'intégrité. Des

détails sont fournis dans le journal CBS.Log windir\Logs\CBS\CBS.log. Par

exemple C:\Windows\Logs\CBS\CBS.log

 

 

 

voila cher Tonton

[Tonton]

OK, on passe à la suite :

 

• 
   
  
• Démarre une invite de commandes en mode administrateur ainsi : clique sur Démarrer/(Tous les)Programmes/Accessoires > clique droit sur Invite de commandes > choisis "Exécuter en tant qu'Administrateur"
  
• Dans la fenêtre noire qui s'ouvre, copie-colle la commande suivante puis appuie sur la touche [Entrée] : sfc /scannow
  
• L'analyse du système démarre et peut durer plus ou moins longtemps, notamment en fonction des performances de ton PC
  
• Une fois l'analyse terminée, Windows t'informe s'il a pu réparer ou non, et te demande de redémarrer le PC pour achever la réparation.
  --> merci de m'indiquer si tu constates une amélioration à la suite des réparations entreprises
  

@+,

Tonton

[oneill76]

La protection des ressources Windows a trouvé des fichiers endommagés et a pu

les réparer. Des détails sont fournis dans le journal CBS.Log

windir\Logs\CBS\CBS.log. Par exemple C:\Windows\Logs\CBS\CBS.log

 

Voila bon y'a un peu de mieux mais c'est toujours pas ca

[Tonton]

Bon, on continue :

 

• Télécharge ZHPDiag de Nicolas Coolman :
  
• Enregistre le sur ton bureau
  - Sous XP : double-clique sur l'icône
  - Sous Vista ou Windows 7 : clique droit sur l’icône puis « exécuter en tant qu’administrateur »
  
• Suis les instructions à l'écran
  
• Clique sur l'icône LOUPE pour lancer l'analyse
  
• Clique sur l'icône APPAREIL PHOTO pour copier le rapport, puis colle-le dans ta prochaine réponse
  
• Tu peux également trouver le rapport sous C:\Program Files\ZebHelpProcess\ZHPDiag.txt

@+,

Tonton

[oneill76]

Rapport de ZHPDiag v1.27.1845 par Nicolas Coolman, Update du 28/03/2011

Run by nicolas alexis at 28/03/2011 22:56:11

Web site : ZHPDiag Outil de diagnostic

 

 

---\\ Web Browser

MSIE: Internet Explorer v8.0.6001.19019

MFIE: Mozilla Firefox v3.6.16 (fr) (Defaut)

GCIE: Google Chrome v10.0.648.204

 

---\\ System Information

Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)

Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel

Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 3069 MB (47% free)

System Restore: Activé (Enable)

System drive C: has 72 GB (25%) free of 287 GB

 

---\\ Logged in mode

Computer Name: PC-DE-NICOLASAL

User Name: nicolas alexis

All Users Names: nicolas alexis, Administrateur,

Unselected Option: O45,O61,O62,O65,O66,O82

Logged in as Administrator

 

---\\ Environnement Variables

%AppData%=C:\Users\nicolas alexis\AppData\Roaming

%LocalAppData%=C:\Users\nicolas alexis\AppData\Local

%StartMenu%=C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Windows\Start Menu

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 72 Go of 287 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 11 Go)

E:\ CD-ROM drive (Free 0 Go of 1 Go)

 

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: Modified

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

 

 

 

---\\ Recherche particulière de fichiers génériques

[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 07:27:36.) -- C:\Windows\Explorer.exe [2926592]

[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 03:23:42.) -- C:\Windows\System32\Wininit.exe [96768]

[MD5.74BCC23D622F32DA0450D164735ACAB1] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/12/2010 07:27:04.) -- C:\Windows\System32\wininet.dll [916480]

[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 07:28:13.) -- C:\Windows\System32\Winlogon.exe [314368]

[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 07:32:26.) -- C:\Windows\System32\drivers\atapi.sys [19944]

[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/04/2009 07:32:49.) -- C:\Windows\System32\drivers\ntfs.sys [1083880]

 

 

 

---\\ Processus lancés

[MD5.F08A76C5E56BDB6F98F41BD22A4692E1] - (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files\Hp\QuickPlay\QPService.exe [468264]

[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe [1008184]

[MD5.CB4EE42EE2D33A58EFD48C276B683663] - (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [480560]

[MD5.B8AF02700299CD308046BB9339165813] - (.Hewlett-Packard Development Company, L.P. - Module to process WiFi messages..) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [311296]

[MD5.9AEF1107109189F955192D4B714B516C] - (.France Telecom SA - Pas de description.) -- C:\Program Files\OrangeHSS\Systray\SystrayApp.exe [90112]

[MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [209153]

[MD5.A91148D8F5AB52EFF43804BD60314BC2] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe [159744]

[MD5.493E320044C616CB184B8CFCF923BB1C] - (.Microsoft Corporation - LifeChat.exe.) -- C:\Program Files\Microsoft LifeChat\LifeChat.exe [267296]

[MD5.EC0BD467F62F6DCD7B2E154FAA70658A] - (.Microsoft Corporation - Windows Live Device Manager Executable.) -- C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe [787816]

[MD5.2E5212A0BFB98FE0167C92C76C87AFE3] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [249064]

[MD5.BF08674925F151BD4537B89A493E3E0C] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe [125952]

[MD5.29C12F26C6075AB69C473E1B081F4651] - (.Google Inc. - Programme d'installation de Google.) -- C:\Users\nicolas alexis\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe [134808]

[MD5.0F4195B9B348DE5CF9B822F81704B20E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\Windows\ehome\ehmsas.exe [37376]

[MD5.4BAFEB055A5D44D69DAA437BAD787663] - (.France Telecom SA - Pas de description.) -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe [90112]

[MD5.83A27BDC021979643DDE277BBA83F0C0] - (.Alps Electric Co., Ltd. - ApMsgFwd.) -- C:\Program Files\Apoint2K\ApMsgFwd.exe [50736]

[MD5.99A7B10500920E5CC79B700927B18BC1] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver for Windows NT/.) -- C:\Program Files\Apoint2K\Apntex.exe [40960]

[MD5.3B161E0C1D8F3253640D57B45FAC96DA] - (.Pas de propriétaire - HpqToaster Module.) -- C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe [677432]

[MD5.0F3FA9FDB976C567EC0491685CF4FDF7] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [912344]

[MD5.3AFF6B10C34CB8EAA6D6D5AA55193571] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856]

[MD5.61CFEDAF9C527A1463F34F71240F9BB5] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [15026056]

[MD5.2D821AFA5A1A9CA7F9F997A1AAD09E72] - (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe [168960]

[MD5.FB01838EB40925CA16D1B7E03FE01B40] - (.Solid State Networks - League of Legends skinned.launcher.) -- C:\Program Files\League of Legends\lol.launcher.exe [421888]

[MD5.63020815EEA332A61E35B8580B312D32] - (.Adobe Systems Inc. - Adobe AIR Debug Launcher.) -- C:\Program Files\League of Legends\Air\LOLClient.exe [144384]

[MD5.F5B5540FB7949907D2C5F406AD63A9AA] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [641536]

 

 

 

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)

M3 - MFPP: Plugins - [nicolas alexis] -- C:\Users\nicolas alexis\AppData\Roaming\Mozilla\Firefox\Profiles\8mgqlmkr.default\searchplugins\kiwee-live-search.xml

M3 - MFPP: Plugins - [nicolas alexis] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml

M3 - MFPP: Plugins - [nicolas alexis] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml

M3 - MFPP: Plugins - [nicolas alexis] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml

M3 - MFPP: Plugins - [nicolas alexis] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml

M3 - MFPP: Plugins - [nicolas alexis] -- C:\Program Files\Mozilla FireFox\searchplugins\MediaDICO-fr.xml

M3 - MFPP: Plugins - [nicolas alexis] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml

M3 - MFPP: Plugins - [nicolas alexis] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml

P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll

P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.0.) -- C:\Program Files\Mozilla Firefox\Plugins\np32dsw.dll

P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll

P2 - FPN:Firefox Plugin Navigator . (.DivX,Inc. - DivX Web Player version 1.4.2.7.) -- C:\Program Files\Mozilla Firefox\Plugins\npdivx32.dll

P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll

P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL

P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll

P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll

P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.0.) -- C:\Windows\system32\Adobe\Director\np32dsw.dll

P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_24 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll

P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60129.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60129.0\npctrl.dll

P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll

P2 - FPN: [HKLM] [@veoh.com/VeohTVPlugin] - (.Veoh Networks - NPVeohTVPlugin.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\NPVeohTVPlugin.dll

P2 - FPN: [HKLM] [@veoh.com/VeohWebPlayer] - (.Veoh - Veoh Web Video Player Browser Plugin.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\npWebPlayerVideoPluginATL.dll

P2 - FPN: [HKLM] [@videolan.org/vlc,version=1.1.5] - (.the VideoLAN Team - Version 1.1.5, copyright 1996-2010 The VideoLAN Team<br><a href="http:.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll

P2 - FPN: [HKLM] [@viewpoint.com/VMP] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll (.not file.)

P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Users\nicolas alexis\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll

M0 - MFSP: prefs.js [nicolas alexis - 8mgqlmkr.default] google.Fr

M2 - MFEP: prefs.js [nicolas alexis - 8mgqlmkr.default\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670}] [] iMacros for Firefox v7.0.3.0 (.iMacros Team, iOpus Software GmbH.)

M2 - MFEP: prefs.js [nicolas alexis - 8mgqlmkr.default\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}] [greasemonkey] Greasemonkey v0.8.20100408.6 (.Aaron Boodman; http://youngpup.net/.)

 

 

 

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

G1 - GCS: Preference [user Data\Default] None

G0 - GCSP: Preference [user Data\Default][HomePage] Google

G0 - GCSP: Preference [user Data\Default] Google

 

 

 

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKUS\S-1-5-21-3927338426-3503636070-3307974538-1000\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Microsoft Corporation

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R1 - HKUS\S-1-5-21-3927338426-3503636070-3307974538-1000\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = cherche.us

R1 - HKUS\S-1-5-21-3927338426-3503636070-3307974538-1000\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.cherche.usa%23fffff0%3b&q={searchterms}

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)) -- C:\Windows\system32\ieframe.dll

R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 1

 

 

 

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

 

 

 

---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

 

 

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

 

 

 

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} . (.Veoh Networks Inc - Veoh Video Finder.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll

 

 

 

---\\ ---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [QPService] . (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files\HP\QuickPlay\QPService.exe

O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe

O4 - HKLM\..\Run: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe

O4 - HKLM\..\Run: [hpWirelessAssistant] . (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

O4 - HKLM\..\Run: [WAWifiMessage] . (.Hewlett-Packard Development Company, L.P. - Module to process WiFi messages..) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe

O4 - HKLM\..\Run: [systrayORAHSS] . (.France Telecom SA - Pas de description.) -- C:\Program Files\OrangeHSS\Systray\SystrayApp.exe

O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe

O4 - HKLM\..\Run: [LifeChat] . (.Microsoft Corporation - LifeChat.exe.) -- C:\Program Files\Microsoft LifeChat\LifeChat.exe

O4 - HKLM\..\Run: [WindowsLivePhone] . (.Microsoft Corporation - Windows Live Device Manager Executable.) -- C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe

O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\nicolas alexis\AppData\Local\Google\Update\GoogleUpdate.exe

O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [MediaPlayerXv] C:\Users\nicolas alexis\AppData\Roaming\Help\svchost.exe (.not file.)

O4 - HKCU\..\Run: [WindowsLivePhone] . (.Microsoft Corporation - Windows Live Device Manager Executable.) -- C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe

O4 - HKCU\..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe (.not file.)

O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll

O4 - HKUS\S-1-5-21-3927338426-3503636070-3307974538-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\nicolas alexis\AppData\Local\Google\Update\GoogleUpdate.exe

O4 - HKUS\S-1-5-21-3927338426-3503636070-3307974538-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe

O4 - HKUS\S-1-5-21-3927338426-3503636070-3307974538-1000\..\Run: [MediaPlayerXv] C:\Users\nicolas alexis\AppData\Roaming\Help\svchost.exe (.not file.)

O4 - HKUS\S-1-5-21-3927338426-3503636070-3307974538-1000\..\Run: [WindowsLivePhone] . (.Microsoft Corporation - Windows Live Device Manager Executable.) -- C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe

O4 - HKUS\S-1-5-21-3927338426-3503636070-3307974538-1000\..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe (.not file.)

O4 - HKUS\S-1-5-21-3927338426-3503636070-3307974538-1000\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe

 

 

 

---\\ ---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe

O4 - Global Startup: C:\Users\nicolas alexis\Desktop\adsl TV.lnk . (.adsl TV / FM.) -- C:\Program Files\adslTV\adsltv.exe

O4 - Global Startup: C:\Users\nicolas alexis\Desktop\BD Gest' 7.lnk . (.BD Gest 7.) -- C:\BDGest7\BDGest.exe

O4 - Global Startup: C:\Users\nicolas alexis\Desktop\League of Legends.lnk . (.Solid State Networks.) -- C:\Program Files\League of Legends\lol.launcher.exe

O4 - Global Startup: C:\Users\nicolas alexis\Desktop\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O4 - Global Startup: C:\Users\nicolas alexis\Desktop\Ubi Soft Product Registration.lnk . (.Ubi Soft.) -- C:\Program Files\Ubi Soft\Register\register.exe

O4 - Global Startup: C:\Users\nicolas alexis\Desktop\Vos Démarches Administratives.lnk - Clé orpheline

O4 - Global Startup: C:\Users\nicolas alexis\Desktop\Windows Live Call.lnk . (...) -- C:\Program Files\Windows Live\Messenger\wlcstart.exe (.not file.)

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation.) -- C:\Windows\System32\fsquirt.exe

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Calculator.lnk . (.Microsoft Corporation.) -- C:\Windows\System32\calc.exe

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\CD Label Designer.lnk . (.Dataland Software.) -- C:\Program Files\CD Label Designer\CDLabDesigner.exe

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DOC - Raccourci.lnk . (...) -- C:\Users\nicolas alexis\Desktop\DOC

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Users\nicolas alexis\AppData\Local\Google\Chrome\Application\chrome.exe

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Notepad.lnk . (.Microsoft Corporation.) -- C:\Windows\System32\notepad.exe

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\PhotoFiltre Studio.lnk . (.Antonio Da Cruz.) -- C:\Program Files\PhotoFiltre Studio\pf-studio.exe

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\scrabbleproB.lnk . (...) -- C:\Program Files\scrabbleproB1.1\scrabblepro.exe

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Start SpeedSim.lnk . (.SpeedSim Developers.) -- C:\Program Files\SpeedSim\SpeedSim.exe

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\UltraMixer.lnk . (.UltraMixer Digital Audio Solutions.) -- C:\Program Files\UltraMixer\UltraMixer.exe

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Live Messenger .lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

 

 

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~3\Office12\EXCEL.exe

O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

 

 

 

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO

O9 - Extra button: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico

 

 

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

 

 

 

---\\ Site dans la Zone de confiance d'Internet Explorer (O15)

O15 - Trusted Zone: [HKCU\...\Domains] *.chat-land.org

O15 - Trusted Zone: [HKCU\...\Domains\www] *.chat-land.org

 

 

 

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} () - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/mjss/MJSS.cab109791.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab

 

 

 

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{F83CDABA-D43C-437F-ADA9-69AD2BEE5E56}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{F83CDABA-D43C-437F-ADA9-69AD2BEE5E56}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS3\Services\Tcpip\..\{F83CDABA-D43C-437F-ADA9-69AD2BEE5E56}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

 

 

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll

 

 

 

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)

O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll

 

 

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: (Com4Qlb) . (.Hewlett-Packard Development Company, L.P. - Com for QLB software.) - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe

O23 - Service: (FTRTSVC) . (.France Telecom SA - Pas de description.) - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe

O23 - Service: (GameConsoleService) . (.WildTangent, Inc. - GameConsoleService.) - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe

O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: (hpqwmiex) . (.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe

O23 - Service: (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: (lxdeCATSCustConnectService) . (.Lexmark International, Inc. - Lexmark Connect Service Executable.) - C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdeserv.exe

O23 - Service: (lxde_device) . (.Pas de propriétaire - Printer Communication System.) - C:\Windows\system32\lxdecoms.exe

O23 - Service: (maconfservice) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\maconfservice.exe

O23 - Service: (npggsvc) . (.INCA Internet Co., Ltd. - nProtect Game Monitor Rev 1531.) - C:\Windows\system32\GameMon.des

O23 - Service: (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 267.7.) - C:\Windows\system32\nvvsvc.exe

O23 - Service: (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe

O23 - Service: (QPCapSvc) . (.Pas de propriétaire - CLCapSvc Module.) - C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe

O23 - Service: (QPSched) . (.Pas de propriétaire - CLSched Module.) - C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe

O23 - Service: (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

O23 - Service: (Steam Client Service) . (.Valve Corporation - Steam Client Service (buildbot_winslave01_s.) - C:\Program Files\Common Files\Steam\SteamService.exe

O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe

O23 - Service: (XAudioService) . (.Conexant Systems, Inc. - Modem Audio Service.) - C:\Windows\system32\DRIVERS\xaudio.exe

 

 

 

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe

 

 

 

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3927338426-3503636070-3307974538-1000Core.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3927338426-3503636070-3307974538-1000UA.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Install_NSS.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\User_Feed_Synchronization-{B6785230-04AC-4480-A14F-41EF3D7C9065}.job

[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe

[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe

[MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskUserS-1-5-21-3927338426-3503636070-3307974538-1000Core] (.Google Inc..) -- C:\Users\nicolas alexis\AppData\Local\Google\Update\GoogleUpdate.exe

[MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskUserS-1-5-21-3927338426-3503636070-3307974538-1000UA] (.Google Inc..) -- C:\Users\nicolas alexis\AppData\Local\Google\Update\GoogleUpdate.exe

[MD5.00000000000000000000000000000000] [APT] [install_NSS] (.Pas de propriétaire.) -- C:\Users\nicolas alexis\AppData\Local\Temp\NSSstub.exe (.not file.)

[MD5.61CFEDAF9C527A1463F34F71240F9BB5] [APT] [{5A72CB8F-5E44-44D5-BADF-499FA74FF600}] (.Skype Technologies S.A..) -- C:\Program Files\Skype\Phone\Skype.exe

[MD5.61CFEDAF9C527A1463F34F71240F9BB5] [APT] [{EBE35270-4D4A-47D8-B3C2-90FF0C9525A3}] (.Skype Technologies S.A..) -- C:\Program Files\Skype\Phone\Skype.exe

 

 

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys

O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for RootKit Detection.) - C:\Windows\System32\DRIVERS\avipbb.sys

O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys

O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys

O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys

O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys

O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys

O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys

O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys

O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys

O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys

O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys

O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys

O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\System32\DRIVERS\ssmdrv.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys

O41 - Driver: (eeCtrl) . (. - .) - C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys (.not file.)

O41 - Driver: (IDSvix86) . (. - .) - C:\PROGRA~2\Symantec\DEFINI~1\SymcData\ipsdefs\20090318.001\IDSvix86.sys (.not file.)

O41 - Driver: (SPBBCDrv) . (. - .) - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys (.not file.)

 

 

 

---\\ Logiciels installés (O42)

O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07}

O42 - Logiciel: ALZip - (.ESTsoft Corp..) [HKLM] -- ALZip_is1

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin

O42 - Logiciel: Adobe Flash Player ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Reader 8.1.3 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A81300000003}

O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player

O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM] -- {1BDC9633-895B-4842-BCB6-8FA1EC2A3C5A}

O42 - Logiciel: Age of Empires III - (.Microsoft Game Studios.) [HKLM] -- InstallShield_{485775E8-AEB8-46BD-922B-242879E03DD5}

O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop

O42 - Logiciel: BD Gest' 7.0.5.5 - (.Philippe Magneron.) [HKLM] -- bdgest7_is1

O42 - Logiciel: CCleaner (remove only) - (.Pas de propriétaire.) [HKLM] -- CCleaner

O42 - Logiciel: CD Label Designer - (.Dataland Software.) [HKLM] -- CD Label Designer_is1

O42 - Logiciel: Call of Duty® 2 - (.Activision.) [HKLM] -- InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}

O42 - Logiciel: Call of Duty® 4 - Modern Warfare - (.Activision.) [HKLM] -- InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}

O42 - Logiciel: Call of Duty® 4 - Modern Warfare 1.6 Patch - (.Pas de propriétaire.) [HKLM] -- InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}

O42 - Logiciel: Call of Duty® 4 - Modern Warfare 1.7 Patch - (.Pas de propriétaire.) [HKLM] -- InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}

O42 - Logiciel: Camfrog Video Chat 5.5 - (.Camshare LC.) [HKLM] -- Camfrog 5.5

O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM] -- CNXT_AUDIO_HDA

O42 - Logiciel: Contrôle ActiveX Windows Live Mesh pour connexions à distance - (.Microsoft Corporation.) [HKLM] -- {55D003F4-9599-44BF-BA9E-95D060730DD3}

O42 - Logiciel: Counter-Strike - (.Valve.) [HKLM] -- Steam App 10

O42 - Logiciel: Counter-Strike: Source - (.Valve.) [HKLM] -- Steam App 240

O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}

O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}

O42 - Logiciel: DVD Suite - (.CyberLink Corp..) [HKLM] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}

O42 - Logiciel: Day of Defeat: Source - (.Valve.) [HKLM] -- Steam App 300

O42 - Logiciel: EA Download Manager - (.Electronic Arts, Inc..) [HKLM] -- EADM

O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {488F0347-C4A7-4374-91A7-30818BEDA710}

O42 - Logiciel: Gestionnaire de périphériques de Windows Live - (.Microsoft Corporation.) [HKLM] -- {6530EB5E-F2BE-45D3-906B-E4AFFF2D1588}

O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

O42 - Logiciel: HDAUDIO Soft Data Fax Modem with SmartCP - (.Pas de propriétaire.) [HKLM] -- CNXT_MODEM_HDAUDIO_HERMOSA_HSF

O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM] -- {BD0E2B92-3814-46F0-893B-4612EA010C7E}

O42 - Logiciel: HP Doc Viewer - (.Hewlett-Packard.) [HKLM] -- {082702D5-5DD8-4600-BCE5-48B15174687F}

O42 - Logiciel: HP Easy Setup - Frontend - (.Hewlett-Packard.) [HKLM] -- {9885A11E-60E4-417C-B58B-8B31B21C0B8A}

O42 - Logiciel: HP Help and Support - (.Hewlett-Packard.) [HKLM] -- {31216452-5540-4C96-B754-94890A63D5AB}

O42 - Logiciel: HP Integrated Module with Bluetooth wireless technology 6.0.1.5500 - (.HP.) [HKLM] -- {03D1988F-469F-4843-8E6E-E5FE9D17889D}

O42 - Logiciel: HP Quick Launch Buttons 6.30 E1 - (.Hewlett-Packard.) [HKLM] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}

O42 - Logiciel: HP QuickPlay 3.6 - (.Pas de propriétaire.) [HKLM] -- {45D707E9-F3C4-11D9-A373-0050BAE317E1}

O42 - Logiciel: HP QuickTouch 1.00 C4 - (.Hewlett-Packard.) [HKLM] -- {7DC4A410-9986-4329-9E5D-687B2C42CA39}

O42 - Logiciel: HP Total Care Advisor - (.Hewlett-Packard.) [HKLM] -- {b02df929-29a7-4fd2-9a70-81a644b635f7}

O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {7059BDA7-E1DB-442C-B7A1-6144596720A4}

O42 - Logiciel: HP User Guides 0090 - (.Nom de votre société.) [HKLM] -- {B53620C0-3A83-4F50-A7AB-175DB64C1CE3}

O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM] -- {CBAE4F50-9FC9-4557-AB36-9826DF3C103C}

O42 - Logiciel: Half-Life 2 - (.Valve.) [HKLM] -- Steam App 220

O42 - Logiciel: Half-Life 2: Episode One - (.Valve.) [HKLM] -- Steam App 380

O42 - Logiciel: Half-Life 2: Episode Two - (.Valve.) [HKLM] -- Steam App 420

O42 - Logiciel: Half-Life 2: Lost Coast - (.Valve.) [HKLM] -- Steam App 340

O42 - Logiciel: Hauppauge MCE XP/Vista Software Encoder (2.0.25149) - (.Hauppauge Computer Works, Inc..) [HKLM] -- Hauppauge MCE2005 Software Encoder

O42 - Logiciel: Hewlett-Packard Active Check - (.Hewlett-Packard.) [HKLM] -- {254C37AA-6B72-4300-84F6-98A82419187E}

O42 - Logiciel: Hewlett-Packard Asset Agent for Health Check - (.HP.) [HKLM] -- {669D4A35-146B-4314-89F1-1AC3D7B88367}

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484

O42 - Logiciel: Java 6 Update 24 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216024FF}

O42 - Logiciel: Java 6 Update 7 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160070}

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}

O42 - Logiciel: KaraFun 1.18 - (.Recisio.) [HKLM] -- KaraFun_is1

O42 - Logiciel: La Bataille pour la Terre du Milieu™ II - (.Pas de propriétaire.) [HKLM] -- {2A9F95AB-65A3-432c-8631-B8BC5BF7477A}

O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}

O42 - Logiciel: League of Legends - (.Pas de propriétaire.) [HKLM] -- League of Legends_is1

O42 - Logiciel: Left 4 Dead 2 - (.Valve.) [HKLM] -- Steam App 550

O42 - Logiciel: Left 4 Dead 2 Add-on Support - (.Valve.) [HKLM] -- Steam App 564

O42 - Logiciel: Lexmark 4800 Series - (.Lexmark International, Inc..) [HKLM] -- Lexmark 4800 Series

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}

O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF}

O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- {C523D256-313D-4866-B36A-F3DE528246EF}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {364D838A-C237-4D4D-96C1-EC61196C3DAC}

O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1

O42 - Logiciel: Marvell Miniport Driver - (.Marvell.) [HKLM] -- Marvell Miniport Driver

O42 - Logiciel: Medal of Honor débarquement allié - (.Pas de propriétaire.) [HKLM] -- {0DEA94ED-915A-4834-A87E-388D012C8E02}

O42 - Logiciel: Messenger Plus! 3 - (.Pas de propriétaire.) [HKLM] -- MsgPlus! Plugin

O42 - Logiciel: Messenger Plus! Live - (.Yuna Software.) [HKLM] -- Messenger Plus! Live

O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}

O42 - Logiciel: Microsoft LifeChat - (.Microsoft.) [HKLM] -- {66039B36-96AE-40D1-8A32-071F7A61B738}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook Connector - (.Microsoft Corporation.) [HKLM] -- {95140000-007A-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM] -- {95120000-00AF-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS

O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9}

O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}

O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}

O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {3B160861-7250-451E-B5EE-8B92BF30A710}

O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE}

O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra

O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack

O42 - Logiciel: Mozilla Firefox (3.6.16) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.16)

O42 - Logiciel: Mumble and Murmur - (.Mumble.) [HKLM] -- Mumble

O42 - Logiciel: My HP Games - (.WildTangent.) [HKLM] -- WildTangent hp Master Uninstall

O42 - Logiciel: NVIDIA Logiciel système PhysX 9.10.0514 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX

O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}

O42 - Logiciel: NVIDIA Pilote graphique 267.76 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver

O42 - Logiciel: Navigateur Orange - (.Pas de propriétaire.) [HKLM] -- {ORAHSS}.Browser

O42 - Logiciel: NetWaiting - (.BVRP Software, Inc.) [HKLM] -- {3F92ABBB-6BBF-11D5-B229-002078017FBF}

O42 - Logiciel: Norton Security Scan (Symantec Corporation) - (.Symantec Corporation.) [HKLM] -- NSSSetup.{E579F5FB-D9C9-43A6-8DCF-67B9573C2E7C}

O42 - Logiciel: Norton Security Scan - (.Symantec Corporation.) [HKLM] -- {E579F5FB-D9C9-43A6-8DCF-67B9573C2E7C}

O42 - Logiciel: Nostale(FR) - (.Gameforge 4D GmbH.) [HKLM] -- NosTale(FR)_is1

O42 - Logiciel: OGSConverter - (.OGSTeam.) [HKCU] -- OGSConverter

O42 - Logiciel: Orange - Logiciels Internet - (.Pas de propriétaire.) [HKLM] -- {ORAHSS}.UninstallSuite

O42 - Logiciel: PhotoFiltre - (.Pas de propriétaire.) [HKLM] -- PhotoFiltre

O42 - Logiciel: PhotoFiltre Studio - (.Pas de propriétaire.) [HKLM] -- PhotoFiltre Studio

O42 - Logiciel: Pirates of the Caribbean - (.Pas de propriétaire.) [HKLM] -- {D8CD2C74-A263-4A97-9346-1A39CEC49A05}

O42 - Logiciel: Power Defrag - (.Pas de propriétaire.) [HKLM] -- Power Defrag

O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}

O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}

O42 - Logiciel: QuickPlay SlingPlayer 0.4.6 - (.SlingMedia.) [HKLM] -- SlingMedia.QPSlingPlayer_is1

O42 - Logiciel: R.U.S.E. Beta - (.Ubisoft.) [HKLM] -- Steam App 33310

O42 - Logiciel: RICOH R5C83x/84x Flash Media Controller Driver Ver.3.52.02 - (.Pas de propriétaire.) [HKLM] -- {59F6A514-9813-47A3-948C-8A155460CC2A}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5C497F0B-2061-4CC9-A61C-6B45B867354D}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD769337-C8AC-46DB-A7DC-643E50089263}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2289158) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{210B16C0-CEBD-4DE9-B474-04A7E8735E16}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2344875) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6FC5C4C1-D7AE-44C3-94B7-6424FC3E752F}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{536FB502-775F-4494-BACE-C02CC90B7A5B}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7F207DCA-3399-40CB-A968-6E5991B1421A}

O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5}

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5A4E43D5-858F-49BD-BA72-8F30E1793060}

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2345035) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{B23002DD-34EC-4988-B810-A5E2A0BF04F1}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer (KB2413381) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3DED0A62-44C8-4E00-A785-5212F297A9D9}

O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3A4CDE54-2403-483D-8D9A-15E3264410DF}

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}

O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}

O42 - Logiciel: Skype™ 5.1 - (.Skype Technologies S.A..) [HKLM] -- {E633D396-5188-4E9D-8F6B-BFB8BF3467E8}

O42 - Logiciel: Solutions de télécopie Lexmark - (.Pas de propriétaire.) [HKLM] -- Lexmark Fax Solutions

O42 - Logiciel: Source SDK - (.Valve.) [HKLM] -- Steam App 211

O42 - Logiciel: Source SDK Base - (.Valve.) [HKLM] -- Steam App 215

O42 - Logiciel: SpeedSim - (.Pas de propriétaire.) [HKLM] -- SpeedSim

O42 - Logiciel: Steam - (.Valve.) [HKLM] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}

O42 - Logiciel: Stronghold - (.Pas de propriétaire.) [HKLM] -- {C917BA70-28A3-4C74-B163-41FD8C8E1A5A}

O42 - Logiciel: Stronghold 2 - (.Firefly Studios.) [HKLM] -- {16D2C649-CBA8-44EE-B730-12584667D487}

O42 - Logiciel: Stronghold Crusader - (.Pas de propriétaire.) [HKLM] -- {8C3727F2-8E37-49E4-820C-03B1677F53B6}

O42 - Logiciel: Sweet Home 3D - (.eTeks.) [HKCU] -- Sweet Home 3D

O42 - Logiciel: System Requirements Lab - (.Pas de propriétaire.) [HKLM] -- SystemRequirementsLab

O42 - Logiciel: THE SETTLERS - L'Héritage des Rois - (.Blue Byte.) [HKLM] -- {8FDC1610-3FB5-4EF2-A0D0-CEDC3A525A25}

O42 - Logiciel: Team Fortress 2 - (.Valve.) [HKLM] -- Steam App 440

O42 - Logiciel: Team Fortress 2 Beta - (.Valve.) [HKLM] -- Steam App 520

O42 - Logiciel: Team Fortress 2 Dedicated Server - (.Valve.) [HKLM] -- Steam App 310

O42 - Logiciel: TeamSpeak 2 RC2 - (.Dominating Bytes Design.) [HKLM] -- Teamspeak 2 RC2_is1

O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM] -- TeamSpeak 3 Client

O42 - Logiciel: The Settlers 7 - A L’AUBE D’UN NOUVEAU ROYAUME - (.Ubisoft.) [HKLM] -- {9C916142-C18C-429D-BFED-40094A7E0BEB}

O42 - Logiciel: Touch Pad Driver - (.Pas de propriétaire.) [HKLM] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}

O42 - Logiciel: Ubisoft Game Launcher - (.UBISOFT.) [HKLM] -- {888F1505-C2B3-4FDE-835D-36353EBD4754}

O42 - Logiciel: UltraMixer 2.3.7.1 - (.UltraMixer Digital Audio Solutions.) [HKLM] -- {32E2F180-247C-4077-B06A-20F9868568E0}_is1

O42 - Logiciel: Uniblue RegistryBooster 2010 - (.Uniblue Systems Ltd.) [HKLM] -- {E63E34A7-E552-412B-9E40-FD6FC5227ABA}_is1

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707

O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2412171) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{752A0B7C-BD24-4362-AC86-AB63FEE6F46F}

O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2508979) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D2137BBA-250B-4548-BC1C-19E5009893D7}

O42 - Logiciel: VLC media player 1.1.5 - (.VideoLAN.) [HKLM] -- VLC media player

O42 - Logiciel: Veoh Web Player Beta - (.Veoh Networks, Inc..) [HKLM] -- Veoh Web Player Beta

O42 - Logiciel: Virtual DJ - Atomix Productions - (.Pas de propriétaire.) [HKLM] -- Virtual DJ - Atomix Productions

O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite

O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}

O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {76810709-A7D3-468D-9167-A1780C1E766C}

O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {61AD15B2-50DB-4686-A739-14FE180D4429}

O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}

O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {AF844339-2F8A-4593-81B3-9F4C54038C4E}

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9D56775A-93F3-44A3-8092-840E3826DE30}

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660}

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90}

O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}

O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {92EA4134-10D1-418A-91E1-5A0453131A38}

O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}

O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}

O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}

O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}

O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}

O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}

O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}

O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {09F56A49-A7B1-4AAB-95B9-D13094254AD1}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}

O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}

O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}

O42 - Logiciel: Xvid 1.2.1 final uninstall - (.Xvid team (Koepi).) [HKLM] -- Xvid_is1

O42 - Logiciel: adsl TV - (.adsl TV / FM.) [HKLM] -- {3AFDD2C6-8663-46B5-B195-6CEB00D44768}

O42 - Logiciel: scrabbleproB 1.1.2 - (.scrabblepro.) [HKLM] -- scrabbleproB_is1

 

---\\ HKCU & HKLM Software Keys

[HKCU\Software\2015]

[HKCU\Software\ABBYY]

[HKCU\Software\ALWIL Software]

[HKCU\Software\Adobe]

[HKCU\Software\Alps]

[HKCU\Software\AppDataLow\Software\Adobe]

[HKCU\Software\AppDataLow\Software\DivXNetworks]

[HKCU\Software\AppDataLow\Software\Exent]

[HKCU\Software\AppDataLow\Software\Macromedia]

[HKCU\Software\AppDataLow\Software\Microsoft]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\Audacity]

[HKCU\Software\Avira]

[HKCU\Software\Avnex]

[HKCU\Software\BD Gest 7]

[HKCU\Software\Binary Noise]

[HKCU\Software\Bugsplat]

[HKCU\Software\Camfrog]

[HKCU\Software\Canneverbe Limited]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\Conexant]

[HKCU\Software\CyberLink]

[HKCU\Software\Dataland Software]

[HKCU\Software\Digital Reality]

[HKCU\Software\Digital River]

[HKCU\Software\DivXNetworks]

[HKCU\Software\ESET]

[HKCU\Software\EstSoft]

[HKCU\Software\Exent]

[HKCU\Software\GNU]

[HKCU\Software\Gabest]

[HKCU\Software\GameSpy]

[HKCU\Software\Google]

[HKCU\Software\HP Guide]

[HKCU\Software\Headlight]

[HKCU\Software\Hewlett-Packard]

[HKCU\Software\Hot-TV]

[HKCU\Software\IGA]

[HKCU\Software\IM Providers]

[HKCU\Software\INCAInternet]

[HKCU\Software\JEDI-VCL]

[HKCU\Software\JavaSoft]

[HKCU\Software\Lavalys]

[HKCU\Software\LexmarkFax]

[HKCU\Software\LexmarkInkjet]

[HKCU\Software\LightScribe]

[HKCU\Software\Local AppWizard-Generated Applications]

[HKCU\Software\Macromedia]

[HKCU\Software\Magnet]

[HKCU\Software\MainConcept (Muvee)]

[HKCU\Software\MainConceptMCE]

[HKCU\Software\MainConcept]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\Marseillesoft]

[HKCU\Software\Mayhem Studios]

[HKCU\Software\MediaPlayerX]

[HKCU\Software\Micro Application]

[HKCU\Software\MimarSinan]

[HKCU\Software\Moyea]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Mozilla]

[HKCU\Software\Mumble]

[HKCU\Software\NVIDIA Corporation]

[HKCU\Software\Netscape]

[HKCU\Software\Nival Online]

[HKCU\Software\ODBC]

[HKCU\Software\Orange]

[HKCU\Software\PTP]

[HKCU\Software\Parisprog]

[HKCU\Software\Patchou]

[HKCU\Software\Piriform]

[HKCU\Software\Policies]

[HKCU\Software\RECISIO]

[HKCU\Software\Rapl]

[HKCU\Software\ReflexiveArcade]

[HKCU\Software\SecuROM]

[HKCU\Software\Skype]

[HKCU\Software\Symantec]

[HKCU\Software\Sysinternals]

[HKCU\Software\TeamSpeak 3 Client]

[HKCU\Software\Trolltech]

[HKCU\Software\Ubisoft]

[HKCU\Software\Unlimited Possibilities]

[HKCU\Software\VB and VBA Program Settings]

[HKCU\Software\Valve]

[HKCU\Software\Veoh]

[HKCU\Software\VirtualDJ]

[HKCU\Software\Widcomm]

[HKCU\Software\Wizou]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\bdgest7]

[HKCU\Software\cybelsoft]

[HKCU\Software\ej-technologies]

[HKCU\Software\iMacros]

[HKCU\Software\mIRC]

[HKCU\Software\vanBasco]

[HKLM\Software\ABBYY]

[HKLM\Software\AGEIA Technologies]

[HKLM\Software\ALWIL Software]

[HKLM\Software\Activision]

[HKLM\Software\Adobe]

[HKLM\Software\Alps]

[HKLM\Software\America Online]

[HKLM\Software\Applied Networking]

[HKLM\Software\Aureal]

[HKLM\Software\Avira]

[HKLM\Software\Avnex]

[HKLM\Software\BVRP Software, Inc]

[HKLM\Software\Bethesda Softworks]

[HKLM\Software\Blue Byte]

[HKLM\Software\C07ft5Y]

[HKLM\Software\CDNetworks]

[HKLM\Software\CXT]

[HKLM\Software\Canneverbe Limited]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Conexant Systems Inc ]

[HKLM\Software\Conexant]

[HKLM\Software\Contrôle Parental]

[HKLM\Software\CyberLink]

[HKLM\Software\Debug]

[HKLM\Software\Destineer]

[HKLM\Software\DivXNetworks]

[HKLM\Software\EA GAMES]

[HKLM\Software\Electronic Arts]

[HKLM\Software\Enigma Software Productions]

[HKLM\Software\Eset]

[HKLM\Software\EstSoft]

[HKLM\Software\Even Balance]

[HKLM\Software\Exent]

[HKLM\Software\FRANCE TELECOM]

[HKLM\Software\FaxManPorts]

[HKLM\Software\Firefly Studios]

[HKLM\Software\Google]

[HKLM\Software\HPQ]

[HKLM\Software\HP]

[HKLM\Software\Hauppauge]

[HKLM\Software\Hewlett-Packard]

[HKLM\Software\InstallShield]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\K2]

[HKLM\Software\Kantaris]

[HKLM\Software\Khronos]

[HKLM\Software\LexmarkInkjet]

[HKLM\Software\Lexmark]

[HKLM\Software\LightScribe]

[HKLM\Software\Macromedia]

[HKLM\Software\MainConceptMCE]

[HKLM\Software\Malwarebytes' Anti-Malware]

[HKLM\Software\Marvell]

[HKLM\Software\MimarSinan]

[HKLM\Software\Moyea]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\Mpath]

[HKLM\Software\NOS]

[HKLM\Software\NVIDIA Corporation]

[HKLM\Software\ODBC]

[HKLM\Software\OldTimer Tools]

[HKLM\Software\PTECH]

[HKLM\Software\Patchou]

[HKLM\Software\PocketSoft]

[HKLM\Software\Policies]

[HKLM\Software\RECISIO]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\Riot Games]

[HKLM\Software\SECURITOO]

[HKLM\Software\SegaSoft]

[HKLM\Software\Skype]

[HKLM\Software\Sonic]

[HKLM\Software\SymDebug]

[HKLM\Software\Symantec]

[HKLM\Software\Thomson]

[HKLM\Software\TrendMicro]

[HKLM\Software\Trolltech]

[HKLM\Software\Ubisoft]

[HKLM\Software\Uniblue]

[HKLM\Software\Valve]

[HKLM\Software\VideoLAN]

[HKLM\Software\VirtualDJ]

[HKLM\Software\VirtualVillagers]

[HKLM\Software\Volatile]

[HKLM\Software\WOW6432Node]

[HKLM\Software\WholeSecurity]

[HKLM\Software\Widcomm]

[HKLM\Software\WildTangent]

[HKLM\Software\Windows]

[HKLM\Software\X-AVCSD]

[HKLM\Software\Yuan High-Tech]

[HKLM\Software\Yummy Interactive, Inc.]

[HKLM\Software\cybelsoft]

[HKLM\Software\ej-technologies]

[HKLM\Software\id]

[HKLM\Software\leagueoflegends]

[HKLM\Software\mozilla.org]

[HKLM\Software\muvee Technologies]

[HKLM\Software\nFlavor]

 

 

 

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 06/12/2008 - 21:00:38 - [121172483] ----D- C:\Program Files\Abbyy FineReader 6.0 Sprint

O43 - CFD: 29/05/2010 - 13:14:18 - [10693038691] ----D- C:\Program Files\Activision

O43 - CFD: 06/01/2011 - 23:55:36 - [0] ----D- C:\Program Files\Ad-Remover

O43 - CFD: 30/12/2008 - 01:45:04 - [128692608] ----D- C:\Program Files\Adobe

O43 - CFD: 02/01/2011 - 03:09:24 - [40912709] ----D- C:\Program Files\adslTV

O43 - CFD: 29/12/2009 - 23:41:48 - [17244482] ----D- C:\Program Files\Anuman Interactive

O43 - CFD: 30/07/2008 - 11:48:42 - [9648734] ----D- C:\Program Files\Apoint2K

O43 - CFD: 01/10/2009 - 22:11:46 - [157886086] ----D- C:\Program Files\Avira

O43 - CFD: 20/01/2011 - 23:25:52 - [2604382488] ----D- C:\Program Files\Bethesda Softworks

O43 - CFD: 17/09/2008 - 19:57:02 - [95798] ----D- C:\Program Files\BFG

O43 - CFD: 14/09/2008 - 23:40:50 - [31632379] ----D- C:\Program Files\Camfrog

O43 - CFD: 07/09/2008 - 20:09:48 - [1372829] ----D- C:\Program Files\CCleaner

O43 - CFD: 23/07/2010 - 22:42:04 - [7842965] ----D- C:\Program Files\CD Label Designer

O43 - CFD: 04/07/2010 - 18:58:56 - [920010278] ----D- C:\Program Files\Common Files

O43 - CFD: 25/10/2010 - 23:21:58 - [7801341] ----D- C:\Program Files\CONEXANT

O43 - CFD: 30/07/2008 - 12:05:50 - [864279394] ----D- C:\Program Files\CyberLink

O43 - CFD: 28/03/2011 - 22:31:22 - [3744736] ----D- C:\Program Files\DivX

O43 - CFD: 05/01/2011 - 02:46:12 - [31816016] ----D- C:\Program Files\Doom 3

O43 - CFD: 21/01/2011 - 02:14:26 - [7130511] ----D- C:\Program Files\DriverBoost

O43 - CFD: 03/07/2010 - 00:52:30 - [3876949574] ----D- C:\Program Files\EA GAMES

O43 - CFD: 28/03/2011 - 22:21:52 - [5525213774] ----D- C:\Program Files\Electronic Arts

O43 - CFD: 07/01/2011 - 20:07:26 - [14479530] ----D- C:\Program Files\ESET

O43 - CFD: 26/11/2008 - 17:58:52 - [12324804] ----D- C:\Program Files\ESTsoft

O43 - CFD: 02/09/2008 - 19:25:48 - [0] -SH-D- C:\Program Files\Fichiers communs

O43 - CFD: 28/12/2010 - 00:10:00 - [2409845712] ----D- C:\Program Files\FireFly Studios

O43 - CFD: 06/01/2011 - 00:30:48 - [2908752] ----D- C:\Program Files\Google

O43 - CFD: 21/03/2009 - 06:04:38 - [16901540] ----D- C:\Program Files\gPotato.eu

O43 - CFD: 16/10/2008 - 00:21:38 - [288603879] ----D- C:\Program Files\Hewlett-Packard

O43 - CFD: 09/09/2008 - 21:37:30 - [220557713] ----D- C:\Program Files\Hp

O43 - CFD: 30/07/2008 - 12:08:28 - [212662876] ----D- C:\Program Files\HP Games

O43 - CFD: 02/09/2008 - 19:30:38 - [346866] ----D- C:\Program Files\HPQ

O43 - CFD: 10/02/2011 - 23:54:16 - [217202914] --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD: 30/07/2008 - 11:51:28 - [38886554] ----D- C:\Program Files\Intel

O43 - CFD: 10/02/2011 - 23:36:40 - [5455136] ----D- C:\Program Files\Internet Explorer

O43 - CFD: 02/09/2008 - 21:35:00 - [12744618] ----D- C:\Program Files\Inventel

O43 - CFD: 28/03/2011 - 21:28:24 - [88362900] ----D- C:\Program Files\Java

O43 - CFD: 15/01/2011 - 00:59:00 - [22473293] ----D- C:\Program Files\KaraFun

O43 - CFD: 28/03/2011 - 22:13:38 - [4129940373] ----D- C:\Program Files\League of Legends

O43 - CFD: 06/12/2008 - 21:02:06 - [145026916] ----D- C:\Program Files\Lexmark 4800 Series

O43 - CFD: 06/12/2008 - 21:01:52 - [36885375] ----D- C:\Program Files\Lexmark Fax Solutions

O43 - CFD: 15/01/2011 - 01:26:40 - [13] ----D- C:\Program Files\LimeWire

O43 - CFD: 21/01/2011 - 00:56:02 - [5645820] ----D- C:\Program Files\ma-config.com

O43 - CFD: 18/01/2010 - 22:14:58 - [4190797] ----D- C:\Program Files\Malwarebytes' Anti-Malware

O43 - CFD: 15/09/2008 - 02:55:56 - [0] ----D- C:\Program Files\ManyCam 2.2

O43 - CFD: 30/07/2008 - 11:51:20 - [1626343] ----D- C:\Program Files\Marvell

O43 - CFD: 03/06/2010 - 22:42:20 - [16890615] ----D- C:\Program Files\Messenger Plus! Live

O43 - CFD: 09/01/2009 - 16:38:28 - [8300608] ----D- C:\Program Files\MessengerPlus! 3

O43 - CFD: 06/01/2011 - 01:07:44 - [1031432205] ----D- C:\Program Files\Micro Application

O43 - CFD: 20/09/2008 - 16:26:56 - [2272445116] ----D- C:\Program Files\Microsoft Games

O43 - CFD: 04/04/2010 - 02:38:24 - [5198647] ----D- C:\Program Files\Microsoft LifeChat

O43 - CFD: 04/07/2010 - 18:59:00 - [580879916] ----D- C:\Program Files\Microsoft Office

O43 - CFD: 17/03/2011 - 23:45:54 - [38371963] ----D- C:\Program Files\Microsoft Silverlight

O43 - CFD: 25/10/2010 - 23:40:04 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition

O43 - CFD: 04/07/2010 - 18:58:58 - [14904] ----D- C:\Program Files\Microsoft Visual Studio

O43 - CFD: 04/07/2010 - 18:54:58 - [1387249] ----D- C:\Program Files\Microsoft Visual Studio 8

O43 - CFD: 17/12/2010 - 04:09:42 - [145421942] ----D- C:\Program Files\Microsoft Works

O43 - CFD: 18/10/2010 - 08:40:18 - [8167779] ----D- C:\Program Files\Microsoft.NET

O43 - CFD: 16/08/2010 - 21:45:48 - [99342446] ----D- C:\Program Files\Movie Maker

O43 - CFD: 24/03/2011 - 02:47:30 - [33933554] ----D- C:\Program Files\Mozilla Firefox

O43 - CFD: 04/07/2010 - 18:59:20 - [26521] ----D- C:\Program Files\MSBuild

O43 - CFD: 03/09/2008 - 02:10:28 - [0] ----D- C:\Program Files\MSXML 4.0

O43 - CFD: 02/11/2008 - 21:59:48 - [39749117] ----D- C:\Program Files\Mumble

O43 - CFD: 16/01/2010 - 14:22:58 - [469276419] ----D- C:\Program Files\Navilog1

O43 - CFD: 06/01/2011 - 00:54:48 - [541650] ----D- C:\Program Files\Neffy

O43 - CFD: 30/07/2008 - 11:49:34 - [5215881] ----D- C:\Program Files\NetWaiting

O43 - CFD: 06/02/2010 - 22:30:04 - [0] ----D- C:\Program Files\Nobilis

O43 - CFD: 15/07/2009 - 01:47:22 - [9992698] ----D- C:\Program Files\Norton Security Scan

O43 - CFD: 04/12/2009 - 19:51:30 - [0] ----D- C:\Program Files\NortonInstaller

O43 - CFD: 26/01/2011 - 04:15:08 - [2024347895] ----D- C:\Program Files\NosTale(FR)

O43 - CFD: 28/03/2011 - 20:54:04 - [282622035] ----D- C:\Program Files\NVIDIA Corporation

O43 - CFD: 02/09/2008 - 21:51:34 - [138020142] ----D- C:\Program Files\OrangeHSS

O43 - CFD: 08/12/2008 - 04:47:56 - [3553443] ----D- C:\Program Files\PhotoFiltre

O43 - CFD: 01/10/2008 - 22:25:32 - [14086100] ----D- C:\Program Files\PhotoFiltre Studio

O43 - CFD: 17/07/2009 - 23:16:06 - [2238] ----D- C:\Program Files\Player Metaboli

O43 - CFD: 17/07/2009 - 17:18:36 - [1786252] ----D- C:\Program Files\Power Defrag

O43 - CFD: 02/11/2006 - 14:37:36 - [38694657] ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 12/09/2008 - 15:30:48 - [263274] ----D- C:\Program Files\Rockstar Games

O43 - CFD: 10/01/2011 - 23:23:38 - [5605539] ----D- C:\Program Files\scrabbleproB

O43 - CFD: 19/09/2010 - 13:37:28 - [3346479] ----D- C:\Program Files\scrabbleproB1.1

O43 - CFD: 30/07/2008 - 12:08:40 - [6553697] ----D- C:\Program Files\Services en ligne

O43 - CFD: 15/02/2011 - 02:57:26 - [15026140] R---D- C:\Program Files\Skype

O43 - CFD: 16/10/2008 - 00:16:38 - [11046808] ----D- C:\Program Files\SP39373

O43 - CFD: 02/07/2010 - 21:52:20 - [934114] ----D- C:\Program Files\SpeedSim

O43 - CFD: 17/02/2011 - 02:34:16 - [56219932674] ----D- C:\Program Files\Steam

O43 - CFD: 15/06/2010 - 23:56:56 - [396401] ----D- C:\Program Files\SystemRequirementsLab

O43 - CFD: 30/01/2011 - 19:46:42 - [30162391] ----D- C:\Program Files\TeamSpeak 3 Client

O43 - CFD: 22/07/2009 - 14:42:22 - [7829722] ----D- C:\Program Files\Teamspeak2_RC2

O43 - CFD: 17/07/2009 - 18:02:00 - [0] ----D- C:\Program Files\TeamViewer

O43 - CFD: 20/01/2011 - 23:39:42 - [1229713] ----D- C:\Program Files\Ubi Soft

O43 - CFD: 10/02/2011 - 23:54:08 - [9777169083] ----D- C:\Program Files\Ubisoft

O43 - CFD: 14/03/2009 - 02:16:50 - [112759117] ----D- C:\Program Files\UltraMixer

O43 - CFD: 21/09/2010 - 09:13:54 - [17026634] ----D- C:\Program Files\Uniblue

O43 - CFD: 02/11/2006 - 15:01:56 - [0] --H-D- C:\Program Files\Uninstall Information

O43 - CFD: 02/12/2008 - 05:01:06 - [19262875] ----D- C:\Program Files\Veoh Networks

O43 - CFD: 04/09/2008 - 16:04:44 - [80691317] ----D- C:\Program Files\VideoLAN

O43 - CFD: 04/04/2009 - 22:32:56 - [18855750] ----D- C:\Program Files\VirtualDJ

O43 - CFD: 30/07/2008 - 11:52:48 - [14355282] ----D- C:\Program Files\WIDCOMM

O43 - CFD: 02/10/2009 - 23:13:46 - [1016832] ----D- C:\Program Files\Windows Calendar

O43 - CFD: 02/10/2009 - 23:13:44 - [2737152] ----D- C:\Program Files\Windows Collaboration

O43 - CFD: 02/10/2009 - 23:13:32 - [4490624] ----D- C:\Program Files\Windows Defender

O43 - CFD: 02/10/2009 - 23:13:42 - [7084664] ----D- C:\Program Files\Windows Journal

O43 - CFD: 25/02/2011 - 23:44:00 - [154787909] ----D- C:\Program Files\Windows Live

O43 - CFD: 10/02/2011 - 23:36:40 - [9116344] ----D- C:\Program Files\Windows Mail

O43 - CFD: 15/10/2010 - 03:29:06 - [4498121] ----D- C:\Program Files\Windows Media Player

O43 - CFD: 02/09/2008 - 19:25:48 - [7957544] ----D- C:\Program Files\Windows NT

O43 - CFD: 02/10/2009 - 23:13:40 - [13528738] ----D- C:\Program Files\Windows Photo Gallery

O43 - CFD: 28/11/2009 - 05:38:36 - [134144] ----D- C:\Program Files\Windows Portable Devices

O43 - CFD: 02/10/2009 - 23:13:44 - [6527558] ----D- C:\Program Files\Windows Sidebar

O43 - CFD: 30/07/2008 - 11:46:50 - [152699] ----D- C:\Program Files\WinTV

O43 - CFD: 11/10/2008 - 21:14:04 - [0] ----D- C:\Program Files\Wyzo

O43 - CFD: 23/11/2010 - 01:37:12 - [770672] ----D- C:\Program Files\Xvid

O43 - CFD: 28/03/2011 - 22:56:20 - [6719732] ----D- C:\Program Files\ZHPDiag

O43 - CFD: 30/12/2008 - 01:45:26 - [10887811] ----D- C:\Program Files\Common Files\Adobe

O43 - CFD: 09/05/2010 - 22:29:40 - [32158176] ----D- C:\Program Files\Common Files\Adobe AIR

O43 - CFD: 04/07/2010 - 18:58:56 - [92976] ----D- C:\Program Files\Common Files\DESIGNER

O43 - CFD: 04/12/2009 - 02:55:40 - [1619968] ----D- C:\Program Files\Common Files\DivX Shared

O43 - CFD: 02/09/2008 - 21:47:12 - [7400413] ----D- C:\Program Files\Common Files\France Telecom

O43 - CFD: 21/03/2009 - 06:35:46 - [24619886] ----D- C:\Program Files\Common Files\INCA Shared

O43 - CFD: 06/03/2008 - 23:55:26 - [21427073] ----D- C:\Program Files\Common Files\InstallShield

O43 - CFD: 28/03/2011 - 21:29:36 - [36387680] ----D- C:\Program Files\Common Files\Java

O43 - CFD: 02/09/2008 - 19:30:36 - [23781466] ----D- C:\Program Files\Common Files\LightScribe

O43 - CFD: 25/02/2011 - 23:41:04 - [443811876] ----D- C:\Program Files\Common Files\microsoft shared

O43 - CFD: 02/11/2006 - 13:18:34 - [2702] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 02/11/2006 - 13:18:34 - [41101735] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 25/01/2011 - 02:48:30 - [407336] ----D- C:\Program Files\Common Files\Steam

O43 - CFD: 10/08/2009 - 23:04:46 - [0] ----D- C:\Program Files\Common Files\SWF Studio

O43 - CFD: 07/09/2009 - 23:09:48 - [10782118] ----D- C:\Program Files\Common Files\Symantec Shared

O43 - CFD: 07/07/2010 - 03:02:54 - [46328572] ----D- C:\Program Files\Common Files\System

O43 - CFD: 21/03/2009 - 14:30:10 - [195880541] ----D- C:\Program Files\Common Files\Windows Live

O43 - CFD: 03/09/2008 - 00:00:16 - [19258253] -SH-D- C:\Program Files\Common Files\WindowsLiveInstaller

O43 - CFD: 28/03/2011 - 20:54:04 - [4061696] ----D- C:\Program Files\Common Files\Wise Installation Wizard

O43 - CFD: 09/05/2010 - 22:26:20 - [764] ----D- C:\ProgramData\Adobe

O43 - CFD: 20/09/2008 - 17:33:30 - [1237] ----D- C:\ProgramData\Age of Empires 3

O43 - CFD: 01/10/2009 - 22:38:22 - [0] ----D- C:\ProgramData\AOL

O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Application Data

O43 - CFD: 01/10/2009 - 22:11:46 - [13916778] ----D- C:\ProgramData\Avira

O43 - CFD: 02/09/2008 - 19:25:48 - [0] -SH-D- C:\ProgramData\Bureau

O43 - CFD: 21/09/2010 - 09:13:28 - [0] ----D- C:\ProgramData\Canneverbe Limited

O43 - CFD: 12/09/2008 - 20:24:46 - [50432] ----D- C:\ProgramData\CyberLink

O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Desktop

O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Documents

O43 - CFD: 21/01/2011 - 02:17:54 - [1040] ----D- C:\ProgramData\DriverBoost

O43 - CFD: 31/12/2010 - 02:01:22 - [414] ----D- C:\ProgramData\Electronic Arts

O43 - CFD: 06/01/2011 - 00:28:26 - [0] ----D- C:\ProgramData\eMule

O43 - CFD: 26/11/2008 - 17:58:58 - [32] ----D- C:\ProgramData\ESTsoft

O43 - CFD: 02/09/2008 - 19:25:48 - [0] -SH-D- C:\ProgramData\Favoris

O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Favorites

O43 - CFD: 06/12/2008 - 21:00:56 - [27148] ----D- C:\ProgramData\FaxCtr

O43 - CFD: 02/09/2008 - 19:41:44 - [395349] ----D- C:\ProgramData\Hewlett-Packard

O43 - CFD: 03/09/2008 - 01:56:58 - [1623] ----D- C:\ProgramData\LightScribe

O43 - CFD: 17/03/2011 - 00:03:20 - [19881] ----D- C:\ProgramData\Lx_cats

O43 - CFD: 21/01/2011 - 00:55:58 - [1212435] ----D- C:\ProgramData\ma-config.com

O43 - CFD: 02/01/2009 - 23:00:40 - [3782928] ----D- C:\ProgramData\Malwarebytes

O43 - CFD: 02/09/2008 - 19:25:48 - [0] -SH-D- C:\ProgramData\Menu Démarrer

O43 - CFD: 21/01/2010 - 23:55:16 - [396864] ----D- C:\ProgramData\Messenger Plus!

O43 - CFD: 25/02/2011 - 23:42:06 - [67905986] -S--D- C:\ProgramData\Microsoft

O43 - CFD: 09/03/2011 - 12:26:16 - [69000] ----D- C:\ProgramData\Microsoft Help

O43 - CFD: 02/09/2008 - 19:25:48 - [0] -SH-D- C:\ProgramData\Modèles

O43 - CFD: 06/03/2008 - 23:28:50 - [0] ----D- C:\ProgramData\muvee Technologies

O43 - CFD: 04/12/2009 - 19:51:30 - [688714] ----D- C:\ProgramData\NortonInstaller

O43 - CFD: 21/07/2010 - 22:11:36 - [283] ----D- C:\ProgramData\NOS

O43 - CFD: 28/03/2011 - 20:52:52 - [138659] ----D- C:\ProgramData\NVIDIA

O43 - CFD: 16/06/2010 - 01:11:50 - [563833] ----D- C:\ProgramData\NVIDIA Corporation

O43 - CFD: 19/11/2009 - 00:44:38 - [0] ----D- C:\ProgramData\PassMark

O43 - CFD: 10/07/2009 - 22:14:48 - [9948468] ----D- C:\ProgramData\Player Metaboli

O43 - CFD: 15/01/2011 - 00:59:00 - [3582233] ----D- C:\ProgramData\Recisio

O43 - CFD: 15/02/2011 - 02:57:16 - [56619520] ----D- C:\ProgramData\Skype

O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Start Menu

O43 - CFD: 07/01/2011 - 19:48:00 - [154] ----D- C:\ProgramData\Sun

O43 - CFD: 07/09/2009 - 20:23:48 - [3784172] ----D- C:\ProgramData\Symantec

O43 - CFD: 09/12/2008 - 03:30:34 - [23166976] ----D- C:\ProgramData\Symantec Temporary Files

O43 - CFD: 19/11/2009 - 00:46:14 - [0] ---AD- C:\ProgramData\TEMP

O43 - CFD: 02/11/2006 - 15:02:06 - [0] -SH-D- C:\ProgramData\Templates

O43 - CFD: 21/01/2011 - 02:18:00 - [0] ----D- C:\ProgramData\UAB

O43 - CFD: 17/09/2008 - 02:53:56 - [828805513] ----D- C:\ProgramData\WildTangent

O43 - CFD: 23/03/2009 - 18:31:36 - [0] ----D- C:\ProgramData\WindowsSearch

O43 - CFD: 31/10/2008 - 14:56:26 - [921764] ----D- C:\ProgramData\WLInstaller

O43 - CFD: 09/05/2010 - 22:26:18 - [6136977] ----D- C:\Users\nicolas alexis\AppData\Roaming\Adobe

O43 - CFD: 29/12/2009 - 23:58:14 - [347794] ----D- C:\Users\nicolas alexis\AppData\Roaming\Anuman Interactive

O43 - CFD: 30/12/2010 - 22:51:56 - [567934] ----D- C:\Users\nicolas alexis\AppData\Roaming\Camfrog

O43 - CFD: 21/09/2010 - 09:13:34 - [1489] ----D- C:\Users\nicolas alexis\AppData\Roaming\Canneverbe Limited

O43 - CFD: 23/07/2010 - 22:55:12 - [191067] ----D- C:\Users\nicolas alexis\AppData\Roaming\CD Label Designer

O43 - CFD: 30/12/2010 - 01:08:36 - [394666] ----D- C:\Users\nicolas alexis\AppData\Roaming\Command and Conquer 4

O43 - CFD: 15/01/2010 - 03:20:10 - [827942] ----D- C:\Users\nicolas alexis\AppData\Roaming\CyberLink

O43 - CFD: 28/03/2009 - 02:17:08 - [3511] ----D- C:\Users\nicolas alexis\AppData\Roaming\dvdcss

O43 - CFD: 26/11/2008 - 17:59:06 - [288] ----D- C:\Users\nicolas alexis\AppData\Roaming\ESTsoft

O43 - CFD: 15/04/2009 - 21:33:46 - [43947] ----D- C:\Users\nicolas alexis\AppData\Roaming\FaxCtr

O43 - CFD: 04/12/2009 - 01:14:12 - [11440] ----D- C:\Users\nicolas alexis\AppData\Roaming\FOG Downloader

O43 - CFD: 11/09/2008 - 15:23:58 - [58162] ----D- C:\Users\nicolas alexis\AppData\Roaming\Gearbox Software

O43 - CFD: 04/04/2009 - 23:04:42 - [0] ----D- C:\Users\nicolas alexis\AppData\Roaming\GetRightToGo

O43 - CFD: 25/04/2010 - 10:06:58 - [3155] ----D- C:\Users\nicolas alexis\AppData\Roaming\Hamachi

O43 - CFD: 04/02/2010 - 23:29:18 - [0] RSH-D- C:\Users\nicolas alexis\AppData\Roaming\Help

O43 - CFD: 16/10/2008 - 00:21:44 - [308588] ----D- C:\Users\nicolas alexis\AppData\Roaming\Hewlett-Packard

O43 - CFD: 20/01/2011 - 02:49:28 - [4150] ----D- C:\Users\nicolas alexis\AppData\Roaming\Icones

O43 - CFD: 02/09/2008 - 19:40:22 - [0] ----D- C:\Users\nicolas alexis\AppData\Roaming\Identities

O43 - CFD: 12/10/2008 - 03:12:16 - [0] ----D- C:\Users\nicolas alexis\AppData\Roaming\InstallShield

O43 - CFD: 24/04/2010 - 19:12:48 - [72561475] ----D- C:\Users\nicolas alexis\AppData\Roaming\La Bataille pour la Terre du Milieu ™ II

O43 - CFD: 06/12/2008 - 22:27:48 - [138416] ----D- C:\Users\nicolas alexis\AppData\Roaming\Lexmark Productivity Studio

O43 - CFD: 13/05/2010 - 03:38:20 - [0] ----D- C:\Users\nicolas alexis\AppData\Roaming\LolClient

O43 - CFD: 10/05/2010 - 23:48:26 - [0] ----D- C:\Users\nicolas alexis\AppData\Roaming\LolClient.F24C99354F615F3BAB18AE7B93E3F9B9E8784FA6.1

O43 - CFD: 17/09/2008 - 01:35:08 - [274630] ----D- C:\Users\nicolas alexis\AppData\Roaming\Macromedia

O43 - CFD: 02/01/2009 - 23:00:46 - [2053316] ----D- C:\Users\nicolas alexis\AppData\Roaming\Malwarebytes

O43 - CFD: 02/11/2006 - 14:37:36 - [0] ----D- C:\Users\nicolas alexis\AppData\Roaming\Media Center Programs

O43 - CFD: 09/01/2011 - 17:19:58 - [562275799] -S--D- C:\Users\nicolas alexis\AppData\Roaming\Microsoft

O43 - CFD: 28/12/2008 - 01:41:34 - [1400563] ----D- C:\Users\nicolas alexis\AppData\Roaming\mIRC

O43 - CFD: 09/07/2009 - 16:30:26 - [21791] ----D- C:\Users\nicolas alexis\AppData\Roaming\Moyea

O43 - CFD: 23/09/2008 - 20:50:34 - [45315114] ----D- C:\Users\nicolas alexis\AppData\Roaming\Mozilla

O43 - CFD: 05/12/2008 - 20:22:04 - [42514] ----D- C:\Users\nicolas alexis\AppData\Roaming\Mumble

O43 - CFD: 24/04/2010 - 18:56:22 - [17] ----D- C:\Users\nicolas alexis\AppData\Roaming\My Battle for Middle-earth II Files

O43 - CFD: 17/09/2008 - 01:35:08 - [240] ----D- C:\Users\nicolas alexis\AppData\Roaming\PlayFirst

O43 - CFD: 21/01/2011 - 04:34:18 - [3802] ----D- C:\Users\nicolas alexis\AppData\Roaming\Power Mixer

O43 - CFD: 28/03/2011 - 22:47:12 - [109881949] ----D- C:\Users\nicolas alexis\AppData\Roaming\Skype

O43 - CFD: 02/07/2010 - 21:53:34 - [20038] ----D- C:\Users\nicolas alexis\AppData\Roaming\SpeedSim

O43 - CFD: 10/10/2008 - 14:34:44 - [63640] ----D- C:\Users\nicolas alexis\AppData\Roaming\Symantec

O43 - CFD: 15/06/2010 - 23:57:06 - [1163264] ----D- C:\Users\nicolas alexis\AppData\Roaming\SystemRequirementsLab

O43 - CFD: 18/07/2010 - 19:23:22 - [88623] ----D- C:\Users\nicolas alexis\AppData\Roaming\teamspeak2

O43 - CFD: 09/07/2009 - 16:48:46 - [12578] ----D- C:\Users\nicolas alexis\AppData\Roaming\TeamViewer

O43 - CFD: 15/09/2008 - 16:18:50 - [13824] ----D- C:\Users\nicolas alexis\AppData\Roaming\Template

O43 - CFD: 30/01/2011 - 19:47:58 - [183657] ----D- C:\Users\nicolas alexis\AppData\Roaming\TS3Client

O43 - CFD: 04/10/2008 - 14:17:22 - [3604480] ----D- C:\Users\nicolas alexis\AppData\Roaming\U3

O43 - CFD: 02/01/2011 - 03:39:38 - [2187736] ----D- C:\Users\nicolas alexis\AppData\Roaming\vlc

O43 - CFD: 03/09/2008 - 01:09:12 - [770] ----D- C:\Users\nicolas alexis\AppData\Roaming\WildTangent

 

 

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.34EF12005489447600FCFD7F08F01200] - 28/03/2011 - 21:14:27 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1233801]

O44 - LFC:[MD5.71467D9DCAE03290005E7CDE5AB079BA] - 28/03/2011 - 20:40:09 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1534210]

O44 - LFC:[MD5.62DC159AD6F77D34200EF6F7CD3429B9] - 28/03/2011 - 20:40:09 ---A- . (...) -- C:\Windows\System32\perfc009.dat [109902]

O44 - LFC:[MD5.00D7EEF5FAD7E95F4306D01747BDB8D5] - 28/03/2011 - 20:40:09 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [132866]

O44 - LFC:[MD5.8A894663F68DB05B652A5CD1828DB5CB] - 28/03/2011 - 20:40:09 ---A- . (...) -- C:\Windows\System32\perfh009.dat [608422]

O44 - LFC:[MD5.455A0A210BE318EB7790D3847D08C2D2] - 28/03/2011 - 20:40:09 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [692158]

O44 - LFC:[MD5.3529F467FCBC0505765F5479368C17FD] - 28/03/2011 - 20:33:55 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.F87BA06FE22C81CDE563761DDFBAB267] - 28/03/2011 - 20:28:30 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\deployJava1.dll [472808]

O44 - LFC:[MD5.68288DA42BC798992A42CD59061B199D] - 28/03/2011 - 20:28:30 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\java.exe [145184]

O44 - LFC:[MD5.5BF8BA1B854D7DFCE1F47E58852B3D8F] - 28/03/2011 - 20:28:30 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\javaw.exe [145184]

O44 - LFC:[MD5.58DC5CBDC930AF070B177843810F2C85] - 28/03/2011 - 20:28:30 ---A- . (.Sun Microsystems, Inc. - Java Web Start Launcher.) -- C:\Windows\System32\javaws.exe [157472]

O44 - LFC:[MD5.9DE862038CAF3716E3D396561A19E00F] - 17/03/2011 - 22:45:53 ---A- . (...) -- C:\Windows\PFRO.log [5176]

O44 - LFC:[MD5.3F0D286CFBDA7C2A82431737B63FC756] - 17/03/2011 - 10:38:00 ---A- . (...) -- C:\Windows\System32\nvinfo.pb [4756]

O44 - LFC:[MD5.0D7A4FAAF4D1A9086BF7A270B72959A3] - 17/03/2011 - 10:38:00 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.dll [57960]

O44 - LFC:[MD5.569C8F44509C4380B2F1D67918974B2E] - 17/03/2011 - 10:38:00 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\System32\nvdispco322090.dll [941160]

O44 - LFC:[MD5.51FB3F7F2B7945E23DA4E90D67DB9A2D] - 17/03/2011 - 10:38:00 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\System32\nvgenco322040.dll [837736]

O44 - LFC:[MD5.90AED50801844B80FE4F3D76C4937883] - 17/03/2011 - 10:38:00 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 267.7.) -- C:\Windows\System32\nvcuvid.dll [2895976]

O44 - LFC:[MD5.A46E4AFA508C204556DBE53A6F75DB0C] - 17/03/2011 - 10:38:00 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 267.76.) -- C:\Windows\System32\nvcuvenc.dll [2251368]

O44 - LFC:[MD5.6DE76E30C32BBC5B895B3DC1B0B912DC] - 17/03/2011 - 10:38:00 ---A- . (.NVIDIA Corporation - NVIDIA Compatible CUDA Driver, Version 267..) -- C:\Windows\System32\nvcuda.dll [4942952]

O44 - LFC:[MD5.4A667792578971EDBF563ED183B7F605] - 17/03/2011 - 10:38:00 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Compiler, Version 267.76.) -- C:\Windows\System32\nvcompiler.dll [13011560]

O44 - LFC:[MD5.23DEB3EC4E4F4597F21A88B3F35E0F2B] - 17/03/2011 - 10:38:00 ---A- . (.NVIDIA Corporation - NVIDIA Compatible D3D10 Driver, Version 267.) -- C:\Windows\System32\nvwgf2um.dll [6042216]

O44 - LFC:[MD5.367FD926EFD19AFBB49B7D0C43165F53] - 17/03/2011 - 10:38:00 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\System32\nvoglv32.dll [15047272]

O44 - LFC:[MD5.1EEC3D80688E284090F151BA0B4E16A6] - 17/03/2011 - 10:38:00 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Vista WDDM D3D Driver, Ve.) -- C:\Windows\System32\nvd3dum.dll [10079336]

O44 - LFC:[MD5.39FD56477CDDF91F79FFAFCC4EBBEA95] - 17/03/2011 - 10:38:00 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Windows Vista Kernel Mode.) -- C:\Windows\System32\drivers\nvBridge.kmd [10920]

O44 - LFC:[MD5.FD4137B9EE6533389CDF27AEC7CB977A] - 17/03/2011 - 10:38:00 ---A- . (.NVIDIA Corporation - NVIDIA NVAPI Library, Version 267.76.) -- C:\Windows\System32\nvapi.dll [1965672]

O44 - LFC:[MD5.EAB7A01791777CD40CC979C495730FAE] - 17/03/2011 - 10:38:00 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [10468712]

O44 - LFC:[MD5.1FAAF4BA5F7F4421CEF210E5482C01DC] - 17/03/2011 - 02:36:52 ---A- . (.NVIDIA Corporation - Easy daemon API.) -- C:\Windows\System32\easyUpdatusAPIU.dll [580200]

O44 - LFC:[MD5.78EEDD67D4212B411568EB6BDD0D348D] - 17/03/2011 - 02:36:48 ---A- . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\System32\nvcpl.dll [3597416]

O44 - LFC:[MD5.8E34D2DDEDCD1BA326D86D3996E280DA] - 17/03/2011 - 02:36:40 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 267.7.) -- C:\Windows\System32\nvsvc.dll [2620520]

O44 - LFC:[MD5.0852E4A94B17AF18A8438AEC4E919C07] - 17/03/2011 - 02:36:36 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 267.7.) -- C:\Windows\System32\nvsvcr.dll [2558568]

O44 - LFC:[MD5.655DFFD4692426F28DEFFA51B0CA7645] - 17/03/2011 - 02:36:36 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 267.7.) -- C:\Windows\System32\nvvsvc.exe [608872]

O44 - LFC:[MD5.632EF639F5F546409645FAB1F9B8EA80] - 17/03/2011 - 02:36:36 ---A- . (.NVIDIA Corporation - NVIDIA Hotkey Service, Version 267.76.) -- C:\Windows\System32\nvhotkey.dll [288872]

O44 - LFC:[MD5.206C7CD029A7E5C3E585453019651B4F] - 17/03/2011 - 02:36:36 ---A- . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\System32\nvmctray.dll [111208]

 

 

 

---\\ Export de clé d'application autorisée (O47)

O47 - AAKE:Key Export SP - "C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe" [Enabled] .(.France Telecom SA - Pas de description.) -- C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe

 

 

 

---\\ MountPoints2 Shell Key (O51)

O51 - MPSK:{a1b55dad-7902-11dd-bc31-806e6f6e6963}\AutoRun\command. (.Blue Byte Software, Inc. - Autorun.) -- E:\autorun.exe

 

 

 

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll

O52 - TDSD: \Drivers32\"msacm.l3codecp"="l3codecp.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Audio Layer-3 Codec for MSACM.) -- C:\Windows\System32\l3codecp.acm

O52 - TDSD: \Drivers32\"vidc.XVID"="xvidvfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\xvidvfw.dll

O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \drivers.desc\"xvidvfw.dll"="Xvid MPEG-4 Video Codec" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\xvidvfw.dll

O52 - TDSD: \drivers.desc\"l3codecp.acm"="" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Audio Layer-3 Codec for MSACM.) -- C:\Windows\System32\l3codecp.acm

 

 

 

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll

 

 

 

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

 

 

 

---\\ Microsoft Windows Policies Explorer (O56)

O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0

 

 

 

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.04F0FCAC69C7C71A3AC4EB97FAFC8303] - 21/01/2008 - 03:23:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [422968]

O58 - SDL:[MD5.60505E0041F7751BDBB80F88BF45C2CE] - 21/01/2008 - 03:23:25 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [300600]

O58 - SDL:[MD5.8A42779B02AEC986EAB64ECFC98F8BD7] - 21/01/2008 - 03:23:26 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\system32\drivers\adpu160m.sys [101432]

O58 - SDL:[MD5.241C9E37F8CE45EF51C3DE27515CA4E5] - 21/01/2008 - 03:23:27 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [149560]

O58 - SDL:[MD5.9EAEF5FC9B8E351AFA7E78A6FAE91F91] - 21/01/2008 - 03:23:00 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [17464]

O58 - SDL:[MD5.B49A709F65BF3BEAA2B03F8EC139D568] - 18/04/2007 - 13:03:26 ---A- . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\Windows\system32\drivers\Apfiltr.sys [141312]

O58 - SDL:[MD5.5D2888182FB46632511ACEE92FDAD522] - 21/01/2008 - 03:23:23 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [79416]

O58 - SDL:[MD5.5E2A321BD7C8B3624E41FDEC3E244945] - 21/01/2008 - 03:23:24 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [79928]

O58 - SDL:[MD5.72BC628AF75C4C3250F2A3BAC260265A] - 29/12/2009 - 22:58:50 ---A- . (...) -- C:\Windows\system32\drivers\atksgt.sys [278728]

O58 - SDL:[MD5.14FE36D8F2C6A2435275338D061A0B66] - 10/12/2009 - 22:30:13 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys [56816]

O58 - SDL:[MD5.AD9BD66A862116E79CB45BB6BE46055F] - 30/03/2009 - 09:32:47 ---A- . (.Avira GmbH - Avira Driver for RootKit Detection.) -- C:\Windows\system32\drivers\avipbb.sys [96104]

O58 - SDL:[MD5.CF6A67C90951E3E763D2135DEDE44B85] - 02/11/2006 - 08:30:53 ---A- . (.Broadcom Corporation - BCM 802.11g Network Adapter wireless driver.) -- C:\Windows\system32\drivers\BCMWL6.SYS [464384]

O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568]

O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248]

O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [71808]

O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336]

O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160]

O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904]

O58 - SDL:[MD5.99AEEA7CEFDFC6E4151A8F620D682088] - 18/09/2007 - 14:12:28 ---A- . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\system32\drivers\btwaudio.sys [80424]

O58 - SDL:[MD5.195872E48A7FB01F8BC9B800F70F4054] - 18/09/2007 - 14:12:28 ---A- . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\system32\drivers\btwavdt.sys [80936]

O58 - SDL:[MD5.0724E7D6C9B6A289EDDDA33FA8176E80] - 18/09/2007 - 14:12:28 ---A- . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\system32\drivers\btwrchid.sys [16168]

O58 - SDL:[MD5.4487DA7BD384CAAFA0C620B19FEA540A] - 01/10/2007 - 16:35:52 ---A- . (.Conexant Systems Inc. - High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\CHDART.sys [183352]

O58 - SDL:[MD5.B6E7991E3D6146C04C85CD31AF22A381] - 04/03/2008 - 01:32:00 ---A- . (.Conexant Systems Inc. - High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\CHDRT32.sys [188416]

O58 - SDL:[MD5.0CA25E686A4928484E9FDABD168AB629] - 21/01/2008 - 03:23:00 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [19000]

O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [71272]

O58 - SDL:[MD5.5425F74AC0C1DBD96A1E04F17D63F94C] - 21/01/2008 - 03:23:24 ---A- . (.Intel Corporation - Pilote désérialisé NDIS 6 de la carte Intel® PRO/1000.) -- C:\Windows\system32\drivers\E1G60I32.sys [118784]

O58 - SDL:[MD5.23B62471681A124889978F6295B3F4C6] - 21/01/2008 - 03:23:22 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [342584]

O58 - SDL:[MD5.7929A161F9951D173CA9900FE7067391] - 14/06/2009 - 14:24:56 ---A- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\system32\drivers\hamachi.sys [25280]

O58 - SDL:[MD5.16EE7B23A009E00D835CDB79574A91A6] - 21/01/2008 - 03:23:26 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [40504]

O58 - SDL:[MD5.35956140E686D53BF676CF0C778880FC] - 18/06/2007 - 16:12:04 ---A- . (.Hewlett-Packard Development Company, L.P. - HpqKbFiltr Keyboard Filter Driver.) -- C:\Windows\system32\drivers\HpqKbFiltr.sys [16768]

O58 - SDL:[MD5.115C0933B3ED51DFBEC4449348C8065B] - 11/07/2007 - 09:30:22 ---A- . (.Hewlett-Packard Development Company, L.P. - HP Remote Control HID Device.) -- C:\Windows\system32\drivers\HpqRemHid.sys [7168]

O58 - SDL:[MD5.A2882945CC4B6E3E4E9E825590438888] - 01/11/2007 - 07:47:54 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\HSXHWAZL.sys [208896]

O58 - SDL:[MD5.0ACD399F5DB3DF1B58903CF4949AB5A8] - 01/11/2007 - 07:47:08 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\HSX_CNXT.sys [661504]

O58 - SDL:[MD5.CC267848CB3508E72762BE65734E764D] - 01/11/2007 - 07:51:26 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\HSX_DPV.sys [985600]

O58 - SDL:[MD5.2358C53F30CB9DCD1D3843C4E2F299B2] - 13/07/2007 - 06:35:02 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\system32\drivers\iaStor.sys [305176]

O58 - SDL:[MD5.54155EA1B0DF185878E0FC9EC3AC3A14] - 21/01/2008 - 03:23:23 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [235064]

O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41576]

O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [35944]

O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [35944]

O58 - SDL:[MD5.4127E8B6DDB4090E815C1F8852C277D3] - 29/12/2009 - 22:58:50 ---A- . (...) -- C:\Windows\system32\drivers\lirsgt.sys [25416]

O58 - SDL:[MD5.C7E15E82879BF3235B559563D4185365] - 21/01/2008 - 03:23:23 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [96312]

O58 - SDL:[MD5.EE01EBAE8C9BF0FA072E0FF68718920A] - 21/01/2008 - 03:23:25 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [89656]

O58 - SDL:[MD5.912A04696E9CA30146A62AFA1463DD5C] - 21/01/2008 - 03:23:23 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [96312]

O58 - SDL:[MD5.654A3F014903DC62CAF5E037F3D316D2] - 07/01/2010 - 16:07:04 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [19160]

O58 - SDL:[MD5.C0D40BEAA6DFC05602FC8F484696F7F5] - 07/01/2010 - 16:07:14 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys [38224]

O58 - SDL:[MD5.0CEA2D0D3FA284B85ED5B68365114F76] - 19/06/2006 - 00:26:58 ---A- . (.Conexant - Diagnostic Interface x86 Driver.) -- C:\Windows\system32\drivers\mdmxsdk.sys [12672]

O58 - SDL:[MD5.0001CE609D66632FA17B84705F658879] - 21/01/2008 - 03:23:27 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [31288]

O58 - SDL:[MD5.C252F32CD9A49DBFC25ECF26EBD51A99] - 21/01/2008 - 03:23:27 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [386616]

O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [33384]

O58 - SDL:[MD5.25ACCCFC33DD448B9D3037C5E439E830] - 28/06/2007 - 16:09:56 ---A- . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\system32\drivers\NETw4v32.sys [2222080]

O58 - SDL:[MD5.8DE67BD902095A13329FD82C85A1FA09] - 17/11/2008 - 14:40:22 ---A- . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\system32\drivers\NETw5v32.sys [3668480]

O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [45160]

O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\system32\drivers\ntrigdigi.sys [20608]

O58 - SDL:[MD5.EAB7A01791777CD40CC979C495730FAE] - 17/03/2011 - 10:38:00 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 267.76.) -- C:\Windows\system32\drivers\nvlddmkm.sys [10468712]

O58 - SDL:[MD5.1657F3FBD9061526C14FF37E79306F98] - 02/11/2006 - 08:30:56 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\system32\drivers\nvm60x32.sys [429056]

O58 - SDL:[MD5.2EDF9E7751554B42CBB60116DE727101] - 21/01/2008 - 03:23:21 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [102968]

O58 - SDL:[MD5.ABED0C09758D1D97DB0042DBB2688177] - 21/01/2008 - 03:23:21 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [45112]

O58 - SDL:[MD5.1BF91F352D746AD7469FA71783B5FAE8] - 28/11/2006 - 20:46:22 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 MPR Protocol Driver.) -- C:\Windows\system32\drivers\PCAMp50.sys [28224]

O58 - SDL:[MD5.1961590AA191B6B7DCF18A6A693AF7B8] - 28/11/2006 - 20:46:20 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\Windows\system32\drivers\PCASp50.sys [27072]

O58 - SDL:[MD5.8BB94087CEF0256F5EAD973D7524BF58] - 02/06/2010 - 02:37:27 ---A- . (...) -- C:\Windows\system32\drivers\PnkBstrK.sys [22328]

O58 - SDL:[MD5.0A6DB55AFB7820C99AA1F3A1D270F4F6] - 21/01/2008 - 03:23:24 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1122360]

O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106088]

O58 - SDL:[MD5.C35CA13D3627EBD9DD12A23CE781BC3D] - 08/08/2007 - 19:42:08 ---A- . (.REDC - RICOH SD Driver.) -- C:\Windows\system32\drivers\rimmptsk.sys [45568]

O58 - SDL:[MD5.C398BCA91216755B098679A8DA8A2300] - 30/07/2007 - 09:42:58 ---A- . (.REDC - RICOH MS Driver.) -- C:\Windows\system32\drivers\rimsptsk.sys [43008]

O58 - SDL:[MD5.2A2554CB24506E0A0508FC395C4A1B42] - 30/07/2007 - 10:54:02 ---A- . (.REDC - RICOH XD SM Driver.) -- C:\Windows\system32\drivers\rixdptsk.sys [38400]

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480]

O58 - SDL:[MD5.B7018644E132A8DFB12ED90106E06739] - 03/02/2009 - 16:36:58 ---A- . (.Protection Technology (StarForce) - FrontLine Environment Driver.) -- C:\Windows\system32\drivers\sfdrv01.sys [59000]

O58 - SDL:[MD5.BFCD2450DC6EEDA02AEDC6D289CCF037] - 03/02/2009 - 16:39:23 ---A- . (.Protection Technology (StarForce) - FrontLine Environment Driver.) -- C:\Windows\system32\drivers\sfdrv01a.sys [63096]

O58 - SDL:[MD5.DAAD4C099EBF5094D32C373AC1AC0F3C] - 14/06/2006 - 15:56:56 ---A- . (.Protection Technology (StarForce) - FrontLine Helper Driver.) -- C:\Windows\system32\drivers\sfhlp02.sys [13680]

O58 - SDL:[MD5.755C933969A81D119106097AA466715D] - 03/02/2009 - 16:45:07 ---A- . (.Protection Technology (StarForce) - FrontLine Synchronization Driver.) -- C:\Windows\system32\drivers\sfsync04.sys [59520]

O58 - SDL:[MD5.A99C6C8B0BAA970D8AA59DDC50B57F94] - 21/01/2008 - 03:23:26 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [74808]

O58 - SDL:[MD5.3AD0362CF68DE3AC500E981700242CCA] - 02/10/2009 - 22:09:46 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\system32\drivers\ssmdrv.sys [28520]

O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [35944]

O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [31848]

O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [34920]

O58 - SDL:[MD5.9224BB254F591DE4CA8D572A5F0D635C] - 21/01/2008 - 03:23:20 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [238648]

O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [98408]

O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 21/01/2008 - 03:23:23 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\system32\drivers\ulsata2.sys [115816]

O58 - SDL:[MD5.AADF5587A4063F52C2C3FED7887426FC] - 21/01/2008 - 03:23:00 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [20024]

O58 - SDL:[MD5.587253E09325E6BF226B299774B728A9] - 21/01/2008 - 03:23:23 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [130616]

O58 - SDL:[MD5.46D67209550973257601A533E2AC5785] - 21/01/2008 - 03:23:22 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\VSTAZL3.SYS [200704]

O58 - SDL:[MD5.5C7BDCF5864DB00323FE2D90FA26A8A2] - 21/01/2008 - 03:23:23 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\VSTCNXT3.SYS [654336]

O58 - SDL:[MD5.EC36F1D542ED4252390D446BF6D4DFD0] - 21/01/2008 - 03:23:22 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\VSTDPV3.SYS [987648]

O58 - SDL:[MD5.DAB33CFA9DD24251AAA389FF36B64D4B] - 18/10/2007 - 05:36:54 ---A- . (.Conexant Systems, Inc. - Modem Audio Device Driver.) -- C:\Windows\system32\drivers\XAudio.sys [8704]

O58 - SDL:[MD5.04E268ADFC81964C49DC0C082D520F7E] - 06/12/2007 - 08:51:00 ---A- . (.Marvell - Miniport Driver for Marvell Yukon Ethernet Controller..) -- C:\Windows\system32\drivers\yk60x86.sys [298496]

O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029]

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (...) -- C:\Windows\system32\country.sys [27097]

O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768]

O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809]

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537]

O58 - SDL:[MD5.9131FE60ADFAB595C8DA53AD6A06AA31] - 30/12/2004 - 22:43:08 ---A- . (.INCA Internet Co., Ltd. - nProtect NPSC Kernel Mode Driver for NT.) -- C:\Windows\system32\npptNT2.sys [4682]

O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866]

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146]

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370]

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274]

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146]

O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952]

O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672]

O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776]

O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536]

O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672]

 

 

 

---\\ Liste des outils de nettoyage (O63)

O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis

O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

O63 - Logiciel: JavaRa - (.Paul McLain.)

 

 

 

---\\ Liste des services Legacy (O64)

O64 - Services: CurCS - (.not file.) - aswFsBlk (aswFsBlk) .(...) - LEGACY_ASWFSBLK

O64 - Services: CurCS - (.not file.) - aswMonFlt (aswMonFlt) .(...) - LEGACY_ASWMONFLT

O64 - Services: CurCS - (.not file.) - aswRdr (aswRdr) .(...) - LEGACY_ASWRDR

O64 - Services: CurCS - (.not file.) - avast! Self Protection (aswSP) .(...) - LEGACY_ASWSP

O64 - Services: CurCS - (.not file.) - avast! Network Shield Support (aswTdi) .(...) - LEGACY_ASWTDI

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\atksgt.sys - atksgt (atksgt) .(...) - LEGACY_ATKSGT

O64 - Services: CurCS - C:\Program Files\Avira\AntiVir Desktop\avgio.sys - avgio (avgio) .(.Avira GmbH - Avira AntiVir Support for Minifilter.) - LEGACY_AVGIO

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\avgntflt.sys - avgntflt (avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\avipbb.sys - avipbb (avipbb) .(.Avira GmbH - Avira Driver for RootKit Detection.) - LEGACY_AVIPBB

O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP

O64 - Services: CurCS - C:\Users\NICOLA~1\AppData\Local\Temp\catchme.sys (.not file.) - catchme (catchme) .(...) - LEGACY_CATCHME

O64 - Services: CurCS - (.not file.) - CO_Mon (CO_Mon) .(...) - LEGACY_CO_MON

O64 - Services: CurCS - C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys - driverhardwarev2 (driverhardwarev2) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2

O64 - Services: CurCS - (.not file.) - dump_wmimmc (dump_wmimmc) .(...) - LEGACY_DUMP_WMIMMC

O64 - Services: CurCS - (.not file.) - Symantec Eraser Control driver (eeCtrl) .(...) - LEGACY_EECTRL

O64 - Services: CurCS - (.not file.) - EraserUtilDrv10733 (EraserUtilDrv10733) .(...) - LEGACY_ERASERUTILDRV10733

O64 - Services: CurCS - (.not file.) - EraserUtilDrv10822 (EraserUtilDrv10822) .(...) - LEGACY_ERASERUTILDRV10822

O64 - Services: CurCS - (.not file.) - EraserUtilDrv10910 (EraserUtilDrv10910) .(...) - LEGACY_ERASERUTILDRV10910

O64 - Services: CurCS - (.not file.) - EraserUtilDrv10920 (EraserUtilDrv10920) .(...) - LEGACY_ERASERUTILDRV10920

O64 - Services: CurCS - (.not file.) - EraserUtilDrvI7 (EraserUtilDrvI7) .(...) - LEGACY_ERASERUTILDRVI7

O64 - Services: CurCS - (.not file.) - EraserUtilRebootDrv (EraserUtilRebootDrv) .(...) - LEGACY_ERASERUTILREBOOTDRV

O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT

O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC

O64 - Services: CurCS - (.not file.) - Symantec Intrusion Prevention Driver (IDSvix86) .(...) - LEGACY_IDSVIX86

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\lirsgt.sys - lirsgt (lirsgt) .(...) - LEGACY_LIRSGT

O64 - Services: CurCS - (.not file.) - mbr (mbr) .(...) - LEGACY_MBR

O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY

O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL

O64 - Services: CurCS - C:\Windows\System32\Drivers\PCAMp50.sys - PCAMp50 NDIS Protocol Driver (PCAMp50) .(.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 MPR Protocol Driver.) - LEGACY_PCAMP50

O64 - Services: CurCS - C:\Windows\System32\Drivers\PCASp50.sys - PCASp50 NDIS Protocol Driver (PCASp50) .(.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) - LEGACY_PCASP50

O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV

O64 - Services: CurCS - C:\Windows\System32\drivers\sfdrv01.sys - StarForce Protection Environment Driver (version 1.x) (sfdrv01) .(.Protection Technology (StarForce) - FrontLine Environment Driver.) - LEGACY_SFDRV01

O64 - Services: CurCS - C:\Windows\System32\drivers\sfhlp02.sys - StarForce Protection Helper Driver (version 2.x) (sfhlp02) .(.Protection Technology (StarForce) - FrontLine Helper Driver.) - LEGACY_SFHLP02

O64 - Services: CurCS - C:\Windows\System32\drivers\sfsync04.sys - StarForce Protection Synchronization Driver (version 4.x) (sfsync04) .(.Protection Technology (StarForce) - FrontLine Synchronization Driver.) - LEGACY_SFSYNC04

O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ssmdrv.sys - ssmdrv (ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV

O64 - Services: CurCS - (.not file.) - SYMTDI (SYMTDI) .(...) - LEGACY_SYMTDI

O64 - Services: CurCS - (.not file.) - X4Ex (X4Ex) .(...) - LEGACY_X4EX

O64 - Services: CurCS - (.not file.) - X4HSX32Ex (X4HSX32Ex) .(...) - LEGACY_X4HSX32EX

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\xaudio.sys - XAudio (XAudio) .(.Conexant Systems, Inc. - Modem Audio Device Driver.) - LEGACY_XAUDIO

 

 

 

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.France Telecom SA - Pas de description.) -- C:\Program Files\OrangeHSS\Launcher\Launcher.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

 

 

 

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

 

 

 

---\\ Search Browser Infection (O69)

O69 - SBI: prefs.js [nicolas alexis - 8mgqlmkr.default] user_pref("CT2438727.SearchEngine", "Search||http://search.conduit.com/Results.aspx?

O69 - SBI: prefs.js [nicolas alexis - 8mgqlmkr.default] user_pref("CT2438727.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2438727

O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (Bing) - Bing

O69 - SBI: SearchScopes [HKCU] {18EAB056-9057-F224-FD4C-1F6569C4D8D2} - (Ask) - Search Plus!

O69 - SBI: SearchScopes [HKCU] {294A106F-DF33-46B4-BD49-54407E347682} [DefaultScope] - (Yahoo! Search) - Yahoo! Search - Web Search

O69 - SBI: SearchScopes [HKCU] {47B6F735-33AB-4B82-8AA5-1D8B7443F45E} - (AOL Recherche) - http://slirsredirect.search.aol.com

O69 - SBI: SearchScopes [HKCU] {557C21FE-7274-410D-853E-9ED4471BF193} - (cherche.us) - http://www.cherche.usA%23FFFFF0%3B&q={searchTerms}

O69 - SBI: SearchScopes [HKCU] {763FAB13-B3B5-4FB7-B3D1-B659F0FCE35A} - (Wikipedia) - Wikipédia, l'encyclopédie libre

O69 - SBI: SearchScopes [HKCU] {90B2ADEA-96BB-419F-A8A5-9FCE1442456C} - (Google) - Google

O69 - SBI: SearchScopes [HKCU] {A0B271A9-D8AA-8E74-7392-2164D6A1C03C} - (Ask) - IESearch Start

 

 

 

---\\ Recherche particuliere à la racine de certains dossiers (O84)

[MD5.985DCD2B3079E783130CFC1E5CEBF1DC] [sPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\nicolas alexis\AppData\Local\ecmdbl.bat [99]

[MD5.34908E446D09432BD17830458D242BD2] [sPRF] (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Users\nicolas alexis\AppData\Local\Temp\jre-6u23-windows-i586-iftw-rv_2186d22e.exe [884512]

[MD5.7C8E65FC4F046252956ADC272370CF96] [sPRF] (.Skype Technologies S.A. - Skype.) -- C:\Users\nicolas alexis\AppData\Local\Temp\SkypeSetup.exe [21176200]

[MD5.CE17EEDFB78868F91046C08985D7016B] [sPRF] (.Microsoft Corporation - Windows Live Device Manager Updater.) -- C:\Users\nicolas alexis\AppData\Local\Temp\UpdateDM.exe [52072]

[MD5.A719B9EE6116B496F4000C0B1311EA13] [sPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\nicolas alexis\AppData\Roaming\PnkBstrK.sys [22328]

 

 

 

---\\ Firewall Active Exception List (FirewallRules) (O87)

O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus de l’autorité de sécurité locale.) -- C:\Windows\system32\lsass.exe

O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe

O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe

O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "NetPres-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe

O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe

O87 - FAEL: "WinCollab-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe

O87 - FAEL: "WinCollab-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe

O87 - FAEL: "WinCollab-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe

O87 - FAEL: "WinCollab-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe

O87 - FAEL: "WinCollab-DFSR-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe

O87 - FAEL: "WinCollab-DFSR-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe

O87 - FAEL: "{F986AD45-3D68-4EB9-BD40-DC5B96B86266}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Common Files\AOL\Loader\aolload.exe (.not file.)

O87 - FAEL: "{CC97F759-633E-4B96-99BA-F2BACDCC0198}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Common Files\AOL\Loader\aolload.exe (.not file.)

O87 - FAEL: "{6320805D-B0B6-4E2D-A635-BBB1EF5FE9B3}" | In - None - P17 - TRUE | .(.CyberLink Corp. - PowerDirector.) -- C:\Program Files\Cyberlink\PowerDirector\PDR.exe

O87 - FAEL: "{2695D0D1-5FA8-493A-A4DE-5448BA96E7AD}" | In - None - P17 - TRUE | .(.CyberLink Corp. - HP QuickPlay.) -- C:\Program Files\HP\QuickPlay\QP.exe

O87 - FAEL: "{B29D4C56-34F3-42EF-853B-59B68B7554C6}" | In - None - P17 - TRUE | .(.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files\HP\QuickPlay\QPService.exe

O87 - FAEL: "{468ED50D-8B31-41CE-8005-C9BC05AB6328}" |In - Domain - P6 - TRUE | .(...) -- C:\Program Files\MSN Messenger\msnmsgr.exe (.not file.)

O87 - FAEL: "{CFE195C8-4140-439A-A86C-32A2FBD41859}" |In - Domain - P17 - TRUE | .(...) -- C:\Program Files\MSN Messenger\msnmsgr.exe (.not file.)

O87 - FAEL: "{8358EE24-D04D-4F04-9B8F-586CB490E8F7}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\MSN Messenger\msnmsgr.exe (.not file.)

O87 - FAEL: "{6F40953B-4BB5-4823-A0E1-E3C32CA8A9BB}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\MSN Messenger\msnmsgr.exe (.not file.)

O87 - FAEL: "{0E9118D3-3BDB-4C0D-8F06-23A438B68506}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\MSN Messenger\msnmsgr.exe (.not file.)

O87 - FAEL: "{A316D72B-A6E6-4589-B26D-FD9DA6778E64}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\MSN Messenger\msnmsgr.exe (.not file.)

O87 - FAEL: "TCP Query User{D91F52FD-99A6-4432-A8E1-89094B7D44AE}C:\program files\camfrog\camfrog video chat\camfrog video chat.exe" | In - Public - P6 - TRUE | .(.Camshare LC.) -- C:\program files\camfrog\camfrog video chat\camfrog video chat.exe

O87 - FAEL: "UDP Query User{5F845B32-4E5F-4E44-86D5-6E210B629BB8}C:\program files\camfrog\camfrog video chat\camfrog video chat.exe" | In - Public - P17 - TRUE | .(.Camshare LC.) -- C:\program files\camfrog\camfrog video chat\camfrog video chat.exe

O87 - FAEL: "TCP Query User{3E2D958C-557E-46AF-83D4-9DBD01D4C160}C:\program files\camfrog\camfrog server\camfrogserver.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\camfrog\camfrog server\camfrogserver.exe (.not file.)

O87 - FAEL: "UDP Query User{C932CF27-0A44-42B4-B176-6CFC73D42409}C:\program files\camfrog\camfrog server\camfrogserver.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\camfrog\camfrog server\camfrogserver.exe (.not file.)

O87 - FAEL: "TCP Query User{4E95202D-6382-4E63-A77D-A0EDA8B70C0D}C:\program files\limewire\limewire.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\limewire\limewire.exe (.not file.)

O87 - FAEL: "UDP Query User{B751EE33-08A3-409D-84DF-95D271331F4B}C:\program files\limewire\limewire.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\limewire\limewire.exe (.not file.)

O87 - FAEL: "TCP Query User{571ED54D-C166-4D4B-AED3-F30F01798DA2}C:\program files\microsoft games\age of empires iii\age3.exe" | In - Public - P6 - TRUE | .(.Ensemble Studios.) -- C:\program files\microsoft games\age of empires iii\age3.exe

O87 - FAEL: "UDP Query User{167A46A2-4974-404D-969C-D6139754425A}C:\program files\microsoft games\age of empires iii\age3.exe" | In - Public - P17 - TRUE | .(.Ensemble Studios.) -- C:\program files\microsoft games\age of empires iii\age3.exe

O87 - FAEL: "{EB02482F-35FB-496C-A064-67AA7DD04C19}" | In - Public - P6 - TRUE | .(.Electronic Arts Inc. - The Battle for Middle-earth™ II.) -- C:\Program Files\Electronic Arts\La Bataille pour la Terre du Milieu II\game.dat

O87 - FAEL: "{0D4D2C2C-FC11-4637-8ED5-6C45A8104FB4}" | In - Public - P17 - TRUE | .(.Electronic Arts Inc. - The Battle for Middle-earth™ II.) -- C:\Program Files\Electronic Arts\La Bataille pour la Terre du Milieu II\game.dat

O87 - FAEL: "{C1693B38-17C7-499F-BC2C-B405EF3B5D54}" | In - Public - P6 - TRUE | .(.Veoh Networks - Veoh Web Player Beta.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe

O87 - FAEL: "{D26531E1-926F-468D-8288-9C13D1229C6B}" | In - Public - P17 - TRUE | .(.Veoh Networks - Veoh Web Player Beta.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe

O87 - FAEL: "{ED559077-1E1F-4E2A-86B4-283970AB3ED9}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxdecoms.exe

O87 - FAEL: "{BFA13CFC-4BAB-4F16-9467-195D763C1113}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxdecoms.exe

O87 - FAEL: "{AD3756BF-D5BA-4359-9FFF-9DF3F1E07886}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printer Card Transfer Monitor.) -- C:\Program Files\Lexmark 4800 Series\lxdeamon.exe

O87 - FAEL: "{1DA4D635-73C5-439B-BB86-508FD2FEC0ED}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printer Card Transfer Monitor.) -- C:\Program Files\Lexmark 4800 Series\lxdeamon.exe

O87 - FAEL: "{2FAC02C2-B7F0-4885-99B3-B7806B8936ED}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printing Application.) -- C:\Program Files\Lexmark 4800 Series\frun.exe

O87 - FAEL: "{BA0C573F-CF68-40E4-B7EA-50E19EC07822}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printing Application.) -- C:\Program Files\Lexmark 4800 Series\frun.exe

O87 - FAEL: "{B0057F75-3B07-4E34-9FBB-847AF8FA612E}" | In - Public - P6 - TRUE | .(.ABBYY (BIT Software) - FineScanManager.) -- C:\Program Files\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe

O87 - FAEL: "{5F697A04-BD43-474A-BB05-800542271C61}" | In - Public - P17 - TRUE | .(.ABBYY (BIT Software) - FineScanManager.) -- C:\Program Files\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe

O87 - FAEL: "{060DAAAD-8904-4A11-B5BC-39CF62F1C36F}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Fax Solutions Software.) -- C:\Program Files\Lexmark Fax Solutions\FaxCtr.exe

O87 - FAEL: "{F9E55F8C-9AD4-408C-B755-8CEB9A0FEB52}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Fax Solutions Software.) -- C:\Program Files\Lexmark Fax Solutions\FaxCtr.exe

O87 - FAEL: "{03185F43-F75C-4A07-B27E-B93341CC6F00}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printer Device Monitor.) -- C:\Program Files\Lexmark 4800 Series\lxdemon.exe

O87 - FAEL: "{81804B59-3CBF-4D31-8D1B-BE3A4FCB96F0}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printer Device Monitor.) -- C:\Program Files\Lexmark 4800 Series\lxdemon.exe

O87 - FAEL: "{D4809459-726C-411B-A847-28C27C7AC688}" |In - Public - P6 - TRUE | .(...) -- C:\Users\nicolas alexis\AppData\Local\Temp\lxde\wireless\FRENCH\lxdewpss.exe (.not file.)

O87 - FAEL: "{AB89DE75-5C96-4E4D-8833-D7D6CAAEEB58}" |In - Public - P17 - TRUE | .(...) -- C:\Users\nicolas alexis\AppData\Local\Temp\lxde\wireless\FRENCH\lxdewpss.exe (.not file.)

O87 - FAEL: "{0894AAAC-7CBD-4ACC-B859-604A1CD01ED5}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printer Status Window Interface.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdepswx.exe

O87 - FAEL: "{6B1C598A-7736-4DA1-9AA0-C6E22472E641}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printer Status Window Interface.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdepswx.exe

O87 - FAEL: "{542012FF-C0BA-431C-B929-79BA4FA5D23E}" | In - Public - P6 - TRUE | .(.Lexmark International, Inc. - Lexmark Connect Time Executable.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdetime.exe

O87 - FAEL: "{CAD64465-59F4-4B0B-9E88-287073AAEAD4}" | In - Public - P17 - TRUE | .(.Lexmark International, Inc. - Lexmark Connect Time Executable.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdetime.exe

O87 - FAEL: "{4B6B4B11-C8EA-48F9-91F9-3ED98A7318FF}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files\Lexmark 4800 Series\Wireless\lxdewpss.exe

O87 - FAEL: "{634A7082-AF32-49CB-A890-8E9D14F1D6D9}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files\Lexmark 4800 Series\Wireless\lxdewpss.exe

O87 - FAEL: "{DD40A9D2-C85B-45CD-9831-54FBE2D81C25}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxdecfg.exe

O87 - FAEL: "{D22D291A-2794-4E8C-9F2A-A9AA9C029DB4}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxdecfg.exe

O87 - FAEL: "{96B6E86B-91C4-4E80-9AAE-4A37B4CB8A6F}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Job Status Window Interface.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdejswx.exe

O87 - FAEL: "{C68AEEB4-29B1-4EB6-BF4D-E545905E936E}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Job Status Window Interface.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxdejswx.exe

O87 - FAEL: "{A5741CAB-6EA8-4CDB-9E88-89506B4CE313}" |In - None - P17 - TRUE | .(...) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe (.not file.)

O87 - FAEL: "{53408D4C-42F0-4D91-849C-0A8544299DCF}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe

O87 - FAEL: "{D32DB0E9-79AE-48FF-BB07-96A98D3B7717}" | In - Public - P6 - TRUE | .(...) -- C:\Windows\System32\PnkBstrA.exe

O87 - FAEL: "{81BCC681-7382-45C8-96E1-966AA3CF0AAC}" | In - Public - P17 - TRUE | .(...) -- C:\Windows\System32\PnkBstrA.exe

O87 - FAEL: "{A46ED236-42F8-45B3-8F36-46B8BC429C2D}" | In - Public - P6 - TRUE | .(...) -- C:\Windows\System32\PnkBstrB.exe

O87 - FAEL: "{F7EA2EF3-8262-4354-A132-36B5F639907B}" | In - Public - P17 - TRUE | .(...) -- C:\Windows\System32\PnkBstrB.exe

O87 - FAEL: "TCP Query User{1AAFB422-72E1-4406-A298-EF6C26724D80}C:\program files\emule\emule.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\emule\emule.exe (.not file.)

O87 - FAEL: "UDP Query User{4456698B-EC7C-4031-BE6A-E0505B649D05}C:\program files\emule\emule.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\emule\emule.exe (.not file.)

O87 - FAEL: "{8758EEA6-B8B3-439C-8A17-DE9DCC6A9BBC}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Cyanide\Dungeon Party\DungeonParty.exe (.not file.)

O87 - FAEL: "{8F6361B3-883D-48DF-8897-B2CB9A35A6F9}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Cyanide\Dungeon Party\DungeonParty.exe (.not file.)

O87 - FAEL: "TCP Query User{F071E5B0-47F5-48AA-AF58-7D07AE21F089}C:\program files\java\jre6\bin\java.exe" | In - Public - P6 - TRUE | .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\program files\java\jre6\bin\java.exe

O87 - FAEL: "UDP Query User{9B5DB430-8651-40FB-B725-5DCF5748DC3D}C:\program files\java\jre6\bin\java.exe" | In - Public - P17 - TRUE | .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\program files\java\jre6\bin\java.exe

O87 - FAEL: "TCP Query User{1857E684-1A61-4E62-836A-46E1195D7C3D}C:\program files\3do\heroes3\heroes3.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\3do\heroes3\heroes3.exe (.not file.)

O87 - FAEL: "UDP Query User{857474BF-9842-4600-AC56-CB7B36F706FF}C:\program files\3do\heroes3\heroes3.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\3do\heroes3\heroes3.exe (.not file.)

O87 - FAEL: "TCP Query User{75A674FC-5F89-4EC5-959A-6533ABB18BBA}C:\windows\system32\dplaysvr.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application d'assistance Microsoft DirectPlay.) -- C:\windows\system32\dplaysvr.exe

O87 - FAEL: "UDP Query User{1D66BA6E-827A-4771-991D-4C572FA85E5F}C:\windows\system32\dplaysvr.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Application d'assistance Microsoft DirectPlay.) -- C:\windows\system32\dplaysvr.exe

O87 - FAEL: "{8D4244C1-BE86-4245-8738-645B682E94D3}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Empire Interactive\Strangelite\Starship Troopers\STGame.exe (.not file.)

O87 - FAEL: "{93D98EC6-6BC8-4AE0-B1E2-CAAC11A279F8}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Empire Interactive\Strangelite\Starship Troopers\STGame.exe (.not file.)

O87 - FAEL: "TCP Query User{A68E5574-F3C5-42EA-AB6E-456CB4CC6A8F}C:\program files\mozilla firefox\firefox.exe" | In - Public - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files\mozilla firefox\firefox.exe

O87 - FAEL: "UDP Query User{1EBACEBA-FA85-409A-91F4-5CC371FF0E57}C:\program files\mozilla firefox\firefox.exe" | In - Public - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files\mozilla firefox\firefox.exe

O87 - FAEL: "{CB2821A3-EC30-4088-B732-152FE6236FB8}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O87 - FAEL: "TCP Query User{EC24B524-4717-468A-A013-9714873F4888}C:\program files\steam\steamapps\rahan169\team fortress 2\hl2.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files\steam\steamapps\rahan169\team fortress 2\hl2.exe

O87 - FAEL: "UDP Query User{9AAC4C13-CADE-4468-8A8B-03AEC18FB768}C:\program files\steam\steamapps\rahan169\team fortress 2\hl2.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files\steam\steamapps\rahan169\team fortress 2\hl2.exe

O87 - FAEL: "TCP Query User{84ACF1B3-D2C5-4B8A-8A09-903A855E3DA5}C:\users\nicolas alexis\downloads\fogdownloader-rom_2_1_0_1871.exe" | In - Public - P6 - TRUE | .(...) -- C:\users\nicolas alexis\downloads\fogdownloader-rom_2_1_0_1871.exe

O87 - FAEL: "UDP Query User{501FB2C3-8014-4C02-80BA-13F9A8A384BA}C:\users\nicolas alexis\downloads\fogdownloader-rom_2_1_0_1871.exe" | In - Public - P17 - TRUE | .(...) -- C:\users\nicolas alexis\downloads\fogdownloader-rom_2_1_0_1871.exe

O87 - FAEL: "TCP Query User{F33F0790-C81F-4D4D-BB8B-D8B5CD2C38C5}C:\program files\windows sidebar\sidebar.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Volet Windows.) -- C:\program files\windows sidebar\sidebar.exe

O87 - FAEL: "UDP Query User{21B63B67-A035-4ADD-857E-E594F26FC55B}C:\program files\windows sidebar\sidebar.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Volet Windows.) -- C:\program files\windows sidebar\sidebar.exe

O87 - FAEL: "{EC91187E-7755-4A87-8C89-9C64A64AA141}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Unreal Tournament 3\Binaries\UT3.exe (.not file.)

O87 - FAEL: "{65AE94A8-A76A-4E31-B219-4709DEC7BA5D}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Unreal Tournament 3\Binaries\UT3.exe (.not file.)

O87 - FAEL: "{27EF5A4F-9DAA-4914-BB75-DD18E47FD4EE}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files\Steam\steamapps\common\r.u.s.e. beta\Ruse.exe

O87 - FAEL: "{67F97B1D-54DA-4CD6-9D75-1E912509AFC1}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files\Steam\steamapps\common\r.u.s.e. beta\Ruse.exe

O87 - FAEL: "{28189279-EEF5-49D6-ADB9-9AF4C6A65110}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files\FireFly Studios\Stronghold 2\Stronghold2.exe

O87 - FAEL: "{B8725E0E-76F5-41EF-A977-6B05F6D0A968}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files\FireFly Studios\Stronghold 2\Stronghold2.exe

O87 - FAEL: "TCP Query User{C2ED707C-8AE3-4F16-AB93-5A400B53C1D4}C:\program files\activision\call of duty 2\cod2mp_s.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files\activision\call of duty 2\cod2mp_s.exe

O87 - FAEL: "UDP Query User{74B3C45A-38F2-4D1B-ACE2-863874656831}C:\program files\activision\call of duty 2\cod2mp_s.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files\activision\call of duty 2\cod2mp_s.exe

O87 - FAEL: "{9947EB37-20FA-4EE1-8FEF-B90F122845C8}" | In - Public - P6 - TRUE | .(.Adobe Systems Inc. - Adobe AIR Debug Launcher.) -- C:\Program Files\League of Legends\Air\LolClient.exe

O87 - FAEL: "{DD1072C1-350B-42AC-B6BF-3807C35A8F85}" | In - Public - P17 - TRUE | .(.Adobe Systems Inc. - Adobe AIR Debug Launcher.) -- C:\Program Files\League of Legends\Air\LolClient.exe

O87 - FAEL: "{E342CCB3-FB33-4387-BDC9-32858CD4ABCB}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - League of Legends Client.) -- C:\Program Files\League of Legends\Game\League of Legends.exe

O87 - FAEL: "{B19DDB14-B1D6-454E-AF8D-E374504E3D35}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - League of Legends Client.) -- C:\Program Files\League of Legends\Game\League of Legends.exe

O87 - FAEL: "{67BEBC5B-7A2B-47D7-A655-78ECB0A3772E}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe

O87 - FAEL: "{076DBD73-474D-4149-B551-B0F19AC3DBC7}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe

O87 - FAEL: "{A8616649-154C-48EF-915C-017FA6F61367}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files\Steam\steamapps\common\left 4 dead 2\left4dead2.exe

O87 - FAEL: "{FC32FF7F-9632-4DBB-B132-539E93C969FF}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files\Steam\steamapps\common\left 4 dead 2\left4dead2.exe

O87 - FAEL: "{E836E373-D572-4642-9DF2-0BB05EFB4C82}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Ubisoft\Prince of Persia Les Sables Oubliés\Prince of Persia.exe (.not file.)

O87 - FAEL: "{0165EF6C-116D-4418-A0A9-D9B803CAA866}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Ubisoft\Prince of Persia Les Sables Oubliés\Prince of Persia.exe (.not file.)

O87 - FAEL: "{FD5109BB-531C-47FC-B34B-272664E7AAEC}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Ubisoft\Prince of Persia Les Sables Oubliés\GameSettings.exe (.not file.)

O87 - FAEL: "{8F4C5940-FDDF-4110-9936-35603A82DECD}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Ubisoft\Prince of Persia Les Sables Oubliés\GameSettings.exe (.not file.)

O87 - FAEL: "{585C37E8-AE52-499C-ACC5-2508A3901931}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Ubisoft\Prince of Persia Les Sables Oubliés\gu.exe (.not file.)

O87 - FAEL: "{50593031-91C0-4314-86B7-ADEFB34D84DC}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Ubisoft\Prince of Persia Les Sables Oubliés\gu.exe (.not file.)

O87 - FAEL: "{818AD788-BB0B-4FD7-B89D-EDD60A6F4493}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Ubisoft\Prince of Persia Les Sables Oubliés\UPlayBrowser.exe (.not file.)

O87 - FAEL: "{F68F09C7-60CC-4463-A47C-7A092127C6FD}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Ubisoft\Prince of Persia Les Sables Oubliés\UPlayBrowser.exe (.not file.)

O87 - FAEL: "{4A1D3005-FF9B-43E5-945D-5857D33B2C69}" | In - Public - P6 - TRUE | .(.Ubisoft - launcher Application.) -- C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe

O87 - FAEL: "{0E2C6840-ECB0-4ACB-8CA3-A2774637C400}" | In - Public - P17 - TRUE | .(.Ubisoft - launcher Application.) -- C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe

O87 - FAEL: "TCP Query User{875C9340-06FB-4CA4-A79D-7DC28246D1ED}C:\program files\google\google earth\client\googleearth.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\google\google earth\client\googleearth.exe (.not file.)

O87 - FAEL: "UDP Query User{5BC7C06E-3218-4A2E-99EA-215D5DDFCF2F}C:\program files\google\google earth\client\googleearth.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\google\google earth\client\googleearth.exe (.not file.)

O87 - FAEL: "TCP Query User{EBEFA217-49AD-44A0-8282-503D5AE23741}C:\program files\google\google earth\plugin\geplugin.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\google\google earth\plugin\geplugin.exe (.not file.)

O87 - FAEL: "UDP Query User{C33018D3-DB65-410C-8D5A-B8294A3B89CC}C:\program files\google\google earth\plugin\geplugin.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\google\google earth\plugin\geplugin.exe (.not file.)

O87 - FAEL: "{097E4AC7-FD48-49D8-975C-C02B00B9D725}" |In - Public - P6 - TRUE | .(...) -- C:\gPotato.eu\Allods Online\bin\Launcher.exe (.not file.)

O87 - FAEL: "{6013222D-34F8-4ADD-A733-D5BE8FAC39D9}" |In - Public - P17 - TRUE | .(...) -- C:\gPotato.eu\Allods Online\bin\Launcher.exe (.not file.)

O87 - FAEL: "{5C59ABE1-E0B6-4224-AF01-03F0BF0B7DBF}" |In - Public - P6 - TRUE | .(...) -- C:\gPotato.eu\Allods Online\bin\AOgame.exe (.not file.)

O87 - FAEL: "{A64F2308-0E60-4021-B455-74FAF9264578}" |In - Public - P17 - TRUE | .(...) -- C:\gPotato.eu\Allods Online\bin\AOgame.exe (.not file.)

O87 - FAEL: "TCP Query User{659BB43D-D4B7-44A0-9B8D-3CF76DB07AFE}C:\program files\emule\emule.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\emule\emule.exe (.not file.)

O87 - FAEL: "UDP Query User{0EEB08FF-6E08-4212-943C-7D794CE66FA2}C:\program files\emule\emule.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\emule\emule.exe (.not file.)

 

 

 

---\\ Scan Additionnel (O88)

Database Version : 2822 - (28/03/2011)

 

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{18EAB056-9057-F224-FD4C-1F6569C4D8D2}] =>Adware.AskBarDis

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Adware.AskSBar

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}] =>Toolbar.Crawler

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}] =>Toolbar.Crawler

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736c681-37a0-40c6-a0f0-4c083409151c}] =>Toolbar.Crawler

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Adware.AskSBar

[HKLM\Software\Canneverbe Limited\OpenCandy] =>Adware.OpenCandy

[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a078f691-9c07-4af2-bf43-35e79eecf8b7}] =>Adware.Softomate

 

 

 

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SR - | Auto 02/10/2009 108289 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe

SR - | Auto 02/10/2009 185089 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

SS - | Demand 05/03/2007 110592 | (Com4Qlb) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe

SR - | Auto 12/12/2006 57344 | (FTRTSVC) . (.France Telecom SA.) - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe

SS - | Demand 06/05/2008 165416 | (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe

SS - | Auto 15/06/2010 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe

SR - | Auto 19/09/2007 65536 | (HP Health Check Service) . (.Hewlett-Packard.) - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe

SR - | Auto 02/05/2006 135168 | (hpqwmiex) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe

SS - | Demand 04/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

SR - | Auto 23/08/2007 79136 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

SR - | Auto 29/05/2007 99248 | (lxdeCATSCustConnectService) . (.Lexmark International, Inc..) - C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdeserv.exe

SR - | Auto 29/05/2007 598960 | (lxde_device) . (...) - C:\Windows\system32\lxdecoms.exe

SS - | Demand 14/01/2011 310640 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe

SS - | Demand 17/05/2010 3592432 | (npggsvc) . (.INCA Internet Co., Ltd..) - C:\Windows\system32\GameMon.des

SR - | Auto 17/03/2011 608872 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe

SR - | Auto 29/05/2010 66872 | (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe

SR - | Auto 19/12/2007 271760 | (QPCapSvc) . (...) - C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe

SR - | Auto 19/12/2007 112016 | (QPSched) . (...) - C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe

SR - | Auto 09/01/2007 272024 | (RichVideo) . (...) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

SS - | Demand 24/01/2011 407336 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files\Common Files\Steam\SteamService.exe

SR - | Auto 21/01/2008 21504 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe

SR - | Auto 18/10/2007 386560 | (XAudioService) . (.Conexant Systems, Inc..) - C:\Windows\system32\DRIVERS\xaudio.exe

 

 

 

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, GMER - Rootkit Detector and Remover

Run by nicolas alexis at 28/03/2011 22:59:20

 

device: opened successfully

user: MBR read successfully

 

Disk trace:

called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll >>UNKNOWN [0x875BC448]<<

1 ntkrnlpa!IofCallDriver[0x82850912] -> \Device\Harddisk0\DR0[0x86CA2AC8]

3 CLASSPNP[0x8B1BC8B3] -> ntkrnlpa!IofCallDriver[0x82850912] -> [0x86133F08]

5 acpi[0x82E966BC] -> ntkrnlpa!IofCallDriver[0x82850912] -> \Device\Ide\IAAStorageDevice-0[0x86132030]

\Driver\iaStor[0x8612B658] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> 0x875BC448

kernel: MBR read successfully

detected hooks:

\Driver\atapi -> 0x8881db08

\Driver\iaStor -> 0x875bc448

user & kernel MBR OK

Warning: possible MBR rootkit infection !

 

 

 

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

Written by ad13, http://ad13.geekstog

Run by nicolas alexis at 28/03/2011 22:59:22

Use the desktop link 'MBRCheck' to have full report

Dump file Name : C:\PhysicalDisk0_MBR.bin

 

 

 

End of the scan (1537 lines in 03mn 11s)(0)

[Tonton]

Ton PC est infecté :

 

P2 - FPN: [HKLM] [@viewpoint.com/VMP] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll (.not file.) => Infection PUP (Adware.MetaStream)

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\CD Label Designer.lnk . (.Dataland Software.) -- C:\Program Files\CD Label Designer\CDLabDesigner.exe => Infection Diverse

O4 - Global Startup: C:\Users\nicolas alexis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\UltraMixer.lnk . (.UltraMixer Digital Audio Solutions.) -- C:\Program Files\UltraMixer\UltraMixer.exe => Infection Diverse

O69 - SBI: SearchScopes [HKCU] {18EAB056-9057-F224-FD4C-1F6569C4D8D2} - (Ask) - Search Plus! => Infection BT (Adware.AskbarDis)

O69 - SBI: SearchScopes [HKCU] {557C21FE-7274-410D-853E-9ED4471BF193} - (cherche.us) - http://www.cherche.u...q={searchTerms} => Infection BT (cherche.us)

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{18EAB056-9057-F224-FD4C-1F6569C4D8D2}] => Infection BT (Adware.AskbarDis)

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}] => Infection BT (Adware.AskSBar)

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}] => Infection BT (Adware.AskSBar)

[HKLM\Software\Canneverbe Limited\OpenCandy]

[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a078f691-9c07-4af2-bf43-35e79eecf8b7}]

detected hooks:

Warning: possible MBR rootkit infection ! => Infection Rootkit (Possible)

 

Malware (12)

A faire stp :

• Je te conseille d'ouvrir un nouveau sujet dans la section "Analyse et éradication des malwares", afin de procéder à une bonne désinfection :
  
• De manière à ce que le helper qui te prendra en charge soit informé des manips déjà effectuées, merci de copier/coller en début de ton nouveau sujet le lien avec le présent sujet (tu le trouveras en cliquant sur le n° du présent Post)

Bonne soirée,

Tonton

Modifié le 28 mars 2011 par Tonton57