Problème svchost...HijackThis dans le rouge!!!

Bebos74 · le 16 avril 2011

Bonsoir a tous,

nouveau sur ce forum pour essayer de me depatouiller de ma pitite misère.

HijackThis me met plein de croix rouge a propos de svchost.exe.

Apparemment, vous avez l'air de dire qu'il devient un peu obsolète, c'est pourquoi j'ai telechargé ZHPDiag et je vous joint le log.

En vous remerciant d'avance pour votre soutien.

NB: scanne complet de MalwareByte: RAS

Rapport de ZHPDiag v1.27.1902 par Nicolas Coolman, Update du 16/04/2011

Run by Fab at 16/04/2011 23:35:01

Web site : ZHPDiag Outil de diagnostic

---\\ Web Browser

MSIE: Internet Explorer v9.0.8112.16421 (Defaut)

---\\ System Information

Windows 7 Ultimate Edition, 64-bit (Build 7600)

Processor: Intel64 Family 6 Model 15 Stepping 11, GenuineIntel

Operating System: 64 Bits

Boot mode: Normal (Normal boot)

Total RAM: 3327 MB (45% free)

System Restore: Activé (Enable)

System drive C: has 33 GB (41%) free of 80 GB

---\\ Logged in mode

Computer Name: PCDEFAB

User Name: Fab

All Users Names: HomeGroupUser$, Fab, Administrateur,

Unselected Option: O45,O61,O62,O65,O66,O82

Logged in as Administrator

---\\ Environnement Variables

%AppData%=C:\Users\Fab\AppData\Roaming

%LocalAppData%=C:\Users\Fab\AppData\Local

%StartMenu%=C:\Users\Fab\AppData\Roaming\Microsoft\Windows\Start Menu

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 33 Go of 80 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 199 Go of 466 Go)

E:\ Hard drive, Flash drive, Thumb drive (Free 67 Go of 459 Go)

F:\ Hard drive, Flash drive, Thumb drive (Free 40 Go of 160 Go)

G:\ CD-ROM drive (Free 0 Go of 3 Go)

H:\ CD-ROM drive (Not Inserted)

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified

---\\ Recherche particulière de fichiers génériques

[MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - (.Microsoft Corporation - Explorateur Windows.) (.31/10/2009 07:34:59.) -- C:\Windows\Explorer.exe [2870272]

[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]

[MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.04/04/2011 10:20:07.) -- C:\Windows\system32\wininet.dll [1126912]

---\\ Processus lancés

[MD5.B24F46611FD83EF7B1FD4E15B726C95A] - (.LogMeIn Inc. - Hamachi2 Client Application.) -- E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [1910152]

[MD5.2E9A1A6555C20424FC6DCC3AF21F4D68] - (.AVAST Software - avast! Antivirus.) -- E:\Program Files (x86)\Avast 5\AvastUI.exe [3451496]

[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [748336]

[MD5.C4CA7416A6DF6D95075F81D9E3B41AD1] - (.Trend Micro Inc. - HijackThis.) -- E:\Program Files\HijackThis\HijackThis.exe [396288]

[MD5.D378BFFB70923139D6A4F546864AA61C] - (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\SysWOW64\NOTEPAD.EXE [179712]

[MD5.4CEC4B72C5B255EC2F7C54CD03554540] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- E:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe [963976]

[MD5.0521F19114CA0ABB8AF7523B83B87F85] - (.Nicolas Coolman - Diagnostic Tool.) -- e:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [643584]

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)

P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.dll

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = SFR : Téléphone portable, mobile, forfaits portables, ADSL

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search Microsoft.com

R0 - HKUS\S-1-5-21-1010230352-2082133306-494002025-1001\Software\Microsoft\Internet Explorer\Main,Start Page = SFR : Téléphone portable, mobile, forfaits portables, ADSL

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R1 - HKUS\S-1-5-21-1010230352-2082133306-494002025-1001\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll

R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.Pas de propriétaire - avast! WebRep Plugin.) -- E:\Program Files (x86)\Avast 5\aswWebRepIE64.dll

O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.Pas de propriétaire - avast! WebRep Plugin.) -- E:\Program Files (x86)\Avast 5\aswWebRepIE64.dll

---\\ ---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [Windows Mobile-based device management] . (.Microsoft Corporation - Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\WindowsMobile\wmdcBase.exe

O4 - HKLM\..\Wow6432Node\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- E:\Program Files (x86)\Avast 5\avastUI.exe

O4 - HKLM\..\Wow6432Node\Run: [startCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

O4 - HKLM\..\Wow6432Node\Run: [LogMeIn Hamachi Ui] . (.LogMeIn Inc. - Hamachi2 Client Application.) -- E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)

---\\ ---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\Fab\Desktop\Charger le Media Center.lnk . (.SFR.) -- C:\Program Files (x86)\SFR\Media Center\MediaCenter.exe

O4 - Global Startup: C:\Users\Fab\Desktop\Governor of Poker 2 Premium Edition.lnk . (...) -- F:\Jeux\Governor of Poker 2 PE\GovernorofPoker2_PE_Alawar.exe

O4 - Global Startup: C:\Users\Fab\Desktop\MP Manager.lnk . (.MPMAN.) -- E:\Program Files (x86)\MP Manager\MP Manager.exe

O4 - Global Startup: C:\Users\Fab\Desktop\Ordinateur.lnk - Clé orpheline

O4 - Global Startup: C:\Users\Fab\Desktop\Steam.lnk . (.Valve Corporation.) -- E:\Program Files (x86)\Steam\Steam.exe

O4 - Global Startup: C:\Users\Fab\Desktop\Téléchargement.lnk . (...) -- C:\Users\Fab\Downloads

O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\123envoi.lnk . (.Over-Link.) -- E:\Program Files (x86)\123envoi\123envoi.exe

O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Driver Cleaner 3.lnk . (...) -- E:\Program Files (x86)\Driver Cleaner\DCleaner.exe

O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Easy Audio Cutter.lnk . (.Koyote Soft.) -- E:\Program Files (x86)\Free Audio Pack\Easy Audio Cutter\AudioCutter.exe

O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free CD Ripper.lnk . (.Koyote Soft.) -- E:\Program Files (x86)\Free Audio Pack\Free CD Ripper\FreeCDRipper.exe

O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free Mp3 Wma Converter.lnk . (.Koyote Soft.) -- E:\Program Files (x86)\Free Audio Pack\FreeConverter\FreeConverter.exe

O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk . (.Microsoft Corporation.) -- E:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE

O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk . (.Google Inc..) -- E:\Program Files (x86)\Picasa3\Picasa3.exe

O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- E:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe

O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk . (.BitTorrent, Inc..) -- E:\Program Files (x86)\uTorrent\uTorrent.exe

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr

O8 - Extra context menu item: E&xport to Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- E:\PROGRA~2\MICROS~2\Office14\EXCEL.exe

O8 - Extra context menu item: E&xporter vers Microsoft Excel - (.not file.) - C:\PROGRA~2\MICROS~3\Office12\EXCEL.exe

O8 - Extra context menu item: Se&nd to OneNote . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- E:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: Se&nd to OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll

O9 - Extra button: OneNote Lin&ked Notes [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office14\ONBTTN~1.dll

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} ("Ma-Config.com control) - http://www.ma-config.com/plugin s /MaConfigx64_4_5_0_0.cab

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{F5F7A4DD-BF13-4D58-9C56-42252EAA3074}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{F5F7A4DD-BF13-4D58-9C56-42252EAA3074}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{F5F7A4DD-BF13-4D58-9C56-42252EAA3074}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS3\Services\Tcpip\..\{F5F7A4DD-BF13-4D58-9C56-42252EAA3074}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: C:\Windows\system32\aelupsvc.dll (AeLookupSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe

O23 - Service: C:\Windows\system32\appidsvc.dll (AppIDSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\appinfo.dll (Appinfo) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\System32\appmgmts.dll (AppMgmt) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\audiosrv.dll (AudioEndpointBuilder) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\audiosrv.dll (AudioSrv) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - E:\Program Files (x86)\Avast 5\AvastSvc.exe

O23 - Service: C:\Windows\system32\AxInstSV.dll (AxInstSV) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\bdesvc.dll (BDESVC) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\bfe.dll (BFE) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\qmgr.dll (BITS) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\browser.dll (Browser) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\System32\bthserv.dll (bthserv) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\System32\certprop.dll (CertPropSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\cryptsvc.dll (CryptSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\cscsvc.dll (CscService) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\defragsvc.dll (defragsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\dhcpcore.dll (Dhcp) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\System32\dnsapi.dll (Dnscache) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\dot3svc.dll (dot3svc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\dps.dll (DPS) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\eapsvc.dll (EapHost) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\wevtsvc.dll (eventlog) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\System32\comres.dll (EventSystem) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: (EverestDriver) . (...) - E:\Program Files (x86)\EVEREST Ultimate Edition\kerneld.amd64

O23 - Service: C:\Windows\system32\fdPHost.dll (fdPHost) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\fdrespub.dll (FDResPub) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\FntCache.dll (FontCache) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\System32\gpapi.dll (gpsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) . (.LogMeIn Inc. - Hamachi2 Client Tunneling Engine.) - E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe

O23 - Service: C:\Windows\System32\hidserv.dll (hidserv) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\kmsvc.dll (hkmsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\System32\ListSvc.dll (HomeGroupListener) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\System32\provsvc.dll (HomeGroupProvider) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\ikeext.dll (IKEEXT) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\IPBusEnum.dll (IPBusEnum) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: (iphlpsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: (KMService) . (...) - C:\Windows\system32\srvany.exe

O23 - Service: C:\Windows\System32\comres.dll (KtmRm) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\srvsvc.dll (LanmanServer) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\wkssvc.dll (LanmanWorkstation) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\lltdres.dll (lltdsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\lmhsvc.dll (lmhosts) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: (maconfservice) . (.CybelSoft - Service de détection matériel.) - C:\Program Files (x86)\ma-config.com\maconfservice.exe

O23 - Service: C:\Windows\ehome\ehres.dll (Mcx2Svc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: (MEMSWEEP2) . (.Sophos Plc - Memsweep kernel driver.) - C:\Windows\system32\CC09.tmp

O23 - Service: C:\Windows\system32\mmcss.dll (MMCSS) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\FirewallAPI.dll (MpsSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\iscsidsc.dll (MSiSCSI) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\qagentrt.dll (napagent) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\netman.dll (Netman) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\netprofm.dll (netprofm) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\System32\nlasvc.dll (NlaSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: (NMSAccess) . (...) - e:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe

O23 - Service: C:\Windows\system32\nsisvc.dll (nsi) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\pnrpsvc.dll (p2pimsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\p2psvc.dll (p2psvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\pcasvc.dll (PcaSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\peerdistsvc.dll (PeerDistSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\pla.dll (pla) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\umpnpmgr.dll (PlugPlay) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\pnrpauto.dll (PNRPAutoReg) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\pnrpsvc.dll (PNRPsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\System32\polstore.dll (PolicyAgent) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\umpo.dll (Power) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\profsvc.dll (ProfSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\qwave.dll (QWAVE) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\WindowsMobile\rapimgr.dll (RapiMgr) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\rasauto.dll (RasAuto) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\rasmans.dll (RasMan) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\mprdim.dll (RemoteAccess) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: regsvc.dll (RemoteRegistry) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\RpcEpMap.dll (RpcEptMapper) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - E:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: C:\Windows\System32\SCardSvr.dll (SCardSvr) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\schedsvc.dll (Schedule) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\System32\certprop.dll (SCPolicySvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\sdrsvc.dll (SDRSVC) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\seclogon.dll (seclogon) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\Sens.dll (SENS) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\System32\sensrsvc.dll (SensrSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: (SessionEnv) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\ipnathlp.dll (SharedAccess) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\System32\shsvcs.dll (ShellHWDetection) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: (Sony Ericsson PCCompanion) . (.Avanquest Software - Sony Ericsson PCCompanion Service.) - C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe

O23 - Service: C:\Windows\system32\sppuinotify.dll (sppuinotify) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\ssdpsrv.dll (SSDPSRV) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\sstpsvc.dll (SstpSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: (Steam Client Service) . (.Valve Corporation - Steam Client Service (buildbot_winslave01_s.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: C:\Windows\system32\wiaservc.dll (stisvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\System32\swprv.dll (swprv) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\sysmain.dll (SysMain) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\TabSvc.dll (TabletInputService) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\tapisrv.dll (TapiSrv) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\tbssvc.dll (TBS) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\System32\termsrv.dll (TermService) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\System32\themeservice.dll (Themes) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\mmcss.dll (THREADORDER) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: (TrkWks) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\umrdp.dll (UmRdpService) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\upnphost.dll (upnphost) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\dwm.exe (UxSms) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\w32time.dll (W32Time) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\wbiosrvc.dll (WbioSrvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\WindowsMobile\wcescomm.dll (WcesComm) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\wcncsvc.dll (wcncsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\WcsPlugInService.dll (WcsPlugInService) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\wdi.dll (WdiServiceHost) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\wdi.dll (WdiSystemHost) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\webclnt.dll (WebClient) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\wecsvc.dll (Wecsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\System32\wercplsupport.dll (wercplsupport) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\System32\wersvc.dll (WerSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Program Files\Windows Defender\MsMpRes.dll (WinDefend) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\winhttp.dll (WinHttpAutoProxySvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\wbem\wmisvc.dll (Winmgmt) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\wsmsvc.dll (WinRM) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\System32\wlansvc.dll (Wlansvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\wpcsvc.dll (WPCSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\wpdbusenum.dll (WPDBusEnum) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\System32\wscsvc.dll (wscsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe

O23 - Service: C:\Windows\system32\wuaueng.dll (wuauserv) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\system32\wudfsvc.dll (wudfsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

O23 - Service: C:\Windows\System32\wwansvc.dll (WwanSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(...) - (.not file.)

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

[MD5.923E02CA12F54B2F086DDB9C683E46E5] [APT] [GlaryInitialize] (.Glarysoft Ltd.) -- e:\Program Files (x86)\Glary Utilities\initialize.exe

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

[MD5.00000000000000000000000000000000] [APT] [Launch HTC Sync Loader] (.Pas de propriétaire.) -- E:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe (.not file.)

[MD5.BEB21133A103E71CE9EC2327B52CBA39] [APT] [{26222756-C998-4BD7-8C22-3C9A809704B9}] (.Pas de propriétaire.) -- E:\Program Files (x86)\audiograbber\uninstall.exe

[MD5.00000000000000000000000000000000] [APT] [{27DCF270-B16E-48B6-B829-A6737B95410A}] (.Pas de propriétaire.) -- C:\Users\Fab\Desktop\streaming-audio-recorder_214927_trial.exe (.not file.)

[MD5.00000000000000000000000000000000] [APT] [{29A8CC11-AC3F-4EBA-8D59-9766EFBD8D29}] (.Pas de propriétaire.) -- C:\Users\Fab\Desktop\setup.msi" (.not file.)

[MD5.AECC6A163878CEEA3EC1BF8CF9FCFF28] [APT] [{46635A86-B077-4D82-8CCE-166C40D6F02D}] (.InstallShield Software Corporation.) -- E:\Mes docs\Utilitaires\Perfection\Disk1\Setup.exe

[MD5.00000000000000000000000000000000] [APT] [{4FF9E967-1B95-4A86-B320-8C8D15325D97}] (.Pas de propriétaire.) -- C:\Users\Fab\Desktop\avg_avwt_stf_g7_85_276a1438.exe (.not file.)

[MD5.BEB21133A103E71CE9EC2327B52CBA39] [APT] [{6B9C9B14-6CAE-47E1-B703-1F17D0412C94}] (.Pas de propriétaire.) -- E:\Program Files (x86)\audiograbber\uninstall.exe

[MD5.00000000000000000000000000000000] [APT] [{7E4FE0CA-E29A-4099-8FAD-1C3AD9C068C2}] (.Pas de propriétaire.) -- C:\Users\Fab\Desktop\streaming-audio-recorder_214927_trial.exe (.not file.)

[MD5.BEB21133A103E71CE9EC2327B52CBA39] [APT] [{879D5184-C703-47DA-84AF-3BD97EF412E0}] (.Pas de propriétaire.) -- E:\Program Files (x86)\audiograbber\uninstall.exe

[MD5.00000000000000000000000000000000] [APT] [{CB3ED55D-EC11-4FF6-8004-E6C4E531C855}] (.Pas de propriétaire.) -- C:\Users\Fab\AppData\Local\Temp\Temp1_ChevronWP7.RingtoneInstaller.zip\ChevronWP7.RingtoneInstaller.exe (.not file.)

[MD5.00000000000000000000000000000000] [APT] [{DDA19C25-09F2-45F8-AB32-179023AE9E65}] (.Pas de propriétaire.) -- C:\Users\Fab\Desktop\setup.msi" (.not file.)

[MD5.00000000000000000000000000000000] [APT] [{F4E4D740-C7AB-4B7B-872E-41AD1048D481}] (.Pas de propriétaire.) -- C:\Users\Fab\Desktop\S1.02.05\Setup.exe (.not file.)

[MD5.F86569ABF39828070AE3BD359F6EFEA2] [APT] [ASUS RegRun Loader] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AASP\1.01.02\AsLoader.exe

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (AsIO) . (...) - C:\Windows\Syswow64\drivers\AsIO.sys

O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys

O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys

O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys

O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys

O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys

O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys

O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys

O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys

O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys

O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys

O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys

O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys

---\\ Logiciels installés (O42)

O42 - Logiciel: 123envoi - (.Over-Link.) [HKLM][64Bits] -- {9C6B2761-F9A2-4548-8543-7CE530CE089B}

O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}

O42 - Logiciel: AMD Drag and Drop Transcoding - (.ATI Technologies Inc..) [HKLM] -- {6A9B5F9E-CAF3-2264-9DA0-E374F9A34279}

O42 - Logiciel: ASUSUpdate - (.Pas de propriétaire.) [HKLM][64Bits] -- {587178E7-B1DF-494E-9838-FA4DD36E873C}

O42 - Logiciel: ATI AVIVO64 Codecs - (.ATI Technologies Inc..) [HKLM] -- {90AB246D-A0A0-29EA-199A-4B07841E0737}

O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM] -- {AE57C044-8912-A181-A0E4-BC2DAB3A092A}

O42 - Logiciel: ATI Problem Report Wizard - (.ATI Technologies.) [HKLM] -- {A9C6CA47-D937-D61D-4BD3-7CFAB7A5BA56}

O42 - Logiciel: AVS Audio Converter version 6.2 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Audio Converter 6.2_is1

O42 - Logiciel: AVS Update Manager 1.0 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Update Manager_is1

O42 - Logiciel: AVS Video Converter 7 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS4YOU Video Converter 7_is1

O42 - Logiciel: AVS4YOU Software Navigator 1.4 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS4YOU Software Navigator_is1

O42 - Logiciel: Activision® - (.Activision.) [HKLM][64Bits] -- {3FAD68D9-1FA1-4871-9ADF-9151D969E943}

O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR

O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AFF7E080-1974-45BF-9310-10DE1A1F5ED0}

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin

O42 - Logiciel: Adobe Reader 9.4.3 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-A94000000001}

O42 - Logiciel: Adobe Shockwave Player 11.5 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player

O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner

O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1

O42 - Logiciel: CPUID CPU-Z 1.54 - (.Pas de propriétaire.) [HKLM] -- CPUID CPU-Z_is1

O42 - Logiciel: Call of Duty: Black Ops - (.Pas de propriétaire.) [HKLM][64Bits] -- Call of Duty: Black Ops_is1

O42 - Logiciel: Call of Duty: Modern Warfare 2 - (.Infinity Ward.) [HKLM][64Bits] -- Steam App 10180

O42 - Logiciel: Call of Duty: Modern Warfare 2 - Multiplayer - (.Infinity Ward.) [HKLM][64Bits] -- Steam App 10190

O42 - Logiciel: Canon IJ Network Tool - (.Pas de propriétaire.) [HKLM][64Bits] -- Canon_IJ_Network_UTILITY

O42 - Logiciel: Canon MP Navigator EX 4.0 - (.Pas de propriétaire.) [HKLM][64Bits] -- MP Navigator EX 4.0

O42 - Logiciel: Canon MP495 series MP Drivers - (.Pas de propriétaire.) [HKLM] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP495_series

O42 - Logiciel: Canon My Printer - (.Pas de propriétaire.) [HKLM][64Bits] -- CanonMyPrinter

O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {6AB57823-3580-4CE0-9CF0-072E2A39460C}

O42 - Logiciel: Crysis® 2 - (.Electronic Arts.) [HKLM][64Bits] -- {6033673D-2530-4587-8AD0-EB059FC263F9}

O42 - Logiciel: Definition update for Microsoft Office 2010 (KB982726) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2CF1930D-7485-42D3-BED1-B3E2EBB1FD7F}

O42 - Logiciel: Definition update for Microsoft Office 2010 (KB982726) - (.Microsoft.) [HKLM][64Bits] -- {90140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOK_{2CF1930D-7485-42D3-BED1-B3E2EBB1FD7F}

O42 - Logiciel: DiRT2 - (.Codemasters.) [HKLM][64Bits] -- {434D0820-3AA6-493A-80B9-301000028501}

O42 - Logiciel: DiRT2 - (.Codemasters.) [HKLM][64Bits] -- {434D0820-3AA6-493A-80B9-301000028502}

O42 - Logiciel: Disk SpeedUp 1.2.0.319 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Disk SpeedUp

O42 - Logiciel: Driver Cleaner 3 - (.Ruud Ketelaars.) [HKLM][64Bits] -- Driver Cleaner

O42 - Logiciel: EPSON TWAIN 5 - (.Pas de propriétaire.) [HKLM][64Bits] -- {9A3EABC0-CA06-11D4-BF77-00104B130C19}

O42 - Logiciel: EVEREST Ultimate Edition v5.50 - (.Lavalys, Inc..) [HKLM][64Bits] -- EVEREST Ultimate Edition_is1

O42 - Logiciel: Enregistrement utilisateur de Canon MP495 series - (.Pas de propriétaire.) [HKLM][64Bits] -- Enregistrement utilisateur de Canon MP495 series

O42 - Logiciel: F1 2010 - (.Codemasters.) [HKLM][64Bits] -- GFWL_{434D0831-3E0C-4D03-A5D4-5E1000008400}

O42 - Logiciel: F1 2010 - (.Codemasters.) [HKLM][64Bits] -- {434D0831-3E0C-4D03-A5D4-5E1000008400}

O42 - Logiciel: F1 2010 - (.Codemasters.) [HKLM][64Bits] -- {434D0831-A4CC-401A-9E74-621000018401}

O42 - Logiciel: Free Mp3 Wma Converter V 1.91 - (.Koyote Soft.) [HKLM][64Bits] -- Free Mp3 Wma Converter_is1

O42 - Logiciel: Funambol Outlook Sync Client 9.0.2 - (.Funambol.) [HKLM][64Bits] -- Funambol Outlook Sync Client

O42 - Logiciel: GBoost - (.GZero.) [HKLM] -- {235B7B98-EAC3-4953-AE2C-EABCE1CD65C9}_is1

O42 - Logiciel: GIMP 2.6.6 - (.Pas de propriétaire.) [HKLM] -- WinGimp-2.0_is1

O42 - Logiciel: Glary Utilities 2.33.0.1158 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities_is1

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

O42 - Logiciel: Governor of Poker 2 PE 1.0 - (.Pas de propriétaire.) [HKLM][64Bits] -- Governor of Poker 2 PE 1.0

O42 - Logiciel: HDD Health v3.2 Beta - (.Pas de propriétaire.) [HKLM][64Bits] -- HDD Health_is1

O42 - Logiciel: HTC BMP USB Driver - (.HTC.) [HKLM][64Bits] -- {31A559C1-9E4D-423B-9DD3-34A6C5398752}

O42 - Logiciel: JMicron JMB36X Driver - (.JMicron Technology Corp..) [HKLM][64Bits] -- {3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}

O42 - Logiciel: Java 6 Update 21 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216021FF}

O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM][64Bits] -- LogMeIn Hamachi

O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM][64Bits] -- {491DFBAA-77EF-4B06-8676-2FC66EEE049A}

O42 - Logiciel: MP Manager - (.MPMAN.) [HKLM][64Bits] -- {9B30D1C5-229F-4934-A781-DFBFB171D91D}

O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM][64Bits] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44}

O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94}

O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM][64Bits] -- {93665FB0-2A3D-47E1-AB9A-1925130924BB}

O42 - Logiciel: Mafia II - (.Pas de propriétaire.) [HKLM][64Bits] -- Mafia II_is1

O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1

O42 - Logiciel: Media Go - (.Sony.) [HKLM][64Bits] -- {C6AC04F5-5916-4A02-BC36-AF5BC0A3CBD4}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}

O42 - Logiciel: Microsoft Games for Windows - LIVE - (.Microsoft Corporation.) [HKLM][64Bits] -- {86A4C6D9-29EE-4719-AFA1-BA3341862B83}

O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {1FDA5A37-B22D-43FF-B582-B8964050DC13}

O42 - Logiciel: Microsoft Office Access MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0015-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Access MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0015-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Access Setup Metadata MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0117-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Excel MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0016-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Excel MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0016-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Groove MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00BA-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Groove MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00BA-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office InfoPath MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0044-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0044-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Language Pack 2010 - French/Français - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.OMUI.fr-fr

O42 - Logiciel: Microsoft Office O MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0100-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Office 64-bit Components 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002A-0000-1000-0000000FF1CE}

O42 - Logiciel: Microsoft Office OneNote MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00A1-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office OneNote MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00A1-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001A-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook Connector - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-007A-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001A-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001A-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0018-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0018-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.PROPLUS

O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0401-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Dutch) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0413-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (German) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0407-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Spanish) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0C0A-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-002C-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-002C-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Publisher MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0019-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Publisher MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0019-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office SharePoint Designer MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0017-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared 64-bit MUI (English) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002A-0409-1000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002A-040C-1000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0116-0409-1000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-006E-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-006E-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared Setup Metadata MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0115-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Word MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001B-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Word MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001B-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office X MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0101-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Outlook 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.OUTLOOK

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {B6E3757B-5E77-3915-866A-CCFC4B8D194C}

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM][64Bits] -- {770657D0-A123-3C07-8E44-1C83EC895118}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {071c9b48-7c32-4621-a0ac-3f809523288f}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-4627-81f2-1818da5d550d}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {A49F249F-0C91-497F-86DF-B2585E8E76B7}

O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM][64Bits] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 - (.Microsoft Corporation.) [HKLM][64Bits] -- {820B6609-4C97-3A2B-B644-573B06A0F0CC}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

O42 - Logiciel: Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 - (.Microsoft Corporation.) [HKLM] -- {DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}

O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 - (.Microsoft Corporation.) [HKLM][64Bits] -- {196BB40D-1578-3D01-B289-BEFC77A11A1E}

O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack

O42 - Logiciel: NVIDIA GAME System Software 2.8.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {4F0C7CCF-5666-474B-B02E-AC514A95EC93}

O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}

O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {DEA314C4-0929-4250-BC92-98E4C105F28D}

O42 - Logiciel: OpenAL - (.Pas de propriétaire.) [HKLM][64Bits] -- OpenAL

O42 - Logiciel: PC Wizard 2010.1.94 - (.Laurent KUTIL & Franck DELATTRE.) [HKLM][64Bits] -- PC Wizard 2010_is1

O42 - Logiciel: PeerBlock 1.1 (r518) - (.PeerBlock, LLC.) [HKLM] -- {015C5B35-B678-451C-9AEE-821E8D69621C}_is1

O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3

O42 - Logiciel: Pilote vidéo Pinnacle - (.Pinnacle Systems.) [HKLM] -- {6DE721A5-5E89-4D74-994C-652BB3C0672E}

O42 - Logiciel: Pinnacle Studio 14 - (.Pinnacle Systems.) [HKLM][64Bits] -- {AADD1C8F-D59F-4D55-A726-768C71A205A8}

O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C}

O42 - Logiciel: SFR - Media Center - (.SFR.) [HKLM][64Bits] -- SFR_Media Center

O42 - Logiciel: SHIFT 2 UNLEASHED™ - (.Electronic Arts.) [HKLM][64Bits] -- {E8C37E27-5205-4C8A-BECB-B00533045AAE}

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841

O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289078) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{1D1A4F08-2F17-475B-BA72-476CE5992FEE}

O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289078) - (.Microsoft.) [HKLM][64Bits] -- {90140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOK_{1D1A4F08-2F17-475B-BA72-476CE5992FEE}

O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289161) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F134C2C6-30B3-4169-A325-58482B4CE6FC}

O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289161) - (.Microsoft.) [HKLM][64Bits] -- {90140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOK_{F134C2C6-30B3-4169-A325-58482B4CE6FC}

O42 - Logiciel: Security Update for Microsoft Publisher 2010 (KB2409055) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{C3C277D5-36E3-4B1A-926A-175B2BC019CF}

O42 - Logiciel: Security Update for Microsoft Word 2010 (KB2345000) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{A6D422EE-1196-45EE-B9AE-6B5B64975E8B}

O42 - Logiciel: Sendoid - (.Caffeinated Mind, Inc..) [HKLM][64Bits] -- com.caffeinatedmind.Sendoid

O42 - Logiciel: Sendoid - (.Caffeinated Mind, Inc..) [HKLM][64Bits] -- {B031F0D7-0246-E2D0-0752-05A5C17DA1C3}

O42 - Logiciel: Skype™ 5.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {E633D396-5188-4E9D-8F6B-BFB8BF3467E8}

O42 - Logiciel: Sony Ericsson PC Companion 2.01.078 - (.Sony Ericsson.) [HKLM][64Bits] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}

O42 - Logiciel: Sony Ericsson Update Engine - (.Sony Ericsson Mobile Communications AB.) [HKLM][64Bits] -- Update Engine

O42 - Logiciel: Sophos Anti-Rootkit 1.5.0 - (.Sophos Plc.) [HKLM][64Bits] -- Sophos-AntiRootkit

O42 - Logiciel: SpeedFan (remove only) - (.Pas de propriétaire.) [HKLM][64Bits] -- SpeedFan

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1

O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}

O42 - Logiciel: Stellarium 0.10.5 - (.Pas de propriétaire.) [HKLM][64Bits] -- Stellarium_is1

O42 - Logiciel: Update for Microsoft Office 2010 (KB2202188) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{86B7A074-265D-420C-9E1E-7A920EF0ECA7}

O42 - Logiciel: Update for Microsoft Office 2010 (KB2413186) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{556146F7-74AE-4E0A-B64F-5B8B93469F61}

O42 - Logiciel: Update for Microsoft Office 2010 (KB2413186) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B5516874-E926-4BFD-B412-D0E70112F244}

O42 - Logiciel: Update for Microsoft Office 2010 (KB2413186) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{D6CE7280-6EE3-419A-8F47-DB111C040B1B}

O42 - Logiciel: Update for Microsoft Office 2010 (KB2494150) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}

O42 - Logiciel: Update for Microsoft Office 2010 (KB2494150) - (.Microsoft.) [HKLM][64Bits] -- {90140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOK_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}

O42 - Logiciel: Update for Microsoft OneNote 2010 (KB2493983) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{309EEC22-83CE-4109-B019-BA9392FAA322}

O42 - Logiciel: Update for Microsoft Outlook Social Connector (KB2289116) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{75F91382-920C-4AE1-B9E6-FFFCEDA797E8}

O42 - Logiciel: Update for Microsoft Outlook Social Connector (KB2289116) - (.Microsoft.) [HKLM][64Bits] -- {90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUS_{E966C940-CC8C-4EC0-8D84-ED27AC20D53C}

O42 - Logiciel: Usb Joypad - (.Pas de propriétaire.) [HKLM][64Bits] -- FT27B1

O42 - Logiciel: VLC Setup Helper 3.01 - (.Pas de propriétaire.) [HKLM][64Bits] -- VLC Setup Helper_is1

O42 - Logiciel: VLC media player 1.1.8 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player

O42 - Logiciel: WMV9/VC-1 Video Playback - (.ATI Technologies Inc..) [HKLM] -- {DE1B48FB-0EA4-6E6F-5335-9095994CB7EB}

O42 - Logiciel: WhoCrashed 3.01 - (.Resplendence Software Projects Sp..) [HKLM] -- WhoCrashed_is1

O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {9B48B0AC-C813-4174-9042-476A887592C7}

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {5DD76286-9BE7-4894-A990-E905E91AC818}

O42 - Logiciel: Windows Live OneCare safety scanner - (.Microsoft Corporation.) [HKLM][64Bits] -- Windows Live OneCare safety scanner

O42 - Logiciel: Windows Live OneCare safety scanner - (.Microsoft Corporation.) [HKLM][64Bits] -- {FE0646A7-19D0-41B4-A2BB-2C35D644270D}

O42 - Logiciel: Windows Mobile Device Updater Component - (.Microsoft Corporation.) [HKLM] -- {F2CB8C3C-9C9E-4FAB-9067-655601C5F748}

O42 - Logiciel: Windows Phone Intro Video (FRA) - (.Microsoft Corporation.) [HKLM][64Bits] -- {FC8F5A19-3EFB-45A9-BD04-FE0CF4D1647C}

O42 - Logiciel: Zune - (.Microsoft Corporation.) [HKLM] -- Zune

O42 - Logiciel: Zune - (.Microsoft Corporation.) [HKLM] -- {7006ED29-58F2-40C3-AE87-039287AD20B6}

O42 - Logiciel: Zune Language Pack (DEU) - (.Microsoft Corporation.) [HKLM] -- {BE236D9A-52EC-4A17-82DA-84B5EAD31E3E}

O42 - Logiciel: Zune Language Pack (ESP) - (.Microsoft Corporation.) [HKLM] -- {6B33492E-FBBC-4EC3-8738-09E16E395A10}

O42 - Logiciel: Zune Language Pack (FRA) - (.Microsoft Corporation.) [HKLM] -- {C68D33B1-0204-4EBE-BC45-A6E432B1D13A}

O42 - Logiciel: Zune Language Pack (ITA) - (.Microsoft Corporation.) [HKLM] -- {C5D37FFA-7483-410B-982B-91E93FD3B7DA}

O42 - Logiciel: Zune Language Pack (NLD) - (.Microsoft Corporation.) [HKLM] -- {6740BCB0-5863-47F4-80F4-44F394DE4FE2}

O42 - Logiciel: Zune Language Pack (PTB) - (.Microsoft Corporation.) [HKLM] -- {07EEE598-5F21-4B57-B40B-46592625B3D9}

O42 - Logiciel: Zune Language Pack (PTG) - (.Microsoft Corporation.) [HKLM] -- {5C93E291-A1CC-4E51-85C6-E194209FCDB4}

O42 - Logiciel: [HKLM\Software\Enregistrement utilisateur de Canon MP495 series] - (.Pas de propriétaire.) [HKLM][64Bits] -- ESET Online Scanner

O42 - Logiciel: avast! Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- avast

O42 - Logiciel: runtime64 - (.immunet.) [HKLM] -- {AB79B2CD-4555-4D3F-BC37-8948598223F2}

O42 - Logiciel: µTorrent - (.Pas de propriétaire.) [HKLM][64Bits] -- uTorrent

---\\ HKCU & HKLM Software Keys

[HKCU\Software\7-ZIP]

[HKCU\Software\ALWIL Software]

[HKCU\Software\AMD]

[HKCU\Software\ASUS]

[HKCU\Software\ATI]

[HKCU\Software\AVAST Software]

[HKCU\Software\AVS4YOU]

[HKCU\Software\Activision]

[HKCU\Software\Adobe]

[HKCU\Software\Alawar]

[HKCU\Software\AppDataLow\Software\Adobe]

[HKCU\Software\AppDataLow\Software\Microsoft]

[HKCU\Software\AppDataLow\Software\PriceGong]

[HKCU\Software\AppDataLow\Software\ThinPrint]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\Apple Computer, Inc.]

[HKCU\Software\Apple Inc.]

[HKCU\Software\Aurigma]

[HKCU\Software\Big Fish Games]

[HKCU\Software\BillP Studios]

[HKCU\Software\BitTorrent]

[HKCU\Software\BlueRippleSound]

[HKCU\Software\C$1]

[HKCU\Software\CDDB]

[HKCU\Software\CPUID]

[HKCU\Software\Canneverbe Limited]

[HKCU\Software\CanonBJ]

[HKCU\Software\Canon]

[HKCU\Software\Caphyon]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\Codemasters]

[HKCU\Software\Crytek]

[HKCU\Software\Cygnus Solutions]

[HKCU\Software\DSS]

[HKCU\Software\DT Soft]

[HKCU\Software\DiskSoftware]

[HKCU\Software\DivXNetworks]

[HKCU\Software\ESET]

[HKCU\Software\Electronic Arts]

[HKCU\Software\F-Secure]

[HKCU\Software\FreeCDRIP]

[HKCU\Software\Freeware]

[HKCU\Software\Funambol]

[HKCU\Software\Futuremark]

[HKCU\Software\GNU]

[HKCU\Software\GameSpy]

[HKCU\Software\GlarySoft]

[HKCU\Software\Google]

[HKCU\Software\HookNetwork]

[HKCU\Software\IDAVLab]

[HKCU\Software\IGA]

[HKCU\Software\Innovative Solutions]

[HKCU\Software\Intel]

[HKCU\Software\JEDI-VCL]

[HKCU\Software\JavaSoft]

[HKCU\Software\Kransimulator 2009]

[HKCU\Software\Lavalys]

[HKCU\Software\Licenses]

[HKCU\Software\MPMAN]

[HKCU\Software\Macromedia]

[HKCU\Software\Magical Jelly Bean Software]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\Netscape]

[HKCU\Software\Neuf]

[HKCU\Software\ODBC]

[HKCU\Software\Oddworld]

[HKCU\Software\Over-Link]

[HKCU\Software\Pinnacle Systems]

[HKCU\Software\Piriform]

[HKCU\Software\Policies]

[HKCU\Software\Protect Software GmbH]

[HKCU\Software\Redemption??]

[HKCU\Software\Resplendence Sp]

[HKCU\Software\Safer Networking Limited]

[HKCU\Software\SecuROM]

[HKCU\Software\Secunia]

[HKCU\Software\SkypeApps]

[HKCU\Software\Skype]

[HKCU\Software\Softonic]

[HKCU\Software\Sony Corporation]

[HKCU\Software\Sony Ericsson]

[HKCU\Software\SpeedFan]

[HKCU\Software\TAdvCheckList]

[HKCU\Software\Trolltech]

[HKCU\Software\Ubisoft]

[HKCU\Software\VB and VBA Program Settings]

[HKCU\Software\VMware, Inc.]

[HKCU\Software\VOB]

[HKCU\Software\Valve]

[HKCU\Software\WideStream]

[HKCU\Software\Wow6432Node]

[HKCU\Software\cybelsoft]

[HKCU\Software\ej-technologies]

[HKCU\Software\iPhone Backup Extractor]

[HKCU\Software\techPowerUp]

[HKLM\Software\2K Games]

[HKLM\Software\AGEIA Technologies]

[HKLM\Software\ALWIL Software]

[HKLM\Software\AMD]

[HKLM\Software\ASUS]

[HKLM\Software\ATI Technologies]

[HKLM\Software\ATI]

[HKLM\Software\AVAST Software]

[HKLM\Software\AVS4YOU]

[HKLM\Software\Activision]

[HKLM\Software\Adobe]

[HKLM\Software\Alawar]

[HKLM\Software\AppDataLow]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\Apple Inc.]

[HKLM\Software\Big Fish Games]

[HKLM\Software\BillP Studios]

[HKLM\Software\BlueRippleSound]

[HKLM\Software\BrowserChoice]

[HKLM\Software\CDDB]

[HKLM\Software\Canon]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Codemasters]

[HKLM\Software\Crytek]

[HKLM\Software\Cygnus Solutions]

[HKLM\Software\DICE]

[HKLM\Software\DT Soft]

[HKLM\Software\DivXNetworks]

[HKLM\Software\DivX]

[HKLM\Software\EA GAMES]

[HKLM\Software\EA Games]

[HKLM\Software\EPSON]

[HKLM\Software\Electronic Arts]

[HKLM\Software\Eset]

[HKLM\Software\FAST Multimedia]

[HKLM\Software\Funambol]

[HKLM\Software\GEAR Software]

[HKLM\Software\GZero]

[HKLM\Software\GlarySoft]

[HKLM\Software\Google]

[HKLM\Software\HighCriteria]

[HKLM\Software\IDAVLab]

[HKLM\Software\IObit]

[HKLM\Software\Innovative Solutions]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\Khronos]

[HKLM\Software\Licenses]

[HKLM\Software\LogMeIn, Inc.]

[HKLM\Software\Macromedia]

[HKLM\Software\Malwarebytes' Anti-Malware]

[HKLM\Software\McAfee.com]

[HKLM\Software\Milestone]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mumble]

[HKLM\Software\NVIDIA Corporation]

[HKLM\Software\Neuf]

[HKLM\Software\Nordic Games]

[HKLM\Software\ODBC]

[HKLM\Software\OpenAutomate]

[HKLM\Software\Panda Software]

[HKLM\Software\Patriot]

[HKLM\Software\Pegasus Imaging]

[HKLM\Software\PegasusImaging]

[HKLM\Software\Pinnacle Systems]

[HKLM\Software\Piriform]

[HKLM\Software\Policies]

[HKLM\Software\Redemption??]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\SBDT AB]

[HKLM\Software\Safer Networking Limited]

[HKLM\Software\Skype]

[HKLM\Software\Softwin]

[HKLM\Software\Sonic]

[HKLM\Software\Sony Corporation]

[HKLM\Software\Sony Creative Software]

[HKLM\Software\Sony Ericsson]

[HKLM\Software\Sony Media Software]

[HKLM\Software\ThinPrint]

[HKLM\Software\Thrustmaster]

[HKLM\Software\TrendMicro]

[HKLM\Software\Trymedia Systems]

[HKLM\Software\Tunngle.net]

[HKLM\Software\Ubisoft]

[HKLM\Software\VMware, Inc.]

[HKLM\Software\Valve]

[HKLM\Software\VideoLAN]

[HKLM\Software\WinSock2]

[HKLM\Software\Wow6432Node]

[HKLM\Software\cybelsoft]

[HKLM\Software\mozilla.org]

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 19/05/2010 - 10:07:54 - [23695489] ----D- C:\Program Files\ATI

O43 - CFD: 14/12/2010 - 19:01:20 - [28] ----D- C:\Program Files\ATI Technologies

O43 - CFD: 07/01/2011 - 20:14:16 - [6168906] ----D- C:\Program Files\Canon

O43 - CFD: 07/01/2011 - 20:13:38 - [16642932] --H-D- C:\Program Files\CanonBJ

O43 - CFD: 24/01/2011 - 20:35:50 - [70788015] ----D- C:\Program Files\Common Files

O43 - CFD: 14/07/2009 - 17:35:14 - [90257428] ----D- C:\Program Files\DVD Maker

O43 - CFD: 18/05/2010 - 17:49:06 - [0] -SH-D- C:\Program Files\Fichiers communs

O43 - CFD: 20/05/2010 - 07:36:20 - [0] ----D- C:\Program Files\Google

O43 - CFD: 04/04/2011 - 11:21:30 - [6201360] ----D- C:\Program Files\Internet Explorer

O43 - CFD: 14/07/2009 - 17:35:14 - [149236786] ----D- C:\Program Files\Microsoft Games

O43 - CFD: 14/06/2010 - 15:35:08 - [16238689] ----D- C:\Program Files\Microsoft Office

O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files\MSBuild

O43 - CFD: 03/04/2011 - 20:43:52 - [21578377] ----D- C:\Program Files\PeerBlock

O43 - CFD: 14/07/2009 - 07:32:40 - [36253865] ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 14/07/2009 - 07:09:28 - [0] --H-D- C:\Program Files\Uninstall Information

O43 - CFD: 14/07/2009 - 17:24:10 - [4039168] ----D- C:\Program Files\Windows Defender

O43 - CFD: 16/12/2010 - 09:53:24 - [6667264] ----D- C:\Program Files\Windows Mail

O43 - CFD: 12/10/2010 - 20:33:06 - [7687085] ----D- C:\Program Files\Windows Media Player

O43 - CFD: 18/05/2010 - 17:49:06 - [12627124] ----D- C:\Program Files\Windows NT

O43 - CFD: 14/07/2009 - 17:24:10 - [5516568] ----D- C:\Program Files\Windows Photo Viewer

O43 - CFD: 14/07/2009 - 07:32:40 - [235008] ----D- C:\Program Files\Windows Portable Devices

O43 - CFD: 14/07/2009 - 17:24:10 - [7191662] ----D- C:\Program Files\Windows Sidebar

O43 - CFD: 27/02/2011 - 13:58:16 - [999392] ----D- C:\Program Files\Zune

O43 - CFD: 14/12/2010 - 19:00:46 - [5392136] ----D- C:\Program Files\Common Files\ATI Technologies

O43 - CFD: 27/02/2011 - 13:57:58 - [52774438] ----D- C:\Program Files\Common Files\Microsoft Shared

O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 14/07/2009 - 05:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 14/07/2009 - 17:24:10 - [12009971] ----D- C:\Program Files\Common Files\System

O43 - CFD: 14/11/2010 - 21:50:22 - [769] ----D- C:\ProgramData\Adobe

O43 - CFD: 07/12/2010 - 22:41:04 - [72013] ----D- C:\ProgramData\AlawarWrapper

O43 - CFD: 28/06/2010 - 22:05:52 - [3205296] ----D- C:\ProgramData\Alwil Software

O43 - CFD: 05/06/2010 - 15:09:30 - [92395839] ----D- C:\ProgramData\Apple

O43 - CFD: 27/07/2010 - 14:18:42 - [27162121] ----D- C:\ProgramData\Apple Computer

O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Application Data

O43 - CFD: 11/08/2010 - 17:39:38 - [1252] ----D- C:\ProgramData\Astroburn Pro

O43 - CFD: 14/12/2010 - 19:02:30 - [1264803] ----D- C:\ProgramData\ATI

O43 - CFD: 10/09/2010 - 17:06:22 - [0] ----D- C:\ProgramData\AVS4YOU

O43 - CFD: 27/03/2011 - 19:21:02 - [0] ----D- C:\ProgramData\Babylon

O43 - CFD: 18/05/2010 - 17:49:06 - [0] -SH-D- C:\ProgramData\Bureau

O43 - CFD: 03/10/2010 - 20:10:08 - [0] ----D- C:\ProgramData\CA

O43 - CFD: 21/09/2010 - 12:46:10 - [0] ----D- C:\ProgramData\Canneverbe Limited

O43 - CFD: 07/01/2011 - 20:20:34 - [0] ----D- C:\ProgramData\Canon IJ Network Tool

O43 - CFD: 07/01/2011 - 20:14:10 - [22163925] --H-D- C:\ProgramData\CanonBJ

O43 - CFD: 07/01/2011 - 20:14:42 - [2675] ----D- C:\ProgramData\CanonIJMSetup

O43 - CFD: 07/01/2011 - 20:30:12 - [2530] --H-D- C:\ProgramData\CanonIJScan

O43 - CFD: 22/09/2010 - 15:42:56 - [2098578084] ----D- C:\ProgramData\Codemasters

O43 - CFD: 18/05/2010 - 21:38:30 - [1188] ----D- C:\ProgramData\DAEMON Tools Lite

O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Desktop

O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Documents

O43 - CFD: 16/10/2010 - 19:48:12 - [4357] -SH-D- C:\ProgramData\DSS

O43 - CFD: 23/11/2010 - 22:55:34 - [0] ----D- C:\ProgramData\EA Core

O43 - CFD: 21/10/2010 - 19:12:30 - [46780] ----D- C:\ProgramData\Elaborate Bytes

O43 - CFD: 23/11/2010 - 22:55:34 - [96529] ----D- C:\ProgramData\Electronic Arts

O43 - CFD: 19/05/2010 - 11:02:46 - [1211] ----D- C:\ProgramData\F-Secure

O43 - CFD: 18/05/2010 - 17:49:06 - [0] -SH-D- C:\ProgramData\Favoris

O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Favorites

O43 - CFD: 25/06/2010 - 09:41:30 - [3686090] ----D- C:\ProgramData\Futuremark

O43 - CFD: 19/05/2010 - 21:41:48 - [2489] ----D- C:\ProgramData\Google

O43 - CFD: 19/03/2011 - 13:58:14 - [72829] ----D- C:\ProgramData\Immunet

O43 - CFD: 19/03/2011 - 18:31:32 - [0] ----D- C:\ProgramData\Innovative Solutions

O43 - CFD: 03/10/2010 - 13:57:44 - [914] ----D- C:\ProgramData\IObit

O43 - CFD: 13/01/2011 - 15:08:14 - [1203748] ----D- C:\ProgramData\ma-config.com

O43 - CFD: 04/06/2010 - 16:08:24 - [14305128] ----D- C:\ProgramData\Malwarebytes

O43 - CFD: 19/03/2011 - 13:41:16 - [97092] ----D- C:\ProgramData\McAfee

O43 - CFD: 22/09/2010 - 14:12:00 - [693] ----D- C:\ProgramData\Media Center Programs

O43 - CFD: 18/05/2010 - 17:49:06 - [0] -SH-D- C:\ProgramData\Menu Démarrer

O43 - CFD: 15/03/2011 - 23:39:48 - [1246990185] -S--D- C:\ProgramData\Microsoft

O43 - CFD: 09/03/2011 - 20:09:44 - [316612] ----D- C:\ProgramData\Microsoft Help

O43 - CFD: 18/05/2010 - 17:49:06 - [0] -SH-D- C:\ProgramData\Modèles

O43 - CFD: 04/12/2010 - 16:24:12 - [690059] ----D- C:\ProgramData\Pinnacle

O43 - CFD: 04/12/2010 - 16:19:56 - [0] ----D- C:\ProgramData\Pinnacle Studio Plus

O43 - CFD: 04/12/2010 - 16:24:44 - [35576] ----D- C:\ProgramData\Pinnacle Studio Ultimate Collection

O43 - CFD: 14/12/2010 - 18:57:54 - [70377600] ----D- C:\ProgramData\Skype

O43 - CFD: 29/03/2011 - 23:14:16 - [3078] ----D- C:\ProgramData\Solidshield

O43 - CFD: 12/12/2010 - 15:48:00 - [145533407] ----D- C:\ProgramData\Sony Ericsson

O43 - CFD: 10/04/2011 - 19:00:22 - [53240001] ----D- C:\ProgramData\Spybot - Search & Destroy

O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Start Menu

O43 - CFD: 04/12/2010 - 16:19:56 - [8020769112] ----D- C:\ProgramData\Studio 14

O43 - CFD: 19/05/2010 - 10:57:14 - [154] ----D- C:\ProgramData\Sun

O43 - CFD: 18/01/2011 - 20:11:24 - [0] ----D- C:\ProgramData\SUPERAntiSpyware.com

O43 - CFD: 07/08/2010 - 18:05:24 - [0] ---AD- C:\ProgramData\TEMP

O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Templates

O43 - CFD: 26/07/2010 - 18:28:02 - [0] ----D- C:\ProgramData\Ubisoft

O43 - CFD: 14/11/2010 - 21:50:22 - [6689088] ----D- C:\Users\Fab\AppData\Roaming\Adobe

O43 - CFD: 05/06/2010 - 15:21:44 - [222593480] ----D- C:\Users\Fab\AppData\Roaming\Apple Computer

O43 - CFD: 19/05/2010 - 10:09:12 - [0] ----D- C:\Users\Fab\AppData\Roaming\ATI

O43 - CFD: 04/06/2010 - 14:42:18 - [1173] ----D- C:\Users\Fab\AppData\Roaming\Audacity

O43 - CFD: 05/12/2010 - 21:32:40 - [128] ----D- C:\Users\Fab\AppData\Roaming\AVS4YOU

O43 - CFD: 27/03/2011 - 19:21:02 - [2033] ----D- C:\Users\Fab\AppData\Roaming\Babylon

O43 - CFD: 07/12/2010 - 19:37:34 - [1954698] ----D- C:\Users\Fab\AppData\Roaming\BlackBean

O43 - CFD: 21/09/2010 - 12:46:10 - [1631] ----D- C:\Users\Fab\AppData\Roaming\Canneverbe Limited

O43 - CFD: 07/01/2011 - 20:30:12 - [2208] ----D- C:\Users\Fab\AppData\Roaming\Canon

O43 - CFD: 31/03/2011 - 09:15:40 - [2718] ----D- C:\Users\Fab\AppData\Roaming\com.caffeinatedmind.Sendoid

O43 - CFD: 14/01/2011 - 21:35:04 - [17189] ----D- C:\Users\Fab\AppData\Roaming\CopyTrans

O43 - CFD: 19/05/2010 - 09:56:34 - [3899] ----D- C:\Users\Fab\AppData\Roaming\DAEMON Tools Lite

O43 - CFD: 04/03/2011 - 21:40:02 - [0] ----D- C:\Users\Fab\AppData\Roaming\f-secure

O43 - CFD: 12/12/2010 - 16:54:04 - [261] ----D- C:\Users\Fab\AppData\Roaming\FreeAudioPack

O43 - CFD: 07/12/2010 - 23:02:48 - [435] ----D- C:\Users\Fab\AppData\Roaming\FreeCDRipper

O43 - CFD: 14/11/2010 - 16:51:28 - [54912] ----D- C:\Users\Fab\AppData\Roaming\Funambol

O43 - CFD: 28/06/2010 - 22:19:58 - [21711] ----D- C:\Users\Fab\AppData\Roaming\GlarySoft

O43 - CFD: 19/05/2010 - 21:29:34 - [0] ----D- C:\Users\Fab\AppData\Roaming\Google

O43 - CFD: 13/02/2011 - 17:26:44 - [2754434] ----D- C:\Users\Fab\AppData\Roaming\GZero

O43 - CFD: 25/09/2010 - 11:17:04 - [2756] ----D- C:\Users\Fab\AppData\Roaming\Hamachi

O43 - CFD: 19/05/2010 - 20:10:22 - [1162] ----D- C:\Users\Fab\AppData\Roaming\Identities

O43 - CFD: 29/05/2010 - 23:11:32 - [0] ----D- C:\Users\Fab\AppData\Roaming\InstallShield

O43 - CFD: 18/03/2011 - 14:41:38 - [355622] ----D- C:\Users\Fab\AppData\Roaming\kompozer.net

O43 - CFD: 17/03/2011 - 14:11:58 - [58145] ----D- C:\Users\Fab\AppData\Roaming\Macromedia

O43 - CFD: 04/06/2010 - 16:08:30 - [2110071] ----D- C:\Users\Fab\AppData\Roaming\Malwarebytes

O43 - CFD: 21/09/2010 - 20:45:48 - [2014590] ----D- C:\Users\Fab\AppData\Roaming\MAXON

O43 - CFD: 14/07/2009 - 17:35:04 - [0] ----D- C:\Users\Fab\AppData\Roaming\Media Center Programs

O43 - CFD: 10/04/2011 - 19:15:36 - [24657397] -S--D- C:\Users\Fab\AppData\Roaming\Microsoft

O43 - CFD: 18/03/2011 - 14:41:38 - [0] ----D- C:\Users\Fab\AppData\Roaming\Mozilla

O43 - CFD: 18/01/2011 - 20:43:08 - [2485511] ----D- C:\Users\Fab\AppData\Roaming\MP-Manager

O43 - CFD: 26/03/2011 - 18:39:06 - [176] ----D- C:\Users\Fab\AppData\Roaming\PC Remote

O43 - CFD: 15/06/2010 - 17:21:00 - [3824768] ----D- C:\Users\Fab\AppData\Roaming\ProtectDisc

O43 - CFD: 27/05/2010 - 11:47:10 - [7992] ----D- C:\Users\Fab\AppData\Roaming\SecuROM

O43 - CFD: 06/04/2011 - 00:06:54 - [7233334] ----D- C:\Users\Fab\AppData\Roaming\Skype

O43 - CFD: 28/12/2010 - 21:36:54 - [11016] ----D- C:\Users\Fab\AppData\Roaming\skypePM

O43 - CFD: 12/12/2010 - 15:52:46 - [106700628] ----D- C:\Users\Fab\AppData\Roaming\Sony

O43 - CFD: 22/09/2010 - 23:54:18 - [14381] ----D- C:\Users\Fab\AppData\Roaming\Stellarium

O43 - CFD: 29/06/2010 - 13:11:52 - [2364] ----D- C:\Users\Fab\AppData\Roaming\Ubisoft

O43 - CFD: 08/04/2011 - 20:01:36 - [1175062] ----D- C:\Users\Fab\AppData\Roaming\uTorrent

O43 - CFD: 07/02/2011 - 19:15:34 - [7040772] ----D- C:\Users\Fab\AppData\Roaming\vlc

O43 - CFD: 07/12/2010 - 22:41:06 - [31536] ----D- C:\Users\Fab\AppData\Roaming\YoudaGames

O43 - CFD: 28/08/2010 - 22:50:44 - [8674453] ----D- C:\Users\Fab\Appdata\Local\2K Games

O43 - CFD: 17/03/2011 - 15:24:02 - [3433] ----D- C:\Users\Fab\Appdata\Local\3DMGAME

O43 - CFD: 28/03/2011 - 19:34:20 - [4] ----D- C:\Users\Fab\Appdata\Local\Activision

O43 - CFD: 14/11/2010 - 21:50:20 - [109148] ----D- C:\Users\Fab\Appdata\Local\Adobe

O43 - CFD: 24/10/2010 - 19:50:52 - [0] ----D- C:\Users\Fab\Appdata\Local\Apple

O43 - CFD: 21/05/2010 - 20:45:08 - [32186168] ----D- C:\Users\Fab\Appdata\Local\Apple Computer

O43 - CFD: 18/05/2010 - 17:49:16 - [0] -SH-D- C:\Users\Fab\Appdata\Local\Application Data

O43 - CFD: 14/01/2011 - 14:15:36 - [0] ----D- C:\Users\Fab\Appdata\Local\Apps

O43 - CFD: 19/05/2010 - 10:09:12 - [91232] ----D- C:\Users\Fab\Appdata\Local\ATI

O43 - CFD: 27/03/2011 - 19:21:02 - [12234404] ----D- C:\Users\Fab\Appdata\Local\Babylon

O43 - CFD: 23/10/2010 - 18:15:36 - [0] ----D- C:\Users\Fab\Appdata\Local\CrashRpt

O43 - CFD: 12/12/2010 - 16:29:46 - [52035012] ----D- C:\Users\Fab\Appdata\Local\Downloaded Installations

O43 - CFD: 07/02/2011 - 15:36:12 - [1144] ----D- C:\Users\Fab\Appdata\Local\EA Games

O43 - CFD: 11/07/2010 - 13:17:52 - [3901] ----D- C:\Users\Fab\Appdata\Local\Electronic_Arts_Inc

O43 - CFD: 06/04/2011 - 01:57:18 - [3568768] ----D- C:\Users\Fab\Appdata\Local\ElevatedDiagnostics

O43 - CFD: 13/02/2011 - 17:28:16 - [6463138] ----D- C:\Users\Fab\Appdata\Local\Google

O43 - CFD: 13/02/2011 - 17:26:52 - [1223] ----D- C:\Users\Fab\Appdata\Local\GZero

O43 - CFD: 18/05/2010 - 17:49:16 - [0] -SH-D- C:\Users\Fab\Appdata\Local\Historique

O43 - CFD: 19/03/2011 - 13:48:36 - [0] ----D- C:\Users\Fab\Appdata\Local\Immunet

O43 - CFD: 19/03/2011 - 18:31:32 - [40410677] ----D- C:\Users\Fab\Appdata\Local\Innovative Solutions

O43 - CFD: 18/03/2011 - 14:41:38 - [3291326] ----D- C:\Users\Fab\Appdata\Local\kompozer.net

O43 - CFD: 31/05/2010 - 15:01:18 - [1632] ----D- C:\Users\Fab\Appdata\Local\LAG

O43 - CFD: 02/03/2011 - 16:45:32 - [44568] ----D- C:\Users\Fab\Appdata\Local\LiveGBoost

O43 - CFD: 16/04/2011 - 23:05:14 - [606344] ----D- C:\Users\Fab\Appdata\Local\LogMeIn Hamachi

O43 - CFD: 15/03/2011 - 23:09:22 - [7862634518] ----D- C:\Users\Fab\Appdata\Local\Microsoft

O43 - CFD: 23/10/2010 - 12:59:22 - [806330] ----D- C:\Users\Fab\Appdata\Local\Microsoft Games

O43 - CFD: 21/05/2010 - 10:46:16 - [0] ----D- C:\Users\Fab\Appdata\Local\Microsoft Help

O43 - CFD: 26/05/2010 - 11:29:10 - [16380] ----D- C:\Users\Fab\Appdata\Local\Microsoft_Research

O43 - CFD: 12/06/2010 - 16:01:02 - [88122] ----D- C:\Users\Fab\Appdata\Local\Neuf

O43 - CFD: 08/04/2011 - 14:52:32 - [11484] ----D- C:\Users\Fab\Appdata\Local\Pinnacle

O43 - CFD: 26/03/2011 - 22:54:50 - [773] ----D- C:\Users\Fab\Appdata\Local\SKIDROW

O43 - CFD: 12/12/2010 - 15:53:22 - [14727] ----D- C:\Users\Fab\Appdata\Local\Sony

O43 - CFD: 20/05/2010 - 12:08:52 - [0] ----D- C:\Users\Fab\Appdata\Local\Sony Ericsson

O43 - CFD: 25/05/2010 - 17:57:16 - [5860] ----D- C:\Users\Fab\Appdata\Local\storage

O43 - CFD: 16/04/2011 - 23:34:12 - [403960] ----D- C:\Users\Fab\Appdata\Local\Temp

O43 - CFD: 18/05/2010 - 17:49:16 - [0] -SH-D- C:\Users\Fab\Appdata\Local\Temporary Internet Files

O43 - CFD: 19/03/2011 - 18:59:46 - [59] ----D- C:\Users\Fab\Appdata\Local\vdownloader

O43 - CFD: 30/01/2011 - 17:26:20 - [0] ----D- C:\Users\Fab\Appdata\Local\Windows Live

O43 - CFD: 14/11/2010 - 21:50:22 - [159730696] ----D- C:\Program Files (x86)\Adobe

O43 - CFD: 02/09/2010 - 15:15:00 - [7927915] ----D- C:\Program Files (x86)\AGEIA Technologies

O43 - CFD: 30/03/2011 - 13:39:36 - [2448924] ----D- C:\Program Files (x86)\AMD APP

O43 - CFD: 04/06/2010 - 20:46:20 - [2911048] ----D- C:\Program Files (x86)\ASUS

O43 - CFD: 14/02/2011 - 00:03:10 - [292184] ----D- C:\Program Files (x86)\Atari

O43 - CFD: 14/12/2010 - 19:01:54 - [89517376] ----D- C:\Program Files (x86)\ATI Technologies

O43 - CFD: 04/12/2010 - 16:37:36 - [29230530] ----D- C:\Program Files (x86)\AVS4YOU

O43 - CFD: 30/03/2011 - 02:01:10 - [0] ----D- C:\Program Files (x86)\BRS

O43 - CFD: 07/01/2011 - 20:21:36 - [83710419] ----D- C:\Program Files (x86)\Canon

O43 - CFD: 30/03/2011 - 01:59:22 - [572409988] ----D- C:\Program Files (x86)\Common Files

O43 - CFD: 16/12/2010 - 11:05:40 - [81024794] ----D- C:\Program Files (x86)\ESET

O43 - CFD: 03/10/2010 - 13:51:42 - [1963867] ----D- C:\Program Files (x86)\FT27B1

O43 - CFD: 14/11/2010 - 21:03:50 - [3053058] ----D- C:\Program Files (x86)\Funambol

O43 - CFD: 13/02/2011 - 17:26:42 - [1718201] ----D- C:\Program Files (x86)\GBoost

O43 - CFD: 20/05/2010 - 07:36:20 - [3044360] ----D- C:\Program Files (x86)\Google

O43 - CFD: 14/11/2010 - 21:50:38 - [306910] ----D- C:\Program Files (x86)\HTC

O43 - CFD: 17/01/2011 - 21:47:16 - [9437071] --H-D- C:\Program Files (x86)\InstallShield Installation Information

O43 - CFD: 19/05/2010 - 11:33:02 - [96703] ----D- C:\Program Files (x86)\Intel

O43 - CFD: 04/04/2011 - 11:21:30 - [6386736] ----D- C:\Program Files (x86)\Internet Explorer

O43 - CFD: 26/07/2010 - 13:52:30 - [89381527] ----D- C:\Program Files (x86)\Java

O43 - CFD: 14/12/2010 - 23:20:20 - [0] ----D- C:\Program Files (x86)\LogMeIn Hamachi

O43 - CFD: 13/01/2011 - 15:08:14 - [5535228] ----D- C:\Program Files (x86)\ma-config.com

O43 - CFD: 12/12/2010 - 15:51:10 - [0] ----D- C:\Program Files (x86)\Media Go

O43 - CFD: 14/06/2010 - 15:34:48 - [40530747] ----D- C:\Program Files (x86)\Microsoft Analysis Services

O43 - CFD: 16/11/2010 - 14:29:04 - [9337482] ----D- C:\Program Files (x86)\Microsoft Games for Windows - LIVE

O43 - CFD: 02/03/2011 - 20:19:46 - [38371963] ----D- C:\Program Files (x86)\Microsoft Silverlight

O43 - CFD: 14/06/2010 - 15:41:22 - [651457] ----D- C:\Program Files (x86)\Microsoft Visual Studio 8

O43 - CFD: 23/06/2010 - 13:43:22 - [8167779] ----D- C:\Program Files (x86)\Microsoft.NET

O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files (x86)\MSBuild

O43 - CFD: 30/01/2011 - 17:21:02 - [6806063] ----D- C:\Program Files (x86)\MSECACHE

O43 - CFD: 14/11/2010 - 21:50:08 - [154033] ----D- C:\Program Files (x86)\MSXML 4.0

O43 - CFD: 28/08/2010 - 22:51:08 - [82645511] ----D- C:\Program Files (x86)\NVIDIA Corporation

O43 - CFD: 30/05/2010 - 13:31:44 - [1619056] ----D- C:\Program Files (x86)\OpenAL

O43 - CFD: 19/03/2011 - 13:59:44 - [0] ----D- C:\Program Files (x86)\Panda Security

O43 - CFD: 04/12/2010 - 16:18:14 - [568598035] ----D- C:\Program Files (x86)\Pinnacle

O43 - CFD: 12/12/2010 - 18:10:24 - [76322555] ----D- C:\Program Files (x86)\QuickTime

O43 - CFD: 14/07/2009 - 07:32:40 - [38597377] ----D- C:\Program Files (x86)\Reference Assemblies

O43 - CFD: 12/06/2010 - 16:00:18 - [6926756] ----D- C:\Program Files (x86)\SFR

O43 - CFD: 12/12/2010 - 15:47:58 - [80072592] ----D- C:\Program Files (x86)\Sony Ericsson

O43 - CFD: 12/12/2010 - 16:29:38 - [73999180] ----D- C:\Program Files (x86)\Sony Media Go Install

O43 - CFD: 02/08/2010 - 19:56:06 - [1945365] ----D- C:\Program Files (x86)\Ubisoft

O43 - CFD: 14/07/2009 - 06:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information

O43 - CFD: 14/07/2009 - 17:24:10 - [524800] ----D- C:\Program Files (x86)\Windows Defender

O43 - CFD: 30/01/2011 - 17:37:54 - [9383242] ----D- C:\Program Files (x86)\Windows Live

O43 - CFD: 03/07/2010 - 17:46:26 - [64678335] ----D- C:\Program Files (x86)\Windows Live Safety Center

O43 - CFD: 16/12/2010 - 09:53:24 - [6180864] ----D- C:\Program Files (x86)\Windows Mail

O43 - CFD: 12/10/2010 - 20:33:06 - [5024017] ----D- C:\Program Files (x86)\Windows Media Player

O43 - CFD: 14/07/2009 - 07:32:40 - [12197556] ----D- C:\Program Files (x86)\Windows NT

O43 - CFD: 14/07/2009 - 17:24:10 - [4417800] ----D- C:\Program Files (x86)\Windows Photo Viewer

O43 - CFD: 14/07/2009 - 07:32:42 - [189440] ----D- C:\Program Files (x86)\Windows Portable Devices

O43 - CFD: 14/07/2009 - 17:24:10 - [5994114] ----D- C:\Program Files (x86)\Windows Sidebar

O43 - CFD: 14/12/2010 - 19:00:46 - [5392136] ----D- C:\Program Files\Common Files\ATI Technologies

O43 - CFD: 27/02/2011 - 13:57:58 - [52774438] ----D- C:\Program Files\Common Files\Microsoft Shared

O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 14/07/2009 - 05:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 14/07/2009 - 17:24:10 - [12009971] ----D- C:\Program Files\Common Files\System

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.BCEE5D6DFFBF99602B9676147084B297] - 16/04/2011 - 22:09:54 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1557478]

O44 - LFC:[MD5.D1533B431D11311E12EDECBBAB22BD13] - 16/04/2011 - 22:09:54 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [107034]

O44 - LFC:[MD5.C2D5F0AF268B737297D94927795B2762] - 16/04/2011 - 22:09:54 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [131426]

O44 - LFC:[MD5.80DD05D603691E52C8DFE7975829ADAE] - 16/04/2011 - 22:09:54 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [618714]

O44 - LFC:[MD5.CB29879DC30CEDBECA4CE2753354A30B] - 16/04/2011 - 22:09:54 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [706998]

O44 - LFC:[MD5.4C7760C6493CE1003129B05B4DB4359D] - 16/04/2011 - 22:04:25 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.5123F261346A7F668D081F8D5218D348] - 11/04/2011 - 19:36:23 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [13824]

O44 - LFC:[MD5.5123F261346A7F668D081F8D5218D348] - 11/04/2011 - 19:36:23 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [13824]

O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 04/04/2011 - 10:20:07 ---A- . (...) -- C:\Windows\SysNative\ieuinit.inf [72822]

O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 04/04/2011 - 10:20:07 ---A- . (...) -- C:\Windows\System32\ieuinit.inf [72822]

O44 - LFC:[MD5.A35ED49316042B5E7D71491559E22D0A] - 30/03/2011 - 18:04:32 ---A- . (.Dll-Files.com - Dll-Files.com Fixer.) -- C:\Windows\SysNative\roboot64.exe [17128]

O44 - LFC:[MD5.7C2BD3935A96968C81AEEEEF36C25BB9] - 21/03/2011 - 18:56:26 ---A- . (...) -- C:\Windows\SysNative\OVDecode64.dll [61952]

O44 - LFC:[MD5.B820A42613502614614D421AA08DEF5B] - 21/03/2011 - 18:56:10 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\SysNative\OpenCL.dll [53760]

O44 - LFC:[MD5.B820A42613502614614D421AA08DEF5B] - 21/03/2011 - 18:56:06 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.dll [51712]

O44 - LFC:[MD5.EFDC488CB1540F5D7E2F2EB7B4435961] - 21/03/2011 - 18:55:58 ---A- . (.Advanced Micro Devices Inc. - AMD Accelerated Parallel Processing OpenCL.) -- C:\Windows\SysNative\amdocl64.dll [16115712]

---\\ Export de clé d'application autorisée (O47)

O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Roaming\svchost.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Roaming\svchost.exe (.not file.)

O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Roaming\0Q11SIUAOM.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Roaming\0Q11SIUAOM.exe (.not file.)

O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Roaming\csrss.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Roaming\csrss.exe (.not file.)

O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Local\Temp\15081.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Local\Temp\15081.exe (.not file.)

O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Local\Temp\7706.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Local\Temp\7706.exe (.not file.)

---\\ MountPoints2 Shell Key (O51)

O51 - MPSK:{c52b28ce-05f1-11e0-a338-001e8c45677a}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- J:\Startme.exe (.not file.)

O51 - MPSK:{c52b297c-05f1-11e0-a338-001e8c45677a}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- J:\Startme.exe (.not file.)

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

---\\ ShareTools MSconfig StartupReg (O53)

O53 - SMSR:HKLM\...\startupreg\adm_tray.exe [Key] . (.Pas de propriétaire - Pas de description.) -- E:\Program Files (x86)\Acronis\DriveMonitor\adm_tray.exe

O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

O53 - SMSR:HKLM\...\startupreg\CanonMyPrinter [Key] . (.CANON INC. - Canon My Printer.) -- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe

O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.DT Soft Ltd - DAEMON Tools Lite.) -- e:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe

O53 - SMSR:HKLM\...\startupreg\Disk SpeedUp [Key] . (.Glarysoft Ltd - Disk SpeedUp.) -- e:\Program Files (x86)\Glarysoft\Disk SpeedUp\Defrag.exe

O53 - SMSR:HKLM\...\startupreg\Fenrir [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Roaming\Fenrir\svchost.exe

O53 - SMSR:HKLM\...\startupreg\hddhealth [Key] . (.PANTERASoft - Pas de description.) -- E:\Program Files (x86)\HDD Health\hddhealth.exe

O53 - SMSR:HKLM\...\startupreg\IObit Security 360 [Key] . (.Pas de propriétaire - Pas de description.) -- E:\Program Files (x86)\IObit Security 360\IS360tray.exe

O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Pas de propriétaire - Pas de description.) -- E:\Program Files (x86)\iTunes\iTunesHelper.exe

O53 - SMSR:HKLM\...\startupreg\JMB36X IDE Setup [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Windows\RaidTool\xInsIDE.exe

O53 - SMSR:HKLM\...\startupreg\LogMeIn Hamachi Ui [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe

O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe

O53 - SMSR:HKLM\...\startupreg\Service Planificateur2 Acronis [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe

O53 - SMSR:HKLM\...\startupreg\Sony Ericsson PC Companion [Key] . (.Sony Ericsson - Sony Ericsson PC Companion.) -- C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe

O53 - SMSR:HKLM\...\startupreg\Sony Ericsson PC Suite [Key] . (.Sony Ericsson Mobile Communications AB - Sony Ericsson PC Suite.) -- E:\Program Files (x86)\PC Suite 770i\SEPCSuite.exe

O53 - SMSR:HKLM\...\startupreg\Steam [Key] . (.Valve Corporation - Steam.) -- e:\program files (x86)\steam\steam.exe

O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

O53 - SMSR:HKLM\...\startupreg\SUPERAntiSpyware [Key] . (.Pas de propriétaire - Pas de description.) -- E:\Program Files (x86)\SuperSpyware\SUPERAntiSpyware.exe

O53 - SMSR:HKLM\...\startupreg\TrojanScanner [Key] . (.Pas de propriétaire - Pas de description.) -- e:\Program Files (x86)\Trojan Remover\Trjscan.exe

O53 - SMSR:HKLM\...\startupreg\Zune Launcher [Key] . (.Microsoft Corporation - Zune Auto-Launcher.) -- E:\Program Files (x86)\Zune\ZuneLauncher.exe

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

---\\ Microsoft Windows Policies Explorer (O56)

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=0

O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=145

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088]

O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536]

O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864]

O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440]

O58 - SDL:[MD5.7A4B413614C055935567CF88A9734D38] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [106576]

O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128]

O58 - SDL:[MD5.B4AD0CACBAB298671DD6F6EF7E20679D] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [28752]

O58 - SDL:[MD5.C687F3EBD5517CC05EC958A91CC84D31] - 23/10/2008 - 19:35:24 ---A- . (.Netmarketing Pawel Wisniewski - ANF Redirector.) -- C:\Windows\system32\drivers\anf0100.sys [13888]

O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632]

O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856]

O58 - SDL:[MD5.19B006B181E3875FD254F7B67ACF1E7C] - 04/06/2010 - 19:44:49 ---A- . (.Pas de propriétaire - ATK0110 ACPI Utility.) -- C:\Windows\system32\drivers\ASACPI.sys [15416]

O58 - SDL:[MD5.F810E3EA3D1F3C3BA26F2F4719BDCA4F] - 23/02/2011 - 15:54:58 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys [22360]

O58 - SDL:[MD5.3687FD9CEDF56D3B9F18923F4E14F3F9] - 23/02/2011 - 15:55:05 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys [64344]

O58 - SDL:[MD5.E99E48596B35E5D5240104BCD61B3471] - 23/02/2011 - 15:55:13 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys [31064]

O58 - SDL:[MD5.84AD8FB3FD2EFA52D8599A0028BBB6FE] - 23/02/2011 - 15:57:01 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\system32\drivers\aswSnx.sys [505176]

O58 - SDL:[MD5.8CBA6CC5DCA9E3829F1792BF98F06901] - 23/02/2011 - 15:57:04 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys [280408]

O58 - SDL:[MD5.184248F2DED7B1641C7F3B30381BAA2A] - 23/02/2011 - 15:55:53 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys [53592]

O58 - SDL:[MD5.4BF5BCA6E2608CD8A00BC4A6673A9F47] - 17/11/2010 - 13:04:32 ---A- . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\AtihdW76.sys [115216]

O58 - SDL:[MD5.BFA9657ADF7DDC29242A6E0E88DE36FA] - 09/03/2011 - 10:22:42 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [9258496]

O58 - SDL:[MD5.8C493027D9B2399283E724E9862EBB42] - 09/03/2011 - 05:17:42 ---A- . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\system32\drivers\atikmpag.sys [300544]

O58 - SDL:[MD5.FC0E8778C000291CAF60EB88C011E931] - 05/12/2010 - 19:53:04 ---A- . (...) -- C:\Windows\system32\drivers\atksgt.sys [314016]

O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848]

O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432]

O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704]

O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720]

O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104]

O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976]

O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720]

O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480]

O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488]

O58 - SDL:[MD5.2835BF2A864CDE9184C80CF4E6A485F9] - 06/10/2010 - 20:00:29 ---A- . (.C-Media Inc - C-Media Audio WDM Driver.) -- C:\Windows\system32\drivers\cmudax3.sys [1155072]

O58 - SDL:[MD5.B9BE50FEDB366B958AE5F3BC19A20D2B] - 10/03/2010 - 16:19:32 ---A- . (.Windows ® Win 7 DDK provider - CPUID Driver.) -- C:\Windows\system32\drivers\cpuz133_x64.sys [20456]

O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496]

O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016]

O58 - SDL:[MD5.E403AACF8C7BB11375122D2464560311] - 18/05/2009 - 12:17:08 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [34152]

O58 - SDL:[MD5.A4198F2BD8AA592CB90476277A81B5E1] - 12/12/2010 - 14:48:14 ---A- . (.Sony Ericsson Mobile Communications - SEMC USB Flash Driver Filter.) -- C:\Windows\system32\drivers\ggflt.sys [13352]

O58 - SDL:[MD5.D266350BDAAB9EB6C1AEC370EEAAFF3A] - 12/12/2010 - 14:48:14 ---A- . (.Sony Ericsson Mobile Communications - SEMC USB Flash Driver.) -- C:\Windows\system32\drivers\ggsemc.sys [27176]

O58 - SDL:[MD5.1E6438D4EA6E1174A3B3B1EDC4DE660B] - 03/02/2010 - 15:56:56 --HA- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\system32\drivers\hamachi.sys [33856]

O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232]

O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [77888]

O58 - SDL:[MD5.B8B1B284362E1D8135112573395D5DA5] - 25/06/2010 - 16:08:10 ---A- . (.Windows ® Win 7 DDK provider - RawPacket NDIS Protocol Driver.) -- C:\Windows\system32\drivers\htcnprot.sys [36928]

O58 - SDL:[MD5.D83EFB6FD45DF9D55E9A1AFC63640D50] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410688]

O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112]

O58 - SDL:[MD5.79A55E8907F34AB569029505418C35EF] - 13/01/2011 - 17:38:39 ---A- . (.JMicron Technology Corp. - JMicron JMB36X RAID Driver.) -- C:\Windows\system32\drivers\jraid.sys [120408]

O58 - SDL:[MD5.940E5B876251E04FFFE058AD71FE0F1C] - 13/10/2009 - 01:15:52 ---A- . (.Atheros Communications, Inc. - Atheros L1 Gigabit Ethernet 10/100/1000Base-T Adapter.) -- C:\Windows\system32\drivers\l160x64.sys [61440]

O58 - SDL:[MD5.156AB2E56DC3CA0B582E3362E07CDED7] - 05/12/2010 - 19:53:03 ---A- . (...) -- C:\Windows\system32\drivers\lirsgt.sys [43680]

O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752]

O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560]

O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600]

O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776]

O58 - SDL:[MD5.024DA28053D57E9E32BEE52600576BBB] - 23/09/2005 - 22:18:34 ---A- . (.Pinnacle Systems GmbH - Pinnacle Marvin Discrete Bus Enumerator.) -- C:\Windows\system32\drivers\MarvinBus64.sys [261120]

O58 - SDL:[MD5.3D3C4B63F11F63F50253E734F0ACE9F2] - 20/12/2010 - 18:08:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [24152]

O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392]

O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736]

O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264]

O58 - SDL:[MD5.3E38712941E9BB4DDBEE00AFFE3FED3D] - 14/07/2009 - 02:48:27 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [149056]

O58 - SDL:[MD5.477DC4D6DEB99BE37084C9AC6D013DA1] - 14/07/2009 - 02:45:45 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [167488]

O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816]

O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592]

O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040]

O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584]

O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464]

O58 - SDL:[MD5.100000000000000000000000ECEF1800] - 08/08/2010 - 00:00:00 ---A- . (...) -- C:\Windows\system32\drivers\sptd.sys [834544]

O58 - SDL:[MD5.602884696850C86434530790B110E8EB] - 18/05/2010 - 20:39:07 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\system32\drivers\sptd.sys.vir [834544]

O58 - SDL:[MD5.E57B778208C783D8DEBAB320C16A1B82] - 12/11/2009 - 13:48:56 ---A- . (...) -- C:\Windows\system32\drivers\StarOpen.sys [5504]

O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656]

O58 - SDL:[MD5.F724B03C3DFAACF08D17D38BF3333583] - 28/09/2010 - 15:44:52 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl64.sys [51712]

O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488]

O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872]

O58 - SDL:[MD5.A2AD422E0B6579F16DA61A55C6245CC2] - 28/12/2007 - 04:04:56 ---A- . (...) -- C:\Windows\system32\drivers\Xbox.sys [34992]

O58 - SDL:[MD5.1E6438D4EA6E1174A3B3B1EDC4DE660B] - 18/03/2009 - 16:35:42 --HA- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\system32\hamachi.sys [33856]

O58 - SDL:[MD5.A82C01606DC27D05D9D3BFB6BB807E32] - 04/06/2010 - 19:44:51 ---A- . (...) -- C:\Windows\SysWOW64\drivers\AsIO.sys [13440]

O58 - SDL:[MD5.DE7CBA8A38AE0C404EB2ACD08D18AA3E] - 26/05/2010 - 10:25:36 ---A- . (...) -- C:\Windows\SysWOW64\drivers\fsbts.sys [33920]

O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 18:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [38224]

O58 - SDL:[MD5.F92254B0BCFCD10CAAC7BCCC7CB7F467] - 12/11/2009 - 13:48:56 ---A- . (...) -- C:\Windows\SysWOW64\drivers\StarOpen.sys [7168]

O58 - SDL:[MD5.599A536279FAC14B01D51FAF20DC3FD9] - 28/12/2007 - 04:05:28 ---A- . (...) -- C:\Windows\SysWOW64\drivers\Xbox.sys [29232]

O58 - SDL:[MD5.5F9785E7535F8F602CB294A54962C9E7] - 07/02/2007 - 19:27:46 ---A- . (.Windows ® Server 2003 DDK provider - SpeedFan Device Driver.) -- C:\Windows\SysWOW64\speedfan.sys [14104]

---\\ Liste des outils de nettoyage (O63)

O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM][64Bits] -- HijackThis

O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPDiag_is1

---\\ Liste des services Legacy (O64)

O64 - Services: CurCS - (.not file.) - 14637941 (14637941) .(...) - LEGACY_14637941

O64 - Services: CurCS - (.not file.) - 14637942 Boot Guard Driver (14637942) .(...) - LEGACY_14637942

O64 - Services: CurCS - (.not file.) - 68642381 (68642381) .(...) - LEGACY_68642381

O64 - Services: CurCS - (.not file.) - 68642382 Boot Guard Driver (68642382) .(...) - LEGACY_68642382

O64 - Services: CurCS - (.not file.) - acedrv11 (acedrv11) .(...) - LEGACY_ACEDRV11

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\atikmdag.sys - amdkmdag (amdkmdag) .(.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG

O64 - Services: CurCS - C:\Windows\Syswow64\drivers\AsIO.sys - AsIO (AsIO) .(...) - LEGACY_ASIO

O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWFSBLK.sys - (.not file.) - aswFsBlk (aswFsBlk) .(...) - LEGACY_ASWFSBLK

O64 - Services: CurCS - C:\Windows\system32\drivers\aswMonFlt.sys - aswMonFlt (aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT

O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWRDR.sys - (.not file.) - aswRdr (aswRdr) .(...) - LEGACY_ASWRDR

O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWSNX.sys - (.not file.) - aswSnx (aswSnx) .(...) - LEGACY_ASWSNX

O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWSP.sys - (.not file.) - aswSP (aswSP) .(...) - LEGACY_ASWSP

O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWTDI.sys - (.not file.) - avast! Network Shield Support (aswTdi) .(...) - LEGACY_ASWTDI

O64 - Services: CurCS - E:\Program Files (x86)\AMD GPU Clock Tool\atillk64.sys - atillk64 (atillk64) .(.ATI Technologies Inc. - ATI Diagnostics Hardware Abstraction Sys.) - LEGACY_ATILLK64

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\atksgt.sys - atksgt (atksgt) .(...) - LEGACY_ATKSGT

O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP

O64 - Services: CurCS - (.not file.) - cpuz130 (cpuz130) .(...) - LEGACY_CPUZ130

O64 - Services: CurCS - C:\Windows\system32\drivers\cpuz133_x64.sys - cpuz133 (cpuz133) .(.Windows ® Win 7 DDK provider - CPUID Driver.) - LEGACY_CPUZ133

O64 - Services: CurCS - (.not file.) - DrWEB Firewall Application Filter (DRWEBAF) .(...) - LEGACY_DRWEBAF

O64 - Services: CurCS - (.not file.) - DrWeb Protection (DwProt) .(...) - LEGACY_DWPROT

O64 - Services: CurCS - E:\Program Files (x86)\EVEREST Ultimate Edition\kerneld.amd64 - Lavalys EVEREST Kernel Driver (EverestDriver) .(...) - LEGACY_EVERESTDRIVER

O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT

O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC

O64 - Services: CurCS - (.not file.) - ImmunetProtectDriver (ImmunetProtectDriver) .(...) - LEGACY_IMMUNETPROTECTDRIVER

O64 - Services: CurCS - (.not file.) - ImmunetSelfProtectDriver (ImmunetSelfProtectDriver) .(...) - LEGACY_IMMUNETSELFPROTECTDRIVER

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\lirsgt.sys - lirsgt (lirsgt) .(...) - LEGACY_LIRSGT

O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY

O64 - Services: CurCS - (.not file.) - NetGroup Packet Filter Driver (NPF) .(...) - LEGACY_NPF

O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL

O64 - Services: CurCS - E:\Program Files (x86)\SiSoftware Sandra Lite 2010\WNt500x64\Sandra.sys (.not file.) - SANDRA (SANDRA) .(...) - LEGACY_SANDRA

O64 - Services: CurCS - (.not file.) - SASDIFSV (SASDIFSV) .(...) - LEGACY_SASDIFSV

O64 - Services: CurCS - (.not file.) - SASKUTIL (SASKUTIL) .(...) - LEGACY_SASKUTIL

O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV

O64 - Services: CurCS - (.not file.) - setup_9.0.0.722_13.09.2010_10-27drv (setup_9.0.0.722_13.09.2010_10-27drv) .(...) - LEGACY_SETUP_9.0.0.722_13.09.2010_10-27DRV

O64 - Services: CurCS - (.not file.) - setup_9.0.0.722_27.05.2010_11-29drv (setup_9.0.0.722_27.05.2010_11-29drv) .(...) - LEGACY_SETUP_9.0.0.722_27.05.2010_11-29DRV

O64 - Services: CurCS - C:\Windows\Syswow64\speedfan.sys - speedfan (speedfan) .(.Windows ® Server 2003 DDK provider - SpeedFan Device Driver.) - LEGACY_SPEEDFAN

O64 - Services: CurCS - (.not file.) - DrWeb file system scanner (SpiderG3) .(...) - LEGACY_SPIDERG3

O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR

O64 - Services: CurCS - C:\Windows\system32\Drivers\SPTD.sys - sptd (sptd) .(...) - LEGACY_SPTD

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\SysWow64\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\SysWow64\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

---\\ Search Browser Infection (O69)

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing

O69 - SBI: SearchScopes [HKCU] {1058FF31-0678-40F8-ACD8-065AEBCF45DD} - (Google) - Google

O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - Google

O69 - SBI: SearchScopes [HKCU] {DEBFD70F-AB2C-409B-81DD-C2D6DABEFC8C} [DefaultScope] - (Google) - Google

---\\ Recherche particuliere à la racine de certains dossiers (O84)

[MD5.E152C2E083BB18DF3770DE4040E3F391] [sPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Roaming\SetValue.bat [35]

---\\ Firewall Active Exception List (FirewallRules) (O87)

O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)

O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)

O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.)

O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)

O87 - FAEL: "RemoteSvcAdmin-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)

O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "TCP Query User{31FCC43C-9B45-4D28-B07D-27E771240615}F:\jeux\grid\grid.exe" | In - Private - P6 - TRUE | .(.Codemasters - GRID Executable.) -- F:\jeux\grid\grid.exe

O87 - FAEL: "UDP Query User{DDB5D51B-3946-46FD-A595-74D72A1C3084}F:\jeux\grid\grid.exe" | In - Private - P17 - TRUE | .(.Codemasters - GRID Executable.) -- F:\jeux\grid\grid.exe

O87 - FAEL: "{48F34A51-2461-4FA2-99AB-4C325CD23458}" | In - Private - P6 - FALSE | .(.Codemasters - DiRT2 Executable.) -- F:\Jeux\DiRT2\dirt2_game.exe

O87 - FAEL: "{430F49D3-FAB6-4A09-9546-F0192C3C56B5}" | In - Private - P17 - FALSE | .(.Codemasters - DiRT2 Executable.) -- F:\Jeux\DiRT2\dirt2_game.exe

O87 - FAEL: "TCP Query User{0386787D-1AF9-4DED-804D-62154F6D66E1}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\internet explorer\iexplore.exe

O87 - FAEL: "UDP Query User{53364A3A-B75C-40F2-A9DE-84C5E4A4D9D4}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\internet explorer\iexplore.exe

O87 - FAEL: "{0F3224FA-8793-40F8-B57B-F85F75C76D3A}" | In - Public - P6 - FALSE | .(...) -- F:\Jeux\Assassin's Creed II\AssassinsCreedIIGame.exe

O87 - FAEL: "{FE604D8E-7756-4175-8592-F427A98AE815}" | In - Public - P17 - FALSE | .(...) -- F:\Jeux\Assassin's Creed II\AssassinsCreedIIGame.exe

O87 - FAEL: "{84686787-8849-4431-B55F-D11BE8941627}" | In - Public - P6 - FALSE | .(.Ubisoft - Autopatch system.) -- F:\Jeux\Assassin's Creed II\AssassinsCreedII.exe

O87 - FAEL: "{CEEC6E75-0DA5-4BB8-B4DF-F9971D95FC8C}" | In - Public - P17 - FALSE | .(.Ubisoft - Autopatch system.) -- F:\Jeux\Assassin's Creed II\AssassinsCreedII.exe

O87 - FAEL: "{94065717-F950-4282-8477-0EA11563D9EF}" | In - Public - P6 - FALSE | .(.Ubisoft Entertainment - UPlayBrowser Application.) -- F:\Jeux\Assassin's Creed II\UPlayBrowser.exe

O87 - FAEL: "{6FD9B743-6B5C-443A-A851-A374C8DF3D64}" | In - Public - P17 - FALSE | .(.Ubisoft Entertainment - UPlayBrowser Application.) -- F:\Jeux\Assassin's Creed II\UPlayBrowser.exe

O87 - FAEL: "{5EF568E4-7DF0-4A21-A333-2FE521A572BF}" | In - Private - P6 - TRUE | .(...) -- E:\Program Files (x86)\Steam\SteamApps\common\call of duty modern warfare 2\iw4sp.exe

O87 - FAEL: "{23881E7C-9480-4988-BB03-2D5D0C69DF60}" | In - Private - P17 - TRUE | .(...) -- E:\Program Files (x86)\Steam\SteamApps\common\call of duty modern warfare 2\iw4sp.exe

O87 - FAEL: "{D01A8F7E-77F6-46E9-999B-C60D537F7D6A}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{2B08AD4C-A848-4A0D-A9E3-98AD5CB43F6E}" | In - Private - P6 - FALSE | .(...) -- F:\Jeux\Assassin's Creed II\AssassinsCreedIIGame.exe

O87 - FAEL: "{ED126A1C-188A-4D8A-95ED-1E71FCA09C8A}" | In - Private - P17 - FALSE | .(...) -- F:\Jeux\Assassin's Creed II\AssassinsCreedIIGame.exe

O87 - FAEL: "{8F81B338-B538-46A5-A99E-02FB4AC301B6}" | In - Private - P6 - FALSE | .(.Ubisoft - Autopatch system.) -- F:\Jeux\Assassin's Creed II\AssassinsCreedII.exe

O87 - FAEL: "{907DEFCC-3796-434F-99BE-D80492BFD39E}" | In - Private - P17 - FALSE | .(.Ubisoft - Autopatch system.) -- F:\Jeux\Assassin's Creed II\AssassinsCreedII.exe

O87 - FAEL: "{7BD5B903-7CF2-46A3-AB39-9422CD18B844}" | In - Private - P6 - FALSE | .(.Ubisoft Entertainment - UPlayBrowser Application.) -- F:\Jeux\Assassin's Creed II\UPlayBrowser.exe

O87 - FAEL: "{FB70FD89-0819-4915-9771-B5BFFEC0FA1D}" | In - Private - P17 - FALSE | .(.Ubisoft Entertainment - UPlayBrowser Application.) -- F:\Jeux\Assassin's Creed II\UPlayBrowser.exe

O87 - FAEL: "{C0C7B7A4-CD48-42D4-9AD3-E06366E47C25}" | In - Private - P6 - TRUE | .(...) -- E:\Program Files (x86)\Steam\SteamApps\common\call of duty modern warfare 2\iw4mp.exe

O87 - FAEL: "{6D2E1EC3-17C8-4DF6-9277-7D98AA8C9C72}" | In - Private - P17 - TRUE | .(...) -- E:\Program Files (x86)\Steam\SteamApps\common\call of duty modern warfare 2\iw4mp.exe

O87 - FAEL: "{4434190E-394C-4EEB-8BAB-679CC34ED401}" | In - Private - P6 - FALSE | .(.Valve Corporation - Steam.) -- E:\Program Files (x86)\Steam\Steam.exe

O87 - FAEL: "{1A7666E9-CB5E-473C-AA34-582F5CBC6BDF}" | In - Private - P17 - FALSE | .(.Valve Corporation - Steam.) -- E:\Program Files (x86)\Steam\Steam.exe

O87 - FAEL: "{7FA81728-66CC-470C-8B5A-95E9A651E2C7}" | In - Private - P6 - TRUE | .(...) -- E:\Program Files (x86)\VLC\vlc.exe

O87 - FAEL: "{254F76A1-CC4C-426C-9292-5D24101ACA36}" | In - Private - P17 - TRUE | .(...) -- E:\Program Files (x86)\VLC\vlc.exe

O87 - FAEL: "{47D97367-5A10-4894-96B6-58C464BD27ED}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{CAC949E8-94FB-4C82-97BE-6D1A37A51295}" | In - Private - P6 - TRUE | .(.Codemasters - F1 2010 Executable.) -- F:\Jeux\F1 2010\F1_2010_game.exe

O87 - FAEL: "{228F520B-66B3-440A-B3D5-EEE7A4068ABC}" | In - Private - P17 - TRUE | .(.Codemasters - F1 2010 Executable.) -- F:\Jeux\F1 2010\F1_2010_game.exe

O87 - FAEL: "TCP Query User{23EE05A4-F35B-4C73-86A2-CB35B1AF8F6D}E:\program files (x86)\utorrent\utorrent.exe" | In - Public - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- E:\program files (x86)\utorrent\utorrent.exe

O87 - FAEL: "UDP Query User{4F106DBB-D6C0-46D2-AF10-9BF15EF62EAD}E:\program files (x86)\utorrent\utorrent.exe" | In - Public - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- E:\program files (x86)\utorrent\utorrent.exe

O87 - FAEL: "{C09520A2-D9E6-4D71-926C-5BF6260C66DA}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{58EFD849-F068-4247-A297-6AEE721E0BC8}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{46696FDF-AC97-477A-BFD7-597EC0A302BE}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{092A756B-F422-4239-A26D-F3426DE8B839}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{57BFD474-9B78-4FF1-A4DF-1B083FC6F0E6}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{08E913FE-27E0-441F-B665-BD5021FBAE83}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{9C4113F6-2D86-4396-948B-38398097C98B}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{C5DFF8C6-3C20-4377-A69F-4FA7585E2997}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{75E049BC-74B4-4EF5-AC0D-A80B16C47230}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{9485E4BB-AF32-4334-B36E-D2D34860853B}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{3606E010-5765-4006-BF2B-CD85428EADD2}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{323AAB5D-12D7-45F3-B043-D2E6CFA6AF79}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{9F929748-064C-4D76-93C9-3C2C28B90F82}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{B006FD46-0936-48D5-BCED-7C288694A657}" | In - Private - P6 - FALSE | .(...) -- F:\Jeux\Call of Duty - Black Ops\BlackOps.exe

O87 - FAEL: "{627621B4-5546-4F14-A1E9-538C0C7A1102}" | In - Private - P17 - FALSE | .(...) -- F:\Jeux\Call of Duty - Black Ops\BlackOps.exe

O87 - FAEL: "{BF2981C8-AF26-4219-AA16-FD47C1AC6375}" | In - Domain - P6 - FALSE | .(...) -- F:\Jeux\Call of Duty - Black Ops\BlackOps.exe

O87 - FAEL: "{46BFA528-B384-4926-9E95-FF3A01CCB88D}" | In - Domain - P17 - FALSE | .(...) -- F:\Jeux\Call of Duty - Black Ops\BlackOps.exe

O87 - FAEL: "{976A7ACE-CAEF-44DA-8C6C-F273EF34218B}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{F68561E2-AA6D-4A81-A75A-907B8E9DF8C4}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{BB360E55-8A7E-41A1-AE82-1E60CF3C8A77}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "TCP Query User{A1BF6FC3-C3A7-4433-A336-23B2C1195CB2}F:\jeux\call of duty - black ops\blackopsmp.exe" | In - Private - P6 - FALSE | .(...) -- F:\jeux\call of duty - black ops\blackopsmp.exe

O87 - FAEL: "UDP Query User{40B75C8C-C143-4D66-B1FD-985A6C98BBC6}F:\jeux\call of duty - black ops\blackopsmp.exe" | In - Private - P17 - FALSE | .(...) -- F:\jeux\call of duty - black ops\blackopsmp.exe

O87 - FAEL: "TCP Query User{5C073364-C688-496E-AD2C-1334258FB330}E:\program files (x86)\zune\zune.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft Zune.) -- E:\program files (x86)\zune\zune.exe

O87 - FAEL: "UDP Query User{BCE7C40E-6818-457D-88B1-898F67C082FD}E:\program files (x86)\zune\zune.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Zune.) -- E:\program files (x86)\zune\zune.exe

O87 - FAEL: "{F369501E-0772-43C6-AA46-B73BA21CB428}" | In - Private - P6 - FALSE | .(.Pinnacle Systems - Render Manager.) -- E:\Program Files (x86)\Pinnacle\Studio 14\Programs\RM.exe

O87 - FAEL: "{1654AED3-3107-4417-8DE1-C236ED101DAB}" | In - Private - P17 - FALSE | .(.Pinnacle Systems - Render Manager.) -- E:\Program Files (x86)\Pinnacle\Studio 14\Programs\RM.exe

O87 - FAEL: "{E474F7E1-665C-400D-A8CC-F4D61F288B9E}" | In - Private - P6 - FALSE | .(.Pinnacle Systems - Studio program file.) -- E:\Program Files (x86)\Pinnacle\Studio 14\Programs\Studio.exe

O87 - FAEL: "{51A710D5-951D-4E66-90CC-C8E5FD878223}" | In - Private - P17 - FALSE | .(.Pinnacle Systems - Studio program file.) -- E:\Program Files (x86)\Pinnacle\Studio 14\Programs\Studio.exe

O87 - FAEL: "TCP Query User{D508AB91-3D2D-494C-9796-7E50CD1D651A}F:\jeux\call of juarez - bound in blood\cojbibgame_x86.exe" | In - Private - P6 - TRUE | .(.Techland.) -- F:\jeux\call of juarez - bound in blood\cojbibgame_x86.exe

O87 - FAEL: "UDP Query User{99732EE3-55F9-4C1C-9CBA-0F7E7BD57C1D}F:\jeux\call of juarez - bound in blood\cojbibgame_x86.exe" | In - Private - P17 - TRUE | .(.Techland.) -- F:\jeux\call of juarez - bound in blood\cojbibgame_x86.exe

O87 - FAEL: "{2D5F2189-9E69-4F0E-B029-4BB43ED054A8}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{FC573965-19A3-445C-A2BF-8EEFF082185D}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{8F98D107-F1E0-4C46-85BC-936275B910AA}" | In - Domain - P17 - TRUE | .(.Skype Technologies - Skype Extras Manager.) -- E:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe

O87 - FAEL: "{7FBA7385-BCE3-4FF7-BBC2-C05AF1977BE7}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files (x86)\ma-config.com\maconfservice.exe

O87 - FAEL: "{C83FD172-5183-4AA4-A066-140EC5854140}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files (x86)\ma-config.com\maconfservice.exe

O87 - FAEL: "{2201CD01-6C5B-4CD6-8291-182407C4A034}" | In - None - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- e:\Program Files (x86)\uTorrent\uTorrent.exe

O87 - FAEL: "{1A1A6637-AB68-4F1F-9A45-2680FEDD3D8A}" | In - None - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- e:\Program Files (x86)\uTorrent\uTorrent.exe

O87 - FAEL: "{0F88364F-E7F4-437B-A973-46D5871224A8}" | In - Public - P6 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{14640148-7C40-4FD7-B3EC-8B32B48B99A4}" | In - Public - P6 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{271339BB-1143-4ABB-A691-EACF15633859}" | In - Public - P6 - TRUE | .(.Skype Technologies - Skype Extras Manager.) -- E:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe

O87 - FAEL: "TCP Query User{FBAD6FCE-5D3D-4968-911E-DD795B4F4987}E:\program files (x86)\hobbyist software\vlc setup helper\mdnsresponder.exe" | In - Private - P6 - TRUE | .(.Apple Inc..) -- E:\program files (x86)\hobbyist software\vlc setup helper\mdnsre

O87 - FAEL: "UDP Query User{E472FA61-801C-4523-B28F-530D40BCA55E}E:\program files (x86)\hobbyist software\vlc setup helper\mdnsresponder.exe" | In - Private - P17 - TRUE | .(.Apple Inc..) -- E:\program files (x86)\hobbyist software\vlc setup helper\mdnsr

O87 - FAEL: "{C46FDB0D-ACE1-41C2-9A9D-4F53125D837F}" | In - Private - P6 - TRUE | .(.Apache Software Foundation - Apache HTTP Server.) -- C:\Program Files (x86)\SFR\Media Center\httpd\httpd.exe

O87 - FAEL: "{ABC18731-4A96-44F1-BE7A-C9687FA12AF8}" | In - Private - P17 - TRUE | .(.Apache Software Foundation - Apache HTTP Server.) -- C:\Program Files (x86)\SFR\Media Center\httpd\httpd.exe

O87 - FAEL: "{521A2F91-4349-456C-BABC-8D1B1B1D71D7}" | In - Private - P6 - TRUE | .(.Kaos Studios - Homefront Game.) -- F:\Jeux\Homefront\Binaries\HOMEFRONT.exe

O87 - FAEL: "{5FF795F8-67AE-42E8-85DF-E9D5E31801F8}" | In - Private - P17 - TRUE | .(.Kaos Studios - Homefront Game.) -- F:\Jeux\Homefront\Binaries\HOMEFRONT.exe

O87 - FAEL: "{6D756F42-9BF6-4EDB-9543-036780B418A5}" | In - Domain - P6 - FALSE | .(.Kaos Studios - Homefront Game.) -- F:\Jeux\Homefront\Binaries\HOMEFRONT.exe

O87 - FAEL: "{252084CA-B353-4CD5-9291-B19A106F0362}" | In - Domain - P17 - FALSE | .(.Kaos Studios - Homefront Game.) -- F:\Jeux\Homefront\Binaries\HOMEFRONT.exe

O87 - FAEL: "{55287748-E546-448C-9BBE-B347073FC85A}" | In - Domain - P6 - FALSE | .(.Crytek GmbH - Pas de description.) -- F:\Jeux\Crysis 2\bin32\Crysis2.exe

O87 - FAEL: "{6A604236-DC27-40E5-98D8-F099E6E33DEE}" | In - Domain - P17 - FALSE | .(.Crytek GmbH - Pas de description.) -- F:\Jeux\Crysis 2\bin32\Crysis2.exe

O87 - FAEL: "{B46A2D08-1B8B-4B68-AAF4-37C000B94A0F}" | In - Domain - P6 - FALSE | .(.Crytek GmbH - Pas de description.) -- F:\Jeux\Crysis 2\bin32\Crysis2Launcher.exe

O87 - FAEL: "{F28F4AEE-3A38-430C-8264-754C8604AD21}" | In - Domain - P17 - FALSE | .(.Crytek GmbH - Pas de description.) -- F:\Jeux\Crysis 2\bin32\Crysis2Launcher.exe

O87 - FAEL: "TCP Query User{3FE348E7-DEB2-45B1-95EB-175C70FD52EA}F:\jeux\crysis 2\bin32\crysis2.exe" | In - Private - P6 - TRUE | .(.Crytek GmbH - Pas de description.) -- F:\jeux\crysis 2\bin32\crysis2.exe

O87 - FAEL: "UDP Query User{02E47152-392D-46E7-A991-AE9633D51F43}F:\jeux\crysis 2\bin32\crysis2.exe" | In - Private - P17 - TRUE | .(.Crytek GmbH - Pas de description.) -- F:\jeux\crysis 2\bin32\crysis2.exe

O87 - FAEL: "TCP Query User{1738CC4F-33EC-4BBC-B446-773F2BA8F1A7}F:\jeux\shift 2 unleashed\shift2u.exe" | In - Private - P6 - TRUE | .(.Electronic Arts Inc. - SHIFT 2 UNLEASHED™.) -- F:\jeux\shift 2 unleashed\shift2u.exe

O87 - FAEL: "UDP Query User{1500E080-DD15-4BD6-B552-229CB70155DE}F:\jeux\shift 2 unleashed\shift2u.exe" | In - Private - P17 - TRUE | .(.Electronic Arts Inc. - SHIFT 2 UNLEASHED™.) -- F:\jeux\shift 2 unleashed\shift2u.exe

---\\ Scan Additionnel (O88)

Database Version : 5522 - (16/04/2011)

[HKCR\nctaudiofile2.audiofile2] =>Adware.RecordNRip

[HKCR\nctaudiofile2.audiofile2.2] =>Adware.RecordNRip

[HKCR\nctaudiofile2.audiofile2lameenc] =>Adware.RecordNRip

[HKCR\nctaudiofile2.audiofile2lameenc.1] =>Adware.RecordNRip

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SR - | Auto 0 | (AMD External Events Utility) . (.AMD.) - C:\Windows\system32\atiesrxx.exe

SR - | Auto 23/02/2011 42184 | (avast! Antivirus) . (.AVAST Software.) - E:\Program Files (x86)\Avast 5\AvastSvc.exe

SS - | Demand 31/03/2010 26752 | (EverestDriver) . (...) - E:\Program Files (x86)\EVEREST Ultimate Edition\kerneld.amd64

SS - | Disabled 19/05/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

SS - | Demand 22/12/2009 136120 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

SR - | Auto 28/03/2011 2111368 | LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) . (.LogMeIn Inc..) - E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe

SS - | Disabled 27/03/2005 305152 | (iphlpsvc) . (.AdSndUisb.) - C:\Windows\System32\svchost.exe

SS - | Auto 18/04/2003 8192 | (KMService) . (...) - C:\Windows\system32\srvany.exe

SS - | Demand 09/01/2011 310640 | (maconfservice) . (.CybelSoft.) - C:\Program Files (x86)\ma-config.com\maconfservice.exe

SS - | Demand 09/01/2011 0 | (MEMSWEEP2) . (.Sophos Plc.) - C:\Windows\system32\CC09.tmp

SS - | Disabled 04/03/2010 71096 | (NMSAccess) . (...) - e:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe

SS - | Demand 27/03/2005 305152 | regsvc.dll (RemoteRegistry) . (.AdSndUisb.) - C:\Windows\system32\svchost.exe

SR - | Auto 26/01/2009 1153368 | (SBSDWSCService) . (.Safer Networking Ltd..) - E:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

SS - | Disabled 27/03/2005 305152 | (SessionEnv) . (.AdSndUisb.) - C:\Windows\System32\svchost.exe

SS - | Demand 26/10/2010 155344 | (Sony Ericsson PCCompanion) . (.Avanquest Software.) - C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe

SS - | Disabled 12/08/2010 407336 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

SS - | Disabled 27/03/2005 305152 | (TrkWks) . (.AdSndUisb.) - C:\Windows\System32\svchost.exe

SR - | Auto 27/03/2005 305152 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover

Run by Fab at 16/04/2011 23:37:30

device: opened successfully

user: error reading MBR

Disk trace:

error: Read Descripteur non valide

kernel: error reading MBR

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

Written by ad13, http://ad13.gee k s tog

Run by Fab at 16/04/2011 23:37:33

********* Dump file Name *********

C:\PhysicalDisk0_MBR.bin

---\\ Liste des émulateurs de CD/DVD (Hook du MBR)

O58 - SDL:[MD5.100000000000000000000000ECEF1800] - 08/08/2010 - 00:00:00 ---A- . (...) -- C:\Windows\system32\drivers\sptd.sys [834544]

O58 - SDL:[MD5.602884696850C86434530790B110E8EB] - 18/05/2010 - 20:39:07 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\system32\drivers\sptd.sys.vir [834544]

End of the scan (1438 lines in 02mn 31s)(0)

bernard53 · le 17 avril 2011

Bonsoir

Fait ceci s.t.p

Télécharger AD-Remover (créé par C_XX) :

Ad-Remover : Telechargement

Cliquez sur "DOWNLOAD " et enregistrez-le "sur votre bureau"

Une fois téléchargé sur votre bureau, double-cliquez sur son icone pour lancer l'installation.

Sous vista et Windows7 : clic droit sur son icone et sélectionnez "Exécuter en tant qu'administrateur".

L'installation se fera automatiquement.

A l'écran principal, cliquez sur Nettoyer pour exécuter le nettoyage.

Une fois l'ordinateur redémarré, il ne vous reste plus qu'à copier/coller le rapport sur le forum comme le précédent.

Le rapport se trouve à cet endroit : C:\Ad-Report-CLEAN[1].txt

Ensuite::

* Copie le tout le texte présent dans l'encadré ci-dessous (tu le sélectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C)

O23 - Service: (KMService) . (...) - C:\Windows\system32\srvany.exe

[HKLM\Software\Trymedia Systems]

O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Roaming\svchost.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Roaming\svchost.exe (.not file.)

O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Roaming\0Q11SIUAOM.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Roaming\0Q11SIUAOM.exe (.not file.)

O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Roaming\csrss.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Roaming\csrss.exe (.not file.)

O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Local\Temp\15081.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Local\Temp\15081.exe (.not file.)

O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Local\Temp\7706.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Local\Temp\7706.exe (.not file.)

O51 - MPSK:{c52b28ce-05f1-11e0-a338-001e8c45677a}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- J:\Startme.exe (.not file.)

O51 - MPSK:{c52b297c-05f1-11e0-a338-001e8c45677a}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- J:\Startme.exe (.not file.)

O64 - Services: CurCS - (.not file.) - 14637941 (14637941) .(...) - LEGACY_14637941

O64 - Services: CurCS - (.not file.) - 14637942 Boot Guard Driver (14637942) .(...) - LEGACY_14637942

O64 - Services: CurCS - (.not file.) - 68642381 (68642381) .(...) - LEGACY_68642381

O64 - Services: CurCS - (.not file.) - 68642382 Boot Guard Driver (68642382) .(...) - LEGACY_68642382

O64 - Services: CurCS - (.not file.) - acedrv11 (acedrv11) .(...) - LEGACY_ACEDRV11

O64 - Services: CurCS - (.not file.) - SASDIFSV (SASDIFSV) .(...) - LEGACY_SASDIFSV

O64 - Services: CurCS - (.not file.) - SASKUTIL (SASKUTIL) .(...) - LEGACY_SASKUTIL

O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV

O64 - Services: CurCS - (.not file.) - setup_9.0.0.722_13.09.2010_10-27drv (setup_9.0.0.722_13.09.2010_10-27drv) .(...) - LEGACY_SETUP_9.0.0.722_13.09.2010_10-27DRV

O64 - Services: CurCS - (.not file.) - setup_9.0.0.722_27.05.2010_11-29drv (setup_9.0.0.722_27.05.2010_11-29drv) .(...) - LEGACY_SETUP_9.0.0.722_27.05.2010_11-29DRV

O64 - Services: CurCS - (.not file.) - DrWeb file system scanner (SpiderG3) .(...) - LEGACY_SPIDERG3

O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR

[HKCR\nctaudiofile2.audiofile2]

[HKCR\nctaudiofile2.audiofile2.2]

[HKCR\nctaudiofile2.audiofile2lameenc]

[HKCR\nctaudiofile2.audiofile2lameenc.1]

FirewallRaz

EmptyFlash

Emptytemp

Puis Lance ZHPFix depuis le raccourci du bureau.

Clique sur l'icone représentant la lettre H (« coller les lignes Helper »)

- Les lignes se collent automatiquement dans ZHPFix, sinon colle les lignes

- Clique sur le bouton « GO » pour lancer le nettoyage,

- Copie/colle la totalité du rapport dans ta prochaine réponse

-> laisse travailler l'outil et ne touche à rien ...

Une fois terminée, un nouveau rapport s'affiche : copie/colle le contenu de ce dernier dans ta prochaine réponse ...

(ce rapport est en outre sauvegardé dans ce dossier > C:\Program files\ZHPDiag\ZHPFixReport.txt)

Important : s'il t'est demandé de redémarrer le PC pour finir le nettoyage, fais le de suite

Puis::

Installe Malewarebytes' Antimalware,

Malwarebytes

Prends bien la version FREE

*** Met-le à jour puis choisi, Exécuter un examen complet

*** Si une infection est trouvée, coche la case a coté et valides avec l’Onglet Supprimer la sélection

Poste le rapport final.

Modifié le 17 avril 2011 par bernard53

Bebos74 · le 18 avril 2011

bonjour,

merci pour l'aide

voila le log d'AD R:

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11

Contact: AdRemover[DOT]contact[AT]gmail[DOT]com

Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 17:49:50 le 18/04/2011, Mode normal

Microsoft Windows 7 Édition Intégrale (X64)

Fab@PCDEFAB (System manufacturer P5KC)

============== ACTION(S) ==============

Dossier supprimé: C:\Users\Fab\AppData\LocalLow\PriceGong

(!) -- Fichiers temporaires supprimés.

Clé supprimée: HKLM\Software\Trymedia Systems

Clé supprimée: HKCU\Software\AppDataLow\Software\PriceGong

============== SCAN ADDITIONNEL ==============

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896

HKCU_Main|Start Page - hxxp://fr.msn.com/

HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896

HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm

HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKLM_Main|Start Page - hxxp://fr.msn.com/

HKCU_Toolbar\WebBrowser|{B80F591E-FE9A-46CF-A13E-180377240586} (x)

HKLM_Toolbar|{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} (E:\Program Files (x86)\Avast 5\aswWebRepIE.dll)

HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)

HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)

HKLM_ElevationPolicy\{3B9A6E32-36C9-4946-B78C-3F58E3785EC1} - C:\Program Files (x86)\Java\jre6\bin\unpack200.exe (Oracle)

HKLM_ElevationPolicy\{44D1B085-E495-4b5f-9EE6-34795C46E7E7} - C:\Program Files (x86)\Java\jre6\bin\jp2launcher.exe (Oracle)

HKLM_ElevationPolicy\{5852F5ED-8BF4-11D4-A245-0080C6F74284} - C:\Program Files (x86)\Java\jre6\bin\javaws.exe (Oracle)

HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)

HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)

HKLM_ElevationPolicy\{C8FE2181-CAE7-49EE-9B04-DB7EB4DA544A} - C:\Program Files (x86)\Java\jre6\bin\ssvagent.exe (Oracle)

HKLM_Extensions\{85d1f590-48f4-11d9-9669-0800200c9a66} - "?" (?)

HKLM_Extensions\{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - "?" (?)

BHO\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - "avast! WebRep" (E:\Program Files (x86)\Avast 5\aswWebRepIE.dll)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 28 Fichier(s)

C:\Program Files (x86)\Ad-Remover\Backup: 14 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 18/04/2011 17:49:55 (2906 Octet(s))

Fin à: 17:50:38, 18/04/2011

============== E.O.F ==============

Bebos74 · le 18 avril 2011

Et re-bonjour,

voila le log de ZHPFix:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\KMService]

"Type"=dword:00000010

"Start"=dword:00000002

"ErrorControl"=dword:00000001

"ImagePath"=hex(2):43,00,3a,00,5c,00,57,00,69,00,6e,00,64,00,6f,00,77,00,73,00,\

5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,73,00,72,00,76,\

00,61,00,6e,00,79,00,2e,00,65,00,78,00,65,00,00,00

"DisplayName"="KMService"

"WOW64"=dword:00000001

"ObjectName"="LocalSystem"

"Description"="Software licensing service"

"FailureActions"=hex:00,00,00,00,00,00,00,00,00,00,00,00,03,00,00,00,14,00,00,\

00,01,00,00,00,60,ea,00,00,01,00,00,00,60,ea,00,00,00,00,00,00,00,00,00,00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\KMService\Parameters]

"Application"="C:\\Windows\\KMService.exe"

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\\Users\\Fab\\AppData\\Roaming\\svchost.exe"="C:\\Users\\Fab\\AppData\\Roaming\\svchost.exe:*:Enabled:Windows Messanger"

"C:\\Users\\Fab\\AppData\\Roaming\\0Q11SIUAOM.exe"="C:\\Users\\Fab\\AppData\\Roaming\\0Q11SIUAOM.exe:*:Enabled:Windows Messanger"

"C:\\Users\\Fab\\AppData\\Roaming\\csrss.exe"="C:\\Users\\Fab\\AppData\\Roaming\\csrss.exe:*:Enabled:Windows Messanger"

"C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe:*:Enabled:Windows Messanger"

"C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe:*:Enabled:Windows Messanger"

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_68642381]

"NextInstance"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_68642381\0000]

"Service"="68642381"

"Legacy"=dword:00000001

"ConfigFlags"=dword:00000000

"Class"="LegacyDriver"

"ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}"

"DeviceDesc"="68642381"

"Capabilities"=dword:00000000

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_68642382]

"NextInstance"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_68642382\0000]

"Service"="68642382"

"Legacy"=dword:00000001

"ConfigFlags"=dword:00000000

"Class"="LegacyDriver"

"ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}"

"DeviceDesc"="68642382 Boot Guard Driver"

"Capabilities"=dword:00000000

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ACEDRV11]

"NextInstance"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ACEDRV11\0000]

"Service"="acedrv11"

"Legacy"=dword:00000001

"ConfigFlags"=dword:00000000

"Class"="LegacyDriver"

"ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}"

"DeviceDesc"="acedrv11"

"Capabilities"=dword:00000000

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SASDIFSV]

"NextInstance"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SASDIFSV\0000]

"Service"="SASDIFSV"

"Legacy"=dword:00000001

"ConfigFlags"=dword:00000000

"Class"="LegacyDriver"

"ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}"

"DeviceDesc"="SASDIFSV"

"Capabilities"=dword:00000000

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SASKUTIL]

"NextInstance"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SASKUTIL\0000]

"Service"="SASKUTIL"

"Legacy"=dword:00000001

"ConfigFlags"=dword:00000000

"Class"="LegacyDriver"

"ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}"

"DeviceDesc"="SASKUTIL"

"Capabilities"=dword:00000000

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SECDRV]

"NextInstance"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SECDRV\0000]

"Service"="secdrv"

"Legacy"=dword:00000001

"ConfigFlags"=dword:00000400

"Class"="LegacyDriver"

"ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}"

"DeviceDesc"="Security Driver"

"Capabilities"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SECDRV\0000\Control]

"ActiveService"="secdrv"

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SETUP_9.0.0.722_13.09.2010_10-27DRV]

"NextInstance"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SETUP_9.0.0.722_13.09.2010_10-27DRV\0000]

"Service"="setup_9.0.0.722_13.09.2010_10-27drv"

"Legacy"=dword:00000001

"ConfigFlags"=dword:00000000

"Class"="LegacyDriver"

"ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}"

"DeviceDesc"="setup_9.0.0.722_13.09.2010_10-27drv"

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SETUP_9.0.0.722_27.05.2010_11-29DRV]

"NextInstance"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SETUP_9.0.0.722_27.05.2010_11-29DRV\0000]

"Service"="setup_9.0.0.722_27.05.2010_11-29drv"

"Legacy"=dword:00000001

"ConfigFlags"=dword:00000000

"Class"="LegacyDriver"

"ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}"

"DeviceDesc"="setup_9.0.0.722_27.05.2010_11-29drv"

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SPIDERG3]

"NextInstance"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SPIDERG3\0000]"Service"="SpiderG3"

"Legacy"=dword:00000001

"ConfigFlags"=dword:00000000

"Class"="LegacyDriver"

"ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}"

"DeviceDesc"="DrWeb file system scanner"

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SPLDR]

"NextInstance"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SPLDR\0000]

"Service"="spldr"

"Legacy"=dword:00000001

"ConfigFlags"=dword:00000400

"Class"="LegacyDriver"

"ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}"

"DeviceDesc"="Security Processor Loader Driver"

"Capabilities"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SPLDR\0000\Control]

"ActiveService"="spldr"

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\\Users\\Fab\\AppData\\Roaming\\0Q11SIUAOM.exe"="C:\\Users\\Fab\\AppData\\Roaming\\0Q11SIUAOM.exe:*:Enabled:Windows Messanger"

"C:\\Users\\Fab\\AppData\\Roaming\\csrss.exe"="C:\\Users\\Fab\\AppData\\Roaming\\csrss.exe:*:Enabled:Windows Messanger"

"C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe:*:Enabled:Windows Messanger"

"C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe:*:Enabled:Windows Messanger"

Windows Registry Editor Version 5.00

[HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2]

@="NCTAudioFile2 Class"

[HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2\CLSID]

@="{77829F14-D911-40FF-A2F0-D11DB8D6D0BC}"

[HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2\CurVer]

@="NCTAudioFile2.AudioFile2.2"

Windows Registry Editor Version 5.00

[HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2.2]

@="NCTAudioFile2 Class"

[HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2.2\CLSID]

@="{77829F14-D911-40FF-A2F0-D11DB8D6D0BC}"

Windows Registry Editor Version 5.00

[HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2lameenc]

@="AudioFile2LameEnc Class"

[HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2lameenc\CLSID]

@="{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}"

Windows Registry Editor Version 5.00

[HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2lameenc.1]

@="AudioFile2LameEnc Class"

[HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2lameenc.1\CLSID]

@="{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}"

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

"{A7A56759-B680-4E20-85D1-D1B2E98BAA60}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|App=%ProgramFiles(x86)%\\Windows Media Player\\wmplayer.exe|Name=Lecteur Windows Media x86 (Trafic sortant TCP)|Desc=@FirewallAPI.dll,-31014|EmbedCtxt=@FirewallAPI.dll,-31002|"

"{68C23619-A4EC-49B7-8858-2A75988AC22D}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|App=%ProgramFiles(x86)%\\Windows Media Player\\wmplayer.exe|Name=Lecteur Windows Media x86 (Trafic sortant UDP)|Desc=@FirewallAPI.dll,-31010|EmbedCtxt=@FirewallAPI.dll,-31002|"

"{B66A5A4A-C2C0-4769-AFE1-C44DF7A163A7}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=%ProgramFiles(x86)%\\Windows Media Player\\wmplayer.exe|Name=Lecteur Windows Media x86 (Trafic entrant UDP)|Desc=@FirewallAPI.dll,-31006|EmbedCtxt=@FirewallAPI.dll,-31002|"

"{E65CA4CB-632B-4ABB-B65B-DE08281961A6}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=upnphost|Name=Service Partage réseau du Lecteur Windows Media (Trafic sortant sur l’hôte du périphérique Plug-and-Play universel)|Desc=@FirewallAPI.dll,-31322|EmbedCtxt=@FirewallAPI.dll,-31252|"

"{F050DE82-640E-45BC-9614-849A09AFB021}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RPort=10243|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=Service de partage réseau du Lecteur Windows Media (HTTP-Diffusion en continu-Sortie)|Desc=@FirewallAPI.dll,-31292|EmbedCtxt=@FirewallAPI.dll,-31252|"

"{65339DDB-AE20-40CA-B162-E7A81D4C297A}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=10243|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=Service de partage réseau du Lecteur Windows Media (HTTP-Diffusion en continu-Entrée)|Desc=@FirewallAPI.dll,-31288|EmbedCtxt=@FirewallAPI.dll,-31252|"

"{0565297F-16FC-4C84-AE97-055D4AF4B02B}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=Service de partage réseau du Lecteur Windows Media (UPnP-Sortie)|Desc=@FirewallAPI.dll,-31284|EmbedCtxt=@FirewallAPI.dll,-31252|"

"{8A558104-F380-4249-BF7C-5248C795EA7D}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=2869|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=Service de partage réseau du Lecteur Windows Media (UPnP-Entrée)|Desc=@FirewallAPI.dll,-31280|EmbedCtxt=@FirewallAPI.dll,-31252|"

"{1BDE6D65-54BD-4F18-A910-7C91DD39784F}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=Service de partage réseau du Lecteur Windows Media (SSDP-Sortie)|Desc=@FirewallAPI.dll,-31276|EmbedCtxt=@FirewallAPI.dll,-31252|"

"{C9D9D921-6E9B-46EC-9D2D-A0F1F74C92F7}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=Service de partage réseau du Lecteur Windows Media (SSDP-Entrée)|Desc=@FirewallAPI.dll,-31272|EmbedCtxt=@FirewallAPI.dll,-31252|"

"{461A7886-6CFD-42D4-9AC0-7CD3C506B40A}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=Service de partage réseau du Lecteur Windows Media (qWave-TCP-Sortie)|Desc=@FirewallAPI.dll,-31268|EmbedCtxt=@FirewallAPI.dll,-31252|"

"{4377D30A-BD1F-42F8-8DD1-6421341F0957}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=Service de partage réseau du Lecteur Windows Media (qWave-TCP-Entrée)|Desc=@FirewallAPI.dll,-31264|EmbedCtxt=@FirewallAPI.dll,-31252|"

"{7C19AE44-E26F-4A28-88E7-9496C3CFA9AB}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=Service de partage réseau du Lecteur Windows Media (qWave-UDP-Sortie)|Desc=@FirewallAPI.dll,-31260|EmbedCtxt=@FirewallAPI.dll,-31252|"

"{2A23380C-2538-4F0A-9B22-9577A20B4622}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=Service de partage réseau du Lecteur Windows Media (qWave-UDP-Entrée)|Desc=@FirewallAPI.dll,-31256|EmbedCtxt=@FirewallAPI.dll,-31252|"

"{774C7F2A-6A30-440A-8C57-D1BBE29C76A3}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-28550|Desc=@FirewallAPI.dll,-28551|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{BA1EEC13-2DD9-4CA4-B09B-632DF1D5F798}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-28548|Desc=@FirewallAPI.dll,-28549|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{D79104D9-E26C-4827-9DA6-1EAA84225C38}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|Profile=Private|ICMP6=128:*|RA6=LocalSubnet|Name=@FirewallAPI.dll,-28546|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{F3072443-8173-45F2-8921-EE491405ABA8}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|Profile=Private|ICMP6=128:*|RA6=LocalSubnet|Name=@FirewallAPI.dll,-28545|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{B211E245-43C7-4CBD-A4C8-ABDA5D8E12BA}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=1|Profile=Private|ICMP4=8:*|RA4=LocalSubnet|Name=@FirewallAPI.dll,-28544|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{79D1DF45-AC70-41BD-BC3C-F5CD9AB5084C}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=1|Profile=Private|ICMP4=8:*|RA4=LocalSubnet|Name=@FirewallAPI.dll,-28543|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{9A781E43-B01B-422B-9B25-7CECAFE92FA5}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=RPC-EPMap|RA4=LocalSubnet|RA6=LocalSubnet|Svc=Rpcss|Name=@FirewallAPI.dll,-28539|Desc=@FirewallAPI.dll,-28542|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{21C61F64-3FCF-4A1E-8C86-5898BFD0292E}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=138|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28531|Desc=@FirewallAPI.dll,-28534|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{34FCE281-6CAA-4201-A503-2D9B2E146501}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=138|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28527|Desc=@FirewallAPI.dll,-28530|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{3B076E51-DAAE-4EB1-886C-40A1E5E6A974}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=137|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28523|Desc=@FirewallAPI.dll,-28526|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{3AA8DA0E-6366-44FB-A614-A966A7A7EDD4}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=137|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28519|Desc=@FirewallAPI.dll,-28522|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{931AFE2F-1346-42B4-AB2D-9848EFE7C339}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RPort=445|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28515|Desc=@FirewallAPI.dll,-28518|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{49FE04B3-8A01-4F46-BA2C-2E1D5C1235C9}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=445|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28511|Desc=@FirewallAPI.dll,-28514|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{4DB19B27-166D-4966-88B5-CEBDB8E51A29}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RPort=139|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28507|Desc=@FirewallAPI.dll,-28510|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{BD3C7226-B532-4CA5-AC4F-51E68312D725}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=139|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28503|Desc=@FirewallAPI.dll,-28506|EmbedCtxt=@FirewallAPI.dll,-28502|"

"TCP Query User{31FCC43C-9B45-4D28-B07D-27E771240615}F:\\jeux\\grid\\grid.exe"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=F:\\jeux\\grid\\grid.exe|Name=GRID Executable|Desc=GRID Executable|Defer=User|"

"UDP Query User{DDB5D51B-3946-46FD-A595-74D72A1C3084}F:\\jeux\\grid\\grid.exe"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=F:\\jeux\\grid\\grid.exe|Name=GRID Executable|Desc=GRID Executable|Defer=User|"

"{B7025115-69EC-484F-8C3E-65E389C4451C}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=48113|RA4=LocalSubnet|RA6=LocalSubnet|Name=maconfig_tcp|"

"{A91498EC-8A8F-4DFD-BF0C-D431A81DCADB}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=48113|RA4=LocalSubnet|RA6=LocalSubnet|Name=maconfig_udp|"

"{B452BF76-8E1C-4170-BF75-EA6993E701B5}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Public|RPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-28550|Desc=@FirewallAPI.dll,-28551|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{8107AF44-57EE-4E9A-9DF5-AAD810993B62}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|LPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-28548|Desc=@FirewallAPI.dll,-28549|EmbedCtxt=@FirewallAPI.dll,-28502|"

"{48F34A51-2461-4FA2-99AB-4C325CD23458}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=F:\\Jeux\\DiRT2\\dirt2_game.exe|Name=DiRT2|"

"{430F49D3-FAB6-4A09-9546-F0192C3C56B5}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=F:\\Jeux\\DiRT2\\dirt2_game.exe|Name=DiRT2|"

"TCP Query User{0386787D-1AF9-4DED-804D-62154F6D66E1}C:\\program files (x86)\\internet explorer\\iexplore.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\\program files (x86)\\internet explorer\\iexplore.exe|Name=Internet Explorer|Desc=Internet Explorer|"

"UDP Query User{53364A3A-B75C-40F2-A9DE-84C5E4A4D9D4}C:\\program files (x86)\\internet explorer\\iexplore.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\\program files (x86)\\internet explorer\\iexplore.exe|Name=Internet Explorer|Desc=Internet Explorer|"

"{0F3224FA-8793-40F8-B57B-F85F75C76D3A}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Public|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedIIGame.exe|Name=Assassin's Creed II|"

"{FE604D8E-7756-4175-8592-F427A98AE815}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Public|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedIIGame.exe|Name=Assassin's Creed II|"

"{84686787-8849-4431-B55F-D11BE8941627}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Public|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedII.exe|Name=Assassin's Creed II Update|"

"{CEEC6E75-0DA5-4BB8-B4DF-F9971D95FC8C}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Public|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedII.exe|Name=Assassin's Creed II Update|"

"{94065717-F950-4282-8477-0EA11563D9EF}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Public|App=F:\\Jeux\\Assassin's Creed II\\UPlayBrowser.exe|Name=Assassin's Creed II Uplay|"

"{6FD9B743-6B5C-443A-A851-A374C8DF3D64}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Public|App=F:\\Jeux\\Assassin's Creed II\\UPlayBrowser.exe|Name=Assassin's Creed II Uplay|"

"{5EF568E4-7DF0-4A21-A333-2FE521A572BF}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=E:\\Program Files (x86)\\Steam\\SteamApps\\common\\call of duty modern warfare 2\\iw4sp.exe|Name=Call of Duty: Modern Warfare 2|"

"{23881E7C-9480-4988-BB03-2D5D0C69DF60}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=E:\\Program Files (x86)\\Steam\\SteamApps\\common\\call of duty modern warfare 2\\iw4sp.exe|Name=Call of Duty: Modern Warfare 2|"

"{D01A8F7E-77F6-46E9-999B-C60D537F7D6A}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{2B08AD4C-A848-4A0D-A9E3-98AD5CB43F6E}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedIIGame.exe|Name=Assassin's Creed II|"

"{ED126A1C-188A-4D8A-95ED-1E71FCA09C8A}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedIIGame.exe|Name=Assassin's Creed II|"

"{8F81B338-B538-46A5-A99E-02FB4AC301B6}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedII.exe|Name=Assassin's Creed II Update|"

"{907DEFCC-3796-434F-99BE-D80492BFD39E}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedII.exe|Name=Assassin's Creed II Update|"

"{7BD5B903-7CF2-46A3-AB39-9422CD18B844}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=F:\\Jeux\\Assassin's Creed II\\UPlayBrowser.exe|Name=Assassin's Creed II Uplay|"

"{FB70FD89-0819-4915-9771-B5BFFEC0FA1D}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=F:\\Jeux\\Assassin's Creed II\\UPlayBrowser.exe|Name=Assassin's Creed II Uplay|"

"{C0C7B7A4-CD48-42D4-9AD3-E06366E47C25}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=E:\\Program Files (x86)\\Steam\\SteamApps\\common\\call of duty modern warfare 2\\iw4mp.exe|Name=Call of Duty: Modern Warfare 2 - Multiplayer|"

"{6D2E1EC3-17C8-4DF6-9277-7D98AA8C9C72}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=E:\\Program Files (x86)\\Steam\\SteamApps\\common\\call of duty modern warfare 2\\iw4mp.exe|Name=Call of Duty: Modern Warfare 2 - Multiplayer|"

"{4434190E-394C-4EEB-8BAB-679CC34ED401}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=E:\\Program Files (x86)\\Steam\\Steam.exe|Name=Steam|"

"{1A7666E9-CB5E-473C-AA34-582F5CBC6BDF}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=E:\\Program Files (x86)\\Steam\\Steam.exe|Name=Steam|"

"{70E3AF99-DFD9-4EAB-B306-B5C99A2A1198}"="v2.10|Action=Block|Active=TRUE|Dir=In|RA4=193.107.240.0-193.107.243.255|Name=Blocage HADop|"

"{B6B999E6-3156-4893-AE13-3258CE5833B1}"="v2.10|Action=Block|Active=TRUE|Dir=Out|RA4=193.107.240.0-193.107.243.255|Name=Blocage HADop|"

"{7FA81728-66CC-470C-8B5A-95E9A651E2C7}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=E:\\Program Files (x86)\\VLC\\vlc.exe|Name=VLC media player|"

"{254F76A1-CC4C-426C-9292-5D24101ACA36}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=E:\\Program Files (x86)\\VLC\\vlc.exe|Name=VLC media player|"

"{47D97367-5A10-4894-96B6-58C464BD27ED}"="v2.10|Action=Allow|Active=TRUE|Dir=In|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{CAC949E8-94FB-4C82-97BE-6D1A37A51295}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=F:\\Jeux\\F1 2010\\F1_2010_game.exe|Name=F1 2010|"

"{228F520B-66B3-440A-B3D5-EEE7A4068ABC}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=F:\\Jeux\\F1 2010\\F1_2010_game.exe|Name=F1 2010|"

"TCP Query User{23EE05A4-F35B-4C73-86A2-CB35B1AF8F6D}E:\\program files (x86)\\utorrent\\utorrent.exe"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=E:\\program files (x86)\\utorrent\\utorrent.exe|Name=µTorrent|Desc=µTorrent|Defer=User|"

"UDP Query User{4F106DBB-D6C0-46D2-AF10-9BF15EF62EAD}E:\\program files (x86)\\utorrent\\utorrent.exe"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=E:\\program files (x86)\\utorrent\\utorrent.exe|Name=µTorrent|Desc=µTorrent|Defer=User|"

"{C09520A2-D9E6-4D71-926C-5BF6260C66DA}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{58EFD849-F068-4247-A297-6AEE721E0BC8}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{651CDA5D-8E65-455C-9DEB-123AFAC657BD}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|ICMP6=128:*|App=System|Name=@IpHlpSvc.dll,-502|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-25000|"

"{F9C096B6-E898-4988-A137-6C1310AC0F67}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|ICMP6=128:*|Name=@IpHlpSvc.dll,-503|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-25000|"

"{46696FDF-AC97-477A-BFD7-597EC0A302BE}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{092A756B-F422-4239-A26D-F3426DE8B839}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{57BFD474-9B78-4FF1-A4DF-1B083FC6F0E6}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{08E913FE-27E0-441F-B665-BD5021FBAE83}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{9C4113F6-2D86-4396-948B-38398097C98B}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{C5DFF8C6-3C20-4377-A69F-4FA7585E2997}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{75E049BC-74B4-4EF5-AC0D-A80B16C47230}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{9485E4BB-AF32-4334-B36E-D2D34860853B}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{3606E010-5765-4006-BF2B-CD85428EADD2}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{323AAB5D-12D7-45F3-B043-D2E6CFA6AF79}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{9F929748-064C-4D76-93C9-3C2C28B90F82}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{B006FD46-0936-48D5-BCED-7C288694A657}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=F:\\Jeux\\Call of Duty - Black Ops\\BlackOps.exe|Name=Call of Duty - Black Ops|"

"{627621B4-5546-4F14-A1E9-538C0C7A1102}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=F:\\Jeux\\Call of Duty - Black Ops\\BlackOps.exe|Name=Call of Duty - Black Ops|"

"{BF2981C8-AF26-4219-AA16-FD47C1AC6375}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=F:\\Jeux\\Call of Duty - Black Ops\\BlackOps.exe|Name=Call of Duty - Black Ops|"

"{46BFA528-B384-4926-9E95-FF3A01CCB88D}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|App=F:\\Jeux\\Call of Duty - Black Ops\\BlackOps.exe|Name=Call of Duty - Black Ops|"

"{976A7ACE-CAEF-44DA-8C6C-F273EF34218B}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{F68561E2-AA6D-4A81-A75A-907B8E9DF8C4}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{BB360E55-8A7E-41A1-AE82-1E60CF3C8A77}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"TCP Query User{A1BF6FC3-C3A7-4433-A336-23B2C1195CB2}F:\\jeux\\call of duty - black ops\\blackopsmp.exe"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=F:\\jeux\\call of duty - black ops\\blackopsmp.exe|Name=BlackOpsMP|Desc=BlackOpsMP|Defer=User|"

"UDP Query User{40B75C8C-C143-4D66-B1FD-985A6C98BBC6}F:\\jeux\\call of duty - black ops\\blackopsmp.exe"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=F:\\jeux\\call of duty - black ops\\blackopsmp.exe|Name=BlackOpsMP|Desc=BlackOpsMP|Defer=User|"

"{A9491821-FAD3-4397-B3CB-14B99B573052}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|LPort=2177|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-271|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-272|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{FC19721B-13CA-4D35-9856-4F30898A7C0D}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|RPort=2177|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-273|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-274|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{5142794C-5780-47EB-8819-73F973F3C278}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=2177|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-275|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-276|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{574CB5A1-002B-47F1-9BD4-4F06937795A3}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|RPort=2177|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-277|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-278|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{C0615268-1AF7-44DD-A05B-08382561E8F8}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=2869|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-283|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-284|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{1EED3F44-D3B2-4F7A-8C5F-65E74A33E524}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-285|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-286|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{84465463-C566-4D3B-9D8A-237255FC5E5D}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=10243|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-287|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-288|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{53076E1F-919C-4421-A8A4-A2660956CBFA}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|RPort=10243|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-289|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-290|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{3F60EE79-165A-4737-9E13-7D4FA9452DA3}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|Profile=Public|LPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-271|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-272|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{7FE30A34-3978-4C53-8454-643CFDEE9F92}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Private|Profile=Public|RPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-273|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-274|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{1A522D3F-5EE9-4A65-8CFD-C0FD33C95A13}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-275|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-276|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{D270F55F-84CE-43DC-84C7-F634680F794F}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-277|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-278|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{8EF6EF70-9AB3-4720-A33B-D8CA5500F58B}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|Profile=Private|Profile=Public|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-279|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-280|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{922D7AE0-E418-44BC-AF1D-92D1CF931F71}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|Profile=Private|Profile=Public|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-281|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-282|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{53B44827-F008-4D41-AA18-65CDA632718E}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=2869|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-283|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-284|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{82EA7623-B672-4415-B984-7B99C6749AF8}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-285|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-286|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{39808AD8-C5CD-4FCF-A923-FEDE65DC4542}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=10243|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-287|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-288|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{EEF1A672-700F-4A7A-B315-54270A87AF9C}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RPort=10243|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-289|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-290|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{41CA45E4-1323-44D1-ACAA-B10277E9D867}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=upnphost|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-299|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-300|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|"

"{0A6BD1B2-7875-4147-9449-DDB72CABCB93}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Domain|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=Synchronisation sans fil Zune (SSDP sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-305|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|"

"{6BE26E4E-72BA-463A-AFFE-F66B4A216AD4}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=upnphost|Name=Synchronisation sans fil Zune (UPnPHost sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-311|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|"

"TCP Query User{5C073364-C688-496E-AD2C-1334258FB330}E:\\program files (x86)\\zune\\zune.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=E:\\program files (x86)\\zune\\zune.exe|Name=Microsoft Zune|Desc=Microsoft Zune|"

"UDP Query User{BCE7C40E-6818-457D-88B1-898F67C082FD}E:\\program files (x86)\\zune\\zune.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=E:\\program files (x86)\\zune\\zune.exe|Name=Microsoft Zune|Desc=Microsoft Zune|"

"{17C98D2E-991B-4DB5-9627-EE6B7D3BAA8C}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=E:\\Program Files (x86)\\Microsoft Office\\Office14\\ONENOTE.EXE|Name=Microsoft OneNote|"

"{01AEEB3A-5C42-416C-9C9B-C77B5D0D88FE}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=E:\\Program Files (x86)\\Microsoft Office\\Office14\\ONENOTE.EXE|Name=Microsoft OneNote|"

"{FBA92D00-2412-4B3C-9599-A8C8E743728C}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=6004|App=E:\\Program Files (x86)\\Microsoft Office\\Office14\\outlook.exe|Name=Microsoft Office Outlook|"

"{F369501E-0772-43C6-AA46-B73BA21CB428}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=E:\\Program Files (x86)\\Pinnacle\\Studio 14\\Programs\\RM.exe|Name=Render Manager|"

"{1654AED3-3107-4417-8DE1-C236ED101DAB}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=E:\\Program Files (x86)\\Pinnacle\\Studio 14\\Programs\\RM.exe|Name=Render Manager|"

"{E474F7E1-665C-400D-A8CC-F4D61F288B9E}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=E:\\Program Files (x86)\\Pinnacle\\Studio 14\\Programs\\Studio.exe|Name=Studio|"

"{51A710D5-951D-4E66-90CC-C8E5FD878223}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=E:\\Program Files (x86)\\Pinnacle\\Studio 14\\Programs\\Studio.exe|Name=Studio|"

"TCP Query User{D508AB91-3D2D-494C-9796-7E50CD1D651A}F:\\jeux\\call of juarez - bound in blood\\cojbibgame_x86.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=F:\\jeux\\call of juarez - bound in blood\\cojbibgame_x86.exe|Name=Call of Juarez: Bound in Blood|Desc=Call of Juarez: Bound in Blood|"

"UDP Query User{99732EE3-55F9-4C1C-9CBA-0F7E7BD57C1D}F:\\jeux\\call of juarez - bound in blood\\cojbibgame_x86.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=F:\\jeux\\call of juarez - bound in blood\\cojbibgame_x86.exe|Name=Call of Juarez: Bound in Blood|Desc=Call of Juarez: Bound in Blood|"

"{2D5F2189-9E69-4F0E-B029-4BB43ED054A8}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{FC573965-19A3-445C-A2BF-8EEFF082185D}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{8F98D107-F1E0-4C46-85BC-936275B910AA}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Plugin Manager\\skypePM.exe|Name=Skype Extras Manager|Edge=TRUE|Defer=App|"

"{7FBA7385-BCE3-4FF7-BBC2-C05AF1977BE7}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|RA4=LocalSubnet|RA6=LocalSubnet|App=C:\\Program Files (x86)\\ma-config.com\\maconfservice.exe|Name=maconfservice|"

"{C83FD172-5183-4AA4-A066-140EC5854140}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|RA4=LocalSubnet|RA6=LocalSubnet|App=C:\\Program Files (x86)\\ma-config.com\\maconfservice.exe|Name=maconfservice|"

"{2201CD01-6C5B-4CD6-8291-182407C4A034}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|App=e:\\Program Files (x86)\\uTorrent\\uTorrent.exe|Name=µTorrent (TCP-In)|Desc=Allow µTorrent network traffic with Edge Traversal|Edge=TRUE|"

"{1A1A6637-AB68-4F1F-9A45-2680FEDD3D8A}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|App=e:\\Program Files (x86)\\uTorrent\\uTorrent.exe|Name=µTorrent (UDP-In)|Desc=Allow µTorrent network traffic with Edge Traversal|Edge=TRUE|"

"{387524BA-AEEE-4411-BC8C-F9F7F519AB96}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Domain|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=Synchronisation sans fil Zune (SSDP entrant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-303|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|"

"{ECC7389E-FAD4-4AA5-9AEA-06AF1C758E44}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Domain|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=Synchronisation sans fil Zune (SSDP sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-305|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|"

"{5A1904A8-60F6-4B90-838E-BAC14E5DEFB0}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Domain|LPort=2869|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-306|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-307|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|"

"{8805F8FE-392D-4D63-9B7B-BCD1FE15A3F0}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-308|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-309|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|"

"{619421A9-A980-47F7-AC6B-1A06D51BA4D7}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=2869|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=Synchronisation sans fil Zune (UPnP entrant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-307|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|"

"{33F8008E-87B0-4868-A74E-3C17AF2D8914}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=Synchronisation sans fil Zune (UPnP sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-309|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|"

"{26EEDACB-43EB-4F37-99A8-FFED3AB508A1}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=upnphost|Name=Synchronisation sans fil Zune (UPnPHost sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-311|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|"

"{67F05A61-EEA6-404C-8681-7D12D4B9BF0B}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|App=%SystemRoot%\\system32\\wudfhost.exe|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-312|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-313|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|"

"{6CC27F55-DCB2-4E9D-8F7C-DDFBCB69DD5A}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\wudfhost.exe|Name=Synchronisation sans fil Zune (TCP sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-313|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|"

"{0F88364F-E7F4-437B-A973-46D5871224A8}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{14640148-7C40-4FD7-B3EC-8B32B48B99A4}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|"

"{271339BB-1143-4ABB-A691-EACF15633859}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Plugin Manager\\skypePM.exe|Name=Skype Extras Manager|Edge=TRUE|Defer=App|"

"{4E5ED958-F5F3-491F-BAA3-BC659747E05A}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=upnphost|Name=Synchronisation sans fil Zune (UPnPHost sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-311|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|"

"{8E3AEA7B-00F7-4395-931D-D4E1B70B53ED}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Private|Profile=Public|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=Synchronisation sans fil Zune (SSDP sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-305|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|"

"{288DF037-C213-4247-94BE-F951E10C80B0}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|Profile=Public|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=Synchronisation sans fil Zune (SSDP entrant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-303|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|"

"{D963E841-9319-48B4-B29B-078FA67F4CC8}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|App=%SystemRoot%\\system32\\svchost.exe|Svc=RapiMgr|Name=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4016|Desc=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-14016|EmbedCtxt=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4014|"

"{DE26AED6-FD72-48B4-BFBF-9CDF4AC8C26F}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|App=%SystemRoot%\\system32\\svchost.exe|Svc=RapiMgr|Name=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4016|Desc=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-14016|EmbedCtxt=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4014|"

"{F8E73D52-42A5-481B-9D2B-75635999A7A1}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|LA4=127.0.0.1|App=%SystemRoot%\\system32\\svchost.exe|Svc=WcesComm|Name=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4002|Desc=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-14002|EmbedCtxt=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4014|"

"{746EB986-B4CC-403B-A8C7-322057F8B2FB}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|App=%SystemRoot%\\system32\\svchost.exe|Svc=WcesComm|Name=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4016|Desc=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-14016|EmbedCtxt=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4014|"

"{FF8A861D-0CC3-46A0-A892-62EBCDA7FC9F}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|App=%SystemRoot%\\system32\\svchost.exe|Svc=WcesComm|Name=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4016|Desc=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-14016|EmbedCtxt=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4014|"

"TCP Query User{FBAD6FCE-5D3D-4968-911E-DD795B4F4987}E:\\program files (x86)\\hobbyist software\\vlc setup helper\\mdnsresponder.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=E:\\program files (x86)\\hobbyist software\\vlc setup helper\\mdnsresponder.exe|Name=Bonjour Service|Desc=Bonjour Service|"

"UDP Query User{E472FA61-801C-4523-B28F-530D40BCA55E}E:\\program files (x86)\\hobbyist software\\vlc setup helper\\mdnsresponder.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=E:\\program files (x86)\\hobbyist software\\vlc setup helper\\mdnsresponder.exe|Name=Bonjour Service|Desc=Bonjour Service|"

"{C46FDB0D-ACE1-41C2-9A9D-4F53125D837F}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|RA4=172.16.255.0/255.255.255.0|RA4=192.168.1.0/255.255.255.0|App=C:\\Program Files (x86)\\SFR\\Media Center\\httpd\\httpd.exe|Name=Serveur de partage Media Center (Player SFR)|"

"{ABC18731-4A96-44F1-BE7A-C9687FA12AF8}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|RA4=172.16.255.0/255.255.255.0|RA4=192.168.1.0/255.255.255.0|App=C:\\Program Files (x86)\\SFR\\Media Center\\httpd\\httpd.exe|Name=Serveur de partage Media Center (Player SFR)|"

"{521A2F91-4349-456C-BABC-8D1B1B1D71D7}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=F:\\Jeux\\Homefront\\Binaries\\HOMEFRONT.exe|Name=Homefront Game|"

"{5FF795F8-67AE-42E8-85DF-E9D5E31801F8}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=F:\\Jeux\\Homefront\\Binaries\\HOMEFRONT.exe|Name=Homefront Game|"

"{6D756F42-9BF6-4EDB-9543-036780B418A5}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=F:\\Jeux\\Homefront\\Binaries\\HOMEFRONT.exe|Name=Homefront Game|"

"{252084CA-B353-4CD5-9291-B19A106F0362}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|App=F:\\Jeux\\Homefront\\Binaries\\HOMEFRONT.exe|Name=Homefront Game|"

"{55287748-E546-448C-9BBE-B347073FC85A}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=F:\\Jeux\\Crysis 2\\bin32\\Crysis2.exe|Name=Crysis2.exe|"

"{6A604236-DC27-40E5-98D8-F099E6E33DEE}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|App=F:\\Jeux\\Crysis 2\\bin32\\Crysis2.exe|Name=Crysis2.exe|"

"{B46A2D08-1B8B-4B68-AAF4-37C000B94A0F}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=F:\\Jeux\\Crysis 2\\bin32\\Crysis2Launcher.exe|Name=Crysis2Launcher.exe|"

"{F28F4AEE-3A38-430C-8264-754C8604AD21}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|App=F:\\Jeux\\Crysis 2\\bin32\\Crysis2Launcher.exe|Name=Crysis2Launcher.exe|"

"TCP Query User{3FE348E7-DEB2-45B1-95EB-175C70FD52EA}F:\\jeux\\crysis 2\\bin32\\crysis2.exe"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=F:\\jeux\\crysis 2\\bin32\\crysis2.exe|Name=Crysis2|Desc=Crysis2|Defer=User|"

"UDP Query User{02E47152-392D-46E7-A991-AE9633D51F43}F:\\jeux\\crysis 2\\bin32\\crysis2.exe"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=F:\\jeux\\crysis 2\\bin32\\crysis2.exe|Name=Crysis2|Desc=Crysis2|Defer=User|"

"TCP Query User{1738CC4F-33EC-4BBC-B446-773F2BA8F1A7}F:\\jeux\\shift 2 unleashed\\shift2u.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=F:\\jeux\\shift 2 unleashed\\shift2u.exe|Name=SHIFT 2 UNLEASHED™|Desc=SHIFT 2 UNLEASHED™|"

"UDP Query User{1500E080-DD15-4BD6-B552-229CB70155DE}F:\\jeux\\shift 2 unleashed\\shift2u.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=F:\\jeux\\shift 2 unleashed\\shift2u.exe|Name=SHIFT 2 UNLEASHED™|Desc=SHIFT 2 UNLEASHED™|"

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\\Users\\Fab\\AppData\\Roaming\\csrss.exe"="C:\\Users\\Fab\\AppData\\Roaming\\csrss.exe:*:Enabled:Windows Messanger"

"C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe:*:Enabled:Windows Messanger"

"C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe:*:Enabled:Windows Messanger"

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe:*:Enabled:Windows Messanger"

"C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe:*:Enabled:Windows Messanger"

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe:*:Enabled:Windows Messanger"

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\shell]

@="AutoRun"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\shell\Autoplay]

"MUIVerb"="@shell32.dll,-8507"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\shell\Autoplay\DropTarget]

"CLSID"="{F26A669A-BCBB-4E37-ABF9-7325DA15F931}"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\shell\AutoRun]

@="Installer ou exécuter un programme depuis son support"

"SetWorkingDirectoryFromTarget"=""

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\shell\AutoRun\command]

@="J:\\Startme.exe"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\_Autorun]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\_Autorun\DefaultIcon]

@="J:\\Startme.exe"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\_Autorun\DefaultLabel]

@="Sony Ericsson PC Companion"

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\shell]

@="AutoRun"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\shell\Autoplay]

"MUIVerb"="@shell32.dll,-8507"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\shell\Autoplay\DropTarget]

"CLSID"="{F26A669A-BCBB-4E37-ABF9-7325DA15F931}"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\shell\AutoRun]

@="Installer ou exécuter un programme depuis son support"

"SetWorkingDirectoryFromTarget"=""

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\shell\AutoRun\command]

@="J:\\Startme.exe"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\_Autorun]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\_Autorun\DefaultIcon]

@="J:\\Startme.exe"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\_Autorun\DefaultLabel]

@="Sony Ericsson PC Companion"

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_14637941]

"NextInstance"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_14637941\0000]

"Service"="14637941"

"Legacy"=dword:00000001

"ConfigFlags"=dword:00000000

"Class"="LegacyDriver"

"ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}"

"DeviceDesc"="14637941"

"Capabilities"=dword:00000000

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_14637942]

"NextInstance"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_14637942\0000]

"Service"="14637942"

"Legacy"=dword:00000001

"ConfigFlags"=dword:00000000

"Class"="LegacyDriver"

"ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}"

"DeviceDesc"="14637942 Boot Guard Driver"

"Capabilities"=dword:00000000

merci pour l'aide

Connexion

Pas encore inscrit ?

Problème svchost...HijackThis dans le rouge!!!

Messages recommandés

Bebos74

bernard53

Bebos74

Bebos74

Rejoindre la conversation

En ligne récemment 0 membre est en ligne

Zebulon

Outils en ligne

Naviguer