Invasion Virus!!!

le 30 avril 2011

Bonjour,

depuis maintenant 3 jours, je suis submergé par les problèmes. En double-cliquant sur un exe inconnu (impossible de retrouver le nom...) dans mes téléchargements (je sais, ce n'est pas très malin...), je me suis retrouvé avec écran noir et reboot. Ensuite mon ordi a commencé à se ramasser des Bluescreens plus ou moins n'importe quand. J'ai alors lu forum sur forum, et utilisé un tas de programmes sensés m'aider. Depuis, on peut dire que c'est déjà mieux : il reste juste un bluescreen quand je veux éteindre mon ordinateur (et il reboot, donc impossible de l'éteindre).

Voiçi mes dernières manips: Malwarebytes: 11 trojans trouvés et supprimés avec succès

Kaspersky: aucun résultat en analyse complète

Avira: Pareil (je l'avais en version gratuite avant d'installer Kaspersky) Gmer: aucunes lignes rouges

Whocrashed: Il me signalait ntkrpamp.exe. Bizarrement, je viens de le relancer pour vous confirmer le nom mais il ne trouve plus rien (heureusement j'ai bonne mémoire;))

Et un tas d'autres dont j'ai oublié le nom, mais qui ne m'ont pas aidé...

J'ai un Asus portable K70IOS Vista Premium Nvidia Gforce Gt 120m

Constatations: Impossible de mettre Windows à jour: error code 80072EFE

Dans ma barre gadgets j'avais une corbeille qui me faisait un bluescreen dès que j'essayais de l'ouvrir (je l'ai désinstallée) or elle marchait fort bien avant...

Bluescreen quand je l'éteint: Internal_power_error

Avant, j'avais aussi le bluescreen driver_irql_less_or_equal, ou un truc du genre, n'importe quand, mais depuis mes manips il a disparu.

Je précise que tout a commencé avec ce foutu exe, donc il ne s'agit pas là d'un problème de RAM ni de températures!

En tout cas merci pour votre temps et votre aide!

le 30 avril 2011

Personne dans le coin? Je commence à penser que je suis bon pour le formatage! Arg!

bleuet · le 30 avril 2011

Salut !

A TITRE PREVENTIF , peux-tu ?

Télécharger ZHPdiag ICI

Cliquer sur le lien, et sélectionnez > Enregistrer le Fichier sous > Vers le bureau

/!\ Il est très important de l'enregistrer sur le bureau / !\

Une fois téléchargé, Une icône apparaitra alors sur le bureau.

Ouvrir alors ce fichier, (clic droit exécuter en tant qu'administrateur pour Vista/W 7) pour lancer le programme d'assistant d'installation.

Installer le avec les paramètres par défaut sans oublier de cocher la case "Créer une icône sur le bureau"

Lancement et diagnostic :

Une fois installé si le logiciel ne se lance pas tout seul, double clic sur le raccourci qui se sera créé sur le bureau (clique droit, exécuter en tant qu'administrateur pour VISTA/ W 7)

En même temps que ZHPDiag, sont créés les icônes de ZHPFix et MBRCheck qui peuvent être utilisés.(Ces programmes se retrouvent dans le dossier programme ZHPDiag).

Cliquer alors sur la loupe pour lancer le diagnostic.
Patientez jusqu'à la fin de l'analyse. Il peut arriver que le logiciel donne l'impression d'être bloqué ; patienter.
En cas de blocage sur la section O80, cliquer sur le tournevis pour le décocher.
Le diagnostic terminé,sauvegarder le rapport sur le Bureau en cliquant sur la disquette bleue.
Enregistrer le rapport sur le bureau affin de le retrouver plus facilement

Puis l' héberger comme suit (le rapport risque d'être très long) :

A partir de ce lien : www.cijoint.fr

Sur la page qui s'ouvre :

Cliquer sur "Parcourir" dans la partie "Sélectionnez le fichier que vous souhaitez déposer"
Sélectionner le rapport ZHPdiag.txt qui se trouve sur le Bureau
Cliquer ensuite sur " Cliquez ici pour déposer le fichier ". Un lien va se former.

Il ne reste plus qu'à copier/coller ce lien sur le forum.

Bleuet (30/04/2011)

le 30 avril 2011

Ok je fais cela immédiatement! Merci en tout cas!

le 30 avril 2011

Je n'arrive pas a poster le rapport :/

le 30 avril 2011

Voila, j'ai du le faire d'un autre ordi, le mien me dit que la connexion a été réinitialisée à chaque fois...

Je dois partir ce soir, mais je suivrai vos instructions dès demain!

Merci bcp!

Rapport de ZHPDiag v1.27.193 par Nicolas Coolman, Update du 28/04/2011

Run by Thomas Mailleux at 30/04/2011 19:04:43

Web site : ZHPDiag Outil de diagnostic

---\\ Web Browser

MSIE: Internet Explorer v8.0.6001.19048

MFIE: Mozilla Firefox v3.6.17 (fr) (Defaut)

---\\ System Information

Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)

Processor: x86 Family 6 Model 23 Stepping 10, GenuineIntel

Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 3582 MB (63% free)

System Restore: Activé (Enable)

System drive C: has 4 GB (3%) free of 116 GB

---\\ Logged in mode

Computer Name: PC-DE-THOMAS

User Name: Thomas Mailleux

All Users Names: UpdatusUser, Thomas Mailleux, ASPNET, Administrateur,

Unselected Option: O45,O61,O62,O65,O66,O82

Logged in as Administrator

---\\ Environnement Variables

%AppData%=

%LocalAppData%=

%StartMenu%=

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 4 Go of 116 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 105 Go)

E:\ CD-ROM drive (Not Inserted)

F:\ CD-ROM drive (Not Inserted)

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

---\\ Recherche particulière de fichiers génériques

[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 7:27:36.) -- C:\Windows\Explorer.exe [2926592]

[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 3:23:42.) -- C:\Windows\system32\Wininit.exe [96768]

[MD5.047CDEFF94B63F0A4791372B47427B60] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.22/02/2011 7:21:28.) -- C:\Windows\system32\wininet.dll [916480]

[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 7:28:13.) -- C:\Windows\system32\Winlogon.exe [314368]

[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 7:32:26.) -- C:\Windows\system32\drivers\atapi.sys [19944]

[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/04/2009 7:32:49.) -- C:\Windows\system32\drivers\ntfs.sys [1083880]

---\\ Processus lancés

[MD5.2F5A4CE9F740ACF1CC4837943BE29EAF] - (.ATK - Power4Gear Hybrid.) -- C:\Program files\P4G\BatteryLife.exe [211512]

[MD5.F4DCD4912B185C3AAEB92A7040832AD1] - (.Pas de propriétaire - ALU.) -- C:\Program Files\ASUS\ASUS Live Update\ALU.exe [51768]

[MD5.29BDA43618FD5147BEA6FBB3DAB8AEC5] - (.ASUS - SmartLogon Application.) -- C:\Program Files\ASUS\SmartLogon\sensorsrv.exe [297528]

[MD5.08C032BF5148A111DD5635201D7038D5] - (.MusicLab, Inc. - MolCp III MIDI Monitor.) -- C:\Program Files\MusicLab\MolCp III\monitor.exe [131072]

[MD5.B2B3FCBA37671C853879DF7DDE8A839A] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe [365336]

[MD5.13B19DD5EBEB6FDDBD11DD77490A3585] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [253672]

[MD5.C83B89C432E5CCC6BD3040EB0A6645A5] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [373864]

[MD5.F80315FCC60C92B525C82D650BE7C659] - (.SRS Labs, Inc. - SRS Premium Sound Control Panel.) -- C:\Program Files\SRS Labs\SRS Premium Sound\SRSPremiumSoundBig_Small.exe [3405048]

[MD5.A07E8935CC8DCE6DB787DC99129CA17C] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe [1305408]

[MD5.D938FB6915EA338BDFC0DCF8773634C5] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [912344]

[MD5.69A022AF566272F9BA43BBE8ADB0478C] - (.Kaspersky Lab ZAO - WebToolBar component.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtblfs.exe [129720]

[MD5.E68C1EFDA668BFF3E2023C72E9EF7A93] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856]

[MD5.F640C9E3A35BF7270ED887A3AC3F520D] - (.Adobe Systems Incorporated - Adobe Reader.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe [1306008]

[MD5.59E2A529D9ABCFA2024153A05FE693A1] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [644608]

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)

M3 - MFPP: Plugins - [Thomas Mailleux] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml

M3 - MFPP: Plugins - [Thomas Mailleux] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml

M3 - MFPP: Plugins - [Thomas Mailleux] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml

M3 - MFPP: Plugins - [Thomas Mailleux] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml

M3 - MFPP: Plugins - [Thomas Mailleux] -- C:\Program Files\Mozilla FireFox\searchplugins\webblog.xml

M3 - MFPP: Plugins - [Thomas Mailleux] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml

M3 - MFPP: Plugins - [Thomas Mailleux] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml

P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll

P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll

P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.0.1.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll

P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll

P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_25 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60310.0.) -- C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll

P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Microsoft Corp. - Office Live Update v1.3.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll

P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3508.1109] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

P2 - FPN: [HKLM] [@nvidia.com/3DVision] - (.NVIDIA Corporation - NVIDIA 3D Vision plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

P2 - FPN: [HKLM] [@nvidia.com/3DVisionStreaming] - (.NVIDIA Corporation - NVIDIA 3D Vision Streaming plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

P2 - FPN: [HKLM] [@pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.53\npGoogleUpdate3.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.53\npGoogleUpdate3.dll

P2 - FPN: [HKCU] [@facebook.com/FBPlugin,version=1.0.3] - (.Pas de propriétaire - Provides additional functionality on Facebook. See <a href="http://www.) -- C:\Users\Thomas Mailleux\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll

P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Microsoft Corporation

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)) -- C:\Windows\system32\ieframe.dll

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} . (.Kaspersky Lab ZAO - IE Virtual Keyboard.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} . (.Kaspersky Lab ZAO - WebToolBar component.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll

---\\ ---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [Wireless Console 3] . (.Pas de propriétaire - Wireless Console 3.) -- C:\Program Files\ASUS\Wireless Console 3\wcourier.exe

O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe

O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKLM\..\Run: [MolCp3Monitor] . (.MusicLab, Inc. - MolCp III MIDI Monitor.) -- C:\Program Files\MusicLab\MolCp III\monitor.exe

O4 - HKLM\..\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe

O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

O4 - HKCU\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe

O4 - HKCU\..\Run: [sRS Premium Sound] . (.SRS Labs, Inc. - SRS Premium Sound Control Panel.) -- C:\Program Files\SRS Labs\SRS Premium Sound\SRSPremiumSoundBig_Small.exe

O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll

O4 - HKUS\S-1-5-21-3657859692-3179009528-1850952124-1004-3657859692-3179009528-1850952124-1000\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-21-3657859692-3179009528-1850952124-1004-3657859692-3179009528-1850952124-1000\..\Run: [WindowsWelcomeCenter] oobefldr.dll

---\\ ---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Users\Thomas Mailleux\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\Thomas Mailleux\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe

O4 - Global Startup: C:\Users\Thomas Mailleux\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe

O4 - Global Startup: C:\Users\Thomas Mailleux\Desktop\AudioMulch.lnk . (...) -- C:\Program Files\AudioMulch 2.0.2\mulch2.exe

O4 - Global Startup: C:\Users\Thomas Mailleux\Desktop\Sound Forge Pro 10.0.lnk . (.Sony.) -- C:\Program Files\Sony\Sound Forge Pro 10.0\Forge100.exe

O4 - Global Startup: C:\Users\Thomas Mailleux\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Fallout New Vegas.lnk . (.Bethesda Softworks, Obsidian Entertainment.) -- D:\Fallout New Vegas\Fallout New Vegas\FalloutNVLauncher.exe

O4 - Global Startup: C:\Users\Thomas Mailleux\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\fifa - Raccourci.lnk . (.Electronic Arts.) -- D:\Fifa 11\FIFA 2011\Game\fifa.exe

O4 - Global Startup: C:\Users\Thomas Mailleux\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O4 - Global Startup: C:\Users\Thomas Mailleux\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Victoria 2.lnk . (.Paradox Interactive.) -- D:\Victoria 2\victoria2.exe

O4 - Global Startup: C:\Users\Thomas Mailleux\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe

O4 - Global Startup: C:\Users\Thomas Mailleux\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\World of Tanks closed Beta.lnk . (.Wargaming.net.) -- D:\WoT\World_of_Tanks_closed_Beta\WOTLauncher.exe

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: Ajouter à l'Anti-bannière . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm

O8 - Extra context menu item: E&xport to Microsoft Excel - (.not file.) - C:\PROGRA~1\MICROS~2\Office12\EXCEL.exe

O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBro

O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {4248FE82-7FCB-46AC-B270-339F08212110} . (...) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\kbrd.ico

O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {CCF151D8-D089-449F-A5A4-D9909053F20F} . (...) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\logo.ico

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab

O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab

O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} () - http://fichiers.touslesdrivers.com/maconfig/MaConfig_4_2_1_1.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{9F91C5E1-85CD-42CA-9C75-8F76D44609DD}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{9F91C5E1-85CD-42CA-9C75-8F76D44609DD}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS3\Services\Tcpip\..\{9F91C5E1-85CD-42CA-9C75-8F76D44609DD}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - Winlogon Notify: klogon . (.Kaspersky Lab ZAO - Logon Visualizer.) -- C:\Windows\system32\klogon.dll

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - AppInit_DLLs: . (.Kaspersky Lab ZAO - Mozilla 3 Virtual Keyboard.) - C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)

O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll

O22 - SharedTaskScheduler: (no name) - {E31004D1-A431-41B8-826F-E902F9D95C81} . (.Microsoft Corporation - Microsoft Windows Vista Ultimate Extra: Win.) -- C:\Windows\System32\DreamScene.dll

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: (appdrvrem01) . (.Protection Technology - Application Driver Auto Removal Service (01.) - C:\Windows\System32\appdrvrem01.exe

O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: (ASLDRService) . (.Pas de propriétaire - ASLDR Service.) - C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe

O23 - Service: (ATKGFNEXSrv) . (.Pas de propriétaire - GFNEXSrv.) - C:\Program Files\ATKGFNEX\GFNEXSrv.exe

O23 - Service: (AVP) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe

O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: (Brother XP spl Service) . (.brother Industries Ltd - brsvc01a.) - C:\Windows\system32\brsvc01a.exe

O23 - Service: (FLEXnet Licensing Service) . (.Acresso Software Inc. - Activation Licensing Service.) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: (gupdatem) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: (Norton Internet Security) - Clé orpheline

O23 - Service: (npggsvc) . (.INCA Internet Co., Ltd. - nProtect Game Monitor Rev 1614.) - C:\Windows\system32\GameMon.des

O23 - Service: (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 270.6.) - C:\Windows\system32\nvvsvc.exe

O23 - Service: (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O23 - Service: (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe

O23 - Service: (SRS_VolSync_Service) . (.SRS Labs, Inc. - Service to handle volume synchronization wi.) - C:\Program Files\SRS Labs\SRS Premium Sound\SRS_VolSync.exe

O23 - Service: (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(...) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe (.not file.)

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\User_Feed_Synchronization-{AE9894B7-E829-49BF-AE8F-6E9029544A19}.job

[MD5.BAD6BEA0DE1F69C82BDB74378CE0C20A] [APT] [Adobe Reader and Acrobat Manager] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

[MD5.7CFD590987D2BB33D5D56D98093D2E76] [APT] [Adobe Updater] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\Updater6\Adobe_Updater.exe

[MD5.F4DCD4912B185C3AAEB92A7040832AD1] [APT] [ASUS Live Update] (.Pas de propriétaire.) -- C:\Program Files\ASUS\ASUS Live Update\ALU.exe

[MD5.2F5A4CE9F740ACF1CC4837943BE29EAF] [APT] [ASUS P4G] (.ATK.) -- C:\Program files\P4G\BatteryLife.exe

[MD5.29BDA43618FD5147BEA6FBB3DAB8AEC5] [APT] [ASUS SmartLogon Console Sensor] (.ASUS.) -- C:\Program Files\ASUS\SmartLogon\sensorsrv.exe

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe

[MD5.13B19DD5EBEB6FDDBD11DD77490A3585] [APT] [Java Update Scheduler] (.Sun Microsystems, Inc..) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe

[MD5.00000000000000000000000000000000] [APT] [scanSoft Background Update] (.Pas de propriétaire.) -- C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (.not file.)

[MD5.00000000000000000000000000000000] [APT] [Trend Micro Outbreak Agent] (.Pas de propriétaire.) -- C:\Program Files\Trend Micro\Antivirus\TMOAgent.exe (.not file.)

[MD5.00000000000000000000000000000000] [APT] [TuneUpUtilities_Task_BkGndMaintenance2011] (.Pas de propriétaire.) -- C:\Program Files\TuneUp Utilities 2011\OneClick.exe (.not file.)

[MD5.48DFF835620183818155346927AF0D4E] [APT] [{12CEA280-2686-43F3-885E-A555D95F3E70}] (.DivX, Inc..) -- C:\ProgramData\DivX\Setup\DivXSetup.exe

[MD5.00000000000000000000000000000000] [APT] [{1B68455E-79ED-4C20-99B8-0A38D88E733A}] (.Pas de propriétaire.) -- C:\Program Files\Skype\Phone\Skype.exe (.not file.)

[MD5.A47094AC126EF789A38CCB1CCBEE6A41] [APT] [{DF373649-BB76-4BBA-BEDC-435C1C57A747}] (.Pas de propriétaire.) -- C:\Program Files\Common Files\Akamai\uninstall.exe

[MD5.7B43567B4C32AD7ADED537CD3B1342B9] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe

[MD5.F31CC076362AA0A38D318EA33440A1A8] [APT] [ASUS Update Checker] (.ASUSTeK Computer Inc..) -- C:\Program Files\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (appdrv01) . (.Protection Technology - Application Driver (01).) - C:\Windows\System32\Drivers\appdrv01.sys

O41 - Driver: (AsIO) . (...) - C:\Windows\System32\drivers\AsIO.sys

O41 - Driver: (AsUpIO) . (...) - C:\Windows\System32\drivers\AsUpIO.sys

O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys

O41 - Driver: (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\System32\DRIVERS\dtsoftbus01.sys

O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys

O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys

O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys

O41 - Driver: (kl2) . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) - C:\Windows\System32\DRIVERS\kl2.sys

O41 - Driver: (KLIF) . (.Kaspersky Lab - Klif Mini-Filter [fre_wlh_x86].) - C:\Windows\System32\DRIVERS\klif.sys

O41 - Driver: (KLIM6) . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - C:\Windows\System32\DRIVERS\klim6.sys

O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys

O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys

O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys

O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys

O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys

O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys

O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys

O41 - Driver: (SRTSP) . (. - .) - C:\Windows\system32\drivers\NIS\1000000.07D\SRTSP.sys (.not file.)

O41 - Driver: (SRTSPX) . (. - .) - C:\Windows\system32\drivers\NIS\1000000.07D\SRTSPX.sys (.not file.)

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys

---\\ Logiciels installés (O42)

O42 - Logiciel: 7-Zip 4.65 - (.Pas de propriétaire.) [HKLM] -- 7-Zip

O42 - Logiciel: ACID Pro 7.0 - (.Sony.) [HKLM] -- {F7FD5E5E-3F0C-4931-AA1B-EAB838BC02DB}

O42 - Logiciel: ASUS FancyStart - (.ASUSTeK Computer Inc..) [HKLM] -- {A9FEB6D7-9C52-49FC-B956-7AB275B78890}

O42 - Logiciel: ASUS LifeFrame3 - (.ASUS.) [HKLM] -- {1DBD1F12-ED93-49C0-A7CC-56CBDE488158}

O42 - Logiciel: ASUS Live Update - (.ASUS.) [HKLM] -- {E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}

O42 - Logiciel: ASUS Power4Gear Hybrid - (.ASUS.) [HKLM] -- {9B6239BF-4E85-4590-8D72-51E30DB1A9AA}

O42 - Logiciel: ASUS SmartLogon - (.ASUS.) [HKLM] -- {64452561-169F-4A36-A2FF-B5E118EC65F5}

O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM] -- {0969AF05-4FF6-4C00-9406-43599238DE0D}

O42 - Logiciel: ASUS Virtual Camera - (.asus.) [HKLM] -- {EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}

O42 - Logiciel: ASUSUpdate - (.Pas de propriétaire.) [HKLM] -- {587178E7-B1DF-494E-9838-FA4DD36E873C}

O42 - Logiciel: ATK Generic Function Service - (.ATK.) [HKLM] -- {D3D54F3E-C5C3-443D-978F-87A72E5616E8}

O42 - Logiciel: ATK Hotkey - (.ASUS.) [HKLM] -- {7C05592D-424B-46CB-B505-E0013E8E75C9}

O42 - Logiciel: ATK Media - (.ASUS.) [HKLM] -- {D1E5870E-E3E5-4475-98A6-ADD614524ADF}

O42 - Logiciel: ATKOSD2 - (.ASUS.) [HKLM] -- {3B05F2FB-745B-4012-ADF2-439F36B2E70B}

O42 - Logiciel: AbiWord 2.8.3 - (.AbiSource Developers.) [HKLM] -- AbiWord2

O42 - Logiciel: Adobe Anchor Service CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {90176341-0A8B-4CCC-A78D-F862228A6B95}

O42 - Logiciel: Adobe Anchor Service CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {1618734A-3957-4ADD-8199-F973763109A8}

O42 - Logiciel: Adobe Asset Services CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}

O42 - Logiciel: Adobe Bridge CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {9C9824D9-9000-4373-A6A5-D0E5D4831394}

O42 - Logiciel: Adobe Bridge CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {83877DB1-8B77-45BC-AB43-2BAC22E093E0}

O42 - Logiciel: Adobe Bridge Start Meeting - (.Adobe Systems Incorporated.) [HKLM] -- {08B32819-6EEF-4057-AEDA-5AB681A36A23}

O42 - Logiciel: Adobe CMaps CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {94D398EB-D2FD-4FD1-B8C4-592635E8A191}

O42 - Logiciel: Adobe CSI CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {0F723FC1-7606-4867-866C-CE80AD292DAF}

O42 - Logiciel: Adobe Camera Raw 4.0 - (.Adobe Systems Incorporated.) [HKLM] -- {B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}

O42 - Logiciel: Adobe Color - Photoshop Specific CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {3D2C9DE6-9ADE-4252-A241-E43723B0CE02}

O42 - Logiciel: Adobe Color EU Recommended Settings CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}

O42 - Logiciel: Adobe Color JA Extra Settings CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {0D6013AB-A0C7-41DC-973C-E93129C9A29F}

O42 - Logiciel: Adobe Color NA Extra Settings CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {098A2A49-7CF3-4F08-A38D-FB879117152A}

O42 - Logiciel: Adobe Color Video Profiles CS CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {63C24A08-70F3-4C8E-B9FB-9F21A903801D}

O42 - Logiciel: Adobe Default Language CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {C52E3EC1-048C-45E1-8D53-10B0C6509683}

O42 - Logiciel: Adobe Device Central CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {8D2BA474-F406-4710-9AE4-D4F22D21F0DD}

O42 - Logiciel: Adobe Device Central CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {67F0E67A-8E93-4C2C-B29D-47C48262738A}

O42 - Logiciel: Adobe Drive CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {16E16F01-2E2D-4248-A42F-76261C147B6C}

O42 - Logiciel: Adobe ExtendScript Toolkit 2 - (.Adobe Systems Incorporated.) [HKLM] -- {C2D69781-F392-4118-A5A7-C7E9C38DBFC2}

O42 - Logiciel: Adobe ExtendScript Toolkit CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {F8EF2B3F-C345-4F20-8FE4-791A20333CD5}

O42 - Logiciel: Adobe Extension Manager CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {054EFA56-2AC1-48F4-A883-0AB89874B972}

O42 - Logiciel: Adobe Flash CS3 Professional - (.Adobe Systems Incorporated.) [HKLM] -- Adobe_b2b4b1546e74314f8131ded43e4bd9d

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin

O42 - Logiciel: Adobe Flash Video Encoder - (.Adobe Systems Incorporated.) [HKLM] -- {1B0BCA28-1F11-4D60-8A2F-DEBE04B5341E}

O42 - Logiciel: Adobe Fonts All - (.Adobe Systems Incorporated.) [HKLM] -- {FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}

O42 - Logiciel: Adobe Help Viewer CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {04AF207D-9A77-465A-8B76-991F6AB66245}

O42 - Logiciel: Adobe Linguistics CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {54793AA1-5001-42F4-ABB6-C364617C6078}

O42 - Logiciel: Adobe Linguistics CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {931AB7EA-3656-4BB7-864D-022B09E3DD67}

O42 - Logiciel: Adobe Output Module - (.Adobe Systems Incorporated.) [HKLM] -- {BB4E33EC-8181-4685-96F7-8554293DEC6A}

O42 - Logiciel: Adobe PDF Library Files CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {F93C84A6-0DC6-42AF-89FA-776F7C377353}

O42 - Logiciel: Adobe Photoshop CS4 - (.Adobe Systems Incorporated.) [HKLM] -- Adobe_faf656ef605427ee2f42989c3ad31b8

O42 - Logiciel: Adobe Photoshop CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}

O42 - Logiciel: Adobe Photoshop CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {E4848436-0345-47E2-B648-8B522FCDA623}

O42 - Logiciel: Adobe Photoshop CS4 Support - (.Adobe Systems Incorporated.) [HKLM] -- {63E5CDBF-8214-4F03-84F8-CD3CE48639AD}

O42 - Logiciel: Adobe Reader X (10.0.1) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA0000000001}

O42 - Logiciel: Adobe Search for Help - (.Adobe Systems Incorporated.) [HKLM] -- {F0E64E2E-3A60-40D8-A55D-92F6831875DA}

O42 - Logiciel: Adobe Service Manager Extension - (.Adobe Systems Incorporated.) [HKLM] -- {4943EFF5-229F-435D-BEA9-BE3CAEA783A7}

O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM] -- {0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}

O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM] -- {82503EA7-7E08-4AA8-90E9-BE4D0A6D453F}

O42 - Logiciel: Adobe Type Support CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {820D3F45-F6EE-4AAF-81EF-CE21FF21D230}

O42 - Logiciel: Adobe Update Manager CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {E69AE897-9E0B-485C-8552-7841F48D42D8}

O42 - Logiciel: Adobe Update Manager CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {05308C4E-7285-4066-BAE3-6B50DA6ED755}

O42 - Logiciel: Adobe Version Cue CS3 Client - (.Adobe Systems Incorporated.) [HKLM] -- {D0DFF92A-492E-4C40-B862-A74A173C25C5}

O42 - Logiciel: Adobe WinSoft Linguistics Plugin - (.Adobe Systems Incorporated.) [HKLM] -- {184CE391-7E0E-4C63-9935-D7A10EDFD3C6}

O42 - Logiciel: Adobe WinSoft Linguistics Plugin - (.Adobe Systems Incorporated.) [HKLM] -- {3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}

O42 - Logiciel: Adobe XMP Panels CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {3A4E8896-C2E7-4084-A4A4-B8FD1894E739}

O42 - Logiciel: AdobeColorCommonSetCMYK - (.Adobe Systems Incorporated.) [HKLM] -- {68243FF8-83CA-466B-B2B8-9F99DA5479C4}

O42 - Logiciel: AdobeColorCommonSetRGB - (.Adobe Systems Incorporated.) [HKLM] -- {16E6D2C1-7C90-4309-8EC4-D2212690AAA4}

O42 - Logiciel: AmIcoSingLun - (.Alcor Micro Co., Ltd..) [HKLM] -- InstallShield_{BF91B300-EEBC-4223-96F3-0FCBF7241B50}

O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}

O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {5BF5F9C5-E95B-4AFA-94BE-F2A9CA73B61D}

O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}

O42 - Logiciel: Asus_Camera_ScreenSaver - (.ASUS.) [HKLM] -- Asus_Camera_ScreenSaver

O42 - Logiciel: Atheros Client Installation Program - (.Atheros.) [HKLM] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}

O42 - Logiciel: AudioMulch Interactive Music Studio 2.0.2 - (.Pas de propriétaire.) [HKLM] -- AudioMulch Interactive Music Studio_is1

O42 - Logiciel: Battlefield: Bad Company™ 2 - (.Electronic Arts.) [HKLM] -- {3AC8457C-0385-4BEA-A959-E095F05D6D67}

O42 - Logiciel: Blood Bowl - (.Martin.) [HKLM] -- Blood Bowl_is1

O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {FF1C31AE-0CDC-40CE-AB85-406F8B70D643}

O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner

O42 - Logiciel: Company of Heroes - (.THQ Inc..) [HKLM] -- Company of Heroes

O42 - Logiciel: Company of Heroes - FAKEMSI - (.THQ Inc..) [HKLM] -- {14574B7F-75D1-4718-B7F2-EBF6E2862A35}

O42 - Logiciel: Company of Heroes - FAKEMSI - (.THQ Inc..) [HKLM] -- {199E6632-EB28-4F73-AECB-3E192EB92D18}

O42 - Logiciel: Company of Heroes - FAKEMSI - (.THQ Inc..) [HKLM] -- {25724802-CC14-4B90-9F3B-3D6955EE27B1}

O42 - Logiciel: Company of Heroes - FAKEMSI - (.THQ Inc..) [HKLM] -- {32C4A4EB-C97D-414E-99C5-38F8DFD31D5D}

O42 - Logiciel: Company of Heroes - FAKEMSI - (.THQ Inc..) [HKLM] -- {50193078-F553-4EBA-AA77-64C9FAA12F98}

O42 - Logiciel: Company of Heroes - FAKEMSI - (.THQ Inc..) [HKLM] -- {51D718D1-DA81-4FAD-919F-5C1CE3C33379}

O42 - Logiciel: Company of Heroes - FAKEMSI - (.THQ Inc..) [HKLM] -- {66F78C51-D108-4F0C-A93C-1CBE74CE338F}

O42 - Logiciel: Company of Heroes - FAKEMSI - (.THQ Inc..) [HKLM] -- {7F4B1592-222F-4E5F-A100-E5AFD61A0BB3}

O42 - Logiciel: Company of Heroes - FAKEMSI - (.THQ Inc..) [HKLM] -- {80D03817-7943-4839-8E96-B9F924C5E67D}

O42 - Logiciel: Company of Heroes - FAKEMSI - (.THQ Inc..) [HKLM] -- {97E5205F-EA4F-438F-B211-F1846419F1C1}

O42 - Logiciel: Company of Heroes - FAKEMSI - (.THQ Inc..) [HKLM] -- {99A7722D-9ACB-43F3-A222-ABC7133F159E}

O42 - Logiciel: Company of Heroes - FAKEMSI - (.THQ Inc..) [HKLM] -- {BA801B94-C28D-46EE-B806-E1E021A3D519}

O42 - Logiciel: Company of Heroes - FAKEMSI - (.THQ Inc..) [HKLM] -- {D4D244D1-05E0-4D24-86A2-B2433C435671}

O42 - Logiciel: Company of Heroes - FAKEMSI - (.THQ Inc..) [HKLM] -- {EAF636A9-F664-4703-A659-85A894DA264F}

O42 - Logiciel: Configuration DivX - (.DivX, Inc. .) [HKLM] -- DivX Setup.divx.com

O42 - Logiciel: Connect - (.Adobe Systems Incorporated.) [HKLM] -- {B29AD377-CC12-490A-A480-1452337C618D}

O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}

O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite

O42 - Logiciel: Divinity II - DKS - (.Focus.) [HKLM] -- CDCE6956-DD16-4F82-ACA0-E4C7BAD6B26A_is1

O42 - Logiciel: ETDWare PS/2-x86 7.0.5.3 WHQL - (.Pas de propriétaire.) [HKLM] -- Elantech

O42 - Logiciel: F1 2010 - (.Codemasters.) [HKLM] -- GFWL_{434D0831-3E0C-4D03-A5D4-5E1000008400}

O42 - Logiciel: F1 2010 - (.Codemasters.) [HKLM] -- {434D0831-3E0C-4D03-A5D4-5E1000008400}

O42 - Logiciel: F1 2010 - (.Codemasters.) [HKLM] -- {434D0831-A4CC-401A-9E74-621000018401}

O42 - Logiciel: FIFA 11 - (.Electronic Arts.) [HKLM] -- {3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}

O42 - Logiciel: FIFA 11 Hybrid Gameplay Patch 3.0.4 AUTO INSTALL by Doctor+ - (.Pas de propriétaire.) [HKCU] -- FIFA 11 Hybrid Gameplay Patch 3.0.4 AUTO INSTALL by Doctor+

O42 - Logiciel: FL Studio 9 - (.Image-Line.) [HKLM] -- FL Studio 9

O42 - Logiciel: Facebook Plug-In - (.Facebook, Inc..) [HKCU] -- Facebook Plug-In

O42 - Logiciel: Fallout New Vegas - (.Pas de propriétaire.) [HKLM] -- Fallout New Vegas_is1

O42 - Logiciel: Football Manager 2011 - (.Sports Interactive.) [HKLM] -- Football Manager 2011

O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {488F0347-C4A7-4374-91A7-30818BEDA710}

O42 - Logiciel: GameCenter 1.3.0.5 - (.Cyanide.) [HKLM] -- GameCenter_is1

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484

O42 - Logiciel: Java 6 Update 25 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216025FF}

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}

O42 - Logiciel: Just Cause 2 - (.Pas de propriétaire.) [HKLM] -- Just Cause 2_is1

O42 - Logiciel: Kaspersky Internet Security 2011 - (.Kaspersky Lab.) [HKLM] -- InstallWIX_{66F1F013-008F-4875-B283-5A814B820347}

O42 - Logiciel: Kaspersky Internet Security 2011 - (.Kaspersky Lab.) [HKLM] -- {66F1F013-008F-4875-B283-5A814B820347}

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}

O42 - Logiciel: MSXML 4.0 SP2 (KB927978) - (.Microsoft Corporation.) [HKLM] -- {37477865-A3F1-4772-AD43-AAFC6BCFF99F}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1

O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}

O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)

O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447

O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}

O42 - Logiciel: Microsoft Games for Windows - LIVE - (.Microsoft Corporation.) [HKLM] -- {86A4C6D9-29EE-4719-AFA1-BA3341862B83}

O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM] -- {1FDA5A37-B22D-43FF-B582-B8964050DC13}

O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.) [HKLM] -- {57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}

O42 - Logiciel: Microsoft Office Outlook Connector - (.Microsoft Corporation.) [HKLM] -- {95120000-0122-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {A49F249F-0C91-497F-86DF-B2585E8E76B7}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 - (.Microsoft Corporation.) [HKLM] -- {527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 - (.Microsoft Corporation.) [HKLM] -- {820B6609-4C97-3A2B-B644-573B06A0F0CC}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

O42 - Logiciel: Microsoft XNA Framework Redistributable 3.1 - (.Microsoft Corporation.) [HKLM] -- {19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}

O42 - Logiciel: Mises à jour NVIDIA 1.1.34 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update

O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra

O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack

O42 - Logiciel: Mozilla Firefox (3.6.17) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.17)

O42 - Logiciel: Multimedia Card Reader - (. .) [HKLM] -- USB Mass Storage Filter Driver

O42 - Logiciel: NVIDIA 3D Vision Controller Driver - (.NVIDIA Corporation.) [HKLM] -- NVIDIA StereoUSB Driver

O42 - Logiciel: NVIDIA 3D Vision Controller Driver 270.61 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB

O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers

O42 - Logiciel: NVIDIA Logiciel système PhysX 9.10.0514 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX

O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {54194F60-988C-4D03-B922-C2B00EFDA39A}

O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}

O42 - Logiciel: NVIDIA Pilote 3D Vision 270.61 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision

O42 - Logiciel: NVIDIA Pilote audio HD : 1.2.22.1 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver

O42 - Logiciel: NVIDIA Pilote graphique 270.61 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver

O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM] -- NVIDIAStereo

O42 - Logiciel: Noise Reduction Plug-in 2.0i - (.Sony.) [HKLM] -- {520A8627-E1B7-4808-8F04-03A013CBBD10}

O42 - Logiciel: Norton Internet Security - (.Symantec Corporation.) [HKLM] -- {7B15D70E-9449-4CFB-B9BC-798465B2BD5C}

O42 - Logiciel: OGA Notifier 2.0.0048.0 - (.Microsoft Corporation.) [HKLM] -- {B2544A03-10D0-4E5E-BA69-0362FFC20D18}

O42 - Logiciel: OpenAL - (.Pas de propriétaire.) [HKLM] -- OpenAL

O42 - Logiciel: Oxin's Style! 3D Sexvilla 2.058.002 - (.Oxin´s Style!.) [HKLM] -- {10B75CF6-5A54-4D7B-9169-70AD17181DE1}_is1

O42 - Logiciel: PDF Settings CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {35D94F92-1D3A-43C5-8605-EA268B1A7BD9}

O42 - Logiciel: Pando Media Booster - (.Pando Networks Inc..) [HKLM] -- {980A182F-E0A2-4A40-94C1-AE0C1235902E}

O42 - Logiciel: Photoshop Camera Raw - (.Adobe Systems Incorporated.) [HKLM] -- {CC75AB5C-2110-4A7F-AF52-708680D22FE8}

O42 - Logiciel: PoiZone - (.Image-Line.) [HKLM] -- PoiZone

O42 - Logiciel: Pro Cycling Manager - Saison 2010 version 1.0.1.8 - (.Cyanide.) [HKLM] -- Pro Cycling Manager 2010_is1

O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C}

O42 - Logiciel: Rapture3D 2.4.4 Game - (.Blue Ripple Sound.) [HKLM] -- {D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1

O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}

O42 - Logiciel: Rockstar Games Social Club - (.Rockstar Games.) [HKLM] -- {08B3869E-D282-424C-9AFC-870E04A4BA14}

O42 - Logiciel: SRS Premium Sound - (.SRS Labs, Inc..) [HKLM] -- {4B6B024F-F6D4-4A7B-8ADA-F9F8370320CC}

O42 - Logiciel: Sawer - (.Image-Line.) [HKLM] -- Sawer

O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708

O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}

O42 - Logiciel: Sid Meier's Civilization V - (.Firaxis Games.) [HKLM] -- Steam App 8930

O42 - Logiciel: Sound Forge Pro 10.0 - (.Sony.) [HKLM] -- {3F9170C9-A7C2-408F-A4D8-EC77250040BF}

O42 - Logiciel: Spelling Dictionaries Support For Adobe Reader 9 - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-5464-3428-900000000004}

O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}

O42 - Logiciel: Suite Shared Configuration CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {842B4B72-9E8F-4962-B3C1-1C422A5C4434}

O42 - Logiciel: Total War: SHOGUN 2 - (.The Creative Assembly.) [HKLM] -- Steam App 34330

O42 - Logiciel: Toxic Biohazard - (.Image-Line.) [HKLM] -- Toxic Biohazard

O42 - Logiciel: USB 2.0 1.3M UVC WebCam - (.Pas de propriétaire.) [HKLM] -- USB 2.0 1.3M UVC WebCam

O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707

O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM] -- {5EE7D259-D137-4438-9A5F-42F432EC0421}

O42 - Logiciel: VLC media player 1.1.6 - (.VideoLAN.) [HKLM] -- VLC media player

O42 - Logiciel: Victoria 2 - (.Pas de propriétaire.) [HKLM] -- {9C3B7F54-C6E2-4A74-9937-9C6EBA10C4A2}

O42 - Logiciel: WinFlash - (.Pas de propriétaire.) [HKLM] -- {DE10AB76-4756-4913-BE25-55D1C1051F9A}

O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite

O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}

O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {F53D678E-238F-4A71-9742-08BB6774E9DC}

O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {FCFBA290-CB48-4AF1-A241-2685AEDEDD66}

O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA}

O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {61AD15B2-50DB-4686-A739-14FE180D4429}

O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}

O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {AF844339-2F8A-4593-81B3-9F4C54038C4E}

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9D56775A-93F3-44A3-8092-840E3826DE30}

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}

O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}

O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {92EA4134-10D1-418A-91E1-5A0453131A38}

O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}

O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}

O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}

O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}

O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}

O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}

O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}

O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {09F56A49-A7B1-4AAB-95B9-D13094254AD1}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {3B9A92DA-6374-4872-B646-253F18624D5F}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}

O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}

O42 - Logiciel: Wireless Console 3 - (.ASUS.) [HKLM] -- {20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}

O42 - Logiciel: World of Tanks closed Beta v.0.6.2.8 - (.Wargaming.net.) [HKLM] -- {1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1

O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {AAD47011-8518-4608-9656-951DA35B587B}

O42 - Logiciel: iTunes Library Updater - (.N/A.) [HKLM] -- {38EE230F-F631-451F-8800-E29F5E5C9E7D}

O42 - Logiciel: kuler - (.Adobe Systems Incorporated.) [HKLM] -- {098727E1-775A-4450-B573-3F441F1CA243}

---\\ HKCU & HKLM Software Keys

[HKCU\Software\7-Zip]

[HKCU\Software\ALWIL Software]

[HKCU\Software\ASUS]

[HKCU\Software\ATK0100]

[HKCU\Software\Ad-Remover]

[HKCU\Software\Adobe]

[HKCU\Software\AppDataLow\Aurigma]

[HKCU\Software\AppDataLow\ISWVolatile]

[HKCU\Software\AppDataLow\Software\Microsoft]

[HKCU\Software\AppDataLow\Software\Monitored]

[HKCU\Software\AppDataLow\Software\settings]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\Apple Computer, Inc.]

[HKCU\Software\Apple Inc.]

[HKCU\Software\Applications locales générées par AppWizard]

[HKCU\Software\BBL]

[HKCU\Software\Battlefield Vietnam]

[HKCU\Software\BeñuR@g]

[HKCU\Software\BinarySense]

[HKCU\Software\BlueRippleSound]

[HKCU\Software\Borland]

[HKCU\Software\Brother]

[HKCU\Software\Bugsplat]

[HKCU\Software\CDDB]

[HKCU\Software\ClassesB]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\Codemasters]

[HKCU\Software\Cyanide]

[HKCU\Software\CyberLink]

[HKCU\Software\DSS]

[HKCU\Software\DT Soft]

[HKCU\Software\DTP]

[HKCU\Software\DirectShow]

[HKCU\Software\DivXNetworks]

[HKCU\Software\DivX]

[HKCU\Software\DownloadManager]

[HKCU\Software\DsNET Corp.]

[HKCU\Software\EA Sports]

[HKCU\Software\EVAF20]

[HKCU\Software\Elantech]

[HKCU\Software\Electronic Arts]

[HKCU\Software\Elektrostudio]

[HKCU\Software\FreeDownloadManager.ORG]

[HKCU\Software\Google]

[HKCU\Software\IDAVLab]

[HKCU\Software\IM Providers]

[HKCU\Software\INCAInternet]

[HKCU\Software\Image-Line]

[HKCU\Software\InstantStormSavers]

[HKCU\Software\JEDI-VCL]

[HKCU\Software\JavaSoft]

[HKCU\Software\JustCause2]

[HKCU\Software\KasperskyLab]

[HKCU\Software\LANGAGENT]

[HKCU\Software\Larian Studios]

[HKCU\Software\Leadertech]

[HKCU\Software\Licenses]

[HKCU\Software\LightScribe]

[HKCU\Software\LiveGadgets.net]

[HKCU\Software\Local AppWizard-Generated Applications]

[HKCU\Software\LowRegistry]

[HKCU\Software\MIDI-OX]

[HKCU\Software\Macromedia]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\MimarSinan]

[HKCU\Software\MountAndBladeWarbandKeys]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Mozilla]

[HKCU\Software\MusicLab]

[HKCU\Software\NVIDIA Corporation]

[HKCU\Software\Nero]

[HKCU\Software\Netscape]

[HKCU\Software\ODBC]

[HKCU\Software\OpenAutomate]

[HKCU\Software\Pando Networks]

[HKCU\Software\Piriform]

[HKCU\Software\Policies]

[HKCU\Software\Propellerhead Software]

[HKCU\Software\QuickPar]

[HKCU\Software\Reality Pump]

[HKCU\Software\RocketDock]

[HKCU\Software\Rockstar Games]

[HKCU\Software\Ross Bencina]

[HKCU\Software\ScanSoft]

[HKCU\Software\SecuROM]

[HKCU\Software\Secunia]

[HKCU\Software\Skype]

[HKCU\Software\Smart Projects]

[HKCU\Software\SoftVoice]

[HKCU\Software\Softonic]

[HKCU\Software\Sony Creative Software]

[HKCU\Software\Sony Media Software]

[HKCU\Software\Sysinternals]

[HKCU\Software\TADS]

[HKCU\Software\Team17SoftwareLTD]

[HKCU\Software\The Creative Assembly]

[HKCU\Software\TrendMicro]

[HKCU\Software\Trolltech]

[HKCU\Software\TuneUp]

[HKCU\Software\UBISOFT]

[HKCU\Software\VB and VBA Program Settings]

[HKCU\Software\Valve]

[HKCU\Software\WinRAR SFX]

[HKCU\Software\Windows Live Writer]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\Zone Labs]

[HKCU\Software\ksdev]

[HKCU\Software\thriXXX]

[HKLM\Software\781]

[HKLM\Software\AGEIA Technologies]

[HKLM\Software\ALWIL Software]

[HKLM\Software\ASUS]

[HKLM\Software\ATK0100]

[HKLM\Software\ATK]

[HKLM\Software\AbiWord]

[HKLM\Software\Act-3D]

[HKLM\Software\Adobe]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\Apple Inc.]

[HKLM\Software\Aps]

[HKLM\Software\AsLdr]

[HKLM\Software\Atheros]

[HKLM\Software\Aureal]

[HKLM\Software\Bethesda Softworks]

[HKLM\Software\BinarySense]

[HKLM\Software\BlueRippleSound]

[HKLM\Software\Borland]

[HKLM\Software\Brother]

[HKLM\Software\BrowserChoice]

[HKLM\Software\CDDB]

[HKLM\Software\CODEMASTERS]

[HKLM\Software\Cakewalk Music Software]

[HKLM\Software\CheckPoint]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\CoreSecurity]

[HKLM\Software\Cyanide]

[HKLM\Software\CyberLink]

[HKLM\Software\DICE]

[HKLM\Software\DT Soft]

[HKLM\Software\DivXNetworks]

[HKLM\Software\DivX]

[HKLM\Software\Dofus 2]

[HKLM\Software\EA GAMES]

[HKLM\Software\EA Sports]

[HKLM\Software\Electronic Arts]

[HKLM\Software\Eset]

[HKLM\Software\Even Balance]

[HKLM\Software\FreeArc]

[HKLM\Software\GEAR Software]

[HKLM\Software\Google]

[HKLM\Software\Haemimont Games]

[HKLM\Software\HighCriteria]

[HKLM\Software\IDAVLab]

[HKLM\Software\Image-Line]

[HKLM\Software\InstallShield]

[HKLM\Software\Intel]

[HKLM\Software\Internet Download Manager]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\KasperskyLab]

[HKLM\Software\Khronos]

[HKLM\Software\Larian Studios]

[HKLM\Software\Licenses]

[HKLM\Software\LightScribe]

[HKLM\Software\Macromedia]

[HKLM\Software\Macrovision]

[HKLM\Software\Malwarebytes' Anti-Malware]

[HKLM\Software\McAfee.com]

[HKLM\Software\MidasHeurScanner]

[HKLM\Software\MimarSinan]

[HKLM\Software\Motorola]

[HKLM\Software\Mount&Blade Warband]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\MusicLab]

[HKLM\Software\NVIDIA Corporation]

[HKLM\Software\Nero]

[HKLM\Software\ODBC]

[HKLM\Software\OldTimer Tools]

[HKLM\Software\Outsim]

[HKLM\Software\Pando Networks]

[HKLM\Software\Paradox Interactive]

[HKLM\Software\Piriform]

[HKLM\Software\Policies]

[HKLM\Software\Propellerhead Software]

[HKLM\Software\RTLSetup]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\Rockstar Games]

[HKLM\Software\Ross Bencina]

[HKLM\Software\SONIX]

[HKLM\Software\SRS Labs]

[HKLM\Software\Secunia]

[HKLM\Software\Sonic]

[HKLM\Software\Sony Corporation]

[HKLM\Software\Sony Creative Software]

[HKLM\Software\Sony Media Software]

[HKLM\Software\Sports Interactive Ltd]

[HKLM\Software\Sunflowers]

[HKLM\Software\Symantec]

[HKLM\Software\THQ]

[HKLM\Software\Team17]

[HKLM\Software\Tobias Erichsen]

[HKLM\Software\TrendMicro]

[HKLM\Software\TubeDownloader]

[HKLM\Software\TuneUp]

[HKLM\Software\Turbine]

[HKLM\Software\VST]

[HKLM\Software\Valve]

[HKLM\Software\VideoLAN]

[HKLM\Software\WOW6432Node]

[HKLM\Software\Windows]

[HKLM\Software\Zone Labs]

[HKLM\Software\ffffffff]

[HKLM\Software\mozilla.org]

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 19/02/2010 - 12:21:18 - [3094515] ----D- C:\Program Files\7-Zip

O43 - CFD: 25/05/2010 - 16:27:52 - [21277599] ----D- C:\Program Files\AbiWord

O43 - CFD: 28/04/2011 - 12:09:18 - [163754917] ----D- C:\Program Files\Ad-Remover

O43 - CFD: 20/04/2011 - 19:21:18 - [578967977] ----D- C:\Program Files\Adobe

O43 - CFD: 31/03/2011 - 7:47:40 - [272003139] ----D- C:\Program Files\Adobe Illustrator CS3

O43 - CFD: 8/08/2010 - 15:18:38 - [7657398] ----D- C:\Program Files\AGEIA Technologies

O43 - CFD: 13/07/2009 - 21:26:42 - [745472] ----D- C:\Program Files\AmIcoSingLun

O43 - CFD: 19/02/2010 - 22:47:38 - [2221118] ----D- C:\Program Files\Apple Software Update

O43 - CFD: 29/04/2011 - 16:13:10 - [102582480] ----D- C:\Program Files\ASUS

O43 - CFD: 13/07/2009 - 21:27:20 - [1078] ----D- C:\Program Files\Atheros

O43 - CFD: 13/07/2009 - 21:27:02 - [464496] ----D- C:\Program Files\ATKGFNEX

O43 - CFD: 12/03/2011 - 13:21:10 - [139224157] ----D- C:\Program Files\AudioMulch 2.0.2

O43 - CFD: 28/10/2010 - 14:32:24 - [599952] ----D- C:\Program Files\Bonjour

O43 - CFD: 17/04/2011 - 15:16:38 - [9806298] ----D- C:\Program Files\Brother

O43 - CFD: 29/11/2010 - 11:56:40 - [7449959] ----D- C:\Program Files\BRS

O43 - CFD: 29/04/2011 - 11:30:12 - [3704864] ----D- C:\Program Files\CCleaner

O43 - CFD: 29/04/2011 - 11:44:00 - [1625965618] ----D- C:\Program Files\Common Files

O43 - CFD: 20/04/2011 - 20:07:58 - [7411385] ----D- C:\Program Files\Cyanide

O43 - CFD: 28/04/2011 - 17:49:28 - [18414544] ----D- C:\Program Files\DAEMON Tools Lite

O43 - CFD: 27/07/2010 - 16:34:10 - [7159637] ----D- C:\Program Files\DivX

O43 - CFD: 13/07/2009 - 21:24:42 - [5606304] ----D- C:\Program Files\Elantech

O43 - CFD: 20/04/2011 - 13:50:42 - [8955608350] ----D- C:\Program Files\Electronic Arts

O43 - CFD: 30/04/2011 - 16:57:36 - [192] ----D- C:\Program Files\FileHippo.com

O43 - CFD: 28/04/2011 - 12:48:46 - [53248] ----D- C:\Program Files\Free Download Manager

O43 - CFD: 31/01/2011 - 14:45:44 - [3914056] ----D- C:\Program Files\Google

O43 - CFD: 15/09/2010 - 11:49:26 - [1123232915] ----D- C:\Program Files\Image-Line

O43 - CFD: 30/04/2011 - 17:02:44 - [64924298] --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD: 16/04/2011 - 3:28:14 - [6226946] ----D- C:\Program Files\Internet Explorer

O43 - CFD: 28/01/2011 - 12:53:08 - [128361708] ----D- C:\Program Files\iTunes

O43 - CFD: 30/11/2010 - 12:03:06 - [1948676] ----D- C:\Program Files\iTunes Library Updater

O43 - CFD: 29/04/2011 - 11:43:00 - [90565057] ----D- C:\Program Files\Java

O43 - CFD: 29/04/2011 - 10:34:40 - [62144504] ----D- C:\Program Files\Kaspersky Lab

O43 - CFD: 30/04/2011 - 14:00:30 - [4921794] ----D- C:\Program Files\Malwarebytes' Anti-Malware

O43 - CFD: 2/04/2010 - 21:03:12 - [3166720] ----D- C:\Program Files\Microsoft

O43 - CFD: 31/01/2011 - 14:32:08 - [93446071] ----D- C:\Program Files\Microsoft Games

O43 - CFD: 16/11/2010 - 21:26:56 - [9337482] ----D- C:\Program Files\Microsoft Games for Windows - LIVE

O43 - CFD: 2/04/2010 - 21:08:18 - [1559148] ----D- C:\Program Files\Microsoft Office Outlook Connector

O43 - CFD: 22/04/2011 - 19:56:30 - [38388859] ----D- C:\Program Files\Microsoft Silverlight

O43 - CFD: 18/02/2010 - 22:27:58 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition

O43 - CFD: 26/01/2011 - 1:50:04 - [5587678] ----D- C:\Program Files\Microsoft XNA

O43 - CFD: 26/06/2010 - 16:16:30 - [15715] ----D- C:\Program Files\Microsoft.NET

O43 - CFD: 30/04/2011 - 16:59:36 - [411] ----D- C:\Program Files\MIDIOX

O43 - CFD: 12/08/2010 - 3:23:02 - [99342446] ----D- C:\Program Files\Movie Maker

O43 - CFD: 30/04/2011 - 3:10:26 - [31972780] ----D- C:\Program Files\Mozilla Firefox

O43 - CFD: 2/11/2006 - 14:37:36 - [25757] ----D- C:\Program Files\MSBuild

O43 - CFD: 29/04/2010 - 3:01:42 - [0] ----D- C:\Program Files\MSXML 4.0

O43 - CFD: 13/07/2009 - 21:26:16 - [160272] ----D- C:\Program Files\Multimedia Card Reader

O43 - CFD: 27/04/2011 - 14:55:18 - [131072] ----D- C:\Program Files\MusicLab

O43 - CFD: 28/04/2011 - 9:56:28 - [568053860] ----D- C:\Program Files\NVIDIA Corporation

O43 - CFD: 29/11/2010 - 11:56:30 - [1591896] ----D- C:\Program Files\OpenAL

O43 - CFD: 15/03/2010 - 16:39:02 - [3632870] ----D- C:\Program Files\Outsim

O43 - CFD: 18/02/2011 - 17:01:12 - [120725438] ----D- C:\Program Files\Oxin's Style!

O43 - CFD: 13/07/2009 - 21:30:18 - [8575744] ----D- C:\Program Files\P4G

O43 - CFD: 6/03/2011 - 20:50:10 - [7476086] ----D- C:\Program Files\Pando Networks

O43 - CFD: 17/12/2010 - 13:12:12 - [78785275] ----D- C:\Program Files\QuickTime

O43 - CFD: 31/01/2011 - 12:21:38 - [192736370] ----D- C:\Program Files\Realtek

O43 - CFD: 2/11/2006 - 14:37:36 - [42699521] ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 23/02/2010 - 12:51:10 - [56] ----D- C:\Program Files\ScanSoft

O43 - CFD: 31/01/2011 - 14:11:08 - [766309] ----D- C:\Program Files\Secunia

O43 - CFD: 10/03/2011 - 18:13:50 - [638943326] ----D- C:\Program Files\Sony

O43 - CFD: 13/07/2009 - 21:31:18 - [5085769] ----D- C:\Program Files\SRS Labs

O43 - CFD: 28/04/2011 - 10:14:18 - [0] --H-D- C:\Program Files\Temp

O43 - CFD: 1/05/2010 - 16:14:26 - [8612582939] ----D- C:\Program Files\THQ

O43 - CFD: 14/03/2011 - 1:02:04 - [0] ----D- C:\Program Files\thriXXX

O43 - CFD: 2/11/2006 - 15:01:56 - [0] --H-D- C:\Program Files\Uninstall Information

O43 - CFD: 18/02/2010 - 17:14:02 - [82357171] ----D- C:\Program Files\VideoLAN

O43 - CFD: 15/03/2010 - 16:39:42 - [3848192] ----D- C:\Program Files\VstPlugins

O43 - CFD: 25/04/2010 - 16:05:20 - [1016832] ----D- C:\Program Files\Windows Calendar

O43 - CFD: 25/04/2010 - 16:05:16 - [2737152] ----D- C:\Program Files\Windows Collaboration

O43 - CFD: 25/04/2010 - 16:05:06 - [4490624] ----D- C:\Program Files\Windows Defender

O43 - CFD: 25/04/2010 - 16:05:16 - [7084664] ----D- C:\Program Files\Windows Journal

O43 - CFD: 31/03/2011 - 3:01:28 - [128955217] ----D- C:\Program Files\Windows Live

O43 - CFD: 16/04/2011 - 3:05:26 - [9116344] ----D- C:\Program Files\Windows Mail

O43 - CFD: 28/10/2010 - 3:27:34 - [4498121] ----D- C:\Program Files\Windows Media Player

O43 - CFD: 2/11/2006 - 14:37:36 - [7957544] ----D- C:\Program Files\Windows NT

O43 - CFD: 25/04/2010 - 16:05:14 - [13528738] ----D- C:\Program Files\Windows Photo Gallery

O43 - CFD: 26/04/2010 - 3:20:20 - [134144] ----D- C:\Program Files\Windows Portable Devices

O43 - CFD: 25/04/2010 - 16:05:18 - [7157673] ----D- C:\Program Files\Windows Sidebar

O43 - CFD: 9/11/2010 - 14:00:12 - [2409] --H-D- C:\Program Files\Zero G Registry

O43 - CFD: 30/04/2011 - 19:04:58 - [3955812] ----D- C:\Program Files\ZHPDiag

O43 - CFD: 3/04/2011 - 12:33:14 - [746586008] ----D- C:\Program Files\Common Files\Adobe

O43 - CFD: 25/05/2010 - 19:22:44 - [184872] ----D- C:\Program Files\Common Files\Akamai

O43 - CFD: 28/01/2011 - 12:51:56 - [94753968] ----D- C:\Program Files\Common Files\Apple

O43 - CFD: 28/04/2011 - 13:07:04 - [7675827] ----D- C:\Program Files\Common Files\Borland Shared

O43 - CFD: 6/07/2010 - 1:01:22 - [24006656] ----D- C:\Program Files\Common Files\DivX Shared

O43 - CFD: 28/10/2010 - 18:18:20 - [20196721] ----D- C:\Program Files\Common Files\INCA Shared

O43 - CFD: 4/01/2011 - 21:34:58 - [10107515] ----D- C:\Program Files\Common Files\InstallShield

O43 - CFD: 29/04/2011 - 11:44:00 - [1252295] ----D- C:\Program Files\Common Files\Java

O43 - CFD: 19/02/2010 - 16:13:36 - [655957] ----D- C:\Program Files\Common Files\Macrovision Shared

O43 - CFD: 26/01/2011 - 1:50:06 - [205779300] ----D- C:\Program Files\Common Files\microsoft shared

O43 - CFD: 31/07/2010 - 15:58:28 - [248934] ----D- C:\Program Files\Common Files\PC Tools

O43 - CFD: 10/07/2010 - 16:43:52 - [459184] ----D- C:\Program Files\Common Files\PX Storage Engine

O43 - CFD: 2/11/2006 - 13:18:34 - [2702] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 2/11/2006 - 13:18:34 - [41101735] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 12/03/2011 - 18:54:06 - [0] ----D- C:\Program Files\Common Files\Steam

O43 - CFD: 25/04/2010 - 16:05:14 - [40585540] ----D- C:\Program Files\Common Files\System

O43 - CFD: 18/02/2010 - 22:25:32 - [336978708] ----D- C:\Program Files\Common Files\Windows Live

O43 - CFD: 27/03/2011 - 15:37:34 - [95389696] ----D- C:\Program Files\Common Files\Wise Installation Wizard

O43 - CFD: 3/03/2010 - 12:56:38 - [0] ----D- C:\ProgramData\Ableton

O43 - CFD: 10/03/2011 - 14:11:28 - [331383780] ----D- C:\ProgramData\Adobe

O43 - CFD: 26/04/2010 - 11:44:24 - [0] ----D- C:\ProgramData\Age of Empires 3

O43 - CFD: 18/02/2010 - 17:13:28 - [450131] ----D- C:\ProgramData\Alwil Software

O43 - CFD: 11/01/2011 - 16:34:30 - [605046] ----D- C:\ProgramData\Anti-phishing Domain Advisor

O43 - CFD: 19/02/2010 - 22:44:10 - [141180928] ----D- C:\ProgramData\Apple

O43 - CFD: 28/01/2011 - 12:51:54 - [67383080] ----D- C:\ProgramData\Apple Computer

O43 - CFD: 2/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Application Data

O43 - CFD: 19/02/2010 - 13:30:02 - [10140] ----D- C:\ProgramData\ASUS

O43 - CFD: 13/07/2009 - 21:27:52 - [11349] ----D- C:\ProgramData\Atheros

O43 - CFD: 16/09/2010 - 11:59:16 - [3072] ----D- C:\ProgramData\BitDefender

O43 - CFD: 23/02/2010 - 12:50:10 - [59291] ----D- C:\ProgramData\Brother

O43 - CFD: 15/05/2010 - 12:10:34 - [156836] --H-D- C:\ProgramData\CanonBJ

O43 - CFD: 17/03/2010 - 20:52:00 - [4212] ----D- C:\ProgramData\CheckPoint

O43 - CFD: 29/11/2010 - 12:09:36 - [2096898048] ----D- C:\ProgramData\Codemasters

O43 - CFD: 24/08/2010 - 14:30:14 - [11743] ----D- C:\ProgramData\CyberLink

O43 - CFD: 19/02/2010 - 21:04:04 - [1648] ----D- C:\ProgramData\DAEMON Tools Lite

O43 - CFD: 2/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Desktop

O43 - CFD: 7/03/2011 - 8:34:08 - [0] ----D- C:\ProgramData\Divinity 2

O43 - CFD: 10/07/2010 - 16:43:54 - [2952058] ----D- C:\ProgramData\DivX

O43 - CFD: 2/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Documents

O43 - CFD: 27/08/2010 - 9:38:42 - [144] ----D- C:\ProgramData\Driver Whiz

O43 - CFD: 9/12/2010 - 16:12:26 - [4357] -SH-D- C:\ProgramData\DSS

O43 - CFD: 21/03/2010 - 21:38:12 - [279172] ----D- C:\ProgramData\eSellerate

O43 - CFD: 2/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Favorites

O43 - CFD: 6/03/2010 - 19:18:30 - [79915] ----D- C:\ProgramData\FLEXnet

O43 - CFD: 31/01/2011 - 14:14:50 - [501936] ----D- C:\ProgramData\Google

O43 - CFD: 30/04/2011 - 18:49:56 - [363004765] ----D- C:\ProgramData\Kaspersky Lab

O43 - CFD: 29/04/2011 - 10:32:54 - [117967008] ----D- C:\ProgramData\Kaspersky Lab Setup Files

O43 - CFD: 18/02/2010 - 17:11:56 - [720] ----D- C:\ProgramData\LightScribe

O43 - CFD: 31/07/2010 - 14:59:00 - [6700193] ----D- C:\ProgramData\Malwarebytes

O43 - CFD: 6/03/2010 - 22:14:18 - [99512] ----D- C:\ProgramData\McAfee

O43 - CFD: 24/08/2010 - 14:27:10 - [1042] ----D- C:\ProgramData\Media Center Programs

O43 - CFD: 29/11/2010 - 11:38:22 - [61104647] -S--D- C:\ProgramData\Microsoft

O43 - CFD: 25/05/2010 - 19:16:30 - [95094] ----D- C:\ProgramData\Microsoft Help

O43 - CFD: 30/11/2010 - 16:53:08 - [1200] ----D- C:\ProgramData\Nero

O43 - CFD: 18/02/2010 - 17:16:54 - [155] ----D- C:\ProgramData\Norton

O43 - CFD: 13/07/2009 - 21:07:24 - [6401075] ----D- C:\ProgramData\NortonInstaller

O43 - CFD: 30/04/2011 - 17:37:46 - [2555164] ----D- C:\ProgramData\NVIDIA

O43 - CFD: 26/05/2010 - 11:45:26 - [578505] ----D- C:\ProgramData\NVIDIA Corporation

O43 - CFD: 19/02/2010 - 14:04:46 - [1052] ----D- C:\ProgramData\Office Genuine Advantage

O43 - CFD: 27/04/2011 - 16:33:48 - [2403] ----D- C:\ProgramData\P4G

O43 - CFD: 6/03/2011 - 22:48:38 - [496] ----D- C:\ProgramData\PMB Files

O43 - CFD: 28/02/2010 - 15:49:00 - [4048778] ----D- C:\ProgramData\Propellerhead Software

O43 - CFD: 17/04/2011 - 15:18:28 - [57] ----D- C:\ProgramData\ScanSoft

O43 - CFD: 17/04/2011 - 15:19:40 - [27513682] ----D- C:\ProgramData\Skype

O43 - CFD: 10/03/2011 - 18:12:18 - [3051] ----D- C:\ProgramData\Sony

O43 - CFD: 16/01/2011 - 23:01:54 - [39] ----D- C:\ProgramData\SpieleEntwicklungsKombinat

O43 - CFD: 9/11/2010 - 14:10:30 - [6303] ----D- C:\ProgramData\Sports Interactive

O43 - CFD: 2/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Start Menu

O43 - CFD: 29/12/2010 - 15:15:22 - [189] ----D- C:\ProgramData\Sun

O43 - CFD: 13/07/2009 - 21:08:22 - [0] ----D- C:\ProgramData\Symantec

O43 - CFD: 14/11/2010 - 18:08:14 - [90183] ---AD- C:\ProgramData\Temp

O43 - CFD: 2/11/2006 - 15:02:06 - [0] -SH-D- C:\ProgramData\Templates

O43 - CFD: 17/04/2011 - 15:04:42 - [19842077] ----D- C:\ProgramData\TuneUp Software

O43 - CFD: 27/05/2010 - 15:34:04 - [422] ----D- C:\ProgramData\Ubisoft

O43 - CFD: 3/03/2010 - 12:34:56 - [0] ----D- C:\ProgramData\WindowsSearch

O43 - CFD: 26/05/2010 - 11:49:28 - [0] ----D- C:\ProgramData\WinZip

O43 - CFD: 16/01/2011 - 20:03:10 - [43465261] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\.minecraft

O43 - CFD: 3/03/2010 - 12:56:38 - [83470623] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Ableton

O43 - CFD: 3/04/2011 - 12:30:16 - [6144536] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Adobe

O43 - CFD: 19/02/2010 - 19:26:26 - [52] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\app

O43 - CFD: 26/05/2010 - 14:27:28 - [289475] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Apple Computer

O43 - CFD: 24/11/2010 - 15:09:04 - [0] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Atari

O43 - CFD: 31/07/2010 - 15:48:18 - [15023] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\BitDefender

O43 - CFD: 3/05/2010 - 12:09:40 - [0] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\BitSpirit

O43 - CFD: 11/03/2010 - 18:53:20 - [0] R---D- C:\Users\Thomas Mailleux\AppData\Roaming\Brother

O43 - CFD: 26/05/2010 - 11:14:58 - [104715] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\CheckPoint

O43 - CFD: 20/01/2011 - 20:07:48 - [2625471] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Code Force Limited

O43 - CFD: 17/04/2011 - 20:45:58 - [591297] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Command and Conquer 4

O43 - CFD: 21/03/2010 - 21:51:26 - [585475] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Crayon Physics Deluxe

O43 - CFD: 19/02/2010 - 15:00:00 - [0] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\CyberLink

O43 - CFD: 19/02/2010 - 21:12:40 - [3778] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\DAEMON Tools Lite

O43 - CFD: 28/04/2011 - 17:36:28 - [44406] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\DAEMON Tools Pro

O43 - CFD: 6/07/2010 - 1:02:14 - [92160] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\DivX

O43 - CFD: 12/12/2010 - 14:43:44 - [20480] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\DMCache

O43 - CFD: 19/02/2010 - 20:31:08 - [530748] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Dofus 2

O43 - CFD: 19/02/2010 - 19:26:20 - [7425] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Dofus.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1

O43 - CFD: 11/01/2011 - 14:29:10 - [199] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\dvdcss

O43 - CFD: 16/01/2011 - 19:37:24 - [0] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\enchant

O43 - CFD: 6/03/2010 - 21:54:12 - [6558611] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Facebook

O43 - CFD: 24/05/2010 - 19:29:56 - [15458] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\FileZilla

O43 - CFD: 18/02/2010 - 16:39:38 - [0] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Google

O43 - CFD: 15/03/2010 - 16:44:18 - [411] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Hardcore

O43 - CFD: 18/11/2010 - 19:20:48 - [334] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Hothead Games

O43 - CFD: 18/02/2010 - 22:33:24 - [0] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Identities

O43 - CFD: 29/04/2011 - 12:29:00 - [19445] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\IDM

O43 - CFD: 1/03/2011 - 17:30:08 - [1263] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Juce VST Host

O43 - CFD: 28/01/2011 - 20:46:32 - [13261986] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Kalypso Media

O43 - CFD: 4/06/2010 - 17:06:02 - [414] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Leadertech

O43 - CFD: 18/02/2010 - 22:33:50 - [6960] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Macromedia

O43 - CFD: 31/07/2010 - 14:59:04 - [6838] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Malwarebytes

O43 - CFD: 2/11/2006 - 14:37:36 - [0] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Media Center Programs

O43 - CFD: 10/03/2011 - 14:10:36 - [4161979] -S--D- C:\Users\Thomas Mailleux\AppData\Roaming\Microsoft

O43 - CFD: 11/05/2010 - 15:36:48 - [114] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Mount&Blade Warband

O43 - CFD: 7/03/2011 - 10:28:10 - [18533248] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Mozilla

O43 - CFD: 15/06/2010 - 13:11:24 - [60] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\MPEG Streamclip

O43 - CFD: 30/11/2010 - 17:03:38 - [46307] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Nero

O43 - CFD: 10/03/2011 - 14:25:20 - [0] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\NetMedia Providers

O43 - CFD: 26/05/2010 - 16:30:22 - [0] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\NVIDIA

O43 - CFD: 28/02/2010 - 15:49:34 - [4152] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Propellerhead Software

O43 - CFD: 13/04/2011 - 13:51:26 - [151349] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Publish Providers

O43 - CFD: 19/02/2010 - 19:26:26 - [0] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1

O43 - CFD: 6/01/2011 - 16:41:04 - [20591] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Rovio

O43 - CFD: 27/03/2011 - 15:18:54 - [0] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\runic games

O43 - CFD: 15/03/2010 - 16:48:06 - [455] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Sawer

O43 - CFD: 21/03/2010 - 21:38:12 - [1158] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Scribball

O43 - CFD: 25/03/2010 - 19:32:22 - [28785] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\SecuROM

O43 - CFD: 16/11/2010 - 21:16:06 - [4231122] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Skype

O43 - CFD: 16/11/2010 - 20:59:48 - [126968] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\skypePM

O43 - CFD: 10/03/2011 - 18:16:48 - [2] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Sony

O43 - CFD: 16/01/2011 - 23:01:56 - [3348] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\SpieleEntwicklungsKombinat

O43 - CFD: 9/11/2010 - 14:09:18 - [22326010] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Sports Interactive

O43 - CFD: 24/03/2011 - 21:48:20 - [18871] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Subversion

O43 - CFD: 9/04/2011 - 17:42:36 - [141513727] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\The Creative Assembly

O43 - CFD: 24/01/2011 - 15:00:50 - [601239984] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\thriXXX

O43 - CFD: 12/09/2010 - 16:17:22 - [4139959] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Tropico 3

O43 - CFD: 12/09/2010 - 16:27:50 - [1434486] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Tropico3

O43 - CFD: 17/04/2011 - 15:01:48 - [5768676] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\TuneUp Software

O43 - CFD: 20/03/2011 - 23:47:32 - [3207168] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\U3

O43 - CFD: 1/02/2011 - 2:04:16 - [1569164] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\vlc

O43 - CFD: 1/02/2011 - 12:06:44 - [17370] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\wargaming.net

O43 - CFD: 8/11/2010 - 3:08:56 - [0] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\Windows Live Writer

O43 - CFD: 10/01/2011 - 16:12:46 - [0] ----D- C:\Users\Thomas Mailleux\AppData\Roaming\WinRAR

O43 - CFD: 20/03/2011 - 21:08:16 - [1956] ----D- C:\Users\Thomas Mailleux\Appdata\Local\3DMGAME

O43 - CFD: 4/05/2010 - 14:33:38 - [280768389] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Adobe

O43 - CFD: 19/02/2010 - 22:47:42 - [41976064] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Apple

O43 - CFD: 2/06/2010 - 1:22:36 - [4606210] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Apple Computer

O43 - CFD: 18/02/2010 - 22:20:38 - [0] -SH-D- C:\Users\Thomas Mailleux\Appdata\Local\Application Data

O43 - CFD: 28/04/2011 - 10:13:16 - [8412] ----D- C:\Users\Thomas Mailleux\Appdata\Local\ApplicationHistory

O43 - CFD: 19/02/2010 - 13:30:00 - [1373785] ----D- C:\Users\Thomas Mailleux\Appdata\Local\ASUS

O43 - CFD: 28/04/2011 - 15:31:56 - [430334] ----D- C:\Users\Thomas Mailleux\Appdata\Local\AudioMulch 2.0

O43 - CFD: 19/02/2010 - 15:16:04 - [643] ----D- C:\Users\Thomas Mailleux\Appdata\Local\BuildAGadget Content

O43 - CFD: 9/04/2011 - 17:58:06 - [0] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Chromium

O43 - CFD: 31/08/2010 - 9:03:54 - [27446] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Cooliris

O43 - CFD: 10/02/2011 - 20:37:24 - [0] ----D- C:\Users\Thomas Mailleux\Appdata\Local\CrashRpt

O43 - CFD: 7/03/2011 - 8:34:04 - [753] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Divinity 2

O43 - CFD: 3/04/2011 - 13:13:06 - [1865429] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Electronic Arts

O43 - CFD: 19/02/2010 - 22:10:36 - [0] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Fallout3

O43 - CFD: 12/03/2011 - 19:11:56 - [0] ----D- C:\Users\Thomas Mailleux\Appdata\Local\FalloutNV

O43 - CFD: 22/04/2011 - 11:34:18 - [4477536] ----D- C:\Users\Thomas Mailleux\Appdata\Local\GameCenter

O43 - CFD: 31/01/2011 - 14:14:52 - [0] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Google

O43 - CFD: 7/01/2011 - 23:28:58 - [42323] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Grubby Games

O43 - CFD: 18/02/2010 - 22:20:38 - [0] -SH-D- C:\Users\Thomas Mailleux\Appdata\Local\Historique

O43 - CFD: 27/04/2011 - 16:46:02 - [247649625] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Microsoft

O43 - CFD: 12/03/2011 - 14:20:28 - [742867] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Microsoft Games

O43 - CFD: 19/02/2010 - 10:33:54 - [0] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Microsoft Help

O43 - CFD: 2/03/2010 - 0:48:26 - [52588229] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Mozilla

O43 - CFD: 24/11/2010 - 19:40:50 - [0] ----D- C:\Users\Thomas Mailleux\Appdata\Local\My Games

O43 - CFD: 27/04/2011 - 14:45:18 - [319814] ----D- C:\Users\Thomas Mailleux\Appdata\Local\PMB Files

O43 - CFD: 18/02/2010 - 22:34:12 - [4966400] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Power2Go

O43 - CFD: 3/04/2011 - 16:33:14 - [6109675] ----D- C:\Users\Thomas Mailleux\Appdata\Local\PunkBuster

O43 - CFD: 17/12/2010 - 18:09:32 - [384558] ----D- C:\Users\Thomas Mailleux\Appdata\Local\QuickPar

O43 - CFD: 31/01/2011 - 14:11:14 - [0] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Secunia PSI

O43 - CFD: 18/02/2010 - 17:15:14 - [285696] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Seven Zip

O43 - CFD: 18/11/2010 - 22:24:38 - [768000] ----D- C:\Users\Thomas Mailleux\Appdata\Local\SKIDROW

O43 - CFD: 10/03/2011 - 18:15:48 - [149696] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Sony

O43 - CFD: 9/11/2010 - 14:09:18 - [0] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Sports Interactive

O43 - CFD: 18/02/2010 - 17:43:22 - [54938] ----D- C:\Users\Thomas Mailleux\Appdata\Local\SRS Labs

O43 - CFD: 30/04/2011 - 19:06:10 - [1963970786] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Temp

O43 - CFD: 18/02/2010 - 22:20:38 - [0] -SH-D- C:\Users\Thomas Mailleux\Appdata\Local\Temporary Internet Files

O43 - CFD: 7/03/2011 - 10:13:20 - [15972] ----D- C:\Users\Thomas Mailleux\Appdata\Local\The Lord of the Rings Online

O43 - CFD: 6/12/2010 - 20:42:18 - [1584] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Trend Micro

O43 - CFD: 7/03/2011 - 9:54:42 - [2249709] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Turbine

O43 - CFD: 24/03/2011 - 14:18:10 - [2254] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Two Worlds II

O43 - CFD: 30/04/2011 - 3:26:26 - [463] ----D- C:\Users\Thomas Mailleux\Appdata\Local\VirtualStore

O43 - CFD: 9/01/2011 - 23:13:24 - [40960] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Windows Live

O43 - CFD: 8/11/2010 - 3:09:12 - [373743] ----D- C:\Users\Thomas Mailleux\Appdata\Local\Windows Live Writer

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.4BC02BD73338C3A26265F5C64DBEC770] - 12/11/1999 - 4:11:00 ---A- . (...) -- C:\Windows\System32\BDEADMIN.CPL [183808]

O44 - LFC:[MD5.B9EC2BAC719D6A7EC67D6B699BD26450] - 16/04/2011 - 2:31:56 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [2310704]

O44 - LFC:[MD5.8C25E347F5E2C2BCA9B5258A68B72AE7] - 20/01/1999 - 4:01:00 ---A- . (...) -- C:\Windows\System32\DBCLIENT.DLL [210032]

O44 - LFC:[MD5.E814C7C73430203668AE6DC92183BBFF] - 28/04/2011 - 8:52:13 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\System32\nvhdagenco322040.dll [837224]

O44 - LFC:[MD5.96C27791D5AE5C77E37C61B15112E38D] - 28/04/2011 - 8:52:13 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\drivers\nvhda32v.sys [139368]

O44 - LFC:[MD5.935EAAEBA78453263593C37AF98A0999] - 28/04/2011 - 8:52:13 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\nvapo32v.dll [65640]

O44 - LFC:[MD5.07929D3598DC88E142ECD67BE00D94AF] - 28/04/2011 - 8:52:13 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\nvhdap32.dll [26216]

O44 - LFC:[MD5.39920D69EAEDB51757527AA54FE25216] - 29/04/2011 - 9:34:21 ---A- . (.Kaspersky Lab - Klif Mini-Filter [fre_wlh_x86].) -- C:\Windows\System32\drivers\klif.sys [488536]

O44 - LFC:[MD5.465C52BB968818BF9DEAFD406463BCE7] - 29/04/2011 - 9:46:35 ---A- . (...) -- C:\Windows\System32\drivers\klick.dat [97859]

O44 - LFC:[MD5.3917C606A34B8E7D94B99CE74BA848D7] - 29/04/2011 - 9:46:35 ---A- . (...) -- C:\Windows\System32\drivers\klin.dat [115267]

O44 - LFC:[MD5.97AE01E23FB8D7048377AB08D1938711] - 3/04/2011 - 15:31:56 ---A- . (...) -- C:\Windows\System32\pbsvc_bc2.exe [2434856]

O44 - LFC:[MD5.3A2BDD76E7D2A5F40A7174793D1BA794] - 3/04/2011 - 16:40:17 ---A- . (...) -- C:\Windows\System32\PnkBstrA.exe [75136]

O44 - LFC:[MD5.ED41A03D042CAA05B77AE3D16ACE59FF] - 7/04/2011 - 21:43:04 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 270.6.) -- C:\Windows\System32\nvsvc.dll [2565224]

O44 - LFC:[MD5.F5512367797B301A250A62FD886449DE] - 7/04/2011 - 21:43:20 ---A- . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\System32\nvcpl.dll [3701352]

O44 - LFC:[MD5.2C03877B14F1787740AA9A535E73D5AF] - 7/04/2011 - 21:43:34 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 270.6.) -- C:\Windows\System32\nvsvcr.dll [2582120]

O44 - LFC:[MD5.63391020BC1FD82E8F8073024276B0B7] - 7/04/2011 - 21:43:34 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 270.6.) -- C:\Windows\System32\nvvsvc.exe [612456]

O44 - LFC:[MD5.338EDD400BC79F7EA16FE541C99117BC] - 7/04/2011 - 21:43:34 ---A- . (.NVIDIA Corporation - NVIDIA Hotkey Service, Version 270.61.) -- C:\Windows\System32\nvhotkey.dll [293992]

O44 - LFC:[MD5.44652F341A94DFA057102320C694FE97] - 7/04/2011 - 21:43:34 ---A- . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\System32\nvmctray.dll [111208]

O44 - LFC:[MD5.08C448B781A91FD2A61D70AA2ACCF8B3] - 7/04/2011 - 21:43:36 ---A- . (.NVIDIA Corporation - Easy daemon API.) -- C:\Windows\System32\easyUpdatusAPIU.dll [580200]

O44 - LFC:[MD5.AEE5DD2A29BBF02398B2DB70CE1EB989] - 8/04/2011 - 6:14:00 ---A- . (...) -- C:\Windows\System32\nvinfo.pb [4755]

O44 - LFC:[MD5.58CE5703F481BF3EE288A5F064E8A51B] - 8/04/2011 - 6:14:00 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.dll [57960]

O44 - LFC:[MD5.8BA6BE80BA5FAA297DD716AF08B0DE2F] - 8/04/2011 - 6:14:00 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\System32\nvdispco3220140.dll [944232]

O44 - LFC:[MD5.3FF7E319D12D827554A470E127E7FEB6] - 8/04/2011 - 6:14:00 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\System32\nvgenco322060.dll [855656]

O44 - LFC:[MD5.F45DAD8A9CEB83B3D2E0F594580E89D9] - 8/04/2011 - 6:14:00 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 270.61.) -- C:\Windows\System32\nvcuda.dll [5180824]

O44 - LFC:[MD5.E743CF97A615B8E81A29E94619892CDE] - 8/04/2011 - 6:14:00 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 270.6.) -- C:\Windows\System32\nvcuvid.dll [2765928]

O44 - LFC:[MD5.2A46BF6D1F317B8648B37DB4C659F407] - 8/04/2011 - 6:14:00 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 270.61.) -- C:\Windows\System32\nvcuvenc.dll [2074216]

O44 - LFC:[MD5.21406FD151A7584B2D3F5A3C7FAA55E1] - 8/04/2011 - 6:14:00 ---A- . (.NVIDIA Corporation - NVIDIA Compatible D3D10 Driver, Version 270.) -- C:\Windows\System32\nvwgf2um.dll [6299752]

O44 - LFC:[MD5.13798B453CF134EE0431B272A6BFD31C] - 8/04/2011 - 6:14:00 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\System32\nvoglv32.dll [15227496]

O44 - LFC:[MD5.7B0FB70FAAAE1B4DCA54C5A3B510D281] - 8/04/2011 - 6:14:00 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Vista WDDM D3D Driver, Ve.) -- C:\Windows\System32\nvd3dum.dll [10071656]

O44 - LFC:[MD5.A7E208039CBBD32AD7F487F5D787DB41] - 8/04/2011 - 6:14:00 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Windows Vista Kernel Mode.) -- C:\Windows\System32\drivers\nvBridge.kmd [10920]

O44 - LFC:[MD5.4BBF9429189BC4D246EC86828937500A] - 8/04/2011 - 6:14:00 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 270.61.) -- C:\Windows\System32\nvcompiler.dll [13007464]

O44 - LFC:[MD5.0D5ECAD48501A84C8C57FCF63C57DEBE] - 8/04/2011 - 6:14:00 ---A- . (.NVIDIA Corporation - NVIDIA NVAPI Library, Version 270.61.) -- C:\Windows\System32\nvapi.dll [2034280]

O44 - LFC:[MD5.1F144BD1FECB52FE4DC18FAFE70FF7AF] - 8/04/2011 - 6:14:00 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [10690024]

O44 - LFC:[MD5.10BA87D2B87CAC1F466C602B6EB331D6] - 30/04/2011 - 17:01:43 ---A- . (...) -- C:\Windows\ntbtlog.txt [513032]

O44 - LFC:[MD5.E0EE12005489757700ECFF7FB4EF1200] - 30/04/2011 - 17:01:09 ---A- . (...) -- C:\Windows\WindowsUpdate.log [2037656]

O44 - LFC:[MD5.E0EE12005489757700ECFF7FB4EF1200] - 30/04/2011 - 16:37:40 ---A- . (...) -- C:\Windows\molcp3.log [33251]

O44 - LFC:[MD5.CB2F92B078EA81EE150EF653B1E884CB] - 30/04/2011 - 16:37:23 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.6BCAF46E2B7FA9ACE92B4D39F3037C5C] - 30/04/2011 - 16:10:49 ---A- . (...) -- C:\Windows\System32\acovcnt.exe [45056]

O44 - LFC:[MD5.AAD0C5D888BC59F360CE852A7119BC52] - 30/04/2011 - 16:09:59 ---A- . (...) -- C:\Windows\PFRO.log [1056]

O44 - LFC:[MD5.C4E426221266E8BB0E03A3435108E1FD] - 30/04/2011 - 15:03:26 ---A- . (...) -- C:\TDSSKiller.2.4.21.0_30.04.2011_16.03.02_log.txt [64882]

O44 - LFC:[MD5.FC4EAAC9153C0A4E7AB5B68F518C5A57] - 30/04/2011 - 15:02:28 ---A- . (...) -- C:\TDSSKiller.2.4.21.0_30.04.2011_16.02.02_log.txt [64882]

O44 - LFC:[MD5.F837CA71B52166A7119F40F4A20ED072] - 30/04/2011 - 15:00:51 ---A- . (...) -- C:\TDSSKiller.2.4.21.0_30.04.2011_16.00.25_log.txt [64882]

O44 - LFC:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 30/04/2011 - 13:00:26 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\drivers\mbamswissarmy.sys [38224]

O44 - LFC:[MD5.836E0E09CA9869BE7EB39EF2CF3602C7] - 30/04/2011 - 13:00:21 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [20952]

O44 - LFC:[MD5.718FECF22BF4BD4FC05B79AA4BEC75D0] - 29/04/2011 - 15:12:49 ---A- . (...) -- C:\Windows\Language_trs.ini [1769]

O44 - LFC:[MD5.9D8CB58B9A9E177DDD599791A58A654D] - 29/04/2011 - 14:01:38 ---A- . (...) -- C:\Windows\System32\drivers\AsIO.sys [11296]

O44 - LFC:[MD5.E67493490466B5F04B58C22D2590E8CA] - 29/04/2011 - 14:01:38 ---A- . (...) -- C:\Windows\System32\drivers\AsUpIO.sys [11448]

O44 - LFC:[MD5.B6296A1E765612688E7E9800CEBF2AC8] - 29/04/2011 - 14:01:38 ---A- . (.Pas de propriétaire - AsIO DLL.) -- C:\Windows\System32\AsIO.dll [24576]

O44 - LFC:[MD5.0A6C742F68C44D326AE037135D073CB0] - 29/04/2011 - 10:50:51 ---A- . (...) -- C:\TDSSKiller.2.4.21.0_29.04.2011_11.49.43_log.txt [64414]

O44 - LFC:[MD5.B157E305260FF2A607591F33DE41BFCA] - 29/04/2011 - 10:43:03 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\java.exe [145184]

O44 - LFC:[MD5.364F7A2B4B535659F3B50DE5E5C20123] - 29/04/2011 - 10:43:03 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\javaw.exe [145184]

O44 - LFC:[MD5.A0AC7907D47B54238CA60FC47807F119] - 29/04/2011 - 10:43:03 ---A- . (.Sun Microsystems, Inc. - Java Web Start Launcher.) -- C:\Windows\System32\javaws.exe [157472]

O44 - LFC:[MD5.C88C969B8E477E4297E4A65D66852BF3] - 29/04/2011 - 10:43:02 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\deployJava1.dll [472808]

O44 - LFC:[MD5.D9412205086A0B13A2E4113C16C66C12] - 28/04/2011 - 21:55:29 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1562284]

O44 - LFC:[MD5.0B94040A2EBF0238CB3A69BB951BA45C] - 28/04/2011 - 21:55:29 ---A- . (...) -- C:\Windows\System32\perfc009.dat [113442]

O44 - LFC:[MD5.A0EFAE57410F769A767DF365EBCD9E1C] - 28/04/2011 - 21:55:29 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [137448]

O44 - LFC:[MD5.E7A9D2896BC289861ED9F00AB477BC31] - 28/04/2011 - 21:55:29 ---A- . (...) -- C:\Windows\System32\perfh009.dat [612362]

O44 - LFC:[MD5.6308ECD63426C839D652A265401CF4C2] - 28/04/2011 - 21:55:29 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [706730]

O44 - LFC:[MD5.F951C27FE54E1B2B5ADA9719289B4756] - 28/04/2011 - 19:08:58 ---A- . (.Protection Technology - Application Driver (01).) -- C:\Windows\System32\drivers\appdrv01.sys [3333808]

O44 - LFC:[MD5.3E9A95A0802BF1C91698AB4F6DA72498] - 28/04/2011 - 19:08:57 ---A- . (.Protection Technology - Application Driver Auto Removal Service (01.) -- C:\Windows\System32\appdrvrem01.exe [316888]

O44 - LFC:[MD5.555E54AC2F601A8821CEF58961653991] - 28/04/2011 - 16:48:52 ---A- . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [218688]

O44 - LFC:[MD5.ED930BC7493CB104D4C80A509500AB5B] - 27/04/2011 - 13:15:06 ---A- . (...) -- C:\Windows\MYOKENT.INI [107]

O44 - LFC:[MD5.F3D764CF858A438AFA87FCA8ADF2D711] - 15/04/2011 - 16:24:52 ---A- . (...) -- C:\Windows\System32\drivers\PnkBstrK.sys [140248]

O44 - LFC:[MD5.6573C509152457B4DD66F33198BBA1CC] - 15/04/2011 - 16:24:43 ---A- . (...) -- C:\Windows\System32\PnkBstrB.exe [266400]

O44 - LFC:[MD5.6573C509152457B4DD66F33198BBA1CC] - 15/04/2011 - 16:24:43 ---A- . (...) -- C:\Windows\System32\PnkBstrB.xtr [266400]

O44 - LFC:[MD5.9A386EC60A166DF66205343CA12C6B86] - 15/04/2011 - 16:22:36 ---A- . (...) -- C:\Windows\System32\PnkBstrB.ex0 [215128]

O44 - LFC:[MD5.B44A7AC9E801C38F54F7340351313E85] - 15/04/2011 - 15:22:01 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [292864]

O44 - LFC:[MD5.54F73529D65E5EB41FFC28C4EDDF069F] - 15/04/2011 - 15:22:00 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [34304]

---\\ MountPoints2 Shell Key (O51)

O51 - MPSK:{14ef4463-e026-11df-927e-806e6f6e6963}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- G:\Start_programma.html (.not file.)

O51 - MPSK:{96d6cd48-1ff3-11e0-871a-00261875b0ff}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- F:\LaunchU3.exe (.not file.)

O51 - MPSK:{9ab22b6f-6aff-11df-9fd6-00261875b0ff}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- H:\LaunchU3.exe (.not file.)

O51 - MPSK:{b4e80bc5-ffa6-11df-aeaf-00261875b0ff}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- F:\TranscendService(JF).exe (.not file.)

O51 - MPSK:{ee58b6aa-965d-11df-a1b1-00261875b0ff}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- I:\LaunchU3.exe (.not file.)

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll

O52 - TDSD: \Drivers32\"msacm.vorbis"="vorbis.acm" . (.HMS http://hp.vector.co.jp/authors/VA012897 - Ogg Vorbis CODEC for MSACM.) -- C:\Windows\System32\vorbis.acm

O52 - TDSD: \Drivers32\"vidc.yv12"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\DivX.dll

O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \drivers.desc\"wdmaud.drv"="Pilote de fonction UAA 1.1 Microsoft pour High Definition Audio" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"vorbis.acm"="Ogg Vorbis Audio CODEC" . (.HMS http://hp.vector.co.jp/authors/VA012897 - Ogg Vorbis CODEC for MSACM.) -- C:\Windows\System32\vorbis.acm

---\\ ShareTools MSconfig StartupReg (O53)

O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe

O53 - SMSR:HKLM\...\startupreg\AdobeCS4ServiceManager [Key] . (.Adobe Systems Incorporated - Adobe CS4 Service Manager.) -- C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe

O53 - SMSR:HKLM\...\startupreg\BrMfcWnd [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe

O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe

O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe

O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe

O53 - SMSR:HKLM\...\startupreg\Steam [Key] . (.Valve Corporation - Steam.) -- d:\steam\steam.exe

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKCU\...\Policies\System] - "disableregistrytools"=0

---\\ Microsoft Windows Policies Explorer (O56)

O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.73685E15EF8B0BD9C30F1AF413F13D49] - 1/08/2010 - 15:38:48 ---A- . (.Adobe Systems, Inc. - Adobe Drive File System Driver.) -- C:\Windows\system32\drivers\adfs.sys [73312]

O58 - SDL:[MD5.04F0FCAC69C7C71A3AC4EB97FAFC8303] - 21/01/2008 - 3:23:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [422968]

O58 - SDL:[MD5.60505E0041F7751BDBB80F88BF45C2CE] - 21/01/2008 - 3:23:25 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [300600]

O58 - SDL:[MD5.8A42779B02AEC986EAB64ECFC98F8BD7] - 21/01/2008 - 3:23:26 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\system32\drivers\adpu160m.sys [101432]

O58 - SDL:[MD5.241C9E37F8CE45EF51C3DE27515CA4E5] - 21/01/2008 - 3:23:27 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [149560]

O58 - SDL:[MD5.9EAEF5FC9B8E351AFA7E78A6FAE91F91] - 21/01/2008 - 3:23:00 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [17464]

O58 - SDL:[MD5.F951C27FE54E1B2B5ADA9719289B4756] - 28/04/2011 - 19:08:58 ---A- . (.Protection Technology - Application Driver (01).) -- C:\Windows\system32\drivers\appdrv01.sys [3333808]

O58 - SDL:[MD5.5D2888182FB46632511ACEE92FDAD522] - 21/01/2008 - 3:23:23 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [79416]

O58 - SDL:[MD5.5E2A321BD7C8B3624E41FDEC3E244945] - 21/01/2008 - 3:23:24 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [79928]

O58 - SDL:[MD5.9D8CB58B9A9E177DDD599791A58A654D] - 29/04/2011 - 14:01:38 ---A- . (...) -- C:\Windows\system32\drivers\AsIO.sys [11296]

O58 - SDL:[MD5.E67493490466B5F04B58C22D2590E8CA] - 29/04/2011 - 14:01:38 ---A- . (...) -- C:\Windows\system32\drivers\AsUpIO.sys [11448]

O58 - SDL:[MD5.2846F5EE802889D500FCF5CC48B28381] - 5/09/2009 - 13:25:36 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athr.sys [1183744]

O58 - SDL:[MD5.BB16693616427EAC1A436E106EA8D318] - 24/12/2008 - 9:39:43 ---A- . (.ATK0100 - ATK0100 ACPI Utility.) -- C:\Windows\system32\drivers\ATKACPI.sys [14392]

O58 - SDL:[MD5.5B80E84AF6B02ECAB72DAE9AFEE06309] - 16/01/2011 - 22:04:52 ---A- . (...) -- C:\Windows\system32\drivers\atksgt.sys [165376]

O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 2/11/2006 - 9:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568]

O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 2/11/2006 - 9:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248]

O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 2/11/2006 - 9:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [71808]

O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 2/11/2006 - 9:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336]

O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 2/11/2006 - 9:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160]

O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 2/11/2006 - 9:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904]

O58 - SDL:[MD5.0CA25E686A4928484E9FDABD168AB629] - 21/01/2008 - 3:23:00 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [19000]

O58 - SDL:[MD5.D18893845AE1C5833B5B2EA9B7F5C670] - 7/04/2008 - 7:00:45 ---A- . (.Generic - USB Mass Storage Filter Driver.) -- C:\Windows\system32\drivers\CRFILTER.sys [6656]

O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 2/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [71272]

O58 - SDL:[MD5.555E54AC2F601A8821CEF58961653991] - 28/04/2011 - 16:48:52 ---A- . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\system32\drivers\dtsoftbus01.sys [218688]

O58 - SDL:[MD5.5425F74AC0C1DBD96A1E04F17D63F94C] - 21/01/2008 - 3:23:24 ---A- . (.Intel Corporation - Pilote désérialisé NDIS 6 de la carte Intel® PRO/1000.) -- C:\Windows\system32\drivers\E1G60I32.sys [118784]

O58 - SDL:[MD5.23B62471681A124889978F6295B3F4C6] - 21/01/2008 - 3:23:22 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [342584]

O58 - SDL:[MD5.27D322191A177793448AFB6B9B11C75A] - 21/04/2009 - 11:43:25 ---A- . (.ELAN Microelectronic Corp. - ETD Control Center.) -- C:\Windows\system32\drivers\ETD.sys [90112]

O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 18/05/2009 - 14:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [26600]

O58 - SDL:[MD5.16EE7B23A009E00D835CDB79574A91A6] - 21/01/2008 - 3:23:26 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [40504]

O58 - SDL:[MD5.54155EA1B0DF185878E0FC9EC3AC3A14] - 21/01/2008 - 3:23:23 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [235064]

O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 2/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41576]

O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 2/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [35944]

O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 2/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [35944]

O58 - SDL:[MD5.7F2B8D0B31FB4A797E5786EF124C5A80] - 3/11/2008 - 8:03:27 ---A- . (.Pas de propriétaire - Keyboard Filter Driver.) -- C:\Windows\system32\drivers\kbfiltr.sys [13880]

O58 - SDL:[MD5.94D67D49BD9503BB1D838405D80F2058] - 9/06/2010 - 15:43:50 ---A- . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\Windows\system32\drivers\kl1.sys [132184]

O58 - SDL:[MD5.713576569667AC9E0F8556076004A96B] - 9/06/2010 - 15:43:52 ---A- . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\Windows\system32\drivers\kl2.sys [11352]

O58 - SDL:[MD5.39920D69EAEDB51757527AA54FE25216] - 29/04/2011 - 9:34:21 ---A- . (.Kaspersky Lab - Klif Mini-Filter [fre_wlh_x86].) -- C:\Windows\system32\drivers\klif.sys [488536]

O58 - SDL:[MD5.CF88B4985D957EEE45C9939092E87C92] - 22/04/2010 - 17:07:34 ---A- . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) -- C:\Windows\system32\drivers\klim6.sys [22104]

O58 - SDL:[MD5.3DE1771C135328420315E21DDE229BBA] - 2/11/2009 - 18:27:16 ---A- . (.Kaspersky Lab - KLMOUFLT Mouse Device Filter [fre_wlh_x86].) -- C:\Windows\system32\drivers\klmouflt.sys [19984]

O58 - SDL:[MD5.975B6CF65F44E95883F3855BAE8CECAF] - 16/01/2011 - 22:04:26 ---A- . (...) -- C:\Windows\system32\drivers\lirsgt.sys [18048]

O58 - SDL:[MD5.C7E15E82879BF3235B559563D4185365] - 21/01/2008 - 3:23:23 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [96312]

O58 - SDL:[MD5.EE01EBAE8C9BF0FA072E0FF68718920A] - 21/01/2008 - 3:23:25 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [89656]

O58 - SDL:[MD5.912A04696E9CA30146A62AFA1463DD5C] - 21/01/2008 - 3:23:23 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [96312]

O58 - SDL:[MD5.836E0E09CA9869BE7EB39EF2CF3602C7] - 20/12/2010 - 17:08:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [20952]

O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 17:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys [38224]

O58 - SDL:[MD5.0001CE609D66632FA17B84705F658879] - 21/01/2008 - 3:23:27 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [31288]

O58 - SDL:[MD5.C252F32CD9A49DBFC25ECF26EBD51A99] - 21/01/2008 - 3:23:27 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [386616]

O58 - SDL:[MD5.5DBB2D21FCC554E9BB78C0AD7863883D] - 7/03/2011 - 1:42:38 ---A- . (.MusicLab, Inc. - MolCp III Driver.) -- C:\Windows\system32\drivers\mlmolcp3.sys [51664]

O58 - SDL:[MD5.3DC1FAEF3CE3568D5F1DE7D8C9B16EC9] - 7/03/2011 - 1:43:00 ---A- . (.MusicLab, Inc. - MolCp III Protocol Driver.) -- C:\Windows\system32\drivers\molcpeth.sys [76240]

O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 2/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [33384]

O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 2/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [45160]

O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 2/11/2006 - 8:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\system32\drivers\ntrigdigi.sys [20608]

O58 - SDL:[MD5.96C27791D5AE5C77E37C61B15112E38D] - 3/03/2011 - 16:59:19 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\system32\drivers\nvhda32v.sys [139368]

O58 - SDL:[MD5.1F144BD1FECB52FE4DC18FAFE70FF7AF] - 8/04/2011 - 6:14:00 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 270.61.) -- C:\Windows\system32\drivers\nvlddmkm.sys [10690024]

O58 - SDL:[MD5.2EDF9E7751554B42CBB60116DE727101] - 21/01/2008 - 3:23:21 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [102968]

O58 - SDL:[MD5.F13618F0CB1E95232F4C2401592A59E9] - 28/06/2009 - 22:36:36 ---A- . (.NVIDIA Corporation - NVIDIA nForce SMU Microcontroller Driver.) -- C:\Windows\system32\drivers\nvsmu.sys [17920]

O58 - SDL:[MD5.ABED0C09758D1D97DB0042DBB2688177] - 21/01/2008 - 3:23:21 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [45112]

O58 - SDL:[MD5.3FF57A9A657C9690ECBC8B1E3B6E3979] - 4/08/2009 - 17:43:40 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor32.sys [213024]

O58 - SDL:[MD5.F3D764CF858A438AFA87FCA8ADF2D711] - 15/04/2011 - 16:24:52 ---A- . (...) -- C:\Windows\system32\drivers\PnkBstrK.sys [140248]

O58 - SDL:[MD5.0A6DB55AFB7820C99AA1F3A1D270F4F6] - 21/01/2008 - 3:23:24 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1122360]

O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 2/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106088]

O58 - SDL:[MD5.2DD5DD25FB68975D094AE57D46097F48] - 25/08/2010 - 15:41:36 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS6 32-bit Driver.) -- C:\Windows\system32\drivers\Rtlh86.sys [263272]

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 2/11/2006 - 7:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480]

O58 - SDL:[MD5.B7018644E132A8DFB12ED90106E06739] - 3/02/2009 - 16:36:58 ---A- . (.Protection Technology (StarForce) - FrontLine Environment Driver.) -- C:\Windows\system32\drivers\sfdrv01.sys [59000]

O58 - SDL:[MD5.BFCD2450DC6EEDA02AEDC6D289CCF037] - 3/02/2009 - 16:39:23 ---A- . (.Protection Technology (StarForce) - FrontLine Environment Driver.) -- C:\Windows\system32\drivers\sfdrv01a.sys [63096]

O58 - SDL:[MD5.DAAD4C099EBF5094D32C373AC1AC0F3C] - 14/06/2006 - 15:56:56 ---A- . (.Protection Technology (StarForce) - FrontLine Helper Driver.) -- C:\Windows\system32\drivers\sfhlp02.sys [13680]

O58 - SDL:[MD5.6DC03269F4C71E4AB313C3597F42A340] - 10/07/2006 - 17:19:58 ---A- . (.Protection Technology - StarForce Protection Synchronization Driver.) -- C:\Windows\system32\drivers\sfsync02.sys [27032]

O58 - SDL:[MD5.197CEF62EB4BC043E1578529FA2B9A48] - 8/02/2007 - 18:44:43 ---A- . (.Protection Technology (StarForce) - FrontLine File System Driver.) -- C:\Windows\system32\drivers\sfvfs02.sys [83320]

O58 - SDL:[MD5.A99C6C8B0BAA970D8AA59DDC50B57F94] - 21/01/2008 - 3:23:26 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [74808]

O58 - SDL:[MD5.C8A58FC905C9184FA70E37F71060C64D] - 2/11/2006 - 8:41:49 ---A- . (.Motorola Inc. - Motorola SM56 Modem WDM Driver.) -- C:\Windows\system32\drivers\smserial.sys [1010560]

O58 - SDL:[MD5.F3AF6CD944E4CEEBFEA90020F819045D] - 12/05/2008 - 4:20:31 ---A- . (.Pas de propriétaire - USBCAMD for Sonix UVC.) -- C:\Windows\system32\drivers\sncduvc.sys [28672]

O58 - SDL:[MD5.060F51141B20B8156804446A04AB8B2A] - 11/08/2008 - 3:14:11 ---A- . (.Pas de propriétaire - UVC Camera Streaming Driver.) -- C:\Windows\system32\drivers\snp2uvc.sys [1752704]

O58 - SDL:[MD5.B747EA555A72070F258B3E31E1392D62] - 1/04/2009 - 22:12:48 ---A- . (.Pas de propriétaire - SRS Premium Sound driver.) -- C:\Windows\system32\drivers\SRS_PremiumSound_i386.sys [233128]

O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 2/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [35944]

O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 2/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [31848]

O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 2/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [34920]

O58 - SDL:[MD5.18C7C68DC3E243EE76E1E84F4008C712] - 15/11/2010 - 9:35:28 ---A- . (.Tobias Erichsen - Virtual MIDI Driver (x86).) -- C:\Windows\system32\drivers\teVirtualMIDI32.sys [21888]

O58 - SDL:[MD5.9224BB254F591DE4CA8D572A5F0D635C] - 21/01/2008 - 3:23:20 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [238648]

O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 2/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [98408]

O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 21/01/2008 - 3:23:23 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\system32\drivers\ulsata2.sys [115816]

O58 - SDL:[MD5.AADF5587A4063F52C2C3FED7887426FC] - 21/01/2008 - 3:23:00 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [20024]

O58 - SDL:[MD5.587253E09325E6BF226B299774B728A9] - 21/01/2008 - 3:23:23 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [130616]

O58 - SDL:[MD5.7D1F3B131D503EF43EE594B5A2B9B427] - 2/11/2006 - 8:30:56 ---A- . (.Marvell - Pilote miniport NDIS6.0 pour contrôleur Ethernet Marvell Yukon.) -- C:\Windows\system32\drivers\yk60x86.sys [194048]

O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 2/11/2006 - 8:09:42 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029]

O58 - SDL:[MD5.11A2F8D47E6208A6F68711AACDEDBD48] - 18/02/2009 - 4:01:34 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\athr.sys [1093632]

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 2/11/2006 - 8:09:45 ---A- . (...) -- C:\Windows\system32\country.sys [27097]

O58 - SDL:[MD5.77EBF3E9386DAA51551AF429052D88D0] - 3/04/1996 - 20:33:26 ---A- . (...) -- C:\Windows\system32\giveio.sys [5248]

O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 2/11/2006 - 8:09:41 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768]

O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 2/11/2006 - 8:09:44 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809]

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 2/11/2006 - 8:09:44 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537]

O58 - SDL:[MD5.9131FE60ADFAB595C8DA53AD6A06AA31] - 30/12/2004 - 13:43:08 ---A- . (.INCA Internet Co., Ltd. - nProtect NPSC Kernel Mode Driver for NT.) -- C:\Windows\system32\npptNT2.sys [4682]

O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 2/11/2006 - 8:09:29 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866]

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 2/11/2006 - 8:09:35 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146]

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 2/11/2006 - 8:09:38 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370]

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 2/11/2006 - 8:09:40 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274]

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 2/11/2006 - 8:09:31 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146]

O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 2/11/2006 - 8:09:20 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952]

O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 2/11/2006 - 8:09:23 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672]

O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 2/11/2006 - 8:09:24 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776]

O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 2/11/2006 - 8:09:26 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536]

O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 2/11/2006 - 8:09:22 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672]

O58 - SDL:[MD5.5D6401DB90EC81B71F8E2C5C8F0FEF23] - 24/09/2006 - 14:28:46 ---A- . (.Windows ® 2000 DDK provider - SpeedFan Device Driver.) -- C:\Windows\system32\speedfan.sys [5248]

---\\ Liste des outils de nettoyage (O63)

O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM] -- Ad-Remover

O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

---\\ Liste des services Legacy (O64)

O64 - Services: CurCS - (.not file.) - 0a29366f (0a29366f) .(...) - LEGACY_0A29366F

O64 - Services: CurCS - (.not file.) - 0b70feb3 (0b70feb3) .(...) - LEGACY_0B70FEB3

O64 - Services: CurCS - (.not file.) - 35e3e663 (35e3e663) .(...) - LEGACY_35E3E663

O64 - Services: CurCS - (.not file.) - 3a857c48 (3a857c48) .(...) - LEGACY_3A857C48

O64 - Services: CurCS - (.not file.) - 3c6ebdc5 (3c6ebdc5) .(...) - LEGACY_3C6EBDC5

O64 - Services: CurCS - (.not file.) - 49757911 (49757911) .(...) - LEGACY_49757911

O64 - Services: CurCS - (.not file.) - 60c86b64 (60c86b64) .(...) - LEGACY_60C86B64

O64 - Services: CurCS - (.not file.) - 649063eb (649063eb) .(...) - LEGACY_649063EB

O64 - Services: CurCS - (.not file.) - 7a59a68c (7a59a68c) .(...) - LEGACY_7A59A68C

O64 - Services: CurCS - (.not file.) - 7db3dc25 (7db3dc25) .(...) - LEGACY_7DB3DC25

O64 - Services: CurCS - (.not file.) - 8925eb92 (8925eb92) .(...) - LEGACY_8925EB92

O64 - Services: CurCS - (.not file.) - 954b571b (954b571b) .(...) - LEGACY_954B571B

O64 - Services: CurCS - C:\Windows\system32\Drivers\ADFS.sys - adfs (adfs) .(...) - LEGACY_ADFS

O64 - Services: CurCS - 28/04/2011 - C:\Windows\System32\Drivers\appdrv01.sys - Application Driver (01)(appdrv01) .(.Protection Technology - Application Driver (01).) - LEGACY_APPDRV01

O64 - Services: CurCS - (.not file.) - appdrv01.fs.{A7E56839-0B44-4261-8167-6DCA58E79946} (appdrv01.fs.{A7E56839-0B44-4261-8167-6DCA58E79946}) .(...) - LEGACY_APPDRV01.FS.{A7E56839-0B44-4261-8167-6DCA58E79946}

O64 - Services: CurCS - (.not file.) - AsDsm (AsDsm) .(...) - LEGACY_ASDSM

O64 - Services: CurCS - C:\Windows\System32\drivers\AsIO.sys - AsIO (AsIO) .(...) - LEGACY_ASIO

O64 - Services: CurCS - C:\Program Files\ATKGFNEX\ASMMAP.sys - ASMMAP (ASMMAP) .(...) - LEGACY_ASMMAP

O64 - Services: CurCS - C:\Windows\System32\drivers\AsUpIO.sys - AsUpIO (AsUpIO) .(...) - LEGACY_ASUPIO

O64 - Services: CurCS - (.not file.) - aswFsBlk (aswFsBlk) .(...) - LEGACY_ASWFSBLK

O64 - Services: CurCS - (.not file.) - aswMonFlt (aswMonFlt) .(...) - LEGACY_ASWMONFLT

O64 - Services: CurCS - (.not file.) - aswRdr (aswRdr) .(...) - LEGACY_ASWRDR

O64 - Services: CurCS - (.not file.) - aswSP (aswSP) .(...) - LEGACY_ASWSP

O64 - Services: CurCS - (.not file.) - avast! Network Shield Support (aswTdi) .(...) - LEGACY_ASWTDI

O64 - Services: CurCS - 8/08/2007 - C:\Program Files\ATKGFNEX\GFNEXSrv.exe - ATKGFNEX Service(ATKGFNEXSrv) .(.Pas de propriétaire - GFNEXSrv.) - LEGACY_ATKGFNEXSRV

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\atksgt.sys - atksgt (atksgt) .(...) - LEGACY_ATKSGT

O64 - Services: CurCS - (.not file.) - avgntflt (avgntflt) .(...) - LEGACY_AVGNTFLT

O64 - Services: CurCS - (.not file.) - b204a80a (b204a80a) .(...) - LEGACY_B204A80A

O64 - Services: CurCS - (.not file.) - BDFM (BDFM) .(...) - LEGACY_BDFM

O64 - Services: CurCS - (.not file.) - bdfsfltr (bdfsfltr) .(...) - LEGACY_BDFSFLTR

O64 - Services: CurCS - (.not file.) - bdftdif (bdftdif) .(...) - LEGACY_BDFTDIF

O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP

O64 - Services: CurCS - C:\Program Files\ASUS\ASUSUpdate\BS_DEF.sys (.not file.) - BS_DEF (BS_DEF) .(...) - LEGACY_BS_DEF

O64 - Services: CurCS - C:\Users\THOMAS~1\AppData\Local\Temp\cpuz132\cpuz132_x32.sys (.not file.) - cpuz132 (cpuz132) .(...) - LEGACY_CPUZ132

O64 - Services: CurCS - (.not file.) - d476ec47 (d476ec47) .(...) - LEGACY_D476EC47

O64 - Services: CurCS - (.not file.) - dump_wmimmc (dump_wmimmc) .(...) - LEGACY_DUMP_WMIMMC

O64 - Services: CurCS - (.not file.) - DrWeb Protection (DwProt) .(...) - LEGACY_DWPROT

O64 - Services: CurCS - (.not file.) - ed0e7c75 (ed0e7c75) .(...) - LEGACY_ED0E7C75

O64 - Services: CurCS - C:\Windows\system32\Drivers\EXFAT.sys - (.not file.) - exFAT File System Driver (exfat) .(...) - LEGACY_EXFAT

O64 - Services: CurCS - (.not file.) - f42d9658 (f42d9658) .(...) - LEGACY_F42D9658

O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT

O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC

O64 - Services: CurCS - 18/02/2010 - C:\Program Files\Google\Update\GoogleUpdate.exe - Service Google Update (gupdate)(gupdate) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE

O64 - Services: CurCS - 9/06/2010 - C:\Windows\System32\DRIVERS\kl1.sys - kl1(KL1) .(.Kaspersky Lab ZAO - Kaspersky Unified Driver.) - LEGACY_KL1

O64 - Services: CurCS - 9/06/2010 - C:\Windows\System32\DRIVERS\kl2.sys - kl2(kl2) .(.Kaspersky Lab ZAO - Kaspersky Unified Driver.) - LEGACY_KL2

O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\klif.sys - Kaspersky Lab Driver(KLIF) .(.Kaspersky Lab - Klif Mini-Filter [fre_wlh_x86].) - LEGACY_KLIF

O64 - Services: CurCS - 22/04/2010 - C:\Windows\System32\DRIVERS\klim6.sys - Kaspersky Anti-Virus NDIS 6 Filter(KLIM6) .(.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - LEGACY_KLIM6

O64 - Services: CurCS - (.not file.) - klmd25 (klmd25) .(...) - LEGACY_KLMD25

O64 - Services: CurCS - (.not file.) - klmdb (klmdb) .(...) - LEGACY_KLMDB

O64 - Services: CurCS - (.not file.) - kwdcipob (kwdcipob) .(...) - LEGACY_KWDCIPOB

O64 - Services: CurCS - C:\Windows\System32\DRIVERS\lirsgt.sys - lirsgt (lirsgt) .(...) - LEGACY_LIRSGT

O64 - Services: CurCS - 20/12/2010 - C:\Windows\system32\drivers\mbam.sys - MBAMProtector(MBAMProtector) .(.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - LEGACY_MBAMPROTECTOR

O64 - Services: CurCS - (.not file.) - mbr (mbr) .(...) - LEGACY_MBR

O64 - Services: CurCS - 7/03/2011 - C:\Windows\System32\DRIVERS\molcpeth.sys - MusicLab NDIS MolCpEth Protocol(molcpeth) .(.MusicLab, Inc. - MolCp III Protocol Driver.) - LEGACY_MOLCPETH

O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS

O64 - Services: CurCS - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVENG.sys (.not file.) - NAVENG (NAVENG) .(...) - LEGACY_NAVENG

O64 - Services: CurCS - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVEX15.sys (.not file.) - NAVEX15 (NAVEX15) .(...) - LEGACY_NAVEX15

O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY

O64 - Services: CurCS - (.not file.) - (.not file.) - Norton Internet Security (Norton Internet Security) .(...) - LEGACY_NORTON_INTERNET_SECURITY

O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS

O64 - Services: CurCS - 18/08/2010 - C:\Windows\system32\GameMon.des - nProtect GameGuard Service(npggsvc) .(.INCA Internet Co., Ltd. - nProtect Game Monitor Rev 1614.) - LEGACY_NPGGSVC

O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL

O64 - Services: CurCS - (.not file.) - Profos (Profos) .(...) - LEGACY_PROFOS

O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV

O64 - Services: CurCS - 3/02/2009 - C:\Windows\System32\drivers\sfdrv01.sys - StarForce Protection Environment Driver (version 1.x)(sfdrv01) .(.Protection Technology (StarForce) - FrontLine Environment Driver.) - LEGACY_SFDRV01

O64 - Services: CurCS - 14/06/2006 - C:\Windows\System32\drivers\sfhlp02.sys - StarForce Protection Helper Driver (version 2.x)(sfhlp02) .(.Protection Technology (StarForce) - FrontLine Helper Driver.) - LEGACY_SFHLP02

O64 - Services: CurCS - 10/07/2006 - C:\Windows\System32\drivers\sfsync02.sys - StarForce Protection Synchronization Driver (version 2.x)(sfsync02) .(.Protection Technology - StarForce Protection Synchronization Driver.) - LEGACY_SFSYNC02

O64 - Services: CurCS - 8/02/2007 - C:\Windows\System32\drivers\sfvfs02.sys - StarForce Protection VFS Driver (version 2.x)(sfvfs02) .(.Protection Technology (StarForce) - FrontLine File System Driver.) - LEGACY_SFVFS02

O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR

O64 - Services: CurCS - (.not file.) - sptd (sptd) .(...) - LEGACY_SPTD

O64 - Services: CurCS - C:\Windows\system32\drivers\NIS\1000000.07D\SRTSP.sys (.not file.) - SRTSP (SRTSP) .(...) - LEGACY_SRTSP

O64 - Services: CurCS - (.not file.) - Trufos (Trufos) .(...) - LEGACY_TRUFOS

O64 - Services: CurCS - (.not file.) - UnlockerDriver5 (UnlockerDriver5) .(...) - LEGACY_UNLOCKERDRIVER5

O64 - Services: CurCS - (.not file.) - Zone Alarm Firewall Driver (Vsdatant) .(...) - LEGACY_VSDATANT

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

---\\ Search Browser Infection (O69)

O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - Bing

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing

O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} [DefaultScope] - (Google) - Google

O69 - SBI: SearchScopes [HKCU] {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} - (DAEMON Search) - DAEMON-Search.com :: EXPLORE

---\\ Internet Feature Controls (O81)

O81 - IFC: Internet Feature Controls [HKUS\.DEFAULT] [FEATURE_BROWSER_EMULATION] -- svchost.exe

O81 - IFC: Internet Feature Controls [HKUS\S-1-5-18] [FEATURE_BROWSER_EMULATION] -- svchost.exe

---\\ Recherche particuliere à la racine de certains dossiers (O84)

[MD5.73709547A3B136DE4FCFDE3EF78C1B8F] [sPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\Thomas Mailleux\AppData\Roaming\PnkBstrK.sys [138056]

---\\ Firewall Active Exception List (FirewallRules) (O87)

O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus de l’autorité de sécurité locale.) -- C:\Windows\system32\lsass.exe

O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe

O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe

O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "NetPres-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe

O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe

O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe

O87 - FAEL: "WinCollab-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe

O87 - FAEL: "WinCollab-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe

O87 - FAEL: "WinCollab-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe

O87 - FAEL: "WinCollab-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe

O87 - FAEL: "WinCollab-DFSR-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe

O87 - FAEL: "WinCollab-DFSR-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe

O87 - FAEL: "{E5665D6C-90A0-45FB-A52D-EC14CBD1EDFC}" | In - Public - P6 - TRUE | .(.Adobe Systems Incorporated - Adobe CS4 Service Manager.) -- C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe

O87 - FAEL: "{E56798F4-2B8A-4974-8942-76DDCA8A781C}" | In - Public - P17 - TRUE | .(.Adobe Systems Incorporated - Adobe CS4 Service Manager.) -- C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe

O87 - FAEL: "{856C2FE5-7C4F-40E6-A5C2-44D7A0DE7ACE}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe

O87 - FAEL: "{3462663E-DACA-4FDF-A457-7A65B84A8655}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe

O87 - FAEL: "{57A30ABB-2CB0-4F4D-ABCA-7E85C747F715}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe

O87 - FAEL: "TCP Query User{C208E31B-3A0F-446A-9F23-A590D1B78566}D:\steam\steam.exe" | In - Public - P6 - TRUE | .(.Valve Corporation - Steam.) -- D:\steam\steam.exe

O87 - FAEL: "UDP Query User{4110A9FE-CB93-4C31-991C-E041D4A2AC02}D:\steam\steam.exe" | In - Public - P17 - TRUE | .(.Valve Corporation - Steam.) -- D:\steam\steam.exe

O87 - FAEL: "TCP Query User{AF2EC8AA-F0B5-4E92-ACAA-2F3557BEE902}C:\windows\system32\dplaysvr.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application d'assistance Microsoft DirectPlay.) -- C:\windows\system32\dplaysvr.exe

O87 - FAEL: "UDP Query User{72E2B985-0F72-4219-8BB6-4BDD163E33EC}C:\windows\system32\dplaysvr.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Application d'assistance Microsoft DirectPlay.) -- C:\windows\system32\dplaysvr.exe

O87 - FAEL: "{85D142AB-1D13-4DC9-8878-E038FB07F827}" | In - Public - P6 - TRUE | .(.THQ Canada Inc. - RelicCOH.) -- C:\Program Files\THQ\Company of Heroes\RelicCOH.exe

O87 - FAEL: "{8461ACEE-774E-4E7A-B5C3-4E2E0586610A}" | In - Public - P17 - TRUE | .(.THQ Canada Inc. - RelicCOH.) -- C:\Program Files\THQ\Company of Heroes\RelicCOH.exe

O87 - FAEL: "{693D5101-C62B-4E36-A4C0-FB368DB37CF8}" | In - Public - P6 - TRUE | .(.THQ Canada Inc. - Relic Patch Download Manager.) -- C:\Program Files\THQ\Company of Heroes\RelicDownloader\RelicDownloader.exe

O87 - FAEL: "{0A821CD4-34DD-4F02-9315-E23BE0E6D897}" | In - Public - P17 - TRUE | .(.THQ Canada Inc. - Relic Patch Download Manager.) -- C:\Program Files\THQ\Company of Heroes\RelicDownloader\RelicDownloader.exe

O87 - FAEL: "TCP Query User{1A659944-A968-4E59-B006-1B1DBCA03E03}C:\program files\thq\company of heroes\relicdownloader\relicdownloader.exe" | In - Private - P6 - TRUE | .(.THQ Canada Inc..) -- C:\program files\thq\company of heroes\relicdownloader\relic

O87 - FAEL: "UDP Query User{B43AE365-CF54-4FC9-984D-9A04725B217D}C:\program files\thq\company of heroes\relicdownloader\relicdownloader.exe" | In - Private - P17 - TRUE | .(.THQ Canada Inc..) -- C:\program files\thq\company of heroes\relicdownloader\reli

O87 - FAEL: "TCP Query User{86488ED4-4CD0-4D62-939D-561C3489C0E8}C:\program files\thq\company of heroes\reliccoh.exe" | In - Private - P6 - TRUE | .(.THQ Canada Inc. - RelicCOH.) -- C:\program files\thq\company of heroes\reliccoh.exe

O87 - FAEL: "UDP Query User{28534C9C-0773-4CBB-B7A6-CBA853504763}C:\program files\thq\company of heroes\reliccoh.exe" | In - Private - P17 - TRUE | .(.THQ Canada Inc. - RelicCOH.) -- C:\program files\thq\company of heroes\reliccoh.exe

O87 - FAEL: "{E396BD10-BC0F-4158-A43E-5D4C016A4BBE}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\System32\PnkBstrA.exe

O87 - FAEL: "{BABC7DAE-7A09-4601-86A0-5A0114FDF677}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\System32\PnkBstrA.exe

O87 - FAEL: "{297B2EA4-A3AB-475C-BC17-A0B81EAC400D}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\System32\PnkBstrB.exe

O87 - FAEL: "{55D31991-4270-4009-9B12-4CC2173B8C65}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\System32\PnkBstrB.exe

O87 - FAEL: "TCP Query User{DBA2025F-D127-4E8E-B5B5-E04456A94A1D}C:\windows\system32\dpnsvr.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Serveur Microsoft DirectPlay 8.) -- C:\windows\system32\dpnsvr.exe

O87 - FAEL: "UDP Query User{AB161D45-2286-4133-8E3D-8A0D720ACA52}C:\windows\system32\dpnsvr.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Microsoft DirectPlay 8.) -- C:\windows\system32\dpnsvr.exe

O87 - FAEL: "TCP Query User{8D66F560-D547-4EA5-8F4A-52E4A9CABC57}C:\windows\system32\dplaysvr.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application d'assistance Microsoft DirectPlay.) -- C:\windows\system32\dplaysvr.exe

O87 - FAEL: "UDP Query User{CC5F661B-ADFC-4373-B977-02537057D9DC}C:\windows\system32\dplaysvr.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Application d'assistance Microsoft DirectPlay.) -- C:\windows\system32\dplaysvr.exe

O87 - FAEL: "TCP Query User{496C64E2-2E50-4864-8AD8-B17AE9EC957E}C:\windows\system32\dpnsvr.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Serveur Microsoft DirectPlay 8.) -- C:\windows\system32\dpnsvr.exe

O87 - FAEL: "UDP Query User{C09900DF-2DF2-45C7-9BED-D84EC1269CB7}C:\windows\system32\dpnsvr.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Microsoft DirectPlay 8.) -- C:\windows\system32\dpnsvr.exe

O87 - FAEL: "{027298D9-ABF0-4054-8CB9-F06B0512B852}" | In - Public - P6 - TRUE | .(...) -- C:\Windows\System32\PnkBstrA.exe

O87 - FAEL: "{6B4905F6-5288-4222-B8E6-6246AE6FA41F}" | In - Public - P17 - TRUE | .(...) -- C:\Windows\System32\PnkBstrA.exe

O87 - FAEL: "{87BF7C43-3998-48DE-B60E-67D3E6BCFA47}" | In - Public - P6 - TRUE | .(...) -- C:\Windows\System32\PnkBstrB.exe

O87 - FAEL: "{5E28188B-6EA6-442D-BA4C-DD8EA4760BEB}" | In - Public - P17 - TRUE | .(...) -- C:\Windows\System32\PnkBstrB.exe

O87 - FAEL: "{9363907C-8978-41F9-8203-A39206C77528}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe

O87 - FAEL: "{5D4FF24C-8ECD-4260-A6BC-9002F85D8802}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe

O87 - FAEL: "{859DE0C2-466D-4BAB-A4CC-07793CA8F5E8}" | In - Private - P6 - TRUE | .(.Sports Interactive - Football Manager 2011 11.2.1f164501.) -- D:\Football Manager 2011\fm.exe

O87 - FAEL: "{14F3CE58-8E1F-4BB1-AF02-21BD140CBD45}" | In - Private - P17 - TRUE | .(.Sports Interactive - Football Manager 2011 11.2.1f164501.) -- D:\Football Manager 2011\fm.exe

O87 - FAEL: "{CE4F9C46-95A9-499A-AB0F-80AFC38E0BC7}" | In - Private - P6 - TRUE | .(.Codemasters - F1 2010 Executable.) -- D:\F1 2010\F1_2010_game.exe

O87 - FAEL: "{57E6CBD2-E77C-4117-B72D-90D6ED00BAC4}" | In - Private - P17 - TRUE | .(.Codemasters - F1 2010 Executable.) -- D:\F1 2010\F1_2010_game.exe

O87 - FAEL: "{3D69B1FE-E021-48A3-BAF3-7EB1C28AC32F}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe

O87 - FAEL: "TCP Query User{0AE7CEFB-5424-4C7C-8263-F3E8ACEA17B3}D:\fifa 11\fifa 2011\game\fifa.exe" | In - Private - P6 - TRUE | .(.Electronic Arts - FIFA 11.) -- D:\fifa 11\fifa 2011\game\fifa.exe

O87 - FAEL: "UDP Query User{F32D3A23-B6CE-4EBE-A515-A130472670FF}D:\fifa 11\fifa 2011\game\fifa.exe" | In - Private - P17 - TRUE | .(.Electronic Arts - FIFA 11.) -- D:\fifa 11\fifa 2011\game\fifa.exe

O87 - FAEL: "TCP Query User{A8A5C038-24F8-4A79-8334-F6D28066B4E5}D:\wot\world_of_tanks_closed_beta\wotlauncher.exe" | In - Private - P6 - TRUE | .(.Wargaming.net - World of Tanks Launcher.) -- D:\wot\world_of_tanks_closed_beta\wotlauncher.exe

O87 - FAEL: "UDP Query User{85986C3A-0A45-43EF-99ED-5D0131DD5F1C}D:\wot\world_of_tanks_closed_beta\wotlauncher.exe" | In - Private - P17 - TRUE | .(.Wargaming.net - World of Tanks Launcher.) -- D:\wot\world_of_tanks_closed_beta\wotlauncher.exe

O87 - FAEL: "TCP Query User{478FCE29-02B6-4A4C-B72C-ACD06D051549}D:\wot\world_of_tanks_closed_beta\worldoftanks.exe" | In - Private - P6 - TRUE | .(.Wargaming.net - World of Tanks.) -- D:\wot\world_of_tanks_closed_beta\worldoftanks.exe

O87 - FAEL: "UDP Query User{8A476E74-EDC0-4A7D-A188-E9C82BA2E256}D:\wot\world_of_tanks_closed_beta\worldoftanks.exe" | In - Private - P17 - TRUE | .(.Wargaming.net - World of Tanks.) -- D:\wot\world_of_tanks_closed_beta\worldoftanks.exe

O87 - FAEL: "TCP Query User{26FCE1B9-F8EB-4BA3-9FEB-3493F70FEE58}D:\wot\world_of_tanks_closed_beta\wotlauncher.exe" | In - Public - P6 - TRUE | .(.Wargaming.net - World of Tanks Launcher.) -- D:\wot\world_of_tanks_closed_beta\wotlauncher.exe

O87 - FAEL: "UDP Query User{EDA16440-074F-4610-AAF8-58899B5E281A}D:\wot\world_of_tanks_closed_beta\wotlauncher.exe" | In - Public - P17 - TRUE | .(.Wargaming.net - World of Tanks Launcher.) -- D:\wot\world_of_tanks_closed_beta\wotlauncher.exe

O87 - FAEL: "TCP Query User{DCF16FCE-490D-40A3-A9E0-1B1A38D4F1C3}D:\wot\world_of_tanks_closed_beta\worldoftanks.exe" | In - Public - P6 - TRUE | .(.Wargaming.net - World of Tanks.) -- D:\wot\world_of_tanks_closed_beta\worldoftanks.exe

O87 - FAEL: "UDP Query User{253B6174-805D-49AC-B78F-D1C5AE40798C}D:\wot\world_of_tanks_closed_beta\worldoftanks.exe" | In - Public - P17 - TRUE | .(.Wargaming.net - World of Tanks.) -- D:\wot\world_of_tanks_closed_beta\worldoftanks.exe

O87 - FAEL: "TCP Query User{8FBBDD2B-A601-4E30-9DBF-4FFE8B00F9B8}D:\fifa 11\fifa 2011\game\fifa.exe" | In - Public - P6 - TRUE | .(.Electronic Arts - FIFA 11.) -- D:\fifa 11\fifa 2011\game\fifa.exe

O87 - FAEL: "UDP Query User{8607E31A-C643-4638-B07C-CD1D4E43F9B8}D:\fifa 11\fifa 2011\game\fifa.exe" | In - Public - P17 - TRUE | .(.Electronic Arts - FIFA 11.) -- D:\fifa 11\fifa 2011\game\fifa.exe

O87 - FAEL: "{11ACB2BD-20BE-45DE-9F57-6EDF3AEAA6C5}" | In - Public - P6 - TRUE | .(.Firaxis Games - Civilization V Launcher.) -- D:\Steam\steamapps\common\sid meier's civilization v\Launcher.exe

O87 - FAEL: "{E279F2C7-F679-49F7-AE95-125D8531BB41}" | In - Public - P17 - TRUE | .(.Firaxis Games - Civilization V Launcher.) -- D:\Steam\steamapps\common\sid meier's civilization v\Launcher.exe

O87 - FAEL: "{C0495525-C0EE-4DDD-BCAA-53765B3D48E0}" | In - Domain - P6 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe

O87 - FAEL: "{324544A6-B4C0-4461-BC96-060021E97E0E}" | In - Domain - P17 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe

O87 - FAEL: "{B7ABE516-302F-4BB6-AA20-36150C4E28F4}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe

O87 - FAEL: "{BA6DB99B-6E99-403F-9097-273DC8829F1A}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe

O87 - FAEL: "{D23E7AEA-6A6E-445E-9DAE-7511C5AED9AA}" | In - None - P17 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe

O87 - FAEL: "{8BC5A1DA-2FF2-4679-AF4E-4EF40C27E826}" | In - Private - P6 - TRUE | .(.Firaxis Games - Civilization V Launcher.) -- D:\Steam\steamapps\common\sid meier's civilization v\Launcher.exe

O87 - FAEL: "{B5A794D3-AA66-434E-89C4-99C0872FBB29}" | In - Private - P17 - TRUE | .(.Firaxis Games - Civilization V Launcher.) -- D:\Steam\steamapps\common\sid meier's civilization v\Launcher.exe

O87 - FAEL: "TCP Query User{73AEBCA8-8B08-41F6-99A3-E007BDF757C7}C:\program files\electronic arts\battlefield bad company 2 édition digital deluxe\bfbc2game.exe" | In - Private - P6 - TRUE | .(.EA Digital Illusions CE AB.) -- C:\program files\electronic

O87 - FAEL: "UDP Query User{1D3B8C64-189A-4991-A611-EFB20BDB42BF}C:\program files\electronic arts\battlefield bad company 2 édition digital deluxe\bfbc2game.exe" | In - Private - P17 - TRUE | .(.EA Digital Illusions CE AB.) -- C:\program files\electronic

O87 - FAEL: "TCP Query User{CD567700-2993-48A5-ACB1-84BA83993193}C:\program files\electronic arts\battlefield bad company 2 édition digital deluxe\bfbc2game.exe" | In - Public - P6 - TRUE | .(.EA Digital Illusions CE AB.) -- C:\program files\electronic a

O87 - FAEL: "UDP Query User{DB986FB8-D36C-4EED-A4BB-B3407BF44F55}C:\program files\electronic arts\battlefield bad company 2 édition digital deluxe\bfbc2game.exe" | In - Public - P17 - TRUE | .(.EA Digital Illusions CE AB.) -- C:\program files\electronic

O87 - FAEL: "{EE867657-24CC-4C59-B715-D0ED1E6702FC}" | In - Public - P6 - TRUE | .(.The Creative Assembly Ltd - Total War: SHOGUN 2.) -- D:\Steam\steamapps\common\total war shogun 2\Shogun2.exe

O87 - FAEL: "{38EBF3C7-81B9-4D7E-9FB0-A58F9C5E1CE8}" | In - Public - P17 - TRUE | .(.The Creative Assembly Ltd - Total War: SHOGUN 2.) -- D:\Steam\steamapps\common\total war shogun 2\Shogun2.exe

O87 - FAEL: "{0EA8320A-92A0-4AEC-8FB3-62A06EDEF077}" | In - Private - P6 - TRUE | .(.The Creative Assembly Ltd - Total War: SHOGUN 2.) -- D:\Steam\steamapps\common\total war shogun 2\Shogun2.exe

O87 - FAEL: "{FBF31487-4948-40BD-893F-1742602F5E3C}" | In - Private - P17 - TRUE | .(.The Creative Assembly Ltd - Total War: SHOGUN 2.) -- D:\Steam\steamapps\common\total war shogun 2\Shogun2.exe

O87 - FAEL: "TCP Query User{5FBDF2A8-A795-4816-8A7B-1C74B5CFD7A0}D:\steam\steam.exe" | In - Private - P6 - TRUE | .(.Valve Corporation - Steam.) -- D:\steam\steam.exe

O87 - FAEL: "UDP Query User{84702C03-D2DB-41F7-88F4-39B668EAECE2}D:\steam\steam.exe" | In - Private - P17 - TRUE | .(.Valve Corporation - Steam.) -- D:\steam\steam.exe

O87 - FAEL: "{0B04C3CA-CAAD-416C-ACF6-CA3127908CA6}" | In - Private - P6 - TRUE | .(.Cyanide - GameCenter.) -- C:\Program Files\Cyanide\GameCenter\GameCenter.exe

O87 - FAEL: "{BEC05280-3994-495B-9865-DA755EC0B121}" | In - Private - P17 - TRUE | .(.Cyanide - GameCenter.) -- C:\Program Files\Cyanide\GameCenter\GameCenter.exe

O87 - FAEL: "{C7B1A633-4DB9-4C62-B5AA-5B50AE35345F}" | In - Private - P6 - TRUE | .(.Cyanide - Pro Cycling Manager.) -- D:\Pro Cycling 2010\Pro Cycling Manager - Saison 2010\PCM.exe

O87 - FAEL: "{54DB3D0B-B2AA-4BFC-9518-ABE74808EA9F}" | In - Private - P17 - TRUE | .(.Cyanide - Pro Cycling Manager.) -- D:\Pro Cycling 2010\Pro Cycling Manager - Saison 2010\PCM.exe

O87 - FAEL: "{8894F76D-DF02-4348-AECE-13E2E2B60111}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - AutorunApp.) -- D:\Pro Cycling 2010\Pro Cycling Manager - Saison 2010\Autorun\exe\Autorun.exe

O87 - FAEL: "{B57A0A01-2765-4E60-9D50-C381FEBE3D38}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - AutorunApp.) -- D:\Pro Cycling 2010\Pro Cycling Manager - Saison 2010\Autorun\exe\Autorun.exe

O87 - FAEL: "TCP Query User{5C101EF7-336E-4B97-BA4D-01735B793544}C:\program files\audiomulch 2.0.2\mulch2.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files\audiomulch 2.0.2\mulch2.exe

O87 - FAEL: "UDP Query User{A1EF5237-8785-4BA6-B81A-63C5244BC0BC}C:\program files\audiomulch 2.0.2\mulch2.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files\audiomulch 2.0.2\mulch2.exe

O87 - FAEL: "{77E27C83-D64C-45F2-A6B9-ADEC2E469B36}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O87 - FAEL: "{1ED47B45-A440-4F28-8CED-DBFD65ED7421}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

---\\ Scan Additionnel (O88)

Database Version : 6367 - (28/04/2011)

Number of Keys Founds (Clés trouvées) : 2

Number of Directories Founds (Dossiers trouvés) : 0

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}] =>Spyware.BHO

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}] =>Spyware.BHO

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SS - | Auto 28/04/2011 316888 | (appdrvrem01) . (.Protection Technology.) - C:\Windows\System32\appdrvrem01.exe

SR - | Auto 5/01/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

SR - | Auto 14/08/2008 100920 | (ASLDRService) . (...) - C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe

SS - | Disabled 8/08/2007 94208 | (ATKGFNEXSrv) . (...) - C:\Program Files\ATKGFNEX\GFNEXSrv.exe

SR - | Auto 2/11/2010 365336 | (AVP) . (.Kaspersky Lab ZAO.) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe

SR - | Auto 27/07/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe

SR - | Auto 12/04/2002 57344 | (Brother XP spl Service) . (.brother Industries Ltd.) - C:\Windows\system32\brsvc01a.exe

SS - | Demand 19/02/2010 655624 | (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

SS - | Auto 18/02/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe

SS - | Demand 18/02/2010 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe

SS - | Demand 4/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

SR - | Auto 20/12/2010 363344 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

SS - | Disabled 18/08/2010 3717904 | (npggsvc) . (.INCA Internet Co., Ltd..) - C:\Windows\system32\GameMon.des

SR - | Auto 7/04/2011 612456 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe

SR - | Auto 8/04/2011 2218600 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

SR - | Auto 3/04/2011 75136 | (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe

SR - | Auto 7/04/2009 70880 | (SRS_VolSync_Service) . (.SRS Labs, Inc..) - C:\Program Files\SRS Labs\SRS Premium Sound\SRS_VolSync.exe

SR - | Auto 7/04/2011 378472 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

SR - | Auto 21/01/2008 21504 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover

Run by Thomas Mailleux at 30/04/2011 19:08:13

device: opened successfully

user: MBR read successfully

Disk trace:

called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll >>UNKNOWN [0xC49A84F0]<<

1 ntkrnlpa!IofCallDriver[0xE2C7A912] -> \Device\Harddisk0\DR0[0xC4389970]

3 CLASSPNP[0xBBF638B3] -> ntkrnlpa!IofCallDriver[0xE2C7A912] -> [0xC36FAB68]

5 acpi[0xBB29E6BC] -> ntkrnlpa!IofCallDriver[0xE2C7A912] -> [0xC3AC5030]

\Driver\nvstor32[0xC448C310] -> IRP_MJ_CREATE -> 0xC49A84F0

kernel: MBR read successfully

detected disk devices:

\Device\0000006a -> \??\SCSI#Disk&Ven_ST925031&Prod_5AS#4&2889a776&0&000000#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} device not found

detected hooks:

user & kernel MBR OK

Warning: possible TDL3 rootkit infection !

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

Written by ad13, http://ad13.geekstog

Run by Thomas Mailleux at 30/04/2011 19:08:21

********* Dump file Name *********

C:\PhysicalDisk0_MBR.bin

---\\ Liste des émulateurs de CD/DVD (Hook du MBR)

O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite

End of the scan (1610 lines in 03mn 37s)(0)

bleuet · le 30 avril 2011

DIAG une fois installé, utiliser l'image "loupe" pour faire l'analyse.Patienter... Quand l'analyse est finir, utilier l'image "disquette" bleur à côté et enregistrer la rapport DIAG.TXT sur le Bureau.

Ouvrir

Cijoint.fr - Service gratuit de dépôt de fichiers

A partir de ce lien : cijoint.fr

Sur la page qui s'ouvre :

* Cliquer sur "Parcourir" dans la partie "Sélectionnez le fichier que vous souhaitez déposer"

* Sélectionner le rapport ZHPdiag.txt qui se trouve sur le Bureau

* Cliquer ensuite sur " Cliquez ici pour déposer le fichier ". Un lien va se former.

Il ne reste plus qu'à copier/coller ce lien sur le forum.

Bleuet (30/04/2011)

le 30 avril 2011

Cijoint.fr - Service gratuit de dépôt de fichiers

Merci!

bleuet · le 30 avril 2011

/ ! \ TON PC EST INFECTE / ! \

Demande STP le transfert de ton sujet vers le FORUM SECURITE > ANALYSES ET ERADICATION MALWARES

Tu peux le faire par clic sur le bouton ci-dessous

en précisant ton intention et en collant le lien du sujet à transférer.

Tu seras pris en charge par un pro de la désinfection.

Bleuet (30/04/2011)

Galimatias07 · le 1 mai 2011

Merci bleuet! J'attend les GhostBusters alors

Connexion

Pas encore inscrit ?

Invasion Virus!!!

Messages recommandés

Invité Galimatias

Invité Galimatias

bleuet

Invité Galimatias

Invité Galimatias

Invité Galimatias

bleuet

Invité Galimatias

bleuet

Galimatias07

Rejoindre la conversation

En ligne récemment 0 membre est en ligne

Zebulon

Outils en ligne

Naviguer