Problème de DLL

[arcisse]

Bonjour à tous,

suite à l'apparition régulière des messages d'erreur suivant :

L'application ou la DLL C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL n'est pas une image Windows valide.

 

J'ai procédé à une analyse par ZHPDIAG dont vous trouverez le rapport ci-dessous.

Si quelqu'un à la gentillesse de m'indiquer le reste de la marche à suivre, ce serait fort agréable.

Cordialement.

 

 

 

Rapport de ZHPDiag v1.27.204 par Nicolas Coolman, Update du 14/05/2011

Run by Vivien at 17/05/2011 08:51:50

Web site : ZHPDiag Outil de diagnostic

 

 

---\\ Web Browser

MSIE: Internet Explorer v6.0.2900.5512

MFIE: Mozilla Firefox v3.6.13 (fr) (Defaut)

MFIE: Mozilla Firefox 4.0.1 v3.6.13 (fr) (Defaut)

 

---\\ System Information

Windows XP Professional Service Pack 3 (Build 2600)

Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel

Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 2037 MB (66% free)

System Restore: Activé (Enable)

System drive C: has 122 GB (81%) free of 149 GB

 

---\\ Logged in mode

Computer Name: MAGALI

User Name: Vivien

All Users Names: Vivien, SUPPORT_388945a0, HelpAssistant, Administrateur,

Unselected Option: O45,O61,O62,O65,O66,O82

Logged in as Administrator

 

---\\ Environnement Variables

%AppData%=C:\Documents and Settings\Vivien\Application Data

%LocalAppData%=C:\Documents and Settings\Vivien\Local Settings\Application Data

%StartMenu%=C:\Documents and Settings\Vivien\Menu Démarrer

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 122 Go of 149 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 149 Go of 149 Go)

G:\ Hard drive, Flash drive, Thumb drive (Free 152 Go of 186 Go)

H:\ CD-ROM drive (Not Inserted)

 

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

 

 

 

---\\ Recherche particulière de fichiers génériques

[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824]

[MD5.C53F33C81D4070E9E7BAFC57FB356AF8] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.17/02/2011 14:51:59.) -- C:\WINDOWS\system32\wininet.dll [671232]

[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000]

[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 19:40:30.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512]

[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 20:15:53.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574976]

 

 

 

---\\ Processus lancés

[MD5.4AF61A15B3614FEF25FE93EA2FABD620] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe [265400]

[MD5.73686FE0B2E0469F89FD2075BE724704] - (.Apple Computer, Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [229376]

[MD5.E731921DB2E17DCD3DB472FAD5549C57] - (.Sun Microsystems, Inc. - Java Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]

[MD5.288778D9E2D1C7E8A5DBD5C6DB8046B0] - (.AVG Technologies CZ, s.r.o. - AVG IDS application.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [6128720]

[MD5.7E6741A17CFDCD700DA5B6EC624F83B3] - (.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files\AVG\AVG10\avgnsx.exe [1084256]

[MD5.B265AD2A5791B25C65F8F401764C53A9] - (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe [142104]

[MD5.DB28088CDADA0BE4A2896024393EFA93] - (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe [162584]

[MD5.C591E7DB162689C9A73A3BC9E5050F8E] - (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe [138008]

[MD5.6A8BC204BC31E7CFDD1373CDB247A36C] - (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.EXE [16132608]

[MD5.1AAD451CCBECE62987591B35AE8037A8] - (.Sonic Solutions - RoxMMTrayApp Module.) -- C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe [221184]

[MD5.0940767CB618E3EDD744161A00ADE5DB] - (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe [128296]

[MD5.A21E70B4F972CA396A80013D0D436350] - (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [620152]

[MD5.06516883E43F06D0DB1C9CBC422AE22C] - (...) -- C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe [536576]

[MD5.93DB1FF92B03D24738A71E6E4992DFD3] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [248552]

[MD5.4719ED2A9E1F0FF37BC3FC1999F4FFC4] - (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\Program Files\AVG\AVG10\avgtray.exe [2747744]

[MD5.43D083268A0919F3527A2837390BAF63] - (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe [218032]

[MD5.44F5561C38F33CB1BC99D34573067CBD] - (.Intel Corporation - igfxsrvc Module.) -- C:\WINDOWS\system32\igfxsrvc.exe [252696]

[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2260480]

[MD5.0CCE84F6F693478A769BFC1E993CBF67] - (.AVG Technologies CZ, s.r.o. - AVG IDS application.) -- C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe [737872]

[MD5.C551D15D5D0F875D7BF0BC4FBB6EB2D9] - (.Sonic Solutions - ROXHelpRunner Module.) -- C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe [10752]

[MD5.227846995AFEEFA70D328BF5334A86A5] - (.Macrovision Europe Ltd. - Activation Licensing Service.) -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848]

[MD5.DB1A23EE7DD2E5E04E7DE071A6BEF699] - (.Sun Microsystems, Inc. - Java Update Checker.) -- C:\Program Files\Fichiers communs\Java\Java Update\jucheck.exe [501480]

[MD5.CBE988F2111B0FC033E00CEA7ADF9C85] - (.Adobe Systems Incorporated - Adobe Acrobat 8.0.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrobat.exe [349808]

[MD5.AC42E793F760034FC6F0BACB17E94003] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [646144]

 

 

 

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)

M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml

M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\avg_igeared.xml

M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml

M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml

M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml

M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\MediaDICO-fr.xml

M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml

M3 - MFPP: Plugins - [Vivien] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml

P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll

P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.0.) -- C:\Program Files\Mozilla Firefox\Plugins\np32dsw.dll

P2 - FPN:Firefox Plugin Navigator . (.BitTorrent, Inc. - BitTorrent Plugin 1.) -- C:\Program Files\Mozilla Firefox\Plugins\npbittorrent.dll

P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll

P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll

P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL

P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll

P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.0.) -- C:\WINDOWS\system32\Adobe\Director\np32dsw.dll

P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_23 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

M0 - MFSP: prefs.js [Vivien - 8ijhikkj.default] www.google.fr

 

 

 

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Dell – The Official Site | Dell

R0 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Google

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Dell – The Official Site | Dell

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Google

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Google

R1 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = google

R1 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = Google

R1 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\Software\Microsoft\Internet Explorer\Main,Search Page = Google

R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} . (.Pas de propriétaire - AVG Security Toolbar.) (6.103.018.001) -- C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Bibliothèque d'objets et de contrôles de do.) (No version) -- %SystemRoot%\system32\shdocvw.dll

R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2

 

 

 

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

 

 

 

---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

 

 

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} . (.AVG Technologies CZ, s.r.o. - Safe Search for Internet Explorer.) -- C:\Program Files\AVG\AVG10\avgssie.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\Program Files\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} . (.Pas de propriétaire - AVG Security Toolbar.) -- C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll

O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} . (.Dell Inc. - BAE.dll.) -- C:\Program Files\Dell\BAE\BAE.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

 

 

 

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} . (.Pas de propriétaire - AVG Security Toolbar.) -- C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll

 

 

 

---\\ ---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [igfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe

O4 - HKLM\..\Run: [RTHDCPL] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.exe

O4 - HKLM\..\Run: [Alcmtr] . (.Realtek Semiconductor Corp. - Realtek Azalia Audio - Event Monitor.) -- C:\WINDOWS\ALCMTR.exe

O4 - HKLM\..\Run: [RoxWatchTray] . (.Sonic Solutions - RoxMMTrayApp Module.) -- C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe

O4 - HKLM\..\Run: [ECenter] . (...) -- C:\Dell\E-Center\EULALauncher.exe

O4 - HKLM\..\Run: [PDVDDXSrv] . (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe

O4 - HKLM\..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (.not file.)

O4 - HKLM\..\Run: [Acrobat Assistant 8.0] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Run: [samsung PanelMgr] . (...) -- C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe

O4 - HKLM\..\Run: [AVG_TRAY] . (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\Program Files\AVG\AVG10\avgtray.exe

O4 - HKLM\..\Run: [TrojanScanner] . (.Simply Super Software - Trojan Scanner.) -- C:\Program Files\Trojan Remover\Trjscan.exe

O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [iSUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe

O4 - HKCU\..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (.not file.)

O4 - HKCU\..\Run: [AlcoholAutomount] . (.Alcohol Soft Development Team - Alcohol Launcher.) -- C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe

O4 - HKCU\..\Run: [spybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

O4 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe

O4 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\..\Run: [iSUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe

O4 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (.not file.)

O4 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\..\Run: [AlcoholAutomount] . (.Alcohol Soft Development Team - Alcohol Launcher.) -- C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe

O4 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\..\Run: [spybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Adobe Reader Synchronizer.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Acrobat.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-1033-F400-7760-000000000003}\_SC_Acrobat.exe

 

 

 

---\\ ---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 9.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A91000000001}\SC_Reader.ico

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\DADSU-CTL-V08R09.lnk . (...) -- C:\Program Files\DADSU-CTL-V08R09\DADSU-CTL-V08R09.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation.) -- C:\Program Files\Microsoft Works\MSWorks.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox 4.0 Beta 11.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox 4.0 Beta 11\firefox.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\PowerDVD DX.lnk . (.CyberLink Corp..) -- C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Visionneuse Microsoft Office PowerPoint 2007.lnk . (...) -- C:\WINDOWS\Installer\{95120000-00AF-040C-0000-0000000FF1CE}\ppvwicon.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe

O4 - Global Startup: C:\Documents And Settings\Vivien\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe

O4 - Global Startup: C:\Documents And Settings\Vivien\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Documents And Settings\Vivien\Menu Démarrer\Programmes\Lecteur Windows Media.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe

O4 - Global Startup: C:\Documents And Settings\Vivien\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe

 

 

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: Ajouter au fichier PDF existant . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

O8 - Extra context menu item: Convertir en Adobe PDF . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

O8 - Extra context menu item: Convertir la sélection en Adobe PDF . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~3\Office12\EXCEL.exe

O8 - Extra context menu item: Sothink SWF Catcher . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Fichiers communs\SourceTec\SWF Catcher\InternetExplorer.htm

 

 

 

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO

O9 - Extra button: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (...) -- C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO

O9 - Extra button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} . (.SourceTec - Sothink SWF Catcher.) -- C:\Program Files\Fichiers communs\SourceTec\SWF Catcher\SWFCatcher.dll

O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.SourceTec - Sothink SWF Catcher.) -- C:\Program Files\Fichiers communs\SourceTec\SWF Catcher\SWFCatcher.dll

O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe

 

 

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Apple Computer, Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll

 

 

 

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} (CamfrogWEB Advanced Unicode Control) - http://www.visiogood.com/jalss/cfweb_activex.camfrogweb.com-advanced-2.0.2.20_instmodule.exe

 

 

 

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{0FC9E22F-9EC0-444B-AB8B-7CDC5772D2ED}: NameServer = 212.27.40.240

O17 - HKLM\System\CS1\Services\Tcpip\..\{0FC9E22F-9EC0-444B-AB8B-7CDC5772D2ED}: NameServer = 212.27.40.240

O17 - HKLM\System\CS2\Services\Tcpip\..\{0FC9E22F-9EC0-444B-AB8B-7CDC5772D2ED}: NameServer = 212.27.40.240

O17 - HKLM\System\CS3\Services\Tcpip\..\{0FC9E22F-9EC0-444B-AB8B-7CDC5772D2ED}: DhcpNameServer = 212.27.40.241 212.27.40.240

 

 

 

---\\ Protocole additionnel et piratage de protocole (O18)

O18 - Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} . (.Pas de propriétaire - AVG Security Toolbar.) -- C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll

O18 - Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} . (.AVG Technologies CZ, s.r.o. - Safe Search pluggable protocol.) -- C:\Program Files\AVG\AVG10\avgpp.dll

 

 

 

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll

O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll

O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll

O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll

O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll

O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll

O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll

O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll

O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll

O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll

O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\Windows\System32\WgaLogon.dll

O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll

 

 

 

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - AppInit_DLLs: . (.Pas de propriétaire - Pas de description.) - C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.dll

 

 

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll

O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\WINDOWS\system32\webcheck.dll

O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll

 

 

 

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)

O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll

 

 

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: (Adobe LM Service) . (.Adobe Systems - System Level Service Utility.) - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: (AVG Security Toolbar Service) . (.Pas de propriétaire - AVG Security Toolbar.) - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe

O23 - Service: (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG IDS application.) - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe

O23 - Service: (avgwd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files\AVG\AVG10\avgwdsvc.exe

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) . (.Apple Computer, Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: (dkab_device) . (.Pas de propriétaire - Printer Communication System.) - C:\WINDOWS\system32\DKabcoms.exe

O23 - Service: (dmadmin) . (.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - C:\WINDOWS\System32\dmadmin.exe

O23 - Service: (FLEXnet Licensing Service) . (.Macrovision Europe Ltd. - Activation Licensing Service.) - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: (RoxMediaDB9) . (.Sonic Solutions - RoxMediaDB9 Module.) - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe

O23 - Service: (RoxWatch9) . (.Sonic Solutions - RoxSniffer9 Module.) - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe

O23 - Service: (stllssvr) . (.MicroVision Development, Inc. - SureThing Labelflash Disc Printer Service M.) - C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe

O23 - Service: (wampapache) . (.Apache Software Foundation - Apache HTTP Server.) - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe

O23 - Service: (wampmysqld) . (...) - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe

 

 

 

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe

 

 

 

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Exit.job

[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (.Pas de propriétaire.) -- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.)

[MD5.00000000000000000000000000000000] [APT] [Exit] (.Pas de propriétaire.) -- C:\Windows\system\User.exe (.not file.)

 

 

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys

O41 - Driver: (Avgldx86) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\System32\DRIVERS\avgldx86.sys

O41 - Driver: (Avgmfx86) . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - C:\Windows\System32\DRIVERS\avgmfx86.sys

O41 - Driver: (Avgtdix) . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - C:\Windows\System32\DRIVERS\avgtdix.sys

O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys

O41 - Driver: (DLARTL_M) . (.Roxio - Shared Driver Component.) - C:\Windows\System32\Drivers\DLARTL_M.sys

O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys

O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys

O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys

O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys

O41 - Driver: (ISODrive) . (.EZB Systems, Inc. - ISO DVD/CD-ROM Device Driver.) - C:\Program Files\UltraISO\drivers\ISODrive.sys

O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys

O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre souris HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys

O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys

O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys

O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys

O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys

O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys

O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys

O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys

O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys

O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys

O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys

 

 

 

---\\ Logiciels installés (O42)

O42 - Logiciel: AHV content for Acrobat and Flash - (.Adobe Systems Incorporated.) [HKLM] -- {6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}

O42 - Logiciel: AVG 2011 - (.AVG Technologies.) [HKLM] -- AVG

O42 - Logiciel: AVG 2011 - (.AVG Technologies.) [HKLM] -- {B3AEF776-7FFF-4C50-A402-9119E3849EE0}

O42 - Logiciel: AVG 2011 - (.AVG Technologies.) [HKLM] -- {D4E53304-1F6C-4111-9872-1BCD2CF5B642}

O42 - Logiciel: Adobe Anchor Service CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {90176341-0A8B-4CCC-A78D-F862228A6B95}

O42 - Logiciel: Adobe Asset Services CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}

O42 - Logiciel: Adobe Bridge CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {9C9824D9-9000-4373-A6A5-D0E5D4831394}

O42 - Logiciel: Adobe Bridge Start Meeting - (.Adobe Systems Incorporated.) [HKLM] -- {08B32819-6EEF-4057-AEDA-5AB681A36A23}

O42 - Logiciel: Adobe BridgeTalk Plugin CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {B73CFB12-C814-4638-AFFD-7E3AAFAF0B4E}

O42 - Logiciel: Adobe CMaps - (.Adobe Systems Incorporated.) [HKLM] -- {A2B242BD-FF8D-4840-9DAA-9170EABEC59C}

O42 - Logiciel: Adobe Camera Raw 4.0 - (.Adobe Systems Incorporated.) [HKLM] -- {B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}

O42 - Logiciel: Adobe Color - Photoshop Specific - (.Adobe Systems Incorporated.) [HKLM] -- {A2D81E70-2A98-4A08-A628-94388B063C5E}

O42 - Logiciel: Adobe Color Common Settings - (.Adobe Systems Incorporated.) [HKLM] -- {DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}

O42 - Logiciel: Adobe Color EU Recommended Settings - (.Adobe Systems Incorporated.) [HKLM] -- {73B5D990-04EA-4751-B10F-5534770B91F2}

O42 - Logiciel: Adobe Color JA Extra Settings - (.Adobe Systems Incorporated.) [HKLM] -- {DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}

O42 - Logiciel: Adobe Color NA Extra Settings - (.Adobe Systems Incorporated.) [HKLM] -- {FF29A7E2-FF40-4D07-B7E4-2093DE59E10A}

O42 - Logiciel: Adobe Creative Suite 3 Design Premium - (.Adobe Systems Incorporated.) [HKLM] -- {B1EF7B00-8FCC-4209-BFB6-37C50B354B2A}

O42 - Logiciel: Adobe Default Language CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {B9B35331-B7E4-4E5C-BF4C-7BC87856124D}

O42 - Logiciel: Adobe Device Central CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {8D2BA474-F406-4710-9AE4-D4F22D21F0DD}

O42 - Logiciel: Adobe ExtendScript Toolkit 2 - (.Adobe Systems Incorporated.) [HKLM] -- {C2D69781-F392-4118-A5A7-C7E9C38DBFC2}

O42 - Logiciel: Adobe Extension Manager CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {BE5F3842-8309-4754-92D5-83E02E6077A3}

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin

O42 - Logiciel: Adobe Fonts All - (.Adobe Systems Incorporated.) [HKLM] -- {6ABE0BEE-D572-4FE8-B434-9E72A289431B}

O42 - Logiciel: Adobe Help Viewer CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {04AF207D-9A77-465A-8B76-991F6AB66245}

O42 - Logiciel: Adobe InDesign CS3 Icon Handler - (.Adobe Systems Incorporated.) [HKLM] -- {EA7B3CC4-366D-4CF6-8350-FD7A7034116E}

O42 - Logiciel: Adobe Linguistics CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {54793AA1-5001-42F4-ABB6-C364617C6078}

O42 - Logiciel: Adobe MotionPicture Color Files - (.Adobe Systems Incorporated.) [HKLM] -- {6B708481-748A-4EB4-97C1-CD386244FF77}

O42 - Logiciel: Adobe PDF Library Files - (.Adobe Systems Incorporated.) [HKLM] -- {D2559B88-CC9D-4B48-81BB-F492BAA9C48C}

O42 - Logiciel: Adobe Photoshop CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {C1FA4B3B-1625-4922-9C9D-780E8FCE161A}

O42 - Logiciel: Adobe Reader 9.1 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A91000000001}

O42 - Logiciel: Adobe SING CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {B671CBFD-4109-4D35-9252-3062D3CCB7B2}

O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM] -- {9D3F3D5A-BE6D-48C4-B51E-E2D6753ABCDE}

O42 - Logiciel: Adobe Shockwave Player 11 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player

O42 - Logiciel: Adobe Stock Photos CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {29E5EA97-5F74-4A57-B8B2-D4F169117183}

O42 - Logiciel: Adobe Type Support - (.Adobe Systems Incorporated.) [HKLM] -- {8E6808E2-613D-4FCD-81A2-6C8FA8E03312}

O42 - Logiciel: Adobe Update Manager CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {E69AE897-9E0B-485C-8552-7841F48D42D8}

O42 - Logiciel: Adobe Version Cue CS3 Client - (.Adobe Systems Incorporated.) [HKLM] -- {D0DFF92A-492E-4C40-B862-A74A173C25C5}

O42 - Logiciel: Adobe WAS CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {C5BD220A-EFE8-48A5-B70E-9503D535FACE}

O42 - Logiciel: Adobe WinSoft Linguistics Plugin - (.Adobe Systems Incorporated.) [HKLM] -- {184CE391-7E0E-4C63-9935-D7A10EDFD3C6}

O42 - Logiciel: Adobe XMP Panels CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {802771A9-A856-4A41-ACF7-1450E523C923}

O42 - Logiciel: Ajouter ou supprimer Adobe Creative Suite 3 Design Premium - (.Adobe Systems Incorporated.) [HKLM] -- Adobe_e79070e1ef25043cbd93191267ecaf0

O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver

O42 - Logiciel: BitTorrent - (.BitTorrent, Inc.) [HKCU] -- BitTorrent

O42 - Logiciel: Browser Address Error Redirector - (.Dell.) [HKLM] -- {62230596-37E5-4618-A329-0D21F529A86F}

O42 - Logiciel: CDex extraction audio - (.Pas de propriétaire.) [HKLM] -- CDex

O42 - Logiciel: CamStudio 2.0 Fr - (.Pas de propriétaire.) [HKLM] -- CamStudio 2.0 Fr_is1

O42 - Logiciel: CamfrogWEB Advanced ActiveX Plugin (remove only) - (.Pas de propriétaire.) [HKLM] -- CFWebAdvancedU

O42 - Logiciel: Comptabilité - (.Pas de propriétaire.) [HKLM] -- {9308A8EB-1C1B-11D4-BFC8-00C04F6180C7}

O42 - Logiciel: DADSU-CTL-V08R09 - (.GC.) [HKLM] -- DADSU-CTL-V08R09_is1

O42 - Logiciel: Dell Driver Reset Tool - (.Dell Inc..) [HKLM] -- {5905F42D-3F5F-4916-ADA6-94A3646AEE76}

O42 - Logiciel: Désinstallation du logiciel Dell - (.Dell, Inc..) [HKLM] -- Dell_HostCD

O42 - Logiciel: Désinstalleur HP LaserJet 1200 - (.Pas de propriétaire.) [HKLM] -- HP LaserJet 1200 Uninstaller

O42 - Logiciel: Foxmail 5.0 Fr. - (.Bodafox.) [HKLM] -- Foxmail_is1

O42 - Logiciel: High Definition Audio Driver Package - KB835221 - (.Microsoft Corporation.) [HKLM] -- KB835221WXP

O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5

O42 - Logiciel: Intel® Graphics Media Accelerator Driver - (.Pas de propriétaire.) [HKLM] -- HDMI

O42 - Logiciel: Intel® PRO Network Connections 12.1.8.0 - (.Intel.) [HKLM] -- {777CA40C-0206-4EF6-A0FC-618BF06BF8D0}

O42 - Logiciel: Java 6 Update 23 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216011FF}

O42 - Logiciel: Java 6 Update 4 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160040}

O42 - Logiciel: Java 6 Update 5 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160050}

O42 - Logiciel: Java 6 Update 7 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160070}

O42 - Logiciel: MSN - (.Pas de propriétaire.) [HKLM] -- MSNINST

O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: MSXML 6 Service Pack 2 (KB954459) - (.Microsoft Corporation.) [HKLM] -- {97AA1F3C-DD64-4AA6-AEC5-F8F9F4CC21C5}

O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}

O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)

O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}

O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447

O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906

O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs

O42 - Logiciel: Microsoft MPEG-4 VKI Video Codec V1/V2/V3 - (.Pas de propriétaire.) [HKLM] -- MS-MPEG4

O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM] -- {95120000-00AF-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS

O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9}

O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {3B160861-7250-451E-B5EE-8B92BF30A710}

O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE}

O42 - Logiciel: Mozilla Firefox (3.6.13) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.13)

O42 - Logiciel: Mozilla Firefox 4.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 4.0.1 (x86 fr)

O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM] -- {97B3824E-B2D2-4C49-A860-BCA56F10B040}

O42 - Logiciel: PDF Settings - (.Adobe Systems Incorporated.) [HKLM] -- {AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}

O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}

O42 - Logiciel: PowerDVD - (.Dell.) [HKLM] -- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1}

O42 - Logiciel: Realtek High Definition Audio Driver - (.Pas de propriétaire.) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}

O42 - Logiciel: Roxio Activation Module - (.Roxio.) [HKLM] -- {07159635-9DFE-4105-BFC0-2817DB540C68}

O42 - Logiciel: Roxio Creator Audio - (.Roxio.) [HKLM] -- {83FFCFC7-88C6-41C6-8752-958A45325C82}

O42 - Logiciel: Roxio Creator BDAV Plugin - (.Roxio.) [HKLM] -- {880AF49C-34F7-4285-A8AD-8F7A3D1C33DC}

O42 - Logiciel: Roxio Creator Copy - (.Roxio.) [HKLM] -- {619CDD8A-14B6-43A1-AB6C-0F4EE48CE048}

O42 - Logiciel: Roxio Creator DE - (.Roxio.) [HKLM] -- {C8B0680B-CDAE-4809-9F91-387B6DE00F7C}

O42 - Logiciel: Roxio Creator Data - (.Roxio.) [HKLM] -- {0D397393-9B50-4C52-84D5-77E344289F87}

O42 - Logiciel: Roxio Creator Tools - (.Roxio.) [HKLM] -- {0394CDC8-FABD-4ED8-B104-03393876DFDF}

O42 - Logiciel: Roxio Drag-to-Disc - (.Roxio.) [HKLM] -- {2F4C24E6-CBD4-4AAC-B56F-C9FD44DE5668}

O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}

O42 - Logiciel: Roxio MyDVD DE - (.Roxio, Inc..) [HKLM] -- {D639085F-4B6E-4105-9F37-A0DBB023E2FB}

O42 - Logiciel: Roxio Update Manager - (.Roxio.) [HKLM] -- {30465B6C-B53F-49A1-9EBA-A3F187AD502E}

O42 - Logiciel: Samsung ML-2855 Series - (.Samsung Electronics CO.,LTD.) [HKLM] -- Samsung ML-2855 Series

O42 - Logiciel: SearchAssist - (.Pas de propriétaire.) [HKLM] -- SearchAssist

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5C497F0B-2061-4CC9-A61C-6B45B867354D}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD769337-C8AC-46DB-A7DC-643E50089263}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{536FB502-775F-4494-BACE-C02CC90B7A5B}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2466156) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CEF209AB-F96D-404F-B5CC-44057C057CA3}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2509488) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{AD0DE453-0804-4495-9C91-33D0F9AA5463}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7F207DCA-3399-40CB-A968-6E5991B1421A}

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5}

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5A4E43D5-858F-49BD-BA72-8F30E1793060}

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2464583) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{151E2FEA-C3A6-4CB6-BE6B-16651FDF04BE}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062}

O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3A4CDE54-2403-483D-8D9A-15E3264410DF}

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}

O42 - Logiciel: Sonic CinePlayer Decoder Pack - (.Sonic Solutions.) [HKLM] -- {8D337F77-BE7F-41A2-A7CB-D5A63FD7049B}

O42 - Logiciel: Sothink SWF Decompiler - (.SourceTec Software Co., LTD.) [HKLM] -- {BCDB856C-D247-4DEE-9132-89C02F4D6B8C}_is1

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1

O42 - Logiciel: Trojan Remover 6.8.2 - (.Simply Super Software.) [HKLM] -- Trojan Remover_is1

O42 - Logiciel: UltraISO Premium V9.36 - (.Pas de propriétaire.) [HKLM] -- UltraISO_is1

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2509470) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1365864D-4C58-489D-9982-844D75691CCC}

O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2536413) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{95DF5260-331D-4FFD-A2D5-C64164751945}

O42 - Logiciel: VLC media player 0.9.9 - (.VideoLAN Team.) [HKLM] -- VLC media player

O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729) - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}

O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01

O42 - Logiciel: WampServer 2.0 - (.Romain Bourdon (Roms).) [HKLM] -- WampServer 2_is1

O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474) - (.Microsoft Corporation.) [HKLM] -- WgaNotify

O42 - Logiciel: Windows Installer 3.1 (KB893803) - (.Microsoft Corporation.) [HKLM] -- KB893803v2

O42 - Logiciel: Windows Media Format Runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime

O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}

O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service

O42 - Logiciel: XviD MPEG-4 Video Codec - (.XviD Development Team.) [HKLM] -- xvid

O42 - Logiciel: ZD Soft Screen Recorder - (.Pas de propriétaire.) [HKLM] -- ZD Soft Screen Recorder

O42 - Logiciel: ZD Soft Screen Video Decoder - (.Pas de propriétaire.) [HKLM] -- ZDSV

O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM] -- eMule

O42 - Logiciel: gBurner - (.Pas de propriétaire.) [HKLM] -- gBurner

O42 - Logiciel: sPAIEctacle 4.4.5 - (.Pas de propriétaire.) [HKLM] -- sPAIEctacle 4.4.5

O42 - Logiciel: sPAIEctacle 4.4.6 - (.Pas de propriétaire.) [HKLM] -- sPAIEctacle 4.4.6

O42 - Logiciel: sPAIEctacle 4.4.7 - (.Pas de propriétaire.) [HKLM] -- sPAIEctacle 4.4.7

O42 - Logiciel: sPAIEctacle 4.4.8 - (.Pas de propriétaire.) [HKLM] -- sPAIEctacle 4.4.8

O42 - Logiciel: sPAIEctacle 4.4.9 - (.Pas de propriétaire.) [HKLM] -- sPAIEctacle 4.4.9

 

---\\ HKCU & HKLM Software Keys

[HKCU\Software\AVG Security Toolbar]

[HKCU\Software\Adobe]

[HKCU\Software\Aerofox]

[HKCU\Software\Alcohol Soft]

[HKCU\Software\AppDataLow\Avg]

[HKCU\Software\AppDataLow\Software\Adobe]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\Avg]

[HKCU\Software\BAE]

[HKCU\Software\CDDB]

[HKCU\Software\CamfrogWEBAdvanced]

[HKCU\Software\CamfrogWEB]

[HKCU\Software\Camfrog]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\Cyberlink]

[HKCU\Software\DELL]

[HKCU\Software\DSCLauncher]

[HKCU\Software\Dell Printers]

[HKCU\Software\EasyBoot Systems]

[HKCU\Software\GNU]

[HKCU\Software\Google]

[HKCU\Software\InstallShield]

[HKCU\Software\Intel]

[HKCU\Software\JavaSoft]

[HKCU\Software\Lavasoft]

[HKCU\Software\Lexmark]

[HKCU\Software\Local AppWizard-Generated Applications]

[HKCU\Software\Macromedia]

[HKCU\Software\Mozilla]

[HKCU\Software\Netscape]

[HKCU\Software\ODBC]

[HKCU\Software\OpenOffice.org]

[HKCU\Software\PDFCreator]

[HKCU\Software\Policies]

[HKCU\Software\Realtek]

[HKCU\Software\Roxio]

[HKCU\Software\SSPrint]

[HKCU\Software\Safer Networking Limited]

[HKCU\Software\Sage]

[HKCU\Software\Simply Super Software]

[HKCU\Software\Sonic Solutions]

[HKCU\Software\Sonic]

[HKCU\Software\SourceTec]

[HKCU\Software\WinRAR SFX]

[HKCU\Software\WinRAR]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\ZD Soft]

[HKCU\Software\eMule]

[HKCU\Software\gBurner]

[HKCU\Software\keyhole.com]

[HKCU\Software\pdfforge.org]

[HKLM\Software\AVG Security Toolbar]

[HKLM\Software\Adobe Systems]

[HKLM\Software\Adobe]

[HKLM\Software\Aerofox]

[HKLM\Software\Alcohol Soft]

[HKLM\Software\America Online]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\BitTorrent]

[HKLM\Software\C07ft5Y]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\CyberLink]

[HKLM\Software\Debug]

[HKLM\Software\Dell Computers]

[HKLM\Software\Dell Printers]

[HKLM\Software\DellLaser]

[HKLM\Software\Dell]

[HKLM\Software\EasyBoot Systems]

[HKLM\Software\Gemplus]

[HKLM\Software\Google]

[HKLM\Software\Hewlett-Packard]

[HKLM\Software\InstallShield]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\Lavasoft]

[HKLM\Software\Lexmark]

[HKLM\Software\Licenses]

[HKLM\Software\MAXSOFT-OCRON]

[HKLM\Software\Macromedia]

[HKLM\Software\Macrovision]

[HKLM\Software\McAfee]

[HKLM\Software\MicroVision]

[HKLM\Software\MimarSinan]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\NOS]

[HKLM\Software\ODBC]

[HKLM\Software\OpenOffice.org]

[HKLM\Software\Policies]

[HKLM\Software\Program Groups]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\Roxio]

[HKLM\Software\Runapp]

[HKLM\Software\SPanel]

[HKLM\Software\SSPrint]

[HKLM\Software\Safer Networking Limited]

[HKLM\Software\Sage]

[HKLM\Software\Samsung]

[HKLM\Software\Schlumberger]

[HKLM\Software\Secure]

[HKLM\Software\Simply Super Software]

[HKLM\Software\Sonic]

[HKLM\Software\SourceTec]

[HKLM\Software\VideoLAN]

[HKLM\Software\Windows 3.1 Migration Status]

[HKLM\Software\Windows]

[HKLM\Software\ZD Soft]

[HKLM\Software\illiminable]

[HKLM\Software\mozilla.org]

[HKLM\Software\pdfforge.org]

 

 

 

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 07/04/2009 - 10:46:14 - [2116314388] ----D- C:\Program Files\Adobe

O43 - CFD: 03/09/2008 - 09:20:44 - [6158500] ----D- C:\Program Files\Alcohol Soft

O43 - CFD: 16/11/2010 - 10:53:42 - [131478035] ----D- C:\Program Files\AVG

O43 - CFD: 26/09/2008 - 12:26:50 - [955200] ----D- C:\Program Files\BitTorrent

O43 - CFD: 19/09/2008 - 15:58:16 - [323584] ----D- C:\Program Files\Bonjour

O43 - CFD: 29/04/2009 - 09:01:54 - [8393978] ----D- C:\Program Files\CamStudio

O43 - CFD: 24/08/2009 - 14:19:36 - [3412532] ----D- C:\Program Files\CDex_170b2

O43 - CFD: 01/07/2009 - 08:35:28 - [6533042] ----D- C:\Program Files\CFWebAdvancedU

O43 - CFD: 19/08/2004 - 14:15:20 - [0] ----D- C:\Program Files\ComPlus Applications

O43 - CFD: 27/06/2008 - 19:57:58 - [44668064] ----D- C:\Program Files\CyberLink

O43 - CFD: 08/01/2010 - 10:41:22 - [6638608] ----D- C:\Program Files\DADSU-CTL-V08R09

O43 - CFD: 14/08/2009 - 15:37:28 - [13342410] ----D- C:\Program Files\Dell

O43 - CFD: 14/08/2009 - 15:37:36 - [4979227] ----D- C:\Program Files\Dell_HostCD

O43 - CFD: 08/06/2010 - 10:53:40 - [409678047] ----D- C:\Program Files\eMule

O43 - CFD: 03/06/2010 - 16:42:28 - [1130505823] ----D- C:\Program Files\Fichiers communs

O43 - CFD: 03/07/2008 - 10:15:10 - [1653268566] ----D- C:\Program Files\Foxmail

O43 - CFD: 09/02/2011 - 12:34:52 - [2488121] ----D- C:\Program Files\gBurner

O43 - CFD: 01/04/2011 - 08:28:26 - [20] ----D- C:\Program Files\GOOGLE

O43 - CFD: 26/05/2009 - 16:20:16 - [21818408] ----D- C:\Program Files\Hewlett-Packard

O43 - CFD: 02/07/2008 - 09:30:06 - [12238200] --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD: 27/06/2008 - 19:48:00 - [5958176] ----D- C:\Program Files\Intel

O43 - CFD: 01/07/2009 - 08:46:18 - [1170964] ----D- C:\Program Files\Internet Explorer

O43 - CFD: 10/02/2011 - 12:19:22 - [313557005] ----D- C:\Program Files\Java

O43 - CFD: 21/12/2009 - 12:16:16 - [11733252] ----D- C:\Program Files\Maestria

O43 - CFD: 17/12/2008 - 10:55:50 - [2152579] ----D- C:\Program Files\Messenger

O43 - CFD: 19/08/2004 - 14:18:42 - [0] ----D- C:\Program Files\microsoft frontpage

O43 - CFD: 04/09/2008 - 15:41:28 - [566441853] ----D- C:\Program Files\Microsoft Office

O43 - CFD: 04/09/2008 - 15:41:26 - [14904] ----D- C:\Program Files\Microsoft Visual Studio

O43 - CFD: 15/12/2010 - 19:30:54 - [145421942] ----D- C:\Program Files\Microsoft Works

O43 - CFD: 04/09/2008 - 15:40:54 - [8152064] ----D- C:\Program Files\Microsoft.NET

O43 - CFD: 13/08/2010 - 13:05:36 - [10374874] ----D- C:\Program Files\Movie Maker

O43 - CFD: 14/12/2010 - 09:44:40 - [30936554] ----D- C:\Program Files\Mozilla Firefox

O43 - CFD: 16/05/2011 - 11:53:08 - [32643396] ----D- C:\Program Files\Mozilla Firefox 4.0 Beta 11

O43 - CFD: 04/09/2008 - 15:41:32 - [764] ----D- C:\Program Files\MSBuild

O43 - CFD: 02/07/2008 - 09:48:56 - [21471559] ----D- C:\Program Files\MSN

O43 - CFD: 19/08/2004 - 14:14:54 - [8745735] ----D- C:\Program Files\MSN Gaming Zone

O43 - CFD: 02/07/2008 - 17:44:54 - [0] ----D- C:\Program Files\MSXML 4.0

O43 - CFD: 27/06/2008 - 19:42:08 - [17340] ----D- C:\Program Files\MSXML 6.0

O43 - CFD: 17/12/2008 - 10:50:30 - [3285523] ----D- C:\Program Files\NetMeeting

O43 - CFD: 15/07/2008 - 11:14:14 - [7406] ----D- C:\Program Files\Netscape

O43 - CFD: 19/08/2004 - 14:15:06 - [1708] ----D- C:\Program Files\Online Services

O43 - CFD: 19/09/2008 - 14:50:10 - [60837] ----D- C:\Program Files\OpenOffice.org 2.4

O43 - CFD: 19/02/2010 - 09:51:30 - [321137249] ----D- C:\Program Files\OpenOffice.org 3

O43 - CFD: 15/12/2010 - 19:27:16 - [4379321] ----D- C:\Program Files\Outlook Express

O43 - CFD: 19/09/2008 - 15:31:38 - [33876650] ----D- C:\Program Files\PDFCreator

O43 - CFD: 27/06/2008 - 19:51:16 - [212800756] ----D- C:\Program Files\Roxio

O43 - CFD: 21/08/2009 - 16:12:22 - [59136326] ----D- C:\Program Files\Samsung

O43 - CFD: 19/08/2004 - 14:16:38 - [929] ----D- C:\Program Files\Services en ligne

O43 - CFD: 27/06/2008 - 19:48:48 - [28666352] ----D- C:\Program Files\Sonic

O43 - CFD: 12/05/2011 - 08:43:52 - [60407748] ----D- C:\Program Files\Spybot - Search & Destroy

O43 - CFD: 10/02/2011 - 12:30:52 - [11035904] ----D- C:\Program Files\Trojan Remover

O43 - CFD: 03/06/2010 - 16:42:28 - [5963743] ----D- C:\Program Files\UltraISO

O43 - CFD: 19/08/2004 - 14:24:00 - [0] --H-D- C:\Program Files\Uninstall Information

O43 - CFD: 10/04/2009 - 12:29:34 - [64597254] ----D- C:\Program Files\VideoLAN

O43 - CFD: 17/12/2008 - 10:53:14 - [4401005] ----D- C:\Program Files\Windows Media Player

O43 - CFD: 17/12/2008 - 10:50:26 - [3942655] ----D- C:\Program Files\Windows NT

O43 - CFD: 19/08/2004 - 14:16:42 - [0] --H-D- C:\Program Files\WindowsUpdate

O43 - CFD: 04/09/2008 - 10:58:26 - [3451643] ----D- C:\Program Files\WinRAR

O43 - CFD: 19/08/2004 - 14:18:42 - [0] ----D- C:\Program Files\xerox

O43 - CFD: 29/10/2008 - 15:33:38 - [6080131] ----D- C:\Program Files\ZD Soft

O43 - CFD: 17/05/2011 - 08:51:58 - [3829486] ----D- C:\Program Files\ZHPDiag

O43 - CFD: 07/04/2009 - 10:46:36 - [597332412] ----D- C:\Program Files\Fichiers Communs\Adobe

O43 - CFD: 04/09/2008 - 11:06:54 - [72704] ----D- C:\Program Files\Fichiers Communs\Adobe Systems Shared

O43 - CFD: 04/09/2008 - 15:41:26 - [92976] ----D- C:\Program Files\Fichiers Communs\DESIGNER

O43 - CFD: 03/06/2010 - 16:42:28 - [262144] ----D- C:\Program Files\Fichiers Communs\EZB Systems

O43 - CFD: 02/07/2008 - 09:27:10 - [9429968] ----D- C:\Program Files\Fichiers Communs\InstallShield

O43 - CFD: 27/06/2008 - 19:43:56 - [51385645] ----D- C:\Program Files\Fichiers Communs\Java

O43 - CFD: 19/09/2008 - 15:54:56 - [655183] ----D- C:\Program Files\Fichiers Communs\Macrovision Shared

O43 - CFD: 01/07/2010 - 13:03:34 - [249093936] ----D- C:\Program Files\Fichiers Communs\Microsoft Shared

O43 - CFD: 19/08/2004 - 14:16:18 - [284160] ----D- C:\Program Files\Fichiers Communs\MSSoap

O43 - CFD: 19/08/2004 - 14:10:40 - [0] ----D- C:\Program Files\Fichiers Communs\ODBC

O43 - CFD: 27/06/2008 - 19:48:06 - [151004501] ----D- C:\Program Files\Fichiers Communs\Roxio Shared

O43 - CFD: 02/07/2008 - 09:30:14 - [11082240] ----D- C:\Program Files\Fichiers Communs\Sage

O43 - CFD: 19/08/2004 - 14:16:20 - [8106] ----D- C:\Program Files\Fichiers Communs\Services

O43 - CFD: 27/06/2008 - 19:51:10 - [13545656] ----D- C:\Program Files\Fichiers Communs\Sonic Shared

O43 - CFD: 29/10/2008 - 15:40:18 - [397503] ----D- C:\Program Files\Fichiers Communs\SourceTec

O43 - CFD: 19/08/2004 - 14:10:38 - [3787229] ----D- C:\Program Files\Fichiers Communs\SpeechEngines

O43 - CFD: 27/06/2008 - 19:48:40 - [710656] ----D- C:\Program Files\Fichiers Communs\SureThing Shared

O43 - CFD: 17/12/2008 - 10:50:24 - [41360804] ----D- C:\Program Files\Fichiers Communs\System

O43 - CFD: 14/06/2010 - 11:26:28 - [39454280] ----D- C:\Documents and Settings\Vivien\Application Data\Adobe

O43 - CFD: 16/11/2010 - 11:03:22 - [296] ----D- C:\Documents and Settings\Vivien\Application Data\AVG10

O43 - CFD: 11/06/2010 - 18:57:24 - [1328543] ----D- C:\Documents and Settings\Vivien\Application Data\BitTorrent

O43 - CFD: 01/07/2009 - 08:35:30 - [3793511] ----D- C:\Documents and Settings\Vivien\Application Data\CamfrogWEB

O43 - CFD: 02/07/2008 - 09:25:26 - [0] ----D- C:\Documents and Settings\Vivien\Application Data\CyberLink

O43 - CFD: 24/08/2009 - 15:14:32 - [15038] ----D- C:\Documents and Settings\Vivien\Application Data\FileZilla

O43 - CFD: 23/09/2008 - 14:42:52 - [33225] ----D- C:\Documents and Settings\Vivien\Application Data\Google

O43 - CFD: 10/09/2008 - 14:44:02 - [0] ----D- C:\Documents and Settings\Vivien\Application Data\Help

O43 - CFD: 19/08/2004 - 14:24:02 - [0] ----D- C:\Documents and Settings\Vivien\Application Data\Identities

O43 - CFD: 27/06/2008 - 19:48:36 - [544] ----D- C:\Documents and Settings\Vivien\Application Data\InstallShield

O43 - CFD: 03/07/2008 - 18:33:08 - [4855611] ----D- C:\Documents and Settings\Vivien\Application Data\Macromedia

O43 - CFD: 18/03/2011 - 17:42:58 - [2166267] -S--D- C:\Documents and Settings\Vivien\Application Data\Microsoft

O43 - CFD: 02/07/2008 - 10:34:38 - [13182199] ----D- C:\Documents and Settings\Vivien\Application Data\Mozilla

O43 - CFD: 19/02/2010 - 09:53:58 - [2156575] ----D- C:\Documents and Settings\Vivien\Application Data\OpenOffice.org

O43 - CFD: 19/09/2008 - 09:18:00 - [2529462] ----D- C:\Documents and Settings\Vivien\Application Data\OpenOffice.org2

O43 - CFD: 27/06/2008 - 20:00:26 - [1062092] ----D- C:\Documents and Settings\Vivien\Application Data\Roxio

O43 - CFD: 03/07/2008 - 17:38:22 - [68545] ----D- C:\Documents and Settings\Vivien\Application Data\Sage

O43 - CFD: 10/02/2011 - 12:30:42 - [3761072] ----D- C:\Documents and Settings\Vivien\Application Data\Simply Super Software

O43 - CFD: 27/06/2008 - 19:43:12 - [136200279] ----D- C:\Documents and Settings\Vivien\Application Data\Sun

O43 - CFD: 30/06/2010 - 11:24:06 - [13824] ----D- C:\Documents and Settings\Vivien\Application Data\Template

O43 - CFD: 10/04/2009 - 12:38:54 - [449544] ----D- C:\Documents and Settings\Vivien\Application Data\vlc

O43 - CFD: 04/09/2008 - 10:58:58 - [0] ----D- C:\Documents and Settings\Vivien\Application Data\WinRAR

O43 - CFD: 04/11/2009 - 15:50:16 - [412325837] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Adobe

O43 - CFD: 17/05/2011 - 08:42:50 - [14961] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\ApplicationHistory

O43 - CFD: 16/11/2010 - 11:04:18 - [33459] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\AVG Security Toolbar

O43 - CFD: 23/09/2008 - 14:42:52 - [514509517] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Google

O43 - CFD: 10/09/2008 - 14:44:02 - [0] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Help

O43 - CFD: 22/07/2008 - 11:21:32 - [303396] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Identities

O43 - CFD: 18/03/2011 - 17:43:04 - [1952320] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Microsoft

O43 - CFD: 04/09/2008 - 15:38:14 - [0] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Microsoft Help

O43 - CFD: 02/07/2008 - 10:34:36 - [54779616] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Mozilla

O43 - CFD: 08/12/2008 - 14:32:36 - [10821] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\PowerDVD DX

O43 - CFD: 23/11/2009 - 13:27:46 - [20058] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\PSU

O43 - CFD: 10/02/2011 - 11:45:34 - [0] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\Sunbelt Software

O43 - CFD: 02/07/2008 - 10:33:24 - [0] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\SupportSoft

O43 - CFD: 29/04/2009 - 10:51:54 - [0] ----D- C:\Documents and Settings\Vivien\Local Settings\Application Data\WMTools Downloaded Files

 

 

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.E0EE1300F915817C00FCFD7FB4EF1300] - 17/05/2011 - 07:44:38 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [2029341]

O44 - LFC:[MD5.38188594E9E673052103813922BE634E] - 17/05/2011 - 07:42:07 ---A- . (...) -- C:\WINDOWS\System32\wpa.dbl [2206]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 17/05/2011 - 07:42:06 ---A- . (...) -- C:\WINDOWS\0.log [0]

O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 17/05/2011 - 07:41:44 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048]

O44 - LFC:[MD5.E0EE1300F915817C00FCFD7FB4EF1300] - 16/05/2011 - 18:22:55 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [32540]

O44 - LFC:[MD5.B2BB04DCFA67772E7F4B504387BCF1D1] - 16/05/2011 - 18:22:36 ---A- . (...) -- C:\WINDOWS\win.ini [597]

O44 - LFC:[MD5.F3924083D4298F4F42C136C0847C76C2] - 04/05/2011 - 12:12:59 ---A- . (...) -- C:\WINDOWS\setupact.log [1864]

O44 - LFC:[MD5.0375DA832DFDA45918D4A389DBB6B24F] - 04/05/2011 - 12:12:59 ---A- . (...) -- C:\WINDOWS\setupapi.log [266730]

O44 - LFC:[MD5.A55A1363E165CB35F5FDEF88094BB919] - 04/05/2011 - 11:54:38 ---A- . (...) -- C:\WINDOWS\System32\LexFiles.usr [4865]

O44 - LFC:[MD5.1ECFDF9BDD8C32DF96AADA095016A9A6] - 04/05/2011 - 11:54:28 ---A- . (...) -- C:\dkab.log [44370]

O44 - LFC:[MD5.5A380BE16D3F10A64BFC4CD6EAE7291F] - 03/05/2011 - 18:08:11 ---A- . (...) -- C:\WINDOWS\wiadebug.log [216]

O44 - LFC:[MD5.A3047A6A76582036C22604FACF1C6900] - 03/05/2011 - 08:31:32 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50]

 

 

 

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)

O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll

 

 

 

---\\ Export de clé d'application autorisée (O47)

O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe

O47 - AAKE:Key Export SP - "C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe" [Enabled] .(.CyberLink Corp. - CyberLink PowerDVD DX.) -- C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe

O47 - AAKE:Key Export SP - "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [Enabled] .(.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe

O47 - AAKE:Key Export SP - "C:\Program Files\AVG\AVG8\avgupd.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files\AVG\AVG8\avgupd.exe (.not file.)

O47 - AAKE:Key Export SP - "C:\Program Files\AVG\AVG8\avgemc.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files\AVG\AVG8\avgemc.exe (.not file.)

O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O47 - AAKE:Key Export SP - "C:\Program Files\BitTorrent\bittorrent.exe" [Enabled] .(.BitTorrent, Inc. - BitTorrent.) -- C:\Program Files\BitTorrent\bittorrent.exe

O47 - AAKE:Key Export SP - "C:\Program Files\eMule\emule.exe" [Enabled] .(.http://www.emule-project.net - eMule.) -- C:\Program Files\eMule\emule.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Bonjour\mDNSResponder.exe" [Enabled] .(.Apple Computer, Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Mozilla Firefox\firefox.exe" [Enabled] .(.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\DKabcoms.exe" [Enabled] .(.Pas de propriétaire - Printer Communication System.) -- C:\WINDOWS\system32\DKabcoms.exe

O47 - AAKE:Key Export SP - "C:\wamp\bin\apache\Apache2.2.11\bin\httpd.exe" [Enabled] .(.Apache Software Foundation - Apache HTTP Server.) -- C:\wamp\bin\apache\Apache2.2.11\bin\httpd.exe

O47 - AAKE:Key Export SP - "C:\Program Files\AVG\AVG10\avgmfapx.exe" [Enabled] .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files\AVG\AVG10\avgmfapx.exe

O47 - AAKE:Key Export SP - "C:\Program Files\AVG\AVG10\avgdiagex.exe" [Enabled] .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics Utility.) -- C:\Program Files\AVG\AVG10\avgdiagex.exe

O47 - AAKE:Key Export SP - "C:\Program Files\AVG\AVG10\avgnsx.exe" [Enabled] .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files\AVG\AVG10\avgnsx.exe

O47 - AAKE:Key Export SP - "C:\Program Files\AVG\AVG10\avgemcx.exe" [Enabled] .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files\AVG\AVG10\avgemcx.exe

O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe

O47 - AAKE:Key Export DP - "C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe" [Enabled] .(.CyberLink Corp. - CyberLink PowerDVD DX.) -- C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe

O47 - AAKE:Key Export DP - "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [Enabled] .(.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe

O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

 

 

 

---\\ Image File Execution Options (IFEO) (O50)

O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d

 

 

 

---\\ MountPoints2 Shell Key (O51)

O51 - MPSK:{0019e539-01b3-11df-8f2d-001ec981ec26}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- H:\LaunchU3.exe (.not file.)

O51 - MPSK:{4eb6690b-2eb1-11e0-906a-001ec981ec26}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- I:\LaunchU3.exe (.not file.)

O51 - MPSK:{6103a7f4-3557-11de-80e9-001ec981ec26}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- F:\Setup.exe (.not file.)

O51 - MPSK:{a6eefca2-437f-11de-80f9-001ec981ec26}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- G:\ntde1ect.com (.not file.)

 

 

 

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll

O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax

O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm

O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax

O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

O52 - TDSD: \Drivers32\"VIDC.ZDSV"="scrvid.dll" . (.ZD Soft, ZD Soft Screen Recorder, Screen Capture, Screen Sharing, Capture Streaming Video, Game Recorder - ZD Soft Screen Video Decoder.) -- C:\WINDOWS\System32\scrvid.dll

O52 - TDSD: \Drivers32\"vidc.XVID"="xvidvfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\xvidvfw.dll

O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm

O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax

O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

O52 - TDSD: \drivers.desc\"xvidvfw.dll"="XviD MPEG-4 Video Codec" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\xvidvfw.dll

 

 

 

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll

 

 

 

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

 

 

 

---\\ Microsoft Windows Policies Explorer (O56)

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145

O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoCDBurning"=0

 

 

 

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.1140AB9938809700B46BB88E46D72A96] - 17/08/2001 - 21:51:56 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\WINDOWS\system32\drivers\aliide.sys [5248]

O58 - SDL:[MD5.95B4FB835E28AA1336CEEB07FD5B9398] - 13/04/2008 - 19:36:39 ---A- . (.Advanced Micro Devices, Inc. - AMD Win2000 AGP Filter.) -- C:\WINDOWS\system32\drivers\amdagp.sys [43008]

O58 - SDL:[MD5.62D318E9A0C8FC9B780008E724283707] - 17/08/2001 - 21:52:00 ---A- . (.Advanced System Products, Inc. - AdvanSys SCSI Controller Driver.) -- C:\WINDOWS\system32\drivers\asc.sys [26496]

O58 - SDL:[MD5.5D8DE112AA0254B907861E9E9C31D597] - 17/08/2001 - 21:51:58 ---A- . (.Advanced System Products, Inc. - AdvanSys Ultra-Wide PCI SCSI Driver.) -- C:\WINDOWS\system32\drivers\asc3550.sys [14848]

O58 - SDL:[MD5.0C61F066F4D94BD67063DC6691935143] - 19/08/2010 - 21:42:36 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys [123472]

O58 - SDL:[MD5.84853F800CD69252C3C764FE50D0346F] - 13/09/2010 - 16:27:24 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Helper Driver..) -- C:\WINDOWS\system32\drivers\AVGIDSEH.sys [25680]

O58 - SDL:[MD5.28D6ADCD03E10F3838488B9B5D407DD4] - 19/08/2010 - 21:42:38 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Filter Driver..) -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys [30288]

O58 - SDL:[MD5.0EB16F4DBBB946360AF30D2B13A52D1D] - 19/08/2010 - 21:42:34 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Loader Driver..) -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys [26192]

O58 - SDL:[MD5.5FE5A2C2330C376A1D8DCFF8D2680A2D] - 08/12/2010 - 04:12:38 ---A- . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) -- C:\WINDOWS\system32\drivers\avgldx86.sys [251728]

O58 - SDL:[MD5.54F1A9B4C9B540C2D8AC4BAA171696B1] - 07/09/2010 - 03:48:56 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgmfx86.sys [34384]

O58 - SDL:[MD5.8DA3B77993C5F354CC2977B7EA06D03A] - 07/09/2010 - 03:48:50 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) -- C:\WINDOWS\system32\drivers\avgrkx86.sys [26064]

O58 - SDL:[MD5.660788EC46F10ECE80274D564FA8B4AA] - 12/11/2010 - 13:19:38 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) -- C:\WINDOWS\system32\drivers\avgtdix.sys [299984]

O58 - SDL:[MD5.BF79E659C506674C0497CC9C61F1A165] - 24/07/2006 - 03:00:00 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdr4_xp.sys [2432]

O58 - SDL:[MD5.2C41CD49D82D5FD85C72D57B6CA25471] - 24/07/2006 - 03:00:00 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdralw2k.sys [2560]

O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 05/08/2004 - 12:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528]

O58 - SDL:[MD5.E3726AD522D0BDAE090671048C991AB3] - 23/08/2001 - 17:04:44 ---A- . (.CMD Technology, Inc. - Pilote de bus PCI IDE CMD.) -- C:\WINDOWS\system32\drivers\cmdide.sys [6656]

O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 05/08/2004 - 12:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776]

O58 - SDL:[MD5.E550E7418984B65A78299D248F0A7F36] - 17/08/2001 - 21:52:16 ---A- . (.Mylex Corporation - Mylex Disk Array Controller Driver.) -- C:\WINDOWS\system32\drivers\dac2w2k.sys [179584]

O58 - SDL:[MD5.A0500678A33802D8954153839301D539] - 23/07/2007 - 15:04:58 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLABMFSM.SYS [37360]

O58 - SDL:[MD5.B8D2F68CAC54D46281399F9092644794] - 23/07/2007 - 15:04:52 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLABOIOM.SYS [32848]

O58 - SDL:[MD5.0EE93AB799D1CB4EC90B36F3612FE907] - 23/07/2007 - 14:49:44 ---A- . (.Roxio - Shared Driver Component.) -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS.vir [14576]

O58 - SDL:[MD5.86DFC5BAE3878CFABDE1430475BD52A7] - 23/07/2007 - 15:05:26 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLADResM.SYS [9136]

O58 - SDL:[MD5.766A148235BE1C0039C974446E4C0EDC] - 23/07/2007 - 15:04:50 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLAIFS_M.SYS [108752]

O58 - SDL:[MD5.38267CCA177354F1C64450A43A4F7627] - 23/07/2007 - 15:04:54 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLAOPIOM.SYS [27216]

O58 - SDL:[MD5.FD363369FD313B46B5AEAB1A688B52E9] - 23/07/2007 - 15:04:52 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLAPoolM.SYS [16304]

O58 - SDL:[MD5.336AE18F0912EF4FBE5518849E004D74] - 23/07/2007 - 14:49:44 ---A- . (.Roxio - Shared Driver Component.) -- C:\WINDOWS\system32\drivers\DLARTL_M.SYS [30064]

O58 - SDL:[MD5.FD85F682C1CC2A7CA878C7A448E6D87E] - 23/07/2007 - 15:04:56 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLAUDFAM.SYS [93552]

O58 - SDL:[MD5.AF389CE587B6BF5BBDCD6F6ABE5EABC0] - 23/07/2007 - 15:04:56 ---A- . (.Roxio - Drive Letter Access Component.) -- C:\WINDOWS\system32\drivers\DLAUDF_M.SYS [98448]

O58 - SDL:[MD5.5D3B71BB2BB0009D65D290E2EF374BD3] - 23/07/2007 - 14:55:44 ---A- . (.Sonic Solutions - Device Driver.) -- C:\WINDOWS\system32\drivers\DRVMCDB.SYS [99808]

O58 - SDL:[MD5.C591BA9F96F40A1FD6494DAFDCD17185] - 23/07/2007 - 14:43:42 ---A- . (.Roxio - Device Driver Manager.) -- C:\WINDOWS\system32\drivers\DRVNDDM.SYS [52000]

O58 - SDL:[MD5.1961F8B618E3C20DF54C146B294EFD2A] - 23/08/2001 - 17:12:50 ---A- . (.Intel Corporation - Pilote NDIS 5.) -- C:\WINDOWS\system32\drivers\e100b325.sys [117760]

O58 - SDL:[MD5.34AAA3B298A852B3663E6E0D94D12945] - 26/06/2007 - 14:06:20 ---A- . (.Intel Corporation - Intel® PRO/1000 Adapter NDIS 5.2 deserialized driver.) -- C:\WINDOWS\system32\drivers\e1e5132.sys [254872]

O58 - SDL:[MD5.997E8F5939F2D12CD9F2E6B395724C16] - 13/06/2007 - 19:25:14 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\WINDOWS\system32\drivers\iastor.sys [304920]

O58 - SDL:[MD5.28423512370705AEDA6A652FEDB25468] - 13/06/2007 - 19:21:16 ---A- . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS\system32\drivers\igxpmp32.sys [5760096]

O58 - SDL:[MD5.8E7726BA6E6C4CD81BAA6C8D8C0099F3] - 09/03/2007 - 17:04:42 ---A- . (.Intel Corporation - Intel® Network Adapter Diagnostic Driver.) -- C:\WINDOWS\system32\drivers\iqvw32.sys [31072]

O58 - SDL:[MD5.B7C19EC8B0DD7EFA58AD41FFEB8B8CDA] - 22/11/2010 - 09:50:19 ---A- . (.Lavasoft AB - Boot Driver.) -- C:\WINDOWS\system32\drivers\Lbd.sys [64288]

O58 - SDL:[MD5.3F4BB95E5A44F3BE34824E8E7CAF0737] - 17/08/2001 - 21:52:12 ---A- . (.American Megatrends Inc. - MegaRAID RAID Controller Driver for Windows Whistler 32.) -- C:\WINDOWS\system32\drivers\mraid35x.sys [17280]

O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 05/08/2004 - 12:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032]

O58 - SDL:[MD5.2B298519EDBFCF451D43E0F1E8F1006D] - 03/08/2004 - 22:29:56 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Driver, Version 56.73.) -- C:\WINDOWS\system32\drivers\nv4_mini.sys [1897408]

O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 05/08/2004 - 12:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792]

O58 - SDL:[MD5.49452BFCEC22F36A7A9B9C2181BC3042] - 26/07/2007 - 03:00:00 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\WINDOWS\system32\drivers\pxhelp20.sys [43872]

O58 - SDL:[MD5.0A63FB54039EB5662433CABA3B26DBA7] - 17/08/2001 - 21:52:20 ---A- . (.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) -- C:\WINDOWS\system32\drivers\ql1080.sys [40320]

O58 - SDL:[MD5.156ED0EF20C15114CA097A34A30D8A01] - 17/08/2001 - 21:52:20 ---A- . (.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) -- C:\WINDOWS\system32\drivers\ql12160.sys [45312]

O58 - SDL:[MD5.907F0AEEA6BC451011611E732BD31FCF] - 17/08/2001 - 21:52:18 ---A- . (.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) -- C:\WINDOWS\system32\drivers\ql1280.sys [49024]

O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 05/08/2004 - 12:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032]

O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 05/08/2004 - 12:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032]

O58 - SDL:[MD5.17BBBABB21F86B650B2626045A9D016C] - 13/06/2007 - 20:41:44 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys [4403712]

O58 - SDL:[MD5.C1AE5D1F53285D79A0B73A62AF20734F] - 10/02/2011 - 10:47:23 ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\WINDOWS\system32\drivers\SBREDrv.sys [98392]

O58 - SDL:[MD5.8D837882B0C6750EDA99B82A13E5C9E2] - 27/12/2006 - 15:47:30 ---A- . (.ZD Soft - ZD Soft Screen Capture Driver.) -- C:\WINDOWS\system32\drivers\scrcap.sys [9006]

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/11/2007 - 11:25:54 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480]

O58 - SDL:[MD5.6B33D0EBD30DB32E27D1D78FE946A754] - 13/04/2008 - 19:36:39 ---A- . (.Silicon Integrated Systems Corporation - SiS NT AGP Filter.) -- C:\WINDOWS\system32\drivers\sisagp.sys [40960]

O58 - SDL:[MD5.83C0F71F86D3BDAF915685F3D568B20E] - 17/08/2001 - 22:07:44 ---A- . (.Adaptec, Inc. - Adaptec AIC-6x60 series SCSI miniport.) -- C:\WINDOWS\system32\drivers\sparrow.sys [19072]

O58 - SDL:[MD5.E0EE1300F915817C00FCFD7FB4EF1300] - 30/04/2009 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [721904]

O58 - SDL:[MD5.1FF3217614018630D0A6758630FC698C] - 17/08/2001 - 22:07:34 ---A- . (.Symbios Logic Inc. - Symbios Logic Inc. SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\symc810.sys [16256]

O58 - SDL:[MD5.070E001D95CF725186EF8B20335F933C] - 17/08/2001 - 22:07:36 ---A- . (.LSI Logic - Symbios 8XX SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\symc8xx.sys [32640]

O58 - SDL:[MD5.80AC1C4ABBE2DF3B738BF15517A51F2C] - 17/08/2001 - 22:07:40 ---A- . (.LSI Logic - Symbios Hi-Perf SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\sym_hi.sys [28384]

O58 - SDL:[MD5.BF4FAB949A382A8E105F46EBB4937058] - 17/08/2001 - 22:07:42 ---A- . (.LSI Logic - Symbios Ultra3 SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\sym_u3.sys [30688]

O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 05/08/2004 - 12:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376]

O58 - SDL:[MD5.1B698A51CD528D8DA4FFAED66DFC51B9] - 17/08/2001 - 21:52:22 ---A- . (.Promise Technology, Inc. - Gestionnaire de miniport ULTRA66 de Promise.) -- C:\WINDOWS\system32\drivers\ultra.sys [36736]

O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 05/08/2004 - 12:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112]

O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037]

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097]

O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4912]

O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809]

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537]

O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27916]

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146]

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370]

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274]

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146]

O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [34000]

O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560]

O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648]

O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424]

O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560]

 

 

 

---\\ Liste des outils de nettoyage (O63)

O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

 

 

 

---\\ Liste des services Legacy (O64)

O64 - Services: CurCS - 04/09/2008 - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe - Adobe LM Service(Adobe LM Service) .(.Adobe Systems - System Level Service Utility.) - LEGACY_ADOBE_LM_SERVICE

O64 - Services: CurCS - 06/01/2011 - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe - AVGIDSAgent(AVGIDSAgent) .(.AVG Technologies CZ, s.r.o. - AVG IDS application.) - LEGACY_AVGIDSAGENT

O64 - Services: CurCS - 19/08/2010 - C:\Windows\System32\DRIVERS\AVGIDSDriver.sys - AVGIDSDriver(AVGIDSDriver) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - LEGACY_AVGIDSDRIVER

O64 - Services: CurCS - 13/09/2010 - C:\Windows\System32\DRIVERS\AVGIDSEH.sys - AVGIDSEH(AVGIDSEH) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Helper Dri.) - LEGACY_AVGIDSEH

O64 - Services: CurCS - 19/08/2010 - C:\Windows\System32\DRIVERS\AVGIDSFilter.sys - AVGIDSFilter(AVGIDSFilter) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Filter Dri.) - LEGACY_AVGIDSFILTER

O64 - Services: CurCS - 19/08/2010 - C:\Windows\System32\DRIVERS\AVGIDSShim.sys - AVGIDSShim(AVGIDSShim) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Loader Dri.) - LEGACY_AVGIDSSHIM

O64 - Services: CurCS - 08/12/2010 - C:\Windows\System32\DRIVERS\avgldx86.sys - AVG AVI Loader Driver(Avgldx86) .(.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - LEGACY_AVGLDX86

O64 - Services: CurCS - 07/09/2010 - C:\Windows\System32\DRIVERS\avgmfx86.sys - AVG Mini-Filter Resident Anti-Virus Shield(Avgmfx86) .(.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - LEGACY_AVGMFX86

O64 - Services: CurCS - 07/09/2010 - C:\Windows\System32\DRIVERS\avgrkx86.sys - AVG Anti-Rootkit Driver(Avgrkx86) .(.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) - LEGACY_AVGRKX86

O64 - Services: CurCS - 12/11/2010 - C:\Windows\System32\DRIVERS\avgtdix.sys - AVG8 Network Redirector(AvgTdiX) .(.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - LEGACY_AVGTDIX

O64 - Services: CurCS - 22/10/2010 - C:\Program Files\AVG\AVG10\avgwdsvc.exe - AVG WatchDog(avgwd) .(.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - LEGACY_AVGWD

O64 - Services: CurCS - 18/03/2011 - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe - AVG Security Toolbar Service(AVG Security Toolbar Service) .(.Pas de propriétaire - AVG Security Toolbar.) - LEGACY_AVG_SECURITY_TOOLBAR_SERVICE

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\BEEP.sys - Beep (Beep) .(...) - LEGACY_BEEP

O64 - Services: CurCS - 28/02/2006 - C:\Program Files\Bonjour\mDNSResponder.exe - ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##(Bonjour Service) .(.Apple Computer, Inc. - Bonjour Service.) - LEGACY_BONJOUR_SERVICE

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\CDFS.sys - cdfs (cdfs) .(...) - LEGACY_CDFS

O64 - Services: CurCS - (.not file.) - (.not file.) - Application système COM+ (COMSysApp) .(...) - LEGACY_COMSYSAPP

O64 - Services: CurCS - (.not file.) - (.not file.) - Lanceur de processus serveur DCOM (DcomLaunch) .(...) - LEGACY_DCOMLAUNCH

O64 - Services: CurCS - 21/10/2006 - C:\WINDOWS\system32\DKabcoms.exe - dkab_device(dkab_device) .(.Pas de propriétaire - Printer Communication System.) - LEGACY_DKAB_DEVICE

O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLABMFSM.sys - DLABMFSM(DLABMFSM) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLABMFSM

O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLABOIOM.sys - DLABOIOM(DLABOIOM) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLABOIOM

O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLADResM.sys - DLADResM(DLADResM) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLADRESM

O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLAIFS_M.sys - DLAIFS_M(DLAIFS_M) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAIFS_M

O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLAOPIOM.sys - DLAOPIOM(DLAOPIOM) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAOPIOM

O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLAPoolM.sys - DLAPoolM(DLAPoolM) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAPOOLM

O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLARTL_M.sys - DLARTL_M(DLARTL_M) .(.Roxio - Shared Driver Component.) - LEGACY_DLARTL_M

O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLAUDFAM.sys - DLAUDFAM(DLAUDFAM) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAUDFAM

O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DLAUDF_M.sys - DLAUDF_M(DLAUDF_M) .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAUDF_M

O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\System32\dmadmin.exe - Service d'administration du Gestionnaire de disque logique(dmadmin) .(.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - LEGACY_DMADMIN

O64 - Services: CurCS - 14/04/2008 - C:\Windows\System32\drivers\dmboot.sys - dmboot(dmboot) .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT

O64 - Services: CurCS - 05/08/2004 - C:\Windows\System32\drivers\dmload.sys - dmload(dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD

O64 - Services: CurCS - 23/07/2007 - C:\Windows\System32\Drivers\DRVNDDM.sys - DRVNDDM(DRVNDDM) .(.Roxio - Device Driver Manager.) - LEGACY_DRVNDDM

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FASTFAT.sys - fastfat (fastfat) .(...) - LEGACY_FASTFAT

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FIPS.sys - Fips (Fips) .(...) - LEGACY_FIPS

O64 - Services: CurCS - 19/09/2008 - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe - FLEXnet Licensing Service(FLEXnet Licensing Service) .(.Macrovision Europe Ltd. - Activation Licensing Service.) - LEGA

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\I2OMGMT.sys - i2omgmt (i2omgmt) .(...) - LEGACY_I2OMGMT

O64 - Services: CurCS - 13/06/2007 - C:\Windows\System32\drivers\iaStor.sys - Intel RAID Controller(iaStor) .(.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) - LEGACY_IASTOR

O64 - Services: CurCS - 22/10/2004 - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe - InstallDriver Table Manager(IDriverT) .(.Macrovision Corporation - IDriverT Module.) - LEGACY_IDRIVERT

O64 - Services: CurCS - 29/01/2010 - C:\Program Files\UltraISO\drivers\ISODrive.sys - ISO DVD/CD-ROM Device Driver(ISODrive) .(.EZB Systems, Inc. - ISO DVD/CD-ROM Device Driver.) - LEGACY_ISODRIVE

O64 - Services: CurCS - 12/11/2010 - C:\Program Files\Java\jre6\bin\jqs.exe - Java Quick Starter(JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\KSECDD.sys - ksecdd (ksecdd) .(...) - LEGACY_KSECDD

O64 - Services: CurCS - 22/11/2010 - C:\Windows\System32\DRIVERS\Lbd.sys - Lbd(Lbd) .(.Lavasoft AB - Boot Driver.) - LEGACY_LBD

O64 - Services: CurCS - (.not file.) - McAfee Services (mcmscsvc) .(...) - LEGACY_MCMSCSVC

O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfehidk) .(...) - LEGACY_MFEHIDK

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MNMDD.sys - mnmdd (mnmdd) .(...) - LEGACY_MNMDD

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MOUNTMGR.sys - (.not file.) - mountmgr (mountmgr) .(...) - LEGACY_MOUNTMGR

O64 - Services: CurCS - (.not file.) - MPFP (MPFP) .(...) - LEGACY_MPFP

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MUP.sys - (.not file.) - Mup (Mup) .(...) - LEGACY_MUP

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDIS.sys - (.not file.) - Pilote système NDIS (NDIS) .(...) - LEGACY_NDIS

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NTFS.sys - ntfs (ntfs) .(...) - LEGACY_NTFS

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARTMGR.sys - (.not file.) - PartMgr (PartMgr) .(...) - LEGACY_PARTMGR

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARVDM.sys - ParVdm (ParVdm) .(...) - LEGACY_PARVDM

O64 - Services: CurCS - (.not file.) - RDPNP (RDPNP) .(...) - LEGACY_RDPNP

O64 - Services: CurCS - 05/11/2006 - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe - RoxMediaDB9(RoxMediaDB9) .(.Sonic Solutions - RoxMediaDB9 Module.) - LEGACY_ROXMEDIADB9

O64 - Services: CurCS - 05/11/2006 - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe - Roxio Hard Drive Watcher 9(RoxWatch9) .(.Sonic Solutions - RoxSniffer9 Module.) - LEGACY_ROXWATCH9

O64 - Services: CurCS - (.not file.) - (.not file.) - Appel de procédure distante (RPC) (RpcSs) .(...) - LEGACY_RPCSS

O64 - Services: CurCS - C:\Windows\System32\Drivers\sptd.sys - sptd (sptd) .(...) - LEGACY_SPTD

O64 - Services: CurCS - (.not file.) - (.not file.) - Services Terminal Server (TermService) .(...) - LEGACY_TERMSERVICE

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\UDFS.sys - Udfs (Udfs) .(...) - LEGACY_UDFS

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VGA.sys - vga (vga) .(...) - LEGACY_VGA

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VOLSNAP.sys - VolSnap (VolSnap) .(...) - LEGACY_VOLSNAP

O64 - Services: CurCS - 10/12/2008 - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe - wampapache(wampapache) .(.Apache Software Foundation - Apache HTTP Server.) - LEGACY_WAMPAPACHE

O64 - Services: CurCS - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe - wampmysqld (wampmysqld) .(...) - LEGACY_WAMPMYSQLD

 

 

 

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox 4.0 Beta 11\firefox.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox 4.0 Beta 11\firefox.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe

 

 

 

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox 4.0 Beta 11\firefox.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

 

 

 

---\\ Search Browser Infection (O69)

O69 - SBI: SearchScopes [HKCU] {5F18661F-0831-404A-998D-AE94EA7560CD} - (Google) - Google

O69 - SBI: SearchScopes [HKCU] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} [DefaultScope] - (AVG Secure Search) - AVG search | Home page

O69 - SBI: SearchScopes [HKUS\.DEFAULT] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (Yahoo! Search) - Yahoo! Search - Web Search

O69 - SBI: SearchScopes [HKUS\S-1-5-18] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (Yahoo! Search) - Yahoo! Search - Web Search

 

 

 

---\\ Scan Additionnel (O88)

Database Version : 7434 - (14/05/2011)

Clés trouvées (Keys found) : 2

Valeurs trouvées (Values found) : 0

Dossiers trouvés (Folders found) : 0

Fichiers trouvés (Files found) : 0

 

[HKCU\Software\pdfforge.org] =>PUP.Dealio

[HKLM\Software\pdfforge.org] =>PUP.Dealio

 

 

 

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SS - | Demand 04/09/2008 72704 | (Adobe LM Service) . (.Adobe Systems.) - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe

SS - | Demand 18/03/2011 947528 | (AVG Security Toolbar Service) . (...) - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe

SR - | Auto 06/01/2011 6128720 | (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe

SR - | Auto 22/10/2010 265400 | (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG10\avgwdsvc.exe

SR - | Auto 28/02/2006 229376 | ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) . (.Apple Computer, Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe

SS - | Demand 21/10/2006 508824 | (dkab_device) . (...) - C:\WINDOWS\system32\DKabcoms.exe

SS - | Demand 14/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe

SR - | Demand 19/09/2008 654848 | (FLEXnet Licensing Service) . (.Macrovision Europe Ltd..) - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

SS - | Demand 22/10/2004 73728 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe

SR - | Auto 12/11/2010 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe

SS - | Demand 05/11/2006 880640 | (RoxMediaDB9) . (.Sonic Solutions.) - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe

SS - | Auto 05/11/2006 159744 | (RoxWatch9) . (.Sonic Solutions.) - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe

SS - | Demand 11/07/2007 69632 | (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe

SS - | Demand 10/12/2008 24636 | (wampapache) . (.Apache Software Foundation.) - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe

SS - | Demand 17/06/2009 6582912 | (wampmysqld) . (...) - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe

 

 

 

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover

Run by Vivien at 17/05/2011 08:54:38

 

device: opened successfully

user: MBR read successfully

 

Disk trace:

called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys spik.sys >>UNKNOWN [0x8A634938]<<

spik.sys

1 ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Harddisk0\DR0[0x8A5ABAB8]

3 CLASSPNP[0xBA0E8FD7] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\00000069[0x8A5F32C0]

5 ACPI[0xB9E65620] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Ide\IdeDeviceP0T0L0-3[0x8A5AD940]

kernel: MBR read successfully

user & kernel MBR OK

 

 

 

---\\ Liste des émulateurs de CD/DVD (Hook du MBR)

O58 - SDL:[MD5.E0EE1300F915817C00FCFD7FB4EF1300] - 30/04/2009 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [721904]

 

 

 

End of the scan (1130 lines in 02mn 49s)(0)

[arcisse]

Up...

[bernard53]

Bonsoir

 

fait ceci s.t.p

 

-1-Passe à une version supérieur a IE6 qui va te causer se genre de soucis.

 

2-* Copie le tout le texte présent dans l'encadré ci-dessous (tu le sélectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C)

R1 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = google

R1 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = Google

O4 - HKCU\..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (.not file.)

O4 - HKUS\S-1-5-21-2802284001-606921493-2658132684-1005\..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (.not file.)

[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (.Pas de propriétaire.) -- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.)

[MD5.00000000000000000000000000000000] [APT] [Exit] (.Pas de propriétaire.) -- C:\Windows\system\User.exe (.not file.)

O42 - Logiciel: Java™ 6 Update 4 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160040}

O42 - Logiciel: Java™ 6 Update 5 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160050}

O42 - Logiciel: Java™ 6 Update 7 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160070}

O51 - MPSK:{a6eefca2-437f-11de-80f9-001ec981ec26}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- G:\ntde1ect.com (.not file.)

O64 - Services: CurCS - (.not file.) - (.not file.) - Application système COM+ (COMSysApp) .(...) - LEGACY_COMSYSAPP

O64 - Services: CurCS - (.not file.) - (.not file.) - Lanceur de processus serveur DCOM (DcomLaunch) .(...) - LEGACY_DCOMLAUNCH

O64 - Services: CurCS - (.not file.) - McAfee Services (mcmscsvc) .(...) - LEGACY_MCMSCSV

O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfehidk) .(...) - LEGACY_MFEHIDK

O64 - Services: CurCS - (.not file.) - MPFP (MPFP) .(...) - LEGACY_MPFP

O64 - Services: CurCS - (.not file.) - RDPNP (RDPNP) .(...) - LEGACY_RDPNP

FirewallRaz

EmptyFlash

Emptytemp

 

 

Puis Lance ZHPFix depuis le raccourci du bureau.

 

Clique sur l'icone représentant la lettre H (« coller les lignes Helper »)

- Les lignes se collent automatiquement dans ZHPFix, sinon colle les lignes

- Clique sur le bouton « GO » pour lancer le nettoyage,

- Copie/colle la totalité du rapport dans ta prochaine réponse

 

-> laisse travailler l'outil et ne touche à rien ...

 

Une fois terminée, un nouveau rapport s'affiche : copie/colle le contenu de ce dernier dans ta prochaine réponse ...

 

(ce rapport est en outre sauvegardé dans ce dossier > C:\Program files\ZHPDiag\ZHPFixReport.txt)

 

Important : s'il t'est demandé de redémarrer le PC pour finir le nettoyage, fais le de suite !

 

3- Désactive ton anti Virus avant le scan car il bloque sur la désinfection

 

Télécharge USBFix depuis ce lien : <<ICI>>

 

Double cliquez sur "UsbFix.exe" présent sur votre bureau.

L'installation est automatique.

 

Branche tes lecteurs externes

 

Valide Recherche

 

Une fois l'analyse terminée, un rapport de scan vous est proposé...

CTRL+A pour tout sélectionner

CTRL+C pour copier

CTRL+V pour coller dans la réponse

Modifié le 23 mai 2011 par bernard53