pub qui s'affiche automatiquement dans firefox

Pascal Duquenoy · le 18 juin 2011

bonjour

j'ai un gros problème su seven/firefox

j'ai télécharger ZHPDiag et Malwarebytes' Anti-Malware

quelqu'un peut il m aider svp

merci d’avance

Pascal Duquenoy

voici les logs

1 -------------------------------------------------------------------------

Malwarebytes' Anti-Malware 1.51.0.1200

www.malwarebytes.org

Version de la base de données: 6889

Windows 6.1.7601 Service Pack 1

Internet Explorer 9.0.8112.16421

18/06/2011 22:13:19

mbam-log-2011-06-18 (22-13-19).txt

Type d'examen: Examen rapide

Elément(s) analysé(s): 169801

Temps écoulé: 6 minute(s), 56 seconde(s)

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 8

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 0

Fichier(s) infecté(s): 1

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):

HKEY_CLASSES_ROOT\CLSID\{293A63F7-C3B6-423a-9845-901AC0A7EE6E} (Trojan.Eorezo) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\TypeLib\{0BF73E27-2734-4F7B-925A-4BBB1457F5FA} (Trojan.Eorezo) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface\{E2ED56B6-35FC-4484-9530-EC87FB458E78} (Trojan.Eorezo) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\PCTutoBHO.PCTBHO.1 (Trojan.Eorezo) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\PCTutoBHO.PCTBHO (Trojan.Eorezo) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{293A63F7-C3B6-423A-9845-901AC0A7EE6E} (Trojan.Eorezo) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{293A63F7-C3B6-423A-9845-901AC0A7EE6E} (Trojan.Eorezo) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{293A63F7-C3B6-423A-9845-901AC0A7EE6E} (Trojan.Eorezo) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

Dossier(s) infecté(s):

(Aucun élément nuisible détecté)

Fichier(s) infecté(s):

c:\program files (x86)\agence-exclusive\pctutobho.dll (Trojan.Eorezo) -> Quarantined and deleted successfully.

2 -------------------------------------------------------------------------

-------------------------------------------------------------------------

Rapport de ZHPDiag v1.27.232 par Nicolas Coolman, Update du 18/06/2011

Run by root at 18/06/2011 22:30:55

Web site : ZHPDiag Outil de diagnostic

---\\ Web Browser

MSIE: Internet Explorer v9.0.8112.16421

MFIE: Mozilla Firefox 4.0.1 v (Defaut)

GCIE: Google Chrome v12.0.742.100

---\\ System Information

Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)

Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel

Operating System: 64 Bits

Boot mode: Normal (Normal boot)

Total RAM: 4090 MB (46% free)

System Restore: Activé (Enable)

System drive C: has 213 GB (71%) free of 298 GB

---\\ Logged in mode

Computer Name: LAROWANE

User Name: root

All Users Names: root, HomeManagementComm, HomeGroupUser$, Administrateur,

Unselected Option: O45,O61,O62,O65,O66,O82

Logged in as Administrator

---\\ Environnement Variables

%AppData%=C:\Users\root\AppData\Roaming

%LocalAppData%=C:\Users\root\AppData\Local

%StartMenu%=C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 213 Go of 298 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 205 Go of 286 Go)

E:\ CD-ROM drive (Free 0 Go of 8 Go)

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK

---\\ Recherche particulière de fichiers génériques

[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 07:19:30.) -- C:\Windows\Explorer.exe [2871808]

[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]

[MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.15/04/2011 12:02:09.) -- C:\Windows\system32\wininet.dll [1126912]

---\\ Processus lancés

[MD5.2723464509882A9CA0B94E6B3929FC13] - (.BitDefender S.R.L. - Pas de description.) -- C:\Program Files\BitDefender\BitDefender 2011\Antispam32\pchooklaunch32.exe [64048]

[MD5.628989FE4B0C7CC2B4E07713BAB51254] - (.Agence-Exclusive - autoupdater.) -- C:\Users\root\AppData\Roaming\Agence-Exclusive\Agence-Exclusive\autoupdater.exe [671360]

[MD5.5AF1E9600E3FF841E522703A4993ED0C] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904]

[MD5.3F09D12C0DF3BFF61E80309063F165D2] - (.Egis Technology Inc. - MyWinLocker.) -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [349480]

[MD5.FBFA45B2D8ABB107C79E0CA0F8ED0A6D] - (.Pas de propriétaire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe [200704]

[MD5.0A78DBCEB73BF14086DDDDFD640CB6A6] - (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [390728]

[MD5.3D344A85CDFC89DE9E8B0A70704EDC9B] - (.SlySoft, Inc. - AnyDVD Application.) -- C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe [5140088]

[MD5.528C31AC57D7DC707DACD2F1EE28D4C6] - (.Pas de propriétaire - Ditto.) -- C:\Program Files (x86)\Ditto\Ditto.exe [831488]

[MD5.2AEDF65E4718FD1515022FDDDF21F551] - (.PCTV Systems S.à r.l. - RemoTerm - Remote Control Application.) -- C:\Program Files (x86)\Common Files\PCTV Systems\RemoTerm\remoterm.exe [226576]

[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2260480]

[MD5.755DB0FABD639DE8D9FA6D446BA90D36] - (.Gadwin Systems, Inc - Gadwin PrintScreen.) -- C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe [487424]

[MD5.5D539617604E953FD2DF852F4B51A383] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [15141768]

[MD5.E9D9BD826115D767E5F63EC5CB768977] - (.Simon Tatham - PuTTY SSH authentication agent.) -- C:\Program Files (x86)\PuTTY\pageant.exe [135168]

[MD5.EEBC90E349015E930BDF3900674601E5] - (.The Pidgin developer community - Pidgin.) -- C:\Program Files (x86)\Pidgin\pidgin.exe [48618]

[MD5.9713EB9E1CBC6803E8D088311F5E10F4] - (.NewTech Infosystems, Inc. - Acer Backup Manager.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [261888]

[MD5.EF533F9D1E4F51C783D4349A7C3F518F] - (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [199464]

[MD5.C316AFAE719B1C1CE1B903673BC6A641] - (...) -- C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe [77824]

[MD5.70B893DEA2E128CC0144461C483217BE] - (.Dritek System Inc. - Launch Manager Keyboard Application.) -- C:\Program Files (x86)\Launch Manager\LManager.exe [1100368]

[MD5.2B34B9A76E94B7F60BBC26EF32283AA6] - (.CyberLink Corp. - Acer Arcade Deluxe Resident Program.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [419112]

[MD5.7D9EDDB07E9EB30D399E630D94DFBCC7] - (.Acer Corp. - Acer Arcade Deluxe PlayMovie Resident Progr.) -- C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe [181480]

[MD5.47C1DE0A890613FFCFF1D67648EEDF90] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920]

[MD5.895A62970833575772FA21B0C54C158D] - (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe [74752]

[MD5.D810CB25C7A41BB56FDA92C9B24D1396] - (.Acronis - Acronis True Image Monitor.) -- C:\Program Files (x86)\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe [2536448]

[MD5.53E7EE89FD12FFD470B25EF6CFC05C06] - (.Acronis - Acronis True Image Monitor.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5542168]

[MD5.57D8C4ED26DFD7EF0E2CB196FB8BFB54] - (.DivX, LLC - DivX Download Manager Service.) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\DDMService.exe [63360]

[MD5.2A21FE60A9BC5247BD8C57409A2B97F8] - (.Elaborate Bytes AG - Virtual CloneDrive Daemon.) -- C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [89456]

[MD5.38957E987A4A565D984AE19B315173D1] - (.PcTuto - PcTuto.) -- C:\Program Files (x86)\Agence-Exclusive\pctuto.exe [1035904]

[MD5.7636713B4F0944045AB4AF7CED5245AB] - (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1230704]

[MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696]

[MD5.F06CA6475B7A538DB9DC3F7B896B97E4] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [449584]

[MD5.E83508D9A0F0D0D8449317DC6A4C5E02] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [924632]

[MD5.3B2CC09944488DB5ED5DFDC315C9AB57] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [16856]

[MD5.2487C45B64790FC210547919F18FAC71] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe [1047656]

[MD5.9EB504E566BA99D7477BF923276FDA30] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [659968]

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)

C:\Users\root\AppData\Roaming\Mozilla\Firefox\Profiles\6abhpz0v.default\prefs.js

C:\Users\root\AppData\Roaming\Mozilla\Firefox\Profiles\70dm9o4q.default\prefs.js

C:\Users\root\AppData\Roaming\Mozilla\Firefox\Profiles\un0zg2sd.default\prefs.js

M3 - MFPP: Plugins - [root] -- C:\Users\root\AppData\Roaming\Mozilla\Firefox\Profiles\70dm9o4q.default\searchplugins\conduit.xml

P2 - FPN: [HKLM] [@divx.com/DivX VOD Helper,version=1.0.0] - (.DivX, LLC. - DivX VOD Helper Plug-in.) -- C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

M0 - MFSP: prefs.js [root - 70dm9o4q.default] Vous Etes Perdu ?

M2 - MFEP: prefs.js [root - 70dm9o4q.default\CLEO@guid.customsoftwareconsult.com] [] CLEO v5.0beta1 (.Chuck Baker.)

M2 - MFEP: prefs.js [root - 70dm9o4q.default\DeviceDetection@logitech.com] [] Ð’Ð¸ÑÐ²Ð»ÐµÐ½Ð½Ñ Ð¿Ñ€Ð¸ÑÑ‚Ñ€Ð¾Ñ—Ð² Logitech v1.21.0.11 (.Logitech, Inc..)

M2 - MFEP: prefs.js [root - 70dm9o4q.default\engine@conduit.com] [] Conduit Engine v3.3.3.2 (.Conduit Ltd..)

M2 - MFEP: prefs.js [root - 70dm9o4q.default\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}] [] uTorrentBar_FR Community Toolbar v3.3.3.2 (.Conduit Ltd..)

M2 - MFEP: prefs.js [root - 70dm9o4q.default\{1018e4d6-728f-4b20-ad56-37578a4de76b}] [] Flagfox v4.1.4 (.Dave Garrett.)

M2 - MFEP: prefs.js [root - 70dm9o4q.default\{340c2bbc-ce74-4362-90b5-7c26312808ef}] [] Firefox Sync v1.7 (.Mozilla.)

M2 - MFEP: prefs.js [root - 70dm9o4q.default\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}] [febe] FEBE v7.0beta2 (.Chuck Baker.)

M2 - MFEP: prefs.js [root - 70dm9o4q.default\{77f8c945-4b74-4bd6-a073-e0d1997edce8}] [] midicair Community Toolbar v3.4.1.0 (.Conduit Ltd..)

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

C:\Users\root\AppData\Local\Google\Chrome\User Data\Default\Preferences

G1 - GCS: Preference [user Data\Default] Babylon Search

G0 - GCSP: Preference [user Data\Default][HomePage] Babylon Search

G2 - GCE: Preference [user Data\Default] [fnjbmmemklcjgepojigaapkoodmkgbae] DivX HiQ v.2.1.0.900 (Activé)

G2 - GCE: Preference [user Data\Default] [nneajnkjbffgblleaoojgaacokifdkhm] video HTML5 DivX Plus Web Player v.2.1.0.900 (Activé)

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://s earch.conduit.com

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com

R0 - HKUS\S-1-5-21-4292209763-2654624829-342380457-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://s earch.conduit.com

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R1 - HKUS\S-1-5-21-4292209763-2654624829-342380457-1000\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R3 - URLSearchHook: (no name) [64Bits] - . (...) (No version) -- (.not file.)

R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll

R3 - URLSearchHook: ICQToolBar [64Bits] - {855F3B16-6D32-4fe6-8A56-BBB695989046} . (.ICQ - ICQToolBar.) (3, 1, 0, 0) -- C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll

R3 - URLSearchHook: (no name) [64Bits] - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (...) (No version) -- (.not file.)

R3 - URLSearchHook: (no name) [64Bits] - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} . (...) (No version) -- (.not file.)

R3 - URLSearchHook: (no name) [64Bits] - {77f8c945-4b74-4bd6-a073-e0d1997edce8} . (...) (No version) -- (.not file.)

R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: Windows Live Family Safety Browser Helper [64Bits] - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} . (.Microsoft Corporation - Family Safety Browser Helper Object Library.) -- C:\Program Files\Windows Live\Family Safety\fssbho.dll

O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll

O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg64.dll

O2 - BHO: Java Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Increase performance and video formats for your HTML5 <video> [64Bits] - {326E768D-4182-46FD-9C16-1449A49795F4} . (.DivX, LLC - DivX Web Player version 2.1.0.900.) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

O2 - BHO: Spybot-S&D IE Protection [64Bits] - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~2\SPYBOT~1\SDHelper.dll

O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites [64Bits] - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} . (.DivX, LLC - DivX Web Player version 2.1.0.900.) -- C:\Program Files (x86)\Di

O2 - BHO: (no name) [64Bits] - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline

O2 - BHO: Search Helper [64Bits] - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corp. - Microsoft Search Helper Extention.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin

O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll

O2 - BHO: Windows Live Toolbar Helper [64Bits] - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: BitDefender Toolbar [64Bits] - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} . (.BitDefender S.R.L. - BitDefender Antiphishing Toolbar.) -- C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll

O3 - Toolbar: Google Toolbar [64Bits] - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll

---\\ ---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [iAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe

O4 - HKLM\..\Run: [mwlDaemon] . (.Egis Technology Inc. - MyWinLocker.) -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe

O4 - HKLM\..\Run: [NvCplDaemon] C:\Windows\system32\NvCpl.dll (.not file.)

O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

O4 - HKLM\..\Run: [synTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [PLFSetI] . (.Pas de propriétaire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe

O4 - HKLM\..\Run: [Acer ePower Management] . (.Acer Incorporated - ePowerTray.) -- C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe

O4 - HKLM\..\Run: [bitDefender Antiphishing Helper] . (.BitDefender S.R.L. - IEShow Application.) -- C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe

O4 - HKLM\..\Run: [bDAgent] . (.BitDefender S.R.L. - BitDefender Agent.) -- C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe

O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] . (.Logitech, Inc. - Logitech KHAL Main Process.) -- C:\Windows\KHALMNPR.exe

O4 - HKLM\..\Run: [Acronis Scheduler2 Service] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe

O4 - HKCU\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe

O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [AnyDVD] . (.SlySoft, Inc. - AnyDVD Application.) -- C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe

O4 - HKCU\..\Run: [eyeBeam SIP Client] Clé orpheline

O4 - HKCU\..\Run: [Ditto] . (.Pas de propriétaire - Ditto.) -- C:\Program Files (x86)\Ditto\Ditto.exe

O4 - HKCU\..\Run: [RemoTerm.exe] . (.PCTV Systems S.à r.l. - RemoTerm - Remote Control Application.) -- C:\Program Files (x86)\Common Files\PCTV Systems\RemoTerm\RemoTerm.exe

O4 - HKCU\..\Run: [spybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [Gadwin PrintScreen] . (.Gadwin Systems, Inc - Gadwin PrintScreen.) -- C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe

O4 - HKCU\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Wow6432Node\Run: [NortonOnlineBackupReminder] . (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe

O4 - HKLM\..\Wow6432Node\Run: [backupManagerTray] . (.NewTech Infosystems, Inc. - Acer Backup Manager.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe

O4 - HKLM\..\Wow6432Node\Run: [EgisTecLiveUpdate] . (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe

O4 - HKLM\..\Wow6432Node\Run: [LManager] . (.Dritek System Inc. - Launch Manager Keyboard Application.) -- C:\Program Files (x86)\Launch Manager\LManager.exe

O4 - HKLM\..\Wow6432Node\Run: [ArcadeDeluxeAgent] . (.CyberLink Corp. - Acer Arcade Deluxe Resident Program.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe

O4 - HKLM\..\Wow6432Node\Run: [PlayMovie] . (.Acer Corp. - Acer Arcade Deluxe PlayMovie Resident Progr.) -- C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe

O4 - HKLM\..\Wow6432Node\Run: [bitDefender Antiphishing Helper] . (.BitDefender S.R.L. - IEShow Application.) -- C:\Program Files\BitDefender\BitDefender 2011\Antispam32\ieshow.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKLM\..\Wow6432Node\Run: [WinampAgent] . (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe

O4 - HKLM\..\Wow6432Node\Run: [sAOB Monitor] . (.Acronis - Acronis True Image Monitor.) -- C:\Program Files (x86)\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe

O4 - HKLM\..\Wow6432Node\Run: [TrueImageMonitor.exe] . (.Acronis - Acronis True Image Monitor.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe

O4 - HKLM\..\Wow6432Node\Run: [DivX Download Manager] . (.DivX, LLC - DivX Download Manager Service.) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\DDmService.exe

O4 - HKLM\..\Wow6432Node\Run: [VirtualCloneDrive] . (.Elaborate Bytes AG - Virtual CloneDrive Daemon.) -- C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe

O4 - HKLM\..\Wow6432Node\Run: [pctuto] . (.PcTuto - PcTuto.) -- C:\Program Files (x86)\Agence-Exclusive\pctuto.exe

O4 - HKLM\..\Wow6432Node\Run: [DivXUpdate] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe

O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

O4 - HKLM\..\Wow6432Node\Run: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

O4 - HKLM\..\Wow6432Node\RunOnce: [autoupdater] . (.Agence-Exclusive - autoupdater.) -- C:\Users\root\AppData\Roaming\Agence-Exclusive\Agence-Exclusive\autoupdater.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-21-4292209763-2654624829-342380457-1000\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe

O4 - HKUS\S-1-5-21-4292209763-2654624829-342380457-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKUS\S-1-5-21-4292209763-2654624829-342380457-1000\..\Run: [AnyDVD] . (.SlySoft, Inc. - AnyDVD Application.) -- C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe

O4 - HKUS\S-1-5-21-4292209763-2654624829-342380457-1000\..\Run: [eyeBeam SIP Client] Clé orpheline

O4 - HKUS\S-1-5-21-4292209763-2654624829-342380457-1000\..\Run: [Ditto] . (.Pas de propriétaire - Ditto.) -- C:\Program Files (x86)\Ditto\Ditto.exe

O4 - HKUS\S-1-5-21-4292209763-2654624829-342380457-1000\..\Run: [RemoTerm.exe] . (.PCTV Systems S.à r.l. - RemoTerm - Remote Control Application.) -- C:\Program Files (x86)\Common Files\PCTV Systems\RemoTerm\RemoTerm.exe

O4 - HKUS\S-1-5-21-4292209763-2654624829-342380457-1000\..\Run: [spybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKUS\S-1-5-21-4292209763-2654624829-342380457-1000\..\Run: [Gadwin PrintScreen] . (.Gadwin Systems, Inc - Gadwin PrintScreen.) -- C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe

O4 - HKUS\S-1-5-21-4292209763-2654624829-342380457-1000\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe

O4 - HKUS\S-1-5-18\..\RunOnce: [{91120000-002F-0000-0000-0000000FF1CE}] Clé orpheline

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)

O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logitech SetPoint.lnk . (.Logitech, Inc..) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe

O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Rechercher les mises à jour.lnk . (.PCTV Systems.) -- C:\Program Files (x86)\Common Files\PCTV Systems\WebUpdater\WebUpdater.exe

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\pageant - Raccourci.lnk . (.Simon Tatham.) -- C:\Program Files (x86)\PuTTY\pageant.exe

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Pidgin.lnk . (.The Pidgin developer community.) -- C:\Program Files (x86)\Pidgin\pidgin.exe

---\\ ---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\root\Desktop\DVD Shrink 3.2.lnk . (.DVD Shrink.) -- C:\Program Files (x86)\DVD Shrink\DVD Shrink 3.2.exe

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Adobe Digital Editions.lnk . (.Adobe Systems, Inc..) -- C:\Program Files (x86)\Adobe\Adobe Digital Editions\digitaleditions.exe

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DVD Decrypter.lnk . (.LIGHTNING UK!.) -- C:\Program Files (x86)\DVD Decrypter\DVDDecrypter.exe

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ICQ7.2.lnk . (.ICQ, LLC..) -- C:\Program Files (x86)\ICQ7.2\ICQ.exe

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk . (.Mozilla Messaging.) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Oracle VM VirtualBox.lnk . (...) -- C:\Program Files (x86)\Oracle\VirtualBox\VirtualBox.exe (.not file.)

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\PuTTY.lnk . (.Simon Tatham.) -- C:\Program Files (x86)\PuTTY\putty.exe

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk . (.Nullsoft, Inc..) -- C:\Program Files (x86)\Winamp\winamp.exe

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WinSCP.lnk . (.Martin Prikryl.) -- C:\Program Files (x86)\WinSCP\WinSCP.exe

O4 - Global Startup: C:\Users\root\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Wireshark.lnk . (.The Wireshark developer community, http://w.) -- C:\Program Files\Wireshark\wireshark.exe

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: E&xport to Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~2\Office12\EXCEL.exe

O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{8875E54E-9AFD-4DB2-9EA1-5D368ECB4D9C}: DhcpNameServer = 10.0.0.1 10.0.0.5 10.0.0.3 192.168.1.3 192.168.1.5

O17 - HKLM\System\CS1\Services\Tcpip\..\{8875E54E-9AFD-4DB2-9EA1-5D368ECB4D9C}: DhcpNameServer = 10.0.0.1 10.0.0.5 10.0.0.3 192.168.1.3 192.168.1.5

O17 - HKLM\System\CS2\Services\Tcpip\..\{8875E54E-9AFD-4DB2-9EA1-5D368ECB4D9C}: DhcpNameServer = 10.0.0.1 10.0.0.5 10.0.0.3 192.168.1.3 192.168.1.5

O17 - HKLM\System\CCS\Services\Tcpip\..\{8875E54E-9AFD-4DB2-9EA1-5D368ECB4D9C}: DhcpDomain = pascal.lan

O17 - HKLM\System\CS1\Services\Tcpip\..\{8875E54E-9AFD-4DB2-9EA1-5D368ECB4D9C}: DhcpDomain = pascal.lan

O17 - HKLM\System\CS2\Services\Tcpip\..\{8875E54E-9AFD-4DB2-9EA1-5D368ECB4D9C}: DhcpDomain = pascal.lan

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = pascal.lan

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.1 10.0.0.5 10.0.0.3 192.168.1.3 192.168.1.5

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - Winlogon Notify: LBTWlgn . (.Logitech, Inc. - Logitech Bluetooth Service.) -- c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: (AcrSch2Svc) . (.Acronis - Acronis Scheduler 2.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe

O23 - Service: (afcdpsrv) . (.Acronis - File Level CDP Manager Service.) - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe

O23 - Service: (ePowerSvc) . (.Acer Incorporated - ePowerSvc.) - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe

O23 - Service: (Greg_Service) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe

O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: (gupdatem) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

O23 - Service: (ICQ Service) . (.Pas de propriétaire - ICQIEUpdater Module.) - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe

O23 - Service: (LBTServ) . (.Logitech, Inc. - Logitech Bluetooth Service.) - C:\Program Files\Common Files\logishrd\Bluetooth\LBTServ.exe

O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: (MWLService) . (.Egis Technology Inc. - MyWinLocker Service.) - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe

O23 - Service: (NTI IScheduleSvc) . (.NewTech Infosystems, Inc. - Backup Manager Module.) - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe

O23 - Service: (NTIBackupSvc) . (.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe

O23 - Service: (NTISchedulerSvc) . (.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

O23 - Service: (nvsvc) - Clé orpheline

O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Clé orpheline

O23 - Service: (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: (SeaPort) . (.Microsoft Corp. - Microsoft SeaPort Search Enhancement Broker.) - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

O23 - Service: (Update Server) . (.BitDefender - Bitdefender Web Server.) - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe

O23 - Service: (Updater Service) . (.Acer - Acer Update Service.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

O23 - Service: (UPDATESRV) . (.BitDefender S.R.L. - BitDefender Update Service.) - C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe

O23 - Service: (VSSERV) . (.BitDefender S.R.L. - BitDefender Security Service.) - C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe

O23 - Service: (winvnc) . (.www.ultravnc.fr - Serveur VNC pour Win32.) - C:\Program Files (x86)\UltraVNC\WinVNC.exe

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(...) - (.not file.)

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Norton Security Scan for root.job

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

[MD5.72DE3854306A0982D1D59725968F7FF8] [APT] [Norton Security Scan for root] (.Symantec Corporation.) -- C:\PROGRA~2\NORTON~2\Engine\310~1.21\Nss.exe

[MD5.5D539617604E953FD2DF852F4B51A383] [APT] [{AE61C976-69EA-4FF8-A3CC-21809525E990}] (.Skype Technologies S.A..) -- C:\Program Files (x86)\Skype\Phone\Skype.exe

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (Bdfndisf) . (.BitDefender - BitDefender Firewall NDIS6 Filter Driver.) - c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys

O41 - Driver: (bdfwfpf) . (.BitDefender - BitDefender Firewall WFP Filter Driver.) - C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys

O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys

O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys

O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys

O41 - Driver: (ElbyCDIO) . (.Elaborate Bytes AG - ElbyCD Windows x64 I/O driver.) - C:\Windows\System32\Drivers\ElbyCDIO.sys

O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys

O41 - Driver: (mwlPSDFilter) . (.Egis Technology Inc. - PSD Filter Driver.) - C:\Windows\System32\DRIVERS\mwlPSDFilter.sys

O41 - Driver: (mwlPSDNServ) . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) - C:\Windows\System32\DRIVERS\mwlPSDNServ.sys

O41 - Driver: (mwlPSDVDisk) . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) - C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys

O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys

O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys

O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys

O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys

O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys

O41 - Driver: (VBoxDrv) . (.Oracle Corporation - VirtualBox Support Driver.) - C:\Windows\System32\DRIVERS\VBoxDrv.sys

O41 - Driver: (VBoxUSBMon) . (.Oracle Corporation - VirtualBox USB Monitor Driver.) - C:\Windows\System32\DRIVERS\VBoxUSBMon.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys

O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys

O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys

---\\ Logiciels installés (O42)

O42 - Logiciel: Update for Microsoft Office 2007 (KB2508958) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}

O42 - Logiciel: Update for Microsoft Office 2007 (KB2508958) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}

O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}

O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}

O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}

O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}

O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}

O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}

O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{E64BA721-2310-4B55-BE5A-2925F9706192}

O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}

O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}

O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}

O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}

O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}

O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM] -- {23170F69-40C1-2702-0920-000001000000}

O42 - Logiciel: ACR38/100/122 PC/SC Driver 1.1.2.0 - (.Advanced Card Systems Ltd..) [HKLM] -- {155796AE-16D0-45D2-8939-6AE3AD67147B}

O42 - Logiciel: Acer Arcade Deluxe - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}

O42 - Logiciel: Acer Arcade Deluxe - (.CyberLink Corp..) [HKLM][64Bits] -- {2637C347-9DAD-11D6-9EA2-00055D0CA761}

O42 - Logiciel: Acer Backup Manager - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}

O42 - Logiciel: Acer Crystal Eye webcam Ver:1.1.124.1120 - (.Chicony Electronics Co.,Ltd..) [HKLM][64Bits] -- {D0ACE89D-EC7F-470F-80BE-4C98ED366B32}

O42 - Logiciel: Acer GridVista - (.Acer Inc..) [HKLM][64Bits] -- GridVista

O42 - Logiciel: Acer Registration - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Registration

O42 - Logiciel: Acer ScreenSaver - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Screensaver

O42 - Logiciel: Acer Updater - (.Acer Incorporated.) [HKLM][64Bits] -- {EE171732-BEB4-4576-887D-CB62727F01CA}

O42 - Logiciel: Acer ePower Management - (.Acer Incorporated.) [HKLM][64Bits] -- {3DB0448D-AD82-4923-B305-D001E521A964}

O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}

O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}

O42 - Logiciel: Acronis True Image Home 2011 - (.Acronis.) [HKLM][64Bits] -- {04A3A6B0-8E19-49BB-82FF-65C5A55F917D}

O42 - Logiciel: ActivePerl 5.12.2 Build 1203 (64-bit) - (.ActiveState.) [HKLM] -- {DD7327D2-EC4B-4BA7-9A58-4EF457F2E9F9}

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}

O42 - Logiciel: Adobe Digital Editions - (.Pas de propriétaire.) [HKLM][64Bits] -- Digital Editions

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin

O42 - Logiciel: Adobe Reader 9.4.5 MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}

O42 - Logiciel: AnyDVD - (.SlySoft.) [HKLM][64Bits] -- AnyDVD

O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}

O42 - Logiciel: AviSynth 2.5 - (.Pas de propriétaire.) [HKLM][64Bits] -- AviSynth

O42 - Logiciel: BOINC - (.Space Sciences Laboratory, U.C. Berkeley.) [HKLM] -- {48F04AD2-77E9-45F3-8A4F-F5D38E519F02}

O42 - Logiciel: Backup Manager Basic - (.NewTech Infosystems.) [HKLM][64Bits] -- {72B776E5-4530-4C4B-9453-751DF87D9D93}

O42 - Logiciel: BitDefender Internet Security 2011 - (.BitDefender.) [HKLM] -- BitDefender

O42 - Logiciel: BitDefender Internet Security 2011 - (.BitDefender.) [HKLM] -- {CFB8BDCE-8814-4B9A-8EA9-31DB74FEF0AE}

O42 - Logiciel: Broadcom Gigabit NetLink Controller - (.Broadcom Corporation.) [HKLM] -- {96F70DF8-160F-4F9C-9B9E-2A9B439B4EB9}

O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner

O42 - Logiciel: CDDRV_Installer - (.Logitech.) [HKLM] -- {0C826C5B-B131-423A-A229-C71B3CACCD6A}

O42 - Logiciel: Command & Conquer 3 - (.Nom de votre société.) [HKLM][64Bits] -- {DDEDAF6C-488E-4CDA-8276-1CCF5F3C5C32}

O42 - Logiciel: Command & Conquer 4™ Le Crépuscule du Tiberium - (.Electronic Arts.) [HKLM][64Bits] -- {82696435-8572-4D8B-A230-D1AA567D0F0F}

O42 - Logiciel: Conceptronic Network USB Storage Adapter - (.Nom de votre société.) [HKLM] -- {3861B841-E4B7-4496-9471-6CF6D4CE8A9C}

O42 - Logiciel: Conceptronic Network USB Storage Adapter - (.Pas de propriétaire.) [HKLM][64Bits] -- InstallShield_{3861B841-E4B7-4496-9471-6CF6D4CE8A9C}

O42 - Logiciel: Conduit Engine - (.Conduit Ltd..) [HKLM][64Bits] -- conduitEngine

O42 - Logiciel: CutePDF Writer 2.8 - (.Pas de propriétaire.) [HKLM] -- CutePDF Writer Installation

O42 - Logiciel: DVD Decrypter (Remove Only) - (.Pas de propriétaire.) [HKLM][64Bits] -- DVD Decrypter

O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM][64Bits] -- DVD Shrink_is1

O42 - Logiciel: DVDx 4.0 - (.labDV.) [HKLM][64Bits] -- DVDx 4.0

O42 - Logiciel: Defraggler - (.Piriform.) [HKLM] -- Defraggler

O42 - Logiciel: Ditto 3.17.0.17 - (.Scott Brogden.) [HKLM][64Bits] -- Ditto_is1

O42 - Logiciel: DivX Setup - (.DivX, LLC.) [HKLM][64Bits] -- DivX Setup.divx.com

O42 - Logiciel: Documents To Go Desktop for Android - (.DataViz, Inc..) [HKLM][64Bits] -- DTGDesktop-Android

O42 - Logiciel: GNU Privacy Guard - (.Free Software Foundation.) [HKLM][64Bits] -- GnuPG

O42 - Logiciel: GPL Ghostscript 9.00 - (.Pas de propriétaire.) [HKLM][64Bits] -- GPL Ghostscript 9.00

O42 - Logiciel: GSview 4.9 - (.Pas de propriétaire.) [HKLM] -- GSview 4.9

O42 - Logiciel: Gadwin PrintScreen - (.Pas de propriétaire.) [HKLM][64Bits] -- Gadwin PrintScreen

O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}

O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {B3FED300-806C-11E0-A0D0-B8AC6F97B88E}

O42 - Logiciel: HDAUDIO Soft Data Fax Modem with SmartCP - (.Conexant Systems.) [HKLM] -- CNXT_MODEM_HDA_HSF

O42 - Logiciel: ICQ Toolbar - (.ICQ.) [HKLM][64Bits] -- ICQToolbar

O42 - Logiciel: ICQ7.2 - (.ICQ.) [HKLM][64Bits] -- {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}

O42 - Logiciel: Identity Card - (.Acer Incorporated.) [HKLM][64Bits] -- Identity Card

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite_Wave3

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8}

O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}

O42 - Logiciel: Java 6 Update 26 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216022FF}

O42 - Logiciel: Java SE Development Kit 6 Update 25 - (.Oracle.) [HKLM][64Bits] -- {32A3A4F4-B792-11D6-A78A-00B0D0160250}

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619}

O42 - Logiciel: K-Lite Codec Pack 7.1.0 (Full) - (.Pas de propriétaire.) [HKLM][64Bits] -- KLiteCodecPack_is1

O42 - Logiciel: KhalInstallWrapper - (.Logitech.) [HKLM] -- {F3F18612-7B5D-4C05-86C9-AB50F6F71727}

O42 - Logiciel: Launch Manager - (.Acer Inc..) [HKLM][64Bits] -- LManager

O42 - Logiciel: LibreOffice 3.3 - (.LibreOffice.) [HKLM][64Bits] -- {CEE2613D-3B53-4447-BA2D-E88C08272581}

O42 - Logiciel: Logitech SetPoint - (.Logitech.) [HKLM][64Bits] -- {F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM][64Bits] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}

O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.0.1200 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1

O42 - Logiciel: Media Add-ons for Acronis True Image Home 2011 - (.Acronis.) [HKLM][64Bits] -- {9A5509EE-5579-46C1-B566-5065545547F9}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}

O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0015-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0019-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001A-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-040C-1000-0000000FF1CE}_OMUI.fr-fr_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0044-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE}_OMUI.fr-fr_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-00BA-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0100-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0101-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0015-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Excel MUI (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0016-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Groove MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-00BA-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- HOMESTUDENTR

O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0044-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Language Pack 2007 - French/Français - (.Microsoft Corporation.) [HKLM][64Bits] -- OMUI.fr-fr

O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.) [HKLM][64Bits] -- {57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}

O42 - Logiciel: Microsoft Office O MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0100-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Office 64-bit Components 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE}

O42 - Logiciel: Microsoft Office OneNote MUI (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-00A1-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001A-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0018-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00AF-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- PROPLUS

O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-002C-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-002C-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE}_OMUI.fr-fr_{14809F99-C601-4D4A-9391-F1E8FAA964C5}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE}_OMUI.fr-fr_{A0516415-ED61-419A-981D-93596DA74165}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE}_OMUI.fr-fr_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}

O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0019-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0017-040C-0000-0000000FF1CE}_OMUI.fr-fr_{CCDA3DD6-E33D-4D75-B7C9-FF585580CE83}

O42 - Logiciel: Microsoft Office SharePoint Designer MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0017-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared 64-bit MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-0409-1000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-040C-1000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0116-0409-1000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-006E-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared Setup Metadata MUI (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0115-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM][64Bits] -- {E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}

O42 - Logiciel: Microsoft Office Word MUI (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001B-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office X MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0101-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}

O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {B6E3757B-5E77-3915-866A-CCFC4B8D194C}

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM][64Bits] -- {770657D0-A123-3C07-8E44-1C83EC895118}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {071c9b48-7c32-4621-a0ac-3f809523288f}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 - (.Microsoft Corporation.) [HKLM] -- {aac9fcc4-dd9e-4add-901c-b5496a07ab2e}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}

O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {EE936C7A-EA40-31D5-9B65-8E3E089C3828}

O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {8338783A-0968-3B85-AFC7-BAAE0A63DC50}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM][64Bits] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {350AA351-21FA-3270-8B7A-835434E766AD}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {8220EEFE-38CD-377E-8595-13398D740ACE}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}

O42 - Logiciel: Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 - (.Microsoft Corporation.) [HKLM] -- {DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}

O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 - (.Microsoft Corporation.) [HKLM][64Bits] -- {196BB40D-1578-3D01-B289-BEFC77A11A1E}

O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B160861-7250-451E-B5EE-8B92BF30A710}

O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0020-040C-0000-0000000FF1CE}

O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack

O42 - Logiciel: Mozilla Firefox 4.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 4.0.1 (x86 fr)

O42 - Logiciel: Mozilla Thunderbird (3.1.10) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird (3.1.10)

O42 - Logiciel: MySQL Connector/ODBC 5.1 - (.Oracle Corporation.) [HKLM] -- {C44218B2-EC4D-4EB9-A3E3-F8F4A46927EC}

O42 - Logiciel: MySQL Workbench 5.2 CE - (.Oracle Corporation.) [HKLM][64Bits] -- {7CB4BD9D-5CDA-4DEC-9C88-A300C569A2A5}

O42 - Logiciel: MyWinLocker - (.Egis Technology Inc..) [HKLM][64Bits] -- {68301905-2DEA-41CE-A4D4-E8B443B099BA}

O42 - Logiciel: NTI Backup Now 5 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}

O42 - Logiciel: NTI Media Maker 8 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}

O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers

O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {1C4551A6-4743-4093-91E4-1477CD655043}

O42 - Logiciel: Norton Online Backup - (.Symantec.) [HKLM][64Bits] -- {C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}

O42 - Logiciel: Norton Security Scan - (.Symantec Corporation.) [HKLM][64Bits] -- NSS

O42 - Logiciel: Nuvoton EC Generic HID Driver - (.Nuvoton Technology Corporation.) [HKLM][64Bits] -- {92975DF9-EA36-4F36-A9AC-D412BC1D709E}

O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM][64Bits] -- {05653DE1-6567-40C6-B930-39D399B64369}

O42 - Logiciel: Oracle VM VirtualBox 4.0.4 - (.Oracle Corporation.) [HKLM] -- {82E3FBCE-9BA2-44E3-9FF9-EFE9E8B70131}

O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin

O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}

O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}

O42 - Logiciel: Package de pilotes Windows - ACS (A38CCID) SmartCardReader (12/16/2009 1.1.6.5) - (.ACS.) [HKLM] -- F02CC611741E33C64CDEAEEE2C7A46E41719B2CC

O42 - Logiciel: Package de pilotes Windows - ACS (ACR122U) SmartCardReader (12/16/2009 1.1.6.3) - (.ACS.) [HKLM] -- A9B944A9EADA685F103858C6923BF5DD8E127C2C

O42 - Logiciel: Package de pilotes Windows - ACS (ACSSCR) SmartCardReader (12/15/2009 1.1.6.2) - (.ACS.) [HKLM] -- 0942775975678D6CC510D2C2F022CD956CCF177E

O42 - Logiciel: Pidgin - (.Pas de propriétaire.) [HKLM][64Bits] -- Pidgin

O42 - Logiciel: PlayReady PC Runtime amd64 - (.Microsoft Corporation.) [HKLM] -- {BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}

O42 - Logiciel: Plus Pack for Acronis True Image Home 2011 - (.Acronis.) [HKLM][64Bits] -- {F1ED5BD7-4770-4037-9CBD-5DF9A5BEC408}

O42 - Logiciel: PuTTY version 0.60 - (.Simon Tatham.) [HKLM][64Bits] -- PuTTY_is1

O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}

O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}

O42 - Logiciel: SQLite ODBC Driver (remove only) - (.Pas de propriétaire.) [HKLM][64Bits] -- SQLite ODBC Driver

O42 - Logiciel: SQLite3 ODBC Driver for Win64 (remove only) - (.Pas de propriétaire.) [HKLM][64Bits] -- SQLite3 ODBC Driver for Win64

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5C497F0B-2061-4CC9-A61C-6B45B867354D}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5C497F0B-2061-4CC9-A61C-6B45B867354D}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD769337-C8AC-46DB-A7DC-643E50089263}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CD769337-C8AC-46DB-A7DC-643E50089263}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{536FB502-775F-4494-BACE-C02CC90B7A5B}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{536FB502-775F-4494-BACE-C02CC90B7A5B}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2509488) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{AD0DE453-0804-4495-9C91-33D0F9AA5463}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2509488) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{AD0DE453-0804-4495-9C91-33D0F9AA5463}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7F207DCA-3399-40CB-A968-6E5991B1421A}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7F207DCA-3399-40CB-A968-6E5991B1421A}

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708

O42 - Logiciel: Security Update for Microsoft Office 2007 System (KB2541012) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD907315-705A-4475-A1A0-2A1245803E4D}

O42 - Logiciel: Security Update for Microsoft Office 2007 System (KB2541012) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CD907315-705A-4475-A1A0-2A1245803E4D}

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5}

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5A4E43D5-858F-49BD-BA72-8F30E1793060}

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2541007) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{A0173254-F442-4D04-9154-43FA157B83D0}

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2541007) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A0173254-F442-4D04-9154-43FA157B83D0}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB2510061) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5D930261-AA5B-48D1-931F-425C9D767490}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062}

O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3A4CDE54-2403-483D-8D9A-15E3264410DF}

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}

O42 - Logiciel: Silent Hunter 5 - (.Ubisoft.) [HKLM][64Bits] -- {AC61C594-5F86-4BE9-ABAF-763C6A8E2302}

O42 - Logiciel: Skype™ 5.3 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {D6F879CC-59D6-4D4B-AE9B-D761E48D25ED}

O42 - Logiciel: Softonic_France Toolbar - (.Softonic_France.) [HKLM][64Bits] -- Softonic_France Toolbar

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1

O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey

O42 - Logiciel: TVCenter - (.PCTV Systems.) [HKLM] -- {18F703C3-32EC-4E5C-BC3C-C1BD72D35F5B}

O42 - Logiciel: TexMakerX 2.0.0 - (.Benito van der Zander.) [HKLM][64Bits] -- TexMakerX_is1

O42 - Logiciel: TortoiseSVN 1.6.16.21511 (64 bit) - (.TortoiseSVN.) [HKLM] -- {1DD03A94-C815-46EF-A43A-B36694002A7C}

O42 - Logiciel: Total Commander (Remove or Repair) - (.Ghisler Software GmbH.) [HKLM][64Bits] -- Totalcmd

O42 - Logiciel: Tuto Ccleaner1.0.0.0 - (.pctuto.) [HKLM][64Bits] -- pctuto_is1

O42 - Logiciel: Ubisoft Game Launcher - (.UBISOFT.) [HKLM][64Bits] -- {888F1505-C2B3-4FDE-835D-36353EBD4754}

O42 - Logiciel: UltraVNC v1.0.2 Fr - (.UltraVNC.) [HKLM][64Bits] -- {A8AD990E-355A-4413-8647-A9B168978423}_is1

O42 - Logiciel: Update for 2007 Microsoft Office System (KB2284654) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{FB166E7C-8AA6-48C8-B726-1F25BEE7825A}

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for Microsoft Office 2007 Help for Common Features (KB963673) - (.Microsoft.) [HKLM][64Bits] -- {90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}

O42 - Logiciel: Update for Microsoft Office 2007 System (KB2539530) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4}

O42 - Logiciel: Update for Microsoft Office 2007 System (KB2539530) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4}

O42 - Logiciel: Update for Microsoft Office Excel 2007 Help (KB963678) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}

O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{329050A9-EF80-40F9-B633-74508F54C1FF}

O42 - Logiciel: Update for Microsoft Office OneNote 2007 Help (KB963670) - (.Microsoft.) [HKLM][64Bits] -- {90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245}

O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2509470) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1365864D-4C58-489D-9982-844D75691CCC}

O42 - Logiciel: Update for Microsoft Office Powerpoint 2007 Help (KB963669) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}

O42 - Logiciel: Update for Microsoft Office Script Editor Help (KB963671) - (.Microsoft.) [HKLM][64Bits] -- {90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}

O42 - Logiciel: Update for Microsoft Office Word 2007 Help (KB963665) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}

O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2536413) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{95DF5260-331D-4FFD-A2D5-C64164751945}

O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM][64Bits] -- {5EE7D259-D137-4438-9A5F-42F432EC0421}

O42 - Logiciel: VLC media player 1.1.10 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player

O42 - Logiciel: VMware Remote Console Plug-in - (.VMware, Inc..) [HKLM][64Bits] -- {D2F28E39-9813-41D3-8EC9-BAADA38C426D}

O42 - Logiciel: VirtualCloneDrive - (.Elaborate Bytes.) [HKLM][64Bits] -- VirtualCloneDrive

O42 - Logiciel: Visual Studio 2008 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}

O42 - Logiciel: Welcome Center - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Welcome Center

O42 - Logiciel: WinImage - (.Pas de propriétaire.) [HKCU] -- WinImage

O42 - Logiciel: WinImage - (.Pas de propriétaire.) [HKLM] -- WinImage

O42 - Logiciel: WinPcap 4.1.2 - (.CACE Technologies.) [HKLM][64Bits] -- WinPcapInst

O42 - Logiciel: WinSCP 4.3.2 - (.Martin Prikryl.) [HKLM][64Bits] -- winscp3_is1

O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp

O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {B3B487E7-6171-4376-9074-B28082CEB504}

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}

O42 - Logiciel: Windows Live Contrôle parental - (.Microsoft Corporation.) [HKLM] -- {A8A4C98E-08D8-41BB-BDCB-2C412327535E}

O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {76810709-A7D3-468D-9167-A1780C1E766C}

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {5DD76286-9BE7-4894-A990-E905E91AC818}

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}

O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {230B83A5-7D88-4B95-B71E-F44C0C78B002}

O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D6524E6-15CF-4852-BF70-04FE973A3DE1}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {4634B21A-CC07-4396-890C-2B8168661FEA}

O42 - Logiciel: Wireshark 1.6.0 - (.The Wireshark developer community, http://www.wire s har k .org.) [HKLM][64Bits] -- Wireshark

O42 - Logiciel: eSobi v2 - (.esobi Inc..) [HKLM][64Bits] -- InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}

O42 - Logiciel: erLT - (.Logitech, Inc..) [HKLM][64Bits] -- {A498D9EB-927B-459B-85D6-DD6EF8C2C564}

O42 - Logiciel: uTorrentBar_FR Toolbar - (.uTorrentBar_FR.) [HKLM][64Bits] -- uTorrentBar_FR Toolbar

---\\ HKCU & HKLM Software Keys

[HKCU\Software\7-zip]

[HKCU\Software\9bis.com]

[HKCU\Software\AVG]

[HKCU\Software\Acer]

[HKCU\Software\Acro Software Inc]

[HKCU\Software\Acronis]

[HKCU\Software\Adobe]

[HKCU\Software\Agence-Exclusive]

[HKCU\Software\America Online]

[HKCU\Software\AppDataLow\Software\Conduit]

[HKCU\Software\AppDataLow\Software\DivX]

[HKCU\Software\AppDataLow\Software\Google]

[HKCU\Software\AppDataLow\Software\Monitored]

[HKCU\Software\AppDataLow\Software\PriceGong]

[HKCU\Software\AppDataLow\Software\Softonic_France]

[HKCU\Software\AppDataLow\Software\conduitEngine]

[HKCU\Software\AppDataLow\Software\settings]

[HKCU\Software\AppDataLow\Software\uTorrentBar_FR]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\BitDefender]

[HKCU\Software\Canneverbe Limited]

[HKCU\Software\Chicony]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\CounterPath Corporation]

[HKCU\Software\Cyberlink]

[HKCU\Software\DVD Decrypter]

[HKCU\Software\DVD Shrink]

[HKCU\Software\DataViz]

[HKCU\Software\Debug]

[HKCU\Software\Ditto]

[HKCU\Software\DivXNetworks]

[HKCU\Software\DivX]

[HKCU\Software\EBInstaller]

[HKCU\Software\EasyBits]

[HKCU\Software\Elaborate Bytes]

[HKCU\Software\Electronic Arts]

[HKCU\Software\GNU]

[HKCU\Software\GPL Ghostscript]

[HKCU\Software\Gabest]

[HKCU\Software\Gadwin Systems]

[HKCU\Software\Ghisler]

[HKCU\Software\Google]

[HKCU\Software\Haali]

[HKCU\Software\ICQ]

[HKCU\Software\IM Providers]

[HKCU\Software\Intel]

[HKCU\Software\JavaSoft]

[HKCU\Software\Leadertech]

[HKCU\Software\LibreOffice]

[HKCU\Software\Local AppWizard-Generated Applications]

[HKCU\Software\Logitech]

[HKCU\Software\LowRegistry]

[HKCU\Software\MONOGRAM]

[HKCU\Software\Macromedia]

[HKCU\Software\MainConcept]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\Martin Prikryl]

[HKCU\Software\MediaInfo]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Mozilla]

[HKCU\Software\MySQL AB]

[HKCU\Software\NVIDIA Corporation]

[HKCU\Software\Netscape]

[HKCU\Software\NewTech Infosystems]

[HKCU\Software\Northcode Inc]

[HKCU\Software\ODBC]

[HKCU\Software\OEM]

[HKCU\Software\ORL]

[HKCU\Software\OpenOffice.org]

[HKCU\Software\PCTV Systems]

[HKCU\Software\PDFCreator]

[HKCU\Software\Pinnacle Systems]

[HKCU\Software\Piriform]

[HKCU\Software\Policies]

[HKCU\Software\Realtek]

[HKCU\Software\Safer Networking Limited]

[HKCU\Software\SecuROM]

[HKCU\Software\SimonTatham]

[HKCU\Software\SkypeApps]

[HKCU\Software\Skype]

[HKCU\Software\SlySoft]

[HKCU\Software\Softonic]

[HKCU\Software\Sonix]

[HKCU\Software\Space Sciences Laboratory, U.C. Berkeley]

[HKCU\Software\Synaptics]

[HKCU\Software\Sysinternals]

[HKCU\Software\Tabuleiro.com]

[HKCU\Software\TortoiseSVN]

[HKCU\Software\Trolltech]

[HKCU\Software\Ubisoft]

[HKCU\Software\VOB]

[HKCU\Software\WinPenguins]

[HKCU\Software\Winamp]

[HKCU\Software\Wistron]

[HKCU\Software\Wow6432Node]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\labDV]

[HKCU\Software\madFlac]

[HKCU\Software\nSplitter]

[HKCU\Software\pidgin]

[HKCU\Software\sqlitebrowser.sf.net]

[HKLM\Software\7-Zip]

[HKLM\Software\AGEIA Technologies]

[HKLM\Software\ATI Technologies]

[HKLM\Software\AVC3]

[HKLM\Software\AVG]

[HKLM\Software\Acer Incorporated]

[HKLM\Software\Acer]

[HKLM\Software\Acro Software Inc]

[HKLM\Software\Acronis]

[HKLM\Software\ActiveState]

[HKLM\Software\Adobe]

[HKLM\Software\Agence-Exclusive]

[HKLM\Software\Agere]

[HKLM\Software\America Online]

[HKLM\Software\CDDB]

[HKLM\Software\CXT]

[HKLM\Software\Canneverbe Limited]

[HKLM\Software\Chicony Electronics Co.,Ltd.]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Conduit]

[HKLM\Software\Conexant Systems]

[HKLM\Software\CyberLink]

[HKLM\Software\Digital River]

[HKLM\Software\DivXNetworks]

[HKLM\Software\DivX]

[HKLM\Software\EgisTec Egis Software Update]

[HKLM\Software\EgisTec]

[HKLM\Software\Elaborate Bytes]

[HKLM\Software\Electronic Arts]

[HKLM\Software\GNU]

[HKLM\Software\GPL Ghostscript]

[HKLM\Software\Ghisler]

[HKLM\Software\Ghostgum]

[HKLM\Software\Google]

[HKLM\Software\HaaliMkx]

[HKLM\Software\ICQ]

[HKLM\Software\InstalledOptions]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\KLCodecPack]

[HKLM\Software\LSI]

[HKLM\Software\LibreOffice]

[HKLM\Software\Licenses]

[HKLM\Software\Logitech]

[HKLM\Software\Macromedia]

[HKLM\Software\Malwarebytes' Anti-Malware]

[HKLM\Software\Martin Prikryl]

[HKLM\Software\McAfeeInstaller]

[HKLM\Software\MidasHeurScanner]

[HKLM\Software\Mirabilis]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\MySQL AB]

[HKLM\Software\NVIDIA Corporation]

[HKLM\Software\NewTech Infosystems]

[HKLM\Software\Norton]

[HKLM\Software\Nuvoton Technology Corporation]

[HKLM\Software\Nuvoton]

[HKLM\Software\ODBC]

[HKLM\Software\OEM]

[HKLM\Software\ORL]

[HKLM\Software\OemSetup]

[HKLM\Software\OpenOffice.org]

[HKLM\Software\Oracle]

[HKLM\Software\PCM_Upgrade]

[HKLM\Software\PCTV Systems]

[HKLM\Software\PCTools]

[HKLM\Software\PDFCreator]

[HKLM\Software\Perl]

[HKLM\Software\Piriform]

[HKLM\Software\Policies]

[HKLM\Software\Pure Networks]

[HKLM\Software\Realtek Semiconductor Corp.]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\SRS Labs]

[HKLM\Software\Safer Networking Limited]

[HKLM\Software\SiteAdvisor]

[HKLM\Software\Skype]

[HKLM\Software\SlySoft]

[HKLM\Software\Softonic_France]

[HKLM\Software\Sonic]

[HKLM\Software\Space Sciences Laboratory, U.C. Berkeley]

[HKLM\Software\Symantec]

[HKLM\Software\Synaptics]

[HKLM\Software\TortoiseOverlays]

[HKLM\Software\TortoiseSVN]

[HKLM\Software\Trad-FR]

[HKLM\Software\Ubisoft]

[HKLM\Software\UltraVnc]

[HKLM\Software\VMware, Inc.]

[HKLM\Software\VideoLAN]

[HKLM\Software\Volatile]

[HKLM\Software\Waves Audio]

[HKLM\Software\WinPcap]

[HKLM\Software\Windows]

[HKLM\Software\Wistron]

[HKLM\Software\Wow6432Node]

[HKLM\Software\mozilla.org]

[HKLM\Software\nSplitter]

[HKLM\Software\pidgin]

[HKLM\Software\uTorrentBar_FR]

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 11/05/2011 - 21:15:50 - [4588532] ----D- C:\Program Files\7-Zip

O43 - CFD: 11/10/2010 - 15:47:30 - [23338729] ----D- C:\Program Files\Acer

O43 - CFD: 11/10/2010 - 16:07:14 - [246041] ----D- C:\Program Files\Acer Accessory Store

O43 - CFD: 11/10/2010 - 18:42:30 - [641321] ----D- C:\Program Files\ACR38_100_122 PCSC Driver

O43 - CFD: 11/10/2010 - 16:44:08 - [217652766] ----D- C:\Program Files\BitDefender

O43 - CFD: 12/10/2010 - 01:03:46 - [19836437] ----D- C:\Program Files\BOINC

O43 - CFD: 28/10/2009 - 19:11:36 - [482766] ----D- C:\Program Files\Broadcom

O43 - CFD: 29/05/2011 - 00:32:06 - [7423259] ----D- C:\Program Files\CCleaner

O43 - CFD: 15/01/2011 - 01:22:16 - [16543791556] ----D- C:\Program Files\Common Files

O43 - CFD: 11/10/2010 - 15:27:40 - [1413120] ----D- C:\Program Files\CONEXANT

O43 - CFD: 12/06/2011 - 01:04:50 - [9323187] ----D- C:\Program Files\Defraggler

O43 - CFD: 11/10/2010 - 18:42:32 - [713696] ----D- C:\Program Files\DIFX

O43 - CFD: 01/06/2011 - 21:13:30 - [7727936] ----D- C:\Program Files\DivX

O43 - CFD: 03/03/2011 - 00:18:48 - [90256916] ----D- C:\Program Files\DVD Maker

O43 - CFD: 11/10/2010 - 15:32:46 - [0] -SH-D- C:\Program Files\Fichiers communs

O43 - CFD: 28/10/2010 - 22:34:28 - [3690548] ----D- C:\Program Files\Ghostgum

O43 - CFD: 28/10/2009 - 19:36:36 - [1289880] ----D- C:\Program Files\Google

O43 - CFD: 17/06/2011 - 17:27:58 - [6201814] ----D- C:\Program Files\Internet Explorer

O43 - CFD: 06/11/2010 - 14:59:08 - [20709245] ----D- C:\Program Files\Logitech

O43 - CFD: 12/10/2010 - 01:03:54 - [148931122] ----D- C:\Program Files\Microsoft Games

O43 - CFD: 29/10/2009 - 07:46:16 - [1141694] ----D- C:\Program Files\Microsoft Office

O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files\MSBuild

O43 - CFD: 20/02/2011 - 00:48:30 - [21261365] ----D- C:\Program Files\MySQL

O43 - CFD: 21/02/2011 - 20:49:20 - [132818067] ----D- C:\Program Files\Oracle

O43 - CFD: 11/10/2010 - 21:04:32 - [2178449] ----D- C:\Program Files\PlayReady

O43 - CFD: 11/10/2010 - 15:40:10 - [14792958] ----D- C:\Program Files\Realtek

O43 - CFD: 14/07/2009 - 07:32:40 - [36813993] ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 21/02/2011 - 21:24:52 - [2053706] ----D- C:\Program Files\SQLite3 ODBC Driver for Win64

O43 - CFD: 11/10/2010 - 15:40:44 - [29737069] ----D- C:\Program Files\Synaptics

O43 - CFD: 09/06/2011 - 21:23:04 - [21443185] ----D- C:\Program Files\TortoiseSVN

O43 - CFD: 14/07/2009 - 07:09:28 - [0] --H-D- C:\Program Files\Uninstall Information

O43 - CFD: 03/03/2011 - 00:18:46 - [4039680] ----D- C:\Program Files\Windows Defender

O43 - CFD: 03/03/2011 - 00:18:48 - [9224824] ----D- C:\Program Files\Windows Journal

O43 - CFD: 15/01/2011 - 01:53:22 - [322274] ----D- C:\Program Files\Windows Live

O43 - CFD: 03/03/2011 - 00:18:48 - [6667776] ----D- C:\Program Files\Windows Mail

O43 - CFD: 03/03/2011 - 00:18:48 - [7687085] ----D- C:\Program Files\Windows Media Player

O43 - CFD: 11/10/2010 - 15:32:46 - [12627636] ----D- C:\Program Files\Windows NT

O43 - CFD: 03/03/2011 - 00:18:48 - [5516056] ----D- C:\Program Files\Windows Photo Viewer

O43 - CFD: 03/03/2011 - 00:18:48 - [244736] ----D- C:\Program Files\Windows Portable Devices

O43 - CFD: 03/03/2011 - 00:18:48 - [8355930] ----D- C:\Program Files\Windows Sidebar

O43 - CFD: 17/10/2010 - 16:55:08 - [1487298] ----D- C:\Program Files\WinImage

O43 - CFD: 18/06/2011 - 15:56:36 - [83037963] ----D- C:\Program Files\Wireshark

O43 - CFD: 11/10/2010 - 16:44:08 - [16450724979] ----D- C:\Program Files\Common Files\BitDefender

O43 - CFD: 06/11/2010 - 15:01:32 - [18666914] ----D- C:\Program Files\Common Files\logishrd

O43 - CFD: 14/04/2011 - 23:42:06 - [60345246] ----D- C:\Program Files\Common Files\Microsoft Shared

O43 - CFD: 29/10/2009 - 09:39:56 - [2702] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 14/07/2009 - 05:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 12/10/2010 - 01:16:12 - [12194291] ----D- C:\Program Files\Common Files\System

O43 - CFD: 11/10/2010 - 20:35:18 - [1147112] ----D- C:\Program Files\Common Files\TortoiseOverlays

O43 - CFD: 28/10/2009 - 19:36:56 - [745105] ----D- C:\ProgramData\Acer

O43 - CFD: 07/01/2011 - 22:29:26 - [34283] ----D- C:\ProgramData\Acronis

O43 - CFD: 12/10/2010 - 14:41:40 - [51155099] ----D- C:\ProgramData\Adobe

O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Application Data

O43 - CFD: 11/05/2011 - 20:26:44 - [2026] ----D- C:\ProgramData\Autodesk

O43 - CFD: 27/05/2011 - 18:31:50 - [1274] ----D- C:\ProgramData\AVG10

O43 - CFD: 29/10/2009 - 08:10:24 - [49982] ----D- C:\ProgramData\BackupManager

O43 - CFD: 11/10/2010 - 18:03:42 - [154] ----D- C:\ProgramData\bdch

O43 - CFD: 14/12/2010 - 19:44:30 - [9198722] ----D- C:\ProgramData\BitDefender

O43 - CFD: 03/04/2011 - 14:04:16 - [284549761] ----D- C:\ProgramData\BOINC

O43 - CFD: 11/10/2010 - 15:32:46 - [0] -SH-D- C:\ProgramData\Bureau

O43 - CFD: 17/12/2010 - 21:42:36 - [0] ----D- C:\ProgramData\Canneverbe Limited

O43 - CFD: 24/05/2011 - 22:31:54 - [96] --H-D- C:\ProgramData\Common Files

O43 - CFD: 17/12/2010 - 21:36:36 - [107256] ----D- C:\ProgramData\CyberLink

O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Desktop

O43 - CFD: 01/06/2011 - 21:13:40 - [4873833] ----D- C:\ProgramData\DivX

O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Documents

O43 - CFD: 17/04/2011 - 23:17:52 - [16857] ----D- C:\ProgramData\DVD Shrink

O43 - CFD: 11/10/2010 - 15:34:20 - [0] ----D- C:\ProgramData\EgisTec

O43 - CFD: 03/06/2011 - 21:22:22 - [2362] ----D- C:\ProgramData\Electronic Arts

O43 - CFD: 29/10/2009 - 09:46:18 - [420] ----D- C:\ProgramData\eSobi

O43 - CFD: 11/10/2010 - 15:32:46 - [0] -SH-D- C:\ProgramData\Favoris

O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Favorites

O43 - CFD: 28/10/2009 - 19:36:38 - [536147] ----D- C:\ProgramData\Google

O43 - CFD: 28/11/2010 - 19:03:44 - [494215] ----D- C:\ProgramData\ICQ

O43 - CFD: 06/11/2010 - 15:03:50 - [142] ----D- C:\ProgramData\LogiShrd

O43 - CFD: 06/11/2010 - 14:59:34 - [28275507] ----D- C:\ProgramData\Logitech

O43 - CFD: 18/06/2011 - 22:04:28 - [6835021] ----D- C:\ProgramData\Malwarebytes

O43 - CFD: 11/10/2010 - 16:06:24 - [5114] ----D- C:\ProgramData\McAfee

O43 - CFD: 11/10/2010 - 15:36:24 - [289] ----D- C:\ProgramData\McQcModifier-5c47-a7b0

O43 - CFD: 11/10/2010 - 15:32:46 - [0] -SH-D- C:\ProgramData\Menu Démarrer

O43 - CFD: 27/05/2011 - 18:11:38 - [7668323] ----D- C:\ProgramData\MFAData

O43 - CFD: 23/03/2011 - 19:12:56 - [365252473] -S--D- C:\ProgramData\Microsoft

O43 - CFD: 16/06/2011 - 23:03:06 - [128044] ----D- C:\ProgramData\Microsoft Help

O43 - CFD: 11/10/2010 - 15:32:46 - [0] -SH-D- C:\ProgramData\Modèles

O43 - CFD: 08/04/2011 - 16:54:26 - [3661] ----D- C:\ProgramData\Norton

O43 - CFD: 08/04/2011 - 16:54:22 - [344394] ----D- C:\ProgramData\NortonInstaller

O43 - CFD: 11/10/2010 - 15:34:22 - [255920] ----D- C:\ProgramData\NVIDIA

O43 - CFD: 11/10/2010 - 15:47:40 - [7477] ----D- C:\ProgramData\OEM

O43 - CFD: 03/06/2011 - 21:22:22 - [301767] ----D- C:\ProgramData\Origin

O43 - CFD: 03/11/2010 - 19:06:10 - [1656] ----D- C:\ProgramData\Partner

O43 - CFD: 13/10/2010 - 20:29:14 - [3228993] ----D- C:\ProgramData\PCTV Systems

O43 - CFD: 13/10/2010 - 20:15:56 - [14358] ----D- C:\ProgramData\Pinnacle

O43 - CFD: 29/10/2009 - 09:46:26 - [36] ----D- C:\ProgramData\SiteAdvisor

O43 - CFD: 17/06/2011 - 21:22:54 - [84777376] ----D- C:\ProgramData\Skype

O43 - CFD: 17/06/2011 - 17:51:48 - [6493725] ----D- C:\ProgramData\Skype Extras

O43 - CFD: 11/10/2010 - 19:02:10 - [344634] ----D- C:\ProgramData\SlySoft

O43 - CFD: 18/06/2011 - 21:55:50 - [57865002] ----D- C:\ProgramData\Spybot - Search & Destroy

O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Start Menu

O43 - CFD: 11/10/2010 - 19:13:46 - [364] ----D- C:\ProgramData\Sun

O43 - CFD: 08/04/2011 - 16:54:32 - [232209868] ----D- C:\ProgramData\Symantec

O43 - CFD: 04/06/2011 - 21:23:16 - [127047] ---AD- C:\ProgramData\Temp

O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Templates

O43 - CFD: 17/10/2010 - 15:45:52 - [713271] ----D- C:\ProgramData\VMware

O43 - CFD: 14/10/2010 - 16:14:00 - [0] -SH-D- C:\Users\root\AppData\Roaming\.#

O43 - CFD: 18/06/2011 - 22:19:18 - [12589266] ----D- C:\Users\root\AppData\Roaming\.purple

O43 - CFD: 08/01/2011 - 00:04:56 - [7862] ----D- C:\Users\root\AppData\Roaming\Acronis

O43 - CFD: 18/10/2010 - 17:38:24 - [3630144] ----D- C:\Users\root\AppData\Roaming\Adobe

O43 - CFD: 18/05/2011 - 21:00:08 - [1450308] ----D- C:\Users\root\AppData\Roaming\Agence-Exclusive

O43 - CFD: 11/05/2011 - 20:26:44 - [2393] ----D- C:\Users\root\AppData\Roaming\Autodesk

O43 - CFD: 24/05/2011 - 22:34:58 - [462] ----D- C:\Users\root\AppData\Roaming\AVG10

O43 - CFD: 13/12/2010 - 18:56:26 - [21136] ----D- C:\Users\root\AppData\Roaming\benibela

O43 - CFD: 11/10/2010 - 16:44:16 - [68360] ----D- C:\Users\root\AppData\Roaming\BitDefender

O43 - CFD: 17/12/2010 - 21:42:36 - [2865] ----D- C:\Users\root\AppData\Roaming\Canneverbe Limited

O43 - CFD: 15/05/2011 - 16:33:34 - [4922007] ----D- C:\Users\root\AppData\Roaming\Command & Conquer 3 Les guerres du Tiberium

O43 - CFD: 14/05/2011 - 17:41:54 - [198255] ----D- C:\Users\root\AppData\Roaming\Command and Conquer 4

O43 - CFD: 11/10/2010 - 19:03:18 - [0] ----D- C:\Users\root\AppData\Roaming\CyberLink

O43 - CFD: 18/06/2011 - 22:32:40 - [31744] ----D- C:\Users\root\AppData\Roaming\Ditto

O43 - CFD: 05/04/2011 - 21:32:56 - [157696] ----D- C:\Users\root\AppData\Roaming\DivX

O43 - CFD: 15/04/2011 - 23:28:32 - [3194] ----D- C:\Users\root\AppData\Roaming\DocumentsToGoDesktopAndroid

O43 - CFD: 17/10/2010 - 14:02:54 - [1678] ----D- C:\Users\root\AppData\Roaming\Download Manager

O43 - CFD: 28/11/2010 - 18:51:44 - [0] ----D- C:\Users\root\AppData\Roaming\enchant

O43 - CFD: 14/10/2010 - 16:13:38 - [17714] ----D- C:\Users\root\AppData\Roaming\GameConsole

O43 - CFD: 19/10/2010 - 01:28:16 - [6885] ----D- C:\Users\root\AppData\Roaming\gnupg

O43 - CFD: 11/10/2010 - 16:32:56 - [0] ----D- C:\Users\root\AppData\Roaming\Google

O43 - CFD: 28/11/2010 - 19:16:32 - [169] ----D- C:\Users\root\AppData\Roaming\gtk-2.0

O43 - CFD: 29/11/2010 - 21:42:22 - [55392] ----D- C:\Users\root\AppData\Roaming\ICQ

O43 - CFD: 11/10/2010 - 15:33:50 - [0] ----D- C:\Users\root\AppData\Roaming\Identities

O43 - CFD: 26/12/2010 - 01:00:30 - [87077] ----D- C:\Users\root\AppData\Roaming\KiTTY

O43 - CFD: 06/11/2010 - 15:04:46 - [454] ----D- C:\Users\root\AppData\Roaming\Leadertech

O43 - CFD: 20/02/2011 - 17:02:18 - [1834363] ----D- C:\Users\root\AppData\Roaming\LibreOffice

O43 - CFD: 10/01/2011 - 23:31:44 - [13721705] ----D- C:\Users\root\AppData\Roaming\Local

O43 - CFD: 06/11/2010 - 15:05:08 - [11079] ----D- C:\Users\root\AppData\Roaming\Logitech

O43 - CFD: 11/10/2010 - 15:43:04 - [121936] ----D- C:\Users\root\AppData\Roaming\Macromedia

O43 - CFD: 18/06/2011 - 22:04:42 - [236463] ----D- C:\Users\root\AppData\Roaming\Malwarebytes

O43 - CFD: 28/10/2009 - 20:00:32 - [0] ----D- C:\Users\root\AppData\Roaming\Media Center Programs

O43 - CFD: 15/04/2011 - 13:34:34 - [0] ----D- C:\Users\root\AppData\Roaming\Media Player Classic

O43 - CFD: 29/04/2011 - 17:37:30 - [6181691] -S--D- C:\Users\root\AppData\Roaming\Microsoft

O43 - CFD: 11/10/2010 - 17:26:58 - [38625635] ----D- C:\Users\root\AppData\Roaming\Mozilla

O43 - CFD: 20/02/2011 - 00:50:38 - [43545] ----D- C:\Users\root\AppData\Roaming\MySQL

O43 - CFD: 13/10/2010 - 00:38:36 - [9483136] ----D- C:\Users\root\AppData\Roaming\OpenOffice.org

O43 - CFD: 07/11/2010 - 01:43:50 - [363839] ----D- C:\Users\root\AppData\Roaming\PowerCinema

O43 - CFD: 31/10/2010 - 13:44:24 - [63575] ----D- C:\Users\root\AppData\Roaming\QuickScan

O43 - CFD: 02/06/2011 - 00:16:06 - [29] ----D- C:\Users\root\AppData\Roaming\Registry Mechanic

O43 - CFD: 15/05/2011 - 16:30:52 - [7683] R-H-D- C:\Users\root\AppData\Roaming\SecuROM

O43 - CFD: 18/06/2011 - 22:19:24 - [4551873] ----D- C:\Users\root\AppData\Roaming\Skype

O43 - CFD: 17/06/2011 - 17:41:48 - [16248] ----D- C:\Users\root\AppData\Roaming\skypePM

O43 - CFD: 18/12/2010 - 00:26:36 - [7046] ----D- C:\Users\root\AppData\Roaming\SoftDMA

O43 - CFD: 11/10/2010 - 20:47:34 - [18944] ----D- C:\Users\root\AppData\Roaming\Subversion

O43 - CFD: 12/10/2010 - 21:11:00 - [80415788] ----D- C:\Users\root\AppData\Roaming\Thunderbird

O43 - CFD: 13/10/2010 - 17:03:06 - [66417] ----D- C:\Users\root\AppData\Roaming\TortoiseSVN

O43 - CFD: 12/06/2011 - 03:22:20 - [2862671] ----D- C:\Users\root\AppData\Roaming\vlc

O43 - CFD: 15/04/2011 - 13:34:34 - [103859] ----D- C:\Users\root\AppData\Roaming\Winamp

O43 - CFD: 12/10/2010 - 14:54:04 - [0] ----D- C:\Users\root\Appdata\Local\Acer Arcade Deluxe

O43 - CFD: 04/02/2011 - 22:25:54 - [5342208] ----D- C:\Users\root\Appdata\Local\ActiveState

O43 - CFD: 11/10/2010 - 23:09:46 - [404547] ----D- C:\Users\root\Appdata\Local\Adobe

O43 - CFD: 18/05/2011 - 21:00:20 - [496444] ----D- C:\Users\root\Appdata\Local\Agence-Exclusive

O43 - CFD: 28/11/2010 - 19:03:18 - [4665] ----D- C:\Users\root\Appdata\Local\AOL

O43 - CFD: 11/10/2010 - 15:33:04 - [0] -SH-D- C:\Users\root\Appdata\Local\Application Data

O43 - CFD: 21/05/2011 - 20:24:28 - [0] ----D- C:\Users\root\Appdata\Local\Conduit

O43 - CFD: 01/11/2010 - 15:07:42 - [5949] ----D- C:\Users\root\Appdata\Local\CounterPath

O43 - CFD: 01/11/2010 - 15:07:52 - [12840] ----D- C:\Users\root\Appdata\Local\CounterPath Corporation

O43 - CFD: 28/10/2010 - 23:03:54 - [0] ----D- C:\Users\root\Appdata\Local\CutePDF Writer

O43 - CFD: 12/10/2010 - 14:54:06 - [208896] ----D- C:\Users\root\Appdata\Local\CyberLink

O43 - CFD: 12/06/2011 - 16:57:10 - [0] ----D- C:\Users\root\Appdata\Local\Diagnostics

O43 - CFD: 11/10/2010 - 21:01:22 - [35640832] ----D- C:\Users\root\Appdata\Local\Downloaded Installations

O43 - CFD: 11/10/2010 - 15:34:20 - [179] ----D- C:\Users\root\Appdata\Local\EgisTec

O43 - CFD: 03/06/2011 - 21:22:44 - [0] ----D- C:\Users\root\Appdata\Local\Electronic Arts

O43 - CFD: 14/05/2011 - 16:43:14 - [946] ----D- C:\Users\root\Appdata\Local\Electronic_Arts_Inc

O43 - CFD: 11/10/2010 - 16:45:00 - [0] ----D- C:\Users\root\Appdata\Local\GHISLER

O43 - CFD: 21/05/2011 - 20:22:44 - [665833] ----D- C:\Users\root\Appdata\Local\Google

O43 - CFD: 11/10/2010 - 15:33:04 - [0] -SH-D- C:\Users\root\Appdata\Local\Historique

O43 - CFD: 11/10/2010 - 20:48:08 - [5070] ----D- C:\Users\root\Appdata\Local\IsolatedStorage

O43 - CFD: 23/03/2011 - 19:49:20 - [83001520] ----D- C:\Users\root\Appdata\Local\Microsoft

O43 - CFD: 29/04/2011 - 18:27:36 - [1768590] ----D- C:\Users\root\Appdata\Local\Microsoft Help

O43 - CFD: 11/10/2010 - 17:26:44 - [39697919] ----D- C:\Users\root\Appdata\Local\Mozilla

O43 - CFD: 03/06/2011 - 21:23:52 - [2282003] ----D- C:\Users\root\Appdata\Local\Origin

O43 - CFD: 11/10/2010 - 19:54:34 - [2140] ----D- C:\Users\root\Appdata\Local\PCTV Systems

O43 - CFD: 11/10/2010 - 20:48:02 - [54] ----D- C:\Users\root\Appdata\Local\Pinnacle Systems GmbH

O43 - CFD: 18/12/2010 - 00:34:02 - [10687] ----D- C:\Users\root\Appdata\Local\PlayMovie

O43 - CFD: 12/10/2010 - 14:53:40 - [2253824] ----D- C:\Users\root\Appdata\Local\PowerCinema

O43 - CFD: 18/06/2011 - 22:31:34 - [3867722] ----D- C:\Users\root\Appdata\Local\Temp

O43 - CFD: 11/10/2010 - 15:33:04 - [0] -SH-D- C:\Users\root\Appdata\Local\Temporary Internet Files

O43 - CFD: 15/04/2011 - 16:19:44 - [4660344] ----D- C:\Users\root\Appdata\Local\Thunderbird

O43 - CFD: 18/06/2011 - 22:17:32 - [0] ----D- C:\Users\root\Appdata\Local\TSVNCache

O43 - CFD: 01/11/2010 - 14:42:40 - [1060] ----D- C:\Users\root\Appdata\Local\VirtualStore

O43 - CFD: 23/10/2010 - 12:11:48 - [16384] ----D- C:\Users\root\Appdata\Local\Windows Live

O43 - CFD: 29/10/2009 - 09:46:30 - [14633] R---D- C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

O43 - CFD: 03/03/2011 - 21:45:12 - [174] R---D- C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

O43 - CFD: 31/10/2010 - 23:32:10 - [0] ----D- C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5

O43 - CFD: 12/10/2010 - 01:03:48 - [2118] ----D- C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BOINC

O43 - CFD: 20/05/2011 - 20:58:54 - [0] ----D- C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gadwin Systems

O43 - CFD: 28/10/2010 - 22:32:20 - [2413] ----D- C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ghostscript

O43 - CFD: 19/10/2010 - 01:21:56 - [0] ----D- C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GNU Privacy Guard

O43 - CFD: 29/10/2009 - 09:46:30 - [580] R---D- C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

O43 - CFD: 14/06/2011 - 18:12:18 - [0] ----D- C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SQLite ODBC Driver

O43 - CFD: 21/02/2011 - 21:24:52 - [0] ----D- C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SQLite3 ODBC Driver for Win64

O43 - CFD: 18/06/2011 - 22:12:26 - [3544] R---D- C:\Users\root\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

O43 - CFD: 11/10/2010 - 15:43:02 - [37035279] ----D- C:\Program Files (x86)\Acer

O43 - CFD: 11/10/2010 - 15:46:56 - [162844737] ----D- C:\Program Files (x86)\Acer Arcade Deluxe

O43 - CFD: 28/10/2009 - 19:35:32 - [4589227] ----D- C:\Program Files (x86)\Acer Inc

O43 - CFD: 28/10/2010 - 22:43:24 - [271938] ----D- C:\Program Files (x86)\Acro Software

O43 - CFD: 07/01/2011 - 23:05:50 - [327289534] ----D- C:\Program Files (x86)\Acronis

O43 - CFD: 18/10/2010 - 17:24:24 - [702608287] ----D- C:\Program Files (x86)\Adobe

O43 - CFD: 11/10/2010 - 15:36:40 - [123226806] ----D- C:\Program Files (x86)\AGEIA Technologies

O43 - CFD: 18/06/2011 - 22:13:20 - [3410901] ----D- C:\Program Files (x86)\Agence-Exclusive

O43 - CFD: 24/05/2011 - 22:24:12 - [466994] ----D- C:\Program Files (x86)\AVG

O43 - CFD: 09/01/2011 - 19:48:22 - [6436988] ----D- C:\Program Files (x86)\AviSynth 2.5

O43 - CFD: 17/06/2011 - 21:22:44 - [991212976] ----D- C:\Program Files (x86)\Common Files

O43 - CFD: 11/12/2010 - 18:32:00 - [1904733] ----D- C:\Program Files (x86)\Conceptronic

O43 - CFD: 18/10/2010 - 14:09:42 - [635488] ----D- C:\Program Files (x86)\Conduit

O43 - CFD: 07/03/2011 - 21:11:22 - [3987821] ----D- C:\Program Files (x86)\ConduitEngine

O43 - CFD: 11/10/2010 - 15:45:54 - [66856] ----D- C:\Program Files (x86)\Cyberlink

O43 - CFD: 27/04/2011 - 22:10:20 - [23379297] ----D- C:\Program Files (x86)\Ditto

O43 - CFD: 01/06/2011 - 21:13:38 - [104867710] ----D- C:\Program Files (x86)\DivX

O43 - CFD: 15/04/2011 - 23:28:22 - [6107617] ----D- C:\Program Files (x86)\Documents To Go Desktop for Android

O43 - CFD: 17/04/2011 - 23:13:54 - [945408] ----D- C:\Program Files (x86)\DVD Decrypter

O43 - CFD: 17/04/2011 - 23:17:52 - [982340] ----D- C:\Program Files (x86)\DVD Shrink

O43 - CFD: 24/04/2011 - 17:53:18 - [84259744] ----D- C:\Program Files (x86)\DVDx 4.0

O43 - CFD: 29/10/2009 - 08:10:42 - [46695846] ----D- C:\Program Files (x86)\EgisTec

O43 - CFD: 29/10/2009 - 08:10:52 - [1683158] ----D- C:\Program Files (x86)\EgisTec Egis Software Update

O43 - CFD: 30/04/2011 - 21:10:30 - [2175351] ----D- C:\Program Files (x86)\Elaborate Bytes

O43 - CFD: 03/06/2011 - 21:22:50 - [8431742011] ----D- C:\Program Files (x86)\Electronic Arts

O43 - CFD: 28/10/2009 - 19:14:54 - [21920374] ----D- C:\Program Files (x86)\eSobi

O43 - CFD: 20/05/2011 - 20:58:52 - [3650842] ----D- C:\Program Files (x86)\Gadwin Systems

O43 - CFD: 19/10/2010 - 01:21:54 - [6136378] ----D- C:\Program Files (x86)\GNU

O43 - CFD: 04/06/2011 - 22:55:04 - [363828136] ----D- C:\Program Files (x86)\Google

O43 - CFD: 28/10/2010 - 22:32:20 - [43951065] ----D- C:\Program Files (x86)\gs

O43 - CFD: 28/11/2010 - 19:03:52 - [1666755] ----D- C:\Program Files (x86)\ICQ6Toolbar

O43 - CFD: 28/11/2010 - 19:05:38 - [38962605] ----D- C:\Program Files (x86)\ICQ7.2

O43 - CFD: 17/12/2010 - 21:42:18 - [242025609] --H-D- C:\Program Files (x86)\InstallShield Installation Information

O43 - CFD: 29/10/2009 - 07:44:38 - [11099349] ----D- C:\Program Files (x86)\Intel

O43 - CFD: 17/06/2011 - 17:28:00 - [5153271] ----D- C:\Program Files (x86)\Internet Explorer

O43 - CFD: 09/06/2011 - 22:55:00 - [292947679] ----D- C:\Program Files (x86)\Java

O43 - CFD: 05/04/2011 - 19:38:14 - [50394754] ----D- C:\Program Files (x86)\K-Lite Codec Pack

O43 - CFD: 11/10/2010 - 15:42:28 - [6416187] ----D- C:\Program Files (x86)\Launch Manager

O43 - CFD: 06/05/2011 - 21:51:02 - [476234992] ----D- C:\Program Files (x86)\LibreOffice 3

O43 - CFD: 11/10/2010 - 18:41:14 - [144857866] ----D- C:\Program Files (x86)\Logitech

O43 - CFD: 18/06/2011 - 22:04:34 - [7580098] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware

O43 - CFD: 15/01/2011 - 01:53:32 - [1356715] ----D- C:\Program Files (x86)\Microsoft

O43 - CFD: 23/03/2011 - 19:09:22 - [779174925] ----D- C:\Program Files (x86)\Microsoft Office

O43 - CFD: 29/10/2009 - 07:53:54 - [7791803] ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant

O43 - CFD: 16/06/2011 - 22:58:20 - [38411899] ----D- C:\Program Files (x86)\Microsoft Silverlight

O43 - CFD: 11/10/2010 - 15:51:08 - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition

O43 - CFD: 15/01/2011 - 01:52:46 - [2188837] ----D- C:\Program Files (x86)\Microsoft Sync Framework

O43 - CFD: 23/03/2011 - 19:10:02 - [14904] ----D- C:\Program Files (x86)\Microsoft Visual Studio

O43 - CFD: 23/03/2011 - 19:03:38 - [59407872] ----D- C:\Program Files (x86)\Microsoft Visual Studio 8

O43 - CFD: 15/12/2010 - 23:44:12 - [145421942] ----D- C:\Program Files (x86)\Microsoft Works

O43 - CFD: 11/10/2010 - 22:02:38 - [8167779] ----D- C:\Program Files (x86)\Microsoft.NET

O43 - CFD: 30/04/2011 - 14:37:20 - [34004202] ----D- C:\Program Files (x86)\Mozilla Firefox

O43 - CFD: 13/06/2011 - 20:24:06 - [35837519] ----D- C:\Program Files (x86)\Mozilla Thunderbird

O43 - CFD: 23/03/2011 - 19:10:22 - [26521] ----D- C:\Program Files (x86)\MSBuild

O43 - CFD: 21/05/2011 - 20:25:28 - [0] ----D- C:\Program Files (x86)\MSECACHE

O43 - CFD: 11/10/2010 - 20:39:06 - [0] ----D- C:\Program Files (x86)\MSXML 4.0

O43 - CFD: 20/02/2011 - 00:49:58 - [85759151] ----D- C:\Program Files (x86)\MySQL

O43 - CFD: 29/10/2009 - 08:10:12 - [1226808119] ----D- C:\Program Files (x86)\NewTech Infosystems

O43 - CFD: 08/04/2011 - 16:54:26 - [15253693] ----D- C:\Program Files (x86)\Norton Security Scan

O43 - CFD: 08/04/2011 - 16:54:22 - [8645224] ----D- C:\Program Files (x86)\NortonInstaller

O43 - CFD: 11/10/2010 - 15:42:54 - [3093811] ----D- C:\Program Files (x86)\Nuvoton Technology Corporation

O43 - CFD: 06/05/2011 - 21:43:38 - [383922421] ----D- C:\Program Files (x86)\OpenOffice.org 3

O43 - CFD: 03/06/2011 - 21:22:58 - [78157132] ----D- C:\Program Files (x86)\Origin

O43 - CFD: 03/06/2011 - 21:22:58 - [0] ----D- C:\Program Files (x86)\Origin Games

O43 - CFD: 18/05/2011 - 21:01:08 - [5329579] ----D- C:\Program Files (x86)\pctuto

O43 - CFD: 13/10/2010 - 20:26:26 - [84131185] ----D- C:\Program Files (x86)\PCTV Systems

O43 - CFD: 21/05/2011 - 20:18:18 - [3611472] ----D- C:\Program Files (x86)\PDF Drm Removal

O43 - CFD: 30/11/2010 - 20:33:04 - [26886781] ----D- C:\Program Files (x86)\PDFCreator

O43 - CFD: 10/06/2011 - 20:00:14 - [52175523] ----D- C:\Program Files (x86)\Pidgin

O43 - CFD: 13/10/2010 - 20:16:00 - [15618] ----D- C:\Program Files (x86)\Pinnacle

O43 - CFD: 30/04/2011 - 21:33:14 - [3405388] ----D- C:\Program Files (x86)\PuTTY

O43 - CFD: 11/10/2010 - 15:39:58 - [13176931] ----D- C:\Program Files (x86)\Realtek

O43 - CFD: 14/07/2009 - 07:32:40 - [39159041] ----D- C:\Program Files (x86)\Reference Assemblies

O43 - CFD: 17/06/2011 - 21:22:56 - [15141858] R---D- C:\Program Files (x86)\Skype

O43 - CFD: 11/10/2010 - 19:01:34 - [10557811] ----D- C:\Program Files (x86)\SlySoft

O43 - CFD: 18/10/2010 - 14:21:16 - [2954146] ----D- C:\Program Files (x86)\Softonic_France

O43 - CFD: 18/05/2011 - 18:04:28 - [70360637] ----D- C:\Program Files (x86)\Spybot - Search & Destroy

O43 - CFD: 14/06/2011 - 18:12:20 - [9949469] ----D- C:\Program Files (x86)\SQLite ODBC Driver

O43 - CFD: 29/10/2009 - 08:09:00 - [2202256] ----D- C:\Program Files (x86)\Symantec

O43 - CFD: 11/10/2010 - 15:40:32 - [0] --H-D- C:\Program Files (x86)\Temp

O43 - CFD: 13/12/2010 - 18:55:26 - [63464868] ----D- C:\Program Files (x86)\TexMakerX

O43 - CFD: 12/10/2010 - 02:46:24 - [19294617] ----D- C:\Program Files (x86)\Ubisoft

O43 - CFD: 12/03/2011 - 15:58:56 - [5139321] ----D- C:\Program Files (x86)\UltraVNC

O43 - CFD: 14/07/2009 - 06:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information

O43 - CFD: 15/04/2011 - 16:04:36 - [0] ----D- C:\Program Files (x86)\UseNeXT

O43 - CFD: 15/04/2011 - 16:05:08 - [4135245] ----D- C:\Program Files (x86)\uTorrentBar_FR

O43 - CFD: 11/10/2010 - 17:55:28 - [84283890] ----D- C:\Program Files (x86)\VideoLAN

O43 - CFD: 17/10/2010 - 15:47:10 - [341] ----D- C:\Program Files (x86)\VMware

O43 - CFD: 11/10/2010 - 23:32:44 - [36635237] ----D- C:\Program Files (x86)\Winamp

O43 - CFD: 21/05/2011 - 20:25:42 - [0] ----D- C:\Program Files (x86)\Winamp Toolbar

O43 - CFD: 12/10/2010 - 01:16:12 - [524800] ----D- C:\Program Files (x86)\Windows Defender

O43 - CFD: 15/01/2011 - 01:53:22 - [160533634] ----D- C:\Program Files (x86)\Windows Live

O43 - CFD: 25/10/2010 - 00:17:06 - [245112] ----D- C:\Program Files (x86)\Windows Live SkyDrive

O43 - CFD: 03/03/2011 - 00:18:50 - [6181376] ----D- C:\Program Files (x86)\Windows Mail

O43 - CFD: 03/03/2011 - 00:18:50 - [5024017] ----D- C:\Program Files (x86)\Windows Media Player

O43 - CFD: 14/07/2009 - 07:32:40 - [12197556] ----D- C:\Program Files (x86)\Windows NT

O43 - CFD: 03/03/2011 - 00:18:50 - [4417800] ----D- C:\Program Files (x86)\Windows Photo Viewer

O43 - CFD: 03/03/2011 - 00:18:50 - [189952] ----D- C:\Program Files (x86)\Windows Portable Devices

O43 - CFD: 03/03/2011 - 00:18:50 - [5994626] ----D- C:\Program Files (x86)\Windows Sidebar

O43 - CFD: 18/06/2011 - 15:56:34 - [237576] ----D- C:\Program Files (x86)\WinPcap

O43 - CFD: 30/04/2011 - 22:24:38 - [9163173] ----D- C:\Program Files (x86)\WinSCP

O43 - CFD: 18/06/2011 - 22:31:32 - [3907333] ----D- C:\Program Files (x86)\ZHPDiag

O43 - CFD: 07/01/2011 - 22:14:54 - [158185385] ----D- C:\Program Files (x86)\Common Files\Acronis

O43 - CFD: 11/10/2010 - 23:34:44 - [16426975] ----D- C:\Program Files (x86)\Common Files\Adobe

O43 - CFD: 29/10/2009 - 09:41:28 - [31787256] ----D- C:\Program Files (x86)\Common Files\Adobe AIR

O43 - CFD: 29/10/2009 - 07:47:58 - [92976] ----D- C:\Program Files (x86)\Common Files\DESIGNER

O43 - CFD: 10/01/2011 - 23:29:14 - [24006656] ----D- C:\Program Files (x86)\Common Files\DivX Shared

O43 - CFD: 29/10/2009 - 08:10:52 - [101672] ----D- C:\Program Files (x86)\Common Files\EgisTec

O43 - CFD: 11/10/2010 - 15:46:06 - [3257529] ----D- C:\Program Files (x86)\Common Files\InstallShield

O43 - CFD: 09/06/2011 - 22:56:32 - [1258951] ----D- C:\Program Files (x86)\Common Files\Java

O43 - CFD: 06/11/2010 - 15:04:46 - [1936716] ----D- C:\Program Files (x86)\Common Files\LogiShrd

O43 - CFD: 23/03/2011 - 19:15:36 - [307293239] ----D- C:\Program Files (x86)\Common Files\microsoft shared

O43 - CFD: 29/10/2009 - 07:58:14 - [354896] ----D- C:\Program Files (x86)\Common Files\Oberon Media

O43 - CFD: 13/10/2010 - 20:27:24 - [89420746] ----D- C:\Program Files (x86)\Common Files\PCTV Systems

O43 - CFD: 10/01/2011 - 23:30:24 - [4740928] ----D- C:\Program Files (x86)\Common Files\PX Storage Engine

O43 - CFD: 29/10/2009 - 09:41:36 - [2702] ----D- C:\Program Files (x86)\Common Files\Services

O43 - CFD: 14/07/2009 - 05:20:10 - [41103783] ----D- C:\Program Files (x86)\Common Files\SpeechEngines

O43 - CFD: 21/05/2011 - 20:20:08 - [0] ----D- C:\Program Files (x86)\Common Files\Spigot

O43 - CFD: 17/06/2011 - 21:09:50 - [0] ----D- C:\Program Files (x86)\Common Files\Symantec Shared

O43 - CFD: 11/10/2010 - 21:18:04 - [44924023] ----D- C:\Program Files (x86)\Common Files\System

O43 - CFD: 17/10/2010 - 14:50:38 - [43431845] ----D- C:\Program Files (x86)\Common Files\VMware

O43 - CFD: 11/10/2010 - 15:49:12 - [188569414] ----D- C:\Program Files (x86)\Common Files\Windows Live

O43 - CFD: 11/10/2010 - 15:36:30 - [34124800] ----D- C:\Program Files (x86)\Common Files\Wise Installation Wizard

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.2A3BC4E18441D01C5962B52B966061BD] - 18/06/2011 - 21:25:49 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [17600]

O44 - LFC:[MD5.2A3BC4E18441D01C5962B52B966061BD] - 18/06/2011 - 21:25:49 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [17600]

O44 - LFC:[MD5.D74E3C688AA4F552EB9F55CB8EA67170] - 18/06/2011 - 21:16:32 ---A- . (...) -- C:\Windows\setupact.log [56]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 18/06/2011 - 21:16:32 ---A- . (...) -- C:\Windows\setuperr.log [0]

O44 - LFC:[MD5.289CF5BA4C73794C2C3DA5E18F6ABA87] - 18/06/2011 - 21:16:17 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.7157A73BCEE8B88BAC0F199BD52BCE23] - 18/06/2011 - 21:16:02 ---A- . (...) -- C:\Windows\PFRO.log [32674]

O44 - LFC:[MD5.8644477C82EAF5E1ECAE3D1407A60F7A] - 18/06/2011 - 21:15:02 ---A- . (...) -- C:\bdlog.txt [440560]

O44 - LFC:[MD5.C0ED1800FEFFFFFF57494E444F577E31] - 18/06/2011 - 21:14:57 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1647358]

O44 - LFC:[MD5.1FDC157B1277AFA2BC44CC5E03FB33C4] - 18/06/2011 - 21:14:47 ---A- . (...) -- C:\Windows\bdagent.INI [121]

O44 - LFC:[MD5.A926E2F7F04D55856E74C337C47692F8] - 18/06/2011 - 14:54:24 ---A- . (...) -- C:\Windows\wininit.ini [1260]

O44 - LFC:[MD5.AF66300799634A36665DDCF8B5105CFB] - 17/06/2011 - 16:29:40 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [453224]

O44 - LFC:[MD5.4005032E276BE17B619AC60B0C1D1E6D] - 14/06/2011 - 17:13:13 ---A- . (...) -- C:\Windows\ODBC.INI [594]

O44 - LFC:[MD5.06BF4BF6C5646F880C1C5EE405A859E2] - 14/06/2011 - 17:12:18 ---A- . (...) -- C:\Windows\ODBCINST.INI [746]

O44 - LFC:[MD5.DF9F04813B9B1395A8AC3CFECC5BBF49] - 12/06/2011 - 12:59:30 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1549700]

O44 - LFC:[MD5.1B7EAA786F994A36D306324CC6B009E8] - 12/06/2011 - 12:59:30 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106388]

O44 - LFC:[MD5.C0EF0A87BF43950567FBAEC444359880] - 12/06/2011 - 12:59:30 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130754]

O44 - LFC:[MD5.584EFF0CA5B0144392F9DFCEFAF8E158] - 12/06/2011 - 12:59:30 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [616008]

O44 - LFC:[MD5.25A12D9EE1B129EA4EB890EAFACCDDE6] - 12/06/2011 - 12:59:30 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704480]

O44 - LFC:[MD5.1F8E9426219263CB3CE9AC1735A68D9E] - 09/06/2011 - 22:05:13 ---A- . (.SlySoft, Inc. - AnyDVD Filter Driver.) -- C:\Windows\System32\drivers\AnyDVD.sys [138872]

O44 - LFC:[MD5.6E5246E1ABE9C17AA09B0DDF2B267ECA] - 09/06/2011 - 13:55:56 ---A- . (...) -- C:\Windows\SysNative\sqlite3_mod_extfunc.dll [33280]

O44 - LFC:[MD5.A0188F24B6CD03D5B0EB005A2CB150E7] - 09/06/2011 - 13:55:54 ---A- . (...) -- C:\Windows\SysNative\sqlite3_mod_rtree.dll [31744]

O44 - LFC:[MD5.BA4846066D073451AC45EE51C846F6CE] - 09/06/2011 - 13:55:52 ---A- . (...) -- C:\Windows\SysNative\sqlite3_mod_fts3.dll [77312]

O44 - LFC:[MD5.CC20BD962A83DB336A86B898919E36CD] - 09/06/2011 - 13:55:34 ---A- . (...) -- C:\Windows\SysNative\sqlite3_mod_impexp.dll [31232]

O44 - LFC:[MD5.9CF3161E907A362E648B2A9703AA1357] - 09/06/2011 - 13:55:32 ---A- . (.Christian Werner Software & Consulting - SQLite3 Extension BLOB to X/Y.) -- C:\Windows\SysNative\sqlite3_mod_blobtoxy.dll [50176]

O44 - LFC:[MD5.46AD4504479DE8F32470FB6B43C96C61] - 09/06/2011 - 13:55:30 ---A- . (.Christian Werner Software & Consulting - SQLite3 ODBC Driver.) -- C:\Windows\SysNative\sqlite3odbc.dll [680448]

O44 - LFC:[MD5.6E5246E1ABE9C17AA09B0DDF2B267ECA] - 09/06/2011 - 13:51:50 ---A- . (...) -- C:\Windows\System32\sqlite3_mod_extfunc.dll [24576]

O44 - LFC:[MD5.A0188F24B6CD03D5B0EB005A2CB150E7] - 09/06/2011 - 13:51:50 ---A- . (...) -- C:\Windows\System32\sqlite3_mod_rtree.dll [27648]

O44 - LFC:[MD5.BA4846066D073451AC45EE51C846F6CE] - 09/06/2011 - 13:51:48 ---A- . (...) -- C:\Windows\System32\sqlite3_mod_fts3.dll [72192]

O44 - LFC:[MD5.CC20BD962A83DB336A86B898919E36CD] - 09/06/2011 - 13:51:18 ---A- . (...) -- C:\Windows\System32\sqlite3_mod_impexp.dll [27136]

O44 - LFC:[MD5.9CF3161E907A362E648B2A9703AA1357] - 09/06/2011 - 13:51:18 ---A- . (.Christian Werner Software & Consulting - SQLite3 Extension BLOB to X/Y.) -- C:\Windows\System32\sqlite3_mod_blobtoxy.dll [46080]

O44 - LFC:[MD5.46AD4504479DE8F32470FB6B43C96C61] - 09/06/2011 - 13:51:16 ---A- . (.Christian Werner Software & Consulting - SQLite3 ODBC Driver.) -- C:\Windows\System32\sqlite3odbc.dll [644608]

O44 - LFC:[MD5.9E7FFCC6AE6C683272DA473EE0732057] - 29/05/2011 - 20:40:21 ---A- . (...) -- C:\Windows\SysNative\cloud_stats.log [3431]

---\\ Contrôle du Safe Boot (CSB) (O49)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys (.not file.)

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"vidc.i420"="lvcod64.dll" . (.Logitech Inc. - Video Codec.) -- (.not file.)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

---\\ ShareTools MSconfig StartupReg (O53)

O53 - SMSR:HKLM\...\startupreg\msnmsgr [Key] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLinkedConnections"=1

---\\ Microsoft Windows Policies Explorer (O56)

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=255

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=67108863

O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutorunSetting"=1

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.58F7D09BACA61B019227AF0D07564739] - 15/12/2009 - 01:19:26 ---A- . (.Advanced Card Systems Ltd - PCSC/CCID IFD Handler.) -- C:\Windows\system32\drivers\a38usb.sys [44928]

O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088]

O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536]

O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864]

O58 - SDL:[MD5.AE1FCE2CD1E99BEA89183BA8CD320872] - 07/01/2011 - 21:14:53 ---A- . (.Acronis - File Level CDP Kernel Helper.) -- C:\Windows\system32\drivers\afcdp.sys [285280]

O58 - SDL:[MD5.98022774D9930ECBB292E70DB7601DF6] - 10/06/2009 - 22:01:06 ---A- . (.LSI Corp - SoftModem Device Driver.) -- C:\Windows\system32\drivers\agrsm64.sys [1146880]

O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440]

O58 - SDL:[MD5.D4121AE6D0C0E7E13AA221AA57EF2D49] - 11/03/2011 - 07:41:12 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [107904]

O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128]

O58 - SDL:[MD5.540DAF1CEA6094886D72126FD7C33048] - 11/03/2011 - 07:41:12 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [27008]

O58 - SDL:[MD5.1F8E9426219263CB3CE9AC1735A68D9E] - 09/06/2011 - 22:05:13 ---A- . (.SlySoft, Inc. - AnyDVD Filter Driver.) -- C:\Windows\system32\drivers\AnyDVD.sys [138872]

O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632]

O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856]

O58 - SDL:[MD5.0ACC06FCF46F64ED4F11E57EE461C1F4] - 05/10/2009 - 15:34:00 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys [1542656]

O58 - SDL:[MD5.D6AD5A019A914616C7A702C00149283A] - 28/06/2010 - 12:55:38 ---A- . (.BitDefender - Active Virus Control filter driver.) -- C:\Windows\system32\drivers\avc3.sys [692816]

O58 - SDL:[MD5.4598404E09F7BC80C53100C560B8C67E] - 28/06/2010 - 12:55:44 ---A- . (.BitDefender - Active Virus Control Kernel Filtering driver.) -- C:\Windows\system32\drivers\avckf.sys [1040976]

O58 - SDL:[MD5.705417FD6C165CCF926ACA943B478D68] - 12/07/2010 - 03:34:00 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Filter Driver.) -- C:\Windows\system32\drivers\avgfwd6a.sys [57696]

O58 - SDL:[MD5.9F4320BA8E7CE2342517B182A2F2C0E6] - 24/08/2009 - 09:14:30 ---A- . (.AzureWave Technologies, Inc. - Virtual USB Hub.) -- C:\Windows\system32\drivers\azvusb.sys [54784]

O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848]

O58 - SDL:[MD5.9E84A931DBEE0292E38ED672F6293A99] - 10/06/2009 - 21:34:38 ---A- . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless driver.) -- C:\Windows\system32\drivers\BCMWL664.SYS [1311232]

O58 - SDL:[MD5.57A812537B752E2B0409576120183E4F] - 13/05/2010 - 16:52:08 ---A- . (.BitDefender S.R.L. Bucharest, ROMANIA - BitDefender Active Virus Control Filter Driver.) -- C:\Windows\system32\drivers\bdfm.sys [162896]

O58 - SDL:[MD5.7AFB43894A9BCEA183EBCA27D2BAA48C] - 29/10/2010 - 09:41:51 ---A- . (.BitDefender - BitDefender Firewall NDIS6 Filter Driver.) -- C:\Windows\system32\drivers\bdfndisf6.sys [88144]

O58 - SDL:[MD5.FD25D9E7054A422BD9A4C6540B2B8290] - 09/07/2010 - 14:08:16 ---A- . (.BitDefender - BitDefender AntiVirus FS filter driver.) -- C:\Windows\system32\drivers\bdfsfltr.sys [388168]

O58 - SDL:[MD5.191150400EB109085C4111D739F92528] - 13/05/2010 - 16:52:46 ---A- . (.BitDefender S.R.L. Bucharest, ROMANIA - BitDefender AntiVirus Hypervisor driver.) -- C:\Windows\system32\drivers\bdhv.sys [101968]

O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432]

O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704]

O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720]

O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104]

O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976]

O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720]

O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480]

O58 - SDL:[MD5.6E1641724439E18CE55ADEE2D347AA19] - 03/02/2007 - 09:25:56 ---A- . (.Logitech Inc. - Universal Serial Bus Camera Driver.) -- C:\Windows\system32\drivers\CamDrL64.sys [955680]

O58 - SDL:[MD5.A6EA7A3FC4B00F48535B506DB1E86EFD] - 13/02/2009 - 07:19:34 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\CAX_CNXT.sys [740864]

O58 - SDL:[MD5.26C5D00321937E49B6BC91029947D094] - 13/02/2009 - 07:24:56 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\CAX_DPV.sys [1485824]

O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488]

O58 - SDL:[MD5.11581D1A1E6302164DEF479E4AFAA2C0] - 10/03/2010 - 13:36:54 ---A- . (.DiBcom - MOD7700 AVSTREAM/BDA driver.) -- C:\Windows\system32\drivers\dvb7700all.sys [946176]

O58 - SDL:[MD5.A05FC7ECA0966EBB70E4D17B855A853B] - 17/12/2010 - 23:58:14 ---A- . (.Elaborate Bytes AG - ElbyCD Windows x64 I/O driver.) -- C:\Windows\system32\drivers\ElbyCDIO.sys [40816]

O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496]

O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016]

O58 - SDL:[MD5.917DFF97525B7D70C46D4DEDA240089F] - 06/10/2009 - 11:11:30 ---A- . (.Pas de propriétaire - USB Server Bus Enumerator 64 bit Driver.) -- C:\Windows\system32\drivers\GenBus.sys [29696]

O58 - SDL:[MD5.B63CB796F3FC7DF6DB5C0DD7E4A6F16D] - 06/10/2009 - 11:11:38 ---A- . (.Pas de propriétaire - USB Server Device 64 bit Driver.) -- C:\Windows\system32\drivers\GenHC.sys [199168]

O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232]

O58 - SDL:[MD5.93A55379CF5FBEE665467F7216E23282] - 21/07/2009 - 06:13:12 ---A- . (.Windows ® Win 7 DDK provider - SHIM filter for KMDF HIDMINI driver.) -- C:\Windows\system32\drivers\hidshim.sys [6656]

O58 - SDL:[MD5.39D2ABCD392F3D8A6DCE7B60AE7B8EFC] - 20/11/2010 - 14:33:35 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [78720]

O58 - SDL:[MD5.1D004CB1DA6323B1F55CAEF7F94B61D9] - 05/06/2009 - 02:54:36 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys [408600]

O58 - SDL:[MD5.AAAF44DB3BD0B9D1FB6969B23ECC8366] - 11/03/2011 - 07:41:26 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410496]

O58 - SDL:[MD5.A87261EF1546325B559374F5689CF5BC] - 10/06/2009 - 21:37:05 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd64.sys [6108416]

O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112]

O58 - SDL:[MD5.249EE2D26CB1530F3BEDE0AC8B9E3099] - 20/06/2009 - 12:35:00 ---A- . (.Broadcom Corporation - Broadcom NetLink Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\k57nd60a.sys [317480]

O58 - SDL:[MD5.2AC603C3188C704CFCE353659AA7AD71] - 20/06/2009 - 03:09:57 ---A- . (.Atheros Communications, Inc. - Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20.) -- C:\Windows\system32\drivers\L1E62x64.sys [54272]

O58 - SDL:[MD5.B6552D382FF070B4ED34CBD6737277C0] - 17/06/2009 - 17:54:22 ---A- . (.Logitech, Inc. - Logitech HID Filter Driver..) -- C:\Windows\system32\drivers\LHidFilt.Sys [55312]

O58 - SDL:[MD5.73C1F563AB73D459DFFE682D66476558] - 17/06/2009 - 17:54:30 ---A- . (.Logitech, Inc. - Logitech Mouse Filter Driver..) -- C:\Windows\system32\drivers\LMouFilt.Sys [57872]

O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752]

O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560]

O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600]

O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776]

O58 - SDL:[MD5.9D9714E78EAC9E5368208649489C920E] - 17/06/2009 - 17:54:46 ---A- . (.Logitech, Inc. - Logitech USB Filter Driver..) -- C:\Windows\system32\drivers\LUsbFilt.sys [40976]

O58 - SDL:[MD5.9761370FFB533CF6E4A7176F4BAA3BA9] - 03/02/2007 - 09:30:58 ---A- . (.Logitech Inc. - USB Statistic Driver.) -- C:\Windows\system32\drivers\LVUSBS64.sys [58528]

O58 - SDL:[MD5.ED49FD1373DE93617A1F6D128D98FE4D] - 29/05/2011 - 08:11:20 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [25912]

O58 - SDL:[MD5.E4F44EC214B3E381E1FC844A02926666] - 10/06/2009 - 22:15:04 ---A- . (.Conexant - Diagnostic Interface x64 Driver.) -- C:\Windows\system32\drivers\mdmxsdk.sys [17024]

O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392]

O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736]

O58 - SDL:[MD5.6FFECC25B39DC7652A0CEC0ADA9DB589] - 03/06/2009 - 04:15:30 ---A- . (.Egis Technology Inc. - PSD Filter Driver.) -- C:\Windows\system32\drivers\mwlPSDFilter.sys [22576]

O58 - SDL:[MD5.0BEFE32CA56D6EE89D58175725596A85] - 03/06/2009 - 04:15:30 ---A- . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) -- C:\Windows\system32\drivers\mwlPSDNserv.sys [20016]

O58 - SDL:[MD5.D43BC633B8660463E446E28E14A51262] - 03/06/2009 - 04:15:30 ---A- . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) -- C:\Windows\system32\drivers\mwlPSDVDisk.sys [60464]

O58 - SDL:[MD5.26672F93749AC9FD28DA1B0F94EFA78D] - 05/08/2009 - 06:59:48 ---A- . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\Windows\system32\drivers\netr28ux.sys [987648]

O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264]

O58 - SDL:[MD5.351533ACC2A069B94E80BBFC177E8FDF] - 25/06/2010 - 18:07:26 ---A- . (.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\Windows\system32\drivers\npf.sys [35344]

O58 - SDL:[MD5.64DDD0DEE976302F4BD93E5EFCC2F013] - 06/05/2009 - 01:46:08 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\system32\drivers\NTIDrvr.sys [18432]

O58 - SDL:[MD5.D46FAA5D102B065610C7CD5855E9C08B] - 21/07/2009 - 06:13:10 ---A- . (.Nuvoton Technology Corporation - Nuvoton HID Generic.) -- C:\Windows\system32\drivers\nuvotonhidgeneric.sys [25088]

O58 - SDL:[MD5.AD37248BD442D41C9A896E53EB8A85EE] - 21/08/2009 - 22:24:04 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\system32\drivers\nvhda64v.sys [84512]

O58 - SDL:[MD5.FD39B98FF1BB8ED3848781497E9D02E0] - 03/10/2009 - 19:02:06 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 187.66.) -- C:\Windows\system32\drivers\nvlddmkm.sys [11684840]

O58 - SDL:[MD5.0A92CB65770442ED0DC44834632F66AD] - 11/03/2011 - 07:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [148352]

O58 - SDL:[MD5.DAB0E87525C10052BF65F06152F37E4A] - 11/03/2011 - 07:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [166272]

O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816]

O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592]

O58 - SDL:[MD5.8015D36E5AB9B231507B2BCF0CEB0C73] - 16/02/2007 - 01:56:51 ---A- . (.Elaborate Bytes AG - Elby Delay Lower Filter Driver.) -- C:\Windows\system32\drivers\RegKill.sys [14032]

O58 - SDL:[MD5.0F144E5F46CB9043004B5E84AA4BCA6A] - 01/12/2009 - 05:40:08 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys [2212640]

O58 - SDL:[MD5.2DB8116D52B19216812C4E6D5D837810] - 05/06/2009 - 01:46:50 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\system32\drivers\RtsUStor.sys [216064]

O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040]

O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584]

O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464]

O58 - SDL:[MD5.10450F432811D7FDA60A97FCC674D7B2] - 07/01/2011 - 21:14:30 ---A- . (.Acronis - Acronis Snapshot API.) -- C:\Windows\system32\drivers\snapman.sys [277088]

O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656]

O58 - SDL:[MD5.ED6D1424E5B0C21A57B28DD8508D6843] - 18/09/2009 - 05:12:06 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\system32\drivers\SynTP.sys [292912]

O58 - SDL:[MD5.99527D49EE0A96FC25537C61B270A372] - 07/01/2011 - 21:14:45 ---A- . (.Acronis - Acronis Try&Decide Volume Filter Driver.) -- C:\Windows\system32\drivers\tdrpm273.sys [1263200]

O58 - SDL:[MD5.EBBAEA02F0095A798000C7E06B16D41B] - 07/01/2011 - 21:14:42 ---A- . (.Acronis - Acronis Backup Archive Explorer.) -- C:\Windows\system32\drivers\timntr.sys [970336]

O58 - SDL:[MD5.2E22C1FD397A5A9FFEF55E9D1FC96C00] - 06/05/2009 - 01:46:08 ---A- . (.NewTech Infosystems Corporation - NTI CDROM Filter Driver.) -- C:\Windows\system32\drivers\UBHelper.sys [16896]

O58 - SDL:[MD5.00203E05F2FE6CFB94229ED91D6010A2] - 17/02/2011 - 17:21:12 ---A- . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\Windows\system32\drivers\VBoxDrv.sys [228272]

O58 - SDL:[MD5.85DF2C59645D374BE7E3234241761230] - 17/02/2011 - 17:21:12 ---A- . (.Oracle Corporation - VirtualBox Host-Only Network Adapter Driver.) -- C:\Windows\system32\drivers\VBoxNetAdp.sys [156080]

O58 - SDL:[MD5.57DAEFDD2C459AFEF2596A656F016E74] - 17/02/2011 - 17:21:10 ---A- . (.Oracle Corporation - VirtualBox Bridged Networking Driver.) -- C:\Windows\system32\drivers\VBoxNetFlt.sys [175664]

O58 - SDL:[MD5.21AE7D5965F2DCABB4BB2B6C97774D11] - 01/12/2010 - 13:39:06 ---A- . (.Oracle Corporation - VirtualBox USB Driver.) -- C:\Windows\system32\drivers\VBoxUSB.sys [43792]

O58 - SDL:[MD5.74CE29E023C79C195DDFF87FBF075037] - 17/02/2011 - 17:21:10 ---A- . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\Windows\system32\drivers\VBoxUSBMon.sys [56688]

O58 - SDL:[MD5.FD911873C0BB6945FA38C16E9A2B58F9] - 15/01/2011 - 17:21:04 ---A- . (.Elaborate Bytes AG - VirtualCloneCD Driver.) -- C:\Windows\system32\drivers\VClone.sys [36352]

O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488]

O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872]

O58 - SDL:[MD5.0C4540311E11664B245A263E1154CEF8] - 10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\VSTAZL6.SYS [292864]

O58 - SDL:[MD5.18E40C245DBFAF36FD0134A7EF2DF396] - 10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\VSTCNXT6.SYS [740864]

O58 - SDL:[MD5.02071D207A9858FBE3A48CBFD59C4A04] - 10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\VSTDPV6.SYS [1485312]

O58 - SDL:[MD5.E8F3FA126A06F8E7088F63757112A186] - 10/06/2009 - 22:15:04 ---A- . (.Conexant Systems, Inc. - Modem Audio Device Driver.) -- C:\Windows\system32\drivers\XAudio64.sys [10240]

O58 - SDL:[MD5.1F8E9426219263CB3CE9AC1735A68D9E] - 09/06/2011 - 22:05:13 ---A- . (.SlySoft, Inc. - AnyDVD Filter Driver.) -- C:\Windows\SysWOW64\drivers\AnyDVD.sys [138872]

O58 - SDL:[MD5.D5BCB77BE83CF99F508943945D46343D] - 26/03/2009 - 20:16:08 ---A- . (.Dritek System Inc. - Dritek 64-bit PS/2 Keyboard Filter Driver.) -- C:\Windows\SysWOW64\drivers\DKbFltr.sys [25608]

O58 - SDL:[MD5.B309912717C29FC67E1BA4730A82B6DD] - 29/05/2011 - 08:11:30 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [39984]

O58 - SDL:[MD5.8015D36E5AB9B231507B2BCF0CEB0C73] - 16/02/2007 - 01:56:51 ---A- . (.Elaborate Bytes AG - Elby Delay Lower Filter Driver.) -- C:\Windows\SysWOW64\drivers\RegKill.sys [14032]

---\\ Liste des outils de nettoyage (O63)

O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPDiag_is1

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

---\\ Search Browser Infection (O69)

O69 - SBI: C:\Users\root\AppData\Roaming\Mozilla\Firefox\Profiles\70dm9o4q.default\searchplugins\conduit.xml

O69 - SBI: prefs.js [root - 70dm9o4q.default] user_pref("CT2795622.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2795622'>http://search.conduit.com/ResultsExt.aspx?ctid=CT2795622

O69 - SBI: prefs.js [root - 70dm9o4q.default] user_pref("CT2851639.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2851639

O69 - SBI: prefs.js [root - 70dm9o4q.default] user_pref("CommunityToolbar.ConduitHomepagesList", "http://search.conduit.com/?ctid=CT2795622

O69 - SBI: prefs.js [root - 70dm9o4q.default] user_pref("ConduitEngine.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?

O69 - SBI: prefs.js [root - 70dm9o4q.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2795622

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing

O69 - SBI: SearchScopes [HKCU] {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - (Ask Search) - http://web s earch.a s k .com

O69 - SBI: SearchScopes [HKCU] {1F096B29-E9DA-4D64-8D63-936BE7762CC5} - (Search the web (Babylon)) - Babylon Search

O69 - SBI: SearchScopes [HKCU] {6552C7DD-90A4-4387-B795-F8F96747DE19} - (ICQ Search) - ICQ.com Search

O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - Google

O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - Google

O69 - SBI: SearchScopes [HKCU] {811C9099-66D6-4F62-9298-C0E7B160F7C4} - (Yahoo! Search) - Yahoo! Search - Web Search

O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} [DefaultScope] - (midicair Customized Web Search) - http://s earch.conduit.com

---\\ Firewall Active Exception List (FirewallRules) (O87)

O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)

O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)

O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.)

O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)

O87 - FAEL: "RemoteSvcAdmin-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)

O87 - FAEL: "{F7D2772F-0B81-426F-8578-141D6C46D434}" | In - Public - P6 - TRUE | .(.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

O87 - FAEL: "{21794B7D-038C-46C3-ABB2-BA02D7D5331A}" | In - Public - P6 - TRUE | .(.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe

O87 - FAEL: "{D44B1660-1054-4F94-B4A6-92F0CC1C08FC}" | In - Public - P17 - TRUE | .(.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

O87 - FAEL: "{0584C4F0-F225-4D4C-9E47-0253EFDA52EA}" | In - Public - P17 - TRUE | .(.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe

O87 - FAEL: "{DBB924B3-F784-4488-A78E-A0284676FF1F}" |In - Private - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)

O87 - FAEL: "{0525204A-AFE2-4CBF-99B5-DA25AEE54F4F}" | In - Public - P6 - TRUE | .(.Ubisoft - launcher Application.) -- C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe

O87 - FAEL: "{D9E30BBC-327E-45EA-97B9-B49899FEFD4B}" | In - Public - P17 - TRUE | .(.Ubisoft - launcher Application.) -- C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe

O87 - FAEL: "{77DFE293-AB83-4872-A5BD-A6293FC718C0}" | In - Public - P6 - TRUE | .(.Ubisoft - Silent Hunter V.) -- C:\Ubisoft\Silent Hunter 5\sh5.exe

O87 - FAEL: "{42C86C13-E447-4304-8423-BF3E1094A676}" | In - Public - P17 - TRUE | .(.Ubisoft - Silent Hunter V.) -- C:\Ubisoft\Silent Hunter 5\sh5.exe

O87 - FAEL: "{C9DA6FBF-62F8-4CD7-A089-3FC29EAE4098}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe

O87 - FAEL: "{E690C2D8-16A7-4B8A-A35F-6764EA32D48B}" | In - None - P17 - TRUE | .(.PCTV Systems S.à r.l. - TVCenter.) -- C:\Program Files (x86)\PCTV Systems\TVCenter\TVCenter.exe

O87 - FAEL: "{5CD1E025-9E2C-40A5-91FF-4DBDC9F46C37}" | In - None - P17 - TRUE | .(.PCTV Systems S.à r.l. - PCTV PVR Core - Video Control Server.) -- C:\Program Files (x86)\Common Files\PCTV Systems\PVR\VideoControl.exe

O87 - FAEL: "{9FCE721F-0B78-4D96-A0D7-BD32A1188CDD}" | In - None - P17 - TRUE | .(.PCTV Systems S.à r.l. - Streaming Server.) -- C:\Program Files (x86)\Common Files\PCTV Systems\StreamingServer\StrmServer.exe

O87 - FAEL: "{7E1CA622-00F8-4031-A2B6-E066BA900AFC}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Service de réception Windows Media Center.) -- C:\Windows\ehome\ehrecvr.exe

O87 - FAEL: "{B762D6D8-6CB8-4544-93EA-B6D5C641F316}" | In - Domain - P6 - TRUE | .(.ICQ, LLC. - ICQ.) -- C:\Program Files (x86)\ICQ7.2\ICQ.exe

O87 - FAEL: "{BA9E8A94-532A-4F8A-8D25-E46D6786F4C7}" | In - Domain - P17 - TRUE | .(.ICQ, LLC. - ICQ.) -- C:\Program Files (x86)\ICQ7.2\ICQ.exe

O87 - FAEL: "{F6141CD5-3F19-499E-AAA1-52E0211D322D}" | In - Private - P6 - TRUE | .(.ICQ, LLC. - ICQ.) -- C:\Program Files (x86)\ICQ7.2\ICQ.exe

O87 - FAEL: "{96C266EA-D23D-4498-A230-0471FCEEBE6C}" | In - Private - P17 - TRUE | .(.ICQ, LLC. - ICQ.) -- C:\Program Files (x86)\ICQ7.2\ICQ.exe

O87 - FAEL: "{B1767820-E195-453B-982D-CA61AD5C9EDC}" | In - Public - P6 - TRUE | .(.ICQ, LLC. - ICQ.) -- C:\Program Files (x86)\ICQ7.2\ICQ.exe

O87 - FAEL: "{55BD2984-82D7-45B3-8BD9-CB0F60F9C56E}" | In - Public - P17 - TRUE | .(.ICQ, LLC. - ICQ.) -- C:\Program Files (x86)\ICQ7.2\ICQ.exe

O87 - FAEL: "{7F006F50-784E-41F9-858A-8437359D6EB2}" | In - Domain - P6 - TRUE | .(.AOL LLC - AOL Loader.) -- C:\Program Files (x86)\ICQ7.2\aolload.exe

O87 - FAEL: "{1ABA6154-6F4A-46D9-B3B2-725D8136205E}" | In - Domain - P17 - TRUE | .(.AOL LLC - AOL Loader.) -- C:\Program Files (x86)\ICQ7.2\aolload.exe

O87 - FAEL: "{AFB1A510-553A-4B19-9EC0-409CA6B81AD4}" | In - Private - P6 - TRUE | .(.AOL LLC - AOL Loader.) -- C:\Program Files (x86)\ICQ7.2\aolload.exe

O87 - FAEL: "{F91AC064-9F55-4B2D-8BE4-16FFF1205858}" | In - Private - P17 - TRUE | .(.AOL LLC - AOL Loader.) -- C:\Program Files (x86)\ICQ7.2\aolload.exe

O87 - FAEL: "{C98FD5C0-67C3-4CAF-92AE-09AD6C3005D4}" | In - Public - P6 - TRUE | .(.AOL LLC - AOL Loader.) -- C:\Program Files (x86)\ICQ7.2\aolload.exe

O87 - FAEL: "{D7E596D1-60A4-4028-A36A-CF252FB5B85E}" | In - Public - P17 - TRUE | .(.AOL LLC - AOL Loader.) -- C:\Program Files (x86)\ICQ7.2\aolload.exe

O87 - FAEL: "{3633BF23-3A8D-4F09-B749-1B93FE8A107F}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer Arcade Deluxe.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\Acer Arcade Deluxe.exe

O87 - FAEL: "{A973117C-E19E-41F1-82A7-94ED8987C7C4}" | In - None - P17 - TRUE | .(.Acer Corp. - Acer Arcade Deluxe PlayMovie.) -- C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PlayMovie.exe

O87 - FAEL: "{D63B71AB-85CE-4593-B1BD-565A05A91EA5}" | In - None - P17 - TRUE | .(.Acer Corp. - Acer Arcade Deluxe PlayMovie Resident Program.) -- C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe

O87 - FAEL: "{E6C47FC2-3772-48B8-BDF1-5B800F3EEC9B}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer HomeMedia.) -- C:\Program Files (x86)\Acer Arcade Deluxe\HomeMedia\HomeMedia.exe

O87 - FAEL: "{4E9AA460-EC1E-484A-86EF-0A5BD428517D}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

O87 - FAEL: "TCP Query User{FAFCB0D3-7064-4DD0-8E0E-741587DFC83C}C:\program files (x86)\pidgin\pidgin.exe" | In - Private - P6 - TRUE | .(.The Pidgin developer community - Pidgin.) -- C:\program files (x86)\pidgin\pidgin.exe

O87 - FAEL: "UDP Query User{6AD11A17-ED58-4D96-AC3C-2EF8AE691B4D}C:\program files (x86)\pidgin\pidgin.exe" | In - Private - P17 - TRUE | .(.The Pidgin developer community - Pidgin.) -- C:\program files (x86)\pidgin\pidgin.exe

O87 - FAEL: "{9383D7B6-AAA8-45F9-B20E-6E41BEBE7CEB}" | In - Public - P17 - TRUE | .(.The Pidgin developer community - Pidgin.) -- C:\program files (x86)\pidgin\pidgin.exe

O87 - FAEL: "{7C2510F1-2004-4501-B409-480641739B6F}" | In - Public - P6 - TRUE | .(.The Pidgin developer community - Pidgin.) -- C:\program files (x86)\pidgin\pidgin.exe

O87 - FAEL: "{2100B294-913E-44E4-B1AB-177898A0AF46}" | In - Public - P6 - TRUE | .(.Oracle Corporation - MySQL Workbench.) -- C:\Program Files (x86)\MySQL\MySQL Workbench 5.2 CE\MySQLWorkbench.exe

O87 - FAEL: "{A33B44A5-75D1-4535-9A29-CDBF843F90B3}" | In - Public - P17 - TRUE | .(.Oracle Corporation - MySQL Workbench.) -- C:\Program Files (x86)\MySQL\MySQL Workbench 5.2 CE\MySQLWorkbench.exe

---\\ Scan Additionnel (O88)

Database Version : 8405 - (18/06/2011)

Clés trouvées (Keys found) : 24

Valeurs trouvées (Values found) : 1

Dossiers trouvés (Folders found) : 24

Fichiers trouvés (Files found) : 1

[HKLM\Software\Classes\Conduit.Engine] =>Toolbar.Conduit

[HKLM\Software\Wow6432Node\Classes\Conduit.Engine] =>Toolbar.Conduit

[HKLM\Software\Classes\Toolbar.CT2542115] =>Adware.Hotbar

[HKLM\Software\Wow6432Node\Classes\Toolbar.CT2542115] =>Adware.Hotbar

[HKLM\Software\Classes\Toolbar.CT2851639] =>Toolbar.Agent

[HKLM\Software\Wow6432Node\Classes\Toolbar.CT2851639] =>Toolbar.Agent

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}] =>Toolbar.Agent

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}] =>Toolbar.Babylon

[HKLM\Software\Classes\Wow6432Node\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}] =>Adware.Hotbar

[HKLM\Software\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}] =>Adware.Hotbar

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] =>Toolbar.Conduit

[HKLM\Software\Classes\Interface\{E2ED56B6-35FC-4484-9530-EC87FB458E78}] =>PUP.Eorezo

[HKCU\Software\Agence-Exclusive] =>Spyware.AgenceExclusive

[HKLM\Software\Wow6432Node\Agence-Exclusive] =>Spyware.AgenceExclusive

[HKCU\Software\AppDataLow\Software\Conduit] =>Toolbar.Conduit

[HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit

[HKCU\Software\AppDataLow\Software\conduitEngine] =>Toolbar.Conduit

[HKLM\Software\Wow6432Node\conduitEngine] =>Toolbar.Conduit

[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong

[HKCU\Software\AppDataLow\Software\Softonic_France] =>Toolbar.Conduit

[HKLM\Software\Wow6432Node\Softonic_France] =>Toolbar.Conduit

[HKCU\Software\AppDataLow\Software\uTorrentBar_FR] =>Toolbar.Conduit

[HKLM\Software\Wow6432Node\uTorrentBar_FR] =>Toolbar.Conduit

[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Adware.AskSBar

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Agence-Exclusive =>Spyware.AgenceExclusive

C:\Users\root\AppData\Roaming\Agence-Exclusive =>Spyware.AgenceExclusive

C:\Users\root\Appdata\Local\Agence-Exclusive =>Spyware.AgenceExclusive

C:\Users\root\Appdata\Local\Conduit =>Toolbar.Conduit

C:\Users\root\Appdata\LocalLow\BabylonToolbar =>Toolbar.Babylon

C:\Users\root\Appdata\LocalLow\Conduit =>Toolbar.Conduit

C:\Users\root\Appdata\LocalLow\ConduitEngine =>Toolbar.Conduit

C:\Users\root\Appdata\LocalLow\PriceGong =>Adware.PriceGong

C:\Users\root\Appdata\LocalLow\Softonic_France =>Toolbar.Conduit

C:\Users\root\Appdata\LocalLow\uTorrentBar_FR =>Toolbar.Conduit

C:\Documents and Settings\root\Local Settings\Application Data\Agence-Exclusive =>Spyware.AgenceExclusive

C:\Documents and Settings\root\Local Settings\Application Data\Conduit =>Toolbar.Conduit

C:\Program Files (x86)\Agence-Exclusive =>Spyware.AgenceExclusive

C:\Program Files (x86)\Conduit =>Toolbar.Conduit

C:\Program Files (x86)\ConduitEngine =>Toolbar.Conduit

C:\Program Files (x86)\PCTuto =>Spyware.AgenceExclusive

C:\Program Files (x86)\Softonic_France =>Toolbar.Conduit

C:\Program Files (x86)\uTorrentBar_FR =>Toolbar.Conduit

C:\Program Files (x86)\Winamp Toolbar =>Toolbar.Winamp

C:\Program Files (x86)\Common Files\Spigot =>PUP.Dealio

C:\Users\root\AppData\Roaming\Mozilla\Firefox\Profiles\70dm9o4q.default\Conduit =>Toolbar.Conduit

C:\Users\root\AppData\Roaming\Mozilla\Firefox\Profiles\70dm9o4q.default\ConduitEngine =>Toolbar.Conduit

C:\Users\root\AppData\Roaming\Mozilla\Firefox\Profiles\70dm9o4q.default\Extensions\engine@conduit.com =>Toolbar.Conduit

C:\Users\root\AppData\Roaming\Mozilla\Firefox\Profiles\un0zg2sd.default\Extensions\toolbar@ask.com =>Adware.AskTBar

C:\Users\root\AppData\Roaming\Mozilla\Firefox\Profiles\70dm9o4q.default\SearchPlugins\conduit.xml =>Toolbar.Conduit

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SR - | Auto 06/12/2010 1112240 | (AcrSch2Svc) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe

SR - | Auto 07/01/2011 3246040 | (afcdpsrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe

SR - | Auto 30/09/2009 844320 | (ePowerSvc) . (.Acer Incorporated.) - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe

SR - | Auto 28/08/2009 1150496 | (Greg_Service) . (.Acer Incorporated.) - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe

SS - | Auto 11/10/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

SS - | Demand 11/10/2010 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

SS - | Demand 28/10/2009 182768 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

SR - | Auto 05/06/2009 354840 | (IAANTMON) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

SR - | Auto 06/09/2010 247096 | (ICQ Service) . (...) - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe

SS - | Demand 20/07/2009 160784 | (LBTServ) . (.Logitech, Inc..) - C:\Program Files\Common Files\logishrd\Bluetooth\LBTServ.exe

SR - | Auto 29/05/2011 366640 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

SS - | Demand 11/09/2009 305448 | (MWLService) . (.Egis Technology Inc..) - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe

SR - | Auto 25/09/2009 62720 | (NTI IScheduleSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe

SS - | Demand 18/06/2009 50432 | (NTIBackupSvc) . (.NewTech InfoSystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe

SR - | Auto 18/06/2009 144640 | (NTISchedulerSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

SR - | Auto 18/06/2009 0 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe

SS - | Demand 18/06/2009 0 | Remote Packet Capture Protocol v.0 (experimental) (rpcapd) . (...) - %ProgramFiles(x86)%\WinPcap\rpcapd.exe

SR - | Auto 26/01/2009 1153368 | (SBSDWSCService) . (.Safer Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

SR - | Demand 07/03/2011 467248 | (Update Server) . (.BitDefender.) - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe

SR - | Auto 04/07/2009 240160 | (Updater Service) . (.Acer.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

SR - | Auto 07/03/2011 53224 | (UPDATESRV) . (.BitDefender S.R.L..) - C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe

SR - | Auto 07/03/2011 2613744 | (VSSERV) . (.BitDefender S.R.L..) - C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe

SR - | Auto 17/07/2006 364544 | (winvnc) . (.www.ultravnc.fr.) - C:\Program Files (x86)\UltraVNC\WinVNC.exe

SR - | Auto 14/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover

Run by root at 18/06/2011 22:38:17

device: opened successfully

user: error reading MBR

Disk trace:

error: Read Descripteur non valide

kernel: error reading MBR

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

Written by ad13, http://ad13.gee k s tog

Run by root at 18/06/2011 22:38:19

********* Dump file Name *********

C:\PhysicalDisk0_MBR.bin

End of the scan (1639 lines in 07mn 24s)(0)

Apollo · le 18 juin 2011

Bonjour,

Télécharge Ad-Remover de C-XX et Enregistre-le sur le bureau.

http://www.teamxscript.org/adremoverTelechargement.html

Ferme toutes les applications ouvertes pour l'installer.

Sous XP: Double-clique, (Clic droit/exécuter comme administrateur pour Vista/7) sur l'icône placée sur le bureau.

Si le firewall se manifeste, accorde les autorisations à l'outil pour qu'il puisse travailler.

Clique sur scanner

Le rapport se trouve aussi sous C:\Ad-Report Scan.

Copie/colle-le dans ta réponse stp.

----------------------------------------------------

Relance Ad-Remover et cette fois, clique sur Nettoyer

Le bureau va disparaître, c'est normal.

Le rapport à poster sera sur C:\Ad-Report Clean.

*** Poste les deux rapports stp.

-------------------------------------------

Seulement après avoir posté les rapports:

Relance Ad-Remover et clique sur Désinstaller.

--------------------

Refais un scan ZHPDiag mais héberge le rapport cette fois stp:

Ce rapport étant trop long pour le forum, héberge le :

soit directement sur le forum en pièce jointe dans ta réponse : Ajouter un fichier en pièce jointe sur le forum <<< Seulement pour le forum Vista-XP.fr!
soit sur Cijoint.fr et copie-colle le lien fourni dans ta réponse.
Free large file hosting. Send big files the easy way! copier/coller le tout premier lien fourni.

++

Pascal Duquenoy · le 19 juin 2011

voici le rapport de scan

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11

Contact: AdRemover[DOT]contact[AT]gmail[DOT]com

Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 12:48:53 le 19/06/2011, Mode normal

Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)

root@LAROWANE (Acer Aspire 8735)

============== RECHERCHE ==============

Dossier trouvé: C:\Users\root\AppData\Roaming\Agence-Exclusive

Dossier trouvé: C:\Users\root\AppData\Local\Agence-Exclusive

Dossier trouvé: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Agence-Exclusive

Dossier trouvé: C:\Program Files (x86)\Agence-Exclusive

Dossier trouvé: C:\Users\root\AppData\Local\Conduit

Dossier trouvé: C:\Users\root\AppData\LocalLow\Conduit

Dossier trouvé: C:\Program Files (x86)\Conduit

Dossier trouvé: C:\Users\root\AppData\LocalLow\ConduitEngine

Dossier trouvé: C:\Program Files (x86)\ConduitEngine

Dossier trouvé: C:\Users\root\AppData\LocalLow\PriceGong

Dossier trouvé: C:\Program Files (x86)\Common Files\Spigot

Dossier trouvé: C:\Program Files (x86)\PCTuto

Clé trouvée: HKLM\Software\Classes\CLSID\{01AE8021-98D7-4855-A627-BDABF48131C9}

Clé trouvée: HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}

Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}

Clé trouvée: HKLM\Software\Classes\CLSID\{E80D13AE-40B6-4174-9D86-E0B040A4021B}

Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E80D13AE-40B6-4174-9D86-E0B040A4021B}

Clé trouvée: HKLM\Software\Classes\Interface\{87407A9F-9903-4759-BD23-322DF9CD67AC}

Clé trouvée: HKLM\Software\Classes\Conduit.Engine

Clé trouvée: HKLM\Software\Classes\Toolbar.CT2542115

Clé trouvée: HKLM\Software\Classes\Toolbar.CT2583879

Clé trouvée: HKLM\Software\Classes\Toolbar.CT2795622

Clé trouvée: HKLM\Software\Classes\Toolbar.CT2851639

Clé trouvée: HKLM\Software\Conduit

Clé trouvée: HKLM\Software\conduitEngine

Clé trouvée: HKCU\Software\AppDataLow\Toolbar

Clé trouvée: HKCU\Software\AppDataLow\Software\Conduit

Clé trouvée: HKCU\Software\AppDataLow\Software\conduitEngine

Clé trouvée: HKCU\Software\AppDataLow\Software\PriceGong

Clé trouvée: HKLM\Software\Canneverbe Limited\OpenCandy

Clé trouvée: HKLM\Software\Wow6432Node\Canneverbe Limited\OpenCandy

Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}

Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}

Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}

Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}

Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F34C18EE-5616-40C5-8B27-A3F29516B48E}

Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine

Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|PCTuto

Valeur trouvée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{30F9B915-B755-4826-820B-08FBA6BD249D}

Valeur trouvée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440}

============== SCAN ADDITIONNEL ==============

**** Mozilla Firefox Version [4.0.1 (fr)] ****

HKLM_MozillaPlugins\Adobe Reader (x)

Searchplugins\babylon.xml (hxxp://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=28e12e9b000000000000c417fe6d39c7&tlver=1.4.19.19&ss=1&affID=18027/)

Searchplugins\bing.xml ( hxxp://www.bing.com/search)

Components\browsercomps.dll (Mozilla Foundation)

Extensions\ffxtlbr@babylon.com (Babylon)

HKLM_Extensions|FFToolbar@bitdefender.com - C:\Program Files\BitDefender\BitDefender 2011\bdaphffext\

HKLM_Extensions|{23fcfd51-4958-4f00-80a3-ae97e717ed8b} - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\html5video

HKLM_Extensions|{6904342A-8307-11DF-A508-4AE2DFD72085} - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\wpa

-- C:\Users\root\AppData\Roaming\Mozilla\FireFox\Profiles\6abhpz0v.default --

Prefs.js - keyword.URL, hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=827316&p=

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896

HKCU_Main|Start Page - hxxp://search.conduit.com?SearchSource=10&ctid=CT2795622

HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896

HKCU_URLSearchHooks|{855F3B16-6D32-4fe6-8A56-BBB695989046} - "ICQToolBar" (C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll)

HKCU_URLSearchHooks|{4daac69c-cba7-45e2-9bc8-1044483d3352} (x)

HKCU_URLSearchHooks|{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} (x)

HKCU_URLSearchHooks|{77f8c945-4b74-4bd6-a073-e0d1997edce8} (x)

HKCU_URLSearchHooks|{a65e491f-a436-4952-b49a-b24ed99a0f67} - "Tom's Guide France Toolbar" (C:\Program Files (x86)\Tom's_Guide_France\tbTom'.dll)

HKLM_URLSearchHooks|{855F3B16-6D32-4fe6-8A56-BBB695989046} - "ICQToolBar" (C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll)

HKLM_URLSearchHooks|{4daac69c-cba7-45e2-9bc8-1044483d3352} (x)

HKLM_URLSearchHooks|{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} (x)

HKLM_URLSearchHooks|{a65e491f-a436-4952-b49a-b24ed99a0f67} - "Tom's Guide France Toolbar" (C:\Program Files (x86)\Tom's_Guide_France\tbTom'.dll)

HKCU_SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - "Ask Search" (hxxp://websearch.ask.com/redirect?client=ie&tb=ARS&o=15084&src=crm&q={searchTerm...)

HKCU_SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5} - "Search the web (Babylon)" (hxxp://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=28e12e9b000000000...)

HKCU_SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19} - "ICQ Search" (hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd)

HKCU_SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} - "Tom's Guide France Customized Web Search" (hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT...)

HKLM_SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} - "Tom's Guide France Customized Web Search" (hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT...)

HKCU_Toolbar\WebBrowser|{4DAAC69C-CBA7-45E2-9BC8-1044483D3352} (x)

HKCU_Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440} (x)

HKCU_Toolbar\WebBrowser|{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E} (x)

HKCU_Toolbar\WebBrowser|{77F8C945-4B74-4BD6-A073-E0D1997EDCE8} (x)

HKLM_Toolbar|{381FFDE8-2394-4F90-B10D-FC6124A40F8C} (C:\Program Files\BitDefender\BitDefender 2011\Antispam32\IEToolbar.dll)

HKLM_Toolbar|{4daac69c-cba7-45e2-9bc8-1044483d3352} (x)

HKLM_Toolbar|{855F3B16-6D32-4FE6-8A56-BBB695989046} (C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll)

HKLM_Toolbar|{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} (x)

HKLM_Toolbar|{30F9B915-B755-4826-820B-08FBA6BD249D} (C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll)

HKLM_Toolbar|{a65e491f-a436-4952-b49a-b24ed99a0f67} (C:\Program Files (x86)\Tom's_Guide_France\tbTom'.dll)

HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)

HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)

HKLM_ElevationPolicy\{32B1A1A1-F1AD-41B4-B921-22DCFB7A1332} - C:\Program Files (x86)\uTorrentBar_FR\uTorrentBar_FRToolbarHelper.exe (?)

HKLM_ElevationPolicy\{59D966C4-5E24-4745-A108-9AF803CA46AA} - C:\Program Files (x86)\Tom's_Guide_France\Tom's_Guide_FranceToolbarHelper.exe (?)

HKLM_ElevationPolicy\{5F17E524-3447-4c7d-8E5F-4EFF31CDE3B7} - C:\Program Files (x86)\DivX\DivX Plus Web Player\DDMService.exe (DivX, LLC)

HKLM_ElevationPolicy\{64903E32-AE0B-408D-909C-09A08791F28D} - C:\Program Files (x86)\DivX\DivX Plus Web Player\dwpBroker.exe (DivX, LLC)

HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)

HKLM_ElevationPolicy\{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\C:\Program Files (x86)\ICQ7.2\ICQ.exe (x)

HKLM_ElevationPolicy\{80B84A0A-EDA4-47FD-8BE1-6B49F4197BE6} - C:\Program Files\BitDefender\BitDefender 2011\Antispam32\about.exe\about.ex (x)

HKLM_ElevationPolicy\{A6E2003F-95C5-4591-BA9A-0093080FDB5C} - C:\Program Files (x86)\Common Files\Oberon Media\OberonBroker\1.0.0.63\OberonBroker.exe (?)

HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)

HKLM_ElevationPolicy\{D802E3EF-2513-4661-972E-BAD737EFBA88} - C:\Program Files (x86)\DivX\DivX OVS Helper\OVSHelperBroker.exe (DivX, LLC.)

HKLM_ElevationPolicy\{F34C18EE-5616-40C5-8B27-A3F29516B48E} - C:\Program Files (x86)\ConduitEngine\ConduitEngineHelper.exe (?)

HKLM_Extensions\{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - "ICQ7.2" (,1040)

HKLM_Extensions\{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - "?" (?)

BHO\{30F9B915-B755-4826-820B-08FBA6BD249D} - "Conduit Engine" (C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll)

BHO\{326E768D-4182-46FD-9C16-1449A49795F4} - "DivX Plus Web Player HTML5 <video>" (C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll)

BHO\{593DDEC6-7468-4cdd-90E1-42DADAA222E9} - "DivX HiQ" (C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll)

BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?)

BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll)

BHO\{a65e491f-a436-4952-b49a-b24ed99a0f67} - "Tom's Guide France Toolbar" (C:\Program Files (x86)\Tom's_Guide_France\tbTom'.dll)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 0 Fichier(s)

C:\Program Files (x86)\Ad-Remover\Backup: 1 Fichier(s)

C:\Ad-Report-SCAN[1].txt - 19/06/2011 12:48:58 (9947 Octet(s))

Fin à: 12:50:17, 19/06/2011

============== E.O.F ==============

et le rapport CLEAN

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11

Contact: AdRemover[DOT]contact[AT]gmail[DOT]com

Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 12:51:02 le 19/06/2011, Mode normal

Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)

root@LAROWANE (Acer Aspire 8735)

============== ACTION(S) ==============

Dossier supprimé: C:\Users\root\AppData\Roaming\Agence-Exclusive

Dossier supprimé: C:\Users\root\AppData\Local\Agence-Exclusive

Dossier supprimé: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Agence-Exclusive

Dossier supprimé: C:\Program Files (x86)\Agence-Exclusive

Dossier supprimé: C:\Users\root\AppData\Local\Conduit

Dossier supprimé: C:\Users\root\AppData\LocalLow\Conduit

Dossier supprimé: C:\Program Files (x86)\Conduit

Dossier supprimé: C:\Users\root\AppData\LocalLow\ConduitEngine

Dossier supprimé: C:\Program Files (x86)\ConduitEngine

Dossier supprimé: C:\Users\root\AppData\LocalLow\PriceGong

Dossier supprimé: C:\Program Files (x86)\Common Files\Spigot

Dossier supprimé: C:\Program Files (x86)\PCTuto

(!) -- Fichiers temporaires supprimés.

Clé supprimée: HKLM\Software\Classes\CLSID\{01AE8021-98D7-4855-A627-BDABF48131C9}

Clé supprimée: HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}

Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}

Clé supprimée: HKLM\Software\Classes\CLSID\{E80D13AE-40B6-4174-9D86-E0B040A4021B}

Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E80D13AE-40B6-4174-9D86-E0B040A4021B}

Clé supprimée: HKLM\Software\Classes\Interface\{87407A9F-9903-4759-BD23-322DF9CD67AC}

Clé supprimée: HKLM\Software\Classes\Conduit.Engine

Clé supprimée: HKLM\Software\Classes\Toolbar.CT2542115

Clé supprimée: HKLM\Software\Classes\Toolbar.CT2583879

Clé supprimée: HKLM\Software\Classes\Toolbar.CT2795622

Clé supprimée: HKLM\Software\Classes\Toolbar.CT2851639

Clé supprimée: HKLM\Software\Conduit

Clé supprimée: HKLM\Software\conduitEngine

Clé supprimée: HKCU\Software\AppDataLow\Toolbar

Clé supprimée: HKCU\Software\AppDataLow\Software\Conduit

Clé supprimée: HKCU\Software\AppDataLow\Software\conduitEngine

Clé supprimée: HKCU\Software\AppDataLow\Software\PriceGong

Clé supprimée: HKLM\Software\Canneverbe Limited\OpenCandy

Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}

Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}

Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}

Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}

Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F34C18EE-5616-40C5-8B27-A3F29516B48E}

Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine

Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|PCTuto

Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{30F9B915-B755-4826-820B-08FBA6BD249D}

Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440}

============== SCAN ADDITIONNEL ==============

**** Mozilla Firefox Version [4.0.1 (fr)] ****

HKLM_MozillaPlugins\Adobe Reader (x)

Searchplugins\babylon.xml (hxxp://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=28e12e9b000000000000c417fe6d39c7&tlver=1.4.19.19&ss=1&affID=18027/)

Searchplugins\bing.xml ( hxxp://www.bing.com/search)

Components\browsercomps.dll (Mozilla Foundation)

Extensions\ffxtlbr@babylon.com (Babylon)

HKLM_Extensions|FFToolbar@bitdefender.com - C:\Program Files\BitDefender\BitDefender 2011\bdaphffext\

HKLM_Extensions|{23fcfd51-4958-4f00-80a3-ae97e717ed8b} - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\html5video

HKLM_Extensions|{6904342A-8307-11DF-A508-4AE2DFD72085} - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\wpa

-- C:\Users\root\AppData\Roaming\Mozilla\FireFox\Profiles\6abhpz0v.default --

Prefs.js - keyword.URL, hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=827316&p=

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896

HKCU_Main|Start Page - hxxp://fr.msn.com/

HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896

HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm

HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKLM_Main|Start Page - hxxp://fr.msn.com/