Pas encore inscrit ?

Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs !

Se connecter

ou

S’inscrire

[Resolu] Ordinateur infecté

Par grem
le 10 juillet 2011 dans Analyses et éradication malwares

https://forum.zebulon.fr/topic/186508-resolu-ordinateur-infect%C3%A9/

Abonnés 0

Messages recommandés

grem

Posté(e) le 10 juillet 2011

- Signaler

Posté(e) le 10 juillet 2011 (modifié)

Bonjour,

Mon PC est infecté et je n'arrive pas à éliminer les virus.

Pourriez vous m'aider ?

Merci

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 00:30:10, on 16/06/2004

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Intel\Wireless\Bin\EvtEng.exe

C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Avira\AntiVir Desktop\sched.exe

C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Avira\AntiVir Desktop\avguard.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Avira\AntiVir Desktop\avshadow.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe

C:\Program Files\Google\Update\GoogleUpdate.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe

C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\rundll32.exe

C:\Program Files\Synaptics\SynTP\SynTPLpr.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\acer\Wireless\Utility\WlanUtil.exe

C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe

C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe

C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Messenger\msmsgs.exe

C:\Program Files\Skype\Phone\Skype.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Program Files\FreeCompressor\spointer\freecompressor_air.exe

C:\Program Files\TightVNC\tvnserver.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

C:\Documents and Settings\Saskia\My Documents\Téléchargements\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Fissa search

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Interest recogniser for Freecompressor (powered by Spointer) - {a83c3565-302c-4bf8-b000-6b6f1811d892} - C:\Program Files\FreeCompressor\spointer\extensions\freecompressor_air_ie.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O3 - Toolbar: SciFinder Scholar Bar - {4e16a8fb-0521-46d1-aa2c-d0fc7abf6af9} - mscoree.dll (file missing)

O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent

O4 - HKLM\..\Run: [KTPWare] C:\Program Files\Elantech\ktp.exe

O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [acerWireless] C:\Program Files\acer\Wireless\Utility\WlanUtil.exe

O4 - HKLM\..\Run: [intelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless

O4 - HKLM\..\Run: [EOUApp] C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe

O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

O4 - HKLM\..\Run: [switchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [tvncontrol] "C:\Program Files\TightVNC\tvnserver.exe" -controlservice -slave

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

O4 - HKCU\..\Run: [NtWqIVLZEWZU] C:\DOCUME~1\Saskia\LOCALS~1\Temp\Jj2.exe

O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_Plugin.exe -update plugin

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - Global Startup: BTTray.lnk = ?

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll

O13 - Gopher Prefix:

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe

O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe

O23 - Service: Service Google Update (gupdate1cb095d934d6ec8) (gupdate1cb095d934d6ec8) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: OwnershipProtocol - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe

O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe

O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe

O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: TightVNC Server (tvnserver) - GlavSoft LLC. - C:\Program Files\TightVNC\tvnserver.exe

End of file - 9666 bytes

Modifié le 15 juillet 2011 par grem

Citer

tomtom95

Posté(e) le 10 juillet 2011

- Signaler

Posté(e) le 10 juillet 2011

Bonjour grem

Quelques conseils avant de commencer

Enregistre :toujours les outils sur ton bureau et désactive tes protections lors de utilisation des outils
Aprés Pense à réactiver tes protections à chaque fois

Bien lire les indications:
et si tu rencontre des problèmes n'hésiter pas à me le signaler avant d'effectuer une manip.

Télécharge sur le site

AD-R (de C_XX) sur ton Bureau.

/!\ Ferme toutes applications en cours /!\

Double-clique sur le raccourci AD-R.exe qui est sur ton bureau pour lancer l'outil .

Au menu principal choisis l'option "Nettoyer" et tape sur [entrée] .

/!\ Laisse travailler l'outil et ne touche à rien /!\

Poste le rapport qui apparait à la fin .

( Le rapport est sauvegardé sous C:\Ad-report-clean-(date).log )

Télécharge MalwareByte's sur ton Bureau.

Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.
Une fois l'installation et la mise à jour effectuées :
Branche tes supports externes sur le pc (Clé USB,Disque Dur,etc..)
Sans les ouvrirs
Exécute maintenant MalwareByte's Anti-Malware.Clique droit sur l'icône et "Exécuter en tant qu'administrateur"
sélectionne "Exécuter un examen complet".
Coche toutes les cases des lecteurs
Afin de lancer la recherche clique sur"Rechercher".
Coche toutes les cases de tes lecteurs
Une fois le scan terminé une fenêtre s'ouvre clique sur OK.
Si des infections sont présentes
clique sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau.
poste le rapport dans ta prochaine réponse.

REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression accepte en cliquant sur Ok.

Pour une analyse un peu plus détailler de ton ordinateur
applique cette procédure stp.

Télécharge ZHPDiag de Nicolas Coolman sur ton Bureau
Lance l'outil : double-clique sur ZHPDiag pour XP
Pour Vista et seven
fais un clique droit sur l'icône et exécute en tant qu'administrateur.

Clique sur le Tournevis a droit en haut

Coche toutes les cases .
Puis Clique sur la petite loupe en haut à gauche pour débuter l'analyse :
L'analyse peut durer une dizaine de minutes.
Le rapport généré par l'outil se nomme ZHPDiag.txt
Clique sur le bouton avec l'appareil photo pour copier le contenu intégral du rapport généré par l'outil dans le presse-papier :
Dans ta prochaine réponse
clique sur les touches CTRL+V pour coller ce rapport.
Si tu rencontres un message d'erreur
cela signifie que le rapport est trop long. Il faut donc l'éditer en plusieurs parties en veillant bien à ne rien oublier
Tu peux aussi héberger le fichier contenant ce rapport ici
http://cjoint.com/
Indique ensuite dans ta prochaine réponse l'adresse d'hébergement de ce rapport pour que je puisse le télécharger et l'analyser.

A+

Citer

grem

Posté(e) le 10 juillet 2011

Auteur

- Signaler

Posté(e) le 10 juillet 2011

Merci!

Voici les rapports :

Malwarebytes' Anti-Malware 1.46

www.malwarebytes.org

Version de la base de données: 4770

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

10/07/2011 04:49:15

mbam-log-2011-07-10 (04-49-15).txt

Type d'examen: Examen complet (C:\|)

Elément(s) analysé(s): 341184

Temps écoulé: 3 heure(s), 0 minute(s), 35 seconde(s)

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 1

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 0

Fichier(s) infecté(s): 0

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):

HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

Dossier(s) infecté(s):

(Aucun élément nuisible détecté)

Fichier(s) infecté(s):

(Aucun élément nuisible détecté)

Rapport de ZHPDiag v1.27.2405 par Nicolas Coolman, Update du 08/07/2011

Run by Saskia at 10/07/2011 04:51:37

Web site : ZHPDiag Outil de diagnostic

---\\ Web Browser

MSIE: Internet Explorer v8.0.6001.18702

MFIE: Mozilla Firefox v (Defaut)

GCIE: Google Chrome v12.0.742.112

---\\ System Information

Windows XP Professional Service Pack 3 (Build 2600)

Processor: x86 Family 6 Model 13 Stepping 8, GenuineIntel

Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 1022 MB (35% free)

System Restore: Activé (Enable)

System drive C: has 4 GB (5%) free of 75 GB

---\\ Logged in mode

Computer Name: JÉRÉMY

User Name: Saskia

All Users Names: SUPPORT_388945a0, Saskia, HelpAssistant, Guest, ASPNET, Administrator,

Unselected Option: None

Logged in as Administrator

---\\ Environnement Variables

~ %AppData%=C:\Documents and Settings\Saskia\Application Data\

~ %Desktop%=C:\Documents and Settings\Saskia\Desktop\

~ %Favorites%=C:\Documents and Settings\Saskia\Favorites\

~ %LocalAppData%=C:\Documents and Settings\Saskia\Local Settings\Application Data\

~ %StartMenu%=C:\Documents and Settings\Saskia\Start Menu\

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 4 Go of 75 Go)

D:\ CD-ROM drive (Not Inserted)

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: Modified

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK

[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK

---\\ Recherche particulière de fichiers génériques

[MD5.2BB75B7F548D82A099125D0C5971DE7D] - (.Microsoft Corporation - Windows Explorer.) (.10/07/2011 - 12:38:24.) -- C:\WINDOWS\Explorer.exe [1033728]

[MD5.CC951C2212A200475A587A440E0AA804] - (.Microsoft Corporation - Internet Extensions for Win32.) (.10/07/2011 - 17:11:12.) -- C:\WINDOWS\system32\wininet.dll [916480]

[MD5.D1BAC55BC35A0CA735AEA19F609F2B22] - (.Microsoft Corporation - Windows NT Logon Application.) (.10/07/2011 - 14:33:54.) -- C:\WINDOWS\system32\Winlogon.exe [507904]

[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.10/07/2011 - 23:10:32.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512]

[MD5.A0857C97770034FD2AF17DC4014B5ABD] - (.Microsoft Corporation - NT File System Driver.) (.10/07/2011 - 14:45:52.) -- C:\WINDOWS\system32\drivers\ntfs.sys [576384]

---\\ Etat des fichiers cachés (Caché/Total)

~ Mes images (My Pictures) : 2/23

~ Mes musiques (My Musics) : 36/2636

~ Mes Favoris (My Favorites) : 2/11

~ Mes Documents (My Documents) : 170/9878

~ Mon Bureau (My Desktop) : 9/1502

~ Menu demarrer (Programs) : 4/30

---\\ Processus lancés

[MD5.127E07D34B44438442A0E81AE7F093C0] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [425984]

[MD5.5AE75738B957C2064566007487D973B6] - (.Intel Corporation - EvtEng Module.) -- C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [86016]

[MD5.215DEEE103618F102263C8ECF4B8413E] - (.Intel Corporation - Event Monitor - Supports driver extensions.) -- C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [360521]

[MD5.A5BCBAF0477C4869B67E0195AEA4A9CD] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [136360]

[MD5.2F73148CFD930B641D860710931FE8C7] - (.Intel Corporation - ZeroCfgSvc MFC Application.) -- C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe [389120]

[MD5.1CF3866E09FFE13CF280D4DDFA9F7DCF] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [269480]

[MD5.018857EAD9A077A56AEDFC0E5EF7A24A] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664]

[MD5.CDE000884FD7BAF0C1FDFE029B0891DE] - (.Avira GmbH - AntiVir shadow copy service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76968]

[MD5.F832F1505AD8B83474BD9A5B1B985E01] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [345376]

[MD5.05D21AD56EA309597864393D3D4A14F7] - (.WIDCOMM, Inc. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [163840]

[MD5.1834C96FB1F9280BCF6DDFA6DE8338BF] - (.Sun Microsystems, Inc. - Java Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]

[MD5.F57524C6764E96FC29AC64394282EB36] - (.Intel Corporation - Ownership protocol service.) -- C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe [98304]

[MD5.A7EEBA958CFCCADBD4F47C3CDB51C714] - (.Intel Corporation - RegSrvc Module.) -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [139264]

[MD5.0461FAEBB17A4A92EFFA2EB67BC52261] - (.GlavSoft LLC. - TightVNC Server for Windows.) -- C:\Program Files\TightVNC\tvnserver.exe [826896]

[MD5.037B1E7798960E0420003D05BB577EE6] - (...) -- C:\WINDOWS\system32\rundll32.exe [33280]

[MD5.3665BA88B993554DB062FF96542D85FF] - (.Synaptics, Inc. - TouchPad Driver Helper Application.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [98394]

[MD5.55582F239914C8EFCCF89BD632639542] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [688218]

[MD5.00EE4D43383C6162744C18626FEA96F9] - (.INPROCOMM - Wireless LAN Configuration Utility.) -- C:\Program Files\acer\Wireless\Utility\WlanUtil.exe [417792]

[MD5.0E237B85A4FF082CAECFBF4804A29F3C] - (.Intel Corporation - Intel Framework MFC Application.) -- C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [385024]

[MD5.1AFE29C82ED39A48FEC9E747B356C87C] - (.Intel Corporation - Ease Of Use Wizard Application.) -- C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe [356352]

[MD5.F7364F9AF03F4F01856804C28B459FEB] - (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064]

[MD5.9D5E8B45BD348DF0882C69EED0E83111] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [281768]

[MD5.2DFCB2393528446AEB9FB861A8FC39AB] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160]

[MD5.3E930C641079443D4DE036167A69CAA2] - (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe [1695232]

[MD5.70B6D0C45256B688B7DBC10E922FB402] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [26192168]

[MD5.97CF3EC1582005C2D354B708F0960B63] - (.WIDCOMM, Inc. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [565309]

[MD5.0CA8C2E721617AA2F923A8151C96FB33] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [820008]

[MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53472]

[MD5.055713CD9E0C6AAC46AFBB3A5B95EF75] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [912344]

[MD5.55B35599E4B8C20904CF6BE6F50A1F8D] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856]

[MD5.5E28284F9B5F9097640D58A73D38AD4C] - (.Microsoft Corporation - Notepad.) -- C:\WINDOWS\system32\NOTEPAD.EXE [69120]

[MD5.5FE2221EC55549B52427BF37E9173E47] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [656384]

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)

C:\Documents and Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\prefs.js

M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml

M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml

M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml

M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml

M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml

M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml

P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll

P2 - FPN:Firefox Plugin Navigator . (.CambridgeSoft Corp. - ChemDraw Pro Plugin 8.0.) -- C:\Program Files\Mozilla Firefox\Plugins\npcdp32.dll

P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll

P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll

P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL

P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.1".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll

P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll

P2 - FPN:Firefox Plugin Navigator . (.Pas de propriétaire - SciFinder Application Plugin for Mozilla.) -- C:\Program Files\Mozilla Firefox\Plugins\npSfAppM.dll

P2 - FPN:Firefox Plugin Navigator . (.CNN - NPTURNMED.) -- C:\Program Files\Mozilla Firefox\Plugins\NPTURNMED.dll

P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll

P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

C:\Documents and Settings\Saskia\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

G0 - GCSP: Preference [user Data\Default][HomePage] Google

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Microsoft Corporation

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.19072 (longhorn_ie8_gdr.110420-1700)) -- C:\WINDOWS\system32\ieframe.dll

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: SciFinder Scholar Bar - {4e16a8fb-0521-46d1-aa2c-d0fc7abf6af9} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll

---\\ ---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] bthprops.cpl

O4 - HKLM\..\Run: [KTPWare] . (.ELANTECH Devices Corp. - KTP Ware TSR Enhancements.) -- C:\Program Files\Elantech\ktp.exe

O4 - HKLM\..\Run: [synTPLpr] . (.Synaptics, Inc. - TouchPad Driver Helper Application.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe

O4 - HKLM\..\Run: [synTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [acerWireless] . (.INPROCOMM - Wireless LAN Configuration Utility.) -- C:\Program Files\acer\Wireless\Utility\WlanUtil.exe

O4 - HKLM\..\Run: [intelWireless] . (.Intel Corporation - Intel Framework MFC Application.) -- C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe

O4 - HKLM\..\Run: [EOUApp] . (.Intel Corporation - Ease Of Use Wizard Application.) -- C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe

O4 - HKLM\..\Run: [ATIPTA] . (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe

O4 - HKLM\..\Run: [switchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O4 - HKLM\..\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe

O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe

O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe

O4 - HKLM\..\Run: [tvncontrol] . (.GlavSoft LLC. - TightVNC Server for Windows.) -- C:\Program Files\TightVNC\tvnserver.exe

O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe

O4 - HKCU\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe

O4 - HKCU\..\Run: [NtWqIVLZEWZU] C:\DOCUME~1\Saskia\LOCALS~1\Temp\Jj2.exe (.not file.)

O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] . (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_Plugin.exe

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe

O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe

O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe

O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\Run: [NtWqIVLZEWZU] C:\DOCUME~1\Saskia\LOCALS~1\Temp\Jj2.exe (.not file.)

O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\RunOnce: [FlashPlayerUpdate] . (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_Plugin.exe

---\\ ---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe After Effects CS3.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe After Effects CS3\Support Files\AfterFX.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Bridge CS3.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Adobe\Adobe Bridge CS3\Bridge.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Device Central CS3.lnk . (.Adobe Systems.) -- C:\Program Files\Adobe\Adobe Device Central CS3\DeviceCentral.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe ExtendScript Toolkit 2.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Utilities\ExtendScript Toolkit 2\ExtendScript Toolkit 2.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop CS3.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Photoshop CS3\Photoshop.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop Lightroom 2.4.lnk . (.Adobe Systems.) -- C:\Program Files\Adobe\Adobe Photoshop Lightroom 2.4\lightroom.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Premiere Pro CS3.lnk . (...) -- C:\Program Files\Adobe\Adobe Premiere Pro CS3\Adobe Premiere Pro.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 6.0.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1033-7B44-000000000001}\SC_Reader_PM.ico (.not file.)

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Stock Photos CS3.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe Stock Photos CS3\Adobe Stock Photos CS3.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\AppleSoftwareUpdateIco.exe (.not file.)

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\PC Inspector smart recovery.lnk . (.Convar Deutschland GmbH.) -- C:\Program Files\Convar\SmartRecovery\SMR.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Yahoo! Mail.lnk . (...) -- C:\WINDOWS\system32\RUNDLL32.EXE

O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\AD-R.lnk . (...) -- C:\Program Files\Ad-Remover\main.exe

O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Arbeitsplatz.lnk - Clé orpheline

O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\ChemDraw Ultra 8.0.lnk . (.CambridgeSoft Corp..) -- C:\Program Files\CambridgeSoft\ChemOffice2004\ChemDraw\ChemDraw.exe

O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\eBay Sidebar pour Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\JDownloader.lnk . (.AppWork UG (haftungsbeschränkt).) -- C:\Program Files\JDownloader\JDownloader.exe

O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Microsoft Office Word 2007.lnk . (...) -- C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe

O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\OriginPro 8G.lnk . (.OriginLab Corporation.) -- C:\Program Files\OriginLab\Origin8\Origin8.exe

O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Pixia 4.3a FR.lnk . (...) -- C:\Program Files\Pixia 4.3a FR\pixia.exe

O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Shortcut to EndNote.lnk . (.Thomson ResearchSoft.) -- C:\Program Files\EndNote 9\EndNote.exe

O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\TeXnicCenter.lnk . (.TeXnicCenter.org (www.TeXnicCenter.org).) -- C:\Program Files\TeXnicCenter\TEXCNTR.EXE

O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\XnView.lnk . (.XnView, http://www.xnview.com.) -- C:\Program Files\XnView\xnview.exe

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\Office12\EXCEL.exe

O8 - Extra context menu item: Send To &Bluetooth . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico

O9 - Extra button: Skype add-on for Internet Explorer - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO

O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (...) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO

O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\WINDOWS\system32\mswsock.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\WINDOWS\system32\mswsock.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Client Service for NetWare Provider and Authentication Package DLL.) -- C:\WINDOWS\system32\nwprovau.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{19A8B5E0-A772-4CEA-B80A-AF76F33DB28D}: DhcpNameServer = 89.2.0.1 89.2.0.2

O17 - HKLM\System\CS1\Services\Tcpip\..\{19A8B5E0-A772-4CEA-B80A-AF76F33DB28D}: DhcpNameServer = 89.2.0.1 89.2.0.2

O17 - HKLM\System\CS2\Services\Tcpip\..\{19A8B5E0-A772-4CEA-B80A-AF76F33DB28D}: DhcpNameServer = 89.2.0.1 89.2.0.2

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2

---\\ Protocole additionnel et piratage de protocole (O18)

O18 - Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Handler: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} . (.WIDCOMM, Inc. - BTXPPanel Module.) -- C:\WINDOWS\system32\btxppanel.dll

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\Windows\System32\Ati2evxx.dll

O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll

O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll

O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Offline Network Agent.) -- C:\Windows\System32\cscdll.dll

O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll

O20 - Winlogon Notify: IntelWireless . (.Intel Corporation - LogonNotify DLL.) -- C:\Program Files\Intel\Wireless\Bin\LgNotify.dll

O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll

O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll

O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - Secondary Logon Service Notification DLL.) -- C:\Windows\System32\sclgntfy.dll

O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\WlNotify.dll

O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll

O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll

O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\WINDOWS\system32\SHELL32.dll

O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\WINDOWS\system32\SHELL32.dll

O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Systray shell service object.) -- C:\WINDOWS\system32\stobject.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)

O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\system32\browseui.dll

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Bluetooth Service (btwdins) . (.WIDCOMM, Inc. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe

O23 - Service: EvtEng (EvtEng) . (.Intel Corporation - EvtEng Module.) - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe

O23 - Service: Service Google Update (gupdate1cb095d934d6ec8) (gupdate1cb095d934d6ec8) . (.Google Inc. - Google Installer.) - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: OwnershipProtocol (OwnershipProtocol) . (.Intel Corporation - Ownership protocol service.) - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe

O23 - Service: RegSrvc (RegSrvc) . (.Intel Corporation - RegSrvc Module.) - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe

O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) . (.Intel Corporation - Event Monitor - Supports driver extensions.) - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe

O23 - Service: TightVNC Server (tvnserver) . (.GlavSoft LLC. - TightVNC Server for Windows.) - C:\Program Files\TightVNC\tvnserver.exe

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Desktop Component 0: My Current Home Page - file:About:Home

O24 - Default MHTML Editor: Last - .(...) - (.not file.)

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-JÉRÉMY-Saskia.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job

[MD5.5447AF432CDA61159ADDE218C468FFD9] [APT] [AdobeAAMUpdater-1.0-JRMY-Saskia] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe

[MD5.187E0D2AB859AD03393DDD731076BE81] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe

[MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe

[MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe

[MD5.00000000000000000000000000000000] [APT] [{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}] (...) -- C:\DOCUME~1\Saskia\LOCALS~1\Temp\a.exe (.not file.)

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys

O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys

O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\WINDOWS\System32\DRIVERS\avipbb.sys

O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\System32\DRIVERS\cdrom.sys

O41 - Driver: (i8042prt) . (.Microsoft Corporation - i8042 Port Driver.) - C:\WINDOWS\System32\DRIVERS\i8042prt.sys

O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\System32\DRIVERS\imapi.sys

O41 - Driver: (intelppm) . (.Microsoft Corporation - Processor Device Driver.) - C:\WINDOWS\System32\DRIVERS\intelppm.sys

O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\System32\DRIVERS\ipsec.sys

O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Keyboard Class Driver.) - C:\WINDOWS\System32\DRIVERS\kbdclass.sys

O41 - Driver: (kbdhid) . (.Microsoft Corporation - HID Mouse Filter Driver.) - C:\WINDOWS\System32\DRIVERS\kbdhid.sys

O41 - Driver: (Mouclass) . (.Microsoft Corporation - Mouse Class Driver.) - C:\WINDOWS\System32\DRIVERS\mouclass.sys

O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\System32\DRIVERS\mrxsmb.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\System32\DRIVERS\netbios.sys

O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\System32\DRIVERS\netbt.sys

O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\System32\DRIVERS\rasacd.sys

O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\System32\DRIVERS\rdbss.sys

O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys

O41 - Driver: (redbook) . (.Microsoft Corporation - Redbook Audio Filter Driver.) - C:\WINDOWS\System32\DRIVERS\redbook.sys

O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\WINDOWS\System32\DRIVERS\ssmdrv.sys

O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\System32\DRIVERS\tcpip.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\System32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys

---\\ Logiciels installés (O42)

O42 - Logiciel: ATI - Utilitaire de désinstallation du logiciel - (.Pas de propriétaire.) [HKLM] -- All ATI Software

O42 - Logiciel: ATI Control Panel - (.Pas de propriétaire.) [HKLM] -- {0BEDBD4E-2D34-47B5-9973-57E62B29307C}

O42 - Logiciel: ATI Display Driver - (.Pas de propriétaire.) [HKLM] -- ATI Display Driver

O42 - Logiciel: Accord SDK 5.1 Runtime - (.Pas de propriétaire.) [HKLM] -- AccelrysAccordSDK51RT

O42 - Logiciel: AdVantage (Powering DAEMON Tools) - (.AdVantage.) [HKCU] -- advantage_DAEM

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}

O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1

O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin

O42 - Logiciel: Adobe Photoshop CS5 - (.Adobe Systems Incorporated.) [HKLM] -- {15FEDA5F-141C-4127-8D7E-B962D1742728}

O42 - Logiciel: Adobe Reader 9.4.1 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001}

O42 - Logiciel: Akamai NetSession Interface - (.Pas de propriétaire.) [HKLM] -- Akamai

O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}

O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {308B6AEA-DE50-4666-996D-0FA461719D6B}

O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}

O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop

O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {2A981294-F14C-4F0F-9627-D793270922F8}

O42 - Logiciel: Broadcom 440x 10/100 Integrated Controller - (.Broadcom.) [HKLM] -- InstallShield_{52504CE6-E909-4113-B232-4AFEC6543A61}

O42 - Logiciel: Broadcom Gigabit Integrated Controller - (.Nom de votre société.) [HKLM] -- {B7F54262-AB66-44B3-88BF-9FC69941B643}

O42 - Logiciel: ChemOffice Ultra 2004 - (.CambridgeSoft Corporation.) [HKLM] -- {5A33744D-33F5-451A-9CB0-2FE49EE3809C}

O42 - Logiciel: Conexant AC-Link Audio - (.Pas de propriétaire.) [HKLM] -- Conexant PCI Audio

O42 - Logiciel: EndNote 9 Volume License Edition - (.Thomson ResearchSoft.) [HKLM] -- {53C020C2-8C1A-11D9-8BDE-F66BAD1E3F3A}

O42 - Logiciel: FreeCompressor - (.Secure Digital Services.) [HKLM] -- {1EF93620-4B15-4DB4-B0EA-889E2F187081}

O42 - Logiciel: GPL Ghostscript 8.61 - (.Pas de propriétaire.) [HKLM] -- GPL Ghostscript 8.61

O42 - Logiciel: GPL Ghostscript Fonts - (.Pas de propriétaire.) [HKLM] -- GPL Ghostscript Fonts

O42 - Logiciel: GSview 4.9 - (.Pas de propriétaire.) [HKLM] -- GSview 4.9

O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome

O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM] -- {A9F6CFB0-806D-11E0-8EA1-B8AC6F97B88E}

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484

O42 - Logiciel: Hotfix for Windows XP (KB2158563) - (.Microsoft Corporation.) [HKLM] -- KB2158563

O42 - Logiciel: Hotfix for Windows XP (KB2443685) - (.Microsoft Corporation.) [HKLM] -- KB2443685

O42 - Logiciel: Hotfix for Windows XP (KB942766-v6) - (.Microsoft Corporation.) [HKLM] -- KB942766-v6

O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5

O42 - Logiciel: Hotfix for Windows XP (KB961118) - (.Microsoft Corporation.) [HKLM] -- KB961118

O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5

O42 - Logiciel: Hotfix for Windows XP (KB981793) - (.Microsoft Corporation.) [HKLM] -- KB981793

O42 - Logiciel: ISI ResearchSoft - Export Helper - (.Pas de propriétaire.) [HKLM] -- ISI ResearchSoft - Export Helper

O42 - Logiciel: Intel® PROSet/Wireless Software - (.Intel Corporation.) [HKLM] -- ProInst

O42 - Logiciel: JDownloader - (.AppWork UG (haftungsbeschränkt).) [HKLM] -- JDownloader

O42 - Logiciel: Java 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF}

O42 - Logiciel: KTP Ware PS/2-WDM 5.0.1.8 - (.Pas de propriétaire.) [HKLM] -- Elantech

O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver

O42 - Logiciel: MSN - (.Pas de propriétaire.) [HKLM] -- MSNINST

O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- MSXML 4.0 SP2 (KB941833)

O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- {C523D256-313D-4866-B36A-F3DE528246EF}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1

O42 - Logiciel: MiKTeX 2.8 - (.MiKTeX.org.) [HKLM] -- MiKTeX 2.8

O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}

O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)

O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447

O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906

O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}

O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS

O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9}

O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- Microsoft Silverlight

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}

O42 - Logiciel: Microsoft_VC80_ATL_x86 - (.Adobe.) [HKLM] -- {0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}

O42 - Logiciel: Microsoft_VC80_CRT_x86 - (.Adobe.) [HKLM] -- {92D58719-BBC1-4CC3-A08B-56C9E884CC2C}

O42 - Logiciel: Microsoft_VC80_MFCLOC_x86 - (.Adobe.) [HKLM] -- {D92BBB52-82FF-42ED-8A3C-4E062F944AB7}

O42 - Logiciel: Microsoft_VC80_MFC_x86 - (.Adobe.) [HKLM] -- {D1A19B02-817E-4296-A45B-07853FD74D57}

O42 - Logiciel: Microsoft_VC90_ATL_x86 - (.Adobe.) [HKLM] -- {033E378E-6AD3-4AD5-BDEB-CBD69B31046C}

O42 - Logiciel: Microsoft_VC90_CRT_x86 - (.Adobe.) [HKLM] -- {08D2E121-7F6A-43EB-97FD-629B44903403}

O42 - Logiciel: Microsoft_VC90_MFC_x86 - (.Adobe.) [HKLM] -- {635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}

O42 - Logiciel: Mozilla Firefox (3.6.18) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.18)

O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM] -- {4EE2EF4B-25D3-4D44-8384-A2B96F811F55}

O42 - Logiciel: OriginPro 8G - (.OriginLab Corporation.) [HKLM] -- {A912021A-FEDD-4DA3-8DB4-245EBDA84778}

O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392}

O42 - Logiciel: Pixia 4.3a FR - (.Pas de propriétaire.) [HKCU] -- Pixia 4.3a FR

O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {E7004147-2CCA-431C-AA05-2AB166B9785D}

O42 - Logiciel: SciFinder Scholar 2007 - (.Pas de propriétaire.) [HKLM] -- {12377A05-0062-47F9-9CB9-AAAF8C22D645}

O42 - Logiciel: SciFinder Scholar Toolbar - (.Pas de propriétaire.) [HKLM] -- {455F9ACD-4967-446B-9174-8C87EA895F2A}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5C497F0B-2061-4CC9-A61C-6B45B867354D}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD769337-C8AC-46DB-A7DC-643E50089263}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{536FB502-775F-4494-BACE-C02CC90B7A5B}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2509488) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{AD0DE453-0804-4495-9C91-33D0F9AA5463}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7F207DCA-3399-40CB-A968-6E5991B1421A}

O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473

O42 - Logiciel: Security Update for Microsoft Office 2007 System (KB2541012) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD907315-705A-4475-A1A0-2A1245803E4D}

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5}

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5A4E43D5-858F-49BD-BA72-8F30E1793060}

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2541007) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{A0173254-F442-4D04-9154-43FA157B83D0}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB2510061) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5D930261-AA5B-48D1-931F-425C9D767490}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062}

O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3A4CDE54-2403-483D-8D9A-15E3264410DF}

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}

O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2183461) - (.Microsoft Corporation.) [HKLM] -- KB2183461-IE8

O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2360131) - (.Microsoft Corporation.) [HKLM] -- KB2360131-IE8

O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2482017) - (.Microsoft Corporation.) [HKLM] -- KB2482017-IE8

O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2510531) - (.Microsoft Corporation.) [HKLM] -- KB2510531-IE8

O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2530548) - (.Microsoft Corporation.) [HKLM] -- KB2530548-IE8

O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2544521) - (.Microsoft Corporation.) [HKLM] -- KB2544521-IE8

O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB971961) - (.Microsoft Corporation.) [HKLM] -- KB971961-IE8

O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB981332) - (.Microsoft Corporation.) [HKLM] -- KB981332-IE8

O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB982381) - (.Microsoft Corporation.) [HKLM] -- KB982381-IE8

O42 - Logiciel: Security Update for Windows Media Player (KB2378111) - (.Microsoft Corporation.) [HKLM] -- KB2378111_WM9

O42 - Logiciel: Security Update for Windows Media Player (KB952069) - (.Microsoft Corporation.) [HKLM] -- KB952069_WM9

O42 - Logiciel: Security Update for Windows Media Player (KB954155) - (.Microsoft Corporation.) [HKLM] -- KB954155_WM9

O42 - Logiciel: Security Update for Windows Media Player (KB968816) - (.Microsoft Corporation.) [HKLM] -- KB968816_WM9

O42 - Logiciel: Security Update for Windows Media Player (KB973540) - (.Microsoft Corporation.) [HKLM] -- KB973540_WM9

O42 - Logiciel: Security Update for Windows Media Player (KB975558) - (.Microsoft Corporation.) [HKLM] -- KB975558_WM8

O42 - Logiciel: Security Update for Windows Media Player (KB978695) - (.Microsoft Corporation.) [HKLM] -- KB978695_WM9

O42 - Logiciel: Security Update for Windows Media Player 11 (KB954154) - (.Microsoft Corporation.) [HKLM] -- KB954154_WM11

O42 - Logiciel: Security Update for Windows XP (KB2079403) - (.Microsoft Corporation.) [HKLM] -- KB2079403

O42 - Logiciel: Security Update for Windows XP (KB2115168) - (.Microsoft Corporation.) [HKLM] -- KB2115168

O42 - Logiciel: Security Update for Windows XP (KB2121546) - (.Microsoft Corporation.) [HKLM] -- KB2121546

O42 - Logiciel: Security Update for Windows XP (KB2160329) - (.Microsoft Corporation.) [HKLM] -- KB2160329

O42 - Logiciel: Security Update for Windows XP (KB2229593) - (.Microsoft Corporation.) [HKLM] -- KB2229593

O42 - Logiciel: Security Update for Windows XP (KB2259922) - (.Microsoft Corporation.) [HKLM] -- KB2259922

O42 - Logiciel: Security Update for Windows XP (KB2279986) - (.Microsoft Corporation.) [HKLM] -- KB2279986

O42 - Logiciel: Security Update for Windows XP (KB2286198) - (.Microsoft Corporation.) [HKLM] -- KB2286198

O42 - Logiciel: Security Update for Windows XP (KB2296011) - (.Microsoft Corporation.) [HKLM] -- KB2296011

O42 - Logiciel: Security Update for Windows XP (KB2296199) - (.Microsoft Corporation.) [HKLM] -- KB2296199

O42 - Logiciel: Security Update for Windows XP (KB2347290) - (.Microsoft Corporation.) [HKLM] -- KB2347290

O42 - Logiciel: Security Update for Windows XP (KB2360937) - (.Microsoft Corporation.) [HKLM] -- KB2360937

O42 - Logiciel: Security Update for Windows XP (KB2387149) - (.Microsoft Corporation.) [HKLM] -- KB2387149

O42 - Logiciel: Security Update for Windows XP (KB2393802) - (.Microsoft Corporation.) [HKLM] -- KB2393802

O42 - Logiciel: Security Update for Windows XP (KB2412687) - (.Microsoft Corporation.) [HKLM] -- KB2412687

O42 - Logiciel: Security Update for Windows XP (KB2419632) - (.Microsoft Corporation.) [HKLM] -- KB2419632

O42 - Logiciel: Security Update for Windows XP (KB2423089) - (.Microsoft Corporation.) [HKLM] -- KB2423089

O42 - Logiciel: Security Update for Windows XP (KB2436673) - (.Microsoft Corporation.) [HKLM] -- KB2436673

O42 - Logiciel: Security Update for Windows XP (KB2440591) - (.Microsoft Corporation.) [HKLM] -- KB2440591

O42 - Logiciel: Security Update for Windows XP (KB2443105) - (.Microsoft Corporation.) [HKLM] -- KB2443105

O42 - Logiciel: Security Update for Windows XP (KB2476490) - (.Microsoft Corporation.) [HKLM] -- KB2476490

O42 - Logiciel: Security Update for Windows XP (KB2476687) - (.Microsoft Corporation.) [HKLM] -- KB2476687

O42 - Logiciel: Security Update for Windows XP (KB2478960) - (.Microsoft Corporation.) [HKLM] -- KB2478960

O42 - Logiciel: Security Update for Windows XP (KB2478971) - (.Microsoft Corporation.) [HKLM] -- KB2478971

O42 - Logiciel: Security Update for Windows XP (KB2479628) - (.Microsoft Corporation.) [HKLM] -- KB2479628

O42 - Logiciel: Security Update for Windows XP (KB2479943) - (.Microsoft Corporation.) [HKLM] -- KB2479943

O42 - Logiciel: Security Update for Windows XP (KB2481109) - (.Microsoft Corporation.) [HKLM] -- KB2481109

O42 - Logiciel: Security Update for Windows XP (KB2483185) - (.Microsoft Corporation.) [HKLM] -- KB2483185

O42 - Logiciel: Security Update for Windows XP (KB2485376) - (.Microsoft Corporation.) [HKLM] -- KB2485376

O42 - Logiciel: Security Update for Windows XP (KB2485663) - (.Microsoft Corporation.) [HKLM] -- KB2485663

O42 - Logiciel: Security Update for Windows XP (KB2503665) - (.Microsoft Corporation.) [HKLM] -- KB2503665

O42 - Logiciel: Security Update for Windows XP (KB2506212) - (.Microsoft Corporation.) [HKLM] -- KB2506212

O42 - Logiciel: Security Update for Windows XP (KB2506223) - (.Microsoft Corporation.) [HKLM] -- KB2506223

O42 - Logiciel: Security Update for Windows XP (KB2507618) - (.Microsoft Corporation.) [HKLM] -- KB2507618

O42 - Logiciel: Security Update for Windows XP (KB2508272) - (.Microsoft Corporation.) [HKLM] -- KB2508272

O42 - Logiciel: Security Update for Windows XP (KB2508429) - (.Microsoft Corporation.) [HKLM] -- KB2508429

O42 - Logiciel: Security Update for Windows XP (KB2509553) - (.Microsoft Corporation.) [HKLM] -- KB2509553

O42 - Logiciel: Security Update for Windows XP (KB2524375) - (.Microsoft Corporation.) [HKLM] -- KB2524375

O42 - Logiciel: Security Update for Windows XP (KB2535512) - (.Microsoft Corporation.) [HKLM] -- KB2535512

O42 - Logiciel: Security Update for Windows XP (KB2536276) - (.Microsoft Corporation.) [HKLM] -- KB2536276

O42 - Logiciel: Security Update for Windows XP (KB2544893) - (.Microsoft Corporation.) [HKLM] -- KB2544893

O42 - Logiciel: Security Update for Windows XP (KB923561) - (.Microsoft Corporation.) [HKLM] -- KB923561

O42 - Logiciel: Security Update for Windows XP (KB952004) - (.Microsoft Corporation.) [HKLM] -- KB952004

O42 - Logiciel: Security Update for Windows XP (KB954459) - (.Microsoft Corporation.) [HKLM] -- KB954459

O42 - Logiciel: Security Update for Windows XP (KB955069) - (.Microsoft Corporation.) [HKLM] -- KB955069

O42 - Logiciel: Security Update for Windows XP (KB956572) - (.Microsoft Corporation.) [HKLM] -- KB956572

O42 - Logiciel: Security Update for Windows XP (KB956744) - (.Microsoft Corporation.) [HKLM] -- KB956744

O42 - Logiciel: Security Update for Windows XP (KB956802) - (.Microsoft Corporation.) [HKLM] -- KB956802

O42 - Logiciel: Security Update for Windows XP (KB956803) - (.Microsoft Corporation.) [HKLM] -- KB956803

O42 - Logiciel: Security Update for Windows XP (KB956844) - (.Microsoft Corporation.) [HKLM] -- KB956844

O42 - Logiciel: Security Update for Windows XP (KB958644) - (.Microsoft Corporation.) [HKLM] -- KB958644

O42 - Logiciel: Security Update for Windows XP (KB958869) - (.Microsoft Corporation.) [HKLM] -- KB958869

O42 - Logiciel: Security Update for Windows XP (KB959426) - (.Microsoft Corporation.) [HKLM] -- KB959426

O42 - Logiciel: Security Update for Windows XP (KB960225) - (.Microsoft Corporation.) [HKLM] -- KB960225

O42 - Logiciel: Security Update for Windows XP (KB960803) - (.Microsoft Corporation.) [HKLM] -- KB960803

O42 - Logiciel: Security Update for Windows XP (KB960859) - (.Microsoft Corporation.) [HKLM] -- KB960859

O42 - Logiciel: Security Update for Windows XP (KB961501) - (.Microsoft Corporation.) [HKLM] -- KB961501

O42 - Logiciel: Security Update for Windows XP (KB969059) - (.Microsoft Corporation.) [HKLM] -- KB969059

O42 - Logiciel: Security Update for Windows XP (KB969947) - (.Microsoft Corporation.) [HKLM] -- KB969947

O42 - Logiciel: Security Update for Windows XP (KB970238) - (.Microsoft Corporation.) [HKLM] -- KB970238

O42 - Logiciel: Security Update for Windows XP (KB970430) - (.Microsoft Corporation.) [HKLM] -- KB970430

O42 - Logiciel: Security Update for Windows XP (KB971468) - (.Microsoft Corporation.) [HKLM] -- KB971468

O42 - Logiciel: Security Update for Windows XP (KB971657) - (.Microsoft Corporation.) [HKLM] -- KB971657

O42 - Logiciel: Security Update for Windows XP (KB971961) - (.Microsoft Corporation.) [HKLM] -- KB971961

O42 - Logiciel: Security Update for Windows XP (KB972270) - (.Microsoft Corporation.) [HKLM] -- KB972270

O42 - Logiciel: Security Update for Windows XP (KB973507) - (.Microsoft Corporation.) [HKLM] -- KB973507

O42 - Logiciel: Security Update for Windows XP (KB973869) - (.Microsoft Corporation.) [HKLM] -- KB973869

O42 - Logiciel: Security Update for Windows XP (KB973904) - (.Microsoft Corporation.) [HKLM] -- KB973904

O42 - Logiciel: Security Update for Windows XP (KB974112) - (.Microsoft Corporation.) [HKLM] -- KB974112

O42 - Logiciel: Security Update for Windows XP (KB974318) - (.Microsoft Corporation.) [HKLM] -- KB974318

O42 - Logiciel: Security Update for Windows XP (KB974392) - (.Microsoft Corporation.) [HKLM] -- KB974392

O42 - Logiciel: Security Update for Windows XP (KB974571) - (.Microsoft Corporation.) [HKLM] -- KB974571

O42 - Logiciel: Security Update for Windows XP (KB975025) - (.Microsoft Corporation.) [HKLM] -- KB975025

O42 - Logiciel: Security Update for Windows XP (KB975467) - (.Microsoft Corporation.) [HKLM] -- KB975467

O42 - Logiciel: Security Update for Windows XP (KB975560) - (.Microsoft Corporation.) [HKLM] -- KB975560

O42 - Logiciel: Security Update for Windows XP (KB975561) - (.Microsoft Corporation.) [HKLM] -- KB975561

O42 - Logiciel: Security Update for Windows XP (KB975562) - (.Microsoft Corporation.) [HKLM] -- KB975562

O42 - Logiciel: Security Update for Windows XP (KB975713) - (.Microsoft Corporation.) [HKLM] -- KB975713

O42 - Logiciel: Security Update for Windows XP (KB977816) - (.Microsoft Corporation.) [HKLM] -- KB977816

O42 - Logiciel: Security Update for Windows XP (KB977914) - (.Microsoft Corporation.) [HKLM] -- KB977914

O42 - Logiciel: Security Update for Windows XP (KB978037) - (.Microsoft Corporation.) [HKLM] -- KB978037

O42 - Logiciel: Security Update for Windows XP (KB978262) - (.Microsoft Corporation.) [HKLM] -- KB978262

O42 - Logiciel: Security Update for Windows XP (KB978338) - (.Microsoft Corporation.) [HKLM] -- KB978338

O42 - Logiciel: Security Update for Windows XP (KB978542) - (.Microsoft Corporation.) [HKLM] -- KB978542

O42 - Logiciel: Security Update for Windows XP (KB978601) - (.Microsoft Corporation.) [HKLM] -- KB978601

O42 - Logiciel: Security Update for Windows XP (KB978706) - (.Microsoft Corporation.) [HKLM] -- KB978706

O42 - Logiciel: Security Update for Windows XP (KB979309) - (.Microsoft Corporation.) [HKLM] -- KB979309

O42 - Logiciel: Security Update for Windows XP (KB979482) - (.Microsoft Corporation.) [HKLM] -- KB979482

O42 - Logiciel: Security Update for Windows XP (KB979559) - (.Microsoft Corporation.) [HKLM] -- KB979559

O42 - Logiciel: Security Update for Windows XP (KB979683) - (.Microsoft Corporation.) [HKLM] -- KB979683

O42 - Logiciel: Security Update for Windows XP (KB979687) - (.Microsoft Corporation.) [HKLM] -- KB979687

O42 - Logiciel: Security Update for Windows XP (KB980195) - (.Microsoft Corporation.) [HKLM] -- KB980195

O42 - Logiciel: Security Update for Windows XP (KB980218) - (.Microsoft Corporation.) [HKLM] -- KB980218

O42 - Logiciel: Security Update for Windows XP (KB980232) - (.Microsoft Corporation.) [HKLM] -- KB980232

O42 - Logiciel: Security Update for Windows XP (KB980436) - (.Microsoft Corporation.) [HKLM] -- KB980436

O42 - Logiciel: Security Update for Windows XP (KB981322) - (.Microsoft Corporation.) [HKLM] -- KB981322

O42 - Logiciel: Security Update for Windows XP (KB981349) - (.Microsoft Corporation.) [HKLM] -- KB981349

O42 - Logiciel: Security Update for Windows XP (KB981852) - (.Microsoft Corporation.) [HKLM] -- KB981852

O42 - Logiciel: Security Update for Windows XP (KB981957) - (.Microsoft Corporation.) [HKLM] -- KB981957

O42 - Logiciel: Security Update for Windows XP (KB981997) - (.Microsoft Corporation.) [HKLM] -- KB981997

O42 - Logiciel: Security Update for Windows XP (KB982132) - (.Microsoft Corporation.) [HKLM] -- KB982132

O42 - Logiciel: Security Update for Windows XP (KB982214) - (.Microsoft Corporation.) [HKLM] -- KB982214

O42 - Logiciel: Security Update for Windows XP (KB982665) - (.Microsoft Corporation.) [HKLM] -- KB982665

O42 - Logiciel: Security Update for Windows XP (KB982802) - (.Microsoft Corporation.) [HKLM] -- KB982802

O42 - Logiciel: Skype Toolbars - (.Skype Technologies S.A..) [HKLM] -- {981029E0-7FC9-4CF3-AB39-6F133621921A}

O42 - Logiciel: Skype™ 4.2 - (.Skype Technologies S.A..) [HKLM] -- {D103C4BA-F905-437A-8049-DB24763BBE36}

O42 - Logiciel: SoftV92 Data Fax Modem with SmartCP - (.Pas de propriétaire.) [HKLM] -- CNXT_MODEM_PCI_VEN_8086&DEV_266D&SUBSYS_00661025

O42 - Logiciel: Synaptics Pointing Device Driver - (.Pas de propriétaire.) [HKLM] -- SynTPDeinstKey

O42 - Logiciel: TeXnicCenter Version 1 Beta 7.01 (Greengrass) - (.TeXnicCenter.org.) [HKLM] -- TeXnicCenter_is1

O42 - Logiciel: Texas Instruments PCIxx21/x515 drivers. - (.Texas Instruments Inc..) [HKLM] -- InstallShield_{E7A744FD-E1B8-4FF6-ADC1-EA4C32181457}

O42 - Logiciel: TightVNC 2.0.3 - (.GlavSoft LLC..) [HKLM] -- TightVNC

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707

O42 - Logiciel: Update for Microsoft Office 2007 System (KB2539530) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4}

O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2509470) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1365864D-4C58-489D-9982-844D75691CCC}

O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2536413) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{95DF5260-331D-4FFD-A2D5-C64164751945}

O42 - Logiciel: Update for Windows Internet Explorer 7 (KB980182) - (.Microsoft Corporation.) [HKLM] -- KB980182-IE7

O42 - Logiciel: Update for Windows Internet Explorer 8 (KB976662) - (.Microsoft Corporation.) [HKLM] -- KB976662-IE8

O42 - Logiciel: Update for Windows Internet Explorer 8 (KB980182) - (.Microsoft Corporation.) [HKLM] -- KB980182-IE8

O42 - Logiciel: Update for Windows Internet Explorer 8 (KB982632) - (.Microsoft Corporation.) [HKLM] -- KB982632-IE8

O42 - Logiciel: Update for Windows XP (KB2141007) - (.Microsoft Corporation.) [HKLM] -- KB2141007

O42 - Logiciel: Update for Windows XP (KB2345886) - (.Microsoft Corporation.) [HKLM] -- KB2345886

O42 - Logiciel: Update for Windows XP (KB2467659) - (.Microsoft Corporation.) [HKLM] -- KB2467659

O42 - Logiciel: Update for Windows XP (KB2541763) - (.Microsoft Corporation.) [HKLM] -- KB2541763

O42 - Logiciel: Update for Windows XP (KB955759) - (.Microsoft Corporation.) [HKLM] -- KB955759

O42 - Logiciel: Update for Windows XP (KB961503) - (.Microsoft Corporation.) [HKLM] -- KB961503

O42 - Logiciel: Update for Windows XP (KB968389) - (.Microsoft Corporation.) [HKLM] -- KB968389

O42 - Logiciel: Update for Windows XP (KB971029) - (.Microsoft Corporation.) [HKLM] -- KB971029

O42 - Logiciel: Update for Windows XP (KB971737) - (.Microsoft Corporation.) [HKLM] -- KB971737

O42 - Logiciel: Update for Windows XP (KB973687) - (.Microsoft Corporation.) [HKLM] -- KB973687

O42 - Logiciel: Update for Windows XP (KB973815) - (.Microsoft Corporation.) [HKLM] -- KB973815

O42 - Logiciel: WIDCOMM Bluetooth Software - (. .) [HKLM] -- {90535871-81B9-4D99-8A13-A7EE97F2D7FE}

O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8

O42 - Logiciel: Windows Rights Management Client Backwards Compatibility SP2 - (.Microsoft.) [HKLM] -- Windows Rights Management Client Backwards

O42 - Logiciel: Windows Rights Management Client Backwards Compatibility SP2 - (.Microsoft.) [HKLM] -- {EC905264-BCFE-423B-9C42-C3A106266790}

O42 - Logiciel: Windows Rights Management Client with Service Pack 2 - (.Microsoft.) [HKLM] -- Windows Rights Management Client

O42 - Logiciel: Windows Rights Management Client with Service Pack 2 - (.Microsoft.) [HKLM] -- {BDCF27CA-BFC4-4F49-8D24-A925C9505AB8}

O42 - Logiciel: XnView 1.97.6 - (.Gougelet Pierre-e.) [HKLM] -- XnView_is1

O42 - Logiciel: acer Wireless LAN - (.Pas de propriétaire.) [HKLM] -- {4820DD99-52D1-42BB-927E-B6B6DF231AF5}

O42 - Logiciel: foobar2000 v1.1.1 - (.Peter Pawlowski.) [HKLM] -- foobar2000

O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {FAE36873-1941-4076-A9A5-48812B5EA0B7}

O42 - Logiciel: mCore - (.Intel Corporation.) [HKLM] -- {6DE14BE4-6F04-4935-8ABD-A0A19FE2E55A}

O42 - Logiciel: mDrWiFi - (.Intel Corporation.) [HKLM] -- {F6090A17-0967-4A8A-B3C3-422A1B514D49}

O42 - Logiciel: mDriver - (.Intel.) [HKLM] -- {28DA872A-0848-48CF-B749-19A198157A2A}

O42 - Logiciel: mEoU.msi - (.Intel Corporation.) [HKLM] -- {B502B428-3386-40A9-98DB-079AAB72E64F}

O42 - Logiciel: mHelp - (.Intel.) [HKLM] -- {8C6BB412-D3A8-4AAE-A01B-35B681789D68}

O42 - Logiciel: mIWA - (.Intel Corporation.) [HKLM] -- {3E9D596A-61D4-4239-BD19-2DB984D2A16F}

O42 - Logiciel: mIWCA - (.Intel Corporation.) [HKLM] -- {6FFFE74E-3FBD-4E2E-97F9-5E9A2A077626}

O42 - Logiciel: mLogView - (.Intel Corporation.) [HKLM] -- {0E2B0B41-7E08-4F9F-B21F-41C4133F43B7}

O42 - Logiciel: mMHouse - (.Intel Corporation.) [HKLM] -- {F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}

O42 - Logiciel: mPfMgr - (.Intel Corporation.) [HKLM] -- {8B928BA1-EDEC-4227-A2DA-DD83026C36F5}

O42 - Logiciel: mPfWiz - (.Intel Corporation.) [HKLM] -- {90B0D222-8C21-4B35-9262-53B042F18AF9}

O42 - Logiciel: mProSafe - (.Intel.) [HKLM] -- {23FB368F-1399-4EAC-817C-4B83ECBE3D83}

O42 - Logiciel: mWlsSafe - (.Intel.) [HKLM] -- {FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4}

O42 - Logiciel: mXML - (.Intel Corporation.) [HKLM] -- {9CC89556-3578-48DD-8408-04E66EBEF401}

O42 - Logiciel: mZConfig - (.Intel Corporation.) [HKLM] -- {94658027-9F16-4509-BBD7-A59FE57C3023}

---\\ HKCU & HKLM Software Keys

[HKCU\Software\Ad-Remover]

[HKCU\Software\Adobe]

[HKCU\Software\Apple Computer, Inc.]

[HKCU\Software\Apple Inc.]

[HKCU\Software\Avira]

[HKCU\Software\CambridgeSoft]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\GPL Ghostscript]

[HKCU\Software\Google]

[HKCU\Software\ISI ResearchSoft]

[HKCU\Software\Intel]

[HKCU\Software\JP595IR86O]

[HKCU\Software\JavaSoft]

[HKCU\Software\Macromedia]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\MestRe]

[HKCU\Software\MiKTeX.org]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Mozilla]

[HKCU\Software\Netscape]

[HKCU\Software\NtWqIVLZEWZU]

[HKCU\Software\ODBC]

[HKCU\Software\ORL]

[HKCU\Software\OW1T3CYG7T]

[HKCU\Software\OpenOffice.org]

[HKCU\Software\OriginLab]

[HKCU\Software\Policies]

[HKCU\Software\Skype]

[HKCU\Software\Softonic]

[HKCU\Software\Synaptics]

[HKCU\Software\TUG]

[HKCU\Software\TightVNC]

[HKCU\Software\ToolsCenter]

[HKCU\Software\Widcomm]

[HKCU\Software\WinRAR SFX]

[HKCU\Software\WinRAR]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\foobar2000]

[HKCU\Software\i-FunBox.com]

[HKLM\Software\ATI Technologies Inc.]

[HKLM\Software\ATI Technologies]

[HKLM\Software\Accelrys]

[HKLM\Software\Adobe]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\Apple Inc.]

[HKLM\Software\Avira]

[HKLM\Software\Broadcom]

[HKLM\Software\BrowserChoice]

[HKLM\Software\C07ft5Y]

[HKLM\Software\CXT]

[HKLM\Software\CambridgeSoft]

[HKLM\Software\Chemical Abstract Services]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Conexant]

[HKLM\Software\GEAR Software]

[HKLM\Software\GPL Ghostscript]

[HKLM\Software\Gemplus]

[HKLM\Software\Ghostgum]

[HKLM\Software\Google]

[HKLM\Software\INTEL]

[HKLM\Software\InstallShield]

[HKLM\Software\InstalledOptions]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\MDC]

[HKLM\Software\Macromedia]

[HKLM\Software\Malwarebytes' Anti-Malware]

[HKLM\Software\MiKTeX.org]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\ODBC]

[HKLM\Software\OldTimer Tools]

[HKLM\Software\OpenOffice.org]

[HKLM\Software\OriginLab Corporation]

[HKLM\Software\Policies]

[HKLM\Software\Program Groups]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\Schlumberger]

[HKLM\Software\Secure]

[HKLM\Software\Skype]

[HKLM\Software\Sun Microsystems]

[HKLM\Software\Synaptics]

[HKLM\Software\ToolsCenter]

[HKLM\Software\TrendMicro]

[HKLM\Software\UIU]

[HKLM\Software\Widcomm]

[HKLM\Software\WinRAR]

[HKLM\Software\Windows 3.1 Migration Status]

[HKLM\Software\Windows]

[HKLM\Software\Wise Solutions]

[HKLM\Software\X-AVCSD]

[HKLM\Software\XnView]

[HKLM\Software\acer]

[HKLM\Software\mozilla.org]

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 18/06/2010 - 14:25:06 - [4513226] ----D- C:\Program Files\Accelrys

O43 - CFD: 27/07/2008 - 04:21:06 - [186161] ----D- C:\Program Files\Accords

O43 - CFD: 01/06/2010 - 21:23:54 - [1010743] ----D- C:\Program Files\acer

O43 - CFD: 30/03/2005 - 23:57:08 - [376040] ----D- C:\Program Files\Acer Inc

O43 - CFD: 16/06/2004 - 01:24:08 - [69877786] ----D- C:\Program Files\Ad-Remover

O43 - CFD: 11/06/2010 - 14:24:44 - [2530211528] ----D- C:\Program Files\Adobe

O43 - CFD: 24/07/2008 - 20:22:40 - [224016] ----D- C:\Program Files\ALO Power Audio Converter

O43 - CFD: 04/12/2010 - 18:28:50 - [2306366] ----D- C:\Program Files\Apple Software Update

O43 - CFD: 13/12/2008 - 16:46:22 - [158116417] ----D- C:\Program Files\Arcade

O43 - CFD: 01/06/2010 - 22:13:58 - [16571708] ----D- C:\Program Files\ATI Technologies

O43 - CFD: 16/06/2008 - 22:21:50 - [694727678] ----D- C:\Program Files\Autodesk

O43 - CFD: 02/06/2010 - 11:08:50 - [360448] ----D- C:\Program Files\AUTORUN

O43 - CFD: 01/06/2009 - 17:06:52 - [180372791] ----D- C:\Program Files\Avira

O43 - CFD: 20/05/2008 - 23:31:12 - [2655233] ----D- C:\Program Files\AviSynth 2.5

O43 - CFD: 16/02/2009 - 21:04:46 - [12390020] ----D- C:\Program Files\Azureus

O43 - CFD: 04/12/2010 - 18:27:40 - [623412] ----D- C:\Program Files\Bonjour

O43 - CFD: 01/06/2010 - 21:16:08 - [608109] ----D- C:\Program Files\Broadcom

O43 - CFD: 12/06/2008 - 19:59:00 - [2571] ----D- C:\Program Files\BulletProof FTP Server v2.3

O43 - CFD: 02/06/2010 - 13:06:14 - [90192441] ----D- C:\Program Files\CambridgeSoft

O43 - CFD: 10/06/2009 - 20:31:08 - [367166097] ----D- C:\Program Files\Canon

O43 - CFD: 17/05/2008 - 17:56:02 - [1326810] ----D- C:\Program Files\CCleaner

O43 - CFD: 02/06/2010 - 11:08:50 - [626000] ----D- C:\Program Files\CCTL

O43 - CFD: 04/12/2010 - 18:27:00 - [760308511] ----D- C:\Program Files\Common Files

O43 - CFD: 30/03/2005 - 23:35:36 - [0] ----D- C:\Program Files\ComPlus Applications

O43 - CFD: 01/06/2010 - 21:47:36 - [536576] ----D- C:\Program Files\CONEXANT

O43 - CFD: 03/12/2009 - 00:14:42 - [1232740] ----D- C:\Program Files\Convar

O43 - CFD: 31/03/2005 - 00:01:06 - [106063286] ----D- C:\Program Files\CyberLink

O43 - CFD: 22/05/2008 - 20:38:02 - [5514190] ----D- C:\Program Files\DAEMON Tools Lite

O43 - CFD: 02/06/2010 - 00:00:06 - [0] ----D- C:\Program Files\DAEMON Tools Pro

O43 - CFD: 11/12/2008 - 22:23:24 - [1316232] ----D- C:\Program Files\DIFX

O43 - CFD: 11/01/2009 - 18:10:22 - [782996] ----D- C:\Program Files\EGoGameS

O43 - CFD: 01/06/2010 - 21:16:40 - [2071841] ----D- C:\Program Files\Elantech

O43 - CFD: 03/09/2009 - 08:40:26 - [2753322402] ----D- C:\Program Files\eMule

O43 - CFD: 02/06/2010 - 11:30:26 - [66806902] ----D- C:\Program Files\ENDNOTE

O43 - CFD: 12/08/2010 - 15:06:10 - [61455413] ----D- C:\Program Files\EndNote 9

O43 - CFD: 16/02/2009 - 23:55:48 - [1094876] ----D- C:\Program Files\eXchange POP3 6.0

O43 - CFD: 02/06/2010 - 11:08:46 - [14577066] ----D- C:\Program Files\EXTRAS

O43 - CFD: 28/05/2009 - 23:16:44 - [1513065379] ----D- C:\Program Files\Fichiers communs

O43 - CFD: 13/06/2008 - 08:13:46 - [11921038] ----D- C:\Program Files\FileZilla FTP Client

O43 - CFD: 05/12/2010 - 23:13:48 - [7917593] ----D- C:\Program Files\foobar2000

O43 - CFD: 30/11/2008 - 14:24:56 - [5581957] ----D- C:\Program Files\Free iPod Video Converter

O43 - CFD: 02/06/2010 - 13:26:34 - [3566016] ----D- C:\Program Files\Ghostgum

O43 - CFD: 02/06/2010 - 14:25:18 - [82663544] ----D- C:\Program Files\ghostscript-8.71

O43 - CFD: 11/06/2010 - 15:20:14 - [328432409] ----D- C:\Program Files\Google

O43 - CFD: 02/06/2010 - 14:39:12 - [31907692] ----D- C:\Program Files\gs

O43 - CFD: 21/11/2008 - 00:02:22 - [20571346] ----D- C:\Program Files\Guitar Pro 5

O43 - CFD: 29/06/2009 - 20:23:08 - [4640312] ----D- C:\Program Files\HHD Software

O43 - CFD: 14/04/2009 - 20:37:38 - [126003219] ----D- C:\Program Files\HomePlayer

O43 - CFD: 09/01/2009 - 08:42:40 - [7002465] ----D- C:\Program Files\iGnuteel

O43 - CFD: 02/06/2010 - 10:10:54 - [62418143] --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD: 30/03/2005 - 23:45:34 - [20388681] ----D- C:\Program Files\Intel

O43 - CFD: 16/06/2011 - 01:57:22 - [6093456] ----D- C:\Program Files\Internet Explorer

O43 - CFD: 09/09/2009 - 22:14:30 - [1856115] ----D- C:\Program Files\iPod

O43 - CFD: 04/12/2010 - 18:40:58 - [146530583] ----D- C:\Program Files\iTunes

O43 - CFD: 04/04/2009 - 10:04:16 - [410496923] ----D- C:\Program Files\Java

O43 - CFD: 04/12/2010 - 19:04:40 - [55363353] ----D- C:\Program Files\JDownloader

O43 - CFD: 01/06/2010 - 22:33:42 - [16254752] ----D- C:\Program Files\JRE

O43 - CFD: 15/05/2008 - 22:39:44 - [1141069] ----D- C:\Program Files\Launch Manager

O43 - CFD: 27/09/2008 - 14:33:36 - [16501848] ----D- C:\Program Files\Logitech

O43 - CFD: 16/06/2004 - 00:21:00 - [4378312] ----D- C:\Program Files\Malwarebytes' Anti-Malware

O43 - CFD: 17/05/2008 - 12:57:40 - [33830499] ----D- C:\Program Files\Memeo

O43 - CFD: 01/06/2010 - 20:18:42 - [2140717] ----D- C:\Program Files\Messenger

O43 - CFD: 27/08/2008 - 23:09:04 - [12715564] ----D- C:\Program Files\Messenger Plus! Live

O43 - CFD: 20/12/2008 - 14:39:26 - [706627] ----D- C:\Program Files\Microsoft

O43 - CFD: 30/03/2005 - 23:38:22 - [0] ----D- C:\Program Files\microsoft frontpage

O43 - CFD: 27/05/2008 - 21:01:38 - [1067850181] ----D- C:\Program Files\Microsoft Office

O43 - CFD: 20/12/2008 - 14:39:16 - [1562204] ----D- C:\Program Files\Microsoft Office Outlook Connector

O43 - CFD: 17/06/2011 - 12:47:30 - [39437763] ----D- C:\Program Files\Microsoft Silverlight

O43 - CFD: 20/12/2008 - 14:36:44 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition

O43 - CFD: 27/05/2008 - 21:01:14 - [14904] ----D- C:\Program Files\Microsoft Visual Studio

O43 - CFD: 27/05/2008 - 20:57:16 - [2578288] ----D- C:\Program Files\Microsoft Visual Studio 8

O43 - CFD: 06/06/2010 - 17:01:36 - [3726168] ----D- C:\Program Files\Microsoft Works

O43 - CFD: 27/05/2008 - 20:59:54 - [8152064] ----D- C:\Program Files\Microsoft.NET

O43 - CFD: 24/07/2008 - 20:12:32 - [307200] ----D- C:\Program Files\MIKSOFT

O43 - CFD: 02/06/2010 - 12:48:32 - [315266947] ----D- C:\Program Files\MiKTeX 2.8

O43 - CFD: 13/08/2010 - 23:46:24 - [11072357] ----D- C:\Program Files\Movie Maker

O43 - CFD: 16/06/2004 - 01:30:36 - [41093360] ----D- C:\Program Files\Mozilla Firefox

O43 - CFD: 25/06/2008 - 07:19:30 - [307423] ----D- C:\Program Files\mp3DirectCut

O43 - CFD: 24/08/2009 - 23:09:08 - [26521] ----D- C:\Program Files\MSBuild

O43 - CFD: 02/06/2010 - 11:08:50 - [27348712] ----D- C:\Program Files\MSI

O43 - CFD: 01/06/2010 - 20:52:10 - [26550732] ----D- C:\Program Files\MSN

O43 - CFD: 30/03/2005 - 23:34:42 - [8742663] ----D- C:\Program Files\MSN Gaming Zone

O43 - CFD: 16/05/2008 - 21:38:40 - [0] ----D- C:\Program Files\MSXML 4.0

O43 - CFD: 16/05/2008 - 21:08:26 - [2940967212] ----D- C:\Program Files\NetDrive

O43 - CFD: 01/06/2010 - 20:24:34 - [3258723] ----D- C:\Program Files\NetMeeting

O43 - CFD: 31/03/2005 - 00:06:26 - [60246470] ----D- C:\Program Files\NewTech Infosystems

O43 - CFD: 03/07/2008 - 07:58:00 - [1284380] ----D- C:\Program Files\No-IP

O43 - CFD: 11/12/2008 - 22:23:44 - [58240787] ----D- C:\Program Files\Nokia

O43 - CFD: 02/06/2010 - 11:29:36 - [0] ----D- C:\Program Files\Nouveau dossier

O43 - CFD: 10/01/2009 - 12:06:58 - [17732485] ----D- C:\Program Files\NutsAboutNets

O43 - CFD: 30/03/2005 - 23:34:54 - [4525] ----D- C:\Program Files\Online Services

O43 - CFD: 01/06/2010 - 22:33:36 - [536323283] ----D- C:\Program Files\OpenOffice.org 3

O43 - CFD: 02/06/2010 - 10:10:22 - [327745015] ----D- C:\Program Files\OriginLab

O43 - CFD: 01/01/2011 - 15:41:40 - [4322949] ----D- C:\Program Files\Outlook Express

O43 - CFD: 13/08/2008 - 18:57:18 - [7101074] ----D- C:\Program Files\PanoramaStudio

O43 - CFD: 11/12/2008 - 22:23:10 - [11169565] ----D- C:\Program Files\PC Connectivity Solution

O43 - CFD: 23/07/2009 - 21:58:08 - [21529044] ----D- C:\Program Files\PDFCreator

O43 - CFD: 28/07/2009 - 22:40:00 - [4074023] ----D- C:\Program Files\Photomatix

O43 - CFD: 28/07/2009 - 22:50:58 - [8658827] ----D- C:\Program Files\PhotomatixPro3

O43 - CFD: 18/08/2008 - 17:10:48 - [36249376] ----D- C:\Program Files\Picasa2

O43 - CFD: 10/06/2010 - 17:45:12 - [17113807] ----D- C:\Program Files\Pixia 4.3a FR

O43 - CFD: 22/05/2008 - 20:40:50 - [2349211] ----D- C:\Program Files\PowerISO

O43 - CFD: 28/05/2009 - 23:18:58 - [14467279] ----D- C:\Program Files\PPMate

O43 - CFD: 04/12/2010 - 18:32:20 - [76337719] ----D- C:\Program Files\QuickTime

O43 - CFD: 30/11/2008 - 13:59:44 - [28429672] ----D- C:\Program Files\Red Kawa

O43 - CFD: 24/08/2009 - 23:08:52 - [36400897] ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 17/05/2008 - 18:06:02 - [1146670] ----D- C:\Program Files\RegCleaner

O43 - CFD: 16/05/2008 - 20:27:20 - [11615273] ----D- C:\Program Files\RocketDock

O43 - CFD: 29/08/2009 - 09:44:28 - [71647682] ----D- C:\Program Files\Safari

O43 - CFD: 30/03/2005 - 23:36:34 - [933] ----D- C:\Program Files\Services en ligne

O43 - CFD: 27/05/2009 - 20:39:14 - [27801384] ----D- C:\Program Files\Simplify Media

O43 - CFD: 17/05/2009 - 19:09:10 - [349393] ----D- C:\Program Files\Skyhook Wireless

O43 - CFD: 11/06/2010 - 13:59:34 - [38378187] R---D- C:\Program Files\Skype

O43 - CFD: 04/09/2009 - 13:04:16 - [24694112] ----D- C:\Program Files\Sun

O43 - CFD: 30/03/2005 - 23:54:54 - [26685929] ----D- C:\Program Files\Synaptics

O43 - CFD: 02/06/2010 - 10:36:50 - [14447903] ----D- C:\Program Files\TeXnicCenter

O43 - CFD: 16/06/2004 - 00:13:36 - [1462434] ----D- C:\Program Files\TightVNC

O43 - CFD: 16/06/2004 - 05:56:26 - [1587785] ----D- C:\Program Files\Trend Micro

O43 - CFD: 28/05/2009 - 23:28:50 - [5635313] ----D- C:\Program Files\TVAnts

O43 - CFD: 07/06/2009 - 00:11:04 - [12832995] ----D- C:\Program Files\TVUPlayer

O43 - CFD: 30/03/2005 - 23:44:12 - [0] --H-D- C:\Program Files\Uninstall Information

O43 - CFD: 19/05/2008 - 20:32:26 - [33338768] ----D- C:\Program Files\VideoLAN

O43 - CFD: 17/05/2008 - 12:54:24 - [326648218] ----D- C:\Program Files\Western Digital

O43 - CFD: 16/05/2008 - 07:40:14 - [858084] ----D- C:\Program Files\Western Digital Technologies

O43 - CFD: 01/06/2010 - 21:09:00 - [3587127] ----D- C:\Program Files\WIDCOMM

O43 - CFD: 17/05/2009 - 13:10:16 - [138650897] ----D- C:\Program Files\Windows Live

O43 - CFD: 20/12/2008 - 14:34:10 - [245112] ----D- C:\Program Files\Windows Live SkyDrive

O43 - CFD: 01/06/2010 - 20:25:44 - [3595692] ----D- C:\Program Files\Windows Media Connect 2

O43 - CFD: 01/06/2010 - 20:25:36 - [8246039] ----D- C:\Program Files\Windows Media Player

O43 - CFD: 01/06/2010 - 20:16:20 - [4701439] ----D- C:\Program Files\Windows NT

O43 - CFD: 30/03/2005 - 23:36:40 - [0] --H-D- C:\Program Files\WindowsUpdate

O43 - CFD: 15/05/2008 - 22:37:12 - [176128] ----D- C:\Program Files\WinPCap

O43 - CFD: 01/06/2010 - 23:03:32 - [4823177] ----D- C:\Program Files\WinRAR

O43 - CFD: 06/10/2008 - 20:30:40 - [16773066] ----D- C:\Program Files\WinZip

O43 - CFD: 28/06/2008 - 01:52:34 - [102430] ----D- C:\Program Files\WMV9_VCM

O43 - CFD: 30/03/2005 - 23:38:22 - [0] ----D- C:\Program Files\xerox

O43 - CFD: 11/06/2010 - 14:14:36 - [37484016] ----D- C:\Program Files\XnView

O43 - CFD: 20/08/2008 - 19:35:22 - [27668963] ----D- C:\Program Files\Yahoo!

O43 - CFD: 10/07/2011 - 04:52:32 - [3927853] ----D- C:\Program Files\ZHPDiag

O43 - CFD: 17/10/2010 - 20:09:32 - [324413147] ----D- C:\Program Files\Common Files\Adobe

O43 - CFD: 11/06/2010 - 14:19:40 - [32159844] ----D- C:\Program Files\Common Files\Adobe AIR

O43 - CFD: 16/06/2004 - 01:28:20 - [13857893] ----D- C:\Program Files\Common Files\Akamai

O43 - CFD: 04/12/2010 - 18:37:48 - [94762864] ----D- C:\Program Files\Common Files\Apple

O43 - CFD: 02/06/2010 - 00:07:30 - [92976] ----D- C:\Program Files\Common Files\DESIGNER

O43 - CFD: 01/06/2010 - 21:16:28 - [7376978] ----D- C:\Program Files\Common Files\InstallShield

O43 - CFD: 16/06/2011 - 02:07:54 - [215561645] ----D- C:\Program Files\Common Files\Microsoft Shared

O43 - CFD: 01/06/2010 - 20:24:12 - [284160] ----D- C:\Program Files\Common Files\MSSoap

O43 - CFD: 01/06/2010 - 21:58:32 - [0] ----D- C:\Program Files\Common Files\ODBC

O43 - CFD: 12/06/2010 - 10:33:22 - [611970] ----D- C:\Program Files\Common Files\Risxtd

O43 - CFD: 01/06/2010 - 20:24:32 - [8106] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 11/06/2010 - 13:59:16 - [2135336] ----D- C:\Program Files\Common Files\Skype

O43 - CFD: 01/06/2010 - 21:58:26 - [3787229] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 06/06/2010 - 16:58:18 - [41439659] ----D- C:\Program Files\Common Files\System

O43 - CFD: 02/06/2010 - 11:30:52 - [23816704] ----D- C:\Program Files\Common Files\Wise Installation Wizard

O43 - CFD: 07/09/2010 - 14:38:06 - [5372166] ----D- C:\Documents and Settings\Saskia\Application Data\Adobe

O43 - CFD: 05/12/2010 - 22:52:18 - [721083] ----D- C:\Documents and Settings\Saskia\Application Data\Apple Computer

O43 - CFD: 01/10/2010 - 11:16:32 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Avira

O43 - CFD: 01/06/2010 - 23:52:02 - [1277] ----D- C:\Documents and Settings\Saskia\Application Data\DAEMON Tools Pro

O43 - CFD: 12/06/2010 - 11:30:18 - [233896] ----D- C:\Documents and Settings\Saskia\Application Data\EndNote

O43 - CFD: 16/06/2004 - 01:15:16 - [863291] ----D- C:\Documents and Settings\Saskia\Application Data\foobar2000

O43 - CFD: 19/06/2011 - 23:26:24 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Google

O43 - CFD: 10/06/2010 - 17:23:42 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Help

O43 - CFD: 01/06/2010 - 20:39:26 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Identities

O43 - CFD: 02/06/2010 - 10:08:34 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\InstallShield

O43 - CFD: 01/06/2010 - 21:45:40 - [1062] ----D- C:\Documents and Settings\Saskia\Application Data\Intel

O43 - CFD: 01/06/2010 - 23:27:46 - [15434] ----D- C:\Documents and Settings\Saskia\Application Data\Macromedia

O43 - CFD: 16/06/2004 - 00:21:28 - [3565940] ----D- C:\Documents and Settings\Saskia\Application Data\Malwarebytes

O43 - CFD: 18/11/2010 - 01:28:38 - [3234108] -S--D- C:\Documents and Settings\Saskia\Application Data\Microsoft

O43 - CFD: 02/06/2010 - 13:57:14 - [9580027] ----D- C:\Documents and Settings\Saskia\Application Data\MiKTeX

O43 - CFD: 01/06/2010 - 22:10:22 - [15379713] ----D- C:\Documents and Settings\Saskia\Application Data\Mozilla

O43 - CFD: 01/06/2010 - 22:47:38 - [8926380] ----D- C:\Documents and Settings\Saskia\Application Data\OpenOffice.org

O43 - CFD: 10/06/2010 - 17:40:08 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Pixia

O43 - CFD: 16/06/2004 - 01:29:56 - [2314946] ----D- C:\Documents and Settings\Saskia\Application Data\Skype

O43 - CFD: 11/06/2010 - 16:05:14 - [242640] ----D- C:\Documents and Settings\Saskia\Application Data\skypePM

O43 - CFD: 01/06/2010 - 22:31:00 - [25098714] ----D- C:\Documents and Settings\Saskia\Application Data\Sun

O43 - CFD: 16/06/2004 - 00:18:32 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\TightVNC

O43 - CFD: 04/12/2010 - 19:44:54 - [9480] ----D- C:\Documents and Settings\Saskia\Application Data\WindSolutions

O43 - CFD: 01/06/2010 - 23:34:18 - [12] ----D- C:\Documents and Settings\Saskia\Application Data\WinRAR

O43 - CFD: 27/12/2010 - 22:38:24 - [662687] ----D- C:\Documents and Settings\Saskia\Application Data\XnView

O43 - CFD: 17/10/2010 - 20:08:38 - [14368776] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Adobe

O43 - CFD: 04/12/2010 - 18:29:00 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Apple

O43 - CFD: 04/12/2010 - 18:42:02 - [3235703] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Apple Computer

O43 - CFD: 25/06/2010 - 10:56:56 - [5120] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\ApplicationHistory

O43 - CFD: 30/08/2010 - 13:01:16 - [99692] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\freecompressor Air

O43 - CFD: 19/06/2011 - 23:26:24 - [134674586] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Google

O43 - CFD: 10/06/2010 - 17:23:42 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Help

O43 - CFD: 30/09/2010 - 11:14:52 - [6118904] -S--D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Microsoft

O43 - CFD: 02/06/2010 - 00:00:28 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Microsoft Help

O43 - CFD: 02/06/2010 - 13:14:42 - [11878215] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\MiKTeX

O43 - CFD: 01/06/2010 - 22:10:22 - [58653060] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Mozilla

O43 - CFD: 19/06/2011 - 23:25:28 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Temp

O43 - CFD: 01/06/2010 - 20:29:08 - [15040] R---D- C:\WINDOWS\system32\Config\systemprofile\Start Menu\Programs\Accessories

O43 - CFD: 01/06/2010 - 21:55:12 - [84] R---D- C:\WINDOWS\system32\Config\systemprofile\Start Menu\Programs\Startup

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.44EF1200FEFFFFFF57494E444F577E31] - 10/07/2011 - 03:35:10 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1717550]

O44 - LFC:[MD5.9674DC5A0696CAC9C1889AB7583F76EB] - 18/06/2011 - 20:55:29 ---A- . (...) -- C:\WINDOWS\System32\PerfStringBackup.INI [506194]

O44 - LFC:[MD5.66105A9E46C0EADD21D513B4E5652E28] - 18/06/2011 - 20:55:29 ---A- . (...) -- C:\WINDOWS\System32\perfc009.dat [72566]

O44 - LFC:[MD5.5177A6DF33077EFF91DEE2968D5BA16A] - 18/06/2011 - 20:55:29 ---A- . (...) -- C:\WINDOWS\System32\perfh009.dat [444690]

O44 - LFC:[MD5.5FEDEF54757B34FB611B9EC8FB399364] - 17/06/2011 - 11:51:13 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\WINDOWS\System32\drivers\avipbb.sys [137656]

O44 - LFC:[MD5.196DB70C7C937D4737067A1C3CDABD4B] - 17/06/2011 - 11:48:08 ---A- . (...) -- C:\WINDOWS\System32\FNTCACHE.DAT [3589016]

O44 - LFC:[MD5.EDB29DE9FD538805F98F375CF961FDE3] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\KB2479943.log [147040]

O44 - LFC:[MD5.5B4513A8E9D30FC08A2DFE9A6E38CEE4] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\comsetup.log [310665]

O44 - LFC:[MD5.964180D6A9640C16F370F77AD61B303D] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\iis6.log [991087]

O44 - LFC:[MD5.B0312C13616C571CC01EB04F3D1842E7] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\imsins.log [1374]

O44 - LFC:[MD5.9A2181BDD780C9936DB39B1180C279CF] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [188099]

O44 - LFC:[MD5.49627FFCDBC1FD8E090FEC13781C0994] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\ocmsn.log [49449]

O44 - LFC:[MD5.FE0283229F3082EAA733CCA9B47DAB88] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\tabletoc.log [45414]

O44 - LFC:[MD5.1536344A2F7D4D65EDFC9D7A6233AA82] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\tsoc.log [411409]

O44 - LFC:[MD5.4020D8692472F78E216351CDC03E97FB] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [889521]

O44 - LFC:[MD5.CE83D0AE0A754481E4C0343242964CEF] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\MedCtrOC.log [61837]

O44 - LFC:[MD5.D72585AB8B78D6D55CFF5CA735B435F3] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\msgsocm.log [44749]

O44 - LFC:[MD5.722C0F720670B119C2FA636A1E629139] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\msmqinst.log [276116]

O44 - LFC:[MD5.2AC9741E4BC796AE9E7EF29CE1D279EE] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\netfxocm.log [156576]

O44 - LFC:[MD5.60E33B79E3A1CCF00E2EA1FFC2CABB03] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\ocgen.log [470102]

O44 - LFC:[MD5.ABB4CAAD906E82B3B39FDDE42792879F] - 16/06/2011 - 01:07:41 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1374]

O44 - LFC:[MD5.0179F4F5A329F5CA48EEB7447988920B] - 16/06/2011 - 01:07:40 ---A- . (...) -- C:\WINDOWS\KB2481109.log [148659]

O44 - LFC:[MD5.E35DBF8BA0E7FD0DD83176354F482CEE] - 16/06/2011 - 01:07:27 ---A- . (...) -- C:\WINDOWS\KB2485663.log [148751]

O44 - LFC:[MD5.44A3AD116C241DFDF75F18BF431C1911] - 16/06/2011 - 01:05:56 ---A- . (...) -- C:\WINDOWS\KB2476490.log [37889]

O44 - LFC:[MD5.C2D638933ABD42AFAC66086DD2EC4C31] - 16/06/2011 - 01:05:49 ---A- . (...) -- C:\WINDOWS\KB2506223.log [51510]

O44 - LFC:[MD5.6F2EA7AF7649ECEE5AC8F9C151F1575F] - 16/06/2011 - 01:05:36 ---A- . (...) -- C:\WINDOWS\KB2503665.log [50956]

O44 - LFC:[MD5.B40C6FA76AA4AFC025FC384584ECD362] - 16/06/2011 - 01:05:29 ---A- . (...) -- C:\WINDOWS\KB2524375.log [37023]

O44 - LFC:[MD5.533FD1A96FD23380387407C39C3D83D9] - 16/06/2011 - 01:04:10 ---A- . (...) -- C:\WINDOWS\KB2535512.log [50788]

O44 - LFC:[MD5.6752D17B8A027145F0D69810C2CE9366] - 16/06/2011 - 01:03:18 ---A- . (...) -- C:\WINDOWS\KB2412687.log [34828]

O44 - LFC:[MD5.A1E9003ED212B3F5C2A195E8014DD811] - 16/06/2011 - 00:58:43 ---A- . (...) -- C:\WINDOWS\KB2508272.log [36938]

O44 - LFC:[MD5.C8655A8A7CA98AB89B202000C63F7183] - 16/06/2011 - 00:58:35 ---A- . (...) -- C:\WINDOWS\KB2536276.log [50872]

O44 - LFC:[MD5.E3DC64DB1DD46ED4A01D8397B45E4960] - 16/06/2011 - 00:57:52 ---A- . (...) -- C:\WINDOWS\KB2507618.log [51126]

O44 - LFC:[MD5.C30FBF8CF4F1E62283CD81B207CD268D] - 16/06/2011 - 00:57:50 ---A- . (...) -- C:\WINDOWS\updspapi.log [86058]

O44 - LFC:[MD5.DE32E1AF20FF35F18E2F1AF07DA52BE7] - 16/06/2011 - 00:57:42 ---A- . (...) -- C:\WINDOWS\KB2530548-IE8.log [45358]

O44 - LFC:[MD5.206FC9206A5FBD6913F3A21457E80B82] - 16/06/2011 - 00:56:39 ---A- . (...) -- C:\WINDOWS\KB2508429.log [37484]

O44 - LFC:[MD5.8C7D8E7A2C14DB818582C007C9273D63] - 16/06/2011 - 00:56:26 ---A- . (...) -- C:\WINDOWS\KB971029.log [36865]

O44 - LFC:[MD5.C7885A05B4E604C8B12F1112AC38D023] - 16/06/2011 - 00:56:05 ---A- . (...) -- C:\WINDOWS\KB2506212.log [36519]

O44 - LFC:[MD5.B8D7AC4DAE614CFB6BBA8AC3080CC5CF] - 16/06/2011 - 00:51:09 ---A- . (...) -- C:\WINDOWS\KB2544893.log [48404]

O44 - LFC:[MD5.14DD40869D1A95EDD1C26B53AC049DF1] - 16/06/2011 - 00:51:01 ---A- . (...) -- C:\WINDOWS\KB2509553.log [49177]

O44 - LFC:[MD5.340F0B78397C89477E1043D8F20B4E8B] - 16/06/2011 - 00:50:52 ---A- . (...) -- C:\WINDOWS\KB2510531-IE8.log [34404]

O44 - LFC:[MD5.CD129EB387DE0459ECD4541AC4D12554] - 16/06/2011 - 00:50:44 ---A- . (...) -- C:\WINDOWS\KB2541763.log [85634]

O44 - LFC:[MD5.ED6AAC568B33934B6FB8037F245D2921] - 16/06/2011 - 00:50:36 ---A- . (...) -- C:\WINDOWS\KB2544521-IE8.log [34138]

O44 - LFC:[MD5.D142D1AC4D8A18115056E4A68899D7FC] - 16/06/2011 - 00:01:56 ---A- . (...) -- C:\WINDOWS\KB2478971.log [46454]

O44 - LFC:[MD5.59180168C3D1ED59A76CC2BA776EAF52] - 16/06/2011 - 00:01:46 ---A- . (...) -- C:\WINDOWS\KB2485376.log [45769]

O44 - LFC:[MD5.5E9474AF7E5E71E9AC5F31A803DDCE21] - 16/06/2011 - 00:01:38 ---A- . (...) -- C:\WINDOWS\KB2479628.log [45204]

O44 - LFC:[MD5.7A78F5C74DEE74B2F84AA6E24B35A0BA] - 16/06/2011 - 00:01:30 ---A- . (...) -- C:\WINDOWS\KB2483185.log [45283]

O44 - LFC:[MD5.766FCDC53D82285648E18DD5404CA8C0] - 15/06/2011 - 23:43:58 ---A- . (...) -- C:\WINDOWS\KB2482017-IE8.log [35420]

O44 - LFC:[MD5.71251062F604D380F3F6CAF73BBE14E4] - 15/06/2011 - 23:42:02 ---A- . (...) -- C:\WINDOWS\KB2476687.log [27635]

O44 - LFC:[MD5.B61D785B61B2D64CA57A55B9C4774DC6] - 15/06/2011 - 23:41:42 ---A- . (...) -- C:\WINDOWS\KB2419632.log [40570]

O44 - LFC:[MD5.84921B2AAFA1A1509CC6784680ECF9A7] - 15/06/2011 - 23:37:47 ---A- . (...) -- C:\WINDOWS\KB2478960.log [33593]

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)

O45 - LFCP:[MD5.914F149A76C4C72728303A6BA353E58B] - 10/07/2011 - 03:28:23 ---A- - C:\WINDOWS\Prefetch\WUAUCLT.EXE-399A8E72.pf

O45 - LFCP:[MD5.E473C8F4C6B0377122E66ABBA43D12D2] - 10/07/2011 - 03:28:30 ---A- - C:\WINDOWS\Prefetch\UPDATE.EXE-2577D203.pf

O45 - LFCP:[MD5.2CA68933C81287092F26996DD3B22E1D] - 10/07/2011 - 03:29:02 ---A- - C:\WINDOWS\Prefetch\AVNOTIFY.EXE-05ED5FD8.pf

O45 - LFCP:[MD5.1E2EF225D021DB16F8AB74E53EA8EBC6] - 10/07/2011 - 03:31:35 ---A- - C:\WINDOWS\Prefetch\WMIPRVSE.EXE-28F301A9.pf

O45 - LFCP:[MD5.F9F27176873203801B84B93149C38F17] - 10/07/2011 - 03:44:04 ---A- - C:\WINDOWS\Prefetch\GOOGLEUPDATE.EXE-1E123D86.pf

O45 - LFCP:[MD5.5D0A650017F821814FBC7A905ED97CBF] - 10/07/2011 - 03:46:12 ---A- - C:\WINDOWS\Prefetch\EXPLORER.EXE-082F38A9.pf

O45 - LFCP:[MD5.D944EA5860111DF8020DC5C6A4485A44] - 10/07/2011 - 03:46:25 ---A- - C:\WINDOWS\Prefetch\VERCLSID.EXE-3667BD89.pf

O45 - LFCP:[MD5.4D6D0905B67435963590D8FB1E018F8C] - 10/07/2011 - 03:46:41 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG2.TMP-047DE94E.pf

O45 - LFCP:[MD5.77B7B4CA8939A47CE8BF64A8C28451FD] - 10/07/2011 - 03:47:36 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG2.TMP-1FC0B62B.pf

O45 - LFCP:[MD5.EB64C217FEBAC637418F4520E04A5A12] - 10/07/2011 - 03:48:04 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG2.EXE-0A3988F8.pf

O45 - LFCP:[MD5.3D30EEAEE0410DC787DE97062901C2BA] - 10/07/2011 - 03:48:04 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG2.TMP-1E734CFA.pf

O45 - LFCP:[MD5.781CE6A92BDB09B5FE8E5750A3483ABF] - 10/07/2011 - 03:48:23 ---A- - C:\WINDOWS\Prefetch\ZHPFIX.EXE-3A07CBCA.pf

O45 - LFCP:[MD5.813ADEFF84FF2C3A3FDC0141C2A082CA] - 10/07/2011 - 03:48:24 ---A- - C:\WINDOWS\Prefetch\FIREFOX.EXE-28641590.pf

O45 - LFCP:[MD5.3B7732D47B7E9A3BA06571DC8399F957] - 10/07/2011 - 03:48:25 ---A- - C:\WINDOWS\Prefetch\JQSNOTIFY.EXE-24AE4A36.pf

O45 - LFCP:[MD5.E7619355E95A78CB83CEF677AA6DCE68] - 10/07/2011 - 03:48:49 ---A- - C:\WINDOWS\Prefetch\PLUGIN-CONTAINER.EXE-15EDC9DD.pf

O45 - LFCP:[MD5.1193BBC0E005649E92CEDDB6CF585F1C] - 10/07/2011 - 03:49:14 ---A- - C:\WINDOWS\Prefetch\REGEDIT.EXE-1B606482.pf

O45 - LFCP:[MD5.CC6F6BA9A6E001E0E22B6967AB9D3923] - 10/07/2011 - 03:49:26 ---A- - C:\WINDOWS\Prefetch\NOTEPAD.EXE-336351A9.pf

O45 - LFCP:[MD5.5C2BFF68908521D3F8A656CB83A5CF1D] - 10/07/2011 - 03:51:15 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG.EXE-021B7932.pf

O45 - LFCP:[MD5.C33872B5DFCD5EFB9381B61CD23DB0B7] - 10/07/2011 - 03:52:32 ---A- - C:\WINDOWS\Prefetch\CMD.EXE-087B4001.pf

O45 - LFCP:[MD5.6CF74D676658FF861BA6E4B605D9E4F9] - 10/07/2011 - 03:52:32 ---A- - C:\WINDOWS\Prefetch\SCHTASKS.EXE-0CBF6A11.pf

O45 - LFCP:[MD5.E4235DFA05B7956EDF18A03FB7E088EC] - 10/07/2011 - 03:56:14 ---A- - C:\WINDOWS\Prefetch\GUARDGUI.EXE-00ECD849.pf

O45 - LFCP:[MD5.7F05A0787B5DB4B6E4483C83A498B4F2] - 10/07/2011 - 03:56:35 ---A- - C:\WINDOWS\Prefetch\AVWSC.EXE-0283F9DD.pf

O45 - LFCP:[MD5.900A257EB1A660876161BAFDB866B3EC] - 16/06/2004 - 01:00:11 ---A- - C:\WINDOWS\Prefetch\AAM UPDATES NOTIFIER.EXE-0280E8C4.pf

O45 - LFCP:[MD5.708316DC3DDBCDBE5EAB52600EA030D7] - 16/06/2004 - 11:49:11 ---A- - C:\WINDOWS\Prefetch\CS5SERVICEMANAGER.EXE-30673ED1.pf

O45 - LFCP:[MD5.6171BE432C3F18716DB2BF321F0F6B8F] - 16/06/2004 - 11:49:14 ---A- - C:\WINDOWS\Prefetch\READER_SL.EXE-2B4EA1CB.pf

O45 - LFCP:[MD5.492E99F792B230EC7E7A2DB1A5C2AA9A] - 16/06/2004 - 11:54:04 ---A- - C:\WINDOWS\Prefetch\AVGNT.EXE-200FEF40.pf

O45 - LFCP:[MD5.23AFA9B2AD5F2CAEAC53259522166D39] - 16/06/2004 - 16:05:35 ---A- - C:\WINDOWS\Prefetch\DEFRAG.EXE-273F131E.pf

O45 - LFCP:[MD5.8FD49613C117CEFA616CA5A0B309D744] - 16/06/2004 - 16:05:36 ---A- - C:\WINDOWS\Prefetch\DFRGNTFS.EXE-269967DF.pf

O45 - LFCP:[MD5.0B770D292153969B6BA736AB76ED9826] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\ATIPTAXX.EXE-18FE8D8B.pf

O45 - LFCP:[MD5.D37E55B5CB705BCC1130D2BF7AB98756] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\CTFMON.EXE-0E17969B.pf

O45 - LFCP:[MD5.2819E1D0EC5E1C9C046113AAC694BE2A] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\EOUWIZ.EXE-18024749.pf

O45 - LFCP:[MD5.D0C80D798078AF53178A4E037A7DF468] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\IFRMEWRK.EXE-0618C85D.pf

O45 - LFCP:[MD5.33BFA7A1B103ADCB0A56674B8C38AFA6] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\KTP.EXE-2DF24F3E.pf

O45 - LFCP:[MD5.06850395AD29D73DD037DFB31513349F] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-1218E1AC.pf

O45 - LFCP:[MD5.95EE42A31D4168611566770989DD15C1] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\SWITCHBOARD.EXE-00FB7B94.pf

O45 - LFCP:[MD5.931E3F1D2895EA895F1C64EC631A0722] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\SYNTPENH.EXE-315D3ABC.pf

O45 - LFCP:[MD5.F0EAE0E4096819748C2927E152BF76EC] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\SYNTPLPR.EXE-28BB9F3B.pf

O45 - LFCP:[MD5.5B1AE5863C60DD058E05B688A546F3D2] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\UPDATERSTARTUPUTILITY.EXE-21B7807D.pf

O45 - LFCP:[MD5.B42F772DFB7913BF2CE84D0369653A3E] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\WLANUTIL.EXE-0FAE01EF.pf

O45 - LFCP:[MD5.10E20A4948E3B038BF9717B78DBB7C5F] - 16/06/2004 - 20:42:20 ---A- - C:\WINDOWS\Prefetch\ITUNESHELPER.EXE-15823303.pf

O45 - LFCP:[MD5.D0FA3A24FB3310A3781718409884A901] - 16/06/2004 - 20:42:20 ---A- - C:\WINDOWS\Prefetch\MSMSGS.EXE-2B6052DE.pf

O45 - LFCP:[MD5.A0766EDF7CD4DD6E86C7B647FEB3F5F3] - 16/06/2004 - 20:42:20 ---A- - C:\WINDOWS\Prefetch\SKYPE.EXE-30AE1A60.pf

O45 - LFCP:[MD5.3BF5BA5A7B4D63CE430E11669615FD95] - 16/06/2004 - 20:42:21 ---A- - C:\WINDOWS\Prefetch\BTTRAY.EXE-02B509CD.pf

O45 - LFCP:[MD5.A73E641F686672E13C56EB41B5D7ED29] - 16/06/2004 - 20:43:13 ---A- - C:\WINDOWS\Prefetch\MSIPATCHREGFIX-X86.EXE-2ADB4CCC.pf

O45 - LFCP:[MD5.2EB1F7652E70D5F966A96E6BC97713B1] - 16/06/2004 - 20:45:15 ---A- - C:\WINDOWS\Prefetch\NDP20SP2-KB2518864-X86.EXE-2AE02B85.pf

O45 - LFCP:[MD5.B4E20360FC5BDFE120144758C4B72160] - 16/06/2004 - 20:45:38 ---A- - C:\WINDOWS\Prefetch\HOTFIXINSTALLER.EXE-1DF4066B.pf

O45 - LFCP:[MD5.F74015190336BD4311EBF0430CE03142] - 16/06/2004 - 20:52:30 ---A- - C:\WINDOWS\Prefetch\REGTLIBV12.EXE-0E2FA54B.pf

O45 - LFCP:[MD5.050FEF23EBF81604B0B76AE49DB61D3E] - 16/06/2004 - 20:55:22 ---A- - C:\WINDOWS\Prefetch\MOFCOMP.EXE-01718E95.pf

O45 - LFCP:[MD5.6CE540CABF936D3F6A6CF0DB72314875] - 16/06/2004 - 20:55:23 ---A- - C:\WINDOWS\Prefetch\ASPNET_REGIIS.EXE-009D6E80.pf

O45 - LFCP:[MD5.C6022F65189197E8A954DF280157FD9B] - 16/06/2004 - 20:56:17 ---A- - C:\WINDOWS\Prefetch\REGSVCS.EXE-11A17120.pf

O45 - LFCP:[MD5.E9E980EC9532C090C3276A584AE26DA4] - 16/06/2004 - 20:56:28 ---A- - C:\WINDOWS\Prefetch\WMIADAP.EXE-2DF425B2.pf

O45 - LFCP:[MD5.C0D9425230DB5BA6BFB69383A104F93D] - 16/06/2004 - 20:57:06 ---A- - C:\WINDOWS\Prefetch\NGEN.EXE-38021CCC.pf

O45 - LFCP:[MD5.A5E8C035A1C76A862A13A001CD365169] - 16/06/2004 - 20:57:18 ---A- - C:\WINDOWS\Prefetch\LODCTR.EXE-1009C3B4.pf

O45 - LFCP:[MD5.7F97F107E3FCE01CD9C6B893DCF429D6] - 16/06/2004 - 21:54:43 ---A- - C:\WINDOWS\Prefetch\MSCORSVW.EXE-1BF30400.pf

O45 - LFCP:[MD5.60EC6A4797B203B34E07E6B11AB62655] - 16/06/2004 - 22:03:03 ---A- - C:\WINDOWS\Prefetch\ALG.EXE-0F138680.pf

O45 - LFCP:[MD5.A88162A5A19D02D3A12B25A0DBF36595] - 16/06/2004 - 22:03:03 ---A- - C:\WINDOWS\Prefetch\IMAPI.EXE-0BF740A4.pf

O45 - LFCP:[MD5.9C7985AD5292D482680DD44CA5FD9993] - 16/06/2004 - 22:03:03 ---A- - C:\WINDOWS\Prefetch\IPODSERVICE.EXE-3192DE38.pf

O45 - LFCP:[MD5.25A6FF9A1111753FC5197C32235D735D] - 16/06/2004 - 22:05:41 ---A- - C:\WINDOWS\Prefetch\OIS.EXE-337DD4BD.pf

O45 - LFCP:[MD5.C62F55BBFC26CEAF04B919C9CB4FA15A] - 16/06/2004 - 22:05:44 ---A- - C:\WINDOWS\Prefetch\FREECOMPRESSOR_AIR.EXE-15D5DF45.pf

O45 - LFCP:[MD5.FAD718D6CF64FFE3E16867A17C382CC0] - 16/06/2004 - 22:25:08 ---A- - C:\WINDOWS\Prefetch\GOOGLEUPDATE.EXE-0BCD17F2.pf

O45 - LFCP:[MD5.0ACA4A15E668C0D86A0411064E07494F] - 16/06/2004 - 22:25:09 ---A- - C:\WINDOWS\Prefetch\GOOGLECRASHHANDLER.EXE-34C2B2F4.pf

O45 - LFCP:[MD5.A24F924E0646747FF1B151D06038BB31] - 16/06/2004 - 22:25:38 ---A- - C:\WINDOWS\Prefetch\GOOGLEEARTH-WIN-PLUGIN-6.0.3.-37F74A8C.pf

O45 - LFCP:[MD5.36E1941BEF469D362276F3A2B60D6E15] - 16/06/2004 - 22:25:47 ---A- - C:\WINDOWS\Prefetch\GOOGLEEARTH.EXE-288B935F.pf

O45 - LFCP:[MD5.AD42D182FE766E714B368F5C53B352E7] - 16/06/2004 - 22:25:51 ---A- - C:\WINDOWS\Prefetch\MSIEXEC.EXE-2F8A8CAE.pf

O45 - LFCP:[MD5.5B975308700B74F70DB1039A338E681F] - 16/06/2004 - 22:26:27 ---A- - C:\WINDOWS\Prefetch\GEPLUGIN.EXE-039CFE10.pf

O45 - LFCP:[MD5.A21548EEE9664B5B2E5EF33731319F08] - 16/06/2004 - 22:26:30 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-31B60B19.pf

O45 - LFCP:[MD5.C008E24AA357FE9AEDF780D0AEFC8E06] - 16/06/2004 - 22:45:22 ---A- - C:\WINDOWS\Prefetch\LOGON.SCR-151EFAEA.pf

O45 - LFCP:[MD5.ABDB2234641FCBF7C06933FE76F7AB13] - 16/06/2004 - 23:21:03 ---A- - C:\WINDOWS\Prefetch\CALC.EXE-02CD573A.pf

O45 - LFCP:[MD5.1AD71DB56CE0EE5198D79FBC6DFD7F75] - 16/06/2004 - 23:23:40 ---A- - C:\WINDOWS\Prefetch\ACRORD32.EXE-3A1F13AE.pf

O45 - LFCP:[MD5.2B0DDDCC947E1A66D6FAB167579B608E] - 16/06/2004 - 23:23:54 ---A- - C:\WINDOWS\Prefetch\ADOBEARM.EXE-2D1B11BF.pf

O45 - LFCP:[MD5.C77A224D1AC33A8DA3CE530FE7824F12] - 16/06/2004 - 23:24:04 ---A- - C:\WINDOWS\Prefetch\ACRORD32INFO.EXE-242CE4AA.pf

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)

O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll

---\\ Export de clé d'application autorisée (O47)

O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Microsoft® Remote Desktop Help Session Manager.) -- C:\WINDOWS\system32\sessmgr.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe

O47 - AAKE:Key Export SP - "C:\Program Files\CambridgeSoft\ChemOffice2004\Chem3D\Chem3D.exe" [Enabled] .(.CambridgeSoft Corp. - Chem3D Ultra.) -- C:\Program Files\CambridgeSoft\ChemOffice2004\Chem3D\Chem3D.exe

O47 - AAKE:Key Export SP - "C:\Program Files\CambridgeSoft\ChemOffice2004\ChemDraw\ChemDraw.exe" [Enabled] .(.CambridgeSoft Corp. - ChemDraw Ultra 8.0.) -- C:\Program Files\CambridgeSoft\ChemOffice2004\ChemDraw\ChemDraw.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Phone\Skype.exe" [Enabled] .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Plugin Manager\skypePM.exe" [Enabled] .(.Skype Technologies - Skype Extras Manager.) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Java\jre6\bin\javaw.exe" [Enabled] .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\javaw.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Bonjour\mDNSResponder.exe" [Enabled] .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe

O47 - AAKE:Key Export SP - "C:\Program Files\iTunes\iTunes.exe" [Enabled] .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Google\Google Earth\plugin\geplugin.exe" [Enabled] .(.Google - Google Earth.) -- C:\Program Files\Google\Google Earth\plugin\geplugin.exe

O47 - AAKE:Key Export SP - "C:\Program Files\TightVNC\tvnserver.exe" [Enabled] .(.GlavSoft LLC. - TightVNC Server for Windows.) -- C:\Program Files\TightVNC\tvnserver.exe

O47 - AAKE:Key Export SP - "C:\Program Files\TightVNC\vncviewer.exe" [Enabled] .(.TightVNC Group - vncviewer.) -- C:\Program Files\TightVNC\vncviewer.exe

O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Microsoft® Remote Desktop Help Session Manager.) -- C:\WINDOWS\system32\sessmgr.exe

---\\ Contrôle du Safe Boot (CSB) (O49)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager I/O Driver.) -- C:\WINDOWS\System32\Drivers\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\System32\Drivers\sermouse.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - System Restore Filesystem Filter Driver.) -- C:\WINDOWS\System32\Drivers\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\System32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager I/O Driver.) -- C:\WINDOWS\System32\Drivers\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\System32\Drivers\ip6fw.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\Drivers\ipnat.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\System32\Drivers\rdpcdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\System32\Drivers\rdpdd.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\System32\Drivers\rdpwd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\System32\Drivers\sermouse.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - System Restore Filesystem Filter Driver.) -- C:\WINDOWS\System32\Drivers\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdpipe.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdtcp.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\System32\Drivers\vgasave.sys (.not file.)

---\\ Image File Execution Options (IFEO) (O50)

O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - DSP Group TrueSpeech Audio Codec for MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll

O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\System32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\System32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax

O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm

O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax

O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm

O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax

O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (...) -- (.not file.)

O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - DPA Client for 32 bit platforms.) -- C:\WINDOWS\system32\msapsspc.dll

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Digest SSPI Authentication Package.) -- C:\WINDOWS\system32\digest.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - DPA Client for 32 bit platforms.) -- C:\WINDOWS\system32\msapsspc.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Digest SSPI Authentication Package.) -- C:\WINDOWS\system32\digest.dll

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

---\\ Microsoft Windows Policies Explorer (O56)

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145

O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.F498FD605C08404B20A48954C722FF74] - 10/07/2011 - 20:45:05 ---A- . (.Meetinghouse Data Communications - IEEE 802.1X Protocol Driver.) -- C:\WINDOWS\system32\drivers\AegisP.sys [17119]

O58 - SDL:[MD5.375EAC7DA270DA658501EE766F960201] - 10/07/2011 - 15:06:42 ---A- . (.ATI Technologies Inc. - ATI Radeon WindowsNT Miniport Driver.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys [874496]

O58 - SDL:[MD5.5B44C214F9CD9F590BE9125347610380] - 10/07/2011 - 14:28:03 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\drivers\avgntdd.sys [45416]

O58 - SDL:[MD5.47B879406246FFDCED59E18D331A0E7D] - 10/07/2011 - 01:26:13 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys [61960]

O58 - SDL:[MD5.87451AA7CC6B6A590EBCEA05E755075A] - 10/07/2011 - 14:28:03 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\drivers\avgntmgr.sys [22360]

O58 - SDL:[MD5.5FEDEF54757B34FB611B9EC8FB399364] - 10/07/2011 - 11:51:13 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\WINDOWS\system32\drivers\avipbb.sys [137656]

O58 - SDL:[MD5.48BF91CFFBCDD12A710207F2A08FEC4D] - 10/07/2011 - 15:38:32 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS5.1 Driver..) -- C:\WINDOWS\system32\drivers\b57xp32.sys [132352]

O58 - SDL:[MD5.3292260A6AE8F328C7EF698B6EBD56E2] - 10/07/2011 - 11:15:08 ---A- . (.Broadcom Corporation - USB Driver for Bluetooth Adapter.) -- C:\WINDOWS\system32\drivers\bcbthub.sys [148794]

O58 - SDL:[MD5.0A5D4300A8EA29F67ABBBABB58DD5456] - 10/07/2011 - 14:04:04 ---A- . (.WIDCOMM, Inc. - Bluetooth Audio Device.) -- C:\WINDOWS\system32\drivers\btaudio.sys [16896]

O58 - SDL:[MD5.7249EF21D6F70D971BDA3ED0AF16D340] - 10/07/2011 - 13:57:46 ---A- . (.WIDCOMM, Inc. - Bluetooth Protocol Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btkrnl.sys [1240938]

O58 - SDL:[MD5.6D9D146B116B0C3F09A9AB9F6F805093] - 10/07/2011 - 13:50:32 ---A- . (.WIDCOMM, Inc. - Bluetooth BTPORT Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btport.sys [30235]

O58 - SDL:[MD5.3E98D2550A6222CD6D278425FBB21C3E] - 10/07/2011 - 14:02:06 ---A- . (.WIDCOMM, Inc. - Bluetooth Serial Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btserial.sys [23239]

O58 - SDL:[MD5.48B9AD7437FF5BFB8F13CAB03179FE72] - 10/07/2011 - 14:01:46 ---A- . (.WIDCOMM, Inc. - Bluetooth Serial Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btslbcsp.sys [222844]

O58 - SDL:[MD5.F5418F5B86BF9610AF445F7884087F9E] - 10/07/2011 - 13:50:46 ---A- . (.WIDCOMM, Inc. - Bluetooth LAN Access Server Driver.) -- C:\WINDOWS\system32\drivers\btwdndis.sys [147864]

O58 - SDL:[MD5.BAA90D983F77759FC70C65A1CE3D3566] - 10/07/2011 - 13:29:00 ---A- . (.Conexant Systems Inc. - Conexant WDM AC97 Audio Driver.) -- C:\WINDOWS\system32\drivers\camcaud.sys [34048]

O58 - SDL:[MD5.90D9C324DF48BB8E3024E79F5C181784] - 10/07/2011 - 13:31:00 ---A- . (.Conexant Systems Inc. - Conexant AmcHal Driver.) -- C:\WINDOWS\system32\drivers\camchal.sys [276480]

O58 - SDL:[MD5.B562592B7F5759C99E179CA467ECFB4C] - 10/07/2011 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C 1.2 WDM Main Driver.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528]

O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 10/07/2011 - 13:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776]

O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 10/07/2011 - 13:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys [26600]

O58 - SDL:[MD5.573C7D0A32852B48F3058CFD8026F511] - 10/07/2011 - 13:00:00 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\drivers\hdaudbus.sys [144384]

O58 - SDL:[MD5.FAC3B0A7EC158C4582D23EDA4C5A56E9] - 10/07/2011 - 14:00:00 ---A- . (.Conexant Systems, Inc. - HSFHWICH WDM driver.) -- C:\WINDOWS\system32\drivers\HSFHWICH.sys [200064]

O58 - SDL:[MD5.2E84A40836B2A8DC523CB530C7262AC3] - 10/07/2011 - 13:58:00 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys [684800]

O58 - SDL:[MD5.E5ADD2AFECBF514F5CCA730EDFDFB49E] - 10/07/2011 - 13:58:00 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\system32\drivers\HSF_DP.sys [1041536]

O58 - SDL:[MD5.EADCBD84F788D887E73D8C7691B2C508] - 10/07/2011 - 16:23:42 ---A- . (.Inprocomm, Inc. - NT 5 (NDIS 5.1/5.0) x86 Driver.) -- C:\WINDOWS\system32\drivers\i2220ntx.sys [140288]

O58 - SDL:[MD5.872D090CA5C306F62D1982BCE6302376] - 10/07/2011 - 07:44:04 ---A- . (.Intel Corporation - Intel Wireless Connection Agent.) -- C:\WINDOWS\system32\drivers\iwca.sys [234496]

O58 - SDL:[MD5.78D93059DE425C9A248E1850ED80F822] - 10/07/2011 - 18:04:44 ---A- . (.ELANTECH Devices Corp. - KTP Ware Filter Driver.) -- C:\WINDOWS\system32\drivers\Ktp.sys [27392]

O58 - SDL:[MD5.67B48A903430C6D4FB58CBACA1866601] - 10/07/2011 - 14:39:26 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys [20952]

O58 - SDL:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 10/07/2011 - 14:39:38 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys [38224]

O58 - SDL:[MD5.3C318B9CD391371BED62126581EE9961] - 10/07/2011 - 10:04:00 ---A- . (.Conexant - Diagnostic Interface DRIVER.) -- C:\WINDOWS\system32\drivers\mdmxsdk.sys [13059]

O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 10/07/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032]

O58 - SDL:[MD5.2ADC0CA9945C65284B3D19BC18765974] - 10/07/2011 - 01:24:38 ---A- . (.National Semiconductor Corporation - NSC Fast Infrared Driver..) -- C:\WINDOWS\system32\drivers\nscirda.sys [28672]

O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 10/07/2011 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792]

O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 10/07/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032]

O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 10/07/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032]

O58 - SDL:[MD5.85A26A3BB748DFD3170CDBF45B0DD7FD] - 10/07/2011 - 10:20:04 ---A- . (.Intel Corporation - Intel WLAN Packet Driver.) -- C:\WINDOWS\system32\drivers\s24trans.sys [11354]

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 10/07/2011 - 13:00:00 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480]

O58 - SDL:[MD5.44EF1200FEFFFFFF00000000CCF11200] - 01/06/2010 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [685816]

O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 10/07/2011 - 14:28:02 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\drivers\ssmdrv.sys [28520]

O58 - SDL:[MD5.EB363DDFBE8B6D51003CCAB29D93D744] - 10/07/2011 - 13:33:46 ---A- . (.Synaptics, Inc. - Synaptics Touchpad Driver.) -- C:\WINDOWS\system32\drivers\SynTP.sys [185824]

O58 - SDL:[MD5.467FF7FB078DCEC24C3F4DB602190E3D] - 10/07/2011 - 12:40:00 ---A- . (.Texas Instruments - tifm21.sys.) -- C:\WINDOWS\system32\drivers\tifm21.sys [146304]

O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 10/07/2011 - 13:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376]

O58 - SDL:[MD5.5C2BDC152BBAB34F36473DEAF7713F22] - 10/07/2011 - 15:44:52 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\system32\drivers\usbaapl.sys [41984]

O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 10/07/2011 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112]

O58 - SDL:[MD5.C89DA341FCC883A3D79DC11727484FC2] - 10/07/2011 - 17:48:10 ---A- . (.Intel® Corporation - Intel® Wireless LAN Driver.) -- C:\WINDOWS\system32\drivers\w29n51.sys [3222784]

O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9029]

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097]

O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4768]

O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809]

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537]

O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27866]

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146]

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370]

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274]

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146]

O58 - SDL:[MD5.4FE09F868CE65B334B42862C372C69CC] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [33840]

O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560]

O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648]

O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424]

O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560]

O58 - SDL:[MD5.2F9806B52CB3748B1E49222744B28E3C] - 10/07/2011 - 11:52:22 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) -- C:\WINDOWS\system32\PCANDIS5.SYS [17134]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)

O61 - LFC:Last File Created 10/07/2011 - 03:28:23 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\sched.log [114796]

O61 - LFC:Last File Created 10/07/2011 - 03:28:45 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\IDX\master.idx [56]

O61 - LFC:Last File Created 10/07/2011 - 03:29:16 -SHA- C:\Documents And Settings\Saskia\Local Settings\History\History.IE5\MSHist012011071020110711\index.dat [32768]

O61 - LFC:Last File Created 10/07/2011 - 03:29:38 ---A- C:\Documents And Settings\Saskia\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol [1612]

O61 - LFC:Last File Created 10/07/2011 - 03:29:48 ---A- C:\Documents And Settings\Saskia\Cookies\saskia@notifier.avira[2].txt [359]

O61 - LFC:Last File Created 10/07/2011 - 03:32:58 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2011-07-10-04-28-19.log [52592]

O61 - LFC:Last File Created 10/07/2011 - 03:32:58 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\REPORTS\c241e054.avl [3070]

O61 - LFC:Last File Created 10/07/2011 - 03:33:17 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\JOBS\updjob.avj [1530]

O61 - LFC:Last File Created 10/07/2011 - 03:43:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\plugtmp-10\plugin-images%5Cbanner.swf [20563]

O61 - LFC:Last File Created 10/07/2011 - 03:44:56 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\localstore.rdf [7762]

O61 - LFC:Last File Created 10/07/2011 - 03:45:47 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\plugtmp-10\plugin-home.xml [694]

O61 - LFC:Last File Created 10/07/2011 - 03:45:47 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\plugtmp-10\plugin-viewer.xml [812]

O61 - LFC:Last File Created 10/07/2011 - 03:46:04 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\XUL.mfl [1456849]

O61 - LFC:Last File Created 10/07/2011 - 03:46:07 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\downloads.sqlite [180224]

O61 - LFC:Last File Created 10/07/2011 - 03:48:07 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\sessionstore.bak [684849]

O61 - LFC:Last File Created 10/07/2011 - 03:48:14 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\cert8.db [196608]

O61 - LFC:Last File Created 10/07/2011 - 03:48:14 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\cookies.sqlite [557056]

O61 - LFC:Last File Created 10/07/2011 - 03:48:14 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\cookies.sqlite-journal [114032]

O61 - LFC:Last File Created 10/07/2011 - 03:48:14 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\urlclassifier3.sqlite [48730112]

O61 - LFC:Last File Created 10/07/2011 - 03:48:26 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\pluginreg.dat [12473]

O61 - LFC:Last File Created 10/07/2011 - 03:48:31 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_001_ [635802]

O61 - LFC:Last File Created 10/07/2011 - 03:48:31 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_002_ [577774]

O61 - LFC:Last File Created 10/07/2011 - 03:48:31 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_003_ [1605697]

O61 - LFC:Last File Created 10/07/2011 - 03:48:32 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_MAP_ [276]

O61 - LFC:Last File Created 10/07/2011 - 03:48:33 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\urlclassifierkey3.txt [154]

O61 - LFC:Last File Created 10/07/2011 - 03:48:35 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\eBay Inc\ebay-companion.sqlite [20480]

O61 - LFC:Last File Created 10/07/2011 - 03:48:37 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\CA48276Dd01 [30680]

O61 - LFC:Last File Created 10/07/2011 - 03:48:37 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\DB9CAF24d01 [37200]

O61 - LFC:Last File Created 10/07/2011 - 03:48:37 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\F3782808d01 [40164]

O61 - LFC:Last File Created 10/07/2011 - 03:48:39 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\3F27D0A7d01 [52279]

O61 - LFC:Last File Created 10/07/2011 - 03:48:39 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\70AEDFF2d01 [39845]

O61 - LFC:Last File Created 10/07/2011 - 03:48:39 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\E05FEAFFd01 [17017]

O61 - LFC:Last File Created 10/07/2011 - 03:48:40 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\576A3B85d01 [48296]

O61 - LFC:Last File Created 10/07/2011 - 03:48:40 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\C302A9C0d01 [76400]

O61 - LFC:Last File Created 10/07/2011 - 03:48:41 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\39F3A2EAd01 [32275]

O61 - LFC:Last File Created 10/07/2011 - 03:48:42 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\D231D771d01 [20250]

O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2A5B56D1d01 [38187]

O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\64EAE464d01 [26040]

O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\793F322Ad01 [20546]

O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\79A7D1E5d01 [80019]

O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\8722EF69d01 [37591]

O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\AB0F63EEd01 [53216]

O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\C68BA509d01 [63662]

O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\F25BC56Cd01 [83764]

O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\F79C6591d01 [40587]

O61 - LFC:Last File Created 10/07/2011 - 03:49:01 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\6BF740AEd01 [96712]

O61 - LFC:Last File Created 10/07/2011 - 03:49:02 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\5582BF0Ed01 [165329]

O61 - LFC:Last File Created 10/07/2011 - 03:49:02 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\595B7BB6d01 [39464]

O61 - LFC:Last File Created 10/07/2011 - 03:49:02 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\A8CF65EEd01 [17080]

O61 - LFC:Last File Created 10/07/2011 - 03:49:02 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\DE3EC532d01 [27039]

O61 - LFC:Last File Created 10/07/2011 - 03:49:02 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\EE8A3DACd01 [24982]

O61 - LFC:Last File Created 10/07/2011 - 03:49:03 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\968EB4F4d01 [27265]

O61 - LFC:Last File Created 10/07/2011 - 03:49:04 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\0F78A4E6d01 [22188]

O61 - LFC:Last File Created 10/07/2011 - 03:49:04 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\75DAE5C1d01 [22909]

O61 - LFC:Last File Created 10/07/2011 - 03:49:04 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\E4E44315d01 [48407]

O61 - LFC:Last File Created 10/07/2011 - 03:49:05 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\56E35EBDd01 [19494]

O61 - LFC:Last File Created 10/07/2011 - 03:49:06 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\1AAE745Bd01 [28295]

O61 - LFC:Last File Created 10/07/2011 - 03:49:06 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\7FE04013d01 [124388]

O61 - LFC:Last File Created 10/07/2011 - 03:49:06 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\AE904A3Ed01 [35941]

O61 - LFC:Last File Created 10/07/2011 - 03:49:07 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\00FFE48Bd01 [31710]

O61 - LFC:Last File Created 10/07/2011 - 03:49:07 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\31E8BAD5d01 [20208]

O61 - LFC:Last File Created 10/07/2011 - 03:49:07 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\646309D0d01 [26942]

O61 - LFC:Last File Created 10/07/2011 - 03:49:07 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\D935EF5Fd01 [20396]

O61 - LFC:Last File Created 10/07/2011 - 03:49:10 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\9D3BC6D4d01 [20783]

O61 - LFC:Last File Created 10/07/2011 - 03:49:12 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2DE868D5d01 [31965]

O61 - LFC:Last File Created 10/07/2011 - 03:49:12 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\964F5625d01 [16713]

O61 - LFC:Last File Created 10/07/2011 - 03:49:13 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\518F0DC7d01 [80305]

O61 - LFC:Last File Created 10/07/2011 - 03:49:13 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\E9E8F947d01 [62284]

O61 - LFC:Last File Created 10/07/2011 - 03:49:13 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\plugtmp-11\plugin-images%5Cbanner.swf [20563]

O61 - LFC:Last File Created 10/07/2011 - 03:49:14 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.21452 [91]

O61 - LFC:Last File Created 10/07/2011 - 03:49:14 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.21452 [48]

O61 - LFC:Last File Created 10/07/2011 - 03:49:14 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\260A3B04d01 [23164]

O61 - LFC:Last File Created 10/07/2011 - 03:49:14 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\51F38612d01 [21396]

O61 - LFC:Last File Created 10/07/2011 - 03:49:15 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2011-07-10 (04-49-15).txt [1125]

O61 - LFC:Last File Created 10/07/2011 - 03:49:16 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\575DE18Ad01 [62062]

O61 - LFC:Last File Created 10/07/2011 - 03:49:17 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\3DC27359d01 [19776]

O61 - LFC:Last File Created 10/07/2011 - 03:49:20 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\F57DD351d01 [183664]

O61 - LFC:Last File Created 10/07/2011 - 03:49:21 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\B57AED9Ed01 [104514]

O61 - LFC:Last File Created 10/07/2011 - 03:49:21 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\E02B632Bd01 [35519]

O61 - LFC:Last File Created 10/07/2011 - 03:49:22 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\467EDE04d01 [46064]

O61 - LFC:Last File Created 10/07/2011 - 03:49:22 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\F5ECB04Cd01 [64763]

O61 - LFC:Last File Created 10/07/2011 - 03:49:24 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\A3DF4976d01 [212339]

O61 - LFC:Last File Created 10/07/2011 - 03:49:25 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\60586B8Dd01 [29922]

O61 - LFC:Last File Created 10/07/2011 - 03:49:25 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\70674250d01 [23952]

O61 - LFC:Last File Created 10/07/2011 - 03:49:26 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\31EDEEC4d01 [24409]

O61 - LFC:Last File Created 10/07/2011 - 03:49:27 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2C316B05d01 [27382]

O61 - LFC:Last File Created 10/07/2011 - 03:49:27 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\8A40931Cd01 [24588]

O61 - LFC:Last File Created 10/07/2011 - 03:49:30 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\07E591BCd01 [72151]

O61 - LFC:Last File Created 10/07/2011 - 03:49:30 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\A7C5CC61d01 [96115]

O61 - LFC:Last File Created 10/07/2011 - 03:49:30 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\DEF21F7Bd01 [68904]

O61 - LFC:Last File Created 10/07/2011 - 03:49:31 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\36C96C82d01 [17852]

O61 - LFC:Last File Created 10/07/2011 - 03:49:32 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\571FA639d01 [30925]

O61 - LFC:Last File Created 10/07/2011 - 03:49:34 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\D369AA40d01 [64694]

O61 - LFC:Last File Created 10/07/2011 - 03:49:35 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\3244F103d01 [99121]

O61 - LFC:Last File Created 10/07/2011 - 03:49:36 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\24321981d01 [18931]

O61 - LFC:Last File Created 10/07/2011 - 03:49:36 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\5F782C27d01 [17646]

O61 - LFC:Last File Created 10/07/2011 - 03:49:37 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2C9FC298d01 [48350]

O61 - LFC:Last File Created 10/07/2011 - 03:49:38 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\054A17DAd01 [21355]

O61 - LFC:Last File Created 10/07/2011 - 03:49:40 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\D0F8D449d01 [108508]

O61 - LFC:Last File Created 10/07/2011 - 03:49:48 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\F31B8329d01 [24720]

O61 - LFC:Last File Created 10/07/2011 - 03:49:50 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\72628EF4d01 [726351]

O61 - LFC:Last File Created 10/07/2011 - 03:49:58 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\DD4851EDd01 [19892]

O61 - LFC:Last File Created 10/07/2011 - 03:50:08 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\7121E75Bd01 [17933]

O61 - LFC:Last File Created 10/07/2011 - 03:50:18 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\88D1A693d01 [17440]

O61 - LFC:Last File Created 10/07/2011 - 03:50:28 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\07917480d01 [17358]

O61 - LFC:Last File Created 10/07/2011 - 03:50:38 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\7114DB74d01 [16935]

O61 - LFC:Last File Created 10/07/2011 - 03:50:48 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\8C24FC90d01 [23170]

O61 - LFC:Last File Created 10/07/2011 - 03:50:58 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\6A23D110d01 [17904]

O61 - LFC:Last File Created 10/07/2011 - 03:51:05 ---A- C:\Documents And Settings\All Users.WINDOWS\Start Menu\Programs\ZHP\ZHPDiag.lnk [682]

O61 - LFC:Last File Created 10/07/2011 - 03:51:19 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\A770B924d01 [16770]

O61 - LFC:Last File Created 10/07/2011 - 03:51:39 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\90192FF2d01 [16520]

O61 - LFC:Last File Created 10/07/2011 - 03:51:49 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\E9048F56d01 [25069]

O61 - LFC:Last File Created 10/07/2011 - 03:51:59 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\6BBD8719d01 [22473]

O61 - LFC:Last File Created 10/07/2011 - 03:52:09 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\721CADEFd01 [17268]

O61 - LFC:Last File Created 10/07/2011 - 03:52:15 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\AB6D9503d01 [19918]

O61 - LFC:Last File Created 10/07/2011 - 03:52:19 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\D6044504d01 [24281]

O61 - LFC:Last File Created 10/07/2011 - 03:52:29 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\FFAC7910d01 [19205]

O61 - LFC:Last File Created 10/07/2011 - 03:52:33 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\0233417Ed01 [45459]

O61 - LFC:Last File Created 10/07/2011 - 03:52:33 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\1FA6CB18d01 [30247]

O61 - LFC:Last File Created 10/07/2011 - 03:52:34 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2A49FCD2d01 [125978]

O61 - LFC:Last File Created 10/07/2011 - 03:52:34 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\537634BEd01 [47565]

O61 - LFC:Last File Created 10/07/2011 - 03:52:34 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\DD85D0CAd01 [25916]

O61 - LFC:Last File Created 10/07/2011 - 03:52:40 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\A0B50323d01 [20931]

O61 - LFC:Last File Created 10/07/2011 - 03:52:50 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\B521464Fd01 [17927]

O61 - LFC:Last File Created 10/07/2011 - 03:52:56 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\07B2739Fd01 [140975]

O61 - LFC:Last File Created 10/07/2011 - 03:52:56 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\63FDBCAEd01 [54512]

O61 - LFC:Last File Created 10/07/2011 - 03:52:57 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\375CC647d01 [22438]

O61 - LFC:Last File Created 10/07/2011 - 03:52:57 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\61187911d01 [17444]

O61 - LFC:Last File Created 10/07/2011 - 03:52:58 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\15BEAE6Dd01 [42173]

O61 - LFC:Last File Created 10/07/2011 - 03:52:58 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\E0506A75d01 [56702]

O61 - LFC:Last File Created 10/07/2011 - 03:52:59 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\32AB927Ad01 [46287]

O61 - LFC:Last File Created 10/07/2011 - 03:52:59 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\66E49755d01 [43208]

O61 - LFC:Last File Created 10/07/2011 - 03:52:59 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\CF4D7D8Cd01 [17180]

O61 - LFC:Last File Created 10/07/2011 - 03:53:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\0688DB64d01 [19188]

O61 - LFC:Last File Created 10/07/2011 - 03:53:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\0FDE814Fd01 [25522]

O61 - LFC:Last File Created 10/07/2011 - 03:53:02 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\EE6C4FF2d01 [28061]

O61 - LFC:Last File Created 10/07/2011 - 03:53:09 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\BC61EF96d01 [36107]

O61 - LFC:Last File Created 10/07/2011 - 03:53:09 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\EB9FA416d01 [24434]

O61 - LFC:Last File Created 10/07/2011 - 03:53:10 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2380A46Dd01 [23024]

O61 - LFC:Last File Created 10/07/2011 - 03:53:13 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\89E36B54d01 [43950]

O61 - LFC:Last File Created 10/07/2011 - 03:53:20 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2959CDECd01 [16578]

O61 - LFC:Last File Created 10/07/2011 - 03:53:27 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\formhistory.sqlite [32768]

O61 - LFC:Last File Created 10/07/2011 - 03:53:32 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\0652F256d01 [25688]

O61 - LFC:Last File Created 10/07/2011 - 03:53:32 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\89A4712Ed01 [21367]

O61 - LFC:Last File Created 10/07/2011 - 03:53:36 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\ED816FF0d01 [18322]

O61 - LFC:Last File Created 10/07/2011 - 03:53:37 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\1618402Ed01 [36959]

O61 - LFC:Last File Created 10/07/2011 - 03:56:34 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\avguard.log [614640]

O61 - LFC:Last File Created 10/07/2011 - 03:56:35 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\EVENTDB\avevtdb.dbe [15360]

O61 - LFC:Last File Created 10/07/2011 - 03:58:24 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\blocklist.xml [10573]

O61 - LFC:Last File Created 10/07/2011 - 03:58:25 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\extensions.rdf [10704]

O61 - LFC:Last File Created 10/07/2011 - 03:58:33 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\XPC.mfl [186688]

O61 - LFC:Last File Created 10/07/2011 - 03:58:40 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\places.sqlite [10309632]

O61 - LFC:Last File Created 10/07/2011 - 03:58:40 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\places.sqlite-journal [0]

O61 - LFC:Last File Created 10/07/2011 - 03:58:40 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\sessionstore.js [719882]

O61 - LFC:Last File Created 16/06/2004 - 03:28:26 -SHA- C:\Documents And Settings\LocalService.NT AUTHORITY\Cookies\index.dat [32768]

O61 - LFC:Last File Created 16/06/2004 - 03:28:26 -SHA- C:\Documents And Settings\LocalService.NT AUTHORITY\Local Settings\History\History.IE5\index.dat [32768]

---\\ Liste des outils de nettoyage (O63)

O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM] -- Ad-Remover

O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis

O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

O63 - Logiciel: FindyKill - (.El Desaparecido.)

O63 - Logiciel: RSIT - (.random/random.)

O63 - Logiciel: Toolbar SD - (.IDN Team.)

O63 - Logiciel: ToolsCleaner - (.A.Rothstein & dj QUIOU.)

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %*

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\WINDOWS\regedit.exe

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %*

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\WINDOWS\regedit.exe

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

---\\ Search Browser Infection (O69)

O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - Bing

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - Bing

---\\ Crack & Keygen Files (O82)

C:\Documents and Settings\Jérémy\Recent\Photomatix Pro 3 + Keygen.rar.lnk

C:\Documents and Settings\Jérémy\Recent\Photomatix Pro v3.4 Incl-Keygen.rar.lnk

C:\Program Files\eMule\Incoming\Photomatix Pro 3 + Keygen.rar

C:\Program Files\eMule\Incoming\Photomatix Pro v2.2.3 Winall Incl Keygen.rar

C:\Program Files\eMule\Incoming\Photomatix Pro v3.4 Incl-Keygen.rar

C:\Documents and Settings\Jérémy\Recent\Photomatix Pro 3 + Keygen.rar.lnk

C:\Documents and Settings\Jérémy\Recent\Photomatix Pro v3.4 Incl-Keygen.rar.lnk

C:\Program Files\eMule\Incoming\Photomatix Pro 3 + Keygen.rar

C:\Program Files\eMule\Incoming\Photomatix Pro v2.2.3 Winall Incl Keygen.rar

C:\Program Files\eMule\Incoming\Photomatix Pro v3.4 Incl-Keygen.rar

---\\ Recherche particuliere à la racine de certains dossiers (O84)

[MD5.139CA7EE65280F3AE220520E8DD5F75E] [sPRF][09/11/2005] (.MESTRELAB - MestReC Application.) -- C:\Documents and Settings\Saskia\Desktop\MestReC.exe [5902336]

[MD5.2E0B5C7437AB198A1AA2810BAA4E682B] [sPRF][04/12/2010] (...) -- C:\Documents and Settings\Saskia\Desktop\SoftonicFR_JDownloader_09579.exe [30456832]

[MD5.9B0EEDE0731D10F482E72BAC24A059CD] [sPRF][10/07/2011] (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Saskia\Desktop\ZHPDiag2.exe [2538818]

[MD5.8FE1A5DAC5D47C7A9D5A5501644B25B2] [sPRF][11/06/2010] (.Adobe Systems Incorporated - Adobe Extractor.) -- C:\Program Files\Photoshop_12_LS4.exe [1228400]

---\\ Scan Additionnel (O88)

Database Version : 8502 - (08/07/2011)

Clés trouvées (Keys found) : 5

Valeurs trouvées (Values found) : 0

Dossiers trouvés (Folders found) : 0

Fichiers trouvés (Files found) : 0

[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\ForceRenive] =>PUP.OfferBox

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] =>Hijacker.Agent

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] =>Hijacker.Agent

[HKLM\Software\Classes\Installer\Features\5B4758C25396ECF468E04F8E063287FF] =>PUP.OfferBox

[HKCU\Software\NtWqIVLZEWZU] =>Trojan.FakeAlert

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SR - | Auto 10/07/2011 136360 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe

SR - | Auto 10/07/2011 269480 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

SR - | Auto 10/07/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

SR - | Auto 10/07/2011 425984 | (Ati HotKey Poller) . (.ATI Technologies Inc..) - C:\WINDOWS\system32\Ati2evxx.exe

SR - | Auto 10/07/2011 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe

SR - | Auto 10/07/2011 163840 | (btwdins) . (.WIDCOMM, Inc..) - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe

SS - | Demand 10/07/2011 224768 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe

SR - | Auto 10/07/2011 86016 | (EvtEng) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe

SS - | Auto 10/07/2011 133104 | (gupdate1cb095d934d6ec8) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe

SR - | Demand 10/07/2011 820008 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe

SR - | Auto 10/07/2011 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe

SR - | Auto 10/07/2011 98304 | (OwnershipProtocol) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe

SR - | Auto 10/07/2011 139264 | (RegSrvc) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe

SR - | Auto 10/07/2011 360521 | (S24EventMonitor) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe

SS - | Demand 10/07/2011 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

SR - | Auto 10/07/2011 826896 | (tvnserver) . (.GlavSoft LLC..) - C:\Program Files\TightVNC\tvnserver.exe

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover

Run by Saskia at 10/07/2011 05:11:43

device: opened successfully

user: MBR read successfully

Disk trace:

called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys sptd.sys >>UNKNOWN [0x869858AC]<<

C:\WINDOWS\system32\drivers\sptd.sys

1 ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\Harddisk0\DR0[0x8693FAB8]

3 CLASSPNP[0xF7546FD7] -> ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\00000084[0x869CEF18]

5 ACPI[0xF72BB620] -> ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\Ide\IdeDeviceP0T0L0-4[0x868F4D98]

kernel: MBR read successfully

user & kernel MBR OK

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

Written by ad13, http://ad13.geekstog

Run by Saskia at 10/07/2011 05:11:45

********* Dump file Name *********

C:\PhysicalDisk0_MBR.bin

---\\ Liste des émulateurs de CD/DVD (Hook du MBR)

O42 - Logiciel: AdVantage (Powering DAEMON Tools) - (.AdVantage.) [HKCU] -- advantage_DAEM

O58 - SDL:[MD5.44EF1200FEFFFFFF00000000CCF11200] - 01/06/2010 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [685816]

End of the scan (1575 lines in 20mn 08s)(10)

Citer

tomtom95

Posté(e) le 11 juillet 2011

- Signaler

Posté(e) le 11 juillet 2011

Bonsoir grem

Alors il y a plus beaucoup de place sur le Disque dur C:\

System drive C: has 4 GB (5%) free of 75 GB

Il y a du ménage a faire sur ce lecteur

Sinon tu est bien infecté .

Il faudrais aussi revoir ta façon de télécharger :

Je te conseil vivement de désinstaller

Azureus PeerToPeer

eMule PeerToPeer

TvAnts PeerToPeer

Le P2P sont source d'infection multiples

Prend quelques instants pour lire

Les risques du peer-to-peer

Et de supprimer tous tes cracks et KeyGen du pc

C:\Documents and Settings\Jérémy\Recent\Photomatix Pro 3 + Keygen.rar.lnk (Crack, KeyGen)

C:\Documents and Settings\Jérémy\Recent\Photomatix Pro v3.4 Incl-Keygen.rar.lnk

C:\Program Files\eMule\Incoming\Photomatix Pro 3 + Keygen.rar

C:\Program Files\eMule\Incoming\Photomatix Pro v2.2.3 Winall Incl Keygen.rar

C:\Program Files\eMule\Incoming\Photomatix Pro v3.4 Incl-Keygen.rar

C:\Documents and Settings\Jérémy\Recent\Photomatix Pro 3 + Keygen.rar.lnk

C:\Documents and Settings\Jérémy\Recent\Photomatix Pro v3.4 Incl-Keygen.rar.lnk

C:\Program Files\eMule\Incoming\Photomatix Pro 3 + Keygen.rar

C:\Program Files\eMule\Incoming\Photomatix Pro v2.2.3 Winall Incl Keygen.rar

C:\Program Files\eMule\Incoming\Photomatix Pro v3.4 Incl-Keygen.rar

Je vois que tu utilise des outils de désinsfections en pagaille : :roll:

Ad-Remover

FindyKill

Toolbar SD

ToolsCleaner

Mal utiliser tu prend beaucoup de risque pour la stabilité de ton ordinateur

Tu n'as pas mis a jour MBAM ,c'est une vieille version

Malwarebytes' Anti-Malware 1.46,>>> actuel version 1.51.0.1200

Base de la base de données 7073

Donc fait cette mise a jour stp puis un nouveau scanne complet du pc.

Avant fait cette procédure stp.

Ferme toutes les applications ouvertes
Désactive tes défenses (anti-virus,anti-spyware)
Double-clique sur ZHPFix

Un raccourci installé par ZHPDiag sur le Bureau

Sélectionne et surligne correctement avec la souris et "Clique droit > "Copier" ou "Ctrl+C"
ces lignes ci dessous :
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: Modified
O4 - HKCU\..\Run: [NtWqIVLZEWZU] C:\DOCUME~1\Saskia\LOCALS~1\Temp\Jj2.exe (.not file.)
O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\Run: [NtWqIVLZEWZU] C:\DOCUME~1\Saskia\LOCALS~1\Temp\Jj2.exe (.not file.)
O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Arbeitsplatz.lnk - Clé orpheline
O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\OriginPro 8G.lnk . (.OriginLab Corporation.) -- C:\Program Files\OriginLab\Origin8\Origin8.exe
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-JÉRÉMY-Saskia.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job
[MD5.00000000000000000000000000000000] [APT] [{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}] (...) -- C:\DOCUME~1\Saskia\LOCALS~1\Temp\a.exe (.not file.)
O42 - Logiciel: AdVantage (Powering DAEMON Tools) - (.AdVantage.) [HKCU] -- advantage_DAEM
O42 - Logiciel: Accord SDK 5.1 Runtime - (.Pas de propriétaire.) [HKLM] -- AccelrysAccordSDK51RT
O42 - Logiciel: FreeCompressor - (.Secure Digital Services.) [HKLM] -- {1EF93620-4B15-4DB4-B0EA-889E2F187081}
[HKCU\Software\JP595IR86O]
[HKCU\Software\NtWqIVLZEWZU]
[HKCU\Software\OW1T3CYG7T]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\ForceRenive]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}]
[HKLM\Software\Classes\Installer\Features\5B4758C25396ECF468E04F8E063287FF]
O43 - CFD: 30/08/2010 - 13:01:16 - [99692] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\freecompressor Air
O47 - AAKE:Key Export SP - "C:\Program Files\CambridgeSoft\ChemOffice2004\Chem3D\Chem3D.exe" [Enabled] .(.CambridgeSoft Corp. - Chem3D Ultra.) -- C:\Program Files\CambridgeSoft\ChemOffice2004\Chem3D\Chem3D.exe
O47 - AAKE:Key Export SP - "C:\Program Files\CambridgeSoft\ChemOffice2004\ChemDraw\ChemDraw.exe" [Enabled] .(.CambridgeSoft Corp. - ChemDraw Ultra 8.0.) -- C:\Program Files\CambridgeSoft\ChemOffice2004\ChemDraw\ChemDraw.exe

EmptyTemp
EmptyFlash
Clique successivement sur l'icône H (pour effacer le rapport qui s'est affiché) puis sur l'icône de la "malette cachée par la feuille" .
Vérifie que toutes les lignes que je t'ai demandé de copier sont dans la fenêtre.
Et seulement ces lignes
Puis clique sur le bouton [OK]
A ce moment apparaîtra au début de chaque ligne
une petite case vide. [ ]
Ensuite clique sur Tous puis sur Nettoyer
Valide par Oui la désinstallation des programmes si demandé
Laisse l'outil travailler. Si un redémarrage est demandé accepte et redémarre le PC
Le rapport ZHPFixReport.txt s'affiche. Copie-colle le contenu de ce rapport dans ta réponse.

Le rapport ZHPFixReport.txt est enregistré sous C:\Program files\ZHPFix\ZHPFixReport.txt

Ensuite le scanne complet avec Malwarebytes' Anti-Malware version 1.51.0.1200

Post moi les rapports:

ZHPFixReport.txt

mbam.log

A+

Citer

grem

Posté(e) le 13 juillet 2011

Auteur

- Signaler

Posté(e) le 13 juillet 2011

Merci pour ton aide.

Voici les rapports :

Rapport de ZHPFix 1.12.3337 par Nicolas Coolman, Update du 08/07/2011

Fichier d'export Registre :

Run by Saskia at 11/07/2011 03:52:49

Windows XP Professional Service Pack 3 (Build 2600)

Web site : ZHPFix Fix de rapport

========== Logiciel(s) ==========

ABSENT Uninstall Process: c:\documents and settings\saskia\application data\advantage\advuninst.exes a trusted download.

are you sure you want to uninstall advantage support for daemon tools?

ABSENT Uninstall Process: c:\program files\accelrys\accord50\accordsk\rtdeinstall\setup.exe

========== Clé(s) du Registre ==========

SUPPRIME [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\advantage_DAEM]

SUPPRIME [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AccelrysAccordSDK51RT]

SUPPRIME Partiel Software Key: {1EF93620-4B15-4DB4-B0EA-889E2F187081}

SUPPRIME Key: HKCU\Software\JP595IR86O

SUPPRIME Key: HKCU\Software\NtWqIVLZEWZU

SUPPRIME Key: HKCU\Software\OW1T3CYG7T

SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\ForceRenive

SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}

SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}

SUPPRIME Key: HKLM\Software\Classes\Installer\Features\5B4758C25396ECF468E04F8E063287FF

========== Valeur(s) du Registre ==========

SUPPRIME RunValue: NtWqIVLZEWZU

ABSENT RunValue: NtWqIVLZEWZU

SUPPRIME AAKE KeyValue: C:\Program Files\CambridgeSoft\ChemOffice2004\Chem3D\Chem3D.exe

SUPPRIME AAKE KeyValue: C:\Program Files\CambridgeSoft\ChemOffice2004\ChemDraw\ChemDraw.exe

========== Elément(s) de donnée du Registre ==========

REMPLACE Value AntiVirusOverride : Good (0) - Bad (1)

========== Dossier(s) ==========

SUPPRIME Folder*: C:\Documents and Settings\Saskia\Local Settings\Application Data\freecompressor Air

SUPPRIME Temporaires Windows: : 56

SUPPRIME Flash Cookies: 131

========== Fichier(s) ==========

ABSENT File: c:\docume~1\saskia\locals~1\temp\jj2.exe

SUPPRIME c:\documents and settings\saskia\desktop\arbeitsplatz.lnk

SUPPRIME c:\documents and settings\saskia\desktop\originpro 8g.lnk

SUPPRIME c:\program files\originlab\origin8\origin8.exe

SUPPRIME c:\windows\tasks\adobeaamupdater-1.0-jÉrÉmy-saskia.job

SUPPRIME c:\windows\tasks\{bbaeaeaf-1275-40e2-bd6c-bc8f88bd114a}.job

SUPPRIME c:\program files\cambridgesoft\chemoffice2004\chem3d\chem3d.exe

SUPPRIME c:\program files\cambridgesoft\chemoffice2004\chemdraw\chemdraw.exe

SUPPRIME Temporaires Windows: : 333

SUPPRIME Flash Cookies: 70

========== Tache planifiée ==========

SUPPRIME Task: {BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}

========== Récapitulatif ==========

10 : Clé(s) du Registre

4 : Valeur(s) du Registre

1 : Elément(s) de donnée du Registre

3 : Dossier(s)

10 : Fichier(s)

2 : Logiciel(s)

1 : Tache planifiée

========== Chemin du fichier rapport ==========

C:\Program Files\ZHPDiag\ZHPFixReport.txt

End of the scan in 02mn 50s

et celui de MBAM :

Malwarebytes' Anti-Malware 1.51.0.1200

www.malwarebytes.org

Version de la base de données: 7076

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

12/07/2011 22:37:54

mbam-log-2011-07-12 (22-37-54).txt

Type d'examen: Examen complet (C:\|)

Elément(s) analysé(s): 376095

Temps écoulé: 2 heure(s), 2 minute(s), 41 seconde(s)

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 1

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 0

Fichier(s) infecté(s): 1

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ (Hijack.Zones) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

Dossier(s) infecté(s):

(Aucun élément nuisible détecté)

Fichier(s) infecté(s):

c:\WINDOWS\Jlujoa.exe (Trojan.FakeAV) -> Quarantined and deleted successfully.

Citer

tomtom95

Posté(e) le 13 juillet 2011

- Signaler

Posté(e) le 13 juillet 2011

Bonjour grem

Comment ce comporte le pc ?

Télécharge

Temp File Cleaner (TFC) de Old Timer :

•Enregistre-le sur le Bureau
•Enregistre (sauvegarde) tous tes travaux en cours et ferme les applications - quitte-les définitivement (l'outil les fermera de toute façon automatiquement)
•Double-clique sur TFC.exe
•Clique sur Start
•Laisse l'outil travailler (cela prend de quelques secondes à quelques minutes)
•Si l'outil demande à redémarrer :
Clique sur Yes
•Si l'outil ne propose pas le redémarrage
redémarrer manuellement.
Dans la barre de TFC il va y avoir un chiffre noté en rouge
indique le moi.

Refait une analyse avec ZHPDiag stp

Lance l'outil : double-clique sur ZHPDiag pour XP

Clique sur le Tournevis a droit en haut

Coche toutes les cases .
Puis Clique sur la petite loupe en haut à gauche pour débuter l'analyse :
L'analyse peut durer une dizaine de minutes.
Le rapport généré par l'outil se nomme ZHPDiag.txt
Clique sur le bouton avec l'appareil photo pour copier le contenu intégral du rapport généré par l'outil dans le presse-papier :
Dans ta prochaine réponse
clique sur les touches CTRL+V pour coller ce rapport.
Si tu rencontres un message d'erreur
cela signifie que le rapport est trop long. Il faut donc l'éditer en plusieurs parties en veillant bien à ne rien oublier
Tu peux aussi héberger le fichier contenant ce rapport ici
http://cjoint.com/
Indique ensuite dans ta prochaine réponse l'adresse d'hébergement de ce rapport pour que je puisse le télécharger et l'analyser.

A++

Citer

grem

Posté(e) le 13 juillet 2011

Auteur

- Signaler

Posté(e) le 13 juillet 2011

Oui merci, ca à l'air d'aller mieux.

Je ne sais pas s'il reste des choses à nettoyer.

En tout cas, il faut effectivement que j'arrête de faire n'importe quoi avec mon pc

Rapport de ZHPDiag v1.27.2405 par Nicolas Coolman, Update du 08/07/2011

Run by Saskia at 13/07/2011 03:09:32

Web site : ZHPDiag Outil de diagnostic

---\\ Web Browser

MSIE: Internet Explorer v8.0.6001.18702

MFIE: Mozilla Firefox v (Defaut)

GCIE: Google Chrome v12.0.742.112

---\\ System Information

Windows XP Professional Service Pack 3 (Build 2600)

Processor: x86 Family 6 Model 13 Stepping 8, GenuineIntel

Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 1022 MB (39% free)

System Restore: Activé (Enable)

System drive C: has 21 GB (28%) free of 75 GB

---\\ Logged in mode

Computer Name: JÉRÉMY

User Name: Saskia

All Users Names: SUPPORT_388945a0, Saskia, HelpAssistant, Guest, ASPNET, Administrator,

Unselected Option: None

Logged in as Administrator

---\\ Environnement Variables

~ %AppData%=C:\Documents and Settings\Saskia\Application Data\

~ %Desktop%=C:\Documents and Settings\Saskia\Desktop\

~ %Favorites%=C:\Documents and Settings\Saskia\Favorites\

~ %LocalAppData%=C:\Documents and Settings\Saskia\Local Settings\Application Data\

~ %StartMenu%=C:\Documents and Settings\Saskia\Start Menu\

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 21 Go of 75 Go)

D:\ CD-ROM drive (Not Inserted)

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK