[Résolu] Infection et ToolBars

Pianiste · le 28 août 2011

[Dylav] Suite de

Ouverture de page de Windows Explorer au démarrage [/Dylav]

Bonsoir,

comme tu me le demandes je te joins le rapport demandé :

Rapport de ZHPDiag v1.28.1343 par Nicolas Coolman, Update du 24/08/2011

Run by Jean-Paul at 27/08/2011 19:25:23

Web site : ZHPDiag Outil de diagnostic[/size]

---\\ Web Browser

MSIE: Internet Explorer v9.0.8112.16421 (Defaut)

---\\ Windows Product Information

Windows 7 Ultimate Edition, 32-bit Service Pack 1 (Build 7601)

Windows Server License Manager Script : OK

~ Windows® 7, OEM_SLP channel

System Locked Preinstallation (OEM_SLP) : OK

Windows ID Activation : OK

~ Windows Partial Key : 2C9T3

Windows License : OK

~ Windows Remaining Initializations Number : 5

Software Protection Service (Protection logicielle) : OK

Key Management Service client information : KO

Windows Automatic Updates : OK

Windows Activation Technologies : OK

---\\ System Information

~ Processor: x86 Family 6 Model 37 Stepping 5, GenuineIntel

~ Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 3575 MB (66% free)

System Restore: Activé (Enable)

System drive C: has 230 GB (88%) free of 259 GB

---\\ Logged in mode

~ Computer Name: JEAN-PAUL-PC

~ User Name: Jean-Paul

~ All Users Names: Jean-Paul, Administrateur,

~ Unselected Option: O45,O61,O62,O65,O66,O82

Logged in as Administrator

---\\ Environnement Variables

~ System Unit : C:\

~ %AppData% : C:\Users\Jean-Paul\AppData\Roaming\

~ %Desktop% : C:\Users\Jean-Paul\Desktop\

~ %Favorites% : C:\Users\Jean-Paul\Favorites\

~ %LocalAppData% : C:\Users\Jean-Paul\AppData\Local\

~ %StartMenu% : C:\Users\Jean-Paul\AppData\Roaming\Microsoft\Windows\Start Menu\

~ %Windir% : C:\Windows\

~ %System% : C:\Windows\system32\

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 230 Go of 259 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 207 Go of 368 Go)

E:\ Hard drive, Flash drive, Thumb drive (Free 28 Go of 49 Go)

F:\ Hard drive, Flash drive, Thumb drive (Free 48 Go of 49 Go)

G:\ Hard drive, Flash drive, Thumb drive (Free 31 Go of 39 Go)

H:\ CD-ROM drive (Not Inserted)

I:\ CD-ROM drive (Not Inserted)

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoDispScrSavPage: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK

[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK

[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK

~ Scan Security Center in 00mn 00s

---\\ Recherche particulière de fichiers génériques

[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.11/08/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320]

[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (....) (.14/07/2009 - 02:14:31.) -- C:\Windows\system32\rundll32.exe [44544]

[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]

[MD5.2C7332C222D1FE1FC57D622699A8C001] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.11/08/2011 - 21:51:38.) -- C:\Windows\system32\wininet.dll [1126912]

[MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/08/2011 - 13:17:54.) -- C:\Windows\system32\Winlogon.exe [286720]

[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\drivers\atapi.sys [21584]

[MD5.81189C3D7763838E55C397759D49007A] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/08/2011 - 06:39:00.) -- C:\Windows\system32\drivers\ntfs.sys [1211264]

[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) (.11/08/2011 - 13:21:24.) -- C:\Windows\system32\sppcomapi.dll [193536]

[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - (....) (.11/08/2011 - 13:08:50.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]

~ Scan Generic Processes in 00mn 00s

---\\ Etat des fichiers cachés (Caché/Total)

~ Mes Videos (My Videos) : 1/5

~ Mes Favoris (My Favorites) : 6/418

~ Mes Documents (My Documents) : 1/4

~ Mon Bureau (My Desktop) : 6/473

~ Menu demarrer (Programs) : 6/76

~ Scan Hidden Files in 00mn 00s

---\\ Processus lancés

[MD5.1191581F954444527B1F58EBD656848D] - (...) -- C:\Program Files\Auslogics\AusLogics Visual Styler\themehelpersvc.exe [116336] [PID.852]

[MD5.11A52CF7B265631DEEB24C6149309EFF] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [64952] [PID.1940]

[MD5.191D8ECCC40F05B52FAC0513F35BA01D] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe [810144] [PID.2040]

[MD5.CEDAC8448D6525268AD26CC5C39E49A1] - (.H.D.S. Hungary - Hard Disk Sentinel Engine.) -- C:\Program Files\Hard Disk Sentinel\HDSentinel.exe [4007936] [PID.116]

[MD5.B11CA38E3347438FDCA1695E7BCB9FA4] - (.Intel Corporation - Intel® PROSet Monitoring Service.) -- C:\Windows\system32\IProsetMonitor.exe [112800] [PID.464]

[MD5.080A5C39B6BFF500AA338292654935DE] - (...) -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe [884120] [PID.1528]

[MD5.BE0B3774113713059527FCF071CCDBFE] - (.Webroot Software, Inc. - Window Washer Engine.) -- C:\Program Files\Webroot\Washer\WasherSvc.exe [598856] [PID.2028]

[MD5.33BFCE71F407F24E5DFDB7DD46CE2D6D] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [449584] [PID.2316]

[MD5.D1AB72DB2BEDD2F255D35DA3DA0D4B16] - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe [141824] [PID.2332]

[MD5.6163A64C97ED1F2D9FCF7DEBCD774501] - (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe [2219184] [PID.2348]

[MD5.EE35095AFC7B82AC620EAB0C9B77A609] - (.Ashampoo Development GmbH & Co. KG - Ashampoo Live-Tuner Client.) -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 8\LiveTuner.exe [2655640] [PID.2428]

[MD5.6E3245DF783E58375B3465F03274743E] - (.Sun Microsystems, Inc. - Java™ Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696] [PID.2464]

[MD5.37036C07983EF1024B2FF3C28AAE5700] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [366640] [PID.3472]

[MD5.BB646927C878EF8B966ED168D4C712AE] - (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\system32\Macromed\Flash\FlashUtil10w_ActiveX.exe [243360] [PID.3376]

[MD5.542655F859AB73256089BA700A202D9B] - (.www.mipony.net - Mipony.) -- C:\Program Files\MiPony\MiPony.exe [1880576] [PID.2452]

[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [748336] [PID.1648]

[MD5.F26208B3C13B48670E055BAD116D6438] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [669696] [PID.1676]

[MD5.CF87A1DE791347E75B98885214CED2B8] - (.Microsoft Corporation - Service de la plateforme de protection logi.) -- C:\Windows\system32\sppsvc.exe [3179520] [PID.1168]

~ Scan Processes Running in 00mn 00s

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)

P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.6.1.629.) -- C:\Windows\system32\Adobe\Director\np32dsw.dll

P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX, LLC - DivX Web Player version 2.1.2.265.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

P2 - FPN: [HKLM] [@divx.com/DivX VOD Helper,version=1.0.0] - (.DivX, LLC. - DivX VOD Helper Plug-in.) -- C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_27 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.dll

P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plug-in allows you to open and edit files using Microsoft Office a.) -- C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.dll

P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.11.2852] - (...) -- C:\Program Files\Sonne DVD Burner\Real\browser\plugins\nppl3260.dll (.not file.)

P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.12.46] - (...) -- C:\Program Files\Sonne DVD Burner\Real\browser\plugins\nppl3260.dll (.not file.)

P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.1662] - (...) -- C:\Program Files\Sonne DVD Burner\Real\browser\plugins\nprpjplug.dll (.not file.)

P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.46] - (...) -- C:\Program Files\Sonne DVD Burner\Real\browser\plugins\nprpjplug.dll (.not file.)

P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.0.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

~ Scan Firefox Browser in 00mn 00s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search Microsoft.com

R0 - HKUS\S-1-5-21-855417616-2033942676-3939337983-1000\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R1 - HKUS\S-1-5-21-855417616-2033942676-3939337983-1000\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll

R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0

~ Scan IE Browser in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

~ Scan Proxy management in 00mn 00s

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,userinit.exe

F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe

~ Scan Keys in 00mn 00s

---\\ Redirection du fichier Hosts (O1)

~ Scan Hosts File in 00mn 00s

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} Clé orpheline

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} . (.DivX, LLC - DivX Plus Web Player HTML5 <video> version.) -- C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL

O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java™ Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

~ Scan BHO in 00mn 00s

---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

O4 - HKLM\..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (.not file.)

O4 - HKLM\..\Run: [uSB-Set] wscript C:\Program Files\USB-set\TSR.vbe (.not file.)

O4 - HKLM\..\Run: [egui] . (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe

O4 - HKLM\..\Run: [TNOD UP] . (.Tukero[X]Team - TNod User & Password Finder.) -- C:\Program Files\TNod User & Password Finder\TNODUP.exe

O4 - HKLM\..\Run: [Nero DriveSpeed] C:\PROGRA~1\Ahead\Nero Toolkit\DriveSpeed.exe (.not file.)

O4 - HKLM\..\Run: [Ashampoo WinOptimizer Live-Tuner] . (.Ashampoo Development GmbH & Co. KG - Ashampoo Live-Tuner Client.) -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 8\LiveTuner.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java™ Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe

~ Scan Application in 00mn 00s

---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Users\Jean-Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\1-Click Cleaner.lnk . (.Yamicsoft.) -- C:\Program Files\Yamicsoft\Windows 7 Manager\1-ClickCleaner.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\ATF-Cleaner.lnk . (.Atribune.org.) -- E:\Logiciels à installer de suite\01-Bureautique-Utilitaires\ATF-Cleaner.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Audacity.lnk . (...) -- C:\Program Files\Audacity\audacity.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Auslogics BoostSpeed.lnk . (.Auslogics.) -- C:\Program Files\Auslogics\Auslogics BoostSpeed\BoostSpeed.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Auslogics Disk Defrag.lnk . (.Auslogics.) -- C:\Program Files\Auslogics\Auslogics Disk Defrag\DiskDefrag.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Auslogics Registry Defrag.lnk . (.Auslogics.) -- C:\Program Files\Auslogics\Auslogics Registry Defrag\RegistryDefrag.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\AusLogics Visual Styler.lnk . (.AusLogics.) -- C:\Program Files\Auslogics\AusLogics Visual Styler\visualstyler.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Boots windows.lnk . (...) -- E:\Logiciels à installer de suite\02-Utilitaires durs\Boost Windows 2009 portable\Boost.Windows.2009_2.1.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Clean Disk Security.lnk . (.Kevin Solway.) -- C:\Program Files\Clean Disk Security\clndisk.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\ClearTweak.lnk . (.ioIsland.com.) -- C:\Program Files\ioIsland\ClearTweak\ClearTweak.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Code Postal.lnk . (...) -- C:\Program Files\Code Postal\CodePostal.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Comptabilité.lnk . (.CodeLathe LLC.) -- C:\Program Files\MoneyManagerEx\bin\mmex.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\DivX Movies.lnk . (...) -- C:\Users\Jean-Paul\Videos\DivX Movies

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Duplicate Cleaner.lnk . (.DigitalVolcano.) -- C:\Program Files\Duplicate Cleaner\DuplicateCleaner.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Glary Utilities.lnk . (.Glarysoft Ltd.) -- C:\Program Files\Glary Utilities\Integrator.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Hard Disk Sentinel.lnk . (.H.D.S. Hungary.) -- C:\Program Files\Hard Disk Sentinel\HDSentinel.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Icones.lnk . (.Stardock Corporation.) -- C:\Program Files\Stardock\Object Desktop\IconPackager\IconPackager.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\IcoSauve.lnk . (.Pierre TORRIS.) -- C:\Program Files\IcoSauve\IcoSauve.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\JumpRegistry.lnk . (.Pierre TORRIS.) -- E:\Logiciels à installer de suite\01-Bureautique-Utilitaires\Softs sympas\jump_registry\jump_registry\JumpRegistry.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\jv16 PowerTools 2011.lnk . (.Macecraft Software.) -- C:\Program Files\jv16 PowerTools 2011\jv16PT.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\LogonStudio.lnk . (.Stardock Corporation.) -- C:\Program Files\Stardock\Object Desktop\LogonStudio\LogonStudio.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Microsoft Excel 2010 (1).lnk . (...) -- C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\xlicons.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Microsoft Excel 2010 (2).lnk . (...) -- C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\pubs.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Microsoft Word 2010.lnk . (...) -- C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\wordicon.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\MiPony.lnk . (.www.mipony.net.) -- C:\Program Files\MiPony\MiPony.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\MysteryChronicles2.lnk . (...) -- C:\Games\Mystery Chronicles - Betrayals of Love\MysteryChronicles2.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Nero6.lnk . (.Ahead Software AG.) -- C:\Program Files\My Files\Nero6\Nero6.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Quick time pro.lnk . (.Microsoft Corporation.) -- C:\Windows\System32\control.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\SpywareBlaster.lnk . (...) -- E:\Logiciels à installer de suite\05-Sécurité\SpywareBlaster_4.4Portable\SpywareBlaster.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\TheTimelessTownCE.lnk . (...) -- D:\Jeux divers arcade\en cours\Timeless - The Forgotten Town Collector's Edition\TheTimelessTownCE.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Window Washer.lnk . (.Webroot Software, Inc..) -- C:\Program Files\Webroot\Washer\wwDisp.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Windows 7 Manager.lnk . (.Yamicsoft.) -- C:\Program Files\Yamicsoft\Windows 7 Manager\Windows7Manager.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\WinISO.lnk . (.WinISO Computing Inc..) -- C:\Program Files\WinISO\WinISO.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\WinMend System Doctor.lnk . (.WinMend.com.) -- C:\Program Files\WinMend\System Doctor\SystemDoctor.exe

O4 - Global Startup: C:\Users\Jean-Paul\Desktop\Your Unin-staller!.lnk . (.URSoft,Inc.) -- C:\Program Files\Your Uninstaller! 7\urmain.exe

O4 - Global Startup: C:\Users\Jean-Paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Disk Cleaner.lnk . (...) -- C:\Program Files\Disk Cleaner\dclean.exe

O4 - Global Startup: C:\Users\Jean-Paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk . (.Gretech Corp..) -- C:\Program Files\GRETECH\GomPlayer\GOM.exe

O4 - Global Startup: C:\Users\Jean-Paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\Jean-Paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\MiPony.lnk . (.www.mipony.net.) -- C:\Program Files\MiPony\MiPony.exe

~ Scan Global Startup in 00mn 00s

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\PROGRA~1\MICROS~2\Office14\EXCEL.exe

O8 - Extra context menu item: Télécharger avec Mipony - (.not file.) - file:\\C:\Program Files\MiPony\Browser\IEContext.htm

~ Scan IE Menu Contextuel in 00mn 00s

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: Bloc Notes - {AF4F850B-68FF-404C-8417-549F86B1E236} . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\notepad.exe

O9 - Extra button: Bloc Notes - {DDE87865-83C5-48c4-8357-2F5B1AA84522} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet Explorer.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

~ Scan IE Extra Buttons in 00mn 00s

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

~ Scan Winsock in 00mn 00s

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) -

~ Scan Objets ActiveX in 00mn 00s

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{0B1F3139-0FA3-42CC-A52C-0DD46E7E4BE1}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\..\{8FFE0EFC-FD1E-4288-952E-A2D8734630D3}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\..\{E4A621EE-7491-43E2-AA23-885B8344779B}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{0B1F3139-0FA3-42CC-A52C-0DD46E7E4BE1}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{8FFE0EFC-FD1E-4288-952E-A2D8734630D3}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{E4A621EE-7491-43E2-AA23-885B8344779B}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{0B1F3139-0FA3-42CC-A52C-0DD46E7E4BE1}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{8FFE0EFC-FD1E-4288-952E-A2D8734630D3}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{E4A621EE-7491-43E2-AA23-885B8344779B}: DhcpNameServer = 192.168.1.1

~ Scan Domain in 00mn 00s

---\\ Protocole additionnel (O18)

O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll

O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll

O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll

O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll

O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll

O18 - Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll

O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll

O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll

O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll

O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll

O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll

O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

~ Scan Protocole Additionnel in 00mn 00s

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

O21 - SSODL: IconPackager Repair - {1799460C-0BC8-4865-B9DF-4A36CD703FF0} . (.Stardock.net, Inc - IconPackager Repair Module.) -- C:\Program Files\Stardock\Object Desktop\IconPackager\iprepair.dll

~ Scan SSODL in 00mn 00s

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: AusLogics Windows Themes Helper (ALThemeHelper) . (...) - C:\Program Files\Auslogics\AusLogics Visual Styler\themehelpersvc.exe

O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Smart Security\ekrn.exe

O23 - Service: Intel® PROSet Monitoring Service (Intel® PROSet Monitoring Service) . (.Intel Corporation - Intel® PROSet Monitoring Service.) - C:\Windows\system32\IProsetMonitor.exe

O23 - Service: KMService (KMService) . (...) - C:\Windows\system32\srvany.exe

O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: Ashampoo LiveTuner Service (WO_LiveService) . (...) - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe

O23 - Service: Window Washer Engine (wwEngineSvc) . (.Webroot Software, Inc. - Window Washer Engine.) - C:\Program Files\Webroot\Washer\WasherSvc.exe

~ Scan Services in 00mn 00s

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(...) - (.not file.)

~ Scan Desktop Component in 00mn 00s

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize.job

[MD5.A20E95E94743C7DAA5483FEFB05B02A8] [APT] [GlaryInitialize] (.Glarysoft Ltd.) -- C:\Program Files\Glary Utilities\initialize.exe

[MD5.CEDAC8448D6525268AD26CC5C39E49A1] [APT] [Hard Disk Sentinel_Jean_2DPaul] (.H.D.S. Hungary.) -- C:\Program Files\Hard Disk Sentinel\HDSentinel.exe

~ Scan Scheduled Task in 00mn 06s

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys

O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys

O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\system32\drivers\csc.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys

O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys

O41 - Driver: (ehdrv) . (.ESET - ESET Helper driver.) - C:\Windows\system32\DRIVERS\ehdrv.sys

O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys

O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys

O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys

O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys

O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys

O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys

O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\system32\DRIVERS\serial.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys

O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys

O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys

~ Scan Drivers in 00mn 00s

---\\ Logiciels installés (O42)

O42 - Logiciel: 7-Zip 9.20 - (.Pas de propriétaire.) [HKLM] -- 7-Zip

O42 - Logiciel: Acoustica MP3 To Wave Converter PLUS - (.Acoustica, Inc..) [HKLM] -- Acoustica MP3 To Wave Converter PLUS

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player

O42 - Logiciel: Ashampoo WinOptimizer 8 v.8.04 - (.Ashampoo GmbH & Co. KG.) [HKLM] -- Ashampoo WinOptimizer 8_is1

O42 - Logiciel: Audacity 1.2.6 - (.Pas de propriétaire.) [HKLM] -- Audacity_is1

O42 - Logiciel: AusLogics Visual Styler - (.Auslogics Software Pty. Ltd..) [HKLM] -- {1A0667AB-BC3F-4ADA-AB4E-C1C65730F189}_is1

O42 - Logiciel: Auslogics BoostSpeed - (.Auslogics Software Pty Ltd.) [HKLM] -- {7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1

O42 - Logiciel: Auslogics Disk Defrag - (.Auslogics Software Pty Ltd.) [HKLM] -- {DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1

O42 - Logiciel: Auslogics Registry Defrag - (.Auslogics Software Pty Ltd.) [HKLM] -- {D627784F-B3EE-44E8-96B1-9509B991EA34}_is1

O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner

O42 - Logiciel: Captcha.trader Mipony Plugin 1.0 - (.Pas de propriétaire.) [HKLM] -- Captcha.trader Mipony Plugin

O42 - Logiciel: Clean Disk Security 7.93 - (.Kevin Solway.) [HKLM] -- Clean Disk Security

O42 - Logiciel: Code Postal 1.2 - (.SCATLAWS.) [HKLM] -- Code Postal_is1

O42 - Logiciel: Configuration DivX - (.DivX, LLC.) [HKLM] -- DivX Setup

O42 - Logiciel: DFX for Windows Media Player - (.Power Technology.) [HKLM] -- DFX for Windows Media Player

O42 - Logiciel: Definition update for Microsoft Office 2010 (KB982726) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{06C723B9-ADF5-42BC-B949-D14D6C6628B9}

O42 - Logiciel: Disk Cleaner (remove only) - (.Pas de propriétaire.) [HKLM] -- DiskCleaner

O42 - Logiciel: Duplicate Cleaner 2.0.6 - (.DigitalVolcano.) [HKLM] -- Duplicate Cleaner

O42 - Logiciel: FastStone Capture 6.3 - (.FastStone Soft.) [HKLM] -- FastStone Capture

O42 - Logiciel: FastStone Image Viewer 4.6 - (.FastStone Soft.) [HKLM] -- FastStone Image Viewer

O42 - Logiciel: FastStone Photo Resizer 3.0 - (.FastStone Soft..) [HKLM] -- FastStone Photo Resizer

O42 - Logiciel: GOM Player - (.Gretech Corporation.) [HKLM] -- GOM Player

O42 - Logiciel: Glary Utilities Pro 2.34.0.1190 - (.Glarysoft Ltd.) [HKLM] -- Glary Utilities_is1

O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM] -- HPExtendedCapabilities

O42 - Logiciel: HP Deskjet F4200 All-In-One Driver Software 13.0 Rel. 3 - (.HP.) [HKLM] -- {A00C9114-40E6-4C70-A619-7DF264B23485}

O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM] -- HP Imaging Device Functions

O42 - Logiciel: HP Photosmart Essential 3.5 - (.HP.) [HKLM] -- HP Photosmart Essential

O42 - Logiciel: HP Smart Web Printing 4.51 - (.HP.) [HKLM] -- HP Smart Web Printing

O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools

O42 - Logiciel: Hard Disk Sentinel PRO - (.HDS.) [HKLM] -- Hard Disk Sentinel_is1

O42 - Logiciel: IcoSauve - (.Pierre TORRIS.) [HKLM] -- IcoSauve_is1

O42 - Logiciel: IconPackager - (.Stardock Corporation.) [HKLM] -- IconPackager

O42 - Logiciel: IconPackager - (.Stardock Corporation.) [HKLM] -- {6BF04C63-EAC0-4F19-9E88-9A745493E7BF}

O42 - Logiciel: Intel® Network Connections 16.4.69.0 - (.Intel.) [HKLM] -- PROSetDX

O42 - Logiciel: Intel® Network Connections 16.4.69.0 - (.Intel.) [HKLM] -- {AA1675E3-4D03-4808-BDF5-992619544D12}

O42 - Logiciel: LogonStudio - (.Pas de propriétaire.) [HKLM] -- LogonStudio

O42 - Logiciel: MRU-Blaster v1.5 (Database 3/28/2004) - (.Javacool Software LLC.) [HKLM] -- MRU-Blaster_is1

O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.1.1800 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1

O42 - Logiciel: MiPony 1.5.0 - (.Pas de propriétaire.) [HKLM] -- MiPony

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0015-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0016-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0018-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0019-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001A-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001B-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-0401-0000-0000000FF1CE}_Office14.PROPLUS_{1A43C155-3DDA-43C9-92C5-0E7D0B2B156D}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUS_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{99ACCA38-6DD3-48A8-96AE-A283C9759279}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-0413-0000-0000000FF1CE}_Office14.PROPLUS_{5072FEA2-862C-4BF0-9654-CB0DCBE2BE28}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{DEA87BE2-FFCC-4F33-9946-FCBE55A1E998}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-002C-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C8E4AA87-3E5A-4C70-8CB7-43FE25C99B74}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0044-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-006E-040C-0000-0000000FF1CE}_Office14.PROPLUS_{7C5C7E8C-F6D2-43AC-93A4-89E4FF7367E6}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-00A1-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}

O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-00BA-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}

O42 - Logiciel: Microsoft Office Professionnel Plus 2010 - (.Microsoft Corporation.) [HKLM] -- Office14.PROPLUS

O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack

O42 - Logiciel: MoneyManagerEx 0.9.7.0 - (.CodeLathe LLC.) [HKLM] -- 37153D93-6D91-4763-82BB-0DF646211ED0_is1

O42 - Logiciel: Mozilla Thunderbird (6.0) - (.Mozilla.) [HKLM] -- Mozilla Thunderbird (6.0)

O42 - Logiciel: Musereo Mono to Stereo Converter 2.9 - (.musereo.com.) [HKLM] -- Musereo Mono to Stereo Converter_is1

O42 - Logiciel: PowerISO - (.PowerISO Computing, Inc..) [HKLM] -- PowerISO

O42 - Logiciel: QuickTime Alternative 2.6.0 - (.Pas de propriétaire.) [HKLM] -- QuicktimeAlt_is1

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2539636

O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2518870

O42 - Logiciel: SolSuite 2009 v9.11 - (.TreeCardGames.com.) [HKLM] -- SolSuite_is1

O42 - Logiciel: USB-set 1.4 - (.Infoadom 38.) [HKLM] -- {B92B952E-4459-480F-A500-60D87F6F527F}_is1

O42 - Logiciel: Ulead PhotoImpact 7 version d'évaluation - (.Ulead System.) [HKLM] -- {68E6C142-9E12-45F4-88DD-C9F7F278FBD9}

O42 - Logiciel: Unlocker 1.9.0 - (.Cedrick Collomb.) [HKLM] -- Unlocker

O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871

O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2533523

O42 - Logiciel: Update for Microsoft Office 2010 (KB2494150) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}

O42 - Logiciel: VLC media player 1.2.0-git-20101128-0002 - (.VideoLAN.) [HKLM] -- VLC media player

O42 - Logiciel: WinISO 5.3 - (.WinISO Computing Inc..) [HKLM] -- WinISO_is1

O42 - Logiciel: WinMend System Doctor 1.5.8 - (.WinMend.com.) [HKLM] -- WinMend System Doctor_is1

O42 - Logiciel: WinRAR archiver - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver

O42 - Logiciel: Window Washer - (.Pas de propriétaire.) [HKLM] -- Window Washer

O42 - Logiciel: Your Uninstaller! 7 - (.URSoft, Inc..) [HKLM] -- YU2010_is1

O42 - Logiciel: ioIsland.com ClearTweak - (.Pas de propriétaire.) [HKLM] -- ioIsland.com ClearTweak

O42 - Logiciel: jv16 PowerTools 2011 - (.Macecraft Software.) [HKLM] -- jv16 PowerTools 2011

---\\ HKCU & HKLM Software Keys

[HKCU\Software\7-Zip]

[HKCU\Software\8322898]

[HKCU\Software\AC3filter]

[HKCU\Software\ALWIL Software]

[HKCU\Software\Acoustica]

[HKCU\Software\Adobe]

[HKCU\Software\AppDataLow\Software\Adobe]

[HKCU\Software\AppDataLow\Software\Microsoft]

[HKCU\Software\AppDataLow\Software\Yahoo]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\Apple Computer, Inc.]

[HKCU\Software\Ashampoo]

[HKCU\Software\Auslogics]

[HKCU\Software\Caphyon]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\CoreVorbis]

[HKCU\Software\DFX]

[HKCU\Software\DefaultID]

[HKCU\Software\DivX]

[HKCU\Software\ESET]

[HKCU\Software\Fenomen Games]

[HKCU\Software\GNU]

[HKCU\Software\GRETECH]

[HKCU\Software\Gabest]

[HKCU\Software\GlarySoft]

[HKCU\Software\HP]

[HKCU\Software\Haali]

[HKCU\Software\Hewlett-Packard]

[HKCU\Software\Intenium]

[HKCU\Software\JavaSoft]

[HKCU\Software\Licenses]

[HKCU\Software\Macromedia]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\Mozilla]

[HKCU\Software\Netscape]

[HKCU\Software\ODBC]

[HKCU\Software\Pierre Torris]

[HKCU\Software\Piriform]

[HKCU\Software\Policies]

[HKCU\Software\PowerISO]

[HKCU\Software\PowerTechnology]

[HKCU\Software\RealNetworks]

[HKCU\Software\SolwaySoftware]

[HKCU\Software\Stardock]

[HKCU\Software\Tukero[X]Team]

[HKCU\Software\URSoft]

[HKCU\Software\Ulead Systems]

[HKCU\Software\Webroot]

[HKCU\Software\WinRAR SFX]

[HKCU\Software\WinRAR]

[HKCU\Software\Xenocode]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\Yahoo]

[HKCU\Software\Yamicsoft]

[HKCU\Software\madFlac]

[HKLM\Software\ALWIL Software]

[HKLM\Software\ATI Technologies]

[HKLM\Software\Adobe]

[HKLM\Software\AppDataLow]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\Ashampoo]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Conduit]

[HKLM\Software\DFX]

[HKLM\Software\DivXNetworks]

[HKLM\Software\DivX]

[HKLM\Software\ESET]

[HKLM\Software\EnigmaSoftwareGroup]

[HKLM\Software\GNU]

[HKLM\Software\GRETECH]

[HKLM\Software\GlarySoft]

[HKLM\Software\Google]

[HKLM\Software\HD Sentinel]

[HKLM\Software\HP]

[HKLM\Software\HaaliMkx]

[HKLM\Software\Hewlett-Packard]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\Licenses]

[HKLM\Software\MOVDLTool]

[HKLM\Software\MSI]

[HKLM\Software\Macromedia]

[HKLM\Software\Malwarebytes' Anti-Malware]

[HKLM\Software\MimarSinan]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\ODBC]

[HKLM\Software\Piriform]

[HKLM\Software\Policies]

[HKLM\Software\PopCap]

[HKLM\Software\PowerTechnology]

[HKLM\Software\QTAlternative]

[HKLM\Software\RealAlternative]

[HKLM\Software\RealNetworks]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\S3R521]

[HKLM\Software\Sonic]

[HKLM\Software\Stardock]

[HKLM\Software\Tukero[X]Team]

[HKLM\Software\Ulead Systems]

[HKLM\Software\VideoLAN]

[HKLM\Software\WinISO]

[HKLM\Software\Windows]

[HKLM\Software\Winmend]

[HKLM\Software\Wow6432Node]

[HKLM\Software\Yahoo]

[HKLM\Software\oxxogames]

~ Scan Softwares in 00mn 00s

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 11/08/2011 - 16:50:00 - [3511045] ----D- C:\Program Files\7-Zip

O43 - CFD: 11/08/2011 - 17:51:14 - [8822486] ----D- C:\Program Files\Acoustica MP3 To Wave Converter PLUS

O43 - CFD: 11/08/2011 - 16:37:14 - [116541972] ----D- C:\Program Files\Adobe

O43 - CFD: 11/08/2011 - 21:16:02 - [0] ----D- C:\Program Files\Alwil Software

O43 - CFD: 12/08/2011 - 19:46:28 - [69626465] ----D- C:\Program Files\Ashampoo

O43 - CFD: 11/08/2011 - 17:53:22 - [8691135] ----D- C:\Program Files\Audacity

O43 - CFD: 11/08/2011 - 17:09:46 - [73642298] ----D- C:\Program Files\Auslogics

O43 - CFD: 11/08/2011 - 16:42:14 - [4068448] ----D- C:\Program Files\CCleaner

O43 - CFD: 15/08/2011 - 00:14:48 - [0] ----D- C:\Program Files\CDBurnerXP

O43 - CFD: 25/08/2011 - 17:34:06 - [1748311] ----D- C:\Program Files\Clean Disk Security

O43 - CFD: 11/08/2011 - 17:38:06 - [657132] ----D- C:\Program Files\Code Postal

O43 - CFD: 27/08/2011 - 02:02:34 - [410759726] ----D- C:\Program Files\Common Files

O43 - CFD: 11/08/2011 - 17:54:06 - [4858033] ----D- C:\Program Files\DFX

O43 - CFD: 11/08/2011 - 16:45:46 - [462292] ----D- C:\Program Files\Disk Cleaner

O43 - CFD: 11/08/2011 - 17:55:26 - [102424974] ----D- C:\Program Files\DivX

O43 - CFD: 11/08/2011 - 16:46:38 - [1298297] ----D- C:\Program Files\Duplicate Cleaner

O43 - CFD: 11/08/2011 - 23:52:08 - [83226644] ----D- C:\Program Files\DVD Maker

O43 - CFD: 15/08/2011 - 22:31:40 - [66578230] ----D- C:\Program Files\ESET

O43 - CFD: 11/08/2011 - 17:49:18 - [1855785] ----D- C:\Program Files\FastStone Capture

O43 - CFD: 11/08/2011 - 17:48:56 - [9568993] ----D- C:\Program Files\FastStone Image Viewer

O43 - CFD: 11/08/2011 - 17:49:06 - [1531590] ----D- C:\Program Files\FastStone Photo Resizer

O43 - CFD: 11/08/2011 - 15:03:46 - [0] -SH-D- C:\Program Files\Fichiers communs

O43 - CFD: 17/08/2011 - 22:23:16 - [0] ----D- C:\Program Files\Games

O43 - CFD: 15/08/2011 - 17:38:04 - [19525543] ----D- C:\Program Files\Glary Utilities

O43 - CFD: 11/08/2011 - 17:39:54 - [20783971] ----D- C:\Program Files\GRETECH

O43 - CFD: 22/08/2011 - 00:30:28 - [21161016] ----D- C:\Program Files\Hard Disk Sentinel

O43 - CFD: 12/08/2011 - 02:56:46 - [199281941] ----D- C:\Program Files\HP

O43 - CFD: 15/08/2011 - 16:50:22 - [1017950] ----D- C:\Program Files\IcoSauve

O43 - CFD: 11/08/2011 - 17:47:20 - [2771337] --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD: 11/08/2011 - 15:13:02 - [7430207] ----D- C:\Program Files\Intel

O43 - CFD: 11/08/2011 - 23:52:08 - [5214966] ----D- C:\Program Files\Internet Explorer

O43 - CFD: 21/08/2011 - 23:22:32 - [1410370] ----D- C:\Program Files\ioIsland

O43 - CFD: 27/08/2011 - 02:01:32 - [88583954] ----D- C:\Program Files\Java

O43 - CFD: 14/08/2011 - 18:48:38 - [11320153] ----D- C:\Program Files\jv16 PowerTools 2011

O43 - CFD: 11/08/2011 - 18:45:26 - [6953194] ----D- C:\Program Files\Malwarebytes' Anti-Malware

O43 - CFD: 21/08/2011 - 23:36:28 - [0] ----D- C:\Program Files\McAfee Security Scan

O43 - CFD: 11/08/2011 - 16:54:10 - [39848379] ----D- C:\Program Files\Microsoft Analysis Services

O43 - CFD: 14/07/2009 - 11:01:22 - [147813426] ----D- C:\Program Files\Microsoft Games

O43 - CFD: 11/08/2011 - 16:55:36 - [830979151] ----D- C:\Program Files\Microsoft Office

O43 - CFD: 11/08/2011 - 16:55:36 - [1805760] ----D- C:\Program Files\Microsoft SQL Server Compact Edition

O43 - CFD: 11/08/2011 - 16:55:44 - [326800] ----D- C:\Program Files\Microsoft Synchronization Services

O43 - CFD: 11/08/2011 - 22:09:50 - [161479096] ----D- C:\Program Files\Microsoft Works

O43 - CFD: 13/08/2011 - 16:05:36 - [8167779] ----D- C:\Program Files\Microsoft.NET

O43 - CFD: 19/08/2011 - 18:10:38 - [7980442] ----D- C:\Program Files\MiPony

O43 - CFD: 11/08/2011 - 16:28:06 - [7076844] ----D- C:\Program Files\MoneyManagerEx

O43 - CFD: 20/08/2011 - 11:39:08 - [37858864] ----D- C:\Program Files\Mozilla Thunderbird

O43 - CFD: 11/08/2011 - 18:47:30 - [1450436] ----D- C:\Program Files\MRU-Blaster

O43 - CFD: 14/07/2009 - 06:52:32 - [25757] ----D- C:\Program Files\MSBuild

O43 - CFD: 11/08/2011 - 18:48:38 - [5150671] ----D- C:\Program Files\MSI

O43 - CFD: 13/08/2011 - 02:04:52 - [0] ----D- C:\Program Files\MSXML 4.0

O43 - CFD: 11/08/2011 - 17:40:58 - [5096950] ----D- C:\Program Files\Musereo

O43 - CFD: 20/08/2011 - 18:59:16 - [87508451] ----D- C:\Program Files\My Files

O43 - CFD: 11/08/2011 - 18:01:02 - [4696479] ----D- C:\Program Files\PowerISO

O43 - CFD: 23/08/2011 - 21:00:32 - [44377229] ----D- C:\Program Files\QuickTime Alternative

O43 - CFD: 14/07/2009 - 06:52:32 - [39159041] ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 15/08/2011 - 17:38:02 - [10634] ----D- C:\Program Files\RegDirXP

O43 - CFD: 12/08/2011 - 22:50:58 - [156190039] ----D- C:\Program Files\SolSuite

O43 - CFD: 11/08/2011 - 17:19:28 - [17003180] ----D- C:\Program Files\Stardock

O43 - CFD: 23/08/2011 - 02:35:06 - [0] ----D- C:\Program Files\The Otherside - Realm Of Eons

O43 - CFD: 15/08/2011 - 22:33:30 - [1985079] ----D- C:\Program Files\TNod User & Password Finder

O43 - CFD: 11/08/2011 - 17:47:20 - [71133990] ----D- C:\Program Files\Ulead Systems

O43 - CFD: 11/08/2011 - 22:08:42 - [228919] ----D- C:\Program Files\Unlocker

O43 - CFD: 11/08/2011 - 22:09:38 - [1277838] ----D- C:\Program Files\USB-set

O43 - CFD: 11/08/2011 - 18:42:58 - [83027566] ----D- C:\Program Files\VideoLAN

O43 - CFD: 11/08/2011 - 16:47:20 - [4231702] ----D- C:\Program Files\Webroot

O43 - CFD: 11/08/2011 - 17:58:20 - [49378937] ----D- C:\Program Files\Win7codecs

O43 - CFD: 11/08/2011 - 23:52:06 - [3050496] ----D- C:\Program Files\Windows Defender

O43 - CFD: 11/08/2011 - 23:52:08 - [7013496] ----D- C:\Program Files\Windows Journal

O43 - CFD: 11/08/2011 - 23:52:08 - [6181376] ----D- C:\Program Files\Windows Mail

O43 - CFD: 11/08/2011 - 23:52:08 - [8045826] ----D- C:\Program Files\Windows Media Player

O43 - CFD: 11/08/2011 - 15:03:46 - [12197556] ----D- C:\Program Files\Windows NT

O43 - CFD: 11/08/2011 - 23:52:08 - [4417800] ----D- C:\Program Files\Windows Photo Viewer

O43 - CFD: 11/08/2011 - 23:52:08 - [189952] ----D- C:\Program Files\Windows Portable Devices

O43 - CFD: 11/08/2011 - 23:52:08 - [6683807] ----D- C:\Program Files\Windows Sidebar

O43 - CFD: 11/08/2011 - 18:15:16 - [1164748] ----D- C:\Program Files\WinISO

O43 - CFD: 11/08/2011 - 17:23:14 - [32067048] ----D- C:\Program Files\WinMend

O43 - CFD: 11/08/2011 - 16:49:06 - [3310215] ----D- C:\Program Files\WinRAR

O43 - CFD: 11/08/2011 - 17:20:42 - [13983608] ----D- C:\Program Files\Yamicsoft

O43 - CFD: 11/08/2011 - 17:25:28 - [11297560] ----D- C:\Program Files\Your Uninstaller! 7

O43 - CFD: 27/08/2011 - 19:25:36 - [4016584] ----D- C:\Program Files\ZHPDiag

O43 - CFD: 11/08/2011 - 16:37:16 - [3606170] ----D- C:\Program Files\Common Files\Adobe

O43 - CFD: 11/08/2011 - 16:55:44 - [99136] ----D- C:\Program Files\Common Files\DESIGNER

O43 - CFD: 11/08/2011 - 17:54:06 - [3326095] ----D- C:\Program Files\Common Files\DFX

O43 - CFD: 11/08/2011 - 17:55:14 - [24656896] ----D- C:\Program Files\Common Files\DivX Shared

O43 - CFD: 12/08/2011 - 00:17:10 - [531477] ----D- C:\Program Files\Common Files\Hewlett-Packard

O43 - CFD: 12/08/2011 - 00:17:26 - [5665956] ----D- C:\Program Files\Common Files\HP

O43 - CFD: 11/08/2011 - 17:47:06 - [1150965] ----D- C:\Program Files\Common Files\InstallShield

O43 - CFD: 27/08/2011 - 02:02:34 - [1258951] ----D- C:\Program Files\Common Files\Java

O43 - CFD: 11/08/2011 - 19:28:08 - [313694808] ----D- C:\Program Files\Common Files\microsoft shared

O43 - CFD: 11/08/2011 - 17:55:16 - [4740928] ----D- C:\Program Files\Common Files\PX Storage Engine

O43 - CFD: 14/07/2009 - 04:37:06 - [2702] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 14/07/2009 - 04:37:06 - [41103783] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 11/08/2011 - 17:47:44 - [0] ----D- C:\Program Files\Common Files\SWF Studio

O43 - CFD: 14/07/2009 - 10:39:40 - [10815219] ----D- C:\Program Files\Common Files\System

O43 - CFD: 11/08/2011 - 16:47:24 - [106640] ----D- C:\Program Files\Common Files\Webroot Shared

O43 - CFD: 15/08/2011 - 18:54:10 - [128654334] ----D- C:\ProgramData\Adobe

O43 - CFD: 18/08/2011 - 23:59:36 - [244839] ----D- C:\ProgramData\Alawar Stargaze

O43 - CFD: 11/08/2011 - 21:16:02 - [1482391] ----D- C:\ProgramData\Alwil Software

O43 - CFD: 23/08/2011 - 21:00:32 - [13653] ----D- C:\ProgramData\Apple Computer

O43 - CFD: 14/07/2009 - 06:53:56 - [0] -SH-D- C:\ProgramData\Application Data

O43 - CFD: 11/08/2011 - 15:03:46 - [0] -SH-D- C:\ProgramData\Bureau

O43 - CFD: 15/08/2011 - 00:12:42 - [0] ----D- C:\ProgramData\Canneverbe Limited

O43 - CFD: 14/07/2009 - 06:53:56 - [0] -SH-D- C:\ProgramData\Desktop

O43 - CFD: 11/08/2011 - 17:54:06 - [38] ----D- C:\ProgramData\DFX

O43 - CFD: 11/08/2011 - 17:55:26 - [4964952] ----D- C:\ProgramData\DivX

O43 - CFD: 14/07/2009 - 06:53:56 - [0] -SH-D- C:\ProgramData\Documents

O43 - CFD: 15/08/2011 - 22:31:40 - [95892103] ----D- C:\ProgramData\ESET

O43 - CFD: 11/08/2011 - 15:03:46 - [0] -SH-D- C:\ProgramData\Favoris

O43 - CFD: 14/07/2009 - 06:53:56 - [0] -SH-D- C:\ProgramData\Favorites

O43 - CFD: 23/08/2011 - 23:47:32 - [77529] ----D- C:\ProgramData\Fenomen Games

O43 - CFD: 12/08/2011 - 00:21:22 - [40719] ----D- C:\ProgramData\Hewlett-Packard

O43 - CFD: 12/08/2011 - 00:22:04 - [20472224] ----D- C:\ProgramData\HP

O43 - CFD: 12/08/2011 - 00:18:46 - [8988] ----D- C:\ProgramData\HP Product Assistant

O43 - CFD: 20/08/2011 - 19:16:24 - [24] ----D- C:\ProgramData\Intenium

O43 - CFD: 21/08/2011 - 00:55:54 - [0] ----D- C:\ProgramData\iWin

O43 - CFD: 11/08/2011 - 18:45:24 - [7323127] ----D- C:\ProgramData\Malwarebytes

O43 - CFD: 21/08/2011 - 23:33:12 - [0] ----D- C:\ProgramData\McAfee

O43 - CFD: 11/08/2011 - 15:03:46 - [0] -SH-D- C:\ProgramData\Menu Démarrer

O43 - CFD: 25/08/2011 - 17:10:28 - [173600934] -S--D- C:\ProgramData\Microsoft

O43 - CFD: 13/08/2011 - 16:00:42 - [60244] ----D- C:\ProgramData\Microsoft Help

O43 - CFD: 11/08/2011 - 15:03:46 - [0] -SH-D- C:\ProgramData\Modèles

O43 - CFD: 22/08/2011 - 00:01:46 - [0] ----D- C:\ProgramData\PlayFirst

O43 - CFD: 17/08/2011 - 18:56:16 - [0] ----D- C:\ProgramData\PopCap Games

O43 - CFD: 20/08/2011 - 18:38:40 - [0] ----D- C:\ProgramData\Real

O43 - CFD: 15/08/2011 - 17:38:02 - [0] ----D- C:\ProgramData\RegDirXP

O43 - CFD: 17/08/2011 - 18:22:16 - [0] ----D- C:\ProgramData\SpinTop Games

O43 - CFD: 11/08/2011 - 17:38:28 - [8202910] ----D- C:\ProgramData\Stardock

O43 - CFD: 14/07/2009 - 06:53:56 - [0] -SH-D- C:\ProgramData\Start Menu

O43 - CFD: 11/08/2011 - 23:27:08 - [119] ----D- C:\ProgramData\Sun

O43 - CFD: 27/08/2011 - 02:30:30 - [0] ---AD- C:\ProgramData\TEMP

O43 - CFD: 14/07/2009 - 06:53:56 - [0] -SH-D- C:\ProgramData\Templates

O43 - CFD: 12/08/2011 - 03:32:42 - [4734862] ----D- C:\ProgramData\TreeCardGames

O43 - CFD: 27/08/2011 - 17:37:04 - [779] ----D- C:\ProgramData\usb-set

O43 - CFD: 11/08/2011 - 17:58:20 - [25541220] ----D- C:\ProgramData\Win7codecs

O43 - CFD: 11/08/2011 - 17:19:30 - [5106462] --H-D- C:\ProgramData\{1C533CDB-BAC7-4600-B3DE-0B628D9AC643}

O43 - CFD: 11/08/2011 - 18:22:02 - [76692] ----D- C:\Users\Jean-Paul\AppData\Roaming\Adobe

O43 - CFD: 18/08/2011 - 23:58:10 - [349444] ----D- C:\Users\Jean-Paul\AppData\Roaming\Alawar Stargaze

O43 - CFD: 21/08/2011 - 01:27:24 - [22947] ----D- C:\Users\Jean-Paul\AppData\Roaming\Anarchy

O43 - CFD: 12/08/2011 - 23:46:00 - [1369299] ----D- C:\Users\Jean-Paul\AppData\Roaming\Artogon

O43 - CFD: 12/08/2011 - 18:40:32 - [323079] ----D- C:\Users\Jean-Paul\AppData\Roaming\Auslogics

O43 - CFD: 19/08/2011 - 00:14:18 - [33807] ----D- C:\Users\Jean-Paul\AppData\Roaming\Boolat Games

O43 - CFD: 12/08/2011 - 02:23:04 - [0] ----D- C:\Users\Jean-Paul\AppData\Roaming\Boost Windows

O43 - CFD: 15/08/2011 - 00:12:42 - [0] ----D- C:\Users\Jean-Paul\AppData\Roaming\Canneverbe Limited

O43 - CFD: 17/08/2011 - 22:04:50 - [6933] ----D- C:\Users\Jean-Paul\AppData\Roaming\ChaYoWo Games

O43 - CFD: 11/08/2011 - 17:55:20 - [111616] ----D- C:\Users\Jean-Paul\AppData\Roaming\DivX

O43 - CFD: 17/08/2011 - 21:35:58 - [162137] ----D- C:\Users\Jean-Paul\AppData\Roaming\EleFun Games

O43 - CFD: 20/08/2011 - 23:45:32 - [226987] ----D- C:\Users\Jean-Paul\AppData\Roaming\Enki Games

O43 - CFD: 17/08/2011 - 22:56:46 - [512676] ----D- C:\Users\Jean-Paul\AppData\Roaming\ERS Game Studios

O43 - CFD: 15/08/2011 - 22:32:50 - [0] ----D- C:\Users\Jean-Paul\AppData\Roaming\ESET

O43 - CFD: 15/08/2011 - 20:40:24 - [2672987] ----D- C:\Users\Jean-Paul\AppData\Roaming\FastStone

O43 - CFD: 15/08/2011 - 19:16:06 - [4997440] ----D- C:\Users\Jean-Paul\AppData\Roaming\Frogwares

O43 - CFD: 25/08/2011 - 01:48:08 - [2294] ----D- C:\Users\Jean-Paul\AppData\Roaming\Funswitch

O43 - CFD: 20/08/2011 - 19:19:24 - [29504] ----D- C:\Users\Jean-Paul\AppData\Roaming\Fuzzy Bug Interactive

O43 - CFD: 13/08/2011 - 00:59:28 - [10429613] ----D- C:\Users\Jean-Paul\AppData\Roaming\GameInvest

O43 - CFD: 12/08/2011 - 18:29:46 - [25284] ----D- C:\Users\Jean-Paul\AppData\Roaming\GlarySoft

O43 - CFD: 14/08/2011 - 18:14:00 - [785] ----D- C:\Users\Jean-Paul\AppData\Roaming\GRETECH

O43 - CFD: 23/08/2011 - 23:36:10 - [147] ----D- C:\Users\Jean-Paul\AppData\Roaming\HillStoneAnimationStudios

O43 - CFD: 12/08/2011 - 14:00:52 - [44452] ----D- C:\Users\Jean-Paul\AppData\Roaming\HP

O43 - CFD: 11/08/2011 - 15:04:08 - [0] ----D- C:\Users\Jean-Paul\AppData\Roaming\Identities

O43 - CFD: 12/08/2011 - 15:15:08 - [76442] ----D- C:\Users\Jean-Paul\AppData\Roaming\iWin

O43 - CFD: 25/08/2011 - 01:59:02 - [32544] ----D- C:\Users\Jean-Paul\AppData\Roaming\Lazy Turtle Games

O43 - CFD: 12/08/2011 - 19:48:08 - [314] -SH-D- C:\Users\Jean-Paul\AppData\Roaming\lowsec

O43 - CFD: 12/08/2011 - 18:31:14 - [470] ----D- C:\Users\Jean-Paul\AppData\Roaming\Macromedia

O43 - CFD: 11/08/2011 - 18:45:30 - [0] ----D- C:\Users\Jean-Paul\AppData\Roaming\Malwarebytes

O43 - CFD: 14/07/2009 - 11:00:34 - [0] ----D- C:\Users\Jean-Paul\AppData\Roaming\Media Center Programs

O43 - CFD: 25/08/2011 - 17:10:28 - [9714649] -S--D- C:\Users\Jean-Paul\AppData\Roaming\Microsoft

O43 - CFD: 27/08/2011 - 19:23:22 - [363329] ----D- C:\Users\Jean-Paul\AppData\Roaming\Mipony

O43 - CFD: 26/08/2011 - 23:23:32 - [4096] ----D- C:\Users\Jean-Paul\AppData\Roaming\MoneyManagerEx

O43 - CFD: 11/08/2011 - 17:39:02 - [0] ----D- C:\Users\Jean-Paul\AppData\Roaming\Mozilla

O43 - CFD: 11/08/2011 - 17:43:06 - [649] ----D- C:\Users\Jean-Paul\AppData\Roaming\Musereo

O43 - CFD: 14/08/2011 - 23:59:40 - [43062] ----D- C:\Users\Jean-Paul\AppData\Roaming\Nero

O43 - CFD: 17/08/2011 - 19:08:40 - [1847] ----D- C:\Users\Jean-Paul\AppData\Roaming\Orneon

O43 - CFD: 22/08/2011 - 01:32:40 - [306516] ----D- C:\Users\Jean-Paul\AppData\Roaming\OtherSide Realm of Eons

O43 - CFD: 22/08/2011 - 00:01:46 - [903] ----D- C:\Users\Jean-Paul\AppData\Roaming\PlayFirst

O43 - CFD: 17/08/2011 - 18:23:32 - [9624] ----D- C:\Users\Jean-Paul\AppData\Roaming\PopCapv1003

O43 - CFD: 20/08/2011 - 18:38:40 - [0] ----D- C:\Users\Jean-Paul\AppData\Roaming\Real

O43 - CFD: 20/08/2011 - 01:58:10 - [39925] ----D- C:\Users\Jean-Paul\AppData\Roaming\Realore_Whiterra Roads Of Rome 3

O43 - CFD: 12/08/2011 - 03:41:16 - [164980] ----D- C:\Users\Jean-Paul\AppData\Roaming\SolSuite

O43 - CFD: 21/08/2011 - 00:10:14 - [167972] ----D- C:\Users\Jean-Paul\AppData\Roaming\Specialbit

O43 - CFD: 17/08/2011 - 19:18:10 - [5553] ----D- C:\Users\Jean-Paul\AppData\Roaming\SpinTop Games

O43 - CFD: 25/08/2011 - 16:58:16 - [66627534] ----D- C:\Users\Jean-Paul\AppData\Roaming\Thinstall

O43 - CFD: 11/08/2011 - 17:39:02 - [22505425] ----D- C:\Users\Jean-Paul\AppData\Roaming\Thunderbird

O43 - CFD: 11/08/2011 - 17:25:28 - [5683] ----D- C:\Users\Jean-Paul\AppData\Roaming\URSoft

O43 - CFD: 21/08/2011 - 00:50:18 - [15618] ----D- C:\Users\Jean-Paul\AppData\Roaming\Vast Studios

O43 - CFD: 11/08/2011 - 17:06:44 - [2247022] ----D- C:\Users\Jean-Paul\AppData\Roaming\Visual Styler

O43 - CFD: 14/08/2011 - 19:06:10 - [78603] ----D- C:\Users\Jean-Paul\AppData\Roaming\vlc

O43 - CFD: 11/08/2011 - 16:47:22 - [234181] ----D- C:\Users\Jean-Paul\AppData\Roaming\Webroot

O43 - CFD: 11/08/2011 - 17:58:20 - [1074] ----D- C:\Users\Jean-Paul\AppData\Roaming\Win7codecs

O43 - CFD: 12/08/2011 - 14:46:38 - [0] ----D- C:\Users\Jean-Paul\AppData\Roaming\WinRAR

O43 - CFD: 12/08/2011 - 00:20:02 - [0] ----D- C:\Users\Jean-Paul\AppData\Roaming\Yahoo!

O43 - CFD: 27/08/2011 - 18:32:10 - [9607557] ----D- C:\Users\Jean-Paul\AppData\Local\Adobe

O43 - CFD: 27/08/2011 - 17:57:14 - [1950597] ----D- C:\Users\Jean-Paul\AppData\Local\Ahead

O43 - CFD: 11/08/2011 - 15:03:56 - [0] -SH-D- C:\Users\Jean-Paul\AppData\Local\Application Data

O43 - CFD: 14/08/2011 - 14:13:48 - [4073] ----D- C:\Users\Jean-Paul\AppData\Local\DFX

O43 - CFD: 27/08/2011 - 18:50:06 - [1399111] ----D- C:\Users\Jean-Paul\AppData\Local\Diagnostics

O43 - CFD: 15/08/2011 - 22:32:50 - [12] ----D- C:\Users\Jean-Paul\AppData\Local\ESET

O43 - CFD: 11/08/2011 - 15:03:56 - [0] -SH-D- C:\Users\Jean-Paul\AppData\Local\Historique

O43 - CFD: 16/08/2011 - 03:19:20 - [34643434] ----D- C:\Users\Jean-Paul\AppData\Local\Microsoft

O43 - CFD: 11/08/2011 - 16:53:54 - [0] ----D- C:\Users\Jean-Paul\AppData\Local\Microsoft Help

O43 - CFD: 20/08/2011 - 18:38:40 - [0] ----D- C:\Users\Jean-Paul\AppData\Local\Real

O43 - CFD: 27/08/2011 - 19:23:42 - [3373242] ----D- C:\Users\Jean-Paul\AppData\Local\Temp

O43 - CFD: 11/08/2011 - 15:03:56 - [0] -SH-D- C:\Users\Jean-Paul\AppData\Local\Temporary Internet Files

O43 - CFD: 11/08/2011 - 18:47:46 - [0] ----D- C:\Users\Jean-Paul\AppData\Local\Thinstall

O43 - CFD: 17/08/2011 - 16:57:44 - [8966219] ----D- C:\Users\Jean-Paul\AppData\Local\Thunderbird

O43 - CFD: 12/08/2011 - 01:48:50 - [2337312] ----D- C:\Users\Jean-Paul\AppData\Local\VirtualStore

~ Scan Program Folder in 00mn 10s

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.55D89DA9033CCFC47CABE6E075BB4B2F] - 27/08/2011 - 16:41:12 ---A- . (...) -- C:\Windows\system32\PerfStringBackup.INI [1549700]

O44 - LFC:[MD5.5F6A78AC9E6A01183502E58DCD9D1C6B] - 27/08/2011 - 16:41:12 ---A- . (...) -- C:\Windows\system32\perfc009.dat [106190]

O44 - LFC:[MD5.2AE50AE1F3ECAA4A703C24236F367BAB] - 27/08/2011 - 16:41:12 ---A- . (...) -- C:\Windows\system32\perfc00C.dat [130548]

O44 - LFC:[MD5.364F6331481E3DC333A41093F46C1CF7] - 27/08/2011 - 16:41:12 ---A- . (...) -- C:\Windows\system32\perfh009.dat [615810]

O44 - LFC:[MD5.AC645D75BFA0B57B031BA5E4B7EB30FA] - 27/08/2011 - 16:41:12 ---A- . (...) -- C:\Windows\system32\perfh00C.dat [704242]

O44 - LFC:[MD5.0F18A4C98F461ADC4FAEB7BA18F44CAA] - 27/08/2011 - 16:37:42 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1659748]

O44 - LFC:[MD5.D74E3C688AA4F552EB9F55CB8EA67170] - 27/08/2011 - 16:36:54 ---A- . (...) -- C:\Windows\setupact.log [56]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 27/08/2011 - 16:36:54 ---A- . (...) -- C:\Windows\setuperr.log [0]

O44 - LFC:[MD5.A4106680D09FFEA2E2BDB4D5731CC07C] - 27/08/2011 - 16:36:51 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.8C4DEF3808FDFBF61C04F73148672874] - 27/08/2011 - 16:36:47 ---A- . (...) -- C:\Windows\PFRO.log [334]

O44 - LFC:[MD5.B412A5393E9BF796D97B12E0BDD1E12A] - 27/08/2011 - 01:15:04 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\system32\FlashPlayerCPLApp.cpl [404640]

O44 - LFC:[MD5.D42FFC8FF809E4F1BADB1F7C05E5F0E3] - 27/08/2011 - 01:01:31 ---A- . (.Sun Microsystems, Inc. - Java™ Platform SE binary.) -- C:\Windows\system32\deployJava1.dll [472808]

O44 - LFC:[MD5.1A90B36F219FFE260FF6C012D38D1B08] - 27/08/2011 - 01:01:31 ---A- . (.Sun Microsystems, Inc. - Java™ Platform SE binary.) -- C:\Windows\system32\java.exe [145184]

O44 - LFC:[MD5.36F1BDE30FB27A78A27DC13ADB5BE9EC] - 27/08/2011 - 01:01:31 ---A- . (.Sun Microsystems, Inc. - Java™ Platform SE binary.) -- C:\Windows\system32\javaw.exe [145184]

O44 - LFC:[MD5.872C7F9E8503EC348D3F179EAEE29768] - 27/08/2011 - 01:01:31 ---A- . (.Sun Microsystems, Inc. - Java™ Web Start Launcher.) -- C:\Windows\system32\javaws.exe [157472]

O44 - LFC:[MD5.5F237DF75D6C33B50AE2F5192CB15111] - 23/08/2011 - 20:00:30 ---A- . (.Apple Inc. - QuickTime Client DLL.) -- C:\Windows\system32\QuickTime.qts [57344]

O44 - LFC:[MD5.C01F52204549F95B8715A16933075D8E] - 23/08/2011 - 20:00:30 ---A- . (.Apple Inc. - QuickTimeVR DLL.) -- C:\Windows\system32\QuickTimeVR.qtx [90112]

O44 - LFC:[MD5.13001EB0A58B4DE96126B16AB15FD8CC] - 20/08/2011 - 17:38:39 ---A- . (.Real Networks, Inc - Real Networks C/C++ Runtime Library.) -- C:\Windows\system32\pncrt.dll [278528]

O44 - LFC:[MD5.33833B3EDA1B07EBD367FA9B38B23E60] - 20/08/2011 - 17:38:39 ---A- . (.RealNetworks, Inc. - 16 bit DirectX helper DLL.) -- C:\Windows\system32\pndx5016.dll [6656]

O44 - LFC:[MD5.B74E422BC81236042529DC8A42A18423] - 20/08/2011 - 17:38:39 ---A- . (.RealNetworks, Inc. - 32 bit DirectX helper DLL.) -- C:\Windows\system32\pndx5032.dll [5632]

O44 - LFC:[MD5.FC930F0D35CC25CE3FABCF8666A99E41] - 20/08/2011 - 17:38:39 ---A- . (.RealNetworks, Inc. - Real Player™ ActiveX Control.) -- C:\Windows\system32\rmoc3260.dll [185944]

O44 - LFC:[MD5.4FAE55469A56AA2B423E5E26FD1449D1] - 15/08/2011 - 15:43:50 ---A- . (.AVAST Software - avast! File System Filter Driver for Window.) -- C:\Windows\system32\drivers\aswmon.sys [96344]

O44 - LFC:[MD5.7857E0B4C817F69FF463EEA2C63E56F9] - 15/08/2011 - 15:43:50 ---A- . (.AVAST Software - avast! File System Filter Driver for Window.) -- C:\Windows\system32\drivers\aswmon2.sys [102616]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 14/08/2011 - 22:41:50 --HA- . (...) -- C:\Windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf [0]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 14/08/2011 - 13:53:09 RSHA- . (...) -- C:\IO.SYS [0]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 14/08/2011 - 13:53:09 RSHA- . (...) -- C:\MSDOS.SYS [0]

O44 - LFC:[MD5.165FF7193A5FC70454FF47DEBDEA170C] - 13/08/2011 - 14:38:53 ---A- . (...) -- C:\Windows\system32\FNTCACHE.DAT [416912]

O44 - LFC:[MD5.DBD138860DDC256CB8AF1D1DC5F7C56E] - 12/08/2011 - 17:54:58 ---A- . (...) -- C:\Windows\system32\config.nt [2577]

O44 - LFC:[MD5.8719DAC716A168E17FB7E3B249CCDB8B] - 11/08/2011 - 23:43:28 ---A- . (...) -- C:\Windows\hpoins28.dat [182023]

O44 - LFC:[MD5.B2E1698769229D8B6F7A68EB39E540FA] - 11/08/2011 - 23:21:52 ---A- . (...) -- C:\Windows\win.ini [438]

O44 - LFC:[MD5.872022ACD691CB5697CEFCE69E1FB82A] - 11/08/2011 - 23:19:57 ---A- . (...) -- C:\Windows\hpoins28.dat.temp [182265]

O44 - LFC:[MD5.F2C1E8F33D3ED8527B940E3CADB35B4C] - 11/08/2011 - 23:14:41 ---A- . (.Hewlett-Packard - HP Installer Coinstaller.) -- C:\Windows\system32\hpzids01.dll [452408]

O44 - LFC:[MD5.93686F0550566CD85F93A6A4CC029476] - 11/08/2011 - 23:14:41 ---A- . (.Hewlett-Packard - Hewlett-Packard WIA minidriver..) -- C:\Windows\system32\hpowiax7.dll [729088]

O44 - LFC:[MD5.99664B7364FACB53851D84160C4B782A] - 11/08/2011 - 23:14:41 ---A- . (.Hewlett-Packard - Preload Driver CoInstaller.) -- C:\Windows\system32\hppldcoi.dll [372736]

O44 - LFC:[MD5.0D16BFC5F18C4F52C6A0575AF27E02A4] - 11/08/2011 - 23:14:40 ---A- . (.Hewlett-Packard Co. - HP AiO Scan Driver - Tulip SCL2.) -- C:\Windows\system32\hpotscl6.dll [581632]

O44 - LFC:[MD5.D99200D970F264299117E20ED29F5057] - 11/08/2011 - 23:14:40 ---A- . (.Hewlett-Packard Co. - HP Scan VendorSetup/Co-Installer.) -- C:\Windows\system32\hpovst15.dll [303104]

O44 - LFC:[MD5.518318A103C888001054EFA1236E5033] - 11/08/2011 - 22:31:41 ---A- . (.Microsoft Corporation - Bibliothèque d'assistance au déploiement de.) -- C:\Windows\system32\dfshim.dll [1130824]

O44 - LFC:[MD5.A04C06A2142226D79DDA75920A496243] - 11/08/2011 - 22:31:35 ---A- . (.Pas de propriétaire - RemoteFX Helper.) -- C:\Windows\system32\RDVGHelper.exe [80896]

O44 - LFC:[MD5.C9FB8C3D650EF8BD76865EC20A19A5BC] - 11/08/2011 - 22:31:18 ---A- . (.Microsoft - Filtre du convertisseur RDP (redirecteur).) -- C:\Windows\system32\DShowRdpFilter.dll [252928]

O44 - LFC:[MD5.39B9273CA01364E115B464416CFB729B] - 11/08/2011 - 22:30:57 ---A- . (.Microsoft - robocopy.) -- C:\Windows\system32\Robocopy.exe [98816]

O44 - LFC:[MD5.737AFC772243C75E6AD17A7A8E8E23F9] - 11/08/2011 - 22:30:45 ---A- . (.Windows ® Codename Longhorn DDK provider - Services de gestion des polices.) -- C:\Windows\system32\fms.dll [93696]

O44 - LFC:[MD5.163A95975E1D8819E653AA3E961371CA] - 11/08/2011 - 22:30:42 ---A- . (.Twain Working Group - Gestionnaire de sources Twain_32 (Image Acq.) -- C:\Windows\twain_32.dll [51200]

O44 - LFC:[MD5.EB6C16CE0163AD282E95FCE5EE9BA518] - 11/08/2011 - 22:30:32 ---A- . (.Pas de propriétaire - Application PrintBrm.) -- C:\Windows\system32\PrintBrmUi.exe [66048]

O44 - LFC:[MD5.1DE21EC4A2232FF4F5298ADCAE7B3690] - 11/08/2011 - 22:30:30 ---A- . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\system32\iccvid.dll [82944]

O44 - LFC:[MD5.4380E59A170D88C4F1022EFF6719A8A4] - 11/08/2011 - 22:11:02 ---A- . (.NVIDIA Corporation - NVIDIA® nForce™ Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [143744]

O44 - LFC:[MD5.D320BF87125326F996D4904FE24300FC] - 11/08/2011 - 22:11:01 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [80256]

O44 - LFC:[MD5.46387FB17B086D16DEA267D5BE23A2F2] - 11/08/2011 - 22:11:01 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [22400]

O44 - LFC:[MD5.5CD5F9A5444E6CDCB0AC89BD62D8B76E] - 11/08/2011 - 22:11:01 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\system32\drivers\iaStorV.sys [332160]

O44 - LFC:[MD5.B3E25EE28883877076E0E1FF877D02E0] - 11/08/2011 - 22:11:01 ---A- . (.NVIDIA Corporation - NVIDIA® nForce™ RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [117120]

O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 11/08/2011 - 21:51:38 ---A- . (...) -- C:\Windows\system32\ieuinit.inf [72822]

O44 - LFC:[MD5.C5ACDBF61DF211BDCC2B5021B1405BB0] - 11/08/2011 - 21:02:37 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\system32\atmlib.dll [34304]

O44 - LFC:[MD5.ED4649A28AFE0B3DB93C3198BA48E34E] - 11/08/2011 - 21:02:37 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\system32\atmfd.dll [294912]

O44 - LFC:[MD5.4635935FC972C582632BF45C26BFCB0E] - 11/08/2011 - 17:53:37 ---A- . (...) -- C:\Windows\system32\srvany.exe [8192]

O44 - LFC:[MD5.B18225739ED9CAA83BA2DF966E9F43E8] - 11/08/2011 - 17:45:23 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys [41272]

O44 - LFC:[MD5.ECA00EED9AB95489007B0EF84C7149DE] - 11/08/2011 - 17:45:20 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [22712]

O44 - LFC:[MD5.0F84C058D15C85204CD98FE2C3361039] - 11/08/2011 - 16:47:37 ---A- . (...) -- C:\Windows\ULEAD32.INI [3688]

O44 - LFC:[MD5.D31C4D1BAA3C1651DB975FC5B36565C8] - 11/08/2011 - 16:47:29 ---A- . (.Twain Working Group - Twain Source Manager (Image Acquisition Int.) -- C:\Windows\system32\TWAIN.DLL [87328]

O44 - LFC:[MD5.E2D4BA3248CB1DCB51383267868715E5] - 11/08/2011 - 16:47:29 ---A- . (.Twain Working Group - Twain.dll Client's 32-Bit Thunking Server.) -- C:\Windows\system32\TWUNK_32.EXE [69632]

O44 - LFC:[MD5.DADD2623DFD5D8F97D48F6FE74AD9A89] - 11/08/2011 - 16:47:29 ---A- . (.Twain Working Group - Twain_32 Source Manager (Image Acquisition.) -- C:\Windows\system32\TWAIN_32.DLL [77312]

O44 - LFC:[MD5.74B8802CE5CD6F4E7AC83152E0E17D25] - 11/08/2011 - 16:47:29 ---A- . (.Twain Working Group - Twain_32.dll Client's 16-Bit Thunking Serve.) -- C:\Windows\system32\TWUNK_16.EXE [48560]

O44 - LFC:[MD5.D9690B9A93BEAD17E865A64B8E67D37F] - 11/08/2011 - 16:33:39 --HA- . (...) -- C:\Windows\system32\v3shrtkgn.dll [81920]

O44 - LFC:[MD5.D087C492EB897B902CA01DBE008A05E7] - 11/08/2011 - 16:16:54 -SHA- . (...) -- C:\Windows\System5537 Data.Repository [22]

O44 - LFC:[MD5.802323008E9F7575A2CE4E89CCF36250] - 11/08/2011 - 15:47:15 ---A- . (.Webroot Software, Inc. - Window Washer Uninstaller.) -- C:\Windows\Unwash6.exe [194888]

O44 - LFC:[MD5.4A75292A737477F2D803EF10A8E4E6BF] - 11/08/2011 - 15:41:13 ---A- . (.mst software GmbH, Germany - mst Defrag SDK Boot.) -- C:\Windows\system32\DfSdkBt.exe [28160]

O44 - LFC:[MD5.B11CA38E3347438FDCA1695E7BCB9FA4] - 11/08/2011 - 14:12:57 ---A- . (.Intel Corporation - Intel® PROSet Monitoring Service.) -- C:\Windows\system32\IPROSetMonitor.exe [112800]

O44 - LFC:[MD5.C3727A0867CFC3E057080C321DB58A15] - 11/08/2011 - 13:49:47 ---A- . (...) -- C:\Windows\system32\license.rtf [57704]

O44 - LFC:[MD5.6A71656299DC62360DF20ED922BBF7EB] - 09/08/2011 - 16:17:38 ---A- . (.Intel Corporation - Intel ® Network Connections Driver Uninst.) -- C:\Windows\system32\PROUnstl.exe [272584]

O44 - LFC:[MD5.4E9C27CCB18D0962477CC3D8473ABB1D] - 09/08/2011 - 16:17:37 ---A- . (...) -- C:\Windows\system32\e1k6232.din [3138]

O44 - LFC:[MD5.A8CD1BBDD41C21757D36772BA57201FE] - 09/08/2011 - 16:17:37 ---A- . (.Intel Corporation - Intel® Gigabit Adapter Event-Log Message.) -- C:\Windows\system32\e1kmsg.dll [68264]

O44 - LFC:[MD5.20C70A4226C9A066D2EAD0C814083A95] - 09/08/2011 - 16:17:37 ---A- . (.Intel Corporation - Intel® Gigabit Adapter NDIS 6.x driver.) -- C:\Windows\system32\drivers\e1k6232.sys [266408]

O44 - LFC:[MD5.4192468FB10D604673BC46AC50AFA22F] - 09/08/2011 - 16:17:37 ---A- . (.Intel Corporation - Intel® Network Interface Card CoInstaller.) -- C:\Windows\system32\NicCo36.dll [28792]

O44 - LFC:[MD5.27192EE46D57C6E595498D0D585C779E] - 09/08/2011 - 16:17:37 ---A- . (.Intel Corporation - Intel® Network Interface Card CoInstaller.) -- C:\Windows\system32\NicInstK.dll [78016]

O44 - LFC:[MD5.8C3D0C73A0850A0EE62DF9EC36DBDE80] - 09/08/2011 - 16:17:16 ---A- . (...) -- C:\Windows\system32\SetupBD.din [1904]

O44 - LFC:[MD5.541AF4542DB70E3F194C4854EA635F91] - 09/08/2011 - 16:17:01 ---A- . (.Intel Corporation - NDIS 6.1 Advanced Networking Services..) -- C:\Windows\system32\drivers\iANSW60.sys [139488]

O44 - LFC:[MD5.8C7519B1935FAF236569D77FECCB70BE] - 09/08/2011 - 16:17:01 ---A- . (.Intel Corporation - PRONtObj Module.) -- C:\Windows\system32\PRONtObj.dll [239768]

O44 - LFC:[MD5.2BF8393F98AF021BDD385E608602958B] - 04/08/2011 - 13:47:30 --H-- . (...) -- C:\Windows\urt.dat [25]

O44 - LFC:[MD5.03783D0840B2C54D7665248425C74417] - 20/11/2010 - 06:23:54 ---A- . (...) -- C:\Windows\system32\dosx.exe [53600]

O44 - LFC:[MD5.C5DEA5B95AF9AA981C88CAB94A58213E] - 20/11/2010 - 04:52:32 ---A- . (...) -- C:\Windows\system32\locale.nls [419880]

O44 - LFC:[MD5.5C18CD22BE4628865FCB63337A6E5EF6] - 10/11/2010 - 02:45:49 ---A- . (...) -- C:\Windows\system32\ScavengeSpace.xml [10429]

O44 - LFC:[MD5.B8CBB46B42570D373C9933FBDF25EBCE] - 05/11/2010 - 03:20:53 ---A- . (...) -- C:\Windows\system32\systemsf.ebd [146852]

O44 - LFC:[MD5.C236A8735A48B165A2A7724357DBE332] - 05/11/2010 - 03:20:45 ---A- . (...) -- C:\Windows\system32\RacRules.xml [105559]

O44 - LFC:[MD5.75A423A1C60E6814B81F621944B1D90D] - 08/10/2009 - 02:51:24 ---A- . (...) -- C:\Windows\hpomdl28.dat.temp [442]

~ Scan Files in 00mn 47s

---\\ Contrôle du Safe Boot (CSB) (O49)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d'extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\system32\Drivers\ipnat.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\system32\Drivers\nsiproxy.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\system32\Drivers\rdpencdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d'extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys

~ Scan CSB in 00mn 00s

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\system32\iccvid.dll

O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\system32\DivX.dll

O52 - TDSD: \Drivers32\"vidc.yv12"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\system32\DivX.dll

O52 - TDSD: \Drivers32\"vidc.XVID"="xvidvfw.dll" . (...) -- C:\Windows\system32\xvidvfw.dll

O52 - TDSD: \Drivers32\"msacm.l3pacm"="l3codecp.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Audio Layer-3 Codec for MSACM.) -- C:\Windows\system32\l3codecp.acm

O52 - TDSD: \Drivers32\"msacm.aacacm"="AACACM.acm" . (.fccHandler - AAC ACM Codec.) -- C:\Windows\system32\AACACM.acm

O52 - TDSD: \Drivers32\"msacm.lameacm"="lameACM.acm" . (.http://lame.sourceforge.net/ - LAME MP3 Encoder for MSACM.) -- C:\Windows\system32\lameACM.acm

O52 - TDSD: \Drivers32\"msacm.ac3acm"="ac3acm.acm" . (.fccHandler - AC-3 ACM Codec.) -- C:\Windows\system32\ac3acm.acm

O52 - TDSD: \Drivers32\"VIDC.LAGS"="lagarith.dll" . (.Pas de propriétaire - Lagarith.) -- C:\Windows\system32\lagarith.dll

O52 - TDSD: \Drivers32\"VIDC.FFDS"="ff_vfw.dll" . (...) -- C:\Windows\system32\ff_vfw.dll

O52 - TDSD: \Drivers32\"vidc.x264"="x264vfw.dll" . (...) -- C:\Windows\system32\x264vfw.dll

O52 - TDSD: \Drivers32\"msacm.ac3filter"="ac3filter.acm" . (...) -- C:\Windows\system32\ac3filter.acm

O52 - TDSD: \Drivers32\"msacm.avis"="ff_acm.acm" . (.Pas de propriétaire - ffdshow Audio Decoder.) -- C:\Windows\system32\ff_acm.acm

O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \drivers.desc\"wdmaud.drv"="Pilote de fonction UAA 1.1 Microsoft pour High Definition Audio" . (...) -- (.not file.)

O52 - TDSD: \drivers.desc\"DivX.dll"="DivX 6.9.2 Codec" . (...) -- (.not file.)

O52 - TDSD: \drivers.desc\"l3codecp.acm"="Fraunhofer IIS MPEG Layer-3 Codec Professional" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Audio Layer-3 Codec for MSACM.) -- C:\Windows\system32\l3codecp.acm

O52 - TDSD: \drivers.desc\"aacacm.acm"="AAC ACM Codec" . (.fccHandler - AAC ACM Codec.) -- C:\Windows\system32\aacacm.acm

O52 - TDSD: \drivers.desc\"ac3acm.acm"="AC3 ACM Codec" . (.fccHandler - AC-3 ACM Codec.) -- C:\Windows\system32\ac3acm.acm

O52 - TDSD: \drivers.desc\"lameACM.acm"="Lame MP3 CODEC v3.98.4" . (...) -- (.not file.)

O52 - TDSD: \drivers.desc\"lagarith.dll"="Lagarith lossless codec" . (.Pas de propriétaire - Lagarith.) -- C:\Windows\system32\lagarith.dll

O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow video encoder" . (...) -- C:\Windows\system32\ff_vfw.dll

O52 - TDSD: \drivers.desc\"x264vfw.dll"="H264 Video codec" . (...) -- C:\Windows\system32\x264vfw.dll

O52 - TDSD: \drivers.desc\"xvidvfw.dll"="Xvid MPEG-4 Video Codec" . (...) -- C:\Windows\system32\xvidvfw.dll

O52 - TDSD: \drivers.desc\"ac3filter.acm"="AC3Filter ACM codec" . (...) -- C:\Windows\system32\ac3filter.acm

O52 - TDSD: \drivers.desc\"ff_acm.acm"="ffdshow ACM codec" . (.Pas de propriétaire - ffdshow Audio Decoder.) -- C:\Windows\system32\ff_acm.acm

~ Scan Keys in 00mn 00s

---\\ ShareTools MSconfig StartupReg (O53)

O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O53 - SMSR:HKLM\...\startupreg\BCSSync [Key] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe

O53 - SMSR:HKLM\...\startupreg\DivXUpdate [Key] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe

O53 - SMSR:HKLM\...\startupreg\HP Software Update [Key] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

O53 - SMSR:HKLM\...\startupreg\hpqSRMon [Key] . (.Hewlett-Packard - HpqSRmon.) -- C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe

O53 - SMSR:HKLM\...\startupreg\PWRISOVM.EXE [Key] . (.PowerISO Computing, Inc. - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.exe

O53 - SMSR:HKLM\...\startupreg\userinit [Key] . (...) -- C:\Users\Jean-Paul\AppData\Roaming\sdra64.exe (.not file.)

~ Scan SMSR Keys in 00mn 00s

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

~ Scan Keys in 00mn 00s

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

~ Scan Keys in 00mn 00s

---\\ Microsoft Windows Policies Explorer (O56)

O56 - MWPE:[HKCU\...\policies\Explorer] - "ClearRecentDocsOnExit"=1

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=0

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=0

~ Scan Keys in 00mn 00s

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 10/06/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [422976]

O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 14/07/2009 - 02:26:17 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [297552]

O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [146512]

O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 14/07/2009 - 02:26:15 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [14400]

O58 - SDL:[MD5.D320BF87125326F996D4904FE24300FC] - 11/08/2011 - 06:38:37 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [80256]

O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 10/06/2009 - 02:26:15 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\system32\drivers\amdsbs.sys [159312]

O58 - SDL:[MD5.46387FB17B086D16DEA267D5BE23A2F2] - 11/08/2011 - 06:38:37 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [22400]

O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [76368]

O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [86608]

O58 - SDL:[MD5.4FAE55469A56AA2B423E5E26FD1449D1] - 15/08/2011 - 12:35:09 ---A- . (.AVAST Software - avast! File System Filter Driver for Windows NT/2000.) -- C:\Windows\system32\drivers\aswmon.sys [96344]

O58 - SDL:[MD5.7857E0B4C817F69FF463EEA2C63E56F9] - 15/08/2011 - 12:35:12 ---A- . (.AVAST Software - avast! File System Filter Driver for Windows XP.) -- C:\Windows\system32\drivers\aswmon2.sys [102616]

O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 14/07/2009 - 23:02:49 ---A- . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gigabit Ethernet..) -- C:\Windows\system32\drivers\b57nd60x.sys [229888]

O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 14/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568]

O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 14/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248]

O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 14/07/2009 - 01:57:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [272128]

O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 14/07/2009 - 23:53:32 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336]

O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 14/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160]

O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 14/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904]

O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 10/06/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbdx.sys [430080]

O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 14/07/2009 - 02:26:21 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [15952]

O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 10/06/2009 - 02:20:28 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [70720]

O58 - SDL:[MD5.20C70A4226C9A066D2EAD0C814083A95] - 09/08/2011 - 16:17:37 ---A- . (.Intel Corporation - Intel® Gigabit Adapter NDIS 6.x driver.) -- C:\Windows\system32\drivers\e1k6232.sys [266408]

O58 - SDL:[MD5.04CBA07E73F152970FC34D66D3892E2A] - 15/08/2011 - 14:04:06 ---A- . (.ESET - Amon monitor.) -- C:\Windows\system32\drivers\eamonm.sys [137144]

O58 - SDL:[MD5.FE7824239D132AD9EBD8645FE1199B30] - 15/08/2011 - 14:04:06 ---A- . (.ESET - ESET Helper driver.) -- C:\Windows\system32\drivers\ehdrv.sys [115008]

O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 10/06/2009 - 02:20:28 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [453712]

O58 - SDL:[MD5.73411C14A8C6062BB6A510772CF2F38C] - 15/08/2011 - 12:47:38 ---A- . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\system32\drivers\epfw.sys [134000]

O58 - SDL:[MD5.490329BF80F333E788DF9596A752A915] - 15/08/2011 - 12:47:38 ---A- . (.ESET - ESET Personal Firewall NDIS filter.) -- C:\Windows\system32\drivers\epfwndis.sys [33120]

O58 - SDL:[MD5.C62068DAB6E2510FB231286D3DA63DFA] - 15/08/2011 - 12:47:38 ---A- . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\system32\drivers\epfwwfp.sys [41336]

O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 10/06/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbdx.sys [3100160]

O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 14/07/2009 - 23:54:14 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [26624]

O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 14/07/2009 - 02:20:28 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [67152]

O58 - SDL:[MD5.541AF4542DB70E3F194C4854EA635F91] - 11/08/2011 - 16:17:01 ---A- . (.Intel Corporation - NDIS 6.1 Advanced Networking Services..) -- C:\Windows\system32\drivers\iANSW60.sys [139488]

O58 - SDL:[MD5.5CD5F9A5444E6CDCB0AC89BD62D8B76E] - 11/08/2011 - 06:38:51 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\system32\drivers\iaStorV.sys [332160]

O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 14/07/2009 - 02:20:36 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41040]

O58 - SDL:[MD5.35B94FB62C96807183841CA4E0FB44D8] - 11/08/2011 - 02:12:42 ---A- . (.Intel Corporation - Intel® Network Adapter Diagnostic Driver.) -- C:\Windows\system32\drivers\iqvw32.sys [30368]

O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [95824]

O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 14/07/2009 - 02:20:37 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [89168]

O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [54864]

O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [96848]

O58 - SDL:[MD5.ECA00EED9AB95489007B0EF84C7149DE] - 11/08/2011 - 18:52:42 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [22712]

O58 - SDL:[MD5.B18225739ED9CAA83BA2DF966E9F43E8] - 11/08/2011 - 18:52:42 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys [41272]

O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 10/06/2009 - 02:20:36 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\Windows\system32\drivers\megasas.sys [30800]

O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [235584]

O58 - SDL:[MD5.76B1157EF850830C5ECE61D3E591CA8B] - 10/06/2009 - 23:02:53 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 USB Wireless Adapter Driver.) -- C:\Windows\system32\drivers\netr73.sys [545792]

O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 14/07/2009 - 02:20:44 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [44624]

O58 - SDL:[MD5.B0881DDA5A8160422561FFAB7F0008B1] - 14/07/2009 - 22:19:48 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 185.93.) -- C:\Windows\system32\drivers\nvlddmkm.sys [9853248]

O58 - SDL:[MD5.B3E25EE28883877076E0E1FF877D02E0] - 11/08/2011 - 06:39:00 ---A- . (.NVIDIA Corporation - NVIDIA® nForce™ RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [117120]

O58 - SDL:[MD5.4380E59A170D88C4F1022EFF6719A8A4] - 11/08/2011 - 06:39:00 ---A- . (.NVIDIA Corporation - NVIDIA® nForce™ Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [143744]

O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 10/06/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1383488]

O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 14/07/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106064]

O58 - SDL:[MD5.9FEB2026A460916D1A1198B460632630] - 11/08/2011 - 09:23:56 ---A- . (.PowerISO Computing, Inc. - PowerISO Virtual Drive.) -- C:\Windows\system32\drivers\scdemu.sys [60156]

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 14/07/2009 - 21:50:20 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480]

O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 10/06/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [40016]

O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 14/07/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [77888]

O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 14/07/2009 - 02:19:04 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [21072]

O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 14/07/2009 - 02:19:10 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [16976]

O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 10/06/2009 - 02:19:11 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [141904]

O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029]

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 13/07/2009 - 22:40:44 ---A- . (...) -- C:\Windows\system32\country.sys [27097]

O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 13/07/2009 - 22:40:40 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768]

O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 13/07/2009 - 22:40:43 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809]

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 13/07/2009 - 22:40:43 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537]

O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 13/07/2009 - 22:40:23 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866]

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 13/07/2009 - 22:40:31 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146]

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 13/07/2009 - 22:40:35 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370]

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 13/07/2009 - 22:40:39 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274]

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 13/07/2009 - 22:40:27 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146]

O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 13/07/2009 - 22:40:11 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952]

O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 13/07/2009 - 22:40:15 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672]

O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 13/07/2009 - 22:40:17 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776]

O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 13/07/2009 - 22:40:19 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536]

O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 13/07/2009 - 22:40:13 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672]

~ Scan Drivers in 00mn 01s

---\\ Liste des outils de nettoyage (O63)

O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

~ Scan ADS in 00mn 00s

---\\ Liste des services Legacy (O64)

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\adp94xx.sys - No object(No service) .(.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) - LEGACY_ADP94XX

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\adpahci.sys - No object(No service) .(.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) - LEGACY_ADPAHCI

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\adpu320.sys - No object(No service) .(.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) - LEGACY_ADPU320

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\djsvs.sys - No object(No service) .(.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) - LEGACY_AIC78XX

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\aliide.sys - No object(No service) .(.Acer Laboratories Inc. - ALi mini IDE Driver.) - LEGACY_ALIIDE

O64 - Services: CurCS - 11/03/2011 - C:\Windows\system32\drivers\amdsata.sys - No object(No service) .(.Advanced Micro Devices - AHCI 1.2 Device Driver.) - LEGACY_AMDSATA

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\amdsbs.sys - No object(No service) .(.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) - LEGACY_AMDSBS

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\arc.sys - No object(No service) .(.Adaptec, Inc. - Adaptec RAID Storport Driver.) - LEGACY_ARC

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\arcsas.sys - No object(No service) .(.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) - LEGACY_ARCSAS

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\cmdide.sys - No object(No service) .(.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) - LEGACY_CMDIDE

O64 - Services: CurCS - 21/12/2010 - C:\Windows\system32\DRIVERS\eamonm.sys - No object(No service) .(.ESET - Amon monitor.) - LEGACY_EAMONM

O64 - Services: CurCS - 21/12/2010 - C:\Windows\system32\DRIVERS\ehdrv.sys - No object(No service) .(.ESET - ESET Helper driver.) - LEGACY_EHDRV

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\elxstor.sys - No object(No service) .(.Emulex - Storport Miniport Driver for LightPulse HBA.) - LEGACY_ELXSTOR

O64 - Services: CurCS - 21/12/2010 - C:\Windows\system32\DRIVERS\epfw.sys - No object(No service) .(.ESET - ESET Personal Firewall driver.) - LEGACY_EPFW

O64 - Services: CurCS - 21/12/2010 - C:\Windows\system32\DRIVERS\epfwwfp.sys - No object(No service) .(.ESET - ESET Personal Firewall driver.) - LEGACY_EPFWWFP

O64 - Services: CurCS - ??/??/???? - C:\Users\JEAN-P~1\AppData\Local\Temp\RarSFX0\esgiguard.sys (.not file.) - No object (No service) .(...) - LEGACY_ESGIGUARD

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\HpSAMD.sys - No object(No service) .(.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) - LEGACY_HPSAMD

O64 - Services: CurCS - 11/03/2011 - C:\Windows\system32\drivers\iaStorV.sys - No object(No service) .(.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) - LEGACY_IASTORV

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\iirsp.sys - No object(No service) .(.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) - LEGACY_IIRSP

O64 - Services: CurCS - 20/07/2011 - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerProcessMonitor32.sys - No object (No service) .(...) - LEGACY_LIVETUNERPM

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\lsi_fc.sys - No object(No service) .(.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) - LEGACY_LSI_FC

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\lsi_sas.sys - No object(No service) .(.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) - LEGACY_LSI_SAS

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\lsi_sas2.sys - No object(No service) .(.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) - LEGACY_LSI_SAS2

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\lsi_scsi.sys - No object(No service) .(.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) - LEGACY_LSI_SCSI

O64 - Services: CurCS - 06/07/2011 - C:\Windows\system32\drivers\mbam.sys - No object(No service) .(.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - LEGACY_MBAMPROTECTOR

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\megasas.sys - No object(No service) .(.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) - LEGACY_MEGASAS

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\MegaSR.sys - No object(No service) .(.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) - LEGACY_MEGASR

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\nfrd960.sys - No object(No service) .(.IBM Corporation - IBM ServeRAID Controller Driver.) - LEGACY_NFRD960

O64 - Services: CurCS - 11/03/2011 - C:\Windows\system32\drivers\nvraid.sys - No object(No service) .(.NVIDIA Corporation - NVIDIA® nForce™ RAID Driver.) - LEGACY_NVRAID

O64 - Services: CurCS - 11/03/2011 - C:\Windows\system32\drivers\nvstor.sys - No object(No service) .(.NVIDIA Corporation - NVIDIA® nForce™ Sata Performance Driver.) - LEGACY_NVSTOR

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\ql2300.sys - No object(No service) .(.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) - LEGACY_QL2300

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\ql40xx.sys - No object(No service) .(.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) - LEGACY_QL40XX

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\SiSRaid2.sys - No object(No service) .(.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) - LEGACY_SISRAID2

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\sisraid4.sys - No object(No service) .(.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) - LEGACY_SISRAID4

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\stexstor.sys - No object(No service) .(.Promise Technology - Promise SuperTrak EX Series Driver for Win.) - LEGACY_STEXSTOR

O64 - Services: CurCS - 04/07/2010 - C:\Program Files\Unlocker\UnlockerDriver5.sys - No object (No service) .(...) - LEGACY_UNLOCKERDRIVER5

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\viaide.sys - No object(No service) .(.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) - LEGACY_VIAIDE

O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\vsmraid.sys - No object(No service) .(.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) - LEGACY_VSMRAID

~ Scan Services in 00mn 01s

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (. - .) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

~ Scan Keys in 00mn 00s

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

~ Scan Keys in 00mn 00s

---\\ Search Browser Infection (O69)

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - Bing

~ Scan Keys in 00mn 00s

---\\ Recherche particuliere à la racine de certains dossiers (O84)

[MD5.D087C492EB897B902CA01DBE008A05E7] [sPRF][11/08/2011] (...) -- C:\Users\Jean-Paul\AppData\Roaming\Sys2662.Config.Repository.bin [22]

[MD5.EF27D705FBCEA4DE4C12B5F50E040587] [sPRF][04/08/2011] (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller 10.3 r183.) -- C:\Windows\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [3126944]

~ Scan Files in 00mn 00s

---\\ Firewall Active Exception List (FirewallRules) (O87)

O87 - FAEL: "{0ADE8E44-EF45-4DBA-9ED2-49CA38108A35}" | In - None - P6 - TRUE | .(.Hewlett-Packard - HP Software Update Client.) -- C:\Program Files\HP\hp software update\hpwucli.exe

~ Scan Firewall in 00mn 00s

---\\ Scan Additionnel (O88)

Database Version : 8617 - (24/08/2011)

Clés trouvées (Keys found) : 3

Valeurs trouvées (Values found) : 0

Dossiers trouvés (Folders found) : 3

Fichiers trouvés (Files found) : 0

[HKLM\Software\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}] =>Toolbar.AskSBar

[HKLM\Software\Conduit] =>Toolbar.Conduit

[HKLM\Software\PopCap] =>Adware.PopCap

C:\ProgramData\iWin =>Adware.BHO

C:\ProgramData\PopCap Games =>Adware.PopCap

C:\Users\Jean-Paul\AppData\Roaming\iWin =>Adware.BHO

~ Scan Additionnel in 00mn 03s

---\\ Recherche détournement de DNS routeur (O89)

Serveur : sagembox.home

Address: 192.168.1.1

DNS request timed out.

timeout was 2 seconds.

Nom : www.l.google.com

Addresses: 209.85.148.106

209.85.148.147

209.85.148.99

209.85.148.103

209.85.148.104

209.85.148.105

Aliases: www.google.fr

www.google.com

~ Scan DNS in 00mn 04s

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SR - | Auto 11/08/2011 64952 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

SR - | Auto 116336 | (ALThemeHelper) . (...) - C:\Program Files\Auslogics\AusLogics Visual Styler\themehelpersvc.exe

SS - | Demand 15/08/2011 33584 | (EhttpSrv) . (.ESET.) - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe

SR - | Auto 15/08/2011 810144 | (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Smart Security\ekrn.exe

SR - | Auto 11/08/2011 112800 | (Intel® PROSet Monitoring Service) . (.Intel Corporation.) - C:\Windows\system32\IProsetMonitor.exe

SS - | Auto 8192 | (KMService) . (...) - C:\Windows\system32\srvany.exe

SR - | Auto 11/08/2011 366640 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

SR - | Auto 884120 | (WO_LiveService) . (...) - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe

SR - | Auto 14/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe

SR - | Auto 11/08/2011 598856 | (wwEngineSvc) . (.Webroot Software, Inc..) - C:\Program Files\Webroot\Washer\WasherSvc.exe

~ Scan Services in 00mn 05s

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover

Run by Jean-Paul at 27/08/2011 19:27:00

device: opened successfully

user: MBR read successfully

Disk trace:

called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS halmacpi.dll PCIIDEX.SYS msahci.sys

1 ntkrnlpa!IofCallDriver[0x82A8252A] -> \Device\Harddisk0\DR0[0x861D7258]

3 CLASSPNP[0x8C5A659E] -> ntkrnlpa!IofCallDriver[0x82A8252A] -> \Device\Ide\IdeDeviceP3T0L0-3[0x85CA13D0]

kernel: MBR read successfully

user & kernel MBR OK

~ Scan MBR in 00mn 07s

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

Written by ad13,

Run by Jean-Paul at 27/08/2011 19:27:02

********* Dump file Name *********

C:\PhysicalDisk0_MBR.bin

~ Scan MBR in 00mn 09s

End of the scan (1250 lines in 01mn 39s)(0)

Merci et j'attends la suite; j'ai repéré entre autres Avast que j'ai démonté de la bécane.

cordialement Pianiste

Modifié le 1 septembre 2011 par Pianiste
Lien avec le topic d'origine

Pianiste · le 29 août 2011

Merci Dylav; bon dimanche

Pianiste · le 29 août 2011

bonsoir,

précisions : je venais d'installer une nouvelle mouture de W.7

cette page insupportable est survenue le même jour, sans que j'installe quoi que ce soit d'innovant. je pense que des facétieux collent des tool bars sans demander ton avis en loucedé, alors pour rouver çà

il faut avoir la patience de lire l'analyse ci dessus. je compe sur un volontaire étant béotien en la matière. j'ai juste observé des résidus de logiciel désinstallés.

cordialement Pianiste

pear · le 29 août 2011

Bonsoir,

Téléchargez AD-Remover sur le bureau

Déconnectez-vous et fermez toutes les applications en cours

Cliquer sur "Ad-R.exe" pour lancer l'installation et laisser les paramètres par défaut .

Une fenêtre s'affichera Vous prévenant des risques de l'utilisation de ce logiciel

Cliquez sur "OUI"

Double cliquer sur l'icône Ad-remover sur le bureau

Au menu principal choisir l'optionScanner et Validez

Patientez pendant le travail de l'outil.

Poster le rapport qui apparait à la fin .

Il est sauvegardé aussi sous C:\Ad-report.log

Ensuite

Relancer Ad- remover , choisir l'option Nettoyer

Il y aura 2 rapports à poster après :Scanner et Nettoyer

Une fois la désinfrction terminée, mais pas avant:

désinstaller AD-Remover, lancez avec l'option D puis supprimer l'icône du bureau.

Téléchargez MBAM

Branchez tous les supports amovibles avant de faire ce scan (clé usb/disque dur externe etc)

Avant de lancer Mbam

Vous devez d'abord désactiver vos protections mais vous ne savez pas comment faire

Exécuter avec droits d'administrateur.

Sous Vista , désactiver l'Uac

Double cliquez sur l'icône Download_mbam-setup.exe pour lancer le processus d'installation.

Enregistrez le sur le bureau .

Fermer toutes les fenêtres et programmes

Suivez les indications (en particulier le choix de la langue et l'autorisation d'accession à Internet)

N'apportez aucune modification aux réglages par défaut et, en fin d'installation,

Vérifiez que les options Update et Launch soient cochées

MBAM démarrera automatiquement et enverra un message demandant de mettre à jour le programme avant de lancer une analyse.

cliquer sur OK pour fermer la boîte de dialogue..

Dans l'onglet "mise à jour", cliquez sur le bouton Recherche de mise à jour:

Si le pare-feu demande l'autorisation de connecter MBAM, acceptez.

Une fois la mise à jour terminée, allez dans l'onglet Recherche.

Sélectionnez "Exécuter un examen complet"

Cliquez sur "Rechercher"

.L' analyse prendra un certain temps, soyez patient !

A la fin , un message affichera :

L'examen s'est terminé normalement.

Et un fichier Mbam.log apparaitra

Nettoyage

Relancez Mbam(Malewares'Bytes)

Sélectionnez "Exécuter un examen complet"

Cliquez sur "Rechercher"

L' analyse prendra un certain temps, soyez patient !

A la fin , un message affichera :

L'examen s'est terminé normalement.

Sélectionnez tout et cliquez sur Supprimer la sélection ,

MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.

puis ouvrir le Bloc-notes et y copier le rapport d'analyse qui peut être retrouvé sous l'onglet Rapports/logs.

Copiez-collez ce rapport dans la prochaine réponse.

Pianiste · le 29 août 2011

Bonsoir,

Pear, je m'attendais à te voir, à défaut Saclès. je vais commencer le travail de suite, que tu n'auras que mardi en AM. tu sais pourqoui et je ne me couche qu'à 04h30 donc levez à 16h00 = 18h00 paris. merci de ta patience et @ bientot

Pianiste · le 29 août 2011

RE, voilà les résultats de AD remover : pas trop long

MBAM va durer un peu plus:cry:

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11

Contact: AdRemover[DOT]contact[AT]gmail[DOT]com

Site web: http://www.teamx s cript.org

C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 21:56:28 le 29/08/2011, Mode normal

Microsoft Windows 7 Édition Intégrale Service Pack 1 (X86)

Jean-Paul@JEAN-PAUL-PC (Hewlett-Packard HP Compaq 8100 Elite CMT PC)

============== RECHERCHE ==============

Dossier trouvé: C:\ProgramData\PopCap Games

Clé trouvée: HKLM\Software\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}

Clé trouvée: HKLM\Software\Conduit

Clé trouvée: HKLM\Software\PopCap

============== SCAN ADDITIONNEL ==============

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896

HKCU_Main|Start Page - hxxp://www.google.co.ma/

HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157

HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896

HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896

HKLM_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=69157

HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\System32\wpcer.exe (x)

HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\System32\winfxdocobj.exe (x)

HKLM_ElevationPolicy\{5F17E524-3447-4c7d-8E5F-4EFF31CDE3B7} - C:\Program Files\Common Files\DivX Shared\DesktopService\DDMService.exe (DivX, LLC)

HKLM_ElevationPolicy\{64903E32-AE0B-408D-909C-09A08791F28D} - C:\Program Files\DivX\DivX Plus Web Player\dwpBroker.exe (?)

HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)

HKLM_ElevationPolicy\{D802E3EF-2513-4661-972E-BAD737EFBA88} - C:\Program Files\DivX\DivX OVS Helper\OVSHelperBroker.exe (DivX, LLC.)

HKLM_Extensions\{AF4F850B-68FF-404C-8417-549F86B1E236} - "Bloc Notes" (%systemRoot%\notepad.exe,2)

BHO\{02478D38-C3F9-4efb-9B51-7695ECA05670} (?)

BHO\{326E768D-4182-46FD-9C16-1449A49795F4} - "DivX Plus Web Player HTML5 <video>" (C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll)

========================================

C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s)

C:\Program Files\Ad-Remover\Backup: 0 Fichier(s)

C:\Ad-Report-SCAN[1].txt - 29/08/2011 21:56:37 (2376 Octet(s))

Fin à: 21:57:02, 29/08/2011

============== E.O.F ==============

le suivant :

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11

Contact: AdRemover[DOT]contact[AT]gmail[DOT]com

Site web: http://www.teamx s cript.org

C:\Program Files\Ad-Remover\main.exe (SCAN [2]) -> Lancé à 21:57:41 le 29/08/2011, Mode normal