30 % de mémoire utilisée à vide ?

[CandyFana]

Bonjour,

je me demande si je ne suis pas infectée.

 

Car mon PC utilise 30% de ma mémoire, donc 1 GB à vide. CAD, juste windows 7, aucune fenetre ouverte, ni navigateur ni rien.

 

Pourriez-vous me donner les 2-3 programmes top du moment pour rechercher les saloperies qui pourrait tourner dans mon dos ?

 

j'ai déjà fait un hijackthis mais il ne trouve rien de dangereux.

MAIS,

 

j'ai quand même 49 processus qui tournent soit disant.

 

Vraiment bizare je trouve.

 

a mon avis, 'jai un truc qui tourne tout seul. GRRRR

[tomtom95]

Bonjour CandyFana

 

• Quelques conseils avant de commencer
  Important : Pense en haut de ce message à cliquer sur le bouton "Suivre ce sujet" en choisissant "Notification immédiate"
   
  S.T.P pendant la désinfection: n'utilise pas d'autre outils ou ne désinstalle pas des programmes
  seulement ceux qui te sont notifier pour éviter tout problème .
   
  Enregistre :toujours les outils sur ton bureau
   
  Bien lire les indications: et si tu rencontre des problèmes n'hésiter pas à me le signaler avant d'effectuer une manip.
   
  
• Ne laisse pas ton sujet, Va jusqu'au bout avant d'être informé(e) que tout est OK.

 

Pour une analyse de ton ordinateur >> Applique cette procédure stp.

 

 

• Télécharge

ZHPDiag de Nicolas Coolman sur ton Bureau
 
Lance l'outil : double-clique sur ZHPDiag pour XP
Pour Vista et seven
fais un clique droit sur l'icône et exécute en tant qu'administrateur.
 
Clique sur le Tournevis a droit en haut

 
Pour Cocher toutes les cases >> Clique sur TOUS .
 
Puis Clique sur la petite loupe en haut à gauche pour débuter l'analyse :
L'analyse peut durer une dizaine de minutes.
Le rapport généré par l'outil se nomme ZHPDiag.txt
Clique sur le bouton avec l'appareil photo pour copier le contenu intégral du rapport généré par l'outil dans le presse-papier :
Dans ta prochaine réponse post ce rapport.
 
IMPORTANT héberger le fichier contenant ce rapport sur http://cjoint.com/
Voici la démarche compléte
Pour Héberger le fichier cjoint.com/
Sur la page du site Clique sur parcourir va jusqu'au rapport ZHPDiag sur ton bureau
Puis Clique sur ouvrir ce qui va te ramène sur le site cjoint
Ensuite en bas Clique sur Créer le lien Cjoint
Une nouvelle fenêtre apparait avec un lien en bleu
Surligne le lien pour le Copier et colle le lien sur le Forum pour que je puisse le télécharger et analyser

 

A+

[CandyFana]

Merci, je fais cela dans quelques minutes

[CandyFana]

lol

Modifié le 14 février 2012 par CandyFana

[CandyFana]

Si 'jai bien compris : le rapport :

Rapport de ZHPDiag v1.28.32 par Nicolas Coolman, Update du 05/02/2012

Run by MissPulchra at 14/02/2012 09:53:04

Web site : ZHPDiag Outil de diagnostic

Web site : Blog de NicolasCoolman - ZebHelpProcess - Skyrock.com

State : Version à jour.

 

 

---\\ Web Browser

MSIE: Internet Explorer v8.0.7600.16385

MFIE: Mozilla Firefox 10.0.1 v10.0.1 (Defaut)

 

---\\ Windows Product Information

~ Langage: Français

Windows 7 Business Edition, 32-bit (Build 7600)

Windows Server License Manager Script : OK

~ Windows® 7, OEM_COA_NSLP channel

Windows ID Activation : OK

~ Windows Partial Key : FPDGJ

Windows License : OK

~ Windows Remaining Initializations Number : 3

Software Protection Service (Protection logicielle) : OK

Windows Automatic Updates : OK

Windows Activation Technologies : OK

 

---\\ System Information

~ Processor: x86 Family 6 Model 42 Stepping 7, GenuineIntel

~ Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 3572 MB (65% free)

System Restore: Désactivé (Disabled)

System drive C: has 20 GB (36%) free of 56 GB

 

---\\ Logged in mode

~ Computer Name: LABETE

~ User Name: MissPulchra

~ All Users Names: UpdatusUser, MissPulchra, HomeGroupUser$, Administrateur,

~ Unselected Option: None

Logged in as Administrator

 

---\\ Environnement Variables

~ System Unit : C:\

~ %AppData% : C:\Users\MissPulchra\AppData\Roaming\

~ %Desktop% : C:\Users\MissPulchra\Desktop\

~ %Favorites% : C:\Users\MissPulchra\Favorites\

~ %LocalAppData% : C:\Users\MissPulchra\AppData\Local\

~ %StartMenu% : C:\Users\MissPulchra\AppData\Roaming\Microsoft\Windows\Start Menu\

~ %Windir% : C:\Windows\

~ %System% : C:\Windows\system32\

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 20 Go of 56 Go)

D:\ CD-ROM drive (Not Inserted)

E:\ Hard drive, Flash drive, Thumb drive (Free 681 Go of 875 Go)

 

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyComputer: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK

[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK

[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK

[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK

~ Scan Security Center in 00mn 00s

 

 

 

---\\ Recherche particulière de fichiers génériques

[MD5.15BC38A7492BEFE831966ADB477CF76F] - (.Microsoft Corporation - Explorateur Windows.) (.14/07/2009 - 02:14:20.) -- C:\Windows\Explorer.exe [2613248]

[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) (.14/07/2009 - 02:14:31.) -- C:\Windows\system32\rundll32.exe [44544]

[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]

[MD5.0D874F3BC751CC2198AF2E6783FB8B35] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.14/07/2009 - 02:16:19.) -- C:\Windows\system32\wininet.dll [977920]

[MD5.8EC6A4AB12B8F3759E21F8E3A388F2CF] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\system32\Winlogon.exe [285696]

[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - (.Microsoft Corporation - Bibliothèque de licences.) (.14/07/2009 - 02:16:15.) -- C:\Windows\system32\sppcomapi.dll [193024]

[MD5.D8714A5FB3141F8226D16861F20C5AC4] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows multi-utilisateurs.) (.14/07/2009 - 09:39:06.) -- C:\Windows\system32\fr-FR\user32.dll.mui [19968]

[MD5.DDC040FDB01EF1712A6B13E52AFB104C] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.14/07/2009 - 00:12:38.) -- C:\Windows\system32\drivers\AFD.sys [338944]

[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\drivers\atapi.sys [21584]

[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\drivers\Cdfs.sys [70656]

[MD5.BA6E70AA0E6091BC39DE29477D866A77] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.14/07/2009 - 00:11:26.) -- C:\Windows\system32\drivers\Cdrom.sys [108544]

[MD5.8E09E52EE2E3CEB199EF3DD99CF9E3FB] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/07/2009 - 00:14:17.) -- C:\Windows\system32\drivers\DfsC.sys [78336]

[MD5.717A2207FD6F13AD3E664C7D5A43C7BF] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.14/07/2009 - 00:50:56.) -- C:\Windows\system32\drivers\HDAudBus.sys [108544]

[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\drivers\i8042prt.sys [80896]

[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\drivers\IpNat.sys [101888]

[MD5.F4A054BE78AF7F410129C4B64B07DC9B] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.14/07/2009 - 00:14:26.) -- C:\Windows\system32\drivers\MRxSmb.sys [123392]

[MD5.DD52A733BF4CA5AF84562A5E2F963B91] - (.Microsoft Corporation - MBT Transport driver.) (.14/07/2009 - 00:12:21.) -- C:\Windows\system32\drivers\netBT.sys [187904]

[MD5.3795DCD21F740EE799FB7223234215AF] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.14/07/2009 - 02:20:44.) -- C:\Windows\system32\drivers\ntfs.sys [1210432]

[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\drivers\Parport.sys [79360]

[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\drivers\Rasl2tp.sys [78848]

[MD5.C5FF95883FFEF704D50C40D21CFB3AB5] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.14/07/2009 - 01:02:58.) -- C:\Windows\system32\drivers\rdpdr.sys [133120]

[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\drivers\smb.sys [71168]

[MD5.CB39E896A2A83702D1737BFD402B3542] - (.Microsoft Corporation - TDI Translation Driver.) (.14/07/2009 - 00:12:11.) -- C:\Windows\system32\drivers\tdx.sys [74240]

[MD5.58DF9D2481A56EDDE167E51B334D44FD] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.14/07/2009 - 02:19:10.) -- C:\Windows\system32\drivers\volsnap.sys [245328]

~ Scan Generic Processes in 00mn 00s

 

 

 

---\\ Etat des fichiers cachés (Caché/Total)

~ Mes images (My Pictures) : 106/7865

~ Mes Favoris (My Favorites) : Non accessible (Not found)

~ Mes Documents (My Documents) : 2/9

~ Mon Bureau (My Desktop) : 1/7

~ Menu demarrer (Programs) : 6/24

~ Scan Hidden Files in 00mn 02s

 

 

 

---\\ Processus lancés

[MD5.9048E39550CD6599F98673B4437D0E4C] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9742952] [PID.2120]

[MD5.C0B97E53A0E39A48EEA2DCD500EEA07A] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [283160] [PID.2136]

[MD5.51C8885B6A00904C0252704C9FB0F43A] - (.Renesas Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288] [PID.2144]

[MD5.6163A64C97ED1F2D9FCF7DEBCD774501] - (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe [2219184] [PID.2160]

[MD5.7636713B4F0944045AB4AF7CED5245AB] - (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1230704] [PID.2220]

[MD5.16AEDBEBD92D1ECBA79BCEB09ED90F32] - (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe [815512] [PID.2304]

[MD5.6E3245DF783E58375B3465F03274743E] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696] [PID.2328]

[MD5.04DB1E60FBFB9A77AF16238A209C2CDD] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [373864] [PID.3156]

[MD5.10929F55A6CA805C16F2722F27AE21FE] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [924632] [PID.3452]

[MD5.681399A40CECE6D86ECFB5C1482E35BC] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856] [PID.2820]

[MD5.4309B75F125067EF805F3125B01FCC30] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [2210816] [PID.3596]

~ Scan Processes Running in 00mn 00s

 

 

 

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)

C:\Users\MissPulchra\AppData\Roaming\Mozilla\Firefox\Profiles\jjiab1o4.default\prefs.js

M3 - MFPP: Plugins - [MissPulchra] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml

M3 - MFPP: Plugins - [MissPulchra] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml

M3 - MFPP: Plugins - [MissPulchra] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml

M3 - MFPP: Plugins - [MissPulchra] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml

M3 - MFPP: Plugins - [MissPulchra] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml

M3 - MFPP: Plugins - [MissPulchra] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml

M3 - MFPP: Plugins - [MissPulchra] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml

M0 - MFSP: prefs.js [MissPulchra - jjiab1o4.default] Google

P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll

P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.0".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll

P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll

P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX, LLC - DivX Web Player version 2.1.2.265.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

P2 - FPN: [HKLM] [@divx.com/DivX VOD Helper,version=1.0.0] - (.DivX, LLC. - DivX VOD Helper Plug-in.) -- C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_29 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll

P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plug-in allows you to open and edit files using Microsoft Office a.) -- C:\Program Files\Microsoft Office\Office14\NPSPWRAP.dll

P2 - FPN: [HKLM] [@nvidia.com/3DVision] - (.NVIDIA Corporation - NVIDIA 3D Vision plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

P2 - FPN: [HKLM] [@nvidia.com/3DVisionStreaming] - (.NVIDIA Corporation - NVIDIA 3D Vision Streaming plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

P2 - FPN: [HKLM] [Adobe Acrobat] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.2.) -- C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll

P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.0".) -- C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

~ Scan Firefox Browser in 00mn 00s

 

 

 

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google

R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Search Microsoft.com

R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll

R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0

~ Scan IE Browser in 00mn 00s

 

 

 

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

~ Scan Proxy management in 00mn 00s

 

 

 

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe

~ Scan Keys in 00mn 00s

 

 

 

---\\ Redirection du fichier Hosts (O1)

~ Le fichier hosts est sain (The hosts file is clean).

~ Scan Hosts File in 00mn 00s

~ Nombre de lignes (Lines number): 21

 

 

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} . (.DivX, LLC - DivX Plus Web Player HTML5 <video> version.) -- C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll

O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office14\URLREDIR.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

~ Scan BHO in 00mn 00s

 

 

 

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

~ Scan Toolbar in 00mn 00s

 

 

 

---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

O4 - HKLM\..\Run: [iAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

O4 - HKLM\..\Run: [NUSB3MON] . (.Renesas Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

O4 - HKLM\..\Run: [egui] . (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe

O4 - HKLM\..\Run: [NeroFilterCheck] . (.Nero AG - NeroCheck.) -- C:\Windows\System32\NeroCheck.exe

O4 - HKLM\..\Run: [bCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe

O4 - HKLM\..\Run: [DivXUpdate] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe

O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrobat_sl.exe

O4 - HKLM\..\Run: [Acrobat Assistant 8.0] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe

~ Scan Application in 00mn 00s

 

 

 

---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Users\UpdatusUser\Desktop\HijackThis.lnk . (.Trend Micro Inc..) -- C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

O4 - Global Startup: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk . (.Ahead Software AG.) -- C:\Program Files\Ahead\Nero StartSmart\NeroStartSmart.exe

O4 - Global Startup: C:\Users\MissPulchra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\MissPulchra\Desktop\Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation.) -- C:\Windows\System32\fsquirt.exe

O4 - Global Startup: C:\Users\MissPulchra\Desktop\Character Map.lnk . (.Microsoft Corporation.) -- C:\Windows\system32\charmap.exe

O4 - Global Startup: C:\Users\MissPulchra\Desktop\HijackThis.lnk . (.Trend Micro Inc..) -- C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

O4 - Global Startup: C:\Users\MissPulchra\Desktop\Ordinateur.lnk - Clé orpheline

O4 - Global Startup: C:\Users\MissPulchra\Desktop\VirtualDubMod.exe - Raccourci.lnk . (...) -- E:\Le C\Téléchargements Programmes\Video Utilities\Virtualdubmod10.02\VirtualDubMod.exe

O4 - Global Startup: C:\Users\MissPulchra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\MissPulchra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE

O4 - Global Startup: C:\Users\MissPulchra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart Essentials.lnk . (.Nero AG.) -- C:\Program Files\Nero\Nero 9\Nero StartSmart\NeroStartSmart.exe

O4 - Global Startup: C:\Users\MissPulchra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk . (.Ahead Software AG.) -- C:\Program Files\Ahead\Nero StartSmart\NeroStartSmart.exe

O4 - Global Startup: C:\Users\MissPulchra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Streaming Video Recorder.lnk . (.Apowersoft.) -- C:\Program Files\Apowersoft\Streaming Video Recorder\Streaming Video Recorder.exe

~ Scan Global Startup in 00mn 00s

 

 

 

---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)

O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no

~ Scan IE Control Panel in 00mn 00s

 

 

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O8 - Extra context menu item: Ajouter à un fichier PDF existant . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O8 - Extra context menu item: Convertir au format Adobe PDF . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - (.not file.) - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\Program Files\MICROS~1\Office14\EXCEL.exe

~ Scan IE Menu Contextuel in 00mn 00s

 

 

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\System32\nlaapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\System32\mswsock.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\System32\winrnr.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\System32\NapiNSP.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\System32\pnrpnsp.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\System32\pnrpnsp.dll

O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\System32\wshbth.dll

~ Scan Winsock in 00mn 00s

 

 

 

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab

~ Scan Objets ActiveX in 00mn 00s

 

 

 

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{7097DCC3-2B34-485E-A269-BF829A31C5C5}: DhcpNameServer = 192.168.42.129

O17 - HKLM\System\CCS\Services\Tcpip\..\{943D0349-9392-4232-839D-BDF825EC1FFE}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{7097DCC3-2B34-485E-A269-BF829A31C5C5}: DhcpNameServer = 192.168.42.129

O17 - HKLM\System\CS1\Services\Tcpip\..\{943D0349-9392-4232-839D-BDF825EC1FFE}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{7097DCC3-2B34-485E-A269-BF829A31C5C5}: DhcpNameServer = 192.168.42.129

O17 - HKLM\System\CS2\Services\Tcpip\..\{943D0349-9392-4232-839D-BDF825EC1FFE}: DhcpNameServer = 192.168.1.1

~ Scan Domain in 00mn 00s

 

 

 

---\\ Protocole additionnel (O18)

O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll

O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll

O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll

O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll

O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll

O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll

O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll

O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll

O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll

O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll

O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\microsoft shared\Help\hxds.dll

O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll

O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll

O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll

O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll

O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll

O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll

O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll

O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll

O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.dll

~ Scan Protocole Additionnel in 00mn 00s

 

 

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

~ Scan SSODL in 00mn 00s

 

 

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Smart Security\ekrn.exe

O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S30RP1.exe

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: Intel® PROSet Monitoring Service (Intel® PROSet Monitoring Service) . (.Intel Corporation - Intel® PROSet Monitoring Service.) - C:\Windows\System32\IPROSetMonitor.exe

O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 275.3.) - C:\Windows\System32\nvvsvc.exe

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

O23 - Service: TeamViewer 6 (TeamViewer6) . (.TeamViewer GmbH - TeamViewer Remote Control Application.) - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe

~ Scan Services in 00mn 00s

 

 

 

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(...) - (.not file.)

~ Scan Desktop Component in 00mn 00s

 

 

 

---\\ BootExecute (O34)

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

~ Scan Keys in 00mn 00s

 

 

 

---\\ Composants installés (ActiveSetup Installed Components) (O40)

O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe

O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll

O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll

O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll

O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Windows Media Player.) -- C:\Windows\system32\wmp.dll

O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe

O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll

~ Scan Active Setup in 00mn 00s

 

 

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys

O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\DRIVERS\cdrom.sys

O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\system32\drivers\csc.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys

O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys

O41 - Driver: (ehdrv) . (.ESET - ESET Helper driver.) - C:\Windows\system32\DRIVERS\ehdrv.sys

O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\DRIVERS\mssmbios.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys

O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys

O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys

O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys

O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys

O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys

O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys

~ Scan Drivers in 00mn 00s

 

 

 

---\\ Logiciels installés (O42)

O42 - Logiciel: Adobe Acrobat X Pro - English, Français, Deutsch - (.Adobe Systems.) [HKLM] -- {AC76BA86-1033-F400-7760-000000000005}

O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin

O42 - Logiciel: Adobe Photoshop 6.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Photoshop 6.0

O42 - Logiciel: Adobe Reader 9.5.0 - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1033-7B44-A95000000001}

O42 - Logiciel: Adobe SVG Viewer 3.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe SVG Viewer

O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM] -- {b2ec4a38-b545-4a00-8214-13fe0e915e6d}

O42 - Logiciel: Camera RAW Plug-In for EPSON Creativity Suite - (.Pas de propriétaire.) [HKLM] -- {8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}

O42 - Logiciel: Combined Community Codec Pack 2009-09-09 - (.CCCP Project.) [HKLM] -- Combined Community Codec Pack_is1

O42 - Logiciel: Configuration DivX - (.DivX, LLC.) [HKLM] -- DivX Setup.divx.com

O42 - Logiciel: DolbyFiles - (.Nero AG.) [HKLM] -- {b1adf008-e898-4fe2-8a1f-690d9a06acaf}

O42 - Logiciel: EPSON Attach To Email - (.SEIKO EPSON.) [HKLM] -- InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}

O42 - Logiciel: EPSON Copy Utility 3 - (.Pas de propriétaire.) [HKLM] -- {67EDD823-135A-4D59-87BD-950616D6E857}

O42 - Logiciel: EPSON File Manager - (.Pas de propriétaire.) [HKLM] -- {2EB81825-E9EE-44F4-8F51-1240C3898DC6}

O42 - Logiciel: EPSON Logiciel imprimante - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON Printer and Utilities

O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM] -- EPSON Scanner

O42 - Logiciel: EPSON Scan Assistant - (.Pas de propriétaire.) [HKLM] -- {2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}

O42 - Logiciel: ESPRX560_590 Guide d’utilisation - (.Pas de propriétaire.) [HKLM] -- ESPRX560_590 Guide d’utilisation

O42 - Logiciel: InCD Help - (.Nero AG.) [HKLM] -- {b86754dd-2ddb-4ac0-9015-cb487277254e}

O42 - Logiciel: Intel® Desktop Utilities - (.Intel Corporation.) [HKLM] -- {F01CBA59-B5BD-4608-A834-1CBE8C292A71}

O42 - Logiciel: Intel® Integrator Assistant - (.Intel Corporation.) [HKLM] -- {D1A35687-AEA9-422C-B237-FC4F8136B6F6}

O42 - Logiciel: Intel® Management Engine Components - (.Intel Corporation.) [HKLM] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}

O42 - Logiciel: Intel® Network Connections 15.6.25.0 - (.Intel.) [HKLM] -- PROSetDX

O42 - Logiciel: Intel® Network Connections 15.6.25.0 - (.Intel.) [HKLM] -- {BCCC97EE-E162-448C-8847-59718FF29B04}

O42 - Logiciel: Intel® Rapid Storage Technology - (.Intel Corporation.) [HKLM] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}

O42 - Logiciel: Java 6 Update 29 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216024FF}

O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}

O42 - Logiciel: Macromedia Dreamweaver 4 - (.Macromedia.) [HKLM] -- {ABDA9912-5D00-11D4-BAE7-9367CA097955}

O42 - Logiciel: Macromedia Dreamweaver 8 - (..) [HKLM] -- {5FD788ED-1A37-4496-9BDD-463F493B27FA}

O42 - Logiciel: Macromedia Extension Manager - (.Macromedia.) [HKLM] -- {A5BA14E0-7384-11D4-BAE7-00409631A2C8}

O42 - Logiciel: Macromedia Extension Manager - (.Nom de votre société.) [HKLM] -- {3C8C9FB3-5FDF-40B4-B314-EAD722728C76}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}

O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended

O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- {0A0CADCF-78DA-33C4-A350-CD51849B9702}

O42 - Logiciel: Microsoft .NET Framework 4 Extended FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {043F86B7-EE12-3399-B2CA-D0B603D87963}

O42 - Logiciel: Microsoft Office Access MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0015-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Excel MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0016-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Groove MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-00BA-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0044-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office OneNote MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-00A1-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001A-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0018-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Professionnel Plus 2010 - (.Microsoft Corporation.) [HKLM] -- Office14.PROPLUS

O42 - Logiciel: Microsoft Office Proof (Arabic) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0401-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Dutch) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0413-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (English) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (German) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0407-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Spanish) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0C0A-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002C-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Publisher MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0019-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-006E-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Word MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001B-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {A49F249F-0C91-497F-86DF-B2585E8E76B7}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}

O42 - Logiciel: Mises à jour NVIDIA 1.3.5 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update

O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack

O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Extended FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended FRA Language Pack

O42 - Logiciel: Mozilla Firefox 10.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 10.0.1 (x86 fr)

O42 - Logiciel: NVIDIA 3D Vision Controller Driver - (.NVIDIA Corporation.) [HKLM] -- NVIDIA StereoUSB Driver

O42 - Logiciel: NVIDIA Logiciel système PhysX 9.10.0514 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX

O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}

O42 - Logiciel: NVIDIA Pilote 3D Vision 275.33 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision

O42 - Logiciel: NVIDIA Pilote audio HD : 1.2.23.3 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver

O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 275.33 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB

O42 - Logiciel: NVIDIA Pilote graphique 275.33 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver

O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM] -- NVIDIAStereo

O42 - Logiciel: Nero 6 Ultra Edition - (.Pas de propriétaire.) [HKLM] -- Nero - Burning Rom!UninstallKey

O42 - Logiciel: Nero 9 Essentials - (.Nero AG.) [HKLM] -- {8a07f337-1840-4bd5-b87b-3b8ecb00cd09}

O42 - Logiciel: Nero BurnRights - (.Nero AG.) [HKLM] -- {7829db6f-a066-4e40-8912-cb07887c20bb}

O42 - Logiciel: Nero BurnRights Help - (.Nero AG.) [HKLM] -- {f6bdd7c5-89ed-4569-9318-469aa9732572}

O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM] -- {bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}

O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM] -- {f4041dce-3fe1-4e18-8a9e-9de65231ee36}

O42 - Logiciel: Nero Disc Copy Gadget - (.Nero AG.) [HKLM] -- {f1861f30-3419-44db-b2a1-c274825698b3}

O42 - Logiciel: Nero Disc Copy Gadget Help - (.Nero AG.) [HKLM] -- {60c731fb-c951-41ce-ad41-8e54c8594609}

O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM] -- {869200db-287a-4dc0-b02b-2b6787fbcd4c}

O42 - Logiciel: Nero DiscSpeed Help - (.Nero AG.) [HKLM] -- {cc019e3f-59d2-4486-8d4b-878105b62a71}

O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM] -- {33cf58f5-48d8-4575-83d6-96f574e4d83a}

O42 - Logiciel: Nero DriveSpeed Help - (.Nero AG.) [HKLM] -- {e5c7d048-f9b4-4219-b323-8bdb01a2563d}

O42 - Logiciel: Nero Express Help - (.Nero AG.) [HKLM] -- {83202942-84b3-4c50-8622-b8c0aa2d2885}

O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM] -- {fbcdfd61-7dcf-4e71-9226-873ba0053139}

O42 - Logiciel: Nero InfoTool Help - (.Nero AG.) [HKLM] -- {20400dbd-e6db-45b8-9b6b-1dd7033818ec}

O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM] -- {e8a80433-302b-4ff1-815d-fcc8eac482ff}

O42 - Logiciel: Nero Online Upgrade - (.Nero AG.) [HKLM] -- {dba84796-8503-4ff0-af57-1747dd9a166d}

O42 - Logiciel: Nero Recode - (.Nero AG.) [HKLM] -- {359cfc0a-beb1-440d-95ba-cf63a86da34f}

O42 - Logiciel: Nero Recode Help - (.Nero AG.) [HKLM] -- {ad6bc5cc-2ef0-49c4-b33d-cdc8b2c4dc80}

O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM] -- {7748ac8c-18e3-43bb-959b-088faea16fb2}

O42 - Logiciel: Nero StartSmart Help - (.Nero AG.) [HKLM] -- {2348b586-c9ae-46ce-936c-a68e9426e214}

O42 - Logiciel: Nero StartSmart OEM - (.Nero AG.) [HKLM] -- {4D43D635-6FDA-4fa5-AA9B-23CF73D058EA}

O42 - Logiciel: Nero Vision - (.Nero AG.) [HKLM] -- {43e39830-1826-415d-8bae-86845787b54b}

O42 - Logiciel: Nero Vision Help - (.Nero AG.) [HKLM] -- {5d9be3c1-8ba4-4e7e-82fd-9f74fa6815d1}

O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM] -- {595a3116-40bb-4e0f-a2e8-d7951da56270}

O42 - Logiciel: PCmover OEM Express - (.Laplink Software, Inc..) [HKLM] -- {1EE14CC2-ED85-4EEA-8714-A31C86AF3769}

O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}

O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}

O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM] -- InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}

O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM] -- {5442DAB8-7177-49E1-8B22-09A049EA5996}

O42 - Logiciel: Ripp-It Codec Pack v 4.2.7 - (.Ripp-It Te@m.) [HKLM] -- Ripp-It Codec Pack

O42 - Logiciel: Streaming Video Recorder V2.3.5 - (.Apowersoft.) [HKLM] -- {2CD65167-671F-49A3-B6C7-3B919DF028E2}_is1

O42 - Logiciel: TVO version 3.7 - (.Pas de propriétaire.) [HKLM] -- {0886B9CF-BFF9-42E6-BFDC-4C882A91E02A}_is1

O42 - Logiciel: TeamViewer 6 - (.TeamViewer GmbH.) [HKLM] -- TeamViewer 6

O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM] -- {5EE7D259-D137-4438-9A5F-42F432EC0421}

O42 - Logiciel: VLC media player 1.1.10 - (.VideoLAN.) [HKLM] -- VLC media player

O42 - Logiciel: WinRAR 4.01 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver

O42 - Logiciel: Xvid 1.2.2 final uninstall - (.Xvid team (Koepi).) [HKLM] -- Xvid_is1

O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM] -- eMule

O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}

 

---\\ HKCU & HKLM Software Keys

[HKCU\Software\Adobe]

[HKCU\Software\Ahead]

[HKCU\Software\AppDataLow\Software\DivX]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\Cygwin]

[HKCU\Software\DivXNetworks]

[HKCU\Software\DivX]

[HKCU\Software\EPSON]

[HKCU\Software\ESET]

[HKCU\Software\Freeware]

[HKCU\Software\GNU]

[HKCU\Software\Gabest]

[HKCU\Software\Haali]

[HKCU\Software\JavaSoft]

[HKCU\Software\Local AppWizard-Generated Applications]

[HKCU\Software\Macromedia]

[HKCU\Software\Mozilla]

[HKCU\Software\NVIDIA Corporation]

[HKCU\Software\Nero]

[HKCU\Software\Netscape]

[HKCU\Software\ODBC]

[HKCU\Software\PDFCreator]

[HKCU\Software\Policies]

[HKCU\Software\Realtek]

[HKCU\Software\Ripp-It_Codec_Pack]

[HKCU\Software\SEIKO EPSON]

[HKCU\Software\Softonic]

[HKCU\Software\Spearit]

[HKCU\Software\TeamViewer]

[HKCU\Software\Trolltech]

[HKCU\Software\WinRAR SFX]

[HKCU\Software\WinRAR]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\eMule]

[HKLM\Software\<company>]

[HKLM\Software\AGEIA Technologies]

[HKLM\Software\ATI Technologies]

[HKLM\Software\Adobe Systems]

[HKLM\Software\Adobe]

[HKLM\Software\Ahead]

[HKLM\Software\Audible]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Combined-Community-Codec-Pack]

[HKLM\Software\DTS]

[HKLM\Software\DivXNetworks]

[HKLM\Software\DivX]

[HKLM\Software\EPSON]

[HKLM\Software\Eset]

[HKLM\Software\GNU]

[HKLM\Software\Gabest]

[HKLM\Software\Google]

[HKLM\Software\HaaliMkx]

[HKLM\Software\InstallShield]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\Khronos]

[HKLM\Software\Laplink]

[HKLM\Software\MAXSOFT-OCRON]

[HKLM\Software\Macromedia]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\NVIDIA Corporation]

[HKLM\Software\Nero]

[HKLM\Software\ODBC]

[HKLM\Software\PDFCreator]

[HKLM\Software\Policies]

[HKLM\Software\Realtek Semiconductor Corp.]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\SRS Labs]

[HKLM\Software\SonicFocus]

[HKLM\Software\Sonic]

[HKLM\Software\Spearit]

[HKLM\Software\TeamViewer]

[HKLM\Software\TrendMicro]

[HKLM\Software\VideoLAN]

[HKLM\Software\Volatile]

[HKLM\Software\Waves Audio]

[HKLM\Software\WinRAR]

[HKLM\Software\Windows]

[HKLM\Software\mozilla.org]

~ Scan Softwares in 00mn 00s

 

 

 

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 30/01/2012 - 06:51:38 - [1594,439] ----D- C:\Program Files\Adobe

O43 - CFD: 7/07/2011 - 17:38:40 - [72,365] ----D- C:\Program Files\Ahead

O43 - CFD: 22/10/2011 - 11:42:54 - [62,069] ----D- C:\Program Files\Apowersoft

O43 - CFD: 4/02/2012 - 15:50:02 - [22,195] ----D- C:\Program Files\Combined Community Codec Pack

O43 - CFD: 23/10/2011 - 08:40:46 - [658,181] ----D- C:\Program Files\Common Files

O43 - CFD: 20/07/2011 - 13:00:10 - [96,965] ----D- C:\Program Files\DivX

O43 - CFD: 14/07/2009 - 10:01:44 - [79,371] ----D- C:\Program Files\DVD Maker

O43 - CFD: 23/08/2011 - 07:21:22 - [9,924] ----D- C:\Program Files\eMule

O43 - CFD: 21/07/2011 - 18:37:48 - [64,708] ----D- C:\Program Files\epson

O43 - CFD: 6/07/2011 - 16:51:24 - [50,058] ----D- C:\Program Files\ESET

O43 - CFD: 6/07/2011 - 16:25:42 - [0] -SH-D- C:\Program Files\Fichiers communs

O43 - CFD: 21/07/2011 - 18:39:28 - [32,455] --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD: 6/07/2011 - 16:40:38 - [30,259] ----D- C:\Program Files\Intel

O43 - CFD: 12/10/2011 - 10:39:38 - [4,320] ----D- C:\Program Files\Internet Explorer

O43 - CFD: 23/10/2011 - 08:40:30 - [84,496] ----D- C:\Program Files\Java

O43 - CFD: 6/07/2011 - 16:38:30 - [23,631] ----D- C:\Program Files\Laplink

O43 - CFD: 7/07/2011 - 18:08:36 - [207,069] ----D- C:\Program Files\Macromedia

O43 - CFD: 7/07/2011 - 18:41:42 - [38,002] ----D- C:\Program Files\Microsoft Analysis Services

O43 - CFD: 7/07/2011 - 18:43:56 - [569,962] ----D- C:\Program Files\Microsoft Office

O43 - CFD: 7/07/2011 - 18:43:56 - [1,722] ----D- C:\Program Files\Microsoft SQL Server Compact Edition

O43 - CFD: 7/07/2011 - 18:44:02 - [0,312] ----D- C:\Program Files\Microsoft Synchronization Services

O43 - CFD: 21/10/2011 - 10:51:20 - [7,797] ----D- C:\Program Files\Microsoft.NET

O43 - CFD: 11/02/2012 - 17:20:38 - [37,500] ----D- C:\Program Files\Mozilla Firefox

O43 - CFD: 14/07/2009 - 05:52:32 - [0,025] ----D- C:\Program Files\MSBuild

O43 - CFD: 6/07/2011 - 16:31:48 - [0] ----D- C:\Program Files\MSXML 4.0

O43 - CFD: 6/07/2011 - 19:25:32 - [546,117] ----D- C:\Program Files\Nero

O43 - CFD: 6/07/2011 - 18:35:52 - [411,974] ----D- C:\Program Files\NVIDIA Corporation

O43 - CFD: 11/08/2011 - 09:48:00 - [29,218] ----D- C:\Program Files\PDFCreator

O43 - CFD: 6/07/2011 - 16:33:26 - [17,288] ----D- C:\Program Files\Realtek

O43 - CFD: 14/07/2009 - 05:52:32 - [36,805] ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 6/07/2011 - 16:37:24 - [0,924] ----D- C:\Program Files\Renesas Electronics

O43 - CFD: 20/07/2011 - 12:57:24 - [50,642] ----D- C:\Program Files\Ripp-It Codec Pack

O43 - CFD: 6/07/2011 - 18:06:18 - [15,800] ----D- C:\Program Files\TeamViewer

O43 - CFD: 6/07/2011 - 16:33:44 - [0] --H-D- C:\Program Files\Temp

O43 - CFD: 13/02/2012 - 12:42:34 - [0,385] ----D- C:\Program Files\Trend Micro

O43 - CFD: 14/07/2009 - 05:53:24 - [0] --H-D- C:\Program Files\Uninstall Information

O43 - CFD: 6/07/2011 - 20:22:58 - [80,346] ----D- C:\Program Files\VideoLAN

O43 - CFD: 14/07/2009 - 09:39:40 - [2,909] ----D- C:\Program Files\Windows Defender

O43 - CFD: 14/07/2009 - 10:01:42 - [6,689] ----D- C:\Program Files\Windows Journal

O43 - CFD: 6/07/2011 - 16:58:18 - [8,695] ----D- C:\Program Files\Windows Mail

O43 - CFD: 14/07/2009 - 09:39:40 - [5,895] ----D- C:\Program Files\Windows Mail7

O43 - CFD: 14/07/2009 - 09:39:40 - [6,302] ----D- C:\Program Files\Windows Media Player

O43 - CFD: 6/07/2011 - 16:25:42 - [11,630] ----D- C:\Program Files\Windows NT

O43 - CFD: 14/07/2009 - 09:39:40 - [4,213] ----D- C:\Program Files\Windows Photo Viewer

O43 - CFD: 14/07/2009 - 05:52:34 - [0,181] ----D- C:\Program Files\Windows Portable Devices

O43 - CFD: 14/07/2009 - 09:39:40 - [25,516] ----D- C:\Program Files\Windows Sidebar

O43 - CFD: 7/07/2011 - 17:08:58 - [3,952] ----D- C:\Program Files\WinRAR

O43 - CFD: 20/07/2011 - 12:57:54 - [0,735] ----D- C:\Program Files\Xvid

O43 - CFD: 14/02/2012 - 09:53:12 - [10,100] ----D- C:\Program Files\ZHPDiag

O43 - CFD: 30/01/2012 - 06:51:40 - [135,535] ----D- C:\Program Files\Common Files\Adobe

O43 - CFD: 11/10/2011 - 08:16:46 - [0,069] ----D- C:\Program Files\Common Files\Adobe Systems Shared

O43 - CFD: 7/07/2011 - 17:38:40 - [25,377] ----D- C:\Program Files\Common Files\Ahead

O43 - CFD: 7/07/2011 - 18:44:00 - [0,095] ----D- C:\Program Files\Common Files\DESIGNER

O43 - CFD: 20/07/2011 - 13:00:02 - [23,505] ----D- C:\Program Files\Common Files\DivX Shared

O43 - CFD: 21/07/2011 - 18:38:44 - [9,366] ----D- C:\Program Files\Common Files\InstallShield

O43 - CFD: 23/10/2011 - 08:40:46 - [1,201] ----D- C:\Program Files\Common Files\Java

O43 - CFD: 6/07/2011 - 16:38:30 - [0,216] ----D- C:\Program Files\Common Files\Laplink

O43 - CFD: 7/07/2011 - 18:08:50 - [1,664] ----D- C:\Program Files\Common Files\Macromedia

O43 - CFD: 7/07/2011 - 18:44:08 - [233,898] ----D- C:\Program Files\Common Files\microsoft shared

O43 - CFD: 6/07/2011 - 19:28:04 - [173,308] ----D- C:\Program Files\Common Files\Nero

O43 - CFD: 20/07/2011 - 13:00:04 - [4,521] ----D- C:\Program Files\Common Files\PX Storage Engine

O43 - CFD: 14/07/2009 - 03:37:06 - [0,003] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 14/07/2009 - 03:37:06 - [39,200] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 7/07/2011 - 18:41:56 - [10,222] ----D- C:\Program Files\Common Files\System

O43 - CFD: 30/01/2012 - 06:51:26 - [111,495] ----D- C:\ProgramData\Adobe

O43 - CFD: 11/10/2011 - 08:17:34 - [0,006] ----D- C:\ProgramData\Adobe Systems

O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Application Data

O43 - CFD: 6/07/2011 - 16:25:42 - [0] -SH-D- C:\ProgramData\Bureau

O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Desktop

O43 - CFD: 20/07/2011 - 13:00:10 - [4,311] ----D- C:\ProgramData\DivX

O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Documents

O43 - CFD: 23/08/2011 - 07:21:24 - [0] ----D- C:\ProgramData\eMule

O43 - CFD: 22/07/2011 - 20:01:08 - [0,422] ----D- C:\ProgramData\EPSON

O43 - CFD: 6/07/2011 - 16:51:24 - [47,217] ----D- C:\ProgramData\ESET

O43 - CFD: 6/07/2011 - 16:25:42 - [0] -SH-D- C:\ProgramData\Favoris

O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Favorites

O43 - CFD: 7/07/2011 - 12:35:40 - [0,000] ----D- C:\ProgramData\Macromedia

O43 - CFD: 6/07/2011 - 16:25:42 - [0] -SH-D- C:\ProgramData\Menu Démarrer

O43 - CFD: 28/01/2012 - 16:24:34 - [363,509] -S--D- C:\ProgramData\Microsoft

O43 - CFD: 7/07/2011 - 18:44:56 - [0,055] ----D- C:\ProgramData\Microsoft Help

O43 - CFD: 6/07/2011 - 16:25:42 - [0] -SH-D- C:\ProgramData\Modèles

O43 - CFD: 6/07/2011 - 19:23:50 - [10,968] ----D- C:\ProgramData\Nero

O43 - CFD: 14/02/2012 - 07:00:34 - [2,598] ----D- C:\ProgramData\NVIDIA

O43 - CFD: 6/07/2011 - 17:58:20 - [0,870] ----D- C:\ProgramData\NVIDIA Corporation

O43 - CFD: 21/09/2011 - 15:15:34 - [0,003] ----D- C:\ProgramData\regid.1986-12.com.adobe

O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Start Menu

O43 - CFD: 8/07/2011 - 14:58:16 - [0,000] ----D- C:\ProgramData\Sun

O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Templates

O43 - CFD: 22/11/2011 - 14:39:18 - [10,638] ----D- C:\Users\MissPulchra\AppData\Roaming\Adobe

O43 - CFD: 31/08/2011 - 09:32:42 - [0] ----D- C:\Users\MissPulchra\AppData\Roaming\AdobeUM

O43 - CFD: 22/10/2011 - 11:42:58 - [0,032] ----D- C:\Users\MissPulchra\AppData\Roaming\Apowersoft

O43 - CFD: 21/08/2011 - 20:11:16 - [0,159] ----D- C:\Users\MissPulchra\AppData\Roaming\DivX

O43 - CFD: 29/07/2011 - 09:24:46 - [0,957] ----D- C:\Users\MissPulchra\AppData\Roaming\EPSON

O43 - CFD: 6/07/2011 - 16:41:40 - [0] ----D- C:\Users\MissPulchra\AppData\Roaming\ESET

O43 - CFD: 6/07/2011 - 16:25:50 - [0] ----D- C:\Users\MissPulchra\AppData\Roaming\Identities

O43 - CFD: 6/07/2011 - 16:35:22 - [0] ----D- C:\Users\MissPulchra\AppData\Roaming\InstallShield

O43 - CFD: 6/07/2011 - 16:42:10 - [0] ----D- C:\Users\MissPulchra\AppData\Roaming\Intel Corporation

O43 - CFD: 6/09/2011 - 15:10:02 - [2,458] ----D- C:\Users\MissPulchra\AppData\Roaming\Macromedia

O43 - CFD: 14/07/2009 - 10:00:42 - [0] ----D- C:\Users\MissPulchra\AppData\Roaming\Media Center Programs

O43 - CFD: 21/12/2011 - 18:57:50 - [13,477] -S--D- C:\Users\MissPulchra\AppData\Roaming\Microsoft

O43 - CFD: 7/07/2011 - 12:43:12 - [29,319] ----D- C:\Users\MissPulchra\AppData\Roaming\Mozilla

O43 - CFD: 8/07/2011 - 14:16:50 - [0,264] ----D- C:\Users\MissPulchra\AppData\Roaming\Nero

O43 - CFD: 2/02/2012 - 15:08:36 - [0,284] ----D- C:\Users\MissPulchra\AppData\Roaming\vlc

O43 - CFD: 7/07/2011 - 17:09:10 - [0,000] ----D- C:\Users\MissPulchra\AppData\Roaming\WinRAR

O43 - CFD: 30/01/2012 - 06:51:34 - [25,203] ----D- C:\Users\MissPulchra\AppData\Local\Adobe

O43 - CFD: 7/07/2011 - 17:43:12 - [1,860] ----D- C:\Users\MissPulchra\AppData\Local\Ahead

O43 - CFD: 6/07/2011 - 16:25:46 - [0] -SH-D- C:\Users\MissPulchra\AppData\Local\Application Data

O43 - CFD: 2/10/2011 - 09:50:04 - [0] ----D- C:\Users\MissPulchra\AppData\Local\Diagnostics

O43 - CFD: 6/07/2011 - 16:38:28 - [29,212] ----D- C:\Users\MissPulchra\AppData\Local\Downloaded Installations

O43 - CFD: 23/08/2011 - 07:21:22 - [0,014] ----D- C:\Users\MissPulchra\AppData\Local\eMule

O43 - CFD: 7/07/2011 - 10:24:38 - [3,843] ----D- C:\Users\MissPulchra\AppData\Local\ESET

O43 - CFD: 6/07/2011 - 16:25:46 - [0] -SH-D- C:\Users\MissPulchra\AppData\Local\Historique

O43 - CFD: 24/10/2011 - 07:12:24 - [1908,493] ----D- C:\Users\MissPulchra\AppData\Local\Microsoft

O43 - CFD: 7/07/2011 - 18:41:42 - [0] ----D- C:\Users\MissPulchra\AppData\Local\Microsoft Help

O43 - CFD: 7/07/2011 - 12:43:00 - [171,742] ----D- C:\Users\MissPulchra\AppData\Local\Mozilla

O43 - CFD: 14/02/2012 - 09:49:14 - [-1239,251] ----D- C:\Users\MissPulchra\AppData\Local\Temp

O43 - CFD: 6/07/2011 - 16:25:46 - [0] -SH-D- C:\Users\MissPulchra\AppData\Local\Temporary Internet Files

O43 - CFD: 22/11/2011 - 09:37:08 - [22,937] ----D- C:\Users\MissPulchra\AppData\Local\VirtualStore

~ Scan Program Folder in 00mn 02s

 

 

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.0899D22666F13339CE14C52FD760D17C] - 14/02/2012 - 09:36:33 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1958621]

O44 - LFC:[MD5.D580B8C4DFA4D44224CAEE715C5F501E] - 14/02/2012 - 07:04:41 ---A- . (...) -- C:\Windows\system32\PerfStringBackup.INI [1660386]

O44 - LFC:[MD5.D9FDC24A58380444EDE40D620D029287] - 14/02/2012 - 07:04:41 ---A- . (...) -- C:\Windows\system32\perfc009.dat [120382]

O44 - LFC:[MD5.82EFE9C1F0AB77D0EB508676D76E785E] - 14/02/2012 - 07:04:41 ---A- . (...) -- C:\Windows\system32\perfc00C.dat [148086]

O44 - LFC:[MD5.CB10FF9EEF595548339762CE5AF66B0D] - 14/02/2012 - 07:04:41 ---A- . (...) -- C:\Windows\system32\perfh009.dat [651450]

O44 - LFC:[MD5.25989259BA901CA01C40F7F8F252C4D7] - 14/02/2012 - 07:04:41 ---A- . (...) -- C:\Windows\system32\perfh00C.dat [744568]

O44 - LFC:[MD5.D88E2CDAA58B01ACB6E17BCC47A3980F] - 14/02/2012 - 07:00:32 ---A- . (...) -- C:\Windows\setupact.log [56994]

O44 - LFC:[MD5.E7506CA0C6B993027D2ECCA0938F13C3] - 14/02/2012 - 07:00:32 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]

~ Scan Files in 00mn 01s

 

 

 

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)

O45 - LFCP:[MD5.8065F86E81A4B29DA4DEC5A60642C86C] - 12/02/2012 - 08:58:30 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf

O45 - LFCP:[MD5.1DFFC539AEAF193A9ECA6AE9DAF3F7F8] - 12/02/2012 - 12:19:37 ---A- - C:\Windows\Prefetch\WINWORD.EXE-778F7C2B.pf

O45 - LFCP:[MD5.8A61B9B93CE5590C0E9EAAF6B2BD9DCF] - 12/02/2012 - 14:54:30 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf

O45 - LFCP:[MD5.D18AF039855EB2FBEEF2CC4C947E1075] - 12/02/2012 - 14:54:37 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7AC6742A.pf

O45 - LFCP:[MD5.B4CA300BB6DEC10F511F8A618311708F] - 12/02/2012 - 15:03:58 ---A- - C:\Windows\Prefetch\LPREMOVE.EXE-284EF282.pf

O45 - LFCP:[MD5.09CC134EB2168BE302B81CA9375B6852] - 12/02/2012 - 18:29:32 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-4CAE0F5D.pf

O45 - LFCP:[MD5.0AAF214FD8EFD3650425015C11959B43] - 12/02/2012 - 18:48:56 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-239C4912.pf

O45 - LFCP:[MD5.BBCAEDA1C39267F96CB975D444A78E50] - 12/02/2012 - 18:58:19 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-59120E45.pf

O45 - LFCP:[MD5.79A5A7E361762C784E3AD6147A48E18F] - 12/02/2012 - 19:12:49 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-239D0EEF.pf

O45 - LFCP:[MD5.A9F2F1A185CBAEF750CCA40BA4FCABE2] - 12/02/2012 - 19:20:49 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-239D0DC7.pf

O45 - LFCP:[MD5.C6106265A6DE1EBE39F258F7A27D17FC] - 12/02/2012 - 20:44:34 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-1F51FD59.pf

O45 - LFCP:[MD5.1F79357D783C3DD29D240CB76C4E33A2] - 13/02/2012 - 07:03:52 ---A- - C:\Windows\Prefetch\OUTLOOK.EXE-056DDE0F.pf

O45 - LFCP:[MD5.A251BB9D152154E7953C58AAF7FDA90C] - 13/02/2012 - 07:03:55 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-4D46F445.pf

O45 - LFCP:[MD5.86636A4273BFB4D61503F211BF862931] - 13/02/2012 - 10:34:05 ---A- - C:\Windows\Prefetch\CHARMAP.EXE-81C46F0C.pf

O45 - LFCP:[MD5.B8F76B5D038BA028C6BA2739C730F1F3] - 13/02/2012 - 10:57:55 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-8203643F.pf

O45 - LFCP:[MD5.15889382C3AB9E290C6A79D3289C46A6] - 13/02/2012 - 11:13:07 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-BF9DB582.pf

O45 - LFCP:[MD5.6F728AB0C3D8E817D398FF388CE6358D] - 13/02/2012 - 11:16:17 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5812412C.pf

O45 - LFCP:[MD5.8BE207170407CDC8509455A5BBC1D6E9] - 13/02/2012 - 12:00:33 ---A- - C:\Windows\Prefetch\VLC.EXE-A11F73EE.pf

O45 - LFCP:[MD5.2884586A0FCA19F21E847184BCD8AAB9] - 13/02/2012 - 12:02:42 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-09F42DFA.pf

O45 - LFCP:[MD5.19A892E2BF198E7BC853E45963FBB6CF] - 13/02/2012 - 12:08:01 ---A- - C:\Windows\Prefetch\PERFMON.EXE-E34F662B.pf

O45 - LFCP:[MD5.286C83F50010E1769EA0C59953B2BE30] - 13/02/2012 - 12:42:32 ---A- - C:\Windows\Prefetch\HJTINSTALL.EXE-7B3E3199.pf

O45 - LFCP:[MD5.DC1DD80E00566182100A21FEBB5E9744] - 13/02/2012 - 12:42:42 ---A- - C:\Windows\Prefetch\HIJACKTHIS.EXE-9FD56571.pf

O45 - LFCP:[MD5.7FCB51826DD4A60C3076EEB9AEB72152] - 13/02/2012 - 12:42:47 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf

O45 - LFCP:[MD5.79E4FEA1B0A09A78071C7765CF418093] - 13/02/2012 - 12:54:57 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5838DEF7.pf

O45 - LFCP:[MD5.E610B809D0CBBFA51A670FAE5CC8CE26] - 13/02/2012 - 13:33:24 ---A- - C:\Windows\Prefetch\PHOTOSHP.EXE-1E9BDD62.pf

O45 - LFCP:[MD5.54DDE6A433029143F7E1F41B79FE98F2] - 13/02/2012 - 13:57:37 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-172CF576.pf

O45 - LFCP:[MD5.1FD4482549C04722986754F6FC11E3E7] - 13/02/2012 - 13:57:49 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-719325FF.pf

O45 - LFCP:[MD5.FA1AA540652B4F989A4FFEE3FA4D327F] - 13/02/2012 - 15:52:21 ---A- - C:\Windows\Prefetch\NEROEXPRESS.EXE-36AAF5F7.pf

O45 - LFCP:[MD5.9E40D5D2EDA7A470432B5CD3AE3EDFCB] - 13/02/2012 - 16:21:41 ---A- - C:\Windows\Prefetch\WINRAR.EXE-94E7D80C.pf

O45 - LFCP:[MD5.EB85CDFBB00685AACE6CD8B2762A60DB] - 13/02/2012 - 16:23:21 ---A- - C:\Windows\Prefetch\VIRTUALDUBMOD.EXE-1ABF2D98.pf

O45 - LFCP:[MD5.3A9BBCD9A314572225E04CB6EF4B1022] - 13/02/2012 - 16:30:14 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-1239EF5E.pf

O45 - LFCP:[MD5.78557EFE0E1D0E2CA2B8B945EC00F551] - 13/02/2012 - 16:39:22 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-0E17CDBE.pf

O45 - LFCP:[MD5.E9C3462259DA8C715F57D19CEB523F2A] - 13/02/2012 - 16:53:53 ---A- - C:\Windows\Prefetch\Layout.ini

O45 - LFCP:[MD5.25FA4511CED8E831D617A839E71F6CF0] - 13/02/2012 - 16:56:54 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-411A328D.pf

O45 - LFCP:[MD5.BB4B63C2F32A9E30FCD46F3B54959FA3] - 13/02/2012 - 17:03:56 ---A- - C:\Windows\Prefetch\CSC.EXE-A3B8D95D.pf

O45 - LFCP:[MD5.CBB6DA8842AAE253F9802AFAB2771EBC] - 13/02/2012 - 17:03:56 ---A- - C:\Windows\Prefetch\CVTRES.EXE-069169FB.pf

O45 - LFCP:[MD5.65E35E20D19A8800F01A9EDFE36A56C0] - 13/02/2012 - 17:03:57 ---A- - C:\Windows\Prefetch\W32TM.EXE-1101AF41.pf

O45 - LFCP:[MD5.6889F2EEE5417B217E5672ED87E6EF6B] - 13/02/2012 - 17:04:05 ---A- - C:\Windows\Prefetch\SDIAGNHOST.EXE-8D72177C.pf

O45 - LFCP:[MD5.803A7C16B74F37F218AA9869D289AFAC] - 13/02/2012 - 17:04:06 ---A- - C:\Windows\Prefetch\PING.EXE-7E94E73E.pf

O45 - LFCP:[MD5.96238A7DD0B523C1D8D5416FF74F279D] - 13/02/2012 - 17:09:40 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-DE9673F9.pf

O45 - LFCP:[MD5.7F8AEEA9CF1E36E4C5D06260B7B05B05] - 13/02/2012 - 17:30:35 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx

O45 - LFCP:[MD5.21C4FA12D4963D57EA6F41512D5BC8AF] - 13/02/2012 - 17:30:35 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf

O45 - LFCP:[MD5.FCE07FC264DAB4EA30E7290AF657F649] - 13/02/2012 - 17:30:43 ---A- - C:\Windows\Prefetch\COMUPDATUS.EXE-02EEA175.pf

O45 - LFCP:[MD5.A31784B856387DA130B9BE4E917C716E] - 13/02/2012 - 17:30:45 ---A- - C:\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf

O45 - LFCP:[MD5.E33D5884EC77521D45C8A46F41E92141] - 13/02/2012 - 17:31:35 ---A- - C:\Windows\Prefetch\AgCx_SC1.db

O45 - LFCP:[MD5.673C5EBD6C71BB1ACFF0FBF22D516DED] - 13/02/2012 - 17:49:36 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-E69F695A.pf

O45 - LFCP:[MD5.2BC75A484B43A8260DE961D86958DAD5] - 13/02/2012 - 17:49:45 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf

O45 - LFCP:[MD5.90DF46FA9575155B476AEC60E32B8775] - 13/02/2012 - 17:50:16 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-4D69BCB2.pf

O45 - LFCP:[MD5.0ADC6344FCC9521219EB825C37B410CA] - 13/02/2012 - 18:12:30 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-6A56265A.pf

O45 - LFCP:[MD5.F407BFC71E8FC9D69A342195B876F87A] - 13/02/2012 - 18:41:08 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-6A335F15.pf

O45 - LFCP:[MD5.B519263CD1A677352A9661F11F39CACA] - 13/02/2012 - 18:49:00 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin

O45 - LFCP:[MD5.A6C15424FA2295968386A3CE831F07E5] - 14/02/2012 - 07:01:15 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-40DD444D.pf

O45 - LFCP:[MD5.2694310B5CC64457D8C41A121F13B222] - 14/02/2012 - 07:02:35 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf

O45 - LFCP:[MD5.AEF015C2360110ECEF10395756B182D9] - 14/02/2012 - 07:02:45 ---A- - C:\Windows\Prefetch\DAEMONU.EXE-4BD6E483.pf

O45 - LFCP:[MD5.8DA05878CC923621DB7B540B4DA4C22B] - 14/02/2012 - 07:02:45 ---A- - C:\Windows\Prefetch\IASTORDATAMGRSVC.EXE-67E8628C.pf

O45 - LFCP:[MD5.9EA2277127FE1FA66BB678222EBE9EA1] - 14/02/2012 - 07:02:46 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-05F624AB.pf

O45 - LFCP:[MD5.C1A2B32EF20ACF8A2F80264C84356484] - 14/02/2012 - 07:04:43 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf

O45 - LFCP:[MD5.6BCB009945C0FC2AA85BC502D5D1CF20] - 14/02/2012 - 07:07:55 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-121720BA.pf

O45 - LFCP:[MD5.860CAB6C557CE289BA0A6090493F97A1] - 14/02/2012 - 07:09:56 ---A- - C:\Windows\Prefetch\OUTLOOK.EXE-C6B7F77A.pf

O45 - LFCP:[MD5.2D1EB748160D9D332EEF61A6838A805A] - 14/02/2012 - 07:09:59 ---A- - C:\Windows\Prefetch\OSPPSVC.EXE-E53D3CC0.pf

O45 - LFCP:[MD5.2FC4C2FECD61E1005A7EE1253BFD1943] - 14/02/2012 - 07:10:43 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-A606B53C.pf

O45 - LFCP:[MD5.352AF2E94939F3E78FF22FEE5A79F251] - 14/02/2012 - 07:10:56 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-7226D1F8.pf

O45 - LFCP:[MD5.F1E672E496AA83AEA84FC05B7D5A34D8] - 14/02/2012 - 07:13:34 ---A- - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf

O45 - LFCP:[MD5.EA0F6F5DD3865EDA9F5BD603D1F51AA9] - 14/02/2012 - 07:23:00 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf

O45 - LFCP:[MD5.433921AE85CD397B8DE7C2EECCA0BB6A] - 14/02/2012 - 08:37:02 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-908C99F8.pf

O45 - LFCP:[MD5.FAE376CBD53B6E9A25ADBDCF860FECD5] - 14/02/2012 - 08:37:04 ---A- - C:\Windows\Prefetch\PREVHOST.EXE-4F1C4E0F.pf

O45 - LFCP:[MD5.AE880ED669CDEE0A17745A988201B648] - 14/02/2012 - 08:37:05 ---A- - C:\Windows\Prefetch\EXCEL.EXE-53A22446.pf

O45 - LFCP:[MD5.C1515A0F68B77B6FAA48F127FE5BAEAB] - 14/02/2012 - 08:37:05 ---A- - C:\Windows\Prefetch\FLASHUTIL11E_ACTIVEX.EXE-BC9283F4.pf

O45 - LFCP:[MD5.3DA5733C44912070014E60674D851BD0] - 14/02/2012 - 08:39:22 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-724155680-3840634849-724229629-1000.db

O45 - LFCP:[MD5.EC962F68ADB65BDE9EBDB37C424D01D8] - 14/02/2012 - 08:39:22 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-724155680-3840634849-724229629-1000.db

O45 - LFCP:[MD5.57A77C510AD440DD7978BA56C999F98C] - 14/02/2012 - 09:14:54 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf

O45 - LFCP:[MD5.C422ADE8A46D396C3C6B44794A0934DE] - 14/02/2012 - 09:26:23 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db

O45 - LFCP:[MD5.EB8C5F9526B29329DD31A81FD79CE8DD] - 14/02/2012 - 09:26:23 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db

O45 - LFCP:[MD5.708111BAAD9287BC1F2304D4D0D58D51] - 14/02/2012 - 09:26:23 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db

O45 - LFCP:[MD5.414E99BA4037F250571B979C56BE70B8] - 14/02/2012 - 09:26:23 ---A- - C:\Windows\Prefetch\AgRobust.db

O45 - LFCP:[MD5.3C113F303195BEC4CA00FFB9E6482E28] - 14/02/2012 - 09:34:49 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-0E157CBB.pf

O45 - LFCP:[MD5.97C3A3A4767FC9D9E48F81AA2AC43B58] - 14/02/2012 - 09:34:49 ---A- - C:\Windows\Prefetch\WINMAIL.EXE-1092D371.pf

O45 - LFCP:[MD5.37F2A9693EFD52684B18FE07CA4BCAFF] - 14/02/2012 - 09:43:39 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf

O45 - LFCP:[MD5.74530A1F54F7DF02CD3EA87FE0D9BDC5] - 14/02/2012 - 09:43:47 ---A- - C:\Windows\Prefetch\TASKMGR.EXE-5F5F473D.pf

O45 - LFCP:[MD5.980EEC96C857573227DC92052A6A89BB] - 14/02/2012 - 09:49:12 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-4C60AA95.pf

O45 - LFCP:[MD5.F9D2C4044E9E284D4E367D3373FAF44F] - 14/02/2012 - 09:49:13 ---A- - C:\Windows\Prefetch\ZHPDIAG2.EXE-2EF99F6B.pf

O45 - LFCP:[MD5.64FEA91A04E77DF8A77B980BCB1CFB78] - 14/02/2012 - 09:49:13 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-57D4A302.pf

O45 - LFCP:[MD5.ACA51BFBCB8E0DD7EBDD1BC81C35EE7A] - 14/02/2012 - 09:49:18 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf

O45 - LFCP:[MD5.C1389EDDFCA332014927D2388C7B7F31] - 14/02/2012 - 09:49:22 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf

O45 - LFCP:[MD5.BF72B90EFF9D21068523F8B3B3D67061] - 14/02/2012 - 09:49:22 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf

O45 - LFCP:[MD5.6155AB66BB3BE1999A8F38432F77A924] - 14/02/2012 - 09:51:19 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf

O45 - LFCP:[MD5.FF48C00E7349FECD316D62EA72F8A801] - 14/02/2012 - 09:51:24 ---A- - C:\Windows\Prefetch\ZHPFIX.EXE-85222C4E.pf

O45 - LFCP:[MD5.F1EB9FBBA965A8111387F180C05A7561] - 14/02/2012 - 09:52:25 ---A- - C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf

O45 - LFCP:[MD5.B52FD1968CDE40F4E40871819B483D69] - 14/02/2012 - 09:52:35 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-5F50D22C.pf

O45 - LFCP:[MD5.B9AC2B4FB4123490E2B8AC17FCE36D3D] - 14/02/2012 - 09:53:08 ---A- - C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf

O45 - LFCP:[MD5.7044E4E6D408290F21A137F7A79B5716] - 14/02/2012 - 09:53:08 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-D1EF4768.pf

O45 - LFCP:[MD5.6DE3A93A28EFCBD93DD4ACD52E2DD67F] - 14/02/2012 - 09:53:10 ---A- - C:\Windows\Prefetch\PV.EXE-7B89A1E7.pf

O45 - LFCP:[MD5.AFE5C92599AFD01D0A365D32337AA4A4] - 14/02/2012 - 09:53:12 ---A- - C:\Windows\Prefetch\CMD.EXE-4A81B364.pf

O45 - LFCP:[MD5.01108A50FC5CC87CA588287340FF9FF1] - 14/02/2012 - 09:53:12 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-5CA45734.pf

O45 - LFCP:[MD5.517F3D4FE30E19171733E53355774A00] - 14/02/2012 - 09:53:14 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf

O45 - LFCP:[MD5.A0411EE9B2CE06D72FA0620142CC8913] - 14/02/2012 - 09:53:14 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf

~ Scan Prefetcher in 00mn 00s

 

 

 

---\\ Déni du service (Local Security Authority) (O48)

O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\TSpkg.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll

~ Scan Keys in 00mn 00s

 

 

 

---\\ Contrôle du Safe Boot (CSB) (O49)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\system32\Drivers\ipnat.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\system32\Drivers\nsiproxy.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\system32\Drivers\rdpencdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys

~ Scan CSB in 00mn 00s

 

 

 

---\\ MountPoints2 Shell Key (O51)

O51 - MPSK:{40f0b7f1-a815-11e0-b254-806e6f6e6963}\AutoRun\command. (...) -- D:\EIProcessCaller.exe (.not file.)

~ Scan Keys in 00mn 00s

 

 

 

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll

O52 - TDSD: \Drivers32\"vidc.XVID"="xvidvfw.dll" . (...) -- C:\Windows\System32\xvidvfw.dll

O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\DivX.dll

O52 - TDSD: \Drivers32\"vidc.yv12"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\DivX.dll

O52 - TDSD: \Drivers32\"vidc.ffds"="C:\PROGRA~1\COMBIN~1\Filters\FFDShow\ff_vfw.dll" . (...) -- (.not file.)

O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \drivers.desc\"xvidvfw.dll"="Xvid MPEG-4 Video Codec" . (...) -- C:\Windows\System32\xvidvfw.dll

O52 - TDSD: \drivers.desc\"DivX.dll"="DivX 6.9.2 Codec" . (...) -- (.not file.)

O52 - TDSD: \drivers.desc\"C:\PROGRA~1\COMBIN~1\Filters\FFDShow\ff_vfw.dll"="ffdshow Video Codec" . (...) -- (.not file.)

~ Scan Keys in 00mn 00s

 

 

 

---\\ ShareTools MSconfig StartupReg (O53) (None)

 

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

~ Scan Keys in 00mn 00s

 

 

 

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

~ Scan Keys in 00mn 00s

 

 

 

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [422976]

O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 14/07/2009 - 02:26:17 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [297552]

O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [146512]

O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 14/07/2009 - 02:26:15 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [14400]

O58 - SDL:[MD5.2101A86C25C154F8314B24EF49D7FBC2] - 14/07/2009 - 02:26:15 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [79952]

O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 14/07/2009 - 02:26:15 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\system32\drivers\amdsbs.sys [159312]

O58 - SDL:[MD5.B81C2B5616F6420A9941EA093A92B150] - 14/07/2009 - 02:26:15 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [23616]

O58 - SDL:[MD5.85ECE26F326C2D07BA77A60343468272] - 30/12/1899 - 14:19:40 --HA- . (.Wondershare - Wondershare Virtual Audio Device.) -- C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys [16640]

O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [76368]

O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [86608]

O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 13/07/2009 - 23:02:49 ---A- . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gigabit Ethernet..) -- C:\Windows\system32\drivers\b57nd60x.sys [229888]

O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 13/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568]

O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 13/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248]

O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 14/07/2009 - 01:57:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [272128]

O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 13/07/2009 - 23:53:32 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336]

O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 13/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160]

O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 13/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904]

O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 13/07/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbdx.sys [430080]

O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 14/07/2009 - 02:26:21 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [15952]

O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 14/07/2009 - 02:20:28 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [70720]

O58 - SDL:[MD5.137482F0AFA288A9E0B563C23FACB4CD] - 21/09/2010 - 07:33:00 ---A- . (.Intel Corporation - Intel® Gigabit Adapter NDIS 6.x driver.) -- C:\Windows\system32\drivers\e1c6232.sys [238248]

O58 - SDL:[MD5.04CBA07E73F152970FC34D66D3892E2A] - 21/12/2010 - 14:04:06 ---A- . (.ESET - Amon monitor.) -- C:\Windows\system32\drivers\eamonm.sys [137144]

O58 - SDL:[MD5.FE7824239D132AD9EBD8645FE1199B30] - 21/12/2010 - 14:04:06 ---A- . (.ESET - ESET Helper driver.) -- C:\Windows\system32\drivers\ehdrv.sys [115008]

O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 14/07/2009 - 02:20:28 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [453712]

O58 - SDL:[MD5.DDB45F6371714601A43E8BE38145BE18] - 21/12/2010 - 12:47:38 ---A- . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\system32\drivers\epfwwfpr.sys [95384]

O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 13/07/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbdx.sys [3100160]

O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 13/07/2009 - 23:54:14 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [26624]

O58 - SDL:[MD5.CFCB18986426A2D8E66F1992636221D0] - 8/10/2010 - 06:21:26 ---A- . (.Intel Corporation - Intel® Management Engine Interface.) -- C:\Windows\system32\drivers\HECI.sys [41088]

O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 14/07/2009 - 02:20:28 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [67152]

O58 - SDL:[MD5.E37B61662D01E1CD1F5A8A386B555A7C] - 29/07/2010 - 00:14:06 ---A- . (.Intel Corporation - NDIS 6.1 Advanced Networking Services..) -- C:\Windows\system32\drivers\iANSW60.sys [134368]

O58 - SDL:[MD5.F4F4CBC7F6C7CB940AA9F0AAF3EF1104] - 13/09/2010 - 17:18:16 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x86.) -- C:\Windows\system32\drivers\iaStor.sys [353304]

O58 - SDL:[MD5.934AF4D7C5F457B9F0743F4299B77B67] - 14/07/2009 - 02:20:36 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\system32\drivers\iaStorV.sys [332352]

O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 14/07/2009 - 02:20:36 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41040]

O58 - SDL:[MD5.35062E6A945E12EEB993988AEC001C30] - 1/09/2010 - 21:26:30 ---A- . (.Intel Corporation - Intel® Network Adapter Diagnostic Driver.) -- C:\Windows\system32\drivers\iqvw32.sys [30368]

O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [95824]

O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 14/07/2009 - 02:20:37 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [89168]

O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [54864]

O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [96848]

O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\Windows\system32\drivers\megasas.sys [30800]

O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [235584]

O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 14/07/2009 - 02:20:44 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [44624]

O58 - SDL:[MD5.03AD379554B50FA1802BE4EC2E291E92] - 8/10/2010 - 03:39:08 ---A- . (.Renesas Electronics Corporation - USB 3.0 Hub Driver.) -- C:\Windows\system32\drivers\nusb3hub.sys [64904]

O58 - SDL:[MD5.06FE87C9D181AF5F04D192E604E10E6C] - 8/10/2010 - 03:39:08 ---A- . (.Renesas Electronics Corporation - USB 3.0 Host Controller Driver.) -- C:\Windows\system32\drivers\nusb3xhc.sys [146568]

O58 - SDL:[MD5.0E616537F3E12D4C9FB71181C2F21BD5] - 25/05/2011 - 08:25:04 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\system32\drivers\nvhda32v.sys [139368]

O58 - SDL:[MD5.847B1755F7757F825305A1FFE6DAC3E9] - 25/05/2011 - 08:24:42 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 275.33.) -- C:\Windows\system32\drivers\nvlddmkm.sys [10589800]

O58 - SDL:[MD5.3F3D04B1D08D43C16EA7963954EC768D] - 14/07/2009 - 02:20:44 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [117312]

O58 - SDL:[MD5.C99F251A5DE63C6F129CF71933ACED0F] - 14/07/2009 - 02:20:44 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [142416]

O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 14/07/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1383488]

O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 14/07/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106064]

O58 - SDL:[MD5.F42901F67CBC137A0F141C58B831A03C] - 5/10/2010 - 12:57:10 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHDA.sys [3211432]

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/07/2009 - 21:50:20 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480]

O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 14/07/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [40016]

O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 14/07/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [77888]

O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 14/07/2009 - 02:19:04 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [21072]

O58 - SDL:[MD5.111A023266532C621EE69AE96E47081E] - 12/01/2011 - 10:42:16 ---A- . (.TeamViewer GmbH - TVMonitor.sys.) -- C:\Windows\system32\drivers\TVMonitor.sys [13304]

O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 14/07/2009 - 02:19:10 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [16976]

O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 14/07/2009 - 02:19:11 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [141904]

O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029]

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 13/07/2009 - 22:40:44 ---A- . (...) -- C:\Windows\system32\country.sys [27097]

O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 13/07/2009 - 22:40:40 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768]

O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 13/07/2009 - 22:40:43 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809]

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 13/07/2009 - 22:40:43 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537]

O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 13/07/2009 - 22:40:23 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866]

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 13/07/2009 - 22:40:31 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146]

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 13/07/2009 - 22:40:35 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370]

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 13/07/2009 - 22:40:39 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274]

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 13/07/2009 - 22:40:27 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146]

O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 13/07/2009 - 22:40:11 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952]

O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 13/07/2009 - 22:40:15 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672]

O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 13/07/2009 - 22:40:17 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776]

O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 13/07/2009 - 22:40:19 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536]

O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 13/07/2009 - 22:40:13 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672]

~ Scan Drivers in 00mn 00s

 

 

 

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)

O61 - LFC:Last File Created 10/03/2009 - 03:00:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\COMMON\E_DPPE06.EX_ [100737]

O61 - LFC:Last File Created 11/02/2012 - 09:33:40 ---A- C:\Users\All Users\Nero\Nero BackItUp 4\Cache\BIU22AC.txt [918]

O61 - LFC:Last File Created 11/02/2012 - 09:38:46 ---A- C:\Users\MissPulchra\AppData\Local\Temp\CVRD7A8.tmp.cvr [0]

O61 - LFC:Last File Created 11/02/2012 - 12:34:11 ---A- C:\Users\All Users\Nero\Nero BackItUp 4\Cache\BIU20B9.txt [918]

O61 - LFC:Last File Created 11/02/2012 - 13:57:38 ---A- C:\Users\MissPulchra\AppData\Local\Temp\UzbrxcqZ.avi.part [0]

O61 - LFC:Last File Created 11/02/2012 - 15:35:09 ---A- C:\Users\All Users\Nero\Nero BackItUp 4\Cache\BIU1FB0.txt [918]

O61 - LFC:Last File Created 11/02/2012 - 16:47:52 ---A- C:\Users\MissPulchra\AppData\Local\Temp\~DF9E7D4FA3C8F29662.TMP [0]

O61 - LFC:Last File Created 11/02/2012 - 16:47:54 ---A- C:\Users\MissPulchra\AppData\Local\Temp\CVRC4C6.tmp.cvr [0]

O61 - LFC:Last File Created 11/02/2012 - 16:47:55 ---A- C:\Users\MissPulchra\AppData\Local\Temp\~DF0FC58E7DD2576591.TMP [512]

O61 - LFC:Last File Created 11/02/2012 - 16:59:26 ---A- C:\Users\MissPulchra\AppData\Local\Temp\~DFB77139EC0339CF31.TMP [16384]

O61 - LFC:Last File Created 11/02/2012 - 17:07:32 ---A- C:\Users\All Users\Nero\Nero BackItUp 4\Cache\BIU224E.txt [918]

O61 - LFC:Last File Created 12/02/2012 - 08:57:51 ---A- C:\Users\All Users\Nero\Nero BackItUp 4\Cache\BIU21A3.txt [918]

O61 - LFC:Last File Created 12/02/2012 - 09:04:35 ---A- C:\Users\MissPulchra\AppData\Local\Temp\CVR6A17.tmp.cvr [0]

O61 - LFC:Last File Created 12/02/2012 - 09:05:57 ---A- C:\Users\MissPulchra\AppData\Local\Temp\CVRABA9.tmp.cvr [0]

O61 - LFC:Last File Created 13/02/2012 - 07:00:17 ---A- C:\Users\All Users\Nero\Nero BackItUp 4\Cache\BIU23E4.txt [918]

O61 - LFC:Last File Created 13/02/2012 - 07:02:15 ---A- C:\Users\All Users\NVIDIA\Updatus\journalBS.main.xml.bak [3797]

O61 - LFC:Last File Created 13/02/2012 - 07:03:42 ---A- C:\Users\MissPulchra\AppData\Local\Temp\CVR5437.tmp.cvr [0]

O61 - LFC:Last File Created 13/02/2012 - 08:04:11 ---A- C:\Users\MissPulchra\AppData\Roaming\Microsoft\Office\Recent\bestmodel.xls.LNK [596]

O61 - LFC:Last File Created 13/02/2012 - 08:04:32 ---A- C:\Users\MissPulchra\AppData\Roaming\Microsoft\Office\Recent\250944186274painBlanc.xls.LNK [739]

O61 - LFC:Last File Created 13/02/2012 - 08:04:32 ---A- C:\Users\MissPulchra\AppData\Roaming\Microsoft\Office\Recent\Fevrier 2012.LNK [589]

O61 - LFC:Last File Created 13/02/2012 - 08:07:21 ---A- C:\Users\MissPulchra\Contacts\joël.contact [1098]

O61 - LFC:Last File Created 13/02/2012 - 09:23:02 ---A- C:\Users\MissPulchra\AppData\Roaming\Microsoft\Office\Recent\Ma liste Choupinette.xls.LNK [431]

O61 - LFC:Last File Created 13/02/2012 - 10:11:44 ---A- C:\Users\All Users\Nero\Nero BackItUp 4\Cache\BIU23B5.txt [918]

O61 - LFC:Last File Created 13/02/2012 - 10:54:01 ---A- C:\Users\All Users\Nero\Nero BackItUp 4\Cache\BIU21D2.txt [918]

O61 - LFC:Last File Created 13/02/2012 - 11:15:19 ---A- C:\Users\All Users\Nero\Nero BackItUp 4\Cache\BIU1FCF.txt [918]

O61 - LFC:Last File Created 13/02/2012 - 11:16:22 ---A- C:\Users\MissPulchra\AppData\Local\Temp\~DF1157410819EDFB10.TMP [0]

O61 - LFC:Last File Created 13/02/2012 - 11:16:25 ---A- C:\Users\MissPulchra\AppData\Local\Temp\~DFB104B1822C1B25F6.TMP [16384]

O61 - LFC:Last File Created 13/02/2012 - 11:44:25 ---A- C:\Users\All Users\NVIDIA\Resource.old [1048228]

O61 - LFC:Last File Created 13/02/2012 - 11:44:28 ---A- C:\Users\All Users\Nero\Nero BackItUp 4\Cache\BIU1FBF.txt [918]

O61 - LFC:Last File Created 13/02/2012 - 12:09:09 ---A- C:\Users\MissPulchra\AppData\Local\Resmon.ResmonCfg [7606]

O61 - LFC:Last File Created 13/02/2012 - 13:33:14 ---A- C:\Users\MissPulchra\AppData\Local\Temp\TWAIN.LOG [899]

O61 - LFC:Last File Created 13/02/2012 - 13:33:14 ---A- C:\Users\MissPulchra\AppData\Local\Temp\Twain001.Mtx [4]

O61 - LFC:Last File Created 13/02/2012 - 13:33:14 ---A- C:\Users\MissPulchra\AppData\Local\Temp\Twunk001.MTX [156]

O61 - LFC:Last File Created 13/02/2012 - 15:52:11 ---A- C:\Users\MissPulchra\AppData\Roaming\Nero\OnlineServices\1registrationinfo.xml [352]

O61 - LFC:Last File Created 13/02/2012 - 17:30:43 ---A- C:\Users\All Users\NVIDIA\Updatus\journalBS.jour.dat.bak [2062]

O61 - LFC:Last File Created 13/02/2012 - 17:55:07 ---A- C:\Users\MissPulchra\AppData\Roaming\Adobe\Acrobat\9.0\JavaScripts\glob.js [0]

O61 - LFC:Last File Created 13/02/2012 - 17:55:07 ---A- C:\Users\MissPulchra\AppData\Roaming\Adobe\Acrobat\9.0\JavaScripts\glob.settings.js [10]

O61 - LFC:Last File Created 13/02/2012 - 17:55:07 ---A- C:\Users\MissPulchra\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents [3072]

O61 - LFC:Last File Created 13/02/2012 - 17:55:07 ---A- C:\Users\MissPulchra\AppData\Roaming\Adobe\Acrobat\9.0\TMDocs.sav [36]

O61 - LFC:Last File Created 13/02/2012 - 17:55:07 ---A- C:\Users\MissPulchra\AppData\Roaming\Adobe\Acrobat\9.0\TMGrpPrm.sav [54]

O61 - LFC:Last File Created 13/02/2012 - 17:55:11 ---A- C:\Users\MissPulchra\AppData\Roaming\Adobe\Photoshop\6.0\Paramètres Adobe Photoshop 6\Contours.psp [940]

O61 - LFC:Last File Created 13/02/2012 - 17:55:11 ---A- C:\Users\MissPulchra\AppData\Roaming\Adobe\Photoshop\6.0\Paramètres Adobe Photoshop 6\Dégradés.psp [15428]

O61 - LFC:Last File Created 13/02/2012 - 17:55:11 ---A- C:\Users\MissPulchra\AppData\Roaming\Adobe\Photoshop\6.0\Paramètres Adobe Photoshop 6\Formes personnalisées.psp [37396]

O61 - LFC:Last File Created 13/02/2012 - 17:55:11 ---A- C:\Users\MissPulchra\AppData\Roaming\Adobe\Photoshop\6.0\Paramètres Adobe Photoshop 6\Formes.psp [19580]

O61 - LFC:Last File Created 13/02/2012 - 17:55:11 ---A- C:\Users\MissPulchra\AppData\Roaming\Adobe\Photoshop\6.0\Paramètres Adobe Photoshop 6\Motifs.psp [154558]

O61 - LFC:Last File Created 13/02/2012 - 17:55:11 ---A- C:\Users\MissPulchra\AppData\Roaming\Adobe\Photoshop\6.0\Paramètres Adobe Photoshop 6\Nuancier.psp [6562]

O61 - LFC:Last File Created 13/02/2012 - 17:55:11 ---A- C:\Users\MissPulchra\AppData\Roaming\Adobe\Photoshop\6.0\Paramètres Adobe Photoshop 6\Palette Scripts.psp [21083]

O61 - LFC:Last File Created 13/02/2012 - 17:55:11 ---A- C:\Users\MissPulchra\AppData\Roaming\Adobe\Photoshop\6.0\Paramètres Adobe Photoshop 6\Préfs Adobe Photoshop 6.psp [203450]

O61 - LFC:Last File Created 13/02/2012 - 17:55:11 ---A- C:\Users\MissPulchra\AppData\Roaming\Adobe\Photoshop\6.0\Paramètres Adobe Photoshop 6\Styles.psp [125585]

O61 - LFC:Last File Created 13/02/2012 - 18:49:04 ---A- C:\Users\All Users\NVIDIA\Updatus\updtclient.log.bak [547]

O61 - LFC:Last File Created 14/02/2006 - 00:11:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\COMMON\SAGENT4.EX_ [57373]

O61 - LFC:Last File Created 14/02/2012 - 07:00:32 ---A- C:\Users\All Users\NVIDIA\Resource.dat [1048228]

O61 - LFC:Last File Created 14/02/2012 - 07:00:34 ---A- C:\Users\MissPulchra\AppData\Roaming\Adobe\Acrobat\Distiller 10\Cache\PSHFList1 [67407]

O61 - LFC:Last File Created 14/02/2012 - 07:00:35 ---A- C:\Users\All Users\ESET\ESET NOD32 Antivirus\EHttpSrv.xml [1486]

O61 - LFC:Last File Created 14/02/2012 - 07:00:35 ---A- C:\Users\All Users\ESET\ESET NOD32 Antivirus\EpfwUser.dat [13871]

O61 - LFC:Last File Created 14/02/2012 - 07:00:35 ---A- C:\Users\All Users\ESET\ESET NOD32 Antivirus\Logs\warnlog.dat [130260]

O61 - LFC:Last File Created 14/02/2012 - 07:00:35 ---A- C:\Users\All Users\Nero\Nero BackItUp 4\Cache\BIU2184.txt [918]

O61 - LFC:Last File Created 14/02/2012 - 07:02:35 ---A- C:\Users\All Users\NVIDIA\Updatus\journalBS.jour.dat [0]

O61 - LFC:Last File Created 14/02/2012 - 07:02:35 ---A- C:\Users\All Users\NVIDIA\Updatus\journalBS.main.xml [3797]

O61 - LFC:Last File Created 14/02/2012 - 07:02:35 ---A- C:\Users\All Users\NVIDIA\Updatus\updtConfig.xml [2544]

O61 - LFC:Last File Created 14/02/2012 - 07:09:48 ---A- C:\Users\MissPulchra\AppData\Local\Temp\CVR9B26.tmp.cvr [0]

O61 - LFC:Last File Created 14/02/2012 - 07:09:49 ---A- C:\Users\MissPulchra\AppData\Local\Temp\{1C306CB1-771E-4B4B-A902-86E897877F5B}.jpg [740]

O61 - LFC:Last File Created 14/02/2012 - 08:10:58 ---A- C:\Users\MissPulchra\Documents\Fichiers Outlook\MangaFana@skynet.be.pst [1097851904]

O61 - LFC:Last File Created 14/02/2012 - 08:37:00 ---A- C:\Users\MissPulchra\AppData\Roaming\Microsoft\Office\Recent\Ebay.xls.LNK [379]

O61 - LFC:Last File Created 14/02/2012 - 08:40:35 ---A- C:\Users\MissPulchra\AppData\Roaming\Microsoft\Excel\Excel14.xlb [10088]

O61 - LFC:Last File Created 14/02/2012 - 09:00:35 ---A- C:\Users\All Users\ESET\ESET NOD32 Antivirus\Stats\disk201202a.dat [2749]

O61 - LFC:Last File Created 14/02/2012 - 09:00:35 ---A- C:\Users\All Users\ESET\ESET NOD32 Antivirus\Stats\disk201202b.dat [2733]

O61 - LFC:Last File Created 14/09/2006 - 00:01:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\COMMON\E_SIACS1.EX_ [68662]

O61 - LFC:Last File Created 16/06/2009 - 06:05:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\COMMON\EPUPDATE.EX_ [362188]

O61 - LFC:Last File Created 16/10/2006 - 08:50:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\COMMON\EPUTIX27.EX_ [41567]

O61 - LFC:Last File Created 18/04/2006 - 03:00:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\COMMON\E_S30RP1.EX_ [43429]

O61 - LFC:Last File Created 20/03/2006 - 03:01:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\COMMON\E_S30MT1.EX_ [68988]

O61 - LFC:Last File Created 20/03/2006 - 03:02:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\COMMON\E_S30RN1.EX_ [54613]

O61 - LFC:Last File Created 23/04/2009 - 23:00:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\DEUTSCH\EPUPDATE.DA_ [52316]

O61 - LFC:Last File Created 23/04/2009 - 23:00:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\ENGLISH\EPUPDATE.DA_ [52316]

O61 - LFC:Last File Created 23/04/2009 - 23:00:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\ESPANOL\EPUPDATE.DA_ [52316]

O61 - LFC:Last File Created 23/04/2009 - 23:00:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\FRANCAIS\EPUPDATE.DA_ [52316]

O61 - LFC:Last File Created 23/04/2009 - 23:00:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\ITALIANO\EPUPDATE.DA_ [52316]

O61 - LFC:Last File Created 23/04/2009 - 23:00:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\NEDERLND\EPUPDATE.DA_ [52316]

O61 - LFC:Last File Created 23/04/2009 - 23:00:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\PORTUGAL\EPUPDATE.DA_ [52316]

O61 - LFC:Last File Created 23/05/2006 - 03:00:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\COMMON\E_S7I0P1.EX_ [65405]

O61 - LFC:Last File Created 23/05/2006 - 04:00:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\COMMON\E_A7X0P1.DA_ [1117]

O61 - LFC:Last File Created 25/09/2006 - 03:06:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\COMMON\E_S3T0A1.EX_ [116982]

O61 - LFC:Last File Created 26/04/2006 - 00:00:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\COMMON\EPIBSR50.EX_ [19431]

O61 - LFC:Last File Created 29/03/2006 - 02:00:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\COMMON\E_DP1BPE.DA_ [451]

O61 - LFC:Last File Created 30/03/2006 - 05:00:00 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\COMMON\E_DM1BPE.DA_ [422]

O61 - LFC:Last File Created 30/09/2002 - 18:47:58 ---A- C:\Users\MissPulchra\AppData\Local\Temp\SPRX560_W2K_611EDFGIPS_s\WINXP_2K\COMMON\EBPSAGT4.DA_ [110]

O61 - LFC:Last File Created 30/12/1899 - 08:37:00 --H-- C:\Users\MissPulchra\AppData\Roaming\Microsoft\Office\Recent\index.dat [3083]

O61 - LFC:Last File Created 30/12/1899 - 18:48:58 --HA- C:\Users\MissPulchra\AppData\Local\IconCache.db [7466290]

O61 - LFC:Last File Created 30/12/1899 - 20:02:03 --HA- C:\Users\All Users\EPSON\PRINTER\EPAUDF01.AUD [6358]

~ Scan Files in 00mn 09s

 

 

 

---\\ Liste des outils de nettoyage (O63)

O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis

O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

~ Scan ADS in 00mn 00s

 

 

 

---\\ Liste des services Legacy (O64)

O64 - Services: CurCS - 21/12/2010 - C:\Windows\system32\DRIVERS\eamonm.sys (eamonm) .(.ESET - Amon monitor.) - LEGACY_EAMONM

O64 - Services: CurCS - 21/12/2010 - C:\Windows\system32\DRIVERS\ehdrv.sys (ehdrv) .(.ESET - ESET Helper driver.) - LEGACY_EHDRV

O64 - Services: CurCS - 21/12/2010 - C:\Windows\system32\DRIVERS\epfwwfpr.sys (epfwwfpr) .(.ESET - ESET Personal Firewall driver.) - LEGACY_EPFWWFPR

O64 - Services: CurCS - ??\??\???? - C:\Windows\system32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV

~ Scan Services in 00mn 00s

 

 

 

---\\ Liste des fichiers non signés (O65) (None)

 

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\system32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Macromedia, Inc. - Dreamweaver.) -- C:\Program Files\Macromedia\Dreamweaver 4\Dreamweaver.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\system32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Macromedia, Inc. - Dreamweaver.) -- C:\Program Files\Macromedia\Dreamweaver 4\Dreamweaver.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

~ Scan Keys in 00mn 00s

 

 

 

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe

~ Scan Keys in 00mn 00s

 

 

 

---\\ Search Browser Infection (O69)

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - Bing

~ Scan Keys in 00mn 00s

 

 

 

---\\ Crack & Keygen Files (O82)

E:\Le C\Téléchargements Programmes\Adobe Acrobate Pro 7 FR + KeyGen.zip

E:\Le C\Téléchargements Programmes\Adobe.Acrobat.Pro.X.v10.0.Multilingual.Incl.Keymaker-CORE\keygen.exe

E:\Le C\Téléchargements Programmes\Avant juillet 2011\Avast.Antivirus.Pro.v4.8.1296.FR.Incl-Keygen.[emule-island.com].rar

E:\Le C\Téléchargements Programmes\Avant juillet 2011\BS.Player.Pro.v2.43.1008.Multilangages.Incl-Keygen.[emule-island.com].rar

E:\Le C\Téléchargements Programmes\Avant juillet 2011\Dreamweaver v8 FR\Macromedia Dreamweaver v8 Fr Incl-Keygen Par Emule-Paradise.rar

E:\Le C\Téléchargements Programmes\Avant juillet 2011\WinASO.Registry.Optimizer.v4.0.7.Incl-Keygen.[emule-island.com].rar

E:\Le C\Téléchargements Programmes\KeyGen\pdx-ac7p.exe

~ Scan Files in 00mn 29s

 

 

 

---\\ Recherche des services démarrés par Svchost (O83)

O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\system32\aelupsvc.dll [62464]

O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\system32\certprop.dll [67584]

O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\system32\certprop.dll [67584]

O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [168448]

O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\system32\gpsvc.dll [591360]

O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\system32\ikeext.dll [667136]

O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\system32\Audiosrv.dll [473088]

O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\system32\rasauto.dll [90624]

O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\system32\rasmans.dll [285184]

O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\system32\mprdim.dll [75264]

O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\system32\sens.dll [49664]

O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\system32\ipnathlp.dll [300544]

O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows.) -- C:\Windows\system32\tapisrv.dll [241664]

O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\system32\termsrv.dll [543232]

O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\system32\wuaueng.dll [1912832]

O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\system32\qmgr.dll [589312]

O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\system32\shsvcs.dll [328192]

O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\system32\iphlpsvc.dll [497152]

O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [21504]

O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\system32\appinfo.dll [46592]

O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [114688]

O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\system32\mmcss.dll [49664]

O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\system32\wercplsupport.dll [61440]

O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\system32\eapsvc.dll [98304]

O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [162816]

O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [743424]

O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [71168]

O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\system32\sessenv.dll [99328]

O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [168960]

O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\system32\browser.dll [102400]

O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [37376]

O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\system32\bdesvc.dll [76800]

O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\system32\appmgmts.dll [149504]

~ Scan Services in 00mn 00s

 

 

 

---\\ Recherche particuliere à la racine de certains dossiers (O84)

[MD5.67DC0277321064080BAD0E9E3BC3CBAB] [sPRF][5/05/2011] (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Users\MissPulchra\AppData\Local\Temp\jre-6u26-windows-i586-iftw-rv.exe [901408]

[MD5.0E2281AEC56203CA6A9E1848F7DBDF5A] [sPRF][19/10/2011] (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Users\MissPulchra\AppData\Local\Temp\jre-6u29-windows-i586-iftw-rv.exe [909088]

[MD5.FBAB280D0CAC5E21C72F0A1A7B5B9608] [sPRF][8/10/2010] (.Macrovision Corporation - Setup.exe.) -- C:\Users\MissPulchra\AppData\Local\Temp\_is933.exe [455600]

[MD5.FBAB280D0CAC5E21C72F0A1A7B5B9608] [sPRF][1/11/2006] (.Macrovision Corporation - Setup.exe.) -- C:\Users\MissPulchra\AppData\Local\Temp\_isE0CD.exe [455600]

[MD5.C8CBD57CD0768C3DD69A2F54374CC778] [sPRF][14/02/2012] (.Nicolas Coolman - ZHPDiag.) -- C:\Users\MissPulchra\Desktop\ZHPDiag2.exe [3903203]

[MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [sPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll [24576]

[MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [sPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe [196608]

[MD5.F1CD64DD3702BDCDFB0531BB21C6BEFC] [sPRF][21/06/2011] (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller 10.3 r181.) -- C:\Windows\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [3123872]

[MD5.0C78701C6F42345DFF2B2B6C3C3D01EF] [sPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll [172032]

~ Scan Files in 00mn 00s

 

 

 

---\\ Firewall Active Exception List (FirewallRules) (O87)

O87 - FAEL: "{0993A4DB-7D57-4EC4-A2FC-5883BFBABAF3}" | In - None - P6 - TRUE | .(.Laplink Software Inc. - PCmover.) -- C:\Program Files\Laplink\PCmover\PCMover.exe

O87 - FAEL: "{52F83BE0-04EF-46CB-8E32-5322700C67E0}" | In - Public - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files\TeamViewer\Version6\TeamViewer.exe

O87 - FAEL: "{622C855E-A18D-42F4-8A87-86B78E562DE1}" | In - Public - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files\TeamViewer\Version6\TeamViewer.exe

O87 - FAEL: "{8BD924D5-9A3A-4340-8632-12300DD89F60}" | In - Public - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe

O87 - FAEL: "{435D97D3-EFE6-4D36-9187-C2938D0DFB43}" | In - Public - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe

O87 - FAEL: "{D8861F29-0D91-416F-A2D8-0D580A0F510E}" | In - Public - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O87 - FAEL: "{AC93067D-F30A-4A71-82FC-035E52BCB04D}" | In - Public - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O87 - FAEL: "TCP Query User{1BC01C2B-9FAD-4014-A566-03537CCA3D5A}C:\program files\macromedia\dreamweaver 4\dreamweaver.exe" | In - Private - P6 - TRUE | .(.Macromedia, Inc. - Dreamweaver.) -- C:\Program Files\Macromedia\Dreamweaver 4\Dreamweaver.exe

O87 - FAEL: "UDP Query User{6E9DFC13-DD70-4767-B0F7-02FB1C746064}C:\program files\macromedia\dreamweaver 4\dreamweaver.exe" | In - Private - P17 - TRUE | .(.Macromedia, Inc..) -- C:\Program Files\Macromedia\Dreamweaver 4\Dreamweaver.exe

O87 - FAEL: "TCP Query User{E462867F-02C1-49F9-8E29-19E75C64953B}E:\le c\racine\video utilities\emule\emule.exe" |In - Private - P6 - TRUE | .(...) -- E:\le c\racine\video utilities\emule\emule.exe (.not file.)

O87 - FAEL: "UDP Query User{3D386711-9F30-4ABA-8EC7-C0CC04783803}E:\le c\racine\video utilities\emule\emule.exe" |In - Private - P17 - TRUE | .(...) -- E:\le c\racine\video utilities\emule\emule.exe (.not file.)

O87 - FAEL: "TCP Query User{B4B312AB-6128-471A-93B0-2F9194B94725}E:\le c\téléchargements programmes\video utilities\emule\emule.exe" | In - Private - P6 - TRUE | .(.http://www.emule-project.net.) -- E:\Le C\Téléchargements Programmes\Video Utilities\Emul

O87 - FAEL: "UDP Query User{AFD4FFD6-C8F0-44D9-8DD2-07C69CD6AA5B}E:\le c\téléchargements programmes\video utilities\emule\emule.exe" | In - Private - P17 - TRUE | .(.http://www.emule-project.net.) -- E:\Le C\Téléchargements Programmes\Video Utilities\Emu

O87 - FAEL: "TCP Query User{E7F631AB-E571-47DF-818A-51B7401F4E87}C:\mes programmes\emule\emule.exe" |In - Private - P6 - TRUE | .(...) -- C:\mes programmes\emule\emule.exe (.not file.)

O87 - FAEL: "UDP Query User{18C26B21-CD37-4342-8035-C5E40D8796FD}C:\mes programmes\emule\emule.exe" |In - Private - P17 - TRUE | .(...) -- C:\mes programmes\emule\emule.exe (.not file.)

O87 - FAEL: "TCP Query User{3B50C4EE-0C9C-4384-AEAF-629E0C57A843}C:\program files\emule\emule.exe" | In - Private - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\Program Files\eMule\emule.exe

O87 - FAEL: "UDP Query User{E540FEE2-DCD9-4BC8-A251-8E28FB8AA521}C:\program files\emule\emule.exe" | In - Private - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\Program Files\eMule\emule.exe

O87 - FAEL: "TCP Query User{6A7A264D-5E5A-40DD-A72B-6A99C46110E3}C:\program files\apowersoft\streaming video recorder\streaming-video-recorder.exe" | In - Private - P6 - TRUE | .(.Apowersoft.) -- C:\Program Files\Apowersoft\Streaming Video Recorder\Strea

O87 - FAEL: "UDP Query User{0D295EBA-27E5-4840-8A94-41CA3D99784B}C:\program files\apowersoft\streaming video recorder\streaming-video-recorder.exe" | In - Private - P17 - TRUE | .(.Apowersoft.) -- C:\Program Files\Apowersoft\Streaming Video Recorder\Stre

~ Scan Firewall in 00mn 00s

 

 

 

---\\ Recherche détournement de DNS routeur (O89)

Serveur : UnKnown

Address: 192.168.1.1

Nom : www-cctld.l.google.com

Address: 173.194.67.94

Aliases: www.google.fr

~ Scan DNS in 00mn 02s

 

 

 

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SS - | Demand 11/10/2011 72704 | (Adobe LM Service) . (.Adobe Systems.) - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

SS - | Demand 12/01/2011 33584 | (EhttpSrv) . (.ESET.) - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe

SR - | Auto 12/01/2011 810144 | (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Smart Security\ekrn.exe

SR - | Auto 18/04/2006 102400 | (EPSON_PM_RPCV4_01) . (.SEIKO EPSON CORPORATION.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S30RP1.exe

SR - | Auto 13/09/2010 13336 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

SR - | Auto 12/08/2010 87712 | (Intel® PROSet Monitoring Service) . (.Intel Corporation.) - C:\Windows\System32\IPROSetMonitor.exe

SR - | Auto 29/07/2009 935208 | Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

SR - | Auto 25/05/2011 615528 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe

SR - | Auto 25/05/2011 2214504 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

SR - | Auto 20/05/2011 378472 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

SR - | Auto 1/06/2011 2337144 | (TeamViewer6) . (.TeamViewer GmbH.) - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe

SR - | Auto 14/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

~ Scan Services in 00mn 03s

 

 

 

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover

Run by MissPulchra at 14/02/2012 10:17:54

 

device: opened successfully

user: MBR read successfully

 

Disk trace:

called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys halmacpi.dll

C:\Windows\system32\DRIVERS\iaStor.sys Intel Corporation Intel Rapid Storage Technology driver

1 ntkrnlpa!IofCallDriver[0x8304A458] -> \Device\Harddisk0\DR0[0x881CA308]

3 CLASSPNP[0x8CF7759E] -> ntkrnlpa!IofCallDriver[0x8304A458] -> \Device\Ide\IAAStorageDevice-1[0x866AF028]

kernel: MBR read successfully

user & kernel MBR OK

~ Scan MBR in 00mn 02s

 

 

 

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

Written by ad13, http://ad13.geekstog

Run by MissPulchra at 14/02/2012 10:17:56

 

********* Dump file Name *********

C:\PhysicalDisk0_MBR.bin

~ Scan MBR in 00mn 04s

 

 

 

End of the scan (1305 lines in 24mn 51s)(7)

 

Copier le lien ne va pas, alors j'ai ouvert et voici le lien : Lien CJoint.com BBokt2lmoZn

 

merci

[tomtom95]

Bonjour CandyFana

 

Ne post pas stp sur le forum les rapports trop long,le lien de Cjoint suffit.

 

Ton ordinateur n'est vraiment pas à jour.

 

Windows 7 Business Edition, 32-bit (Build 7600) >> service pack1 sortie depuis longtemps

Lance windows Update pour récupérer les mises a jour.les MAJ de sécurité

 

Adobe Reader 9.5.0 >> version 10.1.2

Adobe Acrobat version 10

http://get.adobe.com/fr/reader/otherversions/

Sur la page clique sur ton systéme exploitation et installe la derniére version

 

Java 6 Update 29 >> version Java 6 Update 30.

Sun java Runtime Version 6 Update 30

http://www.java.com/fr/download/windows_ie.jsp?locale=fr&host=www.java.com:80

 

Le téléchargement avec du P2P,plus des cracks sont a bannir,source d'infection multiples.

KeyGen A supprimer

E:\Le C\Téléchargements Programmes\Adobe Acrobate Pro 7 FR + KeyGen.zip

E:\Le C\Téléchargements Programmes\Adobe.Acrobat.Pro.X.v10.0.Multilingual.Incl.Keymaker-CORE\keygen.exe

E:\Le C\Téléchargements Programmes\Avant juillet 2011\Avast.Antivirus.Pro.v4.8.1296.FR.Incl-Keygen.[emule-island.com].rar

E:\Le C\Téléchargements Programmes\Avant juillet 2011\BS.Player.Pro.v2.43.1008.Multilangages.Incl-Keygen.[emule-island.com].rar

E:\Le C\Téléchargements Programmes\Avant juillet 2011\Dreamweaver v8 FR\Macromedia Dreamweaver v8 Fr Incl-Keygen Par Emule-Paradise.rar

E:\Le C\Téléchargements Programmes\Avant juillet 2011\WinASO.Registry.Optimizer.v4.0.7.Incl-Keygen.[emule-island.com].rar

E:\Le C\Téléchargements Programmes\KeyGen\pdx-ac7p.exe

 

 

• Ferme toutes les applications ouvertes
  
• Désactive tes défenses (anti-virus et anti-spyware)
  
• Double-clique sur ZHPFix Un raccourci installé par ZHPDiag sur le Bureau
   
  Pour Vista et seven fais un clique droit sur l'icône et exécute en tant qu'administrateur
  
   
   
  Sélectionne et surligne correctement avec la souris et "Clique droit > "Copier"
  ces lignes ci dessous :
   

  O4 - Global Startup: C:\Users\MissPulchra\Desktop\Ordinateur.lnk - Clé orpheline
  O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM] -- eMule
  [HKCU\Software\eMule]
  O43 - CFD: 23/08/2011 - 07:21:22 - [9,924] ----D- C:\Program Files\eMule
  O43 - CFD: 23/08/2011 - 07:21:24 - [0] ----D- C:\ProgramData\eMule
  O43 - CFD: 23/08/2011 - 07:21:22 - [0,014] ----D- C:\Users\MissPulchra\AppData\Local\eMule
  O51 - MPSK:{40f0b7f1-a815-11e0-b254-806e6f6e6963}\AutoRun\command. (...) -- D:\EIProcessCaller.exe (.not file.)
  O61 - LFC:Last File Created 14/02/2012 - 08:10:58 ---A- C:\Users\MissPulchra\Documents\Fichiers Outlook\MangaFana@skynet.be.pst [1097851904]
  O87 - FAEL: "TCP Query User{E462867F-02C1-49F9-8E29-19E75C64953B}E:\le c\racine\video utilities\emule\emule.exe" |In - Private - P6 - TRUE | .(...) -- E:\le c\racine\video utilities\emule\emule.exe (.not file.)
  O87 - FAEL: "UDP Query User{3D386711-9F30-4ABA-8EC7-C0CC04783803}E:\le c\racine\video utilities\emule\emule.exe" |In - Private - P17 - TRUE | .(...) -- E:\le c\racine\video utilities\emule\emule.exe (.not file.)
  O87 - FAEL: "TCP Query User{B4B312AB-6128-471A-93B0-2F9194B94725}E:\le c\téléchargements programmes\video utilities\emule\emule.exe" | In - Private - P6 - TRUE | .(.http://www.emule-project.net.) -- E:\Le C\Téléchargements Programmes\Video Utilities\Emul
  O87 - FAEL: "UDP Query User{AFD4FFD6-C8F0-44D9-8DD2-07C69CD6AA5B}E:\le c\téléchargements programmes\video utilities\emule\emule.exe" | In - Private - P17 - TRUE | .(.http://www.emule-project.net.) -- E:\Le C\Téléchargements Programmes\Video Utilities\Emu
  O87 - FAEL: "TCP Query User{E7F631AB-E571-47DF-818A-51B7401F4E87}C:\mes programmes\emule\emule.exe" |In - Private - P6 - TRUE | .(...) -- C:\mes programmes\emule\emule.exe (.not file.)
  O87 - FAEL: "UDP Query User{18C26B21-CD37-4342-8035-C5E40D8796FD}C:\mes programmes\emule\emule.exe" |In - Private - P17 - TRUE | .(...) -- C:\mes programmes\emule\emule.exe (.not file.)
  O87 - FAEL: "TCP Query User{3B50C4EE-0C9C-4384-AEAF-629E0C57A843}C:\program files\emule\emule.exe" | In - Private - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\Program Files\eMule\emule.exe
  O87 - FAEL: "UDP Query User{E540FEE2-DCD9-4BC8-A251-8E28FB8AA521}C:\program files\emule\emule.exe" | In - Private - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\Program Files\eMule\emule.exe
   
   
   
  FirewallRAZ
  EmptyFlash
  EmptyTemp
  

• Clique successivement sur l'icône H (pour effacer le rapport qui s'est affiché) puis sur l'icône de la "malette cachée par la feuille" .
   
  
• Vérifie que toutes les lignes que je t'ai demandé de copier sont dans la fenêtre.
  
• Et seulement ces lignes
  
• Puis clique sur le bouton [OK]
  
• A ce moment apparaîtra au début de chaque ligne
  une petite case vide. [ ]
  
• Ensuite clique sur Tous puis sur Nettoyer
  
• Valide par Oui la désinstallation des programmes si demandé
  
• Laisse l'outil travailler. Si un redémarrage est demandé accepte et redémarre le PC
  
• Le rapport ZHPFixReport.txt s'affiche. Copie-colle le contenu de ce rapport dans ta réponse.
   
  Le rapport ZHPFixReport.txt est enregistré sur le bureau[/b]

 

• Télécharge

Temp File Cleaner (TFC) de Old Timer :
 
Enregistre-le sur le Bureau
Enregistre (sauvegarde) tous tes travaux en cours et ferme les applications - quitte-les définitivement (l'outil les fermera de toute façon automatiquement)
Double-clique sur TFC.exe (sous Vista - Windows 7 clique droit
"exécuter en tant qu'administrateur)
Clique sur Start
Laisse l'outil travailler (cela prend de quelques secondes à quelques minutes)
Si l'outil demande à redémarrer :
Clique sur Yes
Si l'outil ne propose pas le redémarrage
redémarrer manuellement.

 

 

 

 

• Télécharge la dernier version

MalwareByte's sur ton Bureau.
 
Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.
Pour l'installation Choisir la version gratuit
et non celle d'essai pro
Une fois l'installation et la mise à jour effectuées :
 
Branche tes supports externes sur le pc (Clé USB,Disque Dur,etc..)
Allumé Sans les ouvrirs
Exécute maintenant MalwareByte's Anti-Malware.
 
Sélectionne "Exécuter un examen complet".
Afin de lancer la recherche clique sur"Rechercher".
Coche toutes les cases de tes lecteurs
Une fois le scan terminé une fenêtre s'ouvre clique sur OK.
 
Si des infections sont présentes
Clique sur "Afficher les résultats" puis sur "Supprimer la sélection".
Enregistre le rapport sur ton Bureau.
poste le rapport dans ta prochaine réponse.
 
REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression accepte en cliquant sur Ok.

 

A+

[CandyFana]

Alors là, c'est completement débile.

ne me dit pas, qu'en recopiant du vieux PC et en voulant télécharger un truc, j'ai activer une autre mule ?? la version 49 et que cette saloperie tournait seule sur mon PC ??

pas d'icone, rien ?

 

je n'ai plus utilisé emule depuis des mois et en prime je n'ai jamais utilisé la version 49

Bien dl une fois il y a des lustres pour tester, mais jamais sur mon nouveau PC en prime.

 

Désolée, j'ai suivit tes conseils; il était mis de mettre le log ici; alors comme un petit soldat, je 'lai fait. désolée.

De plus, je passe vraiment pour une débile, si c'est emule.

mais alors pourquoi je ne le voyais pas ?

 

j'ai fait aussi TFC et là, oui, cela redémarre déjà de retour bien plus vite comme avant avec le SDD

Mais encore 20% de mémoire utilisée si rien d'ouvert

Est-ce normal avec Seven ?

 

Faut que j'installer Seven 64 bits en prime, mais je ne l'ai pas encore fait, car j'ai peur que mes programmes pro : photoshops etc, ne tournent pas sur 64 bits.

Quand j'aurai le temps, j'irai chez mon frêre pour installer une double version de 7, une 64 et une 32 bits pour tester ce qui veux bien tourner sous 64 bits.

 

j'ai tout mais je n'ose pas me lancer seule.

Voila pourquoi je 'nai pas mis à jour.. lol

 

Pour adobe; j'ai la version plus loin, mais elle ne me convient pas

 

Il me reste encore malwarebyte que je vais lancer quand j'irai manger.

 

merci beaucoup.

j'avais bien vu un processus emule; mais n'ayant aucune mule d'ouverte, je ne savais pas ce que c'était

[tomtom95]

RE

 

Tu peux me posté le rapport ZHPFixReport.txt stp

 

Pour le service pack 1 ce n'est pas le 64 bits, c'est une mise à jour de ton W7 32 bits que tu peux récupérr sur windows Update,plus le s MJA de sécurité.

 

Mais encore 20% de mémoire utilisée si rien d'ouvert

Ce n'est pas fini (Ne laisse pas ton sujet, Va jusqu'au bout avant d'être informé(e) que tout est OK.)

[tomtom95]

Pas de réponse, sujet supprimé de mes suivis