Rapport de ZHPDiag v1.28.1367 par Nicolas Coolman, Update du 05/10/2011 Run by Administrateur at 16/10/2011 12:07:01 Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html State : Version à jour. ---\\ Web Browser MSIE: Internet Explorer v7.0.5730.11 MFIE: Mozilla Firefox 6.0.2 v6.0.2 (Defaut) ---\\ Windows Product Information Windows XP Professional Service Pack 3 (Build 2600) Windows Automatic Updates : OK Windows Genuine Advantage : OK ---\\ System Information ~ Processor: x86 Family 15 Model 95 Stepping 2, AuthenticAMD ~ Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 3071 MB (85% free) System Restore: Activé (Enable) System drive C: has 17 GB (24%) free of 71 GB ---\\ Logged in mode ~ Computer Name: MANU ~ User Name: Administrateur ~ All Users Names: UpdatusUser, SUPPORT_388945a0, legrand, HelpAssistant, ASPNET, Administrateur, ~ Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables ~ System Unit : C:\ ~ %AppData% : C:\Documents and Settings\Administrateur\Application Data\ ~ %Desktop% : C:\Documents and Settings\Administrateur\Bureau\ ~ %Favorites% : C:\Documents and Settings\Administrateur\Favoris\ ~ %LocalAppData% : C:\Documents and Settings\Administrateur\Local Settings\Application Data\ ~ %StartMenu% : C:\Documents and Settings\Administrateur\Menu Démarrer\ ~ %Windir% : C:\WINDOWS\ ~ %System% : C:\WINDOWS\system32\ ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 17 Go of 71 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 53 Go of 72 Go) E:\ CD-ROM drive (Not Inserted) F:\ Floppy drive, Flash card reader, USB Key (Not Inserted) G:\ Floppy drive, Flash card reader, USB Key (Not Inserted) H:\ Floppy drive, Flash card reader, USB Key (Not Inserted) I:\ Floppy drive, Flash card reader, USB Key (Not Inserted) J:\ CD-ROM drive (Not Inserted) K:\ Hard drive, Flash drive, Thumb drive (Free 83 Go of 298 Go) L:\ Floppy drive, Flash card reader, USB Key (Free 4 Go of 15 Go) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK ~ Scan Security Center in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.16/10/2011 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824] [MD5.93AD0B78C7357A05F50E594EC7C22300] - (....) (.16/10/2011 - 03:34:20.) -- C:\WINDOWS\system32\rundll32.exe [33792] [MD5.68A2567FDD62AE7E31D8A885C5173EF9] - (.Microsoft Corporation - Internet Extensions for Win32.) (.16/10/2011 - 01:13:06.) -- C:\WINDOWS\system32\wininet.dll [826368] [MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.16/10/2011 - 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000] [MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.16/10/2011 - 14:49:54.) -- C:\WINDOWS\system32\drivers\AFD.sys [138496] *1868 [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.16/10/2011 - 19:40:30.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512] *1788 [MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.16/10/2011 - 20:14:21.) -- C:\WINDOWS\system32\drivers\Cdfs.sys [63744] *1804 [MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.16/10/2011 - 19:40:46.) -- C:\WINDOWS\system32\drivers\Cdrom.sys [62976] *1780 [MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.16/10/2011 - 02:57:38.) -- C:\WINDOWS\system32\drivers\Fips.sys [44672] *1852 [MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.16/10/2011 - 17:36:05.) -- C:\WINDOWS\system32\drivers\HDAudBus.sys [144384] *1940 [MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.16/10/2011 - 03:00:52.) -- C:\WINDOWS\system32\drivers\i8042prt.sys [54144] *1852 [MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.16/10/2011 - 19:40:58.) -- C:\WINDOWS\system32\drivers\Imapi.sys [42112] *1780 [MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.16/10/2011 - 19:57:15.) -- C:\WINDOWS\system32\drivers\IpNat.sys [152832] *1820 [MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.16/10/2011 - 20:19:42.) -- C:\WINDOWS\system32\drivers\IPSec.sys [75264] *1756 [MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.16/10/2011 - 14:29:31.) -- C:\WINDOWS\system32\drivers\MRxSmb.sys [456320] *1844 [MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.16/10/2011 - 20:21:00.) -- C:\WINDOWS\system32\drivers\netBT.sys [162816] *1788 [MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.16/10/2011 - 20:15:53.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574976] *1788 [MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.16/10/2011 - 03:09:40.) -- C:\WINDOWS\system32\drivers\Parport.sys [80384] *1852 [MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.16/10/2011 - 20:19:43.) -- C:\WINDOWS\system32\drivers\Rasl2tp.sys [51328] *1876 [MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.16/10/2011 - 19:32:51.) -- C:\WINDOWS\system32\drivers\rdpdr.sys [196224] *1828 [MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.16/10/2011 - 02:57:34.) -- C:\WINDOWS\system32\drivers\redbook.sys [58752] *1892 ~ Scan Generic Processes in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 5/9 ~ Mes musiques (My Musics) : 1/2 ~ Mes Videos (My Videos) : 2/11 ~ Mes Favoris (My Favorites) : 2/87 ~ Mes Documents (My Documents) : 34/948 ~ Mon Bureau (My Desktop) : 10/1512 ~ Menu demarrer (Programs) : 6/29 ~ Scan Hidden Files in 00mn 02s ---\\ Processus lancés [MD5.A5BCBAF0477C4869B67E0195AEA4A9CD] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [136360] [PID.] [MD5.3CCE4AFA4AACDB28E01A148394212186] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [269480] [PID.] [MD5.CDE000884FD7BAF0C1FDFE029B0891DE] - (.Avira GmbH - AntiVir shadow copy service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76968] [PID.] [MD5.9D5E8B45BD348DF0882C69EED0E83111] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [281768] [PID.3956] [MD5.0DAD93BB0FECF5016AE3C06CBB0A873B] - (.Microsoft Corporation - COM Surrogate.) -- C:\WINDOWS\system32\dllhost.exe [5120] [PID.] [MD5.5D1347AA5AE6E2F77D7F4F8372D95AC9] - (.Microsoft Corporation - Media Center Receiver Service.) -- C:\WINDOWS\eHome\ehRecvr.exe [237568] [PID.] [MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53472] [PID.3520] [MD5.7B2E3899314974CC40D93A6CD7C855C8] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [2134016] [PID.864] [MD5.3C09CC7992A8ADECD1FDDFD5D8E69BAE] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2255464] [PID.] [MD5.52404CC76E9D53843BDF97564BB16BED] - (.Microsoft Corporation - MCRD Device Service.) -- C:\WINDOWS\ehome\mcrdsvc.exe [99328] [PID.] [MD5.5E9A6658A2A69AE7EB195113B7A2E7A9] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe [44544] [PID.] ~ Scan Processes Running in 00mn 00s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\j2z1vv6t.default\prefs.js C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\j2z1vv6t.default\user.js (.not file.) M3 - MFPP: Plugins - [Administrateur] -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\j2z1vv6t.default\searchplugins\bing.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml M0 - MFSP: prefs.js [Administrateur - j2z1vv6t.default] http://www.sfr.fr M2 - MFEP: prefs.js [Administrateur - j2z1vv6t.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.) P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Mozilla Firefox\Plugins\nppl3260.dll P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - 6.0.12.448.) -- C:\Program Files\Mozilla Firefox\Plugins\nprpjplug.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX Web Player version 2.0.3.4.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll P2 - FPN: [HKLM] [@divx.com/DivX VOD Helper,version=1.0.0] - (.DivX, LLC. - DivX VOD Helper Plug-in.) -- C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_26 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60831.0.) -- C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Microsoft Corp. - Office Live Update v1.3.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.12.450] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.448] - (.RealNetworks, Inc. - 6.0.12.448.) -- C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll ~ Scan Firefox Browser in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com R0 - HKUS\S-1-5-21-2288639843-1281421470-2780027096-500-2288639843-1281421470-2780027096-1007\Software\Microsoft\Internet Explorer\Main,Start Page = http://global.acer.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKUS\S-1-5-21-2288639843-1281421470-2780027096-500-2288639843-1281421470-2780027096-1007\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (7.00.6000.16825 (vista_gdr.090218-1505)) -- C:\WINDOWS\system32\ieframe.dll R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2 ~ Scan IE Browser in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Scan Proxy management in 00mn 00s ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ~ Scan Keys in 00mn 00s ---\\ Redirection du fichier Hosts (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Scan Hosts File in 00mn 00s ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} . (.SFR - Aide à la navigation SFR.) -- C:\Program Files\Neuf\Kit\SFRNavErrorHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll ~ Scan BHO in 00mn 00s ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} . (.HiTRUST - eDStoolbar Module.) -- C:\WINDOWS\system32\eDStoolbar.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll ~ Scan Toolbar in 00mn 00s ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [ehTray] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe O4 - HKLM\..\Run: [LaunchApp] Clé orpheline O4 - HKLM\..\Run: [RTHDCPL] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.exe O4 - HKLM\..\Run: [SkyTel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\WINDOWS\SkyTel.exe O4 - HKLM\..\Run: [ntiMUI] . (...) -- c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe O4 - HKLM\..\Run: [IMJPMIG8.1] . (.Microsoft Corporation - Microsoft IME.) -- C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe O4 - HKLM\..\Run: [IMEKRMIG6.1] . (.Microsoft Corporation - Microsoft Korean IME 2002.) -- C:\WINDOWS\ime\imkr6_1\IMEKRMIG.exe O4 - HKLM\..\Run: [MSPY2002] . (...) -- C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe O4 - HKLM\..\Run: [PHIME2002ASync] . (.Microsoft Corporation - ???????? 2002a.) -- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe O4 - HKLM\..\Run: [PHIME2002A] . (.Microsoft Corporation - ???????? 2002a.) -- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] . (...) -- C:\WINDOWS\system32\SysMonitor.exe O4 - HKLM\..\Run: [eDataSecurity Loader] . (.HiTRUST - eDSloader.) -- C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe O4 - HKLM\..\Run: [eRecoveryService] . (.Acer Inc. - eRecovery agent.) -- C:\Acer\Empowering Technology\eRecovery\eRAgent.exe O4 - HKLM\..\Run: [type32] . (.Microsoft Corporation - Type32.exe.) -- C:\Program Files\Microsoft IntelliType Pro\type32.exe O4 - HKLM\..\Run: [IntelliPoint] . (.Microsoft Corporation - Point32.exe.) -- C:\Program Files\Microsoft IntelliPoint\point32.exe O4 - HKLM\..\Run: [NeroFilterCheck] . (.Ahead Software Gmbh - NeroCheck.) -- C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [DAEMON Tools] . (.DT Soft Ltd. - Virtual DAEMON Manager.) -- C:\Program Files\DAEMON Tools\daemon.exe O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [WinSys2] . (.Pas de propriétaire - DOT MFC Application.) -- C:\WINDOWS\system32\winsys2.exe O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Computer, Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe O4 - HKLM\..\Run: [SPC_Monitor] . (.PixArt Imaging Incorporation - Registry Monitor.) -- C:\WINDOWS\Philips\SPC230NC\Monitor.exe O4 - HKLM\..\Run: [SPC230NC_Monitor] . (.PixArt Imaging Incorporation - Registry Monitor.) -- C:\WINDOWS\Philips\SPC230NC\Monitor.exe O4 - HKLM\..\Run: [DivXUpdate] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (.not file.) O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\NvCpl.dll O4 - HKLM\..\Run: [NvMediaCenter] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\WINDOWS\system32\NvMCTray.dll O4 - HKLM\..\Run: [nwiz] . (...) -- C:\Program Files\NVIDIA Corporation\nView\nwiz.exe O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\RunOnce: [AvgUninstallURL] cmd.exeUFctSlVBTE4tUlJBNkk"&"inst=NzctNzU4MTg0ODA5LVNUMTJGT0krMS1ERFQrMC1FVUxBKzEtU1QxMkZBUFArMQ"&"prod=90"&"ver=2012.0.1831"&"mid=ca75eb88262f47d1b830d1510b22c69d-d7e8e326800539ab0f4599c76ab734c5306f2a19 O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] . (.Nero AG - Nero Home.) -- C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe O4 - HKCU\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\Neuf\Kit\9props.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-21-2288639843-1281421470-2780027096-500-2288639843-1281421470-2780027096-1007\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-2288639843-1281421470-2780027096-500-2288639843-1281421470-2780027096-1007\..\RunOnce: [NeroHomeFirstStart] . (.Nero AG - Nero Home.) -- C:\Program Files\Fichiers communs\Ahead\Lib\NeroScoutOptions.exe ~ Scan Application in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 8.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1033-7B44-A83000000003}\SC_Reader.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Enregistrement OCR I.R.I.S..lnk . (.I.R.I.S. SA.) -- C:\Program Files\HP\Digital Imaging\DocProc\regipe.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Media Center.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\ehome\ehshell.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe ~ Scan Global Startup in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -- Clé orpheline O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Uninstall BitDefender Online Scanner v8 - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO O9 - Extra button: Uninstall BitDefender Online Scanner v8 - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} . (...) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (...) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe ~ Scan IE Extra Buttons in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Service client pour le fournisseur NetWare et DLL d'authentification.) -- C:\WINDOWS\system32\nwprovau.dll ~ Scan Winsock in 00mn 00s ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.new2.foto.com/ImageUploader5.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/2.0.0.1/sysreqlab2.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.new2.foto.com/ImageUploader4.cab O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab O16 - DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} () - http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540001} () - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab ~ Scan Objets ActiveX in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{25C4E333-2BBC-4991-AEEF-F676D5027C47}: NameServer = 208.67.222.222,208.67.220.220 O17 - HKLM\System\CCS\Services\Tcpip\..\{25C4E333-2BBC-4991-AEEF-F676D5027C47}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{F9CA5200-27D0-4CCC-982B-D8CFD95A9FA1}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{25C4E333-2BBC-4991-AEEF-F676D5027C47}: NameServer = 208.67.222.222,208.67.220.220 O17 - HKLM\System\CS2\Services\Tcpip\..\{25C4E333-2BBC-4991-AEEF-F676D5027C47}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS3\Services\Tcpip\..\{F9CA5200-27D0-4CCC-982B-D8CFD95A9FA1}: DhcpNameServer = 192.168.1.1 ~ Scan Domain in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\system32\msvidctl.dll O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll O18 - Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\MSITSS.DLL O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL O18 - Handler: mso-offdap - {3D9F03FA-7A94-11D3-BE81-0050048385D1} . (.Microsoft Corporation - Microsoft Office XP Web Components.) -- C:\PROGRA~1\FICHIE~1\MICROS~1\WEBCOM~1\10\OWC10.DLL O18 - Handler: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} . (.Microsoft Corporation - Microsoft Office Web Components 2003.) -- C:\PROGRA~1\FICHIE~1\MICROS~1\WEBCOM~1\11\OWC11.DLL O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\system32\msvidctl.dll O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O18 - Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL ~ Scan Protocole Additionnel in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\WINDOWS\system32\WgaLogon.dll O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll ~ Scan Winlogon in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll ~ Scan SSODL in 00mn 00s ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll ~ Scan STS/SSO in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Memory Check Service (AcerMemUsageCheckService) . (.Acer Inc. - Pas de description.) - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Capture Device Service (Capture Device Service) . (.InterVideo Inc. - Capture Device Service.) - C:\Program Files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 280.2.) - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe O23 - Service: Pml Driver HPZ12 (Pml Driver HPZ12) . (.HP - PML Driver.) - C:\WINDOWS\system32\HPZipm12.exe ~ Scan Services in 00mn 00s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\OFFICE11\WINWORD.exe ~ Scan Desktop Component in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GlaryInitialize.job [MD5.5FEE3F4542CEB1177F9672FE6D75180D] [APT] [GlaryInitialize] (.GlarySoft.com.) -- C:\Program Files\Glary Utilities\initialize.exe ~ Scan Scheduled Task in 00mn 00s ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys O41 - Driver: (AmdK8) . (.Advanced Micro Devices - AMD Processor Driver.) - C:\WINDOWS\system32\DRIVERS\AmdK8.sys O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\WINDOWS\system32\DRIVERS\avipbb.sys O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\DRIVERS\cdrom.sys O41 - Driver: (hidfltr) . (...) - C:\WINDOWS\system32\drivers\MWhid.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\system32\DRIVERS\imapi.sys O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\system32\DRIVERS\ipsec.sys O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre souris HID.) - C:\WINDOWS\system32\DRIVERS\kbdhid.sys O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\WINDOWS\system32\DRIVERS\mouclass.sys O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\system32\DRIVERS\netbios.sys O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\system32\DRIVERS\netbt.sys O41 - Driver: (Processor) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\WINDOWS\system32\DRIVERS\processr.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\system32\DRIVERS\rasacd.sys O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\system32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\system32\DRIVERS\RDPCDD.sys O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\WINDOWS\system32\DRIVERS\redbook.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\WINDOWS\system32\DRIVERS\serial.sys O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\WINDOWS\system32\DRIVERS\ssmdrv.sys O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\system32\DRIVERS\tcpip.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\system32\DRIVERS\termdd.sys O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys O41 - Driver: (InCDPass) . (. - .) - C:\WINDOWS\system32\drivers\InCDPass.sys (.not file.) O41 - Driver: (InCDRm) . (. - .) - C:\WINDOWS\system32\drivers\InCDRm.sys (.not file.) O41 - Driver: (SAVRTPEL) . (. - .) - C:\Program Files\Norton AntiVirus\SAVRTPEL.sys (.not file.) O41 - Driver: (SPBBCDrv) . (. - .) - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCDrv.sys (.not file.) O41 - Driver: (SYMTDI) . (. - .) - C:\WINDOWS\system32\Drivers\SYMTDI.sys (.not file.) ~ Scan Drivers in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: Acer Empowering Technology - (.Acer.) [HKLM] -- {AB6097D9-D722-4987-BD9E-A076E2848EE2} O42 - Logiciel: Acer WLAN 11g USB Dongle - (.ACER Inc..) [HKLM] -- InstallShield_{0CB98AC0-D691-4B21-AD3D-95982517021D} O42 - Logiciel: Acer eDataSecurity Management - (.Acer.) [HKLM] -- {4AD13F68-CADA-4C6B-9759-C33753F89908} O42 - Logiciel: Acer eDataSecurity Management 2.0.3077 - (.Acer.) [HKLM] -- InstallShield_{4AD13F68-CADA-4C6B-9759-C33753F89908} O42 - Logiciel: Acer ePerformance Management - (.Acer.) [HKLM] -- {7057702F-6D71-4F30-8000-9E72BC771887} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Reader 8.3.1 - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1033-7B44-A83000000003} O42 - Logiciel: Alcatel SpeedTouch USB Software - (.Pas de propriétaire.) [HKLM] -- {D41FAAA9-8048-4906-86B2-9AADEA1FA0B7} O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {D3116CC7-24DC-4CA3-9CE1-23FED836E9F2} O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop O42 - Logiciel: CCleaner (remove only) - (.Pas de propriétaire.) [HKLM] -- CCleaner O42 - Logiciel: CDRWIN 6.1 - (.Disc4You.) [HKLM] -- {C8310658-4019-4934-A7AC-AD1E35EDD8F5} O42 - Logiciel: CDex extraction audio - (.Pas de propriétaire.) [HKLM] -- CDex O42 - Logiciel: Compel Adaptec WinASPI - (.Pas de propriétaire.) [HKLM] -- Compel install Adaptec WinASPI-4.6.0(1021)_is1 O42 - Logiciel: Configuration DivX - (.DivX, LLC.) [HKLM] -- DivX Setup.divx.com O42 - Logiciel: CorelDRAW Graphics Suite 12 - (.Corel Corporation.) [HKLM] -- {505AFDC0-5E72-4928-8368-5DEA385E3647} O42 - Logiciel: DivX Plus DirectShow Filters - (.DivX, Inc..) [HKLM] -- DivX Plus DirectShow Filters O42 - Logiciel: EA Download Manager - (.Electronic Arts.) [HKLM] -- InstallShield_{EF7E931D-DC84-471B-8DB6-A83358095474} O42 - Logiciel: Editeur Foto.com 2.3 - (.Pas de propriétaire.) [HKLM] -- Editeur Foto.com_is1 O42 - Logiciel: Extrafilm FotoFacil - (.Pas de propriétaire.) [HKLM] -- Extrafilm FotoFacil O42 - Logiciel: FastStone Image Viewer 3.2 - (.FastStone Soft.) [HKLM] -- FastStone Image Viewer O42 - Logiciel: FaxTools - (.BVRP Software.) [HKLM] -- {F45298E5-0083-426F-A668-1A2C5F04B8A0} O42 - Logiciel: Firebird SQL Server - MAGIX Edition (F) - (.MAGIX AG.) [HKLM] -- Firebird SQL Server F O42 - Logiciel: First Step Guide - (.Pas de propriétaire.) [HKLM] -- {C797EAF2-707A-4239-BDF3-F2672314A734} O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9} O42 - Logiciel: GemMaster Mystic - (.Pas de propriétaire.) [HKLM] -- 99A88D57-2C93-491B-87B8-E41A870FB6BE O42 - Logiciel: Glary Utilities 2.6 - (.GlaryUtilities.com.) [HKLM] -- Glary Utilities_is1 O42 - Logiciel: HP Document Viewer 7.0 - (.HP.) [HKLM] -- HP Document Viewer O42 - Logiciel: HP Imaging Device Functions 7.0 - (.HP.) [HKLM] -- HP Imaging Device Functions O42 - Logiciel: HP Photosmart Essential - (.HP.) [HKLM] -- {EB21A812-671B-4D08-B974-2A347F0D8F70} O42 - Logiciel: HP Photosmart Premier Software 6.5 - (.HP.) [HKLM] -- HP Photo & Imaging O42 - Logiciel: HP Photosmart, Officejet and Deskjet 7.0.A - (.HP.) [HKLM] -- {BDBE2F3E-42DB-4d4a-8CB1-19BA765DBC6C} O42 - Logiciel: HP Product Assistant - (.Hewlett-Packard.) [HKLM] -- {36FDBE6E-6684-462B-AE98-9A39A1B200CC} O42 - Logiciel: HP Solution Center 7.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE} O42 - Logiciel: High Definition Audio Driver Package - KB888111 - (.Microsoft Corporation.) [HKLM] -- KB888111WXPSP2 O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595 O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484 O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399 O42 - Logiciel: Hotfix for Windows Media Player 10 (KB903157) - (.Microsoft Corporation.) [HKLM] -- KB903157 O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5 O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5 O42 - Logiciel: HyperCam 2 - (.Pas de propriétaire.) [HKLM] -- HyperCam 2 O42 - Logiciel: ImageMixer VCD2 - (.Pas de propriétaire.) [HKLM] -- {F8C6BABF-0837-4EA0-AD6C-8E5A392A7538} O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8} O42 - Logiciel: InterVideo DeviceService - (.InterVideo.) [HKLM] -- {521AAD14-5030-44BB-8B0E-5CE65FCE57E0} O42 - Logiciel: J2SE Runtime Environment 5.0 Update 11 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0150110} O42 - Logiciel: Java(TM) 6 Update 26 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216010FF} O42 - Logiciel: Java(TM) 6 Update 3 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160030} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619} O42 - Logiciel: Learn2 Player (Uninstall Only) - (.Pas de propriétaire.) [HKLM] -- StreetPlugin O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player O42 - Logiciel: MAGIX Photo Clinic 5.0 (F) - (.MAGIX AG.) [HKLM] -- MAGIX Photo Clinic 5.0 F O42 - Logiciel: MSN - (.Pas de propriétaire.) [HKLM] -- MSNINST O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: MSXML 6.0 Parser (KB933579) - (.Microsoft Corporation.) [HKLM] -- {0A869A65-8C94-4F7C-A5C7-972D3C8CED9E} O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {A4EF9D8B-E19B-45ED-BFAF-CB4364574FFF} O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.2.1300 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Maternelle - (.Pas de propriétaire.) [HKLM] -- {E0111968-2ABA-4F3D-A92F-80E6744F0A19} O42 - Logiciel: MegaStore - (.Mega World.) [HKLM] -- InstallShield_{78FAAF25-07DA-11D9-B095-009027EC0701} O42 - Logiciel: Microsoft .NET Framework 1.0 Hotfix (KB2572066) - (.Microsoft Corporation.) [HKLM] -- KB2572066 O42 - Logiciel: Microsoft .NET Framework 1.0 Hotfix (KB953295) - (.Microsoft Corporation.) [HKLM] -- KB953295 O42 - Logiciel: Microsoft .NET Framework 1.0 Hotfix (KB979904) - (.Microsoft Corporation.) [HKLM] -- KB979904 O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033) O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700} O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2572067) - (.Pas de propriétaire.) [HKLM] -- M2572067 O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906 O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1 O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570} O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1 O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 - (.Microsoft Corporation.) [HKLM] -- Wdf01005 O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM] -- {90140000-2005-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.) [HKLM] -- {57F0ED40-8F11-41AA-B926-4A66D0D1A9CC} O42 - Logiciel: Microsoft Office Outlook Connector - (.Microsoft Corporation.) [HKLM] -- {95120000-0122-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM] -- {9011040C-6000-11D3-8CFE-0150048383C9} O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} O42 - Logiciel: Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR) - (.Microsoft Corporation.) [HKLM] -- {E09B48B5-E141-427A-AB0C-D3605127224A} O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {4CBA3D4C-8F51-4D60-B27E-F6B641C571E7} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5} O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB} O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000 O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F} O42 - Logiciel: Microsoft Windows Media Video 9 VCM - (.Pas de propriétaire.) [HKLM] -- WMV9_VCM O42 - Logiciel: Mises à jour NVIDIA 1.4.28 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE} O42 - Logiciel: Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 2.0 Language Pack - FRA O42 - Logiciel: Mozilla Firefox 6.0.2 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 6.0.2 (x86 fr) O42 - Logiciel: NETGEAR WG111v2 wireless USB 2.0 adapter - (.NETGEAR.) [HKLM] -- InstallShield_{E0F252A6-DE85-4E93-A93B-DFC3537B3965} O42 - Logiciel: NTI Backup NOW! 4 - (.NewTech Infosystems.) [HKLM] -- InstallShield_{385979FE-DC4F-4140-8EAD-A59625000D72} O42 - Logiciel: NTI CD & DVD-Maker - (.NewTech Infosystems.) [HKLM] -- InstallShield_{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2} O42 - Logiciel: NVIDIA Drivers - (.Pas de propriétaire.) [HKLM] -- NVIDIA Drivers O42 - Logiciel: NVIDIA Pilote graphique 280.26 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver O42 - Logiciel: NVIDIA nView 135.94 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView O42 - Logiciel: NVIDIA nView Desktop Manager - (.NVIDIA Corporation.) [HKLM] -- NVIDIA nView Desktop Manager O42 - Logiciel: Nero 7 Premium - (.Nero AG.) [HKLM] -- {4781569D-5404-1F26-4B2B-6DF444441031} O42 - Logiciel: OCA Client history tool install - (.Microsoft Corporation.) [HKLM] -- OcaHistoryUpd O42 - Logiciel: OCR Software by I.R.I.S 7.0 - (.HP.) [HKLM] -- HPOCR O42 - Logiciel: Otto - (.Pas de propriétaire.) [HKLM] -- 0D20D36D-A11C-444c-9AF7-70CBFED42ECF O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238} O42 - Logiciel: PC Connectivity Solution - (.Nokia.) [HKLM] -- {AC599724-5755-48C1-ABE7-ABB857652930} O42 - Logiciel: PENTAX Digital Camera Utility - (.Pas de propriétaire.) [HKLM] -- PENTAX Digital Camera Utility O42 - Logiciel: Package de base Microsoft de service de chiffrement pour cartes à puce - (.Microsoft Corporation.) [HKLM] -- KB909520 O42 - Logiciel: Package de pilotes Windows - AMD System (04/06/2006 1.0.1.0) - (.AMD.) [HKLM] -- F3B506E1FDAEA4DC6669B53B2D3F0B68FBA20C2D O42 - Logiciel: Package de pilotes Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0) - (.Advanced Micro Devices.) [HKLM] -- 3BEF1AFDE8303306594E2ADA27520E6E700820AE O42 - Logiciel: Package de pilotes Windows - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0) - (.MobileTop.) [HKLM] -- 6194C28A8F62DD817EA1B918E6E46E806A21B452 O42 - Logiciel: Package de pilotes Windows - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0) - (.MobileTop.) [HKLM] -- 65B6FE5418CE28F4D72543FB2D964C3CEC83F161 O42 - Logiciel: Package de pilotes Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0) - (.Nokia.) [HKLM] -- 3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F O42 - Logiciel: Philips SPC230NC Webcam - (.Philips.) [HKLM] -- {05F350C6-FA6A-40D0-A130-FB941B39152C} O42 - Logiciel: Picture Package - (.Pas de propriétaire.) [HKLM] -- {1E2F8AE3-3437-44E6-BB75-E95751D6B83F} O42 - Logiciel: QuickTime - (.Apple Computer, Inc..) [HKLM] -- InstallShield_{3868A8EE-5051-4DB0-8DF6-4F4B8A98D083} O42 - Logiciel: Real Alternative 2.0.2 - (.Pas de propriétaire.) [HKLM] -- RealAlt_is1 O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: SAMSUNG CDMA Modem Driver Set - (.Pas de propriétaire.) [HKLM] -- SAMSUNG CDMA Modem O42 - Logiciel: SAMSUNG Mobile Composite Device Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile Composite Device O42 - Logiciel: SAMSUNG Mobile Modem Driver Set - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile Modem O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem 1.0 O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem O42 - Logiciel: SFR - Kit de connexion - (.SFR.) [HKLM] -- SFR_Kit O42 - Logiciel: SLD Codec Pack - (.Pas de propriétaire.) [HKLM] -- SLD Codec Pack O42 - Logiciel: Samsung Mobile Modem Device Software - (.Pas de propriétaire.) [HKLM] -- Samsung Mobile Modem Device O42 - Logiciel: Samsung Mobile phone USB driver Software - (.Pas de propriétaire.) [HKLM] -- Samsung Mobile phone USB driver O42 - Logiciel: SamsungConnectivityCableDriver - (.Samsung.) [HKLM] -- {7E84FAC8-C518-40F9-9807-7455301D6D25} O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906 O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} O42 - Logiciel: Security Update for Microsoft .NET Framework 2.0 (KB928365) - (.Microsoft Corporation.) [HKLM] -- KB928365.T1_1ToU569_1 O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473 O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7} O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM] -- Shop for HP Supplies O42 - Logiciel: Skype™ 4.0 - (.Skype Technologies S.A..) [HKLM] -- {24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D} O42 - Logiciel: SmartSound Quicktracks Plugin - (.SmartSound Software Inc.) [HKLM] -- InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E} O42 - Logiciel: Sonic Encoders - (.Sonic Solutions.) [HKLM] -- {9941F0AA-B903-4AF4-A055-83A9815CC011} O42 - Logiciel: Sony USB Driver - (.Pas de propriétaire.) [HKLM] -- {5C29CB8B-AC1E-4114-8D68-9CD080140D4A} O42 - Logiciel: System Requirements Lab - (.Pas de propriétaire.) [HKLM] -- SystemRequirementsLab O42 - Logiciel: TeamViewer 4 - (.TeamViewer GmbH.) [HKLM] -- TeamViewer 4 O42 - Logiciel: TeamViewer 5 - (.TeamViewer GmbH.) [HKLM] -- TeamViewer 5 O42 - Logiciel: Ulead VideoStudio 11 - (.InterVideo Digital Technology Corporation.) [HKLM] -- InstallShield_{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9} O42 - Logiciel: UltraCover - (.Pas de propriétaire.) [HKCU] -- UltraCover O42 - Logiciel: Update Manager - (.Corel Corporation.) [HKLM] -- {F428D0FB-765D-40EB-BDD8-A1E7F5C597FA} O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707 O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM] -- {5EE7D259-D137-4438-9A5F-42F432EC0421} O42 - Logiciel: VideoLAN VLC media player 0.8.6d - (.VideoLAN Team.) [HKLM] -- VLC media player O42 - Logiciel: Webcam Video Viewer - (.ArcSoft.) [HKLM] -- {CECB7782-F35F-45CE-97C0-74BBBDC51C22} O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM] -- Winamp O42 - Logiciel: Winamp Remote - (.Orb Networks.) [HKLM] -- Orb O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474) - (.Microsoft Corporation.) [HKLM] -- WgaNotify O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130 O42 - Logiciel: Windows Imaging Component - (.Microsoft Corporation.) [HKLM] -- WIC O42 - Logiciel: Windows Internet Explorer 7 - (.Microsoft Corporation.) [HKLM] -- ie7 O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1} O42 - Logiciel: Windows Live Contrôle parental - (.Microsoft Corporation.) [HKLM] -- {9FF9FDF7-F84A-4F99-B4BB-066B6F95F33D} O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {76810709-A7D3-468D-9167-A1780C1E766C} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B} O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM] -- {9D6524E6-15CF-4852-BF70-04FE973A3DE1} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA} O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11 O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11 O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} O42 - Logiciel: Windows XP Media Center Edition 2005 KB2502898 - (.Microsoft Corporation.) [HKLM] -- KB2502898 O42 - Logiciel: Windows XP Media Center Edition 2005 KB908246 - (.Microsoft Corporation.) [HKLM] -- KB908246 O42 - Logiciel: Windows XP Media Center Edition 2005 KB925766 - (.Microsoft Corporation.) [HKLM] -- KB925766 O42 - Logiciel: Windows XP Media Center Edition 2005 KB973768 - (.Microsoft Corporation.) [HKLM] -- KB973768 O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service O42 - Logiciel: XML Paper Specification Shared Components Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- XpsEPSC O42 - Logiciel: XviD MPEG-4 Video Codec - (.XviD Team (Koepi).) [HKLM] -- XviD_is1 O42 - Logiciel: commercial - (.Default Company Name.) [HKLM] -- {38C65D12-79E3-49C0-B211-DE3BE0A7AB39} O42 - Logiciel: i-Covers 2009.a - (.Synops.biz.) [HKLM] -- i-Covers_is1 ---\\ HKCU & HKLM Software Keys [HKCU\Software\?? ?? ???? ????? ??? ?? ????] [HKCU\Software\ASProtect] [HKCU\Software\Adobe] [HKCU\Software\Ahead] [HKCU\Software\Alcohol Soft] [HKCU\Software\Aurigma] [HKCU\Software\Avira] [HKCU\Software\CDDB] [HKCU\Software\CeWe Color] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CoreAAC] [HKCU\Software\CoreVorbis] [HKCU\Software\Corel] [HKCU\Software\CoverSearch] [HKCU\Software\Cyberlink] [HKCU\Software\Cygwin] [HKCU\Software\DScaler5] [HKCU\Software\DivXNetworks] [HKCU\Software\DivX] [HKCU\Software\Elecard] [HKCU\Software\Genesis Digital Innovations] [HKCU\Software\GlarySoft] [HKCU\Software\Google] [HKCU\Software\HP] [HKCU\Software\Hewlett-Packard] [HKCU\Software\Hyperionics] [HKCU\Software\IM Providers] [HKCU\Software\Intel] [HKCU\Software\InterVideo] [HKCU\Software\JavaSoft] [HKCU\Software\Lake] [HKCU\Software\Ligos] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\Macromedia] [HKCU\Software\Magix] [HKCU\Software\MainConcept] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\Neuf] [HKCU\Software\Oberon Media] [HKCU\Software\Philips] [HKCU\Software\Piriform] [HKCU\Software\Pixela] [HKCU\Software\Policies] [HKCU\Software\RealNetworks] [HKCU\Software\Realtek] [HKCU\Software\RegisteredApplications] [HKCU\Software\Revistronic] [HKCU\Software\Safer Networking Limited] [HKCU\Software\Samsung] [HKCU\Software\SecuROM] [HKCU\Software\Skype] [HKCU\Software\SmartSound Software] [HKCU\Software\Sony Corporation] [HKCU\Software\TeamViewer] [HKCU\Software\Troika] [HKCU\Software\Trolltech] [HKCU\Software\Ulead Systems] [HKCU\Software\Ulead] [HKCU\Software\Usbfix] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\ValuSoft] [HKCU\Software\Valve] [HKCU\Software\Virtools] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Winamp] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\ZyDAS] [HKCU\Software\acer] [HKCU\Software\cybelsoft] [HKCU\Software\foto.com] [HKCU\Software\i-Covers] [HKLM\Software\ACE Compression Software] [HKLM\Software\AMD] [HKLM\Software\Aardwork] [HKLM\Software\Acer] [HKLM\Software\Adobe] [HKLM\Software\AdwCleaner] [HKLM\Software\Alcohol Soft] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Avira] [HKLM\Software\C07ft5Y] [HKLM\Software\CA503A] [HKLM\Software\CDDB] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Codemasters] [HKLM\Software\Compedia] [HKLM\Software\Corel] [HKLM\Software\Cygwin] [HKLM\Software\Disc4You] [HKLM\Software\DivXNetworks] [HKLM\Software\DivX] [HKLM\Software\EA GAMES] [HKLM\Software\EACADEMY] [HKLM\Software\Electronic Arts] [HKLM\Software\FDEInstaller] [HKLM\Software\GSC Game World] [HKLM\Software\Gabest] [HKLM\Software\Gemplus] [HKLM\Software\GlarySoft] [HKLM\Software\Google] [HKLM\Software\HPS] [HKLM\Software\HP] [HKLM\Software\Hewlett-Packard] [HKLM\Software\Hyperionics] [HKLM\Software\ICE] [HKLM\Software\InstallShield] [HKLM\Software\Intel] [HKLM\Software\InterVideo] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Khronos] [HKLM\Software\Kodak] [HKLM\Software\LEAD Technologies, Inc.] [HKLM\Software\LightScribe] [HKLM\Software\MCCI] [HKLM\Software\MDC] [HKLM\Software\MSI] [HKLM\Software\Macromedia] [HKLM\Software\Macrovision] [HKLM\Software\Magix] [HKLM\Software\Magnet] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\MarkAny] [HKLM\Software\Marvell] [HKLM\Software\Matrox] [HKLM\Software\Micro Application] [HKLM\Software\MoTeC] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\Nero] [HKLM\Software\Neuf] [HKLM\Software\NewTech Infosystems] [HKLM\Software\Nullsoft] [HKLM\Software\ODBC] [HKLM\Software\OldTimer Tools] [HKLM\Software\On2 Technologies] [HKLM\Software\Orb Networks] [HKLM\Software\PC Connectivity Solution] [HKLM\Software\PCSuite] [HKLM\Software\PIXELA] [HKLM\Software\PegasusImaging] [HKLM\Software\Pentax] [HKLM\Software\Philips] [HKLM\Software\Photocite Collection 4] [HKLM\Software\PoINT] [HKLM\Software\Policies] [HKLM\Software\Preclick] [HKLM\Software\Program Groups] [HKLM\Software\Pure Networks] [HKLM\Software\RealAlternative] [HKLM\Software\RealNetworks] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\Remedy Entertainment] [HKLM\Software\RtlWake] [HKLM\Software\S3R521] [HKLM\Software\SBDT AB] [HKLM\Software\SLD] [HKLM\Software\SONY PVC] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Schlumberger] [HKLM\Software\Skype] [HKLM\Software\SmartSound Software] [HKLM\Software\Sonic Desktop Software] [HKLM\Software\Sonic] [HKLM\Software\Sony Corporation] [HKLM\Software\Sony Media Software] [HKLM\Software\SymNRT] [HKLM\Software\Symantec] [HKLM\Software\Tatanka] [HKLM\Software\TeamViewer] [HKLM\Software\TechCity] [HKLM\Software\The Silicon Realms Toolworks] [HKLM\Software\TrendMicro] [HKLM\Software\Ulead Systems] [HKLM\Software\VideoLAN] [HKLM\Software\Windows 3.1 Migration Status] [HKLM\Software\Windows] [HKLM\Software\X-AVCSD] [HKLM\Software\Xing Technology Corp.] [HKLM\Software\ahead] [HKLM\Software\cybelsoft] [HKLM\Software\foto.com] [HKLM\Software\mozilla.org] [HKLM\Software\muvee Technologies] [HKLM\Software\optimidata] [HKLM\Software\swearware] ~ Scan Softwares in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 15/12/2006 - 19:08:48 - [4518015] ----D- C:\Program Files\Acer WLAN 11g USB Dongle O43 - CFD: 04/10/2011 - 09:34:06 - [115574861] ----D- C:\Program Files\Adobe O43 - CFD: 16/10/2007 - 17:57:36 - [3763764] ----D- C:\Program Files\Alcohol Soft O43 - CFD: 10/06/2009 - 21:48:58 - [8090655] ----D- C:\Program Files\ArcSoft O43 - CFD: 12/10/2011 - 11:04:24 - [147769941] ----D- C:\Program Files\Avira O43 - CFD: 07/11/2010 - 20:45:52 - [1335830] ----D- C:\Program Files\CCleaner O43 - CFD: 31/01/2007 - 13:01:08 - [3129516] ----D- C:\Program Files\CDex_150 O43 - CFD: 22/04/2008 - 16:47:52 - [19685338] ----D- C:\Program Files\CDRWIN 6 O43 - CFD: 15/12/2006 - 19:08:52 - [3050898] ----D- C:\Program Files\commercial O43 - CFD: 28/11/2007 - 16:50:34 - [4584] ----D- C:\Program Files\Common Files O43 - CFD: 08/09/2007 - 12:19:04 - [317478324] ----D- C:\Program Files\Corel O43 - CFD: 10/03/2007 - 00:40:08 - [1261699] ----D- C:\Program Files\DAEMON Tools O43 - CFD: 01/08/2011 - 13:03:48 - [3719286] ----D- C:\Program Files\DIFX O43 - CFD: 16/09/2008 - 14:52:20 - [0] ----D- C:\Program Files\directx O43 - CFD: 28/07/2011 - 12:30:14 - [99856884] ----D- C:\Program Files\DivX O43 - CFD: 16/10/2007 - 17:38:28 - [126976] ----D- C:\Program Files\Elaborate Bytes O43 - CFD: 13/01/2008 - 01:45:46 - [111188350] ----D- C:\Program Files\Extrafilm FotoFacil O43 - CFD: 22/10/2008 - 21:26:36 - [6809537] ----D- C:\Program Files\FastStone Image Viewer O43 - CFD: 01/02/2007 - 22:52:26 - [11344842] ----D- C:\Program Files\FaxTools O43 - CFD: 13/10/2011 - 19:57:48 - [973467748] ----D- C:\Program Files\Fichiers communs O43 - CFD: 22/07/2010 - 21:09:26 - [3841717] ----D- C:\Program Files\FitKids O43 - CFD: 02/11/2008 - 21:59:18 - [43917671] ----D- C:\Program Files\Foto.com O43 - CFD: 15/12/2006 - 19:09:04 - [13453941] ----D- C:\Program Files\FrenchOtto O43 - CFD: 15/12/2006 - 19:09:04 - [5071796] ----D- C:\Program Files\GemMasterFrench O43 - CFD: 10/08/2008 - 12:09:44 - [20201995] ----D- C:\Program Files\Glary Utilities O43 - CFD: 11/10/2011 - 08:57:56 - [989973] ----D- C:\Program Files\Google O43 - CFD: 03/09/2007 - 17:41:10 - [1684102] ----D- C:\Program Files\Graphex3 O43 - CFD: 10/07/2007 - 18:37:56 - [308] ----D- C:\Program Files\Hercules O43 - CFD: 01/10/2007 - 16:45:50 - [1731312] ----D- C:\Program Files\Hewlett-Packard O43 - CFD: 28/08/2009 - 14:36:12 - [314247284] ----D- C:\Program Files\HP O43 - CFD: 06/02/2007 - 10:48:06 - [619905] ----D- C:\Program Files\HyCam2 O43 - CFD: 23/01/2010 - 20:03:00 - [1400583] ----D- C:\Program Files\i-Covers O43 - CFD: 10/10/2011 - 22:35:56 - [175945140] --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD: 13/10/2011 - 18:00:14 - [3841475] ----D- C:\Program Files\Internet Explorer O43 - CFD: 10/10/2011 - 22:38:16 - [228095140] ----D- C:\Program Files\Java O43 - CFD: 26/01/2007 - 12:16:40 - [711772] ----D- C:\Program Files\Learn2.com O43 - CFD: 11/10/2011 - 09:00:44 - [6511189] ----D- C:\Program Files\ma-config.com O43 - CFD: 12/10/2011 - 18:03:28 - [7004113] ----D- C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD: 01/08/2011 - 13:44:02 - [221184] ----D- C:\Program Files\MarkAnyContentSAFER O43 - CFD: 10/06/2009 - 21:25:22 - [0] ----D- C:\Program Files\mdsc4m O43 - CFD: 22/12/2007 - 21:11:30 - [3152941] ----D- C:\Program Files\MegaWorld O43 - CFD: 14/08/2008 - 02:55:34 - [2152579] ----D- C:\Program Files\Messenger O43 - CFD: 17/09/2009 - 19:26:24 - [1544075] ----D- C:\Program Files\Microsoft O43 - CFD: 10/05/2007 - 16:53:46 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2 O43 - CFD: 15/12/2006 - 19:09:06 - [0] ----D- C:\Program Files\microsoft frontpage O43 - CFD: 10/10/2011 - 10:57:50 - [6090282] ----D- C:\Program Files\Microsoft IntelliPoint O43 - CFD: 06/02/2007 - 10:34:50 - [6959587] ----D- C:\Program Files\Microsoft IntelliType Pro O43 - CFD: 29/06/2011 - 15:06:04 - [412478404] ----D- C:\Program Files\Microsoft Office O43 - CFD: 17/09/2009 - 19:26:18 - [1559148] ----D- C:\Program Files\Microsoft Office Outlook Connector O43 - CFD: 14/10/2011 - 10:59:56 - [39438259] ----D- C:\Program Files\Microsoft Silverlight O43 - CFD: 13/08/2007 - 12:15:34 - [13750968] ----D- C:\Program Files\Microsoft SQL Server O43 - CFD: 17/09/2009 - 19:24:42 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD: 17/09/2009 - 19:25:30 - [2188837] ----D- C:\Program Files\Microsoft Sync Framework O43 - CFD: 28/01/2007 - 13:28:50 - [14904] ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD: 03/05/2007 - 22:03:32 - [4368271] ----D- C:\Program Files\Microsoft Works O43 - CFD: 28/01/2007 - 13:28:30 - [315392] ----D- C:\Program Files\Microsoft.NET O43 - CFD: 31/08/2010 - 02:46:10 - [10961329] ----D- C:\Program Files\Movie Maker O43 - CFD: 15/10/2011 - 20:19:04 - [37572878] ----D- C:\Program Files\Mozilla Firefox O43 - CFD: 12/12/2007 - 13:47:28 - [25757] ----D- C:\Program Files\MSBuild O43 - CFD: 15/03/2009 - 13:39:20 - [29794014] ----D- C:\Program Files\MSECache O43 - CFD: 28/01/2007 - 13:46:04 - [21471461] ----D- C:\Program Files\MSN O43 - CFD: 15/12/2006 - 19:09:06 - [8745735] ----D- C:\Program Files\MSN Gaming Zone O43 - CFD: 16/11/2008 - 00:31:48 - [0] ----D- C:\Program Files\MSXML 4.0 O43 - CFD: 12/12/2007 - 13:49:20 - [6849] ----D- C:\Program Files\MSXML 6.0 O43 - CFD: 06/10/2011 - 13:48:28 - [171069896] ----D- C:\Program Files\Navilog1 O43 - CFD: 19/02/2007 - 12:07:30 - [273448142] ----D- C:\Program Files\Nero O43 - CFD: 10/10/2011 - 12:47:20 - [7262768] ----D- C:\Program Files\NETGEAR O43 - CFD: 20/06/2008 - 15:46:54 - [3285523] ----D- C:\Program Files\NetMeeting O43 - CFD: 11/07/2007 - 18:12:34 - [14873034] ----D- C:\Program Files\Neuf O43 - CFD: 15/12/2006 - 19:09:10 - [200288859] ----D- C:\Program Files\NewTech Infosystems O43 - CFD: 11/10/2011 - 09:17:14 - [304761916] ----D- C:\Program Files\NVIDIA Corporation O43 - CFD: 15/12/2006 - 19:09:22 - [62536] ----D- C:\Program Files\Oca History Tool O43 - CFD: 15/12/2006 - 19:09:22 - [1712] ----D- C:\Program Files\Online Services O43 - CFD: 17/12/2010 - 17:14:08 - [4379321] ----D- C:\Program Files\Outlook Express O43 - CFD: 10/10/2011 - 22:31:26 - [9740904] ----D- C:\Program Files\PC Connectivity Solution O43 - CFD: 25/12/2009 - 21:49:50 - [14307662] ----D- C:\Program Files\Pentax O43 - CFD: 10/06/2009 - 21:48:24 - [13040464] ----D- C:\Program Files\Philips O43 - CFD: 17/02/2009 - 19:46:36 - [76207245] ----D- C:\Program Files\Photocite Collection 4 O43 - CFD: 28/07/2007 - 18:57:00 - [101061079] ----D- C:\Program Files\PIXELA O43 - CFD: 18/03/2008 - 20:28:14 - [65185775] ----D- C:\Program Files\QuickTime O43 - CFD: 26/01/2007 - 12:15:56 - [0] ----D- C:\Program Files\Real O43 - CFD: 25/04/2010 - 11:46:54 - [22762578] ----D- C:\Program Files\Real Alternative O43 - CFD: 15/12/2006 - 19:09:22 - [47722444] ----D- C:\Program Files\Realtek O43 - CFD: 12/12/2007 - 13:44:16 - [36400897] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 10/10/2011 - 22:35:20 - [632055] ----D- C:\Program Files\Samsung O43 - CFD: 15/12/2006 - 19:09:24 - [933] ----D- C:\Program Files\Services en ligne O43 - CFD: 18/05/2009 - 19:59:06 - [29896833] R---D- C:\Program Files\Skype O43 - CFD: 13/08/2007 - 22:06:46 - [4605289] ----D- C:\Program Files\SLD Codec Pack O43 - CFD: 14/03/2011 - 18:27:02 - [0] ----D- C:\Program Files\SlySoft O43 - CFD: 18/03/2008 - 20:28:26 - [7446017] ----D- C:\Program Files\SmartSound Software O43 - CFD: 01/10/2007 - 15:53:50 - [60046025] ----D- C:\Program Files\Sony O43 - CFD: 28/07/2007 - 18:53:24 - [85637852] ----D- C:\Program Files\Sony Corporation O43 - CFD: 13/08/2007 - 12:06:24 - [145134121] ----D- C:\Program Files\Sony Setup O43 - CFD: 22/11/2008 - 00:04:08 - [27919300] ----D- C:\Program Files\Sports Interactive O43 - CFD: 12/10/2011 - 13:04:18 - [1731411] ----D- C:\Program Files\Spybot - Search & Destroy O43 - CFD: 17/12/2007 - 16:10:06 - [767494] ----D- C:\Program Files\SystemRequirementsLab O43 - CFD: 29/01/2010 - 16:20:18 - [11672375] ----D- C:\Program Files\TeamViewer O43 - CFD: 03/06/2008 - 12:52:04 - [624102] ----D- C:\Program Files\Trend Micro O43 - CFD: 18/03/2008 - 20:26:12 - [196061650] ----D- C:\Program Files\Ulead Systems O43 - CFD: 16/09/2008 - 14:34:40 - [1559329] ----D- C:\Program Files\UltraCover O43 - CFD: 13/08/2007 - 12:15:50 - [24] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 08/02/2008 - 18:41:10 - [33438420] ----D- C:\Program Files\VideoLAN O43 - CFD: 20/04/2011 - 01:40:00 - [37146087] ----D- C:\Program Files\Winamp O43 - CFD: 18/06/2008 - 19:24:50 - [34718232] ----D- C:\Program Files\Winamp Remote O43 - CFD: 27/08/2007 - 19:19:34 - [73007] ----D- C:\Program Files\WinASPI O43 - CFD: 28/01/2011 - 21:01:04 - [141906346] ----D- C:\Program Files\Windows Live O43 - CFD: 17/09/2009 - 19:23:00 - [245112] ----D- C:\Program Files\Windows Live SkyDrive O43 - CFD: 27/01/2008 - 20:05:38 - [182374] ----D- C:\Program Files\Windows Media Components O43 - CFD: 04/08/2007 - 13:37:34 - [3581070] ----D- C:\Program Files\Windows Media Connect 2 O43 - CFD: 20/06/2008 - 15:56:50 - [10237376] ----D- C:\Program Files\Windows Media Player O43 - CFD: 20/06/2008 - 15:46:52 - [3942655] ----D- C:\Program Files\Windows NT O43 - CFD: 15/12/2006 - 19:09:26 - [604229716] ----D- C:\Program Files\Windows Plus O43 - CFD: 14/06/2008 - 14:31:06 - [0] --H-D- C:\Program Files\WindowsUpdate O43 - CFD: 06/02/2007 - 10:46:22 - [2916304] ----D- C:\Program Files\WinRAR O43 - CFD: 03/10/2008 - 13:31:46 - [102430] ----D- C:\Program Files\WMV9_VCM O43 - CFD: 15/12/2006 - 19:09:26 - [0] ----D- C:\Program Files\xerox O43 - CFD: 26/08/2007 - 20:24:22 - [152724] ----D- C:\Program Files\XviD O43 - CFD: 12/11/2007 - 20:29:40 - [175] --H-D- C:\Program Files\Zero G Registry O43 - CFD: 16/10/2011 - 12:07:08 - [5439955] ----D- C:\Program Files\ZHPDiag O43 - CFD: 28/11/2007 - 16:50:42 - [4584] ----D- C:\Program Files\Common Files\EasyInfo O43 - CFD: 04/10/2011 - 09:34:24 - [22462760] ----D- C:\Program Files\Fichiers Communs\Adobe O43 - CFD: 19/02/2007 - 12:07:30 - [47574582] ----D- C:\Program Files\Fichiers Communs\Ahead O43 - CFD: 13/12/2007 - 13:42:34 - [4061217] ----D- C:\Program Files\Fichiers Communs\AOL O43 - CFD: 26/01/2007 - 12:16:48 - [62284721] ----D- C:\Program Files\Fichiers Communs\aolback O43 - CFD: 08/09/2007 - 12:20:08 - [5323384] ----D- C:\Program Files\Fichiers Communs\Corel O43 - CFD: 08/09/2007 - 12:20:22 - [197904] ----D- C:\Program Files\Fichiers Communs\DESIGNER O43 - CFD: 03/04/2008 - 01:20:50 - [24851] ----D- C:\Program Files\Fichiers Communs\DirectX O43 - CFD: 06/06/2010 - 14:52:54 - [24006656] ----D- C:\Program Files\Fichiers Communs\DivX Shared O43 - CFD: 01/10/2007 - 16:45:18 - [457237] ----D- C:\Program Files\Fichiers Communs\Hewlett-Packard O43 - CFD: 01/10/2007 - 16:49:20 - [5557190] ----D- C:\Program Files\Fichiers Communs\HP O43 - CFD: 08/09/2007 - 12:01:36 - [30802593] ----D- C:\Program Files\Fichiers Communs\InstallShield O43 - CFD: 27/01/2008 - 20:06:06 - [310880] ----D- C:\Program Files\Fichiers Communs\InterVideo O43 - CFD: 25/06/2011 - 10:02:52 - [62242229] ----D- C:\Program Files\Fichiers Communs\Java O43 - CFD: 15/12/2006 - 19:08:58 - [5644557] ----D- C:\Program Files\Fichiers Communs\LightScribe O43 - CFD: 17/10/2007 - 11:41:30 - [1570387] ----D- C:\Program Files\Fichiers Communs\MAGIX Shared O43 - CFD: 16/06/2011 - 10:45:28 - [325407009] ----D- C:\Program Files\Fichiers Communs\Microsoft Shared O43 - CFD: 15/12/2006 - 19:08:58 - [284160] ----D- C:\Program Files\Fichiers Communs\MSSoap O43 - CFD: 15/12/2006 - 19:08:58 - [7923158] ----D- C:\Program Files\Fichiers Communs\muvee Technologies O43 - CFD: 15/12/2006 - 19:09:00 - [12697600] ----D- C:\Program Files\Fichiers Communs\NewTech Infosystems O43 - CFD: 26/01/2007 - 12:16:08 - [2392177] ----D- C:\Program Files\Fichiers Communs\Nullsoft O43 - CFD: 13/12/2007 - 15:02:28 - [0] ----D- C:\Program Files\Fichiers Communs\ODBC O43 - CFD: 25/04/2010 - 11:34:28 - [118669] ----D- C:\Program Files\Fichiers Communs\Real O43 - CFD: 15/12/2006 - 19:09:00 - [8106] ----D- C:\Program Files\Fichiers Communs\Services O43 - CFD: 18/05/2009 - 19:59:06 - [1942824] ----D- C:\Program Files\Fichiers Communs\Skype O43 - CFD: 01/10/2007 - 16:49:56 - [208896] ----D- C:\Program Files\Fichiers Communs\Sonic Shared O43 - CFD: 15/12/2006 - 19:09:00 - [3787229] ----D- C:\Program Files\Fichiers Communs\SpeechEngines O43 - CFD: 14/10/2011 - 11:17:56 - [3113000] ----D- C:\Program Files\Fichiers Communs\Symantec Shared O43 - CFD: 17/09/2009 - 19:26:18 - [25827294] ----D- C:\Program Files\Fichiers Communs\System O43 - CFD: 18/03/2008 - 20:53:52 - [23410013] ----D- C:\Program Files\Fichiers Communs\Ulead Systems O43 - CFD: 16/09/2009 - 18:08:48 - [276794273] ----D- C:\Program Files\Fichiers Communs\Windows Live O43 - CFD: 16/10/2007 - 18:04:24 - [16753664] ----D- C:\Program Files\Fichiers Communs\Wise Installation Wizard O43 - CFD: 13/03/2010 - 02:32:06 - [4767606] ----D- C:\Documents and Settings\Administrateur\Application Data\Adobe O43 - CFD: 10/01/2010 - 19:54:16 - [74] ----D- C:\Documents and Settings\Administrateur\Application Data\AdobeUM O43 - CFD: 03/10/2008 - 13:28:16 - [138] ----D- C:\Documents and Settings\Administrateur\Application Data\Anuman Interactive O43 - CFD: 08/01/2009 - 20:09:58 - [0] ----D- C:\Documents and Settings\Administrateur\Application Data\Apple Computer O43 - CFD: 24/05/2009 - 21:09:56 - [0] ----D- C:\Documents and Settings\Administrateur\Application Data\ArcSoft O43 - CFD: 12/10/2011 - 11:27:16 - [0] ----D- C:\Documents and Settings\Administrateur\Application Data\Avira O43 - CFD: 10/07/2008 - 19:27:50 - [2760150] ----D- C:\Documents and Settings\Administrateur\Application Data\Command & Conquer 3 Les guerres du Tiberium O43 - CFD: 07/07/2008 - 11:51:46 - [3460254] ----D- C:\Documents and Settings\Administrateur\Application Data\Corel O43 - CFD: 07/07/2010 - 16:37:42 - [181248] ----D- C:\Documents and Settings\Administrateur\Application Data\DivX O43 - CFD: 22/10/2008 - 21:26:42 - [4273901] ----D- C:\Documents and Settings\Administrateur\Application Data\FastStone O43 - CFD: 10/08/2008 - 01:37:50 - [146713] ----D- C:\Documents and Settings\Administrateur\Application Data\GlarySoft O43 - CFD: 21/10/2008 - 21:10:26 - [0] ----D- C:\Documents and Settings\Administrateur\Application Data\Help O43 - CFD: 24/09/2008 - 19:13:34 - [33740] ----D- C:\Documents and Settings\Administrateur\Application Data\HP O43 - CFD: 09/07/2010 - 12:45:48 - [18805] ----D- C:\Documents and Settings\Administrateur\Application Data\HpUpdate O43 - CFD: 15/12/2006 - 19:07:54 - [0] ----D- C:\Documents and Settings\Administrateur\Application Data\Identities O43 - CFD: 14/06/2011 - 19:17:26 - [3379464] ----D- C:\Documents and Settings\Administrateur\Application Data\Image Zone Express O43 - CFD: 10/06/2009 - 21:39:14 - [0] ----D- C:\Documents and Settings\Administrateur\Application Data\InstallShield O43 - CFD: 15/12/2006 - 19:07:54 - [405] ----D- C:\Documents and Settings\Administrateur\Application Data\Macromedia O43 - CFD: 12/10/2011 - 18:03:52 - [565156] ----D- C:\Documents and Settings\Administrateur\Application Data\Malwarebytes O43 - CFD: 07/07/2010 - 16:32:44 - [97] ----D- C:\Documents and Settings\Administrateur\Application Data\Media Player Classic O43 - CFD: 18/12/2009 - 13:24:18 - [9373203] -S--D- C:\Documents and Settings\Administrateur\Application Data\Microsoft O43 - CFD: 18/04/2009 - 14:10:38 - [15646027] ----D- C:\Documents and Settings\Administrateur\Application Data\Mozilla O43 - CFD: 13/10/2011 - 20:50:40 - [0] ----D- C:\Documents and Settings\Administrateur\Application Data\NVIDIA O43 - CFD: 01/08/2011 - 13:49:10 - [354] ----D- C:\Documents and Settings\Administrateur\Application Data\PC Suite O43 - CFD: 15/09/2008 - 22:27:02 - [6487] ----D- C:\Documents and Settings\Administrateur\Application Data\Printer Info Cache O43 - CFD: 25/04/2010 - 11:34:12 - [12] ----D- C:\Documents and Settings\Administrateur\Application Data\Real O43 - CFD: 10/10/2011 - 22:35:26 - [0] ----D- C:\Documents and Settings\Administrateur\Application Data\Samsung O43 - CFD: 11/09/2008 - 16:43:54 - [0] R-H-D- C:\Documents and Settings\Administrateur\Application Data\SecuROM O43 - CFD: 30/09/2009 - 20:59:10 - [5360866] ----D- C:\Documents and Settings\Administrateur\Application Data\Skype O43 - CFD: 30/09/2009 - 20:31:12 - [70752] ----D- C:\Documents and Settings\Administrateur\Application Data\skypePM O43 - CFD: 22/11/2008 - 00:10:52 - [9566056] ----D- C:\Documents and Settings\Administrateur\Application Data\Sports Interactive O43 - CFD: 07/07/2008 - 22:40:24 - [32419973] ----D- C:\Documents and Settings\Administrateur\Application Data\Sun O43 - CFD: 29/01/2010 - 16:20:28 - [147869] ----D- C:\Documents and Settings\Administrateur\Application Data\TeamViewer O43 - CFD: 25/07/2008 - 12:00:16 - [21270087] ----D- C:\Documents and Settings\Administrateur\Application Data\Ulead Systems O43 - CFD: 15/09/2008 - 12:20:02 - [371017] ----D- C:\Documents and Settings\Administrateur\Application Data\vlc O43 - CFD: 04/10/2011 - 09:32:02 - [222557] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Adobe O43 - CFD: 18/08/2008 - 11:37:44 - [4839476] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Ahead O43 - CFD: 14/11/2008 - 19:05:02 - [0] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Apple Computer O43 - CFD: 17/08/2011 - 19:11:14 - [47986] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\ApplicationHistory O43 - CFD: 10/10/2011 - 22:23:06 - [0] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google O43 - CFD: 21/10/2008 - 21:10:26 - [0] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Help O43 - CFD: 30/09/2008 - 20:26:30 - [156870990] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\HP O43 - CFD: 04/10/2008 - 17:30:12 - [991896] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Identities O43 - CFD: 30/09/2008 - 20:26:44 - [1205] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\IsolatedStorage O43 - CFD: 15/10/2011 - 20:46:44 - [4636100730] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft O43 - CFD: 18/04/2009 - 14:10:36 - [99026441] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla O43 - CFD: 08/01/2010 - 22:22:34 - [1318] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Pentax O43 - CFD: 24/06/2010 - 22:30:24 - [0] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\WMTools Downloaded Files ~ Scan Program Folder in 00mn 01s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.1A33AA10A1FEB0BE00B860E985889AF7] - 16/10/2011 - 10:58:21 ---A- . (...) -- C:\UsbFix.txt [14525] O44 - LFC:[MD5.7CAE212096BD2A28A5FA4D0F2EED16FF] - 16/10/2011 - 10:55:37 ---A- . (...) -- C:\UsbFix_Upload_Me_MANU.zip [583302812] O44 - LFC:[MD5.FFC98C35D4DD0F937CBDC3A1EC574CFE] - 16/10/2011 - 10:53:44 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1129496] O44 - LFC:[MD5.F6C0171184A980963F67EC9BC8B2A08E] - 16/10/2011 - 10:40:39 ---A- . (...) -- C:\WINDOWS\RTacDbg.txt [387] O44 - LFC:[MD5.0AB9DA5022F19F41553E248757568339] - 16/10/2011 - 10:39:21 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159] O44 - LFC:[MD5.3BEF00760E3F1F3F5EA08E57C6DDCEBF] - 16/10/2011 - 10:39:19 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50] O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 16/10/2011 - 10:38:59 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048] O44 - LFC:[MD5.BD8FF8980C720FCE010F74D3E3E92C1F] - 16/10/2011 - 10:36:05 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [32520] O44 - LFC:[MD5.F0E96737ED6044D096FB712B2D31569C] - 15/10/2011 - 20:06:47 ---A- . (...) -- C:\WINDOWS\NeroDigital.ini [229] O44 - LFC:[MD5.AD5F91FE8DEFBF5CB04BECC813B30BA3] - 15/10/2011 - 16:18:06 ---A- . (...) -- C:\WINDOWS\wmsetup.log [3606] O44 - LFC:[MD5.96674882EDC863C639F96D7CFF41FABF] - 14/10/2011 - 10:26:25 ---A- . (...) -- C:\WINDOWS\KB2510581.log [7874] O44 - LFC:[MD5.1E23A0B1A9A72981C29B00EA2BFC6768] - 14/10/2011 - 10:01:09 ---A- . (...) -- C:\WINDOWS\system32\FNTCACHE.DAT [1712400] O44 - LFC:[MD5.A2D4A431AE51E9921E53DEFAC73C4E53] - 14/10/2011 - 09:44:57 ---A- . (...) -- C:\WINDOWS\KB2564958.log [12507] O44 - LFC:[MD5.4F417119E5ABD25540EC4F06AB8FA065] - 14/10/2011 - 09:44:57 ---A- . (...) -- C:\WINDOWS\MedCtrOC.log [2343] O44 - LFC:[MD5.4832D70B86D5E82F2EAB6569BF6262A5] - 14/10/2011 - 09:44:57 ---A- . (...) -- C:\WINDOWS\comsetup.log [11882] O44 - LFC:[MD5.A19473817D9719736D380CF0BF658EBC] - 14/10/2011 - 09:44:57 ---A- . (...) -- C:\WINDOWS\ehOCGen.log [1860] O44 - LFC:[MD5.148EF161818CDDA434C1FD7F1D160DDF] - 14/10/2011 - 09:44:57 ---A- . (...) -- C:\WINDOWS\iis6.log [35141] O44 - LFC:[MD5.07EB6266D87B747563FE610A9E578C10] - 14/10/2011 - 09:44:57 ---A- . (...) -- C:\WINDOWS\imsins.log [1393] O44 - LFC:[MD5.FF049630B871B6E5FB9E11A4DEBD3C74] - 14/10/2011 - 09:44:57 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [7245] O44 - LFC:[MD5.4682E7DA2A490CA53DA98E5CE1EBE31C] - 14/10/2011 - 09:44:57 ---A- . (...) -- C:\WINDOWS\ocmsn.log [1710] O44 - LFC:[MD5.F98259733B958D0D2B9506ECB6006DE8] - 14/10/2011 - 09:44:57 ---A- . (...) -- C:\WINDOWS\tabletoc.log [1827] O44 - LFC:[MD5.698CC2FA1FD98482F7BB587B447EFB53] - 14/10/2011 - 09:44:57 ---A- . (...) -- C:\WINDOWS\tsoc.log [15741] O44 - LFC:[MD5.BA4F7290A34A2FD98919F22A26CA2708] - 14/10/2011 - 09:44:56 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [34031] O44 - LFC:[MD5.E3302046ADED01F3EE74F34B41D4A999] - 14/10/2011 - 09:44:56 ---A- . (...) -- C:\WINDOWS\msgsocm.log [1782] O44 - LFC:[MD5.29D6FC72789C1A19AAF21D2C62DFB5E2] - 14/10/2011 - 09:44:56 ---A- . (...) -- C:\WINDOWS\netfxocm.log [5914] O44 - LFC:[MD5.AE076C18917AC4029EAD764D43BF5512] - 14/10/2011 - 09:44:56 ---A- . (...) -- C:\WINDOWS\ocgen.log [15932] O44 - LFC:[MD5.60C53B079BF3DBB90E211724099D72EA] - 14/10/2011 - 09:44:56 ---A- . (...) -- C:\WINDOWS\plusoc.log [3580] O44 - LFC:[MD5.D2672537839CFBC80B1B830F8C0E5EC7] - 14/10/2011 - 09:44:55 ---A- . (...) -- C:\WINDOWS\msmqinst.log [11654] O44 - LFC:[MD5.12F06E3FB65C77C2BA565C4FEB78411A] - 14/10/2011 - 09:44:54 ---A- . (...) -- C:\WINDOWS\updspapi.log [49503] O44 - LFC:[MD5.73DC4729349CB00D4C9712B1BAF492D2] - 14/10/2011 - 09:44:35 ---A- . (...) -- C:\WINDOWS\system32\PerfStringBackup.INI [1329470] O44 - LFC:[MD5.05880A3C15889BBDFCAFE92BF8B84131] - 14/10/2011 - 09:39:20 ---A- . (...) -- C:\WINDOWS\KB2567053.log [19802] O44 - LFC:[MD5.0354E3D415A744E27EF8B6AB0252B233] - 14/10/2011 - 09:39:20 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1393] O44 - LFC:[MD5.B512EB0C4B7A847E8BAE99536CDDFB36] - 14/10/2011 - 09:39:12 ---A- . (...) -- C:\WINDOWS\KB2592799.log [13926] O44 - LFC:[MD5.A9361ABE84D5CB1DEE2610C60B02AC2E] - 14/10/2011 - 09:35:38 ---A- . (...) -- C:\WINDOWS\KB2572066.log [16443] O44 - LFC:[MD5.82D706DF9DEACA1CBDD7ED03203E2ABF] - 14/10/2011 - 09:35:08 ---A- . (...) -- C:\WINDOWS\setupapi.log [101486] O44 - LFC:[MD5.C7E946AB6792483C92E867EEAEAA5D3C] - 13/10/2011 - 18:59:26 ---A- . (...) -- C:\WINDOWS\LUINSTALL.LOG [23458] O44 - LFC:[MD5.F195A16C384ECF4BC76A00C4F5820470] - 13/10/2011 - 17:17:17 ---A- . (...) -- C:\WINDOWS\resetlog.txt [2782] O44 - LFC:[MD5.753B8BB60E5DD4EEF3A0CED3F0401759] - 13/10/2011 - 16:14:37 ---A- . (...) -- C:\WINDOWS\ie8Uninst.log [50293] O44 - LFC:[MD5.4BFAB463E1D1F20DFA83A04A9698934D] - 12/10/2011 - 19:44:48 ---A- . (...) -- C:\WINDOWS\system32\drivers\TrueSight.sys [111744] O44 - LFC:[MD5.69A6268D7F81E53D568AB4E7E991CAF3] - 12/10/2011 - 17:03:19 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys [22216] O44 - LFC:[MD5.A36EE93698802CD899F98BFD553D8185] - 12/10/2011 - 10:04:35 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\drivers\ssmdrv.sys [28520] O44 - LFC:[MD5.87451AA7CC6B6A590EBCEA05E755075A] - 12/10/2011 - 10:04:29 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\drivers\avgntmgr.sys [22360] O44 - LFC:[MD5.5B44C214F9CD9F590BE9125347610380] - 12/10/2011 - 10:04:29 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\drivers\avgntdd.sys [45416] O44 - LFC:[MD5.0F78D3DAE6DEDD99AE54C9491C62ADF2] - 12/10/2011 - 10:04:29 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\WINDOWS\system32\drivers\avipbb.sys [138192] O44 - LFC:[MD5.1E4114685DE1FFA9675E09C6A1FB3F4B] - 12/10/2011 - 10:04:29 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys [66616] O44 - LFC:[MD5.1B1E04EDA2FA0270A272454B04B1ACC2] - 12/10/2011 - 09:35:15 ---A- . (...) -- C:\WINDOWS\system32\wpa.dbl [1158] O44 - LFC:[MD5.57E309F39206CF667B17DD4A974792D7] - 11/10/2011 - 08:37:15 R---- . (...) -- C:\WINDOWS\YukonInstall.log [402] O44 - LFC:[MD5.AB28500D34EED7D3FE5BCEAB97F0D518] - 11/10/2011 - 08:37:14 ---A- . (...) -- C:\WINDOWS\ykinstutil.log [6024] O44 - LFC:[MD5.203387BA7633E6B38805885D7DEE9566] - 11/10/2011 - 08:16:40 ---A- . (.NVIDIA Corporation - NVIDIA Thai language resource library.) -- C:\WINDOWS\system32\nvrsth.dll [253952] O44 - LFC:[MD5.27248878E8420BFFC2FEEED07CAFC2D6] - 11/10/2011 - 08:16:30 ---A- . (.NVIDIA Corporation - Easy daemon API.) -- C:\WINDOWS\system32\easyupdatusapiu.dll [600680] O44 - LFC:[MD5.FC8A30A44FE8DE2944ABE1155EE100FA] - 11/10/2011 - 08:16:27 ---A- . (...) -- C:\WINDOWS\system32\nvdrsdb0.bin [280276] O44 - LFC:[MD5.93B885ADFE0DA089CDF634904FD59F71] - 11/10/2011 - 08:16:27 ---A- . (...) -- C:\WINDOWS\system32\nvdrssel.bin [1] O44 - LFC:[MD5.98D6C82DC195D69F813ACCCC3E69AD47] - 11/10/2011 - 08:16:24 ---A- . (...) -- C:\WINDOWS\system32\nvdrsdb1.bin [280276] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 11/10/2011 - 08:16:24 ---A- . (...) -- C:\WINDOWS\system32\nvdrswr.lk [0] O44 - LFC:[MD5.5001AC06BFCD8A50BE77E063C8AB1E8E] - 11/10/2011 - 08:15:22 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\WINDOWS\system32\OpenCL.dll [61440] O44 - LFC:[MD5.7DC3319F3243F58C442F4F8C5DC553D4] - 11/10/2011 - 08:15:21 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\WINDOWS\system32\nvgenco32.dll [875112] O44 - LFC:[MD5.7AE4EE256CF6DD1362776F6FAA0421C2] - 11/10/2011 - 08:15:20 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\WINDOWS\system32\nvdispco32.dll [914024] O44 - LFC:[MD5.CB51A6B1F649505FD48A1F92843C49F0] - 11/10/2011 - 08:15:20 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 280.26.) -- C:\WINDOWS\system32\nvcuda.dll [5427200] O44 - LFC:[MD5.E7CCAF8716FCD0F13026A5C0025B7FEF] - 11/10/2011 - 08:15:20 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 280.2.) -- C:\WINDOWS\system32\nvcuvid.dll [2387560] O44 - LFC:[MD5.401BE7EB895868A5EB0E6B3FBB3E3804] - 11/10/2011 - 08:15:20 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 280.26.) -- C:\WINDOWS\system32\nvcuvenc.dll [2090088] O44 - LFC:[MD5.CA933B7594F68D36DE76AA081C7A8218] - 11/10/2011 - 08:15:20 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 280.26.) -- C:\WINDOWS\system32\nvcompiler.dll [17186816] O44 - LFC:[MD5.21D5EE4A5D275F514AA2FF04843D6C5C] - 10/10/2011 - 21:02:14 ---A- . (...) -- C:\WINDOWS\setupact.log [180] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 10/10/2011 - 17:19:10 ---A- . (...) -- C:\WINDOWS\setuperr.log [0] O44 - LFC:[MD5.7397F6EE4A9601A123B645C0CD428017] - 06/10/2011 - 12:46:08 ---A- . (.http://www.beyondlogic.org - Command Line Process Utility.) -- C:\WINDOWS\system32\Process.exe [53248] O44 - LFC:[MD5.2CD13AD0E0EBDBC32CBB2CDF5ECF24DE] - 19/09/2011 - 20:59:37 ---A- . (...) -- C:\WINDOWS\win.ini [958] O44 - LFC:[MD5.CD3714F62C92FB3C9B07FA7DFF56FFB3] - 03/08/2011 - 12:49:00 ---A- . (...) -- C:\WINDOWS\system32\nvdata.data [2128778] O44 - LFC:[MD5.4E706044014F1B61454B388336362538] - 03/08/2011 - 12:49:00 ---A- . (...) -- C:\WINDOWS\system32\nvinfo.pb [3249] ~ Scan Files in 00mn 56s ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe" [Enabled] .(.Acer Inc. - Acer Empowering Techonology Framework Launcher.) -- C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe O47 - AAKE:Key Export SP - "C:\Program Files\ma-config.com\maconfservice.exe" [Enabled] .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe O47 - AAKE:Key Export SP - "C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe" [Enabled] .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe ~ Scan Keys in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\system32\Drivers\sr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\system32\Drivers\ip6fw.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\system32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nm.sys . (...) -- C:\WINDOWS\system32\Drivers\nm.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\system32\Drivers\rdpcdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\system32\Drivers\rdpdd.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\system32\Drivers\rdpwd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\system32\Drivers\sr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdpipe.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdtcp.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.) ~ Scan CSB in 00mn 00s ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ~ Scan IFEO in 00mn 00s ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(TM) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\system32\tssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\system32\iccvid.dll O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm O52 - TDSD: \Drivers32\"VIDC.SP54"="SP5X_32.DLL" . (.Sunplus Corporation - Sunplus 32-bit AVI compression driver.) -- C:\WINDOWS\system32\SP5X_32.DLL O52 - TDSD: \Drivers32\"VIDC.SP55"="SP5X_32.DLL" . (.Sunplus Corporation - Sunplus 32-bit AVI compression driver.) -- C:\WINDOWS\system32\SP5X_32.DLL O52 - TDSD: \Drivers32\"VIDC.SP56"="SP5X_32.DLL" . (.Sunplus Corporation - Sunplus 32-bit AVI compression driver.) -- C:\WINDOWS\system32\SP5X_32.DLL O52 - TDSD: \Drivers32\"VIDC.SP57"="SP5X_32.DLL" . (.Sunplus Corporation - Sunplus 32-bit AVI compression driver.) -- C:\WINDOWS\system32\SP5X_32.DLL O52 - TDSD: \Drivers32\"VIDC.SP58"="SP5X_32.DLL" . (.Sunplus Corporation - Sunplus 32-bit AVI compression driver.) -- C:\WINDOWS\system32\SP5X_32.DLL O52 - TDSD: \Drivers32\"vidc.dvsd"="pdvcodec.dll" . (...) -- (.not file.) O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="Ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.11.) -- C:\WINDOWS\system32\Ir50_32.dll O52 - TDSD: \Drivers32\"VIDC.IV32"="Ir32_32.dll" . (...) -- C:\WINDOWS\system32\Ir32_32.dll O52 - TDSD: \Drivers32\"VIDC.IV31"="Ir32_32.dll" . (...) -- C:\WINDOWS\system32\Ir32_32.dll O52 - TDSD: \Drivers32\"vidc.VP60"="vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\WINDOWS\system32\vp6vfw.dll O52 - TDSD: \Drivers32\"vidc.VP61"="vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\WINDOWS\system32\vp6vfw.dll O52 - TDSD: \Drivers32\"vidc.VP62"="vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\WINDOWS\system32\vp6vfw.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="l3codecp.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codecp.acm O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\system32\ir41_32.ax O52 - TDSD: \Drivers32\"vidc.iv40"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\system32\ir41_32.ax O52 - TDSD: \Drivers32\"vidc.XVID"="xvidvfw.dll" . (...) -- C:\WINDOWS\system32\xvidvfw.dll O52 - TDSD: \Drivers32\"vidc.LEAD"="LCODCCMP.DLL" . (...) -- (.not file.) O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\WINDOWS\system32\DivX.dll O52 - TDSD: \Drivers32\"vidc.yv12"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\WINDOWS\system32\DivX.dll O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \drivers.desc\"xvid.dll"="XviD codec (Neodivx Version)" . (...) -- (.not file.) O52 - TDSD: \drivers.desc\"xvidvfw.dll"="XviD Video Codec" . (...) -- C:\WINDOWS\system32\xvidvfw.dll O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Inde" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo 5.11 codec" . (...) -- (.not file.) O52 - TDSD: \drivers.desc\"l3codecp.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codecp.acm O52 - TDSD: \drivers.desc\"iac25_32.ax"="Indeo® Audio Software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir41_32.ax"="Indeo 4.5 codec" . (...) -- (.not file.) O52 - TDSD: \drivers.desc\"LCODCCMP.DLL"="LEAD MCMP/MJPEG Codec (VFW)" . (...) -- (.not file.) O52 - TDSD: \drivers.desc\"DivX.dll"="DivX 6.9.2 Codec" . (...) -- (.not file.) ~ Scan Keys in 00mn 00s ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "InstallVisualStyle"= O55 - MWPS:[HKLM\...\Policies\System] - "InstallTheme"= O55 - MWPS:[HKLM\...\Policies\System] - "HideLegacyLogonScripts"=0 O55 - MWPS:[HKLM\...\Policies\System] - "HideLogoffScripts"=0 O55 - MWPS:[HKLM\...\Policies\System] - "RunLogonScriptSync"=1 O55 - MWPS:[HKLM\...\Policies\System] - "RunStartupScriptSync"=0 O55 - MWPS:[HKLM\...\Policies\System] - "HideStartupScripts"=0 ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=0 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=3 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=3 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1 ~ Scan Keys in 00mn 00s ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.1F61CACACB521215F39061789147968C] - 16/10/2011 - 08:37:02 ---A- . (.Pas de propriétaire - Plug and Play BIOS Extension.) -- C:\WINDOWS\system32\drivers\a347bus.sys [160640] O58 - SDL:[MD5.113E4B318BBAA7483CA4E582A4D63F49] - 16/10/2011 - 08:33:00 ---A- . (.Pas de propriétaire - SCSI miniport.) -- C:\WINDOWS\system32\drivers\a347scsi.sys [5248] O58 - SDL:[MD5.4E5451DD0AEC8504D7F8030DD2D4C416] - 16/10/2011 - 11:04:52 ---A- . (.Protect Software GmbH - Helper Driver - Access Level 1a.) -- C:\WINDOWS\system32\drivers\ACEDRV07.sys [101376] O58 - SDL:[MD5.30BB1BDE595CA65FD5549462080D94E5] - 16/10/2011 - 08:42:14 ---A- . (.Meetinghouse Data Communications - IEEE 802.1X Protocol Driver.) -- C:\WINDOWS\system32\drivers\AegisP.sys [21035] O58 - SDL:[MD5.4B0962378B87527A60C006ED94F5E0A4] - 16/10/2011 - 11:14:20 ---A- . (.THOMSON multimedia - Helper.) -- C:\WINDOWS\system32\drivers\alcacr.sys [4000] O58 - SDL:[MD5.4C53E64ABB9C3DDE4A101B049AB4FFA6] - 16/10/2011 - 11:14:36 ---A- . (.THOMSON multimedia - LAN Driver.) -- C:\WINDOWS\system32\drivers\alcan5ln.sys [36048] O58 - SDL:[MD5.8080B5EA17A763BBCE6C92BBC6CEEFE8] - 16/10/2011 - 11:14:30 ---A- . (.THOMSON multimedia - WDM Driver.) -- C:\WINDOWS\system32\drivers\alcaudsl.sys [743136] O58 - SDL:[MD5.7AB3DBE99E2D2C9041570AB3271152E8] - 16/10/2011 - 11:14:26 ---A- . (.THOMSON multimedia - Helper.) -- C:\WINDOWS\system32\drivers\alcawh.sys [5312] O58 - SDL:[MD5.FEFE7F885EA456194656C6A00EA16C93] - 16/10/2011 - 22:40:44 ---A- . (.Advanced Micro Devices - AMD Processor Driver.) -- C:\WINDOWS\system32\drivers\AmdK8.sys [43520] O58 - SDL:[MD5.B979979AB8027F7F53FB16EC4229B7DB] - 16/10/2011 - 11:06:00 ---A- . (.Adaptec - ASPI for WIN32 Kernel Driver.) -- C:\WINDOWS\system32\drivers\Aspi32.sys [25244] O58 - SDL:[MD5.187C905E157D791A3A404EADF8FAE754] - 16/10/2011 - 16:04:40 ---A- . (...) -- C:\WINDOWS\system32\drivers\athsgt.sys [164992] O58 - SDL:[MD5.72BC628AF75C4C3250F2A3BAC260265A] - 16/10/2011 - 23:50:25 ---A- . (...) -- C:\WINDOWS\system32\drivers\atksgt.sys [278728] O58 - SDL:[MD5.02E3A18D2CC5E448E40E8783C0F8299B] - 16/10/2011 - 17:44:08 ---A- . (.America Online - ATW Protocol Driver.) -- C:\WINDOWS\system32\drivers\atwpkt2.sys [25136] O58 - SDL:[MD5.ED2BA4A16128B3FF5502480F72C19FC9] - 16/10/2011 - 17:44:22 ---A- . (.America Online - ATW Protocol Driver.) -- C:\WINDOWS\system32\drivers\atwpkt264.sys [33592] O58 - SDL:[MD5.5B44C214F9CD9F590BE9125347610380] - 16/10/2011 - 14:28:03 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\drivers\avgntdd.sys [45416] O58 - SDL:[MD5.1E4114685DE1FFA9675E09C6A1FB3F4B] - 16/10/2011 - 11:22:40 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys [66616] O58 - SDL:[MD5.87451AA7CC6B6A590EBCEA05E755075A] - 16/10/2011 - 14:28:03 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\drivers\avgntmgr.sys [22360] O58 - SDL:[MD5.0F78D3DAE6DEDD99AE54C9491C62ADF2] - 16/10/2011 - 11:22:41 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\WINDOWS\system32\drivers\avipbb.sys [138192] O58 - SDL:[MD5.EE0F41FA0466189A2C8B9CAF7D1CDDD5] - 16/10/2011 - 17:44:20 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\WINDOWS\system32\drivers\BRGSp50.sys [20608] O58 - SDL:[MD5.7F4288419E9ABACF86DDBD0FD95DCC22] - 16/10/2011 - 17:44:42 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver (AMD64).) -- C:\WINDOWS\system32\drivers\BRGSp50a64.sys [29184] O58 - SDL:[MD5.BF79E659C506674C0497CC9C61F1A165] - 16/10/2011 - 02:00:00 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdr4_xp.sys [2432] O58 - SDL:[MD5.2C41CD49D82D5FD85C72D57B6CA25471] - 16/10/2011 - 02:00:00 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdralw2k.sys [2560] O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 16/10/2011 - 21:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528] O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 16/10/2011 - 21:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776] O58 - SDL:[MD5.D03D10F7DED688FECF50F8FBF1EA9B8A] - 16/10/2011 - 11:46:10 ---A- . (.HP - IEEE-1284.4-1999 Driver (Windows 2000).) -- C:\WINDOWS\system32\drivers\HPZid412.sys [49920] O58 - SDL:[MD5.89F41658929393487B6B7D13C8528CE3] - 16/10/2011 - 11:46:10 ---A- . (.HP - IEEE-1284.4-1999 Print Class Driver.) -- C:\WINDOWS\system32\drivers\HPZipr12.sys [16496] O58 - SDL:[MD5.ABCB05CCDBF03000354B9553820E39F8] - 16/10/2011 - 19:52:48 ---A- . (.HP - 1284.4<->Usb Datalink Driver (Windows 2000).) -- C:\WINDOWS\system32\drivers\HPZius12.sys [21568] O58 - SDL:[MD5.25EDD75E23C5EF6B33D0FBCCE125A601] - 16/10/2011 - 12:08:26 ---A- . (.Ahead Software AG - NERO IMAGEDRIVE SCSI miniport.) -- C:\WINDOWS\system32\drivers\imagedrv.sys [5888] O58 - SDL:[MD5.9C4BBACF4E9B9543C3CE23F1FE556941] - 16/10/2011 - 12:08:26 ---A- . (.Ahead Software AG - Nero Image Server.) -- C:\WINDOWS\system32\drivers\imagesrv.sys [127488] O58 - SDL:[MD5.6AC289AB3DE19BEE4868666EA3EEF34B] - 16/10/2011 - 16:04:39 ---A- . (...) -- C:\WINDOWS\system32\drivers\limsgt.sys [12544] O58 - SDL:[MD5.4127E8B6DDB4090E815C1F8852C277D3] - 16/10/2011 - 23:50:24 ---A- . (...) -- C:\WINDOWS\system32\drivers\lirsgt.sys [25416] O58 - SDL:[MD5.69A6268D7F81E53D568AB4E7E991CAF3] - 16/10/2011 - 16:00:50 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys [22216] O58 - SDL:[MD5.A9D90DA8C0033C34AE867A3378CB491B] - 16/10/2011 - 12:20:24 ---A- . (...) -- C:\WINDOWS\system32\drivers\MWhid.sys [13332] O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 16/10/2011 - 21:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032] O58 - SDL:[MD5.7F1C1F78D709C4A54CBB46EDE7E0B48D] - 16/10/2011 - 18:52:28 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\WINDOWS\system32\drivers\NTIDrvr.sys [6144] O58 - SDL:[MD5.6733E80A193FC36F41C24142B0C45C0E] - 16/10/2011 - 12:49:00 ---A- . (.NVIDIA Corporation - NVIDIA Windows XP Miniport Driver, Version 280.26.) -- C:\WINDOWS\system32\drivers\nv4_mini.sys [12542592] O58 - SDL:[MD5.947C4A0E7B25BCECC3B40F0F1070378B] - 16/10/2011 - 13:51:28 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) IDE Performance Driver.) -- C:\WINDOWS\system32\drivers\nvata.sys [105344] O58 - SDL:[MD5.9ECCD189A9554C30A0D18A429778C7BA] - 16/10/2011 - 18:38:56 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) IDE Performance Driver.) -- C:\WINDOWS\system32\drivers\nvatabus.sys [105088] O58 - SDL:[MD5.619D8943725402D1179941FD58574CC8] - 16/10/2011 - 16:31:00 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\system32\drivers\nvgts.sys [164896] O58 - SDL:[MD5.FEC5BF206886B880B429216C63528AA2] - 16/10/2011 - 18:39:02 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\system32\drivers\nvraid.sys [89344] O58 - SDL:[MD5.301E92CE7FB606F94F124A76D8145622] - 16/10/2011 - 13:28:46 ---A- . (.PixArt Imaging Incorporation - Filter Driver.) -- C:\WINDOWS\system32\drivers\PAEAFLT.sys [8576] O58 - SDL:[MD5.07C02C892E8E1A72D6BF35004F0E9C5E] - 16/10/2011 - 02:13:18 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\WINDOWS\system32\drivers\PCASp50.sys [20096] O58 - SDL:[MD5.175CC28DCF819F78CAA3FBD44AD9E52A] - 16/10/2011 - 14:53:26 ---A- . (.Nokia - PCCS Mode Change Filter Driver.) -- C:\WINDOWS\system32\drivers\pccsmcfd.sys [21632] O58 - SDL:[MD5.F2B3785D7282BAC66D4B644FC88749F0] - 16/10/2011 - 09:07:46 ---A- . (.Padus, Inc. - Padus(R) ASPI Shell.) -- C:\WINDOWS\system32\drivers\pfc.sys [14604] O58 - SDL:[MD5.D572D5CA827930ECA2563746B0D94B64] - 16/10/2011 - 21:59:01 ---A- . (...) -- C:\WINDOWS\system32\drivers\PnkBstrK.sys [22328] O58 - SDL:[MD5.00B670D8A36C7134CFC66B446A18CC92] - 16/10/2011 - 20:17:34 ---A- . (.HiTRUST - PSD Filter Driver.) -- C:\WINDOWS\system32\drivers\psdfilter.sys [12288] O58 - SDL:[MD5.E9A60343CB7C39090638B1DD574F26EB] - 16/10/2011 - 17:10:52 ---A- . (.HiTRUST - PSD Virtual Disk Driver.) -- C:\WINDOWS\system32\drivers\psdvdisk.sys [60416] O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 16/10/2011 - 21:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792] O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 16/10/2011 - 21:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032] O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 16/10/2011 - 21:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032] O58 - SDL:[MD5.3000E98F519CF6FDA669BAE8E47F7B4F] - 16/10/2011 - 21:09:26 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys [4284928] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 16/10/2011 - 11:25:54 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.15BE2B5E4DC5B8623CF167720682ABC9] - 16/10/2011 - 14:20:39 ---A- . (.Protection Technology - StarForce Protection Helper Driver.) -- C:\WINDOWS\system32\drivers\sfhlp02.sys [6656] O58 - SDL:[MD5.B27F70092A84B2A381D1FCDBBB82F876] - 16/10/2011 - 16:11:18 ---A- . (.Protection Technology - StarForce Protection Synchronization Driver.) -- C:\WINDOWS\system32\drivers\sfsync03.sys [35328] O58 - SDL:[MD5.E78CD3BB53A208DFAB8FC826384307E0] - 16/10/2011 - 09:23:14 ---A- . (.Sony Corporation - sonyhcb.sys.) -- C:\WINDOWS\system32\drivers\sonyhcb.sys [6097] O58 - SDL:[MD5.55E48017295F26BA266F935DA49C59A4] - 16/10/2011 - 09:23:20 ---A- . (.Sony Corporation - sonyhcc.sys.) -- C:\WINDOWS\system32\drivers\sonyhcc.sys [38739] O58 - SDL:[MD5.610F515FCD95D37F3252E1C250EF8C61] - 16/10/2011 - 09:23:52 ---A- . (.Sony Corporation - sonyhcs.sys.) -- C:\WINDOWS\system32\drivers\sonyhcs.sys [299923] O58 - SDL:[MD5.DFADFC2C86662F40759BF02ADD27D569] - 16/10/2011 - 22:41:06 ---A- . (.Sony Corporation - Sony Digital Imaging.) -- C:\WINDOWS\system32\drivers\sonypvs1.sys [102220] O58 - SDL:[MD5.2265D43D44CF9695C050E3B58F05295B] - 16/10/2011 - 15:19:50 ---A- . (.PixArt Imaging Inc. - SPC230NC.) -- C:\WINDOWS\system32\drivers\SPC230NC.SYS [461056] O58 - SDL:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/03/2007 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [639224] O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 16/10/2011 - 14:28:02 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\drivers\ssmdrv.sys [28520] O58 - SDL:[MD5.DF5C19F053EFF7F8BA25D73AEA899656] - 16/10/2011 - 01:47:38 ---A- . (.MCCI - SAMSUNG Mobile USB Device II 1.0 Driver.) -- C:\WINDOWS\system32\drivers\ssm_bus.sys [58320] O58 - SDL:[MD5.A2C7705A4745A60B875F931860DF3557] - 16/10/2011 - 01:49:28 ---A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\ssm_cm.sys [6176] O58 - SDL:[MD5.A2C7705A4745A60B875F931860DF3557] - 16/10/2011 - 01:49:28 ---A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\ssm_cmnt.sys [6176] O58 - SDL:[MD5.5347169FA449EABC4D0728AE39FAB926] - 16/10/2011 - 01:49:34 ---A- . (.MCCI - SAMSUNG Mobile USB Modem II 1.0 Filter Driver.) -- C:\WINDOWS\system32\drivers\ssm_mdfl.sys [8336] O58 - SDL:[MD5.7AAE23DD105EED15C4F45FC269FA42A9] - 16/10/2011 - 01:49:38 ---A- . (.MCCI - SAMSUNG Mobile USB Modem II 1.0 Driver.) -- C:\WINDOWS\system32\drivers\ssm_mdm.sys [94000] O58 - SDL:[MD5.5F4D52B9C1A7312598D88CBAECB3FC70] - 16/10/2011 - 01:47:34 ---A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\ssm_wh.sys [5840] O58 - SDL:[MD5.5F4D52B9C1A7312598D88CBAECB3FC70] - 16/10/2011 - 01:47:34 ---A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\ssm_whnt.sys [5840] O58 - SDL:[MD5.306521935042FC0A6988D528643619B3] - 16/10/2011 - 12:40:27 ---A- . (...) -- C:\WINDOWS\system32\drivers\StarOpen.sys [5632] O58 - SDL:[MD5.4BFAB463E1D1F20DFA83A04A9698934D] - 16/10/2011 - 19:44:48 ---A- . (...) -- C:\WINDOWS\system32\drivers\TrueSight.sys [111744] O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 16/10/2011 - 21:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376] O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 16/10/2011 - 21:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112] O58 - SDL:[MD5.0A716C08CB13C3A8F4F51E882DBF7416] - 16/10/2011 - 16:13:04 ---A- . (.America Online, Inc. - Wan Miniport (ATW).) -- C:\WINDOWS\system32\drivers\wanatw4.sys [33588] O58 - SDL:[MD5.691DB86B09E13CA5D3E8881141738CC5] - 16/10/2011 - 16:53:28 ---A- . (.NETGEAR Inc. - NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter NDIS Driver.) -- C:\WINDOWS\system32\drivers\wg111v2.sys [167808] O58 - SDL:[MD5.97C3B0E7B7174D6658220862269DDC8D] - 16/10/2011 - 11:27:42 ---A- . (...) -- C:\WINDOWS\system32\drivers\WINIO.sys [3218] O58 - SDL:[MD5.4322C32CED8C4772E039616DCBF01D3F] - 16/10/2011 - 09:51:00 ---A- . (.Marvell - Miniport Driver for Marvell Yukon Ethernet Controller..) -- C:\WINDOWS\system32\drivers\yk51x86.sys [285952] O58 - SDL:[MD5.478B4415DFB3A45B6FE61EC781E07D7B] - 16/10/2011 - 10:38:18 ---A- . (.ZyDAS Technology Corporation - ZD1211B 802.11 b+g USB LAN Driver.) -- C:\WINDOWS\system32\drivers\ZD1211BU.sys [402432] O58 - SDL:[MD5.3C185892DD5C13975966E8D1C2A65290] - 16/10/2011 - 14:38:24 ---A- . (.ZyDAS Technology Corporation - ZD1211 802.11b+g USB LAN Driver.) -- C:\WINDOWS\system32\drivers\ZD1211U.sys [280064] O58 - SDL:[MD5.29C917279D79848B3DD94909FC00E2A8] - 16/10/2011 - 10:30:00 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) -- C:\WINDOWS\system32\drivers\ZDPNDIS5.sys [17151] O58 - SDL:[MD5.00AE175B903D45ED4A62384D3315DC2A] - 16/10/2011 - 12:40:58 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\WINDOWS\system32\drivers\ZDPSp50.sys [17664] O58 - SDL:[MD5.E11183B2F02AE38915982D10D717C6C6] - 16/10/2011 - 14:35:28 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver (AMD64).) -- C:\WINDOWS\system32\drivers\ZDPSp50a64.sys [31744] O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 16/10/2011 - 21:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 16/10/2011 - 21:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097] O58 - SDL:[MD5.790A4CA68F44BE35967B3DF61F3E4675] - 16/10/2011 - 08:39:36 ---A- . (...) -- C:\WINDOWS\system32\FsUsbExDisk.Sys [36608] O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 16/10/2011 - 21:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4912] O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 16/10/2011 - 21:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 16/10/2011 - 21:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537] O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 16/10/2011 - 21:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27916] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 16/10/2011 - 21:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 16/10/2011 - 21:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 16/10/2011 - 21:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 16/10/2011 - 21:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146] O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 16/10/2011 - 21:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [34000] O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 16/10/2011 - 21:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560] O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 16/10/2011 - 21:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648] O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 16/10/2011 - 21:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424] O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 16/10/2011 - 21:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560] O58 - SDL:[MD5.2F9806B52CB3748B1E49222744B28E3C] - 16/10/2011 - 12:10:35 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) -- C:\WINDOWS\system32\PCANDIS5.sys [17134] O58 - SDL:[MD5.71EAFF437C0C3E3192C62DAF02AABB68] - 16/10/2011 - 10:22:00 R--A- . (...) -- C:\WINDOWS\system32\sysinfo.sys [8192] O58 - SDL:[MD5.9F5CF68B0C37C0A3E7921847F583B0A3] - 16/10/2011 - 10:22:00 R--A- . (...) -- C:\WINDOWS\system32\sysinfoX64.sys [9728] O58 - SDL:[MD5.29C917279D79848B3DD94909FC00E2A8] - 16/10/2011 - 10:30:00 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) -- C:\WINDOWS\system32\ZDPNDIS5.sys [17151] ~ Scan Drivers in 00mn 01s ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis O63 - Logiciel: Navilog1 Version 2.0.2 - (.Pas de propriétaire.) [HKLM] -- Navilog1 O63 - Logiciel: UsbFix By El Desaparecido & C_XX - (.El Desaparecido & C_XX.) [HKLM] -- Usbfix O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ~ Scan ADS in 00mn 00s ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - 30/04/2004 - C:\WINDOWS\system32\Drivers\a347scsi.sys - a347scsi(a347scsi) .(.Pas de propriétaire - SCSI miniport.) - LEGACY_A347SCSI O64 - Services: CurCS - 17/10/2007 - C:\WINDOWS\system32\drivers\ACEDRV07.sys - ACEDRV07(ACEDRV07) .(.Protect Software GmbH - Helper Driver - Access Level 1a.) - LEGACY_ACEDRV07 O64 - Services: CurCS - 11/05/2006 - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe - Memory Check Service(AcerMemUsageCheckService) .(.Acer Inc. - Pas de description.) - LEGACY_ACERMEMUSAGECHECKSERVICE O64 - Services: CurCS - 14/07/2007 - C:\WINDOWS\system32\DRIVERS\AegisP.sys - AEGIS Protocol (IEEE 802.1x) v3.4.5.0(AegisP) .(.Meetinghouse Data Communications - IEEE 802.1X Protocol Driver.) - LEGACY_AEGISP O64 - Services: CurCS - 21/04/2011 - C:\Program Files\Avira\AntiVir Desktop\sched.exe - Avira AntiVir Planificateur(AntiVirSchedulerService) .(.Avira GmbH - Antivirus Scheduler.) - LEGACY_ANTIVIRSCHEDULERSERVICE O64 - Services: CurCS - 21/07/2011 - C:\Program Files\Avira\AntiVir Desktop\avguard.exe - Avira AntiVir Personal – Free Antivirus Guard(AntiVirService) .(.Avira GmbH - Antivirus On-Access Service.) - LEGACY_ANTIVIRSERVICE O64 - Services: CurCS - 11/09/2008 - C:\WINDOWS\system32\DRIVERS\athsgt.sys - athsgt (athsgt) .(...) - LEGACY_ATHSGT O64 - Services: CurCS - 13/04/2008 - C:\WINDOWS\system32\DRIVERS\atksgt.sys - atksgt (atksgt) .(...) - LEGACY_ATKSGT O64 - Services: CurCS - 17/06/2010 - C:\Program Files\Avira\AntiVir Desktop\avgio.sys - avgio(avgio) .(.Avira GmbH - Avira AntiVir Support for Minifilter.) - LEGACY_AVGIO O64 - Services: CurCS - 21/07/2011 - C:\WINDOWS\system32\DRIVERS\avgntflt.sys - avgntflt(avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT O64 - Services: CurCS - 21/07/2011 - C:\WINDOWS\system32\DRIVERS\avipbb.sys - avipbb(avipbb) .(.Avira GmbH - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\System32\dmadmin.exe - Service d'administration du Gestionnaire de disque logique(dmadmin) .(.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - LEGACY_DMADMIN O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\drivers\dmboot.sys - dmboot(dmboot) .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT O64 - Services: CurCS - 10/08/2004 - C:\WINDOWS\system32\drivers\dmload.sys - dmload(dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD O64 - Services: CurCS - 21/07/2011 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys - driverhardwarev2(driverhardwarev2) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2 O64 - Services: CurCS - 17/11/2005 - C:\MAGIX\Common\Database\bin\fbserver.exe - Firebird Server - MAGIX Instance(FirebirdServerMAGIXInstance) .(.MAGIX® - Firebird SQL Server - MAGIX Edition.) - LEGACY_FIREBIRDSERVERMAGIXINSTANCE O64 - Services: CurCS - 31/03/2009 - C:\WINDOWS\system32\FsUsbExDisk.sys - No object (No service) .(...) - LEGACY_FSUSBEXDISK O64 - Services: CurCS - ??/??/???? - E:\INSTALL\GMSIPCI.sys (.not file.) - GMSIPCI (GMSIPCI) .(...) - LEGACY_GMSIPCI O64 - Services: CurCS - 03/09/2007 - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe - Google Updater Service(gusvc) .(.Google - gusvc.) - LEGACY_GUSVC O64 - Services: CurCS - 04/04/2005 - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe - InstallDriver Table Manager(IDriverT) .(.Macrovision Corporation - IDriverT Module.) - LEGACY_IDRIVERT O64 - Services: CurCS - 13/01/2005 - C:\Acer\Empowering Technology\eRecovery\int15.sys - int15.sys (int15.sys) .(...) - LEGACY_INT15.SYS O64 - Services: CurCS - 04/05/2011 - C:\Program Files\Java\jre6\bin\jqs.exe - Java Quick Starter(JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE O64 - Services: CurCS - 17/02/2006 - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe - LightScribeService Direct Disc Labeling Service(LightScribeService) .(.Hewlett-Packard Company - Pas de description.) - LEGACY_LIGHTSCRIBESERVICE O64 - Services: CurCS - 11/09/2008 - C:\WINDOWS\system32\DRIVERS\limsgt.sys - limsgt (limsgt) .(...) - LEGACY_LIMSGT O64 - Services: CurCS - 13/04/2008 - C:\WINDOWS\system32\DRIVERS\lirsgt.sys - lirsgt (lirsgt) .(...) - LEGACY_LIRSGT O64 - Services: CurCS - 08/08/2011 - C:\Program Files\ma-config.com\maconfservice.exe - Ma-Config Service(maconfservice) .(.CybelSoft - Service de détection matériel.) - LEGACY_MACONFSERVICE O64 - Services: CurCS - ??/??/???? - C:\WINDOWS\system32\drivers\mbamswissarmy.sys (.not file.) - MBAMSwissArmy (MBAMSwissArmy) .(...) - LEGACY_MBAMSWISSARMY O64 - Services: CurCS - 14/08/2006 - C:\WINDOWS\system32\DRIVERS\nvata.sys - nvata(nvata) .(.NVIDIA Corporation - NVIDIA® nForce(TM) IDE Performance Driver.) - LEGACY_NVATA O64 - Services: CurCS - 28/06/2006 - C:\WINDOWS\system32\drivers\nvatabus.sys - nvatabus(nvatabus) .(.NVIDIA Corporation - NVIDIA® nForce(TM) IDE Performance Driver.) - LEGACY_NVATABUS O64 - Services: CurCS - 28/06/2006 - C:\WINDOWS\system32\drivers\nvraid.sys - NVIDIA nForce(tm) RAID Class Driver(nvraid) .(.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) - LEGACY_NVRAID O64 - Services: CurCS - 03/08/2011 - C:\WINDOWS\system32\nvsvc32.exe - NVIDIA Driver Helper Service(NVSvc) .(.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 280.2.) - LEGACY_NVSVC O64 - Services: CurCS - 03/08/2011 - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe - NVIDIA Update Service Daemon(nvUpdatusService) .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) - LEGACY_NVUPDATUSSERVICE O64 - Services: CurCS - 26/08/2007 - C:\WINDOWS\system32\PCANDIS5.sys - PCANDIS5 NDIS Protocol Driver(PCANDIS5) .(.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) - LEGACY_PCANDIS5 O64 - Services: CurCS - 19/11/2005 - C:\WINDOWS\system32\Drivers\PCASp50.sys - PCASp50 NDIS Protocol Driver(PCASp50) .(.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) - LEGACY_PCASP50 O64 - Services: CurCS - 08/03/2006 - C:\WINDOWS\system32\Drivers\psdvdisk.sys - psdvdisk(psdvdisk) .(.HiTRUST - PSD Virtual Disk Driver.) - LEGACY_PSDVDISK O64 - Services: CurCS - 13/11/2007 - C:\WINDOWS\system32\DRIVERS\secdrv.sys - Secdrv(Secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV O64 - Services: CurCS - 07/04/2008 - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe - ServiceLayer(ServiceLayer) .(.Nokia. - ServiceLayer Module.) - LEGACY_SERVICELAYER O64 - Services: CurCS - 16/05/2005 - C:\WINDOWS\system32\drivers\sfhlp02.sys - StarForce Protection Helper Driver (version 2.x)(sfhlp02) .(.Protection Technology - StarForce Protection Helper Driver.) - LEGACY_SFHLP02 O64 - Services: CurCS - 06/12/2005 - C:\WINDOWS\system32\drivers\sfsync03.sys - StarForce Protection Synchronization Driver (version 3.x)(sfsync03) .(.Protection Technology - StarForce Protection Synchronization Driver.) - LEGACY_SFSYNC03 O64 - Services: CurCS - ??/??/???? - C:\WINDOWS\system32\Drivers\sptd.sys - sptd (sptd) .(...) - LEGACY_SPTD O64 - Services: CurCS - 17/06/2010 - C:\WINDOWS\system32\DRIVERS\ssmdrv.sys - ssmdrv(ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV O64 - Services: CurCS - 12/10/2011 - c:\windows\system32\drivers\TrueSight.sys - TrueSight (TrueSight) .(...) - LEGACY_TRUESIGHT O64 - Services: CurCS - 25/10/2004 - C:\WINDOWS\system32\Drivers\ZDPSp50.sys - ZDPSp50 NDIS Protocol Driver(ZDPSp50) .(.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) - LEGACY_ZDPSP50 ~ Scan Services in 00mn 01s ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (. - .) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %* O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %* O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %* O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe ~ Scan Keys in 00mn 00s ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe ~ Scan Keys in 00mn 00s ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - http://search.live.com ~ Scan Keys in 00mn 00s ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.F3617560BD8D1E8AA2D515C0D2561E7F] [SPRF][03/08/2010] (...) -- C:\Documents and Settings\Administrateur\Application Data\mdbu.bin [537976] [MD5.E71E6AFB5A26140B5062B4BF28467E7C] [SPRF][09/09/2011] (.Mozilla - Firefox.) -- C:\Documents and Settings\Administrateur\Bureau\Firefox Setup 6.0.2.exe [14111056] [MD5.54ACBA9CFD7154C02CEACF6310CF3CFA] [SPRF][16/05/2009] (.Safer Networking Limited - Spybot - Search & Destroy.) -- C:\Documents and Settings\Administrateur\Bureau\setup-spybotsd162.exe [16409960] [MD5.563EFF0F69B7017AC54FA2477B07641B] [SPRF][18/05/2009] (.Skype Technologies S.A. - Skype.) -- C:\Documents and Settings\Administrateur\Bureau\SkypeSetup.exe [1976104] [MD5.9AAF72D44193EF0AC024BA4FE59F57CA] [SPRF][15/10/2011] (.Kaspersky Lab ZAO - TDSS rootkit removing tool.) -- C:\Documents and Settings\Administrateur\Bureau\tdsskiller.exe [1559344] [MD5.634086A5CFEB610B907F6F3C8C0BBF7A] [SPRF][15/10/2011] (.El Desaparecido & C_XX - UsbFix.) -- C:\Documents and Settings\Administrateur\Bureau\UsbFix-7.036.exe [1217985] [MD5.608AD4EA0BB5090C96BD5EFE18AC0004] [SPRF][14/10/2011] (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Administrateur\Bureau\ZHPDiag2.exe [2563773] [MD5.18075B2C9F0F300BEE209744A8BEC353] [SPRF][07/12/2004] (...) -- C:\WINDOWS\Downloaded Program Files\bdcore.dll [32] [MD5.298068536300DA6DC163E394797A7C50] [SPRF][25/05/2006] (...) -- C:\WINDOWS\Downloaded Program Files\bdupd.dll [118784] [MD5.8CE7705CB43B03BB7970B04087C7758F] [SPRF][30/06/2006] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\WINDOWS\Downloaded Program Files\dwusplay.dll [29616] [MD5.01E2ECA759056F23C73A035FDABB2D6D] [SPRF][30/06/2006] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\WINDOWS\Downloaded Program Files\dwusplay.exe [201648] [MD5.387804211A84DCA79A7238E4406A1F21] [SPRF][20/11/2007] (.Adobe Systems Incorporated - Adobe® Flash® Player ActiveX Installer.) -- C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [1523536] [MD5.1CAB87DE6638846FBF51F32B5D95E482] [SPRF][25/05/2006] (...) -- C:\WINDOWS\Downloaded Program Files\ipsupd.dll [53248] [MD5.0C135B4FEFF52ED92CF08BB3F0A75A90] [SPRF][11/09/2006] (.Macrovision Corporation - Macrovision Software Manager Web Agent.) -- C:\WINDOWS\Downloaded Program Files\isusweb.dll [484272] [MD5.ED3B0F1BA60554B9D2E5AE1B02AD9306] [SPRF][29/03/2007] (.Husdawg, LLC - System Requirements Lab.) -- C:\WINDOWS\Downloaded Program Files\sysreqlab2.dll [206384] ~ Scan Files in 00mn 01s ---\\ Recherche détournement de DNS routeur (O89) Serveur : resolver1.opendns.com Address: 208.67.222.222 Nom : www.l.google.com Addresses: 209.85.148.103, 209.85.148.106, 209.85.148.99, 209.85.148.104 209.85.148.105, 209.85.148.147 Aliases: www.google.fr, www.google.com ~ Scan DNS in 00mn 02s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Auto 16/10/2011 28672 | (AcerMemUsageCheckService) . (.Acer Inc..) - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe SR - | Auto 16/10/2011 136360 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe SR - | Auto 16/10/2011 269480 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe SS - | Auto 16/10/2011 198168 | (Capture Device Service) . (.InterVideo Inc..) - C:\Program Files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe SS - | Demand 16/10/2011 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe SS - | Demand 16/10/2011 1527900 | (FirebirdServerMAGIXInstance) . (.MAGIX®.) - C:\MAGIX\Common\Database\bin\fbserver.exe SS - | Demand 16/10/2011 138680 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe SS - | Demand 16/10/2011 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe SS - | Auto 16/10/2011 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe SS - | Auto 16/10/2011 73728 | (LightScribeService) . (.Hewlett-Packard Company.) - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe SS - | Demand 16/10/2011 311928 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe SS - | Auto 16/10/2011 146024 | (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe SR - | Auto 16/10/2011 2255464 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe SS - | Auto 16/10/2011 73728 | (Pml Driver HPZ12) . (.HP.) - C:\WINDOWS\system32\HPZipm12.exe SS - | Demand 16/10/2011 430592 | (ServiceLayer) . (.Nokia..) - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe ~ Scan Services in 00mn 02s ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net Run by Administrateur at 16/10/2011 12:08:42 device: opened successfully user: MBR read successfully Disk trace: called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll sfsync03.sys >>UNKNOWN [0x8B04D1D8]<< C:\WINDOWS\system32\drivers\sfsync03.sys Protection Technology StarForce Protection System 1 ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Harddisk0\DR0[0x8AF61AB8] 3 CLASSPNP[0xB80E8FD7] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\00000081[0x8AFFD920] 5 ACPI[0xB7E67620] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Scsi\nvgts1Port2Path1Target1Lun0[0x8AF53A38] \Driver\nvgts[0x8B00AF38] -> IRP_MJ_CREATE -> 0x8B04D1D8 kernel: MBR read successfully detected disk devices: detected hooks: \Driver\atapi -> 0x8aeb67f0 user & kernel MBR OK Warning: possible MBR rootkit infection ! ~ Scan MBR in 00mn 05s ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Administrateur at 16/10/2011 12:08:44 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ Scan MBR in 00mn 07s End of the scan (1527 lines in 01mn 42s)(0)