Accueil du site Téléchargements Astuces du site Divers Autres forums Hébergement
Css Menu Tabs by Vista-Buttons.com v4.5.0


  • Publicité

Redémarrage scan antivir et virus dans la restauration systeme.


Écrire un commentaire

Redémarrage scan antivir et virus dans la restauration systeme.

Messagede Alsyia » 20 Juil 2010 13:26

Bonjour bonjour ! C'est mon premier post ici , et j'ai un problème assez embêtant : Toutes les 20 min , avira antivir me trouvait qulquechose dans c:\volume restore (je n'ai ^plus le chemin exact , ni le nom du fichier , qui changeait a chaque fois mais ressermblait toujorus a des trucs du genre A00056320215820254 ect). Jai donc essayé de faire un scan completr de l'ordi (toujours avec Antivir) , et me suis rendu compte de 2 chose :
-Il y a un programme nuisible sur mon ordi qui empêche antivir de se mettre à jour /
-A 2-3% du scan , mon ordi redémarre. Sans erreur fatale ni rien.

Du coup , j'ai désinstallé-réinstallé antivir : rebelote .
J'ai fini par enlever antivir de mon ordi , et suis venu demander votre aide , pour me conseiller un antivirus , et m'aider à désinfecter mon ordinateur.

Merci de m'avoir lu , et merci d'avance pour l'aide que vous m'apporterez ;)
Avatar de l’utilisateur
Alsyia
Nouveau membre
Progression vers le rang suivant:
65%
 
Années en tant que membre
 
Messages: 13
Age: 16
Inscription: 20 Juil 2010 13:20
Sexe: Non spécifié
 

Point(s) : 80
Donner
    unknownunknown



Haut

Publicité

Re: Redémarrage scan antivir et virus dans la restauration systeme.

Messagede shion-ares » 20 Juil 2010 13:44

bonjour

si c'est la restauration systeme temps que tu n'en fait pas rien de grave on verra cela apres

fait ceci stp

  • Télécharge Random's System Information Tool (RSIT) de Random/Random, et enregistre le sur ton Bureau.
  • Sous Windows 7 : Suivre ce tutoriel pour rendre RSIT compatible avec Windows 7.
  • Ensuite double clique sur RSIT.exe pour lancer l'outil.
  • Clique sur "Continue" à l'écran Disclaimer.
  • Si l'outil HijackThis n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu s'il te le demande) et tu devras accepter la licence.
  • Une fois le scan terminé, deux rapports vont apparaître : poste les dans deux messages séparés stp

Tutoriel illustré pour t'aider

Comment héberger les rapports trop longs de RSIT
Image

Image
Avatar de l’utilisateur
shion-ares
Modérateur
 
Années en tant que membreAnnées en tant que membre
 
Messages: 1266
Age: 42
Inscription: 15 Juil 2009 09:00
Localisation: herbignac
Sexe: Homme
 

Point(s) : 6890
Donner
Nombre de réponses utiles: 66
    unknownunknown



Haut

Re: Redémarrage scan antivir et virus dans la restauration systeme.

Messagede Alsyia » 20 Juil 2010 14:41

Premier rapport :

Logfile of random's system information tool 1.08 (written by random/random)
Run by Yves at 2010-07-20 14:39:19
Microsoft Windows XP Édition familiale Service Pack 2
System drive C: has 3 GB (3%) free of 120 GB
Total RAM: 2047 MB (46% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:39:25, on 20/07/2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\SFR\Kit\WiFi\9wifi.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAP\DAP.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\crypserv.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\PROGRA~1\SPEEDB~1\VideoAcceleratorService.exe
C:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe
C:\PROGRA~1\SPEEDB~1\VideoAcceleratorEngine.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AxBx\VirusKeeper 2010 Pro Evaluation\vk_service.exe
C:\Program Files\WB Games\LEGO® Harry Potter™\LEGOHarryPotter.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Documents and Settings\Yves\Bureau\RSIT.exe
C:\Program Files\trend micro\Yves.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Ask.com Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: DAPIELoader Class - {FF6C3CF0-4B15-11D1-ABED-709549C10000} - C:\PROGRA~1\DAP\DAPIEL~1.DLL
O3 - Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
O4 - HKLM\..\Run: [Autoconfigurateur WiFi SFR] "C:\Program Files\SFR\Kit\WiFi\9wifi.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2010 Pro Evaluation\VirusKeeper.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resourc ... oscan8.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLL
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Crypkey License - CrypKey (Canada) Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\System32\imapi.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\System32\mnmsrvc.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: Pinnacle Systems Media Service (PinnacleSys.MediaServer) - Pinnacle Systems - C:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
O23 - Service: VideoAcceleratorService - Speedbit Ltd. - C:\PROGRA~1\SPEEDB~1\VideoAcceleratorService.exe
O23 - Service: VirusKeeper antivirus/antispyware (vkservice) - Unknown owner - C:\Program Files\AxBx\VirusKeeper 2010 Pro Evaluation\vk_service.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\System32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe

--
End of file - 10810 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-04-24 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-04-24 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF6C3CF0-4B15-11D1-ABED-709549C10000}]
DAPIELoader Class - C:\PROGRA~1\DAP\DAPIEL~1.DLL [2010-03-22 140880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Autoconfigurateur WiFi SFR"=C:\Program Files\SFR\Kit\WiFi\9wifi.exe [2008-09-01 287984]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-06-01 16208384]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2009-03-24 1983816]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"Adobe ARM"=C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"SunJavaUpdateSched"=C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [2010-02-18 248040]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-02-10 61440]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"VirusKeeper"=C:\Program Files\AxBx\VirusKeeper 2010 Pro Evaluation\VirusKeeper.exe [2010-04-22 5879240]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-19 15360]
"DownloadAccelerator"=C:\Program Files\DAP\DAP.EXE [2010-03-22 2815488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2010-02-11 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=144

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Cyanide\Dungeon Party\DungeonParty.exe"="C:\Program Files\Cyanide\Dungeon Party\DungeonParty.exe:*:Enabled:Dungeon Party"
"C:\Program Files\Pinnacle\MediaCenter\PMC.exe"="C:\Program Files\Pinnacle\MediaCenter\PMC.exe:LocalSubNet:Enabled:Pmc.exe"
"C:\Program Files\Pinnacle\MediaCenter\PSST.exe"="C:\Program Files\Pinnacle\MediaCenter\PSST.exe:LocalSubNet:Enabled:PSST.exe"
"C:\Program Files\Pinnacle\Shared Files\Programs\MediaManager\PMSManager.exe"="C:\Program Files\Pinnacle\Shared Files\Programs\MediaManager\PMSManager.exe:LocalSubNet:Enabled:PMSManager.exe"
"C:\Program Files\Pinnacle\MediaCenter\PMSInstallInit.exe"="C:\Program Files\Pinnacle\MediaCenter\PMSInstallInit.exe:LocalSubNet:Enabled:PMSInstallInit.exe"
"C:\Program Files\Pinnacle\MediaCenter\PMC.Tvtv.Wizard.exe"="C:\Program Files\Pinnacle\MediaCenter\PMC.Tvtv.Wizard.exe:LocalSubNet:Enabled:PMC.Tvtv.Wizard.exe"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe"="C:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe:LocalSubNet:Disabled:PMCService"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe"="C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
"C:\Program Files\LucasArts\Republic Heroes\Republic Heroes.exe"="C:\Program Files\LucasArts\Republic Heroes\Republic Heroes.exe:*:Enabled:Republic Heroes"
"C:\gPotato.eu\Allods Online\bin\Launcher.exe"="C:\gPotato.eu\Allods Online\bin\Launcher.exe:*:Enabled:Allods Online launcher.exe"
"C:\gPotato.eu\Allods Online\bin\AOgame.exe"="C:\gPotato.eu\Allods Online\bin\AOgame.exe:*:Enabled:Allods Online AOgame.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"

======List of files/folders created in the last 1 months======

2010-07-20 14:39:20 ----D---- C:\Program Files\trend micro
2010-07-20 14:39:19 ----D---- C:\rsit
2010-07-20 10:30:29 ----D---- C:\Program Files\AxBx
2010-07-20 10:11:14 ----D---- C:\Program Files\Avira
2010-07-17 17:03:42 ----D---- C:\Documents and Settings\Yves\Application Data\WB Games
2010-07-17 16:37:34 ----D---- C:\Program Files\WB Games
2010-07-16 14:29:29 ----D---- C:\WINDOWS\system32\Adobe
2010-07-13 18:32:59 ----D---- C:\Program Files\Eidos Interactive
2010-07-13 17:21:07 ----D---- C:\Documents and Settings\All Users\Application Data\Trymedia
2010-07-13 16:00:53 ----D---- C:\Program Files\GameSpy Arcade
2010-07-12 11:48:16 ----D---- C:\Program Files\Codemasters
2010-07-09 17:48:25 ----D---- C:\Documents and Settings\Yves\Application Data\LEGO Company
2010-07-09 17:48:17 ----D---- C:\Program Files\LEGO Company
2010-07-02 11:38:46 ----D---- C:\Documents and Settings\Yves\Application Data\ChaYoWo Games
2010-07-02 11:24:26 ----D---- C:\Program Files\The Dark Hills of Cherai
2010-06-29 21:21:07 ----D---- C:\Documents and Settings\All Users\Application Data\NOS
2010-06-29 11:07:12 ----D---- C:\Program Files\Smart Projects
2010-06-28 21:01:09 ----D---- C:\Documents and Settings\Yves\Application Data\ImgBurn
2010-06-28 21:00:18 ----D---- C:\Program Files\ImgBurn
2010-06-28 11:17:14 ----D---- C:\Documents and Settings\Yves\Application Data\Copie de ShinyTales
2010-06-28 10:02:38 ----D---- C:\Documents and Settings\Yves\Application Data\ShinyTales
2010-06-27 18:35:32 ----HD---- C:\WINDOWS\PIF
2010-06-26 16:49:13 ----D---- C:\Program Files\Neffy
2010-06-26 11:11:03 ----D---- C:\Documents and Settings\All Users\Application Data\Gogii
2010-06-26 11:04:47 ----D---- C:\Program Files\Escape the Lost Kingdom
2010-06-25 08:43:33 ----D---- C:\Documents and Settings\Yves\Application Data\DarkParablesBriarRose_BFG
2010-06-25 08:35:34 ----D---- C:\Program Files\Dark Parables - La Malediction d'Eglantine
2010-06-23 13:11:14 ----D---- C:\Documents and Settings\Yves\Application Data\Jetdogs Studios

======List of files/folders modified in the last 1 months======

2010-07-20 14:39:20 ----RD---- C:\Program Files
2010-07-20 14:39:08 ----D---- C:\WINDOWS\Prefetch
2010-07-20 14:33:05 ----D---- C:\Program Files\Fichiers communs\Akamai
2010-07-20 14:11:59 ----D---- C:\Program Files\Mozilla Thunderbird
2010-07-20 10:25:09 ----D---- C:\WINDOWS\system32\drivers
2010-07-20 10:21:46 ----D---- C:\WINDOWS\Temp
2010-07-20 10:21:38 ----D---- C:\WINDOWS\system32\CatRoot2
2010-07-20 10:21:31 ----D---- C:\WINDOWS
2010-07-20 10:20:54 ----D---- C:\WINDOWS\system32
2010-07-20 10:20:35 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2010-07-20 10:20:15 ----D---- C:\WINDOWS\Minidump
2010-07-20 10:11:23 ----HD---- C:\WINDOWS\inf
2010-07-20 10:09:36 ----SHD---- C:\WINDOWS\Installer
2010-07-20 10:09:33 ----D---- C:\WINDOWS\WinSxS
2010-07-20 10:06:21 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-07-20 09:44:41 ----D---- C:\Program Files\SpeedFan
2010-07-20 09:36:02 ----D---- C:\Program Files\Fichiers communs\ACD Systems
2010-07-19 16:43:02 ----HD---- C:\Program Files\InstallShield Installation Information
2010-07-19 09:08:57 ----D---- C:\Documents and Settings\Yves\Application Data\DMCache
2010-07-17 21:38:50 ----D---- C:\Documents and Settings\Yves\Application Data\uTorrent
2010-07-17 16:44:54 ----D---- C:\WINDOWS\system32\DirectX
2010-07-16 19:16:26 ----RSD---- C:\WINDOWS\Fonts
2010-07-16 14:30:04 ----D---- C:\Documents and Settings\Yves\Application Data\Adobe
2010-07-16 14:30:03 ----D---- C:\Documents and Settings\Yves\Application Data\Macromedia
2010-07-16 14:29:56 ----D---- C:\WINDOWS\system32\Macromed
2010-07-15 12:57:03 ----D---- C:\Program Files\Mozilla Firefox
2010-07-14 19:06:05 ----D---- C:\Program Files\Genheral 5
2010-07-14 10:22:55 ----D---- C:\Documents and Settings\Yves\Application Data\vlc
2010-07-12 14:04:57 ----A---- C:\WINDOWS\system32\CmdLineExt.dll
2010-07-12 11:49:15 ----RSD---- C:\WINDOWS\assembly
2010-07-12 11:41:53 ----D---- C:\WINDOWS\system32\Restore
2010-07-12 11:34:20 ----D---- C:\Documents and Settings\Yves\Application Data\gtk-2.0
2010-07-11 22:01:56 ----D---- C:\Documents and Settings\Yves\Application Data\dvdcss
2010-07-11 20:36:36 ----D---- C:\Documents and Settings\Yves\Application Data\Pouchin TV Mod
2010-07-06 14:21:01 ----D---- C:\Documents and Settings\All Users\Application Data\CanonIJPLM
2010-06-28 17:55:16 ----D---- C:\Documents and Settings\All Users\Application Data\SWTCWRH
2010-06-27 09:26:16 ----D---- C:\gPotato.eu
2010-06-24 17:39:30 ----A---- C:\WINDOWS\SIERRA.INI
2010-06-21 11:35:04 ----D---- C:\Documents and Settings\All Users\Application Data\CanonIJ

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 ohci1394;Contrôleur hôte Texas Instruments IEEE 1394 compatible OHCI (Open Host Controller Interface); C:\WINDOWS\System32\DRIVERS\ohci1394.sys [2004-08-04 61056]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-12-28 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2004-08-19 40320]
R1 NetworkX;NetworkX; C:\WINDOWS\system32\ckldrv.sys [2008-03-17 19584]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244]
R2 npf;npf; \??\C:\WINDOWS\system32\drivers\npf.sys []
R3 3xHybrid;Pinnacle PCTV 310i Stereo DVB-T; C:\WINDOWS\system32\DRIVERS\3xHybrid.sys [2005-09-02 827008]
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2005-02-23 11776]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2004-08-03 60800]
R3 ASAPIW2k;ASAPIW2K; C:\WINDOWS\system32\drivers\ASAPIW2k.sys [2005-05-26 11264]
R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2010-02-11 3565056]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-06-06 4284928]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver; C:\WINDOWS\system32\DRIVERS\ManyCam.sys [2008-01-14 21632]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2004-08-03 61824]
R3 PCASp50;PCASp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\PCASp50.sys [2005-11-19 20096]
R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2009-10-21 298752]
S3 afxyffl8;afxyffl8; C:\WINDOWS\system32\drivers\afxyffl8.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-04 17024]
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 DSDrv4;DSDrv4; \??\C:\PROGRA~1\K!TV\Plugins\S_Bt8x8\DSDrv4.sys []
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 Mkd2kfNt;Mkd2kfNt; C:\WINDOWS\system32\drivers\Mkd2kfNt.sys [2008-10-17 131072]
S3 Mkd2Nadr;Mkd2Nadr; C:\WINDOWS\system32\drivers\Mkd2Nadr.sys [2008-10-17 79104]
S3 MPE;Filtre BDA MPE; C:\WINDOWS\system32\DRIVERS\MPE.sys [2004-08-04 15360]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-04 10880]
S3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2004-01-21 5915]
S3 PID_08A0;Labtec WebCam Pro(PID_08A0); C:\WINDOWS\system32\DRIVERS\LV302AV.SYS [2004-01-21 271360]
S3 RT73;Hercules USB WiFi Transmitter Driver; C:\WINDOWS\system32\DRIVERS\rt73.sys [2006-05-12 343168]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-04 11136]
S3 sony_ssm.sys;sony_ssm.sys; \??\C:\DOCUME~1\Yves\LOCALS~1\Temp\sony_ssm.sys []
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-04 15360]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-04 59264]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2004-08-04 31616]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-04 19328]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Akamai;Akamai NetSession Interface; C:\WINDOWS\System32\svchost.exe [2004-08-19 14336]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-02-11 602112]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 Crypkey License;Crypkey License; C:\WINDOWS\system32\crypserv.exe [2008-05-08 122880]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2009-02-10 116104]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-04-24 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [2006-06-20 49152]
R2 MSSQL$PINNACLESYS;MSSQL$PINNACLESYS; C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe [2005-05-04 9150464]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe [2009-09-23 935208]
R2 PinnacleSys.MediaServer;Pinnacle Systems Media Service; C:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe [2005-10-26 49152]
R2 UserAccess7;SecuROM User Access Service (V7); C:\WINDOWS\system32\UAService7.exe [2010-01-07 122880]
R2 VideoAcceleratorService;VideoAcceleratorService; C:\PROGRA~1\SPEEDB~1\VideoAcceleratorService.exe [2010-03-22 300656]
R2 vkservice;VirusKeeper antivirus/antispyware; C:\Program Files\AxBx\VirusKeeper 2010 Pro Evaluation\vk_service.exe [2009-09-24 1121664]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2010-02-10 593920]
S2 gupdate;Service Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-02 135664]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-01-14 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2010-05-11 271728]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2005-05-03 73728]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2010-02-24 3432444]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SQLAgent$PINNACLESYS;SQLAgent$PINNACLESYS; C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlagent.EXE [2005-05-03 323584]
S3 wampapache;wampapache; c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe [2008-12-10 24636]
S3 wampmysqld;wampmysqld; c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe [2009-06-17 6582912]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Avatar de l’utilisateur
Alsyia
Nouveau membre
Progression vers le rang suivant:
65%
 
Années en tant que membre
 
Messages: 13
Age: 16
Inscription: 20 Juil 2010 13:20
Sexe: Non spécifié
 

Point(s) : 80
Donner
    unknownunknown



Haut

Re: Redémarrage scan antivir et virus dans la restauration systeme.

Messagede Alsyia » 20 Juil 2010 14:43

Et le deuxième :

info.txt logfile of random's system information tool 1.08 2010-07-20 14:39:28

======Uninstall list======

-->MsiExec /X{11AE6807-50D2-4F59-82B3-2C3E695E94C2}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL
7-Zip 9.09 beta-->"C:\Program Files\7-Zip\Uninstall.exe"
Adobe After Effects CS4 Presets-->MsiExec.exe /I{44E240EC-2224-4078-A88B-2CEE0D3016EF}
Adobe After Effects CS4-->C:\Program Files\Fichiers communs\Adobe\Installers\3dcb365ab9e01871fb8c6f27b0ea079\Setup.exe --uninstall=1
Adobe After Effects CS4-->MsiExec.exe /I{45EC816C-0771-4C14-AE6D-72D1B578F4C8}
Adobe AIR-->c:\Program Files\Fichiers communs\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}
Adobe Anchor Service CS4-->MsiExec.exe /I{1618734A-3957-4ADD-8199-F973763109A8}
Adobe Bridge CS4-->MsiExec.exe /I{83877DB1-8B77-45BC-AB43-2BAC22E093E0}
Adobe CMaps CS4-->MsiExec.exe /I{94D398EB-D2FD-4FD1-B8C4-592635E8A191}
Adobe Color - Photoshop Specific CS4-->MsiExec.exe /I{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}
Adobe Color EU Recommended Settings CS4-->MsiExec.exe /I{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}
Adobe Color JA Extra Settings CS4-->MsiExec.exe /I{0D6013AB-A0C7-41DC-973C-E93129C9A29F}
Adobe Color NA Extra Settings CS4-->MsiExec.exe /I{098A2A49-7CF3-4F08-A38D-FB879117152A}
Adobe Color Video Profiles AE CS4-->MsiExec.exe /I{B15381DD-FF97-4FCD-A881-ED4DB0975500}
Adobe Color Video Profiles CS CS4-->MsiExec.exe /I{63C24A08-70F3-4C8E-B9FB-9F21A903801D}
Adobe CSI CS4-->MsiExec.exe /I{0F723FC1-7606-4867-866C-CE80AD292DAF}
Adobe Default Language CS4-->MsiExec.exe /I{C52E3EC1-048C-45E1-8D53-10B0C6509683}
Adobe Device Central CS4-->MsiExec.exe /I{67F0E67A-8E93-4C2C-B29D-47C48262738A}
Adobe Dynamiclink Support-->MsiExec.exe /I{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}
Adobe ExtendScript Toolkit CS4-->MsiExec.exe /I{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}
Adobe Extension Manager CS4-->MsiExec.exe /I{054EFA56-2AC1-48F4-A883-0AB89874B972}
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -maintain plugin
Adobe Fonts All-->MsiExec.exe /I{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}
Adobe Linguistics CS4-->MsiExec.exe /I{931AB7EA-3656-4BB7-864D-022B09E3DD67}
Adobe Media Encoder CS4 Additional Exporter-->MsiExec.exe /I{BE9CEAAA-F069-4331-BF2F-8D350F6504F4}
Adobe Media Encoder CS4-->MsiExec.exe /I{DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}
Adobe MotionPicture Color Files CS4-->MsiExec.exe /I{B05DE7B7-0B40-4411-BD4B-222CAE2D8F15}
Adobe Output Module-->MsiExec.exe /I{BB4E33EC-8181-4685-96F7-8554293DEC6A}
Adobe PDF Library Files CS4-->MsiExec.exe /I{F93C84A6-0DC6-42AF-89FA-776F7C377353}
Adobe Photoshop CS4 Support-->MsiExec.exe /I{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}
Adobe Photoshop CS4-->C:\Program Files\Fichiers communs\Adobe\Installers\faf656ef605427ee2f42989c3ad31b8\Setup.exe --uninstall=1
Adobe Photoshop CS4-->MsiExec.exe /I{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}
Adobe Photoshop CS4-->MsiExec.exe /I{E4848436-0345-47E2-B648-8B522FCDA623}
Adobe Reader 9.3.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A93000000001}
Adobe Search for Help-->MsiExec.exe /I{F0E64E2E-3A60-40D8-A55D-92F6831875DA}
Adobe Service Manager Extension-->MsiExec.exe /I{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}
Adobe Setup-->MsiExec.exe /I{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}
Adobe Setup-->MsiExec.exe /I{411F3ABA-2AB5-4799-AA19-6ADF0A8F7424}
Adobe Shockwave Player 11.5-->"C:\WINDOWS\system32\Adobe\Shockwave 11\uninstaller.exe"
Adobe Type Support CS4-->MsiExec.exe /I{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}
Adobe Update Manager CS4-->MsiExec.exe /I{05308C4E-7285-4066-BAE3-6B50DA6ED755}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}
Adobe XMP Panels CS4-->MsiExec.exe /I{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}
AdobeColorCommonSetCMYK-->MsiExec.exe /I{68243FF8-83CA-466B-B2B8-9F99DA5479C4}
AdobeColorCommonSetRGB-->MsiExec.exe /I{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}
Advertising Center-->MsiExec.exe /X{B2EC4A38-B545-4A00-8214-13FE0E915E6D}
Akamai NetSession Interface-->C:\Program Files\Fichiers communs\Akamai\uninstall.exe
Allods Online 1.0.05.41-->C:\gPotato.eu\Allods Online\uninst.exe
Ancient Quest of Saqqarah-->"C:\Program Files\Ancient Quest of Saqqarah\Uninstall.exe"
Ancient Quest of Saqqarah-->"C:\Program Files\City Interactive\Ancient Quest of Saqqarah FR\unins000.exe"
Apple Application Support-->MsiExec.exe /I{553255F3-78FD-40F1-A6F8-6882140265FE}
Apple Mobile Device Support-->MsiExec.exe /I{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Architecte 3D Silver Advanced-->C:\PROGRA~1\ARCHIT~1\UNWISE.EXE C:\PROGRA~1\ARCHIT~1\INSTALL.LOG
Ask Toolbar-->MsiExec.exe /I{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Utilitaire de désinstallation du logiciel-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI AVIVO Codecs-->MsiExec.exe /I{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}
ATI Catalyst Control Center-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x435c
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
ATI HYDRAVISION-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3EA9D975-BFDC-4E8E-B88B-0446FBC8CA66}\setup.exe"
ATI Parental Control & Encoder-->MsiExec.exe /I{36CDA33B-909B-4719-97D1-C4B99309BDC7}
ATI Problem Report Wizard-->MsiExec.exe /X{5DA6F06A-B389-407B-BF8C-1548767914D8}
Audacity 1.3.11 (Unicode)-->"C:\Program Files\Audacity 1.3 Beta (Unicode)\unins000.exe"
AVS Update Manager 1.0-->"C:\Program Files\AVS4YOU\AVSUpdateManager\unins000.exe"
AVS Video Converter 6-->"C:\Program Files\AVS4YOU\AVSVideoConverter6\unins000.exe"
AVS4YOU Software Navigator 1.4-->"C:\Program Files\AVS4YOU\AVSSoftwareNavigator\unins000.exe"
Ballance-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{42E0783D-3BA4-454B-B58A-BF26E49EB7DE}\setup.exe"
Big Fish Games: Game Manager-->C:\Program Files\bfgclient\Uninstall.exe
Boilsoft Video Joiner 5.32-->"C:\Program Files\Boilsoft Video Joiner\unins000.exe"
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Canon Inkjet Printer/Scanner/Fax Extended Survey Program-->C:\Program Files\Canon\IJPLM\SETUP.EXE -R
Canon MP Navigator EX 3.0-->"C:\Program Files\Canon\MP Navigator EX 3.0\Maint.exe" /UninstallRemove C:\Program Files\Canon\MP Navigator EX 3.0\uninst.ini
Canon MP550 series MP Drivers-->"C:\WINDOWS\system32\CanonIJ Uninstaller Information\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP550_series\DelDrv.exe" /U:{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP550_series
Canon Utilities Easy-PhotoPrint EX-->C:\Program Files\Canon\Easy-PhotoPrint EX\uninst.exe Uninst.ini uinstrsc.dll
Canon Utilities My Printer-->C:\Program Files\Canon\MyPrinter\uninst.exe uninst.ini uinstrsc.dll
Canon Utilities Solution Menu-->C:\Program Files\Canon\SolutionMenu\uninst.exe uninst.ini uinstrsc.dll
Catalyst Control Center - Branding-->MsiExec.exe /I{8D7133DE-27D2-47E5-B248-4180278D32AA}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Compel Adaptec WinASPI-->"C:\Program Files\WinASPI\unins000.exe"
Connect-->MsiExec.exe /I{B29AD377-CC12-490A-A480-1452337C618D}
Content Transfer-->MsiExec.exe /X{CFADE4AF-C0CF-4A04-A776-741318F1658F}
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe"
Cossacks II-->L:\Program Files\GSC Game World\Cossacks II\uninstall.exe
Dark Parables: La Malédiction d'Églantine-->"C:\Program Files\Dark Parables - La Malediction d'Eglantine\Uninstall.exe"
Didapages 1.1-->C:\Program Files\Didapages\uninst.exe
DolbyFiles-->MsiExec.exe /X{B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}
Download Accelerator Plus (DAP)-->C:\PROGRA~1\DAP\DAPREMOVE.EXE
Driver Checker v2.7.4-->"C:\Program Files\Driver Checker\unins000.exe"
Driver Genius Professional Edition-->"C:\Program Files\Driver-Soft\DriverGenius\unins000.exe"
DriverEasy version 2.2.0-->"C:\Program Files\Easeware\DriverEasy\unins000.exe"
Droppix Recorder-->"C:\Program Files\Droppix\Droppix Recorder\unins000.exe"
DScaler 5 Mpeg Decoders-->"C:\Program Files\DScaler5\unins000.exe"
DVD Decrypter 3.5.4.0 Fr-->C:\Program Files\DVD Decrypter\UnInstall_DVDdecrypt.exe
EASEUS Data Recovery Wizard Professional 4.3.6-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1965C9BB-9114-4A50-AEC7-E62414BB117B}\setup.exe" -l0x9 -removeonly
e-Carte Bleue Caisse d'Epargne-->"C:\Program Files\InstallShield Installation Information\{18EF615A-5AAD-4944-B24E-6CD7863FC735}\setup.exe" -runfromtemp -l0x040c -removeonly
Elementals - The Magic Key-->"C:\Program Files\orange\jeux\Elementals - The Magic Key\Uninstall.exe" "C:\Program Files\orange\jeux\Elementals - The Magic Key\install.log"
Empire Earth-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2447500B-22D7-47BD-9B13-1A927F43A267}\Setup.exe" -l0x40c
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Enregistrement utilisateur de Canon MP550 series-->C:\Program Files\Canon\IJEREG\MP550 series\UNINST.EXE
Escape the Lost Kingdom-->"C:\Program Files\Escape the Lost Kingdom\Uninstall.exe"
EVEREST Home Edition v2.20-->"C:\Program Files\Lavalys\EVEREST Home Edition\unins000.exe"
Fantastic Farm-->"C:\WINDOWS\Fantastic Farm\uninstall.exe" "/U:C:\Program Files\Fantastic Farmcracké\Uninstall\uninstall.xml"
Feneris Video Downloader-->MsiExec.exe /I{86AED2CA-EE00-400B-8516-5152CC10B32E}
ffdshow-->"C:\Program Files\K-Lite Codec Pack\ffdshow\uninstall.exe"
FileZilla Client 3.3.2.1-->C:\Program Files\FileZilla FTP Client\uninstall.exe
Froggy 3.0.0.1-->C:\Program Files\Froggy\uninst.exe
GameSpy Arcade-->C:\PROGRA~1\GAMESP~1\UNWISE.EXE C:\PROGRA~1\GAMESP~1\INSTALL.LOG
Genheral 6-->C:\WINDOWS\unin040c.exe -f"C:\Program Files\Genheral 5\DeIsL2.isu" -c"C:\Program Files\Genheral 5\_ISREG32.DLL"
GIMP 2.6.8-->"C:\Program Files\GIMP-2.0\setup\unins000.exe"
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Earth-->MsiExec.exe /X{F7B0939E-58DF-11DF-B3A6-005056806466}
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
Hospital Tycoon-->C:\Program Files\Codemasters\Hospital Tycoon\uninstall.exe
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix for Windows XP (KB926239)-->"C:\WINDOWS\$NtUninstallKB926239$\spuninst\spuninst.exe"
HP USB Disk Storage Format Tool-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0E0DF90C-D0BA-4C89-9262-AD78D1A3DE51}\Setup.exe" -l0x9 anything
iMesh-->"C:\Program Files\iMesh Applications\iMesh\UninstallSurvey.exe" "C:\Program Files\iMesh Applications\iMesh\UnwiseLauncher.exe" /A "C:\Program Files\iMesh Applications\iMesh\INSTALL.LOG"
ImgBurn 2.3.2.0 Fr-->"C:\Program Files\ImgBurn\unins000.exe"
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
Internet Download Manager-->C:\Program Files\Internet Download Manager\Uninstall.exe
IsoBuster 2.8-->"C:\Program Files\Smart Projects\IsoBuster\Uninst\unins000.exe"
Java(TM) 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020FF}
Jewel Charm .-->C:\Program Files\Cybertek Games\Jewel Charm\Uninstall.exe
Jewel Charm-->"C:\Program Files\Jewel Charm\Uninstall.exe"
K!TV-->C:\Program Files\K!TV\UninstKTV.exe
King’s Bounty: The Legend (Retirer seulement)-->"C:\Program Files\Nobilis\King's Bounty\unins000.exe"
K-Lite Mega Codec Pack 5.5.1-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
kuler-->MsiExec.exe /I{098727E1-775A-4450-B573-3F441F1CA243}
Labtec WebCam-->MsiExec.exe /I{58E653BE-BD68-4D68-BB2E-3AE1B925AAD0}
LAME v3.98.2 for Audacity-->"C:\Program Files\Lame for Audacity\unins000.exe"
LeClerc Photogenie-->"C:\Program Files\LeClerc\Photogenie\unins000.exe"
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
LEGO Star Wars-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{E914A24F-2412-4374-B420-86D21D6D444A} /l1036
LEGO® Harry Potter™: Années 1 à 4-->MsiExec.exe /X{C5A8DF48-580B-44D3-B2B2-E965A9368F28}
Les héros de la République-->"C:\Program Files\InstallShield Installation Information\{5612C844-55BC-4B77-82C2-A2E28962418E}\Setup.exe" -runfromtemp -l0x040c -removeonly
Ma-Config.com-->MsiExec.exe /X{14E3D14B-7852-477D-ACE2-895AF4322804}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
ManyCam 2.4 (remove only)-->"C:\Program Files\ManyCam 2.4\uninstall.exe"
Marvell Miniport Driver-->C:\Program Files\Marvell\Miniport Driver\Uninst.exe
Menu Templates - Starter Kit-->MsiExec.exe /X{B78120A0-CF84-4366-A393-4D0A59BC546C}
Micro Application - PrintPratic 4-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EC79B672-686B-4C0A-9402-12EA1A04A99C}\Setup.exe" -l0x40c
Micro Application - PrintPratic-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{67380BB7-F6C4-458A-9F94-5012814A20B7}\Setup.exe" -l0x40c
Microsoft .NET Framework 1.1 Security Update (KB953297)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Games for Windows - LIVE -->MsiExec.exe /X{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{FD052FB9-FE90-4438-B355-15EDC89D8FB1}
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISER /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{91120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office Groove MUI (French) 2007-->MsiExec.exe /X{90120000-00BA-040C-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office OneNote MUI (French) 2007-->MsiExec.exe /X{90120000-00A1-040C-0000-0000000FF1CE}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft SQL Server Desktop Engine (PINNACLESYS)-->MsiExec.exe /X{E09B48B5-E141-427A-AB0C-D3605127224A}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9L$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958470)-->"C:\WINDOWS\$NtUninstallKB958470$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961371-v2)-->"C:\WINDOWS\$NtUninstallKB961371-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB976325)-->"C:\WINDOWS\$NtUninstallKB976325$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB925720)-->"C:\WINDOWS\$NtUninstallKB925720$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
MKVtoolnix 2.0.2-1-->C:\Program Files\MKVtoolnix\uninst.exe
MozBackup 1.4.10-->C:\Program Files\MozBackup\Uninstall.exe
Mozilla Firefox (3.6.6)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Thunderbird (2.0.0.24)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 6 Service Pack 2 (KB973686)-->MsiExec.exe /I{56EA8BC0-3751-4B93-BC9D-6651CC36E5AA}
NDSROM Player-->C:\Program Files\NDSROM Player\Uninstal.exe
Neffy 1,3,29,0-->C:\Program Files\Neffy\uninst.exe
Nero 9 Trial-->C:\Program Files\Fichiers communs\Nero\Nero ProductInstaller 4\SetupX.exe REMOVESERIALNUMBER="8M01-2085-KK25-2LEE-0UHL-8MPA-6H4U-EHAL"
Nero ControlCenter-->MsiExec.exe /X{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
Nero DiscSpeed-->MsiExec.exe /X{869200DB-287A-4DC0-B02B-2B6787FBCD4C}
Nero InfoTool-->MsiExec.exe /X{FBCDFD61-7DCF-4E71-9226-873BA0053139}
Nero Installer-->MsiExec.exe /X{E8A80433-302B-4FF1-815D-FCC8EAC482FF}
Nero Recode-->MsiExec.exe /X{359CFC0A-BEB1-440D-95BA-CF63A86DA34F}
Nero Rescue Agent-->MsiExec.exe /X{368BA326-73AD-4351-84ED-3C0A7A52CC53}
Nero ShowTime-->MsiExec.exe /X{D9DCF92E-72EB-412D-AC71-3B01276E5F8B}
Nero StartSmart-->MsiExec.exe /X{7748AC8C-18E3-43BB-959B-088FAEA16FB2}
Nero Vision-->MsiExec.exe /X{43E39830-1826-415D-8BAE-86845787B54B}
Nero WaveEditor-->MsiExec.exe /X{A209525B-3377-43F4-B886-32F6B6E7356F}
NeroBurningROM-->MsiExec.exe /X{D025A639-B9C9-417D-8531-208859000AF8}
NeroExpress-->MsiExec.exe /X{595A3116-40BB-4E0F-A2E8-D7951DA56270}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
No-IP.com DUC (remove only)-->"C:\Program Files\No-IP\DUC20.exe" -uninstall
Notepad++-->C:\Program Files\Notepad++\uninstall.exe
NudgeMania 4.0 for Messenger-->C:\Program Files\NudgeMania\uninstall.exe
NVIDIA PhysX v8.05.26-->MsiExec.exe /X{11AE6807-50D2-4F59-82B3-2C3E695E94C2}
NWZ-E440 WALKMAN Guide-->MsiExec.exe /X{E96FF910-1BC9-4EE5-BC12-0A30D4E20F37}
oggcodecs-->MsiExec.exe /I{D65F0073-A820-4085-B997-A061171595A7}
OpenOffice.org 3.1-->MsiExec.exe /I{0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Pando Media Booster-->C:\Program Files\Pando Networks\Media Booster\uninst.exe
PC Inspector File Recovery-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0DD140D3-9563-481E-AA75-BA457CBDAEF2}\Setup.exe" -l0x40c
Pcsx2 0.9.6-->MsiExec.exe /I{0E2B767B-EA6A-489B-BF83-8083FE1DB661}
PDF Settings CS4-->MsiExec.exe /I{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}
PHOTOfunSTUDIO-->C:\Program Files\InstallShield Installation Information\{9A9DBEBC-C800-4776-A970-D76D6AA405B1}\setup.exe -runfromtemp -l0x040c -z"Uninstall" -removeonly
Photoshop Camera Raw-->MsiExec.exe /I{CC75AB5C-2110-4A7F-AF52-708680D22FE8}
Pinnacle MediaCenter-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA}\Setup.exe" -l0x40c UNINSTALL
Pinnacle MediaServer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{460CE8B9-6EC2-458A-90D4-691631ECE9D9}\setup.exe" -l0x40c UNINSTALL
Pixel Bender Toolkit-->MsiExec.exe /I{43509E18-076E-40FE-AF38-CA5ED400A5A9}
Pouchin TV Mod-->"C:\Program Files\Pouchin TV Mod\Désinstaller.exe"
PowerQuest PartitionMagic 8.0-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}
PremiumSoft Navicat 8.0 Lite for MySQL-->"C:\Program Files\PremiumSoft\Navicat 8.0 Lite MySQL\unins000.exe"
Programme de gestion Camera de Logitech®-->"C:\Program Files\Fichiers communs\Labtec\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT
QuickTime-->MsiExec.exe /I{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}
Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" -l0x40c -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
RGSS de RMXP version 1.0.1-->"C:\Program Files\Bodom-Child - RaBBi\RGSS\unins000.exe"
RMXP version 1.0.0.1-->"C:\Program Files\Bodom-Child - RaBBi\RMXP\unins000.exe"
RPG Maker VX 1.02-->"C:\Program Files\RPG Maker VX\unins000.exe"
R-Studio 4.6-->C:\Program Files\R-Studio\Uninstall.exe
Runes of Magic-->"L:\jeux\ROM\Runes of Magic\unins000.exe"
Runtime Files Pack 3-->C:\WINDOWS\ST4UNST.EXE -n "C:\WINDOWS\system32\ST4UNST.000"
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SFR - Kit de connexion-->C:\Program Files\SFR\Kit\uninstall.exe
SpeedBit Video Accelerator-->"C:\Program Files\SpeedBit Video Accelerator\VARemove.exe" temp
SpeedFan (remove only)-->"C:\Program Files\SpeedFan\uninstall.exe"
Sqirlz Morph-->"C:\WINDOWS\Sqirlz Morph Uninstaller.exe"
StarTopia-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EBC0E8C0-63AC-11D4-BEF2-00A0C9E0B324}\setup.exe"
Subtitle Workshop 2.51-->"C:\Program Files\URUSoft\Subtitle Workshop\uninstall.exe"
Suite Shared Configuration CS4-->MsiExec.exe /I{842B4B72-9E8F-4962-B3C1-1C422A5C4434}
SUPER © Version 2010.bld.38 (May 2, 2010)-->C:\PROGRA~1\ERIGHT~1\SUPER\Setup.exe /remove /q0
System Requirements Lab-->MsiExec.exe /I{9E1BAB75-EB78-440D-94C0-A3857BE2E733}
The Dark Hills of Cherai-->"C:\Program Files\The Dark Hills of Cherai\Uninstall.exe"
TomTom HOME Visual Studio Merge Modules-->MsiExec.exe /I{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
VDMSound 2.0.4-->MsiExec.exe /I{8ECBE643-8230-11D5-9D6B-00A024112F81}
Video Download Studio 3.3.5-->"C:\Program Files\aHisoft\Video Download Studio\unins000.exe"
VirtualDrive Network Server-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{85A7C659-0658-4BA0-B485-04A80634FB7B} /l1036
VirusKeeper 2010 Pro Evaluation-->"C:\Program Files\AxBx\VirusKeeper 2010 Pro Evaluation\unins000.exe"
Visual Basic 4 Runtime Files-->C:\WINDOWS\ST4UNST.EXE -n "C:\WINDOWS\system32\ST4UNST.LOG"
VLC media player 1.0.3-->C:\Program Files\VideoLAN\VLC\uninstall.exe
WampServer 2.0-->"c:\wamp\unins000.exe"
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{ED00D08A-3C5F-488D-93A0-A04F21F23956}
Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows XP Service Pack 2-->C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe
WinISO 5.3-->"C:\Program Files\WinISO\unins000.exe"
World of Warcraft Model Viewer-->MsiExec.exe /I{ADEB9122-038F-4169-8F43-8B2EE47B58EC}
World of Warcraft-->C:\Program Files\Fichiers communs\Blizzard Entertainment\World of Warcraft (2)\Uninstall.exe
Wow Cartographe 1.10-->C:\Program Files\WowCartographe\uninst.exe
XnView 1.97-->"C:\Program Files\XnView\unins000.exe"

======Hosts File======

127.0.0.1 w3dserv.no-ip.org

======Security center information======

AV: VirusKeeper 2010 Pro antivirus

======System event log======

Computer Name: ORDI-MAISON
Event Code: 7034
Message: Le service Crypkey License s'est terminé de façon inattendue pour la 1ème fois.

Record Number: 21150
Source Name: Service Control Manager
Time Written: 20100608192334.000000+120
Event Type: erreur
User:

Computer Name: ORDI-MAISON
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Compatibilité avec le Changement rapide d'utilisateur.

Record Number: 21149
Source Name: Service Control Manager
Time Written: 20100608192334.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: ORDI-MAISON
Event Code: 7036
Message: Le service Services Terminal Server est entré dans l'état : en cours d'exécution.

Record Number: 21148
Source Name: Service Control Manager
Time Written: 20100608192334.000000+120
Event Type: Informations
User:

Computer Name: ORDI-MAISON
Event Code: 17
Message:
Record Number: 21147
Source Name: avgntflt
Time Written: 20100608192258.000000+120
Event Type: Informations
User:

Computer Name: ORDI-MAISON
Event Code: 26
Message: Application popup :  : \SystemRoot\System32\ATMFD.DLL failed to load

Record Number: 21146
Source Name: Application Popup
Time Written: 20100608192258.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: ORDI-MAISON
Event Code: 4113
Message:
Record Number: 2606
Source Name: Avira AntiVir
Time Written: 20100412223201.000000+120
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

Computer Name: ORDI-MAISON
Event Code: 1000
Message: Application défaillante jewel charm.exe, version 0.9.8.4, module défaillant jewel charm.exe, version 0.9.8.4, adresse de défaillance 0x001a6831.

Record Number: 2605
Source Name: Application Error
Time Written: 20100412215402.000000+120
Event Type: erreur
User:

Computer Name: ORDI-MAISON
Event Code: 1000
Message: Application défaillante jewel charm.exe, version 1.0.1.0, module défaillant jewel charm.exe, version 1.0.1.0, adresse de défaillance 0x0019eb91.

Record Number: 2604
Source Name: Application Error
Time Written: 20100412211526.000000+120
Event Type: erreur
User:

Computer Name: ORDI-MAISON
Event Code: 1000
Message: Application défaillante jewel charm.exe, version 1.0.1.0, module défaillant jewel charm.exe, version 1.0.1.0, adresse de défaillance 0x0019eb91.

Record Number: 2603
Source Name: Application Error
Time Written: 20100412211057.000000+120
Event Type: erreur
User:

Computer Name: ORDI-MAISON
Event Code: 4113
Message:
Record Number: 2602
Source Name: Avira AntiVir
Time Written: 20100412200401.000000+120
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Microsoft SQL Server\80\Tools\Binn\;%VDMSPath%;C:\Program Files\QuickTime\QTSystem\;C:\Program Files\Smart Projects\IsoBuster
"windir"=%SystemRoot%
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 6 Stepping 2, GenuineIntel
"PROCESSOR_REVISION"=0602
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"FP_NO_HOST_CHECK"=NO
"VDMSPath"=C:\Program Files\VDMSound\
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

-----------------EOF-----------------


Voili voilou ;)
Avatar de l’utilisateur
Alsyia
Nouveau membre
Progression vers le rang suivant:
65%
 
Années en tant que membre
 
Messages: 13
Age: 16
Inscription: 20 Juil 2010 13:20
Sexe: Non spécifié
 

Point(s) : 80
Donner
    unknownunknown



Haut

Re: Redémarrage scan antivir et virus dans la restauration systeme.

Messagede shion-ares » 20 Juil 2010 15:01

Re,

rien de bien méchant

Sous VISTA ou Windows 7

==> Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection)

:flèche: Tutoriel pour Vista

:flèche: Tutoriel pour Windows 7

  • Télécharge AD-Remover (de C_XX) sur ton Bureau.
  • Clique sur TÉLÉCHARGER et enregistre-le sur ton bureau.
  • :!: Déconnecte toi et ferme toutes les applications en cours :!:
  • Double-clique sur l'icône AD-Remover, le programme s'installera automatiquement.
  • Sous Vista et Windows 7 : clic droit sur AD-Remover et sélectionner "Exécuter en tant qu'administrateur"
  • Au menu principal, clique sur "Nettoyer".
  • Confirme le lancement de l'analyse et laisse l'outil travailler.
  • Une fois le nettoyage terminé, AD-Remover te demandera de redémarrer l'ordinateur pour finaliser le nettoyage.. Clique sur Oui.
  • Ensuite poste le rapport qui est sauvegardé à cet endroit :flèche: C:\Ad-Report-CLEAN[1].txt
(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

Tutoriel pour t'aider
Image

Image
Avatar de l’utilisateur
shion-ares
Modérateur
 
Années en tant que membreAnnées en tant que membre
 
Messages: 1266
Age: 42
Inscription: 15 Juil 2009 09:00
Localisation: herbignac
Sexe: Homme
 

Point(s) : 6890
Donner
Nombre de réponses utiles: 66
    unknownunknown



Haut

Re: Redémarrage scan antivir et virus dans la restauration systeme.

Messagede Alsyia » 20 Juil 2010 17:09

Après redémarrage , j'ai eu 3 "le système a récupéré d'une erreur sérieuse" ... Ca m'embete un peu.

Vla le rapport ;) :

======= RAPPORT D'AD-REMOVER 2.0.0.1,C | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par C_XX le 23/06/10 à 19:20
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html

C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 16:47:36 le 20/07/2010, Mode normal

Microsoft Windows XP Édition familiale Service Pack 2 (X86)
Yves@ORDI-MAISON ( )

============== ACTION(S) ==============


0,Dossier supprimé: C:\WINDOWS\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
0,Fichier supprimé: C:\Program Files\Mozilla FireFox\Components\AskHPRFF.js
0,Fichier supprimé: C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
0,Dossier supprimé: C:\Documents and Settings\Yves\Application Data\Mozilla\FireFox\Profiles\6hw05v72.default\extensions\toolbar@ask.com
0,Fichier supprimé: C:\Documents and Settings\Yves\Application Data\Mozilla\FireFox\Profiles\6hw05v72.default\searchplugins\askcom.xml
0,Fichier supprimé: C:\Documents and Settings\Yves\Application Data\Mozilla\FireFox\Profiles\6hw05v72.default\searchplugins\mywebsearch.xml
0,Dossier supprimé: C:\Documents and Settings\Yves\Mes documents\Imesh
0,Dossier supprimé: C:\Documents and Settings\Yves\Local Settings\Application Data\iMesh
0,Dossier supprimé: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\iMesh
0,Dossier supprimé: C:\Program Files\iMesh Applications
0,Dossier supprimé: C:\Documents and Settings\All Users\Application Data\Trymedia
3,Fichier supprimé: C:\WINDOWS\Installer\5276a.msi

(!) -- Fichiers temporaires supprimés.


-- Fichier ouvert: C:\Documents and Settings\Yves\Application Data\Mozilla\FireFox\Profiles\6hw05v72.default\Prefs.js --
-- Fichier Fermé --


1,Clé supprimée: HKLM\Software\Classes\CLSID\{01AD9322-02FF-4f4f-AC52-92FDA5AE65F0}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{03F14321-8FED-4CBC-B01A-4B57FC199062}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{148132E6-626D-4A5E-8063-A761EB29A50B}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{23BDC78C-B7BB-42E5-B970-54B292592D72}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{27BF8F8D-58B8-D41C-F913-B7EEB57EF6F6}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{2C6F7E96-73BC-47A5-9F51-B67F0BAFE24D}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{4C58EB04-7B72-4D3D-A36E-66167A99BC31}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{4EE0B011-604C-47F3-8F2B-39F79640B85E}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{5D637FAD-E202-48D1-8F18-5B9C459BD1E3}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{5D9E7BE9-95E5-4392-8CD2-D82DE89589ED}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{5EB0259D-AB79-4ae6-A6E6-24FFE21C3DA4}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{69D3F709-9DE2-479F-980F-532D46895703}
1,Clé supprimée: HKLM\Software\Classes\Interface\{69D3F709-9DE2-479F-980F-532D46895703}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{6BC38BF4-E84D-46E1-920B-42D31AEA617E}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{87CD3140-EEC0-463F-8872-6E564D9DEDE5}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{98ED0D10-F1FC-4113-A095-9BD7F96040C9}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{B0639356-335C-4E47-B63C-12531A7A5206}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{B162A975-6C7C-4202-9167-306028913A3D}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}
1,Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{CD5175E2-7CC1-418C-B66C-0AB95DAD4103}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{D8BFC514-1135-4393-B09A-193D2AAC5037}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{DEF4ED0D-E666-4631-A35A-A634332F0550}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}
1,Clé supprimée: HKLM\Software\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}
1,Clé supprimée: HKLM\Software\Classes\CLSID\{F8AB43ED-EC88-4de7-B213-F89157D29C62}
1,Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
1,Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
1,Clé supprimée: HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
1,Clé supprimée: HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
1,Clé supprimée: HKLM\Software\Classes\Interface\{D6094FC6-821F-474C-8D73-C13066CD178D}
1,Clé supprimée: HKLM\Software\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C}
1,Clé supprimée: HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
1,Clé supprimée: HKLM\Software\Classes\TypeLib\{403A885F-CB00-40C1-BDC1-EB09053194F7}
1,Clé supprimée: HKLM\Software\Classes\TypeLib\{43B4B831-F41F-4F73-8F14-4FFF0BA75B1B}
1,Clé supprimée: HKLM\Software\Classes\TypeLib\{55C1727F-5535-4C2A-9601-8C2458608B48}
1,Clé supprimée: HKLM\Software\Classes\TypeLib\{6C9945B7-1D19-46CB-88C0-45A24DF6CD6E}
1,Clé supprimée: HKLM\Software\Classes\TypeLib\{84B9B044-17C0-48FB-A300-C9747D5DF29C}
1,Clé supprimée: HKLM\Software\Classes\TypeLib\{85672EDB-2CC8-40B9-A9E8-77D3478F2EFB}
1,Clé supprimée: HKLM\Software\Classes\TypeLib\{96F7FABC-5789-EFA4-B6ED-1272F4C1D27B}
1,Clé supprimée: HKLM\Software\Classes\TypeLib\{C4C4F1F4-3074-4CB6-9FB8-0A64273166F0}
1,Clé supprimée: HKLM\Software\Classes\TypeLib\{EC96F516-51B2-4B46-8451-8665F5A6BA2B}
1,Clé supprimée: HKLM\Software\Classes\TypeLib\{F07FBD3E-2048-44A4-9065-71BF551E2672}
0,Clé supprimée: HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery
0,Clé supprimée: HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery.1
0,Clé supprimée: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd
0,Clé supprimée: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1
0,Clé supprimée: HKLM\Software\Classes\iMesh.AudioCD
0,Clé supprimée: HKLM\Software\Classes\iMesh.Device
0,Clé supprimée: HKLM\Software\Classes\iMesh.file
0,Clé supprimée: HKLM\Software\Classes\AppID\GenericAskToolbar.DLL
1,Clé supprimée: HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
0,Clé supprimée: HKLM\Software\Conduit
0,Clé supprimée: HKLM\Software\Freeze.com
0,Clé supprimée: HKLM\Software\GamesBarSetup
0,Clé supprimée: HKLM\Software\iMesh
0,Clé supprimée: HKCU\Software\Ask.com
0,Clé supprimée: HKCU\Software\AskToolbar
0,Clé supprimée: HKCU\Software\iMesh
0,Clé supprimée: HKCU\Software\AppDataLow\AskBarDis
3,Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
0,Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
0,Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Imesh
0,Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Search
0,Clé supprimée: HKLM\Software\Classes\Applications\iMesh.exe

0,Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{D4027C7F-154A-4066-A1AD-4243D8127440}


============== SCAN ADDITIONNEL ==============

** Mozilla Firefox Version [3.6.6 (fr)] **

-- C:\Documents and Settings\Yves\Application Data\Mozilla\FireFox\Profiles\6hw05v72.default\Prefs.js --
browser.download.lastdir, L:\\les photos
browser.search.defaultenginename, Ask.com
browser.search.selectedengine, Google
browser.startup.homepage, hxxp://www.google.com/webhp?hl=fr
browser.startup.homepage_override.mstone, rv:1.9.2.6

========================================

** Internet Explorer Version [6.0.2900.2180] **

[HKCU\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
Do404Search: 0x01000000
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Show_ToolBar: yes
Start Page: hxxp://fr.msn.com/

[HKLM\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
Start Page: hxxp://fr.msn.com/

[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm

========================================

C:\Program Files\Ad-Remover\Quarantine: 182 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 15 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 20/07/2010 (7964 Octet(s))

Fin à: 16:56:11, 20/07/2010

============== E.O.F ==============
Avatar de l’utilisateur
Alsyia
Nouveau membre
Progression vers le rang suivant:
65%
 
Années en tant que membre
 
Messages: 13
Age: 16
Inscription: 20 Juil 2010 13:20
Sexe: Non spécifié
 

Point(s) : 80
Donner
    unknownunknown



Haut

Re: Redémarrage scan antivir et virus dans la restauration systeme.

Messagede shion-ares » 20 Juil 2010 18:13

Re

as tu un Numero (ex :0x0000098)

fait moi ceci je voudrais vérifier une chose

Utilises ce logiciel de diagnostic :

• Télécharges ZHPDiag
• Laisses toi guider lors de l'installation, il se lancera automatiquement à la fin.
• Cliques sur l'icône représentant une loupe (« Lancer le diagnostic »)
• Enregistres le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
• Héberges le rapport ZHPDiag.txt sur ce site, puis copies/colles le lien fourni dans ta prochaine réponse sur le forum.
Image

Image
Avatar de l’utilisateur
shion-ares
Modérateur
 
Années en tant que membreAnnées en tant que membre
 
Messages: 1266
Age: 42
Inscription: 15 Juil 2009 09:00
Localisation: herbignac
Sexe: Homme
 

Point(s) : 6890
Donner
Nombre de réponses utiles: 66
    unknownunknown



Haut

Re: Redémarrage scan antivir et virus dans la restauration systeme.

Messagede Alsyia » 21 Juil 2010 10:50

Par ici :


http://www.cijoint.fr/cjlink.php?file=c ... Mw9h7a.txt

Pour le numéro , je n'ai pas encore redémarré :(
Avatar de l’utilisateur
Alsyia
Nouveau membre
Progression vers le rang suivant:
65%
 
Années en tant que membre
 
Messages: 13
Age: 16
Inscription: 20 Juil 2010 13:20
Sexe: Non spécifié
 

Point(s) : 80
Donner
    unknownunknown



Haut

Re: Redémarrage scan antivir et virus dans la restauration systeme.

Messagede shion-ares » 21 Juil 2010 12:22

bonjour

ton lien ne marche pas j'ai une erreur copie le rapport directement sur le site STP
Image

Image
Avatar de l’utilisateur
shion-ares
Modérateur
 
Années en tant que membreAnnées en tant que membre
 
Messages: 1266
Age: 42
Inscription: 15 Juil 2009 09:00
Localisation: herbignac
Sexe: Homme
 

Point(s) : 6890
Donner
Nombre de réponses utiles: 66
    unknownunknown



Haut

Re: Redémarrage scan antivir et virus dans la restauration systeme.

Messagede Alsyia » 21 Juil 2010 14:41

Ca marche chez moi --'

Rapport de ZHPDiag v1.26.29 par Nicolas Coolman, Update du 20/07/2010
Run by Yves at 21/07/2010 10:47:11
Web site : http://www.premiumorange.com/zeb-help-p ... pdiag.html
Contact : nicolascoolman@yahoo.fr

---\\ Web Browser
MSIE: Internet Explorer v6.0.2900.2180
MFIE: Mozilla Firefox (3.6.6)

---\\ System Information
Platform : Microsoft Windows XP (5.1.2600) Service Pack 2
Processor: x86 Family 15 Model 6 Stepping 2, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2047 MB (62% free)
System drive C: has 3 GB (2%) free of 117 GB

---\\ Logged in mode
Computer Name: ORDI-MAISON
User Name: Yves
All Users Names: Yves, SUPPORT_388945a0, HelpAssistant, ASPNET, Administrateur,
Unselected Option: O1,O45,O61,O65,O82
Logged in as Administrator

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 3 Go of 117 Go)
D:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
E:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ CD-ROM drive (Not Inserted)
I:\ CD-ROM drive (Not Inserted)
L:\ Hard drive, Flash drive, Thumb drive (Free 144 Go of 349 Go)


---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK


---\\ Processus lanc�s
[MD5.471087B5E1E01CC82604E81EA14781D8] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [602112]
[MD5.4B5AE15E5C73EB4DC8DBEC2788230D41] - (.Apple Inc. - Apple Mobile Device Service.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [144672]
[MD5.3F56903E124E820AEECE6D471583C6C1] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [238888]
[MD5.133F82B6391F3390BECFA429C23FB2BE] - (.CrypKey (Canada) Ltd. - CrypKey License Service.) -- C:\WINDOWS\system32\crypserv.exe [122880]
[MD5.A06EFD4965F8A3F97A8C9A291D032678] - (.Pas de propri�taire - Inkjet Printer/Scanner/Fax Extended Servey.) -- C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [116104]
[MD5.1834C96FB1F9280BCF6DDFA6DE8338BF] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]
[MD5.5D4B38A8D8525356798F5E560C3A3090] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [49152]
[MD5.751961E128DBCC7A32304339C4BDEFF0] - (.Microsoft Corporation - SQL Server Windows NT.) -- C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe [9150464]
[MD5.7D2633295EB6FF2B938185874884059D] - (.Nero AG - Nero BackItUp.) -- C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe [935208]
[MD5.DF10204D7B6E89D067DB97F64C5622D1] - (.Pinnacle Systems - Media Server Host.) -- C:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe [49152]
[MD5.7764D99877E27436E95E4734624C9B45] - (.Sony DADC Austria AG. - SecuROM User Access Service (V7)..) -- C:\WINDOWS\system32\UAService7.exe [122880]
[MD5.E0A449CC140514A0C59FED7F36CEC6C1] - (.Speedbit Ltd. - VideoAcceleratorEngine.) -- C:\PROGRA~1\SPEEDB~1\VideoAcceleratorService.exe [300656]
[MD5.F714D4F456A6B91212966B3CA19F720C] - (.AxBx - Service VirusKeeper antivirus/antispyware.) -- C:\Program Files\AxBx\VirusKeeper 2010 Pro Evaluation\vk_service.exe [1121664]
[MD5.994C5C50B681816AB2EC3CE7B1A5294D] - (.Speedbit Ltd. - VideoAcceleratorEngine.) -- C:\PROGRA~1\SPEEDB~1\VideoAcceleratorEngine.exe [140920]
[MD5.142F1961F6310912D85EA1F606DEEC4B] - (.SFR - Autoconfigurateur WiFi.) -- C:\Program Files\SFR\Kit\WiFi\9wifi.exe [287984]
[MD5.5ADA30D570F877E4F01C8DF67F781E0E] - (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.EXE [16208384]
[MD5.6681780074ADAADECF0CE500C446D464] - (.CANON INC. - Canon My Printer.) -- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [1983816]
[MD5.52DB6CDAC5BC7A1FC884E97C41C91213] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [248040]
[MD5.6B87742F27B087AF7FD4ADC2DB685DE0] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [49152]
[MD5.8DD263210A6D76FBEF3BBCBEFF21A59A] - (.SpeedBit Ltd. - Download Accelerator Plus (DAP).) -- C:\Program Files\DAP\DAP.EXE [2815488]
[MD5.4C08FB7ACB28689B586D986D3F5826CF] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe [49152]
[MD5.E6CC7BCDD9C7D6874F7CA24F9F68E10B] - (.AxBx - VirusKeeper 2009.) -- C:\Program Files\AxBx\VirusKeeper 2010 Pro Evaluation\vk_watchop.exe [418664]
[MD5.CFD00DD5822705BB356F725034A2A774] - (.AxBx - VirusKeeper 2010.) -- C:\Program Files\AxBx\VirusKeeper 2010 Pro Evaluation\viruskeeper.exe [5879240]
[MD5.1EBDCC38CE513F9DC0DC646B7A2039DF] - (.Igor Nys - TrayIt! Helper.) -- L:\BAZARCESLAS\tray it\TrayIt!.exe [204800]
[MD5.8FC4306F0FFAA592BBA29F9273293D22] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [910296]
[MD5.A0002BED9AAB2644437CA4C973AD3AF1] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [14808]
[MD5.7D9142C48C95E9433FEB4C8A5A492999] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [480768]


---\\ Plugins de navigateurs Opera/Firefox(P1/P2)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.3.3".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Mozilla Firefox\Plugins\nppl3260.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - 6.0.12.448.) -- C:\Program Files\Mozilla Firefox\Plugins\nprpjplug.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.5.) -- C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@ahnlab.com/asp/npmkd25aos] - (.Pas de propri�taire - Pas de description.) -- C:\Program Files\AhnLab\ASP\MyKeyDefense 2.5\npmkd25aos.dll (.not file.)
P2 - FPN: [HKLM] [@bittorrent.com/BitTorrentDNA] - (.BitTorrent, Inc. - Delivery Network Acceleration by BitTorrent�.) -- C:\Program Files\DNA\plugins\npbtdna.dll
P2 - FPN: [HKLM] [@canon.com/EPPEX] - (.CANON INC. - CANON iMAGE GATEWAY Album Plugin Utility Module.) -- C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.12.450] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.448] - (.RealNetworks, Inc. - 6.0.12.448.) -- C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.29\npGoogleOneClick8.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=1.0.3] - (.the VideoLAN Team - Version 1.0.3, copyright 1996-2009 The VideoLAN Team<br><a href="http:.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKCU] [@ahnlab.com/asp/npmkd25aos] - (.Pas de propri�taire - Pas de description.) -- C:\Program Files\AhnLab\ASP\MyKeyDefense 2.5\npmkd25aos.dll (.not file.)
P2 - FPN: [HKCU] [@nsroblox.roblox.com/launcher] - (. Roblox Corporation - 0.1.) -- C:\Documents and Settings\Yves\Local Settings\Application Data\RobloxVersions\version-ff6321df121e4477\nproblox.dll
P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll


---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"


---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local


---\\ Internet Explorer URLSearchHook (R3)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Biblioth�que d'objets et de contr�les de do.) (No version) -- %SystemRoot%\System32\shdocvw.dll


---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (.Pas de propri�taire - Pas de description.) -- (.not file.)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: DAPIELoader Class - {FF6C3CF0-4B15-11D1-ABED-709549C10000} . (.SpeedBit Ltd. - Download Accelerator Plus (DAP) MSIE Loader.) -- C:\PROGRA~1\DAP\DAPIEL~1.DLL


---\\ Applications d�marr�es par registre & par dossier(O4)
O4 - HKLM\..\Run: [Autoconfigurateur WiFi SFR] . (.SFR - Autoconfigurateur WiFi.) -- C:\Program Files\SFR\Kit\WiFi\9wifi.exe
O4 - HKLM\..\Run: [RTHDCPL] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\Windows\RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] . (.Realtek Semiconductor Corp. - Realtek Azalia Audio - Event Monitor.) -- C:\Windows\ALCMTR.EXE
O4 - HKLM\..\Run: [CanonMyPrinter] . (.CANON INC. - Canon My Printer.) -- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst� Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [VirusKeeper] . (.AxBx - VirusKeeper 2010.) -- C:\Program Files\AxBx\VirusKeeper 2010 Pro Evaluation\VirusKeeper.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DownloadAccelerator] . (.SpeedBit Ltd. - Download Accelerator Plus (DAP).) -- C:\Program Files\DAP\DAP.exe
O4 - HKLM\..\policies\Explorer: [HonorAutoRunSetting] Data=1 (.not file.)
O4 - HKCU\..\policies\Explorer: [NoDriveTypeAutoRun] Data=144 (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\System32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\System32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\System32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\System32\CTFMON.exe


---\\ Lignes suppl�mentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: &Clean Traces . (.Pas de propri�taire - Pas de description.) -- C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP . (.Pas de propri�taire - Pas de description.) -- C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP . (.Pas de propri�taire - Pas de description.) -- C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~3\Office12\EXCEL.exe
O8 - Extra context menu item: T�l�charger avec IDM . (.Pas de propri�taire - Pas de description.) -- C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: T�l�charger le contenu de video FLV avec IDM . (.Pas de propri�taire - Pas de description.) -- C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: T�l�charger tous les liens avec IDM . (.Pas de propri�taire - Pas de description.) -- C:\Program Files\Internet Download Manager\IEGetAll.htm


---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer � OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} . (.not file.) - (.not file.)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propri�taire - Pas de description.) -- C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe


---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll


---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resourc ... oscan8.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.macromedia.com/pub/sh ... wflash.cab


---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\WINDOWS\System32\Ati2evxx.dll


---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.Pas de propri�taire - Pas de description.) - (.not file.)


---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contr�leur de site Web.) -- C:\WINDOWS\System32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\System32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll


---\\ Cl� de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Biblioth�que de l'interface utilisateur du.) -- C:\WINDOWS\System32\browseui.dll


---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - Apple Mobile Device Service.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart (ATI Smart) . (.Pas de propri�taire - ATI Smart.) - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Crypkey License (Crypkey License) . (.Pas de propri�taire - Pas de description.) - crypserv.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) . (.Pas de propri�taire - Inkjet Printer/Scanner/Fax Extended Servey.) - C:\Program Files\Canon\IJPLM\IJPLMSVC.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: Pinnacle Systems Media Service (PinnacleSys.MediaServer) . (.Pinnacle Systems - Media Server Host.) - C:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) . (.Sony DADC Austria AG. - SecuROM User Access Service (V7)..) - C:\WINDOWS\system32\UAService7.exe
O23 - Service: VideoAcceleratorService (VideoAcceleratorService) . (.Speedbit Ltd. - VideoAcceleratorEngine.) - C:\PROGRA~1\SPEEDB~1\VideoAcceleratorService.exe
O23 - Service: VirusKeeper antivirus/antispyware (vkservice) . (.AxBx - Service VirusKeeper antivirus/antispyware.) - C:\Program Files\AxBx\VirusKeeper 2010 Pro Evaluation\vk_service.exe


---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job


---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Personnalisation du navigateur - >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS . (.Pas de propri�taire - Pas de description.) -- RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10e.ocx


---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: NetworkX (NetworkX) . (.Pas de propri�taire - Pas de description.) - C:\WINDOWS\system32\ckldrv.sys


---\\ Logiciels install�s (O42)
O42 - Logiciel: 7-Zip 9.09 beta - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: ATI - Utilitaire de d�sinstallation du logiciel - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: ATI AVIVO Codecs - (.ATI Technologies Inc..) [HKLM]
O42 - Logiciel: ATI Catalyst Control Center - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: ATI Display Driver - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: ATI HYDRAVISION - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: ATI Parental Control & Encoder - (.Nom de votre soci�t�.) [HKLM]
O42 - Logiciel: ATI Problem Report Wizard - (.ATI Technologies.) [HKLM]
O42 - Logiciel: AVS Update Manager 1.0 - (.Online Media Technologies Ltd..) [HKLM]
O42 - Logiciel: AVS Video Converter 6 - (.Online Media Technologies Ltd..) [HKLM]
O42 - Logiciel: AVS4YOU Software Navigator 1.4 - (.Online Media Technologies Ltd..) [HKLM]
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM]
O42 - Logiciel: Adobe After Effects CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe After Effects CS4 Presets - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Anchor Service CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Bridge CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe CMaps CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe CSI CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Color - Photoshop Specific CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Color EU Recommended Settings CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Color JA Extra Settings CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Color NA Extra Settings CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Color Video Profiles AE CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Color Video Profiles CS CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Default Language CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Device Central CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Dynamiclink Support - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe ExtendScript Toolkit CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Extension Manager CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Fonts All - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Linguistics CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Media Encoder CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Media Encoder CS4 Additional Exporter - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe MotionPicture Color Files CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Output Module - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe PDF Library Files CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Photoshop CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Photoshop CS4 Support - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Reader 9.3.3 - Fran�ais - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Search for Help - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Service Manager Extension - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Shockwave Player 11.5 - (.Adobe Systems, Inc..) [HKLM]
O42 - Logiciel: Adobe Type Support CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Update Manager CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe WinSoft Linguistics Plugin - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe XMP Panels CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: AdobeColorCommonSetCMYK - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: AdobeColorCommonSetRGB - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM]
O42 - Logiciel: Akamai NetSession Interface - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Allods Online 1.0.05.41 - (.gPotato.) [HKLM]
O42 - Logiciel: Ancient Quest of Saqqarah - (.City Interactive.) [HKLM]
O42 - Logiciel: Ancient Quest of Saqqarah - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM]
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM]
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM]
O42 - Logiciel: Architecte 3D Silver Advanced - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Audacity 1.3.11 (Unicode) - (.Audacity Team.) [HKLM]
O42 - Logiciel: Ballance - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Big Fish Games: Game Manager - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Boilsoft Video Joiner 5.32 - (.Boilsoft, Inc..) [HKLM]
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM]
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM]
O42 - Logiciel: Canon Inkjet Printer/Scanner/Fax Extended Survey Program - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Canon MP Navigator EX 3.0 - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Canon MP550 series MP Drivers - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Canon Utilities My Printer - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Canon Utilities Solution Menu - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM]
O42 - Logiciel: Compel Adaptec WinASPI - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Connect - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Content Transfer - (.Sony Corporation.) [HKLM]
O42 - Logiciel: Cossacks II - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: DNA - (.BitTorrent Inc..) [HKCU]
O42 - Logiciel: DScaler 5 Mpeg Decoders - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: DVD Decrypter 3.5.4.0 Fr - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Dark Parables: La Mal�diction d'�glantine - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Didapages 1.1 - (.Carlos Guedes.) [HKLM]
O42 - Logiciel: DolbyFiles - (.Nero AG.) [HKLM]
O42 - Logiciel: Download Accelerator Plus (DAP) - (.Speedbit Ltd..) [HKLM]
O42 - Logiciel: Driver Checker v2.7.4 - (.DriverChecker.com, Inc..) [HKLM]
O42 - Logiciel: Driver Genius Professional Edition - (.Driver-Soft Inc..) [HKLM]
O42 - Logiciel: DriverEasy version 2.2.0 - (.Easeware.) [HKLM]
O42 - Logiciel: Droppix Recorder - (.Droppix.) [HKLM]
O42 - Logiciel: EASEUS Data Recovery Wizard Professional 4.3.6 - (.EASEUS.) [HKLM]
O42 - Logiciel: EVEREST Home Edition v2.20 - (.Lavalys Inc.) [HKLM]
O42 - Logiciel: Elementals - The Magic Key - (.Oberon Media.) [HKLM]
O42 - Logiciel: Empire Earth - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Enregistrement utilisateur de Canon MP550 series - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Escape the Lost Kingdom - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Fantastic Farm - (.Kristanix Games.) [HKLM]
O42 - Logiciel: Feneris Video Downloader - (.Feneris.) [HKLM]
O42 - Logiciel: FileZilla Client 3.3.2.1 - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Froggy 3.0.0.1 - (.German IT Development Ltd..) [HKLM]
O42 - Logiciel: GIMP 2.6.8 - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: GameSpy Arcade - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Genheral 6 - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM]
O42 - Logiciel: Google�Earth - (.Google.) [HKLM]
O42 - Logiciel: HP USB Disk Storage Format Tool - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: High Definition Audio Driver Package - KB888111 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Hospital Tycoon - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Hotfix for Windows XP (KB926239) - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: ImgBurn 2.3.2.0 Fr - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Internet Download Manager - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: IsoBuster 2.8 - (.Smart Projects.) [HKLM]
O42 - Logiciel: Java(TM) 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM]
O42 - Logiciel: Jewel Charm - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Jewel Charm . - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: K!TV - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: K-Lite Mega Codec Pack 5.5.1 - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: King�s Bounty: The Legend (Retirer seulement) - (.Nobilis.) [HKLM]
O42 - Logiciel: LAME v3.98.2 for Audacity - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: LEGO Digital Designer - (.Pas de propri�taire.) [HKCU]
O42 - Logiciel: LEGO Star Wars - (.Nom de votre soci�t�.) [HKLM]
O42 - Logiciel: LEGO� Harry Potter�: Ann�es 1 � 4 - (.WB Games.) [HKLM]
O42 - Logiciel: Labtec WebCam - (.Labtec.) [HKLM]
O42 - Logiciel: LeClerc Photogenie - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Lecteur Windows Media�11 - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Les h�ros de la R�publique - (.LucasArts.) [HKLM]
O42 - Logiciel: MKVtoolnix 2.0.2-1 - (.Moritz Bunkus.) [HKLM]
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM]
O42 - Logiciel: MSXML 6 Service Pack 2 (KB973686) - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM]
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM]
O42 - Logiciel: ManyCam 2.4 (remove only) - (.ManyCam LLC.) [HKLM]
O42 - Logiciel: Marvell Miniport Driver - (.Marvell.) [HKLM]
O42 - Logiciel: Menu Templates - Starter Kit - (.Nero AG.) [HKLM]
O42 - Logiciel: Micro Application - PrintPratic - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Micro Application - PrintPratic 4 - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM]
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB953297) - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Games for Windows - LIVE - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Groove MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft SQL Server Desktop Engine (PINNACLESYS) - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: MozBackup 1.4.10 - (.Pavel Cvrcek.) [HKLM]
O42 - Logiciel: Mozilla Firefox (3.6.6) - (.Mozilla.) [HKLM]
O42 - Logiciel: Mozilla Thunderbird (2.0.0.24) - (.Mozilla.) [HKLM]
O42 - Logiciel: NDSROM Player - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: NVIDIA PhysX v8.05.26 - (.NVIDIA Corporation.) [HKLM]
O42 - Logiciel: NWZ-E440 WALKMAN Guide - (.Sony Corporation.) [HKLM]
O42 - Logiciel: Neffy 1,3,29,0 - (.CDNetworks.) [HKLM]
O42 - Logiciel: Nero 9 Trial - (.Nero AG.) [HKLM]
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM]
O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM]
O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM]
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM]
O42 - Logiciel: Nero Recode - (.Nero AG.) [HKLM]
O42 - Logiciel: Nero Rescue Agent - (.Nero AG.) [HKLM]
O42 - Logiciel: Nero ShowTime - (.Nero AG.) [HKLM]
O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM]
O42 - Logiciel: Nero Vision - (.Nero AG.) [HKLM]
O42 - Logiciel: Nero WaveEditor - (.Nero AG.) [HKLM]
O42 - Logiciel: NeroBurningROM - (.Nero AG.) [HKLM]
O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM]
O42 - Logiciel: No-IP.com DUC (remove only) - (.Vitalwerks & No-IP.com.) [HKLM]
O42 - Logiciel: Notepad++ - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: NudgeMania 4.0 for Messenger - (.Sherv.NET.) [HKLM]
O42 - Logiciel: OpenOffice.org 3.1 - (.OpenOffice.org.) [HKLM]
O42 - Logiciel: Outil de t�l�chargement Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: PC Inspector File Recovery - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: PDF Settings CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: PHOTOfunSTUDIO - (.Panasonic.) [HKLM]
O42 - Logiciel: Pando Media Booster - (.Pando Networks Inc..) [HKLM]
O42 - Logiciel: Pcsx2 0.9.6 - (.Pcsx2 Team.) [HKLM]
O42 - Logiciel: PhotoFiltre - (.Pas de propri�taire.) [HKCU]
O42 - Logiciel: Photoshop Camera Raw - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Pinnacle MediaCenter - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Pinnacle MediaServer - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Pixel Bender Toolkit - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Pouchin TV Mod - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: PowerQuest PartitionMagic 8.0 - (.PowerQuest.) [HKLM]
O42 - Logiciel: PremiumSoft Navicat 8.0 Lite for MySQL - (.PremiumSoft CyberTech Ltd..) [HKLM]
O42 - Logiciel: Programme de gestion Camera de Logitech� - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM]
O42 - Logiciel: R-Studio 4.6 - (.R-Tools Technology Inc..) [HKLM]
O42 - Logiciel: RGSS de RMXP version 1.0.1 - (.Bodom-Child - RaBBi(YUME TEAM).) [HKLM]
O42 - Logiciel: RMXP version 1.0.0.1 - (.Bodom-Child - RaBBi(YUME TEAM).) [HKLM]
O42 - Logiciel: RPG Maker VX 1.02 - (.Oniro.) [HKLM]
O42 - Logiciel: Realtek AC'97 Audio - (.Realtek Semiconductor Corp..) [HKLM]
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM]
O42 - Logiciel: Roblox for Yves - (.ROBLOX Corporation.) [HKCU]
O42 - Logiciel: Runes of Magic - (.Frogster Interactive Pictures.) [HKLM]
O42 - Logiciel: Runtime Files Pack 3 - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: SFR - Kit de connexion - (.SFR.) [HKLM]
O42 - Logiciel: SUPER � Version 2010.bld.38 (May 2, 2010) - (.eRightSoft.) [HKLM]
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM]
O42 - Logiciel: SpeedBit Video Accelerator - (.SpeedBit Ltd..) [HKLM]
O42 - Logiciel: SpeedFan (remove only) - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Sqirlz Morph - (.xiberpix.) [HKLM]
O42 - Logiciel: StarTopia - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Subtitle Workshop 2.51 - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Suite Shared Configuration CS4 - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: System Requirements Lab - (.Husdawg, LLC.) [HKLM]
O42 - Logiciel: The Dark Hills of Cherai - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM]
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: VDMSound 2.0.4 - (.VDMSound Project.) [HKLM]
O42 - Logiciel: VLC media player 1.0.3 - (.VideoLAN Team.) [HKLM]
O42 - Logiciel: Video Download Studio 3.3.5 - (.aHisoft.) [HKLM]
O42 - Logiciel: VirtualDrive Network Server - (.FarStone Technology Inc..) [HKLM]
O42 - Logiciel: VirusKeeper 2010 Pro Evaluation - (.AxBx.) [HKLM]
O42 - Logiciel: Visual Basic 4 Runtime Files - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: WampServer 2.0 - (.Romain Bourdon (Roms).) [HKLM]
O42 - Logiciel: WinISO 5.3 - (.WinISO Computing Inc..) [HKLM]
O42 - Logiciel: Windows Imaging Component - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Installer 3.1 (KB893803) - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM]
O42 - Logiciel: Windows Presentation Foundation - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows XP Service Pack 2 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: World of Warcraft - (.Blizzard Entertainment.) [HKLM]
O42 - Logiciel: World of Warcraft Model Viewer - (.WoWModelViewer.org.) [HKLM]
O42 - Logiciel: Wow Cartographe 1.10 - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: XML Paper Specification Shared Components Pack 1.0 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: XnView 1.97 - (.Gougelet Pierre-e.) [HKLM]
O42 - Logiciel: e-Carte Bleue Caisse d'Epargne - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: eMule - (.Pas de propri�taire.) [HKLM]
O42 - Logiciel: ffdshow - (.Milan Cutka.) [HKLM]
O42 - Logiciel: kuler - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM]
O42 - Logiciel: oggcodecs - (.illiminable.) [HKLM]
O42 - Logiciel: �Torrent - (.Pas de propri�taire.) [HKLM]

---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-ZIP]
[HKCU\Software\ABBYY]
[HKCU\Software\AC3Filter]
[HKCU\Software\ACD Systems]
[HKCU\Software\ALWIL Software]
[HKCU\Software\ATI Technologies Inc.]
[HKCU\Software\ATI]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Ad-Remover]
[HKCU\Software\Adobe]
[HKCU\Software\Ahead]
[HKCU\Software\AhnLab]
[HKCU\Software\Alawar]
[HKCU\Software\AppDataLow\Software\Macromedia]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\ArcSoft]
[HKCU\Software\Artogon]
[HKCU\Software\Audacity]
[HKCU\Software\Aurigma]
[HKCU\Software\Big Fish Games]
[HKCU\Software\BitMartInc]
[HKCU\Software\BitTorrent]
[HKCU\Software\Blacksun]
[HKCU\Software\Blizzard Entertainment]
[HKCU\Software\Boilsoft]
[HKCU\Software\Borland]
[HKCU\Software\Bugsplat]
[HKCU\Software\CDDB]
[HKCU\Software\CDV Software Entertainment AG]
[HKCU\Software\CanonBJ]
[HKCU\Software\Canon]
[HKCU\Software\ClassesB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Codeminion]
[HKCU\Software\CoreVorbis]
[HKCU\Software\CoyoteReplay]
[HKCU\Software\Cyberlink]
[HKCU\Software\Cygnus Solutions]
[HKCU\Software\DAMN]
[HKCU\Software\DScaler5]
[HKCU\Software\DT Soft]
[HKCU\Software\DVD Decrypter]
[HKCU\Software\DivXNetworks]
[HKCU\Software\DownloadManager]
[HKCU\Software\Driver Checker]
[HKCU\Software\Droppix]
[HKCU\Software\EMME]
[HKCU\Software\EasySystems]
[HKCU\Software\Emulators]
[HKCU\Software\Enterbrain]
[HKCU\Software\Flock]
[HKCU\Software\Freeware]
[HKCU\Software\Fugazo]
[HKCU\Software\GAMEON]
[HKCU\Software\GNU]
[HKCU\Software\GOG]
[HKCU\Software\GSC Game World]
[HKCU\Software\GSCGameWorld]
[HKCU\Software\GSpot Appliance Corp]
[HKCU\Software\Gabest]
[HKCU\Software\GameSpy]
[HKCU\Software\German IT Development]
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\INCAInternet]
[HKCU\Software\Illustrate]
[HKCU\Software\ImgBurn]
[HKCU\Software\Indomit Software]
[HKCU\Software\Infogrames]
[HKCU\Software\Intel]
[HKCU\Software\IronCode]
[HKCU\Software\JEDI-VCL]
[HKCU\Software\JavaSoft]
[HKCU\Software\JayteeMaster2003]
[HKCU\Software\Jetsoft]
[HKCU\Software\JoyBits]
[HKCU\Software\Kamuse Inc.]
[HKCU\Software\Katauri Interactive]
[HKCU\Software\Labtec]
[HKCU\Software\Lavalys]
[HKCU\Software\LeClerc]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Logitech]
[HKCU\Software\MONOGRAM]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\ManyCam 2.2]
[HKCU\Software\ManyCam 2.4]
[HKCU\Software\MediaInfo]
[HKCU\Software\Micro Application]
[HKCU\Software\Mozilla Backup]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NSWB]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Nival Online]
[HKCU\Software\NudgeMania]
[HKCU\Software\Nys]
[HKCU\Software\ODBC]
[HKCU\Software\Oberon Media]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\PS2Eplugin]
[HKCU\Software\Panasonic]
[HKCU\Software\Pando Networks]
[HKCU\Software\Pinnacle Systems]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\PowerQuest]
[HKCU\Software\PremiumSoft]
[HKCU\Software\QUAD Utilities]
[HKCU\Software\QuakeStuff]
[HKCU\Software\R-TT]
[HKCU\Software\ROBLOX Corporation]
[HKCU\Software\RealNetworks]
[HKCU\Software\Realtek]
[HKCU\Software\RobloxReg]
[HKCU\Software\SCC]
[HKCU\Software\SSSI]
[HKCU\Software\Saqqarah]
[HKCU\Software\ShadowFlare]
[HKCU\Software\Sherv.NET]
[HKCU\Software\Shiny Tales]
[HKCU\Software\Smart Projects]
[HKCU\Software\Softonic]
[HKCU\Software\Sony Corporation]
[HKCU\Software\SpeedBit]
[HKCU\Software\SpeedFan]
[HKCU\Software\SpoonInstall]
[HKCU\Software\System Requirements Lab]
[HKCU\Software\Test3D]
[HKCU\Software\TomTom]
[HKCU\Software\VOB]
[HKCU\Software\WB Games]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WoWModelViewer.org]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\cybelsoft]
[HKCU\Software\eMule]
[HKCU\Software\keyhole.com]
[HKCU\Software\madFlac]
[HKCU\Software\mkvmergeGUI]
[HKCU\Software\perforce]
[HKCU\Software\xiberpix]
[HKLM\Software\ABBYY]
[HKLM\Software\ACD Systems]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ALWIL Software]
[HKLM\Software\ATI Technologies Inc.]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Acclaim]
[HKLM\Software\Adaptec]
[HKLM\Software\Adobe]
[HKLM\Software\Ahnlab]
[HKLM\Software\Alawar]
[HKLM\Software\AppDataLow]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\ArcSoft]
[HKLM\Software\Audible]
[HKLM\Software\AviSynth]
[HKLM\Software\Ballance]
[HKLM\Software\Big Fish Games]
[HKLM\Software\BitMartInc]
[HKLM\Software\Blizzard Entertainment]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CDDB]
[HKLM\Software\CDNetworks]
[HKLM\Software\Camara]
[HKLM\Software\Canon]
[HKLM\Software\City Interactive]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Codec Tweak Tool]
[HKLM\Software\Codemasters]
[HKLM\Software\Convar Deutschland GmbH]
[HKLM\Software\Cyberlink]
[HKLM\Software\Cygnus Solutions]
[HKLM\Software\Cyparade]
[HKLM\Software\DAMN]
[HKLM\Software\DT Soft]
[HKLM\Software\DeathSoft]
[HKLM\Software\DivXNetworks]
[HKLM\Software\Driver-Soft]
[HKLM\Software\Droppix]
[HKLM\Software\EA Games]
[HKLM\Software\EASEUS]
[HKLM\Software\Electronic Arts]
[HKLM\Software\Enterbrain]
[HKLM\Software\FarStone]
[HKLM\Software\FileZilla 3]
[HKLM\Software\Frogster Interactive Pictures]
[HKLM\Software\FullCircle]
[HKLM\Software\GEAR Software]
[HKLM\Software\GNU]
[HKLM\Software\Gabest]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\HaaliMkx]
[HKLM\Software\Hercules Technologies]
[HKLM\Software\Hercules]
[HKLM\Software\Hewlett-Packard Company]
[HKLM\Software\ICS Consultants]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\KLCodecPack]
[HKLM\Software\Kroll Ontrack]
[HKLM\Software\Lame for Audacity]
[HKLM\Software\Lexmark]
[HKLM\Software\Licenses]
[HKLM\Software\Lidan]
[HKLM\Software\LightScribe]
[HKLM\Software\Logitech]
[HKLM\Software\LucasArts]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\Marvell]
[HKLM\Software\Micro Application]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Mucky Foot]
[HKLM\Software\MusicNet]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\NeoDivx Suite]
[HKLM\Software\Nero]
[HKLM\Software\Neuf]
[HKLM\Software\ODBC]
[HKLM\Software\Oberon Media]
[HKLM\Software\Ontrack]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\Panasonic]
[HKLM\Software\Pando Networks]
[HKLM\Software\Pinnacle Systems]
[HKLM\Software\Policies]
[HKLM\Software\PowerQuest]
[HKLM\Software\Program Groups]
[HKLM\Software\R-TT]
[HKLM\Software\RealNetworks]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Runtime Software]
[HKLM\Software\S3R521]
[HKLM\Software\SCC]
[HKLM\Software\Schlumberger]
[HKLM\Software\Secure]
[HKLM\Software\Sierra On-Line]
[HKLM\Software\Sierra OnLine]
[HKLM\Software\Sierra]
[HKLM\Software\Sony Corporation]
[HKLM\Software\SpeedBit]
[HKLM\Software\Stainless Steel Studios]
[HKLM\Software\Sun Microsystems]
[HKLM\Software\Thrustmaster]
[HKLM\Software\Trad-FR]
[HKLM\Software\TrendMicro]
[HKLM\Software\URUSoft]
[HKLM\Software\VOB]
[HKLM\Software\VideoLAN]
[HKLM\Software\Vitalwerks]
[HKLM\Software\WB Games]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\Windows]
[HKLM\Software\Wizet]
[HKLM\Software\ZSMC]
[HKLM\Software\cybelsoft]
[HKLM\Software\e-Carte Bleue Caisse d'Epargne]
[HKLM\Software\illiminable]
[HKLM\Software\mozilla.org]
[HKLM\Software\optimidata]
[HKLM\Software\perforce]
[HKLM\Software\xiberpix]


---\\ Contenu des dossiers Program Files (O43)
O43 - CFD:Common File Directory ----D- C:\Program Files\7-Zip
O43 - CFD:Common File Directory ----D- C:\Program Files\ABBYY FineReader 6.0
O43 - CFD:Common File Directory ----D- C:\Program Files\ACD Systems
O43 - CFD:Common File Directory ----D- C:\Program Files\Ad-Remover
O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\AGEIA Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files\aHisoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Ancient Quest of Saqqarah
O43 - CFD:Common File Directory ----D- C:\Program Files\Apple Software Update
O43 - CFD:Common File Directory ----D- C:\Program Files\Architecte_3D_Silver_Advanced
O43 - CFD:Common File Directory ----D- C:\Program Files\ATI Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files\Audacity 1.3 Beta (Unicode)
O43 - CFD:Common File Directory ----D- C:\Program Files\AviSynth 2.5
O43 - CFD:Common File Directory ----D- C:\Program Files\AVS4YOU
O43 - CFD:Common File Directory ----D- C:\Program Files\AxBx
O43 - CFD:Common File Directory ----D- C:\Program Files\Ballance
O43 - CFD:Common File Directory ----D- C:\Program Files\bfgclient
O43 - CFD:Common File Directory ----D- C:\Program Files\BinaryBiz
O43 - CFD:Common File Directory ----D- C:\Program Files\Bodom-Child - RaBBi
O43 - CFD:Common File Directory ----D- C:\Program Files\Boilsoft Video Joiner
O43 - CFD:Common File Directory ----D- C:\Program Files\Bonjour
O43 - CFD:Common File Directory ----D- C:\Program Files\Canon
O43 - CFD:Common File Directory ----D- C:\Program Files\CartaGoGo
O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner
O43 - CFD:Common File Directory ----D- C:\Program Files\City Interactive
O43 - CFD:Common File Directory ----D- C:\Program Files\Codemasters
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files
O43 - CFD:Common File Directory ----D- C:\Program Files\ComPlus Applications
O43 - CFD:Common File Directory ----D- C:\Program Files\Cybertek Games
O43 - CFD:Common File Directory ----D- C:\Program Files\DAEMON Tools Lite
O43 - CFD:Common File Directory ----D- C:\Program Files\DAMN NFO Viewer
O43 - CFD:Common File Directory ----D- C:\Program Files\DAP
O43 - CFD:Common File Directory ----D- C:\Program Files\Dark Parables - La Malediction d'Eglantine
O43 - CFD:Common File Directory ----D- C:\Program Files\Didapages
O43 - CFD:Common File Directory ----D- C:\Program Files\directx
O43 - CFD:Common File Directory ----D- C:\Program Files\DivX
O43 - CFD:Common File Directory ----D- C:\Program Files\DNA
O43 - CFD:Common File Directory ----D- C:\Program Files\Driver Checker
O43 - CFD:Common File Directory ----D- C:\Program Files\Driver-Soft
O43 - CFD:Common File Directory ----D- C:\Program Files\Droppix
O43 - CFD:Common File Directory ----D- C:\Program Files\DScaler5
O43 - CFD:Common File Directory ----D- C:\Program Files\DVD Decrypter
O43 - CFD:Common File Directory ----D- C:\Program Files\e-Carte Bleue Caisse d'Epargne
O43 - CFD:Common File Directory ----D- C:\Program Files\EASEUS
O43 - CFD:Common File Directory ----D- C:\Program Files\Easeware
O43 - CFD:Common File Directory ----D- C:\Program Files\Eidos Interactive
O43 - CFD:Common File Directory ----D- C:\Program Files\eMule
O43 - CFD:Common File Directory ----D- C:\Program Files\eRightSoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Escape the Lost Kingdom
O43 - CFD:Common File Directory ----D- C:\Program Files\EtiketaGoGo
O43 - CFD:Common File Directory ----D- C:\Program Files\everest
O43 - CFD:Common File Directory ----D- C:\Program Files\Feneris
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers communs
O43 - CFD:Common File Directory ----D- C:\Program Files\FileZilla FTP Client
O43 - CFD:Common File Directory ----D- C:\Program Files\Froggy
O43 - CFD:Common File Directory ----D- C:\Program Files\GameSpy Arcade
O43 - CFD:Common File Directory ----D- C:\Program Files\Genheral 5
O43 - CFD:Common File Directory ----D- C:\Program Files\GIMP-2.0
O43 - CFD:Common File Directory ----D- C:\Program Files\Google
O43 - CFD:Common File Directory ----D- C:\Program Files\illiminable
O43 - CFD:Common File Directory ----D- C:\Program Files\Illustrate
O43 - CFD:Common File Directory ----D- C:\Program Files\ImgBurn
O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD:Common File Directory ----D- C:\Program Files\Intel Desktop Board
O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Download Manager
O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer
O43 - CFD:Common File Directory ----D- C:\Program Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\Jewel Charm
O43 - CFD:Common File Directory ----D- C:\Program Files\JRE
O43 - CFD:Common File Directory ----D- C:\Program Files\K!TV
O43 - CFD:Common File Directory ----D- C:\Program Files\K-Lite Codec Pack
O43 - CFD:Common File Directory ----D- C:\Program Files\Lame for Audacity
O43 - CFD:Common File Directory ----D- C:\Program Files\Lavalys
O43 - CFD:Common File Directory ----D- C:\Program Files\LeClerc
O43 - CFD:Common File Directory ----D- C:\Program Files\LEGO Company
O43 - CFD:Common File Directory ----D- C:\Program Files\Livre Album Fuji Photo
O43 - CFD:Common File Directory ----D- C:\Program Files\Logitech
O43 - CFD:Common File Directory ----D- C:\Program Files\LucasArts
O43 - CFD:Common File Directory ----D- C:\Program Files\ma-config.com
O43 - CFD:Common File Directory ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD:Common File Directory ----D- C:\Program Files\ManyCam 2.4
O43 - CFD:Common File Directory ----D- C:\Program Files\Marvell
O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger
O43 - CFD:Common File Directory ----D- C:\Program Files\Micro Application
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft
O43 - CFD:Common File Directory ----D- C:\Program Files\microsoft frontpage
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Games for Windows - LIVE
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft SQL Server
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Visual Studio
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Works
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft.NET
O43 - CFD:Common File Directory ----D- C:\Program Files\MKVtoolnix
O43 - CFD:Common File Directory ----D- C:\Program Files\Movie Maker
O43 - CFD:Common File Directory ----D- C:\Program Files\MozBackup
O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox
O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox(2)
O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Thunderbird
O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Thunderbird(2)
O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild
O43 - CFD:Common File Directory ----D- C:\Program Files\MSN
O43 - CFD:Common File Directory ----D- C:\Program Files\MSN Gaming Zone
O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 6.0
O43 - CFD:Common File Directory ----D- C:\Program Files\NDSROM Player
O43 - CFD:Common File Directory ----D- C:\Program Files\Neffy
O43 - CFD:Common File Directory ----D- C:\Program Files\Nero
O43 - CFD:Common File Directory ----D- C:\Program Files\NetMeeting
O43 - CFD:Common File Directory ----D- C:\Program Files\No-IP
O43 - CFD:Common File Directory ----D- C:\Program Files\Nobilis
O43 - CFD:Common File Directory ----D- C:\Program Files\Notepad++
O43 - CFD:Common File Directory ----D- C:\Program Files\NudgeMania
O43 - CFD:Common File Directory ----D- C:\Program Files\OpenOffice.org 3
O43 - CFD:Common File Directory ----D- C:\Program Files\orange
O43 - CFD:Common File Directory ----D- C:\Program Files\Outlook Express
O43 - CFD:Common File Directory ----D- C:\Program Files\Panasonic
O43 - CFD:Common File Directory ----D- C:\Program Files\Pando Networks
O43 - CFD:Common File Directory ----D- C:\Program Files\PC Inspector File Recovery
O43 - CFD:Common File Directory ----D- C:\Program Files\Pcsx2
O43 - CFD:Common File Directory ----D- C:\Program Files\PhotoFiltre
O43 - CFD:Common File Directory ----D- C:\Program Files\Pinnacle
O43 - CFD:Common File Directory ----D- C:\Program Files\Pouchin TV Mod
O43 - CFD:Common File Directory ----D- C:\Program Files\PowerQuest
O43 - CFD:Common File Directory ----D- C:\Program Files\PremiumSoft
O43 - CFD:Common File Directory ----D- C:\Program Files\QuickTime
O43 - CFD:Common File Directory ----D- C:\Program Files\R-Studio
O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek
O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek AC97
O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies
O43 - CFD:Common File Directory ----D- C:\Program Files\RPG Maker VX
O43 - CFD:Common File Directory ----D- C:\Program Files\Services en ligne
O43 - CFD:Common File Directory ----D- C:\Program Files\SFR
O43 - CFD:Common File Directory ----D- C:\Program Files\Smart Projects
O43 - CFD:Common File Directory ----D- C:\Program Files\Sony
O43 - CFD:Common File Directory ----D- C:\Program Files\SpeedBit Video Accelerator
O43 - CFD:Common File Directory ----D- C:\Program Files\SpeedFan
O43 - CFD:Common File Directory ----D- C:\Program Files\Sqirlz Morph
O43 - CFD:Common File Directory ----D- C:\Program Files\Stellar Phoenix Windows Data Recovery
O43 - CFD:Common File Directory ----D- C:\Program Files\SystemRequirementsLab
O43 - CFD:Common File Directory ----D- C:\Program Files\The Dark Hills of Cherai
O43 - CFD:Common File Directory ----D- C:\Program Files\TomTom DesktopSuite
O43 - CFD:Common File Directory ----D- C:\Program Files\TomTom International B.V
O43 - CFD:Common File Directory ----D- C:\Program Files\trend micro
O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information
O43 - CFD:Common File Directory ----D- C:\Program Files\URUSoft
O43 - CFD:Common File Directory ----D- C:\Program Files\uTorrent
O43 - CFD:Common File Directory ----D- C:\Program Files\VDMSound
O43 - CFD:Common File Directory ----D- C:\Program Files\VideoLAN
O43 - CFD:Common File Directory ----D- C:\Program Files\WB Games
O43 - CFD:Common File Directory ----D- C:\Program Files\WinASPI
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live SkyDrive
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Connect 2
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT
O43 - CFD:Common File Directory --H-D- C:\Program Files\WindowsUpdate
O43 - CFD:Common File Directory ----D- C:\Program Files\WinISO
O43 - CFD:Common File Directory ----D- C:\Program Files\World of Warcraft Model Viewer
O43 - CFD:Common File Directory ----D- C:\Program Files\WowCartographe
O43 - CFD:Common File Directory ----D- C:\Program Files\xerox
O43 - CFD:Common File Directory ----D- C:\Program Files\XnView
O43 - CFD:Common File Directory ----D- C:\Program Files\Yahoo!
O43 - CFD:Common File Directory ----D- C:\Program Files\ZHPDiag
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\INCA Shared


---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.00000000000000000000000000000000] - 20/07/2010 - 16:05:58 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\WindowsUpdate.log [1242749]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 20/07/2010 - 16:05:12 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\0.log [0]
O44 - LFC:[MD5.00000000000000000000000000000000] - 20/07/2010 - 16:05:09 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\wiadebug.log [159]
O44 - LFC:[MD5.8067C38528709F6D89D17A151B910899] - 20/07/2010 - 16:05:08 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\System32\CompiledAdapter [49152]
O44 - LFC:[MD5.00000000000000000000000000000000] - 20/07/2010 - 16:05:06 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.0B8A0CD28016669BF82A5613DCF768E1] - 20/07/2010 - 16:05:00 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\error.log [620]
O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 20/07/2010 - 16:04:55 -S-A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\bootstat.dat [2048]
O44 - LFC:[MD5.6A28C0A2880D89BBCE158C0E0DAF8497] - 20/07/2010 - 16:04:42 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\errord.log [135]
O44 - LFC:[MD5.00000000000000000000000000000000] - 20/07/2010 - 16:03:43 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\SchedLgU.Txt [32320]
O44 - LFC:[MD5.72826C2CB6ED02BA4103E9BC5B2E9500] - 20/07/2010 - 15:56:12 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\Ad-Report-CLEAN[1].txt [9256]
O44 - LFC:[MD5.27BEF0780B3CC7D6EDBA23DBE2AF2C6A] - 20/07/2010 - 09:11:23 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\setupapi.log [948]
O44 - LFC:[MD5.A55BAA21678195A6365B4A0AE3BEBDCE] - 20/07/2010 - 08:25:40 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\System32\wpa.dbl [13646]
O44 - LFC:[MD5.865865CBD528D8DAF8DE8DE35C8D0CFA] - 17/07/2010 - 08:02:52 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\System32\FNTCACHE.DAT [2247096]
O44 - LFC:[MD5.EF487606795CE65B2C3482D4D62B8617] - 12/07/2010 - 13:04:57 ---A- . (.Sony DADC Austria AG. - SecuROM context menu for Explorer..) -- C:\WINDOWS\System32\CmdLineExt.dll [108144]
O44 - LFC:[MD5.BC9496F800483B4688A10EA0409A1961] - 25/06/2010 - 14:10:55 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\System32\crash [4096]
O44 - LFC:[MD5.B5BC2576C8E57FD634818638CB935332] - 24/06/2010 - 16:39:30 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\SIERRA.INI [256]


---\\ Op�rations et fonctions au d�marrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL


---\\ Export de cl� d'application autoris�e (ECAA) (O47)
O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau � distance de Microsoft�.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Cyanide\Dungeon Party\DungeonParty.exe" [Enabled] .(.Pas de propri�taire - Pas de description.) (.not file.) -- C:\Program Files\Cyanide\Dungeon Party\DungeonParty.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Pinnacle\MediaCenter\PMC.exe" [Enabled] .(.Pas de propri�taire - Pas de description.) (.not file.) -- C:\Program Files\Pinnacle\MediaCenter\PMC.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Pinnacle\MediaCenter\PSST.exe" [Enabled] .(.Pinnacle Systems - PSST.) (.not file.) -- C:\Program Files\Pinnacle\MediaCenter\PSST.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Pinnacle\Shared Files\Programs\MediaManager\PMSManager.exe" [Enabled] .(.Pinnacle Systems - .) (.not file.) -- C:\Program Files\Pinnacle\Shared Files\Programs\MediaManager\PMSManager.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Pinnacle\MediaCenter\PMSInstallInit.exe" [Enabled] .(.Pas de propri�taire - Pas de description.) (.not file.) -- C:\Program Files\Pinnacle\MediaCenter\PMSInstallInit.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Pinnacle\MediaCenter\PMC.Tvtv.Wizard.exe" [Enabled] .(.Pinnacle Systems - Pas de description.) (.not file.) -- C:\Program Files\Pinnacle\MediaCenter\PMC.Tvtv.Wizard.exe
O47 - AAKE:Key Export SP - "C:\Program Files\eMule\emule.exe" [Enabled] .(.http://www.emule-project.net - eMule.) (.not file.) -- C:\Program Files\eMule\emule.exe
O47 - AAKE:Key Export SP - "C:\Program Files\uTorrent\uTorrent.exe" [Enabled] .(.BitTorrent, Inc. - �Torrent.) (.not file.) -- C:\Program Files\uTorrent\uTorrent.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe" [Disabled] .(.Pinnacle Systems - .) (.not file.) -- C:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Outlook.) (.not file.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Groove.) (.not file.) -- C:\Program Files\Microsoft Office\Office12\GROOVE.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office OneNote.) (.not file.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [Enabled] .(.Adobe Systems Incorporated - .) (.not file.) -- C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) (.not file.) -- C:\Program Files\Messenger\msmsgs.exe
O47 - AAKE:Key Export SP - "C:\Program Files\DNA\btdna.exe" [Enabled] .(.BitTorrent, Inc. - DNA.) (.not file.) -- C:\Program Files\DNA\btdna.exe
O47 - AAKE:Key Export SP - "C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe" [Enabled] .(.Pas de propri�taire - Pas de description.) (.not file.) -- C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) (.not file.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) (.not file.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Bonjour\mDNSResponder.exe" [Enabled] .(.Apple Inc. - Bonjour Service.) (.not file.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Pando Networks\Media Booster\PMB.exe" [Enabled] .(.Pas de propri�taire - Pando Media Booster.) (.not file.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
O47 - AAKE:Key Export SP - "C:\Program Files\ma-config.com\maconfservice.exe" [Enabled] .(.CybelSoft - Service de d�tection mat�riel.) (.not file.) -- C:\Program Files\ma-config.com\maconfservice.exe
O47 - AAKE:Key Export SP - "C:\Program Files\LucasArts\Republic Heroes\Republic Heroes.exe" [Enabled] .(.LucasArts - Republic Heroes.) (.not file.) -- C:\Program Files\LucasArts\Republic Heroes\Republic Heroes.exe
O47 - AAKE:Key Export SP - "C:\gPotato.eu\Allods Online\bin\Launcher.exe" [Enabled] .(.� 2008 - 2009 Astrum Nival, LLC - Allods Online. Update system..) (.not file.) -- C:\gPotato.eu\Allods Online\bin\Launcher.exe
O47 - AAKE:Key Export SP - "C:\gPotato.eu\Allods Online\bin\AOgame.exe" [Enabled] .(.� 2008 - 2009 Astrum Nival, LLC - Game Application.) (.not file.) -- C:\gPotato.eu\Allods Online\bin\AOgame.exe
O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau � distance de Microsoft�.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Pando Networks\Media Booster\PMB.exe" [Enabled] .(.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe


---\\ D�ni du service (Local Security Authority) (LSA) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'�diteur de configuration de s�curit� Windows.) -- C:\WINDOWS\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\System32\msv1_0.dll


---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d


---\\ MountPoints2 Shell Key (MPSK) (O51)
O51 - MPSK:{2f320280-ea3c-11de-acec-0019214c0161}\Shell\AutoRun\command. (.Pas de propri�taire - Pas de description.) -- I:\setupSNK.exe (.not file.)
O51 - MPSK:{426bac9b-3595-11df-ad57-0019214c0161}\Shell\AutoRun\command. (.Pas de propri�taire - Pas de description.) -- I:\InstallTomTomHOME.exe (.not file.)
O51 - MPSK:{b5ff5122-e8dc-11de-ace5-e2f23fa0c8df}\Shell\AutoRun\command. (.Pas de propri�taire - Pas de description.) -- K:\setupSNK.exe (.not file.)


---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(TM) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak� Codec.) -- C:\WINDOWS\System32\iccvid.dll
O52 - TDSD: \Drivers32\"VIDC.I420"="i420vfw.dll" . (.www.helixcommunity.org - Helix I420 YUV Codec.) -- C:\WINDOWS\System32\i420vfw.dll
O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo� Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax
O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm
O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\System32\iac25_32.ax" . (.Intel Corporation - Indeo� audio software.) -- C:\WINDOWS\System32\iac25_32.ax
O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo� video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
O52 - TDSD: \Drivers32\"VIDC.DIVX"="divx.dll" . (.DivX, Inc. - DivX.) -- C:\WINDOWS\System32\divx.dll
O52 - TDSD: \Drivers32\"VIDC.XVID"="xvidvfw.dll" . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\System32\xvidvfw.dll
O52 - TDSD: \Drivers32\"VIDC.YV12"="yv12vfw.dll" . (.www.helixcommunity.org - Helix YV12 YUV Codec.) -- C:\WINDOWS\System32\yv12vfw.dll
O52 - TDSD: \Drivers32\"msacm.ac3acm"="ac3acm.acm" . (.fccHandler - AC-3 ACM Codec.) -- C:\WINDOWS\System32\ac3acm.acm
O52 - TDSD: \Drivers32\"msacm.lameacm"="LameACM.acm" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\WINDOWS\System32\LameACM.acm
O52 - TDSD: \Drivers32\"VIDC.FFDS"="ff_vfw.dll" . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\System32\ff_vfw.dll
O52 - TDSD: \Drivers32\"msacm.enc"="ITIG726.acm" . (.Ingenient Technologies, Inc. - Ingenient Technologies, Inc. G.726 CODEC.) -- C:\WINDOWS\System32\ITIG726.acm
O52 - TDSD: \Drivers32\"VIDC.ACDV"="ACDV.dll" . (.Pas de propri�taire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm
O52 - TDSD: \drivers.desc\"C:\WINDOWS\System32\iac25_32.ax"="Indeo� audio software" . (.Intel Corporation - Indeo� audio software.) -- C:\WINDOWS\System32\iac25_32.ax
O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo� video 5.10" . (.Pas de propri�taire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"C:\WINDOWS\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"divx.dll"="DivX 6.8.5" . (.Pas de propri�taire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"xvidvfw.dll"="Xvid MPEG-4 Video Codec 1.2.2" . (.Pas de propri�taire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"lameACM.acm"="Lame ACM MP3 Codec(NeoDivX)" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\WINDOWS\System32\lameACM.acm
O52 - TDSD: \drivers.desc\"ac3acm.acm"="AC-3 ACM Codec" . (.fccHandler - AC-3 ACM Codec.) -- C:\WINDOWS\System32\ac3acm.acm
O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow Video Codec" . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\System32\ff_vfw.dll
O52 - TDSD: \drivers.desc\"ITIG726.acm"="ITI G.726 Audio Codec" . (.Pas de propri�taire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"ir32_32.dll"="Indeo� video R3.2 by Intel" . (.Pas de propri�taire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"ir41_32.ax"="Indeo� video interactive R4.3 by Intel" . (.Pas de propri�taire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"iyvu9_32.dll"="Indeo� video Raw YVU9 by Intel" . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\System32\iyvu9_32.dll
O52 - TDSD: \drivers.desc\"ACDV.dll"="ACDV 1.0" . (.Pas de propri�taire - Pas de description.) -- (.not file.)


---\\ ShareTools MSconfig StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O53 - SMSR:HKLM\...\startupreg\AdobeCS4ServiceManager [Key] . (.Adobe Systems Incorporated - Adobe CS4 Service Manager.) -- C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe
O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\daemon.exe


---\\ Microsoft Control Security Providers (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll


---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1


---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\Policies\Explorer] - "NoDriveTypeAutoRun"=144
O56 - MWPE:[HKLM\...\Policies\Explorer] - "HonorAutoRunSetting"=1


---\\ Liste des Drivers Syst�me (SDL) (O58)
O58 - SDL:[MD5.7D542504FED3D975FF617321DCC6D097] - 02/09/2005 - 14:43:54 ---A- . (.Philips Semiconductors GmbH - 3xHybrid.) -- C:\WINDOWS\system32\drivers\3xHybrid.sys
O58 - SDL:[MD5.A7B8A3A79D35215D798A300DF49ED23F] - 23/02/2005 - 13:58:56 ---A- . (.Arcsoft, Inc. - Arcsoft(R) ASPI Shell.) -- C:\WINDOWS\system32\drivers\afc.sys
O58 - SDL:[MD5.DD8520280304B6145A6BE31008748C7C] - 24/09/2008 - 10:40:22 R--A- . (.Realtek Semiconductor Corp. - Realtek AC'97 Audio Driver (WDM).) -- C:\WINDOWS\system32\drivers\alcxwdm.sys
O58 - SDL:[MD5.B979979AB8027F7F53FB16EC4229B7DB] - 10/09/1999 - 12:06:00 ---A- . (.Adaptec - ASPI for WIN32 Kernel Driver.) -- C:\WINDOWS\system32\drivers\Aspi32.sys
O58 - SDL:[MD5.C0B86ECB324E50F6BBD529F9D5C6B24B] - 11/02/2010 - 08:38:10 ---A- . (.ATI Technologies Inc. - ATI Radeon WindowsNT Miniport Driver.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys
O58 - SDL:[MD5.14FE36D8F2C6A2435275338D061A0B66] - 25/11/2009 - 11:19:02 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys
O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 28/08/2001 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys
O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 28/08/2001 - 13:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys
O58 - SDL:[MD5.CEC24DA7F7DD1758E569019232F49DEF] - 21/01/2004 - 02:14:46 ---A- . (.Labtec Inc. - Audio filter for Express Plus.) -- C:\WINDOWS\system32\drivers\lv302af.sys
O58 - SDL:[MD5.642BFB100D0A7693355FE01B256E349A] - 21/01/2004 - 02:14:42 ---A- . (.Labtec Inc. - Express Plus.) -- C:\WINDOWS\system32\drivers\LV302AV.SYS
O58 - SDL:[MD5.F0ECD2E9E83FB9C05C224445B92F39D6] - 21/01/2004 - 02:16:46 ---A- . (.Labtec Inc. - USB Statistic Driver.) -- C:\WINDOWS\system32\drivers\LVUSBSta.sys
O58 - SDL:[MD5.C6D085C7045200143528136A43A65FDE] - 14/01/2008 - 11:06:32 ---A- . (.ManyCam LLC. - ManyCam Virtual Webcam, WDM Video Capture Driver.) -- C:\WINDOWS\system32\drivers\ManyCam.sys
O58 - SDL:[MD5.67B48A903430C6D4FB58CBACA1866601] - 29/04/2010 - 14:39:26 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys
O58 - SDL:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 29/04/2010 - 14:39:38 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
O58 - SDL:[MD5.277B8B3536C1179FE432EF2DDE294A97] - 17/10/2008 - 09:50:00 ---A- . (.AhnLab, Inc. - MyKeyDefense Keyboard Filter Driver.) -- C:\WINDOWS\system32\drivers\Mkd2kfNT.sys
O58 - SDL:[MD5.0716EFDA4769995C67A3450FCD36E47E] - 17/10/2008 - 09:50:00 ---A- . (.AhnLab, Inc. - MyKeyDefense USB Keyboard Filter Driver.) -- C:\WINDOWS\system32\drivers\Mkd2Nadr.sys
O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 28/08/2001 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys
O58 - SDL:[MD5.B9730495E0CF674680121E34BD95A73B] - 22/03/2010 - 10:19:50 ---A- . (.CACE Technologies, Inc. - npf.sys (NT5/6 x86) Kernel Driver.) -- C:\WINDOWS\system32\drivers\npf.sys
O58 - SDL:[MD5.07C02C892E8E1A72D6BF35004F0E9C5E] - 19/11/2005 - 02:13:18 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\WINDOWS\system32\drivers\PCASp50.sys
O58 - SDL:[MD5.87D211BA1E9759E26B6296E625A31CE8] - 16/09/2002 - 18:07:24 ---A- . (.PowerQuest Corporation - PowerQuest Boot Mode Driver..) -- C:\WINDOWS\system32\drivers\PQNTDRV.sys
O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 28/08/2001 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys
O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 28/08/2001 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys
O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 28/08/2001 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys
O58 - SDL:[MD5.E0722E253043F291BA8BF856718E3531] - 14/04/2006 - 12:05:34 ---A- . (.Ralink Technology Inc. - Sample Driver for Ralink 802.11g Wireless USB Adapters.) -- C:\WINDOWS\system32\drivers\rt2500usb.sys
O58 - SDL:[MD5.B2E08ACC0D1B753023646237F62C75C5] - 12/05/2006 - 10:44:50 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 USB Wireless Adapter Driver.) -- C:\WINDOWS\system32\drivers\rt73.sys
O58 - SDL:[MD5.3000E98F519CF6FDA669BAE8E47F7B4F] - 06/06/2006 - 12:09:26 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys
O58 - SDL:[MD5.07F7F501AD50DE2BA2D5842D9B6D6155] - 20/12/2009 - 15:53:24 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys
O58 - SDL:[MD5.4354D1EEA9B4B6E29D53151ACDE7980F] - 25/11/2004 - 17:41:08 ---A- . (.Protection Technology - StarForce Protection Environment Driver.) -- C:\WINDOWS\system32\drivers\sfdrv01.sys
O58 - SDL:[MD5.3AD2B15CCC03FEBFBAF5FF057822AA75] - 28/10/2004 - 11:47:59 ---A- . (.Protection Technology - StarForce Protection Helper Driver.) -- C:\WINDOWS\system32\drivers\sfhlp02.sys
O58 - SDL:[MD5.D14D5C9C11998DA690FA75460F4F1CF3] - 29/11/2004 - 19:14:30 ---A- . (.Protection Technology - StarForce Protection Synchronization Driver.) -- C:\WINDOWS\system32\drivers\sfsync02.sys
O58 - SDL:[MD5.00000000000000000000000000000000] - 28/12/2009 - 02:50:43 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\drivers\sptd.sys
O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 28/08/2001 - 13:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys
O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 28/08/2001 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys
O58 - SDL:[MD5.C0205974C099E5FCDC8F96DE97F34292] - 21/10/2009 - 10:22:00 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\drivers\yk51x86.sys
O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 28/08/2001 - 13:00:00 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\ansi.sys
O58 - SDL:[MD5.5EF7DD401771693245D46F4B0B69FE2B] - 17/03/2008 - 17:45:52 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\Ckldrv.sys
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 28/08/2001 - 13:00:00 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\country.sys
O58 - SDL:[MD5.77EBF3E9386DAA51551AF429052D88D0] - 03/04/1996 - 20:33:26 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\giveio.sys
O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 28/08/2001 - 13:00:00 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\himem.sys
O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 28/08/2001 - 13:00:00 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\key01.sys
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 03/08/2004 - 22:46:56 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\keyboard.sys
O58 - SDL:[MD5.9131FE60ADFAB595C8DA53AD6A06AA31] - 01/01/2005 - 10:43:08 ---A- . (.INCA Internet Co., Ltd. - nProtect NPSC Kernel Mode Driver for NT.) -- C:\WINDOWS\system32\npptNT2.sys
O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 28/08/2001 - 13:00:00 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\ntdos.sys
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 28/08/2001 - 13:00:00 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\ntdos404.sys
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 28/08/2001 - 13:00:00 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\ntdos411.sys
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 28/08/2001 - 13:00:00 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\ntdos412.sys
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 28/08/2001 - 13:00:00 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\ntdos804.sys
O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 03/08/2004 - 22:45:26 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\ntio.sys
O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 03/08/2004 - 22:45:16 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\ntio404.sys
O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 03/08/2004 - 22:45:12 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\ntio411.sys
O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 03/08/2004 - 22:45:16 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\ntio412.sys
O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 03/08/2004 - 22:45:14 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\ntio804.sys
O58 - SDL:[MD5.354585D8E53F2FF9B8AD5E1E2EF68CEF] - 25/09/2008 - 20:07:08 ---A- . (.Matsushita Electric Industrial Co., Ltd. - Phoebe Photo Distribution Manager.) -- C:\WINDOWS\system32\PhDi2.sys
O58 - SDL:[MD5.5D6401DB90EC81B71F8E2C5C8F0FEF23] - 24/09/2006 - 14:28:46 ---A- . (.Windows (R) 2000 DDK provider - SpeedFan Device Driver.) -- C:\WINDOWS\system32\speedfan.sys


---\\ Liste des outils de nettoyage (LATC) (O63)
O63 - Logiciel: Ad-Remover By C_XX - (.C_XX.)
O63 - Logiciel: ZHPDiag 1.26 - (.Nicolas Coolman.)
O63 - Logiciel: RSIT - (.random/random.)


---\\ Liste des services Legacy (LALS) (O64)
O64 - Services: CurCS - (.not file.) - avast! Asynchronous Virus Monitor (Aavmker4) .(.Pas de propri�taire - Pas de description.) - LEGACY_AAVMKER4
O64 - Services: CurCS - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe - Apple Mobile Device (Apple Mobile Device) .(.Apple Inc. - Apple Mobile Device Service.) - LEGACY_APPLE_MOBILE_DEVICE
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASPI32.sys - Aspi32 (Aspi32) .(.Adaptec - ASPI for WIN32 Kernel Driver.) - LEGACY_ASPI32
O64 - Services: CurCS - (.not file.) - aswFsBlk (aswFsBlk) .(.Pas de propri�taire - Pas de description.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - (.not file.) - avast! Standard Shield Support (aswMon2) .(.Pas de propri�taire - Pas de description.) - LEGACY_ASWMON2
O64 - Services: CurCS - (.not file.) - aswRdr (aswRdr) .(.Pas de propri�taire - Pas de description.) - LEGACY_ASWRDR
O64 - Services: CurCS - (.not file.) - avast! Self Protection (aswSP) .(.Pas de propri�taire - Pas de description.) - LEGACY_ASWSP
O64 - Services: CurCS - (.not file.) - avast! Network Shield Support (aswTdi) .(.Pas de propri�taire - Pas de description.) - LEGACY_ASWTDI
O64 - Services: CurCS - C:\WINDOWS\system32\Ati2evxx.exe - Ati HotKey Poller (Ati HotKey Poller) .(.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - LEGACY_ATI_HOTKEY_POLLER
O64 - Services: CurCS - C:\WINDOWS\system32\ati2sgag.exe - ATI Smart (ATI Smart) .(.Pas de propri�taire - ATI Smart.) - LEGACY_ATI_SMART
O64 - Services: CurCS - (.not file.) - avast! Antivirus (avast! Antivirus) .(.Pas de propri�taire - Pas de description.) - LEGACY_AVAST!_ANTIVIRUS
O64 - Services: CurCS - C:\Program Files\Bonjour\mDNSResponder.exe - Service Bonjour (Bonjour Service) .(.Apple Inc. - Bonjour Service.) - LEGACY_BONJOUR_SERVICE
O64 - Services: CurCS - (.not file.) - Crypkey License (Crypkey License) .(.Pas de propri�taire - Pas de description.) - LEGACY_CRYPKEY_LICENSE
O64 - Services: CurCS - (.not file.) - Lanceur de processus serveur DCOM (DcomLaunch) .(.Pas de propri�taire - Pas de description.) - LEGACY_DCOMLAUNCH
O64 - Services: CurCS - C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys - driverhardwarev2 (driverhardwarev2) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2
O64 - Services: CurCS - C:\PROGRA~1\K!TV\Plugins\S_Bt8x8\DSDrv4.sys - DSDrv4 (DSDrv4) .(.Pas de propri�taire - hardware access driver.) - LEGACY_DSDRV4
O64 - Services: CurCS - (.not file.) - dump_wmimmc (dump_wmimmc) .(.Pas de propri�taire - Pas de description.) - LEGACY_DUMP_WMIMMC
O64 - Services: CurCS - (.not file.) - EagleNT (EagleNT) .(.Pas de propri�taire - Pas de description.) - LEGACY_EAGLENT
O64 - Services: CurCS - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe - FLEXnet Licensing Service (FLEXnet Licensing Service) .(.Acresso Software Inc. - Activation Licensing Service.) - LEGACY_FLEXNET_LICENSING_SERVICE
O64 - Services: CurCS - C:\Windows\system32\giveio.sys - giveio (giveio) .(.Pas de propri�taire - Pas de description.) - LEGACY_GIVEIO
O64 - Services: CurCS - C:\Program Files\Google\Update\GoogleUpdate.exe - Service Google Update (gupdate) (gupdate) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE
O64 - Services: CurCS - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe - InstallDriver Table Manager (IDriverT) .(.Macrovision Corporation - IDriverT Module.) - LEGACY_IDRIVERT
O64 - Services: CurCS - C:\Program Files\Canon\IJPLM\IJPLMSVC.exe - Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) .(.Pas de propri�taire - Inkjet Printer/Scanner/Fax Extended Servey.) - LEGACY_IJPLMSVC
O64 - Services: CurCS - C:\Program Files\Java\jre6\bin\jqs.exe - Java Quick Starter (JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE
O64 - Services: CurCS - (.not file.) - LexBce Server (LexBceS) .(.Pas de propri�taire - Pas de description.) - LEGACY_LEXBCES
O64 - Services: CurCS - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe - LightScribeService Direct Disc Labeling Service (LightScribeService) .(.Hewlett-Packard Company - Pas de description.) - LEGACY_LIGHTSCRIBESERVICE
O64 - Services: CurCS - C:\Program Files\ma-config.com\maconfservice.exe - Ma-Config Service (maconfservice) .(.CybelSoft - Service de d�tection mat�riel.) - LEGACY_MACONFSERVICE
O64 - Services: CurCS - C:\Windows\system32\drivers\Mkd2kfNt.sys - Mkd2kfNt (Mkd2kfNt) .(.AhnLab, Inc. - MyKeyDefense Keyboard Filter Driver.) - LEGACY_MKD2KFNT
O64 - Services: CurCS - (.not file.) - mountmgr (mountmgr) .(.Pas de propri�taire - Pas de description.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - (.not file.) - Mup (Mup) .(.Pas de propri�taire - Pas de description.) - LEGACY_MUP
O64 - Services: CurCS - (.not file.) - Pilote syst�me NDIS (NDIS) .(.Pas de propri�taire - Pas de description.) - LEGACY_NDIS
O64 - Services: CurCS - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe - Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) .(.Nero AG - Nero BackItUp.) - LEGACY_NERO_BACKITUP_SCHEDULER_4.0
O64 - Services: CurCS - C:\WINDOWS\system32\ckldrv.sys - NetworkX (NetworkX) .(.Pas de propri�taire - Pas de description.) - LEGACY_NETWORKX
O64 - Services: CurCS - C:\WINDOWS\system32\drivers\npf.sys - npf (npf) .(.CACE Technologies, Inc. - npf.sys (NT5/6 x86) Kernel Driver.) - LEGACY_NPF
O64 - Services: CurCS - (.not file.) - PartMgr (PartMgr) .(.Pas de propri�taire - Pas de description.) - LEGACY_PARTMGR
O64 - Services: CurCS - C:\Windows\system32\Drivers\PCASp50.sys - PCASp50 NDIS Protocol Driver (PCASp50) .(.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) - LEGACY_PCASP50
O64 - Services: CurCS - C:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe - Pinnacle Systems Media Service (PinnacleSys.MediaServer) .(.Pinnacle Systems - Media Server Host.) - LEGACY_PINNACLESYS.MEDIASERVER
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PQNTDRV.sys - PQNTDrv (PQNTDrv) .(.PowerQuest Corporation - PowerQuest Boot Mode Driver..) - LEGACY_PQNTDRV
O64 - Services: CurCS - (.not file.) - RDPNP (RDPNP) .(.Pas de propri�taire - Pas de description.) - LEGACY_RDPNP
O64 - Services: CurCS - (.not file.) - Appel de proc�dure distante (RPC) (RpcSs) .(.Pas de propri�taire - Pas de description.) - LEGACY_RPCSS
O64 - Services: CurCS - C:\Windows\system32\DRIVERS\secdrv.sys - Secdrv (Secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - (.not file.) - sony_ssm.sys (sony_ssm.sys) .(.Pas de propri�taire - Pas de description.) - LEGACY_SONY_SSM.SYS
O64 - Services: CurCS - C:\Windows\system32\speedfan.sys - speedfan (speedfan) .(.Windows (R) 2000 DDK provider - SpeedFan Device Driver.) - LEGACY_SPEEDFAN
O64 - Services: CurCS - C:\Windows\system32\Drivers\sptd.sys - sptd (sptd) .(.Pas de propri�taire - Pas de description.) - LEGACY_SPTD
O64 - Services: CurCS - (.not file.) - Services Terminal Server (TermService) .(.Pas de propri�taire - Pas de description.) - LEGACY_TERMSERVICE
O64 - Services: CurCS - (.not file.) - Gestionnaire de t�l�chargement (uploadmgr) .(.Pas de propri�taire - Pas de description.) - LEGACY_UPLOADMGR
O64 - Services: CurCS - C:\WINDOWS\system32\UAService7.exe - SecuROM User Access Service (V7) (UserAccess7) .(.Sony DADC Austria AG. - SecuROM User Access Service (V7)..) - LEGACY_USERACCESS7
O64 - Services: CurCS - C:\PROGRA~1\SPEEDB~1\VideoAcceleratorService.exe - VideoAcceleratorService (VideoAcceleratorService) .(.Speedbit Ltd. - VideoAcceleratorEngine.) - LEGACY_VIDEOACCELERATORSERVICE
O64 - Services: CurCS - C:\Program Files\AxBx\VirusKeeper 2010 Pro Evaluation\vk_service.exe - VirusKeeper antivirus/antispyware (vkservice) .(.AxBx - Service VirusKeeper antivirus/antispyware.) - LEGACY_VKSERVICE
O64 - Services: CurCS - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe - wampapache (wampapache) .(.Apache Software Foundation - Apache HTTP Server.) - LEGACY_WAMPAPACHE
O64 - Services: CurCS - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe - wampmysqld (wampmysqld) .(.Pas de propri�taire - Pas de description.) - LEGACY_WAMPMYSQLD


---\\ Observateur d'�v�nement d'application (OEA) (O66)
O66 - EventLog: ID=490 (ESENT) - (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\CatRoot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb
O66 - EventLog: ID=490 (ESENT) - (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
O66 - EventLog: ID=470 (ESENT) - (.Pas de propri�taire - Pas de description.) -- C:\WINDOWS\system32\CatRoot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb


---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (r) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\WINDOWS\regedit.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.com> <comfile>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.exe> <exefile>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (r) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\WINDOWS\regedit.exe


---\\ Start Menu Internet (SMI) (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <MSN Explorer> <>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - msn.) -- C:\Program Files\MSN\MSNCoreFiles\MSN6.exe


---\\ Search Browser Infection (SBI) (O69)
O69 - SBI: prefs.js [Yves - 6hw05v72.default] user_pref("extensions.asktb.cbid", "NL");
O69 - SBI: prefs.js [Yves - 6hw05v72.default] user_pref("extensions.asktb.default-channel-url-mask", "http://www.ask.com/web?q={query}&o={o}&l={l}&qsrc={qsrc}");
O69 - SBI: prefs.js [Yves - 6hw05v72.default] user_pref("extensions.asktb.fresh-install", false);
O69 - SBI: prefs.js [Yves - 6hw05v72.default] user_pref("extensions.asktb.l", "dis");
O69 - SBI: prefs.js [Yves - 6hw05v72.default] user_pref("extensions.asktb.last-config-req", "1279619987418");
O69 - SBI: prefs.js [Yves - 6hw05v72.default] user_pref("extensions.asktb.locale", "en_FR");
O69 - SBI: prefs.js [Yves - 6hw05v72.default] user_pref("extensions.asktb.o", "14300");
O69 - SBI: prefs.js [Yves - 6hw05v72.default] user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
O69 - SBI: prefs.js [Yves - 6hw05v72.default] user_pref("extensions.asktb.qsrc", "2871");
O69 - SBI: prefs.js [Yves - 6hw05v72.default] user_pref("extensions.asktb.r", "5");
[HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Clean Traces]
[HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Download with &DAP]
[HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download &all with DAP]
[HKCU\Software\Microsoft\Internet Explorer\MenuExt\E&xporter vers Microsoft Excel]
[HKCU\Software\Microsoft\Internet Explorer\MenuExt\T�l�charger avec IDM]
[HKCU\Software\Microsoft\Internet Explorer\MenuExt\T�l�charger le contenu de video FLV avec IDM]
[HKCU\Software\Microsoft\Internet Explorer\MenuExt\T�l�charger tous les liens avec IDM]
O69 - SBI: SearchScopes ${searchCLSID}- (@ieframe.dll,-12512) - http://search.live.com


---\\ Recherche d'infection Master Boot Record (O80)
Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net
Run by Yves at 21/07/2010 10:47:28
device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x89DE31F8]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\atapi -> 0x89de31f8
Warning: possible MBR rootkit infection !
user & kernel MBR OK
Use "Recovery Console" command "fixmbr" to clear infection !
Use "ZHPFix" command "MBRFix" to clear infection !

Message: Certains �mulateurs de CD/DVD peuvent hooker le pilote atapi de fa�on l�gitime. Voici quelques �mulateurs :
Message: Alcohol xx%, CDSpace, Circle Virtual CD, CloneCD, Daemon Tools, Virtual CloneDrive, Virtual CD, VirtualDrive, WinCDEmu,...


---\\ Infection BT - BHO/Toolbar (Possible)
O69 - SBI: prefs.js [Yves - 6hw05v72.default] user_pref("extensions.asktb.default-channel-url-mask", "http://www.ask.com/web?q={query}&o={o}&l={l}&qsrc={qsrc}");



End of the scan (1292 lines in 00mn 16s)


Tiens ;)
Avatar de l’utilisateur
Alsyia
Nouveau membre
Progression vers le rang suivant:
65%
 
Années en tant que membre
 
Messages: 13
Age: 16
Inscription: 20 Juil 2010 13:20
Sexe: Non spécifié
 

Point(s) : 80
Donner
    unknownunknown



Haut

Re: Redémarrage scan antivir et virus dans la restauration systeme.

Messagede shion-ares » 21 Juil 2010 21:46

bonsoir
ok pour le doute :mrgreen:

Question avant que je te fasse utiliser un logiciel spécifique

utilise tu un de ces logiciels ?

Message: Certains �mulateurs de CD/DVD peuvent hooker le pilote atapi de fa�on l�gitime. Voici quelques �mulateurs :
Message: Alcohol xx%, CDSpace, Circle Virtual CD, CloneCD, Daemon Tools, Virtual CloneDrive, Virtual CD, VirtualDrive, WinCDEmu,...
Image

Image
Avatar de l’utilisateur
shion-ares
Modérateur
 
Années en tant que membreAnnées en tant que membre
 
Messages: 1266
Age: 42
Inscription: 15 Juil 2009 09:00
Localisation: herbignac
Sexe: Homme
 

Point(s) : 6890
Donner
Nombre de réponses utiles: 66
    unknownunknown



Haut

Re: Redémarrage scan antivir et virus dans la restauration systeme.

Messagede Alsyia » 21 Juil 2010 22:41

Daemon tools lite pour mes copies de sauvegarde . (Sisi , ca existe des gens qui achètent leur jeux :lol: )
Avatar de l’utilisateur
Alsyia
Nouveau membre
Progression vers le rang suivant:
65%
 
Années en tant que membre
 
Messages: 13
Age: 16
Inscription: 20 Juil 2010 13:20
Sexe: Non spécifié
 

Point(s) : 80
Donner
    unknownunknown



Haut

Re: Redémarrage scan antivir et virus dans la restauration systeme.

Messagede shion-ares » 22 Juil 2010 09:01

Bonjour

ok merci pour la réponse, Bon il va falloir aller vite pour eradiquer les quelque saloperies qui sont présent sur ton pc

  • Télécharges UsbFix (créé par El Desaparecido & C_XX) et enregistres-le sur ton bureau
  • tutoriel recherche
  • :!: Ne fais pas la suppression tant que je ne te l'ai pas demandé :!:
  • Double-cliques sur UsbFix présent sur ton bureau, l'installation se fera automatiquement
  • Branches tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptibles d'avoir été infectés sans les ouvrir
  • Clique sur le bouton Recherche
  • Laisses travailler l'outil
  • Ensuite postes le rapport UsbFix.txt qui apparaîtra
  • Note : le rapport UsbFix.txt est sauvegardé à la racine du disque

* Note : "SniffC.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus
Dernière édition par shion-ares le 22 Juil 2010 09:01, édité 2 fois.
Raison: changement
Image

Image
Avatar de l’utilisateur
shion-ares
Modérateur
 
Années en tant que membreAnnées en tant que membre
 
Messages: 1266
Age: 42
Inscription: 15 Juil 2009 09:00
Localisation: herbignac
Sexe: Homme
 

Point(s) : 6890
Donner
Nombre de réponses utiles: 66
    unknownunknown



Haut

Re: Redémarrage scan antivir et virus dans la restauration systeme.

Messagede Alsyia » 25 Juil 2010 09:18

Désolé , je n'avais plus internet cause déplacement . J'ai oublié de te prévenir :s .
Je fais bientôt ;)
Avatar de l’utilisateur
Alsyia
Nouveau membre
Progression vers le rang suivant:
65%
 
Années en tant que membre
 
Messages: 13
Age: 16
Inscription: 20 Juil 2010 13:20
Sexe: Non spécifié
 

Point(s) : 80
Donner
    WinXPFirefox



Haut

Re: Redémarrage scan antivir et virus dans la restauration systeme.

Messagede Alsyia » 25 Juil 2010 18:21

############################## | UsbFix 7.017 | [Recherche]

Utilisateur: Yves (Administrateur) # ORDI-MAISON [ ]
Mis à jour le 22/07/10 par El Desaparecido / C_XX
Lancé à 18:13:30 | 25/07/2010
Site Web: http://pagesperso-orange.fr/NosTools/index.html
Contact: FindyKill.Contact@gmail.com

CPU: Intel(R) Pentium(R) 4 CPU 3.00GHz
CPU 2: Intel(R) Pentium(R) 4 CPU 3.00GHz
Microsoft Windows XP Édition familiale (5.1.2600 32-Bit) # Service Pack 2
Internet Explorer 6.0.2900.2180

Pare-feu Windows: Désactivé /!\
Antivirus: VirusKeeper 2010 Pro antivirus 10.0 [Enabled | Updated]
RAM -> 2047 Mo
C:\ (%systemdrive%) -> Disque fixe # 117 Go (6 Go libre(s) - 5%) [MOTEUR XP] # NTFS
H:\ -> CD-ROM
I:\ -> CD-ROM
J:\ -> Disque fixe # 22 Go (7 Go libre(s) - 32%) [] # NTFS
K:\ -> Disque fixe # 21 Go (1 Go libre(s) - 6%) [les jeux] # NTFS
L:\ -> Disque fixe # 349 Go (142 Go libre(s) - 41%) [GRENIER] # NTFS
M:\ -> Disque fixe # 106 Go (15 Go libre(s) - 15%) [Disque externe] # NTFS

################## | Éléments infectieux |

Présent! C:\Documents and Settings\Yves\Application Data\mdbu.bin
Présent! K:\Autorun.inf

################## | Registre |


################## | Mountpoints2 |

HKCU\.\.\.\.\Explorer\MountPoints2\J
Shell\AutoRun\Command = J:\setupSNK.exe

HKCU\.\.\.\.\Explorer\MountPoints2\{2f320280-ea3c-11de-acec-0019214c0161}
Shell\AutoRun\Command = I:\setupSNK.exe

HKCU\.\.\.\.\Explorer\MountPoints2\{426bac9b-3595-11df-ad57-0019214c0161}
Shell\AutoRun\Command = I:\InstallTomTomHOME.exe


################## | Vaccin |

(!) Cet ordinateur n'est pas vacciné!

################## | E.O.F |


Voila. Pour le TomTomHome , ce n'est pas a moi , j'aimerai pas trop qu'on y touche ;(
C'est un logiciel pour mettre a jour les cartes de GPS ...
Avatar de l’utilisateur
Alsyia
Nouveau membre
Progression vers le rang suivant:
65%
 
Années en tant que membre
 
Messages: 13
Age: 16
Inscription: 20 Juil 2010 13:20
Sexe: Non spécifié
 

Point(s) : 80
Donner
    WinXPFirefox



Haut
Suivante

Écrire un commentaire

Retourner vers Virus/Sécurité

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 2 invités

Qui a vu ce sujet Qui a vu ce topic ?


Powered by phpBB © 2000, 2002, 2005, 2007, 2009, 2012 phpBB Group
Traduction par: phpBB-fr.com
phpBB SEO
Publicités par Advertisement Management