Win 32 skimorph ET small N panique à bord

Résolu
sweetbad Messages postés 15 Statut Membre -  
Tigzy Messages postés 7983 Statut Contributeur sécurité -
Bonjour, d'abord bravo pour ce site, vraiment très complet, si bien que n'ayant aucune connaissance en informatique, je fais ma première demande d'aide (siou plait).J'ai toujours réussi à trouver l'aide nécessaire dans les tutos ou les forums riches et bien répertoriés, alors merci a tous ceux qui prennent le temps de partager et d'aider ceux qui rament ...en l'occurence aujourd'hui j'ai décidé de m'occuper de win 32 small N et de win32 skimorph qui sont en quarantaine depuis 2 mois dans avast (jusqu'à la semaine dernière pas de soucis mais là l'ordi a commencé à ramer dur)J'ai commencé par télécharger ccleaner, j'ai tout nettoyé et réparé les erreurs; là amélioration nette de la navigation mais video toujours très mauvaise . Quelqu'un peut-il m'aider je viens de télécharger highjack le bloc note du rapport d'erreur est ouvert ...mais peut on traiter 2 virus à la fois ? en gros je suis en train de me rendre compte qu'il y a de quoi flipper !! A MOI !

18 réponses

  1. Tigzy Messages postés 7983 Statut Contributeur sécurité 582
     
    Salut

    Laisse tomber Hijack c'est plus utilisé ;)

    Télécharger sur le bureau Malwarebyte's Anti-Malware

    = double-clic sur mbam-setup pour lancer l'installation
    = Installer simplement sans rien modifier
    = Ne pas décocher "Faire la mise à jour"
    = si la mise à jour a échoué, la faire après execution du logiciel => onglet "Mise à jour"
    = Quand le programme lancé ==> cocher Exécuter un examen complet
    = Clic Rechercher
    = Eventuellement décocher les disque à ne pas analyser
    = Clic Lancer l'examen
    = En fin de scan ( 1h environ), si infection trouvée
    ==> Clic Afficher résultat
    = Fermer vos applications en cours
    = Vérifier si tout est coché et clic Supprimer la sélection

    un rapport s'ouvre le copier et le coller dans la réponse

    -----------

    * Télécharge ZHPDiag
    Capture

    * Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.
    * Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
    * Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
    * Heberge le rapport ici: cijoint et colle le lien dans la réponse

    0
  2. sweetbad Messages postés 15 Statut Membre
     
    oups j'étais plus là merci tigzy !je m'y colle tout de suite ...
    0
  3. sweetbad Messages postés 15 Statut Membre
     
    rapport terminé avec quelques surprises car je ne vois pas le nom des virus recherchés ...je continue :Malwarebytes' Anti-Malware 1.46
    www.malwarebytes.org

    Version de la base de données: 5170

    Windows 6.0.6000
    Internet Explorer 8.0.6001.18904

    22/11/2010 20:00:31
    mbam-log-2010-11-22 (20-00-31).txt

    Type d'examen: Examen complet (C:\|D:\|)
    Elément(s) analysé(s): 240392
    Temps écoulé: 2 heure(s), 24 minute(s), 21 seconde(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 1
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 4

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    C:\Users\pierre\Local Settings\Application Data\gfhfy_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
    C:\Users\pierre\Local Settings\Application Data\gfhfy_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
    C:\Users\pierre\Local Settings\Application Data\gfhfy.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
    C:\Users\pierre\AppData\Roaming\avdrn.dat (Malware.Trace) -> Quarantined and deleted successfully.
    0
  4. sweetbad Messages postés 15 Statut Membre
     
    et voilà le rapport ZHP :Rapport de ZHPDiag v1.27.134 par Nicolas Coolman, Update du 21/11/2010
    Run by pierre at 22/11/2010 20:38:42
    Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
    Contact : nicolascoolman@yahoo.fr

    ---\\ Web Browser
    MSIE: Internet Explorer v8.0.6001.18904
    MFIE: Mozilla Firefox v3.6.12 (fr) (Defaut)
    GCIE: Google Chrome v7.0.517.44

    ---\\ System Information
    Windows Vista Home Premium Edition, 32-bit (Build 6000)
    Processor: x86 Family 15 Model 104 Stepping 2, AuthenticAMD
    Operating System: 32 Bits
    Boot mode: Normal (Normal boot)
    Total RAM: 2046 MB (54% free)
    System drive C: has 46 GB (32%) free of 141 GB

    ---\\ Logged in mode
    Computer Name: JOE
    User Name: pierre
    All Users Names: pierre, ASPNET, Administrateur,
    Unselected Option: ,,,,,
    Logged in as Administrator

    ---\\ DOS/Devices
    C:\ Hard drive, Flash drive, Thumb drive (Free 46 Go of 141 Go)
    D:\ CD-ROM drive (Free 0 Go of 0 Go)

    ---\\ Security Center & Tools Informations
    [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
    [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

    ---\\
    [MD5.37440D09DEAE0B672A04DCCF7ABF06BE] - (.Microsoft Corporation - Explorateur Windows.) (.28/06/2009 02:31:45.) -- C:\Windows\Explorer.exe [2923520]
    [MD5.D4385B03E8CCCEE6F0EE249F827C1F3E] - (.Microsoft Corporation - Application de démarrage de Windows.) (.02/11/2006 10:45:57.) -- C:\Windows\System32\Wininit.exe [95744]
    [MD5.9F75392B9128A91ABAFB044EA350BAAD] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.02/11/2006 10:45:57.) -- C:\Windows\System32\Winlogon.exe [308224]
    [MD5.B35CFCEF838382AB6490B321C87EDF17] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.28/06/2009 02:32:36.) -- C:\Windows\System32\drivers\atapi.sys [21560]

    ---\\
    [MD5.9AD9E2FB2811123DA13DE84CC154AB77] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe [1006264]
    [MD5.675253563B449B0B37E97BD09150B1ED] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [857648]
    [MD5.ACC6017BA78E00AD19E3619BF3A6C39C] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe [4702208]
    [MD5.BF38C273C3EC524880AF0AEB2E7CE160] - (.Sonic Solutions - RoxMMTrayApp Module.) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe [232184]
    [MD5.9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F] - (.Google - Google Desktop.) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192]
    [MD5.E26642C193B81F2AA06D6013D4E07D03] - (. - .) -- C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSPMirage.exe [102400]
    [MD5.0A44C06A0BB2EBC8B08DF7039A2248D1] - (.Google Inc. - Picasa.) -- C:\Program Files\Picasa2\PicasaMediaDetector.exe [366400]
    [MD5.F8D427DAE2984A4968E2D1CB53634784] - (.Nuance Communications, Inc. - OCR Aware.) -- C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe [79400]
    [MD5.0A7E9FDF3BF1980CA09FEEAC7F52EFBC] - (.ALWIL Software - avast! service GUI component.) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe [81000]
    [MD5.8CBD57D84729DEBEE1E83CB5FA3E3D7A] - (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe [417792]
    [MD5.C418B204BED40A0979D203EBB1E9A32B] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [141600]
    [MD5.58CD0490E2341844237532874DCC34B4] - (. - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1135912]
    [MD5.73BB442A717B9BB0097C243374C14A3E] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [948672]
    [MD5.93DB1FF92B03D24738A71E6E4992DFD3] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [248552]
    [MD5.B1D8669CD13163585CA133332EDD60E3] - (.Packard Bell BV - SmpSys.exe.) -- C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe [1120568]
    [MD5.43D083268A0919F3527A2837390BAF63] - (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [218032]
    [MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]
    [MD5.D48CBCF8A14EEBBE0652E973A570570E] - (.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\System32\p2phost.exe [191488]
    [MD5.F02A533F517EB38333CB12A9E8963773] - (.Google Inc. - Programme d'installation de Google.) -- C:\Users\pierre\AppData\Local\Google\Update\GoogleUpdate.exe [136176]
    [MD5.D91AFB6D2A0DA7539B74FB5838775D94] - (.Microsoft Corporation - Microsoft Office OneNote Quick Launcher.) -- C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE [98632]
    [MD5.81212000667237972A8DBC22232ABD35] - (.Microsoft® Corporation - Microsoft® Works Calendar Reminder Service.) -- C:\Program Files\Microsoft Works\WkCalRem.exe [46432]
    [MD5.83170B8E03213093B065A9638E146499] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe [7424000]
    [MD5.E7704CBF568815C1CAA6E513387BD3F2] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [65536]
    [MD5.873867A02F0E83F18CF871E776B651DC] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin [7418368]
    [MD5.2D4040F03702E79F6FA98D2E76BA831F] - (.Sonic Solutions - ROXHelpRunner Module.) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe [17656]
    [MD5.74EF310FAC89341CE2897B7F2C4A7B0F] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [65536]
    [MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\Windows\system32\wuauclt.exe [53472]
    [MD5.A0287B1A5C8FDC87850D7A4A27E6AB5B] - (.Google Inc. - Google Chrome.) -- C:\Users\pierre\AppData\Local\Google\Chrome\Application\chrome.exe [974904]
    [MD5.5047E0988060A99D73EE6129EC5A39CB] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [621056]

    ---\\
    P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll
    P2 - FPN:Firefox Plugin Navigator . (.Oracle - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
    P2 - FPN:Firefox Plugin Navigator . (.DivX, Inc - npdivxplayerplugin.) -- C:\Program Files\Mozilla Firefox\Plugins\npDivxPlayerPlugin.dll
    P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
    P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL
    P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
    P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (. - .) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll
    P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (. - .) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
    P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX Web Player version 2.0.2.39.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
    P2 - FPN: [HKLM] [@divx.com/DivX Player Plugin,version=1.0.0] - (. - .) -- C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (.not file.)
    P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Oracle - Next Generation Java Plug-in 1.6.0_21 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
    P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
    P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
    P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Users\pierre\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll
    M0 - MFSP: prefs.js [pierre - pmv7dagr.default] http://search.conduit.com/?ctid=CT1269415&SearchSource=13
    M2 - MFEP: prefs.js [pierre - pmv7dagr.default\toolbar@ask.com] [] Ask Toolbar v3.9.1.14019 (.Ask.com.)
    M2 - MFEP: prefs.js [pierre - pmv7dagr.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.1 (.Microsoft.)
    M2 - MFEP: prefs.js [pierre - pmv7dagr.default\{2bae58c2-79f9-45d1-a286-81f911301c3a}] [] P2P Energy Toolbar v2.3.0.4 (.Conduit Ltd..)

    ---\\
    G0 - GCSP: Preference [User Data\Default][HomePage] http://format.packardbell.com
    G2 - GCE: Preference [User Data\Default] [bdfkbdkkfmmckaadapdipihjfaacnkgd] AT_Splendid v.3 (Activé)

    ---\\
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://format.packardbell.com/cgi-bin/redirect/?country=FR&range=AD&phase=8&key=IESTART
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.hugedomains.com/domain_profile.cfm?d=duxet&e=com
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://format.packardbell.com/cgi-bin/redirect/?country=FR&range=AD&phase=8&key=IESTART
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
    R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} . (.Ask - Ask Toolbar.) (5.9.1.14019) -- C:\Program Files\Ask.com\GenericAskToolbar.dll
    R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)) -- C:\Windows\system32\ieframe.dll

    ---\\
    F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
    F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
    F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

    ---\\
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} . (.Symantec Corporation - NcoBHO.) -- C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll
    O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} . (.Packard Bell - BAE.dll.) -- C:\Program Files\Google\Google_BAE\BAE.dll
    O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask - Ask Toolbar.) -- C:\Program Files\Ask.com\GenericAskToolbar.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

    ---\\
    O3 - Toolbar: Afficher Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} . (.Symantec Corporation - UIBhoImpl.) -- C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask - Ask Toolbar.) -- C:\Program Files\Ask.com\GenericAskToolbar.dll

    ---\\
    O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
    O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe
    O4 - HKLM\..\Run: [Skytel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\Windows\Skytel.exe
    O4 - HKLM\..\Run: [RoxWatchTray] . (.Sonic Solutions - RoxMMTrayApp Module.) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
    O4 - HKLM\..\Run: [Google Desktop Search] . (.Google - Google Desktop.) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O4 - HKLM\..\Run: [MSPService] C:\Program Files\CyberLink\MagicSports\Kernel\MagicSports\MSPMirage.exe
    O4 - HKLM\..\Run: [Picasa Media Detector] . (.Google Inc. - Picasa.) -- C:\Program Files\Picasa2\PicasaMediaDetector.exe
    O4 - HKLM\..\Run: [toolbar_eula_launcher] C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe
    O4 - HKLM\..\Run: [SSBkgdUpdate] . (.Nuance Communications, Inc. - SSBkgdUpdate.) -- C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe
    O4 - HKLM\..\Run: [OpwareSE4] . (.Nuance Communications, Inc. - OCR Aware.) -- C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe
    O4 - HKLM\..\Run: [OM2_Monitor] . (.OLYMPUS IMAGING CORP. - resident module - First Starter.) -- C:\Program Files\OLYMPUS\OLYMPUS Master 2\FirstStart.exe
    O4 - HKLM\..\Run: [avast!] . (.ALWIL Software - avast! service GUI component.) -- C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
    O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
    O4 - HKLM\..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
    O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    O4 - HKLM\..\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
    O4 - HKLM\..\Run: [MSConfig] . (.Microsoft Corporation - Utilitaire de configuration système.) -- C:\Windows\system32\msconfig.exe
    O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
    O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
    O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
    O4 - HKCU\..\Run: [SmpcSys] . (.Packard Bell BV - SmpSys.exe.) -- C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
    O4 - HKCU\..\Run: [ISUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
    O4 - HKCU\..\Run: [OM2_Monitor] . (.OLYMPUS IMAGING CORP. - resident module.) -- C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe
    O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [CollaborationHost] . (.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
    O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\pierre\AppData\Local\Google\Update\GoogleUpdate.exe
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
    O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll
    O4 - HKUS\S-1-5-21-3880045953-1941276923-990222509-1002\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
    O4 - HKUS\S-1-5-21-3880045953-1941276923-990222509-1002\..\Run: [SmpcSys] . (.Packard Bell BV - SmpSys.exe.) -- C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
    O4 - HKUS\S-1-5-21-3880045953-1941276923-990222509-1002\..\Run: [ISUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
    O4 - HKUS\S-1-5-21-3880045953-1941276923-990222509-1002\..\Run: [OM2_Monitor] . (.OLYMPUS IMAGING CORP. - resident module.) -- C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe
    O4 - HKUS\S-1-5-21-3880045953-1941276923-990222509-1002\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKUS\S-1-5-21-3880045953-1941276923-990222509-1002\..\Run: [CollaborationHost] . (.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
    O4 - HKUS\S-1-5-21-3880045953-1941276923-990222509-1002\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\pierre\AppData\Local\Google\Update\GoogleUpdate.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 - Capture d'écran et lancement.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk . (..) -- C:\Program Files\OpenOffice.org 3\program\quickstart.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wkcalrem.LNK . (.Microsoft® Corporation.) -- C:\Program Files\Microsoft Works\WkCalRem.exe

    ---\\
    O4 - Global Startup: C:\Documents And Settings\pierre\Desktop\DivX Movies.lnk . (..) -- C:\Users\pierre\Videos\DivX Movies
    O4 - Global Startup: C:\Documents And Settings\pierre\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\pierre\AppData\Local\Google\Chrome\Application\chrome.exe
    O4 - Global Startup: C:\Documents And Settings\pierre\Desktop\HijackThis.lnk . (.Trend Micro Inc..) -- C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
    O4 - Global Startup: C:\Documents And Settings\pierre\Desktop\OLYMPUS Master 2.lnk . (.OLYMPUS IMAGING CORP..) -- C:\Program Files\OLYMPUS\OLYMPUS Master 2\OLYMPUS Master.exe
    O4 - Global Startup: C:\Documents And Settings\pierre\Desktop\Usenet.nl.lnk . (..) -- C:\Program Files\Usenet.nl\Usenet.nl.exe
    O4 - Global Startup: C:\Documents And Settings\pierre\Desktop\Zattoo.lnk . (.Zattoo Inc..) -- C:\Program Files\Zattoo4\Zattoo.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
    O4 - Global Startup: C:\Users\pierre\Desktop\DivX Movies.lnk . (..) -- C:\Users\pierre\Videos\DivX Movies
    O4 - Global Startup: C:\Users\pierre\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\pierre\AppData\Local\Google\Chrome\Application\chrome.exe
    O4 - Global Startup: C:\Users\pierre\Desktop\HijackThis.lnk . (.Trend Micro Inc..) -- C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
    O4 - Global Startup: C:\Users\pierre\Desktop\OLYMPUS Master 2.lnk . (.OLYMPUS IMAGING CORP..) -- C:\Program Files\OLYMPUS\OLYMPUS Master 2\OLYMPUS Master.exe
    O4 - Global Startup: C:\Users\pierre\Desktop\Usenet.nl.lnk . (..) -- C:\Program Files\Usenet.nl\Usenet.nl.exe
    O4 - Global Startup: C:\Users\pierre\Desktop\Zattoo.lnk . (.Zattoo Inc..) -- C:\Program Files\Zattoo4\Zattoo.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ALZip.lnk . (.ESTsoft.) -- C:\Program Files\ESTsoft\ALZip\ALZip.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Atlas Routier France & Europe 2008.lnk . (.MAP&GUIDE GmbH.) -- C:\Program Files\Micro Application\Atlas Routier France & Europe 2008\prog\tcstart.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\eBay.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free Video Converter.lnk . (.Koyote Soft.) -- C:\Program Files\Free Video Converter\FreeVideoConverter.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Users\pierre\AppData\Local\Google\Chrome\Application\chrome.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player (2).lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player (3).lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player (4).lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
    O4 - Global Startup: C:\Users\pierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. sweetbad Messages postés 15 Statut Membre
     
    la suite (c'est hyper long) :---\\
    O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~3\Office12\EXCEL.exe
    O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll

    ---\\
    O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (. - .) -- C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO

    ---\\
    O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
    O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
    O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
    O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
    O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
    O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
    O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll

    ---\\
    O17 - HKLM\System\CCS\Services\Tcpip\..\{41350E36-11F1-49C5-877E-8717EBB5B88E}: DhcpNameServer = 192.168.1.1
    O17 - HKLM\System\CCS\Services\Tcpip\..\{ADF1B17C-847B-4DD4-AE20-FA36DB4B326D}: DhcpNameServer = 212.27.40.241 212.27.40.240
    O17 - HKLM\System\CS1\Services\Tcpip\..\{41350E36-11F1-49C5-877E-8717EBB5B88E}: DhcpNameServer = 192.168.1.1
    O17 - HKLM\System\CS1\Services\Tcpip\..\{ADF1B17C-847B-4DD4-AE20-FA36DB4B326D}: DhcpNameServer = 212.27.40.241 212.27.40.240
    O17 - HKLM\System\CS2\Services\Tcpip\..\{41350E36-11F1-49C5-877E-8717EBB5B88E}: DhcpNameServer = 192.168.1.1
    O17 - HKLM\System\CS2\Services\Tcpip\..\{ADF1B17C-847B-4DD4-AE20-FA36DB4B326D}: DhcpNameServer = 212.27.40.241 212.27.40.240
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240

    ---\\
    O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

    ---\\
    O20 - AppInit_DLLs: . (.Google - Google Desktop.) - C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.dll

    ---\\
    O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll

    ---\\
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll

    ---\\
    O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
    O23 - Service: (Apple Mobile Device) . (.Apple Inc. - Apple Mobile Device Service.) - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: (ASLDRService) . (. - ASLDR Service.) - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
    O23 - Service: (aswUpdSv) . (.ALWIL Software - avast! Antivirus updating service.) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: (avast! Antivirus) . (.ALWIL Software - avast! antivirus service.) - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: (ccEvtMgr) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: (ccSetMgr) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: (CLTNetCnService) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: (IJPLMSVC) . (. - PIXMA Extended Servey Program Service.) - C:\Program Files\Canon\IJPLM\IJPLMSVC.exe
    O23 - Service: (RichVideo) . (. - RichVideo Module.) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
    O23 - Service: (RoxWatch9) . (.Sonic Solutions - RoxSniffer9 Module.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe

    ---\\
    O24 - Default MHTML Editor: Last - .(. - .) - "C:\Program Files\Microsoft Office\Office12\WINWORD.exe (.not file.)

    ---\\
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Extension de garantie.job
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3880045953-1941276923-990222509-1002Core.job
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3880045953-1941276923-990222509-1002UA.job
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HDReg.job
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Recovery DVD Creator.job
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\User_Feed_Synchronization-{6D98B5E3-1C49-447B-AA80-6F5774DB7B45}.job
    [MD5.FA52C48CA18EDFB00180FD465E8F0B08] [APT] [Extension de garantie] (.Packard Bell BV.) -- C:\Program Files\Packard Bell\SetupmyPC\PBCarNot.exe
    [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
    [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
    [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-3880045953-1941276923-990222509-1002Core] (.Google Inc..) -- C:\Users\pierre\AppData\Local\Google\Update\GoogleUpdate.exe
    [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-3880045953-1941276923-990222509-1002UA] (.Google Inc..) -- C:\Users\pierre\AppData\Local\Google\Update\GoogleUpdate.exe
    [MD5.B6D82C30267289D56B4BFDE3715D8F9F] [APT] [Recovery DVD Creator] (.Packard Bell BV.) -- C:\Program Files\Packard Bell\SetupMyPc\MCDCheck.exe
    [MD5.9DDC0931EDA0F2E31C86180CBA25B0D3] [APT] [Scheduled Update for Ask Toolbar] (..) -- C:\Program Files\Ask.com\UpdateTask.exe
    [MD5.00000000000000000000000000000000] [APT] [{60369BE3-1A3E-4DC5-A3A0-0A9BA064810F}] (..) -- C:\Windows\unvise32qt.exe (.not file.)
    [MD5.00000000000000000000000000000000] [APT] [{AE99CF09-0B4D-4515-8B1F-9B7EBAAF37B3}] (..) -- C:\Windows\system32\ISUSPM.cpl -c Software Updates (.not file.)
    [MD5.7B43567B4C32AD7ADED537CD3B1342B9] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe

    ---\\
    O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Oracle - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
    O40 - ASIC: Microsoft Windows Mail 7 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (. - .) -- "C:\Program Files\Windows Mail\WinMail.exe
    O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r32.) -- C:\Windows\system32\Macromed\Flash\Flash10c.ocx

    ---\\
    O41 - Driver: (eeCtrl) . (.Symantec Corporation - Symantec Eraser Control Driver.) - C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
    O41 - Driver: (IDSvix86) . (.Symantec Corporation - IDS Core Driver.) - C:\PROGRA~2\Symantec\DEFINI~1\SymcData\idsdefs\20070108.003\IDSvix86.sys
    O41 - Driver: (prodrv04) . (.Protection Technology Co. - Star Force copy protection driver.) - C:\Windows\system32\drivers\prodrv04.sys
    O41 - Driver: (SPBBCDrv) . (.Symantec Corporation - SPBBC Driver.) - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
    O41 - Driver: (SRTSPX) . (.Symantec Corporation - Symantec AutoProtect.) - C:\Windows\System32\Drivers\SRTSPX.sys
    O41 - Driver: (SYMTDI) . (.Symantec Corporation - Network Dispatch Driver.) - C:\Windows\system32\Drivers\SYMTDI.sys

    ---\\
    O42 - Logiciel: ADSL Neuf - (..) [HKLM] -- NEUF_FR
    O42 - Logiciel: ALTools Update - (.ESTsoft Corp..) [HKLM] -- ALUpdate_is1
    O42 - Logiciel: ALZip - (.ESTsoft Corp..) [HKLM] -- ALZip_is1
    O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM] -- {B98A55FE-758D-4828-D398-F7196D6D5DD3}
    O42 - Logiciel: ATI PCI Express (3GIO) Filter Driver - (.AMD.) [HKLM] -- {E713653C-8312-4BC6-AFC9-ADE1F2F04AB9}
    O42 - Logiciel: ATK Hotkey - (.ATK.) [HKLM] -- {3912D529-02BC-4CA8-B5ED-0D0C20EB6003}
    O42 - Logiciel: AV - (.Symantec Corporation.) [HKLM] -- {F4DB525F-A986-4249-B98B-42A8066251CA}
    O42 - Logiciel: Activation Assistant for the 2007 Microsoft Office suites - (.Microsoft Corporation.) [HKLM] -- Activation Assistant for the 2007 Microsoft Office suites
    O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
    O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}
    O42 - Logiciel: Adobe Acrobat 5.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Acrobat 5.0
    O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
    O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
    O42 - Logiciel: Adobe Reader 8 - (..) [HKLM] -- AdobeReader
    O42 - Logiciel: Adobe Reader 9.3 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A93000000001}
    O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM] -- {A7DB362E-16DC-4E29-8A34-E74381E00B5B}
    O42 - Logiciel: AppCore - (.Symantec Corporation.) [HKLM] -- {EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B}
    O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {B2D328BE-45AD-4D92-96F9-2151490A203E}
    O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}
    O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}
    O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE}
    O42 - Logiciel: Atlas Routier France & Europe 2008 - (..) [HKLM] -- {333C0384-5BD3-4228-ACBA-8D0CAF59C5FB}
    O42 - Logiciel: BitTorrent - (.BitTorrent, Inc.) [HKLM] -- BitTorrent
    O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {07287123-B8AC-41CE-8346-3D777245C35B}
    O42 - Logiciel: Browser Address Error Redirector - (..) [HKLM] -- {3EE33958-7381-4E7B-A4F3-6E43098E9E9C}
    O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
    O42 - Logiciel: Chilipoker - (..) [HKLM] -- Chilipoker
    O42 - Logiciel: Configuration DivX - (.DivX, Inc. .) [HKLM] -- DivX Setup.divx.com
    O42 - Logiciel: Creator 9 - (..) [HKLM] -- CREATOR9
    O42 - Logiciel: Deezer Desktop - (.UNKNOWN.) [HKLM] -- DeezerDesktop.003CB2DDEA6AC0BFA0D6CFCD9422B800DAC858A3.1
    O42 - Logiciel: Deezer Desktop - (.UNKNOWN.) [HKLM] -- {E0F67005-19E0-C30A-34E9-D53EEA6F410E}
    O42 - Logiciel: DivX Converter - (.DivX, Inc..) [HKLM] -- {B13A7C41581B411290FBC0395694E2A9}
    O42 - Logiciel: DivX Plus DirectShow Filters - (.DivX, Inc..) [HKLM] -- DivX Plus DirectShow Filters
    O42 - Logiciel: Driver Detective - (.PC Drivers HeadQuarters.) [HKLM] -- {4640FDE1-B83A-4376-84ED-86F86BEE2D41}
    O42 - Logiciel: EPSON Scan - (..) [HKLM] -- EPSON Scanner
    O42 - Logiciel: Favorit (skagg) - (..) [HKLM] -- skagg
    O42 - Logiciel: Flash Player 9 Internet Explorer - (..) [HKLM] -- Flashplayer
    O42 - Logiciel: Free Video Converter V 2.9 - (.Koyote Soft.) [HKLM] -- Free Video Converter_is1
    O42 - Logiciel: GIMP 2.6.6 - (..) [HKLM] -- WinGimp-2.0_is1
    O42 - Logiciel: GearDrvs - (.Symantec Corporation.) [HKLM] -- {206FD69B-F9FE-4164-81BD-D52552BC9C23}
    O42 - Logiciel: Google BAE - (..) [HKLM] -- GoogleBAE
    O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome
    O42 - Logiciel: Google Desktop - (.Google.) [HKLM] -- Google Desktop
    O42 - Logiciel: Google Earth - (..) [HKLM] -- GOOGLE_EARTH
    O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}
    O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
    O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
    O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
    O42 - Logiciel: GoogleDesktop - (..) [HKLM] -- GoogleDesktop
    O42 - Logiciel: GoogleToolbar - (..) [HKLM] -- GoogleToolbar
    O42 - Logiciel: HDReg France - (.Acxiom.) [HKLM] -- {0ED40D2A-7131-4FE7-941E-5C329336F712}
    O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
    O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
    O42 - Logiciel: Infocentre Rev. 2.0 - (..) [HKLM] -- Infocentre
    O42 - Logiciel: Java(TM) 6 Update 21 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216016FF}
    O42 - Logiciel: LiveUpdate 3.2 (Symantec Corporation) - (.Symantec Corporation.) [HKLM] -- LiveUpdate
    O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
    O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}
    O42 - Logiciel: Magic Sports - (..) [HKLM] -- MagicSports
    O42 - Logiciel: MagicSports 3.5 - (..) [HKLM] -- {5927AF0D-335C-41D6-937B-54587EBD6D2C}
    O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
    O42 - Logiciel: Metaboli - (..) [HKLM] -- METABOLI
    O42 - Logiciel: Microsoft .NET Framework 1.1 - (..) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
    O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB953297) - (..) [HKLM] -- M953297
    O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}
    O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
    O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
    O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- HOMESTUDENTR
    O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM] -- {95120000-00AF-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {A49F249F-0C91-497F-86DF-B2585E8E76B7}
    O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {0214A441-A4AB-43A8-8DEF-2F73C5364673}
    O42 - Logiciel: Microsoft Works 9 SE - (..) [HKLM] -- works9se
    O42 - Logiciel: Microsoft® Office Trial 2007 - (..) [HKLM] -- OFF2k7_FR
    O42 - Logiciel: MobileMe Control Panel - (.Apple Inc..) [HKLM] -- {1E5E2F9A-17D3-45CA-8FF0-B0C2927D4B03}
    O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE}
    O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra
    O42 - Logiciel: Mozilla Firefox (3.6.12) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.12)
    O42 - Logiciel: Norton 360 (Symantec Corporation) - (.Symantec Corporation.) [HKLM] -- SymSetup.{2D617065-1C52-4240-B5BC-C0AE12157777}
    O42 - Logiciel: Norton 360 - (..) [HKLM] -- N360_2007_FR
    O42 - Logiciel: Norton 360 - (.Symantec Corporation.) [HKLM] -- {21829177-4DED-4209-AD08-490B3AC9C01A}
    O42 - Logiciel: Norton 360 - (.Symantec Corporation.) [HKLM] -- {2D617065-1C52-4240-B5BC-C0AE12157777}
    O42 - Logiciel: Norton 360 - (.Symantec Corporation.) [HKLM] -- {40DA9A54-48CA-4A2C-AEAF-F67715BB046E}
    O42 - Logiciel: Norton 360 - (.Symantec Corporation.) [HKLM] -- {63A6E9A9-A190-46D4-9430-2DB28654AFD8}
    O42 - Logiciel: Norton 360 Help - (.Symantec Corporation.) [HKLM] -- {1CA941F1-5006-487E-9FD4-09F812A7D6B8}
    O42 - Logiciel: Norton Confidential Browser Component - (.Symantec Corporation.) [HKLM] -- {4843B611-8FCB-4428-8C23-31D0A5EAE164}
    O42 - Logiciel: Norton Confidential Web Authentification Component - (.Symantec Corporation.) [HKLM] -- {3074EB89-1BCA-4AEF-AFF4-EFB4634C1923}
    O42 - Logiciel: Norton Confidential Web Protection Component - (.Symantec Corporation.) [HKLM] -- {D353CC51-430D-4C6F-9B7E-52003DA1E05A}
    O42 - Logiciel: OLYMPUS Master 2 - (.OLYMPUS IMAGING CORP..) [HKLM] -- {45FCADDB-0B29-457E-83A1-D245C62A716C}
    O42 - Logiciel: OLYMPUS muvee theaterPack - (.OLYMPUS IMAGING CORP..) [HKLM] -- {B3282FB8-874B-4054-8356-9EB391A826F9}
    O42 - Logiciel: OpenOffice.org 3.1 - (.OpenOffice.org.) [HKLM] -- {0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}
    O42 - Logiciel: PIXMA Extended Survey Program - (..) [HKLM] -- CANONIJPLM100
    O42 - Logiciel: Packard Bell ImageWriter - (..) [HKLM] -- ImageWriter
    O42 - Logiciel: Packard Bell LCD Test - (..) [HKLM] -- LCDTest
    O42 - Logiciel: Packard Bell Updator - (..) [HKLM] -- Updator
    O42 - Logiciel: Philips Digital Media Manager - (..) [HKLM] -- {ED0CF8BD-D4C4-4E8E-8E96-15EAA0316975}
    O42 - Logiciel: Picasa 2 - (.Google, Inc..) [HKLM] -- Picasa2
    O42 - Logiciel: Picasa2 - (..) [HKLM] -- Picasa_2
    O42 - Logiciel: QUESTAR 3.1 - (.Big Monkey.) [HKLM] -- QUESTAR 3.1_is1
    O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {A429C2AE-EBF1-4F81-A221-1C115CAADDAD}
    O42 - Logiciel: RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01 - (..) [HKLM] -- {59F6A514-9813-47A3-948C-8A155460CC2A}
    O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
    O42 - Logiciel: Roxio Creator 9 LE - (.Roxio.) [HKLM] -- {B7FB0C86-41A4-4402-9A33-912C462042A0}
    O42 - Logiciel: Roxio Update Manager - (.Roxio.) [HKLM] -- {30465B6C-B53F-49A1-9EBA-A3F187AD502E}
    O42 - Logiciel: SPBBC 32bit - (.Symantec Corporation.) [HKLM] -- {77772678-817F-4401-9301-ED1D01A8DA56}
    O42 - Logiciel: SUPER © Version 2010.bld.38 (May 2, 2010) - (.eRightSoft.) [HKLM] -- SUPER ©
    O42 - Logiciel: Samsung Master - (.Samsung.) [HKLM] -- {AEC0CEBC-0FC7-4716-8222-1C4A742719B1}
    O42 - Logiciel: ScanSoft OmniPage SE 4 - (.Nuance Communications, Inc..) [HKLM] -- {DEE88727-779B-47A9-ACEF-F87CA5F92A65}
    O42 - Logiciel: SetUp My PC - (..) [HKLM] -- SETUPMYPC_FR
    O42 - Logiciel: Shockwave player 10 - (..) [HKLM] -- Shockwave
    O42 - Logiciel: Skype 3.2.2.163 - (..) [HKLM] -- SKYPE
    O42 - Logiciel: Skype(TM) 4.2 - (.Skype Technologies S.A..) [HKLM] -- {D103C4BA-F905-437A-8049-DB24763BBE36}
    O42 - Logiciel: SuppSoft - (.Symantec Corporation.) [HKLM] -- {022DA2C3-81C7-4003-A6BC-1BB147B20097}
    O42 - Logiciel: SymNet - (.Symantec Corporation.) [HKLM] -- {2DA85B02-13C0-4E6D-9A76-22E6B3DD0CB2}
    O42 - Logiciel: Symantec Real Time Storage Protection Component - (.Symantec Corporation.) [HKLM] -- {D6E6FA4A-5445-4850-8365-CF216C1CBB7A}
    O42 - Logiciel: Symantec Technical Support Controls - (.Symantec Corporation.) [HKLM] -- {92B1B3CC-EC78-45B8-96D0-8B3F11495864}
    O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics.) [HKLM] -- SynTPDeinstKey
    O42 - Logiciel: Texas Hold 'Em - (.Micro Application.) [HKLM] -- Texas Hold 'Em
    O42 - Logiciel: TubeMaster++ version 1.9 - (.GgSofts.) [HKLM] -- {AA4D4EE3-0195-49F6-B0BF-C2789FD9C582}_is1
    O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707
    O42 - Logiciel: Usenet.nl - (..) [HKLM] -- Usenet.nl_is1
    O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM] -- {5EE7D259-D137-4438-9A5F-42F432EC0421}
    O42 - Logiciel: VLC media player 1.0.1 - (.VideoLAN Team.) [HKLM] -- VLC media player
    O42 - Logiciel: WinPcap 4.1.2 - (.CACE Technologies.) [HKLM] -- WinPcapInst
    O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
    O42 - Logiciel: Zattoo4 4.0.5 - (.Zattoo Inc..) [HKLM] -- Zattoo4
    O42 - Logiciel: avast! Antivirus - (.Alwil Software.) [HKLM] -- avast!
    O42 - Logiciel: ccCommon - (.Symantec.) [HKLM] -- {3CCAD2EF-CFF2-4637-82AA-AABF370282D3}
    O42 - Logiciel: eMule - (..) [HKLM] -- eMule
    O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {D1A74FBB-CA8D-4CCA-9B89-BAAA436DB178}

    ---\\ HKCU & HKLM Software Keys
    [HKCU\Software\2015]
    [HKCU\Software\AC3Filter]
    [HKCU\Software\ALWIL Software]
    [HKCU\Software\AMD]
    [HKCU\Software\ATI Technologies Inc.]
    [HKCU\Software\ATI]
    [HKCU\Software\Adobe]
    [HKCU\Software\AppDataLow\AskBarDis]
    [HKCU\Software\AppDataLow\AskHomepage]
    [HKCU\Software\AppDataLow\AskToolbarInfo]
    [HKCU\Software\AppDataLow\Software\AskToolbar]
    [HKCU\Software\AppDataLow\Software\Conduit]
    [HKCU\Software\AppDataLow\Software\DivXNetworks]
    [HKCU\Software\AppDataLow\Software\DivX]
    [HKCU\Software\AppDataLow\Software\Google]
    [HKCU\Software\AppDataLow\Software\Microsoft]
    [HKCU\Software\AppDataLow\Software\Monitored]
    [HKCU\Software\AppDataLow\Software\settings]
    [HKCU\Software\AppDataLow\Software]
    [HKCU\Software\AppDataLow]
    [HKCU\Software\Apple Computer, Inc.]
    [HKCU\Software\Apple Inc.]
    [HKCU\Software\Ask.com]
    [HKCU\Software\AskToolbar]
    [HKCU\Software\Borland]
    [HKCU\Software\CDDB]
    [HKCU\Software\CanonBJ]
    [HKCU\Software\Canon]
    [HKCU\Software\Chilipoker]
    [HKCU\Software\Classes]
    [HKCU\Software\Clients]
    [HKCU\Software\CyberLink]
    [HKCU\Software\Cygnus Solutions]
    [HKCU\Software\DivXNetworks]
    [HKCU\Software\DivX]
    [HKCU\Software\DownloadManager]
    [HKCU\Software\EPSON]
    [HKCU\Software\ESTsoft]
    [HKCU\Software\Etiam]
    [HKCU\Software\FullRecall]
    [HKCU\Software\GameSpy]
    [HKCU\Software\Google]
    [HKCU\Software\InstallShield]
    [HKCU\Software\JEDI-VCL]
    [HKCU\Software\JavaSoft]
    [HKCU\Software\Kazaa]
    [HKCU\Software\Live-Player]
    [HKCU\Software\Local AppWizard-Generated Applications]
    [HKCU\Software\Macromedia]
    [HKCU\Software\MainConcept]
    [HKCU\Software\Malwarebytes' Anti-Malware]
    [HKCU\Software\MicroVision]
    [HKCU\Software\MozillaPlugins]
    [HKCU\Software\Mozilla]
    [HKCU\Software\Netscape]
    [HKCU\Software\ODBC]
    [HKCU\Software\OLYMPUS]
    [HKCU\Software\On Hand Software]
    [HKCU\Software\OpenOffice.org]
    [HKCU\Software\PP_PHILIPS_PH001]
    [HKCU\Software\Packard Bell]
    [HKCU\Software\Philips]
    [HKCU\Software\Piriform]
    [HKCU\Software\Policies]
    [HKCU\Software\Realtek]
    [HKCU\Software\Roxio]
    [HKCU\Software\STOIK Imagic 30]
    [HKCU\Software\ScanSoft]
    [HKCU\Software\Screamer Radio]
    [HKCU\Software\SecuROM]
    [HKCU\Software\Skype]
    [HKCU\Software\Sonic]
    [HKCU\Software\Stoik]
    [HKCU\Software\Symantec]
    [HKCU\Software\Synaptics]
    [HKCU\Software\Trolltech]
    [HKCU\Software\VirtualDJ]
    [HKCU\Software\YahooPartnerToolbar]
    [HKCU\Software\Zattoo]
    [HKCU\Software\eMule]
    [HKCU\Software\freeTVRadio]
    [HKCU\Software\map&guide]
    [HKLM\Software\ALWIL Software]
    [HKLM\Software\AMD]
    [HKLM\Software\ATI Technologies]
    [HKLM\Software\ATI]
    [HKLM\Software\ATK]
    [HKLM\Software\Adobe]
    [HKLM\Software\Apple Computer, Inc.]
    [HKLM\Software\Apple Inc.]
    [HKLM\Software\AsLdr]
    [HKLM\Software\AviSynth]
    [HKLM\Software\BrowserChoice]
    [HKLM\Software\C07ft5Y]
    [HKLM\Software\CDDB]
    [HKLM\Software\Canal+ Active]
    [HKLM\Software\Canon]
    [HKLM\Software\Classes]
    [HKLM\Software\Clients]
    [HKLM\Software\Conduit]
    [HKLM\Software\CyberLink]
    [HKLM\Software\Cygnus Solutions]
    [HKLM\Software\Debug]
    [HKLM\Software\DivXNetworks]
    [HKLM\Software\DivX]
    [HKLM\Software\EPSON]
    [HKLM\Software\ESTsoft]
    [HKLM\Software\Electronic Arts]
    [HKLM\Software\FullCircle]
    [HKLM\Software\GEAR Software]
    [HKLM\Software\GNU]
    [HKLM\Software\Google]
    [HKLM\Software\InstallShield]
    [HKLM\Software\InstalledOptions]
    [HKLM\Software\Intel]
    [HKLM\Software\JavaSoft]
    [HKLM\Software\JreMetrics]
    [HKLM\Software\Kazaa]
    [HKLM\Software\Live-Player]
    [HKLM\Software\Macromedia]
    [HKLM\Software\Malwarebytes' Anti-Malware]
    [HKLM\Software\Micro Application]
    [HKLM\Software\MicroVision]
    [HKLM\Software\MimarSinan]
    [HKLM\Software\Mindscape]
    [HKLM\Software\Motorola]
    [HKLM\Software\MozillaPlugins]
    [HKLM\Software\Mozilla]
    [HKLM\Software\ODBC]
    [HKLM\Software\OLYMPUS]
    [HKLM\Software\Oak Technology]
    [HKLM\Software\OpenOffice.org]
    [HKLM\Software\PB_EBAY]
    [HKLM\Software\PB_FIRSTCHOICE]
    [HKLM\Software\PB_KODAK]
    [HKLM\Software\PB_METABOLI]
    [HKLM\Software\PTECH]
    [HKLM\Software\Philips]
    [HKLM\Software\Piriform]
    [HKLM\Software\Policies]
    [HKLM\Software\Realtek Semiconductor Corp.]
    [HKLM\Software\Realtek]
    [HKLM\Software\RegisteredApplications]
    [HKLM\Software\Roxio]
    [HKLM\Software\S3R521]
    [HKLM\Software\SRS Labs]
    [HKLM\Software\SamsungMaster]
    [HKLM\Software\Samsung]
    [HKLM\Software\Save_Uninstall]
    [HKLM\Software\ScanSoft]
    [HKLM\Software\Skype]
    [HKLM\Software\Sonic]
    [HKLM\Software\Sun Microsystems]
    [HKLM\Software\Symantec Technical Support]
    [HKLM\Software\Symantec]
    [HKLM\Software\Synaptics]
    [HKLM\Software\TrendMicro]
    [HKLM\Software\VideoLAN]
    [HKLM\Software\Volatile]
    [HKLM\Software\Waves Audio]
    [HKLM\Software\Westwood]
    [HKLM\Software\WholeSecurity]
    [HKLM\Software\WinPcap]
    [HKLM\Software\Windows]
    [HKLM\Software\Wise Solutions]
    [HKLM\Software\atomixmp3]
    [HKLM\Software\illiminable]
    [HKLM\Software\map&guide]
    [HKLM\Software\mozilla.org]
    [HKLM\Software\muvee Technologies]

    ---\\
    O43 - CFD: 23/01/2008 - 12:53:36 ----D- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
    O43 - CFD: 29/10/2010 - 09:09:32 ----D- C:\Program Files\Adobe
    O43 - CFD: 01/11/2009 - 19:35:54 ----D- C:\Program Files\Alwil Software
    O43 - CFD: 23/01/2008 - 12:18:44 ----D- C:\Program Files\AMD
    O43 - CFD: 05/11/2009 - 22:07:30 ----D- C:\Program Files\Apple Software Update
    O43 - CFD: 07/11/2010 - 18:06:04 ----D- C:\Program Files\Ask.com
    O43 - CFD: 23/01/2008 - 12:19:46 ----D- C:\Program Files\ATI
    O43 - CFD: 01/11/2010 - 16:03:16 ----D- C:\Program Files\ATI Technologies
    O43 - CFD: 23/01/2008 - 12:18:20 ----D- C:\Program Files\ATK Hotkey
    O43 - CFD: 17/10/2010 - 15:57:40 ----D- C:\Program Files\AviSynth 2.5
    O43 - CFD: 09/11/2009 - 22:24:00 ----D- C:\Program Files\BitTorrent
    O43 - CFD: 05/11/2009 - 22:15:00 ----D- C:\Program Files\Bonjour
    O43 - CFD: 13/09/2010 - 17:31:50 ----D- C:\Program Files\Canon
    O43 - CFD: 22/11/2010 - 13:42:42 ----D- C:\Program Files\CCleaner
    O43 - CFD: 29/10/2010 - 09:09:24 ----D- C:\Program Files\Common Files
    O43 - CFD: 05/11/2009 - 15:36:40 ----D- C:\Program Files\Conduit
    O43 - CFD: 23/01/2008 - 12:41:24 ----D- C:\Program Files\CyberLink
    O43 - CFD: 29/10/2010 - 09:09:36 ----D- C:\Program Files\Deezer
    O43 - CFD: 01/04/2010 - 15:55:24 ----D- C:\Program Files\DivX
    O43 - CFD: 24/08/2008 - 13:52:24 ----D- C:\Program Files\EA Games
    O43 - CFD: 24/10/2008 - 17:26:02 ----D- C:\Program Files\Eidos
    O43 - CFD: 03/11/2009 - 22:25:24 ----D- C:\Program Files\eMule
    O43 - CFD: 25/10/2010 - 11:51:36 ----D- C:\Program Files\epson
    O43 - CFD: 17/10/2010 - 15:56:20 ----D- C:\Program Files\eRightSoft
    O43 - CFD: 17/04/2010 - 20:55:58 ----D- C:\Program Files\ESTsoft
    O43 - CFD: 11/03/2008 - 18:27:08 -SH-D- C:\Program Files\Fichiers communs
    O43 - CFD: 17/10/2010 - 16:03:44 ----D- C:\Program Files\Free Video Converter
    O43 - CFD: 10/06/2009 - 16:29:24 ----D- C:\Program Files\GIMP-2.0
    O43 - CFD: 23/02/2010 - 18:49:22 ----D- C:\Program Files\Google
    O43 - CFD: 23/01/2008 - 12:32:28 ----D- C:\Program Files\HDReg
    O43 - CFD: 06/07/2008 - 18:53:02 ----D- C:\Program Files\Impressions Games
    O43 - CFD: 05/04/2010 - 12:03:46 --H-D- C:\Program Files\InstallShield Installation Information
    O43 - CFD: 20/03/2010 - 19:06:58 ----D- C:\Program Files\Internet Download Manager
    O43 - CFD: 01/04/2010 - 02:18:00 ----D- C:\Program Files\Internet Explorer
    O43 - CFD: 05/11/2009 - 22:18:34 ----D- C:\Program Files\iPod
    O43 - CFD: 05/11/2009 - 22:21:10 ----D- C:\Program Files\iTunes
    O43 - CFD: 03/08/2010 - 15:55:54 ----D- C:\Program Files\Java
    O43 - CFD: 02/11/2009 - 14:55:46 ----D- C:\Program Files\JRE
    O43 - CFD: 02/11/2009 - 23:03:26 ----D- C:\Program Files\Kazaa
    O43 - CFD: 09/06/2010 - 00:27:48 ----D- C:\Program Files\Lecteur CANALPLAY
    O43 - CFD: 20/09/2010 - 16:25:00 ----D- C:\Program Files\Live-Player
    O43 - CFD: 22/11/2010 - 16:52:32 ----D- C:\Program Files\Malwarebytes' Anti-Malware
    O43 - CFD: 06/07/2008 - 19:09:36 ----D- C:\Program Files\Managed DirectX (0901)
    O43 - CFD: 04/04/2008 - 19:12:12 ----D- C:\Program Files\Micro Application
    O43 - CFD: 04/04/2008 - 18:50:10 ----D- C:\Program Files\Microsoft Games
    O43 - CFD: 23/01/2008 - 12:51:38 ----D- C:\Program Files\Microsoft Office
    O43 - CFD: 23/01/2008 - 12:51:46 ----D- C:\Program Files\Microsoft Works
    O43 - CFD: 23/01/2008 - 12:51:18 ----D- C:\Program Files\Microsoft.NET
    O43 - CFD: 11/03/2010 - 16:27:12 ----D- C:\Program Files\Movie Maker
    O43 - CFD: 06/11/2010 - 14:23:24 ----D- C:\Program Files\Mozilla Firefox
    O43 - CFD: 02/11/2006 - 13:37:36 ----D- C:\Program Files\MSBuild
    O43 - CFD: 02/11/2006 - 13:37:36 ----D- C:\Program Files\MSN
    O43 - CFD: 23/01/2009 - 14:42:48 ----D- C:\Program Files\MSXML 4.0
    O43 - CFD: 31/03/2008 - 12:06:40 ----D- C:\Program Files\Norton 360
    O43 - CFD: 23/01/2009 - 14:43:36 ----D- C:\Program Files\OLYMPUS
    O43 - CFD: 02/11/2009 - 14:55:40 ----D- C:\Program Files\OpenOffice.org 3
    O43 - CFD: 15/03/2008 - 22:52:08 ----D- C:\Program Files\Packard Bell
    O43 - CFD: 14/04/2010 - 18:56:42 ----D- C:\Program Files\PC Drivers HeadQuarters
    O43 - CFD: 16/03/2008 - 17:15:14 ----D- C:\Program Files\Philips
    O43 - CFD: 23/01/2008 - 12:53:52 ----D- C:\Program Files\Picasa2
    O43 - CFD: 11/09/2010 - 10:09:18 ----D- C:\Program Files\QUESTAR31
    O43 - CFD: 05/11/2009 - 22:14:10 ----D- C:\Program Files\QuickTime
    O43 - CFD: 23/01/2008 - 12:24:54 ----D- C:\Program Files\Realtek
    O43 - CFD: 02/11/2006 - 13:37:36 ----D- C:\Program Files\Reference Assemblies
    O43 - CFD: 02/11/2009 - 10:22:42 ----D- C:\Program Files\Roxio
    O43 - CFD: 06/11/2008 - 11:14:28 ----D- C:\Program Files\Samsung
    O43 - CFD: 01/04/2008 - 18:31:26 ----D- C:\Program Files\ScanSoft
    O43 - CFD: 01/09/2008 - 18:24:50 ----D- C:\Program Files\Sierra
    O43 - CFD: 04/07/2010 - 11:38:36 R---D- C:\Program Files\Skype
    O43 - CFD: 23/01/2008 - 12:45:16 ----D- C:\Program Files\Symantec
    O43 - CFD: 23/01/2008 - 12:20:34 ----D- C:\Program Files\Synaptics
    O43 - CFD: 22/11/2010 - 15:34:46 ----D- C:\Program Files\Trend Micro
    O43 - CFD: 03/08/2010 - 15:51:50 ----D- C:\Program Files\TubeMaster++
    O43 - CFD: 02/11/2006 - 14:01:56 --H-D- C:\Program Files\Uninstall Information
    O43 - CFD: 05/04/2010 - 14:53:16 ----D- C:\Program Files\Usenet.nl
    O43 - CFD: 28/02/2009 - 12:58:34 ----D- C:\Program Files\VideoLAN
    O43 - CFD: 23/01/2008 - 20:29:08 ----D- C:\Program Files\Windows Calendar
    O43 - CFD: 23/01/2008 - 20:23:04 ----D- C:\Program Files\Windows Collaboration
    O43 - CFD: 23/01/2008 - 20:44:00 ----D- C:\Program Files\Windows Defender
    O43 - CFD: 23/01/2008 - 20:23:04 ----D- C:\Program Files\Windows Journal
    O43 - CFD: 14/04/2010 - 02:20:16 ----D- C:\Program Files\Windows Mail
    O43 - CFD: 02/11/2009 - 10:29:40 ----D- C:\Program Files\Windows Media Player
    O43 - CFD: 11/03/2008 - 18:27:08 ----D- C:\Program Files\Windows NT
    O43 - CFD: 23/01/2008 - 20:23:04 ----D- C:\Program Files\Windows Photo Gallery
    O43 - CFD: 28/06/2009 - 03:07:06 ----D- C:\Program Files\Windows Sidebar
    O43 - CFD: 03/08/2010 - 16:05:02 ----D- C:\Program Files\WinPcap
    O43 - CFD: 11/11/2010 - 20:29:34 ----D- C:\Program Files\Zattoo4
    O43 - CFD: 22/11/2010 - 20:32:30 ----D- C:\Program Files\ZHPDiag
    O43 - CFD: 22/04/2010 - 08:39:22 ----D- C:\Program Files\Common Files\Adobe
    O43 - CFD: 29/10/2010 - 09:09:24 ----D- C:\Program Files\Common Files\Adobe AIR
    O43 - CFD: 05/11/2009 - 22:18:30 ----D- C:\Program Files\Common Files\Apple
    O43 - CFD: 01/04/2008 - 18:26:48 ----D- C:\Program Files\Common Files\CANON
    O43 - CFD: 23/01/2008 - 12:51:36 ----D- C:\Program Files\Common Files\DESIGNER
    O43 - CFD: 01/04/2010 - 15:53:18 ----D- C:\Program Files\Common Files\DivX Shared
    O43 - CFD: 04/04/2008 - 19:17:28 ----D- C:\Program Files\Common Files\GIS
    0
  7. sweetbad Messages postés 15 Statut Membre
     
    et la fin :O43 - CFD: 23/01/2008 - 12:40:58 ----D- C:\Program Files\Common Files\InstallShield
    O43 - CFD: 03/08/2010 - 16:04:16 ----D- C:\Program Files\Common Files\Java
    O43 - CFD: 04/04/2008 - 19:17:28 ----D- C:\Program Files\Common Files\mapserv
    O43 - CFD: 23/01/2008 - 12:51:44 ----D- C:\Program Files\Common Files\microsoft shared
    O43 - CFD: 23/01/2009 - 14:47:12 ----D- C:\Program Files\Common Files\muvee Technologies
    O43 - CFD: 01/04/2010 - 15:54:14 ----D- C:\Program Files\Common Files\PX Storage Engine
    O43 - CFD: 23/01/2008 - 12:38:54 ----D- C:\Program Files\Common Files\Roxio Shared
    O43 - CFD: 01/04/2008 - 18:31:54 ----D- C:\Program Files\Common Files\ScanSoft Shared
    O43 - CFD: 02/11/2006 - 12:18:34 ----D- C:\Program Files\Common Files\Services
    O43 - CFD: 04/07/2010 - 11:38:34 ----D- C:\Program Files\Common Files\Skype
    O43 - CFD: 23/01/2008 - 12:38:54 ----D- C:\Program Files\Common Files\Sonic Shared
    O43 - CFD: 02/11/2006 - 12:18:34 ----D- C:\Program Files\Common Files\SpeechEngines
    O43 - CFD: 23/01/2008 - 12:39:10 ----D- C:\Program Files\Common Files\SureThing Shared
    O43 - CFD: 16/03/2008 - 09:23:18 ----D- C:\Program Files\Common Files\SWF Studio
    O43 - CFD: 31/03/2008 - 12:11:30 ----D- C:\Program Files\Common Files\Symantec Shared
    O43 - CFD: 23/01/2008 - 20:56:38 ----D- C:\Program Files\Common Files\System
    O43 - CFD: 29/10/2010 - 09:09:52 ----D- C:\ProgramData\Adobe
    O43 - CFD: 05/11/2009 - 22:01:16 ----D- C:\ProgramData\Apple
    O43 - CFD: 05/11/2009 - 22:18:22 ----D- C:\ProgramData\Apple Computer
    O43 - CFD: 02/11/2006 - 14:02:04 -SH-D- C:\ProgramData\Application Data
    O43 - CFD: 01/11/2010 - 16:04:08 ----D- C:\ProgramData\ATI
    O43 - CFD: 11/03/2008 - 18:27:08 -SH-D- C:\ProgramData\Bureau
    O43 - CFD: 10/04/2010 - 12:30:28 ----D- C:\ProgramData\CanonCP
    O43 - CFD: 04/08/2008 - 12:38:58 ----D- C:\ProgramData\CanonIJPLM
    O43 - CFD: 23/01/2008 - 12:41:34 ----D- C:\ProgramData\CyberLink
    O43 - CFD: 02/11/2006 - 14:02:04 -SH-D- C:\ProgramData\Desktop
    O43 - CFD: 01/04/2010 - 15:57:40 ----D- C:\ProgramData\DivX
    O43 - CFD: 02/11/2006 - 14:02:04 -SH-D- C:\ProgramData\Documents
    O43 - CFD: 03/11/2009 - 22:25:30 ----D- C:\ProgramData\eMule
    O43 - CFD: 17/04/2010 - 20:55:58 ----D- C:\ProgramData\ESTsoft
    O43 - CFD: 11/03/2008 - 18:27:08 -SH-D- C:\ProgramData\Favoris
    O43 - CFD: 02/11/2006 - 14:02:04 -SH-D- C:\ProgramData\Favorites
    O43 - CFD: 27/06/2009 - 16:06:52 ----D- C:\ProgramData\Google
    O43 - CFD: 23/01/2008 - 12:39:20 ----D- C:\ProgramData\InstallShield
    O43 - CFD: 24/10/2008 - 17:17:00 ----D- C:\ProgramData\LaForet
    O43 - CFD: 22/11/2010 - 16:52:22 ----D- C:\ProgramData\Malwarebytes
    O43 - CFD: 11/03/2008 - 18:27:08 -SH-D- C:\ProgramData\Menu Démarrer
    O43 - CFD: 27/06/2009 - 16:09:44 -S--D- C:\ProgramData\Microsoft
    O43 - CFD: 23/01/2008 - 12:52:54 ----D- C:\ProgramData\Microsoft Help
    O43 - CFD: 11/03/2008 - 18:27:08 -SH-D- C:\ProgramData\Modèles
    O43 - CFD: 14/04/2010 - 18:58:46 ----D- C:\ProgramData\PC Drivers HeadQuarters
    O43 - CFD: 24/10/2008 - 17:16:32 ----D- C:\ProgramData\QuickTime
    O43 - CFD: 04/12/2008 - 07:13:10 ----D- C:\ProgramData\Roxio
    O43 - CFD: 01/04/2008 - 18:32:02 ----D- C:\ProgramData\ScanSoft
    O43 - CFD: 04/07/2010 - 11:38:26 ----D- C:\ProgramData\Skype
    O43 - CFD: 27/06/2009 - 20:19:22 ----D- C:\ProgramData\Sonic
    O43 - CFD: 02/11/2006 - 14:02:04 -SH-D- C:\ProgramData\Start Menu
    O43 - CFD: 21/04/2010 - 15:01:10 ----D- C:\ProgramData\Sun
    O43 - CFD: 01/04/2008 - 18:41:32 ----D- C:\ProgramData\Symantec
    O43 - CFD: 02/11/2006 - 14:02:06 -SH-D- C:\ProgramData\Templates
    O43 - CFD: 14/04/2010 - 18:59:04 ----D- C:\ProgramData\UAB
    O43 - CFD: 22/04/2010 - 08:39:22 ----D- C:\Program Files\Common Files\Adobe
    O43 - CFD: 29/10/2010 - 09:09:24 ----D- C:\Program Files\Common Files\Adobe AIR
    O43 - CFD: 05/11/2009 - 22:18:30 ----D- C:\Program Files\Common Files\Apple
    O43 - CFD: 01/04/2008 - 18:26:48 ----D- C:\Program Files\Common Files\CANON
    O43 - CFD: 23/01/2008 - 12:51:36 ----D- C:\Program Files\Common Files\DESIGNER
    O43 - CFD: 01/04/2010 - 15:53:18 ----D- C:\Program Files\Common Files\DivX Shared
    O43 - CFD: 04/04/2008 - 19:17:28 ----D- C:\Program Files\Common Files\GIS
    O43 - CFD: 23/01/2008 - 12:40:58 ----D- C:\Program Files\Common Files\InstallShield
    O43 - CFD: 03/08/2010 - 16:04:16 ----D- C:\Program Files\Common Files\Java
    O43 - CFD: 04/04/2008 - 19:17:28 ----D- C:\Program Files\Common Files\mapserv
    O43 - CFD: 23/01/2008 - 12:51:44 ----D- C:\Program Files\Common Files\microsoft shared
    O43 - CFD: 23/01/2009 - 14:47:12 ----D- C:\Program Files\Common Files\muvee Technologies
    O43 - CFD: 01/04/2010 - 15:54:14 ----D- C:\Program Files\Common Files\PX Storage Engine
    O43 - CFD: 23/01/2008 - 12:38:54 ----D- C:\Program Files\Common Files\Roxio Shared
    O43 - CFD: 01/04/2008 - 18:31:54 ----D- C:\Program Files\Common Files\ScanSoft Shared
    O43 - CFD: 02/11/2006 - 12:18:34 ----D- C:\Program Files\Common Files\Services
    O43 - CFD: 04/07/2010 - 11:38:34 ----D- C:\Program Files\Common Files\Skype
    O43 - CFD: 23/01/2008 - 12:38:54 ----D- C:\Program Files\Common Files\Sonic Shared
    O43 - CFD: 02/11/2006 - 12:18:34 ----D- C:\Program Files\Common Files\SpeechEngines
    O43 - CFD: 23/01/2008 - 12:39:10 ----D- C:\Program Files\Common Files\SureThing Shared
    O43 - CFD: 16/03/2008 - 09:23:18 ----D- C:\Program Files\Common Files\SWF Studio
    O43 - CFD: 31/03/2008 - 12:11:30 ----D- C:\Program Files\Common Files\Symantec Shared
    O43 - CFD: 23/01/2008 - 20:56:38 ----D- C:\Program Files\Common Files\System

    ---\\
    O44 - LFC:[MD5.25EC3688F9940BBBFB14D1D2156748AA] - 22/11/2010 - 20:17:40 ---A- . (. - .) -- C:\Windows\System32\PerfStringBackup.INI [1538854]
    O44 - LFC:[MD5.92CCFB3EAD9410EC034F8F4317305C4C] - 22/11/2010 - 20:17:40 ---A- . (. - .) -- C:\Windows\System32\perfc009.dat [107614]
    O44 - LFC:[MD5.F10CB0C523D7D1385090409921901BD6] - 22/11/2010 - 20:17:40 ---A- . (. - .) -- C:\Windows\System32\perfc00C.dat [122020]
    O44 - LFC:[MD5.CE531D9D2344327464F92AA5AA3F69BA] - 22/11/2010 - 20:17:40 ---A- . (. - .) -- C:\Windows\System32\perfh009.dat [618470]
    O44 - LFC:[MD5.AD8FEDAA9BADEE24787C0573EDD8B910] - 22/11/2010 - 20:17:40 ---A- . (. - .) -- C:\Windows\System32\perfh00C.dat [700222]
    O44 - LFC:[MD5.6CEE1200D8DCFA7500FCFD7F40EF1200] - 22/11/2010 - 20:17:30 ---A- . (. - .) -- C:\Windows\WindowsUpdate.log [1706418]
    O44 - LFC:[MD5.A52BC5841F888CA88ED9324015459872] - 22/11/2010 - 20:11:33 ---A- . (. - .) -- C:\Windows\System32\FNTCACHE.DAT [357752]
    O44 - LFC:[MD5.C42162732100CB782EE26CEF8F4335E6] - 22/11/2010 - 20:11:08 -S-A- . (. - .) -- C:\Windows\bootstat.dat [67584]
    O44 - LFC:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 22/11/2010 - 16:52:23 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\drivers\mbamswissarmy.sys [38224]
    O44 - LFC:[MD5.67B48A903430C6D4FB58CBACA1866601] - 22/11/2010 - 16:52:20 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [20952]
    O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 01/11/2010 - 15:45:32 ---A- . (. - .) -- C:\Windows\ativpsrm.bin [0]
    O44 - LFC:[MD5.DB2D14B183726F5894667A3AA2EBA277] - 25/10/2010 - 11:51:52 ---A- . (.SEIKO EPSON CORP. - EPSON WIA Module.) -- C:\Windows\System32\escwiad.dll [71680]

    ---\\
    O51 - MPSK:{7db53ff5-4b11-11df-ad7b-001e8ce18a0f}\Shell\AutoRun\command. (. - .) -- F:\LaunchU3.exe (.not file.)
    O51 - MPSK:{a3c36e49-4f7a-11dd-b5a5-001e8ce18a0f}\Shell\AutoRun\command. (. - .) -- H:\LaunchU3.exe (.not file.)
    O51 - MPSK:{dcc600e8-378a-11dd-8b61-001e8ce18a0f}\Shell\AutoRun\command. (. - .) -- H:\LaunchU3.exe (.not file.)
    O51 - MPSK:{e187ecf4-30be-11de-85d0-001e8ce18a0f}\Shell\AutoRun\command. (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\system32\wscript.exe

    ---\\
    O52 - TDSD: \Drivers32\"VIDC.I420"="i420vfw.dll" . (.www.helixcommunity.org - Helix I420 YUV Codec.) -- C:\Windows\System32\i420vfw.dll
    O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
    O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
    O52 - TDSD: \Drivers32\"msacm.mkdmp3enc"="C:\PROGRA~1\CYBERL~1\MAGICS~1\Kernel\Burner\MKDMP3Enc.ACM" . (. - .) -- (.not file.)
    O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\DivX.dll
    O52 - TDSD: \Drivers32\"vidc.yv12"="yv12vfw.dll" . (.www.helixcommunity.org - Helix YV12 YUV Codec.) -- C:\Windows\System32\yv12vfw.dll
    O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
    O52 - TDSD: \drivers.desc\"C:\PROGRA~1\CYBERL~1\MAGICS~1\Kernel\Burner\MKDMP3Enc.ACM"="MP3 PowerEncoder" . (. - .) -- (.not file.)
    O52 - TDSD: \drivers.desc\"DivX.dll"="DivX 6.9.2 Codec" . (. - .) -- (.not file.)

    ---\\
    O53 - SMSR:HKLM\...\startupreg\ccApp [Key] . (. - .) -- "C:\Program Files\Common Files\Symantec Shared\ccApp.exe

    ---\\
    O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll
    O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll

    ---\\
    O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
    O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
    O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
    O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
    O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
    O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
    O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

    ---\\
    O58 - SDL:[MD5.2EDC5BBAC6C651ECE337BDE8ED97C9FB] - 02/11/2006 - 10:51:38 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys
    O58 - SDL:[MD5.B84088CA3CDCA97DA44A984C6CE1CCAD] - 02/11/2006 - 10:51:32 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys
    O58 - SDL:[MD5.7880C67BCCC27C86FD05AA2AFB5EA469] - 02/11/2006 - 10:50:35 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\system32\drivers\adpu160m.sys
    O58 - SDL:[MD5.9AE713F8E30EFC2ABCCD84904333DF4D] - 02/11/2006 - 10:51:00 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys
    O58 - SDL:[MD5.BE913403ED7219894B30E362FD8D4313] - 03/07/2009 - 19:00:30 ---A- . (.Oak Technology Inc. - Audio File System.) -- C:\Windows\system32\drivers\AFS.SYS
    O58 - SDL:[MD5.90395B64600EBB4552E26E178C94B2E4] - 02/11/2006 - 10:49:20 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys
    O58 - SDL:[MD5.5F673180268BB1FDB69C99B6619FE379] - 02/11/2006 - 10:50:09 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys
    O58 - SDL:[MD5.957F7540B5E7F602E44648C7DE5A1C05] - 02/11/2006 - 10:50:10 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys
    O58 - SDL:[MD5.B4079A98F294A3E262872CB76F4849F0] - 15/09/2009 - 12:55:19 ---A- . (.ALWIL Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys
    O58 - SDL:[MD5.E2851CB7DBB831888EAEA46C55C05E44] - 15/09/2009 - 12:55:09 ---A- . (.ALWIL Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys
    O58 - SDL:[MD5.8080D683489C99CBACE813F6FA4069CC] - 24/11/2009 - 23:48:57 ---A- . (.ALWIL Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys
    O58 - SDL:[MD5.2E5A2AD5004B55DF39B7606130A88142] - 15/09/2009 - 12:55:30 ---A- . (.ALWIL Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys
    O58 - SDL:[MD5.D4C83A37EFADFA2C398362E0776E3773] - 24/11/2009 - 23:49:07 ---A- . (.ALWIL Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys
    O58 - SDL:[MD5.D5ABEB24A3A3138B35F88931FB04E100] - 30/07/2007 - 15:13:10 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athr.sys
    O58 - SDL:[MD5.5AB10C74C8EA15E98A6C771B7269615E] - 29/09/2010 - 03:25:14 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys
    O58 - SDL:[MD5.E9890F7EC1AB4D09AFEB09DD76334622] - 29/09/2010 - 02:14:30 ---A- . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\system32\drivers\atikmpag.sys
    O58 - SDL:[MD5.A356E45E8432432C06981EA63A1E0FE8] - 30/10/2006 - 10:22:26 ---A- . (.ATI Technologies Inc. - ATI PCIE Driver for ATI PCIE chipset.) -- C:\Windows\system32\drivers\AtiPcie.sys
    O58 - SDL:[MD5.97AFFA9D95FFE20EEE6229BC6BE166CF] - 14/12/2006 - 08:11:58 ---A- . (.ATK0100 - ATK0100 ACPI Utility.) -- C:\Windows\system32\drivers\ATKACPI.sys
    O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys
    O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys
    O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys
    O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys
    O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys
    O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys
    O58 - SDL:[MD5.BF79E659C506674C0497CC9C61F1A165] - 24/07/2006 - 03:00:00 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\Windows\system32\drivers\cdr4_xp.sys
    O58 - SDL:[MD5.2C41CD49D82D5FD85C72D57B6CA25471] - 24/07/2006 - 03:00:00 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\Windows\system32\drivers\cdralw2k.sys
    O58 - SDL:[MD5.45201046C776FFDAF3FC8A0029C581C8] - 02/11/2006 - 10:49:28 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys
    O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys
    O58 - SDL:[MD5.F88FB26547FD2CE6D0A5AF2985892C48] - 02/11/2006 - 08:30:54 ---A- . (.Intel Corporation - Pilote désérialisé NDIS 6 de la carte Intel(R) PRO/1000.) -- C:\Windows\system32\drivers\E1G60I32.sys
    O58 - SDL:[MD5.E8F3F21A71720C84BCF423B80028359F] - 02/11/2006 - 10:51:34 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys
    O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 18/05/2009 - 14:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys
    O58 - SDL:[MD5.DF353B401001246853763C4B7AAA6F50] - 02/11/2006 - 10:50:10 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys
    O58 - SDL:[MD5.C957BF4B5D80B46C5017BF0101E6C906] - 02/11/2006 - 10:51:25 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys
    O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys
    O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys
    O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys
    O58 - SDL:[MD5.A2262FB9F28935E862B4DB46438C80D2] - 02/11/2006 - 10:50:04 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys
    O58 - SDL:[MD5.30D73327D390F72A62F32C103DAF1D6D] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys
    O58 - SDL:[MD5.E1E36FEFD45849A95F1AB81DE0159FE3] - 02/11/2006 - 10:50:10 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys
    O58 - SDL:[MD5.67B48A903430C6D4FB58CBACA1866601] - 29/04/2010 - 15:39:26 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys
    O58 - SDL:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 29/04/2010 - 15:39:38 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys
    O58 - SDL:[MD5.D153B14FC6598EAE8422A2037553ADCE] - 02/11/2006 - 10:49:53 ---A- . (.LSI Logic Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys
    O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys
    O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys
    O58 - SDL:[MD5.B48DC6ABCD3AEFF8618350CCBDC6B09A] - 25/06/2010 - 18:07:14 ---A- . (.CACE Technologies, Inc. - npf.sys (NT5/6 x86) Kernel Driver.) -- C:\Windows\system32\drivers\npf.sys
    O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\system32\drivers\ntrigdigi.sys
    O58 - SDL:[MD5.E69E946F80C1C31C53003BFBF50CBB7C] - 02/11/2006 - 10:50:24 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys
    O58 - SDL:[MD5.9E0BA19A28C498A6D323D065DB76DFFC] - 02/11/2006 - 10:50:13 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys
    O58 - SDL:[MD5.4AA86B6F5FDF5ED32ADC723B0E5B052D] - 24/10/2008 - 17:18:46 ---A- . (.Protection Technology Co. - Star Force copy protection driver.) -- C:\Windows\system32\drivers\prodrv04.sys
    O58 - SDL:[MD5.F7BB4E7A7C02AB4A2672937E124E306E] - 27/09/2006 - 22:53:22 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\system32\drivers\pxhelp20.sys
    O58 - SDL:[MD5.CCDAC889326317792480C0A67156A1EC] - 02/11/2006 - 10:51:45 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys
    O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys
    O58 - SDL:[MD5.355AAC141B214BEF1DBC1483AFD9BD50] - 24/02/2007 - 14:42:22 ---A- . (.REDC - RICOH SD Driver.) -- C:\Windows\system32\drivers\rimmptsk.sys
    O58 - SDL:[MD5.A4216C71DD4F60B26418CCFD99CD0815] - 23/01/2007 - 16:40:20 ---A- . (.REDC - RICOH MS Driver.) -- C:\Windows\system32\drivers\rimsptsk.sys
    O58 - SDL:[MD5.97CAC2A7E92FFCB30C15101AB002ED30] - 10/08/2007 - 06:49:16 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHDA.sys
    O58 - SDL:[MD5.8DE22FB05E4A0F797B1E442EB4B3B51C] - 23/01/2007 - 04:01:00 ---A- . (.Realtek Semiconductor Corporation - Realtek 10/100 NDIS 5.1 Driver.) -- C:\Windows\system32\drivers\Rtnicxp.sys
    O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys
    O58 - SDL:[MD5.CEDD6F4E7D84E9F98B34B3FE988373AA] - 02/11/2006 - 10:50:10 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys
    O58 - SDL:[MD5.DF843C528C4F69D12CE41CE462E973A7] - 02/11/2006 - 10:50:16 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys
    O58 - SDL:[MD5.C8A58FC905C9184FA70E37F71060C64D] - 02/11/2006 - 08:41:49 ---A- . (.Motorola Inc. - Motorola SM56 Modem WDM Driver.) -- C:\Windows\system32\drivers\smserial.sys
    O58 - SDL:[MD5.ED5E9F3BF11D0BB770F652B22EC26465] - 12/01/2007 - 02:22:14 ---A- . (.Symantec Corporation - Symantec AutoProtect.) -- C:\Windows\system32\drivers\srtsp.sys
    O58 - SDL:[MD5.C70A2581E35E03C85F29AA1BC723659A] - 12/01/2007 - 02:22:20 ---A- . (.Symantec Corporation - Symantec AutoProtect.) -- C:\Windows\system32\drivers\srtspl.sys
    O58 - SDL:[MD5.05F2DB228922E6B8A001ED83EE4D1153] - 12/01/2007 - 02:22:18 ---A- . (.Symantec Corporation - Symantec AutoProtect.) -- C:\Windows\system32\drivers\srtspx.sys
    O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys
    O58 - SDL:[MD5.A16D76BAA5D2CBE45C57FA582C1208E5] - 09/01/2007 - 22:32:13 ---A- . (.Symantec Corporation - DNS Filter Driver.) -- C:\Windows\system32\drivers\symdns.sys
    O58 - SDL:[MD5.403BD24FA5C55FC648ABDD039629A954] - 23/01/2008 - 12:45:14 ---A- . (.Symantec Corporation - Symantec Event Library.) -- C:\Windows\system32\drivers\SYMEVENT.SYS
    O58 - SDL:[MD5.C64D200569A18EA6C676266DEE3AC158] - 09/01/2007 - 22:32:13 ---A- . (.Symantec Corporation - Firewall Filter Driver.) -- C:\Windows\system32\drivers\symfw.sys
    O58 - SDL:[MD5.7764D3D7A3C858F04CED3C1F16410D89] - 09/01/2007 - 22:32:13 ---A- . (.Symantec Corporation - IDS Filter Driver.) -- C:\Windows\system32\drivers\symids.sys
    O58 - SDL:[MD5.D193684004658FE4F3F143CA6DD9EF8B] - 09/01/2007 - 22:32:13 ---A- . (.Symantec Corporation - NDIS Filter Driver.) -- C:\Windows\system32\drivers\symndisv.sys
    O58 - SDL:[MD5.829830A3CA1C5E329D68E26C9CD2DE8D] - 09/01/2007 - 22:32:13 ---A- . (.Symantec Corporation - Redirector Filter Driver.) -- C:\Windows\system32\drivers\symredrv.sys
    O58 - SDL:[MD5.B1AA9704124B494C34E8D372E6654196] - 09/01/2007 - 22:32:13 ---A- . (.Symantec Corporation - Network Dispatch Driver.) -- C:\Windows\system32\drivers\symtdi.sys
    O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys
    O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys
    O58 - SDL:[MD5.760E4F5A1E754BBE4A1BD2A0B54F6AA6] - 01/03/2007 - 14:24:30 ---A- . (.Synaptics, Inc. - Synaptics Touchpad Driver.) -- C:\Windows\system32\drivers\SynTP.sys
    O58 - SDL:[MD5.3CD4EA35A6221B85DCC25DAA46313F8D] - 02/11/2006 - 10:51:25 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys
    O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys
    O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 02/11/2006 - 10:50:45 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\system32\drivers\ulsata2.sys
    O58 - SDL:[MD5.FD2E3175FCADA350C7AB4521DCA187EC] - 02/11/2006 - 10:49:30 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys
    O58 - SDL:[MD5.D984439746D42B30FC65A4C3546C6829] - 02/11/2006 - 10:50:41 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\system32\drivers\vsmraid.sys
    O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (. - .) -- C:\Windows\system32\ANSI.SYS
    O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (. - .) -- C:\Windows\system32\country.sys
    O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (. - .) -- C:\Windows\system32\HIMEM.SYS
    O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (. - .) -- C:\Windows\system32\KEY01.SYS
    O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (. - .) -- C:\Windows\system32\KEYBOARD.SYS
    O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (. - .) -- C:\Windows\system32\NTDOS.SYS
    O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (. - .) -- C:\Windows\system32\NTDOS404.SYS
    O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (. - .) -- C:\Windows\system32\NTDOS411.SYS
    O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (. - .) -- C:\Windows\system32\NTDOS412.SYS
    O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (. - .) -- C:\Windows\system32\NTDOS804.SYS
    O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (. - .) -- C:\Windows\system32\NTIO.SYS
    O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (. - .) -- C:\Windows\system32\NTIO404.SYS
    O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (. - .) -- C:\Windows\system32\NTIO411.SYS
    O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (. - .) -- C:\Windows\system32\NTIO412.SYS
    O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (. - .) -- C:\Windows\system32\NTIO804.SYS

    ---\\
    O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis
    O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

    ---\\
    O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
    O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.html> <FirefoxHTML>[HKLM\..\open\Command] (. - .) -- "C:\Program Files\Mozilla Firefox\firefox.exe
    O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
    O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
    O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (. - .) -- "C:\Program Files\Mozilla Firefox\firefox.exe
    O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.)
    O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.)
    O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
    O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (. - .) -- "C:\Program Files\Mozilla Firefox\firefox.exe
    O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
    O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

    ---\\
    O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
    O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Pas de propriétaire - Pas de description.) -- "C:\Users\pierre\AppData\Local\Google\Chrome\Application\chrome.exe (.not file.)
    O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

    ---\\
    O69 - SBI: C:\Users\pierre\AppData\Roaming\Mozilla\Firefox\Profiles\\pmv7dagr.default\searchplugins\askcom.xml
    O69 - SBI: C:\Users\pierre\AppData\Roaming\Mozilla\Firefox\Profiles\\pmv7dagr.default\searchplugins\conduit.xml
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("CT1269415.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT1269415&q=");
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("CT1269415.myStuffSearchUrl", "http://search.conduit.com/Results.aspx?q=SEARCH_TERM&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID&SearchType=ToolbarComponents");
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT1269415&SearchSource=3&q={searchTerms}");
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("browser.startup.homepage", "http://search.conduit.com/?ctid=CT1269415&SearchSource=13");
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("extensions.asktb.cbid", "J7");
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("extensions.asktb.default-channel-url-mask", "https://fr.ask.com/{query}&qsrc={qsrc}&o={o}&l={l}");
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("extensions.asktb.first-launch-url", "https://zattoo.com/ch/fr/");
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("extensions.asktb.first-restart-after-config-update", true);
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("extensions.asktb.fresh-install", false);
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("extensions.asktb.l", "dis");
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("extensions.asktb.last-config-req", "1290067475342");
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("extensions.asktb.locale", "fr_FR");
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("extensions.asktb.o", "14979");
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("extensions.asktb.qsrc", "2871");
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("extensions.asktb.r", "2");
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("extensions.asktb.search-suggestions-enabled", true);
    O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - https://www.bing.com/?fdr=lc&toHttps=1&redig=FA6AD360E0BE4C719380F8C470A3D3A8
    O69 - SBI: SearchScopes [HKCU] {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - (Ask Search) - http://www.search.ask.com/?o=10148&l=dis
    O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - https://www.google.com/?gws_rd=ssl
    O69 - SBI: SearchScopes [HKCU] {70D46D94-BF1E-45ED-B567-48701376298E} - (Google Desktop) - http://127.0.0.1:4664/search&s=Z6ccYDcYnDbDUHlllafx1VGm3Us?q={searchTerms}
    O69 - SBI: SearchScopes [HKCU] {B906BFEA-129F-4EB2-A727-6DF08EAE07A0} - (Yahoo! Search) - https://fr.search.yahoo.com/

    ---\\
    O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d'application.) -- C:\Windows\System32\aelupsvc.dll [24576]
    O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [63488]
    O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\system32\shsvcs.dll [245248]
    O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [39936]
    O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [39936]
    O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [121344]
    O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [569344]
    O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [416768]
    O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [310272]
    O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d'accès distant.) -- C:\Windows\System32\rasauto.dll [90624]
    O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d'accès distant.) -- C:\Windows\System32\rasmans.dll [234496]
    O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d'interface dynamique.) -- C:\Windows\System32\mprdim.dll [65536]
    O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d'événements système (SENS).) -- C:\Windows\System32\sens.dll [47104]
    O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [286208]
    O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [242688]
    O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes Terminal Server.) -- C:\Windows\System32\termsrv.dll [427520]
    O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\system32\wuaueng.dll [1929952]
    O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [750080]
    O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [245248]
    O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [179712]
    O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [19968]
    O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d'application.) -- C:\Windows\System32\appinfo.dll [33280]
    O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [111104]
    O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\system32\mmcss.dll [45056]
    O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [152576]
    O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [34816]
    O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [161280]
    O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [595456]
    O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service de configuration des services Terminal Server.) -- C:\Windows\system32\sessenv.dll [92160]
    O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d'ordinateurs.) -- C:\Windows\System32\browser.dll [81408]
    O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [69120]

    ---\\
    [MD5.98D927410410B1EF902602EC3A57BC56] [SPRF] (. - .) -- C:\Users\pierre\AppData\Local\d3d8caps.dat [552]
    [MD5.7B11DBE162103B792F9FF1EA6089B5A6] [SPRF] (. - .) -- C:\Users\pierre\AppData\Local\d3d9caps.dat [680]
    [MD5.F72DE489334307507D33E3BBC2970146] [SPRF] (. - .) -- C:\Users\pierre\AppData\Local\fusioncache.dat [94]
    [MD5.B7E666A928560E90E1E7589A273F42CE] [SPRF] (. - .) -- C:\Users\pierre\AppData\Local\GDIPFONTCACHEV1.DAT [90368]
    [MD5.B87C62E509CBAE64CD1D31B0F5143E41] [SPRF] (. - .) -- C:\Users\pierre\AppData\Local\skagg.bat [89]
    [MD5.A4BBA9B9F1CA01D90C4083EAF0B60E7E] [SPRF] (.DivX, Inc. - DivX Setup.) -- C:\Users\pierre\AppData\Local\Temp\DivXSetup.exe [986904]
    [MD5.7269E577434A90EDC97ADEC52154D659] [SPRF] (. - .) -- C:\Users\pierre\AppData\Roaming\kcmdte.dat [12]
    [MD5.C1780B601C946921D8420757BD83B648] [SPRF] (. - .) -- C:\Users\pierre\AppData\Roaming\wklnhst.dat [3264]

    ---\\
    SR - | Auto 29/09/2010 176128 | C:\Windows\system32\atiesrxx.exe (AMD External Events Utility) . (.AMD.) - C:\Windows\system32\atiesrxx.exe
    SR - | Auto 28/08/2009 144672 | "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    SR - | Auto 05/02/2007 94208 | C:\Program Files\ATK Hotkey\ASLDRSrv.exe (ASLDRService) . (..) - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
    SR - | Auto 24/11/2009 18752 | "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (aswUpdSv) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    SR - | Auto 24/11/2009 138680 | "C:\Program Files\Alwil Software\Avast4\ashServ.exe (avast! Antivirus) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    SR - | Demand 24/11/2009 254040 | "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (avast! Mail Scanner) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    SR - | Demand 24/11/2009 352920 | "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (avast! Web Scanner) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    SR - | Auto 12/12/2008 238888 | "C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
    SR - | Auto 09/01/2007 108648 | "C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (ccEvtMgr) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    SR - | Auto 09/01/2007 108648 | "C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (ccSetMgr) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    SR - | Auto 09/01/2007 108648 | "C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (CLTNetCnService) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    SS - | Demand 12/01/2007 49248 | "C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe (comHost) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
    SS - | Demand 21/06/2010 30192 | "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (GoogleDesktopManager-051210-111108) . (.Google.) - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    SS - | Auto 23/02/2010 135664 | "C:\Program Files\Google\Update\GoogleUpdate.exe (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
    SS - | Demand 27/06/2009 182768 | "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    SS - | Demand 22/10/2004 73728 | "C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    SR - | Auto 13/04/2007 101528 | C:\Program Files\Canon\IJPLM\IJPLMSVC.exe (IJPLMSVC) . (..) - C:\Program Files\Canon\IJPLM\IJPLMSVC.exe
    SR - | Demand 28/10/2009 545568 | "C:\Program Files\iPod\bin\iPodService.exe (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
    SS - | Demand 15/02/2007 2975352 | "C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.exe (LiveUpdate) . (.Symantec Corporation.) - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.exe
    SR - | Auto 06/03/2007 266343 | "C:\Program Files\CyberLink\Shared Files\RichVideo.exe (RichVideo) . (..) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
    SR - | Demand 11/01/2007 887544 | "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe (RoxMediaDB9) . (.Sonic Solutions.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
    SR - | Auto 11/01/2007 166648 | "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe (RoxWatch9) . (.Sonic Solutions.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
    SS - | Demand 25/06/2010 117264 | "C:\Program Files\WinPcap\rpcapd.exe (rpcapd) . (.CACE Technologies, Inc..) - C:\Program Files\WinPcap\rpcapd.exe
    SS - | Demand 14/09/2006 73728 | "C:\Program Files\Common Files\SureThing Shared\stllssvr.exe (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
    SS - | Demand 23/01/2008 1174664 | "C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe (Symantec Core LC) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    SR - | Auto 02/11/2006 22016 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
    SR - | Auto 02/11/2006 22016 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe

    ---\\ Infection BT - BHO/Toolbar (Possible)
    O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask - Ask Toolbar.) -- C:\Program Files\Ask.com\GenericAskToolbar.dll
    O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask - Ask Toolbar.) -- C:\Program Files\Ask.com\GenericAskToolbar.dll
    O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE}
    [HKCU\Software\AppDataLow\AskBarDis]
    [HKCU\Software\Ask.com]
    O69 - SBI: prefs.js [pierre - pmv7dagr.default] user_pref("extensions.asktb.default-channel-url-mask", "https://fr.ask.com/{query}&qsrc={qsrc}&o={o}&l={l}");
    O69 - SBI: SearchScopes [HKCU] {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - (Ask Search) - http://www.search.ask.com/?o=10148&l=dis

    End of the scan (1136 lines in 04mn 39s)(0)
    0
  8. sweetbad Messages postés 15 Statut Membre
     
    Bon voilà pour les 2 rapports sur comment C M? mais pour ci joint .fr la page web est introuvable, et en passant par le site, je peux selectionner mon fichier maiis pour l'inscription, page web introuvable encore c 'est grave docteur ?
    0
    1. Tigzy Messages postés 7983 Statut Contributeur sécurité 582
       
      C'est pas très lisible pour moi, mais d'après ce que j'ai vu il reste pas grand chose.
      0
  9. Tigzy Messages postés 7983 Statut Contributeur sécurité 582
     
    Désactive l'UAC

    télécharger sur le bureau
    Navilog1.exe
    Si votre antivirus s'affole , le désactiver
    = double-clic dessus pour l'installer et le lancer
    Quand installé
    = taper F
    = Appuyer sur une touche jusqu'à arriver aux options
    = Choisir Recherche et désinfection automatique ( = taper 1 )
    = En fin de scan le bloc note s'ouvre
    = Copier son contenu et le coller dans la réponse
    Le rapport Cleannavi est aussi dans C:\

    ---

    Télécharger sur le bureau
    AD-Remover
    = Double-Clic AD-R pour l'installer
    = Double-Clic AD-Remover, raccourci qui vient de se créer sur le bureau
    = Faire Nettoyer
    = En fin de scan donner le rapport

    0
  10. sweetbad Messages postés 15 Statut Membre
     
    Bonjour Tigzy, merci d'être encore là, comme tu peux le constater je ne suis pas trop du matin; bon ce matin je réussi à ouvrir un fil selon tes voeux (haleluiha!) hier soir j'ai merdé (la fatigue sans doute!) ; trève de blague douteuses effectivement la vidéo hier soir était de retour mais le streaming rame toujours un peu ; puis je espérer mieux au vu de ma config ?

    http://www.cijoint.fr/cjlink.php?file=cj201011/cij2FHHBD4.txt

    http://www.cijoint.fr/cjlink.php?file=cj201011/cij9UmgNwo.txt

    Voilà en espérant que les liens fonctionnent .. j'ai vu aussi hier les soucis avec la ask toolbar elle a l'air d'être virée dans le ad clean c ok aussi ?
    0
    1. Tigzy Messages postés 7983 Statut Contributeur sécurité 582
       
      Tu avais un navirpromo et une ask.
      après je ne voit rien d'autre dans les rapports.
      0
  11. sweetbad Messages postés 15 Statut Membre
     
    j'avais .. donc ça y'est j'ai plus rien?
    0
    1. Tigzy Messages postés 7983 Statut Contributeur sécurité 582
       
      oui :)
      0
  12. Tigzy Messages postés 7983 Statut Contributeur sécurité 582
     
    * Télécharge DELFix de Xplode
    * Lance le.
    * A l'invite, tape 2 (suppression)
    * Un rapport va s'ouvrir à la fin, colle le dans la réponse

    ----------

    Tu peux lire ce sujet sur les logiciels recommandés, et les attitudes responsables sur le web
    Et celui ci, sur les logiciels gratuits à éviter

    ------

    Tu peux garder Malwarebytes pour un scan de temps à autres

    -----

    Pense à marquer le fil comme résolu

    0
  13. sweetbad Messages postés 15 Statut Membre
     
    Désolé Tigzy,mais les 2 win32 sont toujours affichés dans avast seuls les fichiers infectés (c déjà bien!)ont disparus ...kezako ?
    0
  14. sweetbad Messages postés 15 Statut Membre
     
    on s'est croisé, voilà donc la fin:

    http://www.cijoint.fr/cjlink.php?file=cj201011/cijDUZRzPc.txt

    c donc normal qu'ils soient toujours en quarantaine?
    0
  15. Tigzy Messages postés 7983 Statut Contributeur sécurité 582
     
    tu peux m'envoyer le rapport d'avast?
    0
  16. sweetbad Messages postés 15 Statut Membre
     
    en fait je suis juste allé voir dans la z de quarantaine je pensais que se serait à jour ...je lance
    0
  17. sweetbad Messages postés 15 Statut Membre
     
    je suis vraiment désolé de mon niveau mais je ne sais pas où trouver le rapport avast; dans les journaux a priori rien d'alarmant je crois vu qu'il n'y a que 2 lignes dans la section erreur (système! la dernière datant du 15 juin 2010) le niveau de classification des rapports semblants crescendos il reste les sections critique alerte et urgence vierges !? Ca se trouve ça n' a rien à voir..? J'ai malgré tout les 2 virus dans la quarantaine infectant apparement chacun des fichiers (dossiers de fichiers ) assez conséquents 5 go en tout situés dans users/AppData ; j'en reste là ? Je supprime les virus et les fichiers de la zone de quarantaine ? En tout cas bravo et merci pour tes tutos c vrai que j'accepte les cgu un peu sans réfléchir j'ai lu les premiers et puis.....bon je le ferais plus c'est promis !
    0
    1. Tigzy Messages postés 7983 Statut Contributeur sécurité 582
       
      Je comprend pas trop, tes virus en quarantaine ne peuvent rien infecter normalement.
      0
  18. sweetbad Messages postés 15 Statut Membre
     
    apparement je viens de les détruire de la quarantaine j'espère ne rien avoir viré d'important avec ,mais je crois pas en fait j'avais dans la quarantaine :localisation d'origine : c\users\pierre\AppData\ pour l'un, et meme chose avec \temp pour l'autre et dans:nom : des trucs chelous :ghxy.exe et l'autre ~645325 (les chiffres sont faux) et enfin plus loin, dans virus : les win32 small N et skimorph . C a cause de la localisation que je pense que j'étais infecté ...mais je me plante peut etre totalement ! en tout cas j' ai viré donc soit ça marche soit jte recontacte pour une restauration !!?(lol) Merci et big up peut etre a bientôt dans notre bonne ville de nantes ? Je reviens voir si tu suis mais au cas ou je fais mes petites politesses maintenant !
    0
    1. Tigzy Messages postés 7983 Statut Contributeur sécurité 582
       
      Non c'est ok normalement, de toute façon ya rien de visible dans les rapports ;)
      0
  19. sweetbad Messages postés 15 Statut Membre
     
    ok merci pour tout Tigzy ! Re BIG UP ! bonne chance avec rogue killer !
    0
    1. Tigzy Messages postés 7983 Statut Contributeur sécurité 582
       
      Merci ;)
      0