Trojan insupprimable
Oeil de lynx pierce
Messages postés
7
Statut
Membre
-
flo-91 Messages postés 5973 Statut Contributeur sécurité -
flo-91 Messages postés 5973 Statut Contributeur sécurité -
Bonjour,
Mon Antivirus Avira a deniché un cheval de troie du nom de :TR/Dldr.Agent.135680.A et malgres toutes mes tentatives je n'arrive pas à le supprimer . Je suis passé par spybot ,ad aware et malwarebytes sans succes.
Je vous remercie d'avance d'une aide rapide eventuelle car je ne vois vraiment plus quoi faire pour me debarasser de ce trojan.
Mon Antivirus Avira a deniché un cheval de troie du nom de :TR/Dldr.Agent.135680.A et malgres toutes mes tentatives je n'arrive pas à le supprimer . Je suis passé par spybot ,ad aware et malwarebytes sans succes.
Je vous remercie d'avance d'une aide rapide eventuelle car je ne vois vraiment plus quoi faire pour me debarasser de ce trojan.
A voir également:
- Trojan insupprimable
- Logiciel pour supprimer fichier insupprimable - Guide
- Trojan remover - Télécharger - Antivirus & Antimalwares
- Trojan agent ✓ - Forum Virus
- Trojan b901 system32 win config 34 ✓ - Forum Virus
- Csrss.exe trojan ✓ - Forum Virus
8 réponses
Bonsoir, :
On va commencer par analyser ton pc, :
Télécharges Zhpdiag ici : https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
Une fois le téléchargement achevé, dézippes le fichier obtenu et place ZHPDiag.exe sur ton Bureau.
Double-clique sur l'icône pour lancer le programme.
Clique sur Tous pour cocher toutes les cases des options.
Clique sur la loupe pour lancer l'analyse.
A la fin de l'analyse, clique sur l'appareil photo et enregistre le rapport sur ton Bureau.
Ouvre le fichier sauvegardé (ZHPDiag.txt)avec le Bloc-Notes et copie son contenu dans ta réponse.
Rends toi sur http://www.cijoint.fr clic sur Parcourir, choisis le rapport sur ton bureau et clic sur Créer le lien,
Un lien te sera généré, postes le dans ta prochaine réponse .
On va commencer par analyser ton pc, :
Télécharges Zhpdiag ici : https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
Une fois le téléchargement achevé, dézippes le fichier obtenu et place ZHPDiag.exe sur ton Bureau.
Double-clique sur l'icône pour lancer le programme.
Clique sur Tous pour cocher toutes les cases des options.
Clique sur la loupe pour lancer l'analyse.
A la fin de l'analyse, clique sur l'appareil photo et enregistre le rapport sur ton Bureau.
Ouvre le fichier sauvegardé (ZHPDiag.txt)avec le Bloc-Notes et copie son contenu dans ta réponse.
Rends toi sur http://www.cijoint.fr clic sur Parcourir, choisis le rapport sur ton bureau et clic sur Créer le lien,
Un lien te sera généré, postes le dans ta prochaine réponse .
bonjour, et ils le trouvent ou exactement tu as le chemin de cela !! si tu pouvais poster un zhpdiag pour voir cela , merci
Ouvre ce lien et télécharge ZHPDiag :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
cliques sur télécharger "celui du bas"
ou directement ici: https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
et si problème : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
tu vas en bas de la page et tu télécharges le premier tu et tu dézippes
ou lien direct http://www.moncompteur.com/compteurclick.php?idLink=18026
tu décompresses et tu lances !!
Enregistres le sur ton Bureau.
Une fois le téléchargement achevé
pour XP, double-clique sur ZHPDiag
pour Vista,et seven tu fais un clic droit sur l'icône et exécute en tant qu'administrateur.
N'oublies pas de cocher la case qui permet de mettre un raccourci sur le Bureau.
/|\ l'outil a créé 2 icônes ZHPDiag et ZHPFix.
Double cliques sur le raccourci ZHPDiag sur ton Bureau pour XP sinon clique droit et en tant que administrateur !!
Cliques sur la loupe pour lancer l'analyse.
si tu as un message te demandant la validation pour SIGCHECK acceptes avec OK cela est pour nous faire un rapport plus complet et pouvoir en faire une lecture plus approfondis
Laisses l'outil travailler, il peut être assez long
A la fin de l'analyse,clique sur l'appareil photo et enregistre le rapport sur ton Bureau.
Fermes ZHPDiag en fin d'analyse.
Pour me le transmettre clique sur ce lien :
http://www.cijoint.fr/index.php
Clique sur Parcourir et cherche le fichier C:\Documents and settings\le_nom_de_ta_session\bureau\.ZHPDiag.txt
ou directement en choisissant bureau et ZHPDiag.txt clique dessus
Clique sur Ouvrir.
Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme :
http://www.cijoint.fr/cjlink.php?file=cj200905/cib7SU.txt
est ajouté dans la page.
Copie ce lien dans ta réponse.
et si problème passe par celui ci : http://cjoint.com/
Ouvre ce lien et télécharge ZHPDiag :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
cliques sur télécharger "celui du bas"
ou directement ici: https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
et si problème : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
tu vas en bas de la page et tu télécharges le premier tu et tu dézippes
ou lien direct http://www.moncompteur.com/compteurclick.php?idLink=18026
tu décompresses et tu lances !!
Enregistres le sur ton Bureau.
Une fois le téléchargement achevé
pour XP, double-clique sur ZHPDiag
pour Vista,et seven tu fais un clic droit sur l'icône et exécute en tant qu'administrateur.
N'oublies pas de cocher la case qui permet de mettre un raccourci sur le Bureau.
/|\ l'outil a créé 2 icônes ZHPDiag et ZHPFix.
Double cliques sur le raccourci ZHPDiag sur ton Bureau pour XP sinon clique droit et en tant que administrateur !!
Cliques sur la loupe pour lancer l'analyse.
si tu as un message te demandant la validation pour SIGCHECK acceptes avec OK cela est pour nous faire un rapport plus complet et pouvoir en faire une lecture plus approfondis
Laisses l'outil travailler, il peut être assez long
A la fin de l'analyse,clique sur l'appareil photo et enregistre le rapport sur ton Bureau.
Fermes ZHPDiag en fin d'analyse.
Pour me le transmettre clique sur ce lien :
http://www.cijoint.fr/index.php
Clique sur Parcourir et cherche le fichier C:\Documents and settings\le_nom_de_ta_session\bureau\.ZHPDiag.txt
ou directement en choisissant bureau et ZHPDiag.txt clique dessus
Clique sur Ouvrir.
Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme :
http://www.cijoint.fr/cjlink.php?file=cj200905/cib7SU.txt
est ajouté dans la page.
Copie ce lien dans ta réponse.
et si problème passe par celui ci : http://cjoint.com/
Bonsoir à vous 2 et merci de vous souciez de mon probleme ^^ donc voici le rapport :
---\\ Web Browser
MSIE: Internet Explorer v7.0.5730.13 (Defaut)
MFIE: Mozilla Firefox v3.5.11 (fr)
---\\ System Information
Windows XP Professional Service Pack 2 (Build 2600)
Processor: x86 Family 15 Model 75 Stepping 2, AuthenticAMD
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2046 MB (64% free)
System Restore: Désactivé (Disabled)
System drive C: has 47 GB (15%) free of 298 GB
---\\ Logged in mode
Computer Name: XPSP2-F3A740218
User Name: Onizuka
All Users Names: SUPPORT_388945a0, Onizuka, HelpAssistant, ASPNET, Administrateur,
Unselected Option: O1,O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 47 Go of 298 Go)
D:\ CD-ROM drive (Free 0 Go of 8 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
---\\ Search Generic System Files
[MD5.D0288319660EDCFED07C7E74C4EA38A5] - (.Microsoft Corporation - Explorateur Windows.) (.13/06/2007 14:22:28.) -- C:\Windows\Explorer.exe [1037312]
[MD5.123EEA158F74D0F67A51DCDF065D1091] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.19/08/2004 16:10:06.) -- C:\Windows\System32\Winlogon.exe [506368]
[MD5.CDFE4411A69C224BD1D11B2DA92DAC51] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.03/08/2004 17:59:44.) -- C:\Windows\System32\drivers\atapi.sys [95360]
[MD5.19A811EF5F1ED5C926A028CE107FF1AF] - (.Microsoft Corporation - NT File System Driver.) (.09/02/2007 12:10:35.) -- C:\Windows\System32\drivers\ntfs.sys [574464]
---\\ Running Processes
[MD5.96F1A6F0A0D4F11047DF2F5C17C87E9D] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 191.0.) -- C:\WINDOWS\system32\nvsvc32.exe [172100]
[MD5.9015BC03F62940527EC92D45EE89E46F] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [108289]
[MD5.B8720A787C1223492E6F319465E996CE] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [185089]
[MD5.69DA2BB73AC426CDEEBDACC68438BA3D] - (.Apple, Inc. - Apple Mobile Device Service.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [110592]
[MD5.D5687C8C02DF0EB4687B044A10DF5CB4] - (.AnchorFree Inc. - Hotspot Shield Helper Service.) -- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe [331824]
[MD5.32192B4EBE8720ED8D49A455C962CB91] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [152984]
[MD5.B90E093E7A7250906F1054418B5339C0] - (.Nero AG - Nero BackItUp.) -- C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe [935208]
[MD5.FD306FBCCE7ADB1077B709742E7148E9] - (.Unknown owner - No comment.) -- C:\Program Files\CDBurnerXP\NMSAccessU.exe [71096]
[MD5.D93108A20FA4B4317952234DE106F199] - (.PC Tools - PC Tools Firewall Plus service.) -- C:\Program Files\PC Tools Firewall Plus\FWService.exe [146800]
[MD5.688DC41BE9A6196491469365549C7DD1] - (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\WINDOWS\system32\WgaTray.exe [337280]
[MD5.CDD7140C0EAA754C527B983CCC9993CD] - (.Unknown owner - No comment.) -- C:\WINDOWS\system32\RunDll32.exe [33792]
[MD5.64F635240DB9FB0C6E6CA7725ED56544] - (.PC Tools - PC Tools Firewall GUI.) -- C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe [2652056]
[MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [209153]
[MD5.4AC28B51530D3A93B3F27EB7A72F575F] - (.Unknown owner - No comment.) -- C:\Program Files\RocketDock\RocketDock.exe [630784]
[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]
[MD5.E6DA7B764821083B7C9D818012B60E5D] - (.Unknown owner - ClientCU MFC Application.) -- C:\Program Files\802.11 Wireless LAN\802.11g Wireless Cardbus & PCI Adapter HW.51 V1.00\WlanCU.exe [454656]
[MD5.D527F9785ED538FF1F94B4E0FAC7F12A] - (.Lavasoft - Ad-Aware Service Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [1352832]
[MD5.5CF0DB946153DDBCD76359F77AB492F5] - (.Lavasoft - Ad-Aware Tray Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe [864112]
[MD5.9D3DB9ADFABD2F0BC778EC03250A3ABB] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [633632]
[MD5.A80B6B754B1D6762F11CD97A0466AC5B] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [621056]
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (P2,M0,M1,M2)
P2 - FPN:Firefox Plugin Navigator . (.BitTorrent, Inc. - BitTorrent Plugin 1.) -- C:\Program Files\Mozilla Firefox\Plugins\npbittorrent.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Unknown owner - No comment.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Unknown owner - No comment.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.50917.0.) -- c:\Program Files\Microsoft Silverlight\4.0.50917.0\npctrl.dll
P2 - FPN: [HKLM] [@pack.google.com/Google Updater;version=13] - (.Google - Google Updater plugin<br><a href="http://pack.google.com/">http://pack.) -- C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
P2 - FPN: [HKCU] [@adobe.com/FlashPlayer] - (.Unknown owner - No comment.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
M0 - MFSP: prefs.js [Onizuka - nqc6h3pq.default] https://www.google.fr/webhp?sourceid=navclient-ff&gws_rd=ssl
M2 - MFEP: prefs.js [Onizuka - nqc6h3pq.default\{0b38152b-1b20-484d-a11f-5e04a9b0661f}] [] Winamp Toolbar v1.0.0.1 (.AOL LLC.)
M2 - MFEP: prefs.js [Onizuka - nqc6h3pq.default\{3112ca9c-de6d-4884-a869-9855de68056c}] [] Google Toolbar for Firefox v6.1.20091216W (.Google Inc..)
M2 - MFEP: prefs.js [Onizuka - nqc6h3pq.default\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}] [] XfireXO Toolbar v2.7.0.14 (.Conduit Ltd..)
M2 - MFEP: prefs.js [Onizuka - nqc6h3pq.default\{ecdee021-0d17-467f-a1ff-c7a115230949}] [] free-downloads.net Toolbar v1.5.37.0 (.Conduit Ltd..)
---\\ Internet Explorer Extensions, Start, Search (R3,R0,R1)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/toolbar/ie8/sidebar.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/toolbar/ie8/sidebar.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (7.00.6000.16762 (vista_gdr.081013-1507)) -- C:\WINDOWS\system32\ieframe.dll
---\\ Changed inifile Value, Mapped to Registry (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Browser Helper Objects (O2)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Orphean Key
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Barre d'outils pour IE.) -- c:\program files\google\googletoolbar2.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} . (.SEIKO EPSON CORPORATION - EPSON Web-To-Page.) -- C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
---\\ Internet Explorer toolbars (O3)
O3 - Toolbar: (no name) - {8E4AA109-7239-4B85-8196-7377A53DDEFF} . (.Unknown owner - No comment.) -- (.not file.)
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} . (.SEIKO EPSON CORPORATION - EPSON Web-To-Page.) -- C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
---\\ Auto loading programs from Registry and folders (O4)
O4 - HKLM\..\Run: [SW20] . (.Unknown owner - sw20 MFC Application.) -- C:\WINDOWS\system32\sw20.exe
O4 - HKLM\..\Run: [SW24] . (.Unknown owner - No comment.) -- C:\WINDOWS\system32\sw24.exe
O4 - HKLM\..\Run: [C6501Sound] RunDll32 c6501.cpl
O4 - HKLM\..\Run: [00PCTFW] . (.PC Tools - PC Tools Firewall GUI.) -- C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe
O4 - HKLM\..\Run: [NeroFilterCheck] . (.Ahead Software Gmbh - NeroCheck.) -- C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe
O4 - HKLM\..\Run: [WinSys2] . (.Unknown owner - DOT MFC Application.) -- C:\WINDOWS\system32\winsys2.exe
O4 - HKLM\..\Run: [nwiz] . (.Unknown owner - No comment.) -- C:\Program Files\NVIDIA Corporation\nView\nwiz.exe
O4 - HKLM\..\Run: [NvMediaCenter] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\WINDOWS\system32\NvMcTray.dll
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\NvCpl.dll
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKCU\..\Run: [RocketDock] . (.Unknown owner - No comment.) -- C:\Program Files\RocketDock\RocketDock.exe
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BitTorrent] . (.Unknown owner - No comment.) -- C:\Program Files\BitTorrent\bittorrent.exe
O4 - HKUS\S-1-5-21-1715567821-920026266-725345543-1003\..\Run: [RocketDock] . (.Unknown owner - No comment.) -- C:\Program Files\RocketDock\RocketDock.exe
O4 - HKUS\S-1-5-21-1715567821-920026266-725345543-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1715567821-920026266-725345543-1003\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-21-1715567821-920026266-725345543-1003\..\Run: [BitTorrent] . (.Unknown owner - No comment.) -- C:\Program Files\BitTorrent\bittorrent.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] . (.Unknown owner - No comment.) -- C:\WINDOWS\system32\run.cmd
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] . (.Microsoft Corporation - DLL d'action personnalisée d'installation.) -- C:\WINDOWS\system32\tscupgrd.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] . (.Unknown owner - No comment.) -- C:\WINDOWS\system32\run.cmd
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] . (.Microsoft Corporation - DLL d'action personnalisée d'installation.) -- C:\WINDOWS\system32\tscupgrd.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] . (.Unknown owner - No comment.) -- C:\WINDOWS\system32\run.cmd
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] . (.Microsoft Corporation - DLL d'action personnalisée d'installation.) -- C:\WINDOWS\system32\tscupgrd.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_02] rundll32 advpack.dll
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_03] rundll32 advpack.dll
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] . (.Unknown owner - No comment.) -- C:\WINDOWS\system32\run.cmd
O4 - HKUS\S-1-5-20\..\RunOnce: [tscuninstall] . (.Microsoft Corporation - DLL d'action personnalisée d'installation.) -- C:\WINDOWS\system32\tscupgrd.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_01] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_02] rundll32 advpack.dll
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_03] rundll32 advpack.dll
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Wireless Configuration Utility HW.51.lnk . (.Unknown owner.) -- C:\Program Files\802.11 Wireless LAN\802.11g Wireless Cardbus & PCI Adapter HW.51 V1.00\WlanCU.exe
---\\ Other User Links (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (.Unknown owner.) -- C:\WINDOWS\Installer\{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Audacity.lnk . (.Unknown owner.) -- C:\Program Files\Audacity\audacity.exe
O4 - Global Startup: C:\Documents And Settings\Onizuka\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Onizuka\Menu Démarrer\Programmes\Windows Install Clean Up.lnk . (.Unknown owner.) -- C:\Documents and Settings\Onizuka\Application Data\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe
O4 - Global Startup: C:\Documents And Settings\Onizuka\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
---\\ Extra items in the IE right-click menu (O8)
O8 - Extra context menu item: Add to AMV Convert Tool... . (.Unknown owner - No comment.) -- C:\Program Files\MP3 Player Utilities 4.00\AMVConverter\grab.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.exe
O8 - Extra context menu item: MediaManager tool grab multimedia file . (.Unknown owner - No comment.) -- C:\Program Files\MP3 Player Utilities 4.00\MediaManager\grab.html
---\\ Extra buttons on main IE button toolbar, or extra items in IE 'Tools' menu (O9)
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (.Unknown owner - No comment.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Unknown owner - No comment.) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - (.not file.)
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
---\\ ActiveX Objects (Downloaded Program Files) (O16)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - https://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} () - http://fichiers.touslesdrivers.com/maconfig/MaConfig_4_0_1_3.cab
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} () - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
---\\ Lop.com/Domain Hijackers (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{FB050BBB-B04E-4C62-A92E-21EEA87EFECC}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS2\Services\Tcpip\..\{FB050BBB-B04E-4C62-A92E-21EEA87EFECC}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS3\Services\Tcpip\..\{1DAE1AD3-E851-4772-BF77-EA8C6D1BC029}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
---\\ Extra protocols and protocol Hijackers (O18)
O18 - Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
---\\ AppInit_DLLs Registry value Autorun (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\Windows\System32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
---\\ ShellServiceObjectDelayLoad (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll
---\\ SharedTaskScheduler (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
---\\ non Microsoft non disabled Windows XP/NT/2000 Services (O23)
O23 - Service: (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: (Apple Mobile Device) . (.Apple, Inc. - Apple Mobile Device Service.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: (CCALib8) . (.Canon Inc. - Canon Camera Access Library 8.) - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: (HotspotShieldService) . (.Unknown owner - No comment.) - C:\Program Files\Hotspot Shield\bin\openvpnas.exe
O23 - Service: (HssSrv) . (.AnchorFree Inc. - Hotspot Shield Helper Service.) - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: (Lavasoft Ad-Aware Service) . (.Lavasoft - Ad-Aware Service Application.) - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: (NMSAccessU) . (.Unknown owner - No comment.) - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 191.0.) - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: (PCToolsFirewallPlus) . (.PC Tools - PC Tools Firewall Plus service.) - C:\Program Files\PC Tools Firewall Plus\FWService.exe
---\\ Windows Active Desktop & MHTML Editor (O24)
O24 - Desktop Component 0: (no name) - file:http://www.mandolux.com/desktops/light/mandolux-wheel-r-1680.jpg
O24 - Default MHTML Editor: Last - .(.Unknown owner - No comment.) - "C:\Program Files\Microsoft Office\OFFICE11\WINWORD.exe (.not file.)
---\\ Task Planned Automatically(039)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Google Software Updater.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Maintenance en 1 clic.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\NeroLiveEpgUpdate-XPSP2-F3A740218_Onizuka.job
[MD5.D6814B567D8C7884DCC342C20F87FB70] [APT] [Ad-Aware Update (Weekly)] (.Lavasoft.) -- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
[MD5.7A4D5C521E6C11268C1D2131E7951B5D] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
[MD5.00000000000000000000000000000000] [APT] [Maintenance en 1 clic] (.Unknown owner.) -- C:\Program Files\TuneUp Utilities 2008\OneClickStarter.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [NeroLiveEpgUpdate-XPSP2-F3A740218_Onizuka] (.Unknown owner.) -- C:\Program Files\Nero\Nero 9\Nero Live\NeroLive.exe (.not file.)
---\\ ActiveSetup Installed Components (O40)
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Unknown owner - No comment.) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r22.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx
---\\ Drivers launched at startup (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (AmdK8) . (.Advanced Micro Devices - AMD Processor Driver.) - C:\Windows\System32\DRIVERS\AmdK8.sys
O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys
O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for RootKit Detection.) - C:\Windows\System32\DRIVERS\avipbb.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (FsVga) . (.Microsoft Corporation - Pilote vidéo plein écran.) - C:\Windows\System32\DRIVERS\fsvga.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys
O41 - Driver: (ISODrive) . (.EZB Systems, Inc. - ISO DVD/CD-ROM Device Driver.) - C:\Program Files\UltraISO\drivers\ISODrive.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre souris HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (pctgntdi) . (.PC Tools - PC Tools Generic TDI Driver.) - C:\WINDOWS\system32\drivers\pctgntdi.sys
O41 - Driver: (Processor) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\processr.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\System32\DRIVERS\ssmdrv.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
---\\ Software installed (O42)
O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07}
O42 - Logiciel: Ad-Aware - (.Lavasoft.) [HKLM] -- Ad-Aware
O42 - Logiciel: Ad-Aware - (.Lavasoft.) [HKLM] -- {DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
O42 - Logiciel: Ad-Aware Email Scanner for Outlook - (.Lavasoft.) [HKLM] -- {338F08AB-C262-42C7-B000-34DE1A475273}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Advanced Archive Password Recovery (remove only) - (.Unknown owner.) [HKLM] -- Advanced Archive Password Recovery
O42 - Logiciel: Age of Conan : Hyborian Adventures - (.Funcom.) [HKLM] -- Age of Conan_is1
O42 - Logiciel: AoA MP4 Converter - (.AoAMedia.com.) [HKLM] -- AoA MP4 Converter_is1
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {B5C209B1-8DDB-4642-A573-375B951514CB}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
O42 - Logiciel: Archiveur WinRAR - (.Unknown owner.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
O42 - Logiciel: Audacity 1.2.6 - (.Unknown owner.) [HKLM] -- Audacity_is1
O42 - Logiciel: AviSynth 2.5 - (.Unknown owner.) [HKLM] -- AviSynth
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: BitTorrent 5.0.9 - (.Unknown owner.) [HKLM] -- BitTorrent
O42 - Logiciel: C-Media 6501 Sound - (.Unknown owner.) [HKLM] -- Generic 6501 Sound
O42 - Logiciel: CCScore - (.EASTMAN KODAK Company.) [HKLM] -- {B4B44FE7-41FF-4DAD-8C0A-E406DDA72992}
O42 - Logiciel: CCleaner (remove only) - (.Unknown owner.) [HKLM] -- CCleaner
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: Canon Camera Access Library - (.Unknown owner.) [HKLM] -- CAL
O42 - Logiciel: Canon Camera Support Core Library - (.Unknown owner.) [HKLM] -- CSCLIB
O42 - Logiciel: Canon Camera Window DC_DV 5 for ZoomBrowser EX - (.Unknown owner.) [HKLM] -- CameraWindowDVC5
O42 - Logiciel: Canon Camera Window DC_DV 6 for ZoomBrowser EX - (.Unknown owner.) [HKLM] -- CameraWindowDVC6
O42 - Logiciel: Canon Camera Window MC 6 for ZoomBrowser EX - (.Unknown owner.) [HKLM] -- CameraWindowMC
O42 - Logiciel: Canon G.726 WMP-Decoder - (.Unknown owner.) [HKLM] -- Canon G.726 WMP-Decoder
O42 - Logiciel: Canon MovieEdit Task for ZoomBrowser EX - (.Unknown owner.) [HKLM] -- MovieEditTask
O42 - Logiciel: Canon RAW Image Task for ZoomBrowser EX - (.Unknown owner.) [HKLM] -- RAW Image Task
O42 - Logiciel: Canon RemoteCapture Task for ZoomBrowser EX - (.Unknown owner.) [HKLM] -- RemoteCaptureTask
O42 - Logiciel: Canon Utilities EOS Utility - (.Unknown owner.) [HKLM] -- EOS Utility
O42 - Logiciel: Canon Utilities PhotoStitch - (.Unknown owner.) [HKLM] -- PhotoStitch
O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Unknown owner.) [HKLM] -- ZoomBrowser EX
O42 - Logiciel: CodeStuff Starter - (.CodeStuff.) [HKLM] -- CodeStuff Starter
O42 - Logiciel: Condition Zero - (.Valve.) [HKLM] -- Steam App 80
O42 - Logiciel: Condition Zero Deleted Scenes - (.Ritual.) [HKLM] -- Steam App 100
O42 - Logiciel: Counter-Strike - (.Valve.) [HKLM] -- Steam App 10
O42 - Logiciel: Counter-Strike Steamworks Beta - (.Valve.) [HKLM] -- Steam App 150
O42 - Logiciel: Counter-Strike(TM) - (.Valve.) [HKLM] -- {DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}
O42 - Logiciel: DVD Decrypter (Remove Only) - (.Unknown owner.) [HKLM] -- DVD Decrypter
O42 - Logiciel: Day of Defeat - (.Valve.) [HKLM] -- Steam App 30
O42 - Logiciel: Deathmatch Classic - (.Valve.) [HKLM] -- Steam App 40
O42 - Logiciel: Diablo II - (.Blizzard Entertainment.) [HKLM] -- Diablo II
O42 - Logiciel: DigimonBattle Beta - (.WeMade Entertainment.) [HKLM] -- DigimonBattle
O42 - Logiciel: DigimonRPG - (.Unknown owner.) [HKLM] -- DigimonRPG_v447
O42 - Logiciel: Dragon Age: Origins - (.Electronic Arts, Inc..) [HKLM] -- {AEC81925-9C76-4707-84A9-40696C613ED3}
O42 - Logiciel: EPSON Attach To Email - (.SEIKO EPSON.) [HKLM] -- InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}
O42 - Logiciel: EPSON Copy Utility 3 - (.Unknown owner.) [HKLM] -- {67EDD823-135A-4D59-87BD-950616D6E857}
O42 - Logiciel: EPSON Easy Photo Print - (.Unknown owner.) [HKLM] -- {BC69DDB8-4840-4D9B-BB31-0D4DB2BA1312}
O42 - Logiciel: EPSON File Manager - (.Unknown owner.) [HKLM] -- {E86BC406-944E-41F6-ADE6-2C136734C96B}
O42 - Logiciel: EPSON Scan - (.Unknown owner.) [HKLM] -- EPSON Scanner
O42 - Logiciel: EPSON Scan Assistant - (.Unknown owner.) [HKLM] -- {2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}
O42 - Logiciel: EPSON Web-To-Page - (.Unknown owner.) [HKLM] -- {7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}
O42 - Logiciel: EPSON-Drucker-Software - (.Unknown owner.) [HKLM] -- EPSON Printer and Utilities
O42 - Logiciel: ESDX6000_CX5900 Guide util. - (.Unknown owner.) [HKLM] -- ESDX6000_CX5900 Guide util.
O42 - Logiciel: ESSBrwr - (.EASTMAN KODAK Company.) [HKLM] -- {643EAE81-920C-4931-9F0B-4B343B225CA6}
O42 - Logiciel: ESSCDBK - (.EASTMAN KODAK Company.) [HKLM] -- {AE1FA02D-E6A4-4EA0-8E58-6483CAC016DD}
O42 - Logiciel: ESSPCD - (.EASTMAN KODAK Company.) [HKLM] -- {14D4ED84-6A9A-45A0-96F6-1753768C3CB5}
O42 - Logiciel: ESSPDock - (.Nom de votre société.) [HKLM] -- ???RPG ??391
O42 - Logiciel: ESSPDock - (.Nom de votre société.) [HKLM] -- {FCDB1C92-03C6-4C76-8625-371224256091}
O42 - Logiciel: ESSSONIC - (.EASTMAN KODAK Company.) [HKLM] -- {073F22CE-9A5B-4A40-A604-C7270AC6BF34}
O42 - Logiciel: ESSTOOLS - (.EASTMAN KODAK Company.) [HKLM] -- {8A502E38-29C9-49FA-BCFA-D727CA062589}
O42 - Logiciel: ESScore - (.Nom de votre société.) [HKLM] -- {42938595-0D83-404D-9F73-F8177FDD531A}
O42 - Logiciel: ESSgui - (.EASTMAN KODAK Company.) [HKLM] -- {91517631-A9F3-4B7C-B482-43E0068FD55A}
O42 - Logiciel: ESSini - (.Nom de votre société.) [HKLM] -- {8E92D746-CD9F-4B90-9668-42B74C14F765}
O42 - Logiciel: Fast MP4 3GP AVI MPG WMV RM MOV FLV Converter 5.0 - (.AVN Media Technologies..) [HKLM] -- {50020B66-4BA5-4E35-939E-98A0D648EE88}_is1
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {DBEA1034-5882-4A88-8033-81C4EF0CFA29}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Unknown owner.) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Guitar Pro 5.2 - (.Arobas Music.) [HKLM] -- Guitar Pro 5_is1
O42 - Logiciel: Hotfix for Windows XP (KB915865) - (.Microsoft Corporation.) [HKLM] -- KB915865
O42 - Logiciel: Hotfix for Windows XP (KB926239) - (.Microsoft Corporation.) [HKLM] -- KB926239
O42 - Logiciel: Hotspot Shield 1.22 - (.Unknown owner.) [HKLM] -- HotspotShield
O42 - Logiciel: IEEE 802.11g Wireless Cardbus/PCI Adapter - (.OEM.) [HKLM] -- InstallShield_{29F15D3F-5B37-44DB-BB89-390B3AD1404E}
O42 - Logiciel: IZArc 3.7 - (.Ivan Zahariev.) [HKLM] -- {97C82B44-D408-4F14-9252-47FC1636D23E}_is1
O42 - Logiciel: ImgBurn 2.3.2.0 Fr - (.Unknown owner.) [HKLM] -- {75ADEFA2-D4FF-4B37-9E93-4306E6AC176B}_is1
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {46ABBC54-1872-4AA3-95E2-F2C063A63F31}
O42 - Logiciel: Java(TM) 6 Update 11 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216011FF}
O42 - Logiciel: Lecteur Windows Media 11 - (.Unknown owner.) [HKLM] -- Windows Media Player
O42 - Logiciel: Logiciel Kodak EasyShare - (.Eastman Kodak Company.) [HKLM] -- {D32470A1-B10C-4059-BA53-CF0486F68EBC}
O42 - Logiciel: MP3 Player Utilities 4.00 - (. .) [HKLM] -- {7784A172-61F1-445E-8368-601607E0DD22}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF}
O42 - Logiciel: MSXML 6.0 Parser (KB933579) - (.Microsoft Corporation.) [HKLM] -- {0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Unknown owner.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 Hotfix (KB928366) - (.Unknown owner.) [HKLM] -- M928366
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
O42 - Logiciel: Microsoft .NET Framework 3.0 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.0
O42 - Logiciel: Microsoft .NET Framework 3.0 - (.Microsoft Corporation.) [HKLM] -- {15095BF3-A3D7-4DDF-B193-3A496881E003}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs
O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping
O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM] -- {9011040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Mozilla Firefox (3.5.11) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.5.11)
O42 - Logiciel: NCsoft Launcher - (.NCsoft.) [HKLM] -- {C9FB868B-2086-4EE2-BD4F-BFBA36B131F4}
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}
O42 - Logiciel: NVIDIA nView Desktop Manager - (.NVIDIA Corporation.) [HKLM] -- NVIDIA nView Desktop Manager
O42 - Logiciel: Nero 9 Trial - (.Nero AG.) [HKLM] -- {d893d9cd-0c28-4361-95f8-295030e65288}
O42 - Logiciel: Nero Suite - (.Unknown owner.) [HKLM] -- NeroMultiInstaller!UninstallKey
O42 - Logiciel: Notification de cadeaux MSN - (.Microsoft.) [HKCU] -- Notification de cadeaux MSN
O42 - Logiciel: OfotoXMI - (.EASTMAN KODAK Company.) [HKLM] -- {B162D0A6-9A1D-4B7C-91A5-88FB48113C45}
O42 - Logiciel: OneStopSoft Youtube Video File Downloader 1.0.0.6 - (.OneStopSoft.com.) [HKLM] -- OneStopSoft Youtube Video File Downloader Trial Version_is1
O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}
O42 - Logiciel: PC Tools Firewall Plus 5.0 - (.PC Tools.) [HKLM] -- PC Tools Firewall Plus
O42 - Logiciel: PIF DESIGNER - (.Unknown owner.) [HKLM] -- {B90450DF-E781-46FD-B1F1-0C86DA40E443}
O42 - Logiciel: Package de pilotes Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0) - (.Advanced Micro Devices.) [HKLM] -- 3BEF1AFDE8303306594E2ADA27520E6E700820AE
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {E0D51394-1D45-460A-B62D-383BC4F8B335}
O42 - Logiciel: Real Alternative 1.52 - (.Unknown owner.) [HKLM] -- RealAlt_is1
O42 - Logiciel: Ricochet - (.Valve.) [HKLM] -- Steam App 60
O42 - Logiciel: RocketDock 1.3.1 - (.Punk Software.) [HKLM] -- RocketDock_is1
O42 - Logiciel: SAMSUNG Mobile Modem Driver Set - (.Unknown owner.) [HKLM] -- SAMSUNG Mobile Modem
O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (.Unknown owner.) [HKLM] -- SAMSUNG Mobile USB Modem 1.0
O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (.Unknown owner.) [HKLM] -- SAMSUNG Mobile USB Modem
O42 - Logiciel: SFR - (.Eastman Kodak Company.) [HKLM] -- {DB02F716-6275-42E9-B8D2-83BA2BF5100B}
O42 - Logiciel: SHASTA - (.EASTMAN KODAK Company.) [HKLM] -- {605A4E39-613C-4A12-B56F-DEFBE6757237}
O42 - Logiciel: SKINXSDK - (.EASTMAN KODAK Company.) [HKLM] -- {F4A2E7CC-60CA-4AFA-B67F-AD5E58173C3F}
O42 - Logiciel: Samsung Mobile phone USB driver Software - (.Unknown owner.) [HKLM] -- Samsung Mobile phone USB driver
O42 - Logiciel: Samsung PC Studio 3 - (.Samsung Electronics Co., Ltd..) [HKLM] -- {C4A4722E-79F9-417C-BD72-8D359A090C97}
O42 - Logiciel: Search Settings - (.Unknown owner.) [HKLM] -- {90529245-9C54-45B5-BBB3-B180CA04F248}
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
O42 - Logiciel: Shareaza 2.3.1.0 - (.Shareaza Development Team.) [HKLM] -- Shareaza_is1
O42 - Logiciel: Skype Toolbars - (.Skype Technologies S.A..) [HKLM] -- {CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
O42 - Logiciel: Skype(TM) 5.0 - (.Skype Technologies S.A..) [HKLM] -- {E633D396-5188-4E9D-8F6B-BFB8BF3467E8}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: StarCraft II - (.Blizzard Entertainment.) [HKLM] -- StarCraft II
O42 - Logiciel: Steam(TM) - (.Valve.) [HKLM] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: System Requirements Lab - (.Unknown owner.) [HKLM] -- SystemRequirementsLab
O42 - Logiciel: THOMSON mp3PRO Audio Player - (.Unknown owner.) [HKLM] -- THOMSON mp3PRO Audio Player
O42 - Logiciel: TI Connect 1.6 - (.Texas Instruments Incorporated.) [HKLM] -- {A8B94669-8654-4126-BD28-D0D2412CDED6}
O42 - Logiciel: TeamSpeak 2 RC2 - (.Dominating Bytes Design.) [HKLM] -- Teamspeak 2 RC2_is1
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM] -- TeamSpeak 3 Client
O42 - Logiciel: UltraISO Premium V8.63 - (.Unknown owner.) [HKLM] -- UltraISO_is1
O42 - Logiciel: VCRedistSetup - (.Nero AG.) [HKLM] -- {3921A67A-5AB1-4E48-9444-C71814CF3027}
O42 - Logiciel: VPRINTOL - (.EASTMAN KODAK Company.) [HKLM] -- {999D43F4-9709-4887-9B1A-83EBB15A8370}
O42 - Logiciel: VideoLAN VLC media player 0.8.6b - (.VideoLAN Team.) [HKLM] -- VLC media player
O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729) - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}
O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01
O42 - Logiciel: WIRELESS - (.EASTMAN KODAK Company.) [HKLM] -- {F9593CFB-D836-49BC-BFF1-0E669A411D9F}
O42 - Logiciel: WinSnap - (.NTWind Software.) [HKLM] -- WinSnap
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM] -- Winamp
O42 - Logiciel: Winamp Toolbar for Firefox - (.AOL LLC.) [HKLM] -- Winamp Toolbar for Firefox
O42 - Logiciel: Windows Communication Foundation - (.Microsoft Corporation.) [HKLM] -- {491DD792-AD81-429C-9EB4-86DD3D22E333}
O42 - Logiciel: Windows Imaging Component - (.Microsoft Corporation.) [HKLM] -- WIC
O42 - Logiciel: Windows Installer Clean Up - (.Microsoft Corporation.) [HKLM] -- {121634B0-2F4B-11D3-ADA3-00C04F52DD52}
O42 - Logiciel: Windows Internet Explorer 7 - (.Microsoft Corporation.) [HKLM] -- ie7
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3B4E636E-9D65-4D67-BA61-189800823F52}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {770F1BEC-2871-4E70-B837-FB8525FFA3B1}
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11
O42 - Logiciel: Windows Media Format 11 runtime - (.Unknown owner.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11
O42 - Logiciel: Windows Presentation Foundation - (.Microsoft Corporation.) [HKLM] -- {BAF78226-3200-4DB4-BE33-4D922A799840}
O42 - Logiciel: Windows Workflow Foundation - (.Microsoft Corporation.) [HKLM] -- {7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
O42 - Logiciel: World of Warcraft - (.Blizzard Entertainment.) [HKLM] -- World of Warcraft
O42 - Logiciel: XML Paper Specification Shared Components Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- XpsEPSC
O42 - Logiciel: ZNsoft Free 2007 - (.Douali Nassim.) [HKLM] -- {ADA6814F-4DB9-468A-A3F0-A41E68C459EB}_is1
O42 - Logiciel: ZNsoft NetBooster - (.Douali Nassim.) [HKLM] -- {CE65E5A6-CB58-4DF8-90F9-0A37A19FDDBB}_is1
O42 - Logiciel: adsl TV - (.Unknown owner.) [HKLM] -- adsl TV
O42 - Logiciel: essvatgt - (.EASTMAN KODAK Company.) [HKLM] -- {2D03B6F8-DF36-4980-B7B6-5B93D5BA3A8F}
O42 - Logiciel: fflink - (.EASTMAN KODAK Company.) [HKLM] -- {608D2A3C-6889-4C11-9B54-A42F45ACBFDB}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {18388EF8-E0A3-442B-8BFE-E2F1B3D05C91}
O42 - Logiciel: kgcbaby - (.EASTMAN KODAK Company.) [HKLM] -- {E18B549C-5D15-45DA-8D8F-8FD2BD946344}
O42 - Logiciel: kgcbase - (.EASTMAN KODAK Company.) [HKLM] -- {F22C222C-3CE2-4A4B-A83F-AF4681371ABE}
O42 - Logiciel: kgchday - (.EASTMAN KODAK Company.) [HKLM] -- {11F3F858-4131-4FFA-A560-3FE282933B6E}
O42 - Logiciel: kgchlwn - (.EASTMAN KODAK Company.) [HKLM] -- {03EDED24-8375-407D-A721-4643D9768BE1}
O42 - Logiciel: kgcinvt - (.EASTMAN KODAK Company.) [HKLM] -- {9BD54685-1496-46A5-AB62-357CD140ED8B}
O42 - Logiciel: kgckids - (.EASTMAN KODAK Company.) [HKLM] -- {693C08A7-9E76-43FF-B11E-9A58175474C4}
O42 - Logiciel: kgcmove - (.EASTMAN KODAK Company.) [HKLM] -- {A1588373-1D86-4D44-86C9-78ABD190F9CC}
O42 - Logiciel: kgcvday - (.EASTMAN KODAK Company.) [HKLM] -- {8A8664E1-84C8-4936-891C-BC1F07797549}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: netbrdg - (.EASTMAN KODAK Company.) [HKLM] -- {4537EA4B-F603-4181-89FB-2953FC695AB1}
O42 - Logiciel: skin0001 - (.EASTMAN KODAK Company.) [HKLM] -- {5316DFC9-CE99-4458-9AB3-E8726EDE0210}
O42 - Logiciel: staticcr - (.EASTMAN KODAK Company.) [HKLM] -- {8943CE61-53BD-475E-90E1-A580869E98A2}
O42 - Logiciel: tooltips - (.EASTMAN KODAK Company.) [HKLM] -- {E79987F0-0E34-42CC-B8FF-6C860AEEB26A}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\AC3Filter]
[HKCU\Software\ASCII]
[HKCU\Software\ASUS]
[HKCU\Software\Ahead]
[HKCU\Software\Aion]
[HKCU\Software\Alexander Avdonin]
[HKCU\Software\AoAMP4Converter]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Applications locales générées par AppWizard]
[HKCU\Software\Audacity]
[HKCU\Software\Avira]
[HKCU\Software\Battle.net]
[HKCU\Software\Binary Noise]
[HKCU\Software\BitTorrent]
[HKCU\Software\Blizzard Entertainment]
[HKCU\Software\CDDB]
[HKCU\Software\Canon]
[HKCU\Software\Canon_Inc_IC]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CodeStuff]
[HKCU\Software\Coding Technologies]
[HKCU\Software\CoreAAC]
[HKCU\Software\CyberLink]
[HKCU\Software\Cygnus Solutions]
[HKCU\Software\DScaler5]
[HKCU\Software\DT Soft]
[HKCU\Software\DVD Decrypter]
[HKCU\Software\Digital River]
[HKCU\Software\DivXNetworks]
[HKCU\Software\EPSON]
[HKCU\Software\EasyBoot Systems]
[HKCU\Software\Elcom]
[HKCU\Software\Emulators]
[HKCU\Software\Enterbrain]
[HKCU\Software\Evil Laboratories]
[HKCU\Software\Foxit Software]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\Grisoft]
[HKCU\Software\HookNetwork]
[HKCU\Software\IGA]
[HKCU\Software\IM Providers]
[HKCU\Software\INCAInternet]
[HKCU\Software\IZSoftware]
[HKCU\Software\ImgBurn]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Kodak]
[HKCU\Software\Lavasoft]
[HKCU\Software\LightScribe]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mediachance]
[HKCU\Software\Memcedit]
[HKCU\Software\Monitored]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Mumble]
[HKCU\Software\NCsoft]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Northcode Inc]
[HKCU\Software\ODBC]
[HKCU\Software\OneStopSoft VideoDownloader]
[HKCU\Software\Opendisc]
[HKCU\Software\PCTools]
[HKCU\Software\PSXeven7]
[HKCU\Software\Patchou]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\ProxyShell]
[HKCU\Software\RascalBoy]
[HKCU\Software\Razer]
[HKCU\Software\RealNetworks]
[HKCU\Software\RocketDock]
[HKCU\Software\SEIKO EPSON]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Samsung PC Studio]
[HKCU\Software\Samsung]
[HKCU\Software\Sensaura]
[HKCU\Software\Shareaza]
[HKCU\Software\SkypeApps]
[HKCU\Software\Skype]
[HKCU\Software\Smart Projects]
[HKCU\Software\Sunbelt Software]
[HKCU\Software\Texas Instruments]
[HKCU\Software\TorrentAid]
[HKCU\Software\Trolltech]
[HKCU\Software\TuneUp]
[HKCU\Software\UsnapPROFL]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VSO]
[HKCU\Software\Valve]
[HKCU\Software\Vision Thing]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Winamp]
[HKCU\Software\Xenocode]
[HKCU\Software\Xfire]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\ej-technologies]
[HKCU\Software\epsxe]
[HKCU\Software\free-downloads.net]
[HKCU\Software\settings]
[HKLM\Software\(ÁÖ)³ª¿ìÄÞ]
[HKLM\Software\ABBYY]
[HKLM\Software\ACZ]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\AMD]
[HKLM\Software\ASUS]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Adobe]
[HKLM\Software\Ahead]
[HKLM\Software\Alcohol Soft]
[HKLM\Software\Alexander Avdonin]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Ariad]
[HKLM\Software\Arobas Music]
[HKLM\Software\Audible]
[HKLM\Software\Avira]
[HKLM\Software\BioWare]
[HKLM\Software\Blizzard Entertainment]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CDDB]
[HKLM\Software\Canon]
[HKLM\Software\Canon_Inc_IC]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Coding Technologies]
[HKLM\Software\Col_Rjl]
[HKLM\Software\CyberLink]
[HKLM\Software\Cygnus Solutions]
[HKLM\Software\DT Soft]
[HKLM\Software\Dofus 2]
[HKLM\Software\EPSON]
[HKLM\Software\EasyBoot Systems]
[HKLM\Software\Elaborate Bytes]
[HKLM\Software\Elcom]
[HKLM\Software\Electronic Arts]
[HKLM\Software\Enterbrain]
[HKLM\Software\FullCircle]
[HKLM\Software\Funcom]
[HKLM\Software\Gabest]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\Gravity Soft]
[HKLM\Software\Grisoft]
[HKLM\Software\InstallShield]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\Khronos]
[HKLM\Software\Kodak]
[HKLM\Software\Lavasoft]
[HKLM\Software\Licenses]
[HKLM\Software\LightScribe]
[HKLM\Software\MCCI]
[HKLM\Software\MSI]
[HKLM\Software\Macromedia]
[HKLM\Software\Magnet]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\Mediachance]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Mumble]
[HKLM\Software\NCsoft]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nero]
[HKLM\Software\Nullsoft]
[HKLM\Software\ODBC]
[HKLM\Software\PCTools]
[HKLM\Software\Patchou]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\RealAlternative]
[HKLM\Software\RealNetworks]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Samsung Electronics Co., Ltd.]
[HKLM\Software\Samsung]
[HKLM\Software\Schlumberger]
[HKLM\Software\Secure]
[HKLM\Software\Shareaza]
[HKLM\Software\Skype]
[HKLM\Software\Soeperman Enterprises Ltd.]
[HKLM\Software\Sony Online Entertainment]
[HKLM\Software\Texas Instruments]
[HKLM\Software\The Silicon Realms Toolworks]
[HKLM\Software\Trad-FR]
[HKLM\Software\TuneUp]
[HKLM\Software\VSO]
[HKLM\Software\Valve]
[HKLM\Software\VideoLAN]
[HKLM\Software\WeMade Entertainment]
[HKLM\Software\WebTranslator]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\Winsudate]
[HKLM\Software\Wise Solutions]
[HKLM\Software\X-AVCSD]
[HKLM\Software\Zone Labs]
[HKLM\Software\mozilla.org]
---\\ Contents of the Common Files folders (O43)
O43 - CFD: 13/05/2007 - 14:04:52 ----D- C:\Program Files\802.11 Wireless LAN
O43 - CFD: 12/11/2008 - 17:01:26 ----D- C:\Program Files\ABBYY FineReader 6.0 Sprint
O43 - CFD: 21/09/2007 - 19:32:28 ----D- C:\Program Files\adslTV
O43 - CFD: 11/05/2010 - 20:28:00 ----D- C:\Program Files\AGEIA Technologies
O43 - CFD: 07/05/2009 - 14:23:48 ----D- C:\Program Files\Ahead
O43 - CFD: 29/03/2008 - 10:22:24 ----D- C:\Program Files\Alcohol Soft
O43 - CFD: 08/11/2009 - 10:05:26 ----D- C:\Program Files\AML Products
O43 - CFD: 15/01/2008 - 21:45:14 ----D- C:\Program Files\AoA MP4 Converter
O43 - CFD: 26/12/2007 - 20:47:56 ----D- C:\Program Files\Apple Software Update
O43 - CFD: 09/10/2009 - 10:42:06 ----D- C:\Program Files\Audacity
O43 - CFD: 14/07/2009 - 10:38:10 ----D- C:\Program Files\Avira
O43 - CFD: 21/11/2009 - 19:13:04 ----D- C:\Program Files\AviSynth 2.5
O43 - CFD: 21/11/2009 - 19:12:54 ----D- C:\Program Files\AVN Products
O43 - CFD: 19/01/2008 - 09:40:34 ----D- C:\Program Files\BitTorrent
O43 - CFD: 14/09/2007 - 17:47:58 ----D- C:\Program Files\Bodom-Child - RaBBi
O43 - CFD: 13/05/2007 - 14:35:56 ----D- C:\Program Files\C-Media 6501 Sound
O43 - CFD: 12/02/2008 - 19:33:58 ----D- C:\Program Files\Canon
O43 - CFD: 07/01/2009 - 12:50:38 ----D- C:\Program Files\CCleaner
O43 - CFD: 13/05/2008 - 17:56:04 ----D- C:\Program Files\CDBurnerXP
O43 - CFD: 13/05/2007 - 16:27:18 ----D- C:\Program Files\CodeStuff
O43 - CFD: 23/03/2008 - 14:39:28 ----D- C:\Program Files\Common Files
O43 - CFD: 13/05/2007 - 12:14:34 ----D- C:\Program Files\ComPlus Applications
O43 - CFD: 13/05/2008 - 19:04:30 ----D- C:\Program Files\CyberLink
O43 - CFD: 15/11/2009 - 14:40:52 ----D- C:\Program Files\DAEMON Tools Lite
O43 - CFD: 21/08/2010 - 09:35:18 ----D- C:\Program Files\Diablo II
O43 - CFD: 13/05/2007 - 12:27:40 ----D- C:\Program Files\DIFX
O43 - CFD: 28/07/2007 - 09:09:14 ----D- C:\Program Files\DIGITALIC
O43 - CFD: 28/01/2010 - 19:23:06 ----D- C:\Program Files\Dofus
O43 - CFD: 23/05/2010 - 11:26:36 ----D- C:\Program Files\Dragon Age
O43 - CFD: 16/01/2008 - 14:08:24 ----D- C:\Program Files\DVD Decrypter
O43 - CFD: 03/02/2008 - 10:43:36 ----D- C:\Program Files\ElcomSoft
O43 - CFD: 28/07/2008 - 19:02:28 ----D- C:\Program Files\eMule
O43 - CFD: 02/11/2007 - 12:00:56 ----D- C:\Program Files\EPSON
O43 - CFD: 11/09/2010 - 22:22:34 ----D- C:\Program Files\EvilLyrics
O43 - CFD: 11/11/2010 - 20:54:24 ----D- C:\Program Files\Fichiers communs
O43 - CFD: 15/07/2008 - 10:00:02 ----D- C:\Program Files\Free Easy Burner
O43 - CFD: 28/07/2008 - 19:12:00 ----D- C:\Program Files\free-downloads.net
O43 - CFD: 15/09/2010 - 21:50:12 ----D- C:\Program Files\Funcom
O43 - CFD: 19/11/2008 - 16:59:12 ----D- C:\Program Files\Google
O43 - CFD: 08/10/2008 - 20:39:00 ----D- C:\Program Files\Guitar Pro 5
O43 - CFD: 08/09/2009 - 14:43:22 ----D- C:\Program Files\Hotspot Shield
O43 - CFD: 31/08/2009 - 19:00:24 ----D- C:\Program Files\ImgBurn
O43 - CFD: 15/09/2010 - 21:45:16 --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 25/12/2009 - 10:01:16 ----D- C:\Program Files\Internet Explorer
O43 - CFD: 26/12/2007 - 20:48:28 ----D- C:\Program Files\iPod
O43 - CFD: 26/12/2007 - 20:21:00 ----D- C:\Program Files\Ipod Video Converter
O43 - CFD: 26/12/2007 - 20:48:30 ----D- C:\Program Files\iTunes
O43 - CFD: 13/05/2007 - 15:38:14 ----D- C:\Program Files\IZArc
O43 - CFD: 13/12/2008 - 12:31:28 ----D- C:\Program Files\Java
O43 - CFD: 28/01/2010 - 19:18:52 ----D- C:\Program Files\KaraFun
O43 - CFD: 04/01/2009 - 18:29:04 ----D- C:\Program Files\Kodak
O43 - CFD: 04/04/2010 - 20:06:26 ----D- C:\Program Files\Lavasoft
O43 - CFD: 22/12/2010 - 20:27:42 ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 20/05/2007 - 12:57:44 ----D- C:\Program Files\Media Player Classic
O43 - CFD: 15/09/2009 - 21:23:42 ----D- C:\Program Files\Microsoft
---\\ Web Browser
MSIE: Internet Explorer v7.0.5730.13 (Defaut)
MFIE: Mozilla Firefox v3.5.11 (fr)
---\\ System Information
Windows XP Professional Service Pack 2 (Build 2600)
Processor: x86 Family 15 Model 75 Stepping 2, AuthenticAMD
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2046 MB (64% free)
System Restore: Désactivé (Disabled)
System drive C: has 47 GB (15%) free of 298 GB
---\\ Logged in mode
Computer Name: XPSP2-F3A740218
User Name: Onizuka
All Users Names: SUPPORT_388945a0, Onizuka, HelpAssistant, ASPNET, Administrateur,
Unselected Option: O1,O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 47 Go of 298 Go)
D:\ CD-ROM drive (Free 0 Go of 8 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
---\\ Search Generic System Files
[MD5.D0288319660EDCFED07C7E74C4EA38A5] - (.Microsoft Corporation - Explorateur Windows.) (.13/06/2007 14:22:28.) -- C:\Windows\Explorer.exe [1037312]
[MD5.123EEA158F74D0F67A51DCDF065D1091] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.19/08/2004 16:10:06.) -- C:\Windows\System32\Winlogon.exe [506368]
[MD5.CDFE4411A69C224BD1D11B2DA92DAC51] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.03/08/2004 17:59:44.) -- C:\Windows\System32\drivers\atapi.sys [95360]
[MD5.19A811EF5F1ED5C926A028CE107FF1AF] - (.Microsoft Corporation - NT File System Driver.) (.09/02/2007 12:10:35.) -- C:\Windows\System32\drivers\ntfs.sys [574464]
---\\ Running Processes
[MD5.96F1A6F0A0D4F11047DF2F5C17C87E9D] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 191.0.) -- C:\WINDOWS\system32\nvsvc32.exe [172100]
[MD5.9015BC03F62940527EC92D45EE89E46F] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [108289]
[MD5.B8720A787C1223492E6F319465E996CE] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [185089]
[MD5.69DA2BB73AC426CDEEBDACC68438BA3D] - (.Apple, Inc. - Apple Mobile Device Service.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [110592]
[MD5.D5687C8C02DF0EB4687B044A10DF5CB4] - (.AnchorFree Inc. - Hotspot Shield Helper Service.) -- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe [331824]
[MD5.32192B4EBE8720ED8D49A455C962CB91] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [152984]
[MD5.B90E093E7A7250906F1054418B5339C0] - (.Nero AG - Nero BackItUp.) -- C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe [935208]
[MD5.FD306FBCCE7ADB1077B709742E7148E9] - (.Unknown owner - No comment.) -- C:\Program Files\CDBurnerXP\NMSAccessU.exe [71096]
[MD5.D93108A20FA4B4317952234DE106F199] - (.PC Tools - PC Tools Firewall Plus service.) -- C:\Program Files\PC Tools Firewall Plus\FWService.exe [146800]
[MD5.688DC41BE9A6196491469365549C7DD1] - (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\WINDOWS\system32\WgaTray.exe [337280]
[MD5.CDD7140C0EAA754C527B983CCC9993CD] - (.Unknown owner - No comment.) -- C:\WINDOWS\system32\RunDll32.exe [33792]
[MD5.64F635240DB9FB0C6E6CA7725ED56544] - (.PC Tools - PC Tools Firewall GUI.) -- C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe [2652056]
[MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [209153]
[MD5.4AC28B51530D3A93B3F27EB7A72F575F] - (.Unknown owner - No comment.) -- C:\Program Files\RocketDock\RocketDock.exe [630784]
[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]
[MD5.E6DA7B764821083B7C9D818012B60E5D] - (.Unknown owner - ClientCU MFC Application.) -- C:\Program Files\802.11 Wireless LAN\802.11g Wireless Cardbus & PCI Adapter HW.51 V1.00\WlanCU.exe [454656]
[MD5.D527F9785ED538FF1F94B4E0FAC7F12A] - (.Lavasoft - Ad-Aware Service Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [1352832]
[MD5.5CF0DB946153DDBCD76359F77AB492F5] - (.Lavasoft - Ad-Aware Tray Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe [864112]
[MD5.9D3DB9ADFABD2F0BC778EC03250A3ABB] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [633632]
[MD5.A80B6B754B1D6762F11CD97A0466AC5B] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [621056]
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (P2,M0,M1,M2)
P2 - FPN:Firefox Plugin Navigator . (.BitTorrent, Inc. - BitTorrent Plugin 1.) -- C:\Program Files\Mozilla Firefox\Plugins\npbittorrent.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Unknown owner - No comment.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Unknown owner - No comment.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.50917.0.) -- c:\Program Files\Microsoft Silverlight\4.0.50917.0\npctrl.dll
P2 - FPN: [HKLM] [@pack.google.com/Google Updater;version=13] - (.Google - Google Updater plugin<br><a href="http://pack.google.com/">http://pack.) -- C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
P2 - FPN: [HKCU] [@adobe.com/FlashPlayer] - (.Unknown owner - No comment.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
M0 - MFSP: prefs.js [Onizuka - nqc6h3pq.default] https://www.google.fr/webhp?sourceid=navclient-ff&gws_rd=ssl
M2 - MFEP: prefs.js [Onizuka - nqc6h3pq.default\{0b38152b-1b20-484d-a11f-5e04a9b0661f}] [] Winamp Toolbar v1.0.0.1 (.AOL LLC.)
M2 - MFEP: prefs.js [Onizuka - nqc6h3pq.default\{3112ca9c-de6d-4884-a869-9855de68056c}] [] Google Toolbar for Firefox v6.1.20091216W (.Google Inc..)
M2 - MFEP: prefs.js [Onizuka - nqc6h3pq.default\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}] [] XfireXO Toolbar v2.7.0.14 (.Conduit Ltd..)
M2 - MFEP: prefs.js [Onizuka - nqc6h3pq.default\{ecdee021-0d17-467f-a1ff-c7a115230949}] [] free-downloads.net Toolbar v1.5.37.0 (.Conduit Ltd..)
---\\ Internet Explorer Extensions, Start, Search (R3,R0,R1)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/toolbar/ie8/sidebar.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/toolbar/ie8/sidebar.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (7.00.6000.16762 (vista_gdr.081013-1507)) -- C:\WINDOWS\system32\ieframe.dll
---\\ Changed inifile Value, Mapped to Registry (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Browser Helper Objects (O2)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Orphean Key
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Barre d'outils pour IE.) -- c:\program files\google\googletoolbar2.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} . (.SEIKO EPSON CORPORATION - EPSON Web-To-Page.) -- C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
---\\ Internet Explorer toolbars (O3)
O3 - Toolbar: (no name) - {8E4AA109-7239-4B85-8196-7377A53DDEFF} . (.Unknown owner - No comment.) -- (.not file.)
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} . (.SEIKO EPSON CORPORATION - EPSON Web-To-Page.) -- C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
---\\ Auto loading programs from Registry and folders (O4)
O4 - HKLM\..\Run: [SW20] . (.Unknown owner - sw20 MFC Application.) -- C:\WINDOWS\system32\sw20.exe
O4 - HKLM\..\Run: [SW24] . (.Unknown owner - No comment.) -- C:\WINDOWS\system32\sw24.exe
O4 - HKLM\..\Run: [C6501Sound] RunDll32 c6501.cpl
O4 - HKLM\..\Run: [00PCTFW] . (.PC Tools - PC Tools Firewall GUI.) -- C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe
O4 - HKLM\..\Run: [NeroFilterCheck] . (.Ahead Software Gmbh - NeroCheck.) -- C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe
O4 - HKLM\..\Run: [WinSys2] . (.Unknown owner - DOT MFC Application.) -- C:\WINDOWS\system32\winsys2.exe
O4 - HKLM\..\Run: [nwiz] . (.Unknown owner - No comment.) -- C:\Program Files\NVIDIA Corporation\nView\nwiz.exe
O4 - HKLM\..\Run: [NvMediaCenter] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\WINDOWS\system32\NvMcTray.dll
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\NvCpl.dll
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKCU\..\Run: [RocketDock] . (.Unknown owner - No comment.) -- C:\Program Files\RocketDock\RocketDock.exe
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BitTorrent] . (.Unknown owner - No comment.) -- C:\Program Files\BitTorrent\bittorrent.exe
O4 - HKUS\S-1-5-21-1715567821-920026266-725345543-1003\..\Run: [RocketDock] . (.Unknown owner - No comment.) -- C:\Program Files\RocketDock\RocketDock.exe
O4 - HKUS\S-1-5-21-1715567821-920026266-725345543-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1715567821-920026266-725345543-1003\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-21-1715567821-920026266-725345543-1003\..\Run: [BitTorrent] . (.Unknown owner - No comment.) -- C:\Program Files\BitTorrent\bittorrent.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] . (.Unknown owner - No comment.) -- C:\WINDOWS\system32\run.cmd
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] . (.Microsoft Corporation - DLL d'action personnalisée d'installation.) -- C:\WINDOWS\system32\tscupgrd.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] . (.Unknown owner - No comment.) -- C:\WINDOWS\system32\run.cmd
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] . (.Microsoft Corporation - DLL d'action personnalisée d'installation.) -- C:\WINDOWS\system32\tscupgrd.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] . (.Unknown owner - No comment.) -- C:\WINDOWS\system32\run.cmd
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] . (.Microsoft Corporation - DLL d'action personnalisée d'installation.) -- C:\WINDOWS\system32\tscupgrd.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_02] rundll32 advpack.dll
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_03] rundll32 advpack.dll
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] . (.Unknown owner - No comment.) -- C:\WINDOWS\system32\run.cmd
O4 - HKUS\S-1-5-20\..\RunOnce: [tscuninstall] . (.Microsoft Corporation - DLL d'action personnalisée d'installation.) -- C:\WINDOWS\system32\tscupgrd.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_01] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_02] rundll32 advpack.dll
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_03] rundll32 advpack.dll
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Wireless Configuration Utility HW.51.lnk . (.Unknown owner.) -- C:\Program Files\802.11 Wireless LAN\802.11g Wireless Cardbus & PCI Adapter HW.51 V1.00\WlanCU.exe
---\\ Other User Links (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (.Unknown owner.) -- C:\WINDOWS\Installer\{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Audacity.lnk . (.Unknown owner.) -- C:\Program Files\Audacity\audacity.exe
O4 - Global Startup: C:\Documents And Settings\Onizuka\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Onizuka\Menu Démarrer\Programmes\Windows Install Clean Up.lnk . (.Unknown owner.) -- C:\Documents and Settings\Onizuka\Application Data\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe
O4 - Global Startup: C:\Documents And Settings\Onizuka\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
---\\ Extra items in the IE right-click menu (O8)
O8 - Extra context menu item: Add to AMV Convert Tool... . (.Unknown owner - No comment.) -- C:\Program Files\MP3 Player Utilities 4.00\AMVConverter\grab.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.exe
O8 - Extra context menu item: MediaManager tool grab multimedia file . (.Unknown owner - No comment.) -- C:\Program Files\MP3 Player Utilities 4.00\MediaManager\grab.html
---\\ Extra buttons on main IE button toolbar, or extra items in IE 'Tools' menu (O9)
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (.Unknown owner - No comment.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Unknown owner - No comment.) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - (.not file.)
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
---\\ ActiveX Objects (Downloaded Program Files) (O16)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - https://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} () - http://fichiers.touslesdrivers.com/maconfig/MaConfig_4_0_1_3.cab
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} () - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
---\\ Lop.com/Domain Hijackers (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{FB050BBB-B04E-4C62-A92E-21EEA87EFECC}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS2\Services\Tcpip\..\{FB050BBB-B04E-4C62-A92E-21EEA87EFECC}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS3\Services\Tcpip\..\{1DAE1AD3-E851-4772-BF77-EA8C6D1BC029}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
---\\ Extra protocols and protocol Hijackers (O18)
O18 - Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
---\\ AppInit_DLLs Registry value Autorun (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\Windows\System32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
---\\ ShellServiceObjectDelayLoad (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll
---\\ SharedTaskScheduler (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
---\\ non Microsoft non disabled Windows XP/NT/2000 Services (O23)
O23 - Service: (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: (Apple Mobile Device) . (.Apple, Inc. - Apple Mobile Device Service.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: (CCALib8) . (.Canon Inc. - Canon Camera Access Library 8.) - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: (HotspotShieldService) . (.Unknown owner - No comment.) - C:\Program Files\Hotspot Shield\bin\openvpnas.exe
O23 - Service: (HssSrv) . (.AnchorFree Inc. - Hotspot Shield Helper Service.) - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: (Lavasoft Ad-Aware Service) . (.Lavasoft - Ad-Aware Service Application.) - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: (NMSAccessU) . (.Unknown owner - No comment.) - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 191.0.) - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: (PCToolsFirewallPlus) . (.PC Tools - PC Tools Firewall Plus service.) - C:\Program Files\PC Tools Firewall Plus\FWService.exe
---\\ Windows Active Desktop & MHTML Editor (O24)
O24 - Desktop Component 0: (no name) - file:http://www.mandolux.com/desktops/light/mandolux-wheel-r-1680.jpg
O24 - Default MHTML Editor: Last - .(.Unknown owner - No comment.) - "C:\Program Files\Microsoft Office\OFFICE11\WINWORD.exe (.not file.)
---\\ Task Planned Automatically(039)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Google Software Updater.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Maintenance en 1 clic.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\NeroLiveEpgUpdate-XPSP2-F3A740218_Onizuka.job
[MD5.D6814B567D8C7884DCC342C20F87FB70] [APT] [Ad-Aware Update (Weekly)] (.Lavasoft.) -- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
[MD5.7A4D5C521E6C11268C1D2131E7951B5D] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
[MD5.00000000000000000000000000000000] [APT] [Maintenance en 1 clic] (.Unknown owner.) -- C:\Program Files\TuneUp Utilities 2008\OneClickStarter.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [NeroLiveEpgUpdate-XPSP2-F3A740218_Onizuka] (.Unknown owner.) -- C:\Program Files\Nero\Nero 9\Nero Live\NeroLive.exe (.not file.)
---\\ ActiveSetup Installed Components (O40)
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Unknown owner - No comment.) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r22.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx
---\\ Drivers launched at startup (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (AmdK8) . (.Advanced Micro Devices - AMD Processor Driver.) - C:\Windows\System32\DRIVERS\AmdK8.sys
O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys
O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for RootKit Detection.) - C:\Windows\System32\DRIVERS\avipbb.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (FsVga) . (.Microsoft Corporation - Pilote vidéo plein écran.) - C:\Windows\System32\DRIVERS\fsvga.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys
O41 - Driver: (ISODrive) . (.EZB Systems, Inc. - ISO DVD/CD-ROM Device Driver.) - C:\Program Files\UltraISO\drivers\ISODrive.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre souris HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (pctgntdi) . (.PC Tools - PC Tools Generic TDI Driver.) - C:\WINDOWS\system32\drivers\pctgntdi.sys
O41 - Driver: (Processor) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\processr.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\System32\DRIVERS\ssmdrv.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
---\\ Software installed (O42)
O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07}
O42 - Logiciel: Ad-Aware - (.Lavasoft.) [HKLM] -- Ad-Aware
O42 - Logiciel: Ad-Aware - (.Lavasoft.) [HKLM] -- {DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
O42 - Logiciel: Ad-Aware Email Scanner for Outlook - (.Lavasoft.) [HKLM] -- {338F08AB-C262-42C7-B000-34DE1A475273}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Advanced Archive Password Recovery (remove only) - (.Unknown owner.) [HKLM] -- Advanced Archive Password Recovery
O42 - Logiciel: Age of Conan : Hyborian Adventures - (.Funcom.) [HKLM] -- Age of Conan_is1
O42 - Logiciel: AoA MP4 Converter - (.AoAMedia.com.) [HKLM] -- AoA MP4 Converter_is1
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {B5C209B1-8DDB-4642-A573-375B951514CB}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
O42 - Logiciel: Archiveur WinRAR - (.Unknown owner.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
O42 - Logiciel: Audacity 1.2.6 - (.Unknown owner.) [HKLM] -- Audacity_is1
O42 - Logiciel: AviSynth 2.5 - (.Unknown owner.) [HKLM] -- AviSynth
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: BitTorrent 5.0.9 - (.Unknown owner.) [HKLM] -- BitTorrent
O42 - Logiciel: C-Media 6501 Sound - (.Unknown owner.) [HKLM] -- Generic 6501 Sound
O42 - Logiciel: CCScore - (.EASTMAN KODAK Company.) [HKLM] -- {B4B44FE7-41FF-4DAD-8C0A-E406DDA72992}
O42 - Logiciel: CCleaner (remove only) - (.Unknown owner.) [HKLM] -- CCleaner
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: Canon Camera Access Library - (.Unknown owner.) [HKLM] -- CAL
O42 - Logiciel: Canon Camera Support Core Library - (.Unknown owner.) [HKLM] -- CSCLIB
O42 - Logiciel: Canon Camera Window DC_DV 5 for ZoomBrowser EX - (.Unknown owner.) [HKLM] -- CameraWindowDVC5
O42 - Logiciel: Canon Camera Window DC_DV 6 for ZoomBrowser EX - (.Unknown owner.) [HKLM] -- CameraWindowDVC6
O42 - Logiciel: Canon Camera Window MC 6 for ZoomBrowser EX - (.Unknown owner.) [HKLM] -- CameraWindowMC
O42 - Logiciel: Canon G.726 WMP-Decoder - (.Unknown owner.) [HKLM] -- Canon G.726 WMP-Decoder
O42 - Logiciel: Canon MovieEdit Task for ZoomBrowser EX - (.Unknown owner.) [HKLM] -- MovieEditTask
O42 - Logiciel: Canon RAW Image Task for ZoomBrowser EX - (.Unknown owner.) [HKLM] -- RAW Image Task
O42 - Logiciel: Canon RemoteCapture Task for ZoomBrowser EX - (.Unknown owner.) [HKLM] -- RemoteCaptureTask
O42 - Logiciel: Canon Utilities EOS Utility - (.Unknown owner.) [HKLM] -- EOS Utility
O42 - Logiciel: Canon Utilities PhotoStitch - (.Unknown owner.) [HKLM] -- PhotoStitch
O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Unknown owner.) [HKLM] -- ZoomBrowser EX
O42 - Logiciel: CodeStuff Starter - (.CodeStuff.) [HKLM] -- CodeStuff Starter
O42 - Logiciel: Condition Zero - (.Valve.) [HKLM] -- Steam App 80
O42 - Logiciel: Condition Zero Deleted Scenes - (.Ritual.) [HKLM] -- Steam App 100
O42 - Logiciel: Counter-Strike - (.Valve.) [HKLM] -- Steam App 10
O42 - Logiciel: Counter-Strike Steamworks Beta - (.Valve.) [HKLM] -- Steam App 150
O42 - Logiciel: Counter-Strike(TM) - (.Valve.) [HKLM] -- {DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}
O42 - Logiciel: DVD Decrypter (Remove Only) - (.Unknown owner.) [HKLM] -- DVD Decrypter
O42 - Logiciel: Day of Defeat - (.Valve.) [HKLM] -- Steam App 30
O42 - Logiciel: Deathmatch Classic - (.Valve.) [HKLM] -- Steam App 40
O42 - Logiciel: Diablo II - (.Blizzard Entertainment.) [HKLM] -- Diablo II
O42 - Logiciel: DigimonBattle Beta - (.WeMade Entertainment.) [HKLM] -- DigimonBattle
O42 - Logiciel: DigimonRPG - (.Unknown owner.) [HKLM] -- DigimonRPG_v447
O42 - Logiciel: Dragon Age: Origins - (.Electronic Arts, Inc..) [HKLM] -- {AEC81925-9C76-4707-84A9-40696C613ED3}
O42 - Logiciel: EPSON Attach To Email - (.SEIKO EPSON.) [HKLM] -- InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}
O42 - Logiciel: EPSON Copy Utility 3 - (.Unknown owner.) [HKLM] -- {67EDD823-135A-4D59-87BD-950616D6E857}
O42 - Logiciel: EPSON Easy Photo Print - (.Unknown owner.) [HKLM] -- {BC69DDB8-4840-4D9B-BB31-0D4DB2BA1312}
O42 - Logiciel: EPSON File Manager - (.Unknown owner.) [HKLM] -- {E86BC406-944E-41F6-ADE6-2C136734C96B}
O42 - Logiciel: EPSON Scan - (.Unknown owner.) [HKLM] -- EPSON Scanner
O42 - Logiciel: EPSON Scan Assistant - (.Unknown owner.) [HKLM] -- {2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}
O42 - Logiciel: EPSON Web-To-Page - (.Unknown owner.) [HKLM] -- {7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}
O42 - Logiciel: EPSON-Drucker-Software - (.Unknown owner.) [HKLM] -- EPSON Printer and Utilities
O42 - Logiciel: ESDX6000_CX5900 Guide util. - (.Unknown owner.) [HKLM] -- ESDX6000_CX5900 Guide util.
O42 - Logiciel: ESSBrwr - (.EASTMAN KODAK Company.) [HKLM] -- {643EAE81-920C-4931-9F0B-4B343B225CA6}
O42 - Logiciel: ESSCDBK - (.EASTMAN KODAK Company.) [HKLM] -- {AE1FA02D-E6A4-4EA0-8E58-6483CAC016DD}
O42 - Logiciel: ESSPCD - (.EASTMAN KODAK Company.) [HKLM] -- {14D4ED84-6A9A-45A0-96F6-1753768C3CB5}
O42 - Logiciel: ESSPDock - (.Nom de votre société.) [HKLM] -- ???RPG ??391
O42 - Logiciel: ESSPDock - (.Nom de votre société.) [HKLM] -- {FCDB1C92-03C6-4C76-8625-371224256091}
O42 - Logiciel: ESSSONIC - (.EASTMAN KODAK Company.) [HKLM] -- {073F22CE-9A5B-4A40-A604-C7270AC6BF34}
O42 - Logiciel: ESSTOOLS - (.EASTMAN KODAK Company.) [HKLM] -- {8A502E38-29C9-49FA-BCFA-D727CA062589}
O42 - Logiciel: ESScore - (.Nom de votre société.) [HKLM] -- {42938595-0D83-404D-9F73-F8177FDD531A}
O42 - Logiciel: ESSgui - (.EASTMAN KODAK Company.) [HKLM] -- {91517631-A9F3-4B7C-B482-43E0068FD55A}
O42 - Logiciel: ESSini - (.Nom de votre société.) [HKLM] -- {8E92D746-CD9F-4B90-9668-42B74C14F765}
O42 - Logiciel: Fast MP4 3GP AVI MPG WMV RM MOV FLV Converter 5.0 - (.AVN Media Technologies..) [HKLM] -- {50020B66-4BA5-4E35-939E-98A0D648EE88}_is1
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {DBEA1034-5882-4A88-8033-81C4EF0CFA29}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Unknown owner.) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Guitar Pro 5.2 - (.Arobas Music.) [HKLM] -- Guitar Pro 5_is1
O42 - Logiciel: Hotfix for Windows XP (KB915865) - (.Microsoft Corporation.) [HKLM] -- KB915865
O42 - Logiciel: Hotfix for Windows XP (KB926239) - (.Microsoft Corporation.) [HKLM] -- KB926239
O42 - Logiciel: Hotspot Shield 1.22 - (.Unknown owner.) [HKLM] -- HotspotShield
O42 - Logiciel: IEEE 802.11g Wireless Cardbus/PCI Adapter - (.OEM.) [HKLM] -- InstallShield_{29F15D3F-5B37-44DB-BB89-390B3AD1404E}
O42 - Logiciel: IZArc 3.7 - (.Ivan Zahariev.) [HKLM] -- {97C82B44-D408-4F14-9252-47FC1636D23E}_is1
O42 - Logiciel: ImgBurn 2.3.2.0 Fr - (.Unknown owner.) [HKLM] -- {75ADEFA2-D4FF-4B37-9E93-4306E6AC176B}_is1
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {46ABBC54-1872-4AA3-95E2-F2C063A63F31}
O42 - Logiciel: Java(TM) 6 Update 11 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216011FF}
O42 - Logiciel: Lecteur Windows Media 11 - (.Unknown owner.) [HKLM] -- Windows Media Player
O42 - Logiciel: Logiciel Kodak EasyShare - (.Eastman Kodak Company.) [HKLM] -- {D32470A1-B10C-4059-BA53-CF0486F68EBC}
O42 - Logiciel: MP3 Player Utilities 4.00 - (. .) [HKLM] -- {7784A172-61F1-445E-8368-601607E0DD22}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF}
O42 - Logiciel: MSXML 6.0 Parser (KB933579) - (.Microsoft Corporation.) [HKLM] -- {0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Unknown owner.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 Hotfix (KB928366) - (.Unknown owner.) [HKLM] -- M928366
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
O42 - Logiciel: Microsoft .NET Framework 3.0 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.0
O42 - Logiciel: Microsoft .NET Framework 3.0 - (.Microsoft Corporation.) [HKLM] -- {15095BF3-A3D7-4DDF-B193-3A496881E003}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs
O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping
O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM] -- {9011040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Mozilla Firefox (3.5.11) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.5.11)
O42 - Logiciel: NCsoft Launcher - (.NCsoft.) [HKLM] -- {C9FB868B-2086-4EE2-BD4F-BFBA36B131F4}
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}
O42 - Logiciel: NVIDIA nView Desktop Manager - (.NVIDIA Corporation.) [HKLM] -- NVIDIA nView Desktop Manager
O42 - Logiciel: Nero 9 Trial - (.Nero AG.) [HKLM] -- {d893d9cd-0c28-4361-95f8-295030e65288}
O42 - Logiciel: Nero Suite - (.Unknown owner.) [HKLM] -- NeroMultiInstaller!UninstallKey
O42 - Logiciel: Notification de cadeaux MSN - (.Microsoft.) [HKCU] -- Notification de cadeaux MSN
O42 - Logiciel: OfotoXMI - (.EASTMAN KODAK Company.) [HKLM] -- {B162D0A6-9A1D-4B7C-91A5-88FB48113C45}
O42 - Logiciel: OneStopSoft Youtube Video File Downloader 1.0.0.6 - (.OneStopSoft.com.) [HKLM] -- OneStopSoft Youtube Video File Downloader Trial Version_is1
O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}
O42 - Logiciel: PC Tools Firewall Plus 5.0 - (.PC Tools.) [HKLM] -- PC Tools Firewall Plus
O42 - Logiciel: PIF DESIGNER - (.Unknown owner.) [HKLM] -- {B90450DF-E781-46FD-B1F1-0C86DA40E443}
O42 - Logiciel: Package de pilotes Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0) - (.Advanced Micro Devices.) [HKLM] -- 3BEF1AFDE8303306594E2ADA27520E6E700820AE
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {E0D51394-1D45-460A-B62D-383BC4F8B335}
O42 - Logiciel: Real Alternative 1.52 - (.Unknown owner.) [HKLM] -- RealAlt_is1
O42 - Logiciel: Ricochet - (.Valve.) [HKLM] -- Steam App 60
O42 - Logiciel: RocketDock 1.3.1 - (.Punk Software.) [HKLM] -- RocketDock_is1
O42 - Logiciel: SAMSUNG Mobile Modem Driver Set - (.Unknown owner.) [HKLM] -- SAMSUNG Mobile Modem
O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (.Unknown owner.) [HKLM] -- SAMSUNG Mobile USB Modem 1.0
O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (.Unknown owner.) [HKLM] -- SAMSUNG Mobile USB Modem
O42 - Logiciel: SFR - (.Eastman Kodak Company.) [HKLM] -- {DB02F716-6275-42E9-B8D2-83BA2BF5100B}
O42 - Logiciel: SHASTA - (.EASTMAN KODAK Company.) [HKLM] -- {605A4E39-613C-4A12-B56F-DEFBE6757237}
O42 - Logiciel: SKINXSDK - (.EASTMAN KODAK Company.) [HKLM] -- {F4A2E7CC-60CA-4AFA-B67F-AD5E58173C3F}
O42 - Logiciel: Samsung Mobile phone USB driver Software - (.Unknown owner.) [HKLM] -- Samsung Mobile phone USB driver
O42 - Logiciel: Samsung PC Studio 3 - (.Samsung Electronics Co., Ltd..) [HKLM] -- {C4A4722E-79F9-417C-BD72-8D359A090C97}
O42 - Logiciel: Search Settings - (.Unknown owner.) [HKLM] -- {90529245-9C54-45B5-BBB3-B180CA04F248}
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
O42 - Logiciel: Shareaza 2.3.1.0 - (.Shareaza Development Team.) [HKLM] -- Shareaza_is1
O42 - Logiciel: Skype Toolbars - (.Skype Technologies S.A..) [HKLM] -- {CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
O42 - Logiciel: Skype(TM) 5.0 - (.Skype Technologies S.A..) [HKLM] -- {E633D396-5188-4E9D-8F6B-BFB8BF3467E8}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: StarCraft II - (.Blizzard Entertainment.) [HKLM] -- StarCraft II
O42 - Logiciel: Steam(TM) - (.Valve.) [HKLM] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: System Requirements Lab - (.Unknown owner.) [HKLM] -- SystemRequirementsLab
O42 - Logiciel: THOMSON mp3PRO Audio Player - (.Unknown owner.) [HKLM] -- THOMSON mp3PRO Audio Player
O42 - Logiciel: TI Connect 1.6 - (.Texas Instruments Incorporated.) [HKLM] -- {A8B94669-8654-4126-BD28-D0D2412CDED6}
O42 - Logiciel: TeamSpeak 2 RC2 - (.Dominating Bytes Design.) [HKLM] -- Teamspeak 2 RC2_is1
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM] -- TeamSpeak 3 Client
O42 - Logiciel: UltraISO Premium V8.63 - (.Unknown owner.) [HKLM] -- UltraISO_is1
O42 - Logiciel: VCRedistSetup - (.Nero AG.) [HKLM] -- {3921A67A-5AB1-4E48-9444-C71814CF3027}
O42 - Logiciel: VPRINTOL - (.EASTMAN KODAK Company.) [HKLM] -- {999D43F4-9709-4887-9B1A-83EBB15A8370}
O42 - Logiciel: VideoLAN VLC media player 0.8.6b - (.VideoLAN Team.) [HKLM] -- VLC media player
O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729) - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}
O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01
O42 - Logiciel: WIRELESS - (.EASTMAN KODAK Company.) [HKLM] -- {F9593CFB-D836-49BC-BFF1-0E669A411D9F}
O42 - Logiciel: WinSnap - (.NTWind Software.) [HKLM] -- WinSnap
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM] -- Winamp
O42 - Logiciel: Winamp Toolbar for Firefox - (.AOL LLC.) [HKLM] -- Winamp Toolbar for Firefox
O42 - Logiciel: Windows Communication Foundation - (.Microsoft Corporation.) [HKLM] -- {491DD792-AD81-429C-9EB4-86DD3D22E333}
O42 - Logiciel: Windows Imaging Component - (.Microsoft Corporation.) [HKLM] -- WIC
O42 - Logiciel: Windows Installer Clean Up - (.Microsoft Corporation.) [HKLM] -- {121634B0-2F4B-11D3-ADA3-00C04F52DD52}
O42 - Logiciel: Windows Internet Explorer 7 - (.Microsoft Corporation.) [HKLM] -- ie7
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3B4E636E-9D65-4D67-BA61-189800823F52}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {770F1BEC-2871-4E70-B837-FB8525FFA3B1}
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11
O42 - Logiciel: Windows Media Format 11 runtime - (.Unknown owner.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11
O42 - Logiciel: Windows Presentation Foundation - (.Microsoft Corporation.) [HKLM] -- {BAF78226-3200-4DB4-BE33-4D922A799840}
O42 - Logiciel: Windows Workflow Foundation - (.Microsoft Corporation.) [HKLM] -- {7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
O42 - Logiciel: World of Warcraft - (.Blizzard Entertainment.) [HKLM] -- World of Warcraft
O42 - Logiciel: XML Paper Specification Shared Components Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- XpsEPSC
O42 - Logiciel: ZNsoft Free 2007 - (.Douali Nassim.) [HKLM] -- {ADA6814F-4DB9-468A-A3F0-A41E68C459EB}_is1
O42 - Logiciel: ZNsoft NetBooster - (.Douali Nassim.) [HKLM] -- {CE65E5A6-CB58-4DF8-90F9-0A37A19FDDBB}_is1
O42 - Logiciel: adsl TV - (.Unknown owner.) [HKLM] -- adsl TV
O42 - Logiciel: essvatgt - (.EASTMAN KODAK Company.) [HKLM] -- {2D03B6F8-DF36-4980-B7B6-5B93D5BA3A8F}
O42 - Logiciel: fflink - (.EASTMAN KODAK Company.) [HKLM] -- {608D2A3C-6889-4C11-9B54-A42F45ACBFDB}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {18388EF8-E0A3-442B-8BFE-E2F1B3D05C91}
O42 - Logiciel: kgcbaby - (.EASTMAN KODAK Company.) [HKLM] -- {E18B549C-5D15-45DA-8D8F-8FD2BD946344}
O42 - Logiciel: kgcbase - (.EASTMAN KODAK Company.) [HKLM] -- {F22C222C-3CE2-4A4B-A83F-AF4681371ABE}
O42 - Logiciel: kgchday - (.EASTMAN KODAK Company.) [HKLM] -- {11F3F858-4131-4FFA-A560-3FE282933B6E}
O42 - Logiciel: kgchlwn - (.EASTMAN KODAK Company.) [HKLM] -- {03EDED24-8375-407D-A721-4643D9768BE1}
O42 - Logiciel: kgcinvt - (.EASTMAN KODAK Company.) [HKLM] -- {9BD54685-1496-46A5-AB62-357CD140ED8B}
O42 - Logiciel: kgckids - (.EASTMAN KODAK Company.) [HKLM] -- {693C08A7-9E76-43FF-B11E-9A58175474C4}
O42 - Logiciel: kgcmove - (.EASTMAN KODAK Company.) [HKLM] -- {A1588373-1D86-4D44-86C9-78ABD190F9CC}
O42 - Logiciel: kgcvday - (.EASTMAN KODAK Company.) [HKLM] -- {8A8664E1-84C8-4936-891C-BC1F07797549}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: netbrdg - (.EASTMAN KODAK Company.) [HKLM] -- {4537EA4B-F603-4181-89FB-2953FC695AB1}
O42 - Logiciel: skin0001 - (.EASTMAN KODAK Company.) [HKLM] -- {5316DFC9-CE99-4458-9AB3-E8726EDE0210}
O42 - Logiciel: staticcr - (.EASTMAN KODAK Company.) [HKLM] -- {8943CE61-53BD-475E-90E1-A580869E98A2}
O42 - Logiciel: tooltips - (.EASTMAN KODAK Company.) [HKLM] -- {E79987F0-0E34-42CC-B8FF-6C860AEEB26A}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\AC3Filter]
[HKCU\Software\ASCII]
[HKCU\Software\ASUS]
[HKCU\Software\Ahead]
[HKCU\Software\Aion]
[HKCU\Software\Alexander Avdonin]
[HKCU\Software\AoAMP4Converter]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Applications locales générées par AppWizard]
[HKCU\Software\Audacity]
[HKCU\Software\Avira]
[HKCU\Software\Battle.net]
[HKCU\Software\Binary Noise]
[HKCU\Software\BitTorrent]
[HKCU\Software\Blizzard Entertainment]
[HKCU\Software\CDDB]
[HKCU\Software\Canon]
[HKCU\Software\Canon_Inc_IC]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CodeStuff]
[HKCU\Software\Coding Technologies]
[HKCU\Software\CoreAAC]
[HKCU\Software\CyberLink]
[HKCU\Software\Cygnus Solutions]
[HKCU\Software\DScaler5]
[HKCU\Software\DT Soft]
[HKCU\Software\DVD Decrypter]
[HKCU\Software\Digital River]
[HKCU\Software\DivXNetworks]
[HKCU\Software\EPSON]
[HKCU\Software\EasyBoot Systems]
[HKCU\Software\Elcom]
[HKCU\Software\Emulators]
[HKCU\Software\Enterbrain]
[HKCU\Software\Evil Laboratories]
[HKCU\Software\Foxit Software]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\Grisoft]
[HKCU\Software\HookNetwork]
[HKCU\Software\IGA]
[HKCU\Software\IM Providers]
[HKCU\Software\INCAInternet]
[HKCU\Software\IZSoftware]
[HKCU\Software\ImgBurn]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Kodak]
[HKCU\Software\Lavasoft]
[HKCU\Software\LightScribe]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mediachance]
[HKCU\Software\Memcedit]
[HKCU\Software\Monitored]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Mumble]
[HKCU\Software\NCsoft]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Northcode Inc]
[HKCU\Software\ODBC]
[HKCU\Software\OneStopSoft VideoDownloader]
[HKCU\Software\Opendisc]
[HKCU\Software\PCTools]
[HKCU\Software\PSXeven7]
[HKCU\Software\Patchou]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\ProxyShell]
[HKCU\Software\RascalBoy]
[HKCU\Software\Razer]
[HKCU\Software\RealNetworks]
[HKCU\Software\RocketDock]
[HKCU\Software\SEIKO EPSON]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Samsung PC Studio]
[HKCU\Software\Samsung]
[HKCU\Software\Sensaura]
[HKCU\Software\Shareaza]
[HKCU\Software\SkypeApps]
[HKCU\Software\Skype]
[HKCU\Software\Smart Projects]
[HKCU\Software\Sunbelt Software]
[HKCU\Software\Texas Instruments]
[HKCU\Software\TorrentAid]
[HKCU\Software\Trolltech]
[HKCU\Software\TuneUp]
[HKCU\Software\UsnapPROFL]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VSO]
[HKCU\Software\Valve]
[HKCU\Software\Vision Thing]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Winamp]
[HKCU\Software\Xenocode]
[HKCU\Software\Xfire]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\ej-technologies]
[HKCU\Software\epsxe]
[HKCU\Software\free-downloads.net]
[HKCU\Software\settings]
[HKLM\Software\(ÁÖ)³ª¿ìÄÞ]
[HKLM\Software\ABBYY]
[HKLM\Software\ACZ]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\AMD]
[HKLM\Software\ASUS]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Adobe]
[HKLM\Software\Ahead]
[HKLM\Software\Alcohol Soft]
[HKLM\Software\Alexander Avdonin]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Ariad]
[HKLM\Software\Arobas Music]
[HKLM\Software\Audible]
[HKLM\Software\Avira]
[HKLM\Software\BioWare]
[HKLM\Software\Blizzard Entertainment]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CDDB]
[HKLM\Software\Canon]
[HKLM\Software\Canon_Inc_IC]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Coding Technologies]
[HKLM\Software\Col_Rjl]
[HKLM\Software\CyberLink]
[HKLM\Software\Cygnus Solutions]
[HKLM\Software\DT Soft]
[HKLM\Software\Dofus 2]
[HKLM\Software\EPSON]
[HKLM\Software\EasyBoot Systems]
[HKLM\Software\Elaborate Bytes]
[HKLM\Software\Elcom]
[HKLM\Software\Electronic Arts]
[HKLM\Software\Enterbrain]
[HKLM\Software\FullCircle]
[HKLM\Software\Funcom]
[HKLM\Software\Gabest]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\Gravity Soft]
[HKLM\Software\Grisoft]
[HKLM\Software\InstallShield]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\Khronos]
[HKLM\Software\Kodak]
[HKLM\Software\Lavasoft]
[HKLM\Software\Licenses]
[HKLM\Software\LightScribe]
[HKLM\Software\MCCI]
[HKLM\Software\MSI]
[HKLM\Software\Macromedia]
[HKLM\Software\Magnet]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\Mediachance]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Mumble]
[HKLM\Software\NCsoft]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nero]
[HKLM\Software\Nullsoft]
[HKLM\Software\ODBC]
[HKLM\Software\PCTools]
[HKLM\Software\Patchou]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\RealAlternative]
[HKLM\Software\RealNetworks]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Samsung Electronics Co., Ltd.]
[HKLM\Software\Samsung]
[HKLM\Software\Schlumberger]
[HKLM\Software\Secure]
[HKLM\Software\Shareaza]
[HKLM\Software\Skype]
[HKLM\Software\Soeperman Enterprises Ltd.]
[HKLM\Software\Sony Online Entertainment]
[HKLM\Software\Texas Instruments]
[HKLM\Software\The Silicon Realms Toolworks]
[HKLM\Software\Trad-FR]
[HKLM\Software\TuneUp]
[HKLM\Software\VSO]
[HKLM\Software\Valve]
[HKLM\Software\VideoLAN]
[HKLM\Software\WeMade Entertainment]
[HKLM\Software\WebTranslator]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\Winsudate]
[HKLM\Software\Wise Solutions]
[HKLM\Software\X-AVCSD]
[HKLM\Software\Zone Labs]
[HKLM\Software\mozilla.org]
---\\ Contents of the Common Files folders (O43)
O43 - CFD: 13/05/2007 - 14:04:52 ----D- C:\Program Files\802.11 Wireless LAN
O43 - CFD: 12/11/2008 - 17:01:26 ----D- C:\Program Files\ABBYY FineReader 6.0 Sprint
O43 - CFD: 21/09/2007 - 19:32:28 ----D- C:\Program Files\adslTV
O43 - CFD: 11/05/2010 - 20:28:00 ----D- C:\Program Files\AGEIA Technologies
O43 - CFD: 07/05/2009 - 14:23:48 ----D- C:\Program Files\Ahead
O43 - CFD: 29/03/2008 - 10:22:24 ----D- C:\Program Files\Alcohol Soft
O43 - CFD: 08/11/2009 - 10:05:26 ----D- C:\Program Files\AML Products
O43 - CFD: 15/01/2008 - 21:45:14 ----D- C:\Program Files\AoA MP4 Converter
O43 - CFD: 26/12/2007 - 20:47:56 ----D- C:\Program Files\Apple Software Update
O43 - CFD: 09/10/2009 - 10:42:06 ----D- C:\Program Files\Audacity
O43 - CFD: 14/07/2009 - 10:38:10 ----D- C:\Program Files\Avira
O43 - CFD: 21/11/2009 - 19:13:04 ----D- C:\Program Files\AviSynth 2.5
O43 - CFD: 21/11/2009 - 19:12:54 ----D- C:\Program Files\AVN Products
O43 - CFD: 19/01/2008 - 09:40:34 ----D- C:\Program Files\BitTorrent
O43 - CFD: 14/09/2007 - 17:47:58 ----D- C:\Program Files\Bodom-Child - RaBBi
O43 - CFD: 13/05/2007 - 14:35:56 ----D- C:\Program Files\C-Media 6501 Sound
O43 - CFD: 12/02/2008 - 19:33:58 ----D- C:\Program Files\Canon
O43 - CFD: 07/01/2009 - 12:50:38 ----D- C:\Program Files\CCleaner
O43 - CFD: 13/05/2008 - 17:56:04 ----D- C:\Program Files\CDBurnerXP
O43 - CFD: 13/05/2007 - 16:27:18 ----D- C:\Program Files\CodeStuff
O43 - CFD: 23/03/2008 - 14:39:28 ----D- C:\Program Files\Common Files
O43 - CFD: 13/05/2007 - 12:14:34 ----D- C:\Program Files\ComPlus Applications
O43 - CFD: 13/05/2008 - 19:04:30 ----D- C:\Program Files\CyberLink
O43 - CFD: 15/11/2009 - 14:40:52 ----D- C:\Program Files\DAEMON Tools Lite
O43 - CFD: 21/08/2010 - 09:35:18 ----D- C:\Program Files\Diablo II
O43 - CFD: 13/05/2007 - 12:27:40 ----D- C:\Program Files\DIFX
O43 - CFD: 28/07/2007 - 09:09:14 ----D- C:\Program Files\DIGITALIC
O43 - CFD: 28/01/2010 - 19:23:06 ----D- C:\Program Files\Dofus
O43 - CFD: 23/05/2010 - 11:26:36 ----D- C:\Program Files\Dragon Age
O43 - CFD: 16/01/2008 - 14:08:24 ----D- C:\Program Files\DVD Decrypter
O43 - CFD: 03/02/2008 - 10:43:36 ----D- C:\Program Files\ElcomSoft
O43 - CFD: 28/07/2008 - 19:02:28 ----D- C:\Program Files\eMule
O43 - CFD: 02/11/2007 - 12:00:56 ----D- C:\Program Files\EPSON
O43 - CFD: 11/09/2010 - 22:22:34 ----D- C:\Program Files\EvilLyrics
O43 - CFD: 11/11/2010 - 20:54:24 ----D- C:\Program Files\Fichiers communs
O43 - CFD: 15/07/2008 - 10:00:02 ----D- C:\Program Files\Free Easy Burner
O43 - CFD: 28/07/2008 - 19:12:00 ----D- C:\Program Files\free-downloads.net
O43 - CFD: 15/09/2010 - 21:50:12 ----D- C:\Program Files\Funcom
O43 - CFD: 19/11/2008 - 16:59:12 ----D- C:\Program Files\Google
O43 - CFD: 08/10/2008 - 20:39:00 ----D- C:\Program Files\Guitar Pro 5
O43 - CFD: 08/09/2009 - 14:43:22 ----D- C:\Program Files\Hotspot Shield
O43 - CFD: 31/08/2009 - 19:00:24 ----D- C:\Program Files\ImgBurn
O43 - CFD: 15/09/2010 - 21:45:16 --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 25/12/2009 - 10:01:16 ----D- C:\Program Files\Internet Explorer
O43 - CFD: 26/12/2007 - 20:48:28 ----D- C:\Program Files\iPod
O43 - CFD: 26/12/2007 - 20:21:00 ----D- C:\Program Files\Ipod Video Converter
O43 - CFD: 26/12/2007 - 20:48:30 ----D- C:\Program Files\iTunes
O43 - CFD: 13/05/2007 - 15:38:14 ----D- C:\Program Files\IZArc
O43 - CFD: 13/12/2008 - 12:31:28 ----D- C:\Program Files\Java
O43 - CFD: 28/01/2010 - 19:18:52 ----D- C:\Program Files\KaraFun
O43 - CFD: 04/01/2009 - 18:29:04 ----D- C:\Program Files\Kodak
O43 - CFD: 04/04/2010 - 20:06:26 ----D- C:\Program Files\Lavasoft
O43 - CFD: 22/12/2010 - 20:27:42 ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 20/05/2007 - 12:57:44 ----D- C:\Program Files\Media Player Classic
O43 - CFD: 15/09/2009 - 21:23:42 ----D- C:\Program Files\Microsoft
Oui excusez moi je me suis emporté dans la façilité à tort tenez : http://www.cijoint.fr/cjlink.php?file=cj201012/cij0RGlMML.txt
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Tu as des infections publicitaires entre-autres :
Pour les traiter :
Pour les ordinateurs équipés de Windows Vista et Windows 7, la désactivation du Contrôle des comptes utilisateurs est obligatoire
sous peine de ne pas pouvoir faire fonctionner correctement l'outil.
Tuto : https://www.commentcamarche.net/faq/8343-vista-desactiver-l-uac
>Ad-Remover<
>Telecharge Ad-Remover et enregistre-le sur ton bureau :
https://www.commentcamarche.net/telecharger/securite/2547-ad-remover/
>Désactive ton antivirus le temps de la manip
>Déconnecte-toi d'Internet et ferme toutes applications en cours
>Double-clique sur le programme d'installation, installe-le dans son emplacement par défaut (C:\Program Files).
>Au menu principal, choisis l'option Nettoyer
>Poste le rapport généré (C:\Ad-Report-CLEAN.log).
>N'oublie pas de réactiver ton anti-virus
Puis, une possible infection rootkit :
> Télécharge GMER :
http://www2.gmer.net/gmer.zip
* Dézipper le programme.
* Double cliquer sur Gmer.exe
* Le programme se lance et fait un auto scan
(il s'agit de l'onglet : Rootkit/Malware).
=> Des lignes rouges doivent apparaître en cas d'infection :
* sur ces lignes rouges:
o Services: Clique droit puis delete service
o Process: Clique droit puis kill process
o Adl, file: Clique droit puis delete files
*>flo-91<*®
N'hésitez pas a faire un tour dans la faq du forum ( rubrique astuce ),
il y a peut être déjà la solution à votre problème =)
Pour les traiter :
Pour les ordinateurs équipés de Windows Vista et Windows 7, la désactivation du Contrôle des comptes utilisateurs est obligatoire
sous peine de ne pas pouvoir faire fonctionner correctement l'outil.
Tuto : https://www.commentcamarche.net/faq/8343-vista-desactiver-l-uac
>Ad-Remover<
>Telecharge Ad-Remover et enregistre-le sur ton bureau :
https://www.commentcamarche.net/telecharger/securite/2547-ad-remover/
>Désactive ton antivirus le temps de la manip
>Déconnecte-toi d'Internet et ferme toutes applications en cours
>Double-clique sur le programme d'installation, installe-le dans son emplacement par défaut (C:\Program Files).
>Au menu principal, choisis l'option Nettoyer
>Poste le rapport généré (C:\Ad-Report-CLEAN.log).
>N'oublie pas de réactiver ton anti-virus
Puis, une possible infection rootkit :
> Télécharge GMER :
http://www2.gmer.net/gmer.zip
* Dézipper le programme.
* Double cliquer sur Gmer.exe
* Le programme se lance et fait un auto scan
(il s'agit de l'onglet : Rootkit/Malware).
=> Des lignes rouges doivent apparaître en cas d'infection :
* sur ces lignes rouges:
o Services: Clique droit puis delete service
o Process: Clique droit puis kill process
o Adl, file: Clique droit puis delete files
*>flo-91<*®
N'hésitez pas a faire un tour dans la faq du forum ( rubrique astuce ),
il y a peut être déjà la solution à votre problème =)
Je n'arrive pas à installer ad remover j'ai un message d'erreur disant: '' le processeur NTVDM a rencontré une instruction non autorisé ''
: / que faire?
: / que faire?
Essaie ceci :
/!\ Desactive ton antivirus le temps de la manip ainsi que ton parefeu et antispyware si présent /!\
> Télécharge List&Kill'em et enregistre le sur ton bureau ici :
http://sd-4.archive-host.com/membres/up/829108531491024/Mes_Tools/List_Killem_Install.exe
> dezippe-le , (clic droit/ extraire.....)
Il ne necessite pas d'installation
>double clic (clic droit "executer en tant qu'administrateur" pour Vista) pour lancer le scan
choisis la langue puis choisis l'option 1 = Mode Recherche
>laisse travailler l'outil
>Poste le contenu du rapport qui s'ouvre
/!\ Desactive ton antivirus le temps de la manip ainsi que ton parefeu et antispyware si présent /!\
> Télécharge List&Kill'em et enregistre le sur ton bureau ici :
http://sd-4.archive-host.com/membres/up/829108531491024/Mes_Tools/List_Killem_Install.exe
> dezippe-le , (clic droit/ extraire.....)
Il ne necessite pas d'installation
>double clic (clic droit "executer en tant qu'administrateur" pour Vista) pour lancer le scan
choisis la langue puis choisis l'option 1 = Mode Recherche
>laisse travailler l'outil
>Poste le contenu du rapport qui s'ouvre
